VIRY.CZ

Dobrý deň. Mám taký problém....včera som zistil, že mi na nete nefunguje načítanie a otvorenie niektorých stránok. Neviem zatiaľ definovať, ktoré áno, a ktoré nie, ale jedna zo zásadných vecí napríklad je, že zoznam zásuvných modulov sa mi ukáže, ale neprebehne(nefunguje) kontrola ich aktualizácií, nefunguje mi tiež ponuka doplnkov Firefox. Nešlo mi napríklad ani sťahovanie adobe flash playera priamo zo stránky Adobe. Každopádne tých stránok, ktoré sa mi neotvoria, je dosť (asi väčšinou ide o rôzne odkazy, či presmerovania).
Ako prehliadač používam Mozilla Firefox 18.0.2, ale stránky, ktoré mi nejdú načítať, tak mi nejdú načítať ani v Opere, ani v IE.
Prosím o pomoc, či radu pri odstranení tohto problému. ďakujem a prikladám RSIT log z môjho PC.

Logfile of random's system information tool 1.09 (written by random/random)
Run by admin at 2013-02-13 10:29:29
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 5 GB (17%) free of 29 GB
Total RAM: 1407 MB (55% free)

HijackThis download failed

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job
C:\WINDOWS\tasks\AppleSoftwareUpdate.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1757981266-1123561945-1801674531-500Core.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1757981266-1123561945-1801674531-500UA.job
C:\WINDOWS\tasks\RealDownloaderDownloaderScheduledTaskS-1-5-21-1757981266-1123561945-1801674531-500.job
C:\WINDOWS\tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-1757981266-1123561945-1801674531-500.job
C:\WINDOWS\tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-1757981266-1123561945-1801674531-500.job
C:\WINDOWS\tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-1757981266-1123561945-1801674531-500.job
C:\WINDOWS\tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-1757981266-1123561945-1801674531-500.job
C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-1757981266-1123561945-1801674531-500.job
C:\WINDOWS\tasks\RealUpgradeScheduledTaskS-1-5-21-1757981266-1123561945-1801674531-500.job

=========Mozilla firefox=========

ProfilePath - C:\Documents and Settings\admin\Data aplikací\Mozilla\Firefox\Profiles\5x7zvfgw.default

prefs.js - "browser.startup.homepage" - "https://www.google.sk/"
prefs.js - "extensions.enabledItems" - "{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21, jqs@sun.com:1.0, {20a82645-c095-46ed-80e3-08825760534b}:1.1, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.10"

"{20a82645-c095-46ed-80e3-08825760534b}"=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"{34712C68-7391-4c47-94F3-8F88D49AD632}"=C:\Documents and Settings\All Users\Data aplikací\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\
"{ABDE892B-13A8-4d1b-88E6-365A6E755758}"=C:\Documents and Settings\All Users\Data aplikací\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.5.502.149 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_5_502_149.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\WINDOWS\system32\Adobe\Director\np32dsw_1200112.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.13.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\WINDOWS\system32\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.13.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\4.0.50826.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nppl3260;version=16.0.0.282]
"Description"=RealPlayer(tm) LiveConnect-Enabled Plug-In
"Path"=c:\program files\real\realplayer\Netscape6\nppl3260.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nprndlchromebrowserrecordext;version=1.3.0]
"Description"=RealNetworks(tm) RealDownloader Chrome Background Extension Plug-In
"Path"=C:\Documents and Settings\All Users\Data aplikací\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nprndlhtml5videoshim;version=1.3.0]
"Description"=RealNetworks(tm) RealDownloader HTML5VideoShim Plug-In
"Path"=C:\Documents and Settings\All Users\Data aplikací\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nprndlpepperflashvideoshim;version=1.3.0]
"Description"=RealNetworks(tm) RealDownloader Peppe rFlash Video Shim Plug-In
"Path"=C:\Documents and Settings\All Users\Data aplikací\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nprpplugin;version=16.0.0.282]
"Description"=RealPlayer Download Plugin
"Path"=c:\program files\real\realplayer\Netscape6\nprpplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@realnetworks.com/npdlplugin;version=1]
"Description"=RealDownloader Plugin
"Path"=C:\Documents and Settings\All Users\Data aplikací\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll

C:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}
{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}

C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll
flashplayer.xpt
nsILegitCheckPlugin.xpt
nsIOGAPlugin.xpt
nsIQTScriptablePlugin.xpt

C:\Program Files\Mozilla Firefox\plugins\
np-mswmp.dll
npLegitCheckPlugin.dll
npOGAPlugin.dll
nppdf32.dll
nppl3260.dll
nppl3260.xpt
npqtplugin.dll
npqtplugin2.dll
npqtplugin3.dll
npqtplugin4.dll
npqtplugin5.dll
npqtplugin6.dll
npqtplugin7.dll
nprpplugin.dll
npwachk.dll
QuickTimePlugin.class

C:\Program Files\Mozilla Firefox\searchplugins\
atlas-sk.xml
azet-sk.xml
dunaj-sk.xml
eBay.xml
google.xml
slovnik-sk.xml
wikipedia-sk.xml
zoznam-sk.xml

C:\Documents and Settings\admin\Data aplikací\Mozilla\Firefox\Profiles\5x7zvfgw.default\searchplugins\
conduit.xml
GoogleFeed.xml
sweetim.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-12-18 77576]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
RealNetworks Download and Record Plugin for Internet Explorer - C:\Documents and Settings\All Users\Data aplikací\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll [2012-11-29 539888]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2013-02-12 461216]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-02-12 170912]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2008-10-28 17331200]
"Alcmtr"=C:\WINDOWS\ALCMTR.EXE [2008-06-19 57344]
"nwiz"=nwiz.exe /install []
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2012-12-19 41208]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-12-03 946352]
"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2012-03-07 3117344]
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2009-04-14 86016]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2009-04-14 13684736]
"QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2012-04-18 421888]
"TkBellExe"=C:\program files\real\realplayer\update\realsched.exe [2013-01-16 295072]
"Snap"=C:\Program Files\USB 2.0 PC CAMERA\Camera Snap.exe [2011-07-13 163840]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2012-07-03 252848]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"Google Update"=C:\Documents and Settings\admin\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe [2012-06-15 116648]

C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
Microsoft Office.lnk - C:\Program Files\Microsoft Office\Office\OSA9.EXE

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2010-09-15 265096]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\wpdshserviceobj.dll [2010-09-15 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"=C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [2009-05-24 304128]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"StartMenuLogoff"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Opera\opera.exe"="C:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser"
"C:\Documents and Settings\admin\Local Settings\Data aplikací\Google\Google Talk Plugin\googletalkplugin.exe"="C:\Documents and Settings\admin\Local Settings\Data aplikací\Google\Google Talk Plugin\googletalkplugin.exe:*:Enabled:Google Talk Plugin"
"C:\Program Files\Opera\pluginwrapper\opera_plugin_wrapper.exe"="C:\Program Files\Opera\pluginwrapper\opera_plugin_wrapper.exe:*:Enabled:Opera Internet Browser - Plugin wrapper"
"C:\WINDOWS\system32\msiexec.exe"="C:\WINDOWS\system32\msiexec.exe:*:Enabled:UpdateManagerSetup"
"C:\Program Files\SweetIM\Communicator\SweetPacksUpdateManager.exe"="C:\Program Files\SweetIM\Communicator\SweetPacksUpdateManager.exe:*:Enabled:SweetPacksUpdateManager"
"C:\Program Files\Google\Google Talk\googletalk.exe"="C:\Program Files\Google\Google Talk\googletalk.exe:*:Enabled:Google Talk"
"C:\Program Files\Mozilla Firefox\firefox.exe"="C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Mozilla Firefox"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"VIDC.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"VIDC.YVYU"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"msacm.lameacm"=lameACM.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"VIDC.MPG4"=mpg4c32.dll
"VIDC.MP42"=mpg4c32.dll
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux3"=wdmaud.drv

======List of files/folders created in the last 1 month======

2013-02-13 10:29:44 ----A---- C:\AdwCleaner[R4].txt
2013-02-13 10:26:16 ----D---- C:\rsit
2013-02-13 10:13:21 ----D---- C:\WINDOWS\LastGood
2013-02-13 10:07:44 ----D---- C:\Program Files\Mozilla Firefox
2013-02-13 10:02:42 ----D---- C:\WINDOWS\system32\Adobe
2013-02-12 17:52:03 ----D---- C:\Program Files\Common Files\Java
2013-02-12 17:51:55 ----A---- C:\WINDOWS\system32\javaws.exe
2013-02-12 17:51:47 ----A---- C:\WINDOWS\system32\WindowsAccessBridge.dll
2013-02-12 17:51:47 ----A---- C:\WINDOWS\system32\javaw.exe
2013-02-12 17:51:47 ----A---- C:\WINDOWS\system32\java.exe
2013-02-12 14:22:16 ----D---- C:\Program Files\Mozilla Maintenance Service
2013-01-23 12:34:09 ----D---- C:\Documents and Settings\admin\Data aplikací\Jablotron
2013-01-21 10:17:34 ----R---- C:\WINDOWS\system32\drivers\usbDecode.sys
2013-01-21 10:17:34 ----R---- C:\WINDOWS\system32\drivers\usbcamcl.sys
2013-01-21 10:17:34 ----R---- C:\WINDOWS\system32\camera.ini
2013-01-21 10:17:21 ----R---- C:\WINDOWS\system32\drivers\PictureDll.sys
2013-01-21 10:17:21 ----R---- C:\WINDOWS\system32\drivers\FaceDll.sys
2013-01-21 10:17:20 ----R---- C:\WINDOWS\system32\CoUninstall.dll
2013-01-21 10:17:12 ----D---- C:\Program Files\USB 2.0 PC CAMERA
2013-01-21 10:17:12 ----A---- C:\WINDOWS\system32\mpg4c32.dll
2013-01-21 10:14:56 ----A---- C:\WINDOWS\system32\drivers\MSTEE.sys
2013-01-21 10:14:54 ----A---- C:\WINDOWS\system32\drivers\NdisIP.sys
2013-01-21 10:14:53 ----A---- C:\WINDOWS\system32\drivers\StreamIP.sys
2013-01-21 10:14:52 ----A---- C:\WINDOWS\system32\drivers\SLIP.sys
2013-01-21 10:14:51 ----A---- C:\WINDOWS\system32\drivers\WSTCODEC.SYS
2013-01-21 10:14:50 ----A---- C:\WINDOWS\system32\drivers\NABTSFEC.sys
2013-01-21 10:14:48 ----A---- C:\WINDOWS\system32\drivers\CCDECODE.sys
2013-01-21 10:14:43 ----A---- C:\WINDOWS\system32\drivers\USBAUDIO.sys
2013-01-21 10:14:37 ----A---- C:\WINDOWS\system32\vfwwdm32.dll
2013-01-21 10:14:37 ----A---- C:\WINDOWS\system32\drivers\usbvideo.sys
2013-01-21 10:14:34 ----A---- C:\WINDOWS\system32\drivers\usbccgp.sys
2013-01-17 18:08:07 ----D---- C:\Documents and Settings\All Users\Data aplikací\TreeCardGames
2013-01-17 18:08:06 ----D---- C:\Documents and Settings\admin\Data aplikací\MahJong Suite
2013-01-16 16:59:54 ----D---- C:\Documents and Settings\admin\Data aplikací\RealNetworks
2013-01-16 16:59:29 ----D---- C:\Program Files\RealNetworks
2013-01-16 16:59:26 ----D---- C:\Documents and Settings\All Users\Data aplikací\RealNetworks
2013-01-16 16:59:14 ----D---- C:\Program Files\Common Files\xing shared
2013-01-16 16:59:07 ----A---- C:\WINDOWS\system32\rmoc3260.dll
2013-01-16 16:58:59 ----A---- C:\WINDOWS\system32\pndx5032.dll
2013-01-16 16:58:59 ----A---- C:\WINDOWS\system32\pndx5016.dll
2013-01-16 16:58:55 ----A---- C:\WINDOWS\system32\msvcr71.dll
2013-01-16 16:58:55 ----A---- C:\WINDOWS\system32\msvcp71.dll

======List of files/folders modified in the last 1 month======

2013-02-13 10:30:01 ----D---- C:\Program Files\trend micro
2013-02-13 10:28:51 ----D---- C:\WINDOWS\Temp
2013-02-13 10:28:51 ----AD---- C:\WINDOWS
2013-02-13 10:26:08 ----D---- C:\Downloads
2013-02-13 10:13:22 ----SD---- C:\WINDOWS\Downloaded Program Files
2013-02-13 10:13:21 ----D---- C:\WINDOWS\system32\CatRoot2
2013-02-13 10:13:21 ----D---- C:\WINDOWS\system32
2013-02-13 10:11:39 ----RD---- C:\Program Files
2013-02-13 10:06:59 ----SHD---- C:\WINDOWS\Installer
2013-02-13 10:06:59 ----D---- C:\Config.Msi
2013-02-13 10:02:46 ----D---- C:\WINDOWS\system32\Macromed
2013-02-13 09:59:33 ----D---- C:\Documents and Settings\All Users\Data aplikací\Adobe
2013-02-13 09:56:17 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2013-02-13 09:56:13 ----D---- C:\WINDOWS\Prefetch
2013-02-13 09:48:15 ----SD---- C:\WINDOWS\Tasks
2013-02-13 09:47:38 ----A---- C:\WINDOWS\SchedLgU.Txt
2013-02-12 18:39:20 ----D---- C:\WINDOWS\WinSxS
2013-02-12 18:38:57 ----D---- C:\Program Files\Microsoft Office
2013-02-12 18:33:47 ----D---- C:\Program Files\Opera
2013-02-12 18:03:48 ----D---- C:\WINDOWS\system32\drivers
2013-02-12 17:52:03 ----D---- C:\Program Files\Common Files
2013-02-12 17:51:23 ----A---- C:\WINDOWS\system32\npdeployJava1.dll
2013-02-12 17:51:23 ----A---- C:\WINDOWS\system32\deployJava1.dll
2013-02-12 17:51:17 ----D---- C:\Program Files\Java
2013-02-12 17:45:17 ----D---- C:\Program Files\QuickTime
2013-02-12 17:01:38 ----D---- C:\Program Files\CCleaner
2013-02-11 12:38:31 ----D---- C:\Documents and Settings\admin\Data aplikací\Corel
2013-02-07 15:33:25 ----D---- C:\Documents and Settings\admin\Data aplikací\Real
2013-02-05 15:28:13 ----D---- C:\Documents and Settings\admin\Data aplikací\Mozilla
2013-01-23 09:58:29 ----HD---- C:\WINDOWS\inf
2013-01-22 16:44:22 ----D---- C:\Documents and Settings\admin\Data aplikací\Ancestry
2013-01-21 11:34:07 ----SD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft
2013-01-21 10:17:54 ----A---- C:\WINDOWS\win.ini
2013-01-21 10:17:09 ----HD---- C:\Program Files\InstallShield Installation Information
2013-01-16 17:00:14 ----D---- C:\Documents and Settings\All Users\Data aplikací\Real
2013-01-16 16:59:18 ----D---- C:\Program Files\Real
2013-01-16 16:58:58 ----A---- C:\WINDOWS\system32\pncrt.dll
2013-01-16 16:39:15 ----D---- C:\WINDOWS\system32\config
2013-01-16 16:39:00 ----D---- C:\WINDOWS\system32\wbem
2013-01-16 16:38:59 ----D---- C:\WINDOWS\Registration
2013-01-14 11:28:26 ----D---- C:\Documents and Settings\admin\Data aplikací\vlc

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 nvatabus;nvatabus; C:\WINDOWS\system32\drivers\nvatabus.sys [2010-09-07 100736]
R0 nvgts;nvgts; C:\WINDOWS\system32\DRIVERS\nvgts.sys [2008-08-18 145952]
R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2011-03-04 45648]
R1 eamon;eamon; C:\WINDOWS\system32\DRIVERS\eamon.sys [2012-03-14 160816]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2012-03-14 120152]
R1 epfwtdi;epfwtdi; C:\WINDOWS\system32\DRIVERS\epfwtdi.sys [2012-03-14 61936]
R1 FNETURPX;FNETURPX; C:\WINDOWS\System32\drivers\FNETURPX.SYS [2012-05-18 14656]
R2 epfw;epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [2012-03-14 148504]
R2 LiveTunerPM;Ashampoo LiveTuner ProcessMonitor Driver; \??\C:\Program Files\Ashampoo\Ashampoo WinOptimizer 8\LiveTunerProcessMonitor32.sys []
R3 Epfwndis;Eset Personal Firewall; C:\WINDOWS\system32\DRIVERS\Epfwndis.sys [2012-03-14 40336]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2008-10-31 4942336]
R3 MBAMProtector;MBAMProtector; \??\C:\WINDOWS\system32\drivers\mbam.sys []
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2009-04-14 6308032]
R3 NVENETFD;NVIDIA nForce 10/100 Mbps Ethernet ; C:\WINDOWS\system32\DRIVERS\NVENETFD.sys [2008-03-25 54400]
R3 nvnetbus;NVIDIA Network Bus Enumerator; C:\WINDOWS\system32\DRIVERS\nvnetbus.sys [2008-03-25 22016]
S2 DgiVecp;DgiVecp; \??\C:\WINDOWS\system32\Drivers\DgiVecp.sys []
S2 SSPORT;SSPORT; \??\C:\WINDOWS\system32\Drivers\SSPORT.sys []
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 dot4;Ovladač MS IEEE-1284.4; C:\WINDOWS\system32\DRIVERS\Dot4.sys [2008-04-13 206976]
S3 Dot4Print;Ovladač třídy tiskárny standardu IEEE-1284.4; C:\WINDOWS\system32\DRIVERS\Dot4Prt.sys [2001-08-17 12928]
S3 Dot4Scan;Ovladač třídy skeneru standardu IEEE-1284.4; C:\WINDOWS\system32\DRIVERS\Dot4Scan.sys [2001-08-17 8704]
S3 dot4usb;Filtr Dot4USB Dot4USB Filter; C:\WINDOWS\system32\DRIVERS\dot4usb.sys [2001-10-24 23808]
S3 FNETTBOH_305;FNETTBOH_305; C:\WINDOWS\System32\drivers\FNETTBOH_305.SYS [2012-07-04 29760]
S3 MSI_MSIBIOS_010507;MSI_MSIBIOS_010507; \??\C:\Program Files\MSI\Live Update 5\msibios32_100507.sys []
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 NTIOLib_1_0_4;NTIOLib_1_0_4; \??\C:\Program Files\MSI\Live Update 5\NTIOLib.sys []
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 usbaudio;Ovladač zvukové karty USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-13 60032]
S3 usbcamcl;Driver for usbcamcl Device; C:\WINDOWS\system32\DRIVERS\usbcamcl.sys [2011-11-25 38784]
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 usbvideo;Zobrazovací zařízení USB (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2008-04-13 121984]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2010-09-15 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2010-09-15 82944]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2012-03-07 913144]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre7\bin\jqs.exe [2013-02-12 170912]
R2 MBAMScheduler;MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [2012-09-29 399432]
R2 NitroDriverReadSpool;NitroPDFDriverCreatorReadSpool; C:\Program Files\Nitro PDF\Professional\NitroPDFDriverService.exe [2011-03-21 196928]
R2 nlsX86cc;NLS Service; C:\WINDOWS\system32\NLSSRV32.EXE [2011-03-21 68928]
R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2009-04-14 163908]
R2 RealNetworks Downloader Resolver Service;RealNetworks Downloader Resolver Service; C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe [2012-11-29 38608]
R2 WSearch;Windows Search; C:\WINDOWS\system32\SearchIndexer.exe [2008-05-26 439808]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 MBAMService;MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [2012-09-29 676936]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-02-13 251248]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Služba Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2013-02-13 115608]
S3 WinRM;Windows Remote Management (WS-Management); C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S3 WO_LiveService;Ashampoo LiveTuner Service; C:\Program Files\Ashampoo\Ashampoo WinOptimizer 8\LiveTunerService.exe [2011-09-28 885160]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; c:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S4 NetTcpPortSharing;Služba sdílení portů Net.Tcp; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------

Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:

:files
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1757981266-1123561945-1801674531-500Core.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1757981266-1123561945-1801674531-500UA.job
C:\Documents and Settings\All Users\Data aplikací\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll

:reg
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"=-

:commands
[Purity]
[Emptytemp]
[Emptyflash]

a klikněte na >MoveIt!<. Po skenu restartujte PC a dejte nový log RSIT.

Logfile of random's system information tool 1.09 (written by random/random)
Run by admin at 2013-02-14 11:02:21
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 5 GB (17%) free of 29 GB
Total RAM: 1407 MB (67% free)

HijackThis download failed

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job
C:\WINDOWS\tasks\AppleSoftwareUpdate.job
C:\WINDOWS\tasks\RealDownloaderDownloaderScheduledTaskS-1-5-21-1757981266-1123561945-1801674531-500.job
C:\WINDOWS\tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-1757981266-1123561945-1801674531-500.job
C:\WINDOWS\tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-1757981266-1123561945-1801674531-500.job
C:\WINDOWS\tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-1757981266-1123561945-1801674531-500.job
C:\WINDOWS\tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-1757981266-1123561945-1801674531-500.job
C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-1757981266-1123561945-1801674531-500.job
C:\WINDOWS\tasks\RealUpgradeScheduledTaskS-1-5-21-1757981266-1123561945-1801674531-500.job

=========Mozilla firefox=========

ProfilePath - C:\Documents and Settings\admin\Data aplikací\Mozilla\Firefox\Profiles\5x7zvfgw.default

prefs.js - "browser.startup.homepage" - "https://www.google.sk/"
prefs.js - "extensions.enabledItems" - "{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21, jqs@sun.com:1.0, {20a82645-c095-46ed-80e3-08825760534b}:1.1, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.10"

"{20a82645-c095-46ed-80e3-08825760534b}"=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"{ABDE892B-13A8-4d1b-88E6-365A6E755758}"=C:\Documents and Settings\All Users\Data aplikací\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.5.502.149 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_5_502_149.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\WINDOWS\system32\Adobe\Director\np32dsw_1200112.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.13.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\WINDOWS\system32\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.13.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\4.0.50826.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nppl3260;version=16.0.0.282]
"Description"=RealPlayer(tm) LiveConnect-Enabled Plug-In
"Path"=c:\program files\real\realplayer\Netscape6\nppl3260.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nprndlchromebrowserrecordext;version=1.3.0]
"Description"=RealNetworks(tm) RealDownloader Chrome Background Extension Plug-In
"Path"=C:\Documents and Settings\All Users\Data aplikací\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nprndlhtml5videoshim;version=1.3.0]
"Description"=RealNetworks(tm) RealDownloader HTML5VideoShim Plug-In
"Path"=C:\Documents and Settings\All Users\Data aplikací\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nprndlpepperflashvideoshim;version=1.3.0]
"Description"=RealNetworks(tm) RealDownloader Peppe rFlash Video Shim Plug-In
"Path"=C:\Documents and Settings\All Users\Data aplikací\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nprpplugin;version=16.0.0.282]
"Description"=RealPlayer Download Plugin
"Path"=c:\program files\real\realplayer\Netscape6\nprpplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@realnetworks.com/npdlplugin;version=1]
"Description"=RealDownloader Plugin
"Path"=C:\Documents and Settings\All Users\Data aplikací\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll

C:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}
{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}

C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll
flashplayer.xpt
nsILegitCheckPlugin.xpt
nsIOGAPlugin.xpt
nsIQTScriptablePlugin.xpt

C:\Program Files\Mozilla Firefox\plugins\
np-mswmp.dll
npLegitCheckPlugin.dll
npOGAPlugin.dll
nppdf32.dll
nppl3260.dll
nppl3260.xpt
npqtplugin.dll
npqtplugin2.dll
npqtplugin3.dll
npqtplugin4.dll
npqtplugin5.dll
npqtplugin6.dll
npqtplugin7.dll
nprpplugin.dll
npwachk.dll
QuickTimePlugin.class

C:\Program Files\Mozilla Firefox\searchplugins\
atlas-sk.xml
azet-sk.xml
dunaj-sk.xml
eBay.xml
google.xml
slovnik-sk.xml
wikipedia-sk.xml
zoznam-sk.xml

C:\Documents and Settings\admin\Data aplikací\Mozilla\Firefox\Profiles\5x7zvfgw.default\searchplugins\
conduit.xml
GoogleFeed.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-12-18 77576]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2013-02-12 461216]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-02-12 170912]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2008-10-28 17331200]
"Alcmtr"=C:\WINDOWS\ALCMTR.EXE [2008-06-19 57344]
"nwiz"=nwiz.exe /install []
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2012-12-19 41208]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-12-03 946352]
"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2012-03-07 3117344]
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2009-04-14 86016]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2009-04-14 13684736]
"QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2012-04-18 421888]
"TkBellExe"=C:\program files\real\realplayer\update\realsched.exe [2013-01-16 295072]
"Snap"=C:\Program Files\USB 2.0 PC CAMERA\Camera Snap.exe [2011-07-13 163840]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"Google Update"=C:\Documents and Settings\admin\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe [2012-06-15 116648]

C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
Microsoft Office.lnk - C:\Program Files\Microsoft Office\Office\OSA9.EXE

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2010-09-15 265096]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\wpdshserviceobj.dll [2010-09-15 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"=C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [2009-05-24 304128]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"undockwithoutlogon"=1
"ShutdownWithoutLogon"=0
"NoDispCPL"=0
"NoDispSettingsPage"=0
"NoDispScrSavPage"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"StartMenuLogoff"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
"NoResolveTrack"=0
"NoViewContextMenu"=0
"NoFileAssociate"=0
"NoFind"=0
"NoRun"=0
"NoClose"=0
"StartMenuLogoff"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Opera\opera.exe"="C:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser"
"C:\Documents and Settings\admin\Local Settings\Data aplikací\Google\Google Talk Plugin\googletalkplugin.exe"="C:\Documents and Settings\admin\Local Settings\Data aplikací\Google\Google Talk Plugin\googletalkplugin.exe:*:Enabled:Google Talk Plugin"
"C:\Program Files\Opera\pluginwrapper\opera_plugin_wrapper.exe"="C:\Program Files\Opera\pluginwrapper\opera_plugin_wrapper.exe:*:Enabled:Opera Internet Browser - Plugin wrapper"
"C:\WINDOWS\system32\msiexec.exe"="C:\WINDOWS\system32\msiexec.exe:*:Enabled:UpdateManagerSetup"
"C:\Program Files\SweetIM\Communicator\SweetPacksUpdateManager.exe"="C:\Program Files\SweetIM\Communicator\SweetPacksUpdateManager.exe:*:Enabled:SweetPacksUpdateManager"
"C:\Program Files\Google\Google Talk\googletalk.exe"="C:\Program Files\Google\Google Talk\googletalk.exe:*:Enabled:Google Talk"
"C:\Program Files\Mozilla Firefox\firefox.exe"="C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Mozilla Firefox"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"VIDC.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"VIDC.YVYU"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"msacm.lameacm"=lameACM.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"VIDC.MPG4"=mpg4c32.dll
"VIDC.MP42"=mpg4c32.dll
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux3"=wdmaud.drv

======List of files/folders created in the last 1 month======

2013-02-14 11:00:06 ----D---- C:\_OTM
2013-02-13 17:36:20 ----A---- C:\WINDOWS\system32\oeminfo.ini
2013-02-13 10:26:16 ----D---- C:\rsit
2013-02-13 10:07:44 ----D---- C:\Program Files\Mozilla Firefox
2013-02-13 10:02:42 ----D---- C:\WINDOWS\system32\Adobe
2013-02-12 17:52:03 ----D---- C:\Program Files\Common Files\Java
2013-02-12 17:51:55 ----A---- C:\WINDOWS\system32\javaws.exe
2013-02-12 17:51:47 ----A---- C:\WINDOWS\system32\WindowsAccessBridge.dll
2013-02-12 17:51:47 ----A---- C:\WINDOWS\system32\javaw.exe
2013-02-12 17:51:47 ----A---- C:\WINDOWS\system32\java.exe
2013-02-12 14:22:16 ----D---- C:\Program Files\Mozilla Maintenance Service
2013-01-23 12:34:09 ----D---- C:\Documents and Settings\admin\Data aplikací\Jablotron
2013-01-21 10:17:34 ----R---- C:\WINDOWS\system32\drivers\usbDecode.sys
2013-01-21 10:17:34 ----R---- C:\WINDOWS\system32\drivers\usbcamcl.sys
2013-01-21 10:17:34 ----R---- C:\WINDOWS\system32\camera.ini
2013-01-21 10:17:21 ----R---- C:\WINDOWS\system32\drivers\PictureDll.sys
2013-01-21 10:17:21 ----R---- C:\WINDOWS\system32\drivers\FaceDll.sys
2013-01-21 10:17:20 ----R---- C:\WINDOWS\system32\CoUninstall.dll
2013-01-21 10:17:12 ----D---- C:\Program Files\USB 2.0 PC CAMERA
2013-01-21 10:17:12 ----A---- C:\WINDOWS\system32\mpg4c32.dll
2013-01-21 10:14:56 ----A---- C:\WINDOWS\system32\drivers\MSTEE.sys
2013-01-21 10:14:54 ----A---- C:\WINDOWS\system32\drivers\NdisIP.sys
2013-01-21 10:14:53 ----A---- C:\WINDOWS\system32\drivers\StreamIP.sys
2013-01-21 10:14:52 ----A---- C:\WINDOWS\system32\drivers\SLIP.sys
2013-01-21 10:14:51 ----A---- C:\WINDOWS\system32\drivers\WSTCODEC.SYS
2013-01-21 10:14:50 ----A---- C:\WINDOWS\system32\drivers\NABTSFEC.sys
2013-01-21 10:14:48 ----A---- C:\WINDOWS\system32\drivers\CCDECODE.sys
2013-01-21 10:14:43 ----A---- C:\WINDOWS\system32\drivers\USBAUDIO.sys
2013-01-21 10:14:37 ----A---- C:\WINDOWS\system32\vfwwdm32.dll
2013-01-21 10:14:37 ----A---- C:\WINDOWS\system32\drivers\usbvideo.sys
2013-01-21 10:14:34 ----A---- C:\WINDOWS\system32\drivers\usbccgp.sys
2013-01-17 18:08:07 ----D---- C:\Documents and Settings\All Users\Data aplikací\TreeCardGames
2013-01-17 18:08:06 ----D---- C:\Documents and Settings\admin\Data aplikací\MahJong Suite
2013-01-16 16:59:54 ----D---- C:\Documents and Settings\admin\Data aplikací\RealNetworks
2013-01-16 16:59:29 ----D---- C:\Program Files\RealNetworks
2013-01-16 16:59:26 ----D---- C:\Documents and Settings\All Users\Data aplikací\RealNetworks
2013-01-16 16:59:14 ----D---- C:\Program Files\Common Files\xing shared
2013-01-16 16:59:07 ----A---- C:\WINDOWS\system32\rmoc3260.dll
2013-01-16 16:58:59 ----A---- C:\WINDOWS\system32\pndx5032.dll
2013-01-16 16:58:59 ----A---- C:\WINDOWS\system32\pndx5016.dll
2013-01-16 16:58:55 ----A---- C:\WINDOWS\system32\msvcr71.dll
2013-01-16 16:58:55 ----A---- C:\WINDOWS\system32\msvcp71.dll

======List of files/folders modified in the last 1 month======

2013-02-14 11:02:52 ----D---- C:\Program Files\trend micro
2013-02-14 11:01:31 ----SD---- C:\WINDOWS\Tasks
2013-02-14 11:01:20 ----D---- C:\WINDOWS\Temp
2013-02-14 11:00:13 ----A---- C:\WINDOWS\SchedLgU.Txt
2013-02-14 10:59:14 ----D---- C:\Downloads
2013-02-14 10:33:03 ----HD---- C:\WINDOWS\inf
2013-02-14 10:33:03 ----D---- C:\WINDOWS\system32\CatRoot2
2013-02-14 10:33:03 ----AD---- C:\WINDOWS
2013-02-13 17:41:26 ----SHD---- C:\WINDOWS\Installer
2013-02-13 17:41:26 ----D---- C:\Config.Msi
2013-02-13 17:36:20 ----D---- C:\WINDOWS\system32
2013-02-13 10:13:22 ----SD---- C:\WINDOWS\Downloaded Program Files
2013-02-13 10:11:39 ----RD---- C:\Program Files
2013-02-13 10:02:46 ----D---- C:\WINDOWS\system32\Macromed
2013-02-13 09:59:33 ----D---- C:\Documents and Settings\All Users\Data aplikací\Adobe
2013-02-13 09:56:17 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2013-02-13 09:56:13 ----D---- C:\WINDOWS\Prefetch
2013-02-12 18:39:20 ----D---- C:\WINDOWS\WinSxS
2013-02-12 18:38:57 ----D---- C:\Program Files\Microsoft Office
2013-02-12 18:33:47 ----D---- C:\Program Files\Opera
2013-02-12 18:03:48 ----D---- C:\WINDOWS\system32\drivers
2013-02-12 17:52:03 ----D---- C:\Program Files\Common Files
2013-02-12 17:51:23 ----A---- C:\WINDOWS\system32\npdeployJava1.dll
2013-02-12 17:51:23 ----A---- C:\WINDOWS\system32\deployJava1.dll
2013-02-12 17:51:17 ----D---- C:\Program Files\Java
2013-02-12 17:45:17 ----D---- C:\Program Files\QuickTime
2013-02-12 17:01:38 ----D---- C:\Program Files\CCleaner
2013-02-11 12:38:31 ----D---- C:\Documents and Settings\admin\Data aplikací\Corel
2013-02-07 15:33:25 ----D---- C:\Documents and Settings\admin\Data aplikací\Real
2013-02-05 15:28:13 ----D---- C:\Documents and Settings\admin\Data aplikací\Mozilla
2013-01-22 16:44:22 ----D---- C:\Documents and Settings\admin\Data aplikací\Ancestry
2013-01-21 11:34:07 ----SD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft
2013-01-21 10:17:54 ----A---- C:\WINDOWS\win.ini
2013-01-21 10:17:09 ----HD---- C:\Program Files\InstallShield Installation Information
2013-01-16 17:00:14 ----D---- C:\Documents and Settings\All Users\Data aplikací\Real
2013-01-16 16:59:18 ----D---- C:\Program Files\Real
2013-01-16 16:58:58 ----A---- C:\WINDOWS\system32\pncrt.dll
2013-01-16 16:39:15 ----D---- C:\WINDOWS\system32\config
2013-01-16 16:39:00 ----D---- C:\WINDOWS\system32\wbem
2013-01-16 16:38:59 ----D---- C:\WINDOWS\Registration

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 nvatabus;nvatabus; C:\WINDOWS\system32\drivers\nvatabus.sys [2010-09-07 100736]
R0 nvgts;nvgts; C:\WINDOWS\system32\DRIVERS\nvgts.sys [2008-08-18 145952]
R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2011-03-04 45648]
R1 eamon;eamon; C:\WINDOWS\system32\DRIVERS\eamon.sys [2012-03-14 160816]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2012-03-14 120152]
R1 epfwtdi;epfwtdi; C:\WINDOWS\system32\DRIVERS\epfwtdi.sys [2012-03-14 61936]
R1 FNETURPX;FNETURPX; C:\WINDOWS\System32\drivers\FNETURPX.SYS [2012-05-18 14656]
R2 epfw;epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [2012-03-14 148504]
R2 LiveTunerPM;Ashampoo LiveTuner ProcessMonitor Driver; \??\C:\Program Files\Ashampoo\Ashampoo WinOptimizer 8\LiveTunerProcessMonitor32.sys []
R3 Epfwndis;Eset Personal Firewall; C:\WINDOWS\system32\DRIVERS\Epfwndis.sys [2012-03-14 40336]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2008-10-31 4942336]
R3 MBAMProtector;MBAMProtector; \??\C:\WINDOWS\system32\drivers\mbam.sys []
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2009-04-14 6308032]
R3 NVENETFD;NVIDIA nForce 10/100 Mbps Ethernet ; C:\WINDOWS\system32\DRIVERS\NVENETFD.sys [2008-03-25 54400]
R3 nvnetbus;NVIDIA Network Bus Enumerator; C:\WINDOWS\system32\DRIVERS\nvnetbus.sys [2008-03-25 22016]
R3 usbaudio;Ovladač zvukové karty USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-13 60032]
R3 usbcamcl;Driver for usbcamcl Device; C:\WINDOWS\system32\DRIVERS\usbcamcl.sys [2011-11-25 38784]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
S2 DgiVecp;DgiVecp; \??\C:\WINDOWS\system32\Drivers\DgiVecp.sys []
S2 SSPORT;SSPORT; \??\C:\WINDOWS\system32\Drivers\SSPORT.sys []
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 dot4;Ovladač MS IEEE-1284.4; C:\WINDOWS\system32\DRIVERS\Dot4.sys [2008-04-13 206976]
S3 Dot4Print;Ovladač třídy tiskárny standardu IEEE-1284.4; C:\WINDOWS\system32\DRIVERS\Dot4Prt.sys [2001-08-17 12928]
S3 Dot4Scan;Ovladač třídy skeneru standardu IEEE-1284.4; C:\WINDOWS\system32\DRIVERS\Dot4Scan.sys [2001-08-17 8704]
S3 dot4usb;Filtr Dot4USB Dot4USB Filter; C:\WINDOWS\system32\DRIVERS\dot4usb.sys [2001-10-24 23808]
S3 FNETTBOH_305;FNETTBOH_305; C:\WINDOWS\System32\drivers\FNETTBOH_305.SYS [2012-07-04 29760]
S3 MSI_MSIBIOS_010507;MSI_MSIBIOS_010507; \??\C:\Program Files\MSI\Live Update 5\msibios32_100507.sys []
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 NTIOLib_1_0_4;NTIOLib_1_0_4; \??\C:\Program Files\MSI\Live Update 5\NTIOLib.sys []
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 usbvideo;Zobrazovací zařízení USB (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2008-04-13 121984]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2010-09-15 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2010-09-15 82944]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2012-03-07 913144]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre7\bin\jqs.exe [2013-02-12 170912]
R2 MBAMScheduler;MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [2012-09-29 399432]
R2 NitroDriverReadSpool;NitroPDFDriverCreatorReadSpool; C:\Program Files\Nitro PDF\Professional\NitroPDFDriverService.exe [2011-03-21 196928]
R2 nlsX86cc;NLS Service; C:\WINDOWS\system32\NLSSRV32.EXE [2011-03-21 68928]
R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2009-04-14 163908]
R2 RealNetworks Downloader Resolver Service;RealNetworks Downloader Resolver Service; C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe [2012-11-29 38608]
R2 WSearch;Windows Search; C:\WINDOWS\system32\SearchIndexer.exe [2008-05-26 439808]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 MBAMService;MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [2012-09-29 676936]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-02-13 251248]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 DfSdkS;Defragmentation-Service; C:\Program Files\Ashampoo\Ashampoo WinOptimizer 8\DfsdkS.exe [2009-08-24 406016]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Služba Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2013-02-13 115608]
S3 WinRM;Windows Remote Management (WS-Management); C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S3 WO_LiveService;Ashampoo LiveTuner Service; C:\Program Files\Ashampoo\Ashampoo WinOptimizer 8\LiveTunerService.exe [2011-09-28 885160]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; c:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S4 NetTcpPortSharing;Služba sdílení portů Net.Tcp; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------

OK. Nastala nějaká změna?

Bohužiaľ, zatiaľ žiadna zmena.

Skúšam rozmýšľať odkedy to mohlo nastať. Pamätám si, že ako prvé som to zistil 11.2. po registrácii sa na stránke www.realvea.eu Potom, ako som sa u nich zaregistroval, nešlo mi prihlásiť sa na tú stránku, a aj bez prihlásenia, mi na tej stránke nešli nastaviť parametre vyhľadávania realít (tie ikonky sa bez výsledku, stále dokola točili). Je ale možné, že nejaká zmena v PC nastala už skôr. Toto bolo iba prvýkrát, kedy som to zistil.
V súčasnosti sa mi stále nenačíta v mozille "Získať doplnky" ani "Skontrolovať aktualizácie zásuvných modulov". Nechýba mi iba nejaký zásuvný modul?
Za prípadnú akúkoľvek Vašu pomoc, či radu vopred ďakujem.

Na zkoušku vypněte ESS a zkuste se připojit.

Tak všetky funkcie antiviru som vypol, ale žiadna zmena - problém trvá. už som z toho nešťastný. vôbec neviem, kde nastal problém. PC funguje v úplne bezproblémovo a v pohode.

Prepac Rudy.
Zaskok za kolegu.
Použijes program RogueKiller.
http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe
Stiahni na plochu a spust ako spravca.
Stlacis::>>
Delete, zmazať.
Oprava DNS
Oprava HOSTS.
Oprava Proxy.
Logy vloz sem

ahoj.
všetko som už urobil, len som asi nepochopil aké logy (z toho Rogue Killer?).
Kde ich nájdem?
Dík.

Tu ma to hodilo na net, kde bol takéto niečo :
\system32\wbem\wbemess.dll)
[HJ] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REPLACED (0)

¤¤¤ Fichiers / Dossiers particuliers: ¤¤¤
[ZeroAccess][FILE] n : c:\windows\installer\{848ec4ef-b4fb-6501-ab69-678738a3a5c6}\n --> REMOVED
[ZeroAccess][FILE] @ : c:\windows\installer\{848ec4ef-b4fb-6501-ab69-678738a3a5c6}\@ --> REMOVED AT REBOOT
[Del.Parent][FILE] 00000001.@ : c:\windows\installer\{848ec4ef-b4fb-6501-ab69-678738a3a5c6}\U\00000001.@ --> REMOVED
[Del.Parent][FILE] 80000000.@ : c:\windows\installer\{848ec4ef-b4fb-6501-ab69-678738a3a5c6}\U\80000000.@ --> REMOVED
[Del.Parent][FILE] 800000cb.@ : c:\windows\installer\{848ec4ef-b4fb-6501-ab69-678738a3a5c6}\U\800000cb.@ --> REMOVED
[ZeroAccess][FOLDER] U : c:\windows\installer\{848ec4ef-b4fb-6501-ab69-678738a3a5c6}\U --> REMOVED
[ZeroAccess][FILE] n : c:\documents and settings\tigzy\local settings\application data\{848ec4ef-b4fb-6501-ab69-678738a3a5c6}\n --> REMOVED
[ZeroAccess][FILE] @ : c:\documents and settings\tigzy\local settings\application data\{848ec4ef-b4fb-6501-ab69-678738a3a5c6}\@ --> REMOVED

¤¤¤ Driver: [CHARGE] ¤¤¤
SSDT[98] : NtLoadKey @ 0x8061C482 -> HOOKED (Unknown @ 0xF8CD30E2)
SSDT[122] : NtOpenProcess @ 0x805C1296 -> HOOKED (Unknown @ 0xF8CD30B0)
SSDT[128] : NtOpenThread @ 0x805C1522 -> HOOKED (Unknown @ 0xF8CD30B5)
SSDT[193] : NtReplaceKey @ 0x8061C332 -> HOOKED (Unknown @ 0xF8CD30EC)
SSDT[204] : NtRestoreKey @ 0x8061BC3E -> HOOKED (Unknown @ 0xF8CD30E7)

¤¤¤ Infection : ZeroAccess ¤¤¤
[...]

Type d'examen: Examen complet
Options d'examen activées: Mémoire | Démarrage | Registre | Système de fichiers | Heuristique/Extra | Heuristique/Shuriken | PUP | PUM
Options d'examen désactivées: P2P
Elément(s) analysé(s): 189868
Temps écoulé: 7 minute(s), 1 seconde(s)

Processus mémoire détecté(s): 0
(Aucun élément nuisible détecté)

Module(s) mémoire détecté(s): 0
(Aucun élément nuisible détecté)

Clé(s) du Registre détectée(s): 1
HKCU\SOFTWARE\CLASSES\CLSID\{42AEDC87-2188-41FD-B9A3-0C966FEABEC1}\INPROCSERVER32 (Trojan.Zaccess) -> Mis en quarantaine et supprimé avec succès.

Valeur(s) du Registre détectée(s): 1
HKCU\SOFTWARE\CLASSES\CLSID\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InprocServer32| (Trojan.Zaccess) -> Données: C:\Documents and Settings\tigzy\Local Settings\Application Data\{848ec4ef-b4fb-6501-ab69-678738a3a5c6}\n. -> Mis en quarantaine et supprimé avec succès.

Elément(s) de données du Registre détecté(s): 0
(Aucun élément nuisible détecté)

Dossier(s) détecté(s): 0
(Aucun élément nuisible détecté)

Fichier(s) détecté(s): 5
C:\Documents and Settings\tigzy\Bureau\LogicielsDesinfection\HideProc(v1.0)\HideProcDrv.sys (Rootkit.Agent) -> Aucune action effectuée.
C:\Documents and Settings\tigzy\Bureau\RK_Quarantine\00000001.@.vir (Trojan.Small) -> Mis en quarantaine et supprimé avec succès.
C:\Documents and Settings\tigzy\Bureau\RK_Quarantine\80000000.@.vir (Trojan.Sirefef) -> Mis en quarantaine et supprimé avec succès.
C:\Documents and Settings\tigzy\Bureau\RK_Quarantine\800000cb.@.vir (Rootkit.0Access) -> Mis en quarantaine et supprimé avec succès.
C:\Documents and Settings\tigzy\Bureau\RK_Quarantine\n.vir (Trojan.Dropper.PE4) -> Mis en quarantaine et supprimé avec succès.

(fin)
--------------------------------------------------------------------------------------------------------------
a ešte mám akýsi RKreport :


RogueKiller V8.5.1 [Feb 12 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.geekstogo.com/forum/files/fi ... guekiller/
Webové stránky : http://tigzy.geekstogo.com/roguekiller.php
: http://tigzyrk.blogspot.com/

Operační systém : Windows XP (5.1.2600 Service Pack 3) 32 bits version
Spuštěno v : Normální režim
Uživatel : admin [Práva správce]
Mód : Oprava DNS -- Datum : 02/18/2013 16:02:55
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 0 ¤¤¤

¤¤¤ Ovladač : [NAHRÁNO] ¤¤¤

¤¤¤ Nákaza : ZeroAccess ¤¤¤

Dokončeno : << RKreport[5]_DN_02182013_02d1602.txt >>
RKreport[1]_S_02182013_02d1601.txt ; RKreport[2]_D_02182013_02d1601.txt ; RKreport[3]_H_02182013_02d1602.txt ; RKreport[4]_PR_02182013_02d1602.txt ; RKreport[5]_DN_02182013_02d1602.txt

no, mas tam zeroaccess infekciu, takze to bude kus boliet kym to odstranime celkom.
Pouzijes TDSSKILLER z mojho blogu podla navodu, log vloz sem
http://www.viruskasino.com/2010/12/odst ... kitov.html

16:32:50.0296 3416 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
16:32:51.0203 3416 ============================================================
16:32:51.0203 3416 Current date / time: 2013/02/18 16:32:51.0203
16:32:51.0203 3416 SystemInfo:
16:32:51.0203 3416
16:32:51.0203 3416 OS Version: 5.1.2600 ServicePack: 3.0
16:32:51.0203 3416 Product type: Workstation
16:32:51.0203 3416 ComputerName: POKOJ
16:32:51.0203 3416 UserName: admin
16:32:51.0203 3416 Windows directory: C:\WINDOWS
16:32:51.0203 3416 System windows directory: C:\WINDOWS
16:32:51.0203 3416 Processor architecture: Intel x86
16:32:51.0203 3416 Number of processors: 1
16:32:51.0203 3416 Page size: 0x1000
16:32:51.0203 3416 Boot type: Normal boot
16:32:51.0203 3416 ============================================================
16:32:51.0500 3416 Drive \Device\Harddisk0\DR0 - Size: 0x132C570000 (76.69 Gb), SectorSize: 0x200, Cylinders: 0x271B, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000058
16:32:51.0500 3416 Drive \Device\Harddisk1\DR1 - Size: 0x12A1F16000 (74.53 Gb), SectorSize: 0x200, Cylinders: 0x2601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000058
16:32:51.0500 3416 ============================================================
16:32:51.0500 3416 \Device\Harddisk0\DR0:
16:32:51.0500 3416 MBR partitions:
16:32:51.0500 3416 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x37B4CF5
16:32:51.0515 3416 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x37B4D73, BlocksNum 0x61A7927
16:32:51.0515 3416 \Device\Harddisk1\DR1:
16:32:51.0515 3416 MBR partitions:
16:32:51.0515 3416 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x2711637
16:32:51.0515 3416 \Device\Harddisk1\DR1\Partition2: MBR, Type 0x7, StartLBA 0x27116B5, BlocksNum 0x6DF8F4B
16:32:51.0515 3416 ============================================================
16:32:51.0531 3416 C: <-> \Device\Harddisk0\DR0\Partition1
16:32:51.0578 3416 D: <-> \Device\Harddisk0\DR0\Partition2
16:32:51.0578 3416 F: <-> \Device\Harddisk1\DR1\Partition1
16:32:51.0578 3416 G: <-> \Device\Harddisk1\DR1\Partition2
16:32:51.0578 3416 ============================================================
16:32:51.0578 3416 Initialize success
16:32:51.0578 3416 ============================================================
16:32:52.0375 3832 ============================================================
16:32:52.0375 3832 Scan started
16:32:52.0375 3832 Mode: Manual;
16:32:52.0375 3832 ============================================================
16:32:52.0562 3832 ================ Scan system memory ========================
16:32:52.0562 3832 System memory - ok
16:32:52.0562 3832 ================ Scan services =============================
16:32:52.0687 3832 Abiosdsk - ok
16:32:52.0687 3832 abp480n5 - ok
16:32:52.0734 3832 [ 4FE34F1F3126B61FCC6B2043AA8112C9 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
16:32:52.0734 3832 ACPI - ok
16:32:52.0750 3832 [ AFDFF022A01F0B11C776F0860C3B282F ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
16:32:52.0750 3832 ACPIEC - ok
16:32:52.0828 3832 [ EC807244904FA170C299AB06D87FBDBE ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
16:32:52.0843 3832 AdobeFlashPlayerUpdateSvc - ok
16:32:52.0843 3832 adpu160m - ok
16:32:52.0875 3832 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
16:32:52.0890 3832 aec - ok
16:32:52.0921 3832 [ F6B7B1ECD7B41736BDB6FF4B092BCB79 ] AFD C:\WINDOWS\System32\drivers\afd.sys
16:32:52.0921 3832 AFD - ok
16:32:52.0937 3832 Aha154x - ok
16:32:52.0937 3832 aic78u2 - ok
16:32:52.0953 3832 aic78xx - ok
16:32:52.0968 3832 [ E0A6FA244B8624D78FE5FF6F56A33BAE ] Alerter C:\WINDOWS\system32\alrsvc.dll
16:32:52.0984 3832 Alerter - ok
16:32:53.0000 3832 [ 88842DE939A827577BF24243699AC80A ] ALG C:\WINDOWS\System32\alg.exe
16:32:53.0000 3832 ALG - ok
16:32:53.0000 3832 AliIde - ok
16:32:53.0015 3832 amsint - ok
16:32:53.0046 3832 [ 6B8E7A90E576D4FE308F97C69060A171 ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
16:32:53.0046 3832 AppMgmt - ok
16:32:53.0062 3832 asc - ok
16:32:53.0062 3832 asc3350p - ok
16:32:53.0078 3832 asc3550 - ok
16:32:53.0171 3832 [ 776ACEFA0CA9DF0FAA51A5FB2F435705 ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
16:32:53.0187 3832 aspnet_state - ok
16:32:53.0218 3832 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
16:32:53.0234 3832 AsyncMac - ok
16:32:53.0250 3832 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
16:32:53.0250 3832 atapi - ok
16:32:53.0281 3832 Atdisk - ok
16:32:53.0312 3832 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
16:32:53.0312 3832 Atmarpc - ok
16:32:53.0359 3832 [ DE31B88962A8645DBA5A37B993E7B0F1 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
16:32:53.0390 3832 AudioSrv - ok
16:32:53.0406 3832 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
16:32:53.0406 3832 audstub - ok
16:32:53.0453 3832 [ 19395D092FD85DDC2D9C7729CF5A2AC8 ] BITS C:\WINDOWS\system32\qmgr.dll
16:32:53.0468 3832 BITS - ok
16:32:53.0484 3832 [ 218B3BBB1FAD634A84FB1A1BB030D956 ] Browser C:\WINDOWS\System32\browser.dll
16:32:53.0484 3832 Browser - ok
16:32:53.0500 3832 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
16:32:53.0515 3832 cbidf2k - ok
16:32:53.0546 3832 [ 0BE5AEF125BE881C4F854C554F2B025C ] CCDECODE C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
16:32:53.0562 3832 CCDECODE - ok
16:32:53.0562 3832 cd20xrnt - ok
16:32:53.0562 3832 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
16:32:53.0578 3832 Cdaudio - ok
16:32:53.0593 3832 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
16:32:53.0593 3832 Cdfs - ok
16:32:53.0609 3832 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
16:32:53.0609 3832 Cdrom - ok
16:32:53.0625 3832 Changer - ok
16:32:53.0640 3832 [ E390DC1D7C461D7D56EC53402F329928 ] CiSvc C:\WINDOWS\system32\cisvc.exe
16:32:53.0640 3832 CiSvc - ok
16:32:53.0640 3832 [ 064507A8DFA8C5C7E2FFDDD3E6F424FA ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
16:32:53.0640 3832 ClipSrv - ok
16:32:53.0687 3832 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 c:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
16:32:53.0703 3832 clr_optimization_v2.0.50727_32 - ok
16:32:53.0718 3832 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
16:32:53.0718 3832 clr_optimization_v4.0.30319_32 - ok
16:32:53.0734 3832 CmdIde - ok
16:32:53.0734 3832 COMSysApp - ok
16:32:53.0750 3832 Cpqarray - ok
16:32:53.0781 3832 [ F3AB0933CBD166D271992F411C27CCAF ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
16:32:53.0781 3832 CryptSvc - ok
16:32:53.0781 3832 dac2w2k - ok
16:32:53.0781 3832 dac960nt - ok
16:32:53.0828 3832 [ C0BD34A62508BA68F146E22CE45919F9 ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
16:32:53.0828 3832 DcomLaunch - ok
16:32:53.0906 3832 [ 92AE26F2CAF4A67E24A0BA6DDF32CC3C ] DfSdkS C:\Program Files\Ashampoo\Ashampoo WinOptimizer 9\DfsdkS.exe
16:32:53.0906 3832 DfSdkS - ok
16:32:53.0906 3832 DgiVecp - ok
16:32:53.0937 3832 [ 8C9A53E285AC5E6704844D0459EC85BE ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
16:32:53.0937 3832 Dhcp - ok
16:32:53.0953 3832 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
16:32:53.0968 3832 Disk - ok
16:32:53.0968 3832 dmadmin - ok
16:32:54.0000 3832 [ DB5FD2BF5B07DC54BFCB3664FF05BD7C ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
16:32:54.0031 3832 dmboot - ok
16:32:54.0062 3832 [ FFF1720AF51171F32F1EAD5CF71F2810 ] dmio C:\WINDOWS\system32\drivers\dmio.sys
16:32:54.0062 3832 dmio - ok
16:32:54.0093 3832 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
16:32:54.0093 3832 dmload - ok
16:32:54.0109 3832 [ 2BFEFE9E865655A76982F050450B9591 ] dmserver C:\WINDOWS\System32\dmserver.dll
16:32:54.0125 3832 dmserver - ok
16:32:54.0140 3832 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
16:32:54.0156 3832 DMusic - ok
16:32:54.0171 3832 [ ADB285644A95431CCEDC7C706090936D ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
16:32:54.0171 3832 Dnscache - ok
16:32:54.0187 3832 [ 4A3E2BD20157A0946751229E92EB8621 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
16:32:54.0187 3832 Dot3svc - ok
16:32:54.0218 3832 [ 3E4B043F8BC6BE1D4820CC6C9C500306 ] dot4 C:\WINDOWS\system32\DRIVERS\Dot4.sys
16:32:54.0234 3832 dot4 - ok
16:32:54.0265 3832 [ 77CE63A8A34AE23D9FE4C7896D1DEBE7 ] Dot4Print C:\WINDOWS\system32\DRIVERS\Dot4Prt.sys
16:32:54.0265 3832 Dot4Print - ok
16:32:54.0281 3832 [ BD05306428DA63369692477DDC0F6F5F ] Dot4Scan C:\WINDOWS\system32\DRIVERS\Dot4Scan.sys
16:32:54.0281 3832 Dot4Scan - ok
16:32:54.0312 3832 [ CCC4092DFC85336F2E1C142483ADEB42 ] dot4usb C:\WINDOWS\system32\DRIVERS\dot4usb.sys
16:32:54.0312 3832 dot4usb - ok
16:32:54.0312 3832 dpti2o - ok
16:32:54.0328 3832 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
16:32:54.0328 3832 drmkaud - ok
16:32:54.0343 3832 [ 8C2B6BBC82AD12CD9A2E73E5DCBBA705 ] eamon C:\WINDOWS\system32\DRIVERS\eamon.sys
16:32:54.0343 3832 eamon - ok
16:32:54.0375 3832 [ 0887D9C2BE8D940778CAD1E3B85F2A41 ] EapHost C:\WINDOWS\System32\eapsvc.dll
16:32:54.0375 3832 EapHost - ok
16:32:54.0390 3832 [ 5412ED24FFFCA64E2F0168399B86C952 ] ehdrv C:\WINDOWS\system32\DRIVERS\ehdrv.sys
16:32:54.0390 3832 ehdrv - ok
16:32:54.0437 3832 [ AD4FAADE819E0DA9933BEA7C01D2C763 ] ekrn C:\Program Files\ESET\ESET Smart Security\ekrn.exe
16:32:54.0453 3832 ekrn - ok
16:32:54.0468 3832 [ 774BABCB1144513DC86992003740B774 ] epfw C:\WINDOWS\system32\DRIVERS\epfw.sys
16:32:54.0468 3832 epfw - ok
16:32:54.0484 3832 [ 4B86DA2C58063B647577CD669CFFAEEB ] Epfwndis C:\WINDOWS\system32\DRIVERS\Epfwndis.sys
16:32:54.0515 3832 Epfwndis - ok
16:32:54.0531 3832 [ 1B36748EA9E25549EBE5D8EA105BD981 ] epfwtdi C:\WINDOWS\system32\DRIVERS\epfwtdi.sys
16:32:54.0546 3832 epfwtdi - ok
16:32:54.0578 3832 [ 3D107D45CCFDB266E91D84B52CD7F430 ] Eventlog C:\WINDOWS\system32\services.exe
16:32:54.0656 3832 Eventlog - ok
16:32:54.0671 3832 [ BE68EA4457E2E5717231CF91BE5448E0 ] EventSystem C:\WINDOWS\system32\es.dll
16:32:54.0687 3832 EventSystem - ok
16:32:54.0687 3832 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
16:32:54.0703 3832 Fastfat - ok
16:32:54.0734 3832 [ EE9A2B9EA968A792A053C9D1A86BF870 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
16:32:54.0734 3832 FastUserSwitchingCompatibility - ok
16:32:54.0750 3832 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys
16:32:54.0750 3832 Fdc - ok
16:32:54.0765 3832 [ AC366695A0796560AA37215AD5762AAF ] Fips C:\WINDOWS\system32\drivers\Fips.sys
16:32:54.0765 3832 Fips - ok
16:32:54.0781 3832 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys
16:32:54.0781 3832 Flpydisk - ok
16:32:54.0812 3832 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\DRIVERS\fltMgr.sys
16:32:54.0812 3832 FltMgr - ok
16:32:54.0828 3832 [ 4BD9964632325802F8DC971F6987CD1B ] FNETTBOH_305 C:\WINDOWS\system32\drivers\FNETTBOH_305.SYS
16:32:54.0828 3832 FNETTBOH_305 - ok
16:32:54.0843 3832 [ 47BDA10316324CFA540F25AB7021F0D8 ] FNETURPX C:\WINDOWS\system32\drivers\FNETURPX.SYS
16:32:54.0843 3832 FNETURPX - ok
16:32:54.0875 3832 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
16:32:54.0875 3832 FontCache3.0.0.0 - ok
16:32:54.0890 3832 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
16:32:54.0906 3832 Fs_Rec - ok
16:32:54.0921 3832 [ 4E664D8541DB4A66B73A24257E322E1F ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
16:32:54.0937 3832 Ftdisk - ok
16:32:54.0953 3832 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
16:32:54.0968 3832 Gpc - ok
16:32:55.0000 3832 [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
16:32:55.0000 3832 HDAudBus - ok
16:32:55.0046 3832 [ FCFE31FB75F8A6295B6B0AF87A626282 ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
16:32:55.0046 3832 helpsvc - ok
16:32:55.0062 3832 HidServ - ok
16:32:55.0078 3832 [ 7A6B320928F86BC851530D63C82965D9 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
16:32:55.0078 3832 hkmsvc - ok
16:32:55.0078 3832 hpn - ok
16:32:55.0109 3832 [ 937031C085718C1C04A9C0864625EC6B ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
16:32:55.0109 3832 HTTP - ok
16:32:55.0140 3832 [ 58FE2F2DA3BC5573F4A35B3760D3125F ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
16:32:55.0140 3832 HTTPFilter - ok
16:32:55.0140 3832 i2omgmt - ok
16:32:55.0156 3832 i2omp - ok
16:32:55.0171 3832 [ C528E27945367191E7BAE364930B6932 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
16:32:55.0171 3832 i8042prt - ok
16:32:55.0218 3832 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
16:32:55.0234 3832 idsvc - ok
16:32:55.0265 3832 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
16:32:55.0281 3832 Imapi - ok
16:32:55.0281 3832 [ F7B93AAFAD33B2320954C17E26C8D361 ] ImapiService C:\WINDOWS\system32\imapi.exe
16:32:55.0296 3832 ImapiService - ok
16:32:55.0296 3832 ini910u - ok
16:32:55.0453 3832 [ 19D3781892A3794672CD1962F3D8D3B8 ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RtkHDAud.sys
16:32:55.0500 3832 IntcAzAudAddService - ok
16:32:55.0500 3832 IntelIde - ok
16:32:55.0515 3832 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
16:32:55.0531 3832 Ip6Fw - ok
16:32:55.0546 3832 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
16:32:55.0546 3832 IpFilterDriver - ok
16:32:55.0562 3832 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
16:32:55.0562 3832 IpInIp - ok
16:32:55.0593 3832 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
16:32:55.0593 3832 IpNat - ok
16:32:55.0593 3832 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
16:32:55.0609 3832 IPSec - ok
16:32:55.0640 3832 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
16:32:55.0640 3832 IRENUM - ok
16:32:55.0656 3832 [ CC9F8A2D60AED1A51A3AC34C59B987AE ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
16:32:55.0671 3832 isapnp - ok
16:32:55.0765 3832 [ CC54FD59486BEF7CE70275FAC2FD9D34 ] JavaQuickStarterService C:\Program Files\Java\jre7\bin\jqs.exe
16:32:55.0765 3832 JavaQuickStarterService - ok
16:32:55.0796 3832 [ 1B6162FE7F66B1A71A4B70F941C4AA9B ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
16:32:55.0796 3832 Kbdclass - ok
16:32:55.0812 3832 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
16:32:55.0828 3832 kmixer - ok
16:32:55.0843 3832 [ C6EBF1D6AD71DF30DB49B8D3287E1368 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
16:32:55.0843 3832 KSecDD - ok
16:32:55.0875 3832 [ 111A41B749F0E8CD7566B4FFD613CFFE ] LanmanServer C:\WINDOWS\System32\srvsvc.dll
16:32:55.0875 3832 LanmanServer - ok
16:32:55.0906 3832 [ 9A2E7EE3989AAC0079E9D23555545D52 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
16:32:55.0906 3832 lanmanworkstation - ok
16:32:55.0906 3832 lbrtfdc - ok
16:32:55.0937 3832 [ 1307C0131756A1160B1821CE8293FE64 ] LiveTunerPM C:\Program Files\Ashampoo\Ashampoo WinOptimizer 9\LiveTunerProcessMonitor32.sys
16:32:55.0937 3832 LiveTunerPM - ok
16:32:55.0953 3832 [ 0AB159F536E3E8F7F07113702A07CCA5 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
16:32:55.0953 3832 LmHosts - ok
16:32:55.0968 3832 [ 500D089CE760D83DA2B6CBA681AA9949 ] MBAMProtector C:\WINDOWS\system32\drivers\mbam.sys
16:32:55.0968 3832 MBAMProtector - ok
16:32:56.0015 3832 [ 85B16A92B117A5A800032ECD904B86DB ] MBAMScheduler C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
16:32:56.0015 3832 MBAMScheduler - ok
16:32:56.0046 3832 [ 20E2469DB709FC675E655CEAA11BE312 ] MBAMService C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
16:32:56.0062 3832 MBAMService - ok
16:32:56.0093 3832 [ 44032B0C6D9954D3FD26438330B99EE7 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
16:32:56.0093 3832 Modem - ok
16:32:56.0109 3832 [ 4CB582831DBDE63CE43B45D771218374 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
16:32:56.0109 3832 Mouclass - ok
16:32:56.0125 3832 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
16:32:56.0125 3832 MountMgr - ok
16:32:56.0203 3832 [ 51A84B690DF519DCF656F780243D953E ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
16:32:56.0218 3832 MozillaMaintenance - ok
16:32:56.0218 3832 mraid35x - ok
16:32:56.0265 3832 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
16:32:56.0265 3832 MRxDAV - ok
16:32:56.0328 3832 [ FB2FCCC70F7174C7BF64F48E96D3ADF4 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
16:32:56.0343 3832 MRxSmb - ok
16:32:56.0375 3832 [ 6DB4D1521CABA9A5FFAB54ADE0AE867D ] MSDTC C:\WINDOWS\system32\msdtc.exe
16:32:56.0375 3832 MSDTC - ok
16:32:56.0421 3832 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
16:32:56.0421 3832 Msfs - ok
16:32:56.0421 3832 MSIServer - ok
16:32:56.0437 3832 MSI_MSIBIOS_010507 - ok
16:32:56.0453 3832 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
16:32:56.0453 3832 MSKSSRV - ok
16:32:56.0468 3832 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
16:32:56.0468 3832 MSPCLOCK - ok
16:32:56.0484 3832 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
16:32:56.0484 3832 MSPQM - ok
16:32:56.0500 3832 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
16:32:56.0500 3832 mssmbios - ok
16:32:56.0546 3832 [ E53736A9E30C45FA9E7B5EAC55056D1D ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys
16:32:56.0546 3832 MSTEE - ok
16:32:56.0562 3832 [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
16:32:56.0578 3832 Mup - ok
16:32:56.0593 3832 [ 5B50F1B2A2ED47D560577B221DA734DB ] NABTSFEC C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
16:32:56.0593 3832 NABTSFEC - ok
16:32:56.0625 3832 [ 6EA362E9DB03D44F6B996F4D8BE237E9 ] napagent C:\WINDOWS\System32\qagentrt.dll
16:32:56.0625 3832 napagent - ok
16:32:56.0640 3832 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
16:32:56.0656 3832 NDIS - ok
16:32:56.0671 3832 [ 7FF1F1FD8609C149AA432F95A8163D97 ] NdisIP C:\WINDOWS\system32\DRIVERS\NdisIP.sys
16:32:56.0671 3832 NdisIP - ok
16:32:56.0687 3832 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
16:32:56.0687 3832 NdisTapi - ok
16:32:56.0703 3832 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
16:32:56.0703 3832 Ndisuio - ok
16:32:56.0718 3832 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
16:32:56.0718 3832 NdisWan - ok
16:32:56.0750 3832 [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
16:32:56.0750 3832 NDProxy - ok
16:32:56.0765 3832 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
16:32:56.0765 3832 NetBIOS - ok
16:32:56.0781 3832 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
16:32:56.0781 3832 NetBT - ok
16:32:56.0812 3832 [ 933DE774986EC85E48210C44AB431DE6 ] NetDDE C:\WINDOWS\system32\netdde.exe
16:32:56.0812 3832 NetDDE - ok
16:32:56.0812 3832 [ 933DE774986EC85E48210C44AB431DE6 ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
16:32:56.0812 3832 NetDDEdsdm - ok
16:32:56.0843 3832 [ ED0A176354487CEED65B80A7148AB739 ] Netlogon C:\WINDOWS\system32\lsass.exe
16:32:56.0843 3832 Netlogon - ok
16:32:56.0859 3832 [ 72E1E9E2977BE08BDEEDB6D8FD9D4D40 ] Netman C:\WINDOWS\System32\netman.dll
16:32:56.0875 3832 Netman - ok
16:32:56.0906 3832 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
16:32:56.0953 3832 NetTcpPortSharing - ok
16:32:57.0031 3832 [ 318268162EB9646F7F30B441273F143B ] NitroDriverReadSpool C:\Program Files\Nitro PDF\Professional\NitroPDFDriverService.exe
16:32:57.0203 3832 NitroDriverReadSpool - ok
16:32:57.0265 3832 [ B6CEC406351EA5EF131416D5F52D006F ] Nla C:\WINDOWS\System32\mswsock.dll
16:32:57.0265 3832 Nla - ok
16:32:57.0281 3832 [ 23688F610A5A16DD8B4D93D2F7BD44F6 ] nlsX86cc C:\WINDOWS\system32\NLSSRV32.EXE
16:32:57.0281 3832 nlsX86cc - ok
16:32:57.0328 3832 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
16:32:57.0328 3832 Npfs - ok
16:32:57.0359 3832 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
16:32:57.0375 3832 Ntfs - ok
16:32:57.0375 3832 NTIOLib_1_0_4 - ok
16:32:57.0390 3832 [ ED0A176354487CEED65B80A7148AB739 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
16:32:57.0390 3832 NtLmSsp - ok
16:32:57.0421 3832 [ 023DD70573D644F3D9C8B1258A7BFD08 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
16:32:57.0437 3832 NtmsSvc - ok
16:32:57.0468 3832 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
16:32:57.0468 3832 Null - ok
16:32:57.0703 3832 [ 02E3A5CF6DE77DBA144550FD1C4A4CD9 ] nv C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
16:32:57.0984 3832 nv - ok
16:32:58.0031 3832 [ C03E15101F6D9E82CD9B0E7D715F5DE3 ] nvatabus C:\WINDOWS\system32\drivers\nvatabus.sys
16:32:58.0031 3832 nvatabus - ok
16:32:58.0062 3832 [ 70217A23470F4BB4C8FB4ABE06813081 ] NVENETFD C:\WINDOWS\system32\DRIVERS\NVENETFD.sys
16:32:58.0062 3832 NVENETFD - ok
16:32:58.0078 3832 [ EA98BFE4931BD13D747D647C1859796E ] nvgts C:\WINDOWS\system32\DRIVERS\nvgts.sys
16:32:58.0078 3832 nvgts - ok
16:32:58.0125 3832 [ BE8513730653384939A4D2D977C81027 ] nvnetbus C:\WINDOWS\system32\DRIVERS\nvnetbus.sys
16:32:58.0125 3832 nvnetbus - ok
16:32:58.0140 3832 [ 679B4BD1152079FB65F4A28D7E3BD5D8 ] NVSvc C:\WINDOWS\system32\nvsvc32.exe
16:32:58.0140 3832 NVSvc - ok
16:32:58.0171 3832 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
16:32:58.0171 3832 NwlnkFlt - ok
16:32:58.0171 3832 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
16:32:58.0203 3832 NwlnkFwd - ok
16:32:58.0250 3832 [ 46F8DB73B4A53E543F8E371DC7C75BAE ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
16:32:58.0250 3832 Parport - ok
16:32:58.0296 3832 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
16:32:58.0296 3832 PartMgr - ok
16:32:58.0312 3832 [ 1FAE19D0457176318BBA4A8795656EBC ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
16:32:58.0312 3832 ParVdm - ok
16:32:58.0359 3832 [ 6CE351D149CB4BEFC702951E471E1730 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
16:32:58.0359 3832 PCI - ok
16:32:58.0359 3832 PCIDump - ok
16:32:58.0437 3832 [ 2DA4EC85E0EA7A45C6B2A05820492D5A ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
16:32:58.0437 3832 PCIIde - ok
16:32:58.0453 3832 [ 4FC31E6C19A5CE5198B1ABFF94CAE758 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
16:32:58.0453 3832 Pcmcia - ok
16:32:58.0484 3832 PDCOMP - ok
16:32:58.0484 3832 PDFRAME - ok
16:32:58.0500 3832 PDRELI - ok
16:32:58.0500 3832 PDRFRAME - ok
16:32:58.0531 3832 perc2 - ok
16:32:58.0546 3832 perc2hib - ok
16:32:58.0578 3832 [ 3D107D45CCFDB266E91D84B52CD7F430 ] PlugPlay C:\WINDOWS\system32\services.exe
16:32:58.0578 3832 PlugPlay - ok
16:32:58.0593 3832 [ ED0A176354487CEED65B80A7148AB739 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
16:32:58.0593 3832 PolicyAgent - ok
16:32:58.0640 3832 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
16:32:58.0640 3832 PptpMiniport - ok
16:32:58.0671 3832 [ 7EB15DCE4EC3A0220BD796A15C18186E ] Processor C:\WINDOWS\system32\DRIVERS\processr.sys
16:32:58.0671 3832 Processor - ok
16:32:58.0687 3832 [ ED0A176354487CEED65B80A7148AB739 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
16:32:58.0687 3832 ProtectedStorage - ok
16:32:58.0687 3832 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
16:32:58.0718 3832 PSched - ok
16:32:58.0734 3832 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
16:32:58.0734 3832 Ptilink - ok
16:32:58.0781 3832 [ E42E3433DBB4CFFE8FDD91EAB29AEA8E ] PxHelp20 C:\WINDOWS\system32\Drivers\PxHelp20.sys
16:32:58.0781 3832 PxHelp20 - ok
16:32:58.0796 3832 ql1080 - ok
16:32:58.0812 3832 Ql10wnt - ok
16:32:58.0828 3832 ql12160 - ok
16:32:58.0843 3832 ql1240 - ok
16:32:58.0859 3832 ql1280 - ok
16:32:58.0906 3832 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
16:32:58.0906 3832 RasAcd - ok
16:32:58.0921 3832 [ 2B5E44EA009F2F374B980E1E9A70635D ] RasAuto C:\WINDOWS\System32\rasauto.dll
16:32:58.0921 3832 RasAuto - ok
16:32:58.0921 3832 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
16:32:58.0937 3832 Rasl2tp - ok
16:32:58.0953 3832 [ D57554C664B64604BD1EE13EA2C07E77 ] RasMan C:\WINDOWS\System32\rasmans.dll
16:32:58.0953 3832 RasMan - ok
16:32:58.0968 3832 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
16:32:59.0000 3832 RasPppoe - ok
16:32:59.0000 3832 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
16:32:59.0015 3832 Raspti - ok
16:32:59.0046 3832 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
16:32:59.0046 3832 Rdbss - ok
16:32:59.0062 3832 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
16:32:59.0062 3832 RDPCDD - ok
16:32:59.0093 3832 [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
16:32:59.0109 3832 rdpdr - ok
16:32:59.0125 3832 [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
16:32:59.0140 3832 RDPWD - ok
16:32:59.0171 3832 [ C0D9D9711CB74EE9BC66353D8CBDAB0E ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
16:32:59.0171 3832 RDSessMgr - ok
16:32:59.0234 3832 [ A0FF419B61AE47E26ADF3BB15DB4F2FE ] RealNetworks Downloader Resolver Service C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe
16:32:59.0234 3832 RealNetworks Downloader Resolver Service - ok
16:32:59.0281 3832 [ 611BFD220305BE3A85AE876EA47D4AA5 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
16:32:59.0281 3832 redbook - ok
16:32:59.0328 3832 [ 127C26B5371651043450E52542099ABA ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
16:32:59.0328 3832 RemoteAccess - ok
16:32:59.0343 3832 [ 718B3BDC0BC3C2F7D065A53D26202AF9 ] RpcLocator C:\WINDOWS\system32\locator.exe
16:32:59.0343 3832 RpcLocator - ok
16:32:59.0359 3832 [ C0BD34A62508BA68F146E22CE45919F9 ] RpcSs C:\WINDOWS\system32\rpcss.dll
16:32:59.0375 3832 RpcSs - ok
16:32:59.0390 3832 [ 09AB2E71E58B078038E3BFDBA7FFC984 ] RSVP C:\WINDOWS\system32\rsvp.exe
16:32:59.0390 3832 RSVP - ok
16:32:59.0406 3832 [ ED0A176354487CEED65B80A7148AB739 ] SamSs C:\WINDOWS\system32\lsass.exe
16:32:59.0406 3832 SamSs - ok
16:32:59.0437 3832 [ 410046E401EB11E1E6749E9DEEA41D4A ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
16:32:59.0437 3832 SCardSvr - ok
16:32:59.0468 3832 [ 3FF232A7731621B8902D81D42418C93C ] Schedule C:\WINDOWS\system32\schedsvc.dll
16:32:59.0468 3832 Schedule - ok
16:32:59.0484 3832 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
16:32:59.0484 3832 Secdrv - ok
16:32:59.0515 3832 [ 477E2C3CC5E4A0D635BCB0EA8DCAC3C6 ] seclogon C:\WINDOWS\System32\seclogon.dll
16:32:59.0515 3832 seclogon - ok
16:32:59.0531 3832 [ A530B75C10C23C9AB28FDB6CE719E21F ] SENS C:\WINDOWS\system32\sens.dll
16:32:59.0531 3832 SENS - ok
16:32:59.0546 3832 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
16:32:59.0546 3832 serenum - ok
16:32:59.0562 3832 [ B842729337C9B921615C40D3C1A1AF96 ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
16:32:59.0562 3832 Serial - ok
16:32:59.0609 3832 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
16:32:59.0609 3832 Sfloppy - ok
16:32:59.0625 3832 [ F58FACA9621D2DB01BD0927D9A0A208E ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
16:32:59.0640 3832 SharedAccess - ok
16:32:59.0656 3832 [ EE9A2B9EA968A792A053C9D1A86BF870 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
16:32:59.0671 3832 ShellHWDetection - ok
16:32:59.0671 3832 Simbad - ok
16:32:59.0718 3832 [ 866D538EBE33709A5C9F5C62B73B7D14 ] SLIP C:\WINDOWS\system32\DRIVERS\SLIP.sys
16:32:59.0718 3832 SLIP - ok
16:32:59.0734 3832 Sparrow - ok
16:32:59.0750 3832 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
16:32:59.0750 3832 splitter - ok
16:32:59.0765 3832 [ 258DD5D4283FD9F9A7166BE9AE45CE73 ] Spooler C:\WINDOWS\system32\spoolsv.exe
16:32:59.0781 3832 Spooler - ok
16:32:59.0781 3832 [ 94610C8653635E4459316A0050D55CE7 ] Sr C:\WINDOWS\system32\DRIVERS\sr.sys
16:32:59.0781 3832 Sr - ok
16:32:59.0828 3832 [ 35B91147124F64AC8081A2EDB9EA4DEE ] srservice C:\WINDOWS\system32\srsvc.dll
16:32:59.0828 3832 srservice - ok
16:32:59.0859 3832 [ 9B390283569EA58D43D2586032B892F5 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
16:32:59.0875 3832 Srv - ok
16:32:59.0890 3832 [ BECD5271DC4E3B7C3D035F790FCBC1E5 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
16:32:59.0890 3832 SSDPSRV - ok
16:32:59.0890 3832 SSPORT - ok
16:32:59.0921 3832 [ C1CDD9275F6A115BB0AE1D55D8D27BA6 ] stisvc C:\WINDOWS\system32\wiaservc.dll
16:32:59.0937 3832 stisvc - ok
16:32:59.0968 3832 [ 77813007BA6265C4B6098187E6ED79D2 ] streamip C:\WINDOWS\system32\DRIVERS\StreamIP.sys
16:32:59.0984 3832 streamip - ok
16:33:00.0000 3832 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
16:33:00.0015 3832 swenum - ok
16:33:00.0031 3832 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
16:33:00.0046 3832 swmidi - ok
16:33:00.0046 3832 SwPrv - ok
16:33:00.0062 3832 symc810 - ok
16:33:00.0062 3832 symc8xx - ok
16:33:00.0078 3832 sym_hi - ok
16:33:00.0093 3832 sym_u3 - ok
16:33:00.0109 3832 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
16:33:00.0109 3832 sysaudio - ok
16:33:00.0125 3832 [ CE06F01B88ACE199A1BF460CAC29C110 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
16:33:00.0125 3832 SysmonLog - ok
16:33:00.0140 3832 [ C2546CD7A398476F9DF5614B2AE160E8 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
16:33:00.0156 3832 TapiSrv - ok
16:33:00.0187 3832 [ AD978A1B783B5719720CFF204B666C8E ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
16:33:00.0203 3832 Tcpip - ok
16:33:00.0218 3832 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
16:33:00.0234 3832 TDPIPE - ok
16:33:00.0250 3832 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
16:33:00.0250 3832 TDTCP - ok
16:33:00.0281 3832 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
16:33:00.0281 3832 TermDD - ok
16:33:00.0296 3832 [ A75DD6FC3DBEE4FFF5EBC9F2C28BB66E ] TermService C:\WINDOWS\System32\termsrv.dll
16:33:00.0312 3832 TermService - ok
16:33:00.0343 3832 [ EE9A2B9EA968A792A053C9D1A86BF870 ] Themes C:\WINDOWS\System32\shsvcs.dll
16:33:00.0343 3832 Themes - ok
16:33:00.0375 3832 [ CD0CC7B167D78043A41C98D4921EFB54 ] TlntSvr C:\WINDOWS\system32\tlntsvr.exe
16:33:00.0375 3832 TlntSvr - ok
16:33:00.0375 3832 TosIde - ok
16:33:00.0390 3832 [ 38853304CCB938D30E0C4CDE8D2C2A8A ] TrkWks C:\WINDOWS\system32\trkwks.dll
16:33:00.0421 3832 TrkWks - ok
16:33:00.0437 3832 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
16:33:00.0437 3832 Udfs - ok
16:33:00.0453 3832 ultra - ok
16:33:00.0500 3832 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
16:33:00.0500 3832 Update - ok
16:33:00.0531 3832 [ 651BD90DCEE5B7BDC74A2EB7C9266F9E ] upnphost C:\WINDOWS\System32\upnphost.dll
16:33:00.0531 3832 upnphost - ok
16:33:00.0562 3832 [ 20A0F6A11959E92908717D09E87D670D ] UPS C:\WINDOWS\System32\ups.exe
16:33:00.0562 3832 UPS - ok
16:33:00.0609 3832 [ E919708DB44ED8543A7C017953148330 ] usbaudio C:\WINDOWS\system32\drivers\usbaudio.sys
16:33:00.0609 3832 usbaudio - ok
16:33:00.0609 3832 usbcamcl - ok
16:33:00.0625 3832 [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
16:33:00.0625 3832 usbccgp - ok
16:33:00.0656 3832 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
16:33:00.0656 3832 usbehci - ok
16:33:00.0671 3832 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
16:33:00.0671 3832 usbhub - ok
16:33:00.0703 3832 [ 0DAECCE65366EA32B162F85F07C6753B ] usbohci C:\WINDOWS\system32\DRIVERS\usbohci.sys
16:33:00.0703 3832 usbohci - ok
16:33:00.0781 3832 [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
16:33:00.0781 3832 usbscan - ok
16:33:00.0796 3832 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
16:33:00.0812 3832 USBSTOR - ok
16:33:00.0843 3832 [ 63BBFCA7F390F4C49ED4B96BFB1633E0 ] usbvideo C:\WINDOWS\system32\Drivers\usbvideo.sys
16:33:00.0843 3832 usbvideo - ok
16:33:00.0859 3832 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
16:33:00.0875 3832 VgaSave - ok
16:33:00.0890 3832 ViaIde - ok
16:33:00.0906 3832 [ 28A4B296B47782173C346E376CB374D1 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
16:33:00.0906 3832 VolSnap - ok
16:33:00.0921 3832 [ D6BA1A63D9E00933F1CD2A885573AFB2 ] VSS C:\WINDOWS\System32\vssvc.exe
16:33:00.0921 3832 VSS - ok
16:33:00.0937 3832 [ FA4E1CDBA256787F2149F4AAD07BC91F ] W32Time C:\WINDOWS\system32\w32time.dll
16:33:00.0953 3832 W32Time - ok
16:33:00.0968 3832 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
16:33:00.0968 3832 Wanarp - ok
16:33:00.0968 3832 WDICA - ok
16:33:01.0000 3832 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
16:33:01.0000 3832 wdmaud - ok
16:33:01.0015 3832 [ 47AE51048A82DFA1CD6B51D369F7E169 ] WebClient C:\WINDOWS\System32\webclnt.dll
16:33:01.0015 3832 WebClient - ok
16:33:01.0078 3832 [ E488332126E3B1182D2B8A0C35408EC6 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
16:33:01.0078 3832 winmgmt - ok
16:33:01.0140 3832 [ 4D34CEDD74BDBF2B6A935EAE3BF80543 ] WinRM C:\WINDOWS\system32\WsmSvc.dll
16:33:01.0171 3832 WinRM - ok
16:33:01.0187 3832 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINDOWS\system32\mspmsnsv.dll
16:33:01.0203 3832 WmdmPmSN - ok
16:33:01.0265 3832 [ 5975317DFD597A03F4DF14CF3A1C1521 ] Wmi C:\WINDOWS\System32\advapi32.dll
16:33:01.0265 3832 Wmi - ok
16:33:01.0296 3832 [ 23F6F03272F7E5679F1F050AED5ACEE6 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
16:33:01.0296 3832 WmiApSrv - ok
16:33:01.0328 3832 [ 94D96F43F7FBECDDEB6D7837FF375611 ] WO_LiveService C:\Program Files\Ashampoo\Ashampoo WinOptimizer 9\LiveTunerService.exe
16:33:01.0343 3832 WO_LiveService - ok
16:33:01.0421 3832 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
16:33:01.0437 3832 WPFFontCache_v0400 - ok
16:33:01.0453 3832 WSearch - ok
16:33:01.0468 3832 [ C98B39829C2BBD34E454150633C62C78 ] WSTCODEC C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
16:33:01.0468 3832 WSTCODEC - ok
16:33:01.0500 3832 [ C1364564800EE9784192145324A23308 ] wuauserv C:\WINDOWS\system32\wuauserv.dll
16:33:01.0500 3832 wuauserv - ok
16:33:01.0531 3832 [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
16:33:01.0531 3832 WudfPf - ok
16:33:01.0546 3832 [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
16:33:01.0546 3832 WudfRd - ok
16:33:01.0578 3832 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
16:33:01.0578 3832 WudfSvc - ok
16:33:01.0609 3832 [ A27D4BA7264C0BF52F32D10405BEA1D4 ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
16:33:01.0609 3832 WZCSVC - ok
16:33:01.0640 3832 [ EAA4BB9EDB3FB10CF8979FE65E63658F ] xmlprov C:\WINDOWS\System32\xmlprov.dll
16:33:01.0640 3832 xmlprov - ok
16:33:01.0640 3832 ================ Scan global ===============================
16:33:01.0671 3832 [ F36278E42C8C5DF03CE17DAC8231C91C ] C:\WINDOWS\system32\basesrv.dll
16:33:01.0703 3832 [ 4FC123A5B7D8F5A9511CFF7B98F9596B ] C:\WINDOWS\system32\winsrv.dll
16:33:01.0734 3832 [ 4FC123A5B7D8F5A9511CFF7B98F9596B ] C:\WINDOWS\system32\winsrv.dll
16:33:01.0750 3832 [ 3D107D45CCFDB266E91D84B52CD7F430 ] C:\WINDOWS\system32\services.exe
16:33:01.0750 3832 [Global] - ok
16:33:01.0765 3832 ================ Scan MBR ==================================
16:33:01.0781 3832 [ 413FC2A0C716421B3158746D63736515 ] \Device\Harddisk0\DR0
16:33:01.0968 3832 \Device\Harddisk0\DR0 - ok
16:33:01.0968 3832 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk1\DR1
16:33:02.0250 3832 \Device\Harddisk1\DR1 - ok
16:33:02.0250 3832 ================ Scan VBR ==================================
16:33:02.0250 3832 [ DCB6F830EFC1C8ED03837684FF9996B8 ] \Device\Harddisk0\DR0\Partition1
16:33:02.0250 3832 \Device\Harddisk0\DR0\Partition1 - ok
16:33:02.0281 3832 [ 334B6194B047BD351432E6A04A6EBEA3 ] \Device\Harddisk0\DR0\Partition2
16:33:02.0281 3832 \Device\Harddisk0\DR0\Partition2 - ok
16:33:02.0281 3832 [ C7F5E7D5D6118FED1CF7396063FB6F17 ] \Device\Harddisk1\DR1\Partition1
16:33:02.0281 3832 \Device\Harddisk1\DR1\Partition1 - ok
16:33:02.0296 3832 [ 82372493E3C3BF7E6EA7E296251FE90D ] \Device\Harddisk1\DR1\Partition2
16:33:02.0296 3832 \Device\Harddisk1\DR1\Partition2 - ok
16:33:02.0296 3832 ============================================================
16:33:02.0296 3832 Scan finished
16:33:02.0296 3832 ============================================================
16:33:02.0312 2548 Detected object count: 0
16:33:02.0312 2548 Actual detected object count: 0

Stiahnes MBRScan
http://eric71.geekstogo.com/tools/MbrScan.exe

Uloz na plochu
Ak pouzivate Win Vista ci W7, kliknete na MBRScan pravym a daj Run As Administrator ci Spustiť ako správca
Kliknete na Report
Po chvíľke sa objaví log do súboru MBRScan.txt, ten sem vloz

takéto niečo?

Ok, zatial to uz vyzera dobre, este das jeden log, a to z Combofix
Navod.
http://www.bleepingcomputer.com/combofi ... t-combofix