prosim o pomoc s odstranenin viru Win32/Olmarik.TDL4.trojan

[imprezion]

Zdravim,
NOD32 mi nasiel v operacnej pamati virus Win32/Olmarik.TDL4.trojan a pise ze ho nemoze odstranit.
Myslim ze mi uz napachal dost skody - (pravdepodobne) vymazal vsetky multimedialne subory (nastastie uspesne obnovene) + momentalne mam problem s ovladacmi grafickej karty (hlasi Catalyst control center: Host application přestal pracovat)
Chcel by som poprosit o pomoc s jeho vymazanim.
System je Windows 7 64bit

prikladam log z HijackThis v2.0.4:

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:59:37, on 15/10/2011
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16839)
Boot mode: Normal

Running processes:
C:\Program Files\Sony\VAIO Care\VCSpt.exe
C:\Program Files (x86)\Sony\Media Gallery\ElbServer.exe
C:\Program Files (x86)\Sony\Media Gallery\VRLPHelper.exe
C:\Program Files (x86)\uTorrent\uTorrent.exe
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
C:\Program Files (x86)\OLYMPUS\OLYMPUS Master 2\MMonitor.exe
C:\Program Files (x86)\Samsung\Samsung New PC Studio\NPSAgent.exe
C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Windows\SysWOW64\RunDll32.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SHTtray.exe
C:\Program Files (x86)\Winamp\winampa.exe
C:\Program Files (x86)\ScanSoft\OmniPageSE4\OpWareSE4.exe
C:\Program Files (x86)\QuickTime\qttask.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe
C:\Program Files\Sony\VAIO Personalization Manager\VpmIfPav.exe
C:\Program Files\Sony\VAIO Care\listener.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
C:\Program Files (x86)\Winamp\winamp.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe
C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://start.icq.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.7.6406.1642\swg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [ISBMgr.exe] "C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [Norton Online Backup] C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe
O4 - HKLM\..\Run: [PMBVolumeWatcher] C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [SHTtray.exe] C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SHTtray.exe
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files (x86)\Winamp\winampa.exe"
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [SSBkgdUpdate] "C:\Program Files (x86)\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
O4 - HKLM\..\Run: [OpwareSE4] "C:\Program Files (x86)\ScanSoft\OmniPageSE4\OpwareSE4.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [ApnUpdater] "C:\Program Files (x86)\Ask.com\Updater\Updater.exe"
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKCU\..\Run: [Elbserver] C:\Program Files (x86)\Sony\Media Gallery\ElbServer.exe /Stay
O4 - HKCU\..\Run: [VRLPHelper] C:\Program Files (x86)\Sony\Media Gallery\VRLPHelper.exe /Stay
O4 - HKCU\..\Run: [uTorrent] "C:\Program Files (x86)\uTorrent\uTorrent.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [OM2_Monitor] "C:\Program Files (x86)\OLYMPUS\OLYMPUS Master 2\MMonitor.exe"
O4 - HKCU\..\Run: [AutoStartNPSAgent] C:\Program Files (x86)\Samsung\Samsung New PC Studio\NPSAgent.exe
O4 - HKCU\..\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - Global Startup: Bluetooth.lnk = ?
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: ICQ7.4 - {73C6DCFB-B606-47F3-BDFA-9A4FBF931E37} - C:\Program Files (x86)\ICQ7.4\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.4 - {73C6DCFB-B606-47F3-BDFA-9A4FBF931E37} - C:\Program Files (x86)\ICQ7.4\ICQ.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O9 - Extra button: Add to Evernote - {E0B8C461-F8FB-49b4-8373-FE32E92528A6} - C:\Program Files (x86)\Evernote\Evernote3.5\enbar.dll
O9 - Extra 'Tools' menuitem: Add to Evernote - {E0B8C461-F8FB-49b4-8373-FE32E92528A6} - C:\Program Files (x86)\Evernote\Evernote3.5\enbar.dll
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: Adobe Active File Monitor V8 (AdobeActiveFileMonitor8.0) - Adobe Systems Incorporated - C:\Program Files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: PIXMA Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @C:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Norton Online Backup (NOBU) - Symantec Corporation - C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe
O23 - Service: PMBDeviceInfoProvider - Sony Corporation - C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: VAIO Care Performance Service (SampleCollector) - Sony Corporation - C:\Program Files\Sony\VAIO Care\VCPerfService.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia. - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: VAIO Media plus Content Importer (SOHCImp) - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe
O23 - Service: VAIO Media plus Digital Media Server (SOHDms) - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDms.exe
O23 - Service: VAIO Media plus Device Searcher (SOHDs) - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe
O23 - Service: VAIO Entertainment Common Service (SpfService) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\SPF\SpfService64.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: CamMonitor (uCamMonitor) - ArcSoft, Inc. - C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: VAIO Event Service - Sony Corporation - C:\Program Files (x86)\Sony\VAIO Event Service\VESMgr.exe
O23 - Service: VAIO Power Management - Sony Corporation - C:\Program Files\Sony\VAIO Power Management\SPMService.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: VAIO Content Folder Watcher (VCFw) - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe
O23 - Service: VAIO Content Metadata Intelligent Analyzing Manager (VcmIAlzMgr) - Sony Corporation - C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe
O23 - Service: VAIO Content Metadata Intelligent Network Service Manager (VcmINSMgr) - Sony Corporation - C:\Program Files\Sony\VCM Intelligent Network Service Manager\VcmINSMgr.exe
O23 - Service: VAIO Content Metadata XML Interface (VcmXmlIfHelper) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper64.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: VSNService - Sony Corporation - C:\Program Files\Sony\VAIO Smart Network\VSNService.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: VUAgent - Sony Corporation - C:\Program Files\Sony\VAIO Update Common\VUAgent.exe
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 15065 bytes

[Reklama]

[jaro3]

Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
-Když používáš Firefox (Mozzila), klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
-Když používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected. Poté klikni na Main (hlavní stránku ) a klikni na Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranění historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit dočasné soubory Windows, vysypat koš atd.

Stáhni si Malwarebytes' Anti-Malware
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Aktualizace Malwarebytes' Anti-Malware a Spustit aplikaci Malwarebytes' Anti-Malware, pokud jo tak klikni na tlačítko konec
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a nech vybranou možnost Provést rychlý sken a klikni na tlačítko Skenovat
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Zobrazit výsledky
- pak zvol možnost uložit log a ulož si log na plochu
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(zatím nic nemaž!).
Vlož sem pak obsah toho logu.

Pokud budou problémy , spusť v nouz. režimu.

[imprezion]

Takze ATF cleaner som spustil podla instrukcii.
Bohuzial niektore stranky na Firefoxe sa mi teraz ukazuju v divnom zobrazeni (rozliseni?), neviete ako to nastavim spat?

Takisto som vykonal sken pomocou Malwarebytes' Anti-Malware no hlaska s trojanom mi tam stale vyskakuje.

log z Malwarebytes' Anti-Malware:

Malwarebytes' Anti-Malware 1.51.2.1300
www.malwarebytes.org

Verze databáze: 7952

Windows 6.1.7600
Internet Explorer 8.0.7600.16385

15/10/2011 13:57:34
mbam-log-2011-10-15 (13-57-34).txt

Typ: Rychlá kontrola
Kontrolované objekty: 184981
Uplynulý èas: 2 minut, 23 sekund

Infikované procesy v pamìti: 0
Infikované moduly v pamìti: 0
Infikované klíèe v registru: 0
Infikované hodnoty v registru: 0
Infikované datové položky v registru: 0
Infikované složky: 0
Infikované soubory: 0

Infikované procesy v pamìti:
(Žádné škodlivé položky nebyly zjištìny)

Infikované moduly v pamìti:
(Žádné škodlivé položky nebyly zjištìny)

Infikované klíèe v registru:
(Žádné škodlivé položky nebyly zjištìny)

Infikované hodnoty v registru:
(Žádné škodlivé položky nebyly zjištìny)

Infikované datové položky v registru:
(Žádné škodlivé položky nebyly zjištìny)

Infikované složky:
(Žádné škodlivé položky nebyly zjištìny)

Infikované soubory:
(Žádné škodlivé položky nebyly zjištìny)

[jaro3]

Vypni rez. ochranu u antiviru a antispywaru,příp. firewall..

Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
Pokud budou problémy , spusť ho v nouz. režimu.

Upozornění : Může se stát, že po aplikaci Combofixu a restartu počítače, Windows nenaběhnou , nebo nenajede plocha , budou problémy s připojením, pak znovu restartuj počítač, pokud to nepomůže , po restartu mačkej klávesu F8 a pak zvol poslední známou funkční konfiguraci. , či použij bod obnovy.

[imprezion]

Zdravim,

Combofix uz som skusal a bohuzial to nepomohlo..
Nejaka ina moznost?

[guest]

Udělej co ti píšou, CF sám od sebe mnoho neudělá, to musí udělat někdo kdo CF rozumí.

Combo Fix bys sám vůbec neměl používat - pokud mu tedy nerozumíš.

[bledulka]

Ahoj,
pokud jsi zkoušel combofix ted, když máš tento problém, vlož sem log z něj.
Máš rootkita v mbr sektoru, toho málokdy odstraní combofix automaticky..na to jsou speciální programy.



Stáhni TDSSKiller http://support.kaspersky.com/downloads/ ... killer.exe
- ulož ho na plochu a 2x klikni na ikonu programu a spusť
- dej volbu Spustit kontrolu - pak potvrd start sken
- pokud program najde infikovaný soubor, ukáže se předvolená akce Cure, v tom případě potvrd tlačítko Continue
- když bude chtít program restartovat počítač, klikni na tlačítko Reboot Now
- pokud si restart nevyžádá, klikni na tlačítko Report. Měl by vyskoč

[imprezion]

Dobry vecer,
nemusite sa bat, sam by som Combofix urcite nepouzival..
Uz som to skusal na vasom konkurencnom portali a tam mi odporucili log z CF ale nepomohlo to.

Posledny log z CF:

ComboFix 11-10-09.01 - admin 10/10/2011 21:48:13.4.2 - x64
Microsoft Windows 7 Home Premium 6.1.7600.0.1252.44.1029.18.3950.2547 [GMT 2:00]
Running from: C:\Users\admin\Desktop\Downloads\ComboFix.exe
Command switches used :: C:\Users\admin\Desktop\CFScript.txt
AV: ESET NOD32 Antivirus 4.2 *Disabled/Updated* {77DEAFED-8149-104B-25A1-21771CA47CD1}
SP: ESET NOD32 Antivirus 4.2 *Disabled/Updated* {CCBF4E09-A773-1FC5-1F11-1A056723366C}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}


((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))


c:\program files (x86)\Ask.com
c:\program files (x86)\Ask.com\assets\oobe\b.png
c:\program files (x86)\Ask.com\assets\oobe\bl.png
c:\program files (x86)\Ask.com\assets\oobe\br.png
c:\program files (x86)\Ask.com\assets\oobe\l.png
c:\program files (x86)\Ask.com\assets\oobe\pointer.png
c:\program files (x86)\Ask.com\assets\oobe\r.png
c:\program files (x86)\Ask.com\assets\oobe\t.png
c:\program files (x86)\Ask.com\assets\oobe\tl.png
c:\program files (x86)\Ask.com\assets\oobe\tr.png
c:\program files (x86)\Ask.com\cobrand.ico
c:\program files (x86)\Ask.com\config.xml
c:\program files (x86)\Ask.com\favicon.ico
c:\program files (x86)\Ask.com\fv_9aa7.ico
c:\program files (x86)\Ask.com\GenericAskToolbar.dll
c:\program files (x86)\Ask.com\mupcfg.xml
c:\program files (x86)\Ask.com\precache.exe
c:\program files (x86)\Ask.com\SaUpdate.exe
c:\program files (x86)\Ask.com\Updater\config.xml
c:\program files (x86)\Ask.com\Updater\Updater.exe
c:\program files (x86)\Ask.com\UpdateTask.exe
c:\program files (x86)\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
c:\program files (x86)\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}\icon.png
c:\program files (x86)\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}\install.rdf
c:\program files (x86)\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}\preview.png
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}\chrome.manifest
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}\chrome\bs_player.jar
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}\components\ConduitAutoCompleteSearch.js
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}\components\ConduitAutoCompleteSearch.xpt
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}\components\ConduitToolbar.idl
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}\components\ConduitToolbar.js
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}\components\ConduitToolbar.xpt
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}\components\RadioWMPCore.dll
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}\components\RadioWMPCore.xpt
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}\components\RadioWMPCoreGecko19.dll
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}\defaults\alertSettingsComponent.xml
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}\defaults\appContextMenu.xml
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}\defaults\engineContextMenu.xml
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}\defaults\engineSettings.json
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}\defaults\fbAlert.js
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}\defaults\getAppsContextMenu.xml
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}\defaults\postAppsContextMenu.xml
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}\defaults\toolbarContextMenu.xml
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}\defaults\unsharedAppsContextMenu.xml
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}\install.rdf
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}\lib\xpcom.js
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}\META-INF\manifest.mf
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}\META-INF\zigbert.rsa
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}\META-INF\zigbert.sf
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}\searchplugin\conduit.gif
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}\searchplugin\conduit.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}\searchplugin\conduit.PNG
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}\searchplugin\conduit.src
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}\searchplugin\conduit.xml
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}\version.txt
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\chrome.manifest
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\chrome\content\AboutWindow.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\chrome\content\base.js
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\chrome\content\contents.rdf
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\chrome\content\dttoolbar.js
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\chrome\content\dttoolbar.xul
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\chrome\content\gadget.xul
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\chrome\content\options.xul
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\DTToolbarFF.dll
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\DTToolbarFF.xpt
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\about.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\AboutWindow.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\accept.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\AddRadioStation.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\ARA.xml
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\as.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\as.png
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\astro.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\astro_audio.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\astro_buy.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\astro_download.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\astro_feedback.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\astro_forum.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\astro_home.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\astro_lite.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\astroburn_site.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\astroLite_16.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\az.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\AZE.xml
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\b1.png
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\burn_files.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\burn_image.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\burn_imgs.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\BurnImage.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\buy.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cal.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\CHS.xml
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\CHT.xml
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\Config.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\d.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\d2.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\daemon_search.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\daemon_search_site.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\DEU.xml
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\dot_disabled.bmp
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\dot_enabled.bmp
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\dot_on_over.bmp
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\download.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\ds.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\dsearch.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\dt-home.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\dt.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\dt_about.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\dt_buy.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\dt_download.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\dt_faq.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\dt_feedback.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\dt_forum.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\dt_line.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\dt_lite.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\dt_manual.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\dt_pro.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\DTPro.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\dtt16.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\dtt32.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\Dwnl.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\emulation.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\ENG.xml
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\faq.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\favicon.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\fb.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\features.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\feedback.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\forum.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\FRA.xml
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\GameCentrix.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\GameCentrixCristals.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\GameCentrixDownload.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\GameCentrixPlayOnline.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\GameCentrixTop.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\GameS.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\games_search.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\games_search_SA.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\GameSA.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\gct16.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\gd.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\genre.xml
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\globe.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\GrabImage.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\hb.bmp
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\hb.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\help.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\hide.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\home.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\image_search.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\image_search_SA.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\ImageS.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\ImageSA.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\ip.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\ITA.xml
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\JPN.xml
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\KOR.xml
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\lang.xml
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\lingvo.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\m.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\mail.bmp
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\mail_disable.bmp
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\mail_down.bmp
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\mail_m.bmp
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\mail_under.bmp
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\mailc.bmp
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\mailc_disable.bmp
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\mailc_down.bmp
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\mailc_m.bmp
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\mailc_under.bmp
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\manual.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\map.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\MenuRadioConfig.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\MenuRadioStation.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\MenuRSCur.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\MenuTr.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\mount.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\mount_n_drive.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\next.bmp
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\next_down.bmp
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\next_m.bmp
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\next_under.bmp
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\none.bmp
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\none_m.bmp
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\op.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\play.bmp
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\play.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\play_down.bmp
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\play_m.bmp
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\play_under.bmp
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\pragma.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\prev.bmp
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\prev_down.bmp
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\prev_m.bmp
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\prev_under.bmp
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\prod.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\Radio.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RadioBg.bmp
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RadioBg.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RadioBgMask.bmp
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RadioDisp.bmp
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RadioDisp_m.bmp
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RadioDown.bmp
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RadioDown.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RadioDown_down.bmp
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RadioDown_m.bmp
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RadioDown_under.bmp
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RadioE.bmp
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RadioG.bmp
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RadioL.bmp
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RadioLDotMask.bmp
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RadioLeft.bmp
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RadioLeftMask.bmp
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RadioLM.bmp
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RadioM.bmp
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RadioN.bmp
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RadioR.bmp
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RadioR.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RadioRM.bmp
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RadioRU.bmp
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RadioVolume.bmp
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RadioVolume_down.bmp
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RadioVolume_m.bmp
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RadioVolume_under.bmp
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RadioW.bmp
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\rbcheck.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\rbtxt.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\refresh.bmp
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\refresh_down.bmp
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\refresh_m.bmp
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\refresh_under.bmp
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\Rss.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\Rss1.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RssA.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RssA1.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\rssClose.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\rssL.bmp
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\rssOpen.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RssRefresh.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RUS.xml
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\s2.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\show.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\size.bmp
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\size_lr.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\size_m.bmp
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\size_rl.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\skins.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\soft24.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\soft24_SA.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\spt.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\stop.bmp
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\stop.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\stop_down.bmp
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\stop_m.bmp
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\stop_under.bmp
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\style.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\SupportRequest.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\timer.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\TitleIcon.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\toolbar.xml
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\trans.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\Trash.bmp
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\Trash_disable.bmp
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\Trash_down.bmp
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\Trash_m.bmp
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\Trash_under.bmp
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\u.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\UKR.xml
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\unmount-all.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\vol.bmp
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\vol.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\vol_back.bmp
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\vol_dott.bmp
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\vol_dott_m.bmp
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\vol_down.bmp
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\vol_m.bmp
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\vol_mute.bmp
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\vol_mute_check.bmp
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\vol_under.bmp
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\wBtClose.bmp
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\wBtClose_down.bmp
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\wBtClose_m.bmp
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\wBtClose_under.bmp
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\wBtText.bmp
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\wBtText_down.bmp
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\wBtText_m.bmp
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\wBtText_under.bmp
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\web_resources.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\web_search.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\web_search_SA.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\WebS.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\WebSa.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\wi.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\wi0.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\wi1.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\wi10.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\wi11.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\wi12.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\wi13.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\wi14.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\wi2.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\wi3.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\wi4.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\wi5.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\wi6.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\wi7.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\wi8.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\components\Resources\wi9.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\DTToolbar@toolbarnet.com\install.rdf
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\engine@conduit.com
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\engine@conduit.com\chrome.manifest
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\engine@conduit.com\chrome\conduitengine.jar
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\engine@conduit.com\components\ConduitAutoCompleteSearch.js
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\engine@conduit.com\components\ConduitAutoCompleteSearch.xpt
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\engine@conduit.com\components\ConduitToolbar.idl
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\engine@conduit.com\components\ConduitToolbar.js
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\engine@conduit.com\components\ConduitToolbar.xpt
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\engine@conduit.com\components\RadioWMPCore.dll
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\engine@conduit.com\components\RadioWMPCore.xpt
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\engine@conduit.com\components\RadioWMPCoreGecko19.dll
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\engine@conduit.com\defaults\alertSettingsComponent.xml
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\engine@conduit.com\defaults\appContextMenu.xml
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\engine@conduit.com\defaults\engineContextMenu.xml
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\engine@conduit.com\defaults\engineSettings.json
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\engine@conduit.com\defaults\fbAlert.js
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\engine@conduit.com\defaults\getAppsContextMenu.xml
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\engine@conduit.com\defaults\postAppsContextMenu.xml
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\engine@conduit.com\defaults\toolbarContextMenu.xml
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\engine@conduit.com\defaults\unsharedAppsContextMenu.xml
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\engine@conduit.com\DualPackage\install.rdf
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\engine@conduit.com\install.rdf
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\engine@conduit.com\lib\xpcom.js
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\engine@conduit.com\META-INF\manifest.mf
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\engine@conduit.com\META-INF\zigbert.rsa
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\engine@conduit.com\META-INF\zigbert.sf
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\engine@conduit.com\searchplugin\conduit.gif
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\engine@conduit.com\searchplugin\conduit.ico
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\engine@conduit.com\searchplugin\conduit.PNG
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\engine@conduit.com\searchplugin\conduit.src
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\engine@conduit.com\searchplugin\conduit.xml
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\engine@conduit.com\version.txt
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome.manifest
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\content\about.js
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\content\about.xul
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\content\addon.js
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\content\bindings.xml
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\content\button-bindings.xml
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\content\cache.js
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\content\constants.js
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\content\core.js
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\content\custom-command-listener.js
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\content\dynamic-button-manager.js
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\content\dynamic-button.js
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\content\events.js
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\content\feeds.js
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\content\http-headers.js
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\content\issigned.exe
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\content\json.js
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\content\lifecycle.js
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\content\listeners.js
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\content\locale.js
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\content\logger.js
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\content\NeroApplicationManager.exe
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\content\network.js
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\content\newtab-manager.js
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\content\newtab-overlay.xul
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\content\newtab.html
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\content\newtab.js
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\content\notification-popup-controller.js
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\content\notification-popup-ff3.xul
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\content\notification-popup.xul
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\content\notification.js
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\content\observer.js
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\content\options.js
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\content\options.xul
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\content\preferences.js
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\content\prefetch.js
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\content\ss-popup-bindings.xml
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\content\suggestions.js
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\content\update.js
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\content\updateRdf.js
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\content\utilities.js
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\content\webframe-bindings.xml
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\content\webframe-manager.js
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\content\widget-controller.js
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\content\widget-popup.xul
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\content\widgets.js
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\ask_16x16.png
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\ask_32x32.png
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome

[imprezion]

2 cast logu:

c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\asklogo.png
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\b-p.png
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\b.png
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\bg.png
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\bl-pbl.png
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\bl-pbr.png
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\bl.png
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\blogs.png
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\br-pbl.png
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\br-pbr.png
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\br.png
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\chevron.png
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\close.png
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\dictionary.png
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\globe_18x.png
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\gripper.png
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\highlighter_off.png
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\highlighter_on.png
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\images.png
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\l.png
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\labels-de.properties
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\labels-en.properties
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\labels-es.properties
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\labels-fr.properties
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\labels-it.properties
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\labels-nl.properties
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\labels-pt.properties
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\labels-ru.properties
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\links-BR.properties
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\links-DE.properties
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\links-ES.properties
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\links-EU.properties
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\links-FR.properties
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\links-IT.properties
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\links-NL.properties
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\links-RU.properties
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\links-UK.properties
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\links-US.properties
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\loggedin.xul
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\loginframe.xul
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\logo_32x32.png
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\magnify_search.png
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\maps.png
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\nero.css
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\news.png
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\newtab.css
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\newtab_bkg.png
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\newtab_search_bkg.png
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\notification.css
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\nr_login.png
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\nr_logo.png
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\nr_photos.png
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\nr_rom.png
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\nr_videos.png
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\nr_whatsnew.png
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\preferences.png
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\r.png
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\search.png
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\search_ask.png
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\search_ask_de.png
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\search_ask_es.png
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\search_ask_fr.png
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\search_ask_it.png
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\search_ask_nl.png
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\search_ask_pl.png
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\search_ask_pt.png
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\search_ask_ru.png
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\search_cobrand.png
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\search_current_site.png
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\search_de.png
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\search_es.png
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\search_fr.png
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\search_grey_73x24.png
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\search_it.png
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\search_nl.png
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\search_pl.png
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\search_pt.png
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\search_ru.png
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\shopping.png
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\stocks.png
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\t-p.png
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\t.png
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\tl-ptl.png
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\tl-ptr.png
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\tl.png
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\toolbar.css
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\toolbar.xul
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\tr-ptl.png
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\tr-ptr.png
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\tr.png
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\weather.png
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\web.png
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\skin\zoomall.png
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\temp\askToolbar.exe
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\temp\ff-config.Fri-05-Aug-2011-20-16-00-GMT\ff-config.zip
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\temp\ff-config.Fri-10-Jun-2011-05-05-17-GMT\ff-config.zip
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\temp\ff-config.Fri-23-Sep-2011-05-30-37-GMT\ff-config.zip
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\temp\ff-config.Sat-22-Jan-2011-19-50-39-GMT\ff-config.zip
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\temp\ff-config.Sat-29-Jan-2011-18-02-32-GMT\ff-config.zip
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\temp\ff-config.Tue-31-May-2011-21-06-33-GMT\ff-config.zip
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\chrome\temp\ff-config.Wed-23-Mar-2011-06-16-08-GMT\ff-config.zip
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\datastore\cache.sqlite
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\defaults.js.bak
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\defaults\preferences\defaults.js
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\defaults\preferences\defaults.js.bak
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\install.rdf
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\logs\asktb-log-1318269560490.html
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\logs\asktb-log-1318270277761.html
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\logs\asktb-log-1318272913343.html
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\logs\asktb-log-1318273077172.html
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\logs\asktb-log-1318273194499.html
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\logs\asktb-log-1318273228782.html
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\logs\asktb-log-1318273261181.html
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\extensions\toolbar@ask.com\logs\asktb-log-1318273328685.html


((((((((((((((((((((((((( Files Created from 2011-09-10 to 2011-10-10 )))))))))))))))))))))))))))))))


2011-10-10 22:16:03 . 2011-10-10 22:16:03 69000 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{D75219F6-B7A8-41A1-9138-20CB49FD15CD}\offreg.dll
2011-10-10 22:11:07 . 2011-10-10 22:11:07 -------- d-----w- C:\Users\Default\AppData\Local\temp
2011-10-10 17:52:12 . 2011-04-28 03:58:42 552448 ----a-w- C:\Windows\system32\drivers\bthport.sys
2011-10-10 17:52:11 . 2011-04-28 03:58:34 80384 ----a-w- C:\Windows\system32\drivers\BTHUSB.SYS
2011-10-09 09:12:47 . 2011-10-09 09:12:55 -------- d-----w- C:\Program Files\trend micro
2011-10-09 09:12:46 . 2011-10-09 09:12:58 -------- d-----w- C:\rsit
2011-10-09 08:44:38 . 2011-09-13 00:26:15 9049936 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{D75219F6-B7A8-41A1-9138-20CB49FD15CD}\mpengine.dll
2011-10-09 08:34:36 . 2011-10-09 08:34:36 -------- d-----w- C:\ProgramData\ATI
2011-10-09 08:34:34 . 2011-10-09 08:34:34 -------- d-----w- C:\Program Files (x86)\AMD APP
2011-10-09 08:33:07 . 2011-10-09 08:33:07 -------- d-----w- C:\Program Files (x86)\ATI
2011-10-09 08:30:39 . 2011-10-09 08:30:39 -------- d-----w- C:\ATI
2011-10-09 07:45:38 . 2011-10-09 07:45:38 -------- d-----w- C:\AMD
2011-10-08 21:45:28 . 2011-10-09 10:52:28 -------- d-----w- C:\recovery
2011-10-08 15:40:42 . 2011-10-08 15:40:42 -------- d-----w- C:\Users\admin\AppData\Local\G DATA
2011-10-06 21:33:25 . 2011-10-06 21:33:25 -------- d-----w- C:\Users\admin\AppData\Local\ESET
2011-10-06 20:50:32 . 2011-10-06 20:50:32 -------- d-----w- C:\Program Files\ESET
2011-10-05 22:20:18 . 2011-07-09 05:14:10 2048 ----a-w- C:\Windows\system32\tzres.dll
2011-10-05 22:20:18 . 2011-07-09 04:30:52 2048 ----a-w- C:\Windows\SysWow64\tzres.dll
2011-09-14 09:47:42 . 2011-09-14 09:47:42 60416 ----a-w- C:\Windows\system32\OVDecode64.dll
2011-09-14 09:47:40 . 2011-09-14 09:47:40 53760 ----a-w- C:\Windows\SysWow64\OVDecode.dll
2011-09-14 09:47:22 . 2011-09-14 09:47:22 51200 ----a-w- C:\Windows\system32\OpenCL.dll
2011-09-14 09:47:18 . 2011-09-14 09:47:18 43520 ----a-w- C:\Windows\SysWow64\OpenCL.dll
2011-09-14 09:47:10 . 2011-09-14 09:47:10 16652288 ----a-w- C:\Windows\system32\amdocl64.dll
2011-09-14 09:46:58 . 2011-09-14 09:46:58 13625856 ----a-w- C:\Windows\SysWow64\amdocl.dll
2011-09-14 09:38:30 . 2011-09-14 09:38:30 44032 ----a-w- C:\Windows\system32\amdoclcl64.dll
2011-09-14 09:38:28 . 2011-09-14 09:38:28 37376 ----a-w- C:\Windows\SysWow64\amdoclcl.dll
.


(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))

2011-07-22 05:35:08 . 2011-08-12 18:20:03 1638912 ----a-w- C:\Windows\system32\mshtml.tlb
2011-07-22 04:56:17 . 2011-08-12 18:20:03 1638912 ----a-w- C:\Windows\SysWow64\mshtml.tlb
2011-07-16 05:26:54 . 2011-08-12 18:21:38 362496 ----a-w- C:\Windows\system32\wow64win.dll
2011-07-16 05:26:53 . 2011-08-12 18:21:38 243200 ----a-w- C:\Windows\system32\wow64.dll
2011-07-16 05:26:53 . 2011-08-12 18:21:37 13312 ----a-w- C:\Windows\system32\wow64cpu.dll
2011-07-16 05:26:18 . 2011-08-12 18:21:38 214528 ----a-w- C:\Windows\system32\winsrv.dll
2011-07-16 05:24:09 . 2011-08-12 18:21:37 16384 ----a-w- C:\Windows\system32\ntvdm64.dll
2011-07-16 05:21:32 . 2011-08-12 18:21:39 422400 ----a-w- C:\Windows\system32\KernelBase.dll
2011-07-16 05:17:46 . 2011-08-12 18:21:38 338432 ----a-w- C:\Windows\system32\conhost.exe
2011-07-16 05:04:54 . 2011-08-12 18:21:37 3584 ---ha-w- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2011-07-16 05:04:54 . 2011-08-12 18:21:35 6144 ---ha-w- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2011-07-16 05:04:54 . 2011-08-12 18:21:35 5120 ---ha-w- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2011-07-16 05:04:54 . 2011-08-12 18:21:35 4608 ---ha-w- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2011-07-16 05:04:54 . 2011-08-12 18:21:35 4608 ---ha-w- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2011-07-16 05:04:54 . 2011-08-12 18:21:35 4096 ---ha-w- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2011-07-16 05:04:54 . 2011-08-12 18:21:35 4096 ---ha-w- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2011-07-16 05:04:54 . 2011-08-12 18:21:35 4096 ---ha-w- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2011-07-16 05:04:54 . 2011-08-12 18:21:35 3584 ---ha-w- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2011-07-16 05:04:54 . 2011-08-12 18:21:35 3584 ---ha-w- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2011-07-16 05:04:54 . 2011-08-12 18:21:35 3584 ---ha-w- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2011-07-16 05:04:54 . 2011-08-12 18:21:35 3584 ---ha-w- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2011-07-16 05:04:54 . 2011-08-12 18:21:35 3584 ---ha-w- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2011-07-16 05:04:54 . 2011-08-12 18:21:35 3584 ---ha-w- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2011-07-16 05:04:54 . 2011-08-12 18:21:35 3072 ---ha-w- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2011-07-16 05:04:54 . 2011-08-12 18:21:35 3072 ---ha-w- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2011-07-16 05:04:54 . 2011-08-12 18:21:35 3072 ---ha-w- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2011-07-16 05:04:54 . 2011-08-12 18:21:35 3072 ---ha-w- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2011-07-16 05:04:54 . 2011-08-12 18:21:35 3072 ---ha-w- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2011-07-16 05:04:54 . 2011-08-12 18:21:35 3072 ---ha-w- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2011-07-16 05:04:54 . 2011-08-12 18:21:35 3072 ---ha-w- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2011-07-16 05:04:54 . 2011-08-12 18:21:35 3072 ---ha-w- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2011-07-16 05:04:54 . 2011-08-12 18:21:35 3072 ---ha-w- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2011-07-16 05:04:54 . 2011-08-12 18:21:35 3072 ---ha-w- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2011-07-16 05:04:54 . 2011-08-12 18:21:35 3072 ---ha-w- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2011-07-16 05:04:54 . 2011-08-12 18:21:35 3072 ---ha-w- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2011-07-16 05:04:54 . 2011-08-12 18:21:34 4096 ---ha-w- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2011-07-16 05:04:54 . 2011-08-12 18:21:34 3072 ---ha-w- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2011-07-16 04:36:09 . 2011-08-12 18:21:37 14336 ----a-w- C:\Windows\SysWow64\ntvdm64.dll
2011-07-16 04:32:14 . 2011-08-12 18:21:37 44032 ----a-w- C:\Windows\apppatch\acwow64.dll
2011-07-16 04:31:50 . 2011-08-12 18:21:37 25600 ----a-w- C:\Windows\SysWow64\setup16.exe
2011-07-16 04:30:29 . 2011-08-12 18:21:37 5120 ----a-w- C:\Windows\SysWow64\wow32.dll
2011-07-16 04:30:27 . 2011-08-12 18:21:38 272384 ----a-w- C:\Windows\SysWow64\KernelBase.dll
2011-07-16 04:19:58 . 2011-08-12 18:21:37 3584 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-libraryloader-l1-1-0.dll
2011-07-16 04:19:58 . 2011-08-12 18:21:35 5120 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-file-l1-1-0.dll
2011-07-16 04:19:58 . 2011-08-12 18:21:35 4096 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-sysinfo-l1-1-0.dll
2011-07-16 04:19:58 . 2011-08-12 18:21:35 4096 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-synch-l1-1-0.dll
2011-07-16 04:19:58 . 2011-08-12 18:21:35 4096 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-misc-l1-1-0.dll
2011-07-16 04:19:58 . 2011-08-12 18:21:35 4096 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-localregistry-l1-1-0.dll
2011-07-16 04:19:58 . 2011-08-12 18:21:35 3584 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-processenvironment-l1-1-0.dll
2011-07-16 04:19:58 . 2011-08-12 18:21:35 3584 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-namedpipe-l1-1-0.dll
2011-07-16 04:19:58 . 2011-08-12 18:21:35 3584 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-memory-l1-1-0.dll
2011-07-16 04:19:58 . 2011-08-12 18:21:35 3584 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-interlocked-l1-1-0.dll
2011-07-16 04:19:58 . 2011-08-12 18:21:35 3584 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-heap-l1-1-0.dll
2011-07-16 04:19:58 . 2011-08-12 18:21:35 3072 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-string-l1-1-0.dll
2011-07-16 04:19:58 . 2011-08-12 18:21:35 3072 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-rtlsupport-l1-1-0.dll
2011-07-16 04:19:58 . 2011-08-12 18:21:35 3072 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-profile-l1-1-0.dll
2011-07-16 04:19:58 . 2011-08-12 18:21:35 3072 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-io-l1-1-0.dll
2011-07-16 04:19:58 . 2011-08-12 18:21:35 3072 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-handle-l1-1-0.dll
2011-07-16 04:19:58 . 2011-08-12 18:21:35 3072 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-fibers-l1-1-0.dll
2011-07-16 04:19:58 . 2011-08-12 18:21:35 3072 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-errorhandling-l1-1-0.dll
2011-07-16 04:19:58 . 2011-08-12 18:21:35 3072 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-delayload-l1-1-0.dll
2011-07-16 04:19:58 . 2011-08-12 18:21:35 3072 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-debug-l1-1-0.dll
2011-07-16 04:19:58 . 2011-08-12 18:21:35 3072 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-datetime-l1-1-0.dll
2011-07-16 04:19:58 . 2011-08-12 18:21:34 4608 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-processthreads-l1-1-0.dll
2011-07-16 04:19:58 . 2011-08-12 18:21:34 4096 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-localization-l1-1-0.dll
2011-07-16 04:19:58 . 2011-08-12 18:21:34 3072 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-console-l1-1-0.dll
2011-07-16 02:26:12 . 2011-08-12 18:21:37 7680 ----a-w- C:\Windows\SysWow64\instnm.exe
2011-07-16 02:26:11 . 2011-08-12 18:21:34 2048 ----a-w- C:\Windows\SysWow64\user.exe
2011-07-16 02:21:47 . 2011-08-12 18:21:34 6144 ---ha-w- C:\Windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
2011-07-16 02:21:47 . 2011-08-12 18:21:34 4608 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
2011-07-16 02:21:47 . 2011-08-12 18:21:34 3584 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
2011-07-16 02:21:47 . 2011-08-12 18:21:34 3072 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-util-l1-1-0.dll


((((((((((((((((((((((((((((( SnapShot@2011-10-09_16.39.40 )))))))))))))))))))))))))))))))))))))))))

+ 2009-07-14 04:54:17 . 2011-10-10 22:13:50 16384 C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2009-07-14 04:54:17 . 2011-10-09 08:52:51 16384 C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
+ 2009-07-14 04:54:17 . 2011-10-10 22:13:50 32768 C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
- 2009-07-14 04:54:17 . 2011-10-09 08:52:51 32768 C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
- 2009-07-14 04:54:17 . 2011-10-09 08:52:51 16384 C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2009-07-14 04:54:17 . 2011-10-10 22:13:50 16384 C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2010-07-20 23:22:50 . 2011-10-10 22:15:18 63702 C:\Windows\system32\wdi\ShutdownPerformanceDiagnostics_SystemData.bin
+ 2009-07-14 05:10:35 . 2011-10-10 22:15:16 40810 C:\Windows\system32\wdi\BootPerformanceDiagnostics_SystemData.bin
+ 2010-10-15 07:56:50 . 2011-10-10 22:15:17 16646 C:\Windows\system32\wdi\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-3916835265-3772352023-1004409751-1000_UserData.bin
+ 2009-07-14 05:30:40 . 2011-10-10 17:55:48 86016 C:\Windows\system32\DriverStore\infpub.dat
- 2009-07-14 05:30:40 . 2011-10-06 20:51:19 86016 C:\Windows\system32\DriverStore\infpub.dat
+ 2011-10-10 17:52:11 . 2011-04-28 03:58:34 80384 C:\Windows\system32\DriverStore\FileRepository\bth.inf_amd64_neutral_6c7b4ac630551f33\BTHUSB.SYS
+ 2009-07-14 00:06:53 . 2009-07-14 00:06:53 41984 C:\Windows\system32\DriverStore\FileRepository\bth.inf_amd64_neutral_6c7b4ac630551f33\bthenum.sys
- 2010-08-01 13:21:00 . 2011-10-09 08:58:23 32768 C:\Windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
+ 2010-08-01 13:21:00 . 2011-10-10 18:02:54 32768 C:\Windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2010-08-01 13:21:00 . 2011-10-09 08:58:23 49152 C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
+ 2010-08-01 13:21:00 . 2011-10-10 18:02:54 49152 C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
+ 2009-07-14 04:54:19 . 2011-10-10 18:02:54 16384 C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
- 2009-07-14 04:54:19 . 2011-10-09 08:58:23 16384 C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2011-10-10 17:52:27 . 2011-07-09 05:16:52 49664 C:\Windows\servicing\GC64\tzupd.exe
- 2010-08-01 13:20:45 . 2010-02-02 08:39:25 49664 C:\Windows\servicing\GC64\tzupd.exe
+ 2011-01-22 17:59:36 . 2011-10-10 22:13:22 16384 C:\Windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2011-01-22 17:59:36 . 2011-10-09 08:52:18 16384 C:\Windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
+ 2011-01-22 17:59:36 . 2011-10-10 22:13:22 32768 C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
- 2011-01-22 17:59:36 . 2011-10-09 08:52:18 32768 C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
- 2011-01-22 17:59:36 . 2011-10-09 08:52:18 16384 C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2011-01-22 17:59:36 . 2011-10-10 22:13:22 16384 C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2010-10-15 09:06:57 . 2011-10-10 22:03:12 16384 C:\Windows\ServiceProfiles\LocalService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2010-10-15 09:06:57 . 2011-10-09 16:07:13 16384 C:\Windows\ServiceProfiles\LocalService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2010-10-15 09:06:57 . 2011-10-09 16:07:13 16384 C:\Windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2010-10-15 09:06:57 . 2011-10-10 22:03:12 16384 C:\Windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2011-01-13 07:59:06 . 2011-10-10 22:12:40 1870 C:\Windows\system32\wdi\ERCQueuedResolutions.dat
- 2011-10-09 08:52:18 . 2011-10-09 08:52:18 2048 C:\Windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
+ 2011-10-10 22:13:20 . 2011-10-10 22:13:20 2048 C:\Windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
+ 2011-10-10 22:13:19 . 2011-10-10 22:13:19 2048 C:\Windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
- 2011-10-09 08:52:18 . 2011-10-09 08:52:18 2048 C:\Windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
+ 2011-10-10 17:52:14 . 2011-07-27 04:30:35 361472 C:\Windows\SysWOW64\IME\IMEJP10\IMJPAPI.DLL
- 2009-07-13 23:26:59 . 2009-07-14 01:15:35 361472 C:\Windows\SysWOW64\IME\IMEJP10\IMJPAPI.DLL
+ 2010-10-15 10:03:33 . 2011-10-10 04:12:38 313856 C:\Windows\system32\wdi\SuspendPerformanceDiagnostics_SystemData_S3.bin
+ 2011-10-10 17:52:14 . 2011-07-27 05:31:49 546304 C:\Windows\system32\IME\IMEJP10\IMJPAPI.DLL
- 2009-07-13 23:40:33 . 2009-07-14 01:41:16 546304 C:\Windows\system32\IME\IMEJP10\IMJPAPI.DLL
+ 2009-07-14 05:30:40 . 2011-10-10 17:55:48 143360 C:\Windows\system32\DriverStore\infstrng.dat
- 2009-07-14 05:30:40 . 2011-10-06 20:51:19 143360 C:\Windows\system32\DriverStore\infstrng.dat
- 2009-07-14 05:30:40 . 2011-10-06 20:51:17 143360 C:\Windows\system32\DriverStore\infstor.dat
+ 2009-07-14 05:30:40 . 2011-10-10 17:55:48 143360 C:\Windows\system32\DriverStore\infstor.dat
+ 2009-07-14 00:06:55 . 2009-07-14 01:39:10 229376 C:\Windows\system32\DriverStore\FileRepository\bth.inf_amd64_neutral_6c7b4ac630551f33\fsquirt.exe
+ 2011-10-10 17:52:12 . 2011-04-28 03:58:42 552448 C:\Windows\system32\DriverStore\FileRepository\bth.inf_amd64_neutral_6c7b4ac630551f33\bthport.sys
- 2009-07-14 05:31:42 . 2010-08-01 14:20:54 399360 C:\Windows\system32\DriverStore\drvindex.dat
+ 2009-07-14 05:31:42 . 2011-10-10 17:55:48 399360 C:\Windows\system32\DriverStore\drvindex.dat
+ 2009-07-14 04:45:55 . 2011-10-10 17:59:28 3801083 C:\Windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\SoftwareProtectionPlatform\tokens.dat
- 2009-07-14 04:45:55 . 2011-10-06 20:40:48 3801083 C:\Windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\SoftwareProtectionPlatform\tokens.dat
+ 2009-07-14 02:34:08 . 2011-10-10 21:41:53 10485760 C:\Windows\system32\SMI\Store\Machine\schema.dat
- 2009-07-14 02:34:08 . 2011-10-09 09:29:47 10485760 C:\Windows\system32\SMI\Store\Machine\schema.dat

-- Snapshot reset to current date --

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))


*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Elbserver"="C:\Program Files (x86)\Sony\Media Gallery\ElbServer.exe" [2010-06-22 08:39:28 81264]
"VRLPHelper"="C:\Program Files (x86)\Sony\Media Gallery\VRLPHelper.exe" [2010-06-22 08:39:28 183152]
"uTorrent"="C:\Program Files (x86)\uTorrent\uTorrent.exe" [2011-01-22 19:49:00 395128]
"DAEMON Tools Lite"="C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" [2011-01-20 09:20:12 1305408]
"OM2_Monitor"="C:\Program Files (x86)\OLYMPUS\OLYMPUS Master 2\MMonitor.exe" [2007-05-28 16:59:42 95800]
"AutoStartNPSAgent"="C:\Program Files (x86)\Samsung\Samsung New PC Studio\NPSAgent.exe" [2010-07-04 17:13:56 95576]
"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe" [2009-07-14 01:39:41 1475072]
"swg"="C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2010-08-01 13:44:41 39408]

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"="C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" [2010-03-04 03:16:04 284696]
"ISBMgr.exe"="C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe" [2010-05-31 16:01:52 673136]
"Adobe Reader Speed Launcher"="C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2009-12-22 00:57:28 35760]
"Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2010-09-21 18:37:40 932288]
"Norton Online Backup"="C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe" [2010-06-01 14:33:10 1155928]
"PMBVolumeWatcher"="C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe" [2010-06-01 02:01:54 600928]
"SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" [2010-02-18 10:43:18 248040]
"SHTtray.exe"="C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SHTtray.exe" [2010-06-20 20:47:16 99696]
"WinampAgent"="C:\Program Files (x86)\Winamp\winampa.exe" [2010-11-30 13:19:40 74752]
"GrooveMonitor"="C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe" [2008-10-25 09:44:34 31072]
"SSBkgdUpdate"="C:\Program Files (x86)\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" [2006-10-25 09:03:38 210472]
"OpwareSE4"="C:\Program Files (x86)\ScanSoft\OmniPageSE4\OpwareSE4.exe" [2007-02-04 12:02:14 79400]
"QuickTime Task"="C:\Program Files (x86)\QuickTime\qttask.exe" [2006-09-01 15:57:48 282624]
"StartCCC"="C:\Program Files (x86)\ATI\ATI.ACE\Core-Static\CLIStart.exe" [2011-09-08 12:27:50 343168]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe [2010-6-9 1128224]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"mixer2"=wdmaud.drv

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""

R2 gupdate;Google Update Service (gupdate);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-08-01 13:44:07 136176]
R3 AdobeActiveFileMonitor8.0;Adobe Active File Monitor V8;C:\Program Files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe [2009-10-09 04:45:56 169312]
R3 gupdatem;Google Update Service (gupdatem);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-08-01 13:44:07 136176]
R3 Impcd;Impcd;C:\Windows\system32\drivers\Impcd.sys [x]
R3 IntcDAud;Intel(R) Display Audio;C:\Windows\system32\DRIVERS\IntcDAud.sys [x]
R3 TFsExDisk;TFsExDisk;C:\Windows\System32\Drivers\TFsExDisk.sys [2010-06-14 07:32:54 16448]
R3 VcmINSMgr;VAIO Content Metadata Intelligent Network Service Manager;C:\Program Files\Sony\VCM Intelligent Network Service Manager\VcmINSMgr.exe [2010-06-09 14:56:02 384880]
R3 VcmXmlIfHelper;VAIO Content Metadata XML Interface;C:\Program Files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper64.exe [2010-06-09 14:57:16 101232]
R3 WatAdminSvc;Služba Technologie aktivace Windows;C:\Windows\system32\Wat\WatAdminSvc.exe [x]
S0 PxHlpa64;PxHlpa64;C:\Windows\System32\Drivers\PxHlpa64.sys [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;C:\Windows\system32\DRIVERS\dtsoftbus01.sys [x]
S1 ehdrv;ehdrv;C:\Windows\system32\DRIVERS\ehdrv.sys [x]
S1 vwififlt;Virtual WiFi Filter Driver;C:\Windows\system32\DRIVERS\vwififlt.sys [x]
S2 AMD External Events Utility;AMD External Events Utility;C:\Windows\system32\atiesrxx.exe [x]
S2 eamonm;eamonm;C:\Windows\system32\DRIVERS\eamonm.sys [x]
S2 ekrn;ESET Service;C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [2010-11-18 12:11:36 810144]
S2 epfwwfpr;epfwwfpr;C:\Windows\system32\DRIVERS\epfwwfpr.sys [x]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-03-04 03:16:06 13336]
S2 ICQ Service;ICQ Service;C:\Program Files (x86)\ICQ6Toolbar\ICQ Service.exe [2010-09-06 18:56:38 247096]
S2 NAUpdate;Nero Update;C:\Program Files (x86)\Nero\Update\NASvc.exe [2010-05-04 12:07:22 503080]
S2 NOBU;Norton Online Backup;C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe SERVICE [x]
S2 PMBDeviceInfoProvider;PMBDeviceInfoProvider;C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe [2010-06-01 02:01:56 367456]
S2 rimspci;rimspci;C:\Windows\system32\drivers\rimssne64.sys [x]
S2 risdsnpe;risdsnpe;C:\Windows\system32\drivers\risdsne64.sys [x]
S2 SampleCollector;VAIO Care Performance Service;C:\Program Files\Sony\VAIO Care\VCPerfService.exe [2010-05-25 04:23:52 252416]
S2 SOHCImp;VAIO Media plus Content Importer;C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe [2010-06-20 20:47:18 108400]
S2 SOHDms;VAIO Media plus Digital Media Server;C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDms.exe [2010-06-18 06:07:12 423280]
S2 SOHDs;VAIO Media plus Device Searcher;C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe [2010-06-20 20:47:16 67952]
S2 uCamMonitor;CamMonitor;C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe [2008-09-18 09:59:10 104960]
S2 UNS;Intel(R) Management & Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-05-28 20:02:57 2320920]
S2 VAIO Power Management;VAIO Power Management;C:\Program Files\Sony\VAIO Power Management\SPMService.exe [2010-06-21 17:00:52 575856]
S2 VCFw;VAIO Content Folder Watcher;C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [2010-06-17 11:44:10 851824]
S2 VcmIAlzMgr;VAIO Content Metadata Intelligent Analyzing Manager;C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe [2010-06-09 14:55:00 537456]
S2 VSNService;VSNService;C:\Program Files\Sony\VAIO Smart Network\VSNService.exe [2010-06-08 16:00:04 836608]
S3 ArcSoftKsUFilter;ArcSoft Magic-I Visual Effect;C:\Windows\system32\DRIVERS\ArcSoftKsUFilter.sys [x]
S3 btwampfl;Bluetooth AMP USB Filter;C:\Windows\system32\drivers\btwampfl.sys [x]
S3 btwl2cap;Bluetooth L2CAP Service;C:\Windows\system32\DRIVERS\btwl2cap.sys [x]
S3 HECIx64;Intel(R) Management Engine Interface;C:\Windows\system32\drivers\HECIx64.sys [x]
S3 NETw5s64;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 64 Bit;C:\Windows\system32\DRIVERS\NETw5s64.sys [x]
S3 SFEP;Sony Firmware Extension Parser;C:\Windows\system32\drivers\SFEP.sys [x]
S3 SpfService;VAIO Entertainment Common Service;C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\SPF\SpfService64.exe [2010-06-06 21:13:46 304496]
S3 VUAgent;VUAgent;C:\Program Files\Sony\VAIO Update Common\VUAgent.exe [2011-09-23 13:37:08 1429608]
S3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;C:\Windows\system32\DRIVERS\yk62x64.sys [x]


[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{2D46B6DC-2207-486B-B523-A557E6D54B47}]
2009-07-14 01:14:15 301568 ----a-w- C:\Windows\System32\cmd.exe

Contents of the 'Scheduled Tasks' folder

2011-10-10 C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-08-01 13:44:09 . 2010-08-01 13:44:07]

2011-10-10 C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-08-01 13:44:09 . 2010-08-01 13:44:07]


--------- x86-64 -----------


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" [2010-05-31 21:38:57 10775584]
"RtHDVBg"="C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" [2010-05-31 21:38:47 2040352]
"Apoint"="C:\Program Files (x86)\Apoint\Apoint.exe" [BU]
"CanonSolutionMenu"="C:\Program Files (x86)\Canon\SolutionMenu\CNSLMAIN.exe" [2009-09-04 01:43:00 767312]
"CanonMyPrinter"="C:\Program Files\Canon\MyPrinter\BJMyPrt.exe" [2010-03-25 02:50:00 2726728]
"egui"="C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" [2010-11-18 12:11:32 2919168]

------- Supplementary Scan -------

uLocal Page = C:\Windows\system32\blank.htm
uStart Page = hxxp://start.icq.com/
mLocal Page = C:\Windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = <local>
IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
IE: WikiKomentáre Google... - C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_7461B1589E8B4FB7.dll/cmsidewiki.html
IE: {{73C6DCFB-B606-47F3-BDFA-9A4FBF931E37} - C:\Program Files (x86)\ICQ7.4\ICQ.exe
TCP: DhcpNameServer = 192.168.5.1
FF - ProfilePath - C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\na314e36.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/

- - - - ORPHANS REMOVED - - - -

Wow6432Node-HKLM-Run-ApnUpdater - C:\Program Files (x86)\Ask.com\Updater\Updater.exe

[imprezion]

posledny log TDSSKiller:


11:41:07.0980 5848 TDSS rootkit removing tool 2.6.9.0 Oct 14 2011 11:33:24
11:41:08.0377 5848 ============================================================
11:41:08.0377 5848 Current date / time: 2011/10/15 11:41:08.0377
11:41:08.0377 5848 SystemInfo:
11:41:08.0377 5848
11:41:08.0377 5848 OS Version: 6.1.7600 ServicePack: 0.0
11:41:08.0377 5848 Product type: Workstation
11:41:08.0377 5848 ComputerName: ADMIN-VAIO
11:41:08.0377 5848 UserName: admin
11:41:08.0377 5848 Windows directory: C:\Windows
11:41:08.0377 5848 System windows directory: C:\Windows
11:41:08.0377 5848 Running under WOW64
11:41:08.0377 5848 Processor architecture: Intel x64
11:41:08.0377 5848 Number of processors: 2
11:41:08.0377 5848 Page size: 0x1000
11:41:08.0377 5848 Boot type: Normal boot
11:41:08.0377 5848 ============================================================
11:41:08.0983 5848 Initialize success
11:42:09.0392 2952 ============================================================
11:42:09.0392 2952 Scan started
11:42:09.0392 2952 Mode: Manual;
11:42:09.0392 2952 ============================================================
11:42:11.0360 2952 1394ohci (1b00662092f9f9568b995902f0cc40d5) C:\Windows\system32\drivers\1394ohci.sys
11:42:11.0407 2952 1394ohci - ok
11:42:11.0645 2952 ACPI (6f11e88748cdefd2f76aa215f97ddfe5) C:\Windows\system32\drivers\ACPI.sys
11:42:11.0649 2952 ACPI - ok
11:42:11.0794 2952 AcpiPmi (63b05a0420ce4bf0e4af6dcc7cada254) C:\Windows\system32\drivers\acpipmi.sys
11:42:11.0820 2952 AcpiPmi - ok
11:42:11.0913 2952 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\drivers\adp94xx.sys
11:42:11.0951 2952 adp94xx - ok
11:42:12.0067 2952 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\drivers\adpahci.sys
11:42:12.0110 2952 adpahci - ok
11:42:12.0226 2952 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\drivers\adpu320.sys
11:42:12.0230 2952 adpu320 - ok
11:42:12.0410 2952 AFD (6ef20ddf3172e97d69f596fb90602f29) C:\Windows\system32\drivers\afd.sys
11:42:12.0419 2952 AFD - ok
11:42:12.0483 2952 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
11:42:12.0508 2952 agp440 - ok
11:42:12.0642 2952 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
11:42:12.0662 2952 aliide - ok
11:42:12.0753 2952 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
11:42:12.0772 2952 amdide - ok
11:42:12.0863 2952 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\drivers\amdk8.sys
11:42:12.0882 2952 AmdK8 - ok
11:42:12.0936 2952 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\drivers\amdppm.sys
11:42:12.0974 2952 AmdPPM - ok
11:42:13.0066 2952 amdsata (7a4b413614c055935567cf88a9734d38) C:\Windows\system32\drivers\amdsata.sys
11:42:13.0086 2952 amdsata - ok
11:42:13.0145 2952 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\drivers\amdsbs.sys
11:42:13.0205 2952 amdsbs - ok
11:42:13.0285 2952 amdxata (b4ad0cacbab298671dd6f6ef7e20679d) C:\Windows\system32\drivers\amdxata.sys
11:42:13.0292 2952 amdxata - ok
11:42:13.0366 2952 ApfiltrService (2d45f2dfbc3d8f53df7ebeffa8c9bc38) C:\Windows\system32\drivers\Apfiltr.sys
11:42:13.0410 2952 ApfiltrService - ok
11:42:13.0536 2952 AppID (42fd751b27fa0e9c69bb39f39e409594) C:\Windows\system32\drivers\appid.sys
11:42:13.0578 2952 AppID - ok
11:42:13.0626 2952 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\drivers\arc.sys
11:42:13.0644 2952 arc - ok
11:42:13.0693 2952 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\drivers\arcsas.sys
11:42:13.0707 2952 arcsas - ok
11:42:13.0801 2952 ArcSoftKsUFilter (c130bc4a51b1382b2be8e44579ec4c0a) C:\Windows\system32\DRIVERS\ArcSoftKsUFilter.sys
11:42:13.0804 2952 ArcSoftKsUFilter - ok
11:42:13.0847 2952 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
11:42:13.0864 2952 AsyncMac - ok
11:42:14.0007 2952 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
11:42:14.0061 2952 atapi - ok
11:42:14.0393 2952 athr (cca705cdf038d5bc243203ce4416b345) C:\Windows\system32\DRIVERS\athrx.sys
11:42:14.0478 2952 athr - ok
11:42:14.0865 2952 atikmdag (eaea2ce49de0cca80beb9134107e5dd7) C:\Windows\system32\DRIVERS\atikmdag.sys
11:42:15.0039 2952 atikmdag - ok
11:42:15.0198 2952 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\drivers\bxvbda.sys
11:42:15.0223 2952 b06bdrv - ok
11:42:15.0261 2952 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
11:42:15.0297 2952 b57nd60a - ok
11:42:15.0335 2952 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
11:42:15.0338 2952 Beep - ok
11:42:15.0392 2952 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\drivers\blbdrive.sys
11:42:15.0410 2952 blbdrive - ok
11:42:15.0444 2952 bowser (19d20159708e152267e53b66677a4995) C:\Windows\system32\DRIVERS\bowser.sys
11:42:15.0480 2952 bowser - ok
11:42:15.0520 2952 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\drivers\BrFiltLo.sys
11:42:15.0522 2952 BrFiltLo - ok
11:42:15.0543 2952 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\drivers\BrFiltUp.sys
11:42:15.0545 2952 BrFiltUp - ok
11:42:15.0581 2952 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
11:42:15.0603 2952 Brserid - ok
11:42:15.0621 2952 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
11:42:15.0639 2952 BrSerWdm - ok
11:42:15.0669 2952 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
11:42:15.0686 2952 BrUsbMdm - ok
11:42:15.0709 2952 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
11:42:15.0711 2952 BrUsbSer - ok
11:42:15.0751 2952 BthEnum (cf98190a94f62e405c8cb255018b2315) C:\Windows\system32\drivers\BthEnum.sys
11:42:15.0773 2952 BthEnum - ok
11:42:15.0979 2952 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
11:42:16.0016 2952 BTHMODEM - ok
11:42:16.0061 2952 BthPan (02dd601b708dd0667e1331fa8518e9ff) C:\Windows\system32\DRIVERS\bthpan.sys
11:42:16.0062 2952 BthPan - ok
11:42:16.0131 2952 BTHPORT (21084ceb85280468c9aca3c805c0f8cf) C:\Windows\System32\Drivers\BTHport.sys
11:42:16.0161 2952 BTHPORT - ok
11:42:16.0201 2952 BTHUSB (8504842634dd144c075b6b0c982ccec4) C:\Windows\System32\Drivers\BTHUSB.sys
11:42:16.0220 2952 BTHUSB - ok
11:42:16.0370 2952 btwampfl (59e3510784548c6939c1b3b985c232e3) C:\Windows\system32\drivers\btwampfl.sys
11:42:16.0415 2952 btwampfl - ok
11:42:16.0454 2952 btwaudio (1872074ed0a3fb22e3f1e3197b984bfa) C:\Windows\system32\drivers\btwaudio.sys
11:42:16.0457 2952 btwaudio - ok
11:42:16.0513 2952 btwavdt (691cf076c33ab1c3a5b2fd5450300733) C:\Windows\system32\drivers\btwavdt.sys
11:42:16.0523 2952 btwavdt - ok
11:42:16.0569 2952 btwl2cap (07096d2bc22ccb6cea5a532df0be8a75) C:\Windows\system32\DRIVERS\btwl2cap.sys
11:42:16.0571 2952 btwl2cap - ok
11:42:16.0611 2952 btwrchid (c9273b20dec8ce38dbce5d29de63c907) C:\Windows\system32\DRIVERS\btwrchid.sys
11:42:16.0613 2952 btwrchid - ok
11:42:16.0681 2952 catchme - ok
11:42:16.0726 2952 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
11:42:16.0729 2952 cdfs - ok
11:42:16.0761 2952 cdrom (83d2d75e1efb81b3450c18131443f7db) C:\Windows\system32\DRIVERS\cdrom.sys
11:42:16.0784 2952 cdrom - ok
11:42:16.0838 2952 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\drivers\circlass.sys
11:42:16.0858 2952 circlass - ok
11:42:16.0932 2952 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
11:42:16.0937 2952 CLFS - ok
11:42:16.0972 2952 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\drivers\CmBatt.sys
11:42:16.0988 2952 CmBatt - ok
11:42:17.0008 2952 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
11:42:17.0032 2952 cmdide - ok
11:42:17.0079 2952 CNG (f95fd4cb7da00ba2a63ce9f6b5c053e1) C:\Windows\system32\Drivers\cng.sys
11:42:17.0103 2952 CNG - ok
11:42:17.0135 2952 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\drivers\compbatt.sys
11:42:17.0157 2952 Compbatt - ok
11:42:17.0179 2952 CompositeBus (f26b3a86f6fa87ca360b879581ab4123) C:\Windows\system32\drivers\CompositeBus.sys
11:42:17.0181 2952 CompositeBus - ok
11:42:17.0222 2952 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\drivers\crcdisk.sys
11:42:17.0225 2952 crcdisk - ok
11:42:17.0305 2952 DfsC (9c253ce7311ca60fc11c774692a13208) C:\Windows\system32\Drivers\dfsc.sys
11:42:17.0308 2952 DfsC - ok
11:42:17.0327 2952 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
11:42:17.0364 2952 discache - ok
11:42:17.0379 2952 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\drivers\disk.sys
11:42:17.0397 2952 Disk - ok
11:42:17.0470 2952 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
11:42:17.0489 2952 drmkaud - ok
11:42:17.0609 2952 dtsoftbus01 (fb9bef3401ee5ecc2603311b9c64f44a) C:\Windows\system32\DRIVERS\dtsoftbus01.sys
11:42:17.0612 2952 dtsoftbus01 - ok
11:42:17.0653 2952 DXGKrnl (ebce0b0924835f635f620d19f0529dce) C:\Windows\System32\drivers\dxgkrnl.sys
11:42:17.0666 2952 DXGKrnl - ok
11:42:17.0800 2952 eamonm (72a1aa3c6c79b928d02a6fad387b1349) C:\Windows\system32\DRIVERS\eamonm.sys
11:42:17.0806 2952 eamonm - ok
11:42:18.0000 2952 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\drivers\evbda.sys
11:42:18.0117 2952 ebdrv - ok
11:42:18.0246 2952 ehdrv (e99457900012b53b2226f146ecaf9136) C:\Windows\system32\DRIVERS\ehdrv.sys
11:42:18.0269 2952 ehdrv - ok
11:42:18.0367 2952 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\drivers\elxstor.sys
11:42:18.0376 2952 elxstor - ok
11:42:18.0437 2952 epfwwfpr (a2af094dcbe8bff7e898d327750506a0) C:\Windows\system32\DRIVERS\epfwwfpr.sys
11:42:18.0457 2952 epfwwfpr - ok
11:42:18.0488 2952 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
11:42:18.0507 2952 ErrDev - ok
11:42:18.0562 2952 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
11:42:18.0601 2952 exfat - ok
11:42:18.0622 2952 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
11:42:18.0659 2952 fastfat - ok
11:42:18.0692 2952 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\drivers\fdc.sys
11:42:18.0724 2952 fdc - ok
11:42:18.0748 2952 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
11:42:18.0769 2952 FileInfo - ok
11:42:18.0784 2952 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
11:42:18.0807 2952 Filetrace - ok
11:42:18.0840 2952 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\drivers\flpydisk.sys
11:42:18.0842 2952 flpydisk - ok
11:42:18.0868 2952 FltMgr (f7866af72abbaf84b1fa5aa195378c59) C:\Windows\system32\drivers\fltmgr.sys
11:42:18.0889 2952 FltMgr - ok
11:42:18.0914 2952 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
11:42:18.0935 2952 FsDepends - ok
11:42:18.0949 2952 Fs_Rec (e95ef8547de20cf0603557c0cf7a9462) C:\Windows\system32\drivers\Fs_Rec.sys
11:42:18.0967 2952 Fs_Rec - ok
11:42:19.0095 2952 fvevol (b8b2a6e1558f8f5de5ce431c5b2c7b09) C:\Windows\system32\DRIVERS\fvevol.sys
11:42:19.0119 2952 fvevol - ok
11:42:19.0145 2952 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\drivers\gagp30kx.sys
11:42:19.0204 2952 gagp30kx - ok
11:42:19.0260 2952 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
11:42:19.0262 2952 hcw85cir - ok
11:42:19.0298 2952 HdAudAddService (6410f6f415b2a5a9037224c41da8bf12) C:\Windows\system32\drivers\HdAudio.sys
11:42:19.0307 2952 HdAudAddService - ok
11:42:19.0348 2952 HDAudBus (0a49913402747a0b67de940fb42cbdbb) C:\Windows\system32\drivers\HDAudBus.sys
11:42:19.0353 2952 HDAudBus - ok
11:42:19.0395 2952 HECIx64 (b6ac71aaa2b10848f57fc49d55a651af) C:\Windows\system32\drivers\HECIx64.sys
11:42:19.0397 2952 HECIx64 - ok
11:42:19.0431 2952 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\drivers\HidBatt.sys
11:42:19.0466 2952 HidBatt - ok
11:42:19.0500 2952 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\drivers\hidbth.sys
11:42:19.0519 2952 HidBth - ok
11:42:19.0538 2952 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\drivers\hidir.sys
11:42:19.0574 2952 HidIr - ok
11:42:19.0642 2952 HidUsb (b3bf6b5b50006def50b66306d99fcf6f) C:\Windows\system32\DRIVERS\hidusb.sys
11:42:19.0660 2952 HidUsb - ok
11:42:19.0699 2952 HpSAMD (0886d440058f203eba0e1825e4355914) C:\Windows\system32\drivers\HpSAMD.sys
11:42:19.0717 2952 HpSAMD - ok
11:42:19.0768 2952 HTTP (cee049cac4efa7f4e1e4ad014414a5d4) C:\Windows\system32\drivers\HTTP.sys
11:42:19.0793 2952 HTTP - ok
11:42:19.0806 2952 hwpolicy (f17766a19145f111856378df337a5d79) C:\Windows\system32\drivers\hwpolicy.sys
11:42:19.0825 2952 hwpolicy - ok
11:42:19.0888 2952 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
11:42:19.0922 2952 i8042prt - ok
11:42:19.0972 2952 iaStor (abbf174cb394f5c437410a788b7e404a) C:\Windows\system32\drivers\iaStor.sys
11:42:19.0975 2952 iaStor - ok
11:42:20.0064 2952 iaStorV (d83efb6fd45df9d55e9a1afc63640d50) C:\Windows\system32\drivers\iaStorV.sys
11:42:20.0091 2952 iaStorV - ok
11:42:20.0609 2952 igfx (2a22ab054f4630d2ef4bab2853f6d5f6) C:\Windows\system32\DRIVERS\igdkmd64.sys
11:42:20.0847 2952 igfx - ok
11:42:21.0007 2952 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\drivers\iirsp.sys
11:42:21.0009 2952 iirsp - ok
11:42:21.0081 2952 Impcd (dd587a55390ed2295bce6d36ad567da9) C:\Windows\system32\drivers\Impcd.sys
11:42:21.0085 2952 Impcd - ok
11:42:21.0176 2952 IntcAzAudAddService (526e482afb586cb1cdd687869decf686) C:\Windows\system32\drivers\RTKVHD64.sys
11:42:21.0219 2952 IntcAzAudAddService - ok
11:42:21.0330 2952 IntcDAud (58cf58dee26c909bd6f977b61d246295) C:\Windows\system32\DRIVERS\IntcDAud.sys
11:42:21.0370 2952 IntcDAud - ok
11:42:21.0406 2952 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
11:42:21.0408 2952 intelide - ok
11:42:21.0445 2952 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\drivers\intelppm.sys
11:42:21.0445 2952 intelppm - ok
11:42:21.0474 2952 IpFilterDriver (722dd294df62483cecaae6e094b4d695) C:\Windows\system32\DRIVERS\ipfltdrv.sys
11:42:21.0477 2952 IpFilterDriver - ok
11:42:21.0506 2952 IPMIDRV (e2b4a4494db7cb9b89b55ca268c337c5) C:\Windows\system32\drivers\IPMIDrv.sys
11:42:21.0510 2952 IPMIDRV - ok
11:42:21.0518 2952 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
11:42:21.0541 2952 IPNAT - ok
11:42:21.0576 2952 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
11:42:21.0579 2952 IRENUM - ok
11:42:21.0606 2952 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
11:42:21.0625 2952 isapnp - ok
11:42:21.0650 2952 iScsiPrt (fa4d2557de56d45b0a346f93564be6e1) C:\Windows\system32\drivers\msiscsi.sys
11:42:21.0671 2952 iScsiPrt - ok
11:42:21.0697 2952 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\drivers\kbdclass.sys
11:42:21.0701 2952 kbdclass - ok
11:42:21.0742 2952 kbdhid (6def98f8541e1b5dceb2c822a11f7323) C:\Windows\system32\drivers\kbdhid.sys
11:42:21.0744 2952 kbdhid - ok
11:42:21.0794 2952 KSecDD (e8b6fcc9c83535c67f835d407620bd27) C:\Windows\system32\Drivers\ksecdd.sys
11:42:21.0799 2952 KSecDD - ok
11:42:21.0917 2952 KSecPkg (a8c63880ef6f4d3fec7b616b9c060215) C:\Windows\system32\Drivers\ksecpkg.sys
11:42:21.0945 2952 KSecPkg - ok
11:42:22.0181 2952 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
11:42:22.0206 2952 ksthunk - ok
11:42:22.0292 2952 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
11:42:22.0311 2952 lltdio - ok
11:42:22.0356 2952 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\drivers\lsi_fc.sys
11:42:22.0375 2952 LSI_FC - ok
11:42:22.0414 2952 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\drivers\lsi_sas.sys
11:42:22.0438 2952 LSI_SAS - ok
11:42:22.0476 2952 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\drivers\lsi_sas2.sys
11:42:22.0497 2952 LSI_SAS2 - ok
11:42:22.0519 2952 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\drivers\lsi_scsi.sys
11:42:22.0539 2952 LSI_SCSI - ok
11:42:22.0587 2952 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
11:42:22.0600 2952 luafv - ok
11:42:22.0637 2952 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\drivers\megasas.sys
11:42:22.0672 2952 megasas - ok
11:42:22.0722 2952 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\drivers\MegaSR.sys
11:42:22.0747 2952 MegaSR - ok
11:42:22.0801 2952 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
11:42:22.0803 2952 Modem - ok
11:42:22.0832 2952 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
11:42:22.0833 2952 monitor - ok
11:42:22.0864 2952 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
11:42:22.0866 2952 mouclass - ok
11:42:22.0903 2952 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
11:42:22.0905 2952 mouhid - ok
11:42:22.0925 2952 mountmgr (791af66c4d0e7c90a3646066386fb571) C:\Windows\system32\drivers\mountmgr.sys
11:42:22.0944 2952 mountmgr - ok
11:42:22.0986 2952 mpio (609d1d87649ecc19796f4d76d4c15cea) C:\Windows\system32\drivers\mpio.sys
11:42:23.0006 2952 mpio - ok
11:42:23.0032 2952 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
11:42:23.0055 2952 mpsdrv - ok
11:42:23.0084 2952 MRxDAV (30524261bb51d96d6fcbac20c810183c) C:\Windows\system32\drivers\mrxdav.sys
11:42:23.0087 2952 MRxDAV - ok
11:42:23.0142 2952 mrxsmb (040d62a9d8ad28922632137acdd984f2) C:\Windows\system32\DRIVERS\mrxsmb.sys
11:42:23.0174 2952 mrxsmb - ok
11:42:23.0223 2952 mrxsmb10 (f0067552f8f9b33d7c59403ab808a3cb) C:\Windows\system32\DRIVERS\mrxsmb10.sys
11:42:23.0228 2952 mrxsmb10 - ok
11:42:23.0244 2952 mrxsmb20 (3c142d31de9f2f193218a53fe2632051) C:\Windows\system32\DRIVERS\mrxsmb20.sys
11:42:23.0264 2952 mrxsmb20 - ok
11:42:23.0298 2952 msahci (5c37497276e3b3a5488b23a326a754b7) C:\Windows\system32\drivers\msahci.sys
11:42:23.0315 2952 msahci - ok
11:42:23.0339 2952 msdsm (8d27b597229aed79430fb9db3bcbfbd0) C:\Windows\system32\drivers\msdsm.sys
11:42:23.0367 2952 msdsm - ok
11:42:23.0405 2952 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
11:42:23.0407 2952 Msfs - ok
11:42:23.0422 2952 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
11:42:23.0423 2952 mshidkmdf - ok
11:42:23.0457 2952 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
11:42:23.0475 2952 msisadrv - ok
11:42:23.0516 2952 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
11:42:23.0517 2952 MSKSSRV - ok
11:42:23.0535 2952 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
11:42:23.0536 2952 MSPCLOCK - ok
11:42:23.0558 2952 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
11:42:23.0574 2952 MSPQM - ok
11:42:23.0609 2952 MsRPC (89cb141aa8616d8c6a4610fa26c60964) C:\Windows\system32\drivers\MsRPC.sys
11:42:23.0615 2952 MsRPC - ok
11:42:23.0655 2952 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
11:42:23.0656 2952 mssmbios - ok
11:42:23.0676 2952 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
11:42:23.0678 2952 MSTEE - ok
11:42:23.0709 2952 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\drivers\MTConfig.sys
11:42:23.0711 2952 MTConfig - ok
11:42:23.0739 2952 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
11:42:23.0759 2952 Mup - ok
11:42:23.0888 2952 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
11:42:23.0952 2952 NativeWifiP - ok
11:42:24.0258 2952 NDIS (cad515dbd07d082bb317d9928ce8962c) C:\Windows\system32\drivers\ndis.sys
11:42:24.0298 2952 NDIS - ok
11:42:24.0328 2952 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
11:42:24.0348 2952 NdisCap - ok
11:42:24.0406 2952 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
11:42:24.0408 2952 NdisTapi - ok
11:42:24.0432 2952 Ndisuio (f105ba1e22bf1f2ee8f005d4305e4bec) C:\Windows\system32\DRIVERS\ndisuio.sys
11:42:24.0436 2952 Ndisuio - ok
11:42:24.0458 2952 NdisWan (557dfab9ca1fcb036ac77564c010dad3) C:\Windows\system32\DRIVERS\ndiswan.sys
11:42:24.0477 2952 NdisWan - ok
11:42:24.0498 2952 NDProxy (659b74fb74b86228d6338d643cd3e3cf) C:\Windows\system32\drivers\NDProxy.sys
11:42:24.0516 2952 NDProxy - ok
11:42:24.0572 2952 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
11:42:24.0591 2952 NetBIOS - ok
11:42:24.0620 2952 NetBT (9162b273a44ab9dce5b44362731d062a) C:\Windows\system32\DRIVERS\netbt.sys
11:42:24.0626 2952 NetBT - ok
11:42:24.0908 2952 NETw5s64 (18555f48844c2861d9dce8f2b7223ae5) C:\Windows\system32\DRIVERS\NETw5s64.sys
11:42:25.0095 2952 NETw5s64 - ok
11:42:25.0192 2952 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\drivers\nfrd960.sys
11:42:25.0228 2952 nfrd960 - ok
11:42:25.0281 2952 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
11:42:25.0300 2952 Npfs - ok
11:42:25.0318 2952 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
11:42:25.0320 2952 nsiproxy - ok
11:42:25.0467 2952 Ntfs (356698a13c4630d5b31c37378d469196) C:\Windows\system32\drivers\Ntfs.sys
11:42:25.0525 2952 Ntfs - ok
11:42:25.0548 2952 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
11:42:25.0568 2952 Null - ok
11:42:25.0594 2952 nvraid (3e38712941e9bb4ddbee00affe3fed3d) C:\Windows\system32\drivers\nvraid.sys
11:42:25.0598 2952 nvraid - ok
11:42:25.0614 2952 nvstor (477dc4d6deb99be37084c9ac6d013da1) C:\Windows\system32\drivers\nvstor.sys
11:42:25.0637 2952 nvstor - ok
11:42:25.0661 2952 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
11:42:25.0690 2952 nv_agp - ok
11:42:25.0723 2952 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
11:42:25.0743 2952 ohci1394 - ok
11:42:25.0802 2952 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\drivers\parport.sys
11:42:25.0823 2952 Parport - ok
11:42:25.0853 2952 partmgr (7daa117143316c4a1537e074a5a9eaf0) C:\Windows\system32\drivers\partmgr.sys
11:42:25.0871 2952 partmgr - ok
11:42:25.0921 2952 pccsmcfd (81b5e63131090879ad6ef9f32109b88d) C:\Windows\system32\DRIVERS\pccsmcfdx64.sys
11:42:25.0940 2952 pccsmcfd - ok
11:42:25.0968 2952 pci (f36f6504009f2fb0dfd1b17a116ad74b) C:\Windows\system32\drivers\pci.sys
11:42:25.0989 2952 pci - ok
11:42:26.0012 2952 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
11:42:26.0029 2952 pciide - ok
11:42:26.0059 2952 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\drivers\pcmcia.sys
11:42:26.0082 2952 pcmcia - ok
11:42:26.0117 2952 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
11:42:26.0137 2952 pcw - ok
11:42:26.0173 2952 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
11:42:26.0202 2952 PEAUTH - ok
11:42:26.0287 2952 PptpMiniport (27cc19e81ba5e3403c48302127bda717) C:\Windows\system32\DRIVERS\raspptp.sys
11:42:26.0306 2952 PptpMiniport - ok
11:42:26.0336 2952 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\drivers\processr.sys
11:42:26.0354 2952 Processor - ok
11:42:26.0416 2952 Psched (ee992183bd8eaefd9973f352e587a299) C:\Windows\system32\DRIVERS\pacer.sys
11:42:26.0418 2952 Psched - ok
11:42:26.0471 2952 PxHlpa64 (fbf4db6d53585437e41a113300002a2b) C:\Windows\system32\Drivers\PxHlpa64.sys
11:42:26.0507 2952 PxHlpa64 - ok
11:42:26.0700 2952 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\drivers\ql2300.sys
11:42:26.0719 2952 ql2300 - ok
11:42:26.0744 2952 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\drivers\ql40xx.sys
11:42:26.0747 2952 ql40xx - ok
11:42:26.0787 2952 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
11:42:26.0805 2952 QWAVEdrv - ok
11:42:26.0829 2952 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
11:42:26.0848 2952 RasAcd - ok
11:42:26.0892 2952 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
11:42:26.0894 2952 RasAgileVpn - ok
11:42:26.0918 2952 Rasl2tp (87a6e852a22991580d6d39adc4790463) C:\Windows\system32\DRIVERS\rasl2tp.sys
11:42:26.0936 2952 Rasl2tp - ok
11:42:26.0959 2952 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
11:42:26.0963 2952 RasPppoe - ok
11:42:26.0982 2952 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
11:42:27.0000 2952 RasSstp - ok
11:42:27.0025 2952 rdbss (3bac8142102c15d59a87757c1d41dce5) C:\Windows\system32\DRIVERS\rdbss.sys
11:42:27.0032 2952 rdbss - ok
11:42:27.0063 2952 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\drivers\rdpbus.sys
11:42:27.0096 2952 rdpbus - ok
11:42:27.0134 2952 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
11:42:27.0136 2952 RDPCDD - ok
11:42:27.0157 2952 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
11:42:27.0158 2952 RDPENCDD - ok
11:42:27.0182 2952 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
11:42:27.0198 2952 RDPREFMP - ok
11:42:27.0225 2952 RDPWD (8a3e6bea1c53ea6177fe2b6eba2c80d7) C:\Windows\system32\drivers\RDPWD.sys
11:42:27.0248 2952 RDPWD - ok
11:42:27.0312 2952 rdyboost (e5dc9ba9e439d6dbdd79f8caacb5bf01) C:\Windows\system32\drivers\rdyboost.sys
11:42:27.0319 2952 rdyboost - ok
11:42:27.0371 2952 RFCOMM (3dd798846e2c28102b922c56e71b7932) C:\Windows\system32\DRIVERS\rfcomm.sys
11:42:27.0392 2952 RFCOMM - ok
11:42:27.0433 2952 rimspci (fa6abc06b629da29634d31f1fe0347bd) C:\Windows\system32\drivers\rimssne64.sys
11:42:27.0454 2952 rimspci - ok
11:42:27.0596 2952 risdsnpe (8f8539a7f5c117d4407b2985995671f2) C:\Windows\system32\drivers\risdsne64.sys
11:42:27.0627 2952 risdsnpe - ok
11:42:27.0681 2952 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
11:42:27.0699 2952 rspndr - ok
11:42:27.0778 2952 RTHDMIAzAudService (d6d381b76056c668679723938f06f16c) C:\Windows\system32\drivers\RtHDMIVX.sys
11:42:27.0802 2952 RTHDMIAzAudService - ok
11:42:27.0854 2952 sbp2port (e3bbb89983daf5622c1d50cf49f28227) C:\Windows\system32\drivers\sbp2port.sys
11:42:27.0872 2952 sbp2port - ok
11:42:27.0907 2952 scfilter (c94da20c7e3ba1dca269bc8460d98387) C:\Windows\system32\DRIVERS\scfilter.sys
11:42:27.0927 2952 scfilter - ok
11:42:27.0986 2952 sdbus (2c8d162efaf73abd36d8bcbb6340cae7) C:\Windows\system32\DRIVERS\sdbus.sys
11:42:27.0989 2952 sdbus - ok
11:42:28.0008 2952 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
11:42:28.0027 2952 secdrv - ok
11:42:28.0083 2952 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\drivers\serenum.sys
11:42:28.0100 2952 Serenum - ok
11:42:28.0149 2952 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\drivers\serial.sys
11:42:28.0217 2952 Serial - ok
11:42:28.0250 2952 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\drivers\sermouse.sys
11:42:28.0268 2952 sermouse - ok
11:42:28.0318 2952 SFEP (286d3889e6ab5589646ff8a63cb928ae) C:\Windows\system32\drivers\SFEP.sys
11:42:28.0337 2952 SFEP - ok
11:42:28.0367 2952 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
11:42:28.0384 2952 sffdisk - ok
11:42:28.0405 2952 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
11:42:28.0422 2952 sffp_mmc - ok
11:42:28.0442 2952 sffp_sd (178298f767fe638c9fedcbdef58bb5e4) C:\Windows\system32\drivers\sffp_sd.sys
11:42:28.0444 2952 sffp_sd - ok
11:42:28.0490 2952 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\drivers\sfloppy.sys
11:42:28.0524 2952 sfloppy - ok
11:42:28.0566 2952 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\drivers\SiSRaid2.sys
11:42:28.0603 2952 SiSRaid2 - ok
11:42:28.0625 2952 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\drivers\sisraid4.sys
11:42:28.0644 2952 SiSRaid4 - ok
11:42:28.0699 2952 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
11:42:28.0704 2952 Smb - ok
11:42:28.0741 2952 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
11:42:28.0760 2952 spldr - ok
11:42:28.0803 2952 srv (2408c0366d96bcdf63e8f1c78e4a29c5) C:\Windows\system32\DRIVERS\srv.sys
11:42:28.0817 2952 srv - ok
11:42:28.0840 2952 srv2 (76548f7b818881b47d8d1ae1be9c11f8) C:\Windows\system32\DRIVERS\srv2.sys
11:42:28.0863 2952 srv2 - ok
11:42:28.0882 2952 srvnet (0af6e19d39c70844c5caa8fb0183c36e) C:\Windows\system32\DRIVERS\srvnet.sys
11:42:28.0886 2952 srvnet - ok
11:42:28.0923 2952 sscdbus (f4f1e1ff6986fe8914525af751ea3eac) C:\Windows\system32\DRIVERS\sscdbus.sys
11:42:28.0927 2952 sscdbus - ok
11:42:28.0959 2952 sscdmdfl (5447690d2cfe1bde1be3a5a5a3e2f796) C:\Windows\system32\DRIVERS\sscdmdfl.sys
11:42:28.0963 2952 sscdmdfl - ok
11:42:28.0989 2952 sscdmdm (bfda292053aeb76a0c1d63b2279d5138) C:\Windows\system32\DRIVERS\sscdmdm.sys
11:42:29.0001 2952 sscdmdm - ok
11:42:29.0053 2952 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\drivers\stexstor.sys
11:42:29.0056 2952 stexstor - ok
11:42:29.0086 2952 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
11:42:29.0105 2952 swenum - ok
11:42:29.0239 2952 Tcpip (b9d87c7707f058ac652a398cd28de14b) C:\Windows\system32\drivers\tcpip.sys
11:42:29.0267 2952 Tcpip - ok
11:42:29.0306 2952 TCPIP6 (b9d87c7707f058ac652a398cd28de14b) C:\Windows\system32\DRIVERS\tcpip.sys
11:42:29.0318 2952 TCPIP6 - ok
11:42:29.0353 2952 tcpipreg (76d078af6f587b162d50210f761eb9ed) C:\Windows\system32\drivers\tcpipreg.sys
11:42:29.0355 2952 tcpipreg - ok
11:42:29.0376 2952 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
11:42:29.0393 2952 TDPIPE - ok
11:42:29.0401 2952 TDTCP (e4245bda3190a582d55ed09e137401a9) C:\Windows\system32\drivers\tdtcp.sys
11:42:29.0415 2952 TDTCP - ok
11:42:29.0449 2952 tdx (079125c4b17b01fcaeebce0bcb290c0f) C:\Windows\system32\DRIVERS\tdx.sys
11:42:29.0512 2952 tdx - ok
11:42:29.0529 2952 TermDD (c448651339196c0e869a355171875522) C:\Windows\system32\drivers\termdd.sys
11:42:29.0531 2952 TermDD - ok
11:42:29.0575 2952 TFsExDisk (48d9d00c2e0e72c3d4f52772c80355f6) C:\Windows\System32\Drivers\TFsExDisk.sys
11:42:29.0595 2952 TFsExDisk - ok
11:42:29.0645 2952 tssecsrv (61b96c26131e37b24e93327a0bd1fb95) C:\Windows\system32\DRIVERS\tssecsrv.sys
11:42:29.0647 2952 tssecsrv - ok
11:42:29.0684 2952 tunnel (3836171a2cdf3af8ef10856db9835a70) C:\Windows\system32\DRIVERS\tunnel.sys
11:42:29.0711 2952 tunnel - ok
11:42:29.0745 2952 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\drivers\uagp35.sys
11:42:29.0765 2952 uagp35 - ok
11:42:29.0797 2952 udfs (0e5e962b5649d544be54e8c90761ea2b) C:\Windows\system32\DRIVERS\udfs.sys
11:42:29.0803 2952 udfs - ok
11:42:29.0827 2952 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
11:42:29.0846 2952 uliagpkx - ok
11:42:29.0883 2952 umbus (eab6c35e62b1b0db0d1b48b671d3a117) C:\Windows\system32\DRIVERS\umbus.sys
11:42:29.0901 2952 umbus - ok
11:42:29.0930 2952 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\drivers\umpass.sys
11:42:29.0948 2952 UmPass - ok
11:42:29.0993 2952 usbccgp (b26afb54a534d634523c4fb66765b026) C:\Windows\system32\DRIVERS\usbccgp.sys
11:42:30.0011 2952 usbccgp - ok
11:42:30.0063 2952 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
11:42:30.0066 2952 usbcir - ok
11:42:30.0084 2952 usbehci (2ea4aff7be7eb4632e3aa8595b0803b5) C:\Windows\system32\drivers\usbehci.sys
11:42:30.0086 2952 usbehci - ok
11:42:30.0130 2952 usbhub (4c9042b8df86c1e8e6240c218b99b39b) C:\Windows\system32\drivers\usbhub.sys
11:42:30.0151 2952 usbhub - ok
11:42:30.0167 2952 usbohci (58e546bbaf87664fc57e0f6081e4f609) C:\Windows\system32\drivers\usbohci.sys
11:42:30.0185 2952 usbohci - ok
11:42:30.0241 2952 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
11:42:30.0260 2952 usbprint - ok
11:42:30.0287 2952 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
11:42:30.0289 2952 usbscan - ok
11:42:30.0319 2952 USBSTOR (080d3820da6c046be82fc8b45a893e83) C:\Windows\system32\DRIVERS\USBSTOR.SYS
11:42:30.0338 2952 USBSTOR - ok
11:42:30.0356 2952 usbuhci (81fb2216d3a60d1284455d511797db3d) C:\Windows\system32\drivers\usbuhci.sys
11:42:30.0358 2952 usbuhci - ok
11:42:30.0429 2952 usbvideo (d501e12614b00a3252073101d6a1a74b) C:\Windows\system32\Drivers\usbvideo.sys
11:42:30.0446 2952 usbvideo - ok
11:42:30.0514 2952 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
11:42:30.0550 2952 vdrvroot - ok
11:42:30.0583 2952 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
11:42:30.0585 2952 vga - ok
11:42:30.0609 2952 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
11:42:30.0628 2952 VgaSave - ok
11:42:30.0669 2952 vhdmp (c82e748660f62a242b2dfac1442f22a4) C:\Windows\system32\drivers\vhdmp.sys
11:42:30.0700 2952 vhdmp - ok
11:42:30.0729 2952 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
11:42:30.0747 2952 viaide - ok
11:42:30.0764 2952 volmgr (2b1a3dae2b4e70dbba822b7a03fbd4a3) C:\Windows\system32\drivers\volmgr.sys
11:42:30.0798 2952 volmgr - ok
11:42:30.0839 2952 volmgrx (99b0cbb569ca79acaed8c91461d765fb) C:\Windows\system32\drivers\volmgrx.sys
11:42:30.0843 2952 volmgrx - ok
11:42:30.0858 2952 volsnap (58f82eed8ca24b461441f9c3e4f0bf5c) C:\Windows\system32\drivers\volsnap.sys
11:42:30.0913 2952 volsnap - ok
11:42:30.0946 2952 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\drivers\vsmraid.sys
11:42:30.0967 2952 vsmraid - ok
11:42:31.0026 2952 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
11:42:31.0045 2952 vwifibus - ok
11:42:31.0085 2952 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
11:42:31.0087 2952 vwififlt - ok
11:42:31.0119 2952 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\drivers\wacompen.sys
11:42:31.0121 2952 WacomPen - ok
11:42:31.0175 2952 WANARP (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
11:42:31.0198 2952 WANARP - ok
11:42:31.0207 2952 Wanarpv6 (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
11:42:31.0208 2952 Wanarpv6 - ok
11:42:31.0278 2952 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\drivers\wd.sys
11:42:31.0282 2952 Wd - ok
11:42:31.0310 2952 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
11:42:31.0321 2952 Wdf01000 - ok
11:42:31.0367 2952 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
11:42:31.0385 2952 WfpLwf - ok
11:42:31.0405 2952 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
11:42:31.0424 2952 WIMMount - ok
11:42:31.0464 2952 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
11:42:31.0484 2952 WmiAcpi - ok
11:42:31.0520 2952 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
11:42:31.0537 2952 ws2ifsl - ok
11:42:31.0574 2952 WudfPf (7cadc74271dd6461c452c271b30bd378) C:\Windows\system32\drivers\WudfPf.sys
11:42:31.0602 2952 WudfPf - ok
11:42:31.0791 2952 WUDFRd (3b197af0fff08aa66b6b2241ca538d64) C:\Windows\system32\DRIVERS\WUDFRd.sys
11:42:31.0946 2952 WUDFRd - ok
11:42:32.0135 2952 yukonw7 (5250193ef8e173aa7491250f00eb367f) C:\Windows\system32\DRIVERS\yk62x64.sys
11:42:32.0167 2952 yukonw7 - ok
11:42:32.0221 2952 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
11:42:32.0260 2952 \Device\Harddisk0\DR0 - ok
11:42:32.0263 2952 Boot (0x1200) (602bb3187603a97b2d85cdbf3e99b5db) \Device\Harddisk0\DR0\Partition0
11:42:32.0264 2952 \Device\Harddisk0\DR0\Partition0 - ok
11:42:32.0281 2952 Boot (0x1200) (494a0d741fecf5d56ab66b0955369bb2) \Device\Harddisk0\DR0\Partition1
11:42:32.0282 2952 \Device\Harddisk0\DR0\Partition1 - ok
11:42:32.0282 2952 ============================================================
11:42:32.0282 2952 Scan finished
11:42:32.0282 2952 ============================================================
11:42:32.0329 5024 Detected object count: 0
11:42:32.0329 5024 Actual detected object count: 0

[jaro3]

ComboFix se odinstaluje takto:
Start-Spustit a zadej ComboFix /Uninstall

Vyčisti systém CCleanerem
a použij i T-Cleaner
http://www.edisk.cz/stahni/29485/T-Clea ... 8.5KB.html

smaže vše po Combu,MWAVu atd.-stáhneš>spustíš

pozn. před stažením T-Cleaneru a po dobu čištění deaktivuj antivir a antispyware ,následně T-Cleaner smaž a zapni si znovu antivir a antispyware.


Vlož nový log z HJT.

Stáhni AVP Tools
na svojí plochu.

Zaškrtni :
Hidden startup objects
System Memory
Disk boot sectors
Dokumenty
My email
Počítač
Místní disk C
Místní disk D
Jednotka DVD-Rom (E)
Jednotka BD-ROM (G)
A jiné , např. Flash disky , které máš připojeny.

Pokračuj podle instrukcí.Na konci se objeví textový soubor , který si hned ulož (save log) na svojí plochu pod názvem KAS.txt .Poté sem vlož celý obsah toho logu.

Pokud se Ti log nezobrazí:
Pokud máš AVPtool stále zapnutý, zkus zmáčknout tlačítko Zpráva (Report).
Pokud se Ti zobrazí tabulka, klikni na ní pravým myšítkem a dej Maximalize a měli by se Ti zobrazit výsledky.

[imprezion]

Dobry vecer,

Combofix som odinstaloval.
System vycisteny CCleanerem.
Pouzity T-cleaner.

Novy log z HJT:

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:36:37, on 20/10/2011
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16869)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Sony\Media Gallery\ElbServer.exe
C:\Program Files\Sony\VAIO Care\VCSpt.exe
C:\Program Files (x86)\Sony\Media Gallery\VRLPHelper.exe
C:\Program Files (x86)\uTorrent\uTorrent.exe
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
C:\Program Files (x86)\OLYMPUS\OLYMPUS Master 2\MMonitor.exe
C:\Program Files (x86)\Samsung\Samsung New PC Studio\NPSAgent.exe
C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe
C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe
C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SHTtray.exe
C:\Program Files (x86)\Winamp\winampa.exe
C:\Program Files (x86)\ScanSoft\OmniPageSE4\OpWareSE4.exe
C:\Program Files (x86)\QuickTime\qttask.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Windows\SysWOW64\RunDll32.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe
C:\Program Files\Sony\VAIO Personalization Manager\VpmIfPav.exe
C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe
C:\Program Files\Sony\VAIO Care\listener.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://start.icq.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.7.6406.1642\swg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [ISBMgr.exe] "C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe"
O4 - HKLM\..\Run: [Norton Online Backup] C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe
O4 - HKLM\..\Run: [PMBVolumeWatcher] C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe
O4 - HKLM\..\Run: [SHTtray.exe] C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SHTtray.exe
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files (x86)\Winamp\winampa.exe"
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [SSBkgdUpdate] "C:\Program Files (x86)\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
O4 - HKLM\..\Run: [OpwareSE4] "C:\Program Files (x86)\ScanSoft\OmniPageSE4\OpwareSE4.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [Elbserver] C:\Program Files (x86)\Sony\Media Gallery\ElbServer.exe /Stay
O4 - HKCU\..\Run: [VRLPHelper] C:\Program Files (x86)\Sony\Media Gallery\VRLPHelper.exe /Stay
O4 - HKCU\..\Run: [uTorrent] "C:\Program Files (x86)\uTorrent\uTorrent.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [OM2_Monitor] "C:\Program Files (x86)\OLYMPUS\OLYMPUS Master 2\MMonitor.exe"
O4 - HKCU\..\Run: [AutoStartNPSAgent] C:\Program Files (x86)\Samsung\Samsung New PC Studio\NPSAgent.exe
O4 - HKCU\..\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - Global Startup: Bluetooth.lnk = ?
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: ICQ7.4 - {73C6DCFB-B606-47F3-BDFA-9A4FBF931E37} - C:\Program Files (x86)\ICQ7.4\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.4 - {73C6DCFB-B606-47F3-BDFA-9A4FBF931E37} - C:\Program Files (x86)\ICQ7.4\ICQ.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O9 - Extra button: Add to Evernote - {E0B8C461-F8FB-49b4-8373-FE32E92528A6} - C:\Program Files (x86)\Evernote\Evernote3.5\enbar.dll
O9 - Extra 'Tools' menuitem: Add to Evernote - {E0B8C461-F8FB-49b4-8373-FE32E92528A6} - C:\Program Files (x86)\Evernote\Evernote3.5\enbar.dll
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: Adobe Active File Monitor V8 (AdobeActiveFileMonitor8.0) - Adobe Systems Incorporated - C:\Program Files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: PIXMA Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @C:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Norton Online Backup (NOBU) - Symantec Corporation - C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe
O23 - Service: PMBDeviceInfoProvider - Sony Corporation - C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: VAIO Care Performance Service (SampleCollector) - Sony Corporation - C:\Program Files\Sony\VAIO Care\VCPerfService.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia. - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: VAIO Media plus Content Importer (SOHCImp) - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe
O23 - Service: VAIO Media plus Digital Media Server (SOHDms) - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDms.exe
O23 - Service: VAIO Media plus Device Searcher (SOHDs) - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe
O23 - Service: VAIO Entertainment Common Service (SpfService) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\SPF\SpfService64.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: CamMonitor (uCamMonitor) - ArcSoft, Inc. - C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: VAIO Event Service - Sony Corporation - C:\Program Files (x86)\Sony\VAIO Event Service\VESMgr.exe
O23 - Service: VAIO Power Management - Sony Corporation - C:\Program Files\Sony\VAIO Power Management\SPMService.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: VAIO Content Folder Watcher (VCFw) - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe
O23 - Service: VAIO Content Metadata Intelligent Analyzing Manager (VcmIAlzMgr) - Sony Corporation - C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe
O23 - Service: VAIO Content Metadata Intelligent Network Service Manager (VcmINSMgr) - Sony Corporation - C:\Program Files\Sony\VCM Intelligent Network Service Manager\VcmINSMgr.exe
O23 - Service: VAIO Content Metadata XML Interface (VcmXmlIfHelper) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper64.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: VSNService - Sony Corporation - C:\Program Files\Sony\VAIO Smart Network\VSNService.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: VUAgent - Sony Corporation - C:\Program Files\Sony\VAIO Update Common\VUAgent.exe
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 14808 bytes

Sken z AVPtool trval 5 hodin a 30 minut, ale nenasiel ziadny virus, ani ziadny iny problem.
Log je tak velky, ze ho sem nemozem vlozit (velkost 113 MB)