HiJackThis Preventivka -re

helpmeboys · Příspěvekod **helpmeboys** » 23 srp 2012 03:50

omlouvám se za další topic, atf cleaner jsem provedl úspěšně a zapoměl jsem na log z malwarebytes a lockl jsem...

log zde:
Malwarebytes Anti-Malware 1.62.0.1300
www.malwarebytes.org

Verze databáze: v2012.08.23.01

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 6.0.2900.5512
Milan Štrbík :: MILAN [administrátor]

23.8.2012 3:37:37
mbam-log-2012-08-23 (03-46-42).txt

Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 215787
Uplynulý čas: 8 minut, 51 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 2
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{00CBB66B-1D3B-46D3-9577-323A336ACB50} (PUP.Blabbers) -> Žádná instrukce nebyla provedena.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{963B125B-8B21-49A2-A3A8-E37092276531} (PUP.Blabbers) -> Žádná instrukce nebyla provedena.

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 0
(Žádné škodlivé položky nebyly zjištěny)

(konec)

Reklama

Příspěvekod **memphisto** » 23 srp 2012 07:49

V Mbam vše smaž.

Vypni rezidentní štít antiviru a antispywaru
Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
Pokud bude po kontrole problém spustit aplikace nebo bude vyskakovat hláška o pokusu použít neplatnou operaci na klíč registru, který je označen pro odstranění, stačí restartovat počítač.

helpmeboys · Příspěvekod **helpmeboys** » 23 srp 2012 10:00

ComboFix log:

ComboFix 12-08-22.03 - Milan Štrbík 23.08.2012 9:48.1.1 - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.2048.1625 [GMT 2:00]
Spuštěný z: c:\documents and settings\Milan ŐtrbÝk\Dokumenty\Downloads\ComboFix.exe
.
VAROVÁNÍ - NA TOMTO POČÍTAČI NENÍ NAINSTALOVÁNA KONZOLA PRO ZOTAVENÍ !!
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
C:\CFLog
c:\windows\system32\SET2A.tmp
c:\windows\system32\SET93.tmp
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-07-23 do 2012-08-23 )))))))))))))))))))))))))))))))
.
.
2012-08-23 01:32 . 2012-07-03 11:46 22344 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-08-19 10:14 . 2012-08-19 10:26 -------- d-----w- c:\program files\Natáčení
2012-08-19 10:13 . 2012-08-19 10:13 -------- d-----w- C:\Tmp
2012-08-19 10:13 . 2012-08-19 10:13 -------- d-----w- c:\program files\Taksi
2012-08-19 08:22 . 2012-08-21 15:28 -------- d-----w- c:\program files\Microsoft Works
2012-08-19 08:19 . 2012-08-19 08:19 -------- d-----w- c:\windows\SHELLNEW
2012-08-19 08:18 . 2012-08-19 08:18 -------- d-----w- c:\documents and settings\Milan Štrbík\Local Settings\Data aplikací\Microsoft Help
2012-08-19 08:18 . 2012-08-21 15:30 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Microsoft Help
2012-08-19 08:18 . 2012-08-19 08:18 -------- d-----r- C:\MSOCache
2012-08-18 19:47 . 2012-08-18 19:47 271360 ----a-w- c:\windows\system32\drivers\atksgt.sys
2012-08-18 19:47 . 2012-08-18 19:47 18048 ----a-w- c:\windows\system32\drivers\lirsgt.sys
2012-08-18 19:46 . 2012-08-18 19:46 -------- d-----w- c:\windows\system32\AGEIA
2012-08-18 19:46 . 2012-08-18 19:46 -------- d-----w- c:\program files\AGEIA Technologies
2012-08-18 19:45 . 2012-08-18 19:45 -------- d-----w- c:\program files\Common Files\Wise Installation Wizard
2012-08-17 20:26 . 2012-08-17 20:26 -------- d-----w- c:\program files\GotClip
2012-08-17 20:26 . 2012-08-22 17:48 -------- d-----w- c:\program files\SweetIM
2012-08-17 20:26 . 2012-08-22 17:48 -------- d-----w- c:\documents and settings\All Users\Data aplikací\SweetIM
2012-08-17 09:08 . 2012-08-20 09:17 -------- d-----w- c:\program files\Hry
2012-08-17 07:19 . 2012-08-17 07:22 -------- d-----w- c:\program files\Bandicam
2012-08-17 07:19 . 2012-08-17 07:19 -------- d-----w- c:\program files\BandiMPEG1
2012-08-15 18:17 . 2012-08-15 18:17 -------- d-----w- c:\program files\GameSpy
2012-08-15 17:48 . 2012-08-15 17:48 -------- d-----w- c:\documents and settings\All Users\Data aplikací\ATI
2012-08-15 17:44 . 2012-08-15 17:46 -------- d-----w- c:\program files\ATI Technologies
2012-08-15 17:44 . 2012-08-15 17:44 -------- d-----w- c:\program files\ATI
2012-08-15 11:19 . 2006-07-28 07:30 62744 ----a-w- c:\windows\system32\xinput1_2.dll
2012-08-15 11:19 . 2005-05-26 13:34 2297552 ----a-w- c:\windows\system32\d3dx9_26.dll
2012-08-15 11:05 . 2012-08-17 09:06 -------- d-----w- c:\program files\bitComposer Games
2012-08-12 17:37 . 2012-08-12 17:37 -------- d-----w- c:\documents and settings\Milan Štrbík\Local Settings\Data aplikací\Skyrim
2012-08-09 19:01 . 2012-08-09 19:01 239168 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2012-08-09 10:03 . 2012-08-09 10:03 -------- d-----w- c:\documents and settings\Fixw0w\Data aplikací\LolClient
2012-08-09 05:41 . 2012-08-09 05:41 -------- d-----w- c:\documents and settings\Fixw0w\Data aplikací\IObit
2012-08-09 05:39 . 2012-08-09 07:55 -------- d-----w- c:\documents and settings\Fixw0w\Data aplikací\uTorrent
2012-08-08 16:12 . 2012-08-09 19:01 -------- d-----w- c:\program files\DAEMON Tools Lite
2012-08-08 15:43 . 2012-08-08 15:43 -------- d-----w- C:\Riot Games
2012-08-06 15:35 . 2012-08-06 15:35 -------- d-----w- c:\windows\system32\wbem\Repository
2012-08-06 06:18 . 2012-08-06 06:18 -------- d-----w- c:\program files\JAM Software
2012-08-05 17:37 . 2012-08-05 17:37 -------- d-----w- c:\documents and settings\Milan Štrbík\Data aplikací\Malwarebytes
2012-08-05 17:37 . 2012-08-05 17:37 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Malwarebytes
2012-08-05 17:37 . 2012-08-23 01:32 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2012-08-05 16:02 . 2012-08-05 16:11 -------- d-----w- c:\program files\EA Sports
2012-08-05 13:43 . 2012-08-05 13:43 -------- d-----w- c:\program files\Alcohol Soft
2012-08-05 10:47 . 2012-08-06 15:34 -------- d-----w- c:\program files\uTorrent
2012-08-05 08:44 . 2012-08-05 08:44 -------- d-----w- c:\program files\Speccy
2012-08-05 07:25 . 2012-08-05 07:25 -------- d-----w- C:\Media
2012-08-05 07:25 . 1999-12-12 23:01 44032 ----a-w- c:\windows\system32\CTSVCCDA.EXE
2012-08-05 07:25 . 1999-11-17 23:00 25088 ----a-w- c:\windows\system32\CTSVCCTL.EXE
2012-08-05 07:25 . 1999-10-07 00:00 55808 ----a-w- c:\windows\system32\CtMp3.Crl
2012-08-05 07:13 . 2012-08-05 07:13 -------- d-----w- c:\windows\Profiles
2012-08-05 07:13 . 2001-01-30 11:56 225280 ------w- c:\program files\Internet Explorer\PLUGINS\NPDocBox.dll
2012-08-05 07:13 . 2012-08-05 07:13 -------- d-----w- c:\windows\system32\Adobe
2012-08-05 07:13 . 2012-08-05 07:13 -------- d-----w- c:\documents and settings\Milan Štrbík\Data aplikací\InterTrust
2012-08-04 21:52 . 2012-08-04 21:52 -------- d-----w- c:\windows\system32\config\systemprofile\Data aplikací\IObit
2012-08-04 21:42 . 2012-08-04 21:42 -------- d-----w- c:\documents and settings\All Users\Data aplikací\IObit
2012-08-04 21:41 . 2012-08-05 08:56 -------- d-----w- c:\documents and settings\Milan Štrbík\Data aplikací\IObit
2012-08-04 21:41 . 2012-08-04 21:41 -------- d-----w- c:\program files\IObit
2012-07-29 20:22 . 2012-08-11 14:42 -------- d-----w- c:\documents and settings\Milan Štrbík\Data aplikací\Smarty Uninstaller
2012-07-29 20:19 . 2012-07-29 20:19 -------- d-----w- c:\documents and settings\All Users\Data aplikací\IsolatedStorage
2012-07-29 20:19 . 2011-04-25 08:25 4603616 ----a-w- c:\windows\system32\DevComponents.DotNetBar2.dll
2012-07-29 20:19 . 2012-07-29 20:19 -------- d-----w- c:\program files\Smarty Uninstaller
2012-07-29 20:18 . 2004-03-08 23:00 212240 ----a-w- c:\windows\system32\RICHTX32.OCX
2012-07-29 20:18 . 2004-02-28 19:05 266240 ----a-w- c:\windows\system32\vbalTreeView6.ocx
2012-07-29 20:18 . 1999-02-09 19:40 188928 ----a-w- c:\windows\system32\vbuzip10.DLL
2012-07-29 20:18 . 2012-07-29 20:20 -------- d-----w- c:\program files\Smarty Uninstaller Pro
2012-07-29 20:18 . 2007-08-15 11:09 417792 ----a-w- c:\windows\system32\vbalCmdBar6.ocx
2012-07-29 20:18 . 2007-08-15 11:09 159744 ----a-w- c:\windows\system32\wt_menu.dll
2012-07-29 20:18 . 2007-08-15 11:09 115920 ----a-w- c:\windows\system32\MSINET.ocx
2012-07-29 20:18 . 2007-08-15 11:09 94208 ----a-w- c:\windows\system32\img_lst.ocx
2012-07-29 20:18 . 2007-08-15 11:09 40960 ----a-w- c:\windows\system32\ssubtmr6.dll
2012-07-29 20:18 . 2007-08-15 11:09 262144 ----a-w- c:\windows\system32\lst_v.ocx
2012-07-29 20:18 . 2007-08-15 11:09 167683 ----a-w- c:\windows\system32\COMCT232.OCX
2012-07-29 20:18 . 2005-04-15 18:58 1351392 ----a-w- c:\windows\system32\comctl32.ocx
2012-07-29 18:50 . 2012-07-29 18:50 -------- d-----w- c:\documents and settings\Fixw0w\Data aplikací\ATI
2012-07-29 12:02 . 2012-07-29 12:02 -------- d-----w- c:\documents and settings\Fixw0w\Local Settings\Data aplikací\ATI
2012-07-26 16:02 . 2012-08-04 18:25 -------- d-----w- c:\program files\Lavalys
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-08-15 16:48 . 2012-07-17 19:17 107888 ----a-w- c:\windows\system32\CmdLineExt.dll
2012-08-14 19:41 . 2012-04-17 14:14 426184 -c--a-w- c:\windows\system32\FlashPlayerApp.exe
2012-08-14 19:41 . 2012-03-22 08:54 70344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-08-08 16:12 . 2012-03-28 06:29 428088 ----a-w- c:\windows\system32\drivers\sptd.sys
2012-07-18 20:14 . 2012-03-22 12:01 137464 ----a-w- c:\windows\system32\drivers\PnkBstrK.sys
2012-07-18 20:13 . 2012-03-22 12:01 214520 -c--a-w- c:\windows\system32\PnkBstrB.exe
2012-07-18 20:13 . 2012-03-22 12:01 214520 -c--a-w- c:\windows\system32\PnkBstrB.xtr
2012-07-18 19:34 . 2012-03-22 12:01 75064 ----a-w- c:\windows\system32\PnkBstrA.exe
2012-07-18 17:05 . 2012-07-17 19:14 22328 ----a-w- c:\documents and settings\Milan Štrbík\Data aplikací\PnkBstrK.sys
2012-07-18 17:05 . 2012-07-17 19:14 22328 ----a-w- c:\documents and settings\Milan Štrbík\Data aplikací\PnkBstrK.sys
2012-07-17 19:14 . 2012-07-17 19:14 2250024 ----a-w- c:\windows\system32\pbsvc.exe
2012-07-04 14:05 . 2012-02-01 15:32 139784 ----a-w- c:\windows\system32\drivers\rdpwd.sys
2012-07-03 18:22 . 2002-09-20 17:41 1866112 ----a-w- c:\windows\system32\win32k.sys
2012-06-22 14:32 . 2012-07-10 15:15 405144 ----a-w- c:\windows\system32\Newtonsoft.Json.Net20.dll
2012-06-18 19:29 . 2012-02-01 16:20 102400 ----a-w- c:\windows\DUMP703e.tmp
2012-06-05 15:49 . 2012-02-01 16:18 1372672 ------w- c:\windows\system32\msxml6.dll
2012-06-05 15:49 . 2002-09-20 18:04 1172480 ----a-w- c:\windows\system32\msxml3.dll
2012-06-04 04:32 . 2002-09-20 18:04 152576 ----a-w- c:\windows\system32\schannel.dll
2012-06-02 13:19 . 2009-08-06 18:24 15384 ----a-w- c:\windows\system32\wuaucpl.cpl.mui
2012-06-02 13:19 . 2009-08-06 18:24 22552 ----a-w- c:\windows\system32\wucltui.dll.mui
2012-06-02 13:19 . 2012-02-01 16:01 329240 ----a-w- c:\windows\system32\wucltui.dll
2012-06-02 13:19 . 2012-02-01 16:01 219160 ----a-w- c:\windows\system32\wuaucpl.cpl
2012-06-02 13:19 . 2012-02-01 16:01 210968 ----a-w- c:\windows\system32\wuweb.dll
2012-06-02 13:19 . 2012-02-01 16:01 35864 ----a-w- c:\windows\system32\wups.dll
2012-06-02 13:19 . 2012-02-01 15:32 53784 ----a-w- c:\windows\system32\wuauclt.exe
2012-06-02 13:19 . 2009-08-06 18:24 45080 ----a-w- c:\windows\system32\wups2.dll
2012-06-02 13:19 . 2009-08-06 18:24 18456 ----a-w- c:\windows\system32\wuaueng.dll.mui
2012-06-02 13:19 . 2009-08-06 18:24 15384 ----a-w- c:\windows\system32\wuapi.dll.mui
2012-06-02 13:19 . 2002-09-20 18:03 97304 ----a-w- c:\windows\system32\cdm.dll
2012-06-02 13:19 . 2012-02-01 16:01 577048 ----a-w- c:\windows\system32\wuapi.dll
2012-06-02 13:19 . 2012-02-01 15:32 1933848 ----a-w- c:\windows\system32\wuaueng.dll
2012-06-02 13:19 . 2012-03-22 05:43 17648 ----a-w- c:\windows\system32\mucltui.dll.mui
2012-06-02 13:18 . 2012-03-22 05:43 275696 ----a-w- c:\windows\system32\mucltui.dll
2012-06-02 13:18 . 2012-03-22 05:43 214256 ----a-w- c:\windows\system32\muweb.dll
2012-05-31 13:22 . 2002-09-20 18:03 602112 ----a-w- c:\windows\system32\crypt32.dll
.
.
------- Sigcheck -------
Note: Unsigned files aren't necessarily malware.
.
[7] 2008-06-20 . AD978A1B783B5719720CFF204B666C8E . 361600 . . [5.1.2600.5625] . . c:\windows\$hf_mig$\KB2509553\SP3QFE\tcpip.sys
[7] 2008-06-20 . 9AEFA14BD6B182D61E3119FA5F436D3D . 361600 . . [5.1.2600.5625] . . c:\windows\system32\dllcache\tcpip.sys
[-] 2008-06-20 . D9F19E78F98834CB411D6AD3C68D181A . 361600 . . [5.1.2600.5625] . . c:\windows\system32\drivers\tcpip.sys
[7] 2008-04-13 . 93EA8D04EC73A85DB02EB8805988F733 . 361344 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\tcpip.sys
[7] 2004-08-03 . 9F4B36614A0FC234525BA224957DE55C . 359040 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\tcpip.sys
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AHQInit"="c:\program files\Creative\SBLive\Program\AHQInit.exe" [2001-05-10 102400]
"SwitchBoard"="c:\program files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096]
"AudioHQ"="c:\program files\Creative\SBLive\AudioHQ\AHQTB.EXE" [2001-08-17 180224]
"AdobeCS5ServiceManager"="c:\program files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" [2010-02-22 406992]
"AdobeCS6ServiceManager"="c:\program files\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" [2012-03-09 1073312]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2012-04-05 98304]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\System32\CTFMON.EXE" [2008-04-14 15360]
.
c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\
Adobe Reader Speed Launch.lnk - c:\program files\Adobe\Reader 8.0\Reader\reader_sl.exe [2006-10-23 40048]
Adobe Reader Synchronizer.lnk - c:\program files\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe [2006-10-23 734872]
.
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^GamePark klient 2.lnk]
path=c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\GamePark klient 2.lnk
backup=c:\windows\pss\GamePark klient 2.lnkCommon Startup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Advanced SystemCare 5]
2012-03-06 16:39 574296 ----a-w- c:\program files\IObit\Advanced SystemCare 5\ASCTray.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusOverride"=dword:00000001
"FirewallOverride"=dword:00000001
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"c:\\Program Files\\Pando Networks\\Media Booster\\PMB.exe"=
"c:\\WINDOWS\\system32\\PnkBstrA.exe"=
"c:\\WINDOWS\\system32\\PnkBstrB.exe"=
"c:\\Program Files\\uTorrent\\uTorrent.exe"=
"c:\\WINDOWS\\system32\\javaw.exe"=
"c:\\WINDOWS\\system32\\msiexec.exe"=
"c:\\Program Files\\SweetIM\\Communicator\\SweetPacksUpdateManager.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Program Files\\Java\\jre6\\bin\\javaw.exe"=
"c:\\Program Files\\Hry\\Counter-Strike Source\\hl2.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"59069:TCP"= 59069:TCP:Pando Media Booster
"59069:UDP"= 59069:UDP:Pando Media Booster
.
R0 sptd;sptd;\SystemRoot\\SystemRoot\System32\Drivers\sptd.sys --> \SystemRoot\\SystemRoot\System32\Drivers\sptd.sys [?]
R0 viasraid;viasraid;c:\windows\system32\drivers\viasraid.sys [1.2.2012 17:45 77056]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\drivers\dtsoftbus01.sys [9.8.2012 21:01 239168]
R2 AdvancedSystemCareService5;Advanced SystemCare Service 5;c:\program files\IObit\Advanced SystemCare 5\ASCService.exe [4.8.2012 23:41 913752]
R2 ASTSRV;Nalpeiron Licensing Service;c:\windows\system32\ASTSRV.EXE [20.5.2012 20:32 57344]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [17.4.2012 16:14 250056]
S3 cpuz130;cpuz130;\??\c:\docume~1\MILANT~1\LOCALS~1\Temp\cpuz130\cpuz_x32.sys --> c:\docume~1\MILANT~1\LOCALS~1\Temp\cpuz130\cpuz_x32.sys [?]
S3 filter;filter;c:\windows\system32\drivers\filter.sys [26.11.2004 9:32 8832]
S3 FUTUREX;FUTUREX;\??\c:\documents and settings\Milan Štrbík\Dokumenty\Downloads\aida32pe_375\aida32.sys --> c:\documents and settings\Milan Štrbík\Dokumenty\Downloads\aida32pe_375\aida32.sys [?]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [23.8.2012 3:32 22344]
S3 npggsvc;nProtect GameGuard Service;c:\windows\system32\GameMon.des -service --> c:\windows\system32\GameMon.des -service [?]
S3 SwitchBoard;SwitchBoard;c:\program files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [19.2.2010 13:37 517096]
S3 XDva394;XDva394;\??\c:\windows\system32\XDva394.sys --> c:\windows\system32\XDva394.sys [?]
S4 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [23.8.2012 3:32 655944]
.
Obsah adresáře 'Naplánované úlohy'
.
2012-08-23 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-17 19:41]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.seznam.cz/
IE: E&xportovať do programu Microsoft Excel - c:\progra~1\MICROS~3\Office12\EXCEL.EXE/3000
IE: Free YouTube Download - c:\documents and settings\Milan Štrbík\Data aplikací\DVDVideoSoftIEHelpers\freeytvdownloader.htm
IE: Free YouTube to Mp3 Converter - c:\documents and settings\Milan Štrbík\Data aplikací\DVDVideoSoftIEHelpers\youtubetomp3.htm
IE: Search the Web - c:\program files\SweetIM\Toolbars\Internet Explorer\resources\menuext.html
TCP: DhcpNameServer = 10.0.0.138
DPF: DirectAnimation Java Classes - file://c:\windows\Java\classes\dajava.cab
DPF: Microsoft XML Parser for Java - file://c:\windows\Java\classes\xmldso.cab
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
WebBrowser-{687578B9-7132-4A7A-80E4-30EE31099E03} - (no file)
WebBrowser-{EEE6C35B-6118-11DC-9C72-001320C79847} - (no file)
HKCU-Run-AdobeBridge - (no file)
MSConfigStartUp-Steam - c:\program files\Steam\steam.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2012-08-23 09:54
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
[HKEY_LOCAL_MACHINE\System\ControlSet002\Services\npggsvc]
"ImagePath"="c:\windows\system32\GameMon.des -service"
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'winlogon.exe'(752)
c:\windows\system32\Ati2evxx.dll
c:\windows\system32\atiadlxx.dll
.
Celkový čas: 2012-08-23 09:56:42
ComboFix-quarantined-files.txt 2012-08-23 07:56
.
Před spuštěním: Volných bajtů: 78 477 307 904
Po spuštění: Volných bajtů: 78 542 548 992
.
- - End Of File - - 2236EFE63C12A648E4B14A80E89FCEF1

Příspěvekod **jaro3** » 23 srp 2012 10:46

Otevři si Poznámkový blok (Start -> Spustit... a napiš do okna Notepad a dej Ok.
Zkopíruj do něj následující celý text označený zeleně:

Kód: Vybrat vše

ClearJavaCache::

KillAll::
File::
c:\windows\DUMP703e.tmp
c:\windows\system32\XDva394.sys

Driver::
sptd
cpuz130
npggsvc
XDva394

Registry::
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusOverride"=dword:00000000
"FirewallOverride"=dword:00000000
[-HKEY_LOCAL_MACHINE\System\ControlSet002\Services\npggsvc]

Zvol možnost Soubor -> Uložit jako... a nastav tyto parametry:
Název souboru: zde napiš: CFScript.txt
Uložit jako typ: tak tam vyber Všechny soubory
Ulož soubor na plochu.
Ukonči všechna aktivní okna.

Uchop myší vytvořený skript CFScript.txt, přemísti ho nad stažený program ComboFix.exe a když se oba soubory překryjí, skript upusť.
- Automaticky se spustí ComboFix
- Vlož sem log, který vyběhne v závěru čistícího procesu + nový log z HJT

Upozornění : Může se stát, že po aplikaci Combofixu a restartu počítače, Windows nenaběhnou , nebo nenajede plocha , budou problémy s připojením, pak znovu restartuj počítač, pokud to nepomůže , po restartu mačkej klávesu F8 a pak zvol poslední známou funkční konfiguraci. , či použij bod obnovy.

Stáhni si TDSSKiller
Na svojí plochu.Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller.2.2.7.1._(datum)_log.txt , vlož sem prosím celý obsah logu.

Stáhni si aswMBR
na svojí plochu. Uzavři všechna okna , programy a prohlížeče. Poklepej na aswMBR.exe. Pokud se objeví hláška o možnosti stáhnutí databáze Avastu , klikni na NE. Poté klikni na „Scan“ . Po skenu klikni na „Save Log“ a ulož si log na plochu .Zkopíruj sem celý obsah toho logu. Pak klikni na „Exit“ k zavření programu.

helpmeboys · Příspěvekod **helpmeboys** » 23 srp 2012 11:21

Provedl jsem ten notepad a combofix zde:

ComboFix 12-08-22.03 - Milan Štrbík 23.08.2012 11:06:49.2.1 - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.2048.1579 [GMT 2:00]
Spuštěný z: c:\documents and settings\Milan Štrbík\Plocha\ComboFix.exe
Použité ovládací přepínače :: c:\documents and settings\Milan Štrbík\Plocha\CFScript.txt
.
VAROVÁNÍ - NA TOMTO POČÍTAČI NENÍ NAINSTALOVÁNA KONZOLA PRO ZOTAVENÍ !!
.
FILE ::
"c:\windows\DUMP703e.tmp"
"c:\windows\system32\XDva394.sys"
.
ADS - WINDOWS: deleted 0 bytes in 1 streams.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_CPUZ130
-------\Legacy_SPTD
-------\Legacy_XDVA394
-------\Service_cpuz130
-------\Service_npggsvc
-------\Service_sptd
-------\Service_XDva394
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-07-23 do 2012-08-23 )))))))))))))))))))))))))))))))
.
.
2012-08-23 01:32 . 2012-07-03 11:46 22344 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-08-19 10:14 . 2012-08-19 10:26 -------- d-----w- c:\program files\Natáčení
2012-08-19 10:13 . 2012-08-19 10:13 -------- d-----w- C:\Tmp
2012-08-19 10:13 . 2012-08-19 10:13 -------- d-----w- c:\program files\Taksi
2012-08-19 08:22 . 2012-08-21 15:28 -------- d-----w- c:\program files\Microsoft Works
2012-08-19 08:19 . 2012-08-19 08:19 -------- d-----w- c:\windows\SHELLNEW
2012-08-19 08:18 . 2012-08-19 08:18 -------- d-----w- c:\documents and settings\Milan Štrbík\Local Settings\Data aplikací\Microsoft Help
2012-08-19 08:18 . 2012-08-21 15:30 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Microsoft Help
2012-08-19 08:18 . 2012-08-19 08:18 -------- d-----r- C:\MSOCache
2012-08-18 19:47 . 2012-08-18 19:47 271360 ----a-w- c:\windows\system32\drivers\atksgt.sys
2012-08-18 19:47 . 2012-08-18 19:47 18048 ----a-w- c:\windows\system32\drivers\lirsgt.sys
2012-08-18 19:46 . 2012-08-18 19:46 -------- d-----w- c:\windows\system32\AGEIA
2012-08-18 19:46 . 2012-08-18 19:46 -------- d-----w- c:\program files\AGEIA Technologies
2012-08-18 19:45 . 2012-08-18 19:45 -------- d-----w- c:\program files\Common Files\Wise Installation Wizard
2012-08-17 20:26 . 2012-08-17 20:26 -------- d-----w- c:\program files\GotClip
2012-08-17 20:26 . 2012-08-22 17:48 -------- d-----w- c:\program files\SweetIM
2012-08-17 20:26 . 2012-08-22 17:48 -------- d-----w- c:\documents and settings\All Users\Data aplikací\SweetIM
2012-08-17 09:08 . 2012-08-20 09:17 -------- d-----w- c:\program files\Hry
2012-08-17 07:19 . 2012-08-17 07:22 -------- d-----w- c:\program files\Bandicam
2012-08-17 07:19 . 2012-08-17 07:19 -------- d-----w- c:\program files\BandiMPEG1
2012-08-15 18:17 . 2012-08-15 18:17 -------- d-----w- c:\program files\GameSpy
2012-08-15 17:48 . 2012-08-15 17:48 -------- d-----w- c:\documents and settings\All Users\Data aplikací\ATI
2012-08-15 17:44 . 2012-08-15 17:46 -------- d-----w- c:\program files\ATI Technologies
2012-08-15 17:44 . 2012-08-15 17:44 -------- d-----w- c:\program files\ATI
2012-08-15 11:19 . 2006-07-28 07:30 62744 ----a-w- c:\windows\system32\xinput1_2.dll
2012-08-15 11:19 . 2005-05-26 13:34 2297552 ----a-w- c:\windows\system32\d3dx9_26.dll
2012-08-15 11:05 . 2012-08-17 09:06 -------- d-----w- c:\program files\bitComposer Games
2012-08-12 17:37 . 2012-08-12 17:37 -------- d-----w- c:\documents and settings\Milan Štrbík\Local Settings\Data aplikací\Skyrim
2012-08-09 19:01 . 2012-08-09 19:01 239168 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2012-08-09 10:03 . 2012-08-09 10:03 -------- d-----w- c:\documents and settings\Fixw0w\Data aplikací\LolClient
2012-08-09 05:41 . 2012-08-09 05:41 -------- d-----w- c:\documents and settings\Fixw0w\Data aplikací\IObit
2012-08-09 05:39 . 2012-08-09 07:55 -------- d-----w- c:\documents and settings\Fixw0w\Data aplikací\uTorrent
2012-08-08 16:12 . 2012-08-09 19:01 -------- d-----w- c:\program files\DAEMON Tools Lite
2012-08-08 15:43 . 2012-08-08 15:43 -------- d-----w- C:\Riot Games
2012-08-06 15:35 . 2012-08-06 15:35 -------- d-----w- c:\windows\system32\wbem\Repository
2012-08-06 06:18 . 2012-08-06 06:18 -------- d-----w- c:\program files\JAM Software
2012-08-05 17:37 . 2012-08-05 17:37 -------- d-----w- c:\documents and settings\Milan Štrbík\Data aplikací\Malwarebytes
2012-08-05 17:37 . 2012-08-05 17:37 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Malwarebytes
2012-08-05 17:37 . 2012-08-23 01:32 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2012-08-05 16:02 . 2012-08-05 16:11 -------- d-----w- c:\program files\EA Sports
2012-08-05 13:43 . 2012-08-05 13:43 -------- d-----w- c:\program files\Alcohol Soft
2012-08-05 10:47 . 2012-08-06 15:34 -------- d-----w- c:\program files\uTorrent
2012-08-05 08:44 . 2012-08-05 08:44 -------- d-----w- c:\program files\Speccy
2012-08-05 07:25 . 2012-08-05 07:25 -------- d-----w- C:\Media
2012-08-05 07:25 . 1999-12-12 23:01 44032 ----a-w- c:\windows\system32\CTSVCCDA.EXE
2012-08-05 07:25 . 1999-11-17 23:00 25088 ----a-w- c:\windows\system32\CTSVCCTL.EXE
2012-08-05 07:25 . 1999-10-07 00:00 55808 ----a-w- c:\windows\system32\CtMp3.Crl
2012-08-05 07:13 . 2012-08-05 07:13 -------- d-----w- c:\windows\Profiles
2012-08-05 07:13 . 2001-01-30 11:56 225280 ------w- c:\program files\Internet Explorer\PLUGINS\NPDocBox.dll
2012-08-05 07:13 . 2012-08-05 07:13 -------- d-----w- c:\windows\system32\Adobe
2012-08-05 07:13 . 2012-08-05 07:13 -------- d-----w- c:\documents and settings\Milan Štrbík\Data aplikací\InterTrust
2012-08-04 21:52 . 2012-08-04 21:52 -------- d-----w- c:\windows\system32\config\systemprofile\Data aplikací\IObit
2012-08-04 21:42 . 2012-08-04 21:42 -------- d-----w- c:\documents and settings\All Users\Data aplikací\IObit
2012-08-04 21:41 . 2012-08-05 08:56 -------- d-----w- c:\documents and settings\Milan Štrbík\Data aplikací\IObit
2012-08-04 21:41 . 2012-08-04 21:41 -------- d-----w- c:\program files\IObit
2012-07-29 20:22 . 2012-08-11 14:42 -------- d-----w- c:\documents and settings\Milan Štrbík\Data aplikací\Smarty Uninstaller
2012-07-29 20:19 . 2012-07-29 20:19 -------- d-----w- c:\documents and settings\All Users\Data aplikací\IsolatedStorage
2012-07-29 20:19 . 2011-04-25 08:25 4603616 ----a-w- c:\windows\system32\DevComponents.DotNetBar2.dll
2012-07-29 20:19 . 2012-07-29 20:19 -------- d-----w- c:\program files\Smarty Uninstaller
2012-07-29 20:18 . 2004-03-08 23:00 212240 ----a-w- c:\windows\system32\RICHTX32.OCX
2012-07-29 20:18 . 2004-02-28 19:05 266240 ----a-w- c:\windows\system32\vbalTreeView6.ocx
2012-07-29 20:18 . 1999-02-09 19:40 188928 ----a-w- c:\windows\system32\vbuzip10.DLL
2012-07-29 20:18 . 2012-07-29 20:20 -------- d-----w- c:\program files\Smarty Uninstaller Pro
2012-07-29 20:18 . 2007-08-15 11:09 417792 ----a-w- c:\windows\system32\vbalCmdBar6.ocx
2012-07-29 20:18 . 2007-08-15 11:09 159744 ----a-w- c:\windows\system32\wt_menu.dll
2012-07-29 20:18 . 2007-08-15 11:09 115920 ----a-w- c:\windows\system32\MSINET.ocx
2012-07-29 20:18 . 2007-08-15 11:09 94208 ----a-w- c:\windows\system32\img_lst.ocx
2012-07-29 20:18 . 2007-08-15 11:09 40960 ----a-w- c:\windows\system32\ssubtmr6.dll
2012-07-29 20:18 . 2007-08-15 11:09 262144 ----a-w- c:\windows\system32\lst_v.ocx
2012-07-29 20:18 . 2007-08-15 11:09 167683 ----a-w- c:\windows\system32\COMCT232.OCX
2012-07-29 20:18 . 2005-04-15 18:58 1351392 ----a-w- c:\windows\system32\comctl32.ocx
2012-07-29 18:50 . 2012-07-29 18:50 -------- d-----w- c:\documents and settings\Fixw0w\Data aplikací\ATI
2012-07-29 12:02 . 2012-07-29 12:02 -------- d-----w- c:\documents and settings\Fixw0w\Local Settings\Data aplikací\ATI
2012-07-26 16:02 . 2012-08-04 18:25 -------- d-----w- c:\program files\Lavalys
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-08-15 16:48 . 2012-07-17 19:17 107888 ----a-w- c:\windows\system32\CmdLineExt.dll
2012-08-14 19:41 . 2012-04-17 14:14 426184 -c--a-w- c:\windows\system32\FlashPlayerApp.exe
2012-08-14 19:41 . 2012-03-22 08:54 70344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-08-08 16:12 . 2012-03-28 06:29 428088 ----a-w- c:\windows\system32\drivers\sptd.sys
2012-07-18 20:14 . 2012-03-22 12:01 137464 ----a-w- c:\windows\system32\drivers\PnkBstrK.sys
2012-07-18 20:13 . 2012-03-22 12:01 214520 -c--a-w- c:\windows\system32\PnkBstrB.exe
2012-07-18 20:13 . 2012-03-22 12:01 214520 -c--a-w- c:\windows\system32\PnkBstrB.xtr
2012-07-18 19:34 . 2012-03-22 12:01 75064 ----a-w- c:\windows\system32\PnkBstrA.exe
2012-07-18 17:05 . 2012-07-17 19:14 22328 ----a-w- c:\documents and settings\Milan Štrbík\Data aplikací\PnkBstrK.sys
2012-07-18 17:05 . 2012-07-17 19:14 22328 ----a-w- c:\documents and settings\Milan Štrbík\Data aplikací\PnkBstrK.sys
2012-07-17 19:14 . 2012-07-17 19:14 2250024 ----a-w- c:\windows\system32\pbsvc.exe
2012-07-04 14:05 . 2012-02-01 15:32 139784 ----a-w- c:\windows\system32\drivers\rdpwd.sys
2012-07-03 18:22 . 2002-09-20 17:41 1866112 ----a-w- c:\windows\system32\win32k.sys
2012-06-22 14:32 . 2012-07-10 15:15 405144 ----a-w- c:\windows\system32\Newtonsoft.Json.Net20.dll
2012-06-18 19:29 . 2012-02-01 16:20 102400 ----a-w- c:\windows\DUMP703e.tmp
2012-06-05 15:49 . 2012-02-01 16:18 1372672 ------w- c:\windows\system32\msxml6.dll
2012-06-05 15:49 . 2002-09-20 18:04 1172480 ----a-w- c:\windows\system32\msxml3.dll
2012-06-04 04:32 . 2002-09-20 18:04 152576 ----a-w- c:\windows\system32\schannel.dll
2012-06-02 13:19 . 2009-08-06 18:24 15384 ----a-w- c:\windows\system32\wuaucpl.cpl.mui
2012-06-02 13:19 . 2009-08-06 18:24 22552 ----a-w- c:\windows\system32\wucltui.dll.mui
2012-06-02 13:19 . 2012-02-01 16:01 329240 ----a-w- c:\windows\system32\wucltui.dll
2012-06-02 13:19 . 2012-02-01 16:01 219160 ----a-w- c:\windows\system32\wuaucpl.cpl
2012-06-02 13:19 . 2012-02-01 16:01 210968 ----a-w- c:\windows\system32\wuweb.dll
2012-06-02 13:19 . 2012-02-01 16:01 35864 ----a-w- c:\windows\system32\wups.dll
2012-06-02 13:19 . 2012-02-01 15:32 53784 ----a-w- c:\windows\system32\wuauclt.exe
2012-06-02 13:19 . 2009-08-06 18:24 45080 ----a-w- c:\windows\system32\wups2.dll
2012-06-02 13:19 . 2009-08-06 18:24 18456 ----a-w- c:\windows\system32\wuaueng.dll.mui
2012-06-02 13:19 . 2009-08-06 18:24 15384 ----a-w- c:\windows\system32\wuapi.dll.mui
2012-06-02 13:19 . 2002-09-20 18:03 97304 ----a-w- c:\windows\system32\cdm.dll
2012-06-02 13:19 . 2012-02-01 16:01 577048 ----a-w- c:\windows\system32\wuapi.dll
2012-06-02 13:19 . 2012-02-01 15:32 1933848 ----a-w- c:\windows\system32\wuaueng.dll
2012-06-02 13:19 . 2012-03-22 05:43 17648 ----a-w- c:\windows\system32\mucltui.dll.mui
2012-06-02 13:18 . 2012-03-22 05:43 275696 ----a-w- c:\windows\system32\mucltui.dll
2012-06-02 13:18 . 2012-03-22 05:43 214256 ----a-w- c:\windows\system32\muweb.dll
2012-05-31 13:22 . 2002-09-20 18:03 602112 ----a-w- c:\windows\system32\crypt32.dll
.
.
------- Sigcheck -------
Note: Unsigned files aren't necessarily malware.
.
[7] 2008-06-20 . AD978A1B783B5719720CFF204B666C8E . 361600 . . [5.1.2600.5625] . . c:\windows\$hf_mig$\KB2509553\SP3QFE\tcpip.sys
[7] 2008-06-20 . 9AEFA14BD6B182D61E3119FA5F436D3D . 361600 . . [5.1.2600.5625] . . c:\windows\system32\dllcache\tcpip.sys
[-] 2008-06-20 . D9F19E78F98834CB411D6AD3C68D181A . 361600 . . [5.1.2600.5625] . . c:\windows\system32\drivers\tcpip.sys
[7] 2008-04-13 . 93EA8D04EC73A85DB02EB8805988F733 . 361344 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\tcpip.sys
[7] 2004-08-03 . 9F4B36614A0FC234525BA224957DE55C . 359040 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\tcpip.sys
.
((((((((((((((((((((((((((((( SnapShot@2012-08-23_07.54.20 )))))))))))))))))))))))))))))))))))))))))
.
+ 2012-08-23 09:13 . 2012-08-23 09:13 16384 c:\windows\temp\Perflib_Perfdata_634.dat
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AHQInit"="c:\program files\Creative\SBLive\Program\AHQInit.exe" [2001-05-10 102400]
"SwitchBoard"="c:\program files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096]
"AudioHQ"="c:\program files\Creative\SBLive\AudioHQ\AHQTB.EXE" [2001-08-17 180224]
"AdobeCS5ServiceManager"="c:\program files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" [2010-02-22 406992]
"AdobeCS6ServiceManager"="c:\program files\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" [2012-03-09 1073312]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2012-04-05 98304]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\System32\CTFMON.EXE" [2008-04-14 15360]
.
c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\
Adobe Reader Speed Launch.lnk - c:\program files\Adobe\Reader 8.0\Reader\reader_sl.exe [2006-10-23 40048]
Adobe Reader Synchronizer.lnk - c:\program files\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe [2006-10-23 734872]
.
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^GamePark klient 2.lnk]
path=c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\GamePark klient 2.lnk
backup=c:\windows\pss\GamePark klient 2.lnkCommon Startup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Advanced SystemCare 5]
2012-03-06 16:39 574296 ----a-w- c:\program files\IObit\Advanced SystemCare 5\ASCTray.exe
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"c:\\Program Files\\Pando Networks\\Media Booster\\PMB.exe"=
"c:\\WINDOWS\\system32\\PnkBstrA.exe"=
"c:\\WINDOWS\\system32\\PnkBstrB.exe"=
"c:\\Program Files\\uTorrent\\uTorrent.exe"=
"c:\\WINDOWS\\system32\\javaw.exe"=
"c:\\WINDOWS\\system32\\msiexec.exe"=
"c:\\Program Files\\SweetIM\\Communicator\\SweetPacksUpdateManager.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Program Files\\Java\\jre6\\bin\\javaw.exe"=
"c:\\Program Files\\Hry\\Counter-Strike Source\\hl2.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"59069:TCP"= 59069:TCP:Pando Media Booster
"59069:UDP"= 59069:UDP:Pando Media Booster
.
R0 viasraid;viasraid;c:\windows\system32\drivers\viasraid.sys [1.2.2012 17:45 77056]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\drivers\dtsoftbus01.sys [9.8.2012 21:01 239168]
R2 AdvancedSystemCareService5;Advanced SystemCare Service 5;c:\program files\IObit\Advanced SystemCare 5\ASCService.exe [4.8.2012 23:41 913752]
R2 ASTSRV;Nalpeiron Licensing Service;c:\windows\system32\ASTSRV.EXE [20.5.2012 20:32 57344]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [17.4.2012 16:14 250056]
S3 filter;filter;c:\windows\system32\drivers\filter.sys [26.11.2004 9:32 8832]
S3 FUTUREX;FUTUREX;\??\c:\documents and settings\Milan Štrbík\Dokumenty\Downloads\aida32pe_375\aida32.sys --> c:\documents and settings\Milan Štrbík\Dokumenty\Downloads\aida32pe_375\aida32.sys [?]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [23.8.2012 3:32 22344]
S3 SwitchBoard;SwitchBoard;c:\program files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [19.2.2010 13:37 517096]
S4 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [23.8.2012 3:32 655944]
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - WS2IFSL
.
Obsah adresáře 'Naplánované úlohy'
.
2012-08-23 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-17 19:41]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.seznam.cz/
IE: E&xportovať do programu Microsoft Excel - c:\progra~1\MICROS~3\Office12\EXCEL.EXE/3000
IE: Free YouTube Download - c:\documents and settings\Milan Štrbík\Data aplikací\DVDVideoSoftIEHelpers\freeytvdownloader.htm
IE: Free YouTube to Mp3 Converter - c:\documents and settings\Milan Štrbík\Data aplikací\DVDVideoSoftIEHelpers\youtubetomp3.htm
IE: Search the Web - c:\program files\SweetIM\Toolbars\Internet Explorer\resources\menuext.html
TCP: DhcpNameServer = 10.0.0.138
DPF: DirectAnimation Java Classes - file://c:\windows\Java\classes\dajava.cab
DPF: Microsoft XML Parser for Java - file://c:\windows\Java\classes\xmldso.cab
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2012-08-23 11:13
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'winlogon.exe'(744)
c:\windows\system32\Ati2evxx.dll
c:\windows\system32\atiadlxx.dll
.
- - - - - - - > 'explorer.exe'(3268)
c:\windows\system32\msi.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\windows\system32\Ati2evxx.exe
c:\windows\system32\Ati2evxx.exe
c:\windows\system32\devldr32.exe
c:\program files\Bonjour\mDNSResponder.exe
c:\windows\system32\CTsvcCDA.EXE
c:\program files\Java\jre6\bin\jqs.exe
c:\windows\system32\PnkBstrA.exe
c:\windows\system32\MsPMSPSv.exe
c:\windows\system32\wscntfy.exe
c:\program files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
c:\program files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
.
**************************************************************************
.
Celkový čas: 2012-08-23 11:18:47 - počítač byl restartován
ComboFix-quarantined-files.txt 2012-08-23 09:18
ComboFix2.txt 2012-08-23 07:56
.
Před spuštěním: Volných bajtů: 78 503 501 824
Po spuštění: Volných bajtů: 78 399 754 240
.
- - End Of File - - 531D5522E263790A19EC645FA4914B69

Teď jdu na toten HJT Log

helpmeboys · Příspěvekod **helpmeboys** » 23 srp 2012 11:23

HiJackThis log zde:

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:22:42, on 23.8.2012
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\Program Files\IObit\Advanced SystemCare 5\ASCService.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\devldr32.exe
C:\WINDOWS\system32\ASTSRV.EXE
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\system32\CTsvcCDA.EXE
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\MsPMSPSv.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Creative\SBLive\AudioHQ\AHQTB.EXE
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\explorer.exe
C:\Documents and Settings\Milan Štrbík\Dokumenty\Downloads\HiJackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [AHQInit] C:\Program Files\Creative\SBLive\Program\AHQInit.exe
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AudioHQ] C:\Program Files\Creative\SBLive\AudioHQ\AHQTB.EXE
O4 - HKLM\..\Run: [AdobeCS5ServiceManager] "C:\Program Files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [AdobeCS6ServiceManager] "C:\Program Files\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe
O4 - Global Startup: Adobe Reader Synchronizer.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Free YouTube Download - C:\Documents and Settings\Milan Štrbík\Data aplikací\DVDVideoSoftIEHelpers\freeytvdownloader.htm
O8 - Extra context menu item: Free YouTube to Mp3 Converter - C:\Documents and Settings\Milan Štrbík\Data aplikací\DVDVideoSoftIEHelpers\youtubetomp3.htm
O8 - Extra context menu item: Search the Web - C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\menuext.html
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\System32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\System32\browseui.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Advanced SystemCare Service 5 (AdvancedSystemCareService5) - IObit - C:\Program Files\IObit\Advanced SystemCare 5\ASCService.exe
O23 - Service: Nalpeiron Licensing Service (ASTSRV) - Nalpeiron Ltd. - C:\WINDOWS\system32\ASTSRV.EXE
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.EXE
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe

--
End of file - 5764 bytes

Příspěvekod **jaro3** » 23 srp 2012 11:28

ComboFix se odinstaluje takto:
Start-Spustit a zadej ComboFix /Uninstall

Stáhni si OTC

na plochu. Poklepej na něj. Potom klikni na Clean up!.
Restartuj PC , pokud Ti bude doporučeno.

Udělej TDSSKiller a aswMBR.

Potom:
Stáhni si OTL by OldTimer
na plochu. Ujisti se , že máš zavřena všechna ostatní okna a poklepej na ikonu OTL.Nahoře v okně pod Výstup klikni na minimální výstup.Pod Běžné registry změň na Vše. Zatrhni Kontrola na havěť “LOP“ a Kontrola na havěť “ Purity“ . Klikni na Prohledat. Všechny ostatní nastavení ponech jak jsou. Sken může trvat dlouho, až skončí otevřou se dva logy:
OTL.Txt
Extras.Txt
Jsou uloženy ve stejném místě jako OTL. Oba logy sem prosím zkopíruj.

helpmeboys · Příspěvekod **helpmeboys** » 23 srp 2012 11:31

TDSSKiller:

11:25:46.0593 1772 TDSS rootkit removing tool 2.8.7.0 Aug 20 2012 17:30:03
11:25:46.0734 1772 ============================================================
11:25:46.0734 1772 Current date / time: 2012/08/23 11:25:46.0734
11:25:46.0734 1772 SystemInfo:
11:25:46.0734 1772
11:25:46.0734 1772 OS Version: 5.1.2600 ServicePack: 3.0
11:25:46.0734 1772 Product type: Workstation
11:25:46.0734 1772 ComputerName: MILAN
11:25:46.0734 1772 UserName: Milan Štrbík
11:25:46.0734 1772 Windows directory: C:\WINDOWS
11:25:46.0734 1772 System windows directory: C:\WINDOWS
11:25:46.0734 1772 Processor architecture: Intel x86
11:25:46.0734 1772 Number of processors: 1
11:25:46.0734 1772 Page size: 0x1000
11:25:46.0734 1772 Boot type: Normal boot
11:25:46.0734 1772 ============================================================
11:25:47.0718 1772 Drive \Device\Harddisk0\DR0 - Size: 0x1CC2828000 (115.04 Gb), SectorSize: 0x200, Cylinders: 0x3AA9, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
11:25:47.0718 1772 ============================================================
11:25:47.0718 1772 \Device\Harddisk0\DR0:
11:25:47.0718 1772 MBR partitions:
11:25:47.0718 1772 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0xE60E869
11:25:47.0718 1772 ============================================================
11:25:47.0734 1772 C: <-> \Device\Harddisk0\DR0\Partition1
11:25:47.0734 1772 ============================================================
11:25:47.0734 1772 Initialize success
11:25:47.0734 1772 ============================================================
11:25:49.0656 2476 ============================================================
11:25:49.0656 2476 Scan started
11:25:49.0656 2476 Mode: Manual;
11:25:49.0656 2476 ============================================================
11:25:50.0406 2476 ================ Scan system memory ========================
11:25:50.0421 2476 System memory - ok
11:25:50.0421 2476 ================ Scan services =============================
11:25:50.0578 2476 Abiosdsk - ok
11:25:50.0593 2476 abp480n5 - ok
11:25:50.0656 2476 [ 4FE34F1F3126B61FCC6B2043AA8112C9 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
11:25:50.0656 2476 ACPI - ok
11:25:50.0703 2476 [ AFDFF022A01F0B11C776F0860C3B282F ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
11:25:50.0703 2476 ACPIEC - ok
11:25:50.0796 2476 [ 303C174A7303A7702A68653152FC65A0 ] Adobe LM Service C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
11:25:50.0796 2476 Adobe LM Service - ok
11:25:50.0890 2476 [ A9D3B95E8466BD58EEB8A1154654E162 ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
11:25:50.0890 2476 AdobeFlashPlayerUpdateSvc - ok
11:25:50.0937 2476 adpu160m - ok
11:25:51.0015 2476 [ B11C71B29FA69E4586F9B65560E6604D ] AdvancedSystemCareService5 C:\Program Files\IObit\Advanced SystemCare 5\ASCService.exe
11:25:51.0031 2476 AdvancedSystemCareService5 - ok
11:25:51.0078 2476 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
11:25:51.0093 2476 aec - ok
11:25:51.0140 2476 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD C:\WINDOWS\System32\drivers\afd.sys
11:25:51.0140 2476 AFD - ok
11:25:51.0171 2476 Aha154x - ok
11:25:51.0187 2476 aic78u2 - ok
11:25:51.0218 2476 aic78xx - ok
11:25:51.0265 2476 [ E0A6FA244B8624D78FE5FF6F56A33BAE ] Alerter C:\WINDOWS\system32\alrsvc.dll
11:25:51.0265 2476 Alerter - ok
11:25:51.0312 2476 [ 88842DE939A827577BF24243699AC80A ] ALG C:\WINDOWS\System32\alg.exe
11:25:51.0312 2476 ALG - ok
11:25:51.0328 2476 AliIde - ok
11:25:51.0375 2476 [ 3980814F8027D27EA003E2E3D9D4F604 ] AmdK7 C:\WINDOWS\system32\DRIVERS\amdk7.sys
11:25:51.0375 2476 AmdK7 - ok
11:25:51.0406 2476 amsint - ok
11:25:51.0453 2476 [ 6B8E7A90E576D4FE308F97C69060A171 ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
11:25:51.0453 2476 AppMgmt - ok
11:25:51.0484 2476 [ B5B8A80875C1DEDEDA8B02765642C32F ] Arp1394 C:\WINDOWS\system32\DRIVERS\arp1394.sys
11:25:51.0484 2476 Arp1394 - ok
11:25:51.0515 2476 asc - ok
11:25:51.0531 2476 asc3350p - ok
11:25:51.0562 2476 asc3550 - ok
11:25:51.0703 2476 [ 776ACEFA0CA9DF0FAA51A5FB2F435705 ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
11:25:51.0703 2476 aspnet_state - ok
11:25:51.0765 2476 [ 0C83FC56707BF68DB04947052A8188B1 ] ASTSRV C:\WINDOWS\system32\ASTSRV.EXE
11:25:51.0765 2476 ASTSRV - ok
11:25:51.0828 2476 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
11:25:51.0828 2476 AsyncMac - ok
11:25:51.0875 2476 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
11:25:51.0875 2476 atapi - ok
11:25:51.0906 2476 Atdisk - ok
11:25:51.0968 2476 [ 7EEB8386F9AC3721EDAD9B21E5C2F2D4 ] Ati HotKey Poller C:\WINDOWS\system32\Ati2evxx.exe
11:25:51.0984 2476 Ati HotKey Poller - ok
11:25:52.0281 2476 [ 28F1B6CCD2E0A184DA7D9F266BFEB267 ] ati2mtag C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
11:25:52.0359 2476 ati2mtag - ok
11:25:52.0421 2476 [ 6E996CF8459A2594E0E9609D0E34D41F ] atksgt C:\WINDOWS\system32\DRIVERS\atksgt.sys
11:25:52.0437 2476 atksgt - ok
11:25:52.0484 2476 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
11:25:52.0484 2476 Atmarpc - ok
11:25:52.0531 2476 [ DE31B88962A8645DBA5A37B993E7B0F1 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
11:25:52.0531 2476 AudioSrv - ok
11:25:52.0578 2476 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
11:25:52.0578 2476 audstub - ok
11:25:52.0625 2476 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
11:25:52.0625 2476 Beep - ok
11:25:52.0687 2476 [ 19395D092FD85DDC2D9C7729CF5A2AC8 ] BITS C:\WINDOWS\system32\qmgr.dll
11:25:52.0687 2476 BITS - ok
11:25:52.0734 2476 [ 73686FE0B2E0469F89FD2075BE724704 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
11:25:52.0734 2476 Bonjour Service - ok
11:25:52.0781 2476 [ 249276D3EF1E74B992299CB96099E4D7 ] Browser C:\WINDOWS\System32\browser.dll
11:25:52.0796 2476 Browser - ok
11:25:52.0812 2476 catchme - ok
11:25:52.0875 2476 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
11:25:52.0875 2476 cbidf2k - ok
11:25:52.0906 2476 cd20xrnt - ok
11:25:53.0218 2476 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
11:25:53.0218 2476 Cdaudio - ok
11:25:53.0265 2476 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
11:25:53.0265 2476 Cdfs - ok
11:25:53.0296 2476 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
11:25:53.0296 2476 Cdrom - ok
11:25:53.0328 2476 Changer - ok
11:25:53.0375 2476 [ E390DC1D7C461D7D56EC53402F329928 ] CiSvc C:\WINDOWS\system32\cisvc.exe
11:25:53.0375 2476 CiSvc - ok
11:25:53.0421 2476 [ 064507A8DFA8C5C7E2FFDDD3E6F424FA ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
11:25:53.0421 2476 ClipSrv - ok
11:25:53.0500 2476 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
11:25:53.0500 2476 clr_optimization_v2.0.50727_32 - ok
11:25:53.0531 2476 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
11:25:53.0531 2476 clr_optimization_v4.0.30319_32 - ok
11:25:53.0562 2476 CmdIde - ok
11:25:53.0578 2476 COMSysApp - ok
11:25:53.0625 2476 Cpqarray - ok
11:25:53.0671 2476 [ 3C8B6609712F4FF78E521F6DCFC4032B ] Creative Service for CDROM Access C:\WINDOWS\system32\CTsvcCDA.EXE
11:25:53.0671 2476 Creative Service for CDROM Access - ok
11:25:53.0703 2476 [ F3AB0933CBD166D271992F411C27CCAF ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
11:25:53.0703 2476 CryptSvc - ok
11:25:53.0750 2476 [ 71007BD2E1E26927FE3E4EB00C0BEEDF ] ctljystk C:\WINDOWS\system32\DRIVERS\ctljystk.sys
11:25:53.0750 2476 ctljystk - ok
11:25:53.0781 2476 dac2w2k - ok
11:25:53.0812 2476 dac960nt - ok
11:25:53.0859 2476 [ BE27674D1CBC3214AEC84B4336A38BBF ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
11:25:53.0875 2476 DcomLaunch - ok
11:25:53.0921 2476 [ 8C9A53E285AC5E6704844D0459EC85BE ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
11:25:53.0921 2476 Dhcp - ok
11:25:53.0953 2476 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
11:25:53.0953 2476 Disk - ok
11:25:53.0984 2476 dmadmin - ok
11:25:54.0046 2476 [ DB5FD2BF5B07DC54BFCB3664FF05BD7C ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
11:25:54.0062 2476 dmboot - ok
11:25:54.0109 2476 [ FFF1720AF51171F32F1EAD5CF71F2810 ] dmio C:\WINDOWS\system32\drivers\dmio.sys
11:25:54.0109 2476 dmio - ok
11:25:54.0140 2476 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
11:25:54.0140 2476 dmload - ok
11:25:54.0203 2476 [ 2BFEFE9E865655A76982F050450B9591 ] dmserver C:\WINDOWS\System32\dmserver.dll
11:25:54.0203 2476 dmserver - ok
11:25:54.0250 2476 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
11:25:54.0250 2476 DMusic - ok
11:25:54.0296 2476 [ DFAA406BF19F4EE806A6F8D4342137F7 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
11:25:54.0296 2476 Dnscache - ok
11:25:54.0328 2476 [ 4A3E2BD20157A0946751229E92EB8621 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
11:25:54.0328 2476 Dot3svc - ok
11:25:54.0343 2476 dpti2o - ok
11:25:54.0390 2476 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
11:25:54.0390 2476 drmkaud - ok
11:25:54.0453 2476 [ FB38473835476A6FB272215A1D972AF9 ] dtsoftbus01 C:\WINDOWS\system32\DRIVERS\dtsoftbus01.sys
11:25:54.0453 2476 dtsoftbus01 - ok
11:25:54.0484 2476 EagleNT - ok
11:25:54.0515 2476 [ 0887D9C2BE8D940778CAD1E3B85F2A41 ] EapHost C:\WINDOWS\System32\eapsvc.dll
11:25:54.0515 2476 EapHost - ok
11:25:54.0578 2476 [ EAC137EB2C92C524CBB91B60F82DB27E ] emu10k C:\WINDOWS\system32\drivers\emu10k1f.sys
11:25:54.0593 2476 emu10k - ok
11:25:54.0640 2476 [ AADC81E967C25DD7C90E150FEC6EAB74 ] emu10k1 C:\WINDOWS\system32\drivers\ctlface.sys
11:25:54.0640 2476 emu10k1 - ok
11:25:54.0687 2476 [ A2A4912798F2BE706ABADD3D30800D16 ] ERSvc C:\WINDOWS\System32\ersvc.dll
11:25:54.0687 2476 ERSvc - ok
11:25:54.0734 2476 [ 9EF697AF07BB8DD82C3B02CA953A95B7 ] Eventlog C:\WINDOWS\system32\services.exe
11:25:54.0734 2476 Eventlog - ok
11:25:54.0765 2476 [ A371F11EF07653591C8DE26AFB13CE7F ] EventSystem C:\WINDOWS\System32\es.dll
11:25:54.0781 2476 EventSystem - ok
11:25:54.0828 2476 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
11:25:54.0828 2476 Fastfat - ok
11:25:54.0890 2476 [ EE9A2B9EA968A792A053C9D1A86BF870 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
11:25:54.0890 2476 FastUserSwitchingCompatibility - ok
11:25:54.0921 2476 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys
11:25:54.0921 2476 Fdc - ok
11:25:54.0984 2476 [ E9648254056BCE81A85380C0C3647DC4 ] FETNDIS C:\WINDOWS\system32\DRIVERS\fetnd5.sys
11:25:54.0984 2476 FETNDIS - ok
11:25:55.0015 2476 [ D3B19A8BAE6C20B4D305C7A72E255EB9 ] FETNDISB C:\WINDOWS\system32\DRIVERS\fetnd5b.sys
11:25:55.0015 2476 FETNDISB - ok
11:25:55.0046 2476 [ 39E7DC34E45B7A815F479B138795871D ] filter C:\WINDOWS\system32\drivers\filter.sys
11:25:55.0046 2476 filter - ok
11:25:55.0078 2476 [ AC366695A0796560AA37215AD5762AAF ] Fips C:\WINDOWS\system32\drivers\Fips.sys
11:25:55.0078 2476 Fips - ok
11:25:55.0156 2476 [ 227846995AFEEFA70D328BF5334A86A5 ] FLEXnet Licensing Service C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
11:25:55.0171 2476 FLEXnet Licensing Service - ok
11:25:55.0218 2476 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys
11:25:55.0218 2476 Flpydisk - ok
11:25:55.0265 2476 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
11:25:55.0265 2476 FltMgr - ok
11:25:55.0328 2476 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
11:25:55.0328 2476 FontCache3.0.0.0 - ok
11:25:55.0359 2476 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
11:25:55.0359 2476 Fs_Rec - ok
11:25:55.0421 2476 [ 4E664D8541DB4A66B73A24257E322E1F ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
11:25:55.0437 2476 Ftdisk - ok
11:25:55.0515 2476 FUTUREX - ok
11:25:55.0546 2476 [ 065639773D8B03F33577F6CDAEA21063 ] gameenum C:\WINDOWS\system32\DRIVERS\gameenum.sys
11:25:55.0546 2476 gameenum - ok
11:25:55.0593 2476 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
11:25:55.0593 2476 Gpc - ok
11:25:55.0656 2476 [ FCFE31FB75F8A6295B6B0AF87A626282 ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
11:25:55.0656 2476 helpsvc - ok
11:25:55.0687 2476 [ 00E25EE90166B3E1BE6E74AEBF858306 ] HidServ C:\WINDOWS\System32\hidserv.dll
11:25:55.0687 2476 HidServ - ok
11:25:55.0734 2476 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] hidusb C:\WINDOWS\system32\DRIVERS\hidusb.sys
11:25:55.0734 2476 hidusb - ok
11:25:55.0765 2476 [ 7A6B320928F86BC851530D63C82965D9 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
11:25:55.0765 2476 hkmsvc - ok
11:25:55.0796 2476 hpn - ok
11:25:55.0843 2476 [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
11:25:55.0859 2476 HTTP - ok
11:25:55.0906 2476 [ 58FE2F2DA3BC5573F4A35B3760D3125F ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
11:25:55.0906 2476 HTTPFilter - ok
11:25:55.0937 2476 i2omgmt - ok
11:25:55.0953 2476 i2omp - ok
11:25:55.0984 2476 [ C528E27945367191E7BAE364930B6932 ] i8042prt C:\WINDOWS\system32\drivers\i8042prt.sys
11:25:56.0000 2476 i8042prt - ok
11:25:56.0093 2476 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
11:25:56.0109 2476 idsvc - ok
11:25:56.0140 2476 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
11:25:56.0140 2476 Imapi - ok
11:25:56.0187 2476 [ F7B93AAFAD33B2320954C17E26C8D361 ] ImapiService C:\WINDOWS\system32\imapi.exe
11:25:56.0203 2476 ImapiService - ok
11:25:56.0218 2476 ini910u - ok
11:25:56.0250 2476 IntelIde - ok
11:25:56.0296 2476 [ 3BB22519A194418D5FEC05D800A19AD0 ] ip6fw C:\WINDOWS\system32\drivers\ip6fw.sys
11:25:56.0296 2476 ip6fw - ok
11:25:56.0343 2476 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
11:25:56.0343 2476 IpFilterDriver - ok
11:25:56.0359 2476 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
11:25:56.0359 2476 IpInIp - ok
11:25:56.0406 2476 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
11:25:56.0406 2476 IpNat - ok
11:25:56.0437 2476 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
11:25:56.0437 2476 IPSec - ok
11:25:56.0453 2476 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
11:25:56.0453 2476 IRENUM - ok
11:25:56.0515 2476 [ CC9F8A2D60AED1A51A3AC34C59B987AE ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
11:25:56.0515 2476 isapnp - ok
11:25:56.0593 2476 [ 0A5709543986843D37A92290B7838340 ] JavaQuickStarterService C:\Program Files\Java\jre6\bin\jqs.exe
11:25:56.0593 2476 JavaQuickStarterService - ok
11:25:56.0640 2476 [ 1B6162FE7F66B1A71A4B70F941C4AA9B ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
11:25:56.0640 2476 Kbdclass - ok
11:25:56.0671 2476 [ 86C8F23616C6C6E5B2776901C17B945B ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys
11:25:56.0671 2476 kbdhid - ok
11:25:56.0718 2476 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
11:25:56.0734 2476 kmixer - ok
11:25:56.0796 2476 [ B467646C54CC746128904E1654C750C1 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
11:25:56.0796 2476 KSecDD - ok
11:25:56.0843 2476 [ 3428E8F86F8ADD36B42FB23542C7B3E4 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
11:25:56.0859 2476 lanmanserver - ok
11:25:56.0890 2476 [ 936C1D110232D23B621CB0196E4F80F0 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
11:25:56.0906 2476 lanmanworkstation - ok
11:25:56.0921 2476 lbrtfdc - ok
11:25:56.0984 2476 [ 975B6CF65F44E95883F3855BAE8CECAF ] lirsgt C:\WINDOWS\system32\DRIVERS\lirsgt.sys
11:25:56.0984 2476 lirsgt - ok
11:25:57.0031 2476 [ 0AB159F536E3E8F7F07113702A07CCA5 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
11:25:57.0031 2476 LmHosts - ok
11:25:57.0078 2476 [ 6DFE7F2E8E8A337263AA5C92A215F161 ] MBAMProtector C:\WINDOWS\system32\drivers\mbam.sys
11:25:57.0078 2476 MBAMProtector - ok
11:25:57.0171 2476 [ 43683E970F008C93C9429EF428147A54 ] MBAMService C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
11:25:57.0187 2476 MBAMService - ok
11:25:57.0218 2476 [ 221CD1C815B8A6B79389C3F5D1018DE8 ] Messenger C:\WINDOWS\System32\msgsvc.dll
11:25:57.0218 2476 Messenger - ok
11:25:57.0265 2476 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
11:25:57.0265 2476 mnmdd - ok
11:25:57.0312 2476 [ 9A57D046F88F4B69751B11FD40088A61 ] mnmsrvc C:\WINDOWS\System32\mnmsrvc.exe
11:25:57.0312 2476 mnmsrvc - ok
11:25:57.0343 2476 [ 44032B0C6D9954D3FD26438330B99EE7 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
11:25:57.0343 2476 Modem - ok
11:25:57.0390 2476 [ 4CB582831DBDE63CE43B45D771218374 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
11:25:57.0390 2476 Mouclass - ok
11:25:57.0421 2476 [ BB269EBA740737AB749B214D568B6812 ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
11:25:57.0421 2476 mouhid - ok
11:25:57.0468 2476 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
11:25:57.0468 2476 MountMgr - ok
11:25:57.0500 2476 mraid35x - ok
11:25:57.0531 2476 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
11:25:57.0531 2476 MRxDAV - ok
11:25:57.0578 2476 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
11:25:57.0593 2476 MRxSmb - ok
11:25:57.0640 2476 [ 6DB4D1521CABA9A5FFAB54ADE0AE867D ] MSDTC C:\WINDOWS\System32\msdtc.exe
11:25:57.0640 2476 MSDTC - ok
11:25:57.0687 2476 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
11:25:57.0687 2476 Msfs - ok
11:25:57.0718 2476 MSIServer - ok
11:25:57.0750 2476 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
11:25:57.0750 2476 MSKSSRV - ok
11:25:57.0781 2476 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
11:25:57.0781 2476 MSPCLOCK - ok
11:25:57.0812 2476 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
11:25:57.0812 2476 MSPQM - ok
11:25:57.0843 2476 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
11:25:57.0843 2476 mssmbios - ok
11:25:57.0906 2476 [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
11:25:57.0906 2476 Mup - ok
11:25:57.0968 2476 [ 6EA362E9DB03D44F6B996F4D8BE237E9 ] napagent C:\WINDOWS\System32\qagentrt.dll
11:25:57.0984 2476 napagent - ok
11:25:58.0031 2476 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
11:25:58.0031 2476 NDIS - ok
11:25:58.0093 2476 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
11:25:58.0093 2476 NdisTapi - ok
11:25:58.0109 2476 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
11:25:58.0125 2476 Ndisuio - ok
11:25:58.0156 2476 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
11:25:58.0156 2476 NdisWan - ok
11:25:58.0187 2476 [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
11:25:58.0203 2476 NDProxy - ok
11:25:58.0234 2476 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
11:25:58.0234 2476 NetBIOS - ok
11:25:58.0265 2476 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
11:25:58.0265 2476 NetBT - ok
11:25:58.0312 2476 [ 933DE774986EC85E48210C44AB431DE6 ] NetDDE C:\WINDOWS\system32\netdde.exe
11:25:58.0312 2476 NetDDE - ok
11:25:58.0343 2476 [ 933DE774986EC85E48210C44AB431DE6 ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
11:25:58.0343 2476 NetDDEdsdm - ok
11:25:58.0375 2476 [ ED0A176354487CEED65B80A7148AB739 ] Netlogon C:\WINDOWS\system32\lsass.exe
11:25:58.0390 2476 Netlogon - ok
11:25:58.0421 2476 [ 72E1E9E2977BE08BDEEDB6D8FD9D4D40 ] Netman C:\WINDOWS\System32\netman.dll
11:25:58.0421 2476 Netman - ok
11:25:58.0468 2476 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
11:25:58.0468 2476 NetTcpPortSharing - ok
11:25:58.0531 2476 [ E9E47CFB2D461FA0FC75B7A74C6383EA ] NIC1394 C:\WINDOWS\system32\DRIVERS\nic1394.sys
11:25:58.0531 2476 NIC1394 - ok
11:25:58.0593 2476 [ 39EE7C3BFBC64BA87CC8CF67386E814C ] Nla C:\WINDOWS\System32\mswsock.dll
11:25:58.0593 2476 Nla - ok
11:25:58.0625 2476 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
11:25:58.0625 2476 Npfs - ok
11:25:58.0656 2476 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
11:25:58.0656 2476 Ntfs - ok
11:25:58.0687 2476 [ ED0A176354487CEED65B80A7148AB739 ] NtLmSsp C:\WINDOWS\System32\lsass.exe
11:25:58.0687 2476 NtLmSsp - ok
11:25:58.0750 2476 [ 023DD70573D644F3D9C8B1258A7BFD08 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
11:25:58.0750 2476 NtmsSvc - ok
11:25:58.0796 2476 [ A568B9A9FFE2D9387222A5C90F86D731 ] NTSIM C:\WINDOWS\System32\ntsim.sys
11:25:58.0796 2476 NTSIM - ok
11:25:58.0828 2476 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
11:25:58.0828 2476 Null - ok
11:25:58.0875 2476 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
11:25:58.0875 2476 NwlnkFlt - ok
11:25:58.0906 2476 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
11:25:58.0906 2476 NwlnkFwd - ok
11:25:59.0000 2476 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
11:25:59.0015 2476 odserv - ok
11:25:59.0078 2476 [ CA33832DF41AFB202EE7AEB05145922F ] ohci1394 C:\WINDOWS\system32\DRIVERS\ohci1394.sys
11:25:59.0078 2476 ohci1394 - ok
11:25:59.0109 2476 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
11:25:59.0125 2476 ose - ok
11:25:59.0156 2476 [ 46F8DB73B4A53E543F8E371DC7C75BAE ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
11:25:59.0156 2476 Parport - ok
11:25:59.0187 2476 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
11:25:59.0187 2476 PartMgr - ok
11:25:59.0234 2476 [ 1FAE19D0457176318BBA4A8795656EBC ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
11:25:59.0234 2476 ParVdm - ok
11:25:59.0265 2476 [ 6CE351D149CB4BEFC702951E471E1730 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
11:25:59.0265 2476 PCI - ok
11:25:59.0281 2476 PCIDump - ok
11:25:59.0328 2476 [ 2DA4EC85E0EA7A45C6B2A05820492D5A ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
11:25:59.0328 2476 PCIIde - ok
11:25:59.0359 2476 [ 4FC31E6C19A5CE5198B1ABFF94CAE758 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
11:25:59.0375 2476 Pcmcia - ok
11:25:59.0390 2476 PDCOMP - ok
11:25:59.0421 2476 PDFRAME - ok
11:25:59.0437 2476 PDRELI - ok
11:25:59.0468 2476 PDRFRAME - ok
11:25:59.0484 2476 perc2 - ok
11:25:59.0515 2476 perc2hib - ok
11:25:59.0609 2476 [ B293F05AD9120B0232C28945C1E98CD0 ] PfModNT C:\WINDOWS\System32\PfModNT.sys
11:25:59.0609 2476 PfModNT - ok
11:25:59.0656 2476 [ 9EF697AF07BB8DD82C3B02CA953A95B7 ] PlugPlay C:\WINDOWS\system32\services.exe
11:25:59.0656 2476 PlugPlay - ok
11:25:59.0687 2476 [ A1DD33D16F277CE34124EE52AB2C0F14 ] PnkBstrA C:\WINDOWS\system32\PnkBstrA.exe
11:25:59.0687 2476 PnkBstrA - ok
11:25:59.0718 2476 [ ED0A176354487CEED65B80A7148AB739 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
11:25:59.0718 2476 PolicyAgent - ok
11:25:59.0765 2476 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
11:25:59.0765 2476 PptpMiniport - ok
11:25:59.0781 2476 [ ED0A176354487CEED65B80A7148AB739 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
11:25:59.0781 2476 ProtectedStorage - ok
11:25:59.0812 2476 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
11:25:59.0828 2476 PSched - ok
11:25:59.0859 2476 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
11:25:59.0859 2476 Ptilink - ok
11:25:59.0875 2476 ql1080 - ok
11:25:59.0906 2476 Ql10wnt - ok
11:25:59.0921 2476 ql12160 - ok
11:25:59.0953 2476 ql1240 - ok
11:25:59.0968 2476 ql1280 - ok
11:26:00.0015 2476 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
11:26:00.0015 2476 RasAcd - ok
11:26:00.0046 2476 [ 2B5E44EA009F2F374B980E1E9A70635D ] RasAuto C:\WINDOWS\System32\rasauto.dll
11:26:00.0062 2476 RasAuto - ok
11:26:00.0093 2476 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
11:26:00.0093 2476 Rasl2tp - ok
11:26:00.0140 2476 [ D57554C664B64604BD1EE13EA2C07E77 ] RasMan C:\WINDOWS\System32\rasmans.dll
11:26:00.0140 2476 RasMan - ok
11:26:00.0171 2476 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
11:26:00.0171 2476 RasPppoe - ok
11:26:00.0203 2476 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
11:26:00.0218 2476 Raspti - ok
11:26:00.0250 2476 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
11:26:00.0250 2476 Rdbss - ok
11:26:00.0281 2476 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
11:26:00.0281 2476 RDPCDD - ok
11:26:00.0312 2476 [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
11:26:00.0312 2476 rdpdr - ok
11:26:00.0390 2476 [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
11:26:00.0390 2476 RDPWD - ok
11:26:00.0437 2476 [ C0D9D9711CB74EE9BC66353D8CBDAB0E ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
11:26:00.0437 2476 RDSessMgr - ok
11:26:00.0484 2476 [ 611BFD220305BE3A85AE876EA47D4AA5 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
11:26:00.0484 2476 redbook - ok
11:26:00.0531 2476 [ 127C26B5371651043450E52542099ABA ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
11:26:00.0531 2476 RemoteAccess - ok
11:26:00.0578 2476 [ 8F31505484A190D5B22274708799F4EC ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
11:26:00.0578 2476 RemoteRegistry - ok
11:26:00.0625 2476 [ 718B3BDC0BC3C2F7D065A53D26202AF9 ] RpcLocator C:\WINDOWS\System32\locator.exe
11:26:00.0625 2476 RpcLocator - ok
11:26:00.0671 2476 [ BE27674D1CBC3214AEC84B4336A38BBF ] RpcSs C:\WINDOWS\System32\rpcss.dll
11:26:00.0687 2476 RpcSs - ok
11:26:00.0718 2476 [ 09AB2E71E58B078038E3BFDBA7FFC984 ] RSVP C:\WINDOWS\System32\rsvp.exe
11:26:00.0734 2476 RSVP - ok
11:26:00.0765 2476 [ 493B54A894A6E70DD02961A68DB8863F ] rtl8029 C:\WINDOWS\system32\DRIVERS\RTL8029.SYS
11:26:00.0765 2476 rtl8029 - ok
11:26:00.0796 2476 [ ED0A176354487CEED65B80A7148AB739 ] SamSs C:\WINDOWS\system32\lsass.exe
11:26:00.0796 2476 SamSs - ok
11:26:00.0843 2476 [ 410046E401EB11E1E6749E9DEEA41D4A ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
11:26:00.0843 2476 SCardSvr - ok
11:26:00.0890 2476 [ 3FF232A7731621B8902D81D42418C93C ] Schedule C:\WINDOWS\system32\schedsvc.dll
11:26:00.0906 2476 Schedule - ok
11:26:00.0968 2476 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
11:26:00.0968 2476 Secdrv - ok
11:26:01.0015 2476 [ 477E2C3CC5E4A0D635BCB0EA8DCAC3C6 ] seclogon C:\WINDOWS\System32\seclogon.dll
11:26:01.0015 2476 seclogon - ok
11:26:01.0046 2476 [ A530B75C10C23C9AB28FDB6CE719E21F ] SENS C:\WINDOWS\system32\sens.dll
11:26:01.0046 2476 SENS - ok
11:26:01.0093 2476 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
11:26:01.0093 2476 serenum - ok
11:26:01.0093 2476 [ B842729337C9B921615C40D3C1A1AF96 ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
11:26:01.0109 2476 Serial - ok
11:26:01.0218 2476 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
11:26:01.0218 2476 Sfloppy - ok
11:26:01.0250 2476 [ 28B740A66CB88BE3D0CD93D5664D7D88 ] sfman C:\WINDOWS\system32\drivers\sfman.sys
11:26:01.0250 2476 sfman - ok
11:26:01.0312 2476 [ F58FACA9621D2DB01BD0927D9A0A208E ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
11:26:01.0328 2476 SharedAccess - ok
11:26:01.0359 2476 [ EE9A2B9EA968A792A053C9D1A86BF870 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
11:26:01.0375 2476 ShellHWDetection - ok
11:26:01.0390 2476 Simbad - ok
11:26:01.0437 2476 Sparrow - ok
11:26:01.0468 2476 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
11:26:01.0468 2476 splitter - ok
11:26:01.0515 2476 [ 60784F891563FB1B767F70117FC2428F ] Spooler C:\WINDOWS\system32\spoolsv.exe
11:26:01.0531 2476 Spooler - ok
11:26:01.0562 2476 [ 94610C8653635E4459316A0050D55CE7 ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
11:26:01.0562 2476 sr - ok
11:26:01.0609 2476 [ 35B91147124F64AC8081A2EDB9EA4DEE ] srservice C:\WINDOWS\system32\srsvc.dll
11:26:01.0609 2476 srservice - ok
11:26:01.0656 2476 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
11:26:01.0671 2476 Srv - ok
11:26:01.0718 2476 [ BECD5271DC4E3B7C3D035F790FCBC1E5 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
11:26:01.0718 2476 SSDPSRV - ok
11:26:01.0781 2476 [ C1CDD9275F6A115BB0AE1D55D8D27BA6 ] stisvc C:\WINDOWS\system32\wiaservc.dll
11:26:01.0796 2476 stisvc - ok
11:26:01.0828 2476 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
11:26:01.0828 2476 swenum - ok
11:26:01.0937 2476 [ F577910A133A592234EBAAD3F3AFA258 ] SwitchBoard C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
11:26:01.0953 2476 SwitchBoard - ok
11:26:01.0968 2476 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
11:26:01.0968 2476 swmidi - ok
11:26:02.0000 2476 SwPrv - ok
11:26:02.0031 2476 symc810 - ok
11:26:02.0062 2476 symc8xx - ok
11:26:02.0078 2476 sym_hi - ok
11:26:02.0109 2476 sym_u3 - ok
11:26:02.0171 2476 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
11:26:02.0171 2476 sysaudio - ok
11:26:02.0234 2476 [ CE06F01B88ACE199A1BF460CAC29C110 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
11:26:02.0234 2476 SysmonLog - ok
11:26:02.0281 2476 [ C2546CD7A398476F9DF5614B2AE160E8 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
11:26:02.0281 2476 TapiSrv - ok
11:26:02.0343 2476 [ D9F19E78F98834CB411D6AD3C68D181A ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
11:26:02.0343 2476 Tcpip - ok
11:26:02.0390 2476 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
11:26:02.0390 2476 TDPIPE - ok
11:26:02.0406 2476 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
11:26:02.0406 2476 TDTCP - ok
11:26:02.0453 2476 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
11:26:02.0453 2476 TermDD - ok
11:26:02.0515 2476 [ A75DD6FC3DBEE4FFF5EBC9F2C28BB66E ] TermService C:\WINDOWS\System32\termsrv.dll
11:26:02.0515 2476 TermService - ok
11:26:02.0562 2476 [ EE9A2B9EA968A792A053C9D1A86BF870 ] Themes C:\WINDOWS\System32\shsvcs.dll
11:26:02.0562 2476 Themes - ok
11:26:02.0609 2476 [ CD0CC7B167D78043A41C98D4921EFB54 ] TlntSvr C:\WINDOWS\System32\tlntsvr.exe
11:26:02.0609 2476 TlntSvr - ok
11:26:02.0640 2476 TosIde - ok
11:26:02.0687 2476 [ 38853304CCB938D30E0C4CDE8D2C2A8A ] TrkWks C:\WINDOWS\system32\trkwks.dll
11:26:02.0687 2476 TrkWks - ok
11:26:02.0750 2476 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
11:26:02.0750 2476 Udfs - ok
11:26:02.0781 2476 ultra - ok
11:26:02.0843 2476 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
11:26:02.0859 2476 Update - ok
11:26:02.0906 2476 [ 651BD90DCEE5B7BDC74A2EB7C9266F9E ] upnphost C:\WINDOWS\System32\upnphost.dll
11:26:02.0906 2476 upnphost - ok
11:26:02.0953 2476 [ 20A0F6A11959E92908717D09E87D670D ] UPS C:\WINDOWS\System32\ups.exe
11:26:02.0953 2476 UPS - ok
11:26:03.0015 2476 [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
11:26:03.0015 2476 usbccgp - ok
11:26:03.0062 2476 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
11:26:03.0062 2476 usbehci - ok
11:26:03.0093 2476 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
11:26:03.0093 2476 usbhub - ok
11:26:03.0156 2476 [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
11:26:03.0156 2476 usbscan - ok
11:26:03.0187 2476 [ A32426D9B14A089EAA1D922E0C5801A9 ] usbstor C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
11:26:03.0187 2476 usbstor - ok
11:26:03.0250 2476 [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
11:26:03.0250 2476 usbuhci - ok
11:26:03.0265 2476 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
11:26:03.0265 2476 VgaSave - ok
11:26:03.0296 2476 [ 4B039BBD037B01F5DB5A144C837F283A ] viaagp1 C:\WINDOWS\system32\DRIVERS\viaagp1.sys
11:26:03.0296 2476 viaagp1 - ok
11:26:03.0328 2476 [ 3B3EFCDA263B8AC14FDF9CBDD0791B2E ] ViaIde C:\WINDOWS\system32\DRIVERS\viaide.sys
11:26:03.0328 2476 ViaIde - ok
11:26:03.0359 2476 [ 8D20736EFC3E9AC93F3721865CD69DAB ] viasraid C:\WINDOWS\system32\DRIVERS\viasraid.sys
11:26:03.0359 2476 viasraid - ok
11:26:03.0406 2476 [ 28A4B296B47782173C346E376CB374D1 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
11:26:03.0406 2476 VolSnap - ok
11:26:03.0468 2476 [ D6BA1A63D9E00933F1CD2A885573AFB2 ] VSS C:\WINDOWS\System32\vssvc.exe
11:26:03.0468 2476 VSS - ok
11:26:03.0515 2476 [ FA4E1CDBA256787F2149F4AAD07BC91F ] W32Time C:\WINDOWS\system32\w32time.dll
11:26:03.0515 2476 W32Time - ok
11:26:03.0562 2476 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
11:26:03.0562 2476 Wanarp - ok
11:26:03.0578 2476 WDICA - ok
11:26:03.0640 2476 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
11:26:03.0640 2476 wdmaud - ok
11:26:03.0687 2476 [ 47AE51048A82DFA1CD6B51D369F7E169 ] WebClient C:\WINDOWS\System32\webclnt.dll
11:26:03.0703 2476 WebClient - ok
11:26:03.0796 2476 [ E488332126E3B1182D2B8A0C35408EC6 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
11:26:03.0796 2476 winmgmt - ok
11:26:03.0875 2476 [ 581176F60885AEF8F78C6E38DCC3CDF9 ] WMDM PMSP Service C:\WINDOWS\system32\MsPMSPSv.exe
11:26:03.0875 2476 WMDM PMSP Service - ok
11:26:03.0906 2476 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
11:26:03.0921 2476 WmdmPmSN - ok
11:26:03.0968 2476 [ 0171CFF34BBA8C5977F18C48D8AEF8C6 ] Wmi C:\WINDOWS\System32\advapi32.dll
11:26:03.0984 2476 Wmi - ok
11:26:04.0046 2476 [ 23F6F03272F7E5679F1F050AED5ACEE6 ] WmiApSrv C:\WINDOWS\System32\wbem\wmiapsrv.exe
11:26:04.0046 2476 WmiApSrv - ok
11:26:04.0156 2476 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
11:26:04.0171 2476 WPFFontCache_v0400 - ok
11:26:04.0218 2476 [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] WS2IFSL C:\WINDOWS\System32\drivers\ws2ifsl.sys
11:26:04.0218 2476 WS2IFSL - ok
11:26:04.0250 2476 [ 4C86D5FAF78194995AF9CC1075F65DD3 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
11:26:04.0265 2476 wscsvc - ok
11:26:04.0296 2476 [ C1364564800EE9784192145324A23308 ] wuauserv C:\WINDOWS\system32\wuauserv.dll
11:26:04.0296 2476 wuauserv - ok
11:26:04.0343 2476 [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
11:26:04.0343 2476 WudfPf - ok
11:26:04.0375 2476 [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
11:26:04.0375 2476 WudfRd - ok
11:26:04.0406 2476 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
11:26:04.0421 2476 WudfSvc - ok
11:26:04.0484 2476 [ A27D4BA7264C0BF52F32D10405BEA1D4 ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
11:26:04.0500 2476 WZCSVC - ok
11:26:04.0531 2476 [ EAA4BB9EDB3FB10CF8979FE65E63658F ] xmlprov C:\WINDOWS\System32\xmlprov.dll
11:26:04.0546 2476 xmlprov - ok
11:26:04.0593 2476 ================ Scan global ===============================
11:26:04.0640 2476 [ F36278E42C8C5DF03CE17DAC8231C91C ] C:\WINDOWS\system32\basesrv.dll
11:26:04.0703 2476 [ F3FA14A297BC687D0B51289D034033C9 ] C:\WINDOWS\system32\winsrv.dll
11:26:04.0734 2476 [ F3FA14A297BC687D0B51289D034033C9 ] C:\WINDOWS\system32\winsrv.dll
11:26:04.0765 2476 [ 9EF697AF07BB8DD82C3B02CA953A95B7 ] C:\WINDOWS\system32\services.exe
11:26:04.0765 2476 [Global] - ok
11:26:04.0765 2476 ================ Scan MBR ==================================
11:26:04.0796 2476 [ 413FC2A0C716421B3158746D63736515 ] \Device\Harddisk0\DR0
11:26:04.0921 2476 \Device\Harddisk0\DR0 - ok
11:26:04.0937 2476 ================ Scan VBR ==================================
11:26:04.0953 2476 [ 822EA286FBFC10C7BFE81D3D2989722F ] \Device\Harddisk0\DR0\Partition1
11:26:04.0953 2476 \Device\Harddisk0\DR0\Partition1 - ok
11:26:04.0953 2476 ============================================================
11:26:04.0953 2476 Scan finished
11:26:04.0953 2476 ============================================================
11:26:05.0000 2716 Detected object count: 0
11:26:05.0000 2716 Actual detected object count: 0
11:26:13.0593 0176 ============================================================
11:26:13.0593 0176 Scan started
11:26:13.0593 0176 Mode: Manual;
11:26:13.0593 0176 ============================================================
11:26:13.0671 0176 ================ Scan system memory ========================
11:26:13.0687 0176 System memory - ok
11:26:13.0687 0176 ================ Scan services =============================
11:26:13.0843 0176 Abiosdsk - ok
11:26:13.0875 0176 abp480n5 - ok
11:26:13.0921 0176 [ 4FE34F1F3126B61FCC6B2043AA8112C9 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
11:26:13.0921 0176 ACPI - ok
11:26:13.0968 0176 [ AFDFF022A01F0B11C776F0860C3B282F ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
11:26:13.0968 0176 ACPIEC - ok
11:26:14.0062 0176 [ 303C174A7303A7702A68653152FC65A0 ] Adobe LM Service C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
11:26:14.0062 0176 Adobe LM Service - ok
11:26:14.0171 0176 [ A9D3B95E8466BD58EEB8A1154654E162 ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
11:26:14.0171 0176 AdobeFlashPlayerUpdateSvc - ok
11:26:14.0203 0176 adpu160m - ok
11:26:14.0281 0176 [ B11C71B29FA69E4586F9B65560E6604D ] AdvancedSystemCareService5 C:\Program Files\IObit\Advanced SystemCare 5\ASCService.exe
11:26:14.0296 0176 AdvancedSystemCareService5 - ok
11:26:14.0343 0176 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
11:26:14.0343 0176 aec - ok
11:26:14.0390 0176 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD C:\WINDOWS\System32\drivers\afd.sys
11:26:14.0390 0176 AFD - ok
11:26:14.0421 0176 Aha154x - ok
11:26:14.0437 0176 aic78u2 - ok
11:26:14.0468 0176 aic78xx - ok
11:26:14.0515 0176 [ E0A6FA244B8624D78FE5FF6F56A33BAE ] Alerter C:\WINDOWS\system32\alrsvc.dll
11:26:14.0515 0176 Alerter - ok
11:26:14.0546 0176 [ 88842DE939A827577BF24243699AC80A ] ALG C:\WINDOWS\System32\alg.exe
11:26:14.0546 0176 ALG - ok
11:26:14.0578 0176 AliIde - ok
11:26:14.0640 0176 [ 3980814F8027D27EA003E2E3D9D4F604 ] AmdK7 C:\WINDOWS\system32\DRIVERS\amdk7.sys
11:26:14.0640 0176 AmdK7 - ok
11:26:14.0671 0176 amsint - ok
11:26:14.0718 0176 [ 6B8E7A90E576D4FE308F97C69060A171 ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
11:26:14.0718 0176 AppMgmt - ok
11:26:14.0750 0176 [ B5B8A80875C1DEDEDA8B02765642C32F ] Arp1394 C:\WINDOWS\system32\DRIVERS\arp1394.sys
11:26:14.0750 0176 Arp1394 - ok
11:26:14.0781 0176 asc - ok
11:26:14.0796 0176 asc3350p - ok
11:26:14.0828 0176 asc3550 - ok
11:26:14.0953 0176 [ 776ACEFA0CA9DF0FAA51A5FB2F435705 ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
11:26:14.0953 0176 aspnet_state - ok
11:26:15.0015 0176 [ 0C83FC56707BF68DB04947052A8188B1 ] ASTSRV C:\WINDOWS\system32\ASTSRV.EXE
11:26:15.0015 0176 ASTSRV - ok
11:26:15.0078 0176 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
11:26:15.0078 0176 AsyncMac - ok

helpmeboys · Příspěvekod **helpmeboys** » 23 srp 2012 11:32

part2: 11:26:15.0109 0176 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
11:26:15.0109 0176 atapi - ok
11:26:15.0156 0176 Atdisk - ok
11:26:15.0203 0176 [ 7EEB8386F9AC3721EDAD9B21E5C2F2D4 ] Ati HotKey Poller C:\WINDOWS\system32\Ati2evxx.exe
11:26:15.0218 0176 Ati HotKey Poller - ok
11:26:15.0515 0176 [ 28F1B6CCD2E0A184DA7D9F266BFEB267 ] ati2mtag C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
11:26:15.0593 0176 ati2mtag - ok
11:26:15.0656 0176 [ 6E996CF8459A2594E0E9609D0E34D41F ] atksgt C:\WINDOWS\system32\DRIVERS\atksgt.sys
11:26:15.0656 0176 atksgt - ok
11:26:15.0703 0176 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
11:26:15.0703 0176 Atmarpc - ok
11:26:15.0750 0176 [ DE31B88962A8645DBA5A37B993E7B0F1 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
11:26:15.0750 0176 AudioSrv - ok
11:26:15.0796 0176 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
11:26:15.0796 0176 audstub - ok
11:26:15.0843 0176 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
11:26:15.0843 0176 Beep - ok
11:26:15.0906 0176 [ 19395D092FD85DDC2D9C7729CF5A2AC8 ] BITS C:\WINDOWS\system32\qmgr.dll
11:26:15.0906 0176 BITS - ok
11:26:15.0953 0176 [ 73686FE0B2E0469F89FD2075BE724704 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
11:26:15.0953 0176 Bonjour Service - ok
11:26:16.0015 0176 [ 249276D3EF1E74B992299CB96099E4D7 ] Browser C:\WINDOWS\System32\browser.dll
11:26:16.0015 0176 Browser - ok
11:26:16.0031 0176 catchme - ok
11:26:16.0093 0176 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
11:26:16.0093 0176 cbidf2k - ok
11:26:16.0109 0176 cd20xrnt - ok
11:26:16.0171 0176 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
11:26:16.0171 0176 Cdaudio - ok
11:26:16.0203 0176 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
11:26:16.0203 0176 Cdfs - ok
11:26:16.0234 0176 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
11:26:16.0234 0176 Cdrom - ok
11:26:16.0265 0176 Changer - ok
11:26:16.0312 0176 [ E390DC1D7C461D7D56EC53402F329928 ] CiSvc C:\WINDOWS\system32\cisvc.exe
11:26:16.0312 0176 CiSvc - ok
11:26:16.0359 0176 [ 064507A8DFA8C5C7E2FFDDD3E6F424FA ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
11:26:16.0359 0176 ClipSrv - ok
11:26:16.0421 0176 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
11:26:16.0421 0176 clr_optimization_v2.0.50727_32 - ok
11:26:16.0468 0176 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
11:26:16.0484 0176 clr_optimization_v4.0.30319_32 - ok
11:26:16.0500 0176 CmdIde - ok
11:26:16.0531 0176 COMSysApp - ok
11:26:16.0562 0176 Cpqarray - ok
11:26:16.0609 0176 [ 3C8B6609712F4FF78E521F6DCFC4032B ] Creative Service for CDROM Access C:\WINDOWS\system32\CTsvcCDA.EXE
11:26:16.0609 0176 Creative Service for CDROM Access - ok
11:26:16.0625 0176 [ F3AB0933CBD166D271992F411C27CCAF ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
11:26:16.0640 0176 CryptSvc - ok
11:26:16.0671 0176 [ 71007BD2E1E26927FE3E4EB00C0BEEDF ] ctljystk C:\WINDOWS\system32\DRIVERS\ctljystk.sys
11:26:16.0671 0176 ctljystk - ok
11:26:16.0687 0176 dac2w2k - ok
11:26:16.0718 0176 dac960nt - ok
11:26:16.0765 0176 [ BE27674D1CBC3214AEC84B4336A38BBF ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
11:26:16.0781 0176 DcomLaunch - ok
11:26:16.0828 0176 [ 8C9A53E285AC5E6704844D0459EC85BE ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
11:26:16.0828 0176 Dhcp - ok
11:26:16.0859 0176 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
11:26:16.0859 0176 Disk - ok
11:26:16.0875 0176 dmadmin - ok
11:26:16.0953 0176 [ DB5FD2BF5B07DC54BFCB3664FF05BD7C ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
11:26:16.0968 0176 dmboot - ok
11:26:17.0000 0176 [ FFF1720AF51171F32F1EAD5CF71F2810 ] dmio C:\WINDOWS\system32\drivers\dmio.sys
11:26:17.0015 0176 dmio - ok
11:26:17.0046 0176 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
11:26:17.0046 0176 dmload - ok
11:26:17.0078 0176 [ 2BFEFE9E865655A76982F050450B9591 ] dmserver C:\WINDOWS\System32\dmserver.dll
11:26:17.0093 0176 dmserver - ok
11:26:17.0125 0176 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
11:26:17.0125 0176 DMusic - ok
11:26:17.0187 0176 [ DFAA406BF19F4EE806A6F8D4342137F7 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
11:26:17.0187 0176 Dnscache - ok
11:26:17.0234 0176 [ 4A3E2BD20157A0946751229E92EB8621 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
11:26:17.0234 0176 Dot3svc - ok
11:26:17.0265 0176 dpti2o - ok
11:26:17.0296 0176 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
11:26:17.0296 0176 drmkaud - ok
11:26:17.0359 0176 [ FB38473835476A6FB272215A1D972AF9 ] dtsoftbus01 C:\WINDOWS\system32\DRIVERS\dtsoftbus01.sys
11:26:17.0359 0176 dtsoftbus01 - ok
11:26:17.0390 0176 EagleNT - ok
11:26:17.0421 0176 [ 0887D9C2BE8D940778CAD1E3B85F2A41 ] EapHost C:\WINDOWS\System32\eapsvc.dll
11:26:17.0437 0176 EapHost - ok
11:26:17.0500 0176 [ EAC137EB2C92C524CBB91B60F82DB27E ] emu10k C:\WINDOWS\system32\drivers\emu10k1f.sys
11:26:17.0500 0176 emu10k - ok
11:26:17.0546 0176 [ AADC81E967C25DD7C90E150FEC6EAB74 ] emu10k1 C:\WINDOWS\system32\drivers\ctlface.sys
11:26:17.0546 0176 emu10k1 - ok
11:26:17.0593 0176 [ A2A4912798F2BE706ABADD3D30800D16 ] ERSvc C:\WINDOWS\System32\ersvc.dll
11:26:17.0593 0176 ERSvc - ok
11:26:17.0640 0176 [ 9EF697AF07BB8DD82C3B02CA953A95B7 ] Eventlog C:\WINDOWS\system32\services.exe
11:26:17.0640 0176 Eventlog - ok
11:26:17.0671 0176 [ A371F11EF07653591C8DE26AFB13CE7F ] EventSystem C:\WINDOWS\System32\es.dll
11:26:17.0687 0176 EventSystem - ok
11:26:17.0734 0176 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
11:26:17.0734 0176 Fastfat - ok
11:26:17.0781 0176 [ EE9A2B9EA968A792A053C9D1A86BF870 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
11:26:17.0781 0176 FastUserSwitchingCompatibility - ok
11:26:17.0812 0176 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys
11:26:17.0828 0176 Fdc - ok
11:26:17.0875 0176 [ E9648254056BCE81A85380C0C3647DC4 ] FETNDIS C:\WINDOWS\system32\DRIVERS\fetnd5.sys
11:26:17.0875 0176 FETNDIS - ok
11:26:17.0921 0176 [ D3B19A8BAE6C20B4D305C7A72E255EB9 ] FETNDISB C:\WINDOWS\system32\DRIVERS\fetnd5b.sys
11:26:17.0921 0176 FETNDISB - ok
11:26:17.0953 0176 [ 39E7DC34E45B7A815F479B138795871D ] filter C:\WINDOWS\system32\drivers\filter.sys
11:26:17.0953 0176 filter - ok
11:26:17.0984 0176 [ AC366695A0796560AA37215AD5762AAF ] Fips C:\WINDOWS\system32\drivers\Fips.sys
11:26:17.0984 0176 Fips - ok
11:26:18.0062 0176 [ 227846995AFEEFA70D328BF5334A86A5 ] FLEXnet Licensing Service C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
11:26:18.0062 0176 FLEXnet Licensing Service - ok
11:26:18.0109 0176 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys
11:26:18.0109 0176 Flpydisk - ok
11:26:18.0171 0176 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
11:26:18.0171 0176 FltMgr - ok
11:26:18.0250 0176 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
11:26:18.0250 0176 FontCache3.0.0.0 - ok
11:26:18.0296 0176 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
11:26:18.0296 0176 Fs_Rec - ok
11:26:18.0328 0176 [ 4E664D8541DB4A66B73A24257E322E1F ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
11:26:18.0328 0176 Ftdisk - ok
11:26:18.0437 0176 FUTUREX - ok
11:26:18.0468 0176 [ 065639773D8B03F33577F6CDAEA21063 ] gameenum C:\WINDOWS\system32\DRIVERS\gameenum.sys
11:26:18.0468 0176 gameenum - ok
11:26:18.0500 0176 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
11:26:18.0500 0176 Gpc - ok
11:26:18.0562 0176 [ FCFE31FB75F8A6295B6B0AF87A626282 ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
11:26:18.0562 0176 helpsvc - ok
11:26:18.0593 0176 [ 00E25EE90166B3E1BE6E74AEBF858306 ] HidServ C:\WINDOWS\System32\hidserv.dll
11:26:18.0593 0176 HidServ - ok
11:26:18.0640 0176 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] hidusb C:\WINDOWS\system32\DRIVERS\hidusb.sys
11:26:18.0640 0176 hidusb - ok
11:26:18.0687 0176 [ 7A6B320928F86BC851530D63C82965D9 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
11:26:18.0687 0176 hkmsvc - ok
11:26:18.0703 0176 hpn - ok
11:26:18.0750 0176 [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
11:26:18.0750 0176 HTTP - ok
11:26:18.0796 0176 [ 58FE2F2DA3BC5573F4A35B3760D3125F ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
11:26:18.0796 0176 HTTPFilter - ok
11:26:18.0812 0176 i2omgmt - ok
11:26:18.0828 0176 i2omp - ok
11:26:18.0875 0176 [ C528E27945367191E7BAE364930B6932 ] i8042prt C:\WINDOWS\system32\drivers\i8042prt.sys
11:26:18.0875 0176 i8042prt - ok
11:26:18.0937 0176 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
11:26:18.0953 0176 idsvc - ok
11:26:18.0984 0176 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
11:26:18.0984 0176 Imapi - ok
11:26:19.0031 0176 [ F7B93AAFAD33B2320954C17E26C8D361 ] ImapiService C:\WINDOWS\system32\imapi.exe
11:26:19.0031 0176 ImapiService - ok
11:26:19.0046 0176 ini910u - ok
11:26:19.0062 0176 IntelIde - ok
11:26:19.0093 0176 [ 3BB22519A194418D5FEC05D800A19AD0 ] ip6fw C:\WINDOWS\system32\drivers\ip6fw.sys
11:26:19.0093 0176 ip6fw - ok
11:26:19.0140 0176 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
11:26:19.0140 0176 IpFilterDriver - ok
11:26:19.0171 0176 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
11:26:19.0171 0176 IpInIp - ok
11:26:19.0218 0176 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
11:26:19.0218 0176 IpNat - ok
11:26:19.0234 0176 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
11:26:19.0234 0176 IPSec - ok
11:26:19.0250 0176 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
11:26:19.0250 0176 IRENUM - ok
11:26:19.0296 0176 [ CC9F8A2D60AED1A51A3AC34C59B987AE ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
11:26:19.0296 0176 isapnp - ok
11:26:19.0359 0176 [ 0A5709543986843D37A92290B7838340 ] JavaQuickStarterService C:\Program Files\Java\jre6\bin\jqs.exe
11:26:19.0359 0176 JavaQuickStarterService - ok
11:26:19.0406 0176 [ 1B6162FE7F66B1A71A4B70F941C4AA9B ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
11:26:19.0406 0176 Kbdclass - ok
11:26:19.0453 0176 [ 86C8F23616C6C6E5B2776901C17B945B ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys
11:26:19.0453 0176 kbdhid - ok
11:26:19.0500 0176 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
11:26:19.0500 0176 kmixer - ok
11:26:19.0546 0176 [ B467646C54CC746128904E1654C750C1 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
11:26:19.0546 0176 KSecDD - ok
11:26:19.0593 0176 [ 3428E8F86F8ADD36B42FB23542C7B3E4 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
11:26:19.0593 0176 lanmanserver - ok
11:26:19.0625 0176 [ 936C1D110232D23B621CB0196E4F80F0 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
11:26:19.0640 0176 lanmanworkstation - ok
11:26:19.0656 0176 lbrtfdc - ok
11:26:19.0750 0176 [ 975B6CF65F44E95883F3855BAE8CECAF ] lirsgt C:\WINDOWS\system32\DRIVERS\lirsgt.sys
11:26:19.0750 0176 lirsgt - ok
11:26:19.0781 0176 [ 0AB159F536E3E8F7F07113702A07CCA5 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
11:26:19.0781 0176 LmHosts - ok
11:26:19.0828 0176 [ 6DFE7F2E8E8A337263AA5C92A215F161 ] MBAMProtector C:\WINDOWS\system32\drivers\mbam.sys
11:26:19.0828 0176 MBAMProtector - ok
11:26:19.0906 0176 [ 43683E970F008C93C9429EF428147A54 ] MBAMService C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
11:26:19.0906 0176 MBAMService - ok
11:26:19.0953 0176 [ 221CD1C815B8A6B79389C3F5D1018DE8 ] Messenger C:\WINDOWS\System32\msgsvc.dll
11:26:19.0953 0176 Messenger - ok
11:26:19.0984 0176 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
11:26:19.0984 0176 mnmdd - ok
11:26:20.0031 0176 [ 9A57D046F88F4B69751B11FD40088A61 ] mnmsrvc C:\WINDOWS\System32\mnmsrvc.exe
11:26:20.0031 0176 mnmsrvc - ok
11:26:20.0062 0176 [ 44032B0C6D9954D3FD26438330B99EE7 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
11:26:20.0062 0176 Modem - ok
11:26:20.0109 0176 [ 4CB582831DBDE63CE43B45D771218374 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
11:26:20.0109 0176 Mouclass - ok
11:26:20.0140 0176 [ BB269EBA740737AB749B214D568B6812 ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
11:26:20.0140 0176 mouhid - ok
11:26:20.0187 0176 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
11:26:20.0203 0176 MountMgr - ok
11:26:20.0218 0176 mraid35x - ok
11:26:20.0234 0176 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
11:26:20.0234 0176 MRxDAV - ok
11:26:20.0281 0176 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
11:26:20.0296 0176 MRxSmb - ok
11:26:20.0343 0176 [ 6DB4D1521CABA9A5FFAB54ADE0AE867D ] MSDTC C:\WINDOWS\System32\msdtc.exe
11:26:20.0343 0176 MSDTC - ok
11:26:20.0390 0176 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
11:26:20.0390 0176 Msfs - ok
11:26:20.0421 0176 MSIServer - ok
11:26:20.0468 0176 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
11:26:20.0468 0176 MSKSSRV - ok
11:26:20.0484 0176 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
11:26:20.0484 0176 MSPCLOCK - ok
11:26:20.0515 0176 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
11:26:20.0515 0176 MSPQM - ok
11:26:20.0546 0176 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
11:26:20.0546 0176 mssmbios - ok
11:26:20.0593 0176 [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
11:26:20.0593 0176 Mup - ok
11:26:20.0640 0176 [ 6EA362E9DB03D44F6B996F4D8BE237E9 ] napagent C:\WINDOWS\System32\qagentrt.dll
11:26:20.0656 0176 napagent - ok
11:26:20.0687 0176 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
11:26:20.0687 0176 NDIS - ok
11:26:20.0718 0176 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
11:26:20.0718 0176 NdisTapi - ok
11:26:20.0750 0176 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
11:26:20.0750 0176 Ndisuio - ok
11:26:20.0781 0176 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
11:26:20.0781 0176 NdisWan - ok
11:26:20.0812 0176 [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
11:26:20.0812 0176 NDProxy - ok
11:26:20.0843 0176 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
11:26:20.0843 0176 NetBIOS - ok
11:26:20.0859 0176 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
11:26:20.0875 0176 NetBT - ok
11:26:20.0906 0176 [ 933DE774986EC85E48210C44AB431DE6 ] NetDDE C:\WINDOWS\system32\netdde.exe
11:26:20.0906 0176 NetDDE - ok
11:26:20.0921 0176 [ 933DE774986EC85E48210C44AB431DE6 ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
11:26:20.0921 0176 NetDDEdsdm - ok
11:26:20.0968 0176 [ ED0A176354487CEED65B80A7148AB739 ] Netlogon C:\WINDOWS\system32\lsass.exe
11:26:20.0968 0176 Netlogon - ok
11:26:21.0000 0176 [ 72E1E9E2977BE08BDEEDB6D8FD9D4D40 ] Netman C:\WINDOWS\System32\netman.dll
11:26:21.0000 0176 Netman - ok
11:26:21.0046 0176 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
11:26:21.0046 0176 NetTcpPortSharing - ok
11:26:21.0093 0176 [ E9E47CFB2D461FA0FC75B7A74C6383EA ] NIC1394 C:\WINDOWS\system32\DRIVERS\nic1394.sys
11:26:21.0093 0176 NIC1394 - ok
11:26:21.0140 0176 [ 39EE7C3BFBC64BA87CC8CF67386E814C ] Nla C:\WINDOWS\System32\mswsock.dll
11:26:21.0140 0176 Nla - ok
11:26:21.0171 0176 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
11:26:21.0171 0176 Npfs - ok
11:26:21.0203 0176 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
11:26:21.0218 0176 Ntfs - ok
11:26:21.0250 0176 [ ED0A176354487CEED65B80A7148AB739 ] NtLmSsp C:\WINDOWS\System32\lsass.exe
11:26:21.0250 0176 NtLmSsp - ok
11:26:21.0312 0176 [ 023DD70573D644F3D9C8B1258A7BFD08 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
11:26:21.0312 0176 NtmsSvc - ok
11:26:21.0359 0176 [ A568B9A9FFE2D9387222A5C90F86D731 ] NTSIM C:\WINDOWS\System32\ntsim.sys
11:26:21.0359 0176 NTSIM - ok
11:26:21.0390 0176 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
11:26:21.0390 0176 Null - ok
11:26:21.0421 0176 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
11:26:21.0421 0176 NwlnkFlt - ok
11:26:21.0437 0176 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
11:26:21.0437 0176 NwlnkFwd - ok
11:26:21.0546 0176 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
11:26:21.0546 0176 odserv - ok
11:26:21.0578 0176 [ CA33832DF41AFB202EE7AEB05145922F ] ohci1394 C:\WINDOWS\system32\DRIVERS\ohci1394.sys
11:26:21.0593 0176 ohci1394 - ok
11:26:21.0625 0176 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
11:26:21.0625 0176 ose - ok
11:26:21.0656 0176 [ 46F8DB73B4A53E543F8E371DC7C75BAE ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
11:26:21.0656 0176 Parport - ok
11:26:21.0687 0176 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
11:26:21.0687 0176 PartMgr - ok
11:26:21.0718 0176 [ 1FAE19D0457176318BBA4A8795656EBC ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
11:26:21.0718 0176 ParVdm - ok
11:26:21.0734 0176 [ 6CE351D149CB4BEFC702951E471E1730 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
11:26:21.0750 0176 PCI - ok
11:26:21.0765 0176 PCIDump - ok
11:26:21.0796 0176 [ 2DA4EC85E0EA7A45C6B2A05820492D5A ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
11:26:21.0796 0176 PCIIde - ok
11:26:21.0828 0176 [ 4FC31E6C19A5CE5198B1ABFF94CAE758 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
11:26:21.0828 0176 Pcmcia - ok
11:26:21.0843 0176 PDCOMP - ok
11:26:21.0859 0176 PDFRAME - ok
11:26:21.0890 0176 PDRELI - ok
11:26:21.0906 0176 PDRFRAME - ok
11:26:21.0937 0176 perc2 - ok
11:26:21.0953 0176 perc2hib - ok
11:26:22.0031 0176 [ B293F05AD9120B0232C28945C1E98CD0 ] PfModNT C:\WINDOWS\System32\PfModNT.sys
11:26:22.0046 0176 PfModNT - ok
11:26:22.0062 0176 [ 9EF697AF07BB8DD82C3B02CA953A95B7 ] PlugPlay C:\WINDOWS\system32\services.exe
11:26:22.0062 0176 PlugPlay - ok
11:26:22.0093 0176 [ A1DD33D16F277CE34124EE52AB2C0F14 ] PnkBstrA C:\WINDOWS\system32\PnkBstrA.exe
11:26:22.0093 0176 PnkBstrA - ok
11:26:22.0109 0176 [ ED0A176354487CEED65B80A7148AB739 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
11:26:22.0109 0176 PolicyAgent - ok
11:26:22.0140 0176 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
11:26:22.0140 0176 PptpMiniport - ok
11:26:22.0156 0176 [ ED0A176354487CEED65B80A7148AB739 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
11:26:22.0156 0176 ProtectedStorage - ok
11:26:22.0187 0176 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
11:26:22.0187 0176 PSched - ok
11:26:22.0218 0176 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
11:26:22.0218 0176 Ptilink - ok
11:26:22.0234 0176 ql1080 - ok
11:26:22.0265 0176 Ql10wnt - ok
11:26:22.0296 0176 ql12160 - ok
11:26:22.0328 0176 ql1240 - ok
11:26:22.0343 0176 ql1280 - ok
11:26:22.0359 0176 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
11:26:22.0359 0176 RasAcd - ok
11:26:22.0375 0176 [ 2B5E44EA009F2F374B980E1E9A70635D ] RasAuto C:\WINDOWS\System32\rasauto.dll
11:26:22.0390 0176 RasAuto - ok
11:26:22.0406 0176 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
11:26:22.0406 0176 Rasl2tp - ok
11:26:22.0453 0176 [ D57554C664B64604BD1EE13EA2C07E77 ] RasMan C:\WINDOWS\System32\rasmans.dll
11:26:22.0453 0176 RasMan - ok
11:26:22.0468 0176 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
11:26:22.0468 0176 RasPppoe - ok
11:26:22.0500 0176 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
11:26:22.0500 0176 Raspti - ok
11:26:22.0515 0176 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
11:26:22.0515 0176 Rdbss - ok
11:26:22.0531 0176 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
11:26:22.0531 0176 RDPCDD - ok
11:26:22.0546 0176 [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
11:26:22.0546 0176 rdpdr - ok
11:26:22.0593 0176 [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
11:26:22.0593 0176 RDPWD - ok
11:26:22.0640 0176 [ C0D9D9711CB74EE9BC66353D8CBDAB0E ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
11:26:22.0640 0176 RDSessMgr - ok
11:26:22.0687 0176 [ 611BFD220305BE3A85AE876EA47D4AA5 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
11:26:22.0687 0176 redbook - ok
11:26:22.0718 0176 [ 127C26B5371651043450E52542099ABA ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
11:26:22.0734 0176 RemoteAccess - ok
11:26:22.0765 0176 [ 8F31505484A190D5B22274708799F4EC ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
11:26:22.0765 0176 RemoteRegistry - ok
11:26:22.0796 0176 [ 718B3BDC0BC3C2F7D065A53D26202AF9 ] RpcLocator C:\WINDOWS\System32\locator.exe
11:26:22.0796 0176 RpcLocator - ok
11:26:22.0843 0176 [ BE27674D1CBC3214AEC84B4336A38BBF ] RpcSs C:\WINDOWS\System32\rpcss.dll
11:26:22.0843 0176 RpcSs - ok
11:26:22.0875 0176 [ 09AB2E71E58B078038E3BFDBA7FFC984 ] RSVP C:\WINDOWS\System32\rsvp.exe
11:26:22.0875 0176 RSVP - ok
11:26:22.0921 0176 [ 493B54A894A6E70DD02961A68DB8863F ] rtl8029 C:\WINDOWS\system32\DRIVERS\RTL8029.SYS
11:26:22.0921 0176 rtl8029 - ok
11:26:22.0937 0176 [ ED0A176354487CEED65B80A7148AB739 ] SamSs C:\WINDOWS\system32\lsass.exe
11:26:22.0953 0176 SamSs - ok
11:26:22.0984 0176 [ 410046E401EB11E1E6749E9DEEA41D4A ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
11:26:22.0984 0176 SCardSvr - ok
11:26:23.0031 0176 [ 3FF232A7731621B8902D81D42418C93C ] Schedule C:\WINDOWS\system32\schedsvc.dll
11:26:23.0031 0176 Schedule - ok
11:26:23.0078 0176 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
11:26:23.0078 0176 Secdrv - ok
11:26:23.0125 0176 [ 477E2C3CC5E4A0D635BCB0EA8DCAC3C6 ] seclogon C:\WINDOWS\System32\seclogon.dll
11:26:23.0125 0176 seclogon - ok
11:26:23.0140 0176 [ A530B75C10C23C9AB28FDB6CE719E21F ] SENS C:\WINDOWS\system32\sens.dll
11:26:23.0140 0176 SENS - ok
11:26:23.0171 0176 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
11:26:23.0171 0176 serenum - ok
11:26:23.0187 0176 [ B842729337C9B921615C40D3C1A1AF96 ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
11:26:23.0187 0176 Serial - ok
11:26:23.0265 0176 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
11:26:23.0265 0176 Sfloppy - ok
11:26:23.0281 0176 [ 28B740A66CB88BE3D0CD93D5664D7D88 ] sfman C:\WINDOWS\system32\drivers\sfman.sys
11:26:23.0281 0176 sfman - ok
11:26:23.0343 0176 [ F58FACA9621D2DB01BD0927D9A0A208E ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
11:26:23.0359 0176 SharedAccess - ok
11:26:23.0390 0176 [ EE9A2B9EA968A792A053C9D1A86BF870 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
11:26:23.0390 0176 ShellHWDetection - ok
11:26:23.0421 0176 Simbad - ok
11:26:23.0453 0176 Sparrow - ok
11:26:23.0484 0176 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
11:26:23.0484 0176 splitter - ok
11:26:23.0531 0176 [ 60784F891563FB1B767F70117FC2428F ] Spooler C:\WINDOWS\system32\spoolsv.exe
11:26:23.0531 0176 Spooler - ok
11:26:23.0562 0176 [ 94610C8653635E4459316A0050D55CE7 ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
11:26:23.0562 0176 sr - ok
11:26:23.0593 0176 [ 35B91147124F64AC8081A2EDB9EA4DEE ] srservice C:\WINDOWS\system32\srsvc.dll
11:26:23.0609 0176 srservice - ok
11:26:23.0640 0176 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
11:26:23.0656 0176 Srv - ok
11:26:23.0703 0176 [ BECD5271DC4E3B7C3D035F790FCBC1E5 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
11:26:23.0703 0176 SSDPSRV - ok
11:26:23.0765 0176 [ C1CDD9275F6A115BB0AE1D55D8D27BA6 ] stisvc C:\WINDOWS\system32\wiaservc.dll
11:26:23.0765 0176 stisvc - ok
11:26:23.0796 0176 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
11:26:23.0796 0176 swenum - ok
11:26:23.0890 0176 [ F577910A133A592234EBAAD3F3AFA258 ] SwitchBoard C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
11:26:23.0906 0176 SwitchBoard - ok
11:26:23.0921 0176 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
11:26:23.0937 0176 swmidi - ok
11:26:23.0953 0176 SwPrv - ok
11:26:23.0968 0176 symc810 - ok
11:26:24.0000 0176 symc8xx - ok
11:26:24.0015 0176 sym_hi - ok
11:26:24.0046 0176 sym_u3 - ok
11:26:24.0093 0176 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
11:26:24.0109 0176 sysaudio - ok
11:26:24.0156 0176 [ CE06F01B88ACE199A1BF460CAC29C110 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
11:26:24.0156 0176 SysmonLog - ok
11:26:24.0203 0176 [ C2546CD7A398476F9DF5614B2AE160E8 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
11:26:24.0203 0176 TapiSrv - ok
11:26:24.0250 0176 [ D9F19E78F98834CB411D6AD3C68D181A ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
11:26:24.0250 0176 Tcpip - ok
11:26:24.0296 0176 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
11:26:24.0296 0176 TDPIPE - ok
11:26:24.0312 0176 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
11:26:24.0312 0176 TDTCP - ok
11:26:24.0343 0176 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
11:26:24.0343 0176 TermDD - ok
11:26:24.0390 0176 [ A75DD6FC3DBEE4FFF5EBC9F2C28BB66E ] TermService C:\WINDOWS\System32\termsrv.dll
11:26:24.0406 0176 TermService - ok
11:26:24.0437 0176 [ EE9A2B9EA968A792A053C9D1A86BF870 ] Themes C:\WINDOWS\System32\shsvcs.dll
11:26:24.0437 0176 Themes - ok
11:26:24.0484 0176 [ CD0CC7B167D78043A41C98D4921EFB54 ] TlntSvr C:\WINDOWS\System32\tlntsvr.exe
11:26:24.0484 0176 TlntSvr - ok
11:26:24.0500 0176 TosIde - ok
11:26:24.0546 0176 [ 38853304CCB938D30E0C4CDE8D2C2A8A ] TrkWks C:\WINDOWS\system32\trkwks.dll
11:26:24.0546 0176 TrkWks - ok
11:26:24.0593 0176 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
11:26:24.0593 0176 Udfs - ok
11:26:24.0609 0176 ultra - ok
11:26:24.0671 0176 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
11:26:24.0671 0176 Update - ok
11:26:24.0718 0176 [ 651BD90DCEE5B7BDC74A2EB7C9266F9E ] upnphost C:\WINDOWS\System32\upnphost.dll
11:26:24.0718 0176 upnphost - ok
11:26:24.0750 0176 [ 20A0F6A11959E92908717D09E87D670D ] UPS C:\WINDOWS\System32\ups.exe
11:26:24.0765 0176 UPS - ok
11:26:24.0812 0176 [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
11:26:24.0812 0176 usbccgp - ok
11:26:24.0859 0176 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
11:26:24.0859 0176 usbehci - ok
11:26:24.0890 0176 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
11:26:24.0890 0176 usbhub - ok
11:26:24.0921 0176 [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
11:26:24.0937 0176 usbscan - ok
11:26:24.0984 0176 [ A32426D9B14A089EAA1D922E0C5801A9 ] usbstor C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
11:26:24.0984 0176 usbstor - ok
11:26:25.0046 0176 [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
11:26:25.0046 0176 usbuhci - ok
11:26:25.0078 0176 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
11:26:25.0078 0176 VgaSave - ok
11:26:25.0109 0176 [ 4B039BBD037B01F5DB5A144C837F283A ] viaagp1 C:\WINDOWS\system32\DRIVERS\viaagp1.sys
11:26:25.0109 0176 viaagp1 - ok
11:26:25.0125 0176 [ 3B3EFCDA263B8AC14FDF9CBDD0791B2E ] ViaIde C:\WINDOWS\system32\DRIVERS\viaide.sys
11:26:25.0125 0176 ViaIde - ok
11:26:25.0171 0176 [ 8D20736EFC3E9AC93F3721865CD69DAB ] viasraid C:\WINDOWS\system32\DRIVERS\viasraid.sys
11:26:25.0171 0176 viasraid - ok
11:26:25.0203 0176 [ 28A4B296B47782173C346E376CB374D1 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
11:26:25.0203 0176 VolSnap - ok
11:26:25.0234 0176 [ D6BA1A63D9E00933F1CD2A885573AFB2 ] VSS C:\WINDOWS\System32\vssvc.exe
11:26:25.0250 0176 VSS - ok
11:26:25.0281 0176 [ FA4E1CDBA256787F2149F4AAD07BC91F ] W32Time C:\WINDOWS\system32\w32time.dll
11:26:25.0296 0176 W32Time - ok
11:26:25.0328 0176 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
11:26:25.0328 0176 Wanarp - ok
11:26:25.0343 0176 WDICA - ok
11:26:25.0390 0176 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
11:26:25.0390 0176 wdmaud - ok
11:26:25.0421 0176 [ 47AE51048A82DFA1CD6B51D369F7E169 ] WebClient C:\WINDOWS\System32\webclnt.dll
11:26:25.0421 0176 WebClient - ok
11:26:25.0515 0176 [ E488332126E3B1182D2B8A0C35408EC6 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
11:26:25.0515 0176 winmgmt - ok
11:26:25.0562 0176 [ 581176F60885AEF8F78C6E38DCC3CDF9 ] WMDM PMSP Service C:\WINDOWS\system32\MsPMSPSv.exe
11:26:25.0562 0176 WMDM PMSP Service - ok
11:26:25.0609 0176 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
11:26:25.0609 0176 WmdmPmSN - ok
11:26:25.0656 0176 [ 0171CFF34BBA8C5977F18C48D8AEF8C6 ] Wmi C:\WINDOWS\System32\advapi32.dll
11:26:25.0671 0176 Wmi - ok
11:26:25.0718 0176 [ 23F6F03272F7E5679F1F050AED5ACEE6 ] WmiApSrv C:\WINDOWS\System32\wbem\wmiapsrv.exe
11:26:25.0718 0176 WmiApSrv - ok
11:26:25.0812 0176 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
11:26:25.0828 0176 WPFFontCache_v0400 - ok
11:26:25.0859 0176 [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] WS2IFSL C:\WINDOWS\System32\drivers\ws2ifsl.sys
11:26:25.0859 0176 WS2IFSL - ok
11:26:25.0890 0176 [ 4C86D5FAF78194995AF9CC1075F65DD3 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
11:26:25.0890 0176 wscsvc - ok
11:26:25.0906 0176 [ C1364564800EE9784192145324A23308 ] wuauserv C:\WINDOWS\system32\wuauserv.dll
11:26:25.0921 0176 wuauserv - ok
11:26:25.0953 0176 [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
11:26:25.0953 0176 WudfPf - ok
11:26:25.0984 0176 [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
11:26:25.0984 0176 WudfRd - ok
11:26:26.0015 0176 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
11:26:26.0015 0176 WudfSvc - ok
11:26:26.0078 0176 [ A27D4BA7264C0BF52F32D10405BEA1D4 ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
11:26:26.0093 0176 WZCSVC - ok
11:26:26.0125 0176 [ EAA4BB9EDB3FB10CF8979FE65E63658F ] xmlprov C:\WINDOWS\System32\xmlprov.dll
11:26:26.0125 0176 xmlprov - ok
11:26:26.0171 0176 ================ Scan global ===============================
11:26:26.0218 0176 [ F36278E42C8C5DF03CE17DAC8231C91C ] C:\WINDOWS\system32\basesrv.dll
11:26:26.0250 0176 [ F3FA14A297BC687D0B51289D034033C9 ] C:\WINDOWS\system32\winsrv.dll
11:26:26.0281 0176 [ F3FA14A297BC687D0B51289D034033C9 ] C:\WINDOWS\system32\winsrv.dll
11:26:26.0312 0176 [ 9EF697AF07BB8DD82C3B02CA953A95B7 ] C:\WINDOWS\system32\services.exe
11:26:26.0312 0176 [Global] - ok
11:26:26.0328 0176 ================ Scan MBR ==================================
11:26:26.0343 0176 [ 413FC2A0C716421B3158746D63736515 ] \Device\Harddisk0\DR0
11:26:26.0500 0176 \Device\Harddisk0\DR0 - ok
11:26:26.0515 0176 ================ Scan VBR ==================================
11:26:26.0515 0176 [ 822EA286FBFC10C7BFE81D3D2989722F ] \Device\Harddisk0\DR0\Partition1
11:26:26.0515 0176 \Device\Harddisk0\DR0\Partition1 - ok
11:26:26.0531 0176 ============================================================
11:26:26.0531 0176 Scan finished
11:26:26.0531 0176 ============================================================
11:26:26.0562 2056 Detected object count: 0
11:26:26.0562 2056 Actual detected object count: 0
11:26:29.0875 2512 Deinitialize success

helpmeboys · Příspěvekod **helpmeboys** » 23 srp 2012 11:59

OTL logfile

OTL logfile created on: 23.8.2012 11:40:55 - Run 1
OTL by OldTimer - Version 3.2.58.1 Folder = C:\Documents and Settings\Milan Štrbík\Dokumenty\Downloads
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.5512)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

2,00 Gb Total Physical Memory | 1,59 Gb Available Physical Memory | 79,63% Memory free
3,85 Gb Paging File | 3,51 Gb Available in Paging File | 91,18% Paging File free
Paging file location(s): C:\pagefile.sys 2048 4096 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 115,03 Gb Total Space | 82,75 Gb Free Space | 71,94% Space Free | Partition Type: NTFS

Computer Name: MILAN | User Name: Milan Štrbík | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - C:\Documents and Settings\Milan Štrbík\Dokumenty\Downloads\OTL.exe (OldTimer Tools)
PRC - C:\Program Files\IObit\Advanced SystemCare 5\ASCService.exe (IObit)
PRC - C:\WINDOWS\system32\ASTSRV.EXE (Nalpeiron Ltd.)
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\WINDOWS\system32\devldr32.exe (Creative Technology Ltd.)
PRC - C:\Program Files\Creative\SBLive\AudioHQ\ahqtb.exe (Creative Technology Ltd.)

========== Modules (No Company Name) ==========

MOD - C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Web\dbc413807cb7360b3e26ef3ca1d54f9a\System.Web.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\01abbadafaf265d9f4ac9bbb247acb98\System.Windows.Forms.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Drawing\d86f2038209a4cf0d0f5b30f6375c9b2\System.Drawing.ni.dll ()
MOD - C:\WINDOWS\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Configuration\3d5b7368bde0f65aa15d9f46b498cc89\System.Configuration.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Accessibility\016444dfc5f7e3d11c776f2fbc7a4594\Accessibility.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Xml\3bba1b8b0b5ef0be238b011cc7a0575e\System.Xml.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System\e4b5afc4da43b1c576f9322f9f2e1bfe\System.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\mscorlib\e337c89bc9f81b69d7237aa70e935900\mscorlib.ni.dll ()
MOD - C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll ()
MOD - C:\WINDOWS\assembly\GAC_MSIL\System.Windows.Forms.resources\2.0.0.0_cs_b77a5c561934e089\System.Windows.Forms.resources.dll ()
MOD - C:\WINDOWS\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_cs_b77a5c561934e089\mscorlib.resources.dll ()
MOD - C:\Program Files\IObit\Advanced SystemCare 5\madexcept_.bpl ()
MOD - C:\Program Files\IObit\Advanced SystemCare 5\madbasic_.bpl ()
MOD - C:\Program Files\IObit\Advanced SystemCare 5\maddisAsm_.bpl ()
MOD - C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\AxInterop.WBOCXLib.dll ()

========== Win32 Services (SafeList) ==========

SRV - (AdobeFlashPlayerUpdateSvc) -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
SRV - (MBAMService) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
SRV - (FLEXnet Licensing Service) -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe (Macrovision Europe Ltd.)
SRV - (AdvancedSystemCareService5) -- C:\Program Files\IObit\Advanced SystemCare 5\ASCService.exe (IObit)
SRV - (SwitchBoard) -- C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
SRV - (ASTSRV) -- C:\WINDOWS\system32\ASTSRV.EXE (Nalpeiron Ltd.)

========== Driver Services (SafeList) ==========

DRV - (WDICA) -- File not found
DRV - (PDRFRAME) -- File not found
DRV - (PDRELI) -- File not found
DRV - (PDFRAME) -- File not found
DRV - (PDCOMP) -- File not found
DRV - (PCIDump) -- File not found
DRV - (lbrtfdc) -- File not found
DRV - (i2omgmt) -- File not found
DRV - (Changer) -- File not found
DRV - (FUTUREX) -- C:\Documents and Settings\Milan Štrbík\Dokumenty\Downloads\aida32pe_375\aida32.sys File not found
DRV - (EagleNT) -- C:\WINDOWS\system32\drivers\EagleNT.sys File not found
DRV - (atksgt) -- C:\WINDOWS\system32\drivers\atksgt.sys ()
DRV - (lirsgt) -- C:\WINDOWS\system32\drivers\lirsgt.sys ()
DRV - (dtsoftbus01) -- C:\WINDOWS\system32\drivers\dtsoftbus01.sys (DT Soft Ltd)
DRV - (MBAMProtector) -- C:\WINDOWS\system32\drivers\mbam.sys (Malwarebytes Corporation)
DRV - (ati2mtag) -- C:\WINDOWS\system32\drivers\ati2mtag.sys (ATI Technologies Inc.)
DRV - (gameenum) -- C:\WINDOWS\system32\drivers\gameenum.sys (Microsoft Corporation)
DRV - (filter) -- C:\WINDOWS\system32\drivers\filter.sys (Walter Oney Software)
DRV - (viasraid) -- C:\WINDOWS\system32\drivers\viasraid.sys (VIA Technologies inc,.ltd)
DRV - (viaagp1) -- C:\WINDOWS\system32\drivers\VIAAGP1.SYS (VIA Technologies, Inc.)
DRV - (PfModNT) -- C:\WINDOWS\system32\PFMODNT.SYS (Creative Technology Ltd.)
DRV - (sfman) -- C:\WINDOWS\system32\drivers\sfman.sys (Creative Technology Ltd.)
DRV - (ctljystk) -- C:\WINDOWS\system32\drivers\ctljystk.sys (Creative Technology Ltd.)
DRV - (rtl8029) -- C:\WINDOWS\system32\drivers\RTL8029.sys (Realtek Semiconductor Corporation)
DRV - (emu10k) -- C:\WINDOWS\system32\drivers\emu10k1f.sys (Creative Technology Ltd.)
DRV - (emu10k1) -- C:\WINDOWS\system32\drivers\ctlface.sys (Creative Technology Ltd.)

========== Standard Registry (All) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=home
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htm
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
IE - HKCU\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\WINDOWS\system32\shdocvw.dll (Microsoft Corporation)
IE - HKCU\..\SearchScopes,DefaultScope = {AD22EBAF-0D18-4fc7-90CC-5EA0ABBE9EB8}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
IE - HKCU\..\SearchScopes\{AD22EBAF-0D18-4fc7-90CC-5EA0ABBE9EB8}: "URL" = http://www.daemon-search.com/search?q={searchTerms}
IE - HKCU\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT3072253
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Documents and Settings\Milan Štrbík\Local Settings\Data aplikací\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Documents and Settings\Milan Štrbík\Local Settings\Data aplikací\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{20a82645-c095-46ed-80e3-08825760534b}: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ [2012.03.07 22:44:56 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\jqs@sun.com: C:\Program Files\Java\jre6\lib\deploy\jqs\ff [2012.02.29 19:15:28 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird

[2012.08.05 12:47:26 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Milan Štrbík\Data aplikací\Mozilla\Firefox\extensions
[2012.08.05 12:47:28 | 000,000,000 | ---D | M] (uTorrentControl2) -- C:\Documents and Settings\Milan Štrbík\Data aplikací\Mozilla\Firefox\extensions\{687578b9-7132-4a7a-80e4-30ee31099e03}

========== Chrome ==========

CHR - homepage: http://www.seznam.cz/
CHR - default_search_provider: uTorrentControl2 Customized Web Search (Enabled)
CHR - default_search_provider: search_url = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT3072253
CHR - default_search_provider: suggest_url =
CHR - homepage: http://www.seznam.cz/
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Documents and Settings\Milan \u0160trb\u00EDk\Local Settings\Data aplikac\u00ED\Google\Chrome\Application\21.0.1180.83\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Documents and Settings\Milan \u0160trb\u00EDk\Local Settings\Data aplikac\u00ED\Google\Chrome\Application\21.0.1180.83\pdf.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Documents and Settings\Milan \u0160trb\u00EDk\Local Settings\Data aplikac\u00ED\Google\Chrome\Application\21.0.1180.83\gcswf32.dll
CHR - plugin: Shockwave Flash (Disabled) = C:\Documents and Settings\Milan \u0160trb\u00EDk\Local Settings\Data aplikac\u00ED\Google\Chrome\User Data\PepperFlash\11.2.31.144\pepflashplayer.dll
CHR - plugin: (Enabled) = C:\Documents and Settings\Milan \u0160trb\u00EDk\Local Settings\Data aplikac\u00ED\Google\Chrome\User Data\Default\Extensions\clbfjfbnelcflpgpklppgplejolacbej\1.0.5_0\chromeNPAPI.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll
CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Enabled) = C:\Program Files\Windows Media Player\npdsplay.dll
CHR - plugin: Google Update (Enabled) = C:\Documents and Settings\Milan \u0160trb\u00EDk\Local Settings\Data aplikac\u00ED\Google\Update\1.3.21.111\npGoogleUpdate3.dll
CHR - plugin: Java(TM) Platform SE 6 U31 (Enabled) = C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll
CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files\Microsoft Silverlight\5.0.61118.0\npctrl.dll
CHR - plugin: Windows Presentation Foundation (Enabled) = c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
CHR - Extension: YouTube = C:\Documents and Settings\Milan Štrbík\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\
CHR - Extension: SweetIM for Facebook = C:\Documents and Settings\Milan Štrbík\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn\1.0.0.0_0\Copy of
CHR - Extension: SweetIM for Facebook = C:\Documents and Settings\Milan Štrbík\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn\1.0.0.0_0\
CHR - Extension: ADDICT-THING = C:\Documents and Settings\Milan Štrbík\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\lmbekfoajgdmgnlbdepaedbgngaoegjl\1.0_0\
CHR - Extension: uTorrentControl2 = C:\Documents and Settings\Milan Štrbík\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pacgpkgadgmibnhpdidcnfafllnmeomc\2.3.15.10_0\
CHR - Extension: Gmail = C:\Documents and Settings\Milan Štrbík\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\
CHR - Extension: YouTube = C:\Documents and Settings\Milan Štrbík\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\
CHR - Extension: SweetIM for Facebook = C:\Documents and Settings\Milan Štrbík\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn\1.0.0.0_0\Copy of
CHR - Extension: SweetIM for Facebook = C:\Documents and Settings\Milan Štrbík\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn\1.0.0.0_0\
CHR - Extension: ADDICT-THING = C:\Documents and Settings\Milan Štrbík\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\lmbekfoajgdmgnlbdepaedbgngaoegjl\1.0_0\
CHR - Extension: uTorrentControl2 = C:\Documents and Settings\Milan Štrbík\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pacgpkgadgmibnhpdidcnfafllnmeomc\2.3.15.10_0\
CHR - Extension: Gmail = C:\Documents and Settings\Milan Štrbík\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

O1 HOSTS File: ([2012.08.23 11:13:26 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)
O3 - HKCU\..\Toolbar\ShellBrowser: (&Adresa) - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Společnost Microsoft)
O3 - HKCU\..\Toolbar\WebBrowser: (&Adresa) - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Společnost Microsoft)
O3 - HKCU\..\Toolbar\WebBrowser: (&Odkazy) - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
O4 - HKLM..\Run: [AdobeCS5ServiceManager] C:\Program Files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [AdobeCS6ServiceManager] C:\Program Files\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [AHQInit] C:\Program Files\Creative\SBLive\Program\AHQInit.exe (Creative Technology Ltd)
O4 - HKLM..\Run: [AudioHQ] C:\Program Files\Creative\SBLive\AudioHQ\ahqtb.exe (Creative Technology Ltd.)
O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [SwitchBoard] C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
O4 - Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe (Adobe Systems Incorporated)
O4 - Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Adobe Reader Synchronizer.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe ()
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableRegistryTools = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: =
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: disableregistrytools = 0
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - C:\Program Files\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: Free YouTube Download - C:\Documents and Settings\Milan Štrbík\Data aplikací\DVDVideoSoftIEHelpers\freeytvdownloader.htm ()
O8 - Extra context menu item: Free YouTube to Mp3 Converter - C:\Documents and Settings\Milan Štrbík\Data aplikací\DVDVideoSoftIEHelpers\youtubetomp3.htm ()
O8 - Extra context menu item: Search the Web - C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\menuext.html File not found
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\network diagnostic\xpnetdiag.exe (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000002 [] - C:\WINDOWS\system32\winrnr.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000003 [] - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Computer, Inc.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\WINDOWS\system32\rsvpsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\WINDOWS\system32\rsvpsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000012 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000013 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000014 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000015 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000016 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000017 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O12 - Plugin for: .spop - C:\Program Files\Internet Explorer\PLUGINS\NPDocBox.dll (InterTrust Technologies Corporation, Inc.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: DirectAnimation Java Classes file://C:\WINDOWS\Java\classes\dajava.cab (Reg Error: Key error.)
O16 - DPF: Microsoft XML Parser for Java file://C:\WINDOWS\Java\classes\xmldso.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.0.0.138
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{D5DCEE66-97CD-41C0-96CB-A89E12EED950}: DhcpNameServer = 10.0.0.138
O18 - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\dvd {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\WINDOWS\system32\msvidctl.dll (Microsoft Corporation)
O18 - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\gopher {79eac9e4-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ipp - No CLSID value found
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\WINDOWS\system32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\WINDOWS\system32\inetcomm.dll (Microsoft Corporation)
O18 - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp - No CLSID value found
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\WINDOWS\system32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\sysimage {76E67A63-06E9-11D2-A840-006008059382} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\tv {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\WINDOWS\system32\msvidctl.dll (Microsoft Corporation)
O18 - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\wia {13F3EA8B-91D7-4F0A-AD76-D2853AC8BECE} - C:\WINDOWS\system32\wiascr.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\WINDOWS\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\WINDOWS\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\WINDOWS\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\Class Install Handler {32B533BB-EDAE-11d0-BD5A-00AA00B92AF1} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\deflate {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\gzip {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\lzdhtml {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/webviewhtml {733AC4CB-F1A4-11d0-B951-00A0C90312E1} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UIHost - (logonui.exe) - C:\WINDOWS\System32\logonui.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (rundll32 shell32) - C:\WINDOWS\System32\shell32.dll (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (Control_RunDLL "sysdm.cpl") - C:\WINDOWS\System32\sysdm.cpl (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - (Ati2evxx.dll) - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O20 - Winlogon\Notify\crypt32chain: DllName - (crypt32.dll) - C:\WINDOWS\System32\crypt32.dll (Microsoft Corporation)

helpmeboys · Příspěvekod **helpmeboys** » 23 srp 2012 12:00

O20 - Winlogon\Notify\cryptnet: DllName - (cryptnet.dll) - C:\WINDOWS\System32\cryptnet.dll (Microsoft Corporation)
O20 - Winlogon\Notify\cscdll: DllName - (cscdll.dll) - C:\WINDOWS\System32\cscdll.dll (Microsoft Corporation)
O20 - Winlogon\Notify\dimsntfy: DllName - (%SystemRoot%\System32\dimsntfy.dll) - C:\WINDOWS\system32\dimsntfy.dll (Microsoft Corporation)
O20 - Winlogon\Notify\ScCertProp: DllName - (wlnotify.dll) - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\sclgntfy: DllName - (sclgntfy.dll) - C:\WINDOWS\System32\sclgntfy.dll (Microsoft Corporation)
O20 - Winlogon\Notify\SensLogn: DllName - (WlNotify.dll) - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\Schedule: DllName - (wlnotify.dll) - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\termsrv: DllName - (wlnotify.dll) - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\wlballoon: DllName - (wlnotify.dll) - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
O21 - SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
O21 - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} - C:\WINDOWS\system32\stobject.dll (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\WINDOWS\system32\webcheck.dll (Microsoft Corporation)
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll (Microsoft Corporation)
O22 - SharedTaskScheduler: {438755C2-A8BA-11D1-B96B-00A0C90312E1} - Browseui preloader - C:\WINDOWS\system32\browseui.dll (Společnost Microsoft)
O22 - SharedTaskScheduler: {8C7461EF-2B13-11d2-BE35-3078302C2030} - Proces mezipaměti kategorií součástí - C:\WINDOWS\system32\browseui.dll (Společnost Microsoft)
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Milan Štrbík\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Milan Štrbík\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O28 - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - C:\WINDOWS\System32\shell32.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (msapsspc.dll) - C:\WINDOWS\System32\msapsspc.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (schannel.dll) - C:\WINDOWS\System32\schannel.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (digest.dll) - C:\WINDOWS\System32\digest.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (msnsspc.dll) - C:\WINDOWS\System32\msnsspc.dll (Microsoft Corporation)
O30 - LSA: Authentication Packages - (msv1_0) - C:\WINDOWS\System32\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (kerberos) - C:\WINDOWS\System32\kerberos.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (msv1_0) - C:\WINDOWS\System32\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (schannel) - C:\WINDOWS\System32\schannel.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (wdigest) - C:\WINDOWS\System32\wdigest.dll (Microsoft Corporation)
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2012.02.01 17:36:26 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

========== Files/Folders - Created Within 30 Days ==========

[2012.08.23 11:25:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Milan Štrbík\Plocha\tdsskiller
[2012.08.23 11:12:03 | 000,000,000 | ---D | C] -- C:\WINDOWS\temp
[2012.08.23 09:44:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\erdnt
[2012.08.23 03:32:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Malwarebytes' Anti-Malware
[2012.08.23 03:32:34 | 000,022,344 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2012.08.22 11:03:15 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Milan Štrbík\Recent
[2012.08.19 14:29:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Milan Štrbík\Dokumenty\Ghost Recon advanced warfighter 2 [PC-DVD] [www.topetorrent.com]
[2012.08.19 12:33:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Milan Štrbík\Dokumenty\HyperCam3
[2012.08.19 12:14:48 | 000,000,000 | ---D | C] -- C:\Program Files\Natáčení
[2012.08.19 12:13:34 | 000,000,000 | ---D | C] -- C:\Tmp
[2012.08.19 12:13:15 | 000,000,000 | ---D | C] -- C:\Program Files\Taksi
[2012.08.19 10:23:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Microsoft Office
[2012.08.19 10:22:14 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Works
[2012.08.19 10:21:56 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Visual Studio
[2012.08.19 10:21:56 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER
[2012.08.19 10:19:22 | 000,000,000 | ---D | C] -- C:\WINDOWS\SHELLNEW
[2012.08.19 10:18:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Milan Štrbík\Local Settings\Data aplikací\Microsoft Help
[2012.08.19 10:18:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
[2012.08.19 10:18:08 | 000,000,000 | R--D | C] -- C:\MSOCache
[2012.08.19 10:04:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Milan Štrbík\Dokumenty\Microsoft Office Standard 2007 SK
[2012.08.18 21:46:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\AGEIA
[2012.08.18 21:46:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\AGEIA
[2012.08.18 21:46:05 | 000,000,000 | ---D | C] -- C:\Program Files\AGEIA Technologies
[2012.08.18 21:45:50 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Wise Installation Wizard
[2012.08.18 09:35:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Milan Štrbík\Nabídka Start\Programy\San Andreas Multiplayer
[2012.08.17 22:26:43 | 000,000,000 | ---D | C] -- C:\Program Files\GotClip
[2012.08.17 22:26:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Milan Štrbík\Nabídka Start\Programy\GotClip
[2012.08.17 22:26:11 | 000,000,000 | ---D | C] -- C:\Program Files\SweetIM
[2012.08.17 22:26:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\SweetIM
[2012.08.17 11:08:28 | 000,000,000 | ---D | C] -- C:\Program Files\Hry
[2012.08.17 09:19:18 | 000,000,000 | ---D | C] -- C:\Program Files\Bandicam
[2012.08.17 09:19:17 | 000,000,000 | ---D | C] -- C:\Program Files\BandiMPEG1
[2012.08.15 22:06:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Milan Štrbík\Nabídka Start\Programy\Codemasters
[2012.08.15 20:17:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\GameSpy
[2012.08.15 20:17:14 | 000,000,000 | ---D | C] -- C:\Program Files\GameSpy
[2012.08.15 19:48:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\ATI
[2012.08.15 19:46:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Catalyst Control Center
[2012.08.15 19:44:26 | 000,000,000 | ---D | C] -- C:\Program Files\ATI Technologies
[2012.08.15 19:44:24 | 000,000,000 | ---D | C] -- C:\Program Files\ATI
[2012.08.15 13:20:30 | 000,267,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_10.dll
[2012.08.15 13:20:29 | 001,374,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_36.dll
[2012.08.15 13:20:29 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_36.dll
[2012.08.15 13:20:27 | 001,358,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_35.dll
[2012.08.15 13:20:27 | 000,267,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_9.dll
[2012.08.15 13:20:26 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_35.dll
[2012.08.15 13:20:25 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_34.dll
[2012.08.15 13:20:25 | 000,266,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_8.dll
[2012.08.15 13:20:24 | 003,497,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_34.dll
[2012.08.15 13:20:23 | 000,261,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_7.dll
[2012.08.15 13:20:23 | 000,081,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xinput1_3.dll
[2012.08.15 13:20:21 | 001,123,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_33.dll
[2012.08.15 13:20:21 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_33.dll
[2012.08.15 13:20:14 | 003,495,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_33.dll
[2012.08.15 13:20:01 | 003,426,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_32.dll
[2012.08.15 13:20:01 | 000,255,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_6.dll
[2012.08.15 13:20:01 | 000,251,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_5.dll
[2012.08.15 13:20:00 | 002,414,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_31.dll
[2012.08.15 13:20:00 | 000,237,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_4.dll
[2012.08.15 13:20:00 | 000,236,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_3.dll
[2012.08.15 13:20:00 | 000,015,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\x3daudio1_1.dll
[2012.08.15 13:19:59 | 000,230,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_2.dll
[2012.08.15 13:19:59 | 000,229,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_1.dll
[2012.08.15 13:19:59 | 000,062,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xinput1_2.dll
[2012.08.15 13:19:59 | 000,062,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xinput1_1.dll
[2012.08.15 13:19:48 | 002,388,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_30.dll
[2012.08.15 13:19:48 | 000,230,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_0.dll
[2012.08.15 13:19:48 | 000,014,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\x3daudio1_0.dll
[2012.08.15 13:19:46 | 002,332,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_29.dll
[2012.08.15 13:19:46 | 002,323,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_28.dll
[2012.08.15 13:19:45 | 002,319,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_27.dll
[2012.08.15 13:19:45 | 000,061,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xinput9_1_0.dll
[2012.08.15 13:19:44 | 002,297,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_26.dll
[2012.08.15 13:19:43 | 002,222,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_24.dll
[2012.08.15 13:05:00 | 000,000,000 | ---D | C] -- C:\Program Files\bitComposer Games
[2012.08.14 19:29:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Milan Štrbík\Dokumenty\FIFA 08
[2012.08.12 19:59:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Milan Štrbík\Dokumenty\Downloads
[2012.08.12 19:37:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Milan Štrbík\Local Settings\Data aplikací\Skyrim
[2012.08.12 08:16:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\TopCD
[2012.08.09 21:01:10 | 000,239,168 | ---- | C] (DT Soft Ltd) -- C:\WINDOWS\System32\drivers\dtsoftbus01.sys
[2012.08.08 18:12:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\DAEMON Tools Lite
[2012.08.08 18:12:34 | 000,000,000 | ---D | C] -- C:\Program Files\DAEMON Tools Lite
[2012.08.08 17:43:10 | 000,000,000 | ---D | C] -- C:\Riot Games
[2012.08.08 17:43:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\NewFeature1
[2012.08.06 22:08:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dokumenty\STALKER-SHOC
[2012.08.06 13:16:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\ATI(2)
[2012.08.06 12:38:09 | 000,000,000 | ---D | C] -- C:\Program Files\ATI Technologies(2)
[2012.08.06 12:38:05 | 000,000,000 | ---D | C] -- C:\Program Files\ATI(2)
[2012.08.06 08:18:32 | 000,000,000 | ---D | C] -- C:\Program Files\JAM Software
[2012.08.05 19:37:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Milan Štrbík\Data aplikací\Malwarebytes
[2012.08.05 19:37:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
[2012.08.05 19:37:47 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2012.08.05 18:09:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\EA Sports
[2012.08.05 18:02:40 | 000,000,000 | ---D | C] -- C:\Program Files\EA Sports
[2012.08.05 15:43:35 | 000,000,000 | ---D | C] -- C:\Program Files\Alcohol Soft
[2012.08.05 14:54:11 | 000,000,000 | ---D | C] -- C:\Program Files\DAEMON Tools Lite(2)
[2012.08.05 12:47:05 | 000,000,000 | ---D | C] -- C:\Program Files\uTorrent
[2012.08.05 10:44:33 | 000,000,000 | ---D | C] -- C:\Program Files\Speccy
[2012.08.05 09:25:36 | 000,000,000 | ---D | C] -- C:\Media
[2012.08.05 09:25:34 | 000,055,808 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\CtMp3.Crl
[2012.08.05 09:25:34 | 000,025,088 | ---- | C] (Creative Technology Ltd) -- C:\WINDOWS\System32\CTSVCCTL.EXE
[2012.08.05 09:24:41 | 000,012,288 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\CTNMSP.crl
[2012.08.05 09:24:41 | 000,006,656 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\CTMP3io2.crl
[2012.08.05 09:24:40 | 000,393,216 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\CTMedEng.dll
[2012.08.05 09:24:40 | 000,364,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ctmp3.acm
[2012.08.05 09:24:40 | 000,307,200 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\CtMp3Lib.dll
[2012.08.05 09:24:40 | 000,228,352 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\CTDetect.cpl
[2012.08.05 09:24:40 | 000,155,648 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\CTDrmUI.dll
[2012.08.05 09:24:40 | 000,110,592 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\ctmp3io2.dll
[2012.08.05 09:24:40 | 000,106,496 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\Video.skn
[2012.08.05 09:24:40 | 000,073,728 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\CTDrmRes.dll
[2012.08.05 09:24:40 | 000,057,856 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\CTDETRES.DLL
[2012.08.05 09:24:40 | 000,028,672 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\CTIntRes.dll
[2012.08.05 09:24:40 | 000,024,576 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\CTMERes.DLL
[2012.08.05 09:13:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\Profiles
[2012.08.05 09:13:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Milan Štrbík\Dokumenty\My eBooks
[2012.08.05 09:13:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Milan Štrbík\Data aplikací\InterTrust
[2012.08.05 09:13:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Adobe
[2012.08.05 09:13:28 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe
[2012.08.04 23:42:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\IObit
[2012.08.04 23:41:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Advanced SystemCare 5
[2012.08.04 23:41:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Milan Štrbík\Data aplikací\IObit
[2012.08.04 23:41:24 | 000,000,000 | ---D | C] -- C:\Program Files\IObit
[2012.07.29 22:22:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Milan Štrbík\Data aplikací\Smarty Uninstaller
[2012.07.29 22:19:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\IsolatedStorage
[2012.07.29 22:19:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Smarty Uninstaller
[2012.07.29 22:19:43 | 004,603,616 | ---- | C] (DevComponents.com) -- C:\WINDOWS\System32\DevComponents.DotNetBar2.dll
[2012.07.29 22:19:42 | 000,000,000 | ---D | C] -- C:\Program Files\Smarty Uninstaller
[2012.07.29 22:18:54 | 000,266,240 | ---- | C] (vbAccelerator) -- C:\WINDOWS\System32\vbalTreeView6.ocx
[2012.07.29 22:18:54 | 000,212,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\RICHTX32.OCX
[2012.07.29 22:18:54 | 000,188,928 | ---- | C] (Info-ZIP) -- C:\WINDOWS\System32\vbuzip10.DLL
[2012.07.29 22:18:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Smarty Uninstaller 2009 Pro
[2012.07.29 22:18:53 | 001,351,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comctl32.ocx
[2012.07.29 22:18:53 | 000,417,792 | ---- | C] (vbAccelerator) -- C:\WINDOWS\System32\vbalCmdBar6.ocx
[2012.07.29 22:18:53 | 000,262,144 | ---- | C] (vbAccelerator) -- C:\WINDOWS\System32\lst_v.ocx
[2012.07.29 22:18:53 | 000,167,683 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\COMCT232.OCX
[2012.07.29 22:18:53 | 000,159,744 | ---- | C] (vbAccelerator) -- C:\WINDOWS\System32\wt_menu.dll
[2012.07.29 22:18:53 | 000,115,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MSINET.ocx
[2012.07.29 22:18:53 | 000,094,208 | ---- | C] (vbAccelerator) -- C:\WINDOWS\System32\img_lst.ocx
[2012.07.29 22:18:53 | 000,040,960 | ---- | C] (vbAccelerator) -- C:\WINDOWS\System32\ssubtmr6.dll
[2012.07.29 22:18:53 | 000,000,000 | ---D | C] -- C:\Program Files\Smarty Uninstaller Pro
[2012.07.26 18:02:41 | 000,000,000 | ---D | C] -- C:\Program Files\Lavalys
[6 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2012.08.23 11:40:00 | 000,000,914 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job
[2012.08.23 11:36:18 | 003,741,568 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2012.08.23 11:35:53 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2012.08.23 11:13:26 | 000,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2012.08.23 10:53:01 | 000,001,054 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-789336058-1965331169-682003330-1003UA.job
[2012.08.23 09:10:49 | 000,496,936 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2012.08.23 09:10:49 | 000,491,692 | ---- | M] () -- C:\WINDOWS\System32\perfh005.dat
[2012.08.23 09:10:49 | 000,085,420 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2012.08.23 09:10:48 | 000,099,220 | ---- | M] () -- C:\WINDOWS\System32\perfc005.dat
[2012.08.20 11:24:33 | 000,001,762 | ---- | M] () -- C:\Documents and Settings\Milan Štrbík\Plocha\Counter-Strike Source.lnk
[2012.08.19 23:34:39 | 000,000,766 | ---- | M] () -- C:\Documents and Settings\Milan Štrbík\Dokumenty\cc_20120819_233436.reg
[2012.08.19 16:05:35 | 000,000,750 | ---- | M] () -- C:\Documents and Settings\Milan Štrbík\Plocha\FlatOut2.lnk
[2012.08.19 12:39:00 | 000,033,792 | ---- | M] () -- C:\Documents and Settings\Milan Štrbík\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012.08.19 06:53:00 | 000,001,002 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-789336058-1965331169-682003330-1003Core.job
[2012.08.18 21:47:03 | 000,271,360 | ---- | M] () -- C:\WINDOWS\System32\drivers\atksgt.sys
[2012.08.18 21:47:03 | 000,018,048 | ---- | M] () -- C:\WINDOWS\System32\drivers\lirsgt.sys
[2012.08.16 09:53:33 | 000,000,156 | ---- | M] () -- C:\WINDOWS\Twunk001.MTX
[2012.08.16 09:53:33 | 000,000,003 | ---- | M] () -- C:\WINDOWS\Twain001.Mtx
[2012.08.15 18:48:18 | 000,001,984 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat
[2012.08.15 18:48:15 | 000,107,888 | ---- | M] (Sony DADC Austria AG.) -- C:\WINDOWS\System32\CmdLineExt.dll
[2012.08.15 09:12:15 | 000,000,866 | ---- | M] () -- C:\Documents and Settings\Milan Štrbík\Dokumenty\cc_20120815_091212.reg
[2012.08.14 21:41:01 | 000,426,184 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe
[2012.08.14 21:41:00 | 000,070,344 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl
[2012.08.14 19:04:36 | 000,001,729 | ---- | M] () -- C:\Documents and Settings\Milan Štrbík\Plocha\FIFA 08.lnk
[2012.08.13 18:58:00 | 000,034,492 | ---- | M] () -- C:\Documents and Settings\Milan Štrbík\Dokumenty\cc_20120813_185757.reg
[2012.08.09 21:01:10 | 000,239,168 | ---- | M] (DT Soft Ltd) -- C:\WINDOWS\System32\drivers\dtsoftbus01.sys
[2012.08.09 10:41:04 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2012.08.08 17:50:49 | 000,001,616 | ---- | M] () -- C:\Documents and Settings\Milan Štrbík\Plocha\Play League of Legends.lnk
[2012.08.06 22:21:42 | 000,001,788 | ---- | M] () -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Adobe Reader Synchronizer.lnk
[2012.08.06 22:21:42 | 000,001,746 | ---- | M] () -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Adobe Reader Speed Launch.lnk
[2012.08.06 16:12:02 | 000,004,096 | ---- | M] () -- C:\WINDOWS\System32\crash
[2012.08.06 13:30:19 | 000,000,266 | ---- | M] () -- C:\Documents and Settings\Milan Štrbík\Dokumenty\cc_20120806_133016.reg
[2012.08.06 13:30:06 | 000,003,380 | ---- | M] () -- C:\Documents and Settings\Milan Štrbík\Dokumenty\cc_20120806_133003.reg
[2012.08.05 09:27:43 | 000,000,129 | ---- | M] () -- C:\WINDOWS\SBWIN.INI
[2012.08.05 00:12:07 | 000,000,738 | ---- | M] () -- C:\Documents and Settings\Milan Štrbík\Dokumenty\cc_20120805_001205.reg
[2012.08.04 23:30:18 | 000,000,500 | ---- | M] () -- C:\Documents and Settings\Milan Štrbík\Dokumenty\cc_20120804_233016.reg
[2012.07.29 21:02:08 | 000,000,310 | ---- | M] () -- C:\Documents and Settings\Milan Štrbík\Dokumenty\cc_20120729_210206.reg
[6 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2012.08.22 17:20:43 | 003,741,568 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2012.08.20 11:24:33 | 000,001,762 | ---- | C] () -- C:\Documents and Settings\Milan Štrbík\Plocha\Counter-Strike Source.lnk
[2012.08.19 23:34:38 | 000,000,766 | ---- | C] () -- C:\Documents and Settings\Milan Štrbík\Dokumenty\cc_20120819_233436.reg
[2012.08.19 12:13:16 | 000,001,954 | ---- | C] () -- C:\Documents and Settings\Milan Štrbík\Nabídka Start\Programy\Taksi Desktop Video Recorder.lnk
[2012.08.18 21:47:03 | 000,271,360 | ---- | C] () -- C:\WINDOWS\System32\drivers\atksgt.sys
[2012.08.18 21:47:03 | 000,018,048 | ---- | C] () -- C:\WINDOWS\System32\drivers\lirsgt.sys
[2012.08.17 23:14:12 | 000,139,016 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\FontCache3.0.0.0.dat
[2012.08.15 19:50:46 | 000,001,729 | ---- | C] () -- C:\Documents and Settings\Milan Štrbík\Plocha\FIFA 08.lnk
[2012.08.15 13:20:32 | 000,238,088 | ---- | C] () -- C:\WINDOWS\System32\xactengine3_0.dll
[2012.08.15 13:20:32 | 000,025,608 | ---- | C] () -- C:\WINDOWS\System32\X3DAudio1_3.dll
[2012.08.15 13:20:31 | 003,786,760 | ---- | C] () -- C:\WINDOWS\System32\D3DX9_37.dll
[2012.08.15 13:20:31 | 001,420,824 | ---- | C] () -- C:\WINDOWS\System32\D3DCompiler_37.dll
[2012.08.15 13:20:31 | 000,462,864 | ---- | C] () -- C:\WINDOWS\System32\d3dx10_37.dll
[2012.08.15 13:20:29 | 003,734,536 | ---- | C] () -- C:\WINDOWS\System32\d3dx9_36.dll
[2012.08.15 13:20:26 | 003,727,720 | ---- | C] () -- C:\WINDOWS\System32\d3dx9_35.dll
[2012.08.15 13:20:25 | 001,124,720 | ---- | C] () -- C:\WINDOWS\System32\D3DCompiler_34.dll
[2012.08.15 13:20:25 | 000,017,928 | ---- | C] () -- C:\WINDOWS\System32\x3daudio1_2.dll
[2012.08.15 09:12:14 | 000,000,866 | ---- | C] () -- C:\Documents and Settings\Milan Štrbík\Dokumenty\cc_20120815_091212.reg
[2012.08.13 18:57:59 | 000,034,492 | ---- | C] () -- C:\Documents and Settings\Milan Štrbík\Dokumenty\cc_20120813_185757.reg
[2012.08.12 08:16:46 | 000,000,750 | ---- | C] () -- C:\Documents and Settings\Milan Štrbík\Plocha\FlatOut2.lnk
[2012.08.08 17:50:49 | 000,001,616 | ---- | C] () -- C:\Documents and Settings\Milan Štrbík\Plocha\Play League of Legends.lnk
[2012.08.06 22:21:42 | 000,001,804 | ---- | C] () -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Adobe Reader 8.lnk
[2012.08.06 22:21:42 | 000,001,788 | ---- | C] () -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Adobe Reader Synchronizer.lnk
[2012.08.06 22:21:42 | 000,001,746 | ---- | C] () -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Adobe Reader Speed Launch.lnk
[2012.08.06 13:30:17 | 000,000,266 | ---- | C] () -- C:\Documents and Settings\Milan Štrbík\Dokumenty\cc_20120806_133016.reg
[2012.08.06 13:30:05 | 000,003,380 | ---- | C] () -- C:\Documents and Settings\Milan Štrbík\Dokumenty\cc_20120806_133003.reg
[2012.08.06 12:30:04 | 000,601,728 | ---- | C] () -- C:\WINDOWS\System32\atiicdxx.dat
[2012.08.05 09:13:45 | 000,000,888 | ---- | C] () -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Acrobat Reader 5.0.lnk
[2012.08.05 00:12:07 | 000,000,738 | ---- | C] () -- C:\Documents and Settings\Milan Štrbík\Dokumenty\cc_20120805_001205.reg
[2012.08.04 23:30:17 | 000,000,500 | ---- | C] () -- C:\Documents and Settings\Milan Štrbík\Dokumenty\cc_20120804_233016.reg
[2012.07.29 21:02:07 | 000,000,310 | ---- | C] () -- C:\Documents and Settings\Milan Štrbík\Dokumenty\cc_20120729_210206.reg
[2012.07.22 11:26:36 | 000,028,938 | ---- | C] () -- C:\WINDOWS\System32\wbers.dat.dmp
[2012.07.22 11:26:36 | 000,003,788 | ---- | C] () -- C:\WINDOWS\System32\wbers.dat
[2012.07.17 21:14:59 | 000,022,328 | ---- | C] () -- C:\Documents and Settings\Milan Štrbík\Data aplikací\PnkBstrK.sys
[2012.07.17 21:14:38 | 002,250,024 | ---- | C] () -- C:\WINDOWS\System32\pbsvc.exe
[2012.07.15 17:40:30 | 000,000,319 | ---- | C] () -- C:\WINDOWS\game.ini
[2012.07.11 22:31:31 | 000,000,036 | ---- | C] () -- C:\WINDOWS\plugSpk.INI
[2012.06.15 14:30:23 | 000,000,635 | ---- | C] () -- C:\WINDOWS\Rtcw.INI
[2012.06.02 18:33:20 | 000,887,724 | ---- | C] () -- C:\WINDOWS\System32\ativva6x.dat
[2012.06.02 18:33:19 | 000,000,003 | ---- | C] () -- C:\WINDOWS\System32\ativva5x.dat
[2012.05.19 16:47:01 | 000,000,890 | ---- | C] () -- C:\Documents and Settings\Milan Štrbík\Local Settings\Data aplikací\recently-used.xbel
[2012.03.22 14:01:45 | 000,137,464 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
[2012.03.22 14:01:37 | 000,214,520 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrB.exe
[2012.03.22 14:01:31 | 000,075,064 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrA.exe
[2012.03.07 20:12:31 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll
[2012.03.05 19:08:54 | 000,000,552 | ---- | C] () -- C:\WINDOWS\System32\d3d8caps.dat
[2012.02.29 16:47:04 | 000,033,792 | ---- | C] () -- C:\Documents and Settings\Milan Štrbík\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012.02.29 14:39:42 | 000,354,816 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2012.02.01 19:24:46 | 000,000,010 | ---- | C] () -- C:\WINDOWS\WININIT.INI
[2012.02.01 19:21:02 | 000,001,984 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2012.02.01 19:12:51 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ativpsrm.bin
[2012.02.01 18:26:07 | 000,004,265 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2012.02.01 17:51:50 | 000,059,392 | ---- | C] ( ) -- C:\WINDOWS\System32\a3d.dll
[2012.02.01 17:51:17 | 001,048,576 | ---- | C] () -- C:\WINDOWS\System32\sfman.dat
[2012.02.01 17:51:16 | 000,000,231 | ---- | C] () -- C:\WINDOWS\ac3api.ini
[2012.02.01 17:50:22 | 000,000,129 | ---- | C] () -- C:\WINDOWS\SBWIN.INI
[2012.02.01 17:44:03 | 000,002,722 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini
[2012.02.01 17:44:02 | 000,005,824 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS
[2012.02.01 17:38:32 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2012.02.01 17:33:35 | 000,021,812 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2011.12.05 23:04:00 | 000,059,904 | ---- | C] () -- C:\WINDOWS\System32\OpenVideo.dll
[2011.12.05 23:03:52 | 000,054,784 | ---- | C] () -- C:\WINDOWS\System32\OVDecode.dll
[2010.09.02 09:33:54 | 000,015,360 | ---- | C] () -- C:\WINDOWS\System32\bdmjpeg.dll
[2010.09.02 09:32:52 | 000,058,368 | ---- | C] () -- C:\WINDOWS\System32\bdmpegv.dll

========== LOP Check ==========

[2012.05.24 21:46:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ADDICT-THING
[2012.07.08 08:36:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\AVAST Software
[2012.02.01 18:42:51 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Data aplikací\Common Files
[2012.02.05 13:34:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\DAEMON Tools Lite
[2012.03.06 22:47:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ESET
[2012.05.23 17:16:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\InstallMate
[2012.08.04 23:42:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\IObit
[2012.07.29 22:19:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\IsolatedStorage
[2012.03.09 16:56:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\MFAData
[2012.02.08 05:26:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Pinnacle
[2012.08.23 09:04:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\PMB Files
[2012.05.23 17:16:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Premium
[2012.05.16 09:46:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\regid.1986-12.com.adobe
[2012.05.16 17:38:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Sony
[2012.08.22 19:48:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\SweetIM
[2012.08.16 09:53:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TEMP
[2012.08.13 19:14:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Milan Štrbík\Data aplikací\.minecraft
[2012.07.10 17:20:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Milan Štrbík\Data aplikací\Audacity
[2012.02.08 05:20:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Milan Štrbík\Data aplikací\avidemux
[2012.05.16 09:44:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Milan Štrbík\Data aplikací\BANDISOFT
[2012.05.08 17:34:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Milan Štrbík\Data aplikací\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
[2012.05.08 17:54:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Milan Štrbík\Data aplikací\com.adobe.downloadassistant.AdobeDownloadAssistant
[2012.08.22 11:02:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Milan Štrbík\Data aplikací\DAEMON Tools Lite
[2012.07.10 17:16:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Milan Štrbík\Data aplikací\DVDVideoSoft
[2012.07.10 17:15:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Milan Štrbík\Data aplikací\DVDVideoSoftIEHelpers
[2012.03.09 16:41:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Milan Štrbík\Data aplikací\GHISLER
[2012.08.05 09:13:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Milan Štrbík\Data aplikací\InterTrust
[2012.08.05 10:56:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Milan Štrbík\Data aplikací\IObit
[2012.06.29 15:42:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Milan Štrbík\Data aplikací\LolClient
[2012.06.02 07:59:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Milan Štrbík\Data aplikací\LolClient2
[2012.05.26 13:38:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Milan Štrbík\Data aplikací\OpenOffice.org
[2012.05.16 17:43:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Milan Štrbík\Data aplikací\Publish Providers
[2012.03.11 07:49:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Milan Štrbík\Data aplikací\RotMG.Production
[2012.06.19 21:20:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Milan Štrbík\Data aplikací\SFBot
[2012.08.11 16:42:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Milan Štrbík\Data aplikací\Smarty Uninstaller
[2012.08.19 23:21:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Milan Štrbík\Data aplikací\Solveig Multimedia
[2012.05.17 22:01:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Milan Štrbík\Data aplikací\Sony
[2012.05.18 19:08:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Milan Štrbík\Data aplikací\Sony Creative Software Inc
[2012.07.06 20:56:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Milan Štrbík\Data aplikací\TeamViewer
[2012.05.16 10:07:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Milan Štrbík\Data aplikací\Tropico 4
[2012.06.19 21:19:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Milan Štrbík\Data aplikací\ts3overlay
[2012.08.22 11:02:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Milan Štrbík\Data aplikací\uTorrent

========== Purity Check ==========

========== Alternate Data Streams ==========

@Alternate Data Stream - 142 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:DF462FF6
@Alternate Data Stream - 141 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:05EE1EEF
@Alternate Data Stream - 110 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:888AFB86

< End of report >

helpmeboys · Příspěvekod **helpmeboys** » 23 srp 2012 12:02

Extras log life

OTL Extras logfile created on: 23.8.2012 11:40:55 - Run 1
OTL by OldTimer - Version 3.2.58.1 Folder = C:\Documents and Settings\Milan Štrbík\Dokumenty\Downloads
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.5512)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

2,00 Gb Total Physical Memory | 1,59 Gb Available Physical Memory | 79,63% Memory free
3,85 Gb Paging File | 3,51 Gb Available in Paging File | 91,18% Paging File free
Paging file location(s): C:\pagefile.sys 2048 4096 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 115,03 Gb Total Space | 82,75 Gb Free Space | 71,94% Space Free | Partition Type: NTFS

Computer Name: MILAN | User Name: Milan Štrbík | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========

========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.url [@ = InternetShortcut] -- rundll32.exe shdocvw.dll,OpenURL %l

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- C:\Documents and Settings\Milan Štrbík\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe (Google Inc.)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
InternetShortcut [open] -- rundll32.exe shdocvw.dll,OpenURL %l
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 4

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"59069:TCP" = 59069:TCP:*:Enabled:Pando Media Booster
"59069:UDP" = 59069:UDP:*:Enabled:Pando Media Booster

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"59069:TCP" = 59069:TCP:*:Enabled:Pando Media Booster
"59069:UDP" = 59069:UDP:*:Enabled:Pando Media Booster

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
"C:\Program Files\Pando Networks\Media Booster\PMB.exe" = C:\Program Files\Pando Networks\Media Booster\PMB.exe:*:Enabled:Pando Media Booster -- ()

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
"C:\Program Files\Bonjour\mDNSResponder.exe" = C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour -- (Apple Computer, Inc.)
"C:\Program Files\Pando Networks\Media Booster\PMB.exe" = C:\Program Files\Pando Networks\Media Booster\PMB.exe:*:Enabled:Pando Media Booster -- ()
"C:\WINDOWS\system32\PnkBstrA.exe" = C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA -- ()
"C:\WINDOWS\system32\PnkBstrB.exe" = C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB -- ()
"C:\Program Files\uTorrent\uTorrent.exe" = C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent -- (BitTorrent, Inc.)
"C:\WINDOWS\system32\javaw.exe" = C:\WINDOWS\system32\javaw.exe:*:Enabled:Java(TM) Platform SE binary -- (Sun Microsystems, Inc.)
"C:\WINDOWS\system32\msiexec.exe" = C:\WINDOWS\system32\msiexec.exe:*:Enabled:UpdateManagerSetup -- (Microsoft Corporation)
"C:\Program Files\SweetIM\Communicator\SweetPacksUpdateManager.exe" = C:\Program Files\SweetIM\Communicator\SweetPacksUpdateManager.exe:*:Enabled:SweetPacksUpdateManager -- (SweetIM Technologies Ltd.)
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE" = C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook -- (Microsoft Corporation)
"C:\Program Files\Java\jre6\bin\javaw.exe" = C:\Program Files\Java\jre6\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary -- (Sun Microsystems, Inc.)
"C:\Program Files\Hry\Counter-Strike Source\hl2.exe" = C:\Program Files\Hry\Counter-Strike Source\hl2.exe:*:Enabled:hl2 -- ()

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{033E378E-6AD3-4AD5-BDEB-CBD69B31046C}" = Microsoft_VC90_ATL_x86
"{03D4C700-2BFE-43E0-A0B4-9512B43C5B9F}" = Catalyst Control Center - Branding
"{04AF207D-9A77-465A-8B76-991F6AB66245}" = Adobe Help Viewer CS3
"{07C7DAC0-90C6-3078-68A7-2BB02C1A4972}" = AMD Catalyst Install Manager
"{08B32819-6EEF-4057-AEDA-5AB681A36A23}" = Adobe Bridge Start Meeting
"{08D2E121-7F6A-43EB-97FD-629B44903403}" = Microsoft_VC90_CRT_x86
"{0901FCE8-5415-4499-BBC8-1AA106DD66E2}" = Adobe Setup
"{0A0CADCF-78DA-33C4-A350-CD51849B9702}" = Microsoft .NET Framework 4 Extended
"{0A2A5039-B37F-489D-B1DC-A5258DF9E697}" = FIFA 08
"{0D2DBE8A-43D0-7830-7AE7-CA6C99A832E7}" = Adobe Community Help
"{0D86C4F7-FAED-AFDF-2E2A-E7FE40D5BB36}" = CCC Help Korean
"{0F3647F8-E51D-4FCC-8862-9A8D0C5ACF25}" = Microsoft_VC80_ATL_x86
"{1522960F-761A-61A6-D78B-9F1FF3D93738}" = Catalyst Control Center Localization All
"{184CE391-7E0E-4C63-9935-D7A10EDFD3C6}" = Adobe WinSoft Linguistics Plugin
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{26A24AE4-039D-4CA4-87B4-2F83216031FF}" = Java(TM) 6 Update 31
"{293D5729-7C01-4FA4-A4DE-BB6A1587BBB9}" = PDF Settings
"{29E5EA97-5F74-4A57-B8B2-D4F169117183}" = Adobe Stock Photos CS3
"{2C294A0B-DF22-4023-B168-8C7645B10019}" = Adobe Setup
"{350C9405-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{3A8035AE-D626-0C52-CDB7-40CC440219D0}" = CCC Help English
"{3B48D7EB-D386-AA0B-D99A-9B2BFFD7DE8E}" = CCC Help Thai
"{3C19D856-8808-D6FC-D25E-831B4B69CDAC}" = CCC Help Hungarian
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{40719211-D09A-11DF-BA30-0013D3D69929}" = MSVCRT Redists
"{503EF121-4935-AF07-7D78-BB7981DE4005}" = CCC Help Portuguese
"{5178C1BB-1EB1-4468-894B-7DE964DDCAA2}" = Adobe Photoshop CS3
"{546C143E-68DC-314D-97BC-1E454E3BA429}" = Microsoft .NET Framework 3.0 Service Pack 2 Language Pack - CSY
"{54793AA1-5001-42F4-ABB6-C364617C6078}" = Adobe Linguistics CS3
"{553121E6-3223-EDC3-2E69-091B5615D929}" = CCC Help Dutch
"{582876EC-A178-44D4-9823-C10D6C62EAFF}" = AGEIA PhysX v6.10.05
"{5B9FA098-7E36-0021-F9ED-21F273F74657}" = CCC Help Danish
"{5BB207D6-0E1E-11D5-9B6A-00C04F7EC248}" = Decal Converter
"{6179A7D2-A668-4F1D-BC9A-DCC6A10C7871}" = Adobe Color NA Extra Settings
"{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}" = Microsoft_VC90_MFC_x86
"{640C430E-3EC7-6171-5DEF-3CC03FCFA5B8}" = Catalyst Control Center
"{66FDFD55-1D1A-292B-6480-CEBAA8EF25BE}" = ccc-utility
"{6769EA4C-9A9A-E93C-A335-1B59669E10FC}" = CCC Help Chinese Standard
"{687A8BDB-2F98-CB3D-75EB-C5E1BB4C9BB9}" = CCC Help Czech
"{6ABE0BEE-D572-4FE8-B434-9E72A289431B}" = Adobe Fonts All
"{6D12B99F-EAAA-49D8-8E2F-74FA7459CCB2}" = Adobe Asset Services CS3
"{6D4EC65B-9561-155E-6C95-3E7E49589C1C}" = CCC Help Spanish
"{6E15BBA7-CFFD-4983-9189-C4D86D3DDD0C}_is1" = Smarty Uninstaller Pro
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{759AA33D-8E7E-6EB8-CEEE-A889809527FE}" = CCC Help Chinese Traditional
"{75EB6B11-9448-B61A-0EA8-611411DB5528}" = CCC Help Greek
"{786C5747-1437-443D-B06E-79A00FE45110}" = Adobe Stock Photos 1.0
"{7B4A5C13-069F-4AFE-AE57-C497B4E33C7E}" = Call of Duty(R) 2 Patch 1.3
"{7C9AD221-994C-45B2-B46D-26F5735158CF}" = Sony Vegas Pro 8.0
"{7F9129B6-C438-4CCB-80CB-A97E9F3B6B8C}" = Taksi Desktop Video Recorder v0.765
"{802771A9-A856-4A41-ACF7-1450E523C923}" = Adobe XMP Panels CS3
"{894084B6-BC69-43B7-BF06-B93AECFEA520}" = GameSpy Comrade
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8D2BA474-F406-4710-9AE4-D4F22D21F0DD}" = Adobe Device Central CS3
"{8E6808E2-613D-4FCD-81A2-6C8FA8E03312}" = Adobe Type Support
"{8EDBA74D-0686-4C99-BFDD-F894678E5102}" = Adobe Common File Installer
"{8FFC924C-ED06-44CB-8867-3CA778ECE903}" = Adobe Help Center 2.0
"{90120000-0010-041B-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (Slovak) 12
"{90120000-0012-0000-0000-0000000FF1CE}" = Microsoft Office Standard 2007
"{90120000-0012-0000-0000-0000000FF1CE}_STANDARD_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0016-041B-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Slovak) 2007
"{90120000-0016-041B-0000-0000000FF1CE}_STANDARD_{4754EB3B-ED3D-4095-A2FD-684A3058A4FF}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0018-041B-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Slovak) 2007
"{90120000-0018-041B-0000-0000000FF1CE}_STANDARD_{4754EB3B-ED3D-4095-A2FD-684A3058A4FF}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001A-041B-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Slovak) 2007
"{90120000-001A-041B-0000-0000000FF1CE}_STANDARD_{4754EB3B-ED3D-4095-A2FD-684A3058A4FF}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001B-041B-0000-0000000FF1CE}" = Microsoft Office Word MUI (Slovak) 2007
"{90120000-001B-041B-0000-0000000FF1CE}_STANDARD_{4754EB3B-ED3D-4095-A2FD-684A3058A4FF}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0405-0000-0000000FF1CE}_STANDARD_{0B7A4B67-2A38-42B1-9857-662FAB361E08}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_STANDARD_{928D7B99-2BEA-49F9-83B8-20FA57860643}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_STANDARD_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-040E-0000-0000000FF1CE}" = Microsoft Office Proof (Hungarian) 2007
"{90120000-001F-040E-0000-0000000FF1CE}_STANDARD_{0AD4BB83-13B4-4C9D-9BAC-7F64E0B2D5D7}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-001F-041B-0000-0000000FF1CE}_STANDARD_{FDF9A959-241A-4662-A8DE-7DED9C22D160}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-0020-0405-0000-0000000FF1CE}" = Sada Compatibility Pack pro systém Office 2007
"{90120000-002C-041B-0000-0000000FF1CE}" = Microsoft Office Proofing (Slovak) 2007
"{90120000-006E-041B-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Slovak) 2007
"{90120000-006E-041B-0000-0000000FF1CE}_STANDARD_{8382BA92-20E3-47B6-971B-F673F0492D4E}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90176341-0A8B-4CCC-A78D-F862228A6B95}" = Adobe Anchor Service CS3
"{9067F664-7EB2-C562-F9D1-05F0614A47C1}" = CCC Help German
"{92606477-9366-4D3B-8AE3-6BE4B29727AB}" = League of Legends
"{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}" = Microsoft_VC80_CRT_x86
"{9497EBAA-87AD-41E6-8ED6-E1E52995A76C}" = VIA Integrated Setup Wizard
"{980A182F-E0A2-4A40-94C1-AE0C1235902E}" = Pando Media Booster
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9C9824D9-9000-4373-A6A5-D0E5D4831394}" = Adobe Bridge CS3
"{A0347FA8-D988-6C8C-847A-ADC77470A0F0}" = CCC Help French
"{A2B242BD-FF8D-4840-9DAA-9170EABEC59C}" = Adobe CMaps
"{A2C9CD1B-2551-3AED-B244-6698FB929FA6}" = Microsoft .NET Framework 2.0 Service Pack 2 Language Pack - CSY
"{A2D81E70-2A98-4A08-A628-94388B063C5E}" = Adobe Color - Photoshop Specific
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A78FE97A-C0C8-49CE-89D0-EDD524A17392}" = PDF Settings CS5
"{AC76BA86-7AD7-1033-7B44-A80000000002}" = Adobe Reader 8
"{AE3D38A6-13B1-40B3-9423-D1FA9982FB6A}" = Adobe Bridge 1.0
"{B2F76AD5-7C9D-FD20-97BB-E5F10DF8DC0F}" = Catalyst Control Center InstallProxy
"{B3BF6689-A81D-40D8-9A86-4AC4ACD9FC1C}" = Adobe Camera Raw 4.0
"{B5E33F19-784C-9548-4C54-35F0CF90519D}" = CCC Help Polish
"{B74D4E10-0000-0000-0000-EDED00000102}" = Adobe ExtendScript Toolkit 1.0
"{B8DCE091-3AE8-BD51-3FB7-9B461F2AECE1}" = CCC Help Swedish
"{B9B35331-B7E4-4E5C-BF4C-7BC87856124D}" = Adobe Default Language CS3
"{BD087F50-46B2-43E4-BD73-5DB3DC20B47C}" = Adobe Color EU Recommended Settings
"{BEE64C14-BEF1-4610-8A68-A16EAA47B882}" = Futuremark SystemInfo
"{BFEAAE77-BD7F-4534-B286-9C5CB4697EB1}" = PDF Settings CS6
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C1F04320-636F-48C0-74BA-7D3D1CA45C6D}" = CCC Help Turkish

HiJackThis Preventivka -re Vyřešeno

HiJackThis Preventivka -re

Re: HiJackThis Preventivka -re

Re: HiJackThis Preventivka -re

Re: HiJackThis Preventivka -re

Re: HiJackThis Preventivka -re

Re: HiJackThis Preventivka -re

Re: HiJackThis Preventivka -re

Re: HiJackThis Preventivka -re

Re: HiJackThis Preventivka -re

Re: HiJackThis Preventivka -re

Re: HiJackThis Preventivka -re

Re: HiJackThis Preventivka -re

Kdo je online