TechSpot

Cannot update Windows XP neither run Windows Firewall

Solved
By Fandomas
Feb 5, 2013
Topic Status:
Not open for further replies.
  1. Hi.
    I had a PC Windows XP SP3 (Czech version) full of viruses. I think all are gone, but I cannot still run Windows Update neither Windows Firewall, so something must be wrong ;o)
    I run TDSSKiller and it found one threat, which was then cured (something with acpi.sys).

    Help me, please!
     
  2. Jay Pfoutz

    Jay Pfoutz Malware Helper Posts: 4,286   +49

    Hello, and welcome to TechSpot.


    [​IMG] Please see here for the board rules and other FAQ.

    Please feel free to introduce yourself, after you follow the steps below to get started.

    Information
    • From this point on, please do not make any more changes to your computer; such as install/uninstall programs, use special fix tools, delete files, edit the registry, etc. - unless advised by a malware removal helper.
    • Please do not ask for help elsewhere (in this site or other sites). Doing so can result in system changes, which may not show up in the logs you post.
    • If you have already asked for help somewhere, please post the link to the topic you were helped.
    • We try our best to reply quickly, but for any reason we do not reply in two days, please reply to this topic with the word BUMP!
    • Lastly, keep in mind that we are volunteers, so you do not have to pay for malware removal. Persist in this topic until its close, and your computer is declared clean.
    Please review the 4-Step instructions and post the logs back here for my review.

    Also, include this scan:

    Download AdwCleaner by Xplode onto your Desktop.
    • Double click on AdwCleaner.exe to run the tool.
    • Click on Delete.
    • A logfile will automatically open after the scan has finished.
    • Please post the content of that logfile in your reply.
    • You can find the logfile at C:\AdwCleaner[Rn].txt as well - n is the order number.
     
  3. Fandomas

    Fandomas TS Rookie Topic Starter

    Malwarebytes Anti-Malware (Zkušební verze Malwarebytes Anti-Malware.) 1.70.0.1100
    www.malwarebytes.org

    Verze: v2013.02.05.11

    Windows XP Service Pack 3 x86 NTFS
    Internet Explorer 8.0.6001.18702
    Elli :: ELISABETHA [administrátor]

    Ochrana: Povolena

    5.2.2013 23:48:57
    mbam-log-2013-02-05 (23-48-57).txt

    Typ: Rychlá kontrola
    Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
    Nastavení kontroly zakázáno: P2P
    Kontrolované objekty: 235734
    Uplynulý čas: 16 minut, 11 sekund

    Nalezené procesy v paměti: 0
    (Žádné škodlivé položky nebyly zjištěny)

    Nalezené moduly v paměti: 0
    (Žádné škodlivé položky nebyly zjištěny)

    Nalezené klíče v registru: 0
    (Žádné škodlivé položky nebyly zjištěny)

    Nalezené hodnoty v registru: 0
    (Žádné škodlivé položky nebyly zjištěny)

    Nalezené datové položky v registru: 0
    (Žádné škodlivé položky nebyly zjištěny)

    Nalezené složky: 0
    (Žádné škodlivé položky nebyly zjištěny)

    Nalezené soubory: 0
    (Žádné škodlivé položky nebyly zjištěny)

    (konec)
     
  4. Fandomas

    Fandomas TS Rookie Topic Starter

    DDS (Ver_2012-11-20.01) - NTFS_x86
    Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 10.13.2
    Run by Elli at 0:09:50 on 2013-02-06
    Microsoft Windows XP Home Edition 5.1.2600.3.1250.420.1029.18.1014.246 [GMT 1:00]
    .
    AV: Microsoft Security Essentials *Enabled/Updated* {EDB4FA23-53B8-4AFA-8C5D-99752CCA7095}
    .
    ============== Running Processes ================
    .
    C:\Program Files\Microsoft Security Client\MsMpEng.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\Program Files\Java\jre7\bin\jqs.exe
    C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
    C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
    C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe
    C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe
    C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
    C:\WINDOWS\system32\wbem\wmiapsrv.exe
    C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
    C:\WINDOWS\system32\wscntfy.exe
    C:\WINDOWS\Explorer.EXE
    C:\WINDOWS\system32\igfxtray.exe
    C:\WINDOWS\system32\igfxsrvc.exe
    C:\WINDOWS\system32\hkcmd.exe
    C:\Program Files\Asus\LiveUpdate\LiveUpdate.exe
    C:\Program Files\EeePC\CapsHook\CapsHook.exe
    C:\WINDOWS\RTHDCPL.EXE
    C:\Program Files\EeePC\ACPI\AsTray.exe
    C:\Program Files\EeePC\ACPI\AsEPCMon.exe
    C:\Program Files\EeePC\ACPI\AsAcpiSvr.exe
    C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
    C:\Program Files\Unlocker\UnlockerAssistant.exe
    C:\WINDOWS\system32\igfxext.exe
    C:\Program Files\DivX\DivX Update\DivXUpdate.exe
    C:\Program Files\Common Files\Java\Java Update\jusched.exe
    C:\Program Files\Microsoft Security Client\msseces.exe
    C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\Skype\Phone\Skype.exe
    C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
    C:\Program Files\ASUS\EeePC\Super Hybrid Engine\SuperHybridEngine.exe
    C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe
    C:\Program Files\Google\Chrome\Application\chrome.exe
    C:\Program Files\Google\Chrome\Application\chrome.exe
    C:\Program Files\Google\Chrome\Application\chrome.exe
    C:\Program Files\Google\Chrome\Application\chrome.exe
    C:\Program Files\Google\Chrome\Application\chrome.exe
    C:\Program Files\Google\Chrome\Application\chrome.exe
    C:\WINDOWS\system32\NOTEPAD.EXE
    C:\WINDOWS\system32\wbem\wmiprvse.exe
    C:\WINDOWS\System32\svchost.exe -k netsvcs
    C:\WINDOWS\system32\svchost.exe -k NetworkService
    C:\WINDOWS\system32\svchost.exe -k LocalService
    C:\WINDOWS\system32\svchost.exe -k LocalService
    C:\WINDOWS\system32\svchost.exe -k imgsvc
    .
    ============== Pseudo HJT Report ===============
    .
    uStart Page = hxxp://www.google.cz/
    uInternet Connection Wizard,ShellNext = "c:\program files\outlook express\msimn.exe" //mailurl:mailto:mk@cvrk.com
    BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
    BHO: DivX Plus Web Player HTML5 <video>: {326E768D-4182-46FD-9C16-1449A49795F4} - c:\program files\divx\divx plus web player\ie\divxhtml5\DivXHTML5.dll
    BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\program files\java\jre7\bin\ssv.dll
    BHO: Pomocník pro přihlášení ke službě Windows Live: {9030D464-4C02-4ABF-8ECC-5164760863C6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
    BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\java\jre7\bin\jp2ssv.dll
    BHO: Windows Live Toolbar Helper: {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - c:\program files\windows live\toolbar\wltcore.dll
    TB: &Windows Live Toolbar: {21FA44EF-376D-4D53-9B0F-8A89D3229068} - c:\program files\windows live\toolbar\wltcore.dll
    TB: &Windows Live Toolbar: {21FA44EF-376D-4D53-9B0F-8A89D3229068} - c:\program files\windows live\toolbar\wltcore.dll
    uRun: [CTFMON.EXE] c:\windows\system32\ctfmon.exe
    uRun: [Skype] "c:\program files\skype\phone\Skype.exe" /minimized
    mRun: [IgfxTray] c:\windows\system32\igfxtray.exe
    mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe
    mRun: [LiveUpdate] c:\program files\asus\liveupdate\LiveUpdate.exe auto
    mRun: [SynAsusAcpi] c:\program files\synaptics\syntp\SynAsusAcpi.exe
    mRun: [EeeSplendidAgent] c:\program files\asus\epc\eeesplendid\AsAgent.exe
    mRun: [CapsHook] c:\program files\eeepc\capshook\CapsHook.exe
    mRun: [RTHDCPL] RTHDCPL.EXE
    mRun: [AsusTray] c:\program files\eeepc\acpi\AsTray.exe
    mRun: [AsusEPCMonitor] c:\program files\eeepc\acpi\AsEPCMon.exe
    mRun: [AsusACPIServer] c:\program files\eeepc\acpi\AsAcpiSvr.exe
    mRun: [SynTPEnh] c:\program files\synaptics\syntp\SynTPEnh.exe
    mRun: [UnlockerAssistant] "c:\program files\unlocker\UnlockerAssistant.exe" -H
    mRun: [DivXUpdate] "c:\program files\divx\divx update\DivXUpdate.exe" /CHECKNOW
    mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
    mRun: [APSDaemon] "c:\program files\common files\apple\apple application support\APSDaemon.exe"
    mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"
    mRun: [MSC] "c:\program files\microsoft security client\msseces.exe" -hide -runkey
    mRun: [SDTray] "c:\program files\spybot - search & destroy 2\SDTray.exe"
    dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE
    dRun: [DWQueuedReporting] "c:\progra~1\common~1\micros~1\dw\dwtrig20.exe" -t
    uExplorerRun: [ilivid] c:\documents and settings\elli\data aplikací\3e72da\3E72DA.exe
    StartupFolder: c:\docume~1\alluse~1\nabdka~1\programy\posput~1\blueto~1.lnk - c:\program files\widcomm\bluetooth software\BTTray.exe
    StartupFolder: c:\docume~1\alluse~1\nabdka~1\programy\posput~1\superh~1.lnk - c:\program files\asus\eeepc\super hybrid engine\SuperHybridEngine.exe
    uPolicies-Explorer: NoDriveTypeAutoRun = dword:145
    mPolicies-Windows\System: Allow-LogonScript-NetbiosDisabled = dword:1
    mPolicies-Explorer: NoDriveTypeAutoRun = dword:145
    IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\micros~4\office12\EXCEL.EXE/3000
    IE: Odeslat do zařízení &Bluetooth... - c:\program files\widcomm\bluetooth software\btsendto_ie_ctx.htm
    IE: Odeslat do zařízení Bluetooth - c:\program files\widcomm\bluetooth software\btsendto_ie.htm
    IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - c:\program files\windows live\writer\WriterBrowserExtension.dll
    IE: {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\program files\widcomm\bluetooth software\btsendto_ie.htm
    IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
    IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
    DPF: {149E45D8-163E-4189-86FC-45022AB2B6C9} - file:///C:/Program%20Files/Talismania/Images/stg_drm.ocx
    DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} - hxxp://www.update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1360031696312
    DPF: {CC450D71-CC90-424C-8638-1F2DBAC87A54} - file:///C:/Program%20Files/Talismania/Images/armhelper.ocx
    TCP: NameServer = 192.168.0.1
    TCP: Interfaces\{EFABCDD0-CC42-4EEE-9DD1-7CFE3EAC9EBD} : DHCPNameServer = 192.168.0.1
    Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\program files\common files\skype\Skype4COM.dll
    Notify: igfxcui - igfxdev.dll
    Notify: SDWinLogon - SDWinLogon.dll
    SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
    mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "c:\program files\google\chrome\application\24.0.1312.57\installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
    .
    ============= SERVICES / DRIVERS ===============
    .
    R0 MpFilter;Microsoft Malware Protection Driver;c:\windows\system32\drivers\MpFilter.sys [2012-8-30 193552]
    R1 AsUpIO;AsUpIO;c:\windows\system32\drivers\AsUpIO.sys [2010-3-18 11520]
    R2 fssfltr;FssFltr;c:\windows\system32\drivers\fssfltr_tdi.sys [2010-3-18 54752]
    R2 MBAMService;MBAMService;c:\program files\malwarebytes' anti-malware\mbamservice.exe [2013-2-4 682344]
    R2 MBAMScheduler;MBAMScheduler;c:\program files\malwarebytes' anti-malware\mbamscheduler.exe [2013-2-4 398184]
    R2 SDScannerService;Spybot-S&D 2 Scanner Service;c:\program files\spybot - search & destroy 2\SDFSSvc.exe [2013-2-4 1103392]
    R2 SDUpdateService;Spybot-S&D 2 Updating Service;c:\program files\spybot - search & destroy 2\SDUpdSvc.exe [2013-2-4 1369624]
    R3 L1c;NDIS Miniport Driver for Atheros AR8131/AR8132 PCI-E Ethernet Controller;c:\windows\system32\drivers\l1c51x86.sys [2009-11-3 44032]
    R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2013-2-4 21104]
    R3 PSched;Plánovač paketů technologie QoS;c:\windows\system32\drivers\psched.sys [2009-12-23 69120]
    R3 rtsuvc;Realtek USB2.0 PC Camera;c:\windows\system32\drivers\rtsuvc.sys [2012-1-27 73088]
    S2 3259;3259;\??\c:\docume~1\elli\locals~1\temp\3259.sys --> c:\docume~1\elli\locals~1\temp\3259.sys [?]
    S2 SDWSCService;Spybot-S&D 2 Security Center Service;c:\program files\spybot - search & destroy 2\SDWSCSvc.exe [2013-2-4 168384]
    S2 SkypeUpdate;Skype Updater;c:\program files\skype\updater\Updater.exe [2012-7-13 160944]
    S3 Ambfilt;Ambfilt;c:\windows\system32\drivers\Ambfilt.sys [2012-1-27 1691480]
    S3 fsssvc;Služba Windows Live Zabezpečení rodiny;c:\program files\windows live\family safety\fsssvc.exe [2009-8-6 704864]
    S3 NPF;WinPcap Packet Driver (NPF);c:\windows\system32\drivers\npf.sys [2013-1-27 50704]
    S3 WinRM;Windows Remote Management (WS-Management);c:\windows\system32\svchost.exe -k WINRM [2009-12-23 14336]
    .
    =============== Created Last 30 ================
    .
    2013-02-05 23:05:48--------d-----w-C:\! odvšivení
    2013-02-05 19:55:37--------d-----w-c:\windows\ServicePackFiles
    2013-02-05 19:53:5719569----a-w-c:\windows\000001_.tmp
    2013-02-05 19:53:40--------d-----w-c:\windows\EHome
    2013-02-05 19:06:30--------d-----w-C:\TDSSKiller_Quarantine
    2013-02-05 04:01:56116224-c--a-w-c:\windows\system32\dllcache\xrxwiadr.dll
    2013-02-05 04:01:4923040-c--a-w-c:\windows\system32\dllcache\xrxwbtmp.dll
    2013-02-05 04:01:4818944-c--a-w-c:\windows\system32\dllcache\xrxscnui.dll
    2013-02-05 04:01:4027648-c--a-w-c:\windows\system32\dllcache\xrxftplt.exe
    2013-02-05 04:01:334608-c--a-w-c:\windows\system32\dllcache\xrxflnch.exe
    2013-02-05 04:01:2099865-c--a-w-c:\windows\system32\dllcache\xlog.exe
    2013-02-05 04:01:1216970-c--a-w-c:\windows\system32\dllcache\xem336n5.sys
    2013-02-05 04:01:0619455-c--a-w-c:\windows\system32\dllcache\wvchntxx.sys
    2013-02-05 04:00:5012063-c--a-w-c:\windows\system32\dllcache\wsiintxx.sys
    2013-02-05 04:00:448192-c--a-w-c:\windows\system32\dllcache\wshirda.dll
    2013-02-05 03:59:04154624-c--a-w-c:\windows\system32\dllcache\wlluc48.sys
    2013-02-05 03:58:5534890-c--a-w-c:\windows\system32\dllcache\wlandrv2.sys
    2013-02-05 03:58:17771581-c--a-w-c:\windows\system32\dllcache\winacisa.sys
    2013-02-05 03:58:0054272-c--a-w-c:\windows\system32\dllcache\wiamsmud.dll
    2013-02-05 03:57:5487040-c--a-w-c:\windows\system32\dllcache\wiafbdrv.dll
    2013-02-05 03:57:29701386-c--a-w-c:\windows\system32\dllcache\wdhaalba.sys
    2013-02-05 03:57:2823615-c--a-w-c:\windows\system32\dllcache\wch7xxnt.sys
    2013-02-05 03:57:2731744-c--a-w-c:\windows\system32\dllcache\wceusbsh.sys
    2013-02-05 03:57:2035871-c--a-w-c:\windows\system32\dllcache\wbfirdma.sys
    2013-02-05 03:57:0325471-c--a-w-c:\windows\system32\dllcache\watv10nt.sys
    2013-02-05 03:57:0122271-c--a-w-c:\windows\system32\dllcache\watv06nt.sys
    2013-02-05 03:57:0033599-c--a-w-c:\windows\system32\dllcache\watv04nt.sys
    2013-02-05 03:55:50397502-c--a-w-c:\windows\system32\dllcache\vpctcom.sys
    2013-02-05 03:55:38604253-c--a-w-c:\windows\system32\dllcache\vmodem.sys
    2013-02-05 03:55:26249402-c--a-w-c:\windows\system32\dllcache\vinwm.sys
    2013-02-05 03:55:1724576-c--a-w-c:\windows\system32\dllcache\viairda.sys
    2013-02-05 03:55:155376-c--a-w-c:\windows\system32\dllcache\viaide.sys
    2013-02-05 03:55:1442240-c--a-w-c:\windows\system32\dllcache\viaagp.sys
    2013-02-05 03:54:5411325-c--a-w-c:\windows\system32\dllcache\vchnt5.dll
    2013-02-05 03:54:39687999-c--a-w-c:\windows\system32\dllcache\usrwdxjs.sys
    2013-02-05 03:54:29765884-c--a-w-c:\windows\system32\dllcache\usrti.sys
    2013-02-05 03:54:20113762-c--a-w-c:\windows\system32\dllcache\usrpda.sys
    2013-02-05 03:54:117556-c--a-w-c:\windows\system32\dllcache\usroslba.sys
    2013-02-05 03:54:00224802-c--a-w-c:\windows\system32\dllcache\usr1807a.sys
    2013-02-05 03:53:52794399-c--a-w-c:\windows\system32\dllcache\usr1806v.sys
    2013-02-05 03:53:45793598-c--a-w-c:\windows\system32\dllcache\usr1806.sys
    2013-02-05 03:53:36794654-c--a-w-c:\windows\system32\dllcache\usr1801.sys
    2013-02-05 03:53:2526112-c--a-w-c:\windows\system32\dllcache\usbser.sys
    2013-02-05 03:53:2315104-c--a-w-c:\windows\system32\dllcache\usbscan.sys
    2013-02-05 03:53:2225856-c--a-w-c:\windows\system32\dllcache\usbprint.sys
    2013-02-05 03:53:2017152-c--a-w-c:\windows\system32\dllcache\usbohci.sys
    2013-02-05 03:53:1360032-c--a-w-c:\windows\system32\dllcache\usbaudio.sys
    2013-02-05 03:53:1112800-c--a-w-c:\windows\system32\dllcache\usb8023x.sys
    2013-02-05 03:53:0832384-c--a-w-c:\windows\system32\dllcache\usb101et.sys
    2013-02-05 03:52:4694720-c--a-w-c:\windows\system32\dllcache\umaxud32.dll
    2013-02-05 03:52:3928160-c--a-w-c:\windows\system32\dllcache\umaxu40.dll
    2013-02-05 03:52:3226624-c--a-w-c:\windows\system32\dllcache\umaxu22.dll
    2013-02-05 03:52:2569632-c--a-w-c:\windows\system32\dllcache\umaxu12.dll
    2013-02-05 03:52:1950688-c--a-w-c:\windows\system32\dllcache\umaxscan.dll
    2013-02-05 03:52:1222912-c--a-w-c:\windows\system32\dllcache\umaxpcls.sys
    2013-02-05 03:52:0550176-c--a-w-c:\windows\system32\dllcache\umaxp60.dll
    2013-02-05 03:51:5847616-c--a-w-c:\windows\system32\dllcache\umaxcam.dll
    2013-02-05 03:51:50212480-c--a-w-c:\windows\system32\dllcache\um54scan.dll
    2013-02-05 03:51:44216576-c--a-w-c:\windows\system32\dllcache\um34scan.dll
    2013-02-05 03:51:3736736-c--a-w-c:\windows\system32\dllcache\ultra.sys
    2013-02-05 03:51:3244672-c--a-w-c:\windows\system32\dllcache\uagp35.sys
    2013-02-05 03:51:2511520-c--a-w-c:\windows\system32\dllcache\twotrack.sys
    2013-02-05 03:51:02166784-c--a-w-c:\windows\system32\dllcache\tridxpm.sys
    2013-02-05 03:50:55525568-c--a-w-c:\windows\system32\dllcache\tridxp.dll
    2013-02-05 03:50:48159232-c--a-w-c:\windows\system32\dllcache\tridkbm.sys
    2013-02-05 03:50:42440576-c--a-w-c:\windows\system32\dllcache\tridkb.dll
    2013-02-05 03:50:35222336-c--a-w-c:\windows\system32\dllcache\trid3dm.sys
    2013-02-05 03:50:29315520-c--a-w-c:\windows\system32\dllcache\trid3d.dll
    2013-02-05 03:50:2034375-c--a-w-c:\windows\system32\dllcache\tpro4.sys
    2013-02-05 03:50:1443008-c--a-w-c:\windows\system32\dllcache\tp4res.dll
    2013-02-05 03:50:1182944-c--a-w-c:\windows\system32\dllcache\tp4mon.exe
    2013-02-05 03:50:0531744-c--a-w-c:\windows\system32\dllcache\tp4.dll
    2013-02-05 03:49:514992-c--a-w-c:\windows\system32\dllcache\toside.sys
    2013-02-05 03:49:45230912-c--a-w-c:\windows\system32\dllcache\tosdvd03.sys
    2013-02-05 03:49:38241664-c--a-w-c:\windows\system32\dllcache\tosdvd02.sys
    2013-02-05 03:49:3028232-c--a-w-c:\windows\system32\dllcache\tos4mo.sys
    2013-02-05 03:49:21123995-c--a-w-c:\windows\system32\dllcache\tjisdn.sys
    2013-02-05 03:49:07138528-c--a-w-c:\windows\system32\dllcache\tgiulnt5.sys
    2013-02-05 03:49:0081408-c--a-w-c:\windows\system32\dllcache\tgiul50.dll
    2013-02-05 03:48:56149376-c--a-w-c:\windows\system32\dllcache\tffsport.sys
    2013-02-05 03:48:4517129-c--a-w-c:\windows\system32\dllcache\tdkcd31.sys
    2013-02-05 03:48:3837961-c--a-w-c:\windows\system32\dllcache\tdk100b.sys
    2013-02-05 03:48:2330464-c--a-w-c:\windows\system32\dllcache\tbatm155.sys
    2013-02-05 03:48:097040-c--a-w-c:\windows\system32\dllcache\tandqic.sys
    2013-02-05 03:48:0336640-c--a-w-c:\windows\system32\dllcache\t2r4mini.sys
    2013-02-05 03:47:56172768-c--a-w-c:\windows\system32\dllcache\t2r4disp.dll
    2013-02-05 03:47:3232640-c--a-w-c:\windows\system32\dllcache\symc8xx.sys
    2013-02-05 03:47:2516256-c--a-w-c:\windows\system32\dllcache\symc810.sys
    2013-02-05 03:47:1830688-c--a-w-c:\windows\system32\dllcache\sym_u3.sys
    2013-02-05 03:47:1128384-c--a-w-c:\windows\system32\dllcache\sym_hi.sys
    2013-02-05 03:47:0394293-c--a-w-c:\windows\system32\dllcache\sxports.dll
    2013-02-05 03:46:57103936-c--a-w-c:\windows\system32\dllcache\sx.sys
    2013-02-05 03:46:513968-c--a-w-c:\windows\system32\dllcache\swusbflt.sys
    2013-02-05 03:46:4410240-c--a-w-c:\windows\system32\dllcache\swpidflt.dll
    2013-02-05 03:46:3810240-c--a-w-c:\windows\system32\dllcache\swpdflt2.dll
    2013-02-05 03:46:3153760-c--a-w-c:\windows\system32\dllcache\sw_wheel.dll
    2013-02-05 03:46:2541472-c--a-w-c:\windows\system32\dllcache\sw_effct.dll
    2013-02-05 03:46:12155648-c--a-w-c:\windows\system32\dllcache\stlnprop.dll
    2013-02-05 03:46:0653248-c--a-w-c:\windows\system32\dllcache\stlncoin.dll
    2013-02-05 03:46:00285792-c--a-w-c:\windows\system32\dllcache\stlnata.sys
    2013-02-05 03:45:5017024-c--a-w-c:\windows\system32\dllcache\stcusb.sys
    2013-02-05 03:45:3148736-c--a-w-c:\windows\system32\dllcache\srwlnd5.sys
    2013-02-05 03:45:2399328-c--a-w-c:\windows\system32\dllcache\srusd.dll
    2013-02-05 03:45:0224660-c--a-w-c:\windows\system32\dllcache\spxupchk.dll
    2013-02-05 03:44:4461824-c--a-w-c:\windows\system32\dllcache\speed.sys
    2013-02-05 03:44:38106584-c--a-w-c:\windows\system32\dllcache\spdports.dll
    2013-02-05 03:44:3019072-c--a-w-c:\windows\system32\dllcache\sparrow.sys
    2013-02-05 03:44:217552-c--a-w-c:\windows\system32\dllcache\sonypvu1.sys
    2013-02-05 03:44:1437040-c--a-w-c:\windows\system32\dllcache\sonypi.sys
    2013-02-05 03:44:08114688-c--a-w-c:\windows\system32\dllcache\sonypi.dll
    2013-02-05 03:44:0320752-c--a-w-c:\windows\system32\dllcache\sonync.sys
    2013-02-05 03:43:569600-c--a-w-c:\windows\system32\dllcache\sonymc.sys
    2013-02-05 03:43:547552-c--a-w-c:\windows\system32\dllcache\sonyait.sys
    2013-02-05 03:43:437040-c--a-w-c:\windows\system32\dllcache\snyaitmc.sys
    2013-02-05 03:43:0958368-c--a-w-c:\windows\system32\dllcache\smiminib.sys
    2013-02-05 03:43:01147200-c--a-w-c:\windows\system32\dllcache\smidispb.dll
    2013-02-05 03:42:5225034-c--a-w-c:\windows\system32\dllcache\smcpwr2n.sys
    2013-02-05 03:42:4535913-c--a-w-c:\windows\system32\dllcache\smcirda.sys
    2013-02-05 03:42:3924576-c--a-w-c:\windows\system32\dllcache\smc8000n.sys
    2013-02-05 03:42:336784-c--a-w-c:\windows\system32\dllcache\smbhc.sys
    2013-02-05 03:42:316912-c--a-w-c:\windows\system32\dllcache\smbclass.sys
    2013-02-05 03:42:3016000-c--a-w-c:\windows\system32\dllcache\smbbatt.sys
    2013-02-05 03:42:285888-c--a-w-c:\windows\system32\dllcache\smbali.sys
    2013-02-05 03:42:2145568-c--a-w-c:\windows\system32\dllcache\smb3w.dll
    2013-02-05 03:42:1533792-c--a-w-c:\windows\system32\dllcache\smb0w.dll
    2013-02-05 03:42:0828672-c--a-w-c:\windows\system32\dllcache\sma0w.dll
    2013-02-05 03:40:5750432-c--a-w-c:\windows\system32\dllcache\sisv.sys
    2013-02-05 03:40:5532768-c--a-w-c:\windows\system32\dllcache\sisnic.sys
    2013-02-05 03:40:49238592-c--a-w-c:\windows\system32\dllcache\sisgrv.dll
    2013-02-05 03:40:42104064-c--a-w-c:\windows\system32\dllcache\sisgrp.sys
    2013-02-05 03:40:4140960-c--a-w-c:\windows\system32\dllcache\sisagp.sys
    2013-02-05 03:40:35150144-c--a-w-c:\windows\system32\dllcache\sis6306v.dll
    2013-02-05 03:40:2968608-c--a-w-c:\windows\system32\dllcache\sis6306p.sys
    2013-02-05 03:40:23252032-c--a-w-c:\windows\system32\dllcache\sis300iv.dll
    2013-02-05 03:40:17101760-c--a-w-c:\windows\system32\dllcache\sis300ip.sys
    2013-02-05 03:40:153901-c--a-w-c:\windows\system32\dllcache\siint5.dll
    2013-02-05 03:39:31161728-c--a-w-c:\windows\system32\dllcache\sgsmusb.sys
    2013-02-05 03:39:2618400-c--a-w-c:\windows\system32\dllcache\sgsmld.sys
    2013-02-05 03:39:2098080-c--a-w-c:\windows\system32\dllcache\sgiulnt5.sys
    2013-02-05 03:39:14386560-c--a-w-c:\windows\system32\dllcache\sgiul50.dll
    2013-02-05 03:39:0836480-c--a-w-c:\windows\system32\dllcache\sfmanm.sys
    2013-02-05 03:38:476784-c--a-w-c:\windows\system32\dllcache\serscan.sys
    2013-02-05 03:38:4117664-c--a-w-c:\windows\system32\dllcache\sermouse.sys
    2013-02-05 03:38:276912-c--a-w-c:\windows\system32\dllcache\seaddsmc.sys
    2013-02-05 03:38:2411520-c--a-w-c:\windows\system32\dllcache\scsiscan.sys
    2013-02-05 03:38:1811648-c--a-w-c:\windows\system32\dllcache\scsiprnt.sys
    2013-02-05 03:38:0617280-c--a-w-c:\windows\system32\dllcache\scr111.sys
    2013-02-05 03:38:0016640-c--a-w-c:\windows\system32\dllcache\scmstcs.sys
    2013-02-05 03:37:5023936-c--a-w-c:\windows\system32\dllcache\sccmusbm.sys
    2013-02-05 03:37:4423936-c--a-w-c:\windows\system32\dllcache\sccmn50m.sys
    2013-02-05 03:37:3643904-c--a-w-c:\windows\system32\dllcache\sbp2port.sys
    2013-02-05 03:37:30495616-c--a-w-c:\windows\system32\dllcache\sblfx.dll
    2013-02-05 03:37:1375392-c--a-w-c:\windows\system32\dllcache\s3savmxm.sys
    2013-02-05 03:37:07245632-c--a-w-c:\windows\system32\dllcache\s3savmx.dll
    2013-02-05 03:37:0077824-c--a-w-c:\windows\system32\dllcache\s3sav4m.sys
    2013-02-05 03:36:54198400-c--a-w-c:\windows\system32\dllcache\s3sav4.dll
    2013-02-05 03:36:4761504-c--a-w-c:\windows\system32\dllcache\s3sav3dm.sys
    2013-02-05 03:36:41179264-c--a-w-c:\windows\system32\dllcache\s3sav3d.dll
    2013-02-05 03:36:35210496-c--a-w-c:\windows\system32\dllcache\s3mvirge.dll
    2013-02-05 03:36:2862496-c--a-w-c:\windows\system32\dllcache\s3mtrio.dll
    2013-02-05 03:36:2241216-c--a-w-c:\windows\system32\dllcache\s3mt3d.sys
    2013-02-05 03:36:15182272-c--a-w-c:\windows\system32\dllcache\s3mt3d.dll
    2013-02-05 03:36:09166720-c--a-w-c:\windows\system32\dllcache\s3m.sys
    2013-02-05 03:36:0265664-c--a-w-c:\windows\system32\dllcache\s3legacy.sys
    2013-02-05 03:36:01166912-c--a-w-c:\windows\system32\dllcache\s3gnbm.sys
    2013-02-05 03:35:59397056-c--a-w-c:\windows\system32\dllcache\s3gnb.dll
    2013-02-05 03:35:5282432-c--a-w-c:\windows\system32\dllcache\rwia450.dll
    2013-02-05 03:35:4679872-c--a-w-c:\windows\system32\dllcache\rwia430.dll
    2013-02-05 03:35:4029696-c--a-w-c:\windows\system32\dllcache\rw450ext.dll
    2013-02-05 03:35:3828160-c--a-w-c:\windows\system32\dllcache\rw430ext.dll
    2013-02-05 03:35:2820992-c--a-w-c:\windows\system32\dllcache\rtl8139.sys
    2013-02-05 03:35:2319017-c--a-w-c:\windows\system32\dllcache\rtl8029.sys
    2013-02-05 03:35:1630720-c--a-w-c:\windows\system32\dllcache\rthwcls.sys
    2013-02-05 03:35:039728-c--a-w-c:\windows\system32\dllcache\rsmgrstr.dll
    2013-02-05 03:34:543840-c--a-w-c:\windows\system32\dllcache\rpfun.sys
    2013-02-05 03:34:4579104-c--a-w-c:\windows\system32\dllcache\rocket.sys
    2013-02-05 03:34:4330592-c--a-w-c:\windows\system32\dllcache\rndismpx.sys
    2013-02-05 03:34:3537563-c--a-w-c:\windows\system32\dllcache\rlnet5.sys
    2013-02-05 03:34:2959136-c--a-w-c:\windows\system32\dllcache\rfcomm.sys
    2013-02-05 03:34:2186097-c--a-w-c:\windows\system32\dllcache\reslog32.dll
    2013-02-05 03:34:0513776-c--a-w-c:\windows\system32\dllcache\recagent.sys
    2013-02-05 03:33:3719584-c--a-w-c:\windows\system32\dllcache\rasirda.sys
    2013-02-05 03:33:19714762-c--a-w-c:\windows\system32\dllcache\r2mdmkxx.sys
    2013-02-05 03:33:12899146-c--a-w-c:\windows\system32\dllcache\r2mdkxga.sys
    2013-02-05 03:33:0341472-c--a-w-c:\windows\system32\dllcache\qvusd.dll
    2013-02-05 03:32:563328-c--a-w-c:\windows\system32\dllcache\qv2kux.sys
    2013-02-05 03:32:3649024-c--a-w-c:\windows\system32\dllcache\ql1280.sys
    2013-02-05 03:32:3040448-c--a-w-c:\windows\system32\dllcache\ql1240.sys
    2013-02-05 03:32:2345312-c--a-w-c:\windows\system32\dllcache\ql12160.sys
    2013-02-05 03:32:1733152-c--a-w-c:\windows\system32\dllcache\ql10wnt.sys
    2013-02-05 03:32:1140320-c--a-w-c:\windows\system32\dllcache\ql1080.sys
    2013-02-05 03:32:086016-c--a-w-c:\windows\system32\dllcache\qic157.sys
    2013-02-05 03:31:44130942-c--a-w-c:\windows\system32\dllcache\ptserlv.sys
    2013-02-05 03:31:38112574-c--a-w-c:\windows\system32\dllcache\ptserlp.sys
    2013-02-05 03:31:32128286-c--a-w-c:\windows\system32\dllcache\ptserli.sys
    2013-02-05 03:31:29159232-c--a-w-c:\windows\system32\dllcache\ptpusd.dll
    2013-02-05 03:31:235632-c--a-w-c:\windows\system32\dllcache\ptpusb.dll
    2013-02-05 03:31:1235328-c--a-w-c:\windows\system32\dllcache\psisload.dll
    2013-02-05 03:31:10363520-c--a-w-c:\windows\system32\dllcache\psisdecd.dll
    2013-02-05 03:31:0316128-c--a-w-c:\windows\system32\dllcache\pscr.sys
    2013-02-05 03:30:4817664-c--a-w-c:\windows\system32\dllcache\ppa3.sys
    2013-02-05 03:30:4117792-c--a-w-c:\windows\system32\dllcache\ppa.sys
    2013-02-05 03:30:408832-c--a-w-c:\windows\system32\dllcache\powerfil.sys
    2013-02-05 03:30:307168-c--a-w-c:\windows\system32\dllcache\pnrmc.sys
    2013-02-05 03:30:05121344-c--a-w-c:\windows\system32\dllcache\phvfwext.dll
    2013-02-05 03:29:5719840-c--a-w-c:\windows\system32\dllcache\philtune.sys
    2013-02-05 03:29:5192416-c--a-w-c:\windows\system32\dllcache\phildec.sys
    2013-02-05 03:29:45173696-c--a-w-c:\windows\system32\dllcache\philcam2.sys
    2013-02-05 03:29:3975776-c--a-w-c:\windows\system32\dllcache\philcam1.sys
    2013-02-05 03:29:3216384-c--a-w-c:\windows\system32\dllcache\philcam1.dll
    2013-02-05 03:29:25259328-c--a-w-c:\windows\system32\dllcache\perm3dd.dll
    2013-02-05 03:29:2228032-c--a-w-c:\windows\system32\dllcache\perm3.sys
    2013-02-05 03:29:20211584-c--a-w-c:\windows\system32\dllcache\perm2dll.dll
    2013-02-05 03:29:1927904-c--a-w-c:\windows\system32\dllcache\perm2.sys
    2013-02-05 03:29:095504-c--a-w-c:\windows\system32\dllcache\perc2hib.sys
    2013-02-05 03:29:0327296-c--a-w-c:\windows\system32\dllcache\perc2.sys
    2013-02-05 03:28:53169984-c--a-w-c:\windows\system32\dllcache\pcx500.sys
    2013-02-05 03:28:4786016-c--a-w-c:\windows\system32\dllcache\pctspk.exe
    2013-02-05 03:28:4135328-c--a-w-c:\windows\system32\dllcache\pcntpci5.sys
    2013-02-05 03:28:3529769-c--a-w-c:\windows\system32\dllcache\pcntn5m.sys
    2013-02-05 03:28:2930282-c--a-w-c:\windows\system32\dllcache\pcntn5hl.sys
    2013-02-05 03:28:2326153-c--a-w-c:\windows\system32\dllcache\pcmlm56.sys
    2013-02-05 03:28:163328-c--a-w-c:\windows\system32\dllcache\pciide.sys
    2013-02-05 03:28:1329502-c--a-w-c:\windows\system32\dllcache\pca200e.sys
    2013-02-05 03:28:0730495-c--a-w-c:\windows\system32\dllcache\pc100nds.sys
    2013-02-05 03:27:4543520-c--a-w-c:\windows\system32\dllcache\ovui2rc.dll
    2013-02-05 03:27:3844544-c--a-w-c:\windows\system32\dllcache\ovui2.dll
    2013-02-05 03:27:3225216-c--a-w-c:\windows\system32\dllcache\ovsound2.sys
    2013-02-05 03:27:2639424-c--a-w-c:\windows\system32\dllcache\ovcoms.exe
    2013-02-05 03:27:2020480-c--a-w-c:\windows\system32\dllcache\ovcomc.dll
    2013-02-05 03:27:13351616-c--a-w-c:\windows\system32\dllcache\ovcodek2.sys
    2013-02-05 03:27:07116736-c--a-w-c:\windows\system32\dllcache\ovcodec2.dll
    2013-02-05 03:27:0131872-c--a-w-c:\windows\system32\dllcache\ovce.sys
    2013-02-05 03:26:5528032-c--a-w-c:\windows\system32\dllcache\ovcd.sys
    2013-02-05 03:26:4948000-c--a-w-c:\windows\system32\dllcache\ovcam2.sys
    2013-02-05 03:26:4325088-c--a-w-c:\windows\system32\dllcache\ovca.sys
    2013-02-05 03:26:3554186-c--a-w-c:\windows\system32\dllcache\otcsercb.sys
    2013-02-05 03:26:2743689-c--a-w-c:\windows\system32\dllcache\otceth5.sys
    2013-02-05 03:26:1227209-c--a-w-c:\windows\system32\dllcache\otc06x5.sys
    2013-02-05 03:26:0354528-c--a-w-c:\windows\system32\dllcache\opl3sax.sys
    2013-02-05 03:25:4461696-c--a-w-c:\windows\system32\dllcache\ohci1394.sys
    2013-02-05 03:25:281897408-c--a-w-c:\windows\system32\dllcache\nv4_mini.sys
    2013-02-05 03:25:244274816-c--a-w-c:\windows\system32\dllcache\nv4_disp.dll
    2013-02-05 03:25:18198144-c--a-w-c:\windows\system32\dllcache\nv3.sys
    2013-02-05 03:25:12123776-c--a-w-c:\windows\system32\dllcache\nv3.dll
    2013-02-05 03:25:02180360-c--a-w-c:\windows\system32\dllcache\ntmtlfax.sys
    2013-02-05 03:24:3951552-c--a-w-c:\windows\system32\dllcache\ntgrip.sys
    2013-02-05 03:24:279472-c--a-w-c:\windows\system32\dllcache\ntapm.sys
    2013-02-05 03:24:227552-c--a-w-c:\windows\system32\dllcache\nsmmc.sys
    2013-02-05 03:24:1828672-c--a-w-c:\windows\system32\dllcache\nscirda.sys
    2013-02-05 03:23:5487040-c--a-w-c:\windows\system32\dllcache\nm6wdm.sys
    2013-02-05 03:23:48126080-c--a-w-c:\windows\system32\dllcache\nm5a2wdm.sys
    2013-02-05 03:23:3632840-c--a-w-c:\windows\system32\dllcache\ngrpci.sys
    2013-02-05 03:23:31132695-c--a-w-c:\windows\system32\dllcache\netwlan5.sys
    2013-02-05 03:22:5665278-c--a-w-c:\windows\system32\dllcache\netflx3.sys
    2013-02-05 03:22:4039264-c--a-w-c:\windows\system32\dllcache\neo20xx.sys
    2013-02-05 03:22:3460480-c--a-w-c:\windows\system32\dllcache\neo20xx.dll
    2013-02-05 03:22:2715872-c--a-w-c:\windows\system32\dllcache\ne2000.sys
    2013-02-05 03:22:0191488-c--a-w-c:\windows\system32\dllcache\n9i3disp.dll
    2013-02-05 03:21:5627936-c--a-w-c:\windows\system32\dllcache\n9i3d.sys
    2013-02-05 03:21:5033088-c--a-w-c:\windows\system32\dllcache\n9i128v2.sys
    2013-02-05 03:21:4559104-c--a-w-c:\windows\system32\dllcache\n9i128v2.dll
    2013-02-05 03:21:3913664-c--a-w-c:\windows\system32\dllcache\n9i128.sys
    2013-02-05 03:21:3435392-c--a-w-c:\windows\system32\dllcache\n9i128.dll
    2013-02-05 03:21:27129024-c--a-w-c:\windows\system32\dllcache\n100325.sys
    2013-02-05 03:21:2152767-c--a-w-c:\windows\system32\dllcache\n1000nt5.sys
    2013-02-05 03:21:1475520-c--a-w-c:\windows\system32\dllcache\mxport.sys
    2013-02-05 03:21:087168-c--a-w-c:\windows\system32\dllcache\mxport.dll
    2013-02-05 03:21:0319968-c--a-w-c:\windows\system32\dllcache\mxnic.sys
    2013-02-05 03:20:5719968-c--a-w-c:\windows\system32\dllcache\mxicfg.dll
    2013-02-05 03:20:5022144-c--a-w-c:\windows\system32\dllcache\mxcard.sys
    2013-02-05 03:20:4812672-c--a-w-c:\windows\system32\dllcache\mutohpen.sys
    2013-02-05 03:20:40103296-c--a-w-c:\windows\system32\dllcache\mtxvideo.sys
    2013-02-05 03:20:38452736-c--a-w-c:\windows\system32\dllcache\mtxparhm.sys
    2013-02-05 03:20:361737856-c--a-w-c:\windows\system32\dllcache\mtxparhd.dll
    2013-02-05 03:20:32119808-c--a-w-c:\windows\system32\dllcache\mtstocom.exe
    2013-02-05 03:20:281309184-c--a-w-c:\windows\system32\dllcache\mtlstrm.sys
    2013-02-05 03:20:26126686-c--a-w-c:\windows\system32\dllcache\mtlmnt5.sys
    2013-02-05 03:19:4749024-c--a-w-c:\windows\system32\dllcache\mstape.sys
    2013-02-05 03:19:2512416-c--a-w-c:\windows\system32\dllcache\msriffwv.sys
    2013-02-05 03:18:552944-c--a-w-c:\windows\system32\dllcache\msmpu401.sys
    2013-02-05 03:18:4922016-c--a-w-c:\windows\system32\dllcache\msircomm.sys
    2013-02-05 03:18:0035200-c--a-w-c:\windows\system32\dllcache\msgame.sys
    2013-02-05 03:17:526016-c--a-w-c:\windows\system32\dllcache\msfsio.sys
    2013-02-05 03:17:4851200-c--a-w-c:\windows\system32\dllcache\msdv.sys
    2013-02-05 03:17:1217280-c--a-w-c:\windows\system32\dllcache\mraid35x.sys
    2013-02-05 03:16:5915232-c--a-w-c:\windows\system32\dllcache\mpe.sys
    2013-02-05 03:16:3816128-c--a-w-c:\windows\system32\dllcache\modemcsa.sys
    2013-02-05 03:16:076528-c--a-w-c:\windows\system32\dllcache\miniqic.sys
    2013-02-05 03:15:44320384-c--a-w-c:\windows\system32\dllcache\mgaum.sys
    2013-02-05 03:15:38235648-c--a-w-c:\windows\system32\dllcache\mgaud.dll
    2013-02-05 03:15:3126112-c--a-w-c:\windows\system32\dllcache\memstpci.sys
    2013-02-05 03:15:2647616-c--a-w-c:\windows\system32\dllcache\memgrp.dll
    2013-02-05 03:15:208320-c--a-w-c:\windows\system32\dllcache\memcard.sys
    2013-02-05 03:15:10164586-c--a-w-c:\windows\system32\dllcache\mdgndis5.sys
    2013-02-05 03:14:537424-c--a-w-c:\windows\system32\dllcache\mammoth.sys
    2013-02-05 03:14:4248768-c--a-w-c:\windows\system32\dllcache\maestro.sys
    2013-02-05 03:14:3659392-c--a-w-c:\windows\system32\dllcache\m3092dc.dll
    2013-02-05 03:14:2858880-c--a-w-c:\windows\system32\dllcache\m3091dc.dll
    2013-02-05 03:14:2122848-c--a-w-c:\windows\system32\dllcache\lwusbhid.sys
    2013-02-05 03:14:2020864-c--a-w-c:\windows\system32\dllcache\lwadihid.sys
    2013-02-05 03:14:08797500-c--a-w-c:\windows\system32\dllcache\ltsmt.sys
    2013-02-05 03:14:02802683-c--a-w-c:\windows\system32\dllcache\ltsm.sys
    2013-02-05 03:14:007040-c--a-w-c:\windows\system32\dllcache\ltotape.sys
    2013-02-05 03:13:58420736-c--a-w-c:\windows\system32\dllcache\ltmdmntt.sys
    2013-02-05 03:13:53576746-c--a-w-c:\windows\system32\dllcache\ltmdmntl.sys
    2013-02-05 03:13:52606556-c--a-w-c:\windows\system32\dllcache\ltmdmnt.sys
    2013-02-05 03:13:45727786-c--a-w-c:\windows\system32\dllcache\ltck000c.sys
    2013-02-05 03:13:354992-c--a-w-c:\windows\system32\dllcache\loop.sys
    2013-02-05 03:13:1870730-c--a-w-c:\windows\system32\dllcache\lne100tx.sys
    2013-02-05 03:13:1220573-c--a-w-c:\windows\system32\dllcache\lne100.sys
    2013-02-05 03:13:0525065-c--a-w-c:\windows\system32\dllcache\lmndis3.sys
    2013-02-05 03:12:5815872-c--a-w-c:\windows\system32\dllcache\lit220p.sys
    2013-02-05 03:12:5334688-c--a-w-c:\windows\system32\dllcache\lbrtfdc.sys
    2013-02-05 03:12:4726442-c--a-w-c:\windows\system32\dllcache\lanepic5.sys
    2013-02-05 03:12:4019016-c--a-w-c:\windows\system32\dllcache\ktc111.sys
    2013-02-05 03:12:2737376-c--a-w-c:\windows\system32\dllcache\kousd.dll
    2013-02-05 03:12:17254464-c--a-w-c:\windows\system32\dllcache\kdsusd.dll
    2013-02-05 03:12:1548640-c--a-w-c:\windows\system32\dllcache\kdsui.dll
    2013-02-05 03:11:2714592-c--a-w-c:\windows\system32\dllcache\kbdhid.sys
    2013-02-05 03:10:3626624-c--a-w-c:\windows\system32\dllcache\irstusb.sys
    2013-02-05 03:10:3118688-c--a-w-c:\windows\system32\dllcache\irsir.sys
    2013-02-05 03:10:2927648-c--a-w-c:\windows\system32\dllcache\irmon.dll
    2013-02-05 03:10:2523552-c--a-w-c:\windows\system32\dllcache\irmk7.sys
    2013-02-05 03:10:23152064-c--a-w-c:\windows\system32\dllcache\irftp.exe
    2013-02-05 03:10:2088192-c--a-w-c:\windows\system32\dllcache\irda.sys
    2013-02-05 03:09:4845632-c--a-w-c:\windows\system32\dllcache\ip5515.sys
    2013-02-05 03:09:4390200-c--a-w-c:\windows\system32\dllcache\io8ports.dll
    2013-02-05 03:09:3738784-c--a-w-c:\windows\system32\dllcache\io8.sys
    2013-02-05 03:09:335504-c--a-w-c:\windows\system32\dllcache\intelide.sys
    2013-02-05 03:09:2613056-c--a-w-c:\windows\system32\dllcache\inport.sys
    2013-02-05 03:09:2016000-c--a-w-c:\windows\system32\dllcache\ini910u.sys
    2013-02-05 03:08:2181920-c--a-w-c:\windows\system32\dllcache\ieencode.dll
    2013-02-05 03:07:57372824-c--a-w-c:\windows\system32\dllcache\iconf32.dll
    2013-02-05 03:07:49100992-c--a-w-c:\windows\system32\dllcache\icam5usb.sys
    2013-02-05 03:07:4320480-c--a-w-c:\windows\system32\dllcache\icam5ext.dll
    2013-02-05 03:07:3945056-c--a-w-c:\windows\system32\dllcache\icam5com.dll
    2013-02-05 03:07:34154496-c--a-w-c:\windows\system32\dllcache\icam4usb.sys
    2013-02-05 03:07:2962464-c--a-w-c:\windows\system32\dllcache\icam4ext.dll
    2013-02-05 03:07:2391136-c--a-w-c:\windows\system32\dllcache\icam4com.dll
    2013-02-05 03:07:1826624-c--a-w-c:\windows\system32\dllcache\icam3ext.dll
    2013-02-05 03:07:12141056-c--a-w-c:\windows\system32\dllcache\icam3.sys
    2013-02-05 03:07:0638528-c--a-w-c:\windows\system32\dllcache\ibmvcap.sys
    2013-02-05 03:07:01109085-c--a-w-c:\windows\system32\dllcache\ibmtrp.sys
    2013-02-05 03:06:56100936-c--a-w-c:\windows\system32\dllcache\ibmtok.sys
    2013-02-05 03:06:519728-c--a-w-c:\windows\system32\dllcache\ibmsgnet.dll
    2013-02-05 03:06:4628700-c--a-w-c:\windows\system32\dllcache\ibmexmp.sys
    2013-02-05 03:06:35161020-c--a-w-c:\windows\system32\dllcache\i81xnt5.sys
    2013-02-05 03:06:34702845-c--a-w-c:\windows\system32\dllcache\i81xdnt5.dll
    2013-02-05 03:06:2958592-c--a-w-c:\windows\system32\dllcache\i740nt5.sys
    2013-02-05 03:06:23353184-c--a-w-c:\windows\system32\dllcache\i740dnt5.dll
    2013-02-05 03:06:2118560-c--a-w-c:\windows\system32\dllcache\i2omp.sys
    2013-02-05 03:06:188576-c--a-w-c:\windows\system32\dllcache\i2omgmt.sys
    2013-02-05 03:05:361041536-c--a-w-c:\windows\system32\dllcache\hsfdpsp2.sys
    2013-02-05 03:05:33685056-c--a-w-c:\windows\system32\dllcache\hsfcxts2.sys
    2013-02-05 03:05:3032285-c--a-w-c:\windows\system32\dllcache\hsfcisp2.dll
    2013-02-05 03:05:27220032-c--a-w-c:\windows\system32\dllcache\hsfbs2s2.sys
    2013-02-05 03:05:22488383-c--a-w-c:\windows\system32\dllcache\hsf_v124.sys
    2013-02-05 03:05:1750751-c--a-w-c:\windows\system32\dllcache\hsf_tone.sys
    2013-02-05 03:05:1273279-c--a-w-c:\windows\system32\dllcache\hsf_spkp.sys
    2013-02-05 03:05:0744863-c--a-w-c:\windows\system32\dllcache\hsf_soar.sys
    2013-02-05 03:05:0257471-c--a-w-c:\windows\system32\dllcache\hsf_samp.sys
    2013-02-05 03:04:56542879-c--a-w-c:\windows\system32\dllcache\hsf_msft.sys
    2013-02-05 03:04:51391199-c--a-w-c:\windows\system32\dllcache\hsf_k56k.sys
    2013-02-05 03:04:469759-c--a-w-c:\windows\system32\dllcache\hsf_inst.dll
    2013-02-05 03:04:41115807-c--a-w-c:\windows\system32\dllcache\hsf_fsks.sys
    2013-02-05 03:04:36199711-c--a-w-c:\windows\system32\dllcache\hsf_faxx.sys
    2013-02-05 03:04:31289887-c--a-w-c:\windows\system32\dllcache\hsf_fall.sys
    2013-02-05 03:04:2667167-c--a-w-c:\windows\system32\dllcache\hsf_bsc2.sys
    2013-02-05 03:04:21150239-c--a-w-c:\windows\system32\dllcache\hsf_amos.sys
    2013-02-05 03:04:1219456-c--a-w-c:\windows\system32\dllcache\hr1w.dll
    2013-02-05 03:04:075760-c--a-w-c:\windows\system32\dllcache\hpt4qic.sys
    2013-02-05 03:04:0313312-c--a-w-c:\windows\system32\dllcache\hpsjmcro.dll
    2013-02-05 03:03:58324608-c--a-w-c:\windows\system32\dllcache\hpojwia.dll
    2013-02-05 03:03:5325952-c--a-w-c:\windows\system32\dllcache\hpn.sys
    2013-02-05 03:03:4832768-c--a-w-c:\windows\system32\dllcache\hpgtmcro.dll
    2013-02-05 03:03:4368608-c--a-w-c:\windows\system32\dllcache\hpgt53tk.dll
    2013-02-05 03:03:38165888-c--a-w-c:\windows\system32\dllcache\hpgt53.dll
    2013-02-05 03:03:3431232-c--a-w-c:\windows\system32\dllcache\hpgt42tk.dll
    2013-02-05 03:03:2993696-c--a-w-c:\windows\system32\dllcache\hpgt42.dll
    2013-02-05 03:03:25126976-c--a-w-c:\windows\system32\dllcache\hpgt34tk.dll
    2013-02-05 03:03:20101376-c--a-w-c:\windows\system32\dllcache\hpgt34.dll
    2013-02-05 03:03:1648128-c--a-w-c:\windows\system32\dllcache\hpgt33tk.dll
    2013-02-05 03:03:1189088-c--a-w-c:\windows\system32\dllcache\hpgt33.dll
    2013-02-05 03:03:05123392-c--a-w-c:\windows\system32\dllcache\hpgt21tk.dll
    2013-02-05 03:02:5983968-c--a-w-c:\windows\system32\dllcache\hpgt21.dll
    2013-02-05 03:02:54119296-c--a-w-c:\windows\system32\dllcache\hpdigwia.dll
    2013-02-05 03:02:382688-c--a-w-c:\windows\system32\dllcache\hidswvd.sys
    2013-02-05 03:02:3419200-c--a-w-c:\windows\system32\dllcache\hidir.sys
    2013-02-05 03:02:308576-c--a-w-c:\windows\system32\dllcache\hidgame.sys
    2013-02-05 03:02:2725600-c--a-w-c:\windows\system32\dllcache\hidbth.sys
    2013-02-05 03:02:2620352-c--a-w-c:\windows\system32\dllcache\hidbatt.sys
    2013-02-05 03:02:09907456-c--a-w-c:\windows\system32\dllcache\hcf_msft.sys
    2013-02-05 03:02:0128416-c--a-w-c:\windows\system32\dllcache\grserial.sys
    2013-02-05 03:01:5782432-c--a-w-c:\windows\system32\dllcache\grclass.sys
    2013-02-05 03:01:5317408-c--a-w-c:\windows\system32\dllcache\gpr400.sys
    2013-02-05 03:01:4259136-c--a-w-c:\windows\system32\dllcache\gckernel.sys
    2013-02-05 03:01:3910624-c--a-w-c:\windows\system32\dllcache\gameenum.sys
    2013-02-05 03:01:3746464-c--a-w-c:\windows\system32\dllcache\gagp30kx.sys
    2013-02-05 03:01:33322432-c--a-w-c:\windows\system32\dllcache\g400m.sys
    2013-02-05 03:01:291733120-c--a-w-c:\windows\system32\dllcache\g400d.dll
    2013-02-05 03:01:25320384-c--a-w-c:\windows\system32\dllcache\g200m.sys
    2013-02-05 03:01:21470144-c--a-w-c:\windows\system32\dllcache\g200d.dll
    2013-02-05 03:01:17454912-c--a-w-c:\windows\system32\dllcache\fxusbase.sys
    2013-02-05 03:00:2692160-c--a-w-c:\windows\system32\dllcache\fuusd.dll
    2013-02-05 03:00:22455296-c--a-w-c:\windows\system32\dllcache\fusbbase.sys
    2013-02-05 03:00:17455680-c--a-w-c:\windows\system32\dllcache\fus2base.sys
    2013-02-05 03:00:01442240-c--a-w-c:\windows\system32\dllcache\fpnpbase.sys
    2013-02-05 02:59:54441728-c--a-w-c:\windows\system32\dllcache\fpcmbase.sys
    2013-02-05 02:59:49444416-c--a-w-c:\windows\system32\dllcache\fpcibase.sys
    2013-02-05 02:59:4234173-c--a-w-c:\windows\system32\dllcache\forehe.sys
    2013-02-05 02:59:3571680-c--a-w-c:\windows\system32\dllcache\fnfilter.dll
    2013-02-05 02:59:2127165-c--a-w-c:\windows\system32\dllcache\fetnd5.sys
    2013-02-05 02:59:0822090-c--a-w-c:\windows\system32\dllcache\fem556n5.sys
    2013-02-05 02:58:5824618-c--a-w-c:\windows\system32\dllcache\fa410nd5.sys
    2013-02-05 02:58:5416074-c--a-w-c:\windows\system32\dllcache\fa312nd5.sys
    2013-02-05 02:58:5011850-c--a-w-c:\windows\system32\dllcache\f3ab18xj.sys
    2013-02-05 02:58:4612362-c--a-w-c:\windows\system32\dllcache\f3ab18xi.sys
    2013-02-05 02:58:367040-c--a-w-c:\windows\system32\dllcache\exabyte2.sys
    2013-02-05 02:58:3216998-c--a-w-c:\windows\system32\dllcache\ex10.sys
    2013-02-05 02:58:1645568-c--a-w-c:\windows\system32\dllcache\esunib.dll
    2013-02-05 02:58:1245568-c--a-w-c:\windows\system32\dllcache\esuni.dll
    2013-02-05 02:58:0634816-c--a-w-c:\windows\system32\dllcache\esuimg.dll
    2013-02-05 02:58:0043008-c--a-w-c:\windows\system32\dllcache\esucm.dll
    2013-02-05 02:57:59137088-c--a-w-c:\windows\system32\dllcache\essm2e.sys
    2013-02-05 02:57:5463360-c--a-w-c:\windows\system32\dllcache\ess.sys
    2013-02-05 02:57:42347550-c--a-w-c:\windows\system32\dllcache\es56tpi.sys
    2013-02-05 02:57:38594238-c--a-w-c:\windows\system32\dllcache\es56hpi.sys
    2013-02-05 02:57:34595647-c--a-w-c:\windows\system32\dllcache\es56cvmp.sys
    2013-02-05 02:57:30174464-c--a-w-c:\windows\system32\dllcache\es198x.sys
    2013-02-05 02:57:2672192-c--a-w-c:\windows\system32\dllcache\es1969.sys
    2013-02-05 02:57:2340704-c--a-w-c:\windows\system32\dllcache\es1371mp.sys
    2013-02-05 02:57:1837120-c--a-w-c:\windows\system32\dllcache\es1370mp.sys
    2013-02-05 02:57:1262464-c--a-w-c:\windows\system32\dllcache\eqnloop.exe
    2013-02-05 02:57:0851712-c--a-w-c:\windows\system32\dllcache\eqnlogr.exe
    2013-02-05 02:57:0453248-c--a-w-c:\windows\system32\dllcache\eqndiag.exe
    2013-02-05 02:55:5769194-c--a-w-c:\windows\system32\dllcache\el656cd5.sys
    2013-02-05 02:55:5526141-c--a-w-c:\windows\system32\dllcache\el589nd5.sys
    2013-02-05 02:55:5269692-c--a-w-c:\windows\system32\dllcache\el575nd5.sys
    2013-02-05 02:55:4924653-c--a-w-c:\windows\system32\dllcache\el574nd4.sys
    2013-02-05 02:55:4755999-c--a-w-c:\windows\system32\dllcache\el556nd5.sys
    2013-02-05 02:55:4344103-c--a-w-c:\windows\system32\dllcache\el515.sys
    2013-02-05 02:55:3319594-c--a-w-c:\windows\system32\dllcache\e100isa4.sys
    2013-02-05 02:55:30117760-c--a-w-c:\windows\system32\dllcache\e100b325.sys
    2013-02-05 02:55:2751231-c--a-w-c:\windows\system32\dllcache\e1000nt5.sys
    2013-02-05 02:54:56334208-c--a-w-c:\windows\system32\dllcache\ds1wdm.sys
    2013-02-05 02:54:4420192-c--a-w-c:\windows\system32\dllcache\dpti2o.sys
    2013-02-05 02:54:3328062-c--a-w-c:\windows\system32\dllcache\dp83820.sys
    2013-02-05 02:54:3023808-c--a-w-c:\windows\system32\dllcache\dot4usb.sys
    2013-02-05 02:54:278704-c--a-w-c:\windows\system32\dllcache\dot4scan.sys
    2013-02-05 02:54:2412928-c--a-w-c:\windows\system32\dllcache\dot4prt.sys
    2013-02-05 02:54:23206976-c--a-w-c:\windows\system32\dllcache\dot4.sys
    2013-02-05 02:54:0329696-c--a-w-c:\windows\system32\dllcache\dm9pci5.sys
    2013-02-05 02:54:018320-c--a-w-c:\windows\system32\dllcache\dlttape.sys
    2013-02-05 02:52:59103428-c--a-w-c:\windows\system32\dllcache\digidxb.sys
    2013-02-05 02:51:5963208-c--a-w-c:\windows\system32\dllcache\dc21x4.sys
    2013-02-05 02:50:593584-c--a-w-c:\windows\system32\dllcache\cwcosnt5.sys
    2013-02-05 02:49:5939936-c--a-w-c:\windows\system32\dllcache\cnxt1803.sys
    2013-02-05 02:49:5644032-c--a-w-c:\windows\system32\dllcache\cnusd.dll
    2013-02-05 02:49:476656-c--a-w-c:\windows\system32\dllcache\cmdide.sys
    2013-02-05 02:49:4220864-c--a-w-c:\windows\system32\dllcache\cmbp0wdm.sys
    2013-02-05 02:49:33248064-c--a-w-c:\windows\system32\dllcache\cl546xm.sys
    2013-02-05 02:49:29170880-c--a-w-c:\windows\system32\dllcache\cl546x.dll
    2013-02-05 02:49:27111232-c--a-w-c:\windows\system32\dllcache\cl5465.dll
    2013-02-05 02:49:2445696-c--a-w-c:\windows\system32\dllcache\cirrus.sys
    2013-02-05 02:49:2291264-c--a-w-c:\windows\system32\dllcache\cirrus.dll
    2013-02-05 02:49:15272640-c--a-w-c:\windows\system32\dllcache\cinemclc.sys
    2013-02-05 02:49:12980034-c--a-w-c:\windows\system32\dllcache\cicap.sys
    2013-02-05 02:47:5874240-c--a-w-c:\windows\system32\dllcache\camexo20.dll
    2013-02-05 02:47:54171264-c--a-w-c:\windows\system32\dllcache\camdrv30.sys
    2013-02-05 02:47:52223232-c--a-w-c:\windows\system32\dllcache\camdrv21.sys
    2013-02-05 02:47:50314752-c--a-w-c:\windows\system32\dllcache\camdro21.sys
    2013-02-05 02:45:5932256-c--a-w-c:\windows\system32\dllcache\brmfrsmg.exe
    2013-02-05 02:44:5936096-c--a-w-c:\windows\system32\dllcache\avcaudio.sys
    2013-02-05 02:43:5913824-c--a-w-c:\windows\system32\dllcache\atinttxx.sys
    2013-02-05 02:42:5843008-c--a-w-c:\windows\system32\dllcache\amdagp.sys
    2013-02-05 02:41:5838400-c--a-w-c:\windows\system32\dllcache\8514a.dll
    2013-02-05 02:41:5748128-c--a-w-c:\windows\system32\dllcache\61883.sys
    2013-02-05 02:41:5512288-c--a-w-c:\windows\system32\dllcache\4mmdat.sys
    2013-02-05 02:41:54148352-c--a-w-c:\windows\system32\dllcache\3dfxvsm.sys
    2013-02-05 02:41:53689216-c--a-w-c:\windows\system32\dllcache\3dfxvs.dll
    2013-02-05 02:41:52762780-c--a-w-c:\windows\system32\dllcache\3cwmcru.sys
    2013-02-05 02:41:5111264-c--a-w-c:\windows\system32\dllcache\1394vdbg.sys
    2013-02-05 02:41:4953376-c--a-w-c:\windows\system32\dllcache\1394bus.sys
    2013-02-05 02:40:5266048-c--a-w-c:\windows\system32\dllcache\s3legacy.dll
    2013-02-05 00:39:25--------d-----w-c:\documents and settings\elli\data aplikací\ElevatedDiagnostics
    2013-02-04 22:47:48--------d-----w-c:\program files\CCleaner
    2013-02-04 21:17:1115224----a-w-c:\windows\system32\sdnclean.exe
    2013-02-04 21:15:56--------d-----w-c:\program files\Spybot - Search & Destroy 2
    2013-02-04 21:10:39--------d-----w-c:\documents and settings\elli\data aplikací\Malwarebytes
    2013-02-04 21:09:3021104----a-w-c:\windows\system32\drivers\mbam.sys
    2013-02-04 21:09:30--------d-----w-c:\program files\Malwarebytes' Anti-Malware
    2013-02-04 21:08:04--------d-----w-c:\program files\Microsoft Security Client
    2013-02-04 20:53:02143872----a-w-c:\windows\system32\javacpl.cpl
    2013-02-04 20:52:3994112----a-w-c:\windows\system32\WindowsAccessBridge.dll
    2013-02-04 20:44:23--------d-----w-c:\documents and settings\elli\data aplikací\Opera
    2013-02-04 18:57:43--------d-----w-c:\program files\AVAST Software
    2013-02-04 18:48:2174248----a-w-c:\windows\system32\FlashPlayerCPLApp.cpl
    2013-02-04 18:48:21697864----a-w-c:\windows\system32\FlashPlayerApp.exe
    2013-02-04 18:09:0221504-c--a-w-c:\windows\system32\dllcache\hidserv.dll
    2013-02-04 18:09:0221504----a-w-c:\windows\system32\hidserv.dll
    2013-02-04 18:08:5512160-c--a-w-c:\windows\system32\dllcache\mouhid.sys
    2013-02-04 18:08:5512160----a-w-c:\windows\system32\drivers\mouhid.sys
    2013-02-04 18:08:4910368-c--a-w-c:\windows\system32\dllcache\hidusb.sys
    2013-02-04 18:08:4910368----a-w-c:\windows\system32\drivers\hidusb.sys
    2013-02-04 14:31:53--------d-sh--r-c:\documents and settings\elli\M-15-0935-5960-5932
    2013-01-28 17:55:40--------d-sh--r-c:\documents and settings\elli\6438640620394286720310355
    2013-01-27 16:53:0650704----a-w-c:\windows\system32\drivers\npf.sys
    2013-01-27 16:53:06281104----a-w-c:\windows\system32\wpcap.dll
    2013-01-27 16:53:05100880----a-w-c:\windows\system32\Packet.dll
    2013-01-24 17:31:32--------d-----w-c:\documents and settings\elli\data aplikací\Qase
    2013-01-24 17:31:31--------d-----w-c:\documents and settings\elli\data aplikací\Rusay
    2013-01-24 17:31:31--------d-----w-c:\documents and settings\elli\data aplikací\Diquu
    2013-01-24 17:22:15--------d-----w-c:\documents and settings\elli\data aplikací\Myat
    2013-01-24 17:22:15--------d-----w-c:\documents and settings\elli\data aplikací\Ecexar
    2013-01-24 17:22:14--------d-----w-c:\documents and settings\elli\data aplikací\Keky
    2013-01-24 16:16:42--------d-sh--r-c:\documents and settings\elli\68956435567898775
    2013-01-21 19:28:49--------d-----w-c:\documents and settings\elli\Tracing
    2013-01-21 19:28:16--------d-sh--r-c:\documents and settings\elli\75439967573920484
    2013-01-21 19:23:54--------d-sh--r-c:\documents and settings\elli\76968780866536342
    .
    ==================== Find3M ====================
    .
    2013-02-05 19:07:31188288----a-w-c:\windows\system32\drivers\acpi.sys
    2013-02-04 20:51:52861088----a-w-c:\windows\system32\npdeployJava1.dll
    2013-02-04 20:51:52782240----a-w-c:\windows\system32\deployJava1.dll
    2013-01-17 00:28:58232336------w-c:\windows\system32\MpSigStub.exe
    2012-12-16 12:23:59290560----a-w-c:\windows\system32\atmfd.dll
    2012-11-13 11:55:101866368----a-w-c:\windows\system32\win32k.sys
    .
    ============= FINISH: 0:12:06,42 ===============
     
  5. Fandomas

    Fandomas TS Rookie Topic Starter

    .
    UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
    IF REQUESTED, ZIP IT UP & ATTACH IT
    .
    DDS (Ver_2012-11-20.01)
    .
    Microsoft Windows XP Home Edition
    Boot Device: \Device\HarddiskVolume1
    Install Date: 27.1.2012 7:41:06
    System Uptime: 5.2.2013 23:32:35 (1 hours ago)
    .
    Motherboard: ASUSTeK Computer INC. | | 1001PX
    Processor: Intel(R) Atom(TM) CPU N450 @ 1.66GHz | CPU 1 | 1666/167mhz
    .
    ==== Disk Partitions =========================
    .
    C: is FIXED (NTFS) - 80 GiB total, 13,419 GiB free.
    D: is FIXED (NTFS) - 62 GiB total, 25,606 GiB free.
    .
    ==== Disabled Device Manager Items =============
    .
    ==== System Restore Points ===================
    .
    RP217: 13.12.2012 7:29:32 - Software Distribution Service 3.0
    RP218: 14.12.2012 14:39:39 - Software Distribution Service 3.0
    RP219: 14.12.2012 14:49:19 - Software Distribution Service 3.0
    RP220: 15.12.2012 18:11:06 - Software Distribution Service 3.0
    RP221: 16.12.2012 18:35:46 - Software Distribution Service 3.0
    RP222: 17.12.2012 21:02:44 - Software Distribution Service 3.0
    RP223: 19.12.2012 7:04:18 - Software Distribution Service 3.0
    RP224: 20.12.2012 7:28:22 - Software Distribution Service 3.0
    RP225: 21.12.2012 18:18:41 - Software Distribution Service 3.0
    RP226: 22.12.2012 18:26:26 - Software Distribution Service 3.0
    RP227: 23.12.2012 12:56:16 - Software Distribution Service 3.0
    RP228: 23.12.2012 20:54:41 - Software Distribution Service 3.0
    RP229: 27.12.2012 18:59:47 - Software Distribution Service 3.0
    RP230: 28.12.2012 19:30:37 - Kontrolní bod systému
    RP231: 28.12.2012 22:13:51 - Software Distribution Service 3.0
    RP232: 30.12.2012 11:00:28 - Software Distribution Service 3.0
    RP233: 4.1.2013 15:28:36 - Software Distribution Service 3.0
    RP234: 4.1.2013 23:00:35 - Software Distribution Service 3.0
    RP235: 5.1.2013 16:04:23 - Software Distribution Service 3.0
    RP236: 6.1.2013 16:36:21 - Kontrolní bod systému
    RP237: 7.1.2013 7:21:08 - Software Distribution Service 3.0
    RP238: 8.1.2013 15:50:34 - Software Distribution Service 3.0
    RP239: 9.1.2013 18:22:02 - Software Distribution Service 3.0
    RP240: 10.1.2013 11:27:38 - Software Distribution Service 3.0
    RP241: 10.1.2013 19:35:48 - Software Distribution Service 3.0
    RP242: 11.1.2013 22:39:46 - Kontrolní bod systému
    RP243: 12.1.2013 10:24:57 - Software Distribution Service 3.0
    RP244: 13.1.2013 11:24:31 - Software Distribution Service 3.0
    RP245: 14.1.2013 17:31:23 - Software Distribution Service 3.0
    RP246: 15.1.2013 17:52:31 - Software Distribution Service 3.0
    RP247: 16.1.2013 14:12:11 - Software Distribution Service 3.0
    RP248: 17.1.2013 18:58:11 - Software Distribution Service 3.0
    RP249: 18.1.2013 20:24:18 - Kontrolní bod systému
    RP250: 18.1.2013 21:31:38 - Software Distribution Service 3.0
    RP251: 20.1.2013 8:20:16 - Software Distribution Service 3.0
    RP252: 4.2.2013 21:49:19 - Removed Java(TM) 7 Update 2
    RP253: 4.2.2013 21:51:31 - Installed Java 7 Update 13
    RP254: 4.2.2013 22:01:34 - Odebráno: mk
    RP255: 4.2.2013 22:06:51 - Instalace avast! Free Antivirus
    RP256: 4.2.2013 23:20:54 - Removed QuickTime
    RP257: 5.2.2013 1:22:26 - Installed Windows Defender
    RP258: 5.2.2013 1:43:17 - Nainstalováno: Microsoft Fix it 50203
    RP259: 5.2.2013 20:31:31 - Removed Windows Defender
    RP260: 5.2.2013 20:54:03 - Nainstalováno Windows XP Service Pack 3.
    .
    ==== Installed Programs ======================
    .
    AC3Filter 1.63b
    Adobe Flash Player 10 ActiveX
    Adobe Flash Player 11 Plugin
    Adobe Reader X (10.1.5) - Czech
    Aktualizace systému Windows Internet Explorer 8 (KB971930)
    Aktualizace systému Windows Internet Explorer 8 (KB975364)
    Aktualizace systému Windows Internet Explorer 8 (KB976662)
    Aktualizace systému Windows Internet Explorer 8 (KB976749)
    Aktualizace systému Windows Internet Explorer 8 (KB978506)
    Aktualizace systému Windows Internet Explorer 8 (KB980182)
    Aktualizace systému Windows Internet Explorer 8 (KB980302)
    Aktualizace systému Windows XP (KB2345886)
    Aktualizace systému Windows XP (KB2541763)
    Aktualizace systému Windows XP (KB2641690)
    Aktualizace systému Windows XP (KB2661254-v2)
    Aktualizace systému Windows XP (KB2718704)
    Aktualizace systému Windows XP (KB2736233)
    Aktualizace systému Windows XP (KB2749655)
    Aktualizace systému Windows XP (KB942763)
    Aktualizace systému Windows XP (KB951072-v2)
    Aktualizace systému Windows XP (KB951618-v2)
    Aktualizace systému Windows XP (KB951978)
    Aktualizace systému Windows XP (KB955759)
    Aktualizace systému Windows XP (KB955839)
    Aktualizace systému Windows XP (KB961503)
    Aktualizace systému Windows XP (KB967715)
    Aktualizace systému Windows XP (KB968389)
    Aktualizace systému Windows XP (KB971029)
    Aktualizace systému Windows XP (KB971737)
    Aktualizace systému Windows XP (KB973687)
    Aktualizace systému Windows XP (KB973815)
    Aktualizace systému Windows XP (KB976749)
    Aktualizace systému Windows XP (KB978207)
    Aktualizace zabezpečení aplikace Windows Media Player (KB2378111)
    Aktualizace zabezpečení aplikace Windows Media Player (KB952069)
    Aktualizace zabezpečení aplikace Windows Media Player (KB954155)
    Aktualizace zabezpečení aplikace Windows Media Player (KB968816)
    Aktualizace zabezpečení aplikace Windows Media Player (KB972187)
    Aktualizace zabezpečení aplikace Windows Media Player (KB973540)
    Aktualizace zabezpečení aplikace Windows Media Player (KB975558)
    Aktualizace zabezpečení aplikace Windows Media Player (KB978695)
    Aktualizace zabezpečení aplikace Windows Media Player 11 (KB936782)
    Aktualizace zabezpečení aplikace Windows Media Player 11 (KB954154)
    Aktualizace zabezpečení pro Microsoft Windows (KB2564958)
    Aktualizace zabezpečení produktu Windows XP (KB941569)
    Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2510531)
    Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2544521)
    Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2618444)
    Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2647516)
    Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2675157)
    Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2699988)
    Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2722913)
    Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2744842)
    Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2761465)
    Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2799329)
    Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB971961)
    Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB974455)
    Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB976325)
    Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB978207)
    Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB981332)
    Aktualizace zabezpečení systému Windows XP (KB2079403)
    Aktualizace zabezpečení systému Windows XP (KB2115168)
    Aktualizace zabezpečení systému Windows XP (KB2229593)
    Aktualizace zabezpečení systému Windows XP (KB2296011)
    Aktualizace zabezpečení systému Windows XP (KB2347290)
    Aktualizace zabezpečení systému Windows XP (KB2360937)
    Aktualizace zabezpečení systému Windows XP (KB2387149)
    Aktualizace zabezpečení systému Windows XP (KB2393802)
    Aktualizace zabezpečení systému Windows XP (KB2412687)
    Aktualizace zabezpečení systému Windows XP (KB2419632)
    Aktualizace zabezpečení systému Windows XP (KB2423089)
    Aktualizace zabezpečení systému Windows XP (KB2440591)
    Aktualizace zabezpečení systému Windows XP (KB2443105)
    Aktualizace zabezpečení systému Windows XP (KB2476490)
    Aktualizace zabezpečení systému Windows XP (KB2478960)
    Aktualizace zabezpečení systému Windows XP (KB2478971)
    Aktualizace zabezpečení systému Windows XP (KB2479943)
    Aktualizace zabezpečení systému Windows XP (KB2483185)
    Aktualizace zabezpečení systému Windows XP (KB2483614)
    Aktualizace zabezpečení systému Windows XP (KB2485663)
    Aktualizace zabezpečení systému Windows XP (KB2506212)
    Aktualizace zabezpečení systému Windows XP (KB2507618)
    Aktualizace zabezpečení systému Windows XP (KB2507938)
    Aktualizace zabezpečení systému Windows XP (KB2508429)
    Aktualizace zabezpečení systému Windows XP (KB2509553)
    Aktualizace zabezpečení systému Windows XP (KB2535512)
    Aktualizace zabezpečení systému Windows XP (KB2536276-v2)
    Aktualizace zabezpečení systému Windows XP (KB2544893-v2)
    Aktualizace zabezpečení systému Windows XP (KB2566454)
    Aktualizace zabezpečení systému Windows XP (KB2570222)
    Aktualizace zabezpečení systému Windows XP (KB2570947)
    Aktualizace zabezpečení systému Windows XP (KB2584146)
    Aktualizace zabezpečení systému Windows XP (KB2585542)
    Aktualizace zabezpečení systému Windows XP (KB2592799)
    Aktualizace zabezpečení systému Windows XP (KB2598479)
    Aktualizace zabezpečení systému Windows XP (KB2603381)
    Aktualizace zabezpečení systému Windows XP (KB2618451)
    Aktualizace zabezpečení systému Windows XP (KB2619339)
    Aktualizace zabezpečení systému Windows XP (KB2620712)
    Aktualizace zabezpečení systému Windows XP (KB2621440)
    Aktualizace zabezpečení systému Windows XP (KB2624667)
    Aktualizace zabezpečení systému Windows XP (KB2631813)
    Aktualizace zabezpečení systému Windows XP (KB2633171)
    Aktualizace zabezpečení systému Windows XP (KB2639417)
    Aktualizace zabezpečení systému Windows XP (KB2641653)
    Aktualizace zabezpečení systému Windows XP (KB2646524)
    Aktualizace zabezpečení systému Windows XP (KB2647518)
    Aktualizace zabezpečení systému Windows XP (KB2653956)
    Aktualizace zabezpečení systému Windows XP (KB2655992)
    Aktualizace zabezpečení systému Windows XP (KB2659262)
    Aktualizace zabezpečení systému Windows XP (KB2660465)
    Aktualizace zabezpečení systému Windows XP (KB2661637)
    Aktualizace zabezpečení systému Windows XP (KB2676562)
    Aktualizace zabezpečení systému Windows XP (KB2685939)
    Aktualizace zabezpečení systému Windows XP (KB2686509)
    Aktualizace zabezpečení systému Windows XP (KB2691442)
    Aktualizace zabezpečení systému Windows XP (KB2695962)
    Aktualizace zabezpečení systému Windows XP (KB2698365)
    Aktualizace zabezpečení systému Windows XP (KB2705219)
    Aktualizace zabezpečení systému Windows XP (KB2707511)
    Aktualizace zabezpečení systému Windows XP (KB2709162)
    Aktualizace zabezpečení systému Windows XP (KB2712808)
    Aktualizace zabezpečení systému Windows XP (KB2718523)
    Aktualizace zabezpečení systému Windows XP (KB2719985)
    Aktualizace zabezpečení systému Windows XP (KB2723135)
    Aktualizace zabezpečení systému Windows XP (KB2724197)
    Aktualizace zabezpečení systému Windows XP (KB2727528)
    Aktualizace zabezpečení systému Windows XP (KB2731847)
    Aktualizace zabezpečení systému Windows XP (KB2753842-v2)
    Aktualizace zabezpečení systému Windows XP (KB2753842)
    Aktualizace zabezpečení systému Windows XP (KB2757638)
    Aktualizace zabezpečení systému Windows XP (KB2758857)
    Aktualizace zabezpečení systému Windows XP (KB2761226)
    Aktualizace zabezpečení systému Windows XP (KB2770660)
    Aktualizace zabezpečení systému Windows XP (KB2779030)
    Aktualizace zabezpečení systému Windows XP (KB923561)
    Aktualizace zabezpečení systému Windows XP (KB938464-v2)
    Aktualizace zabezpečení systému Windows XP (KB938464)
    Aktualizace zabezpečení systému Windows XP (KB946648)
    Aktualizace zabezpečení systému Windows XP (KB950759)
    Aktualizace zabezpečení systému Windows XP (KB950760)
    Aktualizace zabezpečení systému Windows XP (KB950762)
    Aktualizace zabezpečení systému Windows XP (KB950974)
    Aktualizace zabezpečení systému Windows XP (KB951066)
    Aktualizace zabezpečení systému Windows XP (KB951376-v2)
    Aktualizace zabezpečení systému Windows XP (KB951376)
    Aktualizace zabezpečení systému Windows XP (KB951698)
    Aktualizace zabezpečení systému Windows XP (KB951748)
    Aktualizace zabezpečení systému Windows XP (KB952004)
    Aktualizace zabezpečení systému Windows XP (KB952954)
    Aktualizace zabezpečení systému Windows XP (KB953155)
    Aktualizace zabezpečení systému Windows XP (KB953838)
    Aktualizace zabezpečení systému Windows XP (KB953839)
    Aktualizace zabezpečení systému Windows XP (KB954211)
    Aktualizace zabezpečení systému Windows XP (KB954459)
    Aktualizace zabezpečení systému Windows XP (KB954600)
    Aktualizace zabezpečení systému Windows XP (KB955069)
    Aktualizace zabezpečení systému Windows XP (KB956390)
    Aktualizace zabezpečení systému Windows XP (KB956391)
    Aktualizace zabezpečení systému Windows XP (KB956572)
    Aktualizace zabezpečení systému Windows XP (KB956744)
    Aktualizace zabezpečení systému Windows XP (KB956802)
    Aktualizace zabezpečení systému Windows XP (KB956803)
    Aktualizace zabezpečení systému Windows XP (KB956841)
    Aktualizace zabezpečení systému Windows XP (KB956844)
    Aktualizace zabezpečení systému Windows XP (KB957095)
    Aktualizace zabezpečení systému Windows XP (KB957097)
    Aktualizace zabezpečení systému Windows XP (KB958215)
    Aktualizace zabezpečení systému Windows XP (KB958644)
    Aktualizace zabezpečení systému Windows XP (KB958687)
    Aktualizace zabezpečení systému Windows XP (KB958690)
    Aktualizace zabezpečení systému Windows XP (KB958869)
    Aktualizace zabezpečení systému Windows XP (KB959426)
    Aktualizace zabezpečení systému Windows XP (KB960225)
    Aktualizace zabezpečení systému Windows XP (KB960714)
    Aktualizace zabezpečení systému Windows XP (KB960715)
    Aktualizace zabezpečení systému Windows XP (KB960803)
    Aktualizace zabezpečení systému Windows XP (KB960859)
    Aktualizace zabezpečení systému Windows XP (KB961371-v2)
    Aktualizace zabezpečení systému Windows XP (KB961371)
    Aktualizace zabezpečení systému Windows XP (KB961373)
    Aktualizace zabezpečení systému Windows XP (KB961501)
    Aktualizace zabezpečení systému Windows XP (KB963027)
    Aktualizace zabezpečení systému Windows XP (KB968537)
    Aktualizace zabezpečení systému Windows XP (KB969059)
    Aktualizace zabezpečení systému Windows XP (KB969947)
    Aktualizace zabezpečení systému Windows XP (KB970430)
    Aktualizace zabezpečení systému Windows XP (KB971468)
    Aktualizace zabezpečení systému Windows XP (KB971486)
    Aktualizace zabezpečení systému Windows XP (KB971557)
    Aktualizace zabezpečení systému Windows XP (KB971633)
    Aktualizace zabezpečení systému Windows XP (KB971657)
    Aktualizace zabezpečení systému Windows XP (KB971961)
    Aktualizace zabezpečení systému Windows XP (KB972270)
    Aktualizace zabezpečení systému Windows XP (KB973346)
    Aktualizace zabezpečení systému Windows XP (KB973507)
    Aktualizace zabezpečení systému Windows XP (KB973525)
    Aktualizace zabezpečení systému Windows XP (KB973869)
    Aktualizace zabezpečení systému Windows XP (KB973904)
    Aktualizace zabezpečení systému Windows XP (KB974112)
    Aktualizace zabezpečení systému Windows XP (KB974318)
    Aktualizace zabezpečení systému Windows XP (KB974392)
    Aktualizace zabezpečení systému Windows XP (KB974455)
    Aktualizace zabezpečení systému Windows XP (KB974571)
    Aktualizace zabezpečení systému Windows XP (KB975025)
    Aktualizace zabezpečení systému Windows XP (KB975254)
    Aktualizace zabezpečení systému Windows XP (KB975467)
    Aktualizace zabezpečení systému Windows XP (KB975560)
    Aktualizace zabezpečení systému Windows XP (KB975713)
    Aktualizace zabezpečení systému Windows XP (KB976323)
    Aktualizace zabezpečení systému Windows XP (KB976325)
    Aktualizace zabezpečení systému Windows XP (KB977165)
    Aktualizace zabezpečení systému Windows XP (KB977816)
    Aktualizace zabezpečení systému Windows XP (KB977914)
    Aktualizace zabezpečení systému Windows XP (KB978037)
    Aktualizace zabezpečení systému Windows XP (KB978251)
    Aktualizace zabezpečení systému Windows XP (KB978262)
    Aktualizace zabezpečení systému Windows XP (KB978338)
    Aktualizace zabezpečení systému Windows XP (KB978542)
    Aktualizace zabezpečení systému Windows XP (KB978601)
    Aktualizace zabezpečení systému Windows XP (KB978706)
    Aktualizace zabezpečení systému Windows XP (KB979309)
    Aktualizace zabezpečení systému Windows XP (KB979482)
    Aktualizace zabezpečení systému Windows XP (KB979559)
    Aktualizace zabezpečení systému Windows XP (KB979683)
    Aktualizace zabezpečení systému Windows XP (KB979687)
    Aktualizace zabezpečení systému Windows XP (KB980195)
    Aktualizace zabezpečení systému Windows XP (KB980218)
    Aktualizace zabezpečení systému Windows XP (KB980232)
    Aktualizace zabezpečení systému Windows XP (KB980436)
    Aktualizace zabezpečení systému Windows XP (KB981322)
    Aktualizace zabezpečení systému Windows XP (KB981997)
    Aktualizace zabezpečení systému Windows XP (KB982132)
    Aktualizace zabezpečení systému Windows XP (KB982665)
    Apple Application Support
    Apple Software Update
    Asistent pro přihlášení ke službě Windows Live
    Asus ACPI Driver
    ASUS VIBE
    ASUSUpdate for Eee PC
    Atheros Client Installation Program
    Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver
    CapsHook
    CCleaner
    Data Sync
    DivX Setup
    ebi.BookReader3J
    Eee Docking 1.3.12.0
    EeeSplendid
    EzMessenger
    FontResizer
    Google Chrome
    Google Update Helper
    Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
    Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
    Hotfix for Windows Media Format 11 SDK (KB929399)
    Hotfix for Windows XP (KB954550-v5)
    Hotfix for Windows XP (KB976002-v5)
    Intel(R) Graphics Media Accelerator Driver
    Java 7 Update 13
    Java Auto Updater
    JavaFX 2.0.2
    Junk Mail filter update
    LibreOffice 3.4
    LibreOffice 3.4 Help Pack (Czech)
    LiveUpdate
    Malwarebytes Anti-Malware verze 1.70.0.1100
    Microsoft .NET Framework 1.1
    Microsoft .NET Framework 1.1 Security Update (KB2698023)
    Microsoft .NET Framework 1.1 Security Update (KB2742597)
    Microsoft .NET Framework 2.0 Service Pack 2
    Microsoft .NET Framework 3.0 Service Pack 2
    Microsoft .NET Framework 3.5 SP1
    Microsoft Antimalware Service CS-CZ Language Pack
    Microsoft Application Error Reporting
    Microsoft Compression Client Pack 1.0 for Windows XP
    Microsoft Choice Guard
    Microsoft Kernel-Mode Driver Framework Feature Pack 1.7
    Microsoft Kernel-Mode Driver Framework Feature Pack 1.9
    Microsoft Security Client
    Microsoft Security Client CS-CZ Language Pack
    Microsoft Security Essentials
    Microsoft Silverlight
    Microsoft SQL Server 2005 Compact Edition [ENU]
    Microsoft Sync Framework Runtime Native v1.0 (x86)
    Microsoft Sync Framework Services Native v1.0 (x86)
    Microsoft User-Mode Driver Framework Feature Pack 1.0
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
    Microsoft Works
    MSVCRT
    Nástroj pro odesílání služby Windows Live
    Opera 12.12
    Oprava hotfix aplikace Windows Media Player 11 (KB939683)
    Oprava Hotfix systému Windows XP (KB2633952)
    Oprava Hotfix systému Windows XP (KB2756822)
    Oprava Hotfix systému Windows XP (KB2779562)
    Oprava Hotfix systému Windows XP (KB952287)
    Oprava Hotfix systému Windows XP (KB961118)
    Oprava Hotfix systému Windows XP (KB969084)
    Oprava Hotfix systému Windows XP (KB970653-v3)
    Oprava Hotfix systému Windows XP (KB976098-v2)
    Oprava Hotfix systému Windows XP (KB979306)
    Oprava Hotfix systému Windows XP (KB981793)
    Psaní všemi deseti 1.5
    Ralink RT2860 Wireless LAN Card
    Realtek High Definition Audio Driver
    River Past DirectShow Detective
    Security Update for Microsoft .NET Framework 3.5 SP1 (KB2604111)
    Security Update for Microsoft .NET Framework 3.5 SP1 (KB2657424)
    Security Update for Microsoft .NET Framework 3.5 SP1 (KB2736416)
    Segoe UI
    Skype™ 5.10
    Software Bluetooth WIDCOMM
    Spybot - Search & Destroy
    Super Hybrid Engine
    Synaptics Pointing Device Driver
    TeamViewer 7
    Unlocker 1.9.1
    Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
    USB2.0 UVC VGA WebCam
    VC80CRTRedist - 8.0.50727.6195
    WebFldrs XP
    Windows Genuine Advantage Notifications (KB905474)
    Windows Internet Explorer 8
    Windows Live Communications Platform
    Windows Live Essentials
    Windows Live Fotogalerie
    Windows Live Mail
    Windows Live Messenger
    Windows Live Sync
    Windows Live Toolbar
    Windows Live Writer
    Windows Live Zabezpečení rodiny
    Windows Management Framework Core
    Windows Media Format 11 runtime
    Windows Media Player 11
    Windows PowerShell(TM) 1.0
    .
    ==== Event Viewer Messages From Past Week ========
    .
    5.2.2013 5:02:01, Informace: Windows File Protection [64017] - Kontrola souborů programem Ochrana souborů systému Windows byla úspěšně dokončena.
    5.2.2013 3:40:05, Informace: Windows File Protection [64016] - Byla zahájena kontrola souborů programem Ochrana souborů systému Windows.
    .
    ==== End Of File ===========================
     
  6. Fandomas

    Fandomas TS Rookie Topic Starter

    # AdwCleaner v2.111 - Logfile created 02/06/2013 at 00:14:54
    # Updated 05/02/2013 by Xplode
    # Operating system : Microsoft Windows XP Service Pack 3 (32 bits)
    # User : Elli - ELISABETHA
    # Boot Mode : Normal
    # Running from : C:\Documents and Settings\Elli\Plocha\adwcleaner.exe
    # Option [Delete]
    ***** [Services] *****
    ***** [Files / Folders] *****
    Folder Deleted : C:\Documents and Settings\All Users\Data aplikací\boost_interprocess
    Folder Deleted : C:\Documents and Settings\Elli\Local Settings\Data aplikací\Ilivid Player
    ***** [Registry] *****
    Key Deleted : HKCU\Software\DataMngr
    Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
    Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{99079A25-328F-4BD4-BE04-00955ACAA0A7}
    Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9D717F81-9148-4F12-8568-69135F087DB0}
    Key Deleted : HKLM\SOFTWARE\Classes\Applications\ilividsetupv1.exe
    Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{99079A25-328F-4BD4-BE04-00955ACAA0A7}
    Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
    Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0FF2AEFF45EEA0A48A4B33C1973B6094
    Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [10]
    ***** [Internet Browsers] *****
    -\\ Internet Explorer v8.0.6001.18702
    [OK] Registry is clean.
    -\\ Google Chrome v24.0.1312.57
    File : C:\Documents and Settings\Elli\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Preferences
    [OK] File is clean.
    -\\ Opera v12.12.1707.0
    File : C:\Documents and Settings\Elli\Data aplikací\Opera\Opera\operaprefs.ini
    [OK] File is clean.
    File : C:\Documents and Settings\Administrator\Data aplikací\Opera\Opera\operaprefs.ini
    [OK] File is clean.
    *************************
    AdwCleaner[S1].txt - [1960 octets] - [06/02/2013 00:14:54]
    ########## EOF - C:\AdwCleaner[S1].txt - [2020 octets] ##########
     
  7. Jay Pfoutz

    Jay Pfoutz Malware Helper Posts: 4,286   +49

    ComboFix scan

    Please download ComboFix[​IMG] by sUBs
    From TechSpot

    Direct Link (alternative)

    Please save the file to your Desktop.

    Important information about ComboFix


    After the download:
    • Close any open browsers.
    • Very Important: Temporarily disable your anti-virus, script blocking and any anti-malware real-time protection before performing a scan. They can interfere with ComboFix or remove some of its embedded files which may cause "unpredictable results". Please visit here if you don't know how.
    • WARNING: Combofix will disconnect your machine from the Internet as soon as it starts
    • Please do not attempt to re-connect your machine back to the Internet until ComboFix has completely finished.
    • If there is no Internet connection after running ComboFix, then restart your computer to restore back your connection.
    Running ComboFix:
    • Double click on ComboFix.exe & follow the prompts.
    • When ComboFix finishes, it will produce a report for you.
    • Please post the report, which will launch or be found at "C:\Combo-Fix.txt" in your next reply.
    Troubleshooting ComboFix

    Safe Mode:

    If you still cannot get ComboFix to run, try booting into Safe Mode, and run it there.

    (To boot into Safe Mode, tap F8 after BIOS, and just before the Windows
    logo appears. A list of options will appear, select "Safe Mode.")

    Re-downloading:

    If this doesn't work either, try the same method (above method), but try to download it again, except name
    ComboFix.exe to iexplore.exe, explorer.exe, or winlogon.exe.

    Malware is known for blocking all "user" processes, except for its whitelist of system important processes such as iexplore.exe, explorer.exe, winlogon.exe.

    NOTE: If you encounter a message "illegal operation attempted on registry key that has been marked for deletion" and no programs will run - please just reboot and that will resolve that error.


    TDSSKiller Scan

    Please download and run TDSSKiller to your desktop as outlined below:

    Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters.

    For Windows XP, double-click to start.
    For Vista or Windows 7, do a right-click on the program, select Run as Administrator to start, & when prompted Allow to run.

    [​IMG]

    -------------------------

    Check the boxes beside Verify Driver Digital Signature and Detect TDLFS file system, then click OK.

    [​IMG]

    ------------------------

    Click the Start Scan button.

    [​IMG]

    -----------------------

    If a suspicious object is detected, the default action will be Skip, click on Continue
    If you get the warning about a file UnsignedFile.Multi.Generic or LockedFile.Multi.Generic please choose
    Skip and click on Continue


    [​IMG]

    ----------------------

    If malicious objects are found, they will show in the Scan results and offer three (3) options.

    Ensure Cure is selected, then click Continue => Reboot now to finish the cleaning process.
    Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.


    [​IMG]


    --------------------

    A report will be created in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste its contents on your next reply.

    Sometimes these logs can be very large, in that case please attach it.

    -------------------

    Here's a summary of what to do if you would like to print it out:

    If a suspicious object is detected, the default action will be Skip, click on Continue
    If you get the warning about a file UnsignedFile.Multi.Generic or LockedFile.Multi.Generic please choose
    Skip and click on Continue

    If malicious objects are found, they will show in the Scan results and offer three (3) options.

    Ensure Cure is selected, then click Continue => Reboot now to finish the cleaning process.
    Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.


    OTL Quick Scan

    Please download OTL by OldTimer to your Desktop.
    • Close all windows and double click OTL.exe.
    • Click Quick Scan button and let the program run uninterrupted.
    • It will produce a log for you called OTL.txt, please post it in your next reply.
    • You may need to use two posts to get it all.
     
  8. Fandomas

    Fandomas TS Rookie Topic Starter

    ComboFix 13-02-03.03 - Elli 06.02.2013 17:25:30.1.2 - x86
    Microsoft Windows XP Home Edition 5.1.2600.3.1250.420.1029.18.1014.414 [GMT 1:00]
    Spuštěný z: c:\documents and settings\Elli\Dokumenty\Downloads\ComboFix.exe
    AV: Microsoft Security Essentials *Disabled/Updated* {EDB4FA23-53B8-4AFA-8C5D-99752CCA7095}
    .
    .
    ((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    c:\documents and settings\All Users\FullRemove.exe
    c:\documents and settings\Elli\6438640620394286720310355
    c:\documents and settings\Elli\68956435567898775
    c:\documents and settings\Elli\75439967573920484
    c:\documents and settings\Elli\76968780866536342
    c:\windows\system32\Packet.dll
    c:\windows\system32\service
    c:\windows\system32\service\12052010_TIS17_PccScan.log
    c:\windows\system32\Thumbs.db
    c:\windows\system32\URTTemp
    c:\windows\system32\URTTemp\fusion.dll
    c:\windows\system32\URTTemp\mscoree.dll
    c:\windows\system32\URTTemp\mscoree.dll.local
    c:\windows\system32\URTTemp\mscorsn.dll
    c:\windows\system32\URTTemp\mscorwks.dll
    c:\windows\system32\URTTemp\msvcr71.dll
    c:\windows\system32\URTTemp\regtlib.exe
    c:\windows\system32\wpcap.dll
    .
    .
    ((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    -------\Legacy_NPF
    -------\Service_NPF
    .
    .
    ((((((((((((((((((((((((( Soubory vytvořené od 2013-01-06 do 2013-02-06 )))))))))))))))))))))))))))))))
    .
    .
    2013-02-05 20:01 . 2008-04-14 07:529728------w-c:\windows\system32\ativdaxx.ax
    2013-02-05 19:55 . 2008-04-14 07:514255------w-c:\windows\system32\drivers\adv01nt5.dll
    2013-02-05 19:53 . 2006-12-28 23:3119569----a-w-c:\windows\000001_.tmp
    2013-02-05 19:53 . 2013-02-05 19:53--------d-----w-c:\windows\EHome
    2013-02-05 19:06 . 2013-02-05 19:06--------d-----w-C:\TDSSKiller_Quarantine
    2013-02-05 04:01 . 2008-04-14 07:52116224-c--a-w-c:\windows\system32\dllcache\xrxwiadr.dll
    2013-02-05 04:01 . 2001-10-24 11:2523040-c--a-w-c:\windows\system32\dllcache\xrxwbtmp.dll
    2013-02-05 04:01 . 2008-04-14 07:5218944-c--a-w-c:\windows\system32\dllcache\xrxscnui.dll
    2013-02-05 04:01 . 2001-10-24 11:2527648-c--a-w-c:\windows\system32\dllcache\xrxftplt.exe
    2013-02-05 04:01 . 2001-10-24 11:254608-c--a-w-c:\windows\system32\dllcache\xrxflnch.exe
    2013-02-05 04:01 . 2001-08-18 05:3799865-c--a-w-c:\windows\system32\dllcache\xlog.exe
    2013-02-05 04:01 . 2001-08-17 19:1116970-c--a-w-c:\windows\system32\dllcache\xem336n5.sys
    2013-02-05 04:01 . 2008-04-13 21:0419455-c--a-w-c:\windows\system32\dllcache\wvchntxx.sys
    2013-02-05 04:00 . 2008-04-13 21:0412063-c--a-w-c:\windows\system32\dllcache\wsiintxx.sys
    2013-02-05 04:00 . 2008-04-14 07:528192-c--a-w-c:\windows\system32\dllcache\wshirda.dll
    2013-02-05 03:59 . 2008-04-13 21:05154624-c--a-w-c:\windows\system32\dllcache\wlluc48.sys
    2013-02-05 03:58 . 2001-10-24 10:5734890-c--a-w-c:\windows\system32\dllcache\wlandrv2.sys
    2013-02-05 03:58 . 2001-08-17 20:28771581-c--a-w-c:\windows\system32\dllcache\winacisa.sys
    2013-02-05 03:58 . 2001-10-24 11:2554272-c--a-w-c:\windows\system32\dllcache\wiamsmud.dll
    2013-02-05 03:57 . 2001-10-24 11:2587040-c--a-w-c:\windows\system32\dllcache\wiafbdrv.dll
    2013-02-05 03:57 . 2001-08-17 20:28701386-c--a-w-c:\windows\system32\dllcache\wdhaalba.sys
    2013-02-05 03:57 . 2008-04-13 21:0423615-c--a-w-c:\windows\system32\dllcache\wch7xxnt.sys
    2013-02-05 03:57 . 2008-04-14 06:4331744-c--a-w-c:\windows\system32\dllcache\wceusbsh.sys
    2013-02-05 03:57 . 2001-08-17 19:1035871-c--a-w-c:\windows\system32\dllcache\wbfirdma.sys
    2013-02-05 03:57 . 2008-04-13 21:0425471-c--a-w-c:\windows\system32\dllcache\watv10nt.sys
    2013-02-05 03:57 . 2008-04-13 21:0422271-c--a-w-c:\windows\system32\dllcache\watv06nt.sys
    2013-02-05 03:57 . 2008-04-13 21:0433599-c--a-w-c:\windows\system32\dllcache\watv04nt.sys
    2013-02-05 03:55 . 2001-08-17 20:28397502-c--a-w-c:\windows\system32\dllcache\vpctcom.sys
    2013-02-05 03:55 . 2001-08-17 20:28604253-c--a-w-c:\windows\system32\dllcache\vmodem.sys
    2013-02-05 03:55 . 2001-08-17 19:14249402-c--a-w-c:\windows\system32\dllcache\vinwm.sys
    2013-02-05 03:55 . 2001-08-17 20:4924576-c--a-w-c:\windows\system32\dllcache\viairda.sys
    2013-02-05 03:55 . 2008-04-13 23:105376-c--a-w-c:\windows\system32\dllcache\viaide.sys
    2013-02-05 03:55 . 2008-04-13 23:0642240-c--a-w-c:\windows\system32\dllcache\viaagp.sys
    2013-02-05 03:54 . 2008-04-14 07:5211325-c--a-w-c:\windows\system32\dllcache\vchnt5.dll
    2013-02-05 03:54 . 2001-08-17 20:28687999-c--a-w-c:\windows\system32\dllcache\usrwdxjs.sys
    2013-02-05 03:54 . 2001-08-17 20:28765884-c--a-w-c:\windows\system32\dllcache\usrti.sys
    2013-02-05 03:54 . 2001-08-17 20:28113762-c--a-w-c:\windows\system32\dllcache\usrpda.sys
    2013-02-05 03:54 . 2001-08-17 20:287556-c--a-w-c:\windows\system32\dllcache\usroslba.sys
    2013-02-05 03:54 . 2001-08-17 20:28224802-c--a-w-c:\windows\system32\dllcache\usr1807a.sys
    2013-02-05 03:53 . 2001-08-17 20:28794399-c--a-w-c:\windows\system32\dllcache\usr1806v.sys
    2013-02-05 03:53 . 2001-08-17 20:28793598-c--a-w-c:\windows\system32\dllcache\usr1806.sys
    2013-02-05 03:53 . 2001-08-17 20:28794654-c--a-w-c:\windows\system32\dllcache\usr1801.sys
    2013-02-05 03:53 . 2008-04-13 23:1526112-c--a-w-c:\windows\system32\dllcache\usbser.sys
    2013-02-05 03:53 . 2008-04-13 23:1515104-c--a-w-c:\windows\system32\dllcache\usbscan.sys
    2013-02-05 03:53 . 2008-04-13 23:1725856-c--a-w-c:\windows\system32\dllcache\usbprint.sys
    2013-02-05 03:53 . 2008-04-13 23:1517152-c--a-w-c:\windows\system32\dllcache\usbohci.sys
    2013-02-05 03:53 . 2008-04-13 23:1560032-c--a-w-c:\windows\system32\dllcache\usbaudio.sys
    2013-02-05 03:53 . 2008-04-13 23:2612800-c--a-w-c:\windows\system32\dllcache\usb8023x.sys
    2013-02-05 03:53 . 2008-04-14 06:3932384-c--a-w-c:\windows\system32\dllcache\usb101et.sys
    2013-02-05 03:52 . 2001-10-24 11:2594720-c--a-w-c:\windows\system32\dllcache\umaxud32.dll
    2013-02-05 03:52 . 2001-10-24 11:2528160-c--a-w-c:\windows\system32\dllcache\umaxu40.dll
    2013-02-05 03:52 . 2001-10-24 11:2526624-c--a-w-c:\windows\system32\dllcache\umaxu22.dll
    2013-02-05 03:52 . 2001-10-24 11:2569632-c--a-w-c:\windows\system32\dllcache\umaxu12.dll
    2013-02-05 03:52 . 2001-10-24 11:2550688-c--a-w-c:\windows\system32\dllcache\umaxscan.dll
    2013-02-05 03:52 . 2001-08-17 20:5822912-c--a-w-c:\windows\system32\dllcache\umaxpcls.sys
    2013-02-05 03:52 . 2001-10-24 11:2550176-c--a-w-c:\windows\system32\dllcache\umaxp60.dll
    2013-02-05 03:51 . 2001-10-24 11:2547616-c--a-w-c:\windows\system32\dllcache\umaxcam.dll
    2013-02-05 03:51 . 2001-10-24 11:25212480-c--a-w-c:\windows\system32\dllcache\um54scan.dll
    2013-02-05 03:51 . 2001-10-24 11:25216576-c--a-w-c:\windows\system32\dllcache\um34scan.dll
    2013-02-05 03:51 . 2001-08-17 20:5236736-c--a-w-c:\windows\system32\dllcache\ultra.sys
    2013-02-05 03:51 . 2008-04-13 23:0644672-c--a-w-c:\windows\system32\dllcache\uagp35.sys
    2013-02-05 03:51 . 2001-08-17 20:4811520-c--a-w-c:\windows\system32\dllcache\twotrack.sys
    2013-02-05 03:51 . 2001-08-17 19:51166784-c--a-w-c:\windows\system32\dllcache\tridxpm.sys
    2013-02-05 03:50 . 2001-10-24 11:25525568-c--a-w-c:\windows\system32\dllcache\tridxp.dll
    2013-02-05 03:50 . 2001-08-17 19:51159232-c--a-w-c:\windows\system32\dllcache\tridkbm.sys
    2013-02-05 03:50 . 2001-10-24 11:24440576-c--a-w-c:\windows\system32\dllcache\tridkb.dll
    2013-02-05 03:50 . 2001-08-17 19:51222336-c--a-w-c:\windows\system32\dllcache\trid3dm.sys
    2013-02-05 03:50 . 2001-10-24 11:24315520-c--a-w-c:\windows\system32\dllcache\trid3d.dll
    2013-02-05 03:50 . 2001-08-17 19:1234375-c--a-w-c:\windows\system32\dllcache\tpro4.sys
    2013-02-05 03:50 . 2001-10-24 11:2443008-c--a-w-c:\windows\system32\dllcache\tp4res.dll
    2013-02-05 03:50 . 2008-04-14 07:5282944-c--a-w-c:\windows\system32\dllcache\tp4mon.exe
    2013-02-05 03:50 . 2001-10-24 11:2531744-c--a-w-c:\windows\system32\dllcache\tp4.dll
    2013-02-05 03:49 . 2001-10-24 10:484992-c--a-w-c:\windows\system32\dllcache\toside.sys
    2013-02-05 03:49 . 2001-08-17 21:02230912-c--a-w-c:\windows\system32\dllcache\tosdvd03.sys
    2013-02-05 03:49 . 2001-08-17 21:01241664-c--a-w-c:\windows\system32\dllcache\tosdvd02.sys
    2013-02-05 03:49 . 2001-08-17 19:1028232-c--a-w-c:\windows\system32\dllcache\tos4mo.sys
    2013-02-05 03:49 . 2001-08-17 19:14123995-c--a-w-c:\windows\system32\dllcache\tjisdn.sys
    2013-02-05 03:49 . 2001-08-17 19:51138528-c--a-w-c:\windows\system32\dllcache\tgiulnt5.sys
    2013-02-05 03:49 . 2001-10-24 11:2481408-c--a-w-c:\windows\system32\dllcache\tgiul50.dll
    2013-02-05 03:48 . 2008-04-13 23:10149376-c--a-w-c:\windows\system32\dllcache\tffsport.sys
    2013-02-05 03:48 . 2001-08-17 19:1317129-c--a-w-c:\windows\system32\dllcache\tdkcd31.sys
    2013-02-05 03:48 . 2001-08-17 19:1337961-c--a-w-c:\windows\system32\dllcache\tdk100b.sys
    2013-02-05 03:48 . 2001-08-17 20:4930464-c--a-w-c:\windows\system32\dllcache\tbatm155.sys
    2013-02-05 03:48 . 2001-08-17 20:527040-c--a-w-c:\windows\system32\dllcache\tandqic.sys
    2013-02-05 03:48 . 2001-08-17 19:5036640-c--a-w-c:\windows\system32\dllcache\t2r4mini.sys
    2013-02-05 03:47 . 2001-10-24 11:24172768-c--a-w-c:\windows\system32\dllcache\t2r4disp.dll
    2013-02-05 03:47 . 2001-08-17 21:0732640-c--a-w-c:\windows\system32\dllcache\symc8xx.sys
    2013-02-05 03:47 . 2001-08-17 21:0716256-c--a-w-c:\windows\system32\dllcache\symc810.sys
    2013-02-05 03:47 . 2001-08-17 21:0730688-c--a-w-c:\windows\system32\dllcache\sym_u3.sys
    2013-02-05 03:47 . 2001-08-17 21:0728384-c--a-w-c:\windows\system32\dllcache\sym_hi.sys
    2013-02-05 03:47 . 2001-10-24 11:2594293-c--a-w-c:\windows\system32\dllcache\sxports.dll
    2013-02-05 03:46 . 2001-08-17 20:50103936-c--a-w-c:\windows\system32\dllcache\sx.sys
    2013-02-05 03:46 . 2001-08-17 21:023968-c--a-w-c:\windows\system32\dllcache\swusbflt.sys
    2013-02-05 03:46 . 2001-10-24 11:2510240-c--a-w-c:\windows\system32\dllcache\swpidflt.dll
    2013-02-05 03:46 . 2001-10-24 11:2510240-c--a-w-c:\windows\system32\dllcache\swpdflt2.dll
    2013-02-05 03:46 . 2001-10-24 11:2553760-c--a-w-c:\windows\system32\dllcache\sw_wheel.dll
    2013-02-05 03:46 . 2001-10-24 11:2541472-c--a-w-c:\windows\system32\dllcache\sw_effct.dll
    2013-02-05 03:46 . 2001-10-24 11:25155648-c--a-w-c:\windows\system32\dllcache\stlnprop.dll
    2013-02-05 03:46 . 2001-10-24 11:2553248-c--a-w-c:\windows\system32\dllcache\stlncoin.dll
    2013-02-05 03:46 . 2001-10-24 10:43285792-c--a-w-c:\windows\system32\dllcache\stlnata.sys
    2013-02-05 03:45 . 2001-10-24 10:4317024-c--a-w-c:\windows\system32\dllcache\stcusb.sys
    2013-02-05 03:45 . 2001-08-17 19:1148736-c--a-w-c:\windows\system32\dllcache\srwlnd5.sys
    2013-02-05 03:45 . 2001-10-24 11:2599328-c--a-w-c:\windows\system32\dllcache\srusd.dll
    2013-02-05 03:45 . 2001-10-24 11:2524660-c--a-w-c:\windows\system32\dllcache\spxupchk.dll
    2013-02-05 03:44 . 2001-08-17 20:5161824-c--a-w-c:\windows\system32\dllcache\speed.sys
    2013-02-05 03:44 . 2001-10-24 11:25106584-c--a-w-c:\windows\system32\dllcache\spdports.dll
    2013-02-05 03:44 . 2001-08-17 21:0719072-c--a-w-c:\windows\system32\dllcache\sparrow.sys
    2013-02-05 03:44 . 2001-08-17 20:567552-c--a-w-c:\windows\system32\dllcache\sonypvu1.sys
    2013-02-05 03:44 . 2001-08-17 19:5137040-c--a-w-c:\windows\system32\dllcache\sonypi.sys
    2013-02-05 03:44 . 2001-10-24 11:25114688-c--a-w-c:\windows\system32\dllcache\sonypi.dll
    2013-02-05 03:44 . 2001-08-17 19:5120752-c--a-w-c:\windows\system32\dllcache\sonync.sys
    2013-02-05 03:43 . 2001-08-17 20:539600-c--a-w-c:\windows\system32\dllcache\sonymc.sys
    2013-02-05 03:43 . 2008-04-13 23:107552-c--a-w-c:\windows\system32\dllcache\sonyait.sys
    2013-02-05 03:43 . 2001-08-17 20:537040-c--a-w-c:\windows\system32\dllcache\snyaitmc.sys
    2013-02-05 03:43 . 2001-08-17 19:5158368-c--a-w-c:\windows\system32\dllcache\smiminib.sys
    2013-02-05 03:43 . 2001-10-24 11:24147200-c--a-w-c:\windows\system32\dllcache\smidispb.dll
    2013-02-05 03:42 . 2001-08-17 19:1225034-c--a-w-c:\windows\system32\dllcache\smcpwr2n.sys
    2013-02-05 03:42 . 2001-10-24 11:0435913-c--a-w-c:\windows\system32\dllcache\smcirda.sys
    2013-02-05 03:42 . 2001-08-17 19:1224576-c--a-w-c:\windows\system32\dllcache\smc8000n.sys
    2013-02-05 03:42 . 2001-08-17 20:576784-c--a-w-c:\windows\system32\dllcache\smbhc.sys
    2013-02-05 03:42 . 2008-04-13 23:066912-c--a-w-c:\windows\system32\dllcache\smbclass.sys
    2013-02-05 03:42 . 2008-04-13 23:0616000-c--a-w-c:\windows\system32\dllcache\smbbatt.sys
    2013-02-05 03:42 . 2008-04-13 23:065888-c--a-w-c:\windows\system32\dllcache\smbali.sys
    2013-02-05 03:42 . 2001-10-24 11:2545568-c--a-w-c:\windows\system32\dllcache\smb3w.dll
    2013-02-05 03:42 . 2001-10-24 11:2533792-c--a-w-c:\windows\system32\dllcache\smb0w.dll
    .
    .
    (((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
    .
    2013-02-05 19:07 . 2008-04-14 07:35188288----a-w-c:\windows\system32\drivers\acpi.sys
    2013-02-04 20:51 . 2012-01-27 11:06861088----a-w-c:\windows\system32\npdeployJava1.dll
    2013-02-04 20:51 . 2012-01-27 11:06782240----a-w-c:\windows\system32\deployJava1.dll
    2013-01-17 00:28 . 2012-01-27 10:06232336------w-c:\windows\system32\MpSigStub.exe
    2012-12-16 12:23 . 2009-12-23 18:07290560----a-w-c:\windows\system32\atmfd.dll
    2012-11-13 11:55 . 2009-12-23 18:071866368----a-w-c:\windows\system32\win32k.sys
    .
    .
    (((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    *Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
    REGEDIT4
    .
    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "Skype"="c:\program files\Skype\Phone\Skype.exe" [2012-07-13 17418928]
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "IgfxTray"="c:\windows\system32\igfxtray.exe" [2009-09-28 141336]
    "HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2009-09-28 173592]
    "LiveUpdate"="c:\program files\Asus\LiveUpdate\LiveUpdate.exe" [2010-01-29 751592]
    "SynAsusAcpi"="c:\program files\Synaptics\SynTP\SynAsusAcpi.exe" [2009-11-19 83240]
    "CapsHook"="c:\program files\EeePC\CapsHook\CapsHook.exe" [2010-05-28 445344]
    "RTHDCPL"="RTHDCPL.EXE" [2010-04-27 19523616]
    "AsusTray"="c:\program files\EeePC\ACPI\AsTray.exe" [2009-06-26 118784]
    "AsusEPCMonitor"="c:\program files\EeePC\ACPI\AsEPCMon.exe" [2009-05-08 98304]
    "AsusACPIServer"="c:\program files\EeePC\ACPI\AsAcpiSvr.exe" [2010-05-17 1246632]
    "SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2009-11-19 1594664]
    "UnlockerAssistant"="c:\program files\Unlocker\UnlockerAssistant.exe" [2010-07-04 17408]
    "DivXUpdate"="c:\program files\DivX\DivX Update\DivXUpdate.exe" [2011-07-28 1259376]
    "Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-12-03 946352]
    "APSDaemon"="c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-02-20 59240]
    "SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2012-07-03 252848]
    "MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2012-09-12 947176]
    "SDTray"="c:\program files\Spybot - Search & Destroy 2\SDTray.exe" [2012-11-13 3825176]
    .
    [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
    "CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
    "DWQueuedReporting"="c:\progra~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" [2008-11-04 435096]
    .
    c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\
    Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2009-7-23 607584]
    SuperHybridEngine.lnk - c:\program files\ASUS\EeePC\Super Hybrid Engine\SuperHybridEngine.exe [2010-3-18 385024]
    .
    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
    @="Service"
    .
    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
    @="Driver"
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IMJPMIG8.1]
    2008-04-14 12:00208952----a-w-c:\windows\ime\imjp8_1\imjpmig.exe
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MsnMsgr]
    2009-07-26 23:453883840----a-w-c:\program files\Windows Live\Messenger\msnmsgr.exe
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSPY2002]
    2008-04-14 12:0059392----a-w-c:\windows\system32\IME\PINTLGNT\IMSCINST.EXE
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Persistence]
    2009-09-28 13:59141336----a-w-c:\windows\system32\igfxpers.exe
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PHIME2002A]
    2008-04-14 12:00455168----a-w-c:\windows\system32\IME\TINTLGNT\TINTSETP.EXE
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PHIME2002ASync]
    2008-04-14 12:00455168----a-w-c:\windows\system32\IME\TINTLGNT\TINTSETP.EXE
    .
    [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
    "%windir%\\system32\\sessmgr.exe"=
    "%windir%\\Network Diagnostic\\xpnetdiag.exe"=
    .
    R1 AsUpIO;AsUpIO;c:\windows\system32\drivers\AsUpIO.sys [18.3.2010 0:51 11520]
    R2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [4.2.2013 22:09 682344]
    R2 SDScannerService;Spybot-S&D 2 Scanner Service;c:\program files\Spybot - Search & Destroy 2\SDFSSvc.exe [4.2.2013 22:17 1103392]
    R2 SDUpdateService;Spybot-S&D 2 Updating Service;c:\program files\Spybot - Search & Destroy 2\SDUpdSvc.exe [4.2.2013 22:17 1369624]
    R3 L1c;NDIS Miniport Driver for Atheros AR8131/AR8132 PCI-E Ethernet Controller;c:\windows\system32\drivers\l1c51x86.sys [3.11.2009 9:34 44032]
    R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [4.2.2013 22:09 21104]
    R3 rtsuvc;Realtek USB2.0 PC Camera;c:\windows\system32\drivers\rtsuvc.sys [27.1.2012 7:40 73088]
    S2 3259;3259;\??\c:\docume~1\Elli\LOCALS~1\Temp\3259.sys --> c:\docume~1\Elli\LOCALS~1\Temp\3259.sys [?]
    S2 SDWSCService;Spybot-S&D 2 Security Center Service;c:\program files\Spybot - Search & Destroy 2\SDWSCSvc.exe [4.2.2013 22:17 168384]
    S2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [13.7.2012 12:28 160944]
    S3 Ambfilt;Ambfilt;c:\windows\system32\drivers\Ambfilt.sys [27.1.2012 7:39 1691480]
    .
    --- Ostatní služby/ovladače v paměti ---
    .
    *NewlyCreated* - BITS
    *NewlyCreated* - WS2IFSL
    *NewlyCreated* - WUAUSERV
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
    2013-02-04 22:561607120----a-w-c:\program files\Google\Chrome\Application\24.0.1312.57\Installer\chrmstp.exe
    .
    Obsah adresáře 'Naplánované úlohy'
    .
    2013-02-05 c:\windows\Tasks\Adobe Flash Player Updater.job
    - c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-02-04 18:48]
    .
    2012-09-09 c:\windows\Tasks\AppleSoftwareUpdate.job
    - c:\program files\Apple Software Update\SoftwareUpdate.exe [2011-06-01 15:57]
    .
    2013-02-06 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
    - c:\program files\Google\Update\GoogleUpdate.exe [2013-02-04 22:54]
    .
    2013-02-05 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
    - c:\program files\Google\Update\GoogleUpdate.exe [2013-02-04 22:54]
    .
    2013-02-06 c:\windows\Tasks\Microsoft Antimalware Scheduled Scan.job
    - c:\program files\Microsoft Security Client\MpCmdRun.exe [2012-09-12 16:25]
    .
    .
    ------- Doplňkový sken -------
    .
    uStart Page = hxxp://www.google.cz/
    uInternet Connection Wizard,ShellNext = "c:\program files\Outlook Express\msimn.exe" //mailurl:mailto:mk@cvrk.com
    IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~4\Office12\EXCEL.EXE/3000
    IE: Odeslat do zařízení &Bluetooth... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
    IE: Odeslat do zařízení Bluetooth - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
    TCP: DhcpNameServer = 192.168.0.1
    .
    - - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
    .
    HKLM-Run-EeeSplendidAgent - c:\program files\ASUS\EPC\EeeSplendid\AsAgent.exe
    Notify-SDWinLogon - SDWinLogon.dll
    SafeBoot-52829165.sys
    MSConfigStartUp-Adobe Reader Speed Launcher - c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe
    .
    .
    .
    **************************************************************************
    .
    catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
    Rootkit scan 2013-02-06 17:38
    Windows 5.1.2600 Service Pack 3 NTFS
    .
    skenování skrytých procesů ...
    .
    skenování skrytých položek 'Po spuštění' ...
    .
    skenování skrytých souborů ...
    .
    sken byl úspešně dokončen
    skryté soubory: 0
    .
    **************************************************************************
    .
    --------------------- Knihovny navázané na běžící procesy ---------------------
    .
    - - - - - - - > 'explorer.exe'(3612)
    c:\windows\system32\btmmhook.dll
    c:\progra~1\WINDOW~2\wmpband.dll
    c:\windows\system32\webcheck.dll
    c:\windows\system32\WPDShServiceObj.dll
    c:\windows\system32\btncopy.dll
    c:\windows\system32\PortableDeviceTypes.dll
    c:\windows\system32\PortableDeviceApi.dll
    .
    ------------------------ Jiné spuštené procesy ------------------------
    .
    c:\program files\Microsoft Security Client\MsMpEng.exe
    c:\program files\Java\jre7\bin\jqs.exe
    c:\program files\Malwarebytes' Anti-Malware\mbamscheduler.exe
    c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe
    c:\program files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
    c:\windows\system32\wscntfy.exe
    c:\windows\system32\igfxsrvc.exe
    c:\windows\RTHDCPL.EXE
    c:\windows\system32\wbem\wmiapsrv.exe
    c:\windows\system32\igfxext.exe
    .
    **************************************************************************
    .
    Celkový čas: 2013-02-06 17:43:36 - počítač byl restartován
    ComboFix-quarantined-files.txt 2013-02-06 16:43
    .
    Před spuštěním: Volných bajtů: 14 327 296 000
    Po spuštění: Volných bajtů: 14 447 058 944
    .
    WindowsXP-KB310994-SP2-Home-BootDisk-CSY.exe
    [boot loader]
    timeout=2
    default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
    [operating systems]
    c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
    UnsupportedDebug="do not select this" /debug
    multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Home Edition" /noexecute=optin /fastdetect
    .
    - - End Of File - - 5D730364B83FC40C1B93AEB387DC3F36
     
  9. Fandomas

    Fandomas TS Rookie Topic Starter

    17:57:17.0781 3324 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
    17:57:17.0968 3324 ============================================================
    17:57:17.0968 3324 Current date / time: 2013/02/06 17:57:17.0968
    17:57:17.0968 3324 SystemInfo:
    17:57:17.0968 3324
    17:57:17.0968 3324 OS Version: 5.1.2600 ServicePack: 3.0
    17:57:17.0968 3324 Product type: Workstation
    17:57:17.0968 3324 ComputerName: ELISABETHA
    17:57:17.0968 3324 UserName: Elli
    17:57:17.0968 3324 Windows directory: C:\WINDOWS
    17:57:17.0968 3324 System windows directory: C:\WINDOWS
    17:57:17.0968 3324 Processor architecture: Intel x86
    17:57:17.0968 3324 Number of processors: 2
    17:57:17.0968 3324 Page size: 0x1000
    17:57:17.0968 3324 Boot type: Normal boot
    17:57:17.0968 3324 ============================================================
    17:57:20.0375 3324 Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
    17:57:20.0390 3324 ============================================================
    17:57:20.0390 3324 \Device\Harddisk0\DR0:
    17:57:20.0390 3324 MBR partitions:
    17:57:20.0390 3324 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0xA00298D
    17:57:20.0390 3324 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0xA0029CC, BlocksNum 0x7C50132
    17:57:20.0390 3324 ============================================================
    17:57:20.0421 3324 C: <-> \Device\Harddisk0\DR0\Partition1
    17:57:20.0484 3324 D: <-> \Device\Harddisk0\DR0\Partition2
    17:57:20.0484 3324 ============================================================
    17:57:20.0484 3324 Initialize success
    17:57:20.0484 3324 ============================================================
    17:57:51.0078 2852 ============================================================
    17:57:51.0078 2852 Scan started
    17:57:51.0078 2852 Mode: Manual; SigCheck; TDLFS;
    17:57:51.0078 2852 ============================================================
    17:57:51.0328 2852 ================ Scan system memory ========================
    17:57:51.0328 2852 System memory - ok
    17:57:51.0328 2852 ================ Scan services =============================
    17:57:51.0437 2852 3259 - ok
    17:57:51.0671 2852 Abiosdsk - ok
    17:57:51.0687 2852 abp480n5 - ok
    17:57:51.0750 2852 [ 4FE34F1F3126B61FCC6B2043AA8112C9 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
    17:57:53.0140 2852 ACPI - ok
    17:57:53.0171 2852 [ AFDFF022A01F0B11C776F0860C3B282F ] ACPIEC C:\WINDOWS\system32\DRIVERS\ACPIEC.sys
    17:57:53.0390 2852 ACPIEC - ok
    17:57:53.0468 2852 [ 424877CB9D5517F980FF7BACA2EB379D ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
    17:57:53.0515 2852 AdobeFlashPlayerUpdateSvc - ok
    17:57:53.0515 2852 adpu160m - ok
    17:57:53.0562 2852 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
    17:57:53.0796 2852 aec - ok
    17:57:53.0843 2852 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD C:\WINDOWS\System32\drivers\afd.sys
    17:57:53.0921 2852 AFD - ok
    17:57:53.0937 2852 Aha154x - ok
    17:57:53.0953 2852 aic78u2 - ok
    17:57:53.0953 2852 aic78xx - ok
    17:57:54.0000 2852 [ E0A6FA244B8624D78FE5FF6F56A33BAE ] Alerter C:\WINDOWS\system32\alrsvc.dll
    17:57:54.0203 2852 Alerter - ok
    17:57:54.0234 2852 [ 88842DE939A827577BF24243699AC80A ] ALG C:\WINDOWS\System32\alg.exe
    17:57:54.0468 2852 ALG - ok
    17:57:54.0468 2852 AliIde - ok
    17:57:54.0546 2852 [ 267FC636801EDC5AB28E14036349E3BE ] Ambfilt C:\WINDOWS\system32\drivers\Ambfilt.sys
    17:57:54.0750 2852 Ambfilt - ok
    17:57:54.0765 2852 amsint - ok
    17:57:54.0781 2852 AppMgmt - ok
    17:57:54.0875 2852 [ D4E1BFC2B1DDA9272E8144DECA080C3A ] AR5416 C:\WINDOWS\system32\DRIVERS\athw.sys
    17:57:55.0078 2852 AR5416 - ok
    17:57:55.0093 2852 asc - ok
    17:57:55.0109 2852 asc3350p - ok
    17:57:55.0109 2852 asc3550 - ok
    17:57:55.0218 2852 [ 0E5E4957549056E2BF2C49F4F6B601AD ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
    17:57:55.0265 2852 aspnet_state - ok
    17:57:55.0296 2852 [ 561D6B76C045311691B870F6B3F19EAB ] AsUpIO C:\WINDOWS\system32\drivers\AsUpIO.sys
    17:57:55.0328 2852 AsUpIO - ok
    17:57:55.0375 2852 [ 12415A4B61DED200FE9932B47A35FA42 ] AsusACPI C:\WINDOWS\system32\DRIVERS\ASUSACPI.sys
    17:57:55.0453 2852 AsusACPI - ok
    17:57:55.0484 2852 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
    17:57:55.0750 2852 AsyncMac - ok
    17:57:55.0796 2852 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\drivers\atapi.sys
    17:57:56.0046 2852 atapi - ok
    17:57:56.0062 2852 Atdisk - ok
    17:57:56.0093 2852 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
    17:57:56.0312 2852 Atmarpc - ok
    17:57:56.0328 2852 [ DE31B88962A8645DBA5A37B993E7B0F1 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
    17:57:56.0546 2852 AudioSrv - ok
    17:57:56.0593 2852 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
    17:57:56.0812 2852 audstub - ok
    17:57:56.0859 2852 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
    17:57:57.0078 2852 Beep - ok
    17:57:57.0140 2852 [ 19395D092FD85DDC2D9C7729CF5A2AC8 ] BITS C:\WINDOWS\system32\qmgr.dll
    17:57:57.0421 2852 BITS - ok
    17:57:57.0484 2852 [ 89E739BBA5F636297EA5B5F811189E06 ] Browser C:\WINDOWS\System32\browser.dll
    17:57:57.0546 2852 Browser - ok
    17:57:57.0609 2852 [ D6407B9A012205E5754866E145165C29 ] btaudio C:\WINDOWS\system32\drivers\btaudio.sys
    17:57:57.0656 2852 btaudio - ok
    17:57:57.0703 2852 [ 2F9F111D31AA3FBBE5781D829A4524E6 ] BTDriver C:\WINDOWS\system32\DRIVERS\btport.sys
    17:57:57.0718 2852 BTDriver - ok
    17:57:57.0765 2852 [ 9F704F40CD50AE05BBFC492C0342E765 ] BTKRNL C:\WINDOWS\system32\DRIVERS\btkrnl.sys
    17:57:57.0859 2852 BTKRNL - ok
    17:57:57.0937 2852 [ DA2369BD6151E31BE911DB059A95426C ] btwdins C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
    17:57:57.0984 2852 btwdins - ok
    17:57:58.0015 2852 [ 485020A1E1FC5C51A800CA69C618D881 ] BTWDNDIS C:\WINDOWS\system32\DRIVERS\btwdndis.sys
    17:57:58.0046 2852 BTWDNDIS - ok
    17:57:58.0062 2852 [ 1166CB501E1C34750A91600579EFEAB3 ] BTWUSB C:\WINDOWS\system32\Drivers\btwusb.sys
    17:57:58.0093 2852 BTWUSB - ok
    17:57:58.0109 2852 catchme - ok
    17:57:58.0140 2852 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
    17:57:58.0375 2852 cbidf2k - ok
    17:57:58.0390 2852 [ 0BE5AEF125BE881C4F854C554F2B025C ] CCDECODE C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
    17:57:58.0625 2852 CCDECODE - ok
    17:57:58.0625 2852 cd20xrnt - ok
    17:57:58.0671 2852 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
    17:57:58.0890 2852 Cdaudio - ok
    17:57:58.0937 2852 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
    17:57:59.0156 2852 Cdfs - ok
    17:57:59.0218 2852 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
    17:57:59.0437 2852 Cdrom - ok
    17:57:59.0437 2852 Changer - ok
    17:57:59.0468 2852 [ E390DC1D7C461D7D56EC53402F329928 ] CiSvc C:\WINDOWS\system32\cisvc.exe
    17:57:59.0687 2852 CiSvc - ok
    17:57:59.0718 2852 [ 064507A8DFA8C5C7E2FFDDD3E6F424FA ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
    17:57:59.0921 2852 ClipSrv - ok
    17:57:59.0968 2852 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
    17:58:00.0062 2852 clr_optimization_v2.0.50727_32 - ok
    17:58:00.0093 2852 [ 0F6C187D38D98F8DF904589A5F94D411 ] CmBatt C:\WINDOWS\system32\DRIVERS\CmBatt.sys
    17:58:00.0312 2852 CmBatt - ok
    17:58:00.0328 2852 CmdIde - ok
    17:58:00.0343 2852 [ 6E4C9F21F0FAE8940661144F41B13203 ] Compbatt C:\WINDOWS\system32\DRIVERS\compbatt.sys
    17:58:00.0578 2852 Compbatt - ok
    17:58:00.0593 2852 COMSysApp - ok
    17:58:00.0609 2852 Cpqarray - ok
    17:58:00.0812 2852 [ F3AB0933CBD166D271992F411C27CCAF ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
    17:58:01.0046 2852 CryptSvc - ok
    17:58:01.0046 2852 dac2w2k - ok
    17:58:01.0062 2852 dac960nt - ok
    17:58:01.0109 2852 [ BE27674D1CBC3214AEC84B4336A38BBF ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
    17:58:01.0156 2852 DcomLaunch - ok
    17:58:01.0187 2852 [ 8C9A53E285AC5E6704844D0459EC85BE ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
    17:58:01.0390 2852 Dhcp - ok
    17:58:01.0406 2852 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
    17:58:01.0640 2852 Disk - ok
    17:58:01.0656 2852 dmadmin - ok
    17:58:01.0703 2852 [ DB5FD2BF5B07DC54BFCB3664FF05BD7C ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
    17:58:01.0968 2852 dmboot - ok
    17:58:02.0015 2852 [ FFF1720AF51171F32F1EAD5CF71F2810 ] dmio C:\WINDOWS\system32\drivers\dmio.sys
    17:58:02.0234 2852 dmio - ok
    17:58:02.0281 2852 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
    17:58:02.0500 2852 dmload - ok
    17:58:02.0546 2852 [ 2BFEFE9E865655A76982F050450B9591 ] dmserver C:\WINDOWS\System32\dmserver.dll
    17:58:02.0765 2852 dmserver - ok
    17:58:02.0796 2852 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
    17:58:03.0031 2852 DMusic - ok
    17:58:03.0078 2852 [ DFAA406BF19F4EE806A6F8D4342137F7 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
    17:58:03.0109 2852 Dnscache - ok
    17:58:03.0156 2852 [ 4A3E2BD20157A0946751229E92EB8621 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
    17:58:03.0390 2852 Dot3svc - ok
    17:58:03.0390 2852 dpti2o - ok
    17:58:03.0421 2852 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
    17:58:03.0640 2852 drmkaud - ok
    17:58:03.0656 2852 [ 0887D9C2BE8D940778CAD1E3B85F2A41 ] EapHost C:\WINDOWS\System32\eapsvc.dll
    17:58:03.0890 2852 EapHost - ok
    17:58:03.0953 2852 [ A2A4912798F2BE706ABADD3D30800D16 ] ERSvc C:\WINDOWS\System32\ersvc.dll
    17:58:04.0250 2852 ERSvc - ok
    17:58:04.0437 2852 [ 9EF697AF07BB8DD82C3B02CA953A95B7 ] Eventlog C:\WINDOWS\system32\services.exe
    17:58:04.0500 2852 Eventlog - ok
    17:58:04.0546 2852 [ A371F11EF07653591C8DE26AFB13CE7F ] EventSystem C:\WINDOWS\system32\es.dll
    17:58:04.0625 2852 EventSystem - ok
    17:58:04.0671 2852 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
    17:58:04.0984 2852 Fastfat - ok
    17:58:05.0031 2852 [ EE9A2B9EA968A792A053C9D1A86BF870 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
    17:58:05.0125 2852 FastUserSwitchingCompatibility - ok
    17:58:05.0187 2852 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\drivers\Fdc.sys
    17:58:05.0421 2852 Fdc - ok
    17:58:05.0453 2852 [ AC366695A0796560AA37215AD5762AAF ] Fips C:\WINDOWS\system32\drivers\Fips.sys
    17:58:05.0671 2852 Fips - ok
    17:58:05.0703 2852 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\drivers\Flpydisk.sys
    17:58:05.0921 2852 Flpydisk - ok
    17:58:05.0953 2852 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
    17:58:06.0171 2852 FltMgr - ok
    17:58:06.0218 2852 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
    17:58:06.0250 2852 FontCache3.0.0.0 - ok
    17:58:06.0281 2852 [ C6EE3A87FE609D3E1DB9DBD072A248DE ] fssfltr C:\WINDOWS\system32\DRIVERS\fssfltr_tdi.sys
    17:58:06.0312 2852 fssfltr - ok
    17:58:06.0390 2852 [ 206AD9A89BF05DFA1621F1FC7B82592D ] fsssvc C:\Program Files\Windows Live\Family Safety\fsssvc.exe
    17:58:06.0468 2852 fsssvc - ok
    17:58:06.0515 2852 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
    17:58:06.0750 2852 Fs_Rec - ok
    17:58:06.0781 2852 [ 4E664D8541DB4A66B73A24257E322E1F ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
    17:58:07.0000 2852 Ftdisk - ok
    17:58:07.0046 2852 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
    17:58:07.0281 2852 Gpc - ok
    17:58:07.0328 2852 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
    17:58:07.0359 2852 gupdate - ok
    17:58:07.0421 2852 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
    17:58:07.0453 2852 gupdatem - ok
    17:58:07.0500 2852 [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
    17:58:07.0718 2852 HDAudBus - ok
    17:58:07.0796 2852 [ FCFE31FB75F8A6295B6B0AF87A626282 ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
    17:58:08.0078 2852 helpsvc - ok
    17:58:08.0109 2852 [ 00E25EE90166B3E1BE6E74AEBF858306 ] HidServ C:\WINDOWS\System32\hidserv.dll
    17:58:08.0328 2852 HidServ - ok
    17:58:08.0375 2852 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] HidUsb C:\WINDOWS\system32\DRIVERS\hidusb.sys
    17:58:08.0593 2852 HidUsb - ok
    17:58:08.0625 2852 [ 7A6B320928F86BC851530D63C82965D9 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
    17:58:08.0843 2852 hkmsvc - ok
    17:58:08.0859 2852 hpn - ok
    17:58:08.0906 2852 [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
    17:58:08.0984 2852 HTTP - ok
    17:58:09.0015 2852 [ 58FE2F2DA3BC5573F4A35B3760D3125F ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
    17:58:09.0250 2852 HTTPFilter - ok
    17:58:09.0265 2852 hwdatacard - ok
    17:58:09.0296 2852 i2omgmt - ok
    17:58:09.0312 2852 i2omp - ok
    17:58:09.0515 2852 [ C528E27945367191E7BAE364930B6932 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
    17:58:09.0718 2852 i8042prt - ok
    17:58:09.0953 2852 [ 1832E58852AD2AC231ABC02C1DDB1309 ] ialm C:\WINDOWS\system32\DRIVERS\igxpmp32.sys
    17:58:10.0390 2852 ialm - ok
    17:58:10.0453 2852 [ D483687EACE0C065EE772481A96E05F5 ] iaStor C:\WINDOWS\system32\drivers\iaStor.sys
    17:58:10.0531 2852 iaStor - ok
    17:58:10.0609 2852 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
    17:58:10.0734 2852 idsvc - ok
    17:58:10.0765 2852 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
    17:58:11.0093 2852 Imapi - ok
    17:58:11.0109 2852 [ F7B93AAFAD33B2320954C17E26C8D361 ] ImapiService C:\WINDOWS\system32\imapi.exe
    17:58:11.0343 2852 ImapiService - ok
    17:58:11.0359 2852 ini910u - ok
    17:58:11.0578 2852 [ DBD5D0FE7F50B1218D8CED753572F8DB ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RtkHDAud.sys
    17:58:12.0062 2852 IntcAzAudAddService - ok
    17:58:12.0078 2852 IntelIde - ok
    17:58:12.0109 2852 [ 27B290D632AF2CF3CF40BFDDB7370985 ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys
    17:58:12.0328 2852 intelppm - ok
    17:58:12.0343 2852 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\WINDOWS\system32\drivers\ip6fw.sys
    17:58:12.0578 2852 Ip6Fw - ok
    17:58:12.0609 2852 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
    17:58:12.0828 2852 IpFilterDriver - ok
    17:58:12.0843 2852 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
    17:58:13.0062 2852 IpInIp - ok
    17:58:13.0078 2852 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
    17:58:13.0312 2852 IpNat - ok
    17:58:13.0343 2852 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
    17:58:13.0562 2852 IPSec - ok
    17:58:13.0593 2852 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
    17:58:13.0796 2852 IRENUM - ok
    17:58:13.0843 2852 [ CC9F8A2D60AED1A51A3AC34C59B987AE ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
    17:58:14.0078 2852 isapnp - ok
    17:58:14.0140 2852 [ CC54FD59486BEF7CE70275FAC2FD9D34 ] JavaQuickStarterService C:\Program Files\Java\jre7\bin\jqs.exe
    17:58:14.0171 2852 JavaQuickStarterService - ok
    17:58:14.0203 2852 [ 1B6162FE7F66B1A71A4B70F941C4AA9B ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
    17:58:14.0421 2852 Kbdclass - ok
    17:58:14.0437 2852 [ 7F2B8D0B31FB4A797E5786EF124C5A80 ] kbfiltr C:\WINDOWS\system32\DRIVERS\kbfiltr.sys
    17:58:14.0468 2852 kbfiltr - ok
    17:58:14.0484 2852 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
    17:58:14.0718 2852 kmixer - ok
    17:58:14.0750 2852 [ B467646C54CC746128904E1654C750C1 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
    17:58:14.0843 2852 KSecDD - ok
    17:58:14.0890 2852 [ 96478FE91C5A37C673EBE3DA87C1A115 ] L1c C:\WINDOWS\system32\DRIVERS\l1c51x86.sys
    17:58:14.0953 2852 L1c - ok
    17:58:15.0000 2852 [ 3428E8F86F8ADD36B42FB23542C7B3E4 ] LanmanServer C:\WINDOWS\System32\srvsvc.dll
    17:58:15.0078 2852 LanmanServer - ok
    17:58:15.0093 2852 [ 936C1D110232D23B621CB0196E4F80F0 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
    17:58:15.0171 2852 lanmanworkstation - ok
    17:58:15.0171 2852 lbrtfdc - ok
    17:58:15.0234 2852 [ 0AB159F536E3E8F7F07113702A07CCA5 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
    17:58:15.0453 2852 LmHosts - ok
    17:58:15.0500 2852 [ 629CABB0421668C9D3D402A3C3D77E14 ] MBAMProtector C:\WINDOWS\system32\drivers\mbam.sys
    17:58:15.0531 2852 MBAMProtector - ok
    17:58:15.0593 2852 [ 1ACAA67676E9E7BDA5E0C41B6E0DECAF ] MBAMScheduler C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
    17:58:15.0640 2852 MBAMScheduler - ok
    17:58:15.0687 2852 [ 916B8954AC3E06DC9E898AFFB41F3FB6 ] MBAMService C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
    17:58:15.0750 2852 MBAMService - ok
    17:58:15.0781 2852 [ 221CD1C815B8A6B79389C3F5D1018DE8 ] Messenger C:\WINDOWS\System32\msgsvc.dll
    17:58:16.0000 2852 Messenger - ok
    17:58:16.0046 2852 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
    17:58:16.0281 2852 mnmdd - ok
    17:58:16.0312 2852 [ 9A57D046F88F4B69751B11FD40088A61 ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
    17:58:16.0531 2852 mnmsrvc - ok
    17:58:16.0546 2852 [ 44032B0C6D9954D3FD26438330B99EE7 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
    17:58:16.0781 2852 Modem - ok
    17:58:16.0843 2852 [ C7D9F9717916B34C1B00DD4834AF485C ] Monfilt C:\WINDOWS\system32\drivers\Monfilt.sys
    17:58:16.0968 2852 Monfilt - ok
    17:58:17.0015 2852 [ 4CB582831DBDE63CE43B45D771218374 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
    17:58:17.0250 2852 Mouclass - ok
    17:58:17.0265 2852 [ BB269EBA740737AB749B214D568B6812 ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
    17:58:17.0515 2852 mouhid - ok
    17:58:17.0531 2852 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
    17:58:17.0765 2852 MountMgr - ok
    17:58:17.0812 2852 [ EE728AF83850DDAD9A3FCAC0AAB3AD97 ] MpFilter C:\WINDOWS\system32\DRIVERS\MpFilter.sys
    17:58:17.0859 2852 MpFilter - ok
    17:58:17.0953 2852 [ A69630D039C38018689190234F866D77 ] MpKsla5836ff7 C:\Documents and Settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\{1FFE80FA-3CBB-42F8-A436-9B43258F10CB}\MpKsla5836ff7.sys
    17:58:17.0984 2852 MpKsla5836ff7 - ok
    17:58:18.0000 2852 mraid35x - ok
    17:58:18.0031 2852 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
    17:58:18.0265 2852 MRxDAV - ok
    17:58:18.0312 2852 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
    17:58:18.0406 2852 MRxSmb - ok
    17:58:18.0453 2852 [ 6DB4D1521CABA9A5FFAB54ADE0AE867D ] MSDTC C:\WINDOWS\system32\msdtc.exe
    17:58:18.0671 2852 MSDTC - ok
    17:58:18.0703 2852 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
    17:58:18.0921 2852 Msfs - ok
    17:58:18.0921 2852 MSIServer - ok
    17:58:18.0968 2852 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
    17:58:19.0203 2852 MSKSSRV - ok
    17:58:19.0265 2852 [ E077FCA2A7E79FB9BF67D3E30B5CE593 ] MsMpSvc C:\Program Files\Microsoft Security Client\MsMpEng.exe
    17:58:19.0296 2852 MsMpSvc - ok
    17:58:19.0312 2852 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
    17:58:19.0546 2852 MSPCLOCK - ok
    17:58:19.0562 2852 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
    17:58:19.0781 2852 MSPQM - ok
    17:58:19.0812 2852 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
    17:58:20.0031 2852 mssmbios - ok
    17:58:20.0078 2852 [ E53736A9E30C45FA9E7B5EAC55056D1D ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys
    17:58:20.0281 2852 MSTEE - ok
    17:58:20.0328 2852 [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
    17:58:20.0375 2852 Mup - ok
    17:58:20.0390 2852 [ 5B50F1B2A2ED47D560577B221DA734DB ] NABTSFEC C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
    17:58:20.0593 2852 NABTSFEC - ok
    17:58:20.0640 2852 [ 6EA362E9DB03D44F6B996F4D8BE237E9 ] napagent C:\WINDOWS\System32\qagentrt.dll
    17:58:20.0859 2852 napagent - ok
    17:58:20.0890 2852 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
    17:58:21.0109 2852 NDIS - ok
    17:58:21.0125 2852 [ 7FF1F1FD8609C149AA432F95A8163D97 ] NdisIP C:\WINDOWS\system32\DRIVERS\NdisIP.sys
    17:58:21.0343 2852 NdisIP - ok
    17:58:21.0390 2852 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
    17:58:21.0421 2852 NdisTapi - ok
    17:58:21.0468 2852 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
    17:58:21.0687 2852 Ndisuio - ok
    17:58:21.0718 2852 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
    17:58:21.0921 2852 NdisWan - ok
    17:58:21.0968 2852 [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
    17:58:22.0031 2852 NDProxy - ok
    17:58:22.0078 2852 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
    17:58:22.0296 2852 NetBIOS - ok
    17:58:22.0328 2852 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
    17:58:22.0578 2852 NetBT - ok
    17:58:22.0609 2852 [ 933DE774986EC85E48210C44AB431DE6 ] NetDDE C:\WINDOWS\system32\netdde.exe
    17:58:22.0859 2852 NetDDE - ok
    17:58:22.0875 2852 [ 933DE774986EC85E48210C44AB431DE6 ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
    17:58:23.0093 2852 NetDDEdsdm - ok
    17:58:23.0125 2852 [ ED0A176354487CEED65B80A7148AB739 ] Netlogon C:\WINDOWS\system32\lsass.exe
    17:58:23.0343 2852 Netlogon - ok
    17:58:23.0375 2852 [ 72E1E9E2977BE08BDEEDB6D8FD9D4D40 ] Netman C:\WINDOWS\System32\netman.dll
    17:58:23.0609 2852 Netman - ok
    17:58:23.0656 2852 [ D34612C5D02D026535B3095D620626AE ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
    17:58:23.0687 2852 NetTcpPortSharing - ok
    17:58:23.0734 2852 [ 39EE7C3BFBC64BA87CC8CF67386E814C ] Nla C:\WINDOWS\System32\mswsock.dll
    17:58:23.0796 2852 Nla - ok
    17:58:23.0843 2852 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
    17:58:24.0062 2852 Npfs - ok
    17:58:24.0109 2852 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
    17:58:24.0406 2852 Ntfs - ok
    17:58:24.0437 2852 [ ED0A176354487CEED65B80A7148AB739 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
    17:58:24.0656 2852 NtLmSsp - ok
    17:58:24.0687 2852 [ 023DD70573D644F3D9C8B1258A7BFD08 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
    17:58:24.0921 2852 NtmsSvc - ok
    17:58:24.0968 2852 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
    17:58:25.0187 2852 Null - ok
    17:58:25.0203 2852 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
    17:58:25.0406 2852 NwlnkFlt - ok
    17:58:25.0421 2852 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
    17:58:25.0640 2852 NwlnkFwd - ok
    17:58:25.0656 2852 [ 46F8DB73B4A53E543F8E371DC7C75BAE ] Parport C:\WINDOWS\system32\drivers\Parport.sys
    17:58:25.0875 2852 Parport - ok
    17:58:25.0890 2852 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
    17:58:26.0109 2852 PartMgr - ok
    17:58:26.0140 2852 [ 1FAE19D0457176318BBA4A8795656EBC ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
    17:58:26.0343 2852 ParVdm - ok
    17:58:26.0359 2852 [ 6CE351D149CB4BEFC702951E471E1730 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
    17:58:26.0578 2852 PCI - ok
    17:58:26.0578 2852 PCIDump - ok
    17:58:26.0593 2852 PCIIde - ok
    17:58:26.0609 2852 [ 4FC31E6C19A5CE5198B1ABFF94CAE758 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
    17:58:26.0843 2852 Pcmcia - ok
    17:58:26.0843 2852 PDCOMP - ok
    17:58:26.0859 2852 PDFRAME - ok
    17:58:26.0875 2852 PDRELI - ok
    17:58:26.0890 2852 PDRFRAME - ok
    17:58:26.0906 2852 perc2 - ok
    17:58:26.0921 2852 perc2hib - ok
    17:58:26.0968 2852 [ 9EF697AF07BB8DD82C3B02CA953A95B7 ] PlugPlay C:\WINDOWS\system32\services.exe
    17:58:27.0015 2852 PlugPlay - ok
    17:58:27.0031 2852 [ ED0A176354487CEED65B80A7148AB739 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
    17:58:27.0250 2852 PolicyAgent - ok
    17:58:27.0281 2852 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
    17:58:27.0515 2852 PptpMiniport - ok
    17:58:27.0515 2852 [ ED0A176354487CEED65B80A7148AB739 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
    17:58:27.0734 2852 ProtectedStorage - ok
    17:58:27.0750 2852 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
    17:58:27.0968 2852 PSched - ok
    17:58:28.0000 2852 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
    17:58:28.0234 2852 Ptilink - ok
    17:58:28.0265 2852 [ E42E3433DBB4CFFE8FDD91EAB29AEA8E ] PxHelp20 C:\WINDOWS\system32\Drivers\PxHelp20.sys
    17:58:28.0296 2852 PxHelp20 - ok
    17:58:28.0312 2852 ql1080 - ok
    17:58:28.0328 2852 Ql10wnt - ok
    17:58:28.0328 2852 ql12160 - ok
    17:58:28.0343 2852 ql1240 - ok
    17:58:28.0359 2852 ql1280 - ok
    17:58:28.0406 2852 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
    17:58:28.0609 2852 RasAcd - ok
    17:58:28.0625 2852 [ 2B5E44EA009F2F374B980E1E9A70635D ] RasAuto C:\WINDOWS\System32\rasauto.dll
    17:58:28.0859 2852 RasAuto - ok
    17:58:28.0859 2852 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
    17:58:29.0078 2852 Rasl2tp - ok
    17:58:29.0109 2852 [ D57554C664B64604BD1EE13EA2C07E77 ] RasMan C:\WINDOWS\System32\rasmans.dll
    17:58:29.0343 2852 RasMan - ok
    17:58:29.0343 2852 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
    17:58:29.0562 2852 RasPppoe - ok
    17:58:29.0562 2852 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
    17:58:29.0796 2852 Raspti - ok
    17:58:29.0812 2852 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
    17:58:30.0062 2852 Rdbss - ok
    17:58:30.0109 2852 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
    17:58:30.0312 2852 RDPCDD - ok
    17:58:30.0359 2852 [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
    17:58:30.0421 2852 RDPWD - ok
    17:58:30.0468 2852 [ C0D9D9711CB74EE9BC66353D8CBDAB0E ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
    17:58:30.0687 2852 RDSessMgr - ok
    17:58:30.0718 2852 [ 611BFD220305BE3A85AE876EA47D4AA5 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
    17:58:30.0937 2852 redbook - ok
    17:58:30.0968 2852 [ 127C26B5371651043450E52542099ABA ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
    17:58:31.0187 2852 RemoteAccess - ok
    17:58:31.0218 2852 [ 718B3BDC0BC3C2F7D065A53D26202AF9 ] RpcLocator C:\WINDOWS\system32\locator.exe
    17:58:31.0437 2852 RpcLocator - ok
    17:58:31.0468 2852 [ BE27674D1CBC3214AEC84B4336A38BBF ] RpcSs C:\WINDOWS\System32\rpcss.dll
    17:58:31.0515 2852 RpcSs - ok
    17:58:31.0562 2852 [ 09AB2E71E58B078038E3BFDBA7FFC984 ] RSVP C:\WINDOWS\system32\rsvp.exe
    17:58:31.0781 2852 RSVP - ok
    17:58:31.0812 2852 [ 83D828327C685DF6DD1CA065956955B4 ] rtsuvc C:\WINDOWS\system32\DRIVERS\rtsuvc.sys
    17:58:31.0921 2852 rtsuvc - ok
    17:58:31.0968 2852 [ ED0A176354487CEED65B80A7148AB739 ] SamSs C:\WINDOWS\system32\lsass.exe
    17:58:32.0171 2852 SamSs - ok
    17:58:32.0218 2852 [ 410046E401EB11E1E6749E9DEEA41D4A ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
    17:58:32.0421 2852 SCardSvr - ok
    17:58:32.0468 2852 [ 3FF232A7731621B8902D81D42418C93C ] Schedule C:\WINDOWS\system32\schedsvc.dll
    17:58:32.0687 2852 Schedule - ok
    17:58:32.0812 2852 [ 206387AB881E93A1A6EB89966C8651F1 ] SDScannerService C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe
    17:58:32.0921 2852 SDScannerService - ok
    17:58:33.0031 2852 [ A529CFE32565C0B145578FFB2B32C9A5 ] SDUpdateService C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe
    17:58:33.0203 2852 SDUpdateService - ok
    17:58:33.0250 2852 [ CB63BDB77BB86549FC3303C2F11EDC18 ] SDWSCService C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe
    17:58:33.0281 2852 SDWSCService - ok
    17:58:33.0312 2852 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
    17:58:33.0531 2852 Secdrv - ok
    17:58:33.0562 2852 [ 477E2C3CC5E4A0D635BCB0EA8DCAC3C6 ] seclogon C:\WINDOWS\System32\seclogon.dll
    17:58:33.0781 2852 seclogon - ok
    17:58:33.0812 2852 [ A530B75C10C23C9AB28FDB6CE719E21F ] SENS C:\WINDOWS\system32\sens.dll
    17:58:34.0031 2852 SENS - ok
    17:58:34.0062 2852 [ B842729337C9B921615C40D3C1A1AF96 ] Serial C:\WINDOWS\system32\drivers\Serial.sys
    17:58:34.0281 2852 Serial - ok
    17:58:34.0312 2852 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
    17:58:34.0531 2852 Sfloppy - ok
    17:58:34.0562 2852 [ F58FACA9621D2DB01BD0927D9A0A208E ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
    17:58:34.0796 2852 SharedAccess - ok
    17:58:34.0828 2852 [ EE9A2B9EA968A792A053C9D1A86BF870 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
    17:58:34.0875 2852 ShellHWDetection - ok
    17:58:34.0875 2852 Simbad - ok
    17:58:34.0921 2852 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe
    17:58:34.0968 2852 SkypeUpdate - ok
    17:58:35.0000 2852 [ 866D538EBE33709A5C9F5C62B73B7D14 ] SLIP C:\WINDOWS\system32\DRIVERS\SLIP.sys
    17:58:35.0203 2852 SLIP - ok
    17:58:35.0218 2852 Sparrow - ok
    17:58:35.0234 2852 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
    17:58:35.0453 2852 splitter - ok
    17:58:35.0484 2852 [ 60784F891563FB1B767F70117FC2428F ] Spooler C:\WINDOWS\system32\spoolsv.exe
    17:58:35.0531 2852 Spooler - ok
    17:58:35.0562 2852 [ 94610C8653635E4459316A0050D55CE7 ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
    17:58:35.0781 2852 sr - ok
    17:58:35.0812 2852 [ 35B91147124F64AC8081A2EDB9EA4DEE ] srservice C:\WINDOWS\system32\srsvc.dll
    17:58:36.0031 2852 srservice - ok
    17:58:36.0078 2852 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
    17:58:36.0140 2852 Srv - ok
    17:58:36.0203 2852 [ BECD5271DC4E3B7C3D035F790FCBC1E5 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
    17:58:36.0421 2852 SSDPSRV - ok
    17:58:36.0437 2852 [ C1CDD9275F6A115BB0AE1D55D8D27BA6 ] stisvc C:\WINDOWS\system32\wiaservc.dll
    17:58:36.0671 2852 stisvc - ok
    17:58:36.0718 2852 [ 77813007BA6265C4B6098187E6ED79D2 ] streamip C:\WINDOWS\system32\DRIVERS\StreamIP.sys
    17:58:36.0921 2852 streamip - ok
    17:58:36.0984 2852 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
    17:58:37.0203 2852 swenum - ok
    17:58:37.0234 2852 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
    17:58:37.0437 2852 swmidi - ok
    17:58:37.0453 2852 SwPrv - ok
    17:58:37.0468 2852 symc810 - ok
    17:58:37.0484 2852 symc8xx - ok
    17:58:37.0500 2852 sym_hi - ok
    17:58:37.0515 2852 sym_u3 - ok
    17:58:37.0703 2852 [ BD8E7F87DE409A745A132A8812DE5A96 ] SynTP C:\WINDOWS\system32\DRIVERS\SynTP.sys
    17:58:37.0734 2852 SynTP - ok
    17:58:37.0765 2852 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
    17:58:37.0984 2852 sysaudio - ok
    17:58:38.0015 2852 [ CE06F01B88ACE199A1BF460CAC29C110 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
    17:58:38.0250 2852 SysmonLog - ok
    17:58:38.0296 2852 [ C2546CD7A398476F9DF5614B2AE160E8 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
    17:58:38.0515 2852 TapiSrv - ok
    17:58:38.0562 2852 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
    17:58:38.0609 2852 Tcpip - ok
    17:58:38.0640 2852 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
    17:58:38.0859 2852 TDPIPE - ok
    17:58:38.0875 2852 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
    17:58:39.0093 2852 TDTCP - ok
    17:58:39.0125 2852 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
    17:58:39.0328 2852 TermDD - ok
    17:58:39.0359 2852 [ A75DD6FC3DBEE4FFF5EBC9F2C28BB66E ] TermService C:\WINDOWS\System32\termsrv.dll
    17:58:39.0578 2852 TermService - ok
    17:58:39.0609 2852 [ EE9A2B9EA968A792A053C9D1A86BF870 ] Themes C:\WINDOWS\System32\shsvcs.dll
    17:58:39.0640 2852 Themes - ok
    17:58:39.0671 2852 TosIde - ok
    17:58:39.0718 2852 [ 38853304CCB938D30E0C4CDE8D2C2A8A ] TrkWks C:\WINDOWS\system32\trkwks.dll
    17:58:39.0921 2852 TrkWks - ok
    17:58:39.0984 2852 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
    17:58:40.0187 2852 Udfs - ok
    17:58:40.0187 2852 ultra - ok
    17:58:40.0250 2852 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
    17:58:40.0468 2852 Update - ok
    17:58:40.0500 2852 [ 651BD90DCEE5B7BDC74A2EB7C9266F9E ] upnphost C:\WINDOWS\System32\upnphost.dll
    17:58:40.0718 2852 upnphost - ok
    17:58:40.0750 2852 [ 20A0F6A11959E92908717D09E87D670D ] UPS C:\WINDOWS\System32\ups.exe
    17:58:40.0953 2852 UPS - ok
    17:58:40.0984 2852 [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
    17:58:41.0171 2852 usbccgp - ok
    17:58:41.0218 2852 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
    17:58:41.0421 2852 usbehci - ok
    17:58:41.0437 2852 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
    17:58:41.0656 2852 usbhub - ok
    17:58:41.0671 2852 [ A32426D9B14A089EAA1D922E0C5801A9 ] usbstor C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
    17:58:41.0875 2852 usbstor - ok
    17:58:41.0906 2852 [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
    17:58:42.0125 2852 usbuhci - ok
    17:58:42.0156 2852 [ 63BBFCA7F390F4C49ED4B96BFB1633E0 ] usbvideo C:\WINDOWS\system32\Drivers\usbvideo.sys
    17:58:42.0375 2852 usbvideo - ok
    17:58:42.0421 2852 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
    17:58:42.0609 2852 VgaSave - ok
    17:58:42.0625 2852 ViaIde - ok
    17:58:42.0671 2852 [ 28A4B296B47782173C346E376CB374D1 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
    17:58:42.0875 2852 VolSnap - ok
    17:58:42.0921 2852 [ D6BA1A63D9E00933F1CD2A885573AFB2 ] VSS C:\WINDOWS\System32\vssvc.exe
    17:58:43.0140 2852 VSS - ok
    17:58:43.0187 2852 [ FA4E1CDBA256787F2149F4AAD07BC91F ] W32Time C:\WINDOWS\system32\w32time.dll
    17:58:43.0406 2852 W32Time - ok
    17:58:43.0421 2852 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
    17:58:43.0625 2852 Wanarp - ok
    17:58:43.0671 2852 [ D918617B46457B9AC28027722E30F647 ] Wdf01000 C:\WINDOWS\system32\Drivers\wdf01000.sys
    17:58:43.0734 2852 Wdf01000 - ok
    17:58:43.0734 2852 WDICA - ok
    17:58:43.0765 2852 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
    17:58:43.0984 2852 wdmaud - ok
    17:58:44.0015 2852 [ 47AE51048A82DFA1CD6B51D369F7E169 ] WebClient C:\WINDOWS\System32\webclnt.dll
    17:58:44.0234 2852 WebClient - ok
    17:58:44.0312 2852 [ E488332126E3B1182D2B8A0C35408EC6 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
    17:58:44.0515 2852 winmgmt - ok
    17:58:44.0578 2852 [ 4D34CEDD74BDBF2B6A935EAE3BF80543 ] WinRM C:\WINDOWS\system32\WsmSvc.dll
    17:58:44.0703 2852 WinRM - ok
    17:58:44.0750 2852 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
    17:58:44.0812 2852 WmdmPmSN - ok
    17:58:44.0859 2852 [ C42584FD66CE9E17403AEBCA199F7BDB ] WmiAcpi C:\WINDOWS\system32\DRIVERS\wmiacpi.sys
    17:58:45.0062 2852 WmiAcpi - ok
    17:58:45.0093 2852 [ 23F6F03272F7E5679F1F050AED5ACEE6 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
    17:58:45.0343 2852 WmiApSrv - ok
    17:58:45.0406 2852 [ 3739866D20ABD42F26A7B85F9E2560AF ] WMPNetworkSvc C:\Program Files\Windows Media Player\WMPNetwk.exe
    17:58:45.0500 2852 WMPNetworkSvc - ok
    17:58:45.0531 2852 [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] WS2IFSL C:\WINDOWS\System32\drivers\ws2ifsl.sys
    17:58:45.0734 2852 WS2IFSL - ok
    17:58:45.0765 2852 [ 4C86D5FAF78194995AF9CC1075F65DD3 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
    17:58:45.0984 2852 wscsvc - ok
    17:58:46.0000 2852 [ C98B39829C2BBD34E454150633C62C78 ] WSTCODEC C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
    17:58:46.0203 2852 WSTCODEC - ok
    17:58:46.0218 2852 [ C1364564800EE9784192145324A23308 ] wuauserv C:\WINDOWS\system32\wuauserv.dll
    17:58:46.0421 2852 wuauserv - ok
    17:58:46.0453 2852 [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
    17:58:46.0515 2852 WudfPf - ok
    17:58:46.0531 2852 [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
    17:58:46.0562 2852 WudfRd - ok
    17:58:46.0593 2852 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
    17:58:46.0625 2852 WudfSvc - ok
    17:58:46.0671 2852 [ A27D4BA7264C0BF52F32D10405BEA1D4 ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
    17:58:46.0906 2852 WZCSVC - ok
    17:58:46.0953 2852 [ EAA4BB9EDB3FB10CF8979FE65E63658F ] xmlprov C:\WINDOWS\System32\xmlprov.dll
    17:58:47.0171 2852 xmlprov - ok
    17:58:47.0187 2852 ================ Scan global ===============================
    17:58:47.0234 2852 [ F36278E42C8C5DF03CE17DAC8231C91C ] C:\WINDOWS\system32\basesrv.dll
    17:58:47.0296 2852 [ F3FA14A297BC687D0B51289D034033C9 ] C:\WINDOWS\system32\winsrv.dll
    17:58:47.0312 2852 [ F3FA14A297BC687D0B51289D034033C9 ] C:\WINDOWS\system32\winsrv.dll
    17:58:47.0328 2852 [ 9EF697AF07BB8DD82C3B02CA953A95B7 ] C:\WINDOWS\system32\services.exe
    17:58:47.0328 2852 [Global] - ok
    17:58:47.0343 2852 ================ Scan MBR ==================================
    17:58:47.0359 2852 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk0\DR0
    17:58:47.0671 2852 \Device\Harddisk0\DR0 - ok
    17:58:47.0671 2852 ================ Scan VBR ==================================
    17:58:47.0687 2852 [ 0A9BEF9FF3021A41B3121E8DE8EDA02A ] \Device\Harddisk0\DR0\Partition1
    17:58:47.0687 2852 \Device\Harddisk0\DR0\Partition1 - ok
    17:58:47.0718 2852 [ 713A82280446707CDCCDD987C6D8C6E5 ] \Device\Harddisk0\DR0\Partition2
    17:58:47.0718 2852 \Device\Harddisk0\DR0\Partition2 - ok
    17:58:47.0718 2852 ============================================================
    17:58:47.0718 2852 Scan finished
    17:58:47.0718 2852 ============================================================
    17:58:47.0843 1152 Detected object count: 0
    17:58:47.0843 1152 Actual detected object count: 0
    18:03:04.0843 3588 Deinitialize success
     
  10. Fandomas

    Fandomas TS Rookie Topic Starter

    OTL PART 1

    OTL logfile created on: 6.2.2013 18:05:05 - Run 1
    OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\Elli\Plocha
    Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
    Internet Explorer (Version = 8.0.6001.18702)
    Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

    1014,11 Mb Total Physical Memory | 368,94 Mb Available Physical Memory | 36,38% Memory free
    2,38 Gb Paging File | 1,84 Gb Available in Paging File | 77,28% Paging File free
    Paging file location(s): C:\pagefile.sys 1524 3048 [binary data]

    %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
    Drive C: | 80,01 Gb Total Space | 13,27 Gb Free Space | 16,59% Space Free | Partition Type: NTFS
    Drive D: | 62,16 Gb Total Space | 25,61 Gb Free Space | 41,20% Space Free | Partition Type: NTFS

    Computer Name: ELISABETHA | User Name: Elli | Logged in as Administrator.
    Boot Mode: Normal | Scan Mode: Current user | Quick Scan
    Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

    ========== Processes (SafeList) ==========

    PRC - [2013.02.06 18:04:42 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Elli\Plocha\OTL.exe
    PRC - [2013.02.04 21:51:57 | 000,170,912 | ---- | M] (Oracle Corporation) -- C:\Program Files\Java\jre7\bin\jqs.exe
    PRC - [2012.12.14 16:49:28 | 000,682,344 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
    PRC - [2012.12.14 16:49:28 | 000,512,360 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
    PRC - [2012.12.14 16:49:28 | 000,398,184 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
    PRC - [2012.11.13 14:08:08 | 003,825,176 | ---- | M] (Safer-Networking Ltd.) -- C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe
    PRC - [2012.11.13 14:07:20 | 001,369,624 | ---- | M] (Safer-Networking Ltd.) -- C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe
    PRC - [2012.11.13 14:07:16 | 001,103,392 | ---- | M] (Safer-Networking Ltd.) -- C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe
    PRC - [2012.09.12 17:25:22 | 000,020,472 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\MsMpEng.exe
    PRC - [2012.09.12 17:19:44 | 000,947,176 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\msseces.exe
    PRC - [2011.07.29 00:08:12 | 001,259,376 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe
    PRC - [2010.05.17 09:40:22 | 001,246,632 | ---- | M] (ASUSTeK Computer Inc.) -- C:\Program Files\EeePC\ACPI\AsAcpiSvr.exe
    PRC - [2010.01.29 19:18:52 | 000,751,592 | ---- | M] () -- C:\Program Files\ASUS\LiveUpdate\LiveUpdate.exe
    PRC - [2009.07.23 23:54:40 | 000,607,584 | ---- | M] (Broadcom Corporation.) -- C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
    PRC - [2009.06.26 12:13:00 | 000,118,784 | ---- | M] (ASUSTeK Computer Inc.) -- C:\Program Files\EeePC\ACPI\AsTray.exe
    PRC - [2009.05.08 15:54:20 | 000,098,304 | ---- | M] (ASUSTeK Computer Inc.) -- C:\Program Files\EeePC\ACPI\AsEPCMon.exe
    PRC - [2009.04.30 18:49:42 | 000,385,024 | ---- | M] (ASUSTeK Computer Inc.) -- C:\Program Files\ASUS\EeePC\Super Hybrid Engine\SuperHybridEngine.exe
    PRC - [2008.04.14 13:00:00 | 001,034,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe


    ========== Modules (No Company Name) ==========

    MOD - [2012.11.13 14:06:32 | 000,158,624 | ---- | M] () -- C:\Program Files\Spybot - Search & Destroy 2\snlFileFormats150.bpl
    MOD - [2012.11.13 14:06:30 | 000,108,960 | ---- | M] () -- C:\Program Files\Spybot - Search & Destroy 2\snlThirdParty150.bpl
    MOD - [2012.11.13 14:06:28 | 000,554,400 | ---- | M] () -- C:\Program Files\Spybot - Search & Destroy 2\VirtualTreesDXE150.bpl
    MOD - [2012.11.13 14:06:28 | 000,528,288 | ---- | M] () -- C:\Program Files\Spybot - Search & Destroy 2\JSDialogPack150.bpl
    MOD - [2012.11.13 14:06:28 | 000,416,160 | ---- | M] () -- C:\Program Files\Spybot - Search & Destroy 2\DEC150.bpl
    MOD - [2012.08.23 09:38:24 | 000,574,840 | ---- | M] () -- C:\Program Files\Spybot - Search & Destroy 2\sqlite3.dll
    MOD - [2011.07.29 00:09:42 | 000,096,112 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdateCheck.dll
    MOD - [2011.07.29 00:08:12 | 001,259,376 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe
    MOD - [2010.07.04 22:32:38 | 000,010,752 | ---- | M] () -- C:\Program Files\Unlocker\UnlockerCOM.dll
    MOD - [2010.07.04 22:32:36 | 000,004,608 | ---- | M] () -- C:\Program Files\Unlocker\UnlockerHook.dll
    MOD - [2010.01.29 19:23:40 | 000,161,768 | ---- | M] () -- C:\Program Files\ASUS\LiveUpdate\Enumeration.dll
    MOD - [2010.01.29 19:18:52 | 000,751,592 | ---- | M] () -- C:\Program Files\ASUS\LiveUpdate\LiveUpdate.exe
    MOD - [2010.01.29 19:17:26 | 000,120,808 | ---- | M] () -- C:\Program Files\ASUS\LiveUpdate\ClientSocket.dll
    MOD - [2009.08.28 00:29:08 | 000,182,240 | ---- | M] () -- C:\Program Files\ASUS\LiveUpdate\Parser.dll
    MOD - [2009.07.23 23:53:26 | 002,854,976 | ---- | M] () -- C:\WINDOWS\system32\btwicons.dll
    MOD - [2009.07.23 23:50:52 | 000,069,697 | ---- | M] () -- C:\Program Files\WIDCOMM\Bluetooth Software\BTKeyInd.dll
    MOD - [2008.04.14 13:00:00 | 000,014,336 | ---- | M] () -- C:\WINDOWS\system32\msdmo.dll


    ========== Services (SafeList) ==========

    SRV - File not found [Auto | Stopped] -- C:\Program Files\Spybot -- (SDWSCService)
    SRV - File not found [Auto | Running] -- C:\Program Files\Spybot -- (SDUpdateService)
    SRV - File not found [Auto | Running] -- C:\Program Files\Spybot -- (SDScannerService)
    SRV - File not found [On_Demand | Stopped] -- %SystemRoot%\System32\appmgmts.dll -- (AppMgmt)
    SRV - [2013.02.04 21:51:57 | 000,170,912 | ---- | M] (Oracle Corporation) [Auto | Running] -- C:\Program Files\Java\jre7\bin\jqs.exe -- (JavaQuickStarterService)
    SRV - [2013.02.04 19:48:22 | 000,251,400 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
    SRV - [2012.12.14 16:49:28 | 000,682,344 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
    SRV - [2012.12.14 16:49:28 | 000,398,184 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe -- (MBAMScheduler)
    SRV - [2012.09.12 17:25:22 | 000,020,472 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft Security Client\MsMpEng.exe -- (MsMpSvc)
    SRV - [2012.07.13 12:28:36 | 000,160,944 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)


    ========== Driver Services (SafeList) ==========

    DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA)
    DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME)
    DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI)
    DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME)
    DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP)
    DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump)
    DRV - File not found [Kernel | On_Demand | Unknown] -- C:\DOCUME~1\Elli\LOCALS~1\Temp\mbr.sys -- (mbr)
    DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc)
    DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt)
    DRV - File not found [Kernel | System | Stopped] -- -- (Changer)
    DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\ewusbmdm.sys -- (hwdatacard)
    DRV - File not found [Kernel | On_Demand | Running] -- C:\ComboFix\catchme.sys -- (catchme)
    DRV - File not found [Kernel | Auto | Stopped] -- C:\DOCUME~1\Elli\LOCALS~1\Temp\3259.sys -- (3259)
    DRV - [2013.02.06 17:57:33 | 000,029,904 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Documents and Settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\{1FFE80FA-3CBB-42F8-A436-9B43258F10CB}\MpKsla5836ff7.sys -- (MpKsla5836ff7)
    DRV - [2012.12.14 16:49:28 | 000,021,104 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mbam.sys -- (MBAMProtector)
    DRV - [2010.04.27 09:10:52 | 006,031,904 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService)
    DRV - [2010.03.31 02:40:20 | 000,011,520 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AsUpIO.sys -- (AsUpIO)
    DRV - [2010.02.04 16:08:30 | 000,073,088 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\rtsuvc.sys -- (rtsuvc)
    DRV - [2009.11.18 00:17:00 | 001,395,800 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Monfilt.sys -- (Monfilt)
    DRV - [2009.11.18 00:16:00 | 001,691,480 | ---- | M] (Creative) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Ambfilt.sys -- (Ambfilt)
    DRV - [2009.08.12 00:04:30 | 001,582,624 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\athw.sys -- (AR5416)
    DRV - [2009.08.06 06:48:42 | 000,054,752 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\fssfltr_tdi.sys -- (fssfltr)
    DRV - [2009.07.27 08:09:52 | 000,044,032 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\l1c51x86.sys -- (L1c)
    DRV - [2009.07.09 05:45:00 | 000,991,264 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\btkrnl.sys -- (BTKRNL)
    DRV - [2009.06.21 02:56:18 | 000,533,024 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\btaudio.sys -- (btaudio)
    DRV - [2009.06.21 02:56:14 | 000,045,984 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\btwusb.sys -- (BTWUSB)
    DRV - [2008.11.03 08:03:28 | 000,013,880 | ---- | M] ( ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\kbfiltr.sys -- (kbfiltr)
    DRV - [2008.07.24 10:37:10 | 000,156,816 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\btwdndis.sys -- (BTWDNDIS)
    DRV - [2008.04.08 17:59:28 | 000,010,752 | ---- | M] (ASUSTeK Computer Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ASUSACPI.SYS -- (AsusACPI)
    DRV - [2008.02.04 10:57:44 | 000,037,160 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\btport.sys -- (BTDriver)


    ========== Standard Registry (SafeList) ==========


    ========== Internet Explorer ==========

    IE - HKLM\..\SearchScopes,DefaultScope =
    IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&form=ASUTDF&pc=MAAU&src=IE-SearchBox

    IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.cz/
    IE - HKCU\..\SearchScopes,DefaultScope =
    IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&form=ASUTDF&pc=MAAU&src=IE-SearchBox
    IE - HKCU\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
    IE - HKCU\..\SearchScopes\{D344B2D2-AFA4-43BE-BA8B-35B20ED03A30}: "URL" = http://www.google.com/search?q={sea...rce}&ie={inputEncoding?}&oe={outputEncoding?}
    IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


    ========== FireFox ==========

    FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_5_502_146.dll ()
    FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
    FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
    FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.13.2: C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation)
    FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.13.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
    FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
    FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8081.0709: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
    FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
    FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.124\npGoogleUpdate3.dll (Google Inc.)
    FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.124\npGoogleUpdate3.dll (Google Inc.)
    FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

    FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2012.02.27 20:49:40 | 000,000,000 | ---D | M]


    ========== Chrome ==========

    CHR - homepage: http://www.google.cz/
    CHR - default_search_provider: Google (Enabled)
    CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:eek:riginalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding}
    CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms}&sugkey={google:suggestAPIKeyParameter}
    CHR - homepage: http://www.google.cz/
    CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\24.0.1312.57\PepperFlash\pepflashplayer.dll
    CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
    CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\24.0.1312.57\ppGoogleNaClPluginChrome.dll
    CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\24.0.1312.57\pdf.dll
    CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
    CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll
    CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Enabled) = C:\Program Files\Windows Media Player\npdsplay.dll
    CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll
    CHR - plugin: DivX VOD Helper Plug-in (Enabled) = C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll
    CHR - plugin: DivX Plus Web Player (Enabled) = C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll
    CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.124\npGoogleUpdate3.dll
    CHR - plugin: Java(TM) Platform SE 7 U13 (Enabled) = C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
    CHR - plugin: Windows Live\u00AE Photo Gallery (Enabled) = C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll
    CHR - plugin: Windows Presentation Foundation (Enabled) = C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
    CHR - plugin: Shockwave Flash (Enabled) = C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_5_502_146.dll
    CHR - plugin: Java Deployment Toolkit 7.0.130.20 (Enabled) = C:\WINDOWS\system32\npDeployJava1.dll
    CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll
    CHR - Extension: Dokumenty Google = C:\Documents and Settings\Elli\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\
    CHR - Extension: DivX Plus Web Player HTML5 \u003Cvideo\u003E = C:\Documents and Settings\Elli\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm\2.1.2.145_0\

    O1 HOSTS File: ([2013.02.06 17:38:20 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
    O1 - Hosts: 127.0.0.1 localhost
    O2 - BHO: (DivX Plus Web Player HTML5 <video>) - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
    O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
    O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
    O4 - HKLM..\Run: [APSDaemon] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
    O4 - HKLM..\Run: [AsusACPIServer] C:\Program Files\EeePC\ACPI\AsAcpiSvr.exe (ASUSTeK Computer Inc.)
    O4 - HKLM..\Run: [AsusEPCMonitor] C:\Program Files\EeePC\ACPI\AsEPCMon.exe (ASUSTeK Computer Inc.)
    O4 - HKLM..\Run: [AsusTray] C:\Program Files\EeePC\ACPI\AsTray.exe (ASUSTeK Computer Inc.)
    O4 - HKLM..\Run: [CapsHook] C:\Program Files\EeePC\CapsHook\CapsHook.exe (ASUS)
    O4 - HKLM..\Run: [DivXUpdate] C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
    O4 - HKLM..\Run: [LiveUpdate] C:\Program Files\Asus\LiveUpdate\LiveUpdate.exe ()
    O4 - HKLM..\Run: [MSC] C:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
    O4 - HKLM..\Run: [SDTray] C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe (Safer-Networking Ltd.)
    O4 - HKLM..\Run: [SynAsusAcpi] C:\Program Files\Synaptics\SynTP\SynAsusAcpi.exe (Synaptics Incorporated)
    O4 - HKLM..\Run: [UnlockerAssistant] C:\Program Files\Unlocker\UnlockerAssistant.exe ()
    O4 - Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Bluetooth.lnk = C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
    O4 - Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\SuperHybridEngine.lnk = C:\Program Files\ASUS\EeePC\Super Hybrid Engine\SuperHybridEngine.exe (ASUSTeK Computer Inc.)
    O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
    O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
    O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
    O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
    O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
    O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
    O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
    O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
    O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
    O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office12\EXCEL.EXE/3000 File not found
    O8 - Extra context menu item: Odeslat do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm ()
    O8 - Extra context menu item: Odeslat do zařízení Bluetooth - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
    O9 - Extra Button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
    O9 - Extra 'Tools' menuitem : @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
    O16 - DPF: {149E45D8-163E-4189-86FC-45022AB2B6C9} file:///C:/Program%20Files/Talismania/Images/stg_drm.ocx (SpinTop DRM Control)
    O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://www.update.microsoft.com/win...ls/en/x86/client/wuweb_site.cab?1360031696312 (WUWebControl Class)
    O16 - DPF: {CC450D71-CC90-424C-8638-1F2DBAC87A54} file:///C:/Program%20Files/Talismania/Images/armhelper.ocx (ArmHelper Control)
    O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
    O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{EFABCDD0-CC42-4EEE-9DD1-7CFE3EAC9EBD}: DhcpNameServer = 192.168.0.1
    O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
    O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
    O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
    O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
    O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Nebe.bmp
    O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Nebe.bmp
    O32 - HKLM CDRom: AutoRun - 1
    O32 - AutoRun File - [2009.12.24 03:19:24 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
    O34 - HKLM BootExecute: (autocheck autochk *)
    O35 - HKLM\..comfile [open] -- "%1" %*
    O35 - HKLM\..exefile [open] -- "%1" %*
    O37 - HKLM\...com [@ = ComFile] -- "%1" %*
    O37 - HKLM\...exe [@ = exefile] -- "%1" %*
    O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
    O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
     
  11. Fandomas

    Fandomas TS Rookie Topic Starter

    OTL PART 2


    ========== Files/Folders - Created Within 30 Days ==========

    [2013.02.06 18:04:51 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Elli\Plocha\OTL.exe
    [2013.02.06 17:45:32 | 000,000,000 | -HSD | C] -- C:\RECYCLER
    [2013.02.06 17:42:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\LastGood
    [2013.02.06 17:23:06 | 000,000,000 | RHSD | C] -- C:\cmdcons
    [2013.02.06 17:21:04 | 000,518,144 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe
    [2013.02.06 17:21:04 | 000,406,528 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe
    [2013.02.06 17:21:04 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe
    [2013.02.06 17:21:04 | 000,060,416 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe
    [2013.02.06 17:20:45 | 000,000,000 | ---D | C] -- C:\Qoobox
    [2013.02.06 17:20:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\erdnt
    [2013.02.06 00:09:50 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Elli\Nabídka Start\Programy\Nástroje pro správu
    [2013.02.06 00:05:48 | 000,000,000 | ---D | C] -- C:\! odvšivení
    [2013.02.05 23:33:14 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch
    [2013.02.05 21:01:20 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\bits
    [2013.02.05 20:55:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\ServicePackFiles
    [2013.02.05 20:53:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\EHome
    [2013.02.05 20:31:33 | 000,000,000 | ---D | C] -- C:\Config.Msi
    [2013.02.05 05:01:56 | 000,116,224 | ---- | C] (Xerox) -- C:\WINDOWS\System32\dllcache\xrxwiadr.dll
    [2013.02.05 05:01:49 | 000,023,040 | ---- | C] (Xerox Corporation) -- C:\WINDOWS\System32\dllcache\xrxwbtmp.dll
    [2013.02.05 05:01:20 | 000,099,865 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\xlog.exe
    [2013.02.05 05:01:12 | 000,016,970 | ---- | C] (US Robotics MCD (Megahertz)) -- C:\WINDOWS\System32\dllcache\xem336n5.sys
    [2013.02.05 04:59:04 | 000,154,624 | ---- | C] (Lucent Technologies) -- C:\WINDOWS\System32\dllcache\wlluc48.sys
    [2013.02.05 04:58:55 | 000,034,890 | ---- | C] (Raytheon Corp.) -- C:\WINDOWS\System32\dllcache\wlandrv2.sys
    [2013.02.05 04:58:17 | 000,771,581 | ---- | C] (Rockwell) -- C:\WINDOWS\System32\dllcache\winacisa.sys
    [2013.02.05 04:57:20 | 000,035,871 | ---- | C] (Winbond Electronics Corp.) -- C:\WINDOWS\System32\dllcache\wbfirdma.sys
    [2013.02.05 04:56:29 | 000,016,925 | ---- | C] (Winbond Electronics Corporation) -- C:\WINDOWS\System32\dllcache\w940nd.sys
    [2013.02.05 04:56:23 | 000,019,016 | ---- | C] (Winbond Electronics Corporation) -- C:\WINDOWS\System32\dllcache\w926nd.sys
    [2013.02.05 04:56:16 | 000,019,528 | ---- | C] (Winbond Electronics Corporation) -- C:\WINDOWS\System32\dllcache\w840nd.sys
    [2013.02.05 04:56:02 | 000,064,605 | ---- | C] (PCtel, Inc.) -- C:\WINDOWS\System32\dllcache\vvoice.sys
    [2013.02.05 04:55:50 | 000,397,502 | ---- | C] (PCtel, Inc.) -- C:\WINDOWS\System32\dllcache\vpctcom.sys
    [2013.02.05 04:55:38 | 000,604,253 | ---- | C] (PCTEL, INC.) -- C:\WINDOWS\System32\dllcache\vmodem.sys
    [2013.02.05 04:55:26 | 000,249,402 | ---- | C] (Xircom) -- C:\WINDOWS\System32\dllcache\vinwm.sys
    [2013.02.05 04:54:29 | 000,765,884 | ---- | C] (U.S. Robotics, Inc.) -- C:\WINDOWS\System32\dllcache\usrti.sys
    [2013.02.05 04:53:52 | 000,794,399 | ---- | C] (U.S. Robotics, Inc.) -- C:\WINDOWS\System32\dllcache\usr1806v.sys
    [2013.02.05 04:53:45 | 000,793,598 | ---- | C] (U.S. Robotics, Inc.) -- C:\WINDOWS\System32\dllcache\usr1806.sys
    [2013.02.05 04:53:36 | 000,794,654 | ---- | C] (U.S. Robotics, Inc.) -- C:\WINDOWS\System32\dllcache\usr1801.sys
    [2013.02.05 04:53:08 | 000,032,384 | ---- | C] (KLSI USA, Inc.) -- C:\WINDOWS\System32\dllcache\usb101et.sys
    [2013.02.05 04:52:19 | 000,050,688 | ---- | C] (UMAX DATA SYSTEMS INC.) -- C:\WINDOWS\System32\dllcache\umaxscan.dll
    [2013.02.05 04:51:50 | 000,212,480 | ---- | C] (UMAX DATA SYSTEMS INC.) -- C:\WINDOWS\System32\dllcache\um54scan.dll
    [2013.02.05 04:51:44 | 000,216,576 | ---- | C] (UMAX DATA SYSTEMS INC.) -- C:\WINDOWS\System32\dllcache\um34scan.dll
    [2013.02.05 04:51:02 | 000,166,784 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\tridxpm.sys
    [2013.02.05 04:50:55 | 000,525,568 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\tridxp.dll
    [2013.02.05 04:50:48 | 000,159,232 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\tridkbm.sys
    [2013.02.05 04:50:42 | 000,440,576 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\tridkb.dll
    [2013.02.05 04:50:35 | 000,222,336 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\trid3dm.sys
    [2013.02.05 04:50:29 | 000,315,520 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\trid3d.dll
    [2013.02.05 04:49:21 | 000,123,995 | ---- | C] (Tiger Jet Network) -- C:\WINDOWS\System32\dllcache\tjisdn.sys
    [2013.02.05 04:49:07 | 000,138,528 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\tgiulnt5.sys
    [2013.02.05 04:49:00 | 000,081,408 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\tgiul50.dll
    [2013.02.05 04:48:56 | 000,149,376 | ---- | C] (M-Systems) -- C:\WINDOWS\System32\dllcache\tffsport.sys
    [2013.02.05 04:48:45 | 000,017,129 | ---- | C] (TDK Corporation) -- C:\WINDOWS\System32\dllcache\tdkcd31.sys
    [2013.02.05 04:48:38 | 000,037,961 | ---- | C] (TDK Corporation) -- C:\WINDOWS\System32\dllcache\tdk100b.sys
    [2013.02.05 04:48:03 | 000,036,640 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\t2r4mini.sys
    [2013.02.05 04:47:56 | 000,172,768 | ---- | C] (Number Nine Visual Technology) -- C:\WINDOWS\System32\dllcache\t2r4disp.dll
    [2013.02.05 04:46:12 | 000,155,648 | ---- | C] (Stallion Technologies) -- C:\WINDOWS\System32\dllcache\stlnprop.dll
    [2013.02.05 04:46:06 | 000,053,248 | ---- | C] (Stallion Technologies) -- C:\WINDOWS\System32\dllcache\stlncoin.dll
    [2013.02.05 04:46:00 | 000,285,792 | ---- | C] (Stallion Technologies) -- C:\WINDOWS\System32\dllcache\stlnata.sys
    [2013.02.05 04:45:50 | 000,017,024 | ---- | C] (SCM Microsystems, Inc.) -- C:\WINDOWS\System32\dllcache\stcusb.sys
    [2013.02.05 04:45:31 | 000,048,736 | ---- | C] (3Com) -- C:\WINDOWS\System32\dllcache\srwlnd5.sys
    [2013.02.05 04:44:30 | 000,019,072 | ---- | C] (Adaptec, Inc.) -- C:\WINDOWS\System32\dllcache\sparrow.sys
    [2013.02.05 04:43:09 | 000,058,368 | ---- | C] (Silicon Motion Inc.) -- C:\WINDOWS\System32\dllcache\smiminib.sys
    [2013.02.05 04:43:01 | 000,147,200 | ---- | C] (Silicon Motion Inc.) -- C:\WINDOWS\System32\dllcache\smidispb.dll
    [2013.02.05 04:42:52 | 000,025,034 | ---- | C] (SMC Networks, Inc.) -- C:\WINDOWS\System32\dllcache\smcpwr2n.sys
    [2013.02.05 04:42:45 | 000,035,913 | ---- | C] (SMC) -- C:\WINDOWS\System32\dllcache\smcirda.sys
    [2013.02.05 04:42:39 | 000,024,576 | ---- | C] (SMC Networks, Inc.) -- C:\WINDOWS\System32\dllcache\smc8000n.sys
    [2013.02.05 04:41:23 | 000,063,547 | ---- | C] (Symbol Technologies) -- C:\WINDOWS\System32\dllcache\sla30nd5.sys
    [2013.02.05 04:41:17 | 000,091,294 | ---- | C] (SysKonnect, a business unit of Schneider & Koch & Co. Datensysteme GmbH.) -- C:\WINDOWS\System32\dllcache\skfpwin.sys
    [2013.02.05 04:41:09 | 000,095,018 | ---- | C] (SysKonnect GmbH.) -- C:\WINDOWS\System32\dllcache\sk98xwin.sys
    [2013.02.05 04:40:55 | 000,032,768 | ---- | C] (SiS Corporation) -- C:\WINDOWS\System32\dllcache\sisnic.sys
    [2013.02.05 04:39:31 | 000,161,728 | ---- | C] (Micro Systemation) -- C:\WINDOWS\System32\dllcache\sgsmusb.sys
    [2013.02.05 04:39:26 | 000,018,400 | ---- | C] (Micro Systemation) -- C:\WINDOWS\System32\dllcache\sgsmld.sys
    [2013.02.05 04:39:20 | 000,098,080 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\sgiulnt5.sys
    [2013.02.05 04:39:14 | 000,386,560 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\sgiul50.dll
    [2013.02.05 04:38:06 | 000,017,280 | ---- | C] (SCM Microsystems) -- C:\WINDOWS\System32\dllcache\scr111.sys
    [2013.02.05 04:37:50 | 000,023,936 | ---- | C] (OMNIKEY AG) -- C:\WINDOWS\System32\dllcache\sccmusbm.sys
    [2013.02.05 04:37:44 | 000,023,936 | ---- | C] (OMNIKEY AG) -- C:\WINDOWS\System32\dllcache\sccmn50m.sys
    [2013.02.05 04:37:00 | 000,077,824 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3sav4m.sys
    [2013.02.05 04:36:54 | 000,198,400 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3sav4.dll
    [2013.02.05 04:36:47 | 000,061,504 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3sav3dm.sys
    [2013.02.05 04:36:41 | 000,179,264 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3sav3d.dll
    [2013.02.05 04:36:35 | 000,210,496 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3mvirge.dll
    [2013.02.05 04:36:28 | 000,062,496 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3mtrio.dll
    [2013.02.05 04:36:22 | 000,041,216 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3mt3d.sys
    [2013.02.05 04:36:15 | 000,182,272 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3mt3d.dll
    [2013.02.05 04:36:09 | 000,166,720 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3m.sys
    [2013.02.05 04:35:52 | 000,082,432 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia450.dll
    [2013.02.05 04:35:46 | 000,079,872 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia430.dll
    [2013.02.05 04:35:40 | 000,029,696 | ---- | C] (RICOH Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rw450ext.dll
    [2013.02.05 04:35:38 | 000,028,160 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rw430ext.dll
    [2013.02.05 04:35:03 | 000,009,728 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\rsmgrstr.dll
    [2013.02.05 04:34:45 | 000,079,104 | ---- | C] (Comtrol Corporation) -- C:\WINDOWS\System32\dllcache\rocket.sys
    [2013.02.05 04:34:35 | 000,037,563 | ---- | C] (RadioLAN) -- C:\WINDOWS\System32\dllcache\rlnet5.sys
    [2013.02.05 04:34:21 | 000,086,097 | ---- | C] (Xircom) -- C:\WINDOWS\System32\dllcache\reslog32.dll
    [2013.02.05 04:33:19 | 000,714,762 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\r2mdmkxx.sys
    [2013.02.05 04:33:12 | 000,899,146 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\r2mdkxga.sys
    [2013.02.05 04:31:44 | 000,130,942 | ---- | C] (PCTEL, INC.) -- C:\WINDOWS\System32\dllcache\ptserlv.sys
    [2013.02.05 04:31:38 | 000,112,574 | ---- | C] (PCTEL, INC.) -- C:\WINDOWS\System32\dllcache\ptserlp.sys
    [2013.02.05 04:31:32 | 000,128,286 | ---- | C] (PCTEL, INC.) -- C:\WINDOWS\System32\dllcache\ptserli.sys
    [2013.02.05 04:31:03 | 000,016,128 | ---- | C] (SCM Microsystems, Inc.) -- C:\WINDOWS\System32\dllcache\pscr.sys
    [2013.02.05 04:28:47 | 000,086,016 | ---- | C] (PCtel, Inc.) -- C:\WINDOWS\System32\dllcache\pctspk.exe
    [2013.02.05 04:28:23 | 000,026,153 | ---- | C] (Linksys) -- C:\WINDOWS\System32\dllcache\pcmlm56.sys
    [2013.02.05 04:28:13 | 000,029,502 | ---- | C] (Marconi Communications, Inc.) -- C:\WINDOWS\System32\dllcache\pca200e.sys
    [2013.02.05 04:28:07 | 000,030,495 | ---- | C] (Linksys) -- C:\WINDOWS\System32\dllcache\pc100nds.sys
    [2013.02.05 04:26:35 | 000,054,186 | ---- | C] (Ositech Communications, Inc.) -- C:\WINDOWS\System32\dllcache\otcsercb.sys
    [2013.02.05 04:26:12 | 000,027,209 | ---- | C] (Ositech Communications, Inc.) -- C:\WINDOWS\System32\dllcache\otc06x5.sys
    [2013.02.05 04:26:03 | 000,054,528 | ---- | C] (Yamaha Corp.) -- C:\WINDOWS\System32\dllcache\opl3sax.sys
    [2013.02.05 04:24:39 | 000,051,552 | ---- | C] (Kensington Technology Group) -- C:\WINDOWS\System32\dllcache\ntgrip.sys
    [2013.02.05 04:23:54 | 000,087,040 | ---- | C] (NeoMagic Corporation) -- C:\WINDOWS\System32\dllcache\nm6wdm.sys
    [2013.02.05 04:23:48 | 000,126,080 | ---- | C] (NeoMagic Corporation) -- C:\WINDOWS\System32\dllcache\nm5a2wdm.sys
    [2013.02.05 04:23:31 | 000,132,695 | ---- | C] (802.11b) -- C:\WINDOWS\System32\dllcache\netwlan5.sys
    [2013.02.05 04:22:40 | 000,039,264 | ---- | C] (NeoMagic Corporation) -- C:\WINDOWS\System32\dllcache\neo20xx.sys
    [2013.02.05 04:22:34 | 000,060,480 | ---- | C] (NeoMagic Corporation) -- C:\WINDOWS\System32\dllcache\neo20xx.dll
    [2013.02.05 04:22:01 | 000,091,488 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\n9i3disp.dll
    [2013.02.05 04:21:56 | 000,027,936 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\n9i3d.sys
    [2013.02.05 04:21:50 | 000,033,088 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\n9i128v2.sys
    [2013.02.05 04:21:45 | 000,059,104 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\n9i128v2.dll
    [2013.02.05 04:21:39 | 000,013,664 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\n9i128.sys
    [2013.02.05 04:21:34 | 000,035,392 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\n9i128.dll
    [2013.02.05 04:21:14 | 000,075,520 | ---- | C] (Moxa Technologies Co., Ltd.) -- C:\WINDOWS\System32\dllcache\mxport.sys
    [2013.02.05 04:21:08 | 000,007,168 | ---- | C] (Moxa Technologies Co., Ltd) -- C:\WINDOWS\System32\dllcache\mxport.dll
    [2013.02.05 04:21:03 | 000,019,968 | ---- | C] (Macronix International Co., Ltd. ) -- C:\WINDOWS\System32\dllcache\mxnic.sys
    [2013.02.05 04:20:57 | 000,019,968 | ---- | C] (Moxa Technologies Co., Ltd) -- C:\WINDOWS\System32\dllcache\mxicfg.dll
    [2013.02.05 04:20:50 | 000,022,144 | ---- | C] (Moxa Technologies Co., Ltd.) -- C:\WINDOWS\System32\dllcache\mxcard.sys
    [2013.02.05 04:17:12 | 000,017,280 | ---- | C] (American Megatrends Inc.) -- C:\WINDOWS\System32\dllcache\mraid35x.sys
    [2013.02.05 04:15:10 | 000,164,586 | ---- | C] (Madge Networks Ltd) -- C:\WINDOWS\System32\dllcache\mdgndis5.sys
    [2013.02.05 04:14:08 | 000,797,500 | ---- | C] (LT) -- C:\WINDOWS\System32\dllcache\ltsmt.sys
    [2013.02.05 04:14:02 | 000,802,683 | ---- | C] (Lucent Technologies) -- C:\WINDOWS\System32\dllcache\ltsm.sys
    [2013.02.05 04:13:58 | 000,420,736 | ---- | C] (LT) -- C:\WINDOWS\System32\dllcache\ltmdmntt.sys
    [2013.02.05 04:13:53 | 000,576,746 | ---- | C] (LT) -- C:\WINDOWS\System32\dllcache\ltmdmntl.sys
    [2013.02.05 04:13:52 | 000,606,556 | ---- | C] (LT) -- C:\WINDOWS\System32\dllcache\ltmdmnt.sys
    [2013.02.05 04:13:45 | 000,727,786 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\ltck000c.sys
    [2013.02.05 04:13:18 | 000,070,730 | ---- | C] (Linksys Group, Inc.) -- C:\WINDOWS\System32\dllcache\lne100tx.sys
    [2013.02.05 04:13:12 | 000,020,573 | ---- | C] (The Linksts Group ) -- C:\WINDOWS\System32\dllcache\lne100.sys
    [2013.02.05 04:13:05 | 000,025,065 | ---- | C] (D-Link) -- C:\WINDOWS\System32\dllcache\lmndis3.sys
    [2013.02.05 04:12:58 | 000,015,872 | ---- | C] (Litronic Industries) -- C:\WINDOWS\System32\dllcache\lit220p.sys
    [2013.02.05 04:12:47 | 000,026,442 | ---- | C] (SMSC) -- C:\WINDOWS\System32\dllcache\lanepic5.sys
    [2013.02.05 04:12:40 | 000,019,016 | ---- | C] (Kingston Technology Company ) -- C:\WINDOWS\System32\dllcache\ktc111.sys
    [2013.02.05 04:10:25 | 000,023,552 | ---- | C] (MKNet Corporation) -- C:\WINDOWS\System32\dllcache\irmk7.sys
    [2013.02.05 04:07:57 | 000,372,824 | ---- | C] (Xircom) -- C:\WINDOWS\System32\dllcache\iconf32.dll
    [2013.02.05 04:03:43 | 000,068,608 | ---- | C] (Avisioin) -- C:\WINDOWS\System32\dllcache\hpgt53tk.dll
    [2013.02.05 04:03:25 | 000,126,976 | ---- | C] (Hewlett Packard) -- C:\WINDOWS\System32\dllcache\hpgt34tk.dll
    [2013.02.05 04:02:01 | 000,028,416 | ---- | C] (Gemplus) -- C:\WINDOWS\System32\dllcache\grserial.sys
    [2013.02.05 04:01:57 | 000,082,432 | ---- | C] (Gemplus) -- C:\WINDOWS\System32\dllcache\grclass.sys
    [2013.02.05 04:01:53 | 000,017,408 | ---- | C] (Gemplus) -- C:\WINDOWS\System32\dllcache\gpr400.sys
    [2013.02.05 04:01:17 | 000,454,912 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\fxusbase.sys
    [2013.02.05 04:00:22 | 000,455,296 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\fusbbase.sys
    [2013.02.05 04:00:17 | 000,455,680 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\fus2base.sys
    [2013.02.05 04:00:01 | 000,442,240 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\fpnpbase.sys
    [2013.02.05 03:59:54 | 000,441,728 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\fpcmbase.sys
    [2013.02.05 03:59:49 | 000,444,416 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\fpcibase.sys
    [2013.02.05 03:59:42 | 000,034,173 | ---- | C] (Marconi Communications, Inc.) -- C:\WINDOWS\System32\dllcache\forehe.sys
    [2013.02.05 03:58:58 | 000,024,618 | ---- | C] (NETGEAR) -- C:\WINDOWS\System32\dllcache\fa410nd5.sys
    [2013.02.05 03:58:50 | 000,011,850 | ---- | C] (FUJITSU LIMITED) -- C:\WINDOWS\System32\dllcache\f3ab18xj.sys
    [2013.02.05 03:58:46 | 000,012,362 | ---- | C] (FUJITSU LIMITED) -- C:\WINDOWS\System32\dllcache\f3ab18xi.sys
    [2013.02.05 03:54:56 | 000,334,208 | ---- | C] (Yamaha Corp.) -- C:\WINDOWS\System32\dllcache\ds1wdm.sys
    [2013.02.05 03:54:33 | 000,028,062 | ---- | C] (National Semiconductor Coproration) -- C:\WINDOWS\System32\dllcache\dp83820.sys
    [2013.02.05 03:54:03 | 000,029,696 | ---- | C] (CNet Technology, Inc. ) -- C:\WINDOWS\System32\dllcache\dm9pci5.sys
    [2013.02.05 03:53:58 | 000,026,698 | ---- | C] (D-Link Corporation) -- C:\WINDOWS\System32\dllcache\dlh5xnd5.sys
    [2013.02.05 03:53:55 | 000,952,007 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\diwan.sys
    [2013.02.05 03:53:46 | 000,236,060 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\ditrace.exe
    [2013.02.05 03:53:43 | 000,038,985 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\disrvsu.dll
    [2013.02.05 03:53:38 | 000,006,729 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\disrvci.dll
    [2013.02.05 03:53:27 | 000,091,305 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\dimaint.sys
    [2013.02.05 03:52:25 | 000,024,649 | ---- | C] (D-Link) -- C:\WINDOWS\System32\dllcache\dfe650d.sys
    [2013.02.05 03:52:23 | 000,024,648 | ---- | C] (D-Link) -- C:\WINDOWS\System32\dllcache\dfe650.sys
    [2013.02.05 03:52:11 | 000,020,928 | ---- | C] (Digital Networks, LLC) -- C:\WINDOWS\System32\dllcache\defpa.sys
    [2013.02.05 03:51:07 | 000,048,640 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwrwdm.sys
    [2013.02.05 03:51:04 | 000,093,952 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwcwdm.sys
    [2013.02.05 03:51:01 | 000,111,872 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwcspud.sys
    [2013.02.05 03:50:59 | 000,003,584 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwcosnt5.sys
    [2013.02.05 03:50:57 | 000,072,832 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwbwdm.sys
    [2013.02.05 03:50:55 | 000,003,072 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwbmidi.sys
    [2013.02.05 03:50:53 | 000,003,072 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwbase.sys
    [2013.02.05 03:50:48 | 000,250,880 | ---- | C] (Comtrol® Corporation) -- C:\WINDOWS\System32\dllcache\ctmasetp.dll
    [2013.02.05 03:50:29 | 000,216,576 | ---- | C] (COMPAQ Inc.) -- C:\WINDOWS\System32\dllcache\cpscan.dll
    [2013.02.05 03:49:42 | 000,020,864 | ---- | C] (OMNIKEY AG) -- C:\WINDOWS\System32\dllcache\cmbp0wdm.sys
    [2013.02.05 03:49:12 | 000,980,034 | ---- | C] (Xircom) -- C:\WINDOWS\System32\dllcache\cicap.sys
    [2013.02.05 03:48:45 | 000,049,182 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\cem56n5.sys
    [2013.02.05 03:48:44 | 000,022,044 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\cem33n5.sys
    [2013.02.05 03:48:43 | 000,022,044 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\cem28n5.sys
    [2013.02.05 03:48:42 | 000,027,164 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\ce3n5.sys
    [2013.02.05 03:48:40 | 000,021,530 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\ce2n5.sys
    [2013.02.05 03:48:28 | 000,714,698 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\cbmdmkxx.sys
    [2013.02.05 03:48:26 | 000,046,108 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\cben5.sys
    [2013.02.05 03:48:25 | 000,039,680 | ---- | C] (Silicom Ltd.) -- C:\WINDOWS\System32\dllcache\cb325.sys
    [2013.02.05 03:48:23 | 000,037,916 | ---- | C] (Fast Ethernet Controller Provider) -- C:\WINDOWS\System32\dllcache\cb102.sys
    [2013.02.05 03:48:15 | 000,032,256 | ---- | C] (Eicon Technology Corporation) -- C:\WINDOWS\System32\dllcache\diapi2NT.dll
    [2013.02.05 03:48:09 | 000,164,923 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\diapi2.sys
    [2013.02.05 03:46:17 | 000,031,529 | ---- | C] (BreezeCOM) -- C:\WINDOWS\System32\dllcache\brzwlan.sys
    [2013.02.05 03:46:16 | 000,010,368 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS\System32\dllcache\brusbscn.sys
    [2013.02.05 03:46:14 | 000,011,008 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS\System32\dllcache\brusbmdm.sys
    [2013.02.05 03:46:12 | 000,060,416 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS\System32\dllcache\brserwdm.sys
    [2013.02.05 03:46:11 | 000,009,728 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brserif.dll
    [2013.02.05 03:46:09 | 000,005,120 | ---- | C] (Brother Industries,Ltd.) -- C:\WINDOWS\System32\dllcache\brscnrsm.dll
    [2013.02.05 03:46:07 | 000,039,552 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS\System32\dllcache\brparwdm.sys
    [2013.02.05 03:46:06 | 000,003,168 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS\System32\dllcache\brparimg.sys
    [2013.02.05 03:46:00 | 000,041,472 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brmfusb.dll
    [2013.02.05 03:45:59 | 000,032,256 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brmfrsmg.exe
    [2013.02.05 03:45:57 | 000,029,696 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brmflpt.dll
    [2013.02.05 03:45:54 | 000,015,360 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brmfbidi.dll
    [2013.02.05 03:45:52 | 000,003,968 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brfiltup.sys
    [2013.02.05 03:45:51 | 000,012,160 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brfiltlo.sys
    [2013.02.05 03:45:50 | 000,002,944 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS\System32\dllcache\brfilt.sys
    [2013.02.05 03:45:48 | 000,012,800 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brevif.dll
    [2013.02.05 03:45:46 | 000,009,728 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS\System32\dllcache\brcoinst.dll
    [2013.02.05 03:45:45 | 000,019,456 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brbidiif.dll
    [2013.02.05 03:45:32 | 000,871,388 | ---- | C] (BCM) -- C:\WINDOWS\System32\dllcache\bcmdm.sys
    [2013.02.05 03:45:20 | 000,036,128 | ---- | C] (3Dfx Interactive, Inc.) -- C:\WINDOWS\System32\dllcache\banshee.sys
    [2013.02.05 03:45:19 | 000,342,336 | ---- | C] (3Dfx Interactive, Inc.) -- C:\WINDOWS\System32\dllcache\banshee.dll
    [2013.02.05 03:45:15 | 000,089,952 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\b1cbase.sys
    [2013.02.05 03:45:13 | 000,036,992 | ---- | C] (Aztech Systems Ltd) -- C:\WINDOWS\System32\dllcache\aztw2320.sys
    [2013.02.05 03:45:09 | 000,037,568 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\avmwan.sys
    [2013.02.05 03:45:07 | 000,144,384 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\avmenum.dll
    [2013.02.05 03:45:05 | 000,087,552 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\avmcoxp.dll
    [2013.02.05 03:43:11 | 000,097,354 | ---- | C] (Bay Networks, Inc.) -- C:\WINDOWS\System32\dllcache\aspndis3.sys
    [2013.02.05 03:42:57 | 000,016,969 | ---- | C] (AmbiCom, Inc.) -- C:\WINDOWS\System32\dllcache\amb8002.sys
    [2013.02.05 03:42:19 | 000,046,112 | ---- | C] (Adaptec, Inc ) -- C:\WINDOWS\System32\dllcache\adptsf50.sys
    [2013.02.05 03:42:18 | 000,010,880 | ---- | C] (Aureal, Inc.) -- C:\WINDOWS\System32\dllcache\admjoy.sys
    [2013.02.05 03:42:17 | 000,747,392 | ---- | C] (Aureal, Inc.) -- C:\WINDOWS\System32\dllcache\adm8830.sys
    [2013.02.05 03:42:16 | 000,584,448 | ---- | C] (Aureal, Inc.) -- C:\WINDOWS\System32\dllcache\adm8810.sys
    [2013.02.05 03:42:16 | 000,553,984 | ---- | C] (Aureal, Inc.) -- C:\WINDOWS\System32\dllcache\adm8820.sys
    [2013.02.05 03:42:11 | 000,061,440 | ---- | C] (Color Flatbed Scanner) -- C:\WINDOWS\System32\dllcache\acerscad.dll
    [2013.02.05 03:42:01 | 000,462,848 | ---- | C] (Aureal Inc.) -- C:\WINDOWS\System32\dllcache\a3dapi.dll
    [2013.02.05 03:42:00 | 000,098,304 | ---- | C] (Aureal Semiconductor) -- C:\WINDOWS\System32\dllcache\a3d.dll
    [2013.02.05 03:41:54 | 000,148,352 | ---- | C] (3dfx Interactive, Inc.) -- C:\WINDOWS\System32\dllcache\3dfxvsm.sys
    [2013.02.05 03:41:53 | 000,689,216 | ---- | C] (3dfx Interactive, Inc.) -- C:\WINDOWS\System32\dllcache\3dfxvs.dll
    [2013.02.05 03:41:52 | 000,762,780 | ---- | C] (3Com, Inc.) -- C:\WINDOWS\System32\dllcache\3cwmcru.sys
    [2013.02.05 01:39:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Elli\Data aplikací\ElevatedDiagnostics
    [2013.02.05 00:15:38 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Elli\Recent
    [2013.02.04 23:57:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Google Chrome
    [2013.02.04 23:54:48 | 000,000,000 | ---D | C] -- C:\Program Files\Google
    [2013.02.04 23:48:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\CCleaner
    [2013.02.04 23:47:48 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
    [2013.02.04 22:32:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Elli\Nabídka Start\Programy\Unlocker
    [2013.02.04 22:18:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Spybot - Search & Destroy
    [2013.02.04 22:17:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Spybot - Search & Destroy 2
    [2013.02.04 22:17:11 | 000,015,224 | ---- | C] (Safer Networking Limited) -- C:\WINDOWS\System32\sdnclean.exe
    [2013.02.04 22:15:56 | 000,000,000 | ---D | C] -- C:\Program Files\Spybot - Search & Destroy 2
    [2013.02.04 22:10:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Elli\Data aplikací\Malwarebytes
    [2013.02.04 22:09:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Malwarebytes' Anti-Malware
    [2013.02.04 22:09:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
    [2013.02.04 22:09:30 | 000,021,104 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
    [2013.02.04 22:09:30 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
    [2013.02.04 22:08:04 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Security Client
    [2013.02.04 21:53:17 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
    [2013.02.04 21:44:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Elli\Local Settings\Data aplikací\Opera
    [2013.02.04 21:44:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Elli\Data aplikací\Opera
    [2013.02.04 19:57:43 | 000,000,000 | ---D | C] -- C:\Program Files\AVAST Software
    [2013.02.04 19:57:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\AVAST Software
    [2013.02.04 19:47:20 | 000,000,000 | ---D | C] -- C:\Program Files\Opera
    [2013.02.04 15:31:53 | 000,000,000 | RHSD | C] -- C:\Documents and Settings\Elli\M-15-0935-5960-5932
    [2013.01.27 19:51:58 | 000,000,000 | ---D | C] -- C:\Program Files\QuickTime
    [2013.01.27 17:53:06 | 000,050,704 | ---- | C] (CACE Technologies, Inc.) -- C:\WINDOWS\System32\drivers\npf.sys
    [2013.01.24 18:47:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Data aplikací\Macromedia
    [2013.01.24 18:47:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Data aplikací\Adobe
    [2013.01.24 18:31:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Elli\Data aplikací\Qase
    [2013.01.24 18:31:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Elli\Data aplikací\Rusay
    [2013.01.24 18:31:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Elli\Data aplikací\Diquu
    [2013.01.24 18:22:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Elli\Data aplikací\Myat
    [2013.01.24 18:22:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Elli\Data aplikací\Ecexar
    [2013.01.24 18:22:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Elli\Data aplikací\Keky
    [2013.01.21 20:44:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Data aplikací\Macromedia
    [2013.01.21 20:44:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Data aplikací\Adobe
    [2013.01.21 20:28:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Elli\Tracing
    [2013.01.21 20:26:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Local Settings
    [1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
    [1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

    ========== Files - Modified Within 30 Days ==========

    [2013.02.06 18:13:00 | 000,000,914 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job
    [2013.02.06 18:04:42 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Elli\Plocha\OTL.exe
    [2013.02.06 18:00:01 | 000,000,936 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
    [2013.02.06 17:48:12 | 000,000,396 | -H-- | M] () -- C:\WINDOWS\tasks\Microsoft Antimalware Scheduled Scan.job
    [2013.02.06 17:38:27 | 000,001,158 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
    [2013.02.06 17:38:20 | 000,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
    [2013.02.06 17:38:05 | 000,000,932 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
    [2013.02.06 17:37:55 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
    [2013.02.06 17:23:11 | 000,000,327 | RHS- | M] () -- C:\boot.ini
    [2013.02.05 17:34:02 | 000,442,238 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
    [2013.02.05 17:34:02 | 000,438,868 | ---- | M] () -- C:\WINDOWS\System32\perfh005.dat
    [2013.02.05 17:34:02 | 000,083,564 | ---- | M] () -- C:\WINDOWS\System32\perfc005.dat
    [2013.02.05 17:34:02 | 000,072,174 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
    [2013.02.04 23:57:55 | 000,001,813 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Google Chrome.lnk
    [2013.02.04 23:16:36 | 000,000,211 | ---- | M] () -- C:\Boot.bak
    [2013.02.04 22:09:14 | 000,001,912 | ---- | M] () -- C:\WINDOWS\epplauncher.mif
    [2013.02.04 22:07:02 | 000,002,504 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
    [2013.02.04 15:31:07 | 000,217,600 | ---- | M] () -- C:\Documents and Settings\Elli\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
    [2013.01.27 17:53:06 | 000,050,704 | ---- | M] (CACE Technologies, Inc.) -- C:\WINDOWS\System32\drivers\npf.sys
    [2013.01.25 19:57:44 | 000,000,664 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat
    [1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
    [1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

    ========== Files Created - No Company Name ==========

    [2013.02.06 17:23:11 | 000,000,211 | ---- | C] () -- C:\Boot.bak
    [2013.02.06 17:23:07 | 000,261,312 | RHS- | C] () -- C:\cmldr
    [2013.02.06 17:21:04 | 000,256,000 | ---- | C] () -- C:\WINDOWS\PEV.exe
    [2013.02.06 17:21:04 | 000,208,896 | ---- | C] () -- C:\WINDOWS\MBR.exe
    [2013.02.06 17:21:04 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
    [2013.02.06 17:21:04 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
    [2013.02.06 17:21:04 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
    [2013.02.05 20:55:32 | 000,064,352 | ---- | C] () -- C:\WINDOWS\System32\drivers\ativmc20.cod
    [2013.02.05 20:55:31 | 000,129,045 | ---- | C] () -- C:\WINDOWS\System32\drivers\cxthsfs2.cty
    [2013.02.05 20:55:29 | 000,067,866 | ---- | C] () -- C:\WINDOWS\System32\drivers\netwlan5.img
    [2013.02.05 05:01:48 | 000,018,944 | ---- | C] () -- C:\WINDOWS\System32\dllcache\xrxscnui.dll
    [2013.02.05 05:01:40 | 000,027,648 | ---- | C] () -- C:\WINDOWS\System32\dllcache\xrxftplt.exe
    [2013.02.05 04:31:19 | 000,033,280 | ---- | C] () -- C:\WINDOWS\System32\dllcache\psisrndr.ax
    [2013.02.05 04:31:10 | 000,363,520 | ---- | C] () -- C:\WINDOWS\System32\dllcache\psisdecd.dll
    [2013.02.05 04:26:27 | 000,043,689 | ---- | C] () -- C:\WINDOWS\System32\dllcache\otceth5.sys
    [2013.02.05 04:17:49 | 000,056,832 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msdvbnp.ax
    [2013.02.05 04:03:38 | 000,165,888 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hpgt53.dll
    [2013.02.05 04:03:29 | 000,093,696 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hpgt42.dll
    [2013.02.05 04:03:20 | 000,101,376 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hpgt34.dll
    [2013.02.05 04:03:11 | 000,089,088 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hpgt33.dll
    [2013.02.05 04:02:59 | 000,083,968 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hpgt21.dll
    [2013.02.05 03:53:53 | 000,029,768 | ---- | C] () -- C:\WINDOWS\System32\dllcache\divasu.dll
    [2013.02.05 03:53:51 | 000,037,962 | ---- | C] () -- C:\WINDOWS\System32\dllcache\divaprop.dll
    [2013.02.05 03:53:48 | 000,006,216 | ---- | C] () -- C:\WINDOWS\System32\dllcache\divaci.dll
    [2013.02.05 03:53:41 | 000,031,305 | ---- | C] () -- C:\WINDOWS\System32\dllcache\disrvpp.dll
    [2013.02.05 03:44:28 | 000,023,552 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atixbar.sys
    [2013.02.05 03:44:27 | 000,026,624 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ativxbar.sys
    [2013.02.05 03:44:23 | 000,019,456 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ativttxx.sys
    [2013.02.05 03:44:18 | 000,009,472 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ativmdcd.sys
    [2013.02.05 03:44:15 | 000,017,152 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atitvsnd.sys
    [2013.02.05 03:44:14 | 000,017,152 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atitunep.sys
    [2013.02.05 03:44:12 | 000,026,880 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atirtsnd.sys
    [2013.02.05 03:44:11 | 000,049,920 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atirtcap.sys
    [2013.02.05 03:44:06 | 000,010,240 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atipcxxx.sys
    [2013.02.05 03:43:39 | 000,046,464 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atibt829.sys
    [2013.02.04 23:57:53 | 000,001,813 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Google Chrome.lnk
    [2013.02.04 23:55:02 | 000,000,936 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
    [2013.02.04 23:55:02 | 000,000,932 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
    [2013.02.04 22:17:47 | 000,001,842 | ---- | C] () -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Spybot-S&D Start Center.lnk
    [2013.02.04 22:08:52 | 000,001,698 | ---- | C] () -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Microsoft Security Essentials.lnk
    [2013.02.04 19:48:22 | 000,000,914 | ---- | C] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job
    [2013.02.04 19:47:24 | 000,001,498 | ---- | C] () -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Opera.lnk
    [2013.01.21 20:56:25 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
    [2012.04.15 18:52:24 | 000,161,205 | ---- | C] () -- C:\WINDOWS\DirectShow Detective Uninstaller.exe
    [2012.02.21 10:29:22 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll
    [2012.01.29 11:03:00 | 000,217,600 | ---- | C] () -- C:\Documents and Settings\Elli\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
    [2012.01.27 10:10:37 | 000,006,144 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS
    [2012.01.27 07:42:13 | 000,000,125 | ---- | C] () -- C:\Documents and Settings\Elli\Local Settings\Data aplikací\fusioncache.dat
    [2012.01.27 07:39:32 | 000,004,692 | ---- | C] () -- C:\WINDOWS\System32\drivers\SamSfPa.dat
    [2012.01.27 07:39:32 | 000,000,008 | ---- | C] () -- C:\WINDOWS\System32\drivers\rtkhdaud.dat

    ========== ZeroAccess Check ==========

    [2010.03.18 00:19:38 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini

    [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

    [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

    [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
    "" = %SystemRoot%\system32\shdocvw.dll -- [2009.12.22 06:09:53 | 001,510,400 | ---- | M] (Microsoft Corporation)
    "ThreadingModel" = Apartment

    [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
    "" = %systemroot%\system32\wbem\fastprox.dll -- [2009.02.09 11:56:05 | 000,473,600 | ---- | M] (Microsoft Corporation)
    "ThreadingModel" = Free

    [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
    "" = %systemroot%\system32\wbem\wbemess.dll -- [2008.04.14 13:00:00 | 000,273,920 | ---- | M] (Microsoft Corporation)
    "ThreadingModel" = Both

    ========== LOP Check ==========

    [2013.02.04 22:49:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\AVAST Software
    [2010.03.18 01:04:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\EBI
    [2012.05.26 17:44:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\EL
    [2010.03.18 00:48:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Ralink Driver
    [2012.04.15 18:53:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\River Past G5
    [2010.03.18 01:04:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\RSMR
    [2012.12.12 18:55:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TEMP
    [2013.02.04 20:05:29 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\Elli\Data aplikací\3E72DA
    [2012.03.09 17:51:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Elli\Data aplikací\DDMSettings
    [2013.01.24 18:31:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Elli\Data aplikací\Diquu
    [2013.01.24 18:22:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Elli\Data aplikací\Ecexar
    [2013.02.05 01:39:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Elli\Data aplikací\ElevatedDiagnostics
    [2013.02.04 22:49:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Elli\Data aplikací\Keky
    [2012.01.27 11:44:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Elli\Data aplikací\LibreOffice
    [2013.01.24 19:29:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Elli\Data aplikací\Myat
    [2013.02.04 21:44:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Elli\Data aplikací\Opera
    [2012.01.27 12:06:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Elli\Data aplikací\Oracle
    [2013.01.24 18:31:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Elli\Data aplikací\Qase
    [2012.04.15 18:52:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Elli\Data aplikací\River Past G5
    [2013.02.04 23:05:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Elli\Data aplikací\Rusay
    [2012.12.01 18:21:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Elli\Data aplikací\SpinTop
    [2012.01.27 12:30:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Elli\Data aplikací\TeamViewer

    ========== Purity Check ==========



    ========== Alternate Data Streams ==========

    @Alternate Data Stream - 817843 bytes -> C:\WINDOWS\Temp:temp
    @Alternate Data Stream - 122 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:27ED9E62
    @Alternate Data Stream - 111 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:E1594149

    < End of report >
     
     
  12. Fandomas

    Fandomas TS Rookie Topic Starter

    OTL Extras logfile created on: 6.2.2013 18:05:05 - Run 1
    OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\Elli\Plocha
    Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
    Internet Explorer (Version = 8.0.6001.18702)
    Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

    1014,11 Mb Total Physical Memory | 368,94 Mb Available Physical Memory | 36,38% Memory free
    2,38 Gb Paging File | 1,84 Gb Available in Paging File | 77,28% Paging File free
    Paging file location(s): C:\pagefile.sys 1524 3048 [binary data]

    %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
    Drive C: | 80,01 Gb Total Space | 13,27 Gb Free Space | 16,59% Space Free | Partition Type: NTFS
    Drive D: | 62,16 Gb Total Space | 25,61 Gb Free Space | 41,20% Space Free | Partition Type: NTFS

    Computer Name: ELISABETHA | User Name: Elli | Logged in as Administrator.
    Boot Mode: Normal | Scan Mode: Current user | Quick Scan
    Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

    ========== Extra Registry (SafeList) ==========


    ========== File Associations ==========

    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
    .cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
    .html [@ = Opera.HTML] -- C:\Program Files\Opera\Opera.exe (Opera Software)
    .url [@ = InternetShortcut] -- rundll32.exe ieframe.dll,OpenURL %l

    [HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
    .html [@ = ChromeHTML] -- Reg Error: Key error. File not found

    ========== Shell Spawning ==========

    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
    batfile [open] -- "%1" %*
    cmdfile [open] -- "%1" %*
    comfile [open] -- "%1" %*
    cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
    exefile [open] -- "%1" %*
    htmlfile [edit] -- Reg Error: Key error.
    https [open] -- "C:\Program Files\Opera\Opera.exe" "%1" (Opera Software)
    InternetShortcut [open] -- rundll32.exe ieframe.dll,OpenURL %l
    piffile [open] -- "%1" %*
    regfile [merge] -- Reg Error: Key error.
    scrfile [config] -- "%1"
    scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
    scrfile [open] -- "%1" /S
    txtfile [edit] -- Reg Error: Key error.
    Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
    Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
    Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
    Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
    Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

    ========== Security Center Settings ==========

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
    "FirstRunDisabled" = 1
    "AntiVirusDisableNotify" = 0
    "FirewallDisableNotify" = 0
    "UpdatesDisableNotify" = 0
    "AntiVirusOverride" = 0
    "FirewallOverride" = 0

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

    ========== System Restore Settings ==========

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
    "DisableSR" = 0

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
    "Start" = 0

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
    "Start" = 2

    ========== Firewall Settings ==========

    [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

    ========== Authorized Applications List ==========

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
    "%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:mad:xpsp2res.dll,-22019 -- (Microsoft Corporation)
    "%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:mad:xpsp3res.dll,-20000 -- (Microsoft Corporation)

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
    "%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:mad:xpsp2res.dll,-22019 -- (Microsoft Corporation)
    "%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:mad:xpsp3res.dll,-20000 -- (Microsoft Corporation)


    ========== HKEY_LOCAL_MACHINE Uninstall List ==========

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
    "{03CEFC42-378E-4467-9909-DCBAFD38CA9F}" = LibreOffice 3.4
    "{068B46A0-8858-4CEB-80BC-A4AE787A05FC}" = Windows Live Sync
    "{1111706F-666A-4037-7777-202328764D10}" = JavaFX 2.0.2
    "{17780F99-A9DF-450B-81B3-6781B20A17A8}" = FontResizer
    "{17CA32D1-73BD-4990-B8F6-369D8D34B05D}" = Microsoft Antimalware Service CS-CZ Language Pack
    "{19F5658D-92E8-4A08-8657-D38ABB1574B2}" = Asus ACPI Driver
    "{1D097338-B4FA-4F29-9C43-8D7A970A007E}" = Windows Live Fotogalerie
    "{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
    "{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Nástroj pro odesílání služby Windows Live
    "{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
    "{26A24AE4-039D-4CA4-87B4-2F83217013FF}" = Java 7 Update 13
    "{28006915-2739-4EBE-B5E8-49B25D32EB33}" = Atheros Client Installation Program
    "{3108C217-BE83-42E4-AE9E-A56A2A92E549}" = Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver
    "{350C9405-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
    "{38E5A3B1-ADF1-47E0-8024-76310A30EB36}" = LiveUpdate
    "{3B4E636E-9D65-4D67-BA61-189800823F52}" = Windows Live Communications Platform
    "{3E62B27C-342F-4B44-9331-CA4BC59A586F}" = Asistent pro přihlášení ke službě Windows Live
    "{479A749B-1684-4881-8266-BF8DD22251E7}" = Windows Live Writer
    "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
    "{4B5092B6-F231-4D18-83BC-2618B729CA45}" = CapsHook
    "{50779A29-834E-4E36-BBEB-B7CABC67A825}" = Microsoft Security Client CS-CZ Language Pack
    "{587178E7-B1DF-494E-9838-FA4DD36E873C}" = ASUSUpdate for Eee PC
    "{6333FC29-BFE5-4024-AC78-958A1A7555D1}" = EeeSplendid
    "{6E257F26-57FA-4BC9-AE3B-D50AF937DA7F}" = Windows Live Toolbar
    "{71E40B32-5173-4538-8996-5822DD18E8D4}" = Windows Live Messenger
    "{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
    "{84814E6B-2581-46EC-926A-823BD1C670F6}" = Software Bluetooth WIDCOMM
    "{88F08F98-12BC-4613-81A2-8F9B88CFC73E}" = Super Hybrid Engine
    "{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
    "{8A74E887-8F0F-4017-AF53-CBA42211AAA5}" = Microsoft Sync Framework Runtime Native v1.0 (x86)
    "{8FC4F1DD-F7FD-4766-804D-3C8FF1D309AF}" = Ralink RT2860 Wireless LAN Card
    "{933B4015-4618-4716-A828-5289FC03165F}" = VC80CRTRedist - 8.0.50727.6195
    "{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
    "{98EABC7F-B1A1-43A5-B505-5B4EC3908DCD}" = Microsoft Security Client
    "{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
    "{9E365F0E-DDF4-4224-B49B-6D0D9B1C5E27}" = LibreOffice 3.4 Help Pack (Czech)
    "{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}" = Segoe UI
    "{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
    "{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
    "{AC76BA86-7AD7-1029-7B44-AA1000000001}" = Adobe Reader X (10.1.5) - Czech
    "{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1" = Spybot - Search & Destroy
    "{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}" = Microsoft Sync Framework Services Native v1.0 (x86)
    "{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
    "{C72CA49A-9237-4810-8449-45DA3BD26D64}" = EzMessenger
    "{C73B5B3B-F974-48CA-8B91-3E8A432AEA5B}" = Microsoft Works
    "{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
    "{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
    "{D802DD00-16A8-4A58-AFC9-020C2380ECDA}" = EeeSplendid
    "{D806E63B-0C11-4061-8DA9-1E980FB9A9EB}" = Data Sync
    "{E0A7ED39-8CD6-4351-93C3-69CCA00D12B4}" = USB2.0 UVC VGA WebCam
    "{E2DFE069-083E-4631-9B6C-43C48E991DE5}" = Junk Mail filter update
    "{E3F328E4-EB9F-4ABF-8FF3-5AD0472743D8}" = Windows Live Essentials
    "{E5A10EF8-DBF3-4251-A9CA-423311DBBFC8}" = Windows Live Mail
    "{EB879750-CCBD-4013-BFD5-0294D4DA5BD0}" = Apple Application Support
    "{EE7257A2-39A2-4D2F-9DAC-F9F25B8AE1D8}" = Skype™ 5.10
    "{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
    "{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
    "{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
    "{F3D2DEDC-4732-4188-8A3A-1A3FFBD4D6C8}" = ebi.BookReader3J
    "{F86AD773-5BC0-499B-9F48-4E0D5FED759D}" = Windows Live Zabezpečení rodiny
    "AC3Filter_is1" = AC3Filter 1.63b
    "Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
    "Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
    "ASUS VIBE" = ASUS VIBE
    "CCleaner" = CCleaner
    "DirectShow Detective" = River Past DirectShow Detective
    "DivX Setup" = DivX Setup
    "Eee Docking_is1" = Eee Docking 1.3.12.0
    "Google Chrome" = Google Chrome
    "HDMI" = Intel(R) Graphics Media Accelerator Driver
    "ie8" = Windows Internet Explorer 8
    "InstallShield_{17780F99-A9DF-450B-81B3-6781B20A17A8}" = FontResizer
    "Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware verze 1.70.0.1100
    "Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
    "Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
    "Microsoft Security Client" = Microsoft Security Essentials
    "MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
    "Opera 12.12.1707" = Opera 12.12
    "PowerShell" = Windows PowerShell(TM) 1.0
    "Psaní všemi deseti_is1" = Psaní všemi deseti 1.5
    "SynTPDeinstKey" = Synaptics Pointing Device Driver
    "TeamViewer 7" = TeamViewer 7
    "Unlocker" = Unlocker 1.9.1
    "Wdf01007" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.7
    "Wdf01009" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.9
    "Windows Media Format Runtime" = Windows Media Format 11 runtime
    "Windows Media Player" = Windows Media Player 11
    "WinLiveSuite_Wave3" = Windows Live Essentials
    "WMFDist11" = Windows Media Format 11 runtime
    "wmp11" = Windows Media Player 11
    "Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0

    ========== Last 20 Event Log Errors ==========

    [ Application Events ]
    Error - 31.8.2012 17:08:41 | Computer Name = ELISABETHA | Source = Application Error | ID = 1000
    Description = Chybující aplikace drwtsn32.exe, verze 5.1.2600.0, chybující modul
    dbghelp.dll, verze 5.1.2600.5512, adresa chyby 0x0001295d.

    Error - 3.9.2012 16:05:01 | Computer Name = ELISABETHA | Source = Application Error | ID = 1000
    Description = Chybující aplikace explorer.exe, verze 6.0.2900.5512, chybující modul
    divxdech264.ax, verze 9.0.1.21, adresa chyby 0x0002c2ac.

    Error - 3.9.2012 16:05:13 | Computer Name = ELISABETHA | Source = Application Error | ID = 1000
    Description = Chybující aplikace drwtsn32.exe, verze 5.1.2600.0, chybující modul
    dbghelp.dll, verze 5.1.2600.5512, adresa chyby 0x0001295d.

    Error - 9.9.2012 13:14:21 | Computer Name = ELISABETHA | Source = Application Error | ID = 1000
    Description = Chybující aplikace explorer.exe, verze 6.0.2900.5512, chybující modul
    unknown, verze 0.0.0.0, adresa chyby 0x0496c260.

    Error - 9.9.2012 13:14:36 | Computer Name = ELISABETHA | Source = Application Error | ID = 1000
    Description = Chybující aplikace drwtsn32.exe, verze 5.1.2600.0, chybující modul
    dbghelp.dll, verze 5.1.2600.5512, adresa chyby 0x0001295d.

    Error - 10.9.2012 13:17:53 | Computer Name = ELISABETHA | Source = Application Error | ID = 1000
    Description = Chybující aplikace divx plus player.exe, verze 10.3.2.6, chybující
    modul dpxdownloadmanagerplugin.dll, verze 10.3.2.6, adresa chyby 0x0000a0a7.

    Error - 12.9.2012 9:39:23 | Computer Name = ELISABETHA | Source = Application Error | ID = 1000
    Description = Chybující aplikace explorer.exe, verze 6.0.2900.5512, chybující modul
    unknown, verze 0.0.0.0, adresa chyby 0x049ec260.

    Error - 12.9.2012 9:39:38 | Computer Name = ELISABETHA | Source = Application Error | ID = 1000
    Description = Chybující aplikace drwtsn32.exe, verze 5.1.2600.0, chybující modul
    dbghelp.dll, verze 5.1.2600.5512, adresa chyby 0x0001295d.

    Error - 20.9.2012 15:20:08 | Computer Name = ELISABETHA | Source = Application Error | ID = 1000
    Description = Chybující aplikace explorer.exe, verze 6.0.2900.5512, chybující modul
    unknown, verze 0.0.0.0, adresa chyby 0x04c7c260.

    Error - 20.9.2012 15:20:23 | Computer Name = ELISABETHA | Source = Application Error | ID = 1000
    Description = Chybující aplikace drwtsn32.exe, verze 5.1.2600.0, chybující modul
    dbghelp.dll, verze 5.1.2600.5512, adresa chyby 0x0001295d.

    [ System Events ]
    Error - 5.2.2013 19:17:40 | Computer Name = ELISABETHA | Source = Service Control Manager | ID = 7000
    Description = Služba 3259 neuspěla přI spuštění v důsledku následující chyby: %%2

    Error - 5.2.2013 19:17:40 | Computer Name = ELISABETHA | Source = Service Control Manager | ID = 7009
    Description = Vypršel časový limit (30000 milisekund) čekání na připojení služby
    Spybot-S&D 2 Security Center Service.

    Error - 5.2.2013 19:17:40 | Computer Name = ELISABETHA | Source = Service Control Manager | ID = 7000
    Description = Služba Spybot-S&D 2 Security Center Service neuspěla přI spuštění
    v důsledku následující chyby: %%1053

    Error - 5.2.2013 19:17:40 | Computer Name = ELISABETHA | Source = Service Control Manager | ID = 7023
    Description = Služba Prohledávání počítačů byla ukončena s následující chybou: %%1060

    Error - 6.2.2013 12:27:08 | Computer Name = ELISABETHA | Source = Microsoft Antimalware | ID = 2001
    Description = %%860 zjistil chybu přI pokusu o aktualizaci podpisů. Nová verze podpisu:
    Předchozí verze podpisu: 1.143.1499.0 Zdroj aktualizace: %%859 Fáze aktualizace:
    %%852 Zdrojová cesta: Default URL Typ podpisu: %%800 Typ aktualizace: %%803 Uživatel:
    NT AUTHORITY\SYSTEM Aktuální verze modulu: Předchozí verze modulu: 1.1.9103.0 Kód
    chyby: 0x80070424 Popis chyby: Zadaná služba není nainstalovaná služba.

    Error - 6.2.2013 12:36:26 | Computer Name = ELISABETHA | Source = PlugPlayManager | ID = 11
    Description = Zařízení Root\LEGACY_NPF\0000 se již v systému nenachází, přestože
    nebylo nejdříve připraveno k odebrání.

    Error - 6.2.2013 12:36:26 | Computer Name = ELISABETHA | Source = PlugPlayManager | ID = 11
    Description = Zařízení Root\LEGACY_UNLOCKERDRIVER5\0000 se již v systému nenachází,
    přestože nebylo nejdříve připraveno k odebrání.

    Error - 6.2.2013 12:38:18 | Computer Name = ELISABETHA | Source = Service Control Manager | ID = 7000
    Description = Služba 3259 neuspěla přI spuštění v důsledku následující chyby: %%2

    Error - 6.2.2013 12:38:18 | Computer Name = ELISABETHA | Source = Service Control Manager | ID = 7009
    Description = Vypršel časový limit (30000 milisekund) čekání na připojení služby
    Spybot-S&D 2 Security Center Service.

    Error - 6.2.2013 12:38:18 | Computer Name = ELISABETHA | Source = Service Control Manager | ID = 7000
    Description = Služba Spybot-S&D 2 Security Center Service neuspěla přI spuštění
    v důsledku následující chyby: %%1053


    < End of report >
     
  13. Fandomas

    Fandomas TS Rookie Topic Starter

    System is now offering updates ;), but I do not do anything until you say.
     
  14. Jay Pfoutz

    Jay Pfoutz Malware Helper Posts: 4,286   +49

    Hi there. It all appears to be good, so we will finish up to make sure your computer is protected from malware in the future.

    Clean up System Restore

    Now, to get you off to a clean start, we will be creating a new Restore Point, then clearing the old ones to make sure you do not get reinfected, in case you need to "restore back."
    • Select Start > All Programs > Accessories > System tools > System Restore.
    • On the dialogue box that appears select Create a Restore Point
    • Click NEXT
    • Enter a name e.g. Clean
    • Click CREATE

    Remove tools, temp files, old Restore Points

    Please run OTL
    • Under the Custom Scans/Fixes box at the bottom, copy and paste in the following:

    • Then click the Run Fix button at the top.
    • Note: The fix for OTL sometimes hides your Desktop and Start menu so the cleanup can be completed. Do not be alerted, as this is normal.
    • It may open a log for you, but I don't need that.

    To remove all of the tools we used and the files and folders they created do the following:
    Double click OTL.exe.
    • Click the CleanUp button.
    • Select Yes when the "Begin cleanup Process?" prompt appears.
    • If you are prompted to Reboot during the cleanup, select Yes.
    • The tool will delete itself once it finishes.
    Note: If any tool, file or folder (belonging to the program we have used) hasn't been deleted, please delete it manually.

    Security Check

    Please download Security Check by screen317 from SpywareInfoforum.org or Changelog.fr.
    • Save it to your Desktop.
    • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
    • A Notepad document should open automatically called checkup.txt; please post the contents of that document.
     
  15. Fandomas

    Fandomas TS Rookie Topic Starter

    Results of screen317's Security Check version 0.99.57
    Windows XP Service Pack 3 x86
    Internet Explorer 8
    ``````````````Antivirus/Firewall Check:``````````````
    Psaní všemi deseti 1.5
    Microsoft Security Essentials
    `````````Anti-malware/Other Utilities Check:`````````
    Spybot - Search & Destroy
    Malwarebytes Anti-Malware verze 1.70.0.1100
    CCleaner
    JavaFX 2.0.2
    Java 7 Update 13
    Java version out of Date!
    Adobe Flash Player 10 Flash Player out of Date!
    Adobe Flash Player11.5.502.146
    Adobe Reader 10.1.5 Adobe Reader out of Date!
    Google Chrome 24.0.1312.57
    ````````Process Check: objlist.exe by Laurent````````
    Microsoft Security Essentials MSMpEng.exe
    Microsoft Security Essentials msseces.exe
    Malwarebytes Anti-Malware mbamservice.exe
    Malwarebytes Anti-Malware mbamgui.exe
    Spybot Teatimer.exe is disabled!
    Malwarebytes' Anti-Malware mbamscheduler.exe
    `````````````````System Health check`````````````````
    Total Fragmentation on Drive C::
    ````````````````````End of Log``````````````````````
     
  16. Jay Pfoutz

    Jay Pfoutz Malware Helper Posts: 4,286   +49

    Adobe Reader Update!

    Please download the newest version of Adobe Acrobat Reader from Adobe.com

    Before installing: it is important to remove older versions of Acrobat Reader since it does not do so automatically and old versions still leave you vulnerable.
    Go to the Control Panel and enter Add or Remove Programs (Programs and Features in Vista/7).
    Search in the list for all previous installed versions of Adobe Acrobat Reader. Uninstall/Remove each of them.

    Once old versions are gone, please install the newest version.


    Adobe Flash Player Update!

    Please download the newest version of Adobe Flash Player from Adobe.com

    Before installing: it is important to remove older versions of Flash Player since it does not do so automatically and old versions still leave you vulnerable.
    Go to the Control Panel and enter Add or Remove Programs (Programs and Features in Vista/7).
    Search in the list for all previous installed versions of Adobe Flash Player. Uninstall/Remove each of them.

    Once old versions are gone, please install the newest version.


    Java Update!

    Please download the newest version of Java from Java.com.

    Before installing: it is important to remove older versions of Java since it does not do so automatically and old versions still leave you vulnerable.
    Go to the Control Panel and enter Add or Remove Programs (Programs and Features in Vista/7).
    Search in the list for all previous installed versions of Java. (J2SE Runtime Environment). Please uninstall/remove each of them.

    Once old versions are gone, please install the newest version.

    Read more about Java exploit problems


    Personal Tips on Preventing Malware

    See this page for more info about malware and prevention.


    Any other questions before I mark this topic solved?
     
  17. Fandomas

    Fandomas TS Rookie Topic Starter

    No other questions. Thank you very much for a perfect service!
     
  18. Jay Pfoutz

    Jay Pfoutz Malware Helper Posts: 4,286   +49

    You're welcome. Topic marked solved. :)
     
Topic Status:
Not open for further replies.


Add New Comment

TechSpot Members
Login or sign up for free,
it takes about 30 seconds.
You may also...


Get complete access to the TechSpot community. Join thousands of technology enthusiasts that contribute and share knowledge in our forum. Get a private inbox, upload your own photo gallery and more.