Prosím o kontrolu logu

[Damned]

Máš tam dost poházených setupů, jak ponožky a trenky po pijatyce . Udělej si na ně složku (třeba v Dokumentech s názvem "My installer") a všechny dej tam (taky to mám tak). Vyměň taky BSPlayer,oba.

Poklepej na ikonu OTL na ploše.Ujisti se , že máš všechny ostatní aplikace a prohlížeče zavřeny.
Pod Custom Scans/Fixes do okénka vlož následující text, zobrazený zeleně:

Kód: Vybrat vše

:OTL
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
SRV - (NMIndexingService) -- File not found
FF - prefs.js..browser.search.searchEnginesURL: "http://mycroft.mozdev.org/"
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: 127.0.0.1 www.007guard.com
O1 - Hosts: 127.0.0.1 007guard.com
O1 - Hosts: 127.0.0.1 008i.com
O1 - Hosts: 127.0.0.1 www.008k.com
O1 - Hosts: 127.0.0.1 008k.com
O1 - Hosts: 127.0.0.1 www.00hq.com
O1 - Hosts: 127.0.0.1 00hq.com
O1 - Hosts: 127.0.0.1 010402.com
O1 - Hosts: 127.0.0.1 www.032439.com
O1 - Hosts: 127.0.0.1 032439.com
O1 - Hosts: 127.0.0.1 www.0scan.com
O1 - Hosts: 127.0.0.1 0scan.com
O1 - Hosts: 127.0.0.1 1000gratisproben.com
O1 - Hosts: 127.0.0.1 www.1000gratisproben.com
O1 - Hosts: 127.0.0.1 1001namen.com
O1 - Hosts: 127.0.0.1 www.1001namen.com
O1 - Hosts: 127.0.0.1 www.100888290cs.com
O1 - Hosts: 127.0.0.1 100888290cs.com
O1 - Hosts: 127.0.0.1 100sexlinks.com
O1 - Hosts: 127.0.0.1 www.100sexlinks.com
O1 - Hosts: 127.0.0.1 10sek.com
O1 - Hosts: 127.0.0.1 www.10sek.com
O1 - Hosts: 127.0.0.1 1-2005-search.com
O1 - Hosts: 127.0.0.1 www.1-2005-search.com
O1 - Hosts: 12308 more lines...
O3 - HKCU\..\Toolbar\ShellBrowser: (Burn4Free Toolbar) - {70DE7956-479D-4EB7-8641-2B45774C350E} - Reg Error: Value error. File not found
O3 - HKCU\..\Toolbar\WebBrowser: (Burn4Free Toolbar) - {70DE7956-479D-4EB7-8641-2B45774C350E} - Reg Error: Value error. File not found
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/fl ... rashim.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0015-0000-0003-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinsta ... s-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0000-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Key error.)
O24 - Desktop WallPaper: C:\Documents and Settings\ase\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\ase\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
[2009.04.18 17:16:46 | 00,000,000 | ---D | M] -- C:\Documents and Settings\ase\Data aplikací\Mozilla\Firefox\Profiles\s4do1w21.default\extensions\abpMod@abpMod.org
[2006.03.29 23:03:42 | 00,000,000 | ---D | M] -- C:\Documents and Settings\ase\Data aplikací\Mozilla\Firefox\Profiles\s4do1w21.default\extensions\blueshift@shift.themes
[2009.10.27 19:44:48 | 00,000,000 | ---D | M] -- C:\Documents and Settings\ase\Data aplikací\Mozilla\Firefox\Profiles\s4do1w21.default\extensions\martin@hoerandl.com
[2009.10.28 14:18:40 | 00,000,000 | ---D | M] -- C:\Documents and Settings\ase\Data aplikací\Mozilla\Firefox\Profiles\s4do1w21.default\extensions\piclens@cooliris.com
[2009.10.28 14:18:41 | 00,000,000 | ---D | M] -- C:\Documents and Settings\ase\Data aplikací\Mozilla\Firefox\Profiles\s4do1w21.default\extensions\piclens@cooliris.com-trash
[2009.05.20 08:19:36 | 00,000,000 | ---D | M] -- C:\Documents and Settings\ase\Data aplikací\Mozilla\Firefox\Profiles\s4do1w21.default\extensions\zotero@chnm.gmu.edu
@Alternate Data Stream - 88 bytes -> C:\Documents and Settings\ase\Dokumenty\VideoCalcCZ.zip:SummaryInformation
@Alternate Data Stream - 127 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:0CE7F3C9
@Alternate Data Stream - 112 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:9F50A55A
@Alternate Data Stream - 110 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:888AFB86
@Alternate Data Stream - 103 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:592D7272

:Files
C:\*.tmp
C:\WINDOWS\*.tmp
C:\WINDOWS\System32\*.tmp
C:\Documents and Settings\All Users\Data aplikací\*.tmp
C:\WINDOWS\tasks\SA.DAT
C:\WINDOWS\MEMORY.DMP
C:\Documents and Settings\All Users\Data aplikací\KGyGaAvL.sys
C:\Documents and Settings\All Users\Data aplikací\1DA9F75DC5.sys
C:\Program Files\Changes.txt
C:\Program Files\Core Temp.exe
C:\Program Files\DemoAE.zip
C:\Program Files\KEYGEN.EXE
C:\Documents and Settings\ase\Data aplikací\inst.exe
C:\Program Files\tv.exe
C:\Program Files\regcleaner.exe
C:\Documents and Settings\ase\Data aplikací\Install.dat
C:\Documents and Settings\ase\Data aplikací\Mozilla\Firefox\Profiles\s4do1w21.default\extensions\abpMod@abpMod.org
C:\Documents and Settings\ase\Data aplikací\Mozilla\Firefox\Profiles\s4do1w21.default\extensions\blueshift@shift.themes
C:\Documents and Settings\ase\Data aplikací\Mozilla\Firefox\Profiles\s4do1w21.default\extensions\martin@hoerandl.com
C:\Documents and Settings\ase\Data aplikací\Mozilla\Firefox\Profiles\s4do1w21.default\extensions\piclens@cooliris.com
C:\Documents and Settings\ase\Data aplikací\Mozilla\Firefox\Profiles\s4do1w21.default\extensions\piclens@cooliris.com-trash
C:\Documents and Settings\ase\Data aplikací\Mozilla\Firefox\Profiles\s4do1w21.default\extensions\zotero@chnm.gmu.edu
@Alternate Data Stream - 88 bytes -> C:\Documents and Settings\ase\Dokumenty\VideoCalcCZ.zip:SummaryInformation
@Alternate Data Stream - 127 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:0CE7F3C9
@Alternate Data Stream - 112 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:9F50A55A
@Alternate Data Stream - 110 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:888AFB86
@Alternate Data Stream - 103 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:592D7272

:Reg

:Commands
[purity]
[emptytemp]
[resethosts]
[start explorer]
[Reboot]


Poté klikni nahoře na Run Fix. Nech program nerušeně běžet, na konci se provede restart PC.
Po restartu se objeví log , prosím zkopíruj sem celý jeho obsah.

[Reklama]

[Death at Comp]

Myslis "setupy" jako instalacky jo? A BS player jak zmenit?

[Damned]

JJ, instalačky.
Vyměnit za jiný přehrávač. BSP tahá sebou conduit a Ask a tím se mi nelíbí a taky tím zaneřáďuje PC.

[Death at Comp]

Tady to je:

All processes killed
========== OTL ==========
No active process named explorer.exe was found!
Service NMIndexingService stopped successfully!
Service NMIndexingService deleted successfully!
File File not found not found.
Prefs.js: "http://mycroft.mozdev.org/" removed from browser.search.searchEnginesURL
127.0.0.1 localhost removed from HOSTS file successfully
127.0.0.1 www.007guard.com removed from HOSTS file successfully
127.0.0.1 007guard.com removed from HOSTS file successfully
127.0.0.1 008i.com removed from HOSTS file successfully
127.0.0.1 www.008k.com removed from HOSTS file successfully
127.0.0.1 008k.com removed from HOSTS file successfully
127.0.0.1 www.00hq.com removed from HOSTS file successfully
127.0.0.1 00hq.com removed from HOSTS file successfully
127.0.0.1 010402.com removed from HOSTS file successfully
127.0.0.1 www.032439.com removed from HOSTS file successfully
127.0.0.1 032439.com removed from HOSTS file successfully
127.0.0.1 www.0scan.com removed from HOSTS file successfully
127.0.0.1 0scan.com removed from HOSTS file successfully
127.0.0.1 1000gratisproben.com removed from HOSTS file successfully
127.0.0.1 1001namen.com removed from HOSTS file successfully
127.0.0.1 www.100888290cs.com removed from HOSTS file successfully
127.0.0.1 100888290cs.com removed from HOSTS file successfully
127.0.0.1 100sexlinks.com removed from HOSTS file successfully
127.0.0.1 10sek.com removed from HOSTS file successfully
127.0.0.1 1-2005-search.com removed from HOSTS file successfully
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\ShellBrowser\\{70DE7956-479D-4EB7-8641-2B45774C350E} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{70DE7956-479D-4EB7-8641-2B45774C350E}\ deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{70DE7956-479D-4EB7-8641-2B45774C350E} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{70DE7956-479D-4EB7-8641-2B45774C350E}\ not found.
Starting removal of ActiveX control {8FFBE65D-2C9C-4669-84BD-5829DC0B603C}
C:\WINDOWS\Downloaded Program Files\erma.inf moved successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{8FFBE65D-2C9C-4669-84BD-5829DC0B603C}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8FFBE65D-2C9C-4669-84BD-5829DC0B603C}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{8FFBE65D-2C9C-4669-84BD-5829DC0B603C}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8FFBE65D-2C9C-4669-84BD-5829DC0B603C}\ not found.
Starting removal of ActiveX control {CAFEEFAC-0015-0000-0003-ABCDEFFEDCBA}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0015-0000-0003-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0003-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-0015-0000-0003-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0003-ABCDEFFEDCBA}\ not found.
Starting removal of ActiveX control {CAFEEFAC-0016-0000-0000-ABCDEFFEDCBA}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0000-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0000-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-0016-0000-0000-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0000-ABCDEFFEDCBA}\ not found.
Starting removal of ActiveX control {CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA}\ not found.
Starting removal of ActiveX control {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}\ not found.
Starting removal of ActiveX control {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}\ not found.
Starting removal of ActiveX control {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}\ not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Desktop\General\\WallPaper deleted successfully.
C:\Documents and Settings\ase\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp moved successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Desktop\General\\BackupWallPaper deleted successfully.
File C:\Documents and Settings\ase\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp not found.
C:\Documents and Settings\ase\Data aplikací\Mozilla\Firefox\Profiles\s4do1w21.default\extensions\abpMod@abpMod.org\chrome\content folder moved successfully.
C:\Documents and Settings\ase\Data aplikací\Mozilla\Firefox\Profiles\s4do1w21.default\extensions\abpMod@abpMod.org\chrome folder moved successfully.
C:\Documents and Settings\ase\Data aplikací\Mozilla\Firefox\Profiles\s4do1w21.default\extensions\abpMod@abpMod.org folder moved successfully.
C:\Documents and Settings\ase\Data aplikací\Mozilla\Firefox\Profiles\s4do1w21.default\extensions\blueshift@shift.themes\chrome folder moved successfully.
C:\Documents and Settings\ase\Data aplikací\Mozilla\Firefox\Profiles\s4do1w21.default\extensions\blueshift@shift.themes folder moved successfully.
C:\Documents and Settings\ase\Data aplikací\Mozilla\Firefox\Profiles\s4do1w21.default\extensions\martin@hoerandl.com\chrome folder moved successfully.
C:\Documents and Settings\ase\Data aplikací\Mozilla\Firefox\Profiles\s4do1w21.default\extensions\martin@hoerandl.com folder moved successfully.
C:\Documents and Settings\ase\Data aplikací\Mozilla\Firefox\Profiles\s4do1w21.default\extensions\piclens@cooliris.com\plugins folder moved successfully.
C:\Documents and Settings\ase\Data aplikací\Mozilla\Firefox\Profiles\s4do1w21.default\extensions\piclens@cooliris.com\META-INF folder moved successfully.
C:\Documents and Settings\ase\Data aplikací\Mozilla\Firefox\Profiles\s4do1w21.default\extensions\piclens@cooliris.com\libs folder moved successfully.
C:\Documents and Settings\ase\Data aplikací\Mozilla\Firefox\Profiles\s4do1w21.default\extensions\piclens@cooliris.com\components folder moved successfully.
C:\Documents and Settings\ase\Data aplikací\Mozilla\Firefox\Profiles\s4do1w21.default\extensions\piclens@cooliris.com\chrome\content\images folder moved successfully.
C:\Documents and Settings\ase\Data aplikací\Mozilla\Firefox\Profiles\s4do1w21.default\extensions\piclens@cooliris.com\chrome\content folder moved successfully.
C:\Documents and Settings\ase\Data aplikací\Mozilla\Firefox\Profiles\s4do1w21.default\extensions\piclens@cooliris.com\chrome folder moved successfully.
C:\Documents and Settings\ase\Data aplikací\Mozilla\Firefox\Profiles\s4do1w21.default\extensions\piclens@cooliris.com folder moved successfully.
C:\Documents and Settings\ase\Data aplikací\Mozilla\Firefox\Profiles\s4do1w21.default\extensions\piclens@cooliris.com-trash\libs folder moved successfully.
C:\Documents and Settings\ase\Data aplikací\Mozilla\Firefox\Profiles\s4do1w21.default\extensions\piclens@cooliris.com-trash\components folder moved successfully.
C:\Documents and Settings\ase\Data aplikací\Mozilla\Firefox\Profiles\s4do1w21.default\extensions\piclens@cooliris.com-trash folder moved successfully.
C:\Documents and Settings\ase\Data aplikací\Mozilla\Firefox\Profiles\s4do1w21.default\extensions\zotero@chnm.gmu.edu\defaults\preferences folder moved successfully.
C:\Documents and Settings\ase\Data aplikací\Mozilla\Firefox\Profiles\s4do1w21.default\extensions\zotero@chnm.gmu.edu\defaults folder moved successfully.
C:\Documents and Settings\ase\Data aplikací\Mozilla\Firefox\Profiles\s4do1w21.default\extensions\zotero@chnm.gmu.edu\components folder moved successfully.
C:\Documents and Settings\ase\Data aplikací\Mozilla\Firefox\Profiles\s4do1w21.default\extensions\zotero@chnm.gmu.edu\chrome folder moved successfully.
C:\Documents and Settings\ase\Data aplikací\Mozilla\Firefox\Profiles\s4do1w21.default\extensions\zotero@chnm.gmu.edu folder moved successfully.
Unable to delete ADS C:\Documents and Settings\ase\Dokumenty\VideoCalcCZ.zip:SummaryInformation .
ADS C:\Documents and Settings\All Users\Data aplikací\TEMP:0CE7F3C9 deleted successfully.
ADS C:\Documents and Settings\All Users\Data aplikací\TEMP:9F50A55A deleted successfully.
ADS C:\Documents and Settings\All Users\Data aplikací\TEMP:888AFB86 deleted successfully.
ADS C:\Documents and Settings\All Users\Data aplikací\TEMP:592D7272 deleted successfully.
========== FILES ==========
C:\DVDx-temp.tmp moved successfully.
C:\WINDOWS\002905_.tmp moved successfully.
C:\WINDOWS\msdownld.tmp folder moved successfully.
C:\WINDOWS\wininit.tmp moved successfully.
C:\WINDOWS\System32\CONFIG.TMP moved successfully.
C:\WINDOWS\System32\SET96.tmp moved successfully.
C:\WINDOWS\System32\SET9B.tmp moved successfully.
C:\WINDOWS\System32\SETA2.tmp moved successfully.
C:\Documents and Settings\All Users\Data aplikací\xml127.tmp moved successfully.
C:\Documents and Settings\All Users\Data aplikací\xml128.tmp moved successfully.
C:\Documents and Settings\All Users\Data aplikací\xml129.tmp moved successfully.
C:\Documents and Settings\All Users\Data aplikací\xml131.tmp moved successfully.
C:\Documents and Settings\All Users\Data aplikací\xml132.tmp moved successfully.
C:\Documents and Settings\All Users\Data aplikací\xml133.tmp moved successfully.
C:\WINDOWS\tasks\SA.DAT moved successfully.
C:\WINDOWS\MEMORY.DMP moved successfully.
C:\Documents and Settings\All Users\Data aplikací\KGyGaAvL.sys moved successfully.
C:\Documents and Settings\All Users\Data aplikací\1DA9F75DC5.sys moved successfully.
C:\Program Files\Changes.txt moved successfully.
C:\Program Files\Core Temp.exe moved successfully.
File\Folder C:\Program Files\DemoAE.zip not found.
C:\Program Files\KEYGEN.EXE moved successfully.
C:\Documents and Settings\ase\Data aplikací\inst.exe moved successfully.
C:\Program Files\tv.exe moved successfully.
File\Folder C:\Program Files\regcleaner.exe not found.
C:\Documents and Settings\ase\Data aplikací\Install.dat moved successfully.
File\Folder C:\Documents and Settings\ase\Data aplikací\Mozilla\Firefox\Profiles\s4do1w21.default\extensions\abpMod@abpMod.org not found.
File\Folder C:\Documents and Settings\ase\Data aplikací\Mozilla\Firefox\Profiles\s4do1w21.default\extensions\blueshift@shift.themes not found.
File\Folder C:\Documents and Settings\ase\Data aplikací\Mozilla\Firefox\Profiles\s4do1w21.default\extensions\martin@hoerandl.com not found.
File\Folder C:\Documents and Settings\ase\Data aplikací\Mozilla\Firefox\Profiles\s4do1w21.default\extensions\piclens@cooliris.com not found.
File\Folder C:\Documents and Settings\ase\Data aplikací\Mozilla\Firefox\Profiles\s4do1w21.default\extensions\piclens@cooliris.com-trash not found.
File\Folder C:\Documents and Settings\ase\Data aplikací\Mozilla\Firefox\Profiles\s4do1w21.default\extensions\zotero@chnm.gmu.edu not found.
Unable to delete ADS C:\Documents and Settings\ase\Dokumenty\VideoCalcCZ.zip:SummaryInformation .
Unable to delete ADS C:\Documents and Settings\All Users\Data aplikací\TEMP:0CE7F3C9 .
Unable to delete ADS C:\Documents and Settings\All Users\Data aplikací\TEMP:9F50A55A .
Unable to delete ADS C:\Documents and Settings\All Users\Data aplikací\TEMP:888AFB86 .
Unable to delete ADS C:\Documents and Settings\All Users\Data aplikací\TEMP:592D7272 .
========== REGISTRY ==========
========== COMMANDS ==========

[EMPTYTEMP]

User: Administrator
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Administrator.N-458F113272504
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Administrator.N-458F113272504.000
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Administrator.N-458F113272504.001
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 67 bytes

User: All Users

User: ase
->Temp folder emptied: 44394099 bytes
->Temporary Internet Files folder emptied: 9645687 bytes
->Java cache emptied: 29159357 bytes
->FireFox cache emptied: 86990564 bytes
->Opera cache emptied: 373270259 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 67 bytes

User: HRY

User: LocalService
->Temp folder emptied: 65748 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 377498 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 12977572 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 33170 bytes
RecycleBin emptied: 55464760 bytes

Total Files Cleaned = 584,00 mb

C:\WINDOWS\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully

OTL by OldTimer - Version 3.1.25.1 log created on 01162010_130129

Files\Folders moved on Reboot...
C:\WINDOWS\temp\Perflib_Perfdata_650.dat moved successfully.

Registry entries deleted on Reboot...

[Damned]

Máš-li tam ComboFix, spusť ho a vlož mi sem z něho log.
Pokud ne, stáhni si ho podle návodu výše.

[Death at Comp]

Tak se mi stalo to samy co pred tim kdyz sem to projizdel tim ComboFixem"modra obrazovka a ten samej napis" potom se PC vypnulo a nic...A z ComboFix log nikde a z OLT se mi udelala slozka na "C" s nazvem"OLT" a ma 2,04GB(co s ni?).
Jinak mi prijde ze to vypinani ma neco spolecnyho se zatezi vykonu na PC protoze kdyz na nem nic nedelam tak se vypne tak max. 2x za den ale vcera a dnes sem zkousel prevadet film na "Convert X to Dvd" zkousel sem to vcera 5x a dnes 5x a pokazde se PC zhruba v pulce prevodu vypnulo...

[Damned]

Složku C:\_OTL klidně smaž.

Stáhni si Defogger a ulož si ho na Plochu.

Spusť ho, stiskni Disable, potvrď Ano.

Po proběhnutí skenu se na Ploše objeví log defogger_disable.log. Zkopíruj mi ho sem.

[Death at Comp]

Tady to je:

defogger_disable by jpshortstuff (28.11.09.2)
Log created at 12:37 on 17/01/2010 (ase)

Checking for autostart values...
HKCU\~\Run values retrieved.
HKLM\~\Run values retrieved.

Checking for services/drivers...
Unable to read sptd.sys
SPTD -> Disabled (Service running -> reboot required)


-=E.O.F=-

[Damned]

Vyžádal si restart? Měl si restartovat, aby se tato služba zastavila.
Spusť ho ještě jednou a po dokončení restartuj.

Pak si stáhni :Dr. Web CureIt nebo z http://www.majorgeeks.com/Dr.Web_CureIT_d4783.html dej update , po aktualizaci dej start.

Tlačítky dole můzeš soubor léčit, smazat, přesunout nebo přejmenovat.Pak napiš výsledek. Sken může trvat dlouho. Nalezenou infekci nejdříve léčit, potom teprve smazat. Pokud něco najde ve složce System Volume Information, tak smazat.

[Death at Comp]

Restart to vubec nechtelo scan trval asi 5 vterin a potom se mi objevilo okno "Finished" pod tim tlacitko "OK" a potom mi to hodilo na plochu ten log...Ten Dr.Web byl cistej...

[Damned]

Odinstaluj starý ComboFix ( nutné ) .
ComboFix se odinstaluje takto:
Start-Spustit a zadej Combofix[mezera]/uninstall

Stáhni si T-Cleaner ( nutné - smaže vše po Combu,SDFixu,Avengeru,MWAVu atd.-stáhneš->spustíš)

(pozn.Pokud máš AVG nebo Aviru, před stažením T-Cleaneru a po dobu čištění deaktivuj AVG i Aviru (i rezidenty), následně T-Cleaner smaž a zapni si AVG, Aviru.)
*****************************************************************************************************************************************
Vypni rezidentní štít antiviru (pokud máš tak i antispyware).
Stáhni si nový ComboFix (by sUBs)
nebo ComboFix (subs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah

[Death at Comp]

Po scanu Combofixu se stalo to same co minule(modra obrazovka a ten samy napis) potom restart, log nikde a potom tohle: