prosím o kontrolu logu z Hijackthis Vyřešeno

[adidass]

tady je log

[Reklama]

[adidass]

ComboFix 10-03-04.05 - vasek 05.03.2010 20:26:02.2.2 - x86
Microsoft® Windows Vista™ Home Premium 6.0.6001.1.1250.420.1029.18.2047.1080 [GMT 1:00]
Spuštěný z: c:\users\vasek\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\users\vasek\Desktop\CFScript.txt
SP: Windows Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}
* Rezidentní štít AV je zapnutý


FILE ::
"c:\windows\TEMP\TMP0000004E7CDAFB44BF05C309"
.

((((((((((((((((((((((((( Soubory vytvořené od 2010-02-05 do 2010-03-05 )))))))))))))))))))))))))))))))
.

2010-03-05 19:34 . 2010-03-05 19:34 -------- d-----w- c:\users\vasek\AppData\Local\temp
2010-03-05 19:34 . 2010-03-05 19:34 -------- d-----w- c:\users\Public\AppData\Local\temp
2010-03-05 19:34 . 2010-03-05 19:34 -------- d-----w- c:\users\Default\AppData\Local\temp
2010-03-05 13:53 . 2010-03-05 13:53 -------- d-----w- c:\users\vasek\AppData\Local\ESET
2010-03-05 13:06 . 2010-03-05 13:06 -------- d-----w- c:\users\vasek\AppData\Local\ATI
2010-03-05 13:05 . 2010-03-05 13:05 -------- d-----w- c:\users\vasek\AppData\Local\AOL
2010-02-28 20:02 . 2010-02-28 20:02 -------- d-----w- c:\users\vasek\AppData\Roaming\Malwarebytes
2010-02-28 20:02 . 2010-01-07 15:07 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2010-02-28 20:02 . 2010-02-28 20:02 -------- d-----w- c:\programdata\Malwarebytes
2010-02-28 20:02 . 2010-01-07 15:07 19160 ----a-w- c:\windows\system32\drivers\mbam.sys
2010-02-28 20:02 . 2010-02-28 20:14 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2010-02-28 19:53 . 2010-02-28 19:54 -------- d-----w- c:\programdata\ICQ
2010-02-28 19:53 . 2010-03-05 19:22 -------- d-----w- c:\users\vasek\AppData\Roaming\ICQ
2010-02-28 19:52 . 2010-02-28 19:54 -------- d-----w- c:\program files\ICQ7.0
2010-02-28 14:22 . 2010-02-28 14:22 -------- d--h--r- c:\users\vasek\AppData\Roaming\SecuROM
2010-02-28 14:02 . 2008-06-20 01:14 105016 ----a-w- c:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
2010-02-28 14:02 . 2008-06-20 01:14 97800 ----a-w- c:\windows\system32\infocardapi.dll
2010-02-28 14:02 . 2008-06-20 01:14 43544 ----a-w- c:\windows\system32\PresentationHostProxy.dll
2010-02-28 14:02 . 2008-06-20 01:14 11264 ----a-w- c:\windows\system32\icardres.dll
2010-02-28 14:02 . 2008-06-20 01:14 622080 ----a-w- c:\windows\system32\icardagt.exe
2010-02-28 14:02 . 2008-06-20 01:14 781344 ----a-w- c:\windows\system32\PresentationNative_v0300.dll
2010-02-28 14:02 . 2008-06-20 01:14 326160 ----a-w- c:\windows\system32\PresentationHost.exe
2010-02-28 13:55 . 2008-07-27 18:03 96760 ----a-w- c:\windows\system32\dfshim.dll
2010-02-28 13:55 . 2008-07-27 18:03 282112 ----a-w- c:\windows\system32\mscoree.dll
2010-02-28 13:55 . 2008-07-27 18:03 41984 ----a-w- c:\windows\system32\netfxperf.dll
2010-02-28 13:54 . 2008-07-27 18:03 158720 ----a-w- c:\windows\system32\mscorier.dll
2010-02-28 13:54 . 2008-07-27 18:03 83968 ----a-w- c:\windows\system32\mscories.dll
2010-02-28 13:41 . 2010-02-28 13:41 107888 ----a-w- c:\windows\system32\CmdLineExt.dll
2010-02-28 13:40 . 2010-02-28 13:40 -------- d-----w- c:\windows\system32\xlive
2010-02-28 13:40 . 2010-02-28 13:48 -------- d-----w- c:\program files\Microsoft Games for Windows - LIVE
2010-02-28 13:13 . 2010-02-28 14:41 -------- d-----w- c:\users\vasek\AppData\Local\Rockstar Games
2010-02-27 21:00 . 2010-02-27 21:00 -------- d-----w- c:\program files\Trend Micro
2010-02-27 10:59 . 2010-02-27 14:32 -------- d-----w- c:\program files\Common Files\DVDVideoSoft
2010-02-27 10:02 . 2009-12-08 20:52 3597912 ----a-w- c:\windows\system32\ntkrnlpa.exe
2010-02-27 10:02 . 2009-12-08 20:52 3546200 ----a-w- c:\windows\system32\ntoskrnl.exe
2010-02-27 10:02 . 2009-06-15 15:21 499712 ----a-w- c:\windows\system32\kerberos.dll
2010-02-27 10:02 . 2009-06-15 15:24 270848 ----a-w- c:\windows\system32\schannel.dll
2010-02-27 08:17 . 2010-03-05 19:21 -------- d-----w- c:\program files\utorrent
2010-02-26 23:39 . 2010-02-26 23:39 -------- d-----w- c:\program files\Lavalys
2010-02-26 18:35 . 2010-02-26 18:35 -------- d-----w- c:\programdata\WindowsSearch
2010-02-26 18:06 . 2010-02-26 18:06 -------- d-----w- C:\$WINDOWS.~LS
2010-02-26 17:48 . 2010-02-26 17:48 -------- d-----w- C:\$WINDOWS.~BT
2010-02-25 17:43 . 2010-02-24 08:16 181632 ------w- c:\windows\system32\MpSigStub.exe
2010-02-25 17:38 . 2009-11-09 13:22 24064 ----a-w- c:\windows\system32\nshhttp.dll
2010-02-25 17:38 . 2009-11-09 13:20 31232 ----a-w- c:\windows\system32\httpapi.dll
2010-02-25 17:38 . 2009-11-09 11:04 411136 ----a-w- c:\windows\system32\drivers\http.sys
2010-02-25 17:26 . 2009-12-18 13:05 833024 ----a-w- c:\windows\system32\wininet.dll
2010-02-25 17:25 . 2009-12-18 13:01 78336 ----a-w- c:\windows\system32\ieencode.dll
2010-02-25 17:25 . 2009-12-18 10:14 26624 ----a-w- c:\windows\system32\ieUnatt.exe
2010-02-25 17:25 . 2008-06-26 01:45 12240896 ----a-w- c:\windows\system32\NlsLexicons0007.dll
2010-02-25 17:25 . 2008-06-26 01:45 2644480 ----a-w- c:\windows\system32\NlsLexicons0009.dll
2010-02-25 17:24 . 2008-06-26 03:29 801280 ----a-w- c:\windows\system32\NaturalLanguage6.dll
2010-02-25 17:22 . 2009-08-14 16:29 104960 ----a-w- c:\windows\system32\netiohlp.dll
2010-02-25 17:22 . 2009-08-14 14:16 9728 ----a-w- c:\windows\system32\TCPSVCS.EXE
2010-02-25 17:22 . 2009-08-14 14:16 27136 ----a-w- c:\windows\system32\NETSTAT.EXE
2010-02-25 17:22 . 2009-08-14 14:16 19968 ----a-w- c:\windows\system32\ARP.EXE
2010-02-25 17:22 . 2009-08-14 14:16 10240 ----a-w- c:\windows\system32\finger.exe
2010-02-25 17:22 . 2009-08-14 14:16 17920 ----a-w- c:\windows\system32\ROUTE.EXE
2010-02-25 17:22 . 2009-08-14 14:16 11264 ----a-w- c:\windows\system32\MRINFO.EXE
2010-02-25 17:22 . 2009-08-14 14:16 8704 ----a-w- c:\windows\system32\HOSTNAME.EXE
2010-02-25 17:22 . 2009-08-14 16:29 17920 ----a-w- c:\windows\system32\netevent.dll
2010-02-25 17:18 . 2009-08-31 13:55 428544 ----a-w- c:\windows\system32\EncDec.dll
2010-02-25 17:18 . 2009-08-31 13:55 293376 ----a-w- c:\windows\system32\psisdecd.dll
2010-02-25 17:17 . 2008-02-29 07:14 19000 ----a-w- c:\windows\system32\kd1394.dll
2010-02-25 17:17 . 2008-02-22 05:05 615992 ----a-w- c:\windows\system32\ci.dll
2010-02-25 17:17 . 2008-02-29 07:11 988216 ----a-w- c:\windows\system32\winload.exe
2010-02-25 17:17 . 2008-02-29 07:11 927288 ----a-w- c:\windows\system32\winresume.exe
2010-02-25 17:17 . 2008-02-29 06:53 378368 ----a-w- c:\windows\system32\srcore.dll
2010-02-25 17:17 . 2008-02-29 06:53 40960 ----a-w- c:\windows\system32\srclient.dll
2010-02-25 17:17 . 2008-02-29 06:53 46592 ----a-w- c:\windows\system32\setbcdlocale.dll
2010-02-25 17:17 . 2008-02-29 06:35 6656 ----a-w- c:\windows\system32\kbd106n.dll
2010-02-25 17:17 . 2008-02-29 04:12 318464 ----a-w- c:\windows\system32\rstrui.exe
2010-02-25 17:17 . 2008-02-29 04:12 14848 ----a-w- c:\windows\system32\srdelayed.exe
2010-02-25 17:15 . 2009-06-10 12:11 2868224 ----a-w- c:\windows\system32\mf.dll
2010-02-25 17:14 . 2010-01-23 09:44 2048 ----a-w- c:\windows\system32\tzres.dll
2010-02-25 17:14 . 2009-06-04 12:34 2066432 ----a-w- c:\windows\system32\mstscax.dll
2010-02-25 17:14 . 2008-04-05 03:34 15360 ----a-w- c:\windows\system32\pacerprf.dll
2010-02-25 17:14 . 2008-04-05 01:21 72192 ----a-w- c:\windows\system32\drivers\pacer.sys
2010-02-25 17:11 . 2009-09-10 17:30 213504 ----a-w- c:\windows\system32\msv1_0.dll
2010-02-25 17:10 . 2008-06-26 03:29 303616 ----a-w- c:\windows\system32\wmpeffects.dll
2010-02-25 17:08 . 2009-08-28 12:39 28672 ----a-w- c:\windows\system32\Apphlpdm.dll
2010-02-25 17:08 . 2008-03-08 04:21 1695744 ----a-w- c:\windows\system32\gameux.dll
2010-02-25 17:08 . 2009-08-28 10:15 4240384 ----a-w- c:\windows\system32\GameUXLegacyGDFs.dll
2010-02-25 17:04 . 2009-09-04 16:44 515416 ----a-w- c:\windows\system32\XAudio2_5.dll
2010-02-25 17:04 . 2009-09-04 16:44 238936 ----a-w- c:\windows\system32\xactengine3_5.dll
2010-02-25 17:04 . 2009-09-04 16:29 235344 ----a-w- c:\windows\system32\d3dx11_42.dll
2010-02-25 17:04 . 2009-09-04 16:29 5501792 ----a-w- c:\windows\system32\d3dcsx_42.dll
2010-02-25 17:04 . 2009-09-04 16:29 1974616 ----a-w- c:\windows\system32\D3DCompiler_42.dll
2010-02-25 17:04 . 2009-09-04 16:29 453456 ----a-w- c:\windows\system32\d3dx10_42.dll
2010-02-25 17:04 . 2009-09-04 16:29 1892184 ----a-w- c:\windows\system32\D3DX9_42.dll
2010-02-25 17:04 . 2009-03-09 14:27 453456 ----a-w- c:\windows\system32\d3dx10_41.dll
2010-02-25 17:04 . 2009-03-09 14:27 1846632 ----a-w- c:\windows\system32\D3DCompiler_41.dll
2010-02-25 17:04 . 2009-03-09 14:27 4178264 ----a-w- c:\windows\system32\D3DX9_41.dll
2010-02-25 17:02 . 2009-03-17 03:38 13824 ----a-w- c:\windows\system32\apilogen.dll
2010-02-25 17:02 . 2009-03-17 03:38 24064 ----a-w- c:\windows\system32\amxread.dll
2010-02-25 17:02 . 2008-06-06 03:27 38912 ----a-w- c:\windows\system32\xolehlp.dll
2010-02-25 17:02 . 2008-06-06 03:27 562176 ----a-w- c:\windows\system32\msdtcprx.dll
2010-02-25 17:02 . 2008-10-21 05:25 296960 ----a-w- c:\windows\system32\gdi32.dll
2010-02-25 17:02 . 2008-04-18 05:48 269312 ----a-w- c:\windows\system32\es.dll
2010-02-25 17:02 . 2009-06-10 12:12 160256 ----a-w- c:\windows\system32\wkssvc.dll
2010-02-25 17:01 . 2008-06-23 01:59 996352 ----a-w- c:\windows\system32\WMNetMgr.dll
2010-02-25 17:01 . 2008-06-23 01:58 94720 ----a-w- c:\windows\system32\logagent.exe
2010-02-25 17:00 . 2009-07-14 13:00 313344 ----a-w- c:\windows\system32\wmpdxm.dll
2010-02-25 17:00 . 2009-09-04 12:24 61440 ----a-w- c:\windows\system32\msasn1.dll
2010-02-25 16:59 . 2009-09-10 15:21 310784 ----a-w- c:\windows\system32\unregmp2.exe
2010-02-25 16:59 . 2009-07-14 12:58 7680 ----a-w- c:\windows\system32\spwmp.dll
2010-02-25 16:59 . 2009-07-14 12:59 4096 ----a-w- c:\windows\system32\dxmasf.dll
2010-02-25 16:59 . 2009-09-10 15:21 8147456 ----a-w- c:\windows\system32\wmploc.DLL
2010-02-25 16:58 . 2009-04-23 12:43 784896 ----a-w- c:\windows\system32\rpcrt4.dll
2010-02-25 16:57 . 2009-12-28 12:35 1314816 ----a-w- c:\windows\system32\quartz.dll
2010-02-25 16:57 . 2009-12-28 12:32 31744 ----a-w- c:\windows\system32\msvidc32.dll
2010-02-25 16:57 . 2009-12-28 12:32 13312 ----a-w- c:\windows\system32\msrle32.dll
2010-02-25 16:57 . 2009-12-28 12:35 11776 ----a-w- c:\windows\system32\tsbyuv.dll
2010-02-25 16:57 . 2009-12-28 12:32 22528 ----a-w- c:\windows\system32\msyuv.dll
2010-02-25 16:57 . 2009-12-28 12:31 82944 ----a-w- c:\windows\system32\mciavi32.dll
2010-02-25 16:57 . 2009-12-28 12:31 50176 ----a-w- c:\windows\system32\iyuv_32.dll
2010-02-25 16:57 . 2009-12-28 12:28 91136 ----a-w- c:\windows\system32\avifil32.dll
2010-02-25 16:57 . 2009-12-28 12:32 123904 ----a-w- c:\windows\system32\msvfw32.dll
2010-02-25 16:57 . 2009-12-28 12:28 65024 ----a-w- c:\windows\system32\avicap32.dll
2010-02-25 16:55 . 2008-10-21 05:25 1645568 ----a-w- c:\windows\system32\connect.dll
2010-02-25 16:48 . 2010-02-25 16:48 -------- d-----w- c:\program files\ESET
2010-02-25 16:18 . 2010-02-25 16:18 -------- d-----w- c:\windows\system32\Macromed
2010-02-25 16:13 . 2009-08-07 02:24 44768 ----a-w- c:\windows\system32\wups2.dll
2010-02-25 16:13 . 2009-08-07 02:24 53472 ----a-w- c:\windows\system32\wuauclt.exe
2010-02-25 16:13 . 2009-08-07 02:23 1929952 ----a-w- c:\windows\system32\wuaueng.dll

.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-02-28 15:19 . 2008-01-21 06:46 792694 ----a-w- c:\windows\system32\perfh005.dat
2010-02-28 15:19 . 2008-01-21 06:46 180606 ----a-w- c:\windows\system32\perfc005.dat
2010-02-28 13:14 . 2009-10-15 10:07 -------- d-----w- c:\program files\Rockstar Games
2010-02-27 19:37 . 2010-02-27 19:37 0 ---ha-w- c:\windows\system32\drivers\Msft_User_WpdFs_01_00_00.Wdf
2010-02-27 11:00 . 2009-11-07 07:03 -------- d-----w- c:\program files\DVDVideoSoft
2010-02-25 18:48 . 2010-02-24 18:14 49168 ----a-w- c:\users\vasek\AppData\Local\GDIPFONTCACHEV1.DAT
2010-02-25 17:58 . 2006-11-02 11:18 -------- d-----w- c:\program files\Windows Mail
2010-02-25 17:56 . 2006-11-02 10:25 665600 ----a-w- c:\windows\inf\drvindex.dat
2010-02-24 19:52 . 2009-10-10 05:53 -------- d-----w- c:\program files\Hry
2010-02-24 19:25 . 2010-02-24 19:25 319456 ----a-w- c:\windows\DIFxAPI.dll
2010-02-24 19:25 . 2010-02-24 19:25 -------- d-----w- c:\program files\Realtek
2010-02-24 19:04 . 2009-11-13 16:44 -------- d-----w- c:\program files\Vegas Pro 9.0
2010-02-24 18:11 . 2010-02-24 18:11 -------- d-sh--we c:\programdata\Plocha
2010-02-24 18:11 . 2010-02-24 18:11 -------- d-sh--we c:\programdata\Oblíbené položky
2010-02-24 18:11 . 2010-02-24 18:11 -------- d-sh--we c:\programdata\Šablony
2010-02-24 18:11 . 2010-02-24 18:11 -------- d-sh--we c:\programdata\Nabídka Start
2010-02-24 18:11 . 2010-02-24 18:11 -------- d-sh--we c:\programdata\Dokumenty
2010-02-24 18:11 . 2010-02-24 18:11 -------- d-sh--we c:\programdata\Data aplikací
2010-01-25 12:48 . 2010-02-25 17:05 472576 ----a-w- c:\windows\system32\secproc_isv.dll
2010-01-25 12:48 . 2010-02-25 17:05 151040 ----a-w- c:\windows\system32\secproc_ssp.dll
2010-01-25 12:48 . 2010-02-25 17:05 151040 ----a-w- c:\windows\system32\secproc_ssp_isv.dll
2010-01-25 12:48 . 2010-02-25 17:05 472064 ----a-w- c:\windows\system32\secproc.dll
2010-01-25 12:45 . 2010-02-25 17:05 329216 ----a-w- c:\windows\system32\msdrm.dll
2010-01-25 08:35 . 2010-02-25 17:05 346624 ----a-w- c:\windows\system32\RMActivate_ssp_isv.exe
2010-01-25 08:35 . 2010-02-25 17:05 523776 ----a-w- c:\windows\system32\RMActivate_isv.exe
2010-01-25 08:34 . 2010-02-25 17:05 511488 ----a-w- c:\windows\system32\RMActivate.exe
2010-01-25 08:34 . 2010-02-25 17:05 347136 ----a-w- c:\windows\system32\RMActivate_ssp.exe
2009-12-11 12:07 . 2010-02-25 17:05 301568 ----a-w- c:\windows\system32\drivers\srv.sys
2009-12-11 12:07 . 2010-02-25 17:05 98304 ----a-w- c:\windows\system32\drivers\srvnet.sys
2009-12-08 20:52 . 2010-02-25 17:03 897624 ----a-w- c:\windows\system32\drivers\tcpip.sys
.

((((((((((((((((((((((((((((( SnapShot@2010-03-05_14.02.05 )))))))))))))))))))))))))))))))))))))))))
.
+ 2010-03-05 19:24 . 2010-03-05 19:25 6221824 c:\windows\ERDNT\Hiv-backup\SCHEMA.DAT
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2008-01-21 1233920]
"WindowsWelcomeCenter"="oobefldr.dll" [2008-01-21 2153472]
"RGSC"="c:\program files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe" [2009-10-25 306088]
"ICQ"="c:\program files\ICQ7.0\ICQ.exe" [2010-02-10 133368]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"="c:\program files\Windows Defender\MSASCui.exe" [2008-01-21 1008184]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2009-11-24 98304]
"LchDrvKey"="LchDrvKey.exe" [2007-03-28 36864]
"HKExt3"="HKExt3.exe" [2008-09-16 313856]
"RtHDVCpl"="RtHDVCpl.exe" [2007-07-06 4669440]
"Skytel"="Skytel.exe" [2007-06-15 1826816]
"egui"="c:\program files\ESET\ESET NOD32 Antivirus\egui.exe" [2009-09-29 2054360]

c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
D-Link AirPlus G+ Wireless Adapter Utility.lnk - c:\program files\D-Link\D-Link AirPlus G+ Wireless Adapter Utility\DWLGTI.EXE [2010-2-24 671744]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
@="Service"

S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys [2009-09-29 108792]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2009-11-25 172032]
S2 ekrn;ESET Service;c:\program files\ESET\ESET NOD32 Antivirus\ekrn.exe [2009-09-29 735960]
S2 epfwwfpr;epfwwfpr;c:\windows\system32\DRIVERS\epfwwfpr.sys [2009-09-29 95896]

.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://start.icq.com/
IE: {{88EB38EF-4D2C-436D-ABD3-56B232674062} - c:\program files\ICQ7.0\ICQ.exe
.

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-03-05 20:34
Windows 6.0.6001 Service Pack 1 NTFS

skenování skrytých procesů ...

skenování skrytých položek 'Po spuštění' ...

skenování skrytých souborů ...

sken byl úspešně dokončen
skryté soubory: 0

**************************************************************************
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------

[HKEY_USERS\S-1-5-21-411705913-1685533206-113458850-1000\Software\SecuROM\License information*]
"datasecu"=hex:66,95,af,d1,39,e6,74,4c,3a,17,58,f1,40,70,3b,92,93,2f,0d,3e,09,
1d,26,15,95,50,1f,8d,48,53,fa,d7,5e,de,11,20,85,53,9b,76,89,2e,a4,92,09,64,\
"rkeysecu"=hex:bc,e0,fd,fb,32,69,dd,29,7a,58,ff,33,4d,4e,13,57
.
Celkový čas: 2010-03-05 20:36:26
ComboFix-quarantined-files.txt 2010-03-05 19:36
ComboFix2.txt 2010-03-05 14:04

Před spuštěním: Volných bajtů: 72 791 719 936
Po spuštění: Volných bajtů: 72 236 904 448

- - End Of File - - 708647F16CEA47D7A67880D2B411608E

[Damned]

Tohle sis vytvořil sám??????????

C:\$WINDOWS.~LS
C:\$WINDOWS.~BT

[adidass]

ee proste se mi to tam objevilo taky jsem si rikal co to je

[Damned]

Odinstaluj ComboFix ( nutné ) .
ComboFix se odinstaluje takto:
Start-Spustit a zadej Combofix[mezera]/uninstall

(píšou to se dvěma "L" - malýma)

Stáhni si T-Cleaner ( nutné - smaže vše po Combu,SDFixu,Avengeru,MWAVu atd.-stáhneš->spustíš)
*****************************************************************************************************************************************
Stáhni si OTL na Plochu.
Ujisti se , že máš zavřena všechna ostatní okna a poklepej na ikonu OTL.Nahoře v okně pod Output klikni na minimal Output.Pod Standard Registry změň na All. Zatrhni LOP Check a Purity Check. File age změň na 14 days. Všechny ostatní nastavení ponech jak jsou. Klikni na Run Scan. Sken může trvat dlouho, až skončí otevřou se dva logy:
OTL.Txt
Extras.Txt
Jsou uloženy ve stejném místě jako OTL. Oba logy sem prosím zkopíruj

[adidass]

extras.txt log

H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: KLUCI-PC
Current User Name: vasek
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 14 Days
Output = Minimal

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htmlfile [edit] -- Reg Error: Key error.
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"FirewallDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"UpdatesDisableNotify" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
"VistaSp1" = Reg Error: Unknown registry data type -- File not found

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0B3DF6ED-EA89-43C9-91F1-B055EA81EE89}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{23CBC278-AC20-4A45-9DE6-6451DE15409C}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=c:\windows\system32\svchost.exe |
"{329D9364-5C71-44B3-85B0-820D88B893EC}" = lport=3702 | protocol=17 | dir=in | svc=fdphost | app=c:\windows\system32\svchost.exe |
"{34E169EE-5A44-44A2-AE7C-5B685BA9C07C}" = lport=139 | protocol=6 | dir=in | app=system |
"{3C212AF2-C2DA-4FC0-AF8A-C8E96E5A86C1}" = lport=138 | protocol=17 | dir=in | app=system |
"{4587811B-F958-49C1-AF54-2C3885FB651A}" = lport=137 | protocol=17 | dir=in | app=system |
"{4962F5E3-A06B-4A14-8F97-E6B76F08F42A}" = rport=445 | protocol=6 | dir=out | app=system |
"{870BF976-7E0A-46E6-8851-A53D509EDEA8}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=c:\windows\system32\svchost.exe |
"{8E6F8149-2D3F-448F-90EA-6890E098C315}" = rport=139 | protocol=6 | dir=out | app=system |
"{99252AC3-C8E4-4600-BBA7-AFA0AEEB99BD}" = lport=445 | protocol=6 | dir=in | app=system |
"{9DA083F3-3FBB-42AE-BFD0-580F960625A1}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{B1036A7A-0031-483A-B89A-0AC0E55200F6}" = rport=137 | protocol=17 | dir=out | app=system |
"{B155A90A-2204-4F49-A696-14C82B3382C9}" = rport=138 | protocol=17 | dir=out | app=system |
"{B36C5A9C-75AB-4EC4-81B1-85DF3C2C10C8}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=c:\windows\system32\svchost.exe |
"{B5F3E9CD-1568-4FCE-B947-8995075D7ABE}" = rport=3702 | protocol=17 | dir=out | svc=fdrespub | app=c:\windows\system32\svchost.exe |
"{B992E545-1C48-4290-8EFC-0F960DE038AE}" = rport=3702 | protocol=17 | dir=out | svc=fdphost | app=c:\windows\system32\svchost.exe |
"{D0A6C82C-215D-4FAA-AB7D-E749AF2AE48E}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=c:\windows\system32\svchost.exe |
"{FA70DF7F-7B5C-4B99-AA76-369890DFF735}" = lport=3702 | protocol=17 | dir=in | svc=fdrespub | app=c:\windows\system32\svchost.exe |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{29D9A3D0-4F60-4C1B-BFFE-A4DE90DF33DF}" = protocol=17 | dir=in | app=c:\program files\rockstar games\grand theft auto iv\launchgtaiv.exe |
"{379A1561-F144-4755-B077-A5EAA1BF4BD7}" = protocol=6 | dir=in | app=c:\program files\icq7.0\icq.exe |
"{3ED149FF-DFAA-4B0C-9034-EC585104B4BC}" = protocol=17 | dir=in | app=c:\program files\icq7.0\icq.exe |
"{4606589D-8A04-4904-A8EC-9A57C50C1193}" = protocol=17 | dir=in | app=c:\program files\icq7.0\aolload.exe |
"{4DACCD2E-26DA-4A5E-B5F5-3D1D288D84AA}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{52104546-E86E-4B24-A9E8-28B74FCDE07A}" = protocol=17 | dir=in | app=c:\program files\icq7.0\aolload.exe |
"{5C3BFDE3-3C9E-4722-B5DA-EEDEA5D8C802}" = protocol=6 | dir=in | app=c:\program files\rockstar games\rockstar games social club\rgsclauncher.exe |
"{812CC4A2-412B-4102-80EA-6EB2DCC9D7EB}" = protocol=6 | dir=in | app=c:\program files\icq7.0\icq.exe |
"{84953B12-8CCA-4020-BA63-BEE549D7AAC0}" = protocol=17 | dir=in | app=c:\program files\icq7.0\aolload.exe |
"{912FE870-8759-49DA-BAB9-48B57DCB31E8}" = protocol=17 | dir=in | app=c:\program files\utorrent\utorrent.exe |
"{ABF6039A-5B33-4091-8602-B8A92AE41943}" = protocol=6 | dir=in | app=c:\program files\icq7.0\aolload.exe |
"{BAA9BD28-7F36-41EC-B5E8-9D7B359D8BD9}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{BBF75A3B-6B5F-4FEF-AE88-8257F6F22D85}" = protocol=6 | dir=in | app=c:\program files\icq7.0\icq.exe |
"{C30780C0-5791-4EA1-A925-1FF509C7FF6B}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{D52057B8-76FC-44FA-819F-04C38090C015}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{D6CAE3CF-3A66-47A6-A423-7C4268D16420}" = protocol=6 | dir=out | svc=upnphost | app=c:\windows\system32\svchost.exe |
"{D6FD99CB-A93D-4112-AAE0-5B23452128FF}" = protocol=6 | dir=in | app=c:\program files\utorrent\utorrent.exe |
"{E13E51D4-2307-49B6-9EC8-19A11890C2BF}" = protocol=17 | dir=in | app=c:\program files\opera\opera.exe |
"{E27A687C-1606-454D-AB1C-F36AF0E4FF57}" = protocol=6 | dir=in | app=c:\program files\icq7.0\aolload.exe |
"{E6E0637B-4624-4FFC-866D-EDD16F1DDC33}" = protocol=17 | dir=in | app=c:\program files\rockstar games\rockstar games social club\rgsclauncher.exe |
"{ED127863-F074-4FEB-8362-CB460532622E}" = protocol=6 | dir=in | app=c:\program files\rockstar games\grand theft auto iv\launchgtaiv.exe |
"{ED57736C-B0CC-46CE-8D6B-713E39C60DE5}" = protocol=6 | dir=in | app=c:\program files\opera\opera.exe |
"{F043DD30-FA78-4BE4-BB3F-15A4C5A39AC7}" = protocol=17 | dir=in | app=c:\program files\icq7.0\icq.exe |
"{F9AF3FBA-7872-4B80-A9F5-D44CE5BF1B41}" = protocol=17 | dir=in | app=c:\program files\icq7.0\icq.exe |
"{FAA3ADF4-4609-4AE7-8A79-9211CE43D3A5}" = protocol=6 | dir=in | app=c:\program files\icq7.0\aolload.exe |
"TCP Query User{024E2CF8-8C0F-4C5A-A579-7B202B4E72FB}C:\program files\utorrent\utorrent.exe" = protocol=6 | dir=in | app=c:\program files\utorrent\utorrent.exe |
"TCP Query User{5F2868DB-3718-425E-A810-01AB403BF59B}C:\users\vasek\desktop\nová složka\utorrent.exe" = protocol=6 | dir=in | app=c:\users\vasek\desktop\nová složka\utorrent.exe |
"TCP Query User{72E2A705-933B-4A9A-9B1A-D4BCA897A430}C:\program files\rockstar games\grand theft auto iv\gtaiv.exe" = protocol=6 | dir=in | app=c:\program files\rockstar games\grand theft auto iv\gtaiv.exe |
"TCP Query User{839C3175-AEAA-4BA4-99DB-BA5858296B39}C:\program files\skype\phone\skype.exe" = protocol=6 | dir=in | app=c:\program files\skype\phone\skype.exe |
"UDP Query User{381E84D5-9F58-4602-9308-74BD8BF8CF88}C:\program files\utorrent\utorrent.exe" = protocol=17 | dir=in | app=c:\program files\utorrent\utorrent.exe |
"UDP Query User{418FF8F7-313D-4D1F-A503-650DFF006DC4}C:\program files\skype\phone\skype.exe" = protocol=17 | dir=in | app=c:\program files\skype\phone\skype.exe |
"UDP Query User{9EA2053E-6F17-41B1-B1FC-B06B911F646C}C:\users\vasek\desktop\nová složka\utorrent.exe" = protocol=17 | dir=in | app=c:\users\vasek\desktop\nová složka\utorrent.exe |
"UDP Query User{AC12D324-9259-4610-9E0A-D3911EB4D83F}C:\program files\rockstar games\grand theft auto iv\gtaiv.exe" = protocol=17 | dir=in | app=c:\program files\rockstar games\grand theft auto iv\gtaiv.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{00C5F4F4-62F9-40D7-8000-AD8A9CD0C669}" = Microsoft Games for Windows - LIVE Redistributable
"{08B3869E-D282-424C-9AFC-870E04A4BA14}" = Rockstar Games Social Club
"{0BB72566-0D4C-7200-2CE7-02F298B49C88}" = CCC Help English
"{110AD51E-D0E0-49B1-52FD-291373BA62EA}" = Catalyst Control Center Graphics Full New
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{31557F4F-7D10-D32E-4B70-237A09FCC31B}" = Catalyst Control Center Graphics Previews Common
"{3C175604-F026-5D79-BBD8-F626AE10B3EF}" = Catalyst Control Center Graphics Full Existing
"{579BA58C-F33D-4970-9953-B94B43768AC3}" = Grand Theft Auto IV
"{62C2067E-5851-BD4C-98E0-5C4D5E155A5B}" = Catalyst Control Center Core Implementation
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{88EB38EF-4D2C-436D-ABD3-56B232674062}" = ICQ7
"{8D7133DE-27D2-47E5-B248-4180278D32AA}" = Catalyst Control Center - Branding
"{934528B2-09B3-C6E5-288A-4E554E6DF2B9}" = ATI Catalyst Install Manager
"{A1C962E2-2426-49C6-A38B-9A07E40D607C}" = Microsoft Games for Windows - LIVE
"{A292C05C-840A-9D47-5350-EF39ECC7629E}" = Catalyst Control Center HydraVision Full
"{A2D08D5A-74E8-7509-452A-E40E63D8FFC2}" = Catalyst Control Center InstallProxy
"{A2F67EA3-0721-4E0D-A7B9-AE8F321303AF}" = D-Link AirPlus G+ Wireless Adapter Utility
"{AB47445C-8CA6-4A84-8A1B-42361B78BA4D}" = ESET NOD32 Antivirus
"{AD17676C-5065-E427-130B-21CE713F93E7}" = Catalyst Control Center Graphics Light
"{B970700B-E49F-ECEF-4ADB-0F3E1AFEDE91}" = ccc-core-static
"{C950420B-4182-49EA-850A-A6A2ABF06C6B}" = Marvell Miniport Driver
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{ED5DCA6F-5FEA-47CB-83DB-210A468C298B}" = SlimStar 220 Pro
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F9726DDC-D7B5-BF1F-5626-EA467FEEBC52}" = ccc-utility
"{F9F13FEA-D51E-A1C3-4EDC-D04A91B62C93}" = Catalyst Control Center Graphics Previews Vista
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Call of Juarez_is1" = Call of Juarez
"EVEREST Ultimate Edition_is1" = EVEREST Ultimate Edition v5.02
"Free Audio CD Burner_is1" = Free Audio CD Burner version 1.2
"Free YouTube to MP3 Converter_is1" = Free YouTube to MP3 Converter version 3.2
"HijackThis" = HijackThis 2.0.2
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"NVIDIA Drivers" = NVIDIA Drivers
"Uninstall_is1" = Uninstall 1.0.0.1
"WinRAR archiver" = WinRAR

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 28.2.2010 10:26:36 | Computer Name = kluci-pc | Source = LoadPerf | ID = 3011
Description =

Error - 28.2.2010 11:18:00 | Computer Name = kluci-pc | Source = WinMgmt | ID = 10
Description =

Error - 28.2.2010 11:19:55 | Computer Name = kluci-pc | Source = LoadPerf | ID = 3012
Description =

Error - 28.2.2010 11:19:56 | Computer Name = kluci-pc | Source = LoadPerf | ID = 3012
Description =

Error - 28.2.2010 11:19:56 | Computer Name = kluci-pc | Source = LoadPerf | ID = 3011
Description =

Error - 28.2.2010 11:39:46 | Computer Name = kluci-pc | Source = Application Error | ID = 1000
Description = Chybující aplikace GTAIV.exe, verze 1.0.3.0, časové razítko 0x499dc616,
chybující modul unknown, verze 0.0.0.0, časové razítko 0x00000000, kód výjimky
0xc0000005, posun chyby 0x0015f248, ID procesu 0x484, čas spuštění aplikace 0x01cab88be8e32439.

Error - 28.2.2010 13:54:43 | Computer Name = kluci-pc | Source = Application Error | ID = 1000
Description = Chybující aplikace GTAIV.exe, verze 1.0.3.0, časové razítko 0x499dc616,
chybující modul unknown, verze 0.0.0.0, časové razítko 0x00000000, kód výjimky
0xc0000005, posun chyby 0x002ff298, ID procesu 0xb30, čas spuštění aplikace 0x01cab88c506c1da9.

Error - 5.3.2010 9:07:34 | Computer Name = kluci-pc | Source = WinMgmt | ID = 10
Description =

Error - 5.3.2010 9:32:43 | Computer Name = kluci-pc | Source = WinMgmt | ID = 10
Description =

Error - 5.3.2010 13:37:10 | Computer Name = kluci-pc | Source = Application Error | ID = 1000
Description = Chybující aplikace GTAIV.exe, verze 1.0.3.0, časové razítko 0x499dc616,
chybující modul unknown, verze 0.0.0.0, časové razítko 0x00000000, kód výjimky
0xc0000005, posun chyby 0x002cefa0, ID procesu 0x14bc, čas spuštění aplikace 0x01cabc71839073b2.

[ System Events ]
Error - 5.3.2010 9:50:03 | Computer Name = kluci-pc | Source = Microsoft-Windows-WindowsUpdateClient | ID = 20
Description =

Error - 5.3.2010 9:50:03 | Computer Name = kluci-pc | Source = Microsoft-Windows-WindowsUpdateClient | ID = 20
Description =

Error - 5.3.2010 9:50:03 | Computer Name = kluci-pc | Source = Microsoft-Windows-WindowsUpdateClient | ID = 20
Description =

Error - 5.3.2010 9:50:03 | Computer Name = kluci-pc | Source = Microsoft-Windows-WindowsUpdateClient | ID = 20
Description =

Error - 5.3.2010 9:51:08 | Computer Name = kluci-pc | Source = Service Control Manager | ID = 7030
Description =

Error - 5.3.2010 10:02:00 | Computer Name = kluci-pc | Source = Service Control Manager | ID = 7030
Description =

Error - 5.3.2010 10:07:49 | Computer Name = kluci-pc | Source = bowser | ID = 8003
Description =

Error - 5.3.2010 10:31:46 | Computer Name = kluci-pc | Source = bowser | ID = 8003
Description =

Error - 5.3.2010 15:25:25 | Computer Name = kluci-pc | Source = Service Control Manager | ID = 7030
Description =

Error - 5.3.2010 15:34:12 | Computer Name = kluci-pc | Source = Service Control Manager | ID = 7030
Description =


< End of report >

[adidass]

a tet OLT.txt

[adidass]

OTL.txt log (musel jsem rozpulit na dve pulky prilis mnoho znaku)

OTL logfile created on: 5.3.2010 22:18:33 - Run 1
OTL by OldTimer - Version 3.1.34.0 Folder = C:\Users\vasek\Desktop
Windows Vista Home Premium Edition Service Pack 1 (Version = 6.0.6001) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6001.18000)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 45,00% Memory free
4,00 Gb Paging File | 3,00 Gb Available in Paging File | 66,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 232,88 Gb Total Space | 68,76 Gb Free Space | 29,53% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: KLUCI-PC
Current User Name: vasek
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 14 Days
Output = Minimal

========== Processes (SafeList) ==========

PRC - C:\Users\vasek\Desktop\OTL.exe (OldTimer Tools)
PRC - C:\Program Files\ICQ7.0\ICQ.exe (ICQ, Inc.)
PRC - C:\Program Files\utorrent\utorrent.exe (BitTorrent, Inc.)
PRC - C:\Windows\System32\atieclxx.exe (AMD)
PRC - C:\Windows\System32\atiesrxx.exe (AMD)
PRC - C:\Program Files\Opera\opera.exe (Opera Software)
PRC - C:\Program Files\Rockstar Games\Rockstar Games Social Club\1_1_3_0\RGSC.exe (Take-Two Interactive Software, Inc.)
PRC - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe (ESET)
PRC - C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (ESET)
PRC - C:\Program Files\Windows Media Player\wmplayer.exe (Microsoft Corporation)
PRC - C:\Windows\explorer.exe (Microsoft Corporation)
PRC - C:\Windows\mHotkey.exe ()
PRC - C:\Windows\HKExt3.exe ()
PRC - C:\Windows\ChiFuncExt.exe (Chicony)
PRC - C:\Windows\System32\conime.exe (Microsoft Corporation)
PRC - C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
PRC - C:\Windows\RtHDVCpl.exe (Realtek Semiconductor)
PRC - C:\Program Files\D-Link\D-Link AirPlus G+ Wireless Adapter Utility\DWLGTI.EXE (D-Link)


========== Modules (SafeList) ==========

MOD - C:\Users\vasek\Desktop\OTL.exe (OldTimer Tools)
MOD - C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6001.18000_none_5cdbaa5a083979cc\comctl32.dll (Microsoft Corporation)


========== Win32 Services (SafeList) ==========

SRV - (AMD External Events Utility) -- C:\Windows\System32\atiesrxx.exe (AMD)
SRV - (EhttpSrv) -- C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe (ESET)
SRV - (ekrn) -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe (ESET)
SRV - (NetTcpPortSharing) -- C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe (Microsoft Corporation)
SRV - (WinDefend) -- C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)


========== Driver Services (SafeList) ==========

DRV - (gdrv) -- C:\Windows\gdrv.sys (Windows (R) 2000 DDK provider)
DRV - (atikmdag) -- C:\Windows\System32\drivers\atikmdag.sys (ATI Technologies Inc.)
DRV - (AtiHdmiService) -- C:\Windows\System32\drivers\AtiHdmi.sys (ATI Technologies, Inc.)
DRV - (epfwwfpr) -- C:\Windows\System32\drivers\epfwwfpr.sys (ESET)
DRV - (ehdrv) -- C:\Windows\System32\drivers\ehdrv.sys (ESET)
DRV - (eamon) -- C:\Windows\System32\drivers\eamon.sys (ESET)
DRV - (MegaSR) -- C:\Windows\system32\drivers\megasr.sys (LSI Corporation, Inc.)
DRV - (adpu320) -- C:\Windows\system32\drivers\adpu320.sys (Adaptec, Inc.)
DRV - (megasas) -- C:\Windows\system32\drivers\megasas.sys (LSI Corporation)
DRV - (adpu160m) -- C:\Windows\system32\drivers\adpu160m.sys (Adaptec, Inc.)
DRV - (SiSRaid4) -- C:\Windows\system32\drivers\sisraid4.sys (Silicon Integrated Systems)
DRV - (HpCISSs) -- C:\Windows\system32\drivers\hpcisss.sys (Hewlett-Packard Company)
DRV - (adpahci) -- C:\Windows\system32\drivers\adpahci.sys (Adaptec, Inc.)
DRV - (LSI_SAS) -- C:\Windows\system32\drivers\lsi_sas.sys (LSI Logic)
DRV - (ql2300) -- C:\Windows\system32\drivers\ql2300.sys (QLogic Corporation)
DRV - (E1G60) Intel(R) -- C:\Windows\System32\drivers\E1G60I32.sys (Intel Corporation)
DRV - (arcsas) -- C:\Windows\system32\drivers\arcsas.sys (Adaptec, Inc.)
DRV - (iaStorV) -- C:\Windows\system32\drivers\iastorv.sys (Intel Corporation)
DRV - (vsmraid) -- C:\Windows\system32\drivers\vsmraid.sys (VIA Technologies Inc.,Ltd)
DRV - (ulsata2) -- C:\Windows\system32\drivers\ulsata2.sys (Promise Technology, Inc.)
DRV - (LSI_SCSI) -- C:\Windows\system32\drivers\lsi_scsi.sys (LSI Logic)
DRV - (LSI_FC) -- C:\Windows\system32\drivers\lsi_fc.sys (LSI Logic)
DRV - (arc) -- C:\Windows\system32\drivers\arc.sys (Adaptec, Inc.)
DRV - (elxstor) -- C:\Windows\system32\drivers\elxstor.sys (Emulex)
DRV - (adp94xx) -- C:\Windows\system32\drivers\adp94xx.sys (Adaptec, Inc.)
DRV - (nvraid) -- C:\Windows\system32\drivers\nvraid.sys (NVIDIA Corporation)
DRV - (nvstor) -- C:\Windows\system32\drivers\nvstor.sys (NVIDIA Corporation)
DRV - (uliahci) -- C:\Windows\system32\drivers\uliahci.sys (ULi Electronics Inc.)
DRV - (viaide) -- C:\Windows\system32\drivers\viaide.sys (VIA Technologies, Inc.)
DRV - (cmdide) -- C:\Windows\system32\drivers\cmdide.sys (CMD Technology, Inc.)
DRV - (aliide) -- C:\Windows\system32\drivers\aliide.sys (Acer Laboratories Inc.)
DRV - (IntcAzAudAddService) Service for Realtek HD Audio (WDM) -- C:\Windows\System32\drivers\RTKVHDA.sys (Realtek Semiconductor Corp.)
DRV - (NVENETFD) -- C:\Windows\System32\drivers\nvmfdx32.sys (NVIDIA Corporation)
DRV - (nvstor32) -- C:\Windows\system32\DRIVERS\nvstor32.sys (NVIDIA Corporation)
DRV - (ql40xx) -- C:\Windows\system32\drivers\ql40xx.sys (QLogic Corporation)
DRV - (UlSata) -- C:\Windows\system32\drivers\ulsata.sys (Promise Technology, Inc.)
DRV - (nfrd960) -- C:\Windows\system32\drivers\nfrd960.sys (IBM Corporation)
DRV - (iirsp) -- C:\Windows\system32\drivers\iirsp.sys (Intel Corp./ICP vortex GmbH)
DRV - (aic78xx) -- C:\Windows\system32\drivers\djsvs.sys (Adaptec, Inc.)
DRV - (iteraid) -- C:\Windows\system32\drivers\iteraid.sys (Integrated Technology Express, Inc.)
DRV - (iteatapi) -- C:\Windows\system32\drivers\iteatapi.sys (Integrated Technology Express, Inc.)
DRV - (Symc8xx) -- C:\Windows\system32\drivers\symc8xx.sys (LSI Logic)
DRV - (Sym_u3) -- C:\Windows\system32\drivers\sym_u3.sys (LSI Logic)
DRV - (Mraid35x) -- C:\Windows\system32\drivers\mraid35x.sys (LSI Logic Corporation)
DRV - (Sym_hi) -- C:\Windows\system32\drivers\sym_hi.sys (LSI Logic)
DRV - (Brserid) Brother MFC Serial Port Interface Driver (WDM) -- C:\Windows\system32\drivers\brserid.sys (Brother Industries Ltd.)
DRV - (BrUsbSer) -- C:\Windows\system32\drivers\brusbser.sys (Brother Industries Ltd.)
DRV - (BrFiltUp) -- C:\Windows\system32\drivers\brfiltup.sys (Brother Industries, Ltd.)
DRV - (BrFiltLo) -- C:\Windows\system32\drivers\brfiltlo.sys (Brother Industries, Ltd.)
DRV - (BrSerWdm) -- C:\Windows\system32\drivers\brserwdm.sys (Brother Industries Ltd.)
DRV - (BrUsbMdm) -- C:\Windows\system32\drivers\brusbmdm.sys (Brother Industries Ltd.)
DRV - (ntrigdigi) -- C:\Windows\system32\drivers\ntrigdigi.sys (N-trig Innovative Technologies)
DRV - (TNET1130) -- C:\Windows\System32\drivers\GPlus.sys ()


========== Standard Registry (All) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm
IE - HKLM\..\URLSearchHook: - Reg Error: Key error. File not found
IE - HKLM\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - Reg Error: Key error. File not found

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\system32\blank.htm
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://start.icq.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKCU\..\URLSearchHook: - Reg Error: Key error. File not found
IE - HKCU\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\System32\ieframe.dll (Microsoft Corporation)
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

FF - HKLM\software\mozilla\Firefox\Extensions\\{20a82645-c095-46ed-80e3-08825760534b}: C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ [2010.02.28 15:06:16 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2010.02.25 17:48:21 | 000,000,000 | ---D | M]


O1 HOSTS File: ([2006.09.18 22:41:30 | 000,000,761 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O4 - HKLM..\Run: [egui] C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (ESET)
O4 - HKLM..\Run: [HKExt3] C:\Windows\HKExt3.exe ()
O4 - HKLM..\Run: [LchDrvKey] C:\Windows\LchDrvKey.exe ()
O4 - HKLM..\Run: [RtHDVCpl] C:\Windows\RtHDVCpl.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [Skytel] C:\Windows\SkyTel.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKCU..\Run: [ICQ] C:\Program Files\ICQ7.0\ICQ.exe (ICQ, Inc.)
O4 - HKCU..\Run: [RGSC] C:\Program Files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe (Take-Two Interactive Software, Inc.)
O4 - HKCU..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe (Microsoft Corporation)
O4 - HKCU..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableInstallerDetection = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableSecureUIAPaths = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableVirtualization = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ValidateAdminCodeSignatures = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: scforceoption = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: FilterAdministratorToken = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableUIADesktopToggle = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableRegistryTools = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_TEXT = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_BITMAP = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_OEMTEXT = 7
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIB = 8
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_PALETTE = 9
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_UNICODETEXT = 13
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIBV5 = 17
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableRegistryTools = 0
O9 - Extra Button: ICQ7 - {88EB38EF-4D2C-436D-ABD3-56B232674062} - C:\Program Files\ICQ7.0\ICQ.exe (ICQ, Inc.)
O9 - Extra 'Tools' menuitem : ICQ7 - {88EB38EF-4D2C-436D-ABD3-56B232674062} - C:\Program Files\ICQ7.0\ICQ.exe (ICQ, Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - C:\Windows\System32\nlaapi.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000002 [] - C:\Windows\System32\NapiNSP.dll (Společnost Microsoft)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000003 [] - C:\Windows\System32\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Windows\System32\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000006 [] - C:\Windows\System32\winrnr.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000012 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000013 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000014 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000015 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000016 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000017 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000018 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000019 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000020 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000021 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000022 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000023 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000024 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O18 - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\dvd {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\Windows\System32\MSVidCtl.dll (Microsoft Corporation)
O18 - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\gopher {79eac9e4-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\System32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\System32\inetcomm.dll (Microsoft Corporation)
O18 - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\System32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\tv {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\Windows\System32\MSVidCtl.dll (Microsoft Corporation)
O18 - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\deflate {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\gzip {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (rundll32 shell32) - C:\Windows\System32\shell32.dll (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (Control_RunDLL "sysdm.cpl") - C:\Windows\System32\sysdm.cpl (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\Windows\System32\webcheck.dll (Microsoft Corporation)
O22 - SharedTaskScheduler: {8C7461EF-2B13-11d2-BE35-3078302C2030} - Component Categories cache daemon - C:\Windows\System32\browseui.dll (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Windows\Web\Wallpaper\img20.jpg
O24 - Desktop BackupWallPaper: C:\Windows\Web\Wallpaper\img20.jpg
O28 - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - Reg Error: Key error. File not found
O29 - HKLM SecurityProviders - (credssp.dll) - C:\Windows\System32\credssp.dll (Microsoft Corporation)
O30 - LSA: Authentication Packages - (msv1_0) - C:\Windows\System32\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (kerberos) - C:\Windows\System32\kerberos.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (msv1_0) - C:\Windows\System32\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (schannel) - C:\Windows\System32\schannel.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (wdigest) - C:\Windows\System32\wdigest.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (tspkg) - C:\Windows\System32\tspkg.dll (Microsoft Corporation)
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006.09.18 22:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - comfile [open] -- "%1" %*
O35 - exefile [open] -- "%1" %*

========== Files/Folders - Created Within 14 Days ==========

[2010.03.05 22:16:27 | 000,553,984 | ---- | C] (OldTimer Tools) -- C:\Users\vasek\Desktop\OTL.exe
[2010.03.05 20:36:28 | 000,000,000 | ---D | C] -- C:\Users\vasek\AppData\Local\temp
[2010.03.05 20:36:04 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2010.03.05 15:04:15 | 000,000,000 | ---D | C] -- C:\Windows\temp
[2010.03.05 14:53:38 | 000,000,000 | ---D | C] -- C:\Users\vasek\AppData\Local\ESET
[2010.03.05 14:49:37 | 000,000,000 | ---D | C] -- C:\Windows\ERDNT
[2010.03.05 14:06:09 | 000,000,000 | ---D | C] -- C:\Users\vasek\AppData\Local\ATI
[2010.03.05 14:05:56 | 000,000,000 | ---D | C] -- C:\Users\vasek\AppData\Local\AOL
[2010.02.28 21:02:26 | 000,000,000 | ---D | C] -- C:\Users\vasek\AppData\Roaming\Malwarebytes
[2010.02.28 21:02:22 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
[2010.02.28 21:02:20 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2010.02.28 21:02:19 | 000,019,160 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2010.02.28 21:02:18 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2010.02.28 20:53:58 | 000,000,000 | ---D | C] -- C:\Users\vasek\AppData\Roaming\Mozilla
[2010.02.28 20:53:58 | 000,000,000 | ---D | C] -- C:\ProgramData\ICQ
[2010.02.28 20:53:07 | 000,000,000 | ---D | C] -- C:\Users\vasek\AppData\Roaming\ICQ
[2010.02.28 20:52:40 | 000,000,000 | ---D | C] -- C:\Program Files\ICQ7.0
[2010.02.28 15:48:35 | 000,000,000 | ---D | C] -- C:\Users\vasek\Documents\Rockstar Games
[2010.02.28 15:46:08 | 000,000,000 | ---D | C] -- C:\Users\vasek\AppData\Roaming\WinRAR
[2010.02.28 15:45:34 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR
[2010.02.28 15:41:19 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\microsoft
[2010.02.28 15:22:27 | 000,000,000 | RH-D | C] -- C:\Users\vasek\AppData\Roaming\SecuROM
[2010.02.28 15:02:25 | 000,105,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationCFFRasterizerNative_v0300.dll
[2010.02.28 15:02:25 | 000,097,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\infocardapi.dll
[2010.02.28 15:02:24 | 000,622,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\icardagt.exe
[2010.02.28 15:02:24 | 000,043,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationHostProxy.dll
[2010.02.28 15:02:24 | 000,037,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\infocardcpl.cpl
[2010.02.28 15:02:24 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\icardres.dll
[2010.02.28 15:02:21 | 000,781,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationNative_v0300.dll
[2010.02.28 15:02:19 | 000,326,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationHost.exe
[2010.02.28 14:55:10 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netfxperf.dll
[2010.02.28 14:54:57 | 000,158,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mscorier.dll
[2010.02.28 14:54:55 | 000,083,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mscories.dll
[2010.02.28 14:41:24 | 000,107,888 | ---- | C] (Sony DADC Austria AG.) -- C:\Windows\System32\CmdLineExt.dll
[2010.02.28 14:40:15 | 000,000,000 | ---D | C] -- C:\Windows\System32\xlive
[2010.02.28 14:40:14 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Games for Windows - LIVE
[2010.02.28 14:13:33 | 000,000,000 | ---D | C] -- C:\Users\vasek\AppData\Local\Rockstar Games
[2010.02.28 08:17:46 | 000,000,000 | ---D | C] -- C:\Users\vasek\Desktop\hudba
[2010.02.28 08:17:29 | 000,000,000 | ---D | C] -- C:\Users\vasek\Desktop\torrenty
[2010.02.27 22:00:37 | 000,000,000 | ---D | C] -- C:\Program Files\Trend Micro
[2010.02.27 11:59:41 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DVDVideoSoft
[2010.02.27 11:37:31 | 000,000,000 | ---D | C] -- C:\Users\vasek\Documents\DVDVideoSoft
[2010.02.27 11:02:19 | 003,597,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe
[2010.02.27 11:02:18 | 003,546,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
[2010.02.27 09:17:38 | 000,000,000 | ---D | C] -- C:\Program Files\utorrent
[2010.02.27 00:39:06 | 000,000,000 | ---D | C] -- C:\Program Files\Lavalys
[2010.02.26 21:20:03 | 000,000,000 | ---D | C] -- C:\Windows\Minidump
[2010.02.26 19:35:38 | 000,000,000 | ---D | C] -- C:\ProgramData\WindowsSearch
[2010.02.26 19:06:44 | 000,000,000 | ---D | C] -- C:\$WINDOWS.~LS
[2010.02.26 18:48:47 | 000,000,000 | ---D | C] -- C:\$WINDOWS.~BT
[2010.02.25 18:46:13 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msshooks.dll
[2010.02.25 18:46:12 | 000,313,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\thawbrkr.dll
[2010.02.25 18:46:12 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msshsq.dll
[2010.02.25 18:46:12 | 000,143,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\korwbrkr.dll
[2010.02.25 18:46:12 | 000,087,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssitlb.dll
[2010.02.25 18:46:12 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\propdefs.dll
[2010.02.25 18:46:12 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msstrc.dll
[2010.02.25 18:46:12 | 000,034,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msscb.dll
[2010.02.25 18:46:12 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssprxy.dll
[2010.02.25 18:46:11 | 006,103,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\chtbrkr.dll
[2010.02.25 18:46:11 | 001,671,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\chsbrkr.dll
[2010.02.25 18:46:11 | 000,301,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\srchadmin.dll
[2010.02.25 18:46:11 | 000,194,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\offfilt.dll
[2010.02.25 18:46:11 | 000,136,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\nlhtml.dll
[2010.02.25 18:46:11 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msscntrs.dll
[2010.02.25 18:46:11 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xmlfilter.dll
[2010.02.25 18:46:11 | 000,040,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mimefilt.dll
[2010.02.25 18:46:11 | 000,038,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rtffilt.dll
[2010.02.25 18:46:11 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wsepno.dll
[2010.02.25 18:46:10 | 001,582,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tquery.dll
[2010.02.25 18:46:10 | 001,418,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssrch.dll
[2010.02.25 18:46:10 | 000,670,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssvp.dll
[2010.02.25 18:46:10 | 000,350,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssph.dll
[2010.02.25 18:46:10 | 000,203,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssphtb.dll
[2010.02.25 18:43:22 | 000,181,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MpSigStub.exe
[2010.02.25 18:38:42 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\nshhttp.dll
[2010.02.25 18:38:39 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\httpapi.dll
[2010.02.25 18:26:16 | 002,452,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dat
[2010.02.25 18:26:01 | 000,380,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dll
[2010.02.25 18:25:59 | 000,458,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2010.02.25 18:25:59 | 000,389,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll
[2010.02.25 18:25:58 | 000,230,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieaksie.dll
[2010.02.25 18:25:58 | 000,193,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iepeers.dll
[2010.02.25 18:25:57 | 000,671,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mstime.dll
[2010.02.25 18:25:57 | 000,389,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\html.iec
[2010.02.25 18:25:57 | 000,078,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieencode.dll
[2010.02.25 18:25:57 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe
[2010.02.25 18:25:56 | 001,383,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2010.02.25 18:25:56 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2010.02.25 18:25:09 | 012,240,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0007.dll
[2010.02.25 18:25:07 | 002,644,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0009.dll
[2010.02.25 18:24:34 | 000,801,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NaturalLanguage6.dll
[2010.02.25 18:22:09 | 000,104,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netiohlp.dll
[2010.02.25 18:22:08 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NETSTAT.EXE
[2010.02.25 18:22:08 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ARP.EXE
[2010.02.25 18:22:08 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\finger.exe
[2010.02.25 18:22:08 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\TCPSVCS.EXE
[2010.02.25 18:22:07 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ROUTE.EXE
[2010.02.25 18:22:07 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MRINFO.EXE
[2010.02.25 18:22:07 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\HOSTNAME.EXE
[2010.02.25 18:22:06 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netevent.dll
[2010.02.25 18:18:05 | 000,428,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\EncDec.dll
[2010.02.25 18:18:04 | 000,217,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\psisrndr.ax
[2010.02.25 18:18:00 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\psisdecd.dll
[2010.02.25 18:17:56 | 000,177,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mpg2splt.ax
[2010.02.25 18:17:56 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MSNP.ax
[2010.02.25 18:17:56 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MSDvbNP.ax
[2010.02.25 18:17:44 | 000,019,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\kd1394.dll
[2010.02.25 18:17:43 | 000,615,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ci.dll
[2010.02.25 18:17:42 | 000,988,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winload.exe
[2010.02.25 18:17:41 | 000,927,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winresume.exe
[2010.02.25 18:17:40 | 000,378,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\srcore.dll
[2010.02.25 18:17:40 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\setbcdlocale.dll
[2010.02.25 18:17:39 | 000,318,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rstrui.exe
[2010.02.25 18:17:39 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\srdelayed.exe
[2010.02.25 18:17:39 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\kbd106n.dll
[2010.02.25 18:15:07 | 002,386,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMVCORE.DLL
[2010.02.25 18:15:05 | 002,868,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mf.dll
[2010.02.25 18:14:55 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tzres.dll
[2010.02.25 18:14:01 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pacerprf.dll
[2010.02.25 18:13:08 | 000,666,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\printfilterpipelinesvc.exe
[2010.02.25 18:13:07 | 000,183,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sdohlp.dll
[2010.02.25 18:13:07 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iasrecst.dll
[2010.02.25 18:13:07 | 000,054,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iasads.dll
[2010.02.25 18:13:07 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iasdatastore.dll
[2010.02.25 18:13:07 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\printfilterpipelineprxy.dll
[2010.02.25 18:13:07 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iashost.exe
[2010.02.25 18:11:26 | 001,256,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\lsasrv.dll
[2010.02.25 18:11:17 | 000,302,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlansec.dll
[2010.02.25 18:11:17 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlanmsm.dll
[2010.02.25 18:11:17 | 000,127,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\L2SecHC.dll
[2010.02.25 18:11:05 | 000,241,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceApi.dll
[2010.02.25 18:11:02 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\t2embed.dll
[2010.02.25 18:11:01 | 000,289,792 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll
[2010.02.25 18:11:01 | 000,072,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fontsub.dll
[2010.02.25 18:11:01 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dciman32.dll
[2010.02.25 18:10:57 | 000,303,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmpeffects.dll
[2010.02.25 18:08:15 | 001,695,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\gameux.dll
[2010.02.25 18:08:15 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Apphlpdm.dll
[2010.02.25 18:08:14 | 004,240,384 | ---- | C] (Microsoft) -- C:\Windows\System32\GameUXLegacyGDFs.dll
[2010.02.25 18:05:57 | 000,000,000 | ---D | C] -- C:\Users\vasek\Documents\call of juarez
[2010.02.25 18:05:04 | 000,523,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RMActivate_isv.exe
[2010.02.25 18:05:03 | 000,511,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RMActivate.exe
[2010.02.25 18:05:02 | 000,472,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secproc_isv.dll
[2010.02.25 18:05:02 | 000,472,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secproc.dll
[2010.02.25 18:05:02 | 000,347,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RMActivate_ssp.exe
[2010.02.25 18:05:02 | 000,346,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RMActivate_ssp_isv.exe
[2010.02.25 18:05:01 | 000,151,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secproc_ssp.dll
[2010.02.25 18:05:00 | 000,329,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdrm.dll
[2010.02.25 18:05:00 | 000,151,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secproc_ssp_isv.dll
[2010.02.25 18:04:04 | 000,515,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_5.dll
[2010.02.25 18:04:02 | 005,501,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dcsx_42.dll
[2010.02.25 18:04:02 | 001,974,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_42.dll
[2010.02.25 18:04:02 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_5.dll
[2010.02.25 18:04:02 | 000,235,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx11_42.dll
[2010.02.25 18:04:01 | 001,892,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_42.dll
[2010.02.25 18:04:01 | 001,846,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_41.dll
[2010.02.25 18:04:01 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_42.dll
[2010.02.25 18:04:01 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_41.dll
[2010.02.25 18:04:00 | 004,178,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_41.dll
[2010.02.25 18:03:59 | 000,517,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_4.dll
[2010.02.25 18:03:59 | 000,069,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_3.dll
[2010.02.25 18:03:58 | 002,036,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_40.dll
[2010.02.25 18:03:58 | 000,452,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_40.dll
[2010.02.25 18:03:58 | 000,235,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_4.dll
[2010.02.25 18:03:58 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\X3DAudio1_6.dll
[2010.02.25 18:03:57 | 004,379,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_40.dll
[2010.02.25 18:03:57 | 000,514,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_3.dll
[2010.02.25 18:03:57 | 000,070,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_2.dll
[2010.02.25 18:03:56 | 000,235,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_3.dll
[2010.02.25 18:03:56 | 000,023,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\X3DAudio1_5.dll
[2010.02.25 18:03:55 | 000,509,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_2.dll
[2010.02.25 18:03:55 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_2.dll
[2010.02.25 18:03:55 | 000,068,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_1.dll
[2010.02.25 18:03:54 | 003,851,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_39.dll
[2010.02.25 18:03:54 | 001,493,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_39.dll
[2010.02.25 18:03:54 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_39.dll
[2010.02.25 18:03:53 | 000,507,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_1.dll
[2010.02.25 18:03:53 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_1.dll
[2010.02.25 18:03:53 | 000,065,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_0.dll
[2010.02.25 18:03:53 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\X3DAudio1_4.dll
[2010.02.25 18:03:52 | 001,491,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_38.dll
[2010.02.25 18:03:52 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_38.dll
[2010.02.25 18:03:51 | 003,850,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_38.dll
[2010.02.25 18:03:51 | 000,479,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_0.dll
[2010.02.25 18:03:50 | 001,420,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_37.dll
[2010.02.25 18:03:50 | 000,462,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_37.dll
[2010.02.25 18:03:50 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_0.dll
[2010.02.25 18:03:50 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\X3DAudio1_3.dll
[2010.02.25 18:03:49 | 003,786,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_37.dll
[2010.02.25 18:03:49 | 000,267,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_10.dll
[2010.02.25 18:03:48 | 003,734,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_36.dll
[2010.02.25 18:03:48 | 001,374,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_36.dll
[2010.02.25 18:03:48 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_36.dll
[2010.02.25 18:03:46 | 003,727,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_35.dll
[2010.02.25 18:03:46 | 001,358,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_35.dll
[2010.02.25 18:03:46 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_35.dll
[2010.02.25 18:03:46 | 000,267,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_9.dll
[2010.02.25 18:03:45 | 001,124,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_34.dll
[2010.02.25 18:03:45 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_34.dll
[2010.02.25 18:03:45 | 000,266,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_8.dll
[2010.02.25 18:03:45 | 000,017,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\X3DAudio1_2.dll
[2010.02.25 18:03:44 | 003,497,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_34.dll
[2010.02.25 18:03:44 | 000,081,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xinput1_3.dll
[2010.02.25 18:03:42 | 003,495,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_33.dll
[2010.02.25 18:03:42 | 001,123,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_33.dll
[2010.02.25 18:03:42 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_33.dll
[2010.02.25 18:03:42 | 000,261,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_7.dll
[2010.02.25 18:03:41 | 000,255,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_6.dll
[2010.02.25 18:03:40 | 003,426,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_32.dll
[2010.02.25 18:03:40 | 000,440,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10.dll
[2010.02.25 18:03:40 | 000,251,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_5.dll
[2010.02.25 18:03:39 | 002,414,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_31.dll
[2010.02.25 18:03:39 | 000,237,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_4.dll
[2010.02.25 18:03:39 | 000,015,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\x3daudio1_1.dll
[2010.02.25 18:03:38 | 000,236,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_3.dll
[2010.02.25 18:03:38 | 000,062,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xinput1_2.dll
[2010.02.25 18:03:37 | 000,230,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_2.dll
[2010.02.25 18:03:37 | 000,062,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xinput1_1.dll
[2010.02.25 18:03:36 | 000,229,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_1.dll
[2010.02.25 18:03:23 | 000,636,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\localspl.dll
[2010.02.25 18:03:21 | 002,388,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_30.dll
[2010.02.25 18:03:20 | 002,332,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_29.dll
[2010.02.25 18:03:20 | 002,323,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_28.dll
[2010.02.25 18:03:20 | 000,230,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_0.dll
[2010.02.25 18:03:20 | 000,014,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\x3daudio1_0.dll
[2010.02.25 18:03:19 | 002,337,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_25.dll
[2010.02.25 18:03:19 | 002,319,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_27.dll
[2010.02.25 18:03:19 | 002,297,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_26.dll
[2010.02.25 18:03:19 | 002,222,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_24.dll
[2010.02.25 18:02:24 | 000,714,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\timedate.cpl
[2010.02.25 18:02:15 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\amxread.dll
[2010.02.25 18:02:15 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\apilogen.dll
[2010.02.25 18:02:11 | 000,562,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdtcprx.dll
[2010.02.25 18:02:11 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xolehlp.dll
[2010.02.25 18:01:36 | 000,996,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMNetMgr.dll
[2010.02.25 18:01:35 | 000,094,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\logagent.exe
[2010.02.25 18:00:33 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdxm.tlb
[2010.02.25 18:00:33 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\amcompat.tlb
[2010.02.25 17:59:27 | 000,310,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\unregmp2.exe
[2010.02.25 17:59:25 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\spwmp.dll
[2010.02.25 17:59:24 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdxm.ocx
[2010.02.25 17:59:24 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxmasf.dll
[2010.02.25 17:59:23 | 008,147,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmploc.DLL
[2010.02.25 17:58:05 | 000,512,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript.dll
[2010.02.25 17:57:57 | 001,314,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\quartz.dll
[2010.02.25 17:57:56 | 000,091,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\avifil32.dll
[2010.02.25 17:57:56 | 000,082,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mciavi32.dll
[2010.02.25 17:57:55 | 000,123,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msvfw32.dll
[2010.02.25 17:57:55 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\avicap32.dll
[2010.02.25 17:56:45 | 002,927,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\explorer.exe
[2010.02.25 17:56:35 | 002,035,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2010.02.25 17:56:33 | 000,425,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PhotoMetadataHandler.dll
[2010.02.25 17:56:32 | 000,712,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WindowsCodecs.dll
[2010.02.25 17:56:32 | 000,347,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WindowsCodecsExt.dll
[2010.02.25 17:56:30 | 000,443,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32spl.dll
[2010.02.25 17:56:29 | 000,147,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Faultrep.dll
[2010.02.25 17:56:26 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dataclen.dll
[2010.02.25 17:56:26 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cdd.dll
[2010.02.25 17:56:20 | 000,351,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WSDApi.dll
[2010.02.25 17:56:16 | 000,604,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMSPDMOD.DLL
[2010.02.25 17:56:12 | 000,281,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\raschap.dll
[2010.02.25 17:56:12 | 000,244,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rastls.dll
[2010.02.25 17:56:10 | 000,113,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\rmcast.sys
[2010.02.25 17:56:03 | 000,430,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vbscript.dll
[2010.02.25 17:56:03 | 000,180,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\scrobj.dll
[2010.02.25 17:56:03 | 000,135,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wshom.ocx
[2010.02.25 17:56:03 | 000,135,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cscript.exe
[2010.02.25 17:55:58 | 001,645,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\connect.dll
[2010.02.25 17:48:20 | 000,000,000 | ---D | C] -- C:\ProgramData\ESET
[2010.02.25 17:48:20 | 000,000,000 | ---D | C] -- C:\Program Files\ESET
[2010.02.25 17:20:48 | 000,000,000 | ---D | C] -- C:\Users\vasek\AppData\Roaming\Macromedia
[2010.02.25 17:20:48 | 000,000,000 | ---D | C] -- C:\Users\vasek\AppData\Roaming\Adobe
[2010.02.25 17:18:05 | 000,000,000 | ---D | C] -- C:\Windows\System32\Macromed
[2010.02.25 17:13:49 | 000,044,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wups2.dll
[2010.02.25 17:13:48 | 002,421,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wucltux.dll
[2010.02.25 17:11:09 | 000,171,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuwebv.dll
[2010.02.25 17:11:09 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuapp.exe
[2010.02.24 21:34:41 | 000,000,000 | -H-D | C] -- C:\Windows\msdownld.tmp
[2010.02.24 21:34:37 | 000,000,000 | ---D | C] -- C:\Windows\System32\directx
[2010.02.24 20:41:18 | 000,000,000 | ---D | C] -- C:\Program Files\Marvell
[2010.02.24 20:35:16 | 000,356,352 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvusmb.exe
[2010.02.24 20:34:55 | 000,356,352 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\NVUNINST.EXE
[2010.02.24 20:25:34 | 000,000,000 | ---D | C] -- C:\Windows\System32\RTCOM
[2010.02.24 20:25:14 | 000,319,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\DIFxAPI.dll
[2010.02.24 20:25:13 | 000,126,976 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\System32\maxxaudioapo.dll
[2010.02.24 20:25:12 | 001,826,816 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SkyTel.exe
[2010.02.24 20:25:12 | 000,339,968 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\System32\SRSTSXT.dll
[2010.02.24 20:25:12 | 000,185,776 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\System32\SRSTSHD.dll
[2010.02.24 20:25:12 | 000,167,936 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\System32\SRSHP360.dll
[2010.02.24 20:25:12 | 000,135,168 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\System32\SRSWOW.dll
[2010.02.24 20:25:11 | 001,191,936 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\RtlUpd.exe
[2010.02.24 20:25:11 | 000,563,712 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\System32\RtkPgExt.dll
[2010.02.24 20:25:11 | 000,266,240 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\System32\RtkApoApi.dll
[2010.02.24 20:25:11 | 000,017,408 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\System32\RtkCoInst.dll
[2010.02.24 20:25:10 | 002,048,000 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\System32\RtkAPO.dll
[2010.02.24 20:25:09 | 004,669,440 | ---- | C] (Realtek Semiconductor) -- C:\Windows\RtHDVCpl.exe
[2010.02.24 20:25:08 | 001,841,312 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\System32\drivers\RTKVHDA.sys
[2010.02.24 20:25:08 | 000,532,480 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\System32\RTSndMgr.cpl
[2010.02.24 20:25:07 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek
[2010.02.24 20:24:55 | 000,315,392 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\HideWin.exe
[2010.02.24 20:24:54 | 000,520,192 | R--- | C] (Realtek Semiconductor Corp.) -- C:\Windows\RtlExUpd.dll
[2010.02.24 20:23:09 | 000,015,600 | ---- | C] (Windows (R) 2000 DDK provider) -- C:\Windows\gdrv.sys
[2010.02.24 20:16:42 | 000,000,000 | ---D | C] -- C:\Users\vasek\AppData\Roaming\My Battle for Middle-earth Files
[2010.02.24 20:08:49 | 000,466,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\capicom.dll
[2010.02.24 20:08:49 | 000,061,440 | ---- | C] (Printing Communications Assoc., Inc. (PCAUSA)) -- C:\Windows\System32\W32N50.dll
[2010.02.24 20:08:49 | 000,000,000 | ---D | C] -- C:\Program Files\D-Link
[2010.02.24 20:07:39 | 000,057,344 | ---- | C] (Chicony) -- C:\Windows\ChiFuncExt.exe
[2010.02.24 20:07:39 | 000,000,000 | ---D | C] -- C:\Program Files\KYE
[2010.02.24 20:07:38 | 000,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information
[2010.02.24 20:07:24 | 000,000,000 | ---D | C] -- C:\Users\vasek\AppData\Roaming\InstallShield
[2010.02.24 20:04:23 | 000,000,000 | ---D | C] -- C:\Users\vasek\AppData\Roaming\Opera
[2010.02.24 20:04:23 | 000,000,000 | ---D | C] -- C:\Users\vasek\AppData\Local\Opera
[2010.02.24 20:02:38 | 000,000,000 | R--D | C] -- C:\Users\vasek\Desktop\instalace
[2010.02.24 20:01:30 | 000,000,000 | ---D | C] -- C:\Users\vasek\AppData\Roaming\ATI
[2010.02.24 20:01:30 | 000,000,000 | ---D | C] -- C:\ProgramData\ATI
[2010.02.24 19:56:41 | 000,000,000 | -HSD | C] -- C:\Windows\Installer
[2010.02.24 19:56:36 | 000,000,000 | ---D | C] -- C:\Program Files\ATI Technologies
[2010.02.24 19:56:33 | 000,000,000 | ---D | C] -- C:\Program Files\ATI
[2010.02.24 19:28:56 | 000,000,000 | ---D | C] -- C:\Users\vasek\AppData\Roaming\Skype
[2010.02.24 19:28:28 | 000,000,000 | ---D | C] -- C:\Users\vasek\Desktop\s-cm hack
[2010.02.24 19:23:38 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield
[2010.02.24 19:14:22 | 000,000,000 | R--D | C] -- C:\Users\vasek\Searches
[2010.02.24 19:14:12 | 000,000,000 | ---D | C] -- C:\Users\vasek\AppData\Roaming\Identities
[2010.02.24 19:14:10 | 000,000,000 | R--D | C] -- C:\Users\vasek\Contacts
[2010.02.24 19:14:08 | 000,000,000 | ---D | C] -- C:\Users\vasek\AppData\Local\VirtualStore
[2010.02.24 19:14:00 | 000,000,000 | -HSD | C] -- C:\Users\vasek\AppData\Local\Temporary Internet Files
[2010.02.24 19:14:00 | 000,000,000 | -HSD | C] -- C:\Users\vasek\Šablony
[2010.02.24 19:14:00 | 000,000,000 | -HSD | C] -- C:\Users\vasek\Soubory cookie
[2010.02.24 19:14:00 | 000,000,000 | -HSD | C] -- C:\Users\vasek\SendTo
[2010.02.24 19:14:00 | 000,000,000 | -HSD | C] -- C:\Users\vasek\Recent
[2010.02.24 19:14:00 | 000,000,000 | -HSD | C] -- C:\Users\vasek\Okolní tiskárny
[2010.02.24 19:14:00 | 000,000,000 | -HSD | C] -- C:\Users\vasek\Okolní síť
[2010.02.24 19:14:00 | 000,000,000 | -HSD | C] -- C:\Users\vasek\Documents\Obrázky
[2010.02.24 19:14:00 | 000,000,000 | -HSD | C] -- C:\Users\vasek\Nabídka Start
[2010.02.24 19:14:00 | 000,000,000 | -HSD | C] -- C:\Users\vasek\Local Settings
[2010.02.24 19:14:00 | 000,000,000 | -HSD | C] -- C:\Users\vasek\Documents\Hudba
[2010.02.24 19:14:00 | 000,000,000 | -HSD | C] -- C:\Users\vasek\AppData\Local\Historie
[2010.02.24 19:14:00 | 000,000,000 | -HSD | C] -- C:\Users\vasek\Documents\Filmy
[2010.02.24 19:14:00 | 000,000,000 | -HSD | C] -- C:\Users\vasek\Dokumenty
[2010.02.24 19:14:00 | 000,000,000 | -HSD | C] -- C:\Users\vasek\Data aplikací
[2010.02.24 19:14:00 | 000,000,000 | -HSD | C] -- C:\Users\vasek\AppData\Local\Data aplikací
[2010.02.24 19:13:58 | 000,000,000 | --SD | C] -- C:\Users\vasek\AppData\Roaming\Microsoft
[2010.02.24 19:13:58 | 000,000,000 | R--D | C] -- C:\Users\vasek\Videos
[2010.02.24 19:13:58 | 000,000,000 | R--D | C] -- C:\Users\vasek\Saved Games
[2010.02.24 19:13:58 | 000,000,000 | R--D | C] -- C:\Users\vasek\Pictures
[2010.02.24 19:13:58 | 000,000,000 | R--D | C] -- C:\Users\vasek\Music
[2010.02.24 19:13:58 | 000,000,000 | R--D | C] -- C:\Users\vasek\Links
[2010.02.24 19:13:58 | 000,000,000 | R--D | C] -- C:\Users\vasek\Favorites
[2010.02.24 19:13:58 | 000,000,000 | R--D | C] -- C:\Users\vasek\Downloads
[2010.02.24 19:13:58 | 000,000,000 | R--D | C] -- C:\Users\vasek\Documents
[2010.02.24 19:13:58 | 000,000,000 | R--D | C] -- C:\Users\vasek\Desktop
[2010.02.24 19:13:58 | 000,000,000 | -H-D | C] -- C:\Users\vasek\AppData
[2010.02.24 19:13:58 | 000,000,000 | ---D | C] -- C:\Users\vasek\AppData\Local\Microsoft
[2010.02.24 19:13:58 | 000,000,000 | ---D | C] -- C:\Users\vasek\AppData\Roaming\Media Center Programs
[2010.02.24 19:11:59 | 000,000,000 | -HSD | C] -- C:\ProgramData\Šablony
[2010.02.24 19:11:59 | 000,000,000 | -HSD | C] -- C:\ProgramData\Plocha
[2010.02.24 19:11:59 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Obrázky
[2010.02.24 19:11:59 | 000,000,000 | -HSD | C] -- C:\ProgramData\Oblíbené položky
[2010.02.24 19:11:59 | 000,000,000 | -HSD | C] -- C:\ProgramData\Nabídka Start
[2010.02.24 19:11:59 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Hudba
[2010.02.24 19:11:59 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Filmy
[2010.02.24 19:11:59 | 000,000,000 | -HSD | C] -- C:\ProgramData\Dokumenty
[2010.02.24 19:11:59 | 000,000,000 | -HSD | C] -- C:\ProgramData\Data aplikací
[2010.02.24 19:11:28 | 000,000,000 | ---D | C] -- C:\Windows\Debug
[2010.02.24 18:59:39 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution
[2010.02.24 18:49:04 | 000,000,000 | ---D | C] -- C:\Windows\Prefetch
[2010.02.24 18:48:09 | 000,000,000 | ---D | C] -- C:\Windows\Panther
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

[adidass]

druha pulka OLT.txt



========== Files - Modified Within 14 Days ==========

[2010.03.05 22:19:07 | 001,048,576 | -HS- | M] () -- C:\Users\vasek\NTUSER.DAT
[2010.03.05 22:16:50 | 000,553,984 | ---- | M] (OldTimer Tools) -- C:\Users\vasek\Desktop\OTL.exe
[2010.03.05 22:15:06 | 000,210,432 | ---- | M] () -- C:\Users\vasek\Desktop\T-Cleaner.exe
[2010.03.05 20:43:15 | 000,524,288 | -HS- | M] () -- C:\Users\vasek\NTUSER.DAT{3a539871-6a70-11db-887c-d362bd253390}.TMContainer00000000000000000001.regtrans-ms
[2010.03.05 20:43:15 | 000,065,536 | -HS- | M] () -- C:\Users\vasek\NTUSER.DAT{3a539871-6a70-11db-887c-d362bd253390}.TM.blf
[2010.03.05 20:43:11 | 001,977,716 | -H-- | M] () -- C:\Users\vasek\AppData\Local\IconCache.db
[2010.03.05 20:34:16 | 000,000,215 | ---- | M] () -- C:\Windows\system.ini
[2010.03.05 20:30:08 | 000,003,616 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2010.03.05 20:30:08 | 000,003,616 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2010.03.05 19:06:17 | 000,011,264 | ---- | M] () -- C:\Users\vasek\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.03.05 14:29:40 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2010.03.05 14:29:36 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2010.03.05 14:23:19 | 001,048,576 | -HS- | M] () -- C:\Users\vasek\NTUSER.DAT{3a539870-6a70-11db-887c-d362bd253390}.TxR.2.regtrans-ms
[2010.03.05 14:23:18 | 001,048,576 | -HS- | M] () -- C:\Users\vasek\NTUSER.DAT{3a539870-6a70-11db-887c-d362bd253390}.TxR.1.regtrans-ms
[2010.03.05 14:23:16 | 001,048,576 | -HS- | M] () -- C:\Users\vasek\NTUSER.DAT{3a539870-6a70-11db-887c-d362bd253390}.TxR.0.regtrans-ms
[2010.03.05 14:23:15 | 000,065,536 | -HS- | M] () -- C:\Users\vasek\NTUSER.DAT{3a539870-6a70-11db-887c-d362bd253390}.TxR.blf
[2010.02.28 21:14:32 | 000,000,818 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2010.02.28 20:54:12 | 000,001,609 | ---- | M] () -- C:\Users\Public\Desktop\ICQ7.lnk
[2010.02.28 16:19:59 | 000,792,694 | ---- | M] () -- C:\Windows\System32\perfh005.dat
[2010.02.28 16:19:59 | 000,654,420 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2010.02.28 16:19:59 | 000,180,606 | ---- | M] () -- C:\Windows\System32\perfc005.dat
[2010.02.28 16:19:59 | 000,165,612 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2010.02.28 16:19:59 | 000,004,922 | ---- | M] () -- C:\Windows\System32\PerfStringBackup.INI
[2010.02.28 14:41:24 | 000,107,888 | ---- | M] (Sony DADC Austria AG.) -- C:\Windows\System32\CmdLineExt.dll
[2010.02.28 14:13:00 | 000,002,059 | ---- | M] () -- C:\Users\Public\Desktop\Rockstar Games Social Club.lnk
[2010.02.27 22:00:39 | 000,001,874 | ---- | M] () -- C:\Users\vasek\Desktop\HijackThis.lnk
[2010.02.27 21:45:28 | 000,001,349 | ---- | M] () -- C:\Users\vasek\Desktop\memtest – zástupce.lnk
[2010.02.27 21:44:20 | 000,000,744 | ---- | M] () -- C:\Users\vasek\Desktop\utorrent – zástupce.lnk
[2010.02.27 20:37:06 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_User_WpdFs_01_00_00.Wdf
[2010.02.27 15:32:55 | 000,001,032 | ---- | M] () -- C:\Users\vasek\Desktop\DVDVideoSoft Free Studio.lnk
[2010.02.27 08:26:41 | 000,228,504 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2010.02.27 00:39:27 | 000,000,927 | ---- | M] () -- C:\Users\vasek\Desktop\EVEREST Ultimate Edition.lnk
[2010.02.26 21:20:03 | 244,587,999 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2010.02.26 18:48:32 | 000,001,887 | ---- | M] () -- C:\Windows\diagwrn.xml
[2010.02.26 18:48:32 | 000,001,887 | ---- | M] () -- C:\Windows\diagerr.xml
[2010.02.25 19:48:55 | 000,049,168 | ---- | M] () -- C:\Users\vasek\AppData\Local\GDIPFONTCACHEV1.DAT
[2010.02.25 17:10:13 | 000,000,867 | ---- | M] () -- C:\Users\vasek\Desktop\iexplore – zástupce.lnk
[2010.02.25 10:37:40 | 000,015,600 | ---- | M] (Windows (R) 2000 DDK provider) -- C:\Windows\gdrv.sys
[2010.02.25 10:37:38 | 000,000,010 | ---- | M] () -- C:\Windows\GSetup.ini
[2010.02.24 20:58:51 | 000,000,901 | ---- | M] () -- C:\Users\vasek\Desktop\Call of Juarez.lnk
[2010.02.24 20:25:15 | 000,319,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\DIFxAPI.dll
[2010.02.24 20:24:55 | 000,315,392 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\HideWin.exe
[2010.02.24 20:17:39 | 000,000,837 | ---- | M] () -- C:\Users\vasek\Desktop\hl2 – zástupce.lnk
[2010.02.24 20:16:23 | 000,000,953 | ---- | M] () -- C:\Users\vasek\Desktop\lotrbfme – zástupce.lnk
[2010.02.24 20:08:49 | 000,002,105 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\D-Link AirPlus G+ Wireless Adapter Utility.lnk
[2010.02.24 20:05:39 | 000,000,732 | ---- | M] () -- C:\Users\vasek\Desktop\qip – zástupce.lnk
[2010.02.24 20:05:03 | 000,000,834 | ---- | M] () -- C:\Users\vasek\Desktop\vegas90 – zástupce.lnk
[2010.02.24 20:03:31 | 000,000,877 | ---- | M] () -- C:\Users\vasek\Desktop\FreeStudioManager – zástupce.lnk
[2010.02.24 20:00:42 | 000,000,000 | ---- | M] () -- C:\Windows\ativpsrm.bin
[2010.02.24 19:59:30 | 000,524,288 | -HS- | M] () -- C:\Users\vasek\NTUSER.DAT{3a539871-6a70-11db-887c-d362bd253390}.TMContainer00000000000000000002.regtrans-ms
[2010.02.24 19:29:32 | 000,000,914 | ---- | M] () -- C:\Users\vasek\Desktop\particleIllusion – zástupce.lnk
[2010.02.24 19:29:22 | 000,000,862 | ---- | M] () -- C:\Users\vasek\Desktop\Skype – zástupce.lnk
[2010.02.24 19:28:24 | 000,000,760 | ---- | M] () -- C:\Users\vasek\Desktop\opera – zástupce.lnk
[2010.02.24 19:14:00 | 000,000,020 | -HS- | M] () -- C:\Users\vasek\ntuser.ini
[2010.02.24 19:00:45 | 000,063,514 | ---- | M] () -- C:\Windows\System32\license.rtf
[2010.02.24 18:47:54 | 000,008,192 | R-S- | M] () -- C:\BOOTSECT.BAK
[2010.02.24 09:16:06 | 000,181,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MpSigStub.exe
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files Created - No Company Name ==========

[2010.03.05 22:15:00 | 000,210,432 | ---- | C] () -- C:\Users\vasek\Desktop\T-Cleaner.exe
[2010.03.05 14:23:19 | 001,048,576 | -HS- | C] () -- C:\Users\vasek\NTUSER.DAT{3a539870-6a70-11db-887c-d362bd253390}.TxR.2.regtrans-ms
[2010.03.05 14:23:18 | 001,048,576 | -HS- | C] () -- C:\Users\vasek\NTUSER.DAT{3a539870-6a70-11db-887c-d362bd253390}.TxR.1.regtrans-ms
[2010.03.05 14:23:16 | 001,048,576 | -HS- | C] () -- C:\Users\vasek\NTUSER.DAT{3a539870-6a70-11db-887c-d362bd253390}.TxR.0.regtrans-ms
[2010.03.05 14:23:15 | 000,065,536 | -HS- | C] () -- C:\Users\vasek\NTUSER.DAT{3a539870-6a70-11db-887c-d362bd253390}.TxR.blf
[2010.02.28 21:02:25 | 000,000,818 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2010.02.28 20:54:12 | 000,001,609 | ---- | C] () -- C:\Users\Public\Desktop\ICQ7.lnk
[2010.02.28 14:13:00 | 000,002,059 | ---- | C] () -- C:\Users\Public\Desktop\Rockstar Games Social Club.lnk
[2010.02.27 22:00:39 | 000,001,874 | ---- | C] () -- C:\Users\vasek\Desktop\HijackThis.lnk
[2010.02.27 21:44:20 | 000,000,744 | ---- | C] () -- C:\Users\vasek\Desktop\utorrent – zástupce.lnk
[2010.02.27 21:43:32 | 000,001,349 | ---- | C] () -- C:\Users\vasek\Desktop\memtest – zástupce.lnk
[2010.02.27 20:37:06 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_User_WpdFs_01_00_00.Wdf
[2010.02.27 15:32:55 | 000,001,032 | ---- | C] () -- C:\Users\vasek\Desktop\DVDVideoSoft Free Studio.lnk
[2010.02.27 00:39:27 | 000,000,927 | ---- | C] () -- C:\Users\vasek\Desktop\EVEREST Ultimate Edition.lnk
[2010.02.26 21:17:53 | 244,587,999 | ---- | C] () -- C:\Windows\MEMORY.DMP
[2010.02.26 18:12:00 | 000,001,887 | ---- | C] () -- C:\Windows\diagwrn.xml
[2010.02.26 18:12:00 | 000,001,887 | ---- | C] () -- C:\Windows\diagerr.xml
[2010.02.25 18:46:13 | 000,106,605 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchema.bin
[2010.02.25 18:46:13 | 000,018,904 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchemaTrivial.bin
[2010.02.25 18:46:11 | 011,967,524 | ---- | C] () -- C:\Windows\System32\korwbrkr.lex
[2010.02.25 18:11:19 | 002,501,921 | ---- | C] () -- C:\Windows\System32\wlan.tmf
[2010.02.25 17:10:13 | 000,000,867 | ---- | C] () -- C:\Users\vasek\Desktop\iexplore – zástupce.lnk
[2010.02.25 10:41:21 | 000,283,392 | ---- | C] () -- C:\Windows\System32\drivers\GPlus.sys
[2010.02.25 10:41:21 | 000,084,644 | ---- | C] () -- C:\Windows\System32\drivers\FwRad17.bin
[2010.02.25 10:41:21 | 000,083,024 | ---- | C] () -- C:\Windows\System32\drivers\FwRad16.bin
[2010.02.24 20:58:51 | 000,000,901 | ---- | C] () -- C:\Users\vasek\Desktop\Call of Juarez.lnk
[2010.02.24 20:35:43 | 000,003,903 | ---- | C] () -- C:\Windows\System32\nvnrm.nvu
[2010.02.24 20:35:16 | 000,001,864 | ---- | C] () -- C:\Windows\System32\nvsmb.nvu
[2010.02.24 20:23:11 | 000,000,010 | ---- | C] () -- C:\Windows\GSetup.ini
[2010.02.24 20:17:39 | 000,000,837 | ---- | C] () -- C:\Users\vasek\Desktop\hl2 – zástupce.lnk
[2010.02.24 20:16:23 | 000,000,953 | ---- | C] () -- C:\Users\vasek\Desktop\lotrbfme – zástupce.lnk
[2010.02.24 20:08:49 | 000,002,105 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\D-Link AirPlus G+ Wireless Adapter Utility.lnk
[2010.02.24 20:07:43 | 000,011,718 | ---- | C] () -- C:\Windows\mhotkey_reg.ini
[2010.02.24 20:07:43 | 000,003,084 | ---- | C] () -- C:\Windows\mHotkey.xml
[2010.02.24 20:07:39 | 000,580,096 | ---- | C] () -- C:\Windows\mHotkey.exe
[2010.02.24 20:07:39 | 000,313,856 | ---- | C] () -- C:\Windows\HKExt3.exe
[2010.02.24 20:07:39 | 000,294,912 | ---- | C] () -- C:\Windows\PIC.dll
[2010.02.24 20:07:39 | 000,036,864 | ---- | C] () -- C:\Windows\LchDrvKey.exe
[2010.02.24 20:07:39 | 000,024,576 | ---- | C] () -- C:\Windows\HKNTDLL.dll
[2010.02.24 20:05:39 | 000,000,732 | ---- | C] () -- C:\Users\vasek\Desktop\qip – zástupce.lnk
[2010.02.24 20:05:03 | 000,000,834 | ---- | C] () -- C:\Users\vasek\Desktop\vegas90 – zástupce.lnk
[2010.02.24 20:03:31 | 000,000,877 | ---- | C] () -- C:\Users\vasek\Desktop\FreeStudioManager – zástupce.lnk
[2010.02.24 20:00:42 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2010.02.24 19:29:32 | 000,000,914 | ---- | C] () -- C:\Users\vasek\Desktop\particleIllusion – zástupce.lnk
[2010.02.24 19:29:22 | 000,000,862 | ---- | C] () -- C:\Users\vasek\Desktop\Skype – zástupce.lnk
[2010.02.24 19:28:24 | 000,000,760 | ---- | C] () -- C:\Users\vasek\Desktop\opera – zástupce.lnk
[2010.02.24 19:19:38 | 000,011,264 | ---- | C] () -- C:\Users\vasek\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.02.24 19:14:00 | 000,000,020 | -HS- | C] () -- C:\Users\vasek\ntuser.ini
[2010.02.24 19:13:59 | 000,524,288 | -HS- | C] () -- C:\Users\vasek\NTUSER.DAT{3a539871-6a70-11db-887c-d362bd253390}.TMContainer00000000000000000002.regtrans-ms
[2010.02.24 19:13:59 | 000,524,288 | -HS- | C] () -- C:\Users\vasek\NTUSER.DAT{3a539871-6a70-11db-887c-d362bd253390}.TMContainer00000000000000000001.regtrans-ms
[2010.02.24 19:13:59 | 000,065,536 | -HS- | C] () -- C:\Users\vasek\NTUSER.DAT{3a539871-6a70-11db-887c-d362bd253390}.TM.blf
[2010.02.24 19:13:58 | 001,048,576 | -HS- | C] () -- C:\Users\vasek\NTUSER.DAT
[2009.11.06 10:58:04 | 000,178,975 | ---- | C] () -- C:\Windows\System32\xlive.dll.cat
[2006.11.02 13:35:32 | 000,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll
[2006.11.02 08:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini

========== LOP Check ==========

[2010.03.05 22:18:57 | 000,000,000 | ---D | M] -- C:\Users\vasek\AppData\Roaming\ICQ
[2010.02.24 20:16:42 | 000,000,000 | ---D | M] -- C:\Users\vasek\AppData\Roaming\My Battle for Middle-earth Files
[2010.02.24 20:04:23 | 000,000,000 | ---D | M] -- C:\Users\vasek\AppData\Roaming\Opera
[2010.02.28 21:38:14 | 000,015,252 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

========== Purity Check ==========


< End of report >

[adidass]

tak tohle je jsou oba dva logy

[Damned]

Poklepej na ikonu OTL na ploše.Ujisti se , že máš všechny ostatní aplikace a prohlížeče zavřeny.
Pod Custom Scans/Fixes do okénka vlož následující text, zobrazený zeleně:

Kód: Vybrat vše

:OTL
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
IE - HKLM\..\URLSearchHook: - Reg Error: Key error. File not found
IE - HKLM\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - Reg Error: Key error. File not found
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://start.icq.com/
IE - HKCU\..\URLSearchHook: - Reg Error: Key error. File not found
O28 - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - Reg Error: Key error. File not found

:Files
C:\Windows\*.tmp
C:\Windows\System32\*.tmp
C:\Recycled
C:\Windows\tasks\SA.DAT
C:\Windows\MEMORY.DMP
C:\Windows\diagwrn.xml
C:\Windows\diagerr.xml
C:\$RECYCLE.BIN
C:\$WINDOWS.~LS
C:\$WINDOWS.~BT

:Reg

:Commands
[purity]
[resethosts]
[emptytemp]
[EMPTYFLASH]
[start explorer]
[Reboot]


Poté klikni nahoře na Run Fix. Nech program nerušeně běžet, na konci se provede restart PC.
Po restartu se objeví log , prosím zkopíruj sem celý jeho obsah.

[adidass]

All processes killed
========== OTL ==========
No active process named explorer.exe was found!
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\{855F3B16-6D32-4fe6-8A56-BBB695989046} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{855F3B16-6D32-4fe6-8A56-BBB695989046}\ not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\\Search Page| /E : value set successfully!
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
Registry value HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks\\{AEB6717E-7E19-11d0-97EE-00C04FD91972} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{AEB6717E-7E19-11d0-97EE-00C04FD91972}\ not found.
========== FILES ==========
C:\Windows\msdownld.tmp folder moved successfully.
File\Folder C:\Windows\System32\*.tmp not found.
File\Folder C:\Recycled not found.
C:\Windows\tasks\SA.DAT moved successfully.
C:\Windows\MEMORY.DMP moved successfully.
C:\Windows\diagwrn.xml moved successfully.
C:\Windows\diagerr.xml moved successfully.
C:\$RECYCLE.BIN\S-1-5-21-411705913-1685533206-113458850-1000\$RM7XTSZ.eu] folder moved successfully.
C:\$RECYCLE.BIN\S-1-5-21-411705913-1685533206-113458850-1000\$R1X7HZT\Counter-Strike Source shortcuts\links folder moved successfully.
C:\$RECYCLE.BIN\S-1-5-21-411705913-1685533206-113458850-1000\$R1X7HZT\Counter-Strike Source shortcuts folder moved successfully.
C:\$RECYCLE.BIN\S-1-5-21-411705913-1685533206-113458850-1000\$R1X7HZT folder moved successfully.
C:\$RECYCLE.BIN\S-1-5-21-411705913-1685533206-113458850-1000 folder moved successfully.
C:\$RECYCLE.BIN folder moved successfully.
C:\$WINDOWS.~LS\Sources\36e6eb2a-8487-41db-8965-4a7d5ab397c2 folder moved successfully.
C:\$WINDOWS.~LS\Sources folder moved successfully.
C:\$WINDOWS.~LS\SetupTemp folder moved successfully.
C:\$WINDOWS.~LS folder moved successfully.
C:\$WINDOWS.~BT\Sources\spinstall\cs-cz folder moved successfully.
C:\$WINDOWS.~BT\Sources\spinstall folder moved successfully.
C:\$WINDOWS.~BT\Sources\servicingstackmisc folder moved successfully.
C:\$WINDOWS.~BT\Sources\servicing\0.0.0.1 folder moved successfully.
C:\$WINDOWS.~BT\Sources\servicing folder moved successfully.
C:\$WINDOWS.~BT\Sources\Panther\setup.exe folder moved successfully.
C:\$WINDOWS.~BT\Sources\Panther folder moved successfully.
C:\$WINDOWS.~BT\Sources\license\_default\_default\ultimaten folder moved successfully.
C:\$WINDOWS.~BT\Sources\license\_default\_default\ultimate folder moved successfully.
C:\$WINDOWS.~BT\Sources\license\_default\_default\starter folder moved successfully.
C:\$WINDOWS.~BT\Sources\license\_default\_default\homepremiumn folder moved successfully.
C:\$WINDOWS.~BT\Sources\license\_default\_default\homepremium folder moved successfully.
C:\$WINDOWS.~BT\Sources\license\_default\_default\homebasicn folder moved successfully.
C:\$WINDOWS.~BT\Sources\license\_default\_default\homebasic folder moved successfully.
C:\$WINDOWS.~BT\Sources\license\_default\_default\enterprisen folder moved successfully.
C:\$WINDOWS.~BT\Sources\license\_default\_default\enterprise folder moved successfully.
C:\$WINDOWS.~BT\Sources\license\_default\_default\businessn folder moved successfully.
C:\$WINDOWS.~BT\Sources\license\_default\_default\business folder moved successfully.
C:\$WINDOWS.~BT\Sources\license\_default\_default folder moved successfully.
C:\$WINDOWS.~BT\Sources\license\_default\oem\ultimaten folder moved successfully.
C:\$WINDOWS.~BT\Sources\license\_default\oem\ultimate folder moved successfully.
C:\$WINDOWS.~BT\Sources\license\_default\oem\starter folder moved successfully.
C:\$WINDOWS.~BT\Sources\license\_default\oem\homepremiumn folder moved successfully.
C:\$WINDOWS.~BT\Sources\license\_default\oem\homepremium folder moved successfully.
C:\$WINDOWS.~BT\Sources\license\_default\oem\homebasicn folder moved successfully.
C:\$WINDOWS.~BT\Sources\license\_default\oem\homebasic folder moved successfully.
C:\$WINDOWS.~BT\Sources\license\_default\oem\enterprisen folder moved successfully.
C:\$WINDOWS.~BT\Sources\license\_default\oem\enterprise folder moved successfully.
C:\$WINDOWS.~BT\Sources\license\_default\oem\businessn folder moved successfully.
C:\$WINDOWS.~BT\Sources\license\_default\oem\business folder moved successfully.
C:\$WINDOWS.~BT\Sources\license\_default\oem folder moved successfully.
C:\$WINDOWS.~BT\Sources\license\_default\eval\ultimaten folder moved successfully.
C:\$WINDOWS.~BT\Sources\license\_default\eval\ultimate folder moved successfully.
C:\$WINDOWS.~BT\Sources\license\_default\eval\starter folder moved successfully.
C:\$WINDOWS.~BT\Sources\license\_default\eval\homepremiumn folder moved successfully.
C:\$WINDOWS.~BT\Sources\license\_default\eval\homepremium folder moved successfully.
C:\$WINDOWS.~BT\Sources\license\_default\eval\homebasicn folder moved successfully.
C:\$WINDOWS.~BT\Sources\license\_default\eval\homebasic folder moved successfully.
C:\$WINDOWS.~BT\Sources\license\_default\eval\enterprisen folder moved successfully.
C:\$WINDOWS.~BT\Sources\license\_default\eval\enterprise folder moved successfully.
C:\$WINDOWS.~BT\Sources\license\_default\eval\businessn folder moved successfully.
C:\$WINDOWS.~BT\Sources\license\_default\eval\business folder moved successfully.
C:\$WINDOWS.~BT\Sources\license\_default\eval folder moved successfully.
C:\$WINDOWS.~BT\Sources\license\_default folder moved successfully.
C:\$WINDOWS.~BT\Sources\license\cs-cz\_default\ultimaten folder moved successfully.
C:\$WINDOWS.~BT\Sources\license\cs-cz\_default\ultimate folder moved successfully.
C:\$WINDOWS.~BT\Sources\license\cs-cz\_default\starter folder moved successfully.
C:\$WINDOWS.~BT\Sources\license\cs-cz\_default\homepremiumn folder moved successfully.
C:\$WINDOWS.~BT\Sources\license\cs-cz\_default\homepremium folder moved successfully.
C:\$WINDOWS.~BT\Sources\license\cs-cz\_default\homebasicn folder moved successfully.
C:\$WINDOWS.~BT\Sources\license\cs-cz\_default\homebasic folder moved successfully.
C:\$WINDOWS.~BT\Sources\license\cs-cz\_default\enterprisen folder moved successfully.
C:\$WINDOWS.~BT\Sources\license\cs-cz\_default\enterprise folder moved successfully.
C:\$WINDOWS.~BT\Sources\license\cs-cz\_default\businessn folder moved successfully.
C:\$WINDOWS.~BT\Sources\license\cs-cz\_default\business folder moved successfully.
C:\$WINDOWS.~BT\Sources\license\cs-cz\_default folder moved successfully.
C:\$WINDOWS.~BT\Sources\license\cs-cz\oem\ultimaten folder moved successfully.
C:\$WINDOWS.~BT\Sources\license\cs-cz\oem\ultimate folder moved successfully.
C:\$WINDOWS.~BT\Sources\license\cs-cz\oem\starter folder moved successfully.
C:\$WINDOWS.~BT\Sources\license\cs-cz\oem\homepremiumn folder moved successfully.
C:\$WINDOWS.~BT\Sources\license\cs-cz\oem\homepremium folder moved successfully.
C:\$WINDOWS.~BT\Sources\license\cs-cz\oem\homebasicn folder moved successfully.
C:\$WINDOWS.~BT\Sources\license\cs-cz\oem\homebasic folder moved successfully.
C:\$WINDOWS.~BT\Sources\license\cs-cz\oem\enterprisen folder moved successfully.
C:\$WINDOWS.~BT\Sources\license\cs-cz\oem\enterprise folder moved successfully.
C:\$WINDOWS.~BT\Sources\license\cs-cz\oem\businessn folder moved successfully.
C:\$WINDOWS.~BT\Sources\license\cs-cz\oem\business folder moved successfully.
C:\$WINDOWS.~BT\Sources\license\cs-cz\oem folder moved successfully.
C:\$WINDOWS.~BT\Sources\license\cs-cz\eval\ultimaten folder moved successfully.
C:\$WINDOWS.~BT\Sources\license\cs-cz\eval\ultimate folder moved successfully.
C:\$WINDOWS.~BT\Sources\license\cs-cz\eval\starter folder moved successfully.
C:\$WINDOWS.~BT\Sources\license\cs-cz\eval\homepremiumn folder moved successfully.
C:\$WINDOWS.~BT\Sources\license\cs-cz\eval\homepremium folder moved successfully.
C:\$WINDOWS.~BT\Sources\license\cs-cz\eval\homebasicn folder moved successfully.
C:\$WINDOWS.~BT\Sources\license\cs-cz\eval\homebasic folder moved successfully.
C:\$WINDOWS.~BT\Sources\license\cs-cz\eval\enterprisen folder moved successfully.
C:\$WINDOWS.~BT\Sources\license\cs-cz\eval\enterprise folder moved successfully.
C:\$WINDOWS.~BT\Sources\license\cs-cz\eval\businessn folder moved successfully.
C:\$WINDOWS.~BT\Sources\license\cs-cz\eval\business folder moved successfully.
C:\$WINDOWS.~BT\Sources\license\cs-cz\eval folder moved successfully.
C:\$WINDOWS.~BT\Sources\license\cs-cz folder moved successfully.
C:\$WINDOWS.~BT\Sources\license folder moved successfully.
C:\$WINDOWS.~BT\Sources\inf folder moved successfully.
C:\$WINDOWS.~BT\Sources\dlmanifests\networking-mpssvc-svc folder moved successfully.
C:\$WINDOWS.~BT\Sources\dlmanifests\microsoft-windows-wmi-core folder moved successfully.
C:\$WINDOWS.~BT\Sources\dlmanifests\microsoft-windows-winsock-core-infrastructure-upgrade folder moved successfully.
C:\$WINDOWS.~BT\Sources\dlmanifests\microsoft-windows-unimodem-config folder moved successfully.
C:\$WINDOWS.~BT\Sources\dlmanifests\microsoft-windows-uddi folder moved successfully.
C:\$WINDOWS.~BT\Sources\dlmanifests\microsoft-windows-textservicesframework-migration-dl folder moved successfully.
C:\$WINDOWS.~BT\Sources\dlmanifests\microsoft-windows-terminalservices-licenseserver folder moved successfully.
C:\$WINDOWS.~BT\Sources\dlmanifests\microsoft-windows-tapisetup folder moved successfully.
C:\$WINDOWS.~BT\Sources\dlmanifests\microsoft-windows-sxs folder moved successfully.
C:\$WINDOWS.~BT\Sources\dlmanifests\microsoft-windows-storagemigration\cs-cz folder moved successfully.
C:\$WINDOWS.~BT\Sources\dlmanifests\microsoft-windows-storagemigration folder moved successfully.
C:\$WINDOWS.~BT\Sources\dlmanifests\microsoft-windows-shmig-dl folder moved successfully.
C:\$WINDOWS.~BT\Sources\dlmanifests\microsoft-windows-rasserver-migplugin folder moved successfully.
C:\$WINDOWS.~BT\Sources\dlmanifests\microsoft-windows-rasconnectionmanager folder moved successfully.
C:\$WINDOWS.~BT\Sources\dlmanifests\microsoft-windows-rasapi folder moved successfully.
C:\$WINDOWS.~BT\Sources\dlmanifests\microsoft-windows-performancecounterinfrastructureconsumer-dl folder moved successfully.
C:\$WINDOWS.~BT\Sources\dlmanifests\microsoft-windows-performancecounterinfrastructure-dl folder moved successfully.
C:\$WINDOWS.~BT\Sources\dlmanifests\microsoft-windows-offlinefiles-dl folder moved successfully.
C:\$WINDOWS.~BT\Sources\dlmanifests\microsoft-windows-networkloadbalancing-core folder moved successfully.
C:\$WINDOWS.~BT\Sources\dlmanifests\microsoft-windows-networkbridge folder moved successfully.
C:\$WINDOWS.~BT\Sources\dlmanifests\microsoft-windows-ndis folder moved successfully.
C:\$WINDOWS.~BT\Sources\dlmanifests\microsoft-windows-msmq-messagingcoreservice folder moved successfully.
C:\$WINDOWS.~BT\Sources\dlmanifests\microsoft-windows-mediaplayer-drm-dl folder moved successfully.
C:\$WINDOWS.~BT\Sources\dlmanifests\microsoft-windows-mediaplayer folder moved successfully.
C:\$WINDOWS.~BT\Sources\dlmanifests\microsoft-windows-internet-naming-service-runtime folder moved successfully.
C:\$WINDOWS.~BT\Sources\dlmanifests\microsoft-windows-international-core-dl folder moved successfully.
C:\$WINDOWS.~BT\Sources\dlmanifests\microsoft-windows-iis-dl folder moved successfully.
C:\$WINDOWS.~BT\Sources\dlmanifests\microsoft-windows-ie-esc folder moved successfully.
C:\$WINDOWS.~BT\Sources\dlmanifests\microsoft-windows-ie-clientnetworkprotocolimplementation folder moved successfully.
C:\$WINDOWS.~BT\Sources\dlmanifests\microsoft-windows-iasserver-migplugin folder moved successfully.
C:\$WINDOWS.~BT\Sources\dlmanifests\microsoft-windows-gameuxmig-dl folder moved successfully.
C:\$WINDOWS.~BT\Sources\dlmanifests\microsoft-windows-directoryservices-adam-dl folder moved successfully.
C:\$WINDOWS.~BT\Sources\dlmanifests\microsoft-windows-dhcpservermigplugin-dl folder moved successfully.
C:\$WINDOWS.~BT\Sources\dlmanifests\microsoft-windows-com-dtc-setup-dl folder moved successfully.
C:\$WINDOWS.~BT\Sources\dlmanifests\microsoft-windows-com-complus-setup-dl folder moved successfully.
C:\$WINDOWS.~BT\Sources\dlmanifests\microsoft-windows-bluetooth-config folder moved successfully.
C:\$WINDOWS.~BT\Sources\dlmanifests\microsoft-windows-adfs-dl folder moved successfully.
C:\$WINDOWS.~BT\Sources\dlmanifests\bitsextensions-server folder moved successfully.
C:\$WINDOWS.~BT\Sources\dlmanifests folder moved successfully.
C:\$WINDOWS.~BT\Sources\cs-cz folder moved successfully.
C:\$WINDOWS.~BT\Sources\adprep\cs-cz folder moved successfully.
C:\$WINDOWS.~BT\Sources\adprep folder moved successfully.
C:\$WINDOWS.~BT\Sources\6.0.6000.16386_x86\cs-cz folder moved successfully.
C:\$WINDOWS.~BT\Sources\6.0.6000.16386_x86 folder moved successfully.
C:\$WINDOWS.~BT\Sources folder moved successfully.
C:\$WINDOWS.~BT folder moved successfully.
========== REGISTRY ==========
========== COMMANDS ==========
C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Public
->Temp folder emptied: 0 bytes

User: vasek
->Temp folder emptied: 35450 bytes
->Temporary Internet Files folder emptied: 6896865 bytes
->Flash cache emptied: 11914 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 44424300 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 49,00 mb


[EMPTYFLASH]

User: All Users

User: Default

User: Default User

User: Public

User: vasek
->Flash cache emptied: 0 bytes

Total Flash Files Cleaned = 0,00 mb


OTL by OldTimer - Version 3.1.34.0 log created on 03062010_081219

Files\Folders moved on Reboot...

Registry entries deleted on Reboot...