HJT log; padají programy, hry Vyřešeno

[Rejtharik]

Asi budu muset znova udělat tento LOG, protože se mi PC nerestartovalo, ale hned se zobrazil tento LOG :
OTL logfile created on: 19.5.2011 20:36:47 - Run 2
OTL by OldTimer - Version 3.2.22.3 Folder = C:\Users\Martin\Desktop
Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 66,00% Memory free
4,00 Gb Paging File | 3,00 Gb Available in Paging File | 79,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 76,24 Gb Total Space | 9,80 Gb Free Space | 12,86% Space Free | Partition Type: NTFS
Drive E: | 465,76 Gb Total Space | 116,10 Gb Free Space | 24,93% Space Free | Partition Type: NTFS

Computer Name: MARTIN-PC | User Name: Martin | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - C:\Users\Martin\Desktop\OTL.exe (OldTimer Tools)
PRC - C:\Program Files\Alwil Software\Avast5\Setup\avast.setup (AVAST Software)
PRC - C:\Program Files\Alwil Software\Avast5\AvastUI.exe (AVAST Software)
PRC - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe (AVAST Software)
PRC - C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe (TeamViewer GmbH)
PRC - C:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
PRC - C:\Windows\System32\taskhost.exe (Microsoft Corporation)
PRC - C:\Windows\explorer.exe (Microsoft Corporation)
PRC - C:\Windows\System32\audiodg.exe (Microsoft Corporation)
PRC - C:\Windows\SOUNDMAN.EXE (Realtek Semiconductor Corp.)


========== Modules (SafeList) ==========

MOD - C:\Users\Martin\Desktop\OTL.exe (OldTimer Tools)
MOD - C:\Program Files\Alwil Software\Avast5\snxhk.dll (AVAST Software)
MOD - C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc\comctl32.dll (Microsoft Corporation)


========== Win32 Services (SafeList) ==========

SRV - (avast! Antivirus) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe (AVAST Software)
SRV - (TeamViewer6) -- C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe (TeamViewer GmbH)
SRV - (AODService) -- C:\Program Files\AMD\OverDrive\AODAssist.exe ()
SRV - (SwitchBoard) -- C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
SRV - (SensrSvc) -- C:\Windows\System32\sensrsvc.dll (Microsoft Corporation)
SRV - (WinDefend) -- C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)


========== Driver Services (SafeList) ==========

DRV - (aswSnx) -- C:\Windows\System32\drivers\aswSnx.sys (AVAST Software)
DRV - (aswSP) -- C:\Windows\System32\drivers\aswSP.sys (AVAST Software)
DRV - (aswTdi) -- C:\Windows\System32\drivers\aswTdi.sys (AVAST Software)
DRV - (aswRdr) -- C:\Windows\System32\drivers\aswRdr.sys (AVAST Software)
DRV - (aswMonFlt) -- C:\Windows\System32\drivers\aswMonFlt.sys (AVAST Software)
DRV - (aswFsBlk) -- C:\Windows\System32\drivers\aswFsBlk.sys (AVAST Software)
DRV - (hamachi) -- C:\Windows\System32\drivers\hamachi.sys (LogMeIn, Inc.)
DRV - (dtsoftbus01) -- C:\Windows\System32\drivers\dtsoftbus01.sys (DT Soft Ltd)
DRV - (atikmdag) -- C:\Windows\System32\drivers\atikmdag.sys (ATI Technologies Inc.)
DRV - (NVENETFD) -- C:\Windows\System32\drivers\nvm62x32.sys (NVIDIA Corporation)
DRV - (nvlddmkm) -- C:\Windows\System32\drivers\nvlddmkm.sys (NVIDIA Corporation)
DRV - (cmuda3) -- C:\Windows\System32\drivers\cmudax3.sys (C-Media Inc)
DRV - (ALCXWDM) Service for Realtek AC97 Audio (WDM) -- C:\Windows\System32\drivers\RTKVAC.SYS (Realtek Semiconductor Corp.)
DRV - (speedfan) -- C:\Windows\system32\speedfan.sys (Windows (R) 2000 DDK provider)
DRV - (giveio) -- C:\Windows\system32\giveio.sys ()


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========


IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.selectedEngine: "Wikipedie (cs)"
FF - prefs.js..browser.startup.homepage: "http://www.seznam.cz"
FF - prefs.js..extensions.enabledItems: {ea614400-e918-4741-9a97-7a972ff7c30b}:2.0.10
FF - prefs.js..extensions.enabledItems: wrc@avast.com:20110101

FF - HKLM\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\Alwil Software\Avast5\WebRep\FF [2011.02.24 17:47:38 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 4.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011.05.01 19:04:51 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 4.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011.05.10 20:19:49 | 000,000,000 | ---D | M]

[2011.01.09 19:01:49 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Martin\AppData\Roaming\Mozilla\Extensions
[2011.05.15 12:14:08 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\0ujgpmbg.default\extensions
[2011.05.15 12:14:08 | 000,000,000 | ---D | M] (Seznam lištička) -- C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\0ujgpmbg.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
[2011.04.19 20:27:41 | 000,000,000 | ---D | M] (Battlefield Play4Free) -- C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\0ujgpmbg.default\extensions\battlefieldplay4free@ea.com
[2011.01.10 16:13:12 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\vwn3oqad.default\extensions
[2011.05.10 20:19:52 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2011.05.10 20:19:53 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
[2005.12.31 16:08:43 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\distribution\extensions
[2005.12.31 16:08:43 | 000,000,000 | ---D | M] (Seznam lištička) -- C:\Program Files\Mozilla Firefox\distribution\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
File not found (No name found) --
[2011.02.24 17:47:38 | 000,000,000 | ---D | M] (avast! WebRep) -- C:\PROGRAM FILES\ALWIL SOFTWARE\AVAST5\WEBREP\FF
() (No name found) -- C:\USERS\MARTIN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0UJGPMBG.DEFAULT\EXTENSIONS\PAGEHACKER-NICO@NC.XPI
[2011.05.01 19:04:47 | 000,142,296 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\components\browsercomps.dll
[2011.05.10 20:19:32 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
[2010.11.30 15:20:46 | 000,012,800 | ---- | M] (Nullsoft, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npwachk.dll
[2010.01.01 10:00:00 | 000,002,208 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\heureka-cz.xml
[2010.01.01 10:00:00 | 000,000,638 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\jyxo-cz.xml
[2010.01.01 10:00:00 | 000,001,367 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\seznam-cz.xml
[2010.01.01 10:00:00 | 000,000,654 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\slunecnice-cz.xml
[2010.01.01 10:00:00 | 000,001,179 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-cz.xml

O1 HOSTS File: ([2011.05.18 16:41:47 | 000,000,027 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll ()
O2 - BHO: (Skype Plug-In) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll ()
O4 - HKLM..\Run: [avast] C:\Program Files\Alwil Software\Avast5\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [SoundMan] C:\Windows\SOUNDMAN.EXE (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [SwitchBoard] C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
O4 - HKCU..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O9 - Extra Button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_22)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009.06.10 23:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2011.05.19 14:03:10 | 000,580,608 | ---- | C] (OldTimer Tools) -- C:\Users\Martin\Desktop\OTL.exe
[2011.05.19 13:52:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskInfo
[2011.05.19 13:52:37 | 000,000,000 | ---D | C] -- C:\Program Files\CrystalDiskInfo
[2011.05.19 13:00:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
[2011.05.19 13:00:01 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2011.05.18 16:47:34 | 000,000,000 | ---D | C] -- C:\Windows\temp
[2011.05.18 16:46:20 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2011.05.18 16:39:59 | 000,000,000 | ---D | C] -- C:\Users\Martin\AppData\Local\temp
[2011.05.17 20:09:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Edison 5
[2011.05.17 20:09:18 | 000,012,320 | ---- | C] (Spark Technologies co., Ltd.) -- C:\Windows\System32\drivers\SPARKEY.SYS
[2011.05.17 20:09:18 | 000,008,208 | ---- | C] (Spark Tech Co.,Ltd) -- C:\Windows\System32\drivers\SPKLPT.SYS
[2011.05.17 20:08:07 | 000,000,000 | ---D | C] -- C:\Users\Martin\Documents\DesignSoft
[2011.05.17 20:08:07 | 000,000,000 | ---D | C] -- C:\Program Files\DesignSoft
[2011.05.17 18:45:41 | 000,404,640 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2011.05.16 19:50:50 | 000,000,000 | ---D | C] -- C:\ProgramData\Skype Extras
[2011.05.16 19:50:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
[2011.05.16 19:50:19 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Skype
[2011.05.13 20:46:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Celestia
[2011.05.13 20:46:21 | 000,000,000 | ---D | C] -- C:\Program Files\Celestia
[2011.05.12 20:34:08 | 000,000,000 | ---D | C] -- C:\Windows\Sun
[2011.05.10 20:20:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun
[2011.05.10 20:20:09 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2011.05.10 20:19:49 | 000,472,808 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\deployJava1.dll
[2011.05.10 20:19:31 | 000,153,376 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaws.exe
[2011.05.10 20:19:31 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaw.exe
[2011.05.10 20:19:31 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\java.exe
[2011.05.10 20:19:27 | 000,000,000 | ---D | C] -- C:\Program Files\Java
[2011.05.08 10:44:20 | 000,000,000 | ---D | C] -- C:\Program Files\2K Games
[2011.05.07 16:43:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ultr@Pack
[2011.05.04 21:06:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XviD
[2011.05.04 21:06:41 | 000,000,000 | ---D | C] -- C:\Program Files\XviD
[2011.05.04 21:03:15 | 000,000,000 | ---D | C] -- C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Growler Software
[2011.05.04 21:03:15 | 000,000,000 | ---D | C] -- C:\Program Files\Growler Guncam
[2011.05.04 21:02:32 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\GC Install
[2011.05.03 15:40:54 | 000,109,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MSWINSCK.OCX
[2011.05.03 15:40:54 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DaemonicMU Season IV
[2011.05.03 15:35:45 | 000,000,000 | ---D | C] -- C:\Program Files\DaemonicMU Season IV
[2011.04.30 16:30:18 | 000,000,000 | ---D | C] -- C:\Users\Martin\Documents\OpenTTD
[2011.04.30 16:30:00 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenTTD
[2011.04.30 16:29:51 | 000,000,000 | ---D | C] -- C:\Program Files\OpenTTD
[2011.04.23 08:48:59 | 000,000,000 | ---D | C] -- C:\Users\Martin\AppData\Roaming\RedEyePilot
[2011.04.22 18:54:16 | 000,000,000 | ---D | C] -- C:\Users\Martin\AppData\Roaming\URSE Games
[2011.04.22 09:18:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ledová královna 3 - Vraní čarodějka
[2011.04.22 09:17:37 | 000,000,000 | ---D | C] -- C:\Program Files\Ledova kralovna 3 - Vrani carodejka
[2011.04.20 16:48:52 | 000,000,000 | ---D | C] -- C:\Users\Martin\Documents\Battlefield Play4Free
[2 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2011.05.19 20:22:36 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011.05.19 20:22:29 | 1559,928,832 | -HS- | M] () -- C:\hiberfil.sys
[2011.05.19 19:39:32 | 000,022,336 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011.05.19 19:39:32 | 000,022,336 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011.05.19 17:35:10 | 000,000,000 | ---- | M] () -- C:\Users\Martin\AppData\Local\{12FCE772-D885-45B3-BFBB-C6CAB550D1C4}
[2011.05.19 16:32:45 | 235,261,874 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2011.05.19 14:03:17 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Users\Martin\Desktop\OTL.exe
[2011.05.18 19:45:51 | 000,007,659 | ---- | M] () -- C:\Users\Martin\AppData\Local\Resmon.ResmonCfg
[2011.05.18 16:41:47 | 000,000,027 | ---- | M] () -- C:\Windows\System32\drivers\etc\hosts
[2011.05.17 18:45:41 | 000,404,640 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2011.05.15 19:20:01 | 003,763,232 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2011.05.10 20:19:31 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaws.exe
[2011.05.10 20:19:31 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaw.exe
[2011.05.10 20:19:31 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\java.exe
[2011.05.10 20:19:30 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\deployJava1.dll
[2011.05.07 18:08:37 | 000,001,091 | ---- | M] () -- C:\Users\Martin\Desktop\IL-2 Mody.lnk
[2011.05.07 16:43:53 | 000,001,237 | ---- | M] () -- C:\Users\Public\Desktop\Ultr@Pack Update & Restore.lnk
[2011.05.07 16:43:53 | 000,001,120 | ---- | M] () -- C:\Users\Public\Desktop\Ultr@Pack Switcher.lnk
[2011.05.07 16:43:53 | 000,001,091 | ---- | M] () -- C:\Users\Public\Desktop\JSGME.lnk
[2011.05.06 19:57:42 | 000,625,676 | ---- | M] () -- C:\Windows\System32\perfh005.dat
[2011.05.06 19:57:42 | 000,609,896 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2011.05.06 19:57:42 | 000,119,794 | ---- | M] () -- C:\Windows\System32\perfc005.dat
[2011.05.06 19:57:42 | 000,104,214 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2011.05.04 19:34:52 | 000,001,145 | ---- | M] () -- C:\Users\Martin\Desktop\IL2 1946.lnk
[2011.05.04 15:47:57 | 000,001,933 | ---- | M] () -- C:\Users\Public\Desktop\avast! Free Antivirus.lnk
[2011.05.04 15:47:41 | 000,002,577 | ---- | M] () -- C:\Windows\System32\config.nt
[2011.05.03 15:40:54 | 000,001,051 | ---- | M] () -- C:\Users\Public\Desktop\DaeMU Season IV.lnk
[2011.04.30 20:07:39 | 000,234,768 | ---- | M] () -- C:\Windows\System32\PnkBstrB.xtr
[2011.04.30 19:04:35 | 000,000,866 | ---- | M] () -- C:\Windows\Cmicnfg3.ini.imi
[2011.04.30 17:01:01 | 000,046,742 | ---- | M] () -- C:\Users\Martin\AppData\Roaming\room.dat
[2011.04.30 15:53:42 | 000,138,264 | ---- | M] () -- C:\Windows\System32\drivers\PnkBstrK.sys
[2011.04.28 17:53:33 | 000,121,940 | ---- | M] () -- C:\Users\Martin\Documents\hry 2.JPG
[2011.04.28 17:51:41 | 000,122,644 | ---- | M] () -- C:\Users\Martin\Documents\hra.JPG
[2011.04.28 17:36:52 | 000,136,752 | ---- | M] () -- C:\Users\Martin\Documents\internet.JPG
[2011.04.28 17:14:36 | 000,147,594 | ---- | M] () -- C:\Users\Martin\Documents\pc.JPG
[2011.04.28 17:14:21 | 000,151,411 | ---- | M] () -- C:\Users\Martin\Documents\pc2.JPG
[2011.04.28 16:59:56 | 002,359,350 | ---- | M] () -- C:\Users\Martin\Documents\ta.bmp
[2011.04.25 20:13:30 | 001,780,298 | ---- | M] () -- C:\Users\Martin\Documents\via pc.bmp
[2011.04.20 16:47:52 | 000,138,056 | ---- | M] () -- C:\Users\Martin\AppData\Roaming\PnkBstrK.sys
[2 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files Created - No Company Name ==========

[2011.05.19 17:35:10 | 000,000,000 | ---- | C] () -- C:\Users\Martin\AppData\Local\{12FCE772-D885-45B3-BFBB-C6CAB550D1C4}
[2011.05.19 16:32:45 | 235,261,874 | ---- | C] () -- C:\Windows\MEMORY.DMP
[2011.05.07 18:08:37 | 000,001,091 | ---- | C] () -- C:\Users\Martin\Desktop\IL-2 Mody.lnk
[2011.05.07 16:43:53 | 000,001,237 | ---- | C] () -- C:\Users\Public\Desktop\Ultr@Pack Update & Restore.lnk
[2011.05.07 16:43:53 | 000,001,120 | ---- | C] () -- C:\Users\Public\Desktop\Ultr@Pack Switcher.lnk
[2011.05.07 16:43:53 | 000,001,091 | ---- | C] () -- C:\Users\Public\Desktop\JSGME.lnk
[2011.05.04 19:55:10 | 001,049,652 | ---- | C] () -- C:\Users\Martin\Desktop\RRG_176 GvIAP.bmp
[2011.05.04 19:34:52 | 000,001,145 | ---- | C] () -- C:\Users\Martin\Desktop\IL2 1946.lnk
[2011.05.03 15:40:54 | 000,001,051 | ---- | C] () -- C:\Users\Public\Desktop\DaeMU Season IV.lnk
[2011.04.28 17:53:27 | 000,121,940 | ---- | C] () -- C:\Users\Martin\Documents\hry 2.JPG
[2011.04.28 17:51:38 | 000,122,644 | ---- | C] () -- C:\Users\Martin\Documents\hra.JPG
[2011.04.28 17:36:45 | 000,136,752 | ---- | C] () -- C:\Users\Martin\Documents\internet.JPG
[2011.04.28 17:14:14 | 000,147,594 | ---- | C] () -- C:\Users\Martin\Documents\pc.JPG
[2011.04.28 17:09:55 | 000,151,411 | ---- | C] () -- C:\Users\Martin\Documents\pc2.JPG
[2011.04.28 16:58:03 | 002,359,350 | ---- | C] () -- C:\Users\Martin\Documents\ta.bmp
[2011.04.25 20:13:18 | 001,780,298 | ---- | C] () -- C:\Users\Martin\Documents\via pc.bmp
[2011.04.15 18:29:39 | 000,046,742 | ---- | C] () -- C:\Users\Martin\AppData\Roaming\room.dat
[2011.04.08 13:28:58 | 000,041,872 | ---- | C] () -- C:\Windows\System32\xfcodec.dll
[2011.03.15 15:09:44 | 000,105,368 | ---- | C] () -- C:\Windows\War3Unin.dat
[2011.03.02 14:05:31 | 000,000,980 | ---- | C] () -- C:\Windows\eReg.dat
[2011.03.02 14:01:47 | 000,000,032 | ---- | C] () -- C:\Windows\CD_Start.INI
[2011.02.28 16:52:59 | 000,552,960 | R--- | C] () -- C:\Windows\System32\Cmeaupci.exe
[2011.02.28 16:52:59 | 000,000,082 | ---- | C] () -- C:\Windows\Cmicnfg3.ini.cfl
[2011.02.28 16:52:12 | 000,303,104 | R--- | C] () -- C:\Windows\System32\CmiInstallResAll.dll
[2011.02.28 16:52:12 | 000,002,123 | R--- | C] () -- C:\Windows\Cmicnfg3.ini.cfg
[2011.02.28 16:52:12 | 000,000,866 | ---- | C] () -- C:\Windows\Cmicnfg3.ini.imi
[2011.01.28 11:46:11 | 000,138,264 | ---- | C] () -- C:\Windows\System32\drivers\PnkBstrK.sys
[2011.01.28 11:46:11 | 000,138,056 | ---- | C] () -- C:\Users\Martin\AppData\Roaming\PnkBstrK.sys
[2011.01.28 11:45:38 | 000,234,768 | ---- | C] () -- C:\Windows\System32\PnkBstrB.exe
[2011.01.28 11:45:29 | 000,075,136 | ---- | C] () -- C:\Windows\System32\PnkBstrA.exe
[2011.01.17 12:32:01 | 000,007,659 | ---- | C] () -- C:\Users\Martin\AppData\Local\Resmon.ResmonCfg
[2011.01.11 17:04:41 | 000,000,001 | ---- | C] () -- C:\Windows\System32\SI.bin
[2011.01.10 16:07:08 | 000,000,056 | -H-- | C] () -- C:\Windows\System32\ezsidmv.dat
[2011.01.10 16:00:41 | 000,154,144 | ---- | C] () -- C:\Windows\System32\RTLCPAPI.dll
[2011.01.09 18:37:57 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2010.02.11 07:30:38 | 000,159,744 | ---- | C] () -- C:\Windows\System32\atitmmxx.dll
[2009.09.21 16:23:14 | 000,625,676 | ---- | C] () -- C:\Windows\System32\perfh005.dat
[2009.09.21 16:23:14 | 000,292,004 | ---- | C] () -- C:\Windows\System32\perfi005.dat
[2009.09.21 16:23:14 | 000,119,794 | ---- | C] () -- C:\Windows\System32\perfc005.dat
[2009.09.21 16:23:14 | 000,036,232 | ---- | C] () -- C:\Windows\System32\perfd005.dat
[2009.07.14 06:57:37 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2009.07.14 06:33:53 | 003,763,232 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2009.07.14 04:05:48 | 000,609,896 | ---- | C] () -- C:\Windows\System32\perfh009.dat
[2009.07.14 04:05:48 | 000,291,294 | ---- | C] () -- C:\Windows\System32\perfi009.dat
[2009.07.14 04:05:48 | 000,104,214 | ---- | C] () -- C:\Windows\System32\perfc009.dat
[2009.07.14 04:05:48 | 000,031,548 | ---- | C] () -- C:\Windows\System32\perfd009.dat
[2009.07.14 04:05:05 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT
[2009.07.14 04:04:11 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat
[2009.07.14 01:55:37 | 000,000,000 | ---- | C] () -- C:\Windows\System32\upnp.dll
[2009.07.14 01:55:01 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2009.07.14 01:51:43 | 000,073,728 | ---- | C] () -- C:\Windows\System32\BthpanContextHandler.dll
[2009.07.14 01:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\System32\BWContextHandler.dll
[2009.07.14 01:41:47 | 000,001,536 | ---- | C] () -- C:\Windows\System32\winver.exe
[2009.06.10 23:26:10 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat
[2009.05.07 06:05:52 | 000,002,641 | R--- | C] () -- C:\Windows\cmudax3.ini
[2009.04.24 00:29:16 | 000,189,051 | ---- | C] () -- C:\Windows\System32\atiicdxx.dat
[2007.02.20 14:59:08 | 000,053,248 | ---- | C] () -- C:\Windows\System32\AgCPanelJapanese.dll
[2007.02.20 14:59:06 | 000,053,248 | ---- | C] () -- C:\Windows\System32\AgCPanelTraditionalChinese.dll
[2007.02.20 14:59:06 | 000,053,248 | ---- | C] () -- C:\Windows\System32\AgCPanelSwedish.dll
[2007.02.20 14:59:06 | 000,053,248 | ---- | C] () -- C:\Windows\System32\AgCPanelSimplifiedChinese.dll
[2007.02.20 14:59:06 | 000,053,248 | ---- | C] () -- C:\Windows\System32\AgCPanelPortugese.dll
[2007.02.20 14:59:06 | 000,053,248 | ---- | C] () -- C:\Windows\System32\AgCPanelKorean.dll
[2007.02.20 14:59:06 | 000,053,248 | ---- | C] () -- C:\Windows\System32\AgCPanelGerman.dll
[2007.02.20 14:59:06 | 000,053,248 | ---- | C] () -- C:\Windows\System32\AgCPanelFrench.dll
[2007.02.20 14:59:04 | 000,053,248 | ---- | C] () -- C:\Windows\System32\AgCPanelSpanish.dll
[2007.02.20 13:24:46 | 000,071,208 | ---- | C] () -- C:\Windows\System32\PhysXLoader.dll
[2004.12.20 11:08:28 | 000,155,648 | ---- | C] () -- C:\Windows\System32\xvidvfw.dll
[2004.12.20 11:03:26 | 000,679,936 | ---- | C] () -- C:\Windows\System32\xvidcore.dll
[1996.04.03 21:33:26 | 000,005,248 | ---- | C] () -- C:\Windows\System32\giveio.sys

========== Custom Scans ==========


< :OTL >

< PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation) >

< PRC - C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation) >

< [2011.01.09 19:01:49 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Martin\AppData\Roaming\Mozilla\Extensions >

< [2011.01.09 19:01:49 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Martin\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384} >

< [2011.05.15 12:14:08 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\0ujgpmbg.default\extensions >

< [2011.05.10 20:19:52 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions >

< [2005.12.31 16:08:43 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\distribution\extensions >

< O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present >

< O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present >

< O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_22) >
Invalid Switch: jinsta ... s-i586.cab (Java Plug-in 1.6.0_22)


< O16 - DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_22) >
Invalid Switch: jinsta ... s-i586.cab (Java Plug-in 1.6.0_22)


< O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_22) >
Invalid Switch: jinsta ... s-i586.cab (Java Plug-in 1.6.0_22)


< O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found >
Invalid Switch: pagefile) - File not found


< [2011.05.06 19:57:42 | 000,625,676 | ---- | M] () -- C:\Windows\System32\perfh005.dat >

< [2011.05.06 19:57:42 | 000,609,896 | ---- | M] () -- C:\Windows\System32\perfh009.dat >

< [2011.05.06 19:57:42 | 000,119,794 | ---- | M] () -- C:\Windows\System32\perfc005.dat >

< [2011.05.06 19:57:42 | 000,104,214 | ---- | M] () -- C:\Windows\System32\perfc009.dat >

< [2009.09.21 16:23:14 | 000,625,676 | ---- | C] () -- C:\Windows\System32\perfh005.dat >

< [2009.09.21 16:23:14 | 000,292,004 | ---- | C] () -- C:\Windows\System32\perfi005.dat >

< [2009.09.21 16:23:14 | 000,119,794 | ---- | C] () -- C:\Windows\System32\perfc005.dat >

< [2009.09.21 16:23:14 | 000,036,232 | ---- | C] () -- C:\Windows\System32\perfd005.dat >

< [2009.07.14 04:05:48 | 000,609,896 | ---- | C] () -- C:\Windows\System32\perfh009.dat >

< [2009.07.14 04:05:48 | 000,291,294 | ---- | C] () -- C:\Windows\System32\perfi009.dat >

< [2009.07.14 04:05:48 | 000,104,214 | ---- | C] () -- C:\Windows\System32\perfc009.dat >

< [2009.07.14 04:05:48 | 000,031,548 | ---- | C] () -- C:\Windows\System32\perfd009.dat >

< >

< :Files >

< C:\WINDOWS\System32\*.tmp >
[2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

< C:\WINDOWS\*.tmp >
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

< C:\WINDOWS\system32\*.tmp.dll >

< C:\WINDOWS\System32\dllcache\*.tmp >

< C:\WINDOWS\system32\SET*.tmp >

< c:\windows\Tasks\*.job >

< C:\*.tmp >

< C:\Documents and Settings\All Users\Data aplikací\*.tmp >

< c:\users\Martin\AppData\Local\BIT*.tmp >

< >

< :Reg >

< [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] >

< "Garena" =- >

< >

< :Commands >

< [purity] >

< [emptytemp] >

< [start explorer] >

< [Reboot] >

< End of report >

[Reklama]

[jaro3]

nainstaluj si tu javu , ostatní javy odinstaluj..

Ten script OTL udělej znovu..

[Rejtharik]

OK tu javu jsem už nainstaloval, ten script udělám, ale našel další podivnou věc, dkyž chci aktualizovat virovou databázi AVASTu tak po chvilce, cca 15 sekund, sem inabídne klinutí na OK ale virová databáze zůstane stará.

[Rejtharik]

už 3x jsem jsme zkoušel ten OTl a nikdy se mi PC nerestartuje dělám jak píšeš podle tvého návodu ale né Sempron si pořád dělá své. Než jsem se dnes dostal k netu sem chytl 4 BSoDy , ale nemám ani jeden minidump páč mi je včera smázl CCleaner a z deška tam žádný není způsovbovla je driver ASWSP.sys a když dneska ještě chytnu BSoD tak vám opíšu ty čísla

[Žbeky]

Pokud to opravdu dělal ASWSP.sys tak zkus odinstalovat Avast, jestli to nepřestane dělat.

[Rejtharik]

toto už není možný jdu odinstalovat AVAST cosi se načítá a BSoD ntfs.sys .

[Rejtharik]

Pozor zlepšení po odinstalování AVASTu fakt nedostávám BSoDy při zapínání PC díky moc teď ještě nějaký antivirus najít abych nebyl bez něj.

[Žbeky]

AVG, Avira, MSE, ... vyber si, vše zdarma

[Rejtharik]

OK díky moc, který by jsi doporučoval ? Já osobně jsem pro AVG.

[Žbeky]

AVG se nesnese s combofixem, tak ho nemám rád Ale je to na tobě

[Rejtharik]

Počkat na nějakou další verzi AVASTu by nepomohlo ? Sem na něj zvyklý.

[Žbeky]

Těžko říct. Mu se nelíbí tvá konkrétní konfigurace...