Logfile of random's system information tool 1.08 (written by random/random)
Run by Administrator at 2012-04-11 14:16:41
Microsoft Windows XP Professional Service Pack 3
System drive C: has 2 GB (21%) free of 10 GB
Total RAM: 3070 MB (77% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 14:16:45, on 11.4.2012
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\LVCOMSX.EXE
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\AVAST Software\Avast\avastUI.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\Program Files\MagicDisc\MagicDisc.exe
C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.EXE
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Documents and Settings\Administrator\My Documents\RSIT.exe
C:\Program Files\trend micro\Administrator.exe
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [nwiz] C:\Program Files\NVIDIA Corporation\nview\nwiz.exe /installquiet
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - Startup: MagicDisc.lnk = C:\Program Files\MagicDisc\MagicDisc.exe
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\Skype4COM.dll
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: Sony PC Companion - Avanquest Software - C:\Program Files\Sony\Sony PC Companion\PCCService.exe
--
End of file - 3123 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1123561945-1364589140-725345543-500Core1cd099f4a3887e2.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2012-03-07 1003704]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2012-03-07 1003704]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Kernel and Hardware Abstraction Layer"=C:\WINDOWS\KHALMNPR.EXE [2008-02-29 76304]
"LVCOMSX"=C:\WINDOWS\system32\LVCOMSX.EXE [2005-07-19 221184]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2011-10-08 16744256]
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2011-10-08 203072]
"nwiz"=C:\Program Files\NVIDIA Corporation\nview\nwiz.exe [2011-10-08 1632360]
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2012-03-07 4241512]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2011-09-21 136176]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSC]
C:\Program Files\Microsoft Security Client\msseces.exe -hide -runkey []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"OMSI download service"=2
"LBTServ"=3
"IDriverT"=3
"JavaQuickStarterService"=2
"vsmon"=2
"idsvc"=3
"FontCache3.0.0.0"=3
"DfSdkS"=3
"AntiVirUpgradeService"=2
"AcrSch2Svc"=3
"WMPNetworkSvc"=3
"wuauserv"=2
"Sony Ericsson PCCompanion"=3
"gupdate"=2
"wlidsvc"=2
"avast! Firewall"=2
C:\Documents and Settings\All Users\Start Menu\Programs\Startup
Logitech SetPoint.lnk - C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\Documents and Settings\Administrator\Start Menu\Programs\Startup
MagicDisc.lnk - C:\Program Files\MagicDisc\MagicDisc.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\LBTWlgn]
c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll [2008-05-02 72208]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2009-01-30 133632]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WdfLoadGroup]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WdfLoadGroup]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"DisableStatusMessages"=0
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoResolveTrack"=1
"NoResolveSearch"=1
"NoInstrumentation"=1
"NoStartMenuMFUprogramsList"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
"NoDesktopCleanupWizard"=1
"NoResolveTrack"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\WINDOWS\system32\ZoneLabs\vsmon.exe"="C:\WINDOWS\system32\ZoneLabs\vsmon.exe:*:Enabled:vsmon"
"D:\Hry\Mass Effect\Binaries\MassEffect.exe"="D:\Hry\Mass Effect\Binaries\MassEffect.exe:*:Enabled:Mass Effect Game"
"D:\Hry\Mass Effect\MassEffectLauncher.exe"="D:\Hry\Mass Effect\MassEffectLauncher.exe:*:Enabled:Mass Effect Launcher"
"D:\Hry\NFS HP\Launcher.exe"="D:\Hry\NFS HP\Launcher.exe:*:Enabled:Need for Speed(TM) Hot Pursuit"
"C:\Program Files\Winamp\winamp.exe"="C:\Program Files\Winamp\winamp.exe:*:Enabled:Winamp"
"C:\WINDOWS\system32\PnkBstrA.exe"="C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA"
"C:\WINDOWS\system32\PnkBstrB.exe"="C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB"
"D:\Hry\ACB\ACBSP.exe"="D:\Hry\ACB\ACBSP.exe:*:Enabled:Assassin's Creed Brotherhood"
"D:\Hry\ACB\ACBMP.exe"="D:\Hry\ACB\ACBMP.exe:*:Enabled:Assassin's Creed Brotherhood Multiplayer"
"D:\Hry\ACB\AssassinsCreedBrotherhood.exe"="D:\Hry\ACB\AssassinsCreedBrotherhood.exe:*:Enabled:Assassin's Creed Brotherhood Update"
"D:\Hry\ACB\UPlayBrowser.exe"="D:\Hry\ACB\UPlayBrowser.exe:*:Enabled:Assassin's Creed Brotherhood Uplay"
"D:\Hry\Dirt 3\dirt3_game.exe"="D:\Hry\Dirt 3\dirt3_game.exe:*:Enabled:DiRT 3"
"D:\Hry\Virtua Tennis 4\VT4.exe"="D:\Hry\Virtua Tennis 4\VT4.exe:*:Enabled:Virtua Tennis 4™"
"C:\Documents and Settings\Administrator\Desktop\solutoinstaller.exe"="C:\Documents and Settings\Administrator\Desktop\solutoinstaller.exe:*:Enabled:SolutoInstaller"
"C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Google Talk Plugin\googletalkplugin.exe"="C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Google Talk Plugin\googletalkplugin.exe:*:Enabled:Google Talk Plugin"
"D:\Hry\The Adventures of Tintin - The Secret of the Unicorn - Game demo\TINTIN.exe"="D:\Hry\The Adventures of Tintin - The Secret of the Unicorn - Game demo\TINTIN.exe:*:Enabled:The Adventures of Tintin - Demo"
"D:\Hry\NCIS\support\UpdateLauncher\gu.exe"="D:\Hry\NCIS\support\UpdateLauncher\gu.exe:*:Enabled:NCIS Game"
"D:\Hry\NCIS\NCIS.exe"="D:\Hry\NCIS\NCIS.exe:*:Enabled:NCIS Game"
"C:\Program Files\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe"="C:\Program Files\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe:*:Enabled:Ubisoft Game Launcher"
"D:\Hry\ACR\ACRSP.exe"="D:\Hry\ACR\ACRSP.exe:*:Enabled:Assassin's Creed Revelations"
"D:\Hry\ACR\ACRMP.exe"="D:\Hry\ACR\ACRMP.exe:*:Enabled:Assassin's Creed Revelations Multiplayer"
"D:\Hry\ACR\AssassinsCreedRevelations.exe"="D:\Hry\ACR\AssassinsCreedRevelations.exe:*:Enabled:Assassin's Creed Revelations Update"
"D:\Hry\Driver SF\Driver.exe"="D:\Hry\Driver SF\Driver.exe:*:Enabled:Driver San Francisco"
"C:\Program Files\VideoLAN\VLC\vlc.exe"="C:\Program Files\VideoLAN\VLC\vlc.exe:*:Enabled:VLC media player"
"D:\Hry\Shank 2\bin\Shank2.exe"="D:\Hry\Shank 2\bin\Shank2.exe:*:Enabled:Shank 2"
"C:\Program Files\Sony Ericsson\Update Engine\Sony Ericsson Update Engine.exe"="C:\Program Files\Sony Ericsson\Update Engine\Sony Ericsson Update Engine.exe:*:Enabled:Update Engine"
"C:\Program Files\Vuze\Azureus.exe"="C:\Program Files\Vuze\Azureus.exe:*:Enabled:Azureus / Vuze"
"D:\Hry\NFS HP\NFS11.exe"="D:\Hry\NFS HP\NFS11.exe:*:Enabled:Need for Speed(TM) Hot Pursuit Application"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"D:\Hry\Rayman Origins\Rayman Origins.exe"="D:\Hry\Rayman Origins\Rayman Origins.exe:*:Enabled:Rayman Origins"
"D:\Hry\Rayman Origins\gu.exe"="D:\Hry\Rayman Origins\gu.exe:*:Enabled:Rayman Origins"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
======List of files/folders created in the last 1 months======
2012-04-11 14:16:41 ----D---- C:\rsit
2012-04-11 12:57:42 ----A---- C:\WINDOWS\system32\drivers\aswSP.sys
2012-04-11 12:57:42 ----A---- C:\WINDOWS\system32\drivers\aswFsBlk.sys
2012-04-11 12:57:40 ----A---- C:\WINDOWS\system32\drivers\aswTdi.sys
2012-04-11 12:57:40 ----A---- C:\WINDOWS\system32\drivers\aswSnx.sys
2012-04-11 12:57:40 ----A---- C:\WINDOWS\system32\drivers\aswRdr.sys
2012-04-11 12:57:39 ----A---- C:\WINDOWS\system32\drivers\aswmon2.sys
2012-04-11 12:57:39 ----A---- C:\WINDOWS\system32\drivers\aswmon.sys
2012-04-11 12:57:39 ----A---- C:\WINDOWS\system32\drivers\aavmker4.sys
2012-04-11 12:57:24 ----A---- C:\WINDOWS\system32\aswBoot.exe
2012-04-11 12:57:16 ----D---- C:\Program Files\AVAST Software
2012-04-11 12:57:16 ----D---- C:\Documents and Settings\All Users\Application Data\AVAST Software
2012-04-09 21:40:51 ----D---- C:\Program Files\Skype
2012-04-09 21:40:49 ----D---- C:\Documents and Settings\All Users\Application Data\Skype
2012-04-09 15:59:20 ----D---- C:\Documents and Settings\Administrator\Application Data\vlc
2012-04-09 15:47:55 ----D---- C:\Program Files\Sony
2012-04-09 15:47:55 ----D---- C:\Documents and Settings\All Users\Application Data\Sony
2012-04-07 23:31:40 ----D---- C:\Documents and Settings\All Users\Application Data\NVIDIA Corporation
2012-04-07 23:31:38 ----A---- C:\WINDOWS\system32\nvsvc32.exe
2012-04-07 23:31:38 ----A---- C:\WINDOWS\system32\nvcolor.exe
2012-04-07 23:31:37 ----A---- C:\WINDOWS\system32\nvmctray.dll
2012-04-07 23:31:37 ----A---- C:\WINDOWS\system32\nvcpl.dll
2012-04-07 23:31:36 ----A---- C:\WINDOWS\system32\nvwddi.dll
2012-04-07 23:31:36 ----A---- C:\WINDOWS\system32\easyupdatusapiu.dll
2012-04-07 23:31:22 ----A---- C:\WINDOWS\system32\OpenCL.dll
2012-04-07 23:31:22 ----A---- C:\WINDOWS\system32\nvoglnt.dll
2012-04-07 23:31:22 ----A---- C:\WINDOWS\system32\nvgenco32.dll
2012-04-07 23:31:22 ----A---- C:\WINDOWS\system32\nvdispco32.dll
2012-04-07 23:31:22 ----A---- C:\WINDOWS\system32\nvcuvid.dll
2012-04-07 23:31:22 ----A---- C:\WINDOWS\system32\nvcuvenc.dll
2012-04-07 23:31:22 ----A---- C:\WINDOWS\system32\nvcuda.dll
2012-04-07 23:31:22 ----A---- C:\WINDOWS\system32\nvcompiler.dll
2012-04-07 23:31:22 ----A---- C:\WINDOWS\system32\nvapi.dll
2012-04-07 23:31:02 ----D---- C:\Program Files\NVIDIA Corporation
2012-04-07 23:30:49 ----D---- C:\NVIDIA
2012-03-27 10:11:33 ----D---- C:\Documents and Settings\All Users\Application Data\Orion
2012-03-24 15:36:46 ----A---- C:\WINDOWS\system32\libmfxsw32.dll
2012-03-22 12:43:45 ----D---- C:\Program Files\Vuze
2012-03-18 19:38:21 ----D---- C:\Documents and Settings\All Users\Application Data\Emicsoft Studio
2012-03-18 19:38:13 ----D---- C:\Program Files\Emicsoft Studio
2012-03-18 19:26:50 ----A---- C:\WINDOWS\system32\drivers\WsAudio_DeviceS(5).sys
2012-03-18 19:26:39 ----A---- C:\WINDOWS\system32\drivers\WsAudio_DeviceS(4).sys
2012-03-18 19:26:28 ----A---- C:\WINDOWS\system32\drivers\WsAudio_DeviceS(3).sys
2012-03-18 19:26:16 ----A---- C:\WINDOWS\system32\drivers\WsAudio_DeviceS(2).sys
2012-03-18 19:25:50 ----A---- C:\WINDOWS\system32\drivers\WsAudio_DeviceS(1).sys
2012-03-18 19:25:47 ----A---- C:\WINDOWS\system32\iconv.dll
2012-03-18 19:25:46 ----D---- C:\Program Files\Aimersoft
2012-03-17 23:18:37 ----AD---- C:\Documents and Settings\All Users\Application Data\TEMP
2012-03-14 14:42:53 ----A---- C:\WINDOWS\system32\DfSdkBt.exe
2012-03-14 14:42:49 ----D---- C:\Program Files\Ashampoo
2012-03-13 21:37:08 ----HDC---- C:\WINDOWS\ie8
======List of files/folders modified in the last 1 months======
2012-04-11 14:16:45 ----D---- C:\Program Files\trend micro
2012-04-11 13:49:27 ----D---- C:\Documents and Settings\Administrator\Application Data\Skype
2012-04-11 13:48:46 ----D---- C:\WINDOWS\system32\drivers
2012-04-11 13:16:38 ----D---- C:\WINDOWS\TEMP
2012-04-11 13:12:36 ----D---- C:\Documents and Settings\Administrator\Application Data\Winamp
2012-04-11 12:57:37 ----SHD---- C:\WINDOWS\Installer
2012-04-11 12:57:36 ----D---- C:\WINDOWS\WinSxS
2012-04-11 12:57:25 ----D---- C:\WINDOWS
2012-04-11 12:57:24 ----D---- C:\WINDOWS\system32
2012-04-11 12:57:16 ----RD---- C:\Program Files
2012-04-11 10:59:04 ----D---- C:\Documents and Settings\Administrator\Application Data\Azureus
2012-04-11 10:59:00 ----D---- C:\WINDOWS\Logs
2012-04-10 21:53:59 ----HD---- C:\WINDOWS\inf
2012-04-10 21:53:12 ----D---- C:\WINDOWS\system32\DirectX
2012-04-10 21:51:09 ----HD---- C:\Program Files\InstallShield Installation Information
2012-04-10 15:01:05 ----D---- C:\WINDOWS\system32\CatRoot2
2012-04-10 12:27:26 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2012-04-09 16:41:43 ----A---- C:\error.txt
2012-04-09 15:47:55 ----D---- C:\Program Files\Sony Ericsson
2012-04-09 15:47:55 ----D---- C:\Documents and Settings\All Users\Application Data\Sony Ericsson
2012-04-09 11:42:33 ----D---- C:\WINDOWS\system32\LogFiles
2012-04-07 23:31:41 ----D---- C:\WINDOWS\Help
2012-04-07 23:31:35 ----D---- C:\WINDOWS\system32\dllcache
2012-04-03 10:34:59 ----D---- C:\WINDOWS\ehome
2012-03-28 11:09:09 ----ASH---- C:\boot.ini
2012-03-28 11:09:09 ----AC---- C:\WINDOWS\win.ini
2012-03-28 11:09:09 ----AC---- C:\WINDOWS\system.ini
2012-03-25 21:47:50 ----AC---- C:\WINDOWS\NeroDigital.ini
2012-03-25 11:00:04 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2012-03-24 16:07:38 ----D---- C:\Documents and Settings\Administrator\Application Data\dvdcss
2012-03-24 15:37:05 ----D---- C:\Program Files\AVS4YOU
2012-03-24 15:37:03 ----D---- C:\Program Files\Common Files\AVSMedia
2012-03-24 11:24:28 ----D---- C:\Documents and Settings\Administrator\Application Data\Mozilla
2012-03-24 11:20:01 ----SD---- C:\WINDOWS\Tasks
2012-03-20 11:32:17 ----D---- C:\Documents and Settings\Administrator\Application Data\Opera
2012-03-19 21:59:47 ----D---- C:\Program Files\DOSBox-0.74
2012-03-18 19:50:42 ----RSD---- C:\WINDOWS\Fonts
2012-03-17 17:14:31 ----D---- C:\WINDOWS\SoftwareDistribution
2012-03-15 11:34:03 ----D---- C:\Program Files\Mozilla Firefox
2012-03-14 14:25:37 ----SD---- C:\Documents and Settings\All Users\Application Data\Microsoft
2012-03-14 14:17:16 ----D---- C:\WINDOWS\system32\NtmsData
2012-03-14 14:15:59 ----D---- C:\Program Files\Online Services
2012-03-13 22:31:42 ----D---- C:\WINDOWS\security
2012-03-13 21:38:44 ----D---- C:\Program Files\Internet Explorer
2012-03-13 21:37:50 ----D---- C:\WINDOWS\WBEM
2012-03-13 21:37:50 ----D---- C:\WINDOWS\system32\en-US
2012-03-13 21:37:46 ----D---- C:\WINDOWS\Media
2012-03-13 21:21:34 ----D---- C:\WINDOWS\ie8updates
2012-03-13 21:15:14 ----D---- C:\Program Files\Outlook Express
2012-03-13 18:33:33 ----D---- C:\WINDOWS\system32\inetsrv
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2011-03-04 45648]
R0 snapman380;Acronis Snapshots Manager (Build 380); C:\WINDOWS\system32\DRIVERS\snman380.sys [2010-02-26 134272]
R0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2011-12-04 428088]
R0 tdrpman174;Acronis Try&Decide and Restore Points filter (build 174); C:\WINDOWS\system32\DRIVERS\tdrpm174.sys [2010-02-26 971552]
R0 timounter;Acronis True Image Backup Archive Explorer; C:\WINDOWS\system32\DRIVERS\timntr.sys [2010-02-26 540000]
R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2012-03-07 24920]
R1 AswRdr;aswRdr; C:\WINDOWS\system32\drivers\AswRdr.sys [2012-03-07 35672]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2012-03-07 337880]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2012-03-07 53848]
R1 EIO_XP;EIO_XP; \??\C:\WINDOWS\system32\drivers\EIO_XP.sys []
R1 intelppm;Intel Processor Driver; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 36352]
R1 kbdhid;Keyboard HID Driver; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R1 VBoxDrv;VirtualBox Service; C:\WINDOWS\system32\DRIVERS\VBoxDrv.sys [2010-10-08 143184]
R1 VBoxUSBMon;VirtualBox USB Monitor Driver; C:\WINDOWS\system32\DRIVERS\VBoxUSBMon.sys [2010-10-08 41936]
R1 WS2IFSL;Windows Socket 2.0 Non-IFS Service Provider Support Environment; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2008-04-14 12032]
R2 Aspi32;Aspi32; C:\WINDOWS\system32\drivers\Aspi32.sys [2006-02-25 16877]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\drivers\aswFsBlk.sys [2012-03-07 20696]
R2 aswMon2;aswMon2; C:\WINDOWS\system32\drivers\aswMon2.sys [2012-03-07 95704]
R2 rspndr;Link-Layer Topology Discovery Responder; C:\WINDOWS\system32\DRIVERS\rspndr.sys [2008-05-29 62848]
R2 tifsfilter;Acronis True Image FS Filter; C:\WINDOWS\system32\DRIVERS\tifsfilt.sys [2010-02-26 44704]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-14 144384]
R3 hidusb;Microsoft HID Class Driver; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2009-01-20 5027840]
R3 LHidFilt;Logitech SetPoint KMDF HID Filter Driver; C:\WINDOWS\system32\DRIVERS\LHidFilt.Sys [2008-02-29 35344]
R3 LUsbFilt;Logitech SetPoint KMDF USB Filter; C:\WINDOWS\System32\Drivers\LUsbFilt.Sys [2008-02-29 28944]
R3 LVUSBSta;Logitech USB Monitor Filter; C:\WINDOWS\system32\drivers\lvusbsta.sys [2005-05-27 22016]
R3 mcdbus;Driver for MagicISO SCSI Host Controller; C:\WINDOWS\system32\DRIVERS\mcdbus.sys [2009-02-24 116736]
R3 mouhid;Mouse HID Driver; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-17 12160]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2011-10-08 12791488]
R3 QCMerced;Logitech QuickCam Communicate; C:\WINDOWS\system32\DRIVERS\LVCM.sys [2005-05-27 1317152]
R3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys [2008-10-30 117888]
R3 usbaudio;USB Audio Driver (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-14 60032]
R3 usbccgp;Microsoft USB Generic Parent Driver; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-14 32128]
R3 usbuhci;Microsoft USB Universal Host Controller Miniport Driver; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
R3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter; C:\WINDOWS\system32\DRIVERS\VBoxNetAdp.sys [2010-10-08 100560]
R3 Wdf01000;Wdf01000; C:\WINDOWS\system32\DRIVERS\Wdf01000.sys [2008-03-27 503008]
S1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2012-03-07 612184]
S3 CCDECODE;Closed Caption Decoder; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-14 17024]
S3 ggflt;SEMC USB Flash Driver Filter; C:\WINDOWS\system32\DRIVERS\ggflt.sys [2011-12-24 13224]
S3 ggsemc;SEMC USB Flash Driver; C:\WINDOWS\system32\DRIVERS\ggsemc.sys [2011-12-24 25512]
S3 L8042Kbd;Logitech SetPoint Keyboard Driver; C:\WINDOWS\system32\DRIVERS\L8042Kbd.sys [2008-02-29 20240]
S3 L8042mou;SetPoint PS/2 Mouse Filter Driver; C:\WINDOWS\system32\DRIVERS\L8042mou.Sys [2008-02-29 63120]
S3 LMouKE;SetPoint Mouse Filter Driver; C:\WINDOWS\system32\DRIVERS\LMouKE.Sys [2008-02-29 79120]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-14 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-14 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-14 10880]
S3 s0016bus;Sony Ericsson Device 0016 driver (WDM); C:\WINDOWS\system32\DRIVERS\s0016bus.sys [2008-05-16 89256]
S3 s0016mdfl;Sony Ericsson Device 0016 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\s0016mdfl.sys [2008-05-16 15016]
S3 s0016mdm;Sony Ericsson Device 0016 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\s0016mdm.sys [2008-05-16 120744]
S3 s0016mgmt;Sony Ericsson Device 0016 USB WMC Device Management Drivers (WDM); C:\WINDOWS\system32\DRIVERS\s0016mgmt.sys [2008-05-16 114216]
S3 s0016nd5;Sony Ericsson Device 0016 USB Ethernet Emulation SEMC0016 (NDIS); C:\WINDOWS\system32\DRIVERS\s0016nd5.sys [2008-05-16 25512]
S3 s0016obex;Sony Ericsson Device 0016 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\s0016obex.sys [2008-05-16 110632]
S3 s0016unic;Sony Ericsson Device 0016 USB Ethernet Emulation SEMC0016 (WDM); C:\WINDOWS\system32\DRIVERS\s0016unic.sys [2008-05-16 115752]
S3 s1018bus;Sony Ericsson Device 1018 driver (WDM); C:\WINDOWS\system32\DRIVERS\s1018bus.sys [2009-03-25 86824]
S3 s1018mdfl;Sony Ericsson Device 1018 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\s1018mdfl.sys [2009-03-25 15016]
S3 s1018mdm;Sony Ericsson Device 1018 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\s1018mdm.sys [2009-03-25 114728]
S3 s1018mgmt;Sony Ericsson Device 1018 USB WMC Device Management Drivers (WDM); C:\WINDOWS\system32\DRIVERS\s1018mgmt.sys [2009-03-25 106208]
S3 s1018nd5;Sony Ericsson Device 1018 USB Ethernet Emulation (NDIS); C:\WINDOWS\system32\DRIVERS\s1018nd5.sys [2009-03-25 26024]
S3 s1018obex;Sony Ericsson Device 1018 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\s1018obex.sys [2009-03-25 104744]
S3 s1018unic;Sony Ericsson Device 1018 USB Ethernet Emulation (WDM); C:\WINDOWS\system32\DRIVERS\s1018unic.sys [2009-03-25 109864]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-14 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-14 15232]
S3 usb_rndisx;USB RNDIS Adapter; C:\WINDOWS\system32\DRIVERS\usb8023x.sys [2008-04-14 12800]
S3 usbscan;USB Scanner Driver; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-14 15104]
S3 usbstor;USB Mass Storage Driver; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 VBoxNetFlt;VBoxNetFlt Service; C:\WINDOWS\system32\DRIVERS\VBoxNetFlt.sys [2010-10-08 111568]
S3 VM650FVM11;UMAX AstraSlim Scanner ProdID x0104; C:\WINDOWS\System32\Drivers\USB650C.sys [2001-05-24 10830]
S3 WinUSB;Sony Ericsson sa0102 ADB Interface; C:\WINDOWS\system32\DRIVERS\WinUSB.sys []
S3 WpdUsb;WpdUsb; C:\WINDOWS\System32\Drivers\wpdusb.sys [2009-01-30 38528]
S3 WsAudio_DeviceS(1);WsAudio_DeviceS(1); C:\WINDOWS\system32\drivers\WsAudio_DeviceS(1).sys [2010-12-24 25704]
S3 WsAudio_DeviceS(2);WsAudio_DeviceS(2); C:\WINDOWS\system32\drivers\WsAudio_DeviceS(2).sys [2010-12-24 25704]
S3 WsAudio_DeviceS(3);WsAudio_DeviceS(3); C:\WINDOWS\system32\drivers\WsAudio_DeviceS(3).sys [2010-12-24 25704]
S3 WsAudio_DeviceS(4);WsAudio_DeviceS(4); C:\WINDOWS\system32\drivers\WsAudio_DeviceS(4).sys [2010-12-24 25704]
S3 WsAudio_DeviceS(5);WsAudio_DeviceS(5); C:\WINDOWS\system32\drivers\WsAudio_DeviceS(5).sys [2010-12-24 25704]
S3 WSTCODEC;World Standard Teletext Codec; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-14 19200]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2012-03-07 44768]
R2 NVSvc;NVIDIA Driver Helper Service; C:\WINDOWS\system32\nvsvc32.exe [2011-10-08 298304]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2009-08-18 1529728]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2012-02-29 158856]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 Sony PC Companion;Sony PC Companion; C:\Program Files\Sony\Sony PC Companion\PCCService.exe [2012-01-18 155320]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]
S4 AcrSch2Svc;Acronis Scheduler2 Service; C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe [2008-12-16 554264]
S4 AntiVirUpgradeService;Avira Upgrade Service; C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\AVSETUP_4cb60f4f\basic\avupgsvc.exe /TEMPSTART:C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\AVSETUP_4cb60f4f\basic\setup.exe /NOTEMPCLEANUP /CROSSUPGRADE []
S4 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S4 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S4 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S4 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2011-04-10 153376]
S4 LBTServ;Logitech Bluetooth Service; C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe [2008-05-02 121360]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
S4 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe [2007-09-20 382248]
S4 WMPNetworkSvc;Windows Media Player Network Sharing Service; C:\Program Files\Windows Media Player\WMPNetwk.exe [2009-01-30 913408]
-----------------EOF-----------------
Pár stránok nejde načítať dlhý ping. inak všetko v poriadku. Vďaka
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
preventívna kontrola po dlhom čase RSIT
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: preventívna kontrola po dlhom čase RSIT
Zdravim 
Na logu se pracuje, bude to nejakou dobu trvat
Na logu se pracuje, bude to nejakou dobu trvat
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: preventívna kontrola po dlhom čase RSIT
Jestli bude Avast rvat, ze to chce otevrit v sandboxu, nedovolte to! Vyberte moznost Otevrit normalne
Stahnete OTM http://oldtimer.geekstogo.com/OTM.exe , ulozte nejlepe na plochu a spustteDo leveho okna zkopirujte tento skript (vcetne te dvojtecky pred slovem files)
Kód: Vybrat vše
:files
%windir%\system32\*.tmp.dll /s
%windir%\system32\SET*.tmp /s
%windir%\*.tmp
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1123561945-1364589140-725345543-500Core1cd099f4a3887e2.job
:reg
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NvMediaCenter"=-
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSC]
:services
SkypeUpdate
:commands
[RESETHOSTS]
[Purity]
[EMPTYTEMP]
[EMPTYFLASH]Po restartu sem dejte log, ktery bude zde C:\_OTM\MovedFiles\
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: preventívna kontrola po dlhom čase RSIT
tak tu je Log z OTM:
All processes killed
========== FILES ==========
File/Folder C:\WINDOWS\system32\*.tmp.dll not found.
File/Folder C:\WINDOWS\system32\SET*.tmp not found.
File/Folder C:\WINDOWS\*.tmp not found.
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1123561945-1364589140-725345543-500Core1cd099f4a3887e2.job moved successfully.
========== REGISTRY ==========
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\NvMediaCenter deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSC\ deleted successfully.
========== SERVICES/DRIVERS ==========
Service SkypeUpdate stopped successfully!
Service SkypeUpdate deleted successfully!
========== COMMANDS ==========
C:\WINDOWS\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully
[EMPTYTEMP]
User: Administrator
->Temp folder emptied: 546948 bytes
->Temporary Internet Files folder emptied: 193719 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 6860798 bytes
->Google Chrome cache emptied: 9748559 bytes
->Flash cache emptied: 470 bytes
User: All Users
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: LocalService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 0 bytes
Total Files Cleaned = 17,00 mb
[EMPTYFLASH]
User: Administrator
->Flash cache emptied: 0 bytes
User: All Users
User: Default User
User: LocalService
User: NetworkService
Total Flash Files Cleaned = 0,00 mb
OTM by OldTimer - Version 3.1.19.0 log created on 04112012_202232
Files moved on Reboot...
File C:\Documents and Settings\Administrator\Local Settings\Temp\[Torrentreactor.to] - Santana - Guitar Heaven The Greatest Guitar Classics Of All Time.torrent not found!
File C:\Documents and Settings\Administrator\Local Settings\Temp\[Torrentreactor.to] - Santana-Guitar Heaven The Greatest Guitar Classics of All Time 2010 MP3 320kbps.torrent not found!
File C:\Documents and Settings\Administrator\Local Settings\Temp\[Torrentreactor.to] - Santana.2010.Guitar.Heaven.The.Greatest.Guitar.Classics.of.All.Time IDN CREW.torrent not found!
File C:\Documents and Settings\Administrator\Local Settings\Temp\[Torrentreactor.to] - Santana.Guitar Heaven The Greatest Guitar Classics Of All T.torrent not found!
File C:\WINDOWS\temp\_avast_\Webshlock.txt not found!
Registry entries deleted on Reboot...
All processes killed
========== FILES ==========
File/Folder C:\WINDOWS\system32\*.tmp.dll not found.
File/Folder C:\WINDOWS\system32\SET*.tmp not found.
File/Folder C:\WINDOWS\*.tmp not found.
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1123561945-1364589140-725345543-500Core1cd099f4a3887e2.job moved successfully.
========== REGISTRY ==========
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\NvMediaCenter deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSC\ deleted successfully.
========== SERVICES/DRIVERS ==========
Service SkypeUpdate stopped successfully!
Service SkypeUpdate deleted successfully!
========== COMMANDS ==========
C:\WINDOWS\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully
[EMPTYTEMP]
User: Administrator
->Temp folder emptied: 546948 bytes
->Temporary Internet Files folder emptied: 193719 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 6860798 bytes
->Google Chrome cache emptied: 9748559 bytes
->Flash cache emptied: 470 bytes
User: All Users
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: LocalService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 0 bytes
Total Files Cleaned = 17,00 mb
[EMPTYFLASH]
User: Administrator
->Flash cache emptied: 0 bytes
User: All Users
User: Default User
User: LocalService
User: NetworkService
Total Flash Files Cleaned = 0,00 mb
OTM by OldTimer - Version 3.1.19.0 log created on 04112012_202232
Files moved on Reboot...
File C:\Documents and Settings\Administrator\Local Settings\Temp\[Torrentreactor.to] - Santana - Guitar Heaven The Greatest Guitar Classics Of All Time.torrent not found!
File C:\Documents and Settings\Administrator\Local Settings\Temp\[Torrentreactor.to] - Santana-Guitar Heaven The Greatest Guitar Classics of All Time 2010 MP3 320kbps.torrent not found!
File C:\Documents and Settings\Administrator\Local Settings\Temp\[Torrentreactor.to] - Santana.2010.Guitar.Heaven.The.Greatest.Guitar.Classics.of.All.Time IDN CREW.torrent not found!
File C:\Documents and Settings\Administrator\Local Settings\Temp\[Torrentreactor.to] - Santana.Guitar Heaven The Greatest Guitar Classics Of All T.torrent not found!
File C:\WINDOWS\temp\_avast_\Webshlock.txt not found!
Registry entries deleted on Reboot...
Re: preventívna kontrola po dlhom čase RSIT
OTM provedlo co melo. Jednalo se jen o drobnosti, jinak vypada log v poradku. Asi se nic nezmenilo a ty stranky porad nejdou, nebo ano?
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: preventívna kontrola po dlhom čase RSIT
Nejdu ani na PC ani cez wifi na Androide. Tak to bude asi providerom, alebo preťažené servery. Ešte raz diky
Re: preventívna kontrola po dlhom čase RSIT
Mrkneme se radeji podrobneji.
Jestli bude Avast rvat, ze to chce otevrit v sandboxu, nedovolte to! Vyberte moznost Otevrit normalne
Stahnete OTL http://oldtimer.geekstogo.com/OTL.exe a ulozte na plochu a spustte.
Oznacte polozky (dejte tam zatrzitka) Pro všechny uživatele, Kontrola na havěť "LOP" a Kontrola na havěť "Purity"
Do spodniho okna vlozte nasledujici text
Kliknete na Prohledat
Po skenu se vytvori dva logy (OTL.Txt a Extras.txt), oba sem vlozte (kdyz budou dlouhe, rozdelte je do vice prispevku).
Potom
Udelejte uplnou kontrolu s MBAM http://forum.viry.cz/viewtopic.php?f=29&t=115222 a pokud neco najde, dejte sem vysledky. Predem nic nemazte, miva obcas falesne detekce
Jestli bude Avast rvat, ze to chce otevrit v sandboxu, nedovolte to! Vyberte moznost Otevrit normalne Stahnete OTL http://oldtimer.geekstogo.com/OTL.exe a ulozte na plochu a spustte.Oznacte polozky (dejte tam zatrzitka) Pro všechny uživatele, Kontrola na havěť "LOP" a Kontrola na havěť "Purity"
Do spodniho okna vlozte nasledujici text
Kód: Vybrat vše
CREATERESTOREPOINT
netsvcs
drivers32
savembr:0
/md5start
adp3132.sys
AGP440.sys
ahcix86.sys
ahcix86s.sys
atapi.sys
autochk.exe
cdrom.sys
cngaudit.dll
cryptsvc.dll
eNetHook.dll
eventlog.dll
explorer.exe
hal.dll
Changer.sys
iaStor.sys
iastorv.sys
IdeChnDr.sys
isapnp.sys
JakNDis.sys
KR10N.sys
logevent.dll
lsass.exe
mv61xx.sys
ndis.sys
netlogon.dll
ntelogon.dll
nvata.sys
nvatabus.sys
nvgts.sys
nvraid.sys
nvrd32.sys
nvstor.sys
nvstor32.sys
scecli.dll
sceclt.dll
smss.exe
svchost.exe
symmpi.sys
tcpip.sys
userinit.exe
vaxscsi.sys
viamraid.sys
viasraid.sys
ViPrt.sys
winlogon.exe
ws2_32.dll
/md5stop
%systemroot%*.* /U /s
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
%SYSTEMDRIVE%\*.exe
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s
reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c
type c:\boot.ini >> test.txt /c
%SystemDrive%\PhysicalMBR.bin /md5
*crack* /s
*keygen* /s
*loader* /sPo skenu se vytvori dva logy (OTL.Txt a Extras.txt), oba sem vlozte (kdyz budou dlouhe, rozdelte je do vice prispevku).
Potom
Udelejte uplnou kontrolu s MBAM http://forum.viry.cz/viewtopic.php?f=29&t=115222 a pokud neco najde, dejte sem vysledky. Predem nic nemazte, miva obcas falesne detekcePokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: preventívna kontrola po dlhom čase RSIT
OTLtxt prvá časť:
TL logfile created on: 11.4.2012 20:48:28 - Run 1
OTL by OldTimer - Version 3.2.39.2 Folder = C:\Documents and Settings\Administrator\Desktop
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 0000041B | Country: Slovakia | Language: SKY | Date Format: d.M.yyyy
3,00 Gb Total Physical Memory | 2,36 Gb Available Physical Memory | 78,78% Memory free
4,84 Gb Paging File | 4,38 Gb Available in Paging File | 90,54% Paging File free
Paging file location(s): D:\pagefile.sys 2046 4092 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 9,67 Gb Total Space | 2,00 Gb Free Space | 20,64% Space Free | Partition Type: NTFS
Drive D: | 223,11 Gb Total Space | 21,75 Gb Free Space | 9,75% Space Free | Partition Type: NTFS
Computer Name: MAJO | User Name: Administrator | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2012.04.11 20:44:23 | 000,593,920 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Administrator\Desktop\OTL.exe
PRC - [2012.03.15 11:31:41 | 000,924,600 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2012.03.07 01:15:17 | 004,241,512 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
PRC - [2012.03.07 01:15:14 | 000,044,768 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2009.02.23 20:43:12 | 000,576,000 | ---- | M] (MagicISO, Inc.) -- C:\Program Files\MagicDisc\MagicDisc.exe
PRC - [2008.07.03 11:38:24 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2008.05.02 03:44:08 | 000,805,392 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Logitech\SetPoint\SetPoint.exe
PRC - [2008.05.02 03:40:56 | 000,076,304 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.exe
PRC - [2005.07.19 18:32:18 | 000,221,184 | ---- | M] (Logitech Inc.) -- C:\WINDOWS\system32\LVCOMSX.EXE
========== Modules (No Company Name) ==========
MOD - [2012.04.11 08:02:40 | 001,755,136 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\defs\12041100\algo.dll
MOD - [2012.03.15 11:31:41 | 001,969,080 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll
MOD - [2012.03.13 17:16:51 | 008,527,520 | ---- | M] () -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
MOD - [2008.04.14 12:00:00 | 000,059,904 | ---- | M] () -- C:\WINDOWS\system32\devenum.dll
MOD - [2008.04.14 12:00:00 | 000,014,336 | ---- | M] () -- C:\WINDOWS\system32\msdmo.dll
========== Win32 Services (SafeList) ==========
SRV - File not found [Disabled | Stopped] -- C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\AVSETUP_4cb60f4f\basic\avupgsvc.exe /TEMPSTART:C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\AVSETUP_4cb60f4f\basic\setup.exe /NOTEMPCLEANUP /CROSSUPGRADE -- (AntiVirUpgradeService)
SRV - [2012.03.07 01:15:14 | 000,044,768 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV - [2012.01.18 13:38:28 | 000,155,320 | ---- | M] (Avanquest Software) [On_Demand | Stopped] -- C:\Program Files\Sony\Sony PC Companion\PCCService.exe -- (Sony PC Companion)
SRV - [2008.12.16 16:03:40 | 000,554,264 | ---- | M] (Acronis) [Disabled | Stopped] -- C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe -- (AcrSch2Svc)
SRV - [2008.05.02 03:42:06 | 000,121,360 | ---- | M] (Logitech, Inc.) [Disabled | Stopped] -- C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe -- (LBTServ)
========== Driver Services (SafeList) ==========
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\WinUSB.sys -- (WinUSB)
DRV - [2012.03.07 01:03:51 | 000,612,184 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\WINDOWS\System32\drivers\aswSnx.sys -- (aswSnx)
DRV - [2012.03.07 01:03:38 | 000,337,880 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2012.03.07 01:02:00 | 000,035,672 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (AswRdr)
DRV - [2012.03.07 01:01:53 | 000,053,848 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2012.03.07 01:01:39 | 000,095,704 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2)
DRV - [2012.03.07 01:01:30 | 000,020,696 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2012.03.07 00:58:29 | 000,024,920 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4)
DRV - [2011.12.24 23:26:38 | 000,025,512 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ggsemc.sys -- (ggsemc)
DRV - [2011.12.24 23:26:38 | 000,013,224 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ggflt.sys -- (ggflt)
DRV - [2011.12.04 19:52:11 | 000,428,088 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\sptd.sys -- (sptd)
DRV - [2010.12.24 16:27:44 | 000,025,704 | ---- | M] (Wondershare) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\WsAudio_DeviceS(5).sys -- (WsAudio_DeviceS(5)) WsAudio_DeviceS(5)
DRV - [2010.12.24 16:27:44 | 000,025,704 | ---- | M] (Wondershare) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\WsAudio_DeviceS(4).sys -- (WsAudio_DeviceS(4)) WsAudio_DeviceS(4)
DRV - [2010.12.24 16:27:44 | 000,025,704 | ---- | M] (Wondershare) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\WsAudio_DeviceS(3).sys -- (WsAudio_DeviceS(3)) WsAudio_DeviceS(3)
DRV - [2010.12.24 16:27:44 | 000,025,704 | ---- | M] (Wondershare) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\WsAudio_DeviceS(2).sys -- (WsAudio_DeviceS(2)) WsAudio_DeviceS(2)
DRV - [2010.12.24 16:27:44 | 000,025,704 | ---- | M] (Wondershare) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\WsAudio_DeviceS(1).sys -- (WsAudio_DeviceS(1)) WsAudio_DeviceS(1)
DRV - [2010.10.08 15:57:54 | 000,143,184 | ---- | M] (Oracle Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\VBoxDrv.sys -- (VBoxDrv)
DRV - [2010.10.08 15:57:54 | 000,111,568 | ---- | M] (Oracle Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\VBoxNetFlt.sys -- (VBoxNetFlt)
DRV - [2010.10.08 15:57:54 | 000,100,560 | ---- | M] (Oracle Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\VBoxNetAdp.sys -- (VBoxNetAdp)
DRV - [2010.10.08 15:57:54 | 000,041,936 | ---- | M] (Oracle Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\VBoxUSBMon.sys -- (VBoxUSBMon)
DRV - [2010.02.26 13:48:12 | 000,971,552 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\tdrpm174.sys -- (tdrpman174) Acronis Try&Decide and Restore Points filter (build 174)
DRV - [2010.02.26 13:48:10 | 000,540,000 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\timntr.sys -- (timounter)
DRV - [2010.02.26 13:48:10 | 000,044,704 | ---- | M] (Acronis) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\tifsfilt.sys -- (tifsfilter)
DRV - [2010.02.26 13:48:08 | 000,134,272 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\snman380.sys -- (snapman380) Acronis Snapshots Manager (Build 380)
DRV - [2009.07.30 12:15:54 | 000,014,336 | ---- | M] (ASUSTeK Computer Inc.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\EIO_XP.sys -- (EIO_XP)
DRV - [2009.03.25 17:48:00 | 000,114,728 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s1018mdm.sys -- (s1018mdm)
DRV - [2009.03.25 17:48:00 | 000,109,864 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s1018unic.sys -- (s1018unic) Sony Ericsson Device 1018 USB Ethernet Emulation (WDM)
DRV - [2009.03.25 17:48:00 | 000,106,208 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s1018mgmt.sys -- (s1018mgmt) Sony Ericsson Device 1018 USB WMC Device Management Drivers (WDM)
DRV - [2009.03.25 17:48:00 | 000,104,744 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s1018obex.sys -- (s1018obex)
DRV - [2009.03.25 17:48:00 | 000,086,824 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s1018bus.sys -- (s1018bus) Sony Ericsson Device 1018 driver (WDM)
DRV - [2009.03.25 17:48:00 | 000,026,024 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s1018nd5.sys -- (s1018nd5) Sony Ericsson Device 1018 USB Ethernet Emulation (NDIS)
DRV - [2009.03.25 17:48:00 | 000,015,016 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s1018mdfl.sys -- (s1018mdfl)
DRV - [2009.02.24 19:42:14 | 000,116,736 | ---- | M] (MagicISO, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mcdbus.sys -- (mcdbus)
DRV - [2009.01.20 12:53:06 | 005,027,840 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2008.10.30 15:14:20 | 000,117,888 | R--- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtenicxp.sys -- (RTLE8023xp)
DRV - [2008.05.16 12:33:14 | 000,115,752 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s0016unic.sys -- (s0016unic) Sony Ericsson Device 0016 USB Ethernet Emulation SEMC0016 (WDM)
DRV - [2008.05.16 12:33:14 | 000,025,512 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s0016nd5.sys -- (s0016nd5) Sony Ericsson Device 0016 USB Ethernet Emulation SEMC0016 (NDIS)
DRV - [2008.05.16 12:33:14 | 000,015,016 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s0016mdfl.sys -- (s0016mdfl)
DRV - [2008.05.16 12:33:12 | 000,120,744 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s0016mdm.sys -- (s0016mdm)
DRV - [2008.05.16 12:33:12 | 000,114,216 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s0016mgmt.sys -- (s0016mgmt) Sony Ericsson Device 0016 USB WMC Device Management Drivers (WDM)
DRV - [2008.05.16 12:33:12 | 000,110,632 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s0016obex.sys -- (s0016obex)
DRV - [2008.05.16 12:33:12 | 000,089,256 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s0016bus.sys -- (s0016bus) Sony Ericsson Device 0016 driver (WDM)
DRV - [2008.02.29 04:13:46 | 000,028,944 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LUsbFilt.sys -- (LUsbFilt)
DRV - [2008.02.29 04:13:36 | 000,079,120 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\LMouKE.Sys -- (LMouKE)
DRV - [2008.02.29 04:13:16 | 000,035,344 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LHidFilt.Sys -- (LHidFilt)
DRV - [2008.02.29 04:12:56 | 000,063,120 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\L8042mou.Sys -- (L8042mou)
DRV - [2008.02.29 04:12:48 | 000,020,240 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\L8042Kbd.sys -- (L8042Kbd)
DRV - [2006.02.25 16:13:06 | 000,016,877 | ---- | M] (Adaptec) [Kernel | Auto | Running] -- C:\WINDOWS\System32\drivers\aspi32.sys -- (Aspi32)
DRV - [2005.05.27 11:32:52 | 001,317,152 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\lvcm.sys -- (QCMerced)
DRV - [2005.05.27 11:31:28 | 000,022,016 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LVUSBSta.sys -- (LVUSBSta)
DRV - [2001.05.24 04:00:04 | 000,010,830 | R--- | M] (Windows (R) 2000 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\USB650C.SYS -- (VM650FVM11)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={ ... rer:source?}
IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
IE - HKU\S-1-5-21-1123561945-1364589140-725345543-500\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
IE - HKU\S-1-5-21-1123561945-1364589140-725345543-500\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-21-1123561945-1364589140-725345543-500\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={ ... orm=IE8SRC
IE - HKU\S-1-5-21-1123561945-1364589140-725345543-500\..\SearchScopes\{11E8D818-60F9-43E8-B350-C510114C4462}: "URL" = http://www.google.com/search?q={searchT ... utEncoding?}
IE - HKU\S-1-5-21-1123561945-1364589140-725345543-500\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.conduit.com/ResultsExt.as ... =CT2611275
IE - HKU\S-1-5-21-1123561945-1364589140-725345543-500\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - prefs.js..browser.startup.homepage: "http://mail.zoznam.sk/"
FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.3.5
FF - prefs.js..extensions.enabledItems: cwwb@dietrich.cx:1.0.3
FF - prefs.js..extensions.enabledItems: {b9db16a4-6edc-47ec-a1f4-b86292ed211d}:4.8.6
FF - prefs.js..extensions.enabledItems: {3d7eb24f-2740-49df-8937-200b1cc08f8a}:1.5.14.2
FF - prefs.js..extensions.enabledItems: {73a6fe31-595d-460b-a920-fcc0f8843232}:2.1.0.1
FF - prefs.js..extensions.enabledItems: {46551EC9-40F0-4e47-8E18-8E5CF550CFB8}:1.1.1
FF - user.js - File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@checkpoint.com/FFApi: C:\Program Files\CheckPoint\ZAForceField\TrustChecker\bin\npFFApi.dll File not found
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\4.1.10111.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@playstation.com/PsndlCheck,version=1.00: File not found
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.12.450: C:\Program Files\K-Lite Codec Pack\Real\browser\plugins\nppl3260.dll File not found
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.448: C:\Program Files\K-Lite Codec Pack\Real\browser\plugins\nprpjplug.dll File not found
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=8: C:\Program Files\Google\Update\1.2.183.39\npGoogleOneClick8.dll File not found
FF - HKCU\Software\MozillaPlugins\@talk.google.com/GoogleTalkPlugin: C:\Documents and Settings\Administrator\Application Data\Mozilla\plugins\npgoogletalk.dll (Google)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/O3DPlugin: C:\Documents and Settings\Administrator\Application Data\Mozilla\plugins\npgtpo3dautoplugin.dll ()
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\AVAST Software\Avast\WebRep\FF [2012.04.11 12:57:31 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 11.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012.03.15 11:31:41 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 11.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011.07.18 17:25:21 | 000,000,000 | ---D | M]
[2010.02.23 18:21:07 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Extensions
[2012.04.02 20:54:12 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\a2alk48d.default\extensions
[2012.03.30 22:47:52 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\a2alk48d.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
[2010.10.20 20:58:13 | 000,002,059 | ---- | M] () -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\a2alk48d.default\searchplugins\daemon-search.xml
[2012.04.09 21:26:41 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
() (No name found) -- C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\A2ALK48D.DEFAULT\EXTENSIONS\{3D7EB24F-2740-49DF-8937-200B1CC08F8A}.XPI
() (No name found) -- C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\A2ALK48D.DEFAULT\EXTENSIONS\{73A6FE31-595D-460B-A920-FCC0F8843232}.XPI
() (No name found) -- C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\A2ALK48D.DEFAULT\EXTENSIONS\{D10D0BF8-F5B5-C8B4-A8B2-2B9879E08C5D}.XPI
() (No name found) -- C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\A2ALK48D.DEFAULT\EXTENSIONS\CWWB@DIETRICH.CX.XPI
[2012.03.15 11:31:41 | 000,097,208 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2011.04.10 12:50:06 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2012.02.03 11:55:15 | 000,001,583 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\atlas-sk.xml
[2012.02.03 11:55:15 | 000,001,380 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\azet-sk.xml
[2012.02.03 11:55:15 | 000,001,479 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\dunaj-sk.xml
[2012.02.03 11:55:15 | 000,001,473 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\slovnik-sk.xml
[2012.02.03 11:55:15 | 000,001,104 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-sk.xml
[2012.02.03 11:55:15 | 000,000,830 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\zoznam-sk.xml
========== Chrome ==========
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q={searchTerms}
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\Application\17.0.963.83\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\Application\17.0.963.83\pdf.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\Application\17.0.963.83\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
CHR - plugin: Google Talk Plugin (Enabled) = C:\Documents and Settings\Administrator\Application Data\Mozilla\plugins\npgoogletalk.dll
CHR - plugin: Google Talk Plugin Video Accelerator (Enabled) = C:\Documents and Settings\Administrator\Application Data\Mozilla\plugins\npgtpo3dautoplugin.dll
CHR - plugin: Java Deployment Toolkit 6.0.240.7 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll
CHR - plugin: Java(TM) Platform SE 6 U24 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: Microsoft\u00AE Windows Media Player Firefox Plugin (Enabled) = C:\Program Files\Mozilla Firefox\plugins\np-mswmp.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll
CHR - plugin: Google Update (Enabled) = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Update\1.3.21.99\npGoogleUpdate3.dll
CHR - plugin: Silverlight Plug-In (Enabled) = C:\Program Files\Microsoft Silverlight\4.1.10111.0\npctrl.dll
CHR - plugin: Windows Presentation Foundation (Enabled) = C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
CHR - plugin: Default Plug-in (Enabled) = default_plugin
CHR - Extension: YouTube = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\
CHR - Extension: H\u013Eada\u0165 v Google = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\
CHR - Extension: avast! WebRep = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\7.0.1426_0\
CHR - Extension: Gmail = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\
O1 HOSTS File: ([2012.04.11 20:22:34 | 000,000,098 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKU\S-1-5-21-1123561945-1364589140-725345543-500\..\Toolbar\WebBrowser: (no name) - {32099AAC-C132-4136-9E9A-4E364A424E17} - No CLSID value found.
O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [Kernel and Hardware Abstraction Layer] C:\WINDOWS\KHALMNPR.Exe (Logitech, Inc.)
O4 - HKLM..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE (Logitech Inc.)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\Program Files\NVIDIA Corporation\nview\nwiz.exe ()
O4 - Startup: C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\MagicDisc.lnk = C:\Program Files\MagicDisc\MagicDisc.exe (MagicISO, Inc.)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe (Logitech, Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDesktopCleanupWizard = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableStatusMessages = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: VerboseStatus = 0
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 1
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 1
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 1
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1
O7 - HKU\S-1-5-21-1123561945-1364589140-725345543-500\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1123561945-1364589140-725345543-500\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1
O7 - HKU\S-1-5-21-1123561945-1364589140-725345543-500\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 1
O7 - HKU\S-1-5-21-1123561945-1364589140-725345543-500\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1
O7 - HKU\S-1-5-21-1123561945-1364589140-725345543-500\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1
O16 - DPF: {33564D57-0000-0010-8000-00AA00389B71} http://download.microsoft.com/download/ ... mv9VCM.CAB (Reg Error: Key error.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_24)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 172.20.71.8
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{E399171A-0022-4731-809C-8A0173DA1EA0}: DhcpNameServer = 172.20.71.8
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\LBTWlgn: DllName - (c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll) - c:\Program Files\Common Files\Logishrd\Bluetooth\LBTWLgn.dll (Logitech, Inc.)
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{0210ccc4-2ee1-11e1-9b9c-08002700d0a4}\Shell - "" = AutoRun
O33 - MountPoints2\{0210ccc4-2ee1-11e1-9b9c-08002700d0a4}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{0210ccc4-2ee1-11e1-9b9c-08002700d0a4}\Shell\AutoRun\command - "" = H:\Startme.exe
O33 - MountPoints2\{041ee640-4252-11e0-9c48-08002700d0a4}\Shell - "" = AutoRun
O33 - MountPoints2\{041ee640-4252-11e0-9c48-08002700d0a4}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{041ee640-4252-11e0-9c48-08002700d0a4}\Shell\AutoRun\command - "" = G:\BattleLosAngeles_Setup.exe
O33 - MountPoints2\{0c6fdf9a-45d4-11e0-9936-08002700d0a4}\Shell - "" = AutoRun
O33 - MountPoints2\{0c6fdf9a-45d4-11e0-9936-08002700d0a4}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{0c6fdf9a-45d4-11e0-9936-08002700d0a4}\Shell\AutoRun\command - "" = H:\MoWAS_Setup.exe
O33 - MountPoints2\{8fb9e032-22c8-11df-9d15-00241d88a58d}\Shell - "" = AutoRun
O33 - MountPoints2\{8fb9e032-22c8-11df-9d15-00241d88a58d}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{8fb9e032-22c8-11df-9d15-00241d88a58d}\Shell\AutoRun\command - "" = H:\Autorun.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
CREATERESTOREPOINT
Restore point Set: OTL Restore Point
TL logfile created on: 11.4.2012 20:48:28 - Run 1
OTL by OldTimer - Version 3.2.39.2 Folder = C:\Documents and Settings\Administrator\Desktop
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 0000041B | Country: Slovakia | Language: SKY | Date Format: d.M.yyyy
3,00 Gb Total Physical Memory | 2,36 Gb Available Physical Memory | 78,78% Memory free
4,84 Gb Paging File | 4,38 Gb Available in Paging File | 90,54% Paging File free
Paging file location(s): D:\pagefile.sys 2046 4092 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 9,67 Gb Total Space | 2,00 Gb Free Space | 20,64% Space Free | Partition Type: NTFS
Drive D: | 223,11 Gb Total Space | 21,75 Gb Free Space | 9,75% Space Free | Partition Type: NTFS
Computer Name: MAJO | User Name: Administrator | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2012.04.11 20:44:23 | 000,593,920 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Administrator\Desktop\OTL.exe
PRC - [2012.03.15 11:31:41 | 000,924,600 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2012.03.07 01:15:17 | 004,241,512 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
PRC - [2012.03.07 01:15:14 | 000,044,768 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2009.02.23 20:43:12 | 000,576,000 | ---- | M] (MagicISO, Inc.) -- C:\Program Files\MagicDisc\MagicDisc.exe
PRC - [2008.07.03 11:38:24 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2008.05.02 03:44:08 | 000,805,392 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Logitech\SetPoint\SetPoint.exe
PRC - [2008.05.02 03:40:56 | 000,076,304 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.exe
PRC - [2005.07.19 18:32:18 | 000,221,184 | ---- | M] (Logitech Inc.) -- C:\WINDOWS\system32\LVCOMSX.EXE
========== Modules (No Company Name) ==========
MOD - [2012.04.11 08:02:40 | 001,755,136 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\defs\12041100\algo.dll
MOD - [2012.03.15 11:31:41 | 001,969,080 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll
MOD - [2012.03.13 17:16:51 | 008,527,520 | ---- | M] () -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
MOD - [2008.04.14 12:00:00 | 000,059,904 | ---- | M] () -- C:\WINDOWS\system32\devenum.dll
MOD - [2008.04.14 12:00:00 | 000,014,336 | ---- | M] () -- C:\WINDOWS\system32\msdmo.dll
========== Win32 Services (SafeList) ==========
SRV - File not found [Disabled | Stopped] -- C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\AVSETUP_4cb60f4f\basic\avupgsvc.exe /TEMPSTART:C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\AVSETUP_4cb60f4f\basic\setup.exe /NOTEMPCLEANUP /CROSSUPGRADE -- (AntiVirUpgradeService)
SRV - [2012.03.07 01:15:14 | 000,044,768 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV - [2012.01.18 13:38:28 | 000,155,320 | ---- | M] (Avanquest Software) [On_Demand | Stopped] -- C:\Program Files\Sony\Sony PC Companion\PCCService.exe -- (Sony PC Companion)
SRV - [2008.12.16 16:03:40 | 000,554,264 | ---- | M] (Acronis) [Disabled | Stopped] -- C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe -- (AcrSch2Svc)
SRV - [2008.05.02 03:42:06 | 000,121,360 | ---- | M] (Logitech, Inc.) [Disabled | Stopped] -- C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe -- (LBTServ)
========== Driver Services (SafeList) ==========
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\WinUSB.sys -- (WinUSB)
DRV - [2012.03.07 01:03:51 | 000,612,184 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\WINDOWS\System32\drivers\aswSnx.sys -- (aswSnx)
DRV - [2012.03.07 01:03:38 | 000,337,880 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2012.03.07 01:02:00 | 000,035,672 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (AswRdr)
DRV - [2012.03.07 01:01:53 | 000,053,848 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2012.03.07 01:01:39 | 000,095,704 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2)
DRV - [2012.03.07 01:01:30 | 000,020,696 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2012.03.07 00:58:29 | 000,024,920 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4)
DRV - [2011.12.24 23:26:38 | 000,025,512 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ggsemc.sys -- (ggsemc)
DRV - [2011.12.24 23:26:38 | 000,013,224 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ggflt.sys -- (ggflt)
DRV - [2011.12.04 19:52:11 | 000,428,088 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\sptd.sys -- (sptd)
DRV - [2010.12.24 16:27:44 | 000,025,704 | ---- | M] (Wondershare) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\WsAudio_DeviceS(5).sys -- (WsAudio_DeviceS(5)) WsAudio_DeviceS(5)
DRV - [2010.12.24 16:27:44 | 000,025,704 | ---- | M] (Wondershare) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\WsAudio_DeviceS(4).sys -- (WsAudio_DeviceS(4)) WsAudio_DeviceS(4)
DRV - [2010.12.24 16:27:44 | 000,025,704 | ---- | M] (Wondershare) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\WsAudio_DeviceS(3).sys -- (WsAudio_DeviceS(3)) WsAudio_DeviceS(3)
DRV - [2010.12.24 16:27:44 | 000,025,704 | ---- | M] (Wondershare) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\WsAudio_DeviceS(2).sys -- (WsAudio_DeviceS(2)) WsAudio_DeviceS(2)
DRV - [2010.12.24 16:27:44 | 000,025,704 | ---- | M] (Wondershare) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\WsAudio_DeviceS(1).sys -- (WsAudio_DeviceS(1)) WsAudio_DeviceS(1)
DRV - [2010.10.08 15:57:54 | 000,143,184 | ---- | M] (Oracle Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\VBoxDrv.sys -- (VBoxDrv)
DRV - [2010.10.08 15:57:54 | 000,111,568 | ---- | M] (Oracle Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\VBoxNetFlt.sys -- (VBoxNetFlt)
DRV - [2010.10.08 15:57:54 | 000,100,560 | ---- | M] (Oracle Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\VBoxNetAdp.sys -- (VBoxNetAdp)
DRV - [2010.10.08 15:57:54 | 000,041,936 | ---- | M] (Oracle Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\VBoxUSBMon.sys -- (VBoxUSBMon)
DRV - [2010.02.26 13:48:12 | 000,971,552 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\tdrpm174.sys -- (tdrpman174) Acronis Try&Decide and Restore Points filter (build 174)
DRV - [2010.02.26 13:48:10 | 000,540,000 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\timntr.sys -- (timounter)
DRV - [2010.02.26 13:48:10 | 000,044,704 | ---- | M] (Acronis) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\tifsfilt.sys -- (tifsfilter)
DRV - [2010.02.26 13:48:08 | 000,134,272 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\snman380.sys -- (snapman380) Acronis Snapshots Manager (Build 380)
DRV - [2009.07.30 12:15:54 | 000,014,336 | ---- | M] (ASUSTeK Computer Inc.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\EIO_XP.sys -- (EIO_XP)
DRV - [2009.03.25 17:48:00 | 000,114,728 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s1018mdm.sys -- (s1018mdm)
DRV - [2009.03.25 17:48:00 | 000,109,864 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s1018unic.sys -- (s1018unic) Sony Ericsson Device 1018 USB Ethernet Emulation (WDM)
DRV - [2009.03.25 17:48:00 | 000,106,208 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s1018mgmt.sys -- (s1018mgmt) Sony Ericsson Device 1018 USB WMC Device Management Drivers (WDM)
DRV - [2009.03.25 17:48:00 | 000,104,744 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s1018obex.sys -- (s1018obex)
DRV - [2009.03.25 17:48:00 | 000,086,824 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s1018bus.sys -- (s1018bus) Sony Ericsson Device 1018 driver (WDM)
DRV - [2009.03.25 17:48:00 | 000,026,024 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s1018nd5.sys -- (s1018nd5) Sony Ericsson Device 1018 USB Ethernet Emulation (NDIS)
DRV - [2009.03.25 17:48:00 | 000,015,016 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s1018mdfl.sys -- (s1018mdfl)
DRV - [2009.02.24 19:42:14 | 000,116,736 | ---- | M] (MagicISO, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mcdbus.sys -- (mcdbus)
DRV - [2009.01.20 12:53:06 | 005,027,840 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2008.10.30 15:14:20 | 000,117,888 | R--- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtenicxp.sys -- (RTLE8023xp)
DRV - [2008.05.16 12:33:14 | 000,115,752 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s0016unic.sys -- (s0016unic) Sony Ericsson Device 0016 USB Ethernet Emulation SEMC0016 (WDM)
DRV - [2008.05.16 12:33:14 | 000,025,512 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s0016nd5.sys -- (s0016nd5) Sony Ericsson Device 0016 USB Ethernet Emulation SEMC0016 (NDIS)
DRV - [2008.05.16 12:33:14 | 000,015,016 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s0016mdfl.sys -- (s0016mdfl)
DRV - [2008.05.16 12:33:12 | 000,120,744 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s0016mdm.sys -- (s0016mdm)
DRV - [2008.05.16 12:33:12 | 000,114,216 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s0016mgmt.sys -- (s0016mgmt) Sony Ericsson Device 0016 USB WMC Device Management Drivers (WDM)
DRV - [2008.05.16 12:33:12 | 000,110,632 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s0016obex.sys -- (s0016obex)
DRV - [2008.05.16 12:33:12 | 000,089,256 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s0016bus.sys -- (s0016bus) Sony Ericsson Device 0016 driver (WDM)
DRV - [2008.02.29 04:13:46 | 000,028,944 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LUsbFilt.sys -- (LUsbFilt)
DRV - [2008.02.29 04:13:36 | 000,079,120 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\LMouKE.Sys -- (LMouKE)
DRV - [2008.02.29 04:13:16 | 000,035,344 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LHidFilt.Sys -- (LHidFilt)
DRV - [2008.02.29 04:12:56 | 000,063,120 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\L8042mou.Sys -- (L8042mou)
DRV - [2008.02.29 04:12:48 | 000,020,240 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\L8042Kbd.sys -- (L8042Kbd)
DRV - [2006.02.25 16:13:06 | 000,016,877 | ---- | M] (Adaptec) [Kernel | Auto | Running] -- C:\WINDOWS\System32\drivers\aspi32.sys -- (Aspi32)
DRV - [2005.05.27 11:32:52 | 001,317,152 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\lvcm.sys -- (QCMerced)
DRV - [2005.05.27 11:31:28 | 000,022,016 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LVUSBSta.sys -- (LVUSBSta)
DRV - [2001.05.24 04:00:04 | 000,010,830 | R--- | M] (Windows (R) 2000 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\USB650C.SYS -- (VM650FVM11)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={ ... rer:source?}
IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
IE - HKU\S-1-5-21-1123561945-1364589140-725345543-500\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
IE - HKU\S-1-5-21-1123561945-1364589140-725345543-500\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-21-1123561945-1364589140-725345543-500\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={ ... orm=IE8SRC
IE - HKU\S-1-5-21-1123561945-1364589140-725345543-500\..\SearchScopes\{11E8D818-60F9-43E8-B350-C510114C4462}: "URL" = http://www.google.com/search?q={searchT ... utEncoding?}
IE - HKU\S-1-5-21-1123561945-1364589140-725345543-500\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.conduit.com/ResultsExt.as ... =CT2611275
IE - HKU\S-1-5-21-1123561945-1364589140-725345543-500\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - prefs.js..browser.startup.homepage: "http://mail.zoznam.sk/"
FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.3.5
FF - prefs.js..extensions.enabledItems: cwwb@dietrich.cx:1.0.3
FF - prefs.js..extensions.enabledItems: {b9db16a4-6edc-47ec-a1f4-b86292ed211d}:4.8.6
FF - prefs.js..extensions.enabledItems: {3d7eb24f-2740-49df-8937-200b1cc08f8a}:1.5.14.2
FF - prefs.js..extensions.enabledItems: {73a6fe31-595d-460b-a920-fcc0f8843232}:2.1.0.1
FF - prefs.js..extensions.enabledItems: {46551EC9-40F0-4e47-8E18-8E5CF550CFB8}:1.1.1
FF - user.js - File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@checkpoint.com/FFApi: C:\Program Files\CheckPoint\ZAForceField\TrustChecker\bin\npFFApi.dll File not found
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\4.1.10111.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@playstation.com/PsndlCheck,version=1.00: File not found
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.12.450: C:\Program Files\K-Lite Codec Pack\Real\browser\plugins\nppl3260.dll File not found
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.448: C:\Program Files\K-Lite Codec Pack\Real\browser\plugins\nprpjplug.dll File not found
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=8: C:\Program Files\Google\Update\1.2.183.39\npGoogleOneClick8.dll File not found
FF - HKCU\Software\MozillaPlugins\@talk.google.com/GoogleTalkPlugin: C:\Documents and Settings\Administrator\Application Data\Mozilla\plugins\npgoogletalk.dll (Google)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/O3DPlugin: C:\Documents and Settings\Administrator\Application Data\Mozilla\plugins\npgtpo3dautoplugin.dll ()
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\AVAST Software\Avast\WebRep\FF [2012.04.11 12:57:31 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 11.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012.03.15 11:31:41 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 11.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011.07.18 17:25:21 | 000,000,000 | ---D | M]
[2010.02.23 18:21:07 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Extensions
[2012.04.02 20:54:12 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\a2alk48d.default\extensions
[2012.03.30 22:47:52 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\a2alk48d.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
[2010.10.20 20:58:13 | 000,002,059 | ---- | M] () -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\a2alk48d.default\searchplugins\daemon-search.xml
[2012.04.09 21:26:41 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
() (No name found) -- C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\A2ALK48D.DEFAULT\EXTENSIONS\{3D7EB24F-2740-49DF-8937-200B1CC08F8A}.XPI
() (No name found) -- C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\A2ALK48D.DEFAULT\EXTENSIONS\{73A6FE31-595D-460B-A920-FCC0F8843232}.XPI
() (No name found) -- C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\A2ALK48D.DEFAULT\EXTENSIONS\{D10D0BF8-F5B5-C8B4-A8B2-2B9879E08C5D}.XPI
() (No name found) -- C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\A2ALK48D.DEFAULT\EXTENSIONS\CWWB@DIETRICH.CX.XPI
[2012.03.15 11:31:41 | 000,097,208 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2011.04.10 12:50:06 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2012.02.03 11:55:15 | 000,001,583 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\atlas-sk.xml
[2012.02.03 11:55:15 | 000,001,380 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\azet-sk.xml
[2012.02.03 11:55:15 | 000,001,479 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\dunaj-sk.xml
[2012.02.03 11:55:15 | 000,001,473 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\slovnik-sk.xml
[2012.02.03 11:55:15 | 000,001,104 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-sk.xml
[2012.02.03 11:55:15 | 000,000,830 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\zoznam-sk.xml
========== Chrome ==========
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q={searchTerms}
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\Application\17.0.963.83\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\Application\17.0.963.83\pdf.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\Application\17.0.963.83\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
CHR - plugin: Google Talk Plugin (Enabled) = C:\Documents and Settings\Administrator\Application Data\Mozilla\plugins\npgoogletalk.dll
CHR - plugin: Google Talk Plugin Video Accelerator (Enabled) = C:\Documents and Settings\Administrator\Application Data\Mozilla\plugins\npgtpo3dautoplugin.dll
CHR - plugin: Java Deployment Toolkit 6.0.240.7 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll
CHR - plugin: Java(TM) Platform SE 6 U24 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: Microsoft\u00AE Windows Media Player Firefox Plugin (Enabled) = C:\Program Files\Mozilla Firefox\plugins\np-mswmp.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll
CHR - plugin: Google Update (Enabled) = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Update\1.3.21.99\npGoogleUpdate3.dll
CHR - plugin: Silverlight Plug-In (Enabled) = C:\Program Files\Microsoft Silverlight\4.1.10111.0\npctrl.dll
CHR - plugin: Windows Presentation Foundation (Enabled) = C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
CHR - plugin: Default Plug-in (Enabled) = default_plugin
CHR - Extension: YouTube = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\
CHR - Extension: H\u013Eada\u0165 v Google = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\
CHR - Extension: avast! WebRep = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\7.0.1426_0\
CHR - Extension: Gmail = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\
O1 HOSTS File: ([2012.04.11 20:22:34 | 000,000,098 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKU\S-1-5-21-1123561945-1364589140-725345543-500\..\Toolbar\WebBrowser: (no name) - {32099AAC-C132-4136-9E9A-4E364A424E17} - No CLSID value found.
O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [Kernel and Hardware Abstraction Layer] C:\WINDOWS\KHALMNPR.Exe (Logitech, Inc.)
O4 - HKLM..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE (Logitech Inc.)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\Program Files\NVIDIA Corporation\nview\nwiz.exe ()
O4 - Startup: C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\MagicDisc.lnk = C:\Program Files\MagicDisc\MagicDisc.exe (MagicISO, Inc.)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe (Logitech, Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDesktopCleanupWizard = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableStatusMessages = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: VerboseStatus = 0
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 1
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 1
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 1
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1
O7 - HKU\S-1-5-21-1123561945-1364589140-725345543-500\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1123561945-1364589140-725345543-500\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1
O7 - HKU\S-1-5-21-1123561945-1364589140-725345543-500\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 1
O7 - HKU\S-1-5-21-1123561945-1364589140-725345543-500\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1
O7 - HKU\S-1-5-21-1123561945-1364589140-725345543-500\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1
O16 - DPF: {33564D57-0000-0010-8000-00AA00389B71} http://download.microsoft.com/download/ ... mv9VCM.CAB (Reg Error: Key error.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_24)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 172.20.71.8
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{E399171A-0022-4731-809C-8A0173DA1EA0}: DhcpNameServer = 172.20.71.8
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\LBTWlgn: DllName - (c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll) - c:\Program Files\Common Files\Logishrd\Bluetooth\LBTWLgn.dll (Logitech, Inc.)
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{0210ccc4-2ee1-11e1-9b9c-08002700d0a4}\Shell - "" = AutoRun
O33 - MountPoints2\{0210ccc4-2ee1-11e1-9b9c-08002700d0a4}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{0210ccc4-2ee1-11e1-9b9c-08002700d0a4}\Shell\AutoRun\command - "" = H:\Startme.exe
O33 - MountPoints2\{041ee640-4252-11e0-9c48-08002700d0a4}\Shell - "" = AutoRun
O33 - MountPoints2\{041ee640-4252-11e0-9c48-08002700d0a4}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{041ee640-4252-11e0-9c48-08002700d0a4}\Shell\AutoRun\command - "" = G:\BattleLosAngeles_Setup.exe
O33 - MountPoints2\{0c6fdf9a-45d4-11e0-9936-08002700d0a4}\Shell - "" = AutoRun
O33 - MountPoints2\{0c6fdf9a-45d4-11e0-9936-08002700d0a4}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{0c6fdf9a-45d4-11e0-9936-08002700d0a4}\Shell\AutoRun\command - "" = H:\MoWAS_Setup.exe
O33 - MountPoints2\{8fb9e032-22c8-11df-9d15-00241d88a58d}\Shell - "" = AutoRun
O33 - MountPoints2\{8fb9e032-22c8-11df-9d15-00241d88a58d}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{8fb9e032-22c8-11df-9d15-00241d88a58d}\Shell\AutoRun\command - "" = H:\Autorun.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
CREATERESTOREPOINT
Restore point Set: OTL Restore Point
Re: preventívna kontrola po dlhom čase RSIT
časť sruhá:
NetSvcs: 6to4 - File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found
Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: MSVideo - C:\WINDOWS\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: MSVideo8 - C:\WINDOWS\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: VIDC.FPS1 - C:\WINDOWS\System32\frapsvid.dll (Beepa P/L)
Drivers32: VIDC.I420 - C:\WINDOWS\System32\lvcodec2.dll (Logitech Inc.)
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation)
Drivers32: vidc.VP60 - C:\WINDOWS\system32\vp6vfw.dll (On2.com)
Drivers32: vidc.VP61 - C:\WINDOWS\system32\vp6vfw.dll (On2.com)
Drivers32: VIDC.WMV3 - C:\WINDOWS\System32\wmv9vcm.dll (Microsoft Corporation)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin
========== Files/Folders - Created Within 30 Days ==========
[2012.04.11 20:44:14 | 000,593,920 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Administrator\Desktop\OTL.exe
[2012.04.11 20:22:32 | 000,000,000 | ---D | C] -- C:\_OTM
[2012.04.11 20:20:41 | 000,523,264 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Administrator\Desktop\OTM.exe
[2012.04.11 17:46:41 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Administrator\Recent
[2012.04.11 14:16:41 | 000,000,000 | ---D | C] -- C:\rsit
[2012.04.11 12:57:42 | 000,337,880 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSP.sys
[2012.04.11 12:57:42 | 000,020,696 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys
[2012.04.11 12:57:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\avast! Free Antivirus
[2012.04.11 12:57:40 | 000,612,184 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSnx.sys
[2012.04.11 12:57:40 | 000,053,848 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys
[2012.04.11 12:57:40 | 000,035,672 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys
[2012.04.11 12:57:39 | 000,095,704 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys
[2012.04.11 12:57:39 | 000,089,048 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon.sys
[2012.04.11 12:57:39 | 000,024,920 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys
[2012.04.11 12:57:25 | 000,041,184 | ---- | C] (AVAST Software) -- C:\WINDOWS\avastSS.scr
[2012.04.11 12:57:24 | 000,201,352 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\aswBoot.exe
[2012.04.11 12:57:16 | 000,000,000 | ---D | C] -- C:\Program Files\AVAST Software
[2012.04.11 12:57:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\AVAST Software
[2012.04.09 21:40:51 | 000,000,000 | ---D | C] -- C:\Program Files\Skype
[2012.04.09 21:40:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Skype
[2012.04.09 16:08:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Start Menu\Programs\IrfanView
[2012.04.09 15:59:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\vlc
[2012.04.09 15:59:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\VideoLAN
[2012.04.09 15:48:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Sony
[2012.04.09 15:47:55 | 000,000,000 | ---D | C] -- C:\Program Files\Sony
[2012.04.09 15:47:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Sony
[2012.04.07 23:31:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\NVIDIA Corporation
[2012.04.07 23:31:38 | 000,220,992 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcolor.exe
[2012.04.07 23:31:37 | 016,744,256 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcpl.dll
[2012.04.07 23:31:37 | 000,203,072 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvmctray.dll
[2012.04.07 23:31:36 | 000,602,432 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\easyupdatusapiu.dll
[2012.04.07 23:31:36 | 000,054,272 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwddi.dll
[2012.04.07 23:31:22 | 017,956,864 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvoglnt.dll
[2012.04.07 23:31:22 | 017,240,064 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcompiler.dll
[2012.04.07 23:31:22 | 005,595,136 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcuda.dll
[2012.04.07 23:31:22 | 002,449,408 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvapi.dll
[2012.04.07 23:31:22 | 002,398,016 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcuvid.dll
[2012.04.07 23:31:22 | 002,099,520 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcuvenc.dll
[2012.04.07 23:31:22 | 000,919,872 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvdispco32.dll
[2012.04.07 23:31:22 | 000,877,376 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvgenco32.dll
[2012.04.07 23:31:22 | 000,065,536 | ---- | C] (Khronos Group) -- C:\WINDOWS\System32\OpenCL.dll
[2012.04.07 23:31:02 | 000,000,000 | ---D | C] -- C:\Program Files\NVIDIA Corporation
[2012.04.07 23:30:49 | 000,000,000 | ---D | C] -- C:\NVIDIA
[2012.04.07 19:06:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\PCSX2_Team
[2012.03.27 10:11:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Orion
[2012.03.25 20:00:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\My Documents\Downloads
[2012.03.24 15:37:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Start Menu\Programs\AVS4YOU
[2012.03.24 15:36:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\AVS4YOU
[2012.03.24 15:36:46 | 011,137,024 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\libmfxsw32.dll
[2012.03.22 12:45:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\.swt
[2012.03.22 12:43:45 | 000,000,000 | ---D | C] -- C:\Program Files\Vuze
[2012.03.20 11:35:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Start Menu\Programs\Google Chrome
[2012.03.18 19:38:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Emicsoft Studio
[2012.03.18 19:38:13 | 000,000,000 | ---D | C] -- C:\Program Files\Emicsoft Studio
[2012.03.18 19:26:50 | 000,025,704 | ---- | C] (Wondershare) -- C:\WINDOWS\System32\drivers\WsAudio_DeviceS(5).sys
[2012.03.18 19:26:39 | 000,025,704 | ---- | C] (Wondershare) -- C:\WINDOWS\System32\drivers\WsAudio_DeviceS(4).sys
[2012.03.18 19:26:28 | 000,025,704 | ---- | C] (Wondershare) -- C:\WINDOWS\System32\drivers\WsAudio_DeviceS(3).sys
[2012.03.18 19:26:16 | 000,025,704 | ---- | C] (Wondershare) -- C:\WINDOWS\System32\drivers\WsAudio_DeviceS(2).sys
[2012.03.18 19:25:50 | 000,025,704 | ---- | C] (Wondershare) -- C:\WINDOWS\System32\drivers\WsAudio_DeviceS(1).sys
[2012.03.18 19:25:47 | 000,892,928 | ---- | C] (Free Software Foundation) -- C:\WINDOWS\System32\iconv.dll
[2012.03.18 19:25:46 | 000,000,000 | ---D | C] -- C:\Program Files\Aimersoft
[2012.03.17 23:18:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\TEMP
[2012.03.14 14:42:53 | 000,028,160 | ---- | C] (mst software GmbH, Germany) -- C:\WINDOWS\System32\DfSdkBt.exe
[2012.03.14 14:42:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Ashampoo
[2012.03.14 14:42:49 | 000,000,000 | ---D | C] -- C:\Program Files\Ashampoo
[2012.03.13 21:37:08 | 000,000,000 | -H-D | C] -- C:\WINDOWS\ie8
[2012.03.13 20:42:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\WMTools Downloaded Files
[2012.03.13 17:16:51 | 000,414,368 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl
========== Files - Modified Within 30 Days ==========
[2012.04.11 20:49:46 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2012.04.11 20:44:23 | 000,593,920 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Administrator\Desktop\OTL.exe
[2012.04.11 20:23:40 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2012.04.11 20:22:34 | 000,000,098 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\Hosts
[2012.04.11 20:20:48 | 000,523,264 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Administrator\Desktop\OTM.exe
[2012.04.11 12:57:40 | 000,002,638 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2012.04.09 20:52:07 | 000,002,228 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2012.04.07 23:31:35 | 000,285,176 | ---- | M] () -- C:\WINDOWS\System32\nvdrsdb0.bin
[2012.04.07 23:31:35 | 000,000,001 | ---- | M] () -- C:\WINDOWS\System32\nvdrssel.bin
[2012.04.07 23:31:33 | 000,285,176 | ---- | M] () -- C:\WINDOWS\System32\nvdrsdb1.bin
[2012.04.07 23:31:33 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\nvdrswr.lk
[2012.04.04 15:56:40 | 000,022,344 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2012.03.29 16:33:43 | 100,000,000 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\mutation.part2.rar
[2012.03.29 15:32:45 | 100,000,000 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\mutation.part1.rar
[2012.03.28 11:09:09 | 000,000,194 | -HS- | M] () -- C:\boot.ini
[2012.03.25 21:47:50 | 000,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2012.03.25 21:47:49 | 000,083,456 | ---- | M] () -- C:\Documents and Settings\Administrator\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012.03.25 11:00:04 | 000,474,138 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2012.03.25 11:00:04 | 000,076,898 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2012.03.22 22:46:09 | 000,002,352 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\Google Chrome.lnk
[2012.03.22 22:46:09 | 000,002,330 | ---- | M] () -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2012.03.22 12:43:53 | 000,001,511 | ---- | M] () -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Vuze.lnk
[2012.03.19 11:06:18 | 000,116,560 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2012.03.18 19:56:09 | 000,000,000 | ---- | M] () -- C:\WINDOWS\Infob.dat
[2012.03.18 19:56:09 | 000,000,000 | ---- | M] () -- C:\WINDOWS\Infoa.dat
[2012.03.14 14:42:54 | 000,000,947 | ---- | M] () -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Ashampoo WinOptimizer 2012.lnk
[2012.03.14 14:25:41 | 000,001,945 | ---- | M] () -- C:\WINDOWS\epplauncher.mif
[2012.03.14 14:25:27 | 000,000,602 | RHS- | M] () -- C:\Documents and Settings\All Users\ntuser.pol
[2012.03.13 17:16:51 | 000,414,368 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl
========== Files Created - No Company Name ==========
[2012.04.11 20:49:46 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2012.04.07 23:31:33 | 000,285,176 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb1.bin
[2012.04.07 23:31:33 | 000,285,176 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb0.bin
[2012.04.07 23:31:33 | 000,000,001 | ---- | C] () -- C:\WINDOWS\System32\nvdrssel.bin
[2012.04.07 23:31:33 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\nvdrswr.lk
[2012.04.07 23:31:22 | 002,130,002 | ---- | C] () -- C:\WINDOWS\System32\nvdata.data
[2012.04.07 23:31:22 | 000,003,250 | ---- | C] () -- C:\WINDOWS\System32\nvinfo.pb
[2012.03.29 15:38:38 | 100,000,000 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\mutation.part2.rar
[2012.03.29 14:37:14 | 100,000,000 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\mutation.part1.rar
[2012.03.22 12:43:53 | 000,001,511 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Vuze.lnk
[2012.03.22 12:43:53 | 000,001,511 | ---- | C] () -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Vuze.lnk
[2012.03.20 11:35:40 | 000,002,352 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\Google Chrome.lnk
[2012.03.20 11:35:40 | 000,002,330 | ---- | C] () -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2012.03.18 19:56:09 | 000,000,000 | ---- | C] () -- C:\WINDOWS\Infob.dat
[2012.03.18 19:56:09 | 000,000,000 | ---- | C] () -- C:\WINDOWS\Infoa.dat
[2012.03.18 19:25:47 | 000,496,640 | ---- | C] () -- C:\WINDOWS\System32\xvid.ax
[2012.03.14 14:42:54 | 000,000,947 | ---- | C] () -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Ashampoo WinOptimizer 2012.lnk
[2012.02.28 14:25:43 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll
[2011.09.09 22:41:47 | 000,000,125 | ---- | C] () -- C:\WINDOWS\amapro.dat
[2011.08.23 15:22:48 | 000,000,286 | ---- | C] () -- C:\WINDOWS\reimage.ini
[2011.08.23 14:44:09 | 000,309,278 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\WPFFontCache_v0400-S-1-5-21-1123561945-1364589140-725345543-500-0.dat
[2011.08.16 21:36:07 | 000,120,254 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\WPFFontCache_v0400-System.dat
[2011.07.18 19:08:38 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2011.04.24 19:51:45 | 000,001,042 | ---- | C] () -- C:\WINDOWS\EReg072.dat
[2011.04.09 18:55:28 | 000,179,261 | ---- | C] () -- C:\WINDOWS\System32\xlive.dll.cat
[2011.01.17 15:25:06 | 000,000,296 | ---- | C] () -- C:\WINDOWS\VMXXXX.INI
[2010.12.25 16:55:10 | 000,709,456 | ---- | C] () -- C:\WINDOWS\is-5DOS0.exe
[2010.12.01 14:32:24 | 000,281,760 | ---- | C] () -- C:\WINDOWS\System32\drivers\atksgt.sys
[2010.12.01 14:32:24 | 000,025,888 | ---- | C] () -- C:\WINDOWS\System32\drivers\lirsgt.sys
[2010.11.11 20:01:40 | 000,000,635 | ---- | C] () -- C:\WINDOWS\rtcwgoty.INI
[2010.11.11 19:54:32 | 000,001,031 | ---- | C] () -- C:\WINDOWS\Rtcwplat.INI
[2010.11.05 22:31:28 | 000,045,568 | ---- | C] () -- C:\WINDOWS\UniFish3.exe
[2010.10.24 16:41:59 | 000,000,025 | ---- | C] () -- C:\WINDOWS\popcinfot.dat
[2010.10.13 21:08:21 | 000,175,616 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
========== LOP Check ==========
[2010.02.26 14:37:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Acronis
[2012.04.11 10:59:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Azureus
[2010.02.27 18:54:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\CheckPoint
[2011.12.07 13:13:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\DAEMON Tools Lite
[2010.02.24 13:50:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Foxit
[2011.06.10 23:27:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\GHISLER
[2011.02.17 16:13:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\HD Tune Pro
[2011.02.19 14:28:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\IrfanView
[2011.04.25 19:18:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\JAM Software
[2010.10.18 18:11:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\LangSoft
[2011.06.23 21:54:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Lionhead Studios
[2011.11.29 15:39:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Ludia
[2010.11.09 15:23:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\MumboJumbo
[2012.01.07 17:49:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\MyPhoneExplorer
[2010.11.20 15:03:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Need for Speed World
[2010.02.24 13:51:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\OpenOffice.org
[2012.03.20 11:32:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Opera
[2011.05.15 17:46:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\PhotoScape
[2011.12.31 17:26:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\PunkBuster
[2011.11.15 14:50:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Rovio
[2011.12.25 13:21:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Sony
[2012.02.06 21:37:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\SWF.max
[2012.02.12 18:15:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\SystemRequirementsLab
[2011.12.09 16:50:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Trine2
[2011.03.19 13:01:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Ubisoft
[2011.07.10 20:15:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\wargaming.net
[2010.02.26 13:49:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Acronis
[2010.12.02 16:10:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Apache
[2011.02.10 11:28:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Astroburn Lite
[2005.02.24 15:20:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Astroburn Pro
[2012.04.11 12:57:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\AVAST Software
[2010.02.24 19:27:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Azureus
[2011.03.04 12:02:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Babylon
[2011.05.05 22:48:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\BVRP Software
[2011.09.23 19:42:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Codemasters
[2005.02.24 17:07:04 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\All Users\Application Data\DSS
[2010.11.16 19:08:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\EA Core
[2012.02.20 14:49:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\EA Logs
[2011.11.05 21:42:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Electronic Arts
[2012.03.18 19:38:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Emicsoft Studio
[2010.02.25 16:10:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\FreeRIP
[2010.03.02 13:55:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\LangSoft
[2010.11.09 15:23:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\MumboJumbo
[2012.03.27 10:11:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Orion
[2010.10.24 16:24:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PopCap Games
[2011.10.28 13:42:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Solidshield
[2011.09.09 22:41:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Soluto
[2012.04.09 15:47:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Sony
[2012.03.17 23:22:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TEMP
[2011.11.28 22:14:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Ubisoft
========== Purity Check ==========
========== Custom Scans ==========
< >
< >
< MD5 for: AGP440.SYS >
[2008.04.14 06:51:44 | 020,056,462 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:AGP440.sys
[2008.04.14 06:51:44 | 020,056,462 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:AGP440.sys
[2008.04.14 01:06:40 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\ServicePackFiles\i386\agp440.sys
[2008.04.14 01:06:40 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\system32\drivers\agp440.sys
< MD5 for: ATAPI.SYS >
[2008.04.14 06:51:44 | 020,056,462 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2008.04.14 06:51:44 | 020,056,462 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:atapi.sys
[2008.04.14 01:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ServicePackFiles\i386\atapi.sys
[2008.04.14 01:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
[2008.04.14 02:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\ReinstallBackups\0005\DriverFiles\i386\atapi.sys
< MD5 for: AUTOCHK.EXE >
[2008.04.14 06:42:14 | 000,588,800 | ---- | M] (Microsoft Corporation) MD5=23043C91A0F9DFB4B9E9F87B680863B4 -- C:\WINDOWS\ServicePackFiles\i386\autochk.exe
[2008.04.14 12:00:00 | 000,588,800 | ---- | M] (Microsoft Corporation) MD5=23043C91A0F9DFB4B9E9F87B680863B4 -- C:\WINDOWS\system32\autochk.exe
< MD5 for: CDROM.SYS >
[2008.04.14 06:51:44 | 020,056,462 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys
[2008.04.14 06:51:44 | 020,056,462 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:cdrom.sys
[2008.04.14 01:10:48 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\ServicePackFiles\i386\cdrom.sys
[2008.05.02 10:49:39 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=4B0A100EAF5C49EF3CCA8C641431EACC -- C:\WINDOWS\system32\drivers\cdrom.sys
< MD5 for: CRYPTSVC.DLL >
[2008.04.14 06:41:52 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=3D4E199942E29207970E04315D02AD3B -- C:\WINDOWS\ServicePackFiles\i386\cryptsvc.dll
[2008.04.14 12:00:00 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=3D4E199942E29207970E04315D02AD3B -- C:\WINDOWS\system32\cryptsvc.dll
[2008.04.14 12:00:00 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=3D4E199942E29207970E04315D02AD3B -- C:\WINDOWS\system32\dllcache\cryptsvc.dll
< MD5 for: EVENTLOG.DLL >
[2008.04.14 06:41:54 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=6D4FEB43EE538FC5428CC7F0565AA656 -- C:\WINDOWS\ServicePackFiles\i386\eventlog.dll
[2008.04.14 12:00:00 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=6D4FEB43EE538FC5428CC7F0565AA656 -- C:\WINDOWS\system32\eventlog.dll
< MD5 for: EXPLORER.EXE >
[2008.04.14 06:42:20 | 001,033,728 | ---- | M] (Microsoft Corporation) MD5=12896823FB95BFB3DC9B46BCAEDC9923 -- C:\WINDOWS\ServicePackFiles\i386\explorer.exe
[2008.07.03 11:38:24 | 001,033,728 | ---- | M] (Microsoft Corporation) MD5=2BB75B7F548D82A099125D0C5971DE7D -- C:\WINDOWS\explorer.exe
< MD5 for: HAL.DLL >
[2008.04.14 06:51:44 | 020,056,462 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:hal.dll
[2008.04.14 06:51:44 | 020,056,462 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:hal.dll
[2008.04.14 01:01:34 | 000,105,344 | ---- | M] (Microsoft Corporation) MD5=6DB1E72AD3B372DFC451B7F54BA08AA7 -- C:\WINDOWS\ServicePackFiles\i386\hal.dll
[2008.09.30 11:34:58 | 000,134,528 | ---- | M] (Microsoft Corporation) MD5=E33DE9C65B3625BDD00C1313179DA5A5 -- C:\WINDOWS\system32\hal.dll
< MD5 for: CHANGER.SYS >
[2008.04.14 06:51:44 | 020,056,462 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:Changer.sys
[2008.04.14 06:51:44 | 020,056,462 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:Changer.sys
[2008.04.14 01:11:00 | 000,008,192 | ---- | M] (Microsoft Corporation) MD5=2A5815CA6FFF24B688C01F828B96819C -- C:\WINDOWS\ServicePackFiles\i386\changer.sys
< MD5 for: ISAPNP.SYS >
[2008.04.14 06:51:44 | 020,056,462 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:isapnp.sys
[2008.04.14 06:51:44 | 020,056,462 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:isapnp.sys
[2008.04.14 01:06:42 | 000,037,248 | ---- | M] (Microsoft Corporation) MD5=05A299EC56E52649B1CF2FC52D20F2D7 -- C:\WINDOWS\ServicePackFiles\i386\isapnp.sys
[2008.04.14 01:06:42 | 000,037,248 | ---- | M] (Microsoft Corporation) MD5=05A299EC56E52649B1CF2FC52D20F2D7 -- C:\WINDOWS\system32\drivers\isapnp.sys
[2008.04.14 12:00:00 | 000,037,248 | ---- | M] (Microsoft Corporation) MD5=05A299EC56E52649B1CF2FC52D20F2D7 -- C:\WINDOWS\system32\ReinstallBackups\0004\DriverFiles\i386\isapnp.sys
< MD5 for: LSASS.EXE >
[2008.04.14 06:42:26 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=BF2466B3E18E970D8A976FB95FC1CA85 -- C:\WINDOWS\ServicePackFiles\i386\lsass.exe
[2008.04.14 12:00:00 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=BF2466B3E18E970D8A976FB95FC1CA85 -- C:\WINDOWS\system32\lsass.exe
< MD5 for: NDIS.SYS >
[2008.04.14 01:50:38 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\ServicePackFiles\i386\ndis.sys
[2008.04.14 12:00:00 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\drivers\ndis.sys
< MD5 for: NETLOGON.DLL >
[2008.04.17 04:50:11 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=06CF9EEDB7E827205C6948C9DAF56974 -- C:\WINDOWS\system32\netlogon.dll
[2008.04.14 06:42:02 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=1B7F071C51B77C272875C3A23E1E4550 -- C:\WINDOWS\ServicePackFiles\i386\netlogon.dll
< MD5 for: NVGTS.SYS >
[2008.12.30 13:14:40 | 000,145,952 | ---- | M] (NVIDIA Corporation) MD5=EA98BFE4931BD13D747D647C1859796E -- C:\WINDOWS\NLDRV\006\nvgts.sys
< MD5 for: SCECLI.DLL >
[2008.04.14 06:42:06 | 000,181,248 | ---- | M] (Microsoft Corporation) MD5=A86BB5E61BF3E39B62AB4C7E7085A084 -- C:\WINDOWS\ServicePackFiles\i386\scecli.dll
[2008.04.14 12:00:00 | 000,181,248 | ---- | M] (Microsoft Corporation) MD5=A86BB5E61BF3E39B62AB4C7E7085A084 -- C:\WINDOWS\system32\scecli.dll
< MD5 for: SMSS.EXE >
[2008.04.14 06:42:38 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=5F816C1F539266D2D4C78694239DA0B5 -- C:\WINDOWS\ServicePackFiles\i386\smss.exe
[2008.04.14 12:00:00 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=5F816C1F539266D2D4C78694239DA0B5 -- C:\WINDOWS\system32\smss.exe
< MD5 for: SVCHOST.EXE >
[2012.04.04 15:56:38 | 000,199,240 | ---- | M] () MD5=097D0E812D7A9A3101CE46CB2BE0474D -- C:\Program Files\Malwarebytes' Anti-Malware\Chameleon\svchost.exe
[2008.04.14 06:42:38 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=27C6D03BCDB8CFEB96B716F3D8BE3E18 -- C:\WINDOWS\ServicePackFiles\i386\svchost.exe
[2008.04.14 12:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=27C6D03BCDB8CFEB96B716F3D8BE3E18 -- C:\WINDOWS\system32\svchost.exe
< MD5 for: TCPIP.SYS >
[2008.12.30 06:52:37 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=5AE1C2695F6523AD98B948F2887D8C5E -- C:\WINDOWS\system32\drivers\tcpip.sys
[2008.04.14 01:50:18 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\ServicePackFiles\i386\tcpip.sys
[2008.06.20 13:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\system32\dllcache\tcpip.sys
< MD5 for: USERINIT.EXE >
[2008.04.14 06:42:40 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=A93AEE1928A9D7CE3E16D24EC7380F89 -- C:\WINDOWS\ServicePackFiles\i386\userinit.exe
[2008.04.14 12:00:00 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=A93AEE1928A9D7CE3E16D24EC7380F89 -- C:\WINDOWS\system32\userinit.exe
< MD5 for: WINLOGON.EXE >
[2012.04.04 15:56:38 | 000,199,240 | ---- | M] () MD5=097D0E812D7A9A3101CE46CB2BE0474D -- C:\Program Files\Malwarebytes' Anti-Malware\Chameleon\winlogon.exe
[2008.04.14 06:42:40 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=ED0EF0A136DEC83DF69F04118870003E -- C:\WINDOWS\ServicePackFiles\i386\winlogon.exe
[2008.04.14 12:00:00 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=ED0EF0A136DEC83DF69F04118870003E -- C:\WINDOWS\system32\winlogon.exe
< MD5 for: WS2_32.DLL >
[2008.04.14 06:42:12 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=2CCC474EB85CEAA3E1FA1726580A3E5A -- C:\WINDOWS\ServicePackFiles\i386\ws2_32.dll
[2008.04.14 12:00:00 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=2CCC474EB85CEAA3E1FA1726580A3E5A -- C:\WINDOWS\system32\ws2_32.dll
< >
< %systemroot%*.* /U /s >
[6 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[2 C:\WINDOWS\Installer\*.tmp files -> C:\WINDOWS\Installer\*.tmp -> ]
[2 C:\WINDOWS\system32\DirectX\*.tmp files -> C:\WINDOWS\system32\DirectX\*.tmp -> ]
< %SYSTEMDRIVE%\*.exe >
< %ALLUSERSPROFILE%\Application Data\*. >
[2010.02.26 13:49:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Acronis
[2010.12.02 16:10:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Apache
[2011.02.10 11:28:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Astroburn Lite
[2005.02.24 15:20:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Astroburn Pro
[2012.04.11 12:57:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\AVAST Software
[2010.03.18 15:54:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\AVS4YOU
[2010.02.24 19:27:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Azureus
[2011.03.04 12:02:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Babylon
[2011.05.05 22:48:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\BVRP Software
[2011.09.23 19:42:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Codemasters
[2005.02.24 17:07:04 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\All Users\Application Data\DSS
[2010.11.16 19:08:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\EA Core
[2012.02.20 14:49:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\EA Logs
[2011.11.05 21:42:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Electronic Arts
[2012.03.18 19:38:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Emicsoft Studio
[2010.02.25 16:10:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\FreeRIP
[2010.03.02 13:55:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\LangSoft
[2010.02.25 14:12:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\LogiShrd
[2010.02.25 14:12:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Logitech
[2010.10.22 20:09:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
[2012.03.14 14:25:37 | 000,000,000 | --SD | M] -- C:\Documents and Settings\All Users\Application Data\Microsoft
[2010.11.09 15:23:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\MumboJumbo
[2010.02.25 14:36:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Nero
[2012.04.07 23:31:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\NVIDIA Corporation
[2012.03.27 10:11:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Orion
[2010.10.24 16:24:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PopCap Games
[2010.11.08 15:18:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Real
[2012.04.09 21:40:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Skype
[2011.10.28 13:42:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Solidshield
[2011.09.09 22:41:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Soluto
[2012.04.09 15:47:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Sony
[2012.04.09 15:47:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Sony Ericsson
[2010.02.28 21:17:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Sun
[2012.03.17 23:22:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TEMP
[2010.11.09 15:23:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Trymedia
[2011.11.28 22:14:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Ubisoft
[2011.07.02 13:07:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage
< %ALLUSERSPROFILE%\Application Data\*.exe /s >
[2012.04.10 12:26:34 | 010,063,000 | ---- | M] (Malwarebytes Corporation ) -- C:\Documents and Settings\All Users\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\mbam-setup.exe
[2011.09.09 22:41:06 | 001,227,824 | ---- | M] (Soluto Inc) -- C:\Documents and Settings\All Users\Application Data\Soluto\Installer\SolutoInstaller.exe
[2012.02.28 21:10:48 | 000,154,744 | ---- | M] (Sony Ericsson Mobile Communications) -- C:\Documents and Settings\All Users\Application Data\Sony Ericsson\Update Engine\configuration\org.eclipse.osgi\bundles\72\1\.cp\lib\win32\DeviceRemover.exe
[2012.02.28 21:10:37 | 000,158,840 | ---- | M] (Sony Ericsson Mobile Communications) -- C:\Documents and Settings\All Users\Application Data\Sony Ericsson\Update Engine\configuration\org.eclipse.osgi\bundles\74\1\.cp\lib\win32\DriverInstaller.exe
< %APPDATA%\*. >
[2010.02.26 14:37:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Acronis
[2010.02.23 18:54:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Adobe
[2010.03.18 15:54:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\AVS4YOU
[2012.04.11 10:59:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Azureus
[2010.02.27 18:54:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\CheckPoint
[2011.12.07 13:13:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\DAEMON Tools Lite
[2012.03.24 16:07:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\dvdcss
[2011.04.26 22:32:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\FastStone
[2010.02.24 13:50:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Foxit
[2011.06.10 23:27:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\GHISLER
[2011.05.19 21:57:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Google
[2011.02.17 16:13:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\HD Tune Pro
[2010.02.22 16:23:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Identities
[2010.02.22 17:35:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\InstallShield
[2011.02.19 14:28:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\IrfanView
[2011.04.25 19:18:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\JAM Software
[2010.10.18 18:11:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\LangSoft
[2011.06.23 21:54:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Lionhead Studios
[2010.02.25 14:15:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Logitech
[2011.11.29 15:39:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Ludia
[2010.02.23 18:54:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Macromedia
[2010.10.22 20:09:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Malwarebytes
[2011.06.19 17:55:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Media Player Classic
[2010.11.09 15:21:30 | 000,000,000 | --SD | M] -- C:\Documents and Settings\Administrator\Application Data\Microsoft
[2012.03.24 11:24:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Mozilla
[2010.11.09 15:23:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\MumboJumbo
[2012.01.07 17:49:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\MyPhoneExplorer
[2010.11.20 15:03:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Need for Speed World
[2010.02.25 14:39:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Nero
[2011.09.23 19:42:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\NVIDIA
[2010.02.24 13:51:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\OpenOffice.org
[2012.03.20 11:32:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Opera
[2011.05.15 17:46:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\PhotoScape
[2011.12.31 17:26:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\PunkBuster
[2010.11.08 15:18:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Real
[2011.11.15 14:50:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Rovio
[2012.04.11 20:47:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Skype
[2011.02.18 18:40:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\skypePM
[2011.12.25 13:21:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Sony
[2010.02.28 21:14:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Sun
[2012.02.06 21:37:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\SWF.max
[2012.02.12 18:15:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\SystemRequirementsLab
[2011.12.09 16:50:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Trine2
[2011.03.19 13:01:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Ubisoft
[2012.04.09 16:26:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\vlc
[2011.07.10 20:15:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\wargaming.net
[2012.04.11 13:12:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Winamp
[2011.06.19 18:05:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\WinRAR
< %APPDATA%\*.exe /s >
[2010.02.25 14:14:53 | 000,053,248 | R--- | M] (Acresso Software Inc.) -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Installer\{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}\ARPPRODUCTICON.exe
[2010.12.31 14:25:28 | 000,010,134 | R--- | M] () -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Installer\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}\ARPPRODUCTICON.exe
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\Tasks\*.job /lockedfiles >
< %systemroot%\system32\drivers\*.sys /lockedfiles >
[2011.12.04 19:52:11 | 000,428,088 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\system32\drivers\sptd.sys
< %systemroot%\System32\config\*.sav >
[2010.02.22 17:12:11 | 000,102,400 | ---- | M] () -- C:\WINDOWS\System32\config\default.sav
[2010.02.22 17:12:11 | 001,089,536 | ---- | M] () -- C:\WINDOWS\System32\config\software.sav
[2010.02.22 17:12:11 | 000,921,600 | ---- | M] () -- C:\WINDOWS\System32\config\system.sav
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\system32\drivers\*.sys /3 >
< %systemroot%\system32\*.* /3 >
[2012.04.11 12:57:40 | 000,002,638 | ---- | M] () -- C:\WINDOWS\system32\CONFIG.NT
[2012.04.09 20:52:07 | 000,002,228 | ---- | M] () -- C:\WINDOWS\system32\wpa.dbl
< %SYSTEMDRIVE%\*.exe >
< >
< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"ctfmon.exe" = C:\WINDOWS\system32\ctfmon.exe -- [2008.04.14 12:00:00 | 000,015,360 | ---- | M] (Microsoft Corporation)
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\not active]
< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\WUAUSERV
IMAGEPATH REG_EXPAND_SZ %systemroot%\system32\svchost.exe -k netsvcs
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\BITS
IMAGEPATH REG_EXPAND_SZ %SystemRoot%\system32\svchost.exe -k netsvcs
< >
< type c:\boot.ini >> test.txt /c >
[boot loader]
timeout=30
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /fastdetect
< %SystemDrive%\PhysicalMBR.bin /md5 >
[2012.04.11 20:49:46 | 000,000,512 | ---- | M] () MD5=47FD5B8FE38A926E0B0ED4DEBC469994 -- C:\PhysicalMBR.bin
< >
< *crack* /s >
[2011.03.10 23:00:49 | 000,004,317 | ---- | M] () -- \Documents and Settings\Administrator\Application Data\Azureus\torrents\Dragon_Age_2_Crack_only_-_Reloaded.6228400.TPB-1.torrent
[2011.06.16 21:17:49 | 000,003,478 | ---- | M] () -- \Documents and Settings\Administrator\Application Data\Azureus\torrents\Duke.Nukem.Forever.Proper.CrackOnly.SKIDROW.6473426.TPB.torrent
[2011.10.04 18:35:58 | 000,008,120 | ---- | M] () -- \Documents and Settings\Administrator\Application Data\Azureus\torrents\DVDFab_Platinum_v8.1.1.2___Crack_[ChattChitto_RG].6597888.TPB.torrent
[2011.08.07 10:58:06 | 000,011,996 | ---- | M] () -- \Documents and Settings\Administrator\Application Data\Azureus\torrents\LIMBO.v1.0r4.multi9.cracked-THETA.6578886.TPB.torrent
[2010.11.18 16:46:47 | 000,000,866 | ---- | M] () -- \Documents and Settings\Administrator\Application Data\Azureus\torrents\Need_for_Speed_Hot_Pursuit-RELOADED_Crack_Only.5964351.TPB.torrent
[2011.04.25 21:30:37 | 000,002,745 | ---- | M] () -- \Documents and Settings\Administrator\Application Data\Azureus\torrents\Portal_2_Crack_Fix-SKIDROW.6331819.TPB.torrent
[2010.10.29 14:05:30 | 000,001,784 | ---- | M] () -- \Documents and Settings\Administrator\Application Data\Azureus\torrents\Shank_Crackfix.5919361.TPB.torrent
[2012.03.02 11:28:14 | 000,016,278 | ---- | M] () -- \Documents and Settings\Administrator\Application Data\Azureus\torrents\Syndicate Crack Only-3DM.torrent
[2012.03.02 11:17:19 | 000,025,435 | ---- | M] () -- \Documents and Settings\Administrator\Application Data\Azureus\torrents\Syndicate.CRACK.ONLY-SKIDROW.torrent
< *keygen* /s >
[2011.04.04 19:27:24 | 000,001,302 | ---- | M] () -- \Documents and Settings\Administrator\Application Data\Azureus\torrents\Two_Worlds_2_Keygen_Fix-RELOADED.5955798.TPB.torrent
< *loader* /s >
[2012.03.24 15:37:02 | 000,001,035 | ---- | M] () -- \Documents and Settings\Administrator\SendTo\AVS Mobile Uploader.lnk
[2012.03.24 15:37:03 | 000,001,021 | ---- | M] () -- \Documents and Settings\Administrator\SendTo\AVS Video Uploader.lnk
[2012.02.29 08:49:32 | 000,072,638 | ---- | M] () -- \Documents and Settings\All Users\Application Data\Skype\Apps\login\images\loader.gif
[2012.02.29 08:49:32 | 000,003,032 | ---- | M] () -- \Documents and Settings\All Users\Application Data\Skype\Apps\login\images\loader.png
[2012.03.24 15:37:03 | 000,001,039 | ---- | M] () -- \Documents and Settings\All Users\Start Menu\Programs\AVS4YOU\Video\AVS Video Uploader.lnk
[2011.09.02 18:54:20 | 005,107,560 | ---- | M] () -- \Program Files\Common Files\AVSMedia\MobileUploader\AVSMobileUploader.exe
[2011.07.20 21:03:44 | 000,081,420 | ---- | M] () -- \Program Files\Common Files\AVSMedia\MobileUploader\AVSMobileUploader.sil
[2011.09.02 12:29:56 | 004,313,448 | ---- | M] () -- \Program Files\Common Files\AVSMedia\VideoUploader\AVSVideoUploader.exe
[2011.09.01 18:54:12 | 000,038,075 | ---- | M] () -- \Program Files\Common Files\AVSMedia\VideoUploader\AVSVideoUploader.sib
[2007.09.26 20:37:48 | 000,107,816 | ---- | M] () -- \Program Files\Common Files\Nero\Shared\NSCLoader.dll
[2009.05.31 03:21:00 | 000,071,008 | ---- | M] () -- \Program Files\NVIDIA Corporation\PhysX\Common\PhysXLoader.dll
[2009.09.16 23:33:50 | 000,006,308 | ---- | M] () -- \Program Files\OpenOffice.org 3\Basis\program\pythonloader.py
[2009.09.16 16:22:08 | 000,022,528 | ---- | M] () -- \Program Files\OpenOffice.org 3\Basis\program\pythonloader.uno.dll
[2009.09.18 19:20:08 | 000,000,171 | ---- | M] () -- \Program Files\OpenOffice.org 3\Basis\program\pythonloader.uno.ini
[2009.09.11 17:36:38 | 000,029,696 | ---- | M] () -- \Program Files\OpenOffice.org 3\URE\bin\javaloader.uno.dll
[2009.09.18 12:48:12 | 000,003,872 | ---- | M] () -- \Program Files\OpenOffice.org 3\URE\java\unoloader.jar
[2012.02.16 18:34:38 | 000,001,702 | ---- | M] () -- \Program Files\Sony Ericsson\Update Engine\licenses\loaderbinarylegal.txt
[2008.04.14 06:41:54 | 000,035,840 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\dmloader.dll
[2008.04.14 01:01:44 | 000,230,400 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\osloader.exe
[2008.04.14 01:01:46 | 000,278,016 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\osloader.ntd
[2008.04.14 12:00:00 | 000,035,840 | ---- | M] () -- \WINDOWS\system32\dmloader.dll
========== Alternate Data Streams ==========
@Alternate Data Stream - 6144 bytes -> C:\WINDOWS\Cursors\arrow_n.cur:NEDTA.DAT
@Alternate Data Stream - 229 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:8FF81EB0
< End of report >
NetSvcs: 6to4 - File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found
Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: MSVideo - C:\WINDOWS\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: MSVideo8 - C:\WINDOWS\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: VIDC.FPS1 - C:\WINDOWS\System32\frapsvid.dll (Beepa P/L)
Drivers32: VIDC.I420 - C:\WINDOWS\System32\lvcodec2.dll (Logitech Inc.)
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation)
Drivers32: vidc.VP60 - C:\WINDOWS\system32\vp6vfw.dll (On2.com)
Drivers32: vidc.VP61 - C:\WINDOWS\system32\vp6vfw.dll (On2.com)
Drivers32: VIDC.WMV3 - C:\WINDOWS\System32\wmv9vcm.dll (Microsoft Corporation)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin
========== Files/Folders - Created Within 30 Days ==========
[2012.04.11 20:44:14 | 000,593,920 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Administrator\Desktop\OTL.exe
[2012.04.11 20:22:32 | 000,000,000 | ---D | C] -- C:\_OTM
[2012.04.11 20:20:41 | 000,523,264 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Administrator\Desktop\OTM.exe
[2012.04.11 17:46:41 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Administrator\Recent
[2012.04.11 14:16:41 | 000,000,000 | ---D | C] -- C:\rsit
[2012.04.11 12:57:42 | 000,337,880 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSP.sys
[2012.04.11 12:57:42 | 000,020,696 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys
[2012.04.11 12:57:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\avast! Free Antivirus
[2012.04.11 12:57:40 | 000,612,184 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSnx.sys
[2012.04.11 12:57:40 | 000,053,848 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys
[2012.04.11 12:57:40 | 000,035,672 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys
[2012.04.11 12:57:39 | 000,095,704 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys
[2012.04.11 12:57:39 | 000,089,048 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon.sys
[2012.04.11 12:57:39 | 000,024,920 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys
[2012.04.11 12:57:25 | 000,041,184 | ---- | C] (AVAST Software) -- C:\WINDOWS\avastSS.scr
[2012.04.11 12:57:24 | 000,201,352 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\aswBoot.exe
[2012.04.11 12:57:16 | 000,000,000 | ---D | C] -- C:\Program Files\AVAST Software
[2012.04.11 12:57:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\AVAST Software
[2012.04.09 21:40:51 | 000,000,000 | ---D | C] -- C:\Program Files\Skype
[2012.04.09 21:40:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Skype
[2012.04.09 16:08:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Start Menu\Programs\IrfanView
[2012.04.09 15:59:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\vlc
[2012.04.09 15:59:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\VideoLAN
[2012.04.09 15:48:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Sony
[2012.04.09 15:47:55 | 000,000,000 | ---D | C] -- C:\Program Files\Sony
[2012.04.09 15:47:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Sony
[2012.04.07 23:31:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\NVIDIA Corporation
[2012.04.07 23:31:38 | 000,220,992 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcolor.exe
[2012.04.07 23:31:37 | 016,744,256 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcpl.dll
[2012.04.07 23:31:37 | 000,203,072 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvmctray.dll
[2012.04.07 23:31:36 | 000,602,432 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\easyupdatusapiu.dll
[2012.04.07 23:31:36 | 000,054,272 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwddi.dll
[2012.04.07 23:31:22 | 017,956,864 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvoglnt.dll
[2012.04.07 23:31:22 | 017,240,064 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcompiler.dll
[2012.04.07 23:31:22 | 005,595,136 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcuda.dll
[2012.04.07 23:31:22 | 002,449,408 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvapi.dll
[2012.04.07 23:31:22 | 002,398,016 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcuvid.dll
[2012.04.07 23:31:22 | 002,099,520 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcuvenc.dll
[2012.04.07 23:31:22 | 000,919,872 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvdispco32.dll
[2012.04.07 23:31:22 | 000,877,376 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvgenco32.dll
[2012.04.07 23:31:22 | 000,065,536 | ---- | C] (Khronos Group) -- C:\WINDOWS\System32\OpenCL.dll
[2012.04.07 23:31:02 | 000,000,000 | ---D | C] -- C:\Program Files\NVIDIA Corporation
[2012.04.07 23:30:49 | 000,000,000 | ---D | C] -- C:\NVIDIA
[2012.04.07 19:06:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\PCSX2_Team
[2012.03.27 10:11:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Orion
[2012.03.25 20:00:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\My Documents\Downloads
[2012.03.24 15:37:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Start Menu\Programs\AVS4YOU
[2012.03.24 15:36:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\AVS4YOU
[2012.03.24 15:36:46 | 011,137,024 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\libmfxsw32.dll
[2012.03.22 12:45:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\.swt
[2012.03.22 12:43:45 | 000,000,000 | ---D | C] -- C:\Program Files\Vuze
[2012.03.20 11:35:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Start Menu\Programs\Google Chrome
[2012.03.18 19:38:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Emicsoft Studio
[2012.03.18 19:38:13 | 000,000,000 | ---D | C] -- C:\Program Files\Emicsoft Studio
[2012.03.18 19:26:50 | 000,025,704 | ---- | C] (Wondershare) -- C:\WINDOWS\System32\drivers\WsAudio_DeviceS(5).sys
[2012.03.18 19:26:39 | 000,025,704 | ---- | C] (Wondershare) -- C:\WINDOWS\System32\drivers\WsAudio_DeviceS(4).sys
[2012.03.18 19:26:28 | 000,025,704 | ---- | C] (Wondershare) -- C:\WINDOWS\System32\drivers\WsAudio_DeviceS(3).sys
[2012.03.18 19:26:16 | 000,025,704 | ---- | C] (Wondershare) -- C:\WINDOWS\System32\drivers\WsAudio_DeviceS(2).sys
[2012.03.18 19:25:50 | 000,025,704 | ---- | C] (Wondershare) -- C:\WINDOWS\System32\drivers\WsAudio_DeviceS(1).sys
[2012.03.18 19:25:47 | 000,892,928 | ---- | C] (Free Software Foundation) -- C:\WINDOWS\System32\iconv.dll
[2012.03.18 19:25:46 | 000,000,000 | ---D | C] -- C:\Program Files\Aimersoft
[2012.03.17 23:18:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\TEMP
[2012.03.14 14:42:53 | 000,028,160 | ---- | C] (mst software GmbH, Germany) -- C:\WINDOWS\System32\DfSdkBt.exe
[2012.03.14 14:42:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Ashampoo
[2012.03.14 14:42:49 | 000,000,000 | ---D | C] -- C:\Program Files\Ashampoo
[2012.03.13 21:37:08 | 000,000,000 | -H-D | C] -- C:\WINDOWS\ie8
[2012.03.13 20:42:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\WMTools Downloaded Files
[2012.03.13 17:16:51 | 000,414,368 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl
========== Files - Modified Within 30 Days ==========
[2012.04.11 20:49:46 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2012.04.11 20:44:23 | 000,593,920 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Administrator\Desktop\OTL.exe
[2012.04.11 20:23:40 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2012.04.11 20:22:34 | 000,000,098 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\Hosts
[2012.04.11 20:20:48 | 000,523,264 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Administrator\Desktop\OTM.exe
[2012.04.11 12:57:40 | 000,002,638 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2012.04.09 20:52:07 | 000,002,228 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2012.04.07 23:31:35 | 000,285,176 | ---- | M] () -- C:\WINDOWS\System32\nvdrsdb0.bin
[2012.04.07 23:31:35 | 000,000,001 | ---- | M] () -- C:\WINDOWS\System32\nvdrssel.bin
[2012.04.07 23:31:33 | 000,285,176 | ---- | M] () -- C:\WINDOWS\System32\nvdrsdb1.bin
[2012.04.07 23:31:33 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\nvdrswr.lk
[2012.04.04 15:56:40 | 000,022,344 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2012.03.29 16:33:43 | 100,000,000 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\mutation.part2.rar
[2012.03.29 15:32:45 | 100,000,000 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\mutation.part1.rar
[2012.03.28 11:09:09 | 000,000,194 | -HS- | M] () -- C:\boot.ini
[2012.03.25 21:47:50 | 000,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2012.03.25 21:47:49 | 000,083,456 | ---- | M] () -- C:\Documents and Settings\Administrator\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012.03.25 11:00:04 | 000,474,138 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2012.03.25 11:00:04 | 000,076,898 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2012.03.22 22:46:09 | 000,002,352 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\Google Chrome.lnk
[2012.03.22 22:46:09 | 000,002,330 | ---- | M] () -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2012.03.22 12:43:53 | 000,001,511 | ---- | M] () -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Vuze.lnk
[2012.03.19 11:06:18 | 000,116,560 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2012.03.18 19:56:09 | 000,000,000 | ---- | M] () -- C:\WINDOWS\Infob.dat
[2012.03.18 19:56:09 | 000,000,000 | ---- | M] () -- C:\WINDOWS\Infoa.dat
[2012.03.14 14:42:54 | 000,000,947 | ---- | M] () -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Ashampoo WinOptimizer 2012.lnk
[2012.03.14 14:25:41 | 000,001,945 | ---- | M] () -- C:\WINDOWS\epplauncher.mif
[2012.03.14 14:25:27 | 000,000,602 | RHS- | M] () -- C:\Documents and Settings\All Users\ntuser.pol
[2012.03.13 17:16:51 | 000,414,368 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl
========== Files Created - No Company Name ==========
[2012.04.11 20:49:46 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2012.04.07 23:31:33 | 000,285,176 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb1.bin
[2012.04.07 23:31:33 | 000,285,176 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb0.bin
[2012.04.07 23:31:33 | 000,000,001 | ---- | C] () -- C:\WINDOWS\System32\nvdrssel.bin
[2012.04.07 23:31:33 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\nvdrswr.lk
[2012.04.07 23:31:22 | 002,130,002 | ---- | C] () -- C:\WINDOWS\System32\nvdata.data
[2012.04.07 23:31:22 | 000,003,250 | ---- | C] () -- C:\WINDOWS\System32\nvinfo.pb
[2012.03.29 15:38:38 | 100,000,000 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\mutation.part2.rar
[2012.03.29 14:37:14 | 100,000,000 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\mutation.part1.rar
[2012.03.22 12:43:53 | 000,001,511 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Vuze.lnk
[2012.03.22 12:43:53 | 000,001,511 | ---- | C] () -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Vuze.lnk
[2012.03.20 11:35:40 | 000,002,352 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\Google Chrome.lnk
[2012.03.20 11:35:40 | 000,002,330 | ---- | C] () -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2012.03.18 19:56:09 | 000,000,000 | ---- | C] () -- C:\WINDOWS\Infob.dat
[2012.03.18 19:56:09 | 000,000,000 | ---- | C] () -- C:\WINDOWS\Infoa.dat
[2012.03.18 19:25:47 | 000,496,640 | ---- | C] () -- C:\WINDOWS\System32\xvid.ax
[2012.03.14 14:42:54 | 000,000,947 | ---- | C] () -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Ashampoo WinOptimizer 2012.lnk
[2012.02.28 14:25:43 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll
[2011.09.09 22:41:47 | 000,000,125 | ---- | C] () -- C:\WINDOWS\amapro.dat
[2011.08.23 15:22:48 | 000,000,286 | ---- | C] () -- C:\WINDOWS\reimage.ini
[2011.08.23 14:44:09 | 000,309,278 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\WPFFontCache_v0400-S-1-5-21-1123561945-1364589140-725345543-500-0.dat
[2011.08.16 21:36:07 | 000,120,254 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\WPFFontCache_v0400-System.dat
[2011.07.18 19:08:38 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2011.04.24 19:51:45 | 000,001,042 | ---- | C] () -- C:\WINDOWS\EReg072.dat
[2011.04.09 18:55:28 | 000,179,261 | ---- | C] () -- C:\WINDOWS\System32\xlive.dll.cat
[2011.01.17 15:25:06 | 000,000,296 | ---- | C] () -- C:\WINDOWS\VMXXXX.INI
[2010.12.25 16:55:10 | 000,709,456 | ---- | C] () -- C:\WINDOWS\is-5DOS0.exe
[2010.12.01 14:32:24 | 000,281,760 | ---- | C] () -- C:\WINDOWS\System32\drivers\atksgt.sys
[2010.12.01 14:32:24 | 000,025,888 | ---- | C] () -- C:\WINDOWS\System32\drivers\lirsgt.sys
[2010.11.11 20:01:40 | 000,000,635 | ---- | C] () -- C:\WINDOWS\rtcwgoty.INI
[2010.11.11 19:54:32 | 000,001,031 | ---- | C] () -- C:\WINDOWS\Rtcwplat.INI
[2010.11.05 22:31:28 | 000,045,568 | ---- | C] () -- C:\WINDOWS\UniFish3.exe
[2010.10.24 16:41:59 | 000,000,025 | ---- | C] () -- C:\WINDOWS\popcinfot.dat
[2010.10.13 21:08:21 | 000,175,616 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
========== LOP Check ==========
[2010.02.26 14:37:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Acronis
[2012.04.11 10:59:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Azureus
[2010.02.27 18:54:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\CheckPoint
[2011.12.07 13:13:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\DAEMON Tools Lite
[2010.02.24 13:50:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Foxit
[2011.06.10 23:27:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\GHISLER
[2011.02.17 16:13:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\HD Tune Pro
[2011.02.19 14:28:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\IrfanView
[2011.04.25 19:18:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\JAM Software
[2010.10.18 18:11:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\LangSoft
[2011.06.23 21:54:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Lionhead Studios
[2011.11.29 15:39:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Ludia
[2010.11.09 15:23:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\MumboJumbo
[2012.01.07 17:49:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\MyPhoneExplorer
[2010.11.20 15:03:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Need for Speed World
[2010.02.24 13:51:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\OpenOffice.org
[2012.03.20 11:32:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Opera
[2011.05.15 17:46:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\PhotoScape
[2011.12.31 17:26:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\PunkBuster
[2011.11.15 14:50:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Rovio
[2011.12.25 13:21:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Sony
[2012.02.06 21:37:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\SWF.max
[2012.02.12 18:15:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\SystemRequirementsLab
[2011.12.09 16:50:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Trine2
[2011.03.19 13:01:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Ubisoft
[2011.07.10 20:15:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\wargaming.net
[2010.02.26 13:49:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Acronis
[2010.12.02 16:10:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Apache
[2011.02.10 11:28:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Astroburn Lite
[2005.02.24 15:20:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Astroburn Pro
[2012.04.11 12:57:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\AVAST Software
[2010.02.24 19:27:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Azureus
[2011.03.04 12:02:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Babylon
[2011.05.05 22:48:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\BVRP Software
[2011.09.23 19:42:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Codemasters
[2005.02.24 17:07:04 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\All Users\Application Data\DSS
[2010.11.16 19:08:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\EA Core
[2012.02.20 14:49:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\EA Logs
[2011.11.05 21:42:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Electronic Arts
[2012.03.18 19:38:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Emicsoft Studio
[2010.02.25 16:10:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\FreeRIP
[2010.03.02 13:55:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\LangSoft
[2010.11.09 15:23:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\MumboJumbo
[2012.03.27 10:11:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Orion
[2010.10.24 16:24:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PopCap Games
[2011.10.28 13:42:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Solidshield
[2011.09.09 22:41:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Soluto
[2012.04.09 15:47:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Sony
[2012.03.17 23:22:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TEMP
[2011.11.28 22:14:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Ubisoft
========== Purity Check ==========
========== Custom Scans ==========
< >
< >
< MD5 for: AGP440.SYS >
[2008.04.14 06:51:44 | 020,056,462 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:AGP440.sys
[2008.04.14 06:51:44 | 020,056,462 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:AGP440.sys
[2008.04.14 01:06:40 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\ServicePackFiles\i386\agp440.sys
[2008.04.14 01:06:40 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\system32\drivers\agp440.sys
< MD5 for: ATAPI.SYS >
[2008.04.14 06:51:44 | 020,056,462 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2008.04.14 06:51:44 | 020,056,462 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:atapi.sys
[2008.04.14 01:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ServicePackFiles\i386\atapi.sys
[2008.04.14 01:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
[2008.04.14 02:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\ReinstallBackups\0005\DriverFiles\i386\atapi.sys
< MD5 for: AUTOCHK.EXE >
[2008.04.14 06:42:14 | 000,588,800 | ---- | M] (Microsoft Corporation) MD5=23043C91A0F9DFB4B9E9F87B680863B4 -- C:\WINDOWS\ServicePackFiles\i386\autochk.exe
[2008.04.14 12:00:00 | 000,588,800 | ---- | M] (Microsoft Corporation) MD5=23043C91A0F9DFB4B9E9F87B680863B4 -- C:\WINDOWS\system32\autochk.exe
< MD5 for: CDROM.SYS >
[2008.04.14 06:51:44 | 020,056,462 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys
[2008.04.14 06:51:44 | 020,056,462 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:cdrom.sys
[2008.04.14 01:10:48 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\ServicePackFiles\i386\cdrom.sys
[2008.05.02 10:49:39 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=4B0A100EAF5C49EF3CCA8C641431EACC -- C:\WINDOWS\system32\drivers\cdrom.sys
< MD5 for: CRYPTSVC.DLL >
[2008.04.14 06:41:52 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=3D4E199942E29207970E04315D02AD3B -- C:\WINDOWS\ServicePackFiles\i386\cryptsvc.dll
[2008.04.14 12:00:00 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=3D4E199942E29207970E04315D02AD3B -- C:\WINDOWS\system32\cryptsvc.dll
[2008.04.14 12:00:00 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=3D4E199942E29207970E04315D02AD3B -- C:\WINDOWS\system32\dllcache\cryptsvc.dll
< MD5 for: EVENTLOG.DLL >
[2008.04.14 06:41:54 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=6D4FEB43EE538FC5428CC7F0565AA656 -- C:\WINDOWS\ServicePackFiles\i386\eventlog.dll
[2008.04.14 12:00:00 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=6D4FEB43EE538FC5428CC7F0565AA656 -- C:\WINDOWS\system32\eventlog.dll
< MD5 for: EXPLORER.EXE >
[2008.04.14 06:42:20 | 001,033,728 | ---- | M] (Microsoft Corporation) MD5=12896823FB95BFB3DC9B46BCAEDC9923 -- C:\WINDOWS\ServicePackFiles\i386\explorer.exe
[2008.07.03 11:38:24 | 001,033,728 | ---- | M] (Microsoft Corporation) MD5=2BB75B7F548D82A099125D0C5971DE7D -- C:\WINDOWS\explorer.exe
< MD5 for: HAL.DLL >
[2008.04.14 06:51:44 | 020,056,462 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:hal.dll
[2008.04.14 06:51:44 | 020,056,462 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:hal.dll
[2008.04.14 01:01:34 | 000,105,344 | ---- | M] (Microsoft Corporation) MD5=6DB1E72AD3B372DFC451B7F54BA08AA7 -- C:\WINDOWS\ServicePackFiles\i386\hal.dll
[2008.09.30 11:34:58 | 000,134,528 | ---- | M] (Microsoft Corporation) MD5=E33DE9C65B3625BDD00C1313179DA5A5 -- C:\WINDOWS\system32\hal.dll
< MD5 for: CHANGER.SYS >
[2008.04.14 06:51:44 | 020,056,462 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:Changer.sys
[2008.04.14 06:51:44 | 020,056,462 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:Changer.sys
[2008.04.14 01:11:00 | 000,008,192 | ---- | M] (Microsoft Corporation) MD5=2A5815CA6FFF24B688C01F828B96819C -- C:\WINDOWS\ServicePackFiles\i386\changer.sys
< MD5 for: ISAPNP.SYS >
[2008.04.14 06:51:44 | 020,056,462 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:isapnp.sys
[2008.04.14 06:51:44 | 020,056,462 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:isapnp.sys
[2008.04.14 01:06:42 | 000,037,248 | ---- | M] (Microsoft Corporation) MD5=05A299EC56E52649B1CF2FC52D20F2D7 -- C:\WINDOWS\ServicePackFiles\i386\isapnp.sys
[2008.04.14 01:06:42 | 000,037,248 | ---- | M] (Microsoft Corporation) MD5=05A299EC56E52649B1CF2FC52D20F2D7 -- C:\WINDOWS\system32\drivers\isapnp.sys
[2008.04.14 12:00:00 | 000,037,248 | ---- | M] (Microsoft Corporation) MD5=05A299EC56E52649B1CF2FC52D20F2D7 -- C:\WINDOWS\system32\ReinstallBackups\0004\DriverFiles\i386\isapnp.sys
< MD5 for: LSASS.EXE >
[2008.04.14 06:42:26 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=BF2466B3E18E970D8A976FB95FC1CA85 -- C:\WINDOWS\ServicePackFiles\i386\lsass.exe
[2008.04.14 12:00:00 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=BF2466B3E18E970D8A976FB95FC1CA85 -- C:\WINDOWS\system32\lsass.exe
< MD5 for: NDIS.SYS >
[2008.04.14 01:50:38 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\ServicePackFiles\i386\ndis.sys
[2008.04.14 12:00:00 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\drivers\ndis.sys
< MD5 for: NETLOGON.DLL >
[2008.04.17 04:50:11 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=06CF9EEDB7E827205C6948C9DAF56974 -- C:\WINDOWS\system32\netlogon.dll
[2008.04.14 06:42:02 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=1B7F071C51B77C272875C3A23E1E4550 -- C:\WINDOWS\ServicePackFiles\i386\netlogon.dll
< MD5 for: NVGTS.SYS >
[2008.12.30 13:14:40 | 000,145,952 | ---- | M] (NVIDIA Corporation) MD5=EA98BFE4931BD13D747D647C1859796E -- C:\WINDOWS\NLDRV\006\nvgts.sys
< MD5 for: SCECLI.DLL >
[2008.04.14 06:42:06 | 000,181,248 | ---- | M] (Microsoft Corporation) MD5=A86BB5E61BF3E39B62AB4C7E7085A084 -- C:\WINDOWS\ServicePackFiles\i386\scecli.dll
[2008.04.14 12:00:00 | 000,181,248 | ---- | M] (Microsoft Corporation) MD5=A86BB5E61BF3E39B62AB4C7E7085A084 -- C:\WINDOWS\system32\scecli.dll
< MD5 for: SMSS.EXE >
[2008.04.14 06:42:38 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=5F816C1F539266D2D4C78694239DA0B5 -- C:\WINDOWS\ServicePackFiles\i386\smss.exe
[2008.04.14 12:00:00 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=5F816C1F539266D2D4C78694239DA0B5 -- C:\WINDOWS\system32\smss.exe
< MD5 for: SVCHOST.EXE >
[2012.04.04 15:56:38 | 000,199,240 | ---- | M] () MD5=097D0E812D7A9A3101CE46CB2BE0474D -- C:\Program Files\Malwarebytes' Anti-Malware\Chameleon\svchost.exe
[2008.04.14 06:42:38 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=27C6D03BCDB8CFEB96B716F3D8BE3E18 -- C:\WINDOWS\ServicePackFiles\i386\svchost.exe
[2008.04.14 12:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=27C6D03BCDB8CFEB96B716F3D8BE3E18 -- C:\WINDOWS\system32\svchost.exe
< MD5 for: TCPIP.SYS >
[2008.12.30 06:52:37 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=5AE1C2695F6523AD98B948F2887D8C5E -- C:\WINDOWS\system32\drivers\tcpip.sys
[2008.04.14 01:50:18 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\ServicePackFiles\i386\tcpip.sys
[2008.06.20 13:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\system32\dllcache\tcpip.sys
< MD5 for: USERINIT.EXE >
[2008.04.14 06:42:40 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=A93AEE1928A9D7CE3E16D24EC7380F89 -- C:\WINDOWS\ServicePackFiles\i386\userinit.exe
[2008.04.14 12:00:00 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=A93AEE1928A9D7CE3E16D24EC7380F89 -- C:\WINDOWS\system32\userinit.exe
< MD5 for: WINLOGON.EXE >
[2012.04.04 15:56:38 | 000,199,240 | ---- | M] () MD5=097D0E812D7A9A3101CE46CB2BE0474D -- C:\Program Files\Malwarebytes' Anti-Malware\Chameleon\winlogon.exe
[2008.04.14 06:42:40 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=ED0EF0A136DEC83DF69F04118870003E -- C:\WINDOWS\ServicePackFiles\i386\winlogon.exe
[2008.04.14 12:00:00 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=ED0EF0A136DEC83DF69F04118870003E -- C:\WINDOWS\system32\winlogon.exe
< MD5 for: WS2_32.DLL >
[2008.04.14 06:42:12 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=2CCC474EB85CEAA3E1FA1726580A3E5A -- C:\WINDOWS\ServicePackFiles\i386\ws2_32.dll
[2008.04.14 12:00:00 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=2CCC474EB85CEAA3E1FA1726580A3E5A -- C:\WINDOWS\system32\ws2_32.dll
< >
< %systemroot%*.* /U /s >
[6 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[2 C:\WINDOWS\Installer\*.tmp files -> C:\WINDOWS\Installer\*.tmp -> ]
[2 C:\WINDOWS\system32\DirectX\*.tmp files -> C:\WINDOWS\system32\DirectX\*.tmp -> ]
< %SYSTEMDRIVE%\*.exe >
< %ALLUSERSPROFILE%\Application Data\*. >
[2010.02.26 13:49:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Acronis
[2010.12.02 16:10:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Apache
[2011.02.10 11:28:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Astroburn Lite
[2005.02.24 15:20:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Astroburn Pro
[2012.04.11 12:57:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\AVAST Software
[2010.03.18 15:54:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\AVS4YOU
[2010.02.24 19:27:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Azureus
[2011.03.04 12:02:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Babylon
[2011.05.05 22:48:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\BVRP Software
[2011.09.23 19:42:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Codemasters
[2005.02.24 17:07:04 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\All Users\Application Data\DSS
[2010.11.16 19:08:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\EA Core
[2012.02.20 14:49:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\EA Logs
[2011.11.05 21:42:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Electronic Arts
[2012.03.18 19:38:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Emicsoft Studio
[2010.02.25 16:10:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\FreeRIP
[2010.03.02 13:55:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\LangSoft
[2010.02.25 14:12:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\LogiShrd
[2010.02.25 14:12:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Logitech
[2010.10.22 20:09:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
[2012.03.14 14:25:37 | 000,000,000 | --SD | M] -- C:\Documents and Settings\All Users\Application Data\Microsoft
[2010.11.09 15:23:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\MumboJumbo
[2010.02.25 14:36:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Nero
[2012.04.07 23:31:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\NVIDIA Corporation
[2012.03.27 10:11:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Orion
[2010.10.24 16:24:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PopCap Games
[2010.11.08 15:18:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Real
[2012.04.09 21:40:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Skype
[2011.10.28 13:42:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Solidshield
[2011.09.09 22:41:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Soluto
[2012.04.09 15:47:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Sony
[2012.04.09 15:47:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Sony Ericsson
[2010.02.28 21:17:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Sun
[2012.03.17 23:22:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TEMP
[2010.11.09 15:23:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Trymedia
[2011.11.28 22:14:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Ubisoft
[2011.07.02 13:07:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage
< %ALLUSERSPROFILE%\Application Data\*.exe /s >
[2012.04.10 12:26:34 | 010,063,000 | ---- | M] (Malwarebytes Corporation ) -- C:\Documents and Settings\All Users\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\mbam-setup.exe
[2011.09.09 22:41:06 | 001,227,824 | ---- | M] (Soluto Inc) -- C:\Documents and Settings\All Users\Application Data\Soluto\Installer\SolutoInstaller.exe
[2012.02.28 21:10:48 | 000,154,744 | ---- | M] (Sony Ericsson Mobile Communications) -- C:\Documents and Settings\All Users\Application Data\Sony Ericsson\Update Engine\configuration\org.eclipse.osgi\bundles\72\1\.cp\lib\win32\DeviceRemover.exe
[2012.02.28 21:10:37 | 000,158,840 | ---- | M] (Sony Ericsson Mobile Communications) -- C:\Documents and Settings\All Users\Application Data\Sony Ericsson\Update Engine\configuration\org.eclipse.osgi\bundles\74\1\.cp\lib\win32\DriverInstaller.exe
< %APPDATA%\*. >
[2010.02.26 14:37:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Acronis
[2010.02.23 18:54:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Adobe
[2010.03.18 15:54:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\AVS4YOU
[2012.04.11 10:59:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Azureus
[2010.02.27 18:54:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\CheckPoint
[2011.12.07 13:13:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\DAEMON Tools Lite
[2012.03.24 16:07:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\dvdcss
[2011.04.26 22:32:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\FastStone
[2010.02.24 13:50:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Foxit
[2011.06.10 23:27:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\GHISLER
[2011.05.19 21:57:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Google
[2011.02.17 16:13:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\HD Tune Pro
[2010.02.22 16:23:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Identities
[2010.02.22 17:35:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\InstallShield
[2011.02.19 14:28:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\IrfanView
[2011.04.25 19:18:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\JAM Software
[2010.10.18 18:11:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\LangSoft
[2011.06.23 21:54:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Lionhead Studios
[2010.02.25 14:15:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Logitech
[2011.11.29 15:39:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Ludia
[2010.02.23 18:54:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Macromedia
[2010.10.22 20:09:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Malwarebytes
[2011.06.19 17:55:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Media Player Classic
[2010.11.09 15:21:30 | 000,000,000 | --SD | M] -- C:\Documents and Settings\Administrator\Application Data\Microsoft
[2012.03.24 11:24:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Mozilla
[2010.11.09 15:23:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\MumboJumbo
[2012.01.07 17:49:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\MyPhoneExplorer
[2010.11.20 15:03:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Need for Speed World
[2010.02.25 14:39:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Nero
[2011.09.23 19:42:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\NVIDIA
[2010.02.24 13:51:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\OpenOffice.org
[2012.03.20 11:32:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Opera
[2011.05.15 17:46:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\PhotoScape
[2011.12.31 17:26:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\PunkBuster
[2010.11.08 15:18:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Real
[2011.11.15 14:50:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Rovio
[2012.04.11 20:47:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Skype
[2011.02.18 18:40:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\skypePM
[2011.12.25 13:21:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Sony
[2010.02.28 21:14:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Sun
[2012.02.06 21:37:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\SWF.max
[2012.02.12 18:15:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\SystemRequirementsLab
[2011.12.09 16:50:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Trine2
[2011.03.19 13:01:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Ubisoft
[2012.04.09 16:26:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\vlc
[2011.07.10 20:15:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\wargaming.net
[2012.04.11 13:12:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Winamp
[2011.06.19 18:05:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\WinRAR
< %APPDATA%\*.exe /s >
[2010.02.25 14:14:53 | 000,053,248 | R--- | M] (Acresso Software Inc.) -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Installer\{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}\ARPPRODUCTICON.exe
[2010.12.31 14:25:28 | 000,010,134 | R--- | M] () -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Installer\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}\ARPPRODUCTICON.exe
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\Tasks\*.job /lockedfiles >
< %systemroot%\system32\drivers\*.sys /lockedfiles >
[2011.12.04 19:52:11 | 000,428,088 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\system32\drivers\sptd.sys
< %systemroot%\System32\config\*.sav >
[2010.02.22 17:12:11 | 000,102,400 | ---- | M] () -- C:\WINDOWS\System32\config\default.sav
[2010.02.22 17:12:11 | 001,089,536 | ---- | M] () -- C:\WINDOWS\System32\config\software.sav
[2010.02.22 17:12:11 | 000,921,600 | ---- | M] () -- C:\WINDOWS\System32\config\system.sav
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\system32\drivers\*.sys /3 >
< %systemroot%\system32\*.* /3 >
[2012.04.11 12:57:40 | 000,002,638 | ---- | M] () -- C:\WINDOWS\system32\CONFIG.NT
[2012.04.09 20:52:07 | 000,002,228 | ---- | M] () -- C:\WINDOWS\system32\wpa.dbl
< %SYSTEMDRIVE%\*.exe >
< >
< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"ctfmon.exe" = C:\WINDOWS\system32\ctfmon.exe -- [2008.04.14 12:00:00 | 000,015,360 | ---- | M] (Microsoft Corporation)
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\not active]
< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\WUAUSERV
IMAGEPATH REG_EXPAND_SZ %systemroot%\system32\svchost.exe -k netsvcs
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\BITS
IMAGEPATH REG_EXPAND_SZ %SystemRoot%\system32\svchost.exe -k netsvcs
< >
< type c:\boot.ini >> test.txt /c >
[boot loader]
timeout=30
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /fastdetect
< %SystemDrive%\PhysicalMBR.bin /md5 >
[2012.04.11 20:49:46 | 000,000,512 | ---- | M] () MD5=47FD5B8FE38A926E0B0ED4DEBC469994 -- C:\PhysicalMBR.bin
< >
< *crack* /s >
[2011.03.10 23:00:49 | 000,004,317 | ---- | M] () -- \Documents and Settings\Administrator\Application Data\Azureus\torrents\Dragon_Age_2_Crack_only_-_Reloaded.6228400.TPB-1.torrent
[2011.06.16 21:17:49 | 000,003,478 | ---- | M] () -- \Documents and Settings\Administrator\Application Data\Azureus\torrents\Duke.Nukem.Forever.Proper.CrackOnly.SKIDROW.6473426.TPB.torrent
[2011.10.04 18:35:58 | 000,008,120 | ---- | M] () -- \Documents and Settings\Administrator\Application Data\Azureus\torrents\DVDFab_Platinum_v8.1.1.2___Crack_[ChattChitto_RG].6597888.TPB.torrent
[2011.08.07 10:58:06 | 000,011,996 | ---- | M] () -- \Documents and Settings\Administrator\Application Data\Azureus\torrents\LIMBO.v1.0r4.multi9.cracked-THETA.6578886.TPB.torrent
[2010.11.18 16:46:47 | 000,000,866 | ---- | M] () -- \Documents and Settings\Administrator\Application Data\Azureus\torrents\Need_for_Speed_Hot_Pursuit-RELOADED_Crack_Only.5964351.TPB.torrent
[2011.04.25 21:30:37 | 000,002,745 | ---- | M] () -- \Documents and Settings\Administrator\Application Data\Azureus\torrents\Portal_2_Crack_Fix-SKIDROW.6331819.TPB.torrent
[2010.10.29 14:05:30 | 000,001,784 | ---- | M] () -- \Documents and Settings\Administrator\Application Data\Azureus\torrents\Shank_Crackfix.5919361.TPB.torrent
[2012.03.02 11:28:14 | 000,016,278 | ---- | M] () -- \Documents and Settings\Administrator\Application Data\Azureus\torrents\Syndicate Crack Only-3DM.torrent
[2012.03.02 11:17:19 | 000,025,435 | ---- | M] () -- \Documents and Settings\Administrator\Application Data\Azureus\torrents\Syndicate.CRACK.ONLY-SKIDROW.torrent
< *keygen* /s >
[2011.04.04 19:27:24 | 000,001,302 | ---- | M] () -- \Documents and Settings\Administrator\Application Data\Azureus\torrents\Two_Worlds_2_Keygen_Fix-RELOADED.5955798.TPB.torrent
< *loader* /s >
[2012.03.24 15:37:02 | 000,001,035 | ---- | M] () -- \Documents and Settings\Administrator\SendTo\AVS Mobile Uploader.lnk
[2012.03.24 15:37:03 | 000,001,021 | ---- | M] () -- \Documents and Settings\Administrator\SendTo\AVS Video Uploader.lnk
[2012.02.29 08:49:32 | 000,072,638 | ---- | M] () -- \Documents and Settings\All Users\Application Data\Skype\Apps\login\images\loader.gif
[2012.02.29 08:49:32 | 000,003,032 | ---- | M] () -- \Documents and Settings\All Users\Application Data\Skype\Apps\login\images\loader.png
[2012.03.24 15:37:03 | 000,001,039 | ---- | M] () -- \Documents and Settings\All Users\Start Menu\Programs\AVS4YOU\Video\AVS Video Uploader.lnk
[2011.09.02 18:54:20 | 005,107,560 | ---- | M] () -- \Program Files\Common Files\AVSMedia\MobileUploader\AVSMobileUploader.exe
[2011.07.20 21:03:44 | 000,081,420 | ---- | M] () -- \Program Files\Common Files\AVSMedia\MobileUploader\AVSMobileUploader.sil
[2011.09.02 12:29:56 | 004,313,448 | ---- | M] () -- \Program Files\Common Files\AVSMedia\VideoUploader\AVSVideoUploader.exe
[2011.09.01 18:54:12 | 000,038,075 | ---- | M] () -- \Program Files\Common Files\AVSMedia\VideoUploader\AVSVideoUploader.sib
[2007.09.26 20:37:48 | 000,107,816 | ---- | M] () -- \Program Files\Common Files\Nero\Shared\NSCLoader.dll
[2009.05.31 03:21:00 | 000,071,008 | ---- | M] () -- \Program Files\NVIDIA Corporation\PhysX\Common\PhysXLoader.dll
[2009.09.16 23:33:50 | 000,006,308 | ---- | M] () -- \Program Files\OpenOffice.org 3\Basis\program\pythonloader.py
[2009.09.16 16:22:08 | 000,022,528 | ---- | M] () -- \Program Files\OpenOffice.org 3\Basis\program\pythonloader.uno.dll
[2009.09.18 19:20:08 | 000,000,171 | ---- | M] () -- \Program Files\OpenOffice.org 3\Basis\program\pythonloader.uno.ini
[2009.09.11 17:36:38 | 000,029,696 | ---- | M] () -- \Program Files\OpenOffice.org 3\URE\bin\javaloader.uno.dll
[2009.09.18 12:48:12 | 000,003,872 | ---- | M] () -- \Program Files\OpenOffice.org 3\URE\java\unoloader.jar
[2012.02.16 18:34:38 | 000,001,702 | ---- | M] () -- \Program Files\Sony Ericsson\Update Engine\licenses\loaderbinarylegal.txt
[2008.04.14 06:41:54 | 000,035,840 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\dmloader.dll
[2008.04.14 01:01:44 | 000,230,400 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\osloader.exe
[2008.04.14 01:01:46 | 000,278,016 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\osloader.ntd
[2008.04.14 12:00:00 | 000,035,840 | ---- | M] () -- \WINDOWS\system32\dmloader.dll
========== Alternate Data Streams ==========
@Alternate Data Stream - 6144 bytes -> C:\WINDOWS\Cursors\arrow_n.cur:NEDTA.DAT
@Alternate Data Stream - 229 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:8FF81EB0
< End of report >
Re: preventívna kontrola po dlhom čase RSIT
Obsah Extras.txt
OTL Extras logfile created on: 11.4.2012 20:48:28 - Run 1
OTL by OldTimer - Version 3.2.39.2 Folder = C:\Documents and Settings\Administrator\Desktop
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 0000041B | Country: Slovakia | Language: SKY | Date Format: d.M.yyyy
3,00 Gb Total Physical Memory | 2,36 Gb Available Physical Memory | 78,78% Memory free
4,84 Gb Paging File | 4,38 Gb Available in Paging File | 90,54% Paging File free
Paging file location(s): D:\pagefile.sys 2046 4092 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 9,67 Gb Total Space | 2,00 Gb Free Space | 20,64% Space Free | Partition Type: NTFS
Drive D: | 223,11 Gb Total Space | 21,75 Gb Free Space | 9,75% Space Free | Partition Type: NTFS
Computer Name: MAJO | User Name: Administrator | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
[HKEY_USERS\S-1-5-21-1123561945-1364589140-725345543-500\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
htmlfile [edit] -- Reg Error: Key error.
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [OverDisk] -- "C:\Program Files\OverDisk\OverDisk.exe" "%1" (Elias Fotinis)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Directory [Winamp.Bookmark] -- "C:\Program Files\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)
Directory [Winamp.Enqueue] -- "C:\Program Files\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)
Directory [Winamp.Play] -- "C:\Program Files\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
========== System Restore Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\SystemRestore]
"DisableSR" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0
"DisableUnicastResponsesToMulticastBroadcast" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 0
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0
"DisableUnicastResponsesToMulticastBroadcast" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22008
"8396:TCP" = 8396:TCP:*:Enabled:League of Legends Launcher
"8396:UDP" = 8396:UDP:*:Enabled:League of Legends Launcher
"6922:TCP" = 6922:TCP:*:Enabled:League of Legends Launcher
"6922:UDP" = 6922:UDP:*:Enabled:League of Legends Launcher
"6991:TCP" = 6991:TCP:*:Enabled:League of Legends Launcher
"6991:UDP" = 6991:UDP:*:Enabled:League of Legends Launcher
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\WINDOWS\system32\ZoneLabs\vsmon.exe" = C:\WINDOWS\system32\ZoneLabs\vsmon.exe:*:Enabled:vsmon
"D:\Hry\Mass Effect\Binaries\MassEffect.exe" = D:\Hry\Mass Effect\Binaries\MassEffect.exe:*:Enabled:Mass Effect Game
"D:\Hry\Mass Effect\MassEffectLauncher.exe" = D:\Hry\Mass Effect\MassEffectLauncher.exe:*:Enabled:Mass Effect Launcher
"D:\Hry\NFS HP\Launcher.exe" = D:\Hry\NFS HP\Launcher.exe:*:Enabled:Need for Speed(TM) Hot Pursuit -- (Electronic Arts)
"C:\Program Files\Winamp\winamp.exe" = C:\Program Files\Winamp\winamp.exe:*:Enabled:Winamp -- (Nullsoft, Inc.)
"C:\WINDOWS\system32\PnkBstrA.exe" = C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA
"C:\WINDOWS\system32\PnkBstrB.exe" = C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB
"D:\Hry\ACB\ACBSP.exe" = D:\Hry\ACB\ACBSP.exe:*:Enabled:Assassin's Creed Brotherhood -- ()
"D:\Hry\ACB\ACBMP.exe" = D:\Hry\ACB\ACBMP.exe:*:Enabled:Assassin's Creed Brotherhood Multiplayer -- ()
"D:\Hry\ACB\AssassinsCreedBrotherhood.exe" = D:\Hry\ACB\AssassinsCreedBrotherhood.exe:*:Enabled:Assassin's Creed Brotherhood Update -- ()
"D:\Hry\ACB\UPlayBrowser.exe" = D:\Hry\ACB\UPlayBrowser.exe:*:Enabled:Assassin's Creed Brotherhood Uplay -- (Ubisoft Entertainment)
"D:\Hry\Dirt 3\dirt3_game.exe" = D:\Hry\Dirt 3\dirt3_game.exe:*:Enabled:DiRT 3 -- (Codemasters Software Company Limited)
"D:\Hry\Virtua Tennis 4\VT4.exe" = D:\Hry\Virtua Tennis 4\VT4.exe:*:Enabled:Virtua Tennis 4™ -- (SEGA)
"C:\Documents and Settings\Administrator\Desktop\solutoinstaller.exe" = C:\Documents and Settings\Administrator\Desktop\solutoinstaller.exe:*:Enabled:SolutoInstaller
"C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Google Talk Plugin\googletalkplugin.exe" = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Google Talk Plugin\googletalkplugin.exe:*:Enabled:Google Talk Plugin -- (Google)
"D:\Hry\The Adventures of Tintin - The Secret of the Unicorn - Game demo\TINTIN.exe" = D:\Hry\The Adventures of Tintin - The Secret of the Unicorn - Game demo\TINTIN.exe:*:Enabled:The Adventures of Tintin - Demo
"D:\Hry\NCIS\support\UpdateLauncher\gu.exe" = D:\Hry\NCIS\support\UpdateLauncher\gu.exe:*:Enabled:NCIS Game -- (Ubisoft)
"D:\Hry\NCIS\NCIS.exe" = D:\Hry\NCIS\NCIS.exe:*:Enabled:NCIS Game -- ()
"C:\Program Files\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe" = C:\Program Files\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe:*:Enabled:Ubisoft Game Launcher -- ()
"D:\Hry\ACR\ACRSP.exe" = D:\Hry\ACR\ACRSP.exe:*:Enabled:Assassin's Creed Revelations -- ()
"D:\Hry\ACR\ACRMP.exe" = D:\Hry\ACR\ACRMP.exe:*:Enabled:Assassin's Creed Revelations Multiplayer -- ()
"D:\Hry\ACR\AssassinsCreedRevelations.exe" = D:\Hry\ACR\AssassinsCreedRevelations.exe:*:Enabled:Assassin's Creed Revelations Update -- (Ubisoft)
"D:\Hry\Driver SF\Driver.exe" = D:\Hry\Driver SF\Driver.exe:*:Enabled:Driver San Francisco -- ()
"C:\Program Files\VideoLAN\VLC\vlc.exe" = C:\Program Files\VideoLAN\VLC\vlc.exe:*:Enabled:VLC media player -- ()
"D:\Hry\Shank 2\bin\Shank2.exe" = D:\Hry\Shank 2\bin\Shank2.exe:*:Enabled:Shank 2 -- (Klei Entertainment Inc.)
"C:\Program Files\Sony Ericsson\Update Engine\Sony Ericsson Update Engine.exe" = C:\Program Files\Sony Ericsson\Update Engine\Sony Ericsson Update Engine.exe:*:Enabled:Update Engine -- ()
"C:\Program Files\Vuze\Azureus.exe" = C:\Program Files\Vuze\Azureus.exe:*:Enabled:Azureus / Vuze -- (Vuze Inc.)
"D:\Hry\NFS HP\NFS11.exe" = D:\Hry\NFS HP\NFS11.exe:*:Enabled:Need for Speed(TM) Hot Pursuit Application -- (Electronic Arts)
"D:\Hry\Rayman Origins\Rayman Origins.exe" = D:\Hry\Rayman Origins\Rayman Origins.exe:*:Enabled:Rayman Origins -- ()
"D:\Hry\Rayman Origins\gu.exe" = D:\Hry\Rayman Origins\gu.exe:*:Enabled:Rayman Origins -- (Ubisoft)
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{02E89EFC-7B07-4D5A-AA03-9EC0902914EE}" = VC 9.0 Runtime
"{0840B4D6-7DD1-4187-8523-E6FC0007EFB7}" = Windows Live ID Sign-in Assistant
"{0C826C5B-B131-423A-A229-C71B3CACCD6A}" = CDDRV_Installer
"{1211F510-803E-4FEF-A718-137AAE4DCC59}" = NCIS Game
"{19B72AA9-985A-11D4-9C8A-00D0B75D1498}" = Colin McRae Rally 2
"{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}" = Microsoft XNA Framework Redistributable 3.1
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{2397CAD4-2263-4CD0-96BE-E43A980B9C9A}_is1" = Geeks3D.com FurMark 1.9.0
"{26A24AE4-039D-4CA4-87B4-2F83216024FF}" = Java(TM) 6 Update 24
"{3101CB58-3482-4D21-AF1A-7057FC935355}" = KhalInstallWrapper
"{33A22B2D-55BA-4508-B767-BF2E9C21A73F}" = Assassin's Creed Revelations
"{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{37C8899D-FD70-481F-94AA-1F1B08765E22}" = Acronis True Image Home
"{3921A67A-5AB1-4E48-9444-C71814CF3027}" = VCRedistSetup
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{3C3D696B-0DB7-3C6D-A356-3DB8CE541918}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
"{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}" = erLT
"{3F2A323E-60C4-41E8-8CCB-9715D1D750C3}" = Angry Birds Space
"{434D0FA0-1558-4D8E-AC3D-BD1000008200}" = DiRT 3
"{4933D2E2-B621-487F-A7E7-96DA7312BCFE}" = Angry Birds Rio
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4CB0307C-565E-4441-86BE-0DF2E4FB828C}" = Microsoft Games for Windows Marketplace
"{4D87DC92-C328-46EC-A7B4-9C88129DC696}" = Dead Space™
"{501451DE-5808-4599-B544-8BD0915B6B24}_is1" = FreeRIP v3.6
"{53450FA2-E900-456E-9715-501000008200}" = Virtua Tennis 4™
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{5EE7D259-D137-4438-9A5F-42F432EC0421}" = VC80CRTRedist - 8.0.50727.4053
"{614F6133-1897-3CB9-859A-F2A19FBE8D4A}" = Google Talk Plugin
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6BB2B8AB-2590-4157-8576-C0A270994A6B}" = Wolfenstein Demo
"{6EBF5C73-D05A-485D-AB60-E557F9947359}" = Oracle VM VirtualBox 3.2.10
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{765443B7-555F-4E8C-9C96-A52409AE4E4A}" = Utility
"{7F6D7FD9-648D-4DD9-BB6E-3990C675ECA4}" = NVIDIA PhysX
"{83A606F5-BF6F-42ED-9F33-B9F74297CDED}" = Need for Speed(TM) Hot Pursuit
"{8570BEE8-0CA3-4977-9AB1-80ED93F0513C}" = Assassin's Creed II
"{888F1505-C2B3-4FDE-835D-36353EBD4754}" = Ubisoft Game Launcher
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{943A8D28-80D6-41DC-AE94-81FEB42041BF}" = System Requirements Lab CYRI
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{974C4B12-4D02-4879-85E0-61C95CC63E9E}" = Fallout 3
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{B0BDAABA-A815-4CF3-843C-405B017EF7DF}" = OpenOffice.org 3.1
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = NVIDIA Control Panel 285.58
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Graphics Driver 285.58
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NView" = NVIDIA nView 135.95
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA PhysX System Software 9.11.0621
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B7B8D9A9-EFCB-4c2f-8117-7A2A32D0BC58}" = Shank 2
"{B944FA21-81AF-4A77-8328-CE4F4CC51033}" = Nero 8
"{BE4BA698-8533-4F77-9559-C7F3F78C0B05}" = Assassin's Creed Brotherhood
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C9BED750-1211-4480-B1A5-718A3BE15525}" = REALTEK GbE & FE Ethernet PCI-E NIC Driver
"{CCD3F3D0-C85A-4BB7-ADDA-CA68019631D5}" = Angry Birds Seasons
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D2FCA41E-AC01-4DCD-B3A7-DC9E32363065}}_is1" = Rapture3D 2.4.9 Game
"{DE491AB9-1D47-4FED-A8F5-4D4325B2EB4B}" = Rayman Origins
"{E3E71D07-CD27-46CB-8448-16D4FB29AA13}" = Microsoft WSE 3.0 Runtime
"{EAA02F85-3DD4-4083-9AF6-7A2C13ACF1E5}" = Moorhuhn Piraten
"{EE7257A2-39A2-4D2F-9DAC-F9F25B8AE1D8}" = Skype™ 5.8
"{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}" = Sony PC Companion 2.10.030
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F2508213-9989-4E85-A078-72BE483917EF}" = Microsoft Games for Windows - LIVE Redistributable
"{F29B21BD-CAA6-445F-8EF7-A7E2B9D8B14E}" = Logitech SetPoint
"{F2B5A2A7-2DF9-4361-8BD5-362714528B51}" = NHL® 09
"{FF10D622-7BFE-48C6-8DF6-40D8CB1D3C1B}" = Auta 2
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"8461-7759-5462-8226" = Vuze
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Ashampoo WinOptimizer 2012_is1" = Ashampoo WinOptimizer 2012 v.8.1.4
"avast" = avast! Free Antivirus
"AVS Update Manager_is1" = AVS Update Manager 1.0
"AVS4YOU Software Navigator_is1" = AVS4YOU Software Navigator 1.4
"AVS4YOU Video Converter 7_is1" = AVS Video Converter 8
"CCleaner" = CCleaner
"CleanUp!" = CleanUp!
"Defraggler" = Defraggler
"Driver San Francisco" = Driver San Francisco
"Dyna Blaster (DOSBox 0.74 emulation)" = Dyna Blaster (DOSBox 0.74 emulation)
"eMule" = eMule
"EVEREST Ultimate Edition_is1" = EVEREST Ultimate Edition v5.01
"FastStone Photo Resizer" = FastStone Photo Resizer 3.0
"Foxit Reader" = Foxit Reader
"Fraps" = Fraps (remove only)
"GFWL_{434D0FA0-1558-4D8E-AC3D-BD1000008200}" = DiRT 3
"GFWL_{53450FA2-E900-456E-9715-501000008200}" = Virtua Tennis 4™
"Hard Reset_is1" = Hard Reset
"HeavyLoad_is1" = HeavyLoad V3.0
"HijackThis" = HijackThis 2.0.2
"ie8" = Windows Internet Explorer 8
"Insane 2_is1" = Insane 2
"InstallShield_{1211F510-803E-4FEF-A718-137AAE4DCC59}" = NCIS Game
"IrfanView" = IrfanView (remove only)
"KLiteCodecPack_is1" = K-Lite Codec Pack 7.2.0 (Basic)
"Knockout Kings 2001 (pSX 1.13 emulation)" = Knockout Kings 2001 (pSX 1.13 emulation)
"Luxor - 5th Passage1.0" = Luxor - 5th Passage
"Mafia II_is1" = Mafia II DLC Joe's Adventures
"Magic ISO Maker v5.4 (build 0239)" = Magic ISO Maker v5.4 (build 0239)
"MagicDisc 2.7.106" = MagicDisc 2.7.106
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware verzia 1.61.0.1400
"Memento Mori_is1" = Memento Mori
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Mozilla Firefox 11.0 (x86 sk)" = Mozilla Firefox 11.0 (x86 sk)
"MPE" = MyPhoneExplorer
"OpenAL" = OpenAL
"OverDisk" = OverDisk (remove only)
"Polda II_is1" = Polda II
"Posel Smrti 2_is1" = Posel Smrti 2
"Posel Smrti 3_is1" = Posel Smrti 3
"Posel smrti_is1" = Posel smrti 1.2
"QcDrv" = Logitech® Camera Driver
"Rayman (DOSBox 0.74 emulation)" = Rayman (DOSBox 0.74 emulation)
"Revo Uninstaller" = Revo Uninstaller 1.85
"Shank_is1" = Shank
"SystemRequirementsLab" = System Requirements Lab
"Test Drive Unlimited 2_is1" = Test Drive Unlimited 2
"Thief 2: The Metal Age_is1" = Thief 2: The Metal Age
"Thief Gold_is1" = Thief Gold
"Totalcmd" = Total Commander (Remove or Repair)
"Trine 2_is1" = Trine 2
"Update Engine" = Sony Ericsson Update Engine
"VLC media player" = VLC media player 2.0.1
"Winamp" = Winamp
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"WinRAR archiver" = WinRAR 4.01 (32-bit)
========== HKEY_USERS Uninstall List ==========
[HKEY_USERS\S-1-5-21-1123561945-1364589140-725345543-500\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Fenimore Fillmore's Revenge CZ" = Fenimore Fillmore's Revenge CZ
"Google Chrome" = Google Chrome
========== Last 10 Event Log Errors ==========
[ Application Events ]
Error - 19.6.2011 10:53:17 | Computer Name = MAJO | Source = crypt32 | ID = 131080
Description = Failed auto update retrieval of third-party root list sequence number
from: <http://www.download.windowsupdate.com/m ... ootseq.txt>
with error: This operation returned because the timeout period expired.
Error - 28.6.2011 8:10:49 | Computer Name = MAJO | Source = MsiInstaller | ID = 11714
Description =
Error - 28.6.2011 8:10:49 | Computer Name = MAJO | Source = MsiInstaller | ID = 11714
Description =
[ System Events ]
Error - 7.4.2012 4:03:25 | Computer Name = MAJO | Source = DCOM | ID = 10005
Description = DCOM got error "%1058" attempting to start the service NMIndexingService
with arguments "" in order to run the server: {E8933C4B-2C90-4A04-A677-E958D9509F1A}
Error - 7.4.2012 4:03:26 | Computer Name = MAJO | Source = DCOM | ID = 10005
Description = DCOM got error "%1058" attempting to start the service NMIndexingService
with arguments "" in order to run the server: {E8933C4B-2C90-4A04-A677-E958D9509F1A}
Error - 7.4.2012 12:55:45 | Computer Name = MAJO | Source = WPDMTPDriver | ID = 80836
Description = MTP WPD Driver has failed to start. Error 0x8007001f.
Error - 9.4.2012 14:25:55 | Computer Name = MAJO | Source = sptd | ID = 262148
Description = Driver detected an internal error in its data structures for .
Error - 9.4.2012 14:26:21 | Computer Name = MAJO | Source = DCOM | ID = 10005
Description = DCOM got error "%1084" attempting to start the service EventSystem
with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}
Error - 9.4.2012 14:27:10 | Computer Name = MAJO | Source = DCOM | ID = 10005
Description = DCOM got error "%1084" attempting to start the service EventSystem
with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}
Error - 11.4.2012 4:54:54 | Computer Name = MAJO | Source = sptd | ID = 262148
Description = Driver detected an internal error in its data structures for .
Error - 11.4.2012 4:54:58 | Computer Name = MAJO | Source = DCOM | ID = 10005
Description = DCOM got error "%1084" attempting to start the service EventSystem
with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}
Error - 11.4.2012 4:57:17 | Computer Name = MAJO | Source = DCOM | ID = 10005
Description = DCOM got error "%1084" attempting to start the service EventSystem
with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}
Error - 11.4.2012 14:09:05 | Computer Name = MAJO | Source = Dhcp | ID = 1000
Description = Your computer has lost the lease to its IP address 172.20.71.101 on
the Network Card with network address 00241D88A58D.
< End of report >
MBAM nič nenašiel.
OTL Extras logfile created on: 11.4.2012 20:48:28 - Run 1
OTL by OldTimer - Version 3.2.39.2 Folder = C:\Documents and Settings\Administrator\Desktop
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 0000041B | Country: Slovakia | Language: SKY | Date Format: d.M.yyyy
3,00 Gb Total Physical Memory | 2,36 Gb Available Physical Memory | 78,78% Memory free
4,84 Gb Paging File | 4,38 Gb Available in Paging File | 90,54% Paging File free
Paging file location(s): D:\pagefile.sys 2046 4092 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 9,67 Gb Total Space | 2,00 Gb Free Space | 20,64% Space Free | Partition Type: NTFS
Drive D: | 223,11 Gb Total Space | 21,75 Gb Free Space | 9,75% Space Free | Partition Type: NTFS
Computer Name: MAJO | User Name: Administrator | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
[HKEY_USERS\S-1-5-21-1123561945-1364589140-725345543-500\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
htmlfile [edit] -- Reg Error: Key error.
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [OverDisk] -- "C:\Program Files\OverDisk\OverDisk.exe" "%1" (Elias Fotinis)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Directory [Winamp.Bookmark] -- "C:\Program Files\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)
Directory [Winamp.Enqueue] -- "C:\Program Files\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)
Directory [Winamp.Play] -- "C:\Program Files\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
========== System Restore Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\SystemRestore]
"DisableSR" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0
"DisableUnicastResponsesToMulticastBroadcast" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 0
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0
"DisableUnicastResponsesToMulticastBroadcast" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22008
"8396:TCP" = 8396:TCP:*:Enabled:League of Legends Launcher
"8396:UDP" = 8396:UDP:*:Enabled:League of Legends Launcher
"6922:TCP" = 6922:TCP:*:Enabled:League of Legends Launcher
"6922:UDP" = 6922:UDP:*:Enabled:League of Legends Launcher
"6991:TCP" = 6991:TCP:*:Enabled:League of Legends Launcher
"6991:UDP" = 6991:UDP:*:Enabled:League of Legends Launcher
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\WINDOWS\system32\ZoneLabs\vsmon.exe" = C:\WINDOWS\system32\ZoneLabs\vsmon.exe:*:Enabled:vsmon
"D:\Hry\Mass Effect\Binaries\MassEffect.exe" = D:\Hry\Mass Effect\Binaries\MassEffect.exe:*:Enabled:Mass Effect Game
"D:\Hry\Mass Effect\MassEffectLauncher.exe" = D:\Hry\Mass Effect\MassEffectLauncher.exe:*:Enabled:Mass Effect Launcher
"D:\Hry\NFS HP\Launcher.exe" = D:\Hry\NFS HP\Launcher.exe:*:Enabled:Need for Speed(TM) Hot Pursuit -- (Electronic Arts)
"C:\Program Files\Winamp\winamp.exe" = C:\Program Files\Winamp\winamp.exe:*:Enabled:Winamp -- (Nullsoft, Inc.)
"C:\WINDOWS\system32\PnkBstrA.exe" = C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA
"C:\WINDOWS\system32\PnkBstrB.exe" = C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB
"D:\Hry\ACB\ACBSP.exe" = D:\Hry\ACB\ACBSP.exe:*:Enabled:Assassin's Creed Brotherhood -- ()
"D:\Hry\ACB\ACBMP.exe" = D:\Hry\ACB\ACBMP.exe:*:Enabled:Assassin's Creed Brotherhood Multiplayer -- ()
"D:\Hry\ACB\AssassinsCreedBrotherhood.exe" = D:\Hry\ACB\AssassinsCreedBrotherhood.exe:*:Enabled:Assassin's Creed Brotherhood Update -- ()
"D:\Hry\ACB\UPlayBrowser.exe" = D:\Hry\ACB\UPlayBrowser.exe:*:Enabled:Assassin's Creed Brotherhood Uplay -- (Ubisoft Entertainment)
"D:\Hry\Dirt 3\dirt3_game.exe" = D:\Hry\Dirt 3\dirt3_game.exe:*:Enabled:DiRT 3 -- (Codemasters Software Company Limited)
"D:\Hry\Virtua Tennis 4\VT4.exe" = D:\Hry\Virtua Tennis 4\VT4.exe:*:Enabled:Virtua Tennis 4™ -- (SEGA)
"C:\Documents and Settings\Administrator\Desktop\solutoinstaller.exe" = C:\Documents and Settings\Administrator\Desktop\solutoinstaller.exe:*:Enabled:SolutoInstaller
"C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Google Talk Plugin\googletalkplugin.exe" = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Google Talk Plugin\googletalkplugin.exe:*:Enabled:Google Talk Plugin -- (Google)
"D:\Hry\The Adventures of Tintin - The Secret of the Unicorn - Game demo\TINTIN.exe" = D:\Hry\The Adventures of Tintin - The Secret of the Unicorn - Game demo\TINTIN.exe:*:Enabled:The Adventures of Tintin - Demo
"D:\Hry\NCIS\support\UpdateLauncher\gu.exe" = D:\Hry\NCIS\support\UpdateLauncher\gu.exe:*:Enabled:NCIS Game -- (Ubisoft)
"D:\Hry\NCIS\NCIS.exe" = D:\Hry\NCIS\NCIS.exe:*:Enabled:NCIS Game -- ()
"C:\Program Files\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe" = C:\Program Files\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe:*:Enabled:Ubisoft Game Launcher -- ()
"D:\Hry\ACR\ACRSP.exe" = D:\Hry\ACR\ACRSP.exe:*:Enabled:Assassin's Creed Revelations -- ()
"D:\Hry\ACR\ACRMP.exe" = D:\Hry\ACR\ACRMP.exe:*:Enabled:Assassin's Creed Revelations Multiplayer -- ()
"D:\Hry\ACR\AssassinsCreedRevelations.exe" = D:\Hry\ACR\AssassinsCreedRevelations.exe:*:Enabled:Assassin's Creed Revelations Update -- (Ubisoft)
"D:\Hry\Driver SF\Driver.exe" = D:\Hry\Driver SF\Driver.exe:*:Enabled:Driver San Francisco -- ()
"C:\Program Files\VideoLAN\VLC\vlc.exe" = C:\Program Files\VideoLAN\VLC\vlc.exe:*:Enabled:VLC media player -- ()
"D:\Hry\Shank 2\bin\Shank2.exe" = D:\Hry\Shank 2\bin\Shank2.exe:*:Enabled:Shank 2 -- (Klei Entertainment Inc.)
"C:\Program Files\Sony Ericsson\Update Engine\Sony Ericsson Update Engine.exe" = C:\Program Files\Sony Ericsson\Update Engine\Sony Ericsson Update Engine.exe:*:Enabled:Update Engine -- ()
"C:\Program Files\Vuze\Azureus.exe" = C:\Program Files\Vuze\Azureus.exe:*:Enabled:Azureus / Vuze -- (Vuze Inc.)
"D:\Hry\NFS HP\NFS11.exe" = D:\Hry\NFS HP\NFS11.exe:*:Enabled:Need for Speed(TM) Hot Pursuit Application -- (Electronic Arts)
"D:\Hry\Rayman Origins\Rayman Origins.exe" = D:\Hry\Rayman Origins\Rayman Origins.exe:*:Enabled:Rayman Origins -- ()
"D:\Hry\Rayman Origins\gu.exe" = D:\Hry\Rayman Origins\gu.exe:*:Enabled:Rayman Origins -- (Ubisoft)
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{02E89EFC-7B07-4D5A-AA03-9EC0902914EE}" = VC 9.0 Runtime
"{0840B4D6-7DD1-4187-8523-E6FC0007EFB7}" = Windows Live ID Sign-in Assistant
"{0C826C5B-B131-423A-A229-C71B3CACCD6A}" = CDDRV_Installer
"{1211F510-803E-4FEF-A718-137AAE4DCC59}" = NCIS Game
"{19B72AA9-985A-11D4-9C8A-00D0B75D1498}" = Colin McRae Rally 2
"{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}" = Microsoft XNA Framework Redistributable 3.1
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{2397CAD4-2263-4CD0-96BE-E43A980B9C9A}_is1" = Geeks3D.com FurMark 1.9.0
"{26A24AE4-039D-4CA4-87B4-2F83216024FF}" = Java(TM) 6 Update 24
"{3101CB58-3482-4D21-AF1A-7057FC935355}" = KhalInstallWrapper
"{33A22B2D-55BA-4508-B767-BF2E9C21A73F}" = Assassin's Creed Revelations
"{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{37C8899D-FD70-481F-94AA-1F1B08765E22}" = Acronis True Image Home
"{3921A67A-5AB1-4E48-9444-C71814CF3027}" = VCRedistSetup
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{3C3D696B-0DB7-3C6D-A356-3DB8CE541918}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
"{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}" = erLT
"{3F2A323E-60C4-41E8-8CCB-9715D1D750C3}" = Angry Birds Space
"{434D0FA0-1558-4D8E-AC3D-BD1000008200}" = DiRT 3
"{4933D2E2-B621-487F-A7E7-96DA7312BCFE}" = Angry Birds Rio
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4CB0307C-565E-4441-86BE-0DF2E4FB828C}" = Microsoft Games for Windows Marketplace
"{4D87DC92-C328-46EC-A7B4-9C88129DC696}" = Dead Space™
"{501451DE-5808-4599-B544-8BD0915B6B24}_is1" = FreeRIP v3.6
"{53450FA2-E900-456E-9715-501000008200}" = Virtua Tennis 4™
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{5EE7D259-D137-4438-9A5F-42F432EC0421}" = VC80CRTRedist - 8.0.50727.4053
"{614F6133-1897-3CB9-859A-F2A19FBE8D4A}" = Google Talk Plugin
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6BB2B8AB-2590-4157-8576-C0A270994A6B}" = Wolfenstein Demo
"{6EBF5C73-D05A-485D-AB60-E557F9947359}" = Oracle VM VirtualBox 3.2.10
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{765443B7-555F-4E8C-9C96-A52409AE4E4A}" = Utility
"{7F6D7FD9-648D-4DD9-BB6E-3990C675ECA4}" = NVIDIA PhysX
"{83A606F5-BF6F-42ED-9F33-B9F74297CDED}" = Need for Speed(TM) Hot Pursuit
"{8570BEE8-0CA3-4977-9AB1-80ED93F0513C}" = Assassin's Creed II
"{888F1505-C2B3-4FDE-835D-36353EBD4754}" = Ubisoft Game Launcher
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{943A8D28-80D6-41DC-AE94-81FEB42041BF}" = System Requirements Lab CYRI
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{974C4B12-4D02-4879-85E0-61C95CC63E9E}" = Fallout 3
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{B0BDAABA-A815-4CF3-843C-405B017EF7DF}" = OpenOffice.org 3.1
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = NVIDIA Control Panel 285.58
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Graphics Driver 285.58
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NView" = NVIDIA nView 135.95
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA PhysX System Software 9.11.0621
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B7B8D9A9-EFCB-4c2f-8117-7A2A32D0BC58}" = Shank 2
"{B944FA21-81AF-4A77-8328-CE4F4CC51033}" = Nero 8
"{BE4BA698-8533-4F77-9559-C7F3F78C0B05}" = Assassin's Creed Brotherhood
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C9BED750-1211-4480-B1A5-718A3BE15525}" = REALTEK GbE & FE Ethernet PCI-E NIC Driver
"{CCD3F3D0-C85A-4BB7-ADDA-CA68019631D5}" = Angry Birds Seasons
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D2FCA41E-AC01-4DCD-B3A7-DC9E32363065}}_is1" = Rapture3D 2.4.9 Game
"{DE491AB9-1D47-4FED-A8F5-4D4325B2EB4B}" = Rayman Origins
"{E3E71D07-CD27-46CB-8448-16D4FB29AA13}" = Microsoft WSE 3.0 Runtime
"{EAA02F85-3DD4-4083-9AF6-7A2C13ACF1E5}" = Moorhuhn Piraten
"{EE7257A2-39A2-4D2F-9DAC-F9F25B8AE1D8}" = Skype™ 5.8
"{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}" = Sony PC Companion 2.10.030
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F2508213-9989-4E85-A078-72BE483917EF}" = Microsoft Games for Windows - LIVE Redistributable
"{F29B21BD-CAA6-445F-8EF7-A7E2B9D8B14E}" = Logitech SetPoint
"{F2B5A2A7-2DF9-4361-8BD5-362714528B51}" = NHL® 09
"{FF10D622-7BFE-48C6-8DF6-40D8CB1D3C1B}" = Auta 2
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"8461-7759-5462-8226" = Vuze
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Ashampoo WinOptimizer 2012_is1" = Ashampoo WinOptimizer 2012 v.8.1.4
"avast" = avast! Free Antivirus
"AVS Update Manager_is1" = AVS Update Manager 1.0
"AVS4YOU Software Navigator_is1" = AVS4YOU Software Navigator 1.4
"AVS4YOU Video Converter 7_is1" = AVS Video Converter 8
"CCleaner" = CCleaner
"CleanUp!" = CleanUp!
"Defraggler" = Defraggler
"Driver San Francisco" = Driver San Francisco
"Dyna Blaster (DOSBox 0.74 emulation)" = Dyna Blaster (DOSBox 0.74 emulation)
"eMule" = eMule
"EVEREST Ultimate Edition_is1" = EVEREST Ultimate Edition v5.01
"FastStone Photo Resizer" = FastStone Photo Resizer 3.0
"Foxit Reader" = Foxit Reader
"Fraps" = Fraps (remove only)
"GFWL_{434D0FA0-1558-4D8E-AC3D-BD1000008200}" = DiRT 3
"GFWL_{53450FA2-E900-456E-9715-501000008200}" = Virtua Tennis 4™
"Hard Reset_is1" = Hard Reset
"HeavyLoad_is1" = HeavyLoad V3.0
"HijackThis" = HijackThis 2.0.2
"ie8" = Windows Internet Explorer 8
"Insane 2_is1" = Insane 2
"InstallShield_{1211F510-803E-4FEF-A718-137AAE4DCC59}" = NCIS Game
"IrfanView" = IrfanView (remove only)
"KLiteCodecPack_is1" = K-Lite Codec Pack 7.2.0 (Basic)
"Knockout Kings 2001 (pSX 1.13 emulation)" = Knockout Kings 2001 (pSX 1.13 emulation)
"Luxor - 5th Passage1.0" = Luxor - 5th Passage
"Mafia II_is1" = Mafia II DLC Joe's Adventures
"Magic ISO Maker v5.4 (build 0239)" = Magic ISO Maker v5.4 (build 0239)
"MagicDisc 2.7.106" = MagicDisc 2.7.106
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware verzia 1.61.0.1400
"Memento Mori_is1" = Memento Mori
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Mozilla Firefox 11.0 (x86 sk)" = Mozilla Firefox 11.0 (x86 sk)
"MPE" = MyPhoneExplorer
"OpenAL" = OpenAL
"OverDisk" = OverDisk (remove only)
"Polda II_is1" = Polda II
"Posel Smrti 2_is1" = Posel Smrti 2
"Posel Smrti 3_is1" = Posel Smrti 3
"Posel smrti_is1" = Posel smrti 1.2
"QcDrv" = Logitech® Camera Driver
"Rayman (DOSBox 0.74 emulation)" = Rayman (DOSBox 0.74 emulation)
"Revo Uninstaller" = Revo Uninstaller 1.85
"Shank_is1" = Shank
"SystemRequirementsLab" = System Requirements Lab
"Test Drive Unlimited 2_is1" = Test Drive Unlimited 2
"Thief 2: The Metal Age_is1" = Thief 2: The Metal Age
"Thief Gold_is1" = Thief Gold
"Totalcmd" = Total Commander (Remove or Repair)
"Trine 2_is1" = Trine 2
"Update Engine" = Sony Ericsson Update Engine
"VLC media player" = VLC media player 2.0.1
"Winamp" = Winamp
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"WinRAR archiver" = WinRAR 4.01 (32-bit)
========== HKEY_USERS Uninstall List ==========
[HKEY_USERS\S-1-5-21-1123561945-1364589140-725345543-500\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Fenimore Fillmore's Revenge CZ" = Fenimore Fillmore's Revenge CZ
"Google Chrome" = Google Chrome
========== Last 10 Event Log Errors ==========
[ Application Events ]
Error - 19.6.2011 10:53:17 | Computer Name = MAJO | Source = crypt32 | ID = 131080
Description = Failed auto update retrieval of third-party root list sequence number
from: <http://www.download.windowsupdate.com/m ... ootseq.txt>
with error: This operation returned because the timeout period expired.
Error - 28.6.2011 8:10:49 | Computer Name = MAJO | Source = MsiInstaller | ID = 11714
Description =
Error - 28.6.2011 8:10:49 | Computer Name = MAJO | Source = MsiInstaller | ID = 11714
Description =
[ System Events ]
Error - 7.4.2012 4:03:25 | Computer Name = MAJO | Source = DCOM | ID = 10005
Description = DCOM got error "%1058" attempting to start the service NMIndexingService
with arguments "" in order to run the server: {E8933C4B-2C90-4A04-A677-E958D9509F1A}
Error - 7.4.2012 4:03:26 | Computer Name = MAJO | Source = DCOM | ID = 10005
Description = DCOM got error "%1058" attempting to start the service NMIndexingService
with arguments "" in order to run the server: {E8933C4B-2C90-4A04-A677-E958D9509F1A}
Error - 7.4.2012 12:55:45 | Computer Name = MAJO | Source = WPDMTPDriver | ID = 80836
Description = MTP WPD Driver has failed to start. Error 0x8007001f.
Error - 9.4.2012 14:25:55 | Computer Name = MAJO | Source = sptd | ID = 262148
Description = Driver detected an internal error in its data structures for .
Error - 9.4.2012 14:26:21 | Computer Name = MAJO | Source = DCOM | ID = 10005
Description = DCOM got error "%1084" attempting to start the service EventSystem
with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}
Error - 9.4.2012 14:27:10 | Computer Name = MAJO | Source = DCOM | ID = 10005
Description = DCOM got error "%1084" attempting to start the service EventSystem
with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}
Error - 11.4.2012 4:54:54 | Computer Name = MAJO | Source = sptd | ID = 262148
Description = Driver detected an internal error in its data structures for .
Error - 11.4.2012 4:54:58 | Computer Name = MAJO | Source = DCOM | ID = 10005
Description = DCOM got error "%1084" attempting to start the service EventSystem
with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}
Error - 11.4.2012 4:57:17 | Computer Name = MAJO | Source = DCOM | ID = 10005
Description = DCOM got error "%1084" attempting to start the service EventSystem
with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}
Error - 11.4.2012 14:09:05 | Computer Name = MAJO | Source = Dhcp | ID = 1000
Description = Your computer has lost the lease to its IP address 172.20.71.101 on
the Network Card with network address 00241D88A58D.
< End of report >
MBAM nič nenašiel.
Re: preventívna kontrola po dlhom čase RSIT
Co ty cracky? 
Jestli bude Avast rvat, ze to chce otevrit v sandboxu, nedovolte to! Vyberte moznost Otevrit normalne
Znovu spustte OTL
Do spodniho okna vlozte nasledujici text
Kliknete na Opravit a nechte program pracovat. Pri otazce na restart souhlaste.
Po restartu se objevi novy log, ten sem dejte.
Jestli bude Avast rvat, ze to chce otevrit v sandboxu, nedovolte to! Vyberte moznost Otevrit normalne Znovu spustte OTLDo spodniho okna vlozte nasledujici text
Kód: Vybrat vše
:otl
SRV - File not found [Disabled | Stopped] -- C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\AVSETUP_4cb60f4f\basic\avupgsvc.exe /TEMPSTART:C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\AVSETUP_4cb60f4f\basic\setup.exe /NOTEMPCLEANUP /CROSSUPGRADE -- (AntiVirUpgradeService)
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}
IE - HKU\S-1-5-21-1123561945-1364589140-725345543-500\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-21-1123561945-1364589140-725345543-500\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src=IE-SearchBox&Form=IE8SRC
IE - HKU\S-1-5-21-1123561945-1364589140-725345543-500\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2611275
FF - user.js - File not found
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKU\S-1-5-21-1123561945-1364589140-725345543-500\..\Toolbar\WebBrowser: (no name) - {32099AAC-C132-4136-9E9A-4E364A424E17} - No CLSID value found.
[2012.03.25 11:00:04 | 000,474,138 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2012.03.25 11:00:04 | 000,076,898 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[6 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[2 C:\WINDOWS\Installer\*.tmp files -> C:\WINDOWS\Installer\*.tmp -> ]
[2 C:\WINDOWS\system32\DirectX\*.tmp files -> C:\WINDOWS\system32\DirectX\*.tmp -> ]
@Alternate Data Stream - 6144 bytes -> C:\WINDOWS\Cursors\arrow_n.cur:NEDTA.DAT
@Alternate Data Stream - 229 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:8FF81EB0
:files
%windir%\system32\*.tmp.dll /s
%windir%\system32\SET*.tmp /s
%windir%\*.tmp
:commands
[EMPTYTEMP]
[Purity]
[EMPTYFLASH]Po restartu se objevi novy log, ten sem dejte.
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: preventívna kontrola po dlhom čase RSIT
Cracky môžme zmazať ak sú infikované,avast nič nehlásil.
LOG z OTL:
All processes killed
========== OTL ==========
Service AntiVirUpgradeService stopped successfully!
Service AntiVirUpgradeService deleted successfully!
File C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\AVSETUP_4cb60f4f\basic\avupgsvc.exe /TEMPSTART:C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\AVSETUP_4cb60f4f\basic\setup.exe /NOTEMPCLEANUP /CROSSUPGRADE not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
HKEY_USERS\S-1-5-21-1123561945-1364589140-725345543-500\Software\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry key HKEY_USERS\S-1-5-21-1123561945-1364589140-725345543-500\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Registry key HKEY_USERS\S-1-5-21-1123561945-1364589140-725345543-500\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{afdbddaa-5d3f-42ee-b79c-185a7020515b}\ not found.
Registry key HKEY_CURRENT_USER\Software\MozillaPlugins\@tools.google.com/Google Update;version=3\ deleted successfully.
C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Update\1.3.21.111\npGoogleUpdate3.dll moved successfully.
Registry key HKEY_CURRENT_USER\Software\MozillaPlugins\@tools.google.com/Google Update;version=9\ deleted successfully.
File C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Update\1.3.21.111\npGoogleUpdate3.dll not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\Locked deleted successfully.
Registry value HKEY_USERS\S-1-5-21-1123561945-1364589140-725345543-500\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{32099AAC-C132-4136-9E9A-4E364A424E17} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{32099AAC-C132-4136-9E9A-4E364A424E17}\ not found.
C:\WINDOWS\system32\perfh009.dat moved successfully.
C:\WINDOWS\system32\perfc009.dat moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP101.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP144.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP184.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP592.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP5E7.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP7B4.tmp folder deleted successfully.
C:\WINDOWS\Installer\MSI1A6.tmp deleted successfully.
C:\WINDOWS\Installer\MSI1AA.tmp deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\system folder deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\sysbckup folder deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\inf folder deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\help folder deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\drivers folder deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\directx folder deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\apr2005_d3dx9_25_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\apr2006_d3dx9_30_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\apr2006_mdx1_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\apr2006_mdx1_x86_archive.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\apr2006_xact_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\apr2006_xinput_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\apr2007_d3dx10_33_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\apr2007_d3dx9_33_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\apr2007_xact_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\apr2007_xinput_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\aug2005_d3dx9_27_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\aug2006_xact_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\aug2006_xinput_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\aug2007_d3dx10_35_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\aug2007_d3dx9_35_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\aug2007_xact_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\Aug2008_d3dx10_39_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\Aug2008_d3dx9_39_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\Aug2008_XACT_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\Aug2008_XAudio_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\AUG2009_D3DCompiler_42_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\AUG2009_d3dcsx_42_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\AUG2009_d3dx10_42_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\AUG2009_d3dx11_42_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\AUG2009_d3dx9_42_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\AUG2009_XACT_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\AUG2009_XAudio_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\d3dx9_24_w9x.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\d3dx9_24_x86.cat deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\d3dx9_24_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\d3dx9_25_w9x.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\d3dx9_25_x86.cat deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\d3dx9_25_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\d3dx9_26_w9x.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\d3dx9_26_x86.cat deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\d3dx9_26_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\d3dx9_27_w9x.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\d3dx9_27_x86.cat deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\d3dx9_27_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\d3dx9_28_w9x.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\d3dx9_28_x86.cat deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\d3dx9_28_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\d3dx9_29_w9x.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\d3dx9_29_x86.cat deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\d3dx9_29_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\d3dx9_30_w9x.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\d3dx9_30_x86.cat deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\d3dx9_30_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\dec2005_d3dx9_28_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\dec2006_d3dx10_00_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\dec2006_d3dx9_32_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\dec2006_xact_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\dxdllreg.exe deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\dxdllreg_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\dxupdate.cif deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\dxupdate.dll deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\dxupdate.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\feb2006_d3dx9_29_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\feb2006_xact_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\feb2007_xact_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\FEB2010_X3DAudio_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\FEB2010_XACT_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\FEB2010_XAudio_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\jun2005_d3dx9_26_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\jun2006_xact_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\jun2007_d3dx10_34_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\jun2007_d3dx9_34_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\jun2007_xact_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\Jun2008_d3dx10_38_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\Jun2008_d3dx9_38_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\Jun2008_X3DAudio_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\Jun2008_XACT_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\Jun2008_XAudio_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\Mar2008_d3dx10_37_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\Mar2008_d3dx9_37_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\Mar2008_X3DAudio_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\Mar2008_XACT_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\Mar2008_XAudio_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\Mar2009_d3dx10_41_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\Mar2009_d3dx9_41_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\Mar2009_X3DAudio_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\Mar2009_XACT_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\Mar2009_XAudio_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\mdx_1.0.2902.0_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\mdx_1.0.2903.0_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\mdx_1.0.2904.0_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\mdx_1.0.2905.0_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\mdx_1.0.2906.0_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\mdx_1.0.2907.0_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\mdx_1.0.2908.0_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\mdx_1.0.2909.0_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\mdx_1.0.2910.0_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\microsoft.directx.audiovideoplayback.dll deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\microsoft.directx.audiovideoplayback.xml deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\microsoft.directx.diagnostics.dll deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\microsoft.directx.diagnostics.xml deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\microsoft.directx.direct3d.dll deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\microsoft.directx.direct3d.xml deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\microsoft.directx.direct3dx.dll deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\microsoft.directx.direct3dx.xml deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\microsoft.directx.directdraw.dll deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\microsoft.directx.directdraw.xml deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\microsoft.directx.directinput.dll deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\microsoft.directx.directinput.xml deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\microsoft.directx.directplay.dll deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\microsoft.directx.directplay.xml deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\microsoft.directx.directsound.dll deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\microsoft.directx.directsound.xml deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\microsoft.directx.dll deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\microsoft.directx.xml deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\nov2007_d3dx10_36_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\nov2007_d3dx9_36_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\nov2007_x3daudio_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\nov2007_xact_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\Nov2008_d3dx10_40_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\Nov2008_d3dx9_40_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\Nov2008_X3DAudio_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\Nov2008_XACT_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\Nov2008_XAudio_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\oct2005_xinput_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\oct2006_d3dx9_31_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\oct2006_xact_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\xact_x86.cat deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\xact_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\xinput9_1_0_x86.cat deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\xinput9_1_0_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp folder deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\system folder deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\sysbckup folder deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\inf folder deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\help folder deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\drivers folder deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\directx folder deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\apr2005_d3dx9_25_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\apr2006_d3dx9_30_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\apr2006_mdx1_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\apr2006_mdx1_x86_archive.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\apr2006_xact_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\apr2006_xinput_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\apr2007_d3dx10_33_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\apr2007_d3dx9_33_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\apr2007_xact_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\apr2007_xinput_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\aug2005_d3dx9_27_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\aug2006_xact_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\aug2006_xinput_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\aug2007_d3dx10_35_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\aug2007_d3dx9_35_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\aug2007_xact_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\Aug2008_d3dx10_39_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\Aug2008_d3dx9_39_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\Aug2008_XACT_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\Aug2008_XAudio_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\AUG2009_D3DCompiler_42_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\AUG2009_d3dcsx_42_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\AUG2009_d3dx10_42_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\AUG2009_d3dx11_42_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\AUG2009_d3dx9_42_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\AUG2009_XACT_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\AUG2009_XAudio_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\d3dx9_24_w9x.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\d3dx9_24_x86.cat deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\d3dx9_24_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\d3dx9_25_w9x.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\d3dx9_25_x86.cat deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\d3dx9_25_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\d3dx9_26_w9x.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\d3dx9_26_x86.cat deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\d3dx9_26_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\d3dx9_27_w9x.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\d3dx9_27_x86.cat deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\d3dx9_27_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\d3dx9_28_w9x.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\d3dx9_28_x86.cat deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\d3dx9_28_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\d3dx9_29_w9x.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\d3dx9_29_x86.cat deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\d3dx9_29_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\d3dx9_30_w9x.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\d3dx9_30_x86.cat deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\d3dx9_30_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\dec2005_d3dx9_28_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\dec2006_d3dx10_00_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\dec2006_d3dx9_32_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\dec2006_xact_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\dxdllreg.exe deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\dxdllreg_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\dxupdate.cif deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\dxupdate.dll deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\dxupdate.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\feb2006_d3dx9_29_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\feb2006_xact_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\feb2007_xact_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\FEB2010_X3DAudio_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\FEB2010_XACT_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\FEB2010_XAudio_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\jun2005_d3dx9_26_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\jun2006_xact_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\jun2007_d3dx10_34_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\jun2007_d3dx9_34_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\jun2007_xact_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\Jun2008_d3dx10_38_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\Jun2008_d3dx9_38_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\Jun2008_X3DAudio_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\Jun2008_XACT_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\Jun2008_XAudio_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\Mar2008_d3dx10_37_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\Mar2008_d3dx9_37_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\Mar2008_X3DAudio_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\Mar2008_XACT_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\Mar2008_XAudio_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\Mar2009_d3dx10_41_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\Mar2009_d3dx9_41_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\Mar2009_X3DAudio_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\Mar2009_XACT_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\Mar2009_XAudio_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\mdx_1.0.2902.0_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\mdx_1.0.2903.0_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\mdx_1.0.2904.0_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\mdx_1.0.2905.0_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\mdx_1.0.2906.0_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\mdx_1.0.2907.0_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\mdx_1.0.2908.0_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\mdx_1.0.2909.0_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\mdx_1.0.2910.0_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\microsoft.directx.direct3dx.dll deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\microsoft.directx.direct3dx.xml deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\microsoft.directx.directdraw.dll deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\microsoft.directx.directdraw.xml deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\microsoft.directx.directinput.dll deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\microsoft.directx.directinput.xml deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\microsoft.directx.directplay.dll deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\microsoft.directx.directplay.xml deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\microsoft.directx.directsound.dll deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\microsoft.directx.directsound.xml deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\nov2007_d3dx10_36_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\nov2007_d3dx9_36_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\nov2007_x3daudio_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\nov2007_xact_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\Nov2008_d3dx10_40_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\Nov2008_d3dx9_40_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\Nov2008_X3DAudio_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\Nov2008_XACT_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\Nov2008_XAudio_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\oct2005_xinput_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\oct2006_d3dx9_31_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\oct2006_xact_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\xact_x86.cat deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\xact_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\xinput9_1_0_x86.cat deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\xinput9_1_0_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp folder deleted successfully.
ADS C:\WINDOWS\Cursors\arrow_n.cur:NEDTA.DAT deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:8FF81EB0 deleted successfully.
========== FILES ==========
File/Folder C:\WINDOWS\system32\*.tmp.dll not found.
File/Folder C:\WINDOWS\system32\SET*.tmp not found.
File/Folder C:\WINDOWS\*.tmp not found.
========== COMMANDS ==========
[EMPTYTEMP]
User: Administrator
->Temp folder emptied: 11166208 bytes
->Temporary Internet Files folder emptied: 171584 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 6744788 bytes
->Google Chrome cache emptied: 0 bytes
->Flash cache emptied: 470 bytes
User: All Users
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: LocalService
->Temp folder emptied: 66016 bytes
->Temporary Internet Files folder emptied: 33170 bytes
User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 0 bytes
Total Files Cleaned = 17,00 mb
[EMPTYFLASH]
User: Administrator
->Flash cache emptied: 0 bytes
User: All Users
User: Default User
User: LocalService
User: NetworkService
Total Flash Files Cleaned = 0,00 mb
OTL by OldTimer - Version 3.2.39.2 log created on 04122012_105217
Files\Folders moved on Reboot...
File\Folder C:\Documents and Settings\Administrator\Local Settings\Temp\[Torrentreactor.to] - Santana - Guitar Heaven The Greatest Guitar Classics Of All Time.torrent not found!
File\Folder C:\Documents and Settings\Administrator\Local Settings\Temp\[Torrentreactor.to] - Santana-Guitar Heaven The Greatest Guitar Classics of All Time 2010 MP3 320kbps.torrent not found!
File\Folder C:\Documents and Settings\Administrator\Local Settings\Temp\[Torrentreactor.to] - Santana.2010.Guitar.Heaven.The.Greatest.Guitar.Classics.of.All.Time IDN CREW.torrent not found!
File\Folder C:\Documents and Settings\Administrator\Local Settings\Temp\[Torrentreactor.to] - Santana.Guitar Heaven The Greatest Guitar Classics Of All T.torrent not found!
File move failed. C:\WINDOWS\temp\_avast_\Webshlock.txt scheduled to be moved on reboot.
Registry entries deleted on Reboot...
LOG z OTL:
All processes killed
========== OTL ==========
Service AntiVirUpgradeService stopped successfully!
Service AntiVirUpgradeService deleted successfully!
File C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\AVSETUP_4cb60f4f\basic\avupgsvc.exe /TEMPSTART:C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\AVSETUP_4cb60f4f\basic\setup.exe /NOTEMPCLEANUP /CROSSUPGRADE not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
HKEY_USERS\S-1-5-21-1123561945-1364589140-725345543-500\Software\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry key HKEY_USERS\S-1-5-21-1123561945-1364589140-725345543-500\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Registry key HKEY_USERS\S-1-5-21-1123561945-1364589140-725345543-500\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{afdbddaa-5d3f-42ee-b79c-185a7020515b}\ not found.
Registry key HKEY_CURRENT_USER\Software\MozillaPlugins\@tools.google.com/Google Update;version=3\ deleted successfully.
C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Update\1.3.21.111\npGoogleUpdate3.dll moved successfully.
Registry key HKEY_CURRENT_USER\Software\MozillaPlugins\@tools.google.com/Google Update;version=9\ deleted successfully.
File C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Update\1.3.21.111\npGoogleUpdate3.dll not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\Locked deleted successfully.
Registry value HKEY_USERS\S-1-5-21-1123561945-1364589140-725345543-500\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{32099AAC-C132-4136-9E9A-4E364A424E17} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{32099AAC-C132-4136-9E9A-4E364A424E17}\ not found.
C:\WINDOWS\system32\perfh009.dat moved successfully.
C:\WINDOWS\system32\perfc009.dat moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP101.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP144.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP184.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP592.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP5E7.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP7B4.tmp folder deleted successfully.
C:\WINDOWS\Installer\MSI1A6.tmp deleted successfully.
C:\WINDOWS\Installer\MSI1AA.tmp deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\system folder deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\sysbckup folder deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\inf folder deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\help folder deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\drivers folder deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\directx folder deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\apr2005_d3dx9_25_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\apr2006_d3dx9_30_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\apr2006_mdx1_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\apr2006_mdx1_x86_archive.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\apr2006_xact_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\apr2006_xinput_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\apr2007_d3dx10_33_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\apr2007_d3dx9_33_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\apr2007_xact_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\apr2007_xinput_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\aug2005_d3dx9_27_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\aug2006_xact_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\aug2006_xinput_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\aug2007_d3dx10_35_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\aug2007_d3dx9_35_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\aug2007_xact_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\Aug2008_d3dx10_39_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\Aug2008_d3dx9_39_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\Aug2008_XACT_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\Aug2008_XAudio_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\AUG2009_D3DCompiler_42_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\AUG2009_d3dcsx_42_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\AUG2009_d3dx10_42_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\AUG2009_d3dx11_42_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\AUG2009_d3dx9_42_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\AUG2009_XACT_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\AUG2009_XAudio_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\d3dx9_24_w9x.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\d3dx9_24_x86.cat deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\d3dx9_24_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\d3dx9_25_w9x.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\d3dx9_25_x86.cat deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\d3dx9_25_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\d3dx9_26_w9x.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\d3dx9_26_x86.cat deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\d3dx9_26_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\d3dx9_27_w9x.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\d3dx9_27_x86.cat deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\d3dx9_27_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\d3dx9_28_w9x.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\d3dx9_28_x86.cat deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\d3dx9_28_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\d3dx9_29_w9x.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\d3dx9_29_x86.cat deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\d3dx9_29_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\d3dx9_30_w9x.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\d3dx9_30_x86.cat deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\d3dx9_30_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\dec2005_d3dx9_28_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\dec2006_d3dx10_00_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\dec2006_d3dx9_32_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\dec2006_xact_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\dxdllreg.exe deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\dxdllreg_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\dxupdate.cif deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\dxupdate.dll deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\dxupdate.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\feb2006_d3dx9_29_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\feb2006_xact_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\feb2007_xact_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\FEB2010_X3DAudio_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\FEB2010_XACT_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\FEB2010_XAudio_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\jun2005_d3dx9_26_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\jun2006_xact_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\jun2007_d3dx10_34_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\jun2007_d3dx9_34_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\jun2007_xact_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\Jun2008_d3dx10_38_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\Jun2008_d3dx9_38_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\Jun2008_X3DAudio_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\Jun2008_XACT_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\Jun2008_XAudio_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\Mar2008_d3dx10_37_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\Mar2008_d3dx9_37_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\Mar2008_X3DAudio_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\Mar2008_XACT_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\Mar2008_XAudio_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\Mar2009_d3dx10_41_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\Mar2009_d3dx9_41_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\Mar2009_X3DAudio_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\Mar2009_XACT_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\Mar2009_XAudio_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\mdx_1.0.2902.0_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\mdx_1.0.2903.0_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\mdx_1.0.2904.0_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\mdx_1.0.2905.0_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\mdx_1.0.2906.0_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\mdx_1.0.2907.0_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\mdx_1.0.2908.0_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\mdx_1.0.2909.0_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\mdx_1.0.2910.0_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\microsoft.directx.audiovideoplayback.dll deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\microsoft.directx.audiovideoplayback.xml deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\microsoft.directx.diagnostics.dll deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\microsoft.directx.diagnostics.xml deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\microsoft.directx.direct3d.dll deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\microsoft.directx.direct3d.xml deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\microsoft.directx.direct3dx.dll deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\microsoft.directx.direct3dx.xml deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\microsoft.directx.directdraw.dll deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\microsoft.directx.directdraw.xml deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\microsoft.directx.directinput.dll deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\microsoft.directx.directinput.xml deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\microsoft.directx.directplay.dll deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\microsoft.directx.directplay.xml deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\microsoft.directx.directsound.dll deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\microsoft.directx.directsound.xml deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\microsoft.directx.dll deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\microsoft.directx.xml deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\nov2007_d3dx10_36_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\nov2007_d3dx9_36_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\nov2007_x3daudio_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\nov2007_xact_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\Nov2008_d3dx10_40_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\Nov2008_d3dx9_40_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\Nov2008_X3DAudio_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\Nov2008_XACT_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\Nov2008_XAudio_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\oct2005_xinput_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\oct2006_d3dx9_31_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\oct2006_xact_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\xact_x86.cat deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\xact_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\xinput9_1_0_x86.cat deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp\xinput9_1_0_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1AB.tmp folder deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\system folder deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\sysbckup folder deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\inf folder deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\help folder deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\drivers folder deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\directx folder deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\apr2005_d3dx9_25_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\apr2006_d3dx9_30_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\apr2006_mdx1_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\apr2006_mdx1_x86_archive.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\apr2006_xact_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\apr2006_xinput_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\apr2007_d3dx10_33_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\apr2007_d3dx9_33_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\apr2007_xact_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\apr2007_xinput_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\aug2005_d3dx9_27_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\aug2006_xact_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\aug2006_xinput_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\aug2007_d3dx10_35_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\aug2007_d3dx9_35_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\aug2007_xact_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\Aug2008_d3dx10_39_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\Aug2008_d3dx9_39_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\Aug2008_XACT_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\Aug2008_XAudio_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\AUG2009_D3DCompiler_42_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\AUG2009_d3dcsx_42_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\AUG2009_d3dx10_42_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\AUG2009_d3dx11_42_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\AUG2009_d3dx9_42_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\AUG2009_XACT_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\AUG2009_XAudio_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\d3dx9_24_w9x.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\d3dx9_24_x86.cat deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\d3dx9_24_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\d3dx9_25_w9x.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\d3dx9_25_x86.cat deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\d3dx9_25_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\d3dx9_26_w9x.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\d3dx9_26_x86.cat deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\d3dx9_26_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\d3dx9_27_w9x.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\d3dx9_27_x86.cat deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\d3dx9_27_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\d3dx9_28_w9x.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\d3dx9_28_x86.cat deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\d3dx9_28_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\d3dx9_29_w9x.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\d3dx9_29_x86.cat deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\d3dx9_29_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\d3dx9_30_w9x.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\d3dx9_30_x86.cat deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\d3dx9_30_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\dec2005_d3dx9_28_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\dec2006_d3dx10_00_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\dec2006_d3dx9_32_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\dec2006_xact_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\dxdllreg.exe deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\dxdllreg_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\dxupdate.cif deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\dxupdate.dll deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\dxupdate.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\feb2006_d3dx9_29_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\feb2006_xact_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\feb2007_xact_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\FEB2010_X3DAudio_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\FEB2010_XACT_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\FEB2010_XAudio_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\jun2005_d3dx9_26_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\jun2006_xact_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\jun2007_d3dx10_34_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\jun2007_d3dx9_34_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\jun2007_xact_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\Jun2008_d3dx10_38_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\Jun2008_d3dx9_38_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\Jun2008_X3DAudio_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\Jun2008_XACT_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\Jun2008_XAudio_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\Mar2008_d3dx10_37_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\Mar2008_d3dx9_37_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\Mar2008_X3DAudio_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\Mar2008_XACT_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\Mar2008_XAudio_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\Mar2009_d3dx10_41_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\Mar2009_d3dx9_41_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\Mar2009_X3DAudio_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\Mar2009_XACT_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\Mar2009_XAudio_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\mdx_1.0.2902.0_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\mdx_1.0.2903.0_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\mdx_1.0.2904.0_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\mdx_1.0.2905.0_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\mdx_1.0.2906.0_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\mdx_1.0.2907.0_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\mdx_1.0.2908.0_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\mdx_1.0.2909.0_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\mdx_1.0.2910.0_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\microsoft.directx.direct3dx.dll deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\microsoft.directx.direct3dx.xml deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\microsoft.directx.directdraw.dll deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\microsoft.directx.directdraw.xml deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\microsoft.directx.directinput.dll deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\microsoft.directx.directinput.xml deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\microsoft.directx.directplay.dll deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\microsoft.directx.directplay.xml deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\microsoft.directx.directsound.dll deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\microsoft.directx.directsound.xml deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\nov2007_d3dx10_36_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\nov2007_d3dx9_36_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\nov2007_x3daudio_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\nov2007_xact_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\Nov2008_d3dx10_40_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\Nov2008_d3dx9_40_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\Nov2008_X3DAudio_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\Nov2008_XACT_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\Nov2008_XAudio_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\oct2005_xinput_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\oct2006_d3dx9_31_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\oct2006_xact_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\xact_x86.cat deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\xact_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\xinput9_1_0_x86.cat deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp\xinput9_1_0_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DXA.tmp folder deleted successfully.
ADS C:\WINDOWS\Cursors\arrow_n.cur:NEDTA.DAT deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:8FF81EB0 deleted successfully.
========== FILES ==========
File/Folder C:\WINDOWS\system32\*.tmp.dll not found.
File/Folder C:\WINDOWS\system32\SET*.tmp not found.
File/Folder C:\WINDOWS\*.tmp not found.
========== COMMANDS ==========
[EMPTYTEMP]
User: Administrator
->Temp folder emptied: 11166208 bytes
->Temporary Internet Files folder emptied: 171584 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 6744788 bytes
->Google Chrome cache emptied: 0 bytes
->Flash cache emptied: 470 bytes
User: All Users
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: LocalService
->Temp folder emptied: 66016 bytes
->Temporary Internet Files folder emptied: 33170 bytes
User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 0 bytes
Total Files Cleaned = 17,00 mb
[EMPTYFLASH]
User: Administrator
->Flash cache emptied: 0 bytes
User: All Users
User: Default User
User: LocalService
User: NetworkService
Total Flash Files Cleaned = 0,00 mb
OTL by OldTimer - Version 3.2.39.2 log created on 04122012_105217
Files\Folders moved on Reboot...
File\Folder C:\Documents and Settings\Administrator\Local Settings\Temp\[Torrentreactor.to] - Santana - Guitar Heaven The Greatest Guitar Classics Of All Time.torrent not found!
File\Folder C:\Documents and Settings\Administrator\Local Settings\Temp\[Torrentreactor.to] - Santana-Guitar Heaven The Greatest Guitar Classics of All Time 2010 MP3 320kbps.torrent not found!
File\Folder C:\Documents and Settings\Administrator\Local Settings\Temp\[Torrentreactor.to] - Santana.2010.Guitar.Heaven.The.Greatest.Guitar.Classics.of.All.Time IDN CREW.torrent not found!
File\Folder C:\Documents and Settings\Administrator\Local Settings\Temp\[Torrentreactor.to] - Santana.Guitar Heaven The Greatest Guitar Classics Of All T.torrent not found!
File move failed. C:\WINDOWS\temp\_avast_\Webshlock.txt scheduled to be moved on reboot.
Registry entries deleted on Reboot...
Re: preventívna kontrola po dlhom čase RSIT
OTL provedlo co melo.
Cracky byste smazat mel. Nejde jen o bezpecnost, ale je to nelegalni, ze jo. Ale necham to na vas.
Jinak vypadaji logy OK.
Stranky uz se rozjely? O jake stranky se jedna? Vyzkousel bych je u sebe
Cracky byste smazat mel. Nejde jen o bezpecnost, ale je to nelegalni, ze jo. Ale necham to na vas.
Jinak vypadaji logy OK.
Stranky uz se rozjely? O jake stranky se jedna? Vyzkousel bych je u sebe
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: preventívna kontrola po dlhom čase RSIT
konkrentne sa jedná o stránku slovensej TV markiza.sk potom o videoserver slovenského zoznamu teda free.zoznam.sk tá druhá spomínaná kámošovi ide. Takže problém bude niekde u mňa. Skúsim ešte resetnút router, a znovu nastaviť možno pomôže. Cracky vymažem. Inak router mám Canyon CNP-WF514N3A. Možno vám to pomôže nájsť nejaké nastavenie ktoré by problém vyriešilo. Ďakujem za všetko
Re: preventívna kontrola po dlhom čase RSIT
Zkuste pouzit WinsockFix http://www.softpedia.com/get/Tweak/Netw ... kFix.shtml
Pozor, program resetuje protokol tcp/ip. Jestli mate parametry site zadavany rucne, budete je muset znovu nastavit podle smlovy s poskytovatelem.
Pozor, program resetuje protokol tcp/ip. Jestli mate parametry site zadavany rucne, budete je muset znovu nastavit podle smlovy s poskytovatelem.Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Přispějete na provoz fóra?