Dobrý den, nevím zdali je to hardwarem nebo virem a nebo také snad malým napětím v zásuvkách, ale při posledním spuštění počítače mi asi tak 6x spadnul a pak znova naběhl, nakonec se to stabilizovalo když jsem odpojil kabel od internetu a pak po zpuštění připojil. Možná tady něco mám a tak proto radši posílám log, děkuji za pomoc.
Logfile of random's system information tool 1.06 (written by random/random)
Run by Tomas Kotas at 2010-05-19 14:09:14
Microsoft® Windows Vista™ Home Basic Service Pack 1
System drive C: has 21 GB (7%) free of 305 GB
Total RAM: 3263 MB (57% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 14:09:15, on 19.5.2010
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18294)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\DAEMON Tools Lite\daemon.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files\Alwil Software\Avast4\ashDisp.exe
C:\Windows\SysWOW64\IRReceive.exe
C:\Program Files (x86)\ArcSoft\TotalMedia 3\TMMonitor.exe
C:\Program Files (x86)\Skype\Plugin Manager\skypePM.exe
C:\Program Files (x86)\Opera\opera.exe
C:\Users\Tomas Kotas\Desktop\RSIT.exe
C:\Program Files (x86)\trend micro\Tomas Kotas.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://qip.ru
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.qip.ru
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.qip.ru/ie
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.qip.ru
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://qip.ru
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.qip.ru/ie
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - - (no file)
F2 - REG:system.ini: UserInit=userinit.exe
O1 - Hosts: ::1 localhost
O2 - BHO: Podpora odkazu pro Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files (x86)\BitComet\tools\BitCometBHO_1.2.1.2.dll
O2 - BHO: QIPBHO - {A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE} - C:\Users\Tomas Kotas\AppData\Roaming\Microsoft\Internet Explorer\qipsearchbar.dll
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [IRReceive] C:\Windows\system32\IRReceive.exe
O4 - HKCU\..\Run: [Steam] "c:\program files (x86)\valve\steam\steam.exe" -silent
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\daemon.exe" -autorun
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O4 - Global Startup: TMMonitor.lnk = C:\Program Files (x86)\ArcSoft\TotalMedia 3\TMMonitor.exe
O8 - Extra context menu item: Stáhnout odkaz s použitím BitCometu - res://C:\Program Files (x86)\BitComet\BitComet.exe/AddLink.htm
O8 - Extra context menu item: Stáhnout všechna videa s použitím BitCometu - res://C:\Program Files (x86)\BitComet\BitComet.exe/AddVideo.htm
O8 - Extra context menu item: Stáhnout všechny odkazy s použitím BitCometu - res://C:\Program Files (x86)\BitComet\BitComet.exe/AddAllLink.htm
O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:\Program Files (x86)\BitComet\tools\BitCometBHO_1.2.1.2.dll/206 (file missing)
O13 - Gopher Prefix:
O16 - DPF: {784797A8-342D-4072-9486-03C8D0F2F0A1} (Battlefield Heroes Updater) - https://www.battlefieldheroes.com/stati ... 0.21.0.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Dragon Age: Origins - Content Updater (DAUpdaterSvc) - BioWare - C:\Hry\Dragon age Origins\Dragon Age\bin_ship\DAUpdaterSvc.Service.exe
O23 - Service: @dfsrres.dll,-101 (DFSR) - Unknown owner - C:\Windows\system32\DFSR.exe (file missing)
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NMIndexingService - Unknown owner - C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SLsvc.exe,-101 (slsvc) - Unknown owner - C:\Windows\system32\SLsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 7547 bytes
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Podpora odkazu pro Adobe PDF Reader - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-23 62080]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{39F7E362-828A-4B5A-BCAF-5B79BFDFEA60}]
BitComet Helper - C:\Program Files (x86)\BitComet\tools\BitCometBHO_1.2.1.2.dll [2008-01-25 496952]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE}]
QIPBHO Class - C:\Users\Tomas Kotas\AppData\Roaming\Microsoft\Internet Explorer\qipsearchbar.dll [2010-04-12 149968]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"avast!"=C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe [2008-11-26 81000]
"Adobe Reader Speed Launcher"=C:\Program Files (x86)\Adobe\Reader 8.0\Reader\Reader_sl.exe [2007-05-11 40048]
"IRReceive"=C:\Windows\system32\IRReceive.exe [2007-06-01 675913]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Steam"=c:\program files (x86)\valve\steam\steam.exe [2010-05-07 1238352]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\daemon.exe [2009-04-23 691656]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2009-10-09 25623336]
"OEXPRESS"= []
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
TMMonitor.lnk - C:\Program Files (x86)\ArcSoft\TotalMedia 3\TMMonitor.exe
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=
"NoActiveDesktopChanges"=
"ForceActiveDesktopOn"=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{6bb67a37-c0c4-11de-912c-0019665b5ad0}]
shell\AutoRun\command - E:\CoJBiBLauncher.exe
======File associations======
.js - open - %SystemRoot%\SysWow64\CScript.exe "%1" %*
.vbs - open - %SystemRoot%\SysWow64\CScript.exe "%1" %*
======List of files/folders created in the last 1 months======
2010-05-19 14:09:14 ----D---- C:\rsit
2010-05-18 17:55:19 ----D---- C:\~$PVRTmp0$
2010-05-17 18:48:03 ----D---- C:\Program Files (x86)\QIP
2010-04-25 10:16:14 ----D---- C:\Users\Tomas Kotas\AppData\Roaming\Bioshock2
2010-04-25 10:15:21 ----SHD---- C:\ProgramData\SecuROM
2010-04-22 20:42:06 ----D---- C:\Program Files (x86)\Ubisoft
2010-04-21 18:31:34 ----D---- C:\Program Files (x86)\Electronic Arts
======List of files/folders modified in the last 1 months======
2010-05-19 14:09:16 ----D---- C:\Windows\Prefetch
2010-05-19 14:09:15 ----D---- C:\Program Files (x86)\trend micro
2010-05-19 14:07:51 ----D---- C:\Windows\Temp
2010-05-19 14:07:28 ----D---- C:\Windows\System32
2010-05-19 14:07:28 ----D---- C:\Windows\inf
2010-05-19 14:03:10 ----D---- C:\Users\Tomas Kotas\AppData\Roaming\Skype
2010-05-19 14:02:48 ----D---- C:\Windows\system32\drivers
2010-05-19 13:55:09 ----D---- C:\Users\Tomas Kotas\AppData\Roaming\skypePM
2010-05-18 19:17:12 ----SHD---- C:\System Volume Information
2010-05-18 17:45:06 ----D---- C:\Windows
2010-05-17 18:48:03 ----RD---- C:\Program Files (x86)
2010-05-16 22:32:36 ----D---- C:\Program Files (x86)\Prace vip
2010-05-15 23:09:57 ----RSD---- C:\Windows\assembly
2010-05-15 22:59:22 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2010-05-15 22:28:43 ----D---- C:\Hry
2010-05-15 14:24:51 ----SHD---- C:\Windows\Installer
2010-05-14 23:41:42 ----D---- C:\Downloads
2010-05-14 14:34:34 ----D---- C:\Program Files (x86)\Garena
2010-05-14 09:02:52 ----D---- C:\Program Files (x86)\Common Files\Steam
2010-05-08 23:37:28 ----D---- C:\Users\Tomas Kotas\AppData\Roaming\OpenOffice.org2
2010-05-01 00:49:57 ----D---- C:\ProgramData\Ubisoft
2010-04-27 18:26:33 ----D---- C:\Windows\SysWOW64
2010-04-25 10:15:21 ----HD---- C:\ProgramData
2010-04-21 18:37:09 ----D---- C:\Program Files (x86)\Common Files
2010-04-21 18:36:33 ----D---- C:\ProgramData\Electronic Arts
2010-04-21 18:31:48 ----D---- C:\ProgramData\Adobe
2010-04-21 16:18:18 ----D---- C:\Users\Tomas Kotas\AppData\Roaming\Adobe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys []
R1 aswSP;avast! Self Protection; C:\Windows\system32\drivers\aswSP.sys []
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys []
R1 RtlProt;Realtke RtlProt WLAN Utility Protocol Driver; C:\Windows\system32\DRIVERS\rtlprot.sys []
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\DRIVERS\aswFsBlk.sys []
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\DRIVERS\aswMonFlt.sys []
R2 atksgt;atksgt; C:\Windows\system32\DRIVERS\atksgt.sys []
R2 lirsgt;lirsgt; C:\Windows\system32\DRIVERS\lirsgt.sys []
R3 Afc;PPdus ASPI Shell; C:\Windows\SysWOW64\drivers\Afc.sys [2006-09-18 22784]
R3 AV88BASE;Cx2388x Base Driver; C:\Windows\system32\drivers\av88base.sys []
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys []
R3 ksthunk;Kernel Streaming Thunks; C:\Windows\system32\drivers\ksthunk.sys []
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys []
R3 RTL8169;Realtek 8169 NT Driver; C:\Windows\system32\DRIVERS\Rtlh64.sys []
S3 a52ariyg;a52ariyg; C:\Windows\system32\drivers\a52ariyg.sys []
S3 drmkaud;Dekodér zvuků DRM jádra společnosti Microsoft; C:\Windows\system32\drivers\drmkaud.sys []
S3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys []
S3 HdAudAddService;Ovladač funkce Microsoft 1.1 UAA pro službu zvuku High Definition Audio; C:\Windows\system32\drivers\HdAudio.sys []
S3 motmodem;Motorola USB CDC ACM Driver; C:\Windows\system32\DRIVERS\motmodem.sys []
S3 MSKSSRV;Server proxy služby datových proudů Microsoft; C:\Windows\system32\drivers\MSKSSRV.sys []
S3 MSPCLOCK;Server proxy hodin datových proudů Microsoft; C:\Windows\system32\drivers\MSPCLOCK.sys []
S3 MSPQM;Server proxy správce kvality datových proudů Microsoft; C:\Windows\system32\drivers\MSPQM.sys []
S3 MSTEE;Konvertor jímka-jímka typu T datových proudů Microsoft; C:\Windows\system32\drivers\MSTEE.sys []
S3 pcouffin;VSO Software pcouffin; C:\Windows\System32\Drivers\pcouffin.sys []
S3 RTL8187;AirLive WL1600USB; C:\Windows\system32\DRIVERS\RTL8187.sys []
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys []
S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys []
S4 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\drivers\wmiacpi.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 aswUpdSv;avast! iAVS4 Control Service; C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [2008-11-26 18752]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast4\ashServ.exe [2008-11-26 155160]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe []
R2 PnkBstrA;PnkBstrA; C:\Windows\system32\PnkBstrA.exe [2010-02-27 75064]
R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2008-11-26 254040]
R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast4\ashWebSv.exe [2008-11-26 352920]
S3 clr_optimization_v2.0.50727_64;Microsoft .NET Framework NGEN v2.0.50727_X64; C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe [2008-07-27 93184]
S3 DAUpdaterSvc;Dragon Age: Origins - Content Updater; C:\Hry\Dragon age Origins\Dragon Age\bin_ship\DAUpdaterSvc.Service.exe [2009-07-26 25832]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 NMIndexingService;NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe []
S3 PerfHost;@%systemroot%\sysWow64\perfhost.exe,-2; C:\Windows\SysWow64\perfhost.exe [2008-01-18 19968]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2010-05-13 395048]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosím o preventivku
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
1danab
- Nováček
- Příspěvky: 1412
- Registrován: 21 říj 2007 13:04
- Bydliště: České Budějovice
- Kontaktovat uživatele:
Re: Prosím o preventivku
zdravím 
na Vašem logu se pracuje
na Vašem logu se pracuje
-
1danab
- Nováček
- Příspěvky: 1412
- Registrován: 21 říj 2007 13:04
- Bydliště: České Budějovice
- Kontaktovat uživatele:
Re: Prosím o preventivku
stáhněte si OTL z tohoto odkazu http://ottools.noahdfear.net/OTL.exe
stažený soubor spusťte jako správce
v otevřeném okně stiskněte tlačítko Prohledat, čímž spustíte sken; vyčkejte prosím dokončení skenu (cca 5 minut); poté se vám otevře okno Poznámkového bloku s logem, jehož obsah sem zkopírujte
stažený soubor spusťte jako správce
v otevřeném okně stiskněte tlačítko Prohledat, čímž spustíte sken; vyčkejte prosím dokončení skenu (cca 5 minut); poté se vám otevře okno Poznámkového bloku s logem, jehož obsah sem zkopírujte
Re: Prosím o preventivku
Jinak dnes se opět opakovalo... Po odpojení internetu to naskočilo, a potom jsem internet opět zapojil a vše bylo zase OK.
OTL logfile created on: 20.5.2010 15:05:22 - Run 1
OTL by OldTimer - Version 3.2.5.0 Folder = C:\Users\Tomas Kotas\Desktop
64bit-Windows Vista Home Basic Edition Service Pack 1 (Version = 6.0.6001) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6001.18000)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
3,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 51,00% Memory free
7,00 Gb Paging File | 5,00 Gb Available in Paging File | 71,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 298,09 Gb Total Space | 18,08 Gb Free Space | 6,06% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Computer Name: TOMASKOTAS-PC
Current User Name: Tomas Kotas
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: Current user
Include 64bit Scans
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard
========== Processes (SafeList) ==========
PRC - [2010.05.20 15:05:02 | 000,571,904 | ---- | M] (OldTimer Tools) -- C:\Users\Tomas Kotas\Desktop\OTL.exe
PRC - [2010.05.13 22:00:15 | 000,395,048 | ---- | M] (Valve Corporation) -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe
PRC - [2010.05.07 13:12:55 | 001,238,352 | ---- | M] (Valve Corporation) -- C:\Program Files (x86)\Valve\Steam\Steam.exe
PRC - [2010.02.27 22:09:09 | 000,075,064 | ---- | M] () -- C:\Windows\SysWOW64\PnkBstrA.exe
PRC - [2009.07.14 12:59:24 | 000,168,960 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
PRC - [2009.04.23 15:51:38 | 000,691,656 | ---- | M] (DT Soft Ltd) -- C:\Program Files (x86)\DAEMON Tools Lite\daemon.exe
PRC - [2009.01.17 17:56:41 | 002,527,280 | ---- | M] () -- C:\Program Files\Alwil Software\Avast4\Setup\avast.setup
PRC - [2008.11.26 19:18:51 | 000,081,000 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashDisp.exe
PRC - [2008.11.26 19:18:46 | 000,155,160 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashServ.exe
PRC - [2008.11.26 19:18:32 | 000,254,040 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
PRC - [2008.11.26 19:16:23 | 000,352,920 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
PRC - [2008.11.26 19:12:08 | 000,018,752 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
PRC - [2008.06.30 17:59:02 | 000,098,816 | ---- | M] (Opera Software) -- C:\Program Files (x86)\Opera\opera.exe
PRC - [2007.06.01 17:01:14 | 000,675,913 | ---- | M] () -- C:\Windows\SysWOW64\IRReceive.exe
PRC - [2007.05.11 13:06:32 | 000,040,048 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Adobe\Reader 8.0\Reader\reader_sl.exe
PRC - [2006.11.15 16:59:38 | 000,249,856 | ---- | M] (ArcSoft, Inc.) -- C:\Program Files (x86)\ArcSoft\TotalMedia 3\TMMonitor.exe
========== Modules (SafeList) ==========
MOD - [2010.05.20 15:05:02 | 000,571,904 | ---- | M] (OldTimer Tools) -- C:\Users\Tomas Kotas\Desktop\OTL.exe
MOD - [2008.01.18 23:34:00 | 000,450,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\comdlg32.dll
MOD - [2008.01.18 23:33:02 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msscript.ocx
MOD - [2008.01.18 23:26:36 | 001,684,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6001.18000_none_5cdbaa5a083979cc\comctl32.dll
========== Win32 Services (SafeList) ==========
SRV:64bit: - [2008.11.26 19:18:46 | 000,155,160 | ---- | M] (ALWIL Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast4\ashServ.exe -- (avast! Antivirus)
SRV:64bit: - [2008.11.26 19:18:32 | 000,254,040 | ---- | M] (ALWIL Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe -- (avast! Mail Scanner)
SRV:64bit: - [2008.11.26 19:16:23 | 000,352,920 | ---- | M] (ALWIL Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe -- (avast! Web Scanner)
SRV:64bit: - [2008.11.26 19:12:08 | 000,018,752 | ---- | M] (ALWIL Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe -- (aswUpdSv)
SRV:64bit: - [2008.01.19 00:06:52 | 000,383,544 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2010.05.13 22:00:15 | 000,395,048 | ---- | M] (Valve Corporation) [On_Demand | Running] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2010.02.27 22:09:09 | 000,075,064 | ---- | M] () [Auto | Running] -- C:\Windows\SysWOW64\PnkBstrA.exe -- (PnkBstrA)
SRV - [2009.07.26 07:43:14 | 000,025,832 | ---- | M] (BioWare) [On_Demand | Stopped] -- C:\Hry\Dragon age Origins\Dragon Age\bin_ship\daupdatersvc.service.exe -- (DAUpdaterSvc)
SRV - [2008.07.27 20:01:49 | 000,093,184 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_64)
SRV - [2006.11.02 15:34:14 | 000,000,000 | ---D | M] [Unknown | Stopped] -- C:\Windows\SysWOW64\Msdtc -- (MSDTC)
SRV - [2006.11.02 08:35:15 | 000,060,994 | ---- | M] () [On_Demand | Stopped] -- C:\Windows\SysWOW64\wbem\vds.mof -- (vds)
SRV - [2006.11.02 08:35:15 | 000,055,846 | ---- | M] () [On_Demand | Stopped] -- C:\Windows\SysWOW64\wbem\vss.mof -- (VSS)
========== Driver Services (SafeList) ==========
DRV:64bit: - [2009.10.24 19:58:53 | 000,314,016 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\SysNative\DRIVERS\atksgt.sys -- (atksgt)
DRV:64bit: - [2009.10.24 19:58:53 | 000,043,680 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\SysNative\DRIVERS\lirsgt.sys -- (lirsgt)
DRV:64bit: - [2009.10.24 19:40:02 | 000,871,408 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\sptd.sys -- (sptd)
DRV:64bit: - [2009.05.29 17:48:49 | 000,021,832 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\hamachi.sys -- (hamachi)
DRV:64bit: - [2009.05.24 00:44:15 | 000,082,816 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\pcouffin.sys -- (pcouffin)
DRV:64bit: - [2008.11.26 19:17:49 | 000,089,168 | ---- | M] () [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswSP.sys -- (aswSP)
DRV:64bit: - [2008.11.26 19:17:30 | 000,022,096 | ---- | M] () [File_System | Auto | Running] -- C:\Windows\SysNative\DRIVERS\aswFsBlk.sys -- (aswFsBlk)
DRV:64bit: - [2008.11.26 19:17:23 | 000,064,592 | ---- | M] () [File_System | Auto | Running] -- C:\Windows\SysNative\DRIVERS\aswMonFlt.sys -- (aswMonFlt)
DRV:64bit: - [2008.11.26 19:16:42 | 000,057,936 | ---- | M] () [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswTdi.sys -- (aswTdi)
DRV:64bit: - [2008.11.26 19:16:32 | 000,027,216 | ---- | M] () [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswRdr.sys -- (aswRdr)
DRV:64bit: - [2008.01.18 22:47:14 | 000,046,080 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\wpdusb.sys -- (WpdUsb)
DRV:64bit: - [2007.10.03 10:18:20 | 000,136,704 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\Rtlh64.sys -- (RTL8169)
DRV:64bit: - [2007.07.13 07:50:34 | 000,607,744 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\av88base.sys -- (AV88BASE)
DRV:64bit: - [2007.04.23 14:15:48 | 000,031,016 | ---- | M] () [Kernel | System | Running] -- C:\Windows\SysNative\DRIVERS\rtlprot.sys -- (RtlProt)
DRV:64bit: - [2007.04.02 23:13:46 | 000,025,088 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\motmodem.sys -- (motmodem)
DRV:64bit: - [2006.11.02 07:28:10 | 000,273,920 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HdAudio.sys -- (HdAudAddService)
DRV - [2008.07.14 10:03:17 | 000,001,088 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysWOW64\wbem\mpsdrv.mof -- (mpsdrv)
DRV - [2006.09.18 23:36:40 | 000,003,066 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysWOW64\wbem\tcpip.mof -- (Tcpip)
DRV - [2006.09.18 08:50:18 | 000,022,784 | ---- | M] (Arcsoft, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysWOW64\drivers\afc.sys -- (Afc)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://qip.ru
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.qip.ru
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://search.qip.ru
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://qip.ru
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.qip.ru/ie
IE - HKCU\..\URLSearchHook: - Reg Error: Key error. File not found
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
O1 HOSTS File: ([2006.09.18 23:37:24 | 000,000,761 | ---- | M]) - C:\Windows\SysNative\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (Podpora odkazu pro Adobe PDF Reader) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (BitComet Helper) - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files (x86)\BitComet\tools\BitCometBHO_1.2.1.2.dll (BitComet)
O2 - BHO: (QIPBHO Class) - {A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE} - C:\Users\Tomas Kotas\AppData\Roaming\Microsoft\Internet Explorer\qipsearchbar.dll (qip.ru)
O4:64bit: - HKLM..\Run: [NvCplDaemon] C:\Windows\SysNative\NvCpl.DLL ()
O4:64bit: - HKLM..\Run: [NvMediaCenter] C:\Windows\SysNative\NvMcTray.DLL ()
O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Windows\RAVCpl64.exe (Realtek Semiconductor)
O4:64bit: - HKLM..\Run: [Skytel] C:\Windows\SkyTel.exe (Realtek Semiconductor Corp.)
O4:64bit: - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files (x86)\Adobe\Reader 8.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [avast!] C:\Program Files\Alwil Software\Avast4\ashDisp.exe (ALWIL Software)
O4 - HKLM..\Run: [IRReceive] C:\Windows\SysWOW64\IRReceive.exe ()
O4 - HKCU..\Run: [DAEMON Tools Lite] C:\Program Files (x86)\DAEMON Tools Lite\daemon.exe (DT Soft Ltd)
O4 - HKCU..\Run: [OEXPRESS] File not found
O4 - HKCU..\Run: [Steam] c:\program files (x86)\valve\steam\steam.exe (Valve Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O8:64bit: - Extra context menu item: Stáhnout odkaz s použitím BitCometu - C:\Program Files (x86)\BitComet\BitComet.exe (http://www.BitComet.com)
O8:64bit: - Extra context menu item: Stáhnout všechna videa s použitím BitCometu - C:\Program Files (x86)\BitComet\BitComet.exe (http://www.BitComet.com)
O8:64bit: - Extra context menu item: Stáhnout všechny odkazy s použitím BitCometu - C:\Program Files (x86)\BitComet\BitComet.exe (http://www.BitComet.com)
O8 - Extra context menu item: Stáhnout odkaz s použitím BitCometu - C:\Program Files (x86)\BitComet\BitComet.exe (http://www.BitComet.com)
O8 - Extra context menu item: Stáhnout všechna videa s použitím BitCometu - C:\Program Files (x86)\BitComet\BitComet.exe (http://www.BitComet.com)
O8 - Extra context menu item: Stáhnout všechny odkazy s použitím BitCometu - C:\Program Files (x86)\BitComet\BitComet.exe (http://www.BitComet.com)
O9 - Extra Button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - C:\Program Files (x86)\BitComet\tools\BitCometBHO_1.2.1.2.dll (BitComet)
O13 - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {784797A8-342D-4072-9486-03C8D0F2F0A1} https://www.battlefieldheroes.com/stati ... 0.21.0.cab (Battlefield Heroes Updater)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 213.195.223.193 213.195.223.194
O18:64bit: - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - Reg Error: Key error. File not found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Users\Public\Pictures\Sample Pictures\Autumn Leaves.jpg
O24 - Desktop BackupWallPaper: C:\Users\Public\Pictures\Sample Pictures\Autumn Leaves.jpg
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{6bb67a37-c0c4-11de-912c-0019665b5ad0}\Shell - "" = AutoRun
O33 - MountPoints2\{6bb67a37-c0c4-11de-912c-0019665b5ad0}\Shell\AutoRun\command - "" = E:\CoJBiBLauncher.exe -- File not found
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
========== Files/Folders - Created Within 30 Days ==========
[2010.05.20 15:05:01 | 000,571,904 | ---- | C] (OldTimer Tools) -- C:\Users\Tomas Kotas\Desktop\OTL.exe
[2010.05.18 17:55:19 | 000,000,000 | ---D | C] -- C:\~$PVRTmp0$
[2010.05.17 18:48:03 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\QIP
[2010.05.15 23:08:53 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Monolith Productions
[2010.05.15 14:28:22 | 000,000,000 | ---D | C] -- C:\Users\Tomas Kotas\Documents\Call of Juarez - Bound in Blood
[2010.05.08 22:26:18 | 000,000,000 | ---D | C] -- C:\Users\Tomas Kotas\Documents\Settlers7
[2010.05.01 00:50:25 | 000,000,000 | ---D | C] -- C:\Users\Tomas Kotas\AppData\Local\storage
[2010.04.30 22:11:33 | 000,000,000 | ---D | C] -- C:\Users\Tomas Kotas\Documents\Heroes of Newerth
[2010.04.25 10:16:14 | 000,000,000 | ---D | C] -- C:\Users\Tomas Kotas\Documents\Bioshock2
[2010.04.25 10:16:14 | 000,000,000 | ---D | C] -- C:\Users\Tomas Kotas\AppData\Roaming\Bioshock2
[2010.04.25 10:15:21 | 000,000,000 | -HSD | C] -- C:\ProgramData\SecuROM
[2010.04.25 01:00:19 | 000,000,000 | ---D | C] -- C:\Users\Tomas Kotas\Documents\My Games
[2010.04.24 10:51:10 | 000,000,000 | ---D | C] -- C:\Users\Tomas Kotas\Desktop\Mashed Fully Loaded
[2010.04.22 20:42:06 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Ubisoft
[2010.04.21 18:31:34 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Electronic Arts
[2010.04.21 16:17:36 | 000,000,000 | ---D | C] -- C:\Users\Tomas Kotas\EADownloadManager
[3 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[2 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2010.05.20 15:08:46 | 006,291,456 | -HS- | M] () -- C:\Users\Tomas Kotas\NTUSER.DAT
[2010.05.20 15:08:16 | 001,393,930 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2010.05.20 15:08:16 | 000,598,600 | ---- | M] () -- C:\Windows\SysNative\perfh005.dat
[2010.05.20 15:08:16 | 000,586,980 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2010.05.20 15:08:16 | 000,114,808 | ---- | M] () -- C:\Windows\SysNative\perfc005.dat
[2010.05.20 15:08:16 | 000,101,052 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2010.05.20 15:05:02 | 000,571,904 | ---- | M] (OldTimer Tools) -- C:\Users\Tomas Kotas\Desktop\OTL.exe
[2010.05.20 15:04:52 | 000,000,000 | ---- | M] () -- C:\Windows\SysWow64\config.nt
[2010.05.20 15:01:47 | 000,004,176 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2010.05.20 15:01:47 | 000,004,176 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2010.05.20 15:01:47 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2010.05.20 15:01:39 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2010.05.20 15:01:34 | 3421,802,496 | -HS- | M] () -- C:\hiberfil.sys
[2010.05.19 22:19:26 | 000,524,288 | -HS- | M] () -- C:\Users\Tomas Kotas\NTUSER.DAT{1484be71-6a85-11db-b53d-88eb28f23ee5}.TMContainer00000000000000000001.regtrans-ms
[2010.05.19 22:19:26 | 000,065,536 | -HS- | M] () -- C:\Users\Tomas Kotas\NTUSER.DAT{1484be71-6a85-11db-b53d-88eb28f23ee5}.TM.blf
[2010.05.19 22:18:52 | 005,268,330 | -H-- | M] () -- C:\Users\Tomas Kotas\AppData\Local\IconCache.db
[2010.05.19 17:37:53 | 000,000,628 | ---- | M] () -- C:\Users\Tomas Kotas\Desktop\OpenTTD.lnk
[2010.05.19 14:37:27 | 003,073,671 | ---- | M] () -- C:\Users\Tomas Kotas\Desktop\The Clash - Should I Stay or Go Now.mp3
[2010.05.17 18:54:56 | 000,000,768 | ---- | M] () -- C:\Users\Tomas Kotas\Desktop\QIP 2005.lnk
[2010.05.16 09:06:03 | 000,001,539 | ---- | M] () -- C:\Users\Public\Desktop\F.E.A.R. Combat.lnk
[2010.05.15 15:04:49 | 000,000,835 | ---- | M] () -- C:\Users\Tomas Kotas\Desktop\Call of Juarez.lnk
[2010.05.14 15:23:10 | 000,323,918 | ---- | M] () -- C:\Users\Tomas Kotas\Desktop\Homer_avi_wmv.mp3
[2010.05.13 21:56:45 | 004,287,971 | ---- | M] () -- C:\Users\Tomas Kotas\Desktop\rtl_partyhits_-_06_-_kiss_-_i_was_made_for_loving_you.mp3
[2010.05.12 22:22:47 | 000,000,225 | ---- | M] () -- C:\Users\Tomas Kotas\Desktop\Portal.url
[2010.05.08 22:26:15 | 000,000,711 | ---- | M] () -- C:\Users\Tomas Kotas\Desktop\The Settlers7 – zástupce.lnk
[2010.05.03 20:12:31 | 004,599,021 | ---- | M] () -- C:\Users\Tomas Kotas\Desktop\Xindl X - Anděl.mp3
[2010.05.01 17:21:29 | 002,079,208 | ---- | M] () -- C:\Users\Tomas Kotas\Desktop\indian_core_46.mp3
[2010.05.01 00:52:58 | 000,001,002 | ---- | M] () -- C:\Users\Tomas Kotas\Desktop\Splinter Cell Conviction.lnk
[2010.04.30 22:11:35 | 000,001,530 | ---- | M] () -- C:\Users\Tomas Kotas\Desktop\Heroes of Newerth.lnk
[2010.04.27 19:12:57 | 000,000,589 | ---- | M] () -- C:\Users\Tomas Kotas\Desktop\Delphi 7.lnk
[2010.04.25 21:26:02 | 046,603,128 | ---- | M] () -- C:\Users\Tomas Kotas\Desktop\01 Hero Within(Song).wav
[2010.04.22 22:00:37 | 000,000,754 | ---- | M] () -- C:\Users\Tomas Kotas\Desktop\AssassinsCreedII – zástupce.lnk
[3 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[2 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ]
========== Files Created - No Company Name ==========
[2010.05.19 17:37:53 | 000,000,628 | ---- | C] () -- C:\Users\Tomas Kotas\Desktop\OpenTTD.lnk
[2010.05.19 14:37:25 | 003,073,671 | ---- | C] () -- C:\Users\Tomas Kotas\Desktop\The Clash - Should I Stay or Go Now.mp3
[2010.05.17 18:54:56 | 000,000,768 | ---- | C] () -- C:\Users\Tomas Kotas\Desktop\QIP 2005.lnk
[2010.05.15 22:59:28 | 000,001,539 | ---- | C] () -- C:\Users\Public\Desktop\F.E.A.R. Combat.lnk
[2010.05.15 15:04:49 | 000,000,835 | ---- | C] () -- C:\Users\Tomas Kotas\Desktop\Call of Juarez.lnk
[2010.05.14 15:22:55 | 000,323,918 | ---- | C] () -- C:\Users\Tomas Kotas\Desktop\Homer_avi_wmv.mp3
[2010.05.13 21:56:43 | 004,287,971 | ---- | C] () -- C:\Users\Tomas Kotas\Desktop\rtl_partyhits_-_06_-_kiss_-_i_was_made_for_loving_you.mp3
[2010.05.12 22:19:31 | 000,000,225 | ---- | C] () -- C:\Users\Tomas Kotas\Desktop\Portal.url
[2010.05.08 22:26:15 | 000,000,711 | ---- | C] () -- C:\Users\Tomas Kotas\Desktop\The Settlers7 – zástupce.lnk
[2010.05.08 21:03:24 | 000,370,694 | ---- | C] () -- C:\Users\Tomas Kotas\AppData\Local\dd_vcredistMSI411E.txt
[2010.05.08 21:03:24 | 000,011,152 | ---- | C] () -- C:\Users\Tomas Kotas\AppData\Local\dd_vcredistUI411E.txt
[2010.05.03 20:12:08 | 004,599,021 | ---- | C] () -- C:\Users\Tomas Kotas\Desktop\Xindl X - Anděl.mp3
[2010.05.01 17:21:24 | 002,079,208 | ---- | C] () -- C:\Users\Tomas Kotas\Desktop\indian_core_46.mp3
[2010.05.01 00:52:58 | 000,001,002 | ---- | C] () -- C:\Users\Tomas Kotas\Desktop\Splinter Cell Conviction.lnk
[2010.04.30 22:11:35 | 000,001,530 | ---- | C] () -- C:\Users\Tomas Kotas\Desktop\Heroes of Newerth.lnk
[2010.04.27 20:10:36 | 000,372,608 | ---- | C] () -- C:\Users\Tomas Kotas\AppData\Local\dd_vcredistMSI3D3E.txt
[2010.04.27 20:10:36 | 000,011,216 | ---- | C] () -- C:\Users\Tomas Kotas\AppData\Local\dd_vcredistUI3D3E.txt
[2010.04.27 19:12:57 | 000,000,589 | ---- | C] () -- C:\Users\Tomas Kotas\Desktop\Delphi 7.lnk
[2010.04.25 21:26:02 | 046,603,128 | ---- | C] () -- C:\Users\Tomas Kotas\Desktop\01 Hero Within(Song).wav
[2010.04.22 22:00:37 | 000,000,754 | ---- | C] () -- C:\Users\Tomas Kotas\Desktop\AssassinsCreedII – zástupce.lnk
[2009.11.06 10:58:04 | 000,178,975 | ---- | C] () -- C:\Windows\SysWow64\xlive.dll.cat
[2009.06.13 12:32:57 | 000,000,049 | ---- | C] () -- C:\Windows\NeroDigital.ini
[2009.06.01 18:02:53 | 000,001,517 | ---- | C] () -- C:\Windows\Taroky.ini
[2009.01.03 01:08:56 | 000,000,086 | ---- | C] () -- C:\Windows\ARCHPR.INI
[2008.12.30 08:54:55 | 000,000,109 | ---- | C] () -- C:\Windows\disney.ini
[2008.10.07 10:13:30 | 000,197,912 | ---- | C] () -- C:\Windows\SysWow64\physxcudart_20.dll
[2008.10.07 10:13:22 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelTraditionalChinese.dll
[2008.10.07 10:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelSwedish.dll
[2008.10.07 10:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelSpanish.dll
[2008.10.07 10:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelSimplifiedChinese.dll
[2008.10.07 10:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelPortugese.dll
[2008.10.07 10:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelKorean.dll
[2008.10.07 10:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelJapanese.dll
[2008.10.07 10:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelGerman.dll
[2008.10.07 10:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelFrench.dll
[2008.07.14 13:39:44 | 000,167,936 | ---- | C] () -- C:\Windows\SysWow64\GTTunerCard.dll
[2008.07.14 13:39:44 | 000,028,672 | ---- | C] () -- C:\Windows\SysWow64\Hookdll.dll
[2008.07.14 13:39:43 | 000,122,880 | ---- | C] () -- C:\Windows\SysWow64\RmCard.dll
[2008.07.14 11:25:17 | 000,368,640 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2008.07.14 11:24:38 | 000,060,124 | ---- | C] () -- C:\Windows\SysWow64\tcpmon.ini
[2008.07.14 09:39:59 | 003,596,288 | ---- | C] () -- C:\Windows\SysWow64\qt-dx331.dll
[2008.07.14 09:39:59 | 000,755,027 | ---- | C] () -- C:\Windows\SysWow64\xvidcore.dll
[2008.07.14 09:39:59 | 000,159,839 | ---- | C] () -- C:\Windows\SysWow64\xvidvfw.dll
[2008.07.14 09:39:58 | 000,007,680 | ---- | C] () -- C:\Windows\SysWow64\ff_vfw.dll
[2008.07.14 09:39:58 | 000,000,547 | ---- | C] () -- C:\Windows\SysWow64\ff_vfw.dll.manifest
[2008.07.14 08:41:53 | 000,005,633 | ---- | C] () -- C:\Windows\Ascd_tmp.ini
[2008.07.14 08:41:52 | 000,010,288 | ---- | C] () -- C:\Windows\SysWow64\drivers\ASUSHWIO.SYS
[2005.10.14 12:56:50 | 000,344,064 | ---- | C] () -- C:\Windows\SysWow64\xvid.dll
[2005.10.14 11:56:50 | 000,155,136 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll
< End of report >
OTL logfile created on: 20.5.2010 15:05:22 - Run 1
OTL by OldTimer - Version 3.2.5.0 Folder = C:\Users\Tomas Kotas\Desktop
64bit-Windows Vista Home Basic Edition Service Pack 1 (Version = 6.0.6001) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6001.18000)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
3,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 51,00% Memory free
7,00 Gb Paging File | 5,00 Gb Available in Paging File | 71,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 298,09 Gb Total Space | 18,08 Gb Free Space | 6,06% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Computer Name: TOMASKOTAS-PC
Current User Name: Tomas Kotas
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: Current user
Include 64bit Scans
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard
========== Processes (SafeList) ==========
PRC - [2010.05.20 15:05:02 | 000,571,904 | ---- | M] (OldTimer Tools) -- C:\Users\Tomas Kotas\Desktop\OTL.exe
PRC - [2010.05.13 22:00:15 | 000,395,048 | ---- | M] (Valve Corporation) -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe
PRC - [2010.05.07 13:12:55 | 001,238,352 | ---- | M] (Valve Corporation) -- C:\Program Files (x86)\Valve\Steam\Steam.exe
PRC - [2010.02.27 22:09:09 | 000,075,064 | ---- | M] () -- C:\Windows\SysWOW64\PnkBstrA.exe
PRC - [2009.07.14 12:59:24 | 000,168,960 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
PRC - [2009.04.23 15:51:38 | 000,691,656 | ---- | M] (DT Soft Ltd) -- C:\Program Files (x86)\DAEMON Tools Lite\daemon.exe
PRC - [2009.01.17 17:56:41 | 002,527,280 | ---- | M] () -- C:\Program Files\Alwil Software\Avast4\Setup\avast.setup
PRC - [2008.11.26 19:18:51 | 000,081,000 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashDisp.exe
PRC - [2008.11.26 19:18:46 | 000,155,160 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashServ.exe
PRC - [2008.11.26 19:18:32 | 000,254,040 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
PRC - [2008.11.26 19:16:23 | 000,352,920 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
PRC - [2008.11.26 19:12:08 | 000,018,752 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
PRC - [2008.06.30 17:59:02 | 000,098,816 | ---- | M] (Opera Software) -- C:\Program Files (x86)\Opera\opera.exe
PRC - [2007.06.01 17:01:14 | 000,675,913 | ---- | M] () -- C:\Windows\SysWOW64\IRReceive.exe
PRC - [2007.05.11 13:06:32 | 000,040,048 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Adobe\Reader 8.0\Reader\reader_sl.exe
PRC - [2006.11.15 16:59:38 | 000,249,856 | ---- | M] (ArcSoft, Inc.) -- C:\Program Files (x86)\ArcSoft\TotalMedia 3\TMMonitor.exe
========== Modules (SafeList) ==========
MOD - [2010.05.20 15:05:02 | 000,571,904 | ---- | M] (OldTimer Tools) -- C:\Users\Tomas Kotas\Desktop\OTL.exe
MOD - [2008.01.18 23:34:00 | 000,450,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\comdlg32.dll
MOD - [2008.01.18 23:33:02 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msscript.ocx
MOD - [2008.01.18 23:26:36 | 001,684,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6001.18000_none_5cdbaa5a083979cc\comctl32.dll
========== Win32 Services (SafeList) ==========
SRV:64bit: - [2008.11.26 19:18:46 | 000,155,160 | ---- | M] (ALWIL Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast4\ashServ.exe -- (avast! Antivirus)
SRV:64bit: - [2008.11.26 19:18:32 | 000,254,040 | ---- | M] (ALWIL Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe -- (avast! Mail Scanner)
SRV:64bit: - [2008.11.26 19:16:23 | 000,352,920 | ---- | M] (ALWIL Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe -- (avast! Web Scanner)
SRV:64bit: - [2008.11.26 19:12:08 | 000,018,752 | ---- | M] (ALWIL Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe -- (aswUpdSv)
SRV:64bit: - [2008.01.19 00:06:52 | 000,383,544 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2010.05.13 22:00:15 | 000,395,048 | ---- | M] (Valve Corporation) [On_Demand | Running] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2010.02.27 22:09:09 | 000,075,064 | ---- | M] () [Auto | Running] -- C:\Windows\SysWOW64\PnkBstrA.exe -- (PnkBstrA)
SRV - [2009.07.26 07:43:14 | 000,025,832 | ---- | M] (BioWare) [On_Demand | Stopped] -- C:\Hry\Dragon age Origins\Dragon Age\bin_ship\daupdatersvc.service.exe -- (DAUpdaterSvc)
SRV - [2008.07.27 20:01:49 | 000,093,184 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_64)
SRV - [2006.11.02 15:34:14 | 000,000,000 | ---D | M] [Unknown | Stopped] -- C:\Windows\SysWOW64\Msdtc -- (MSDTC)
SRV - [2006.11.02 08:35:15 | 000,060,994 | ---- | M] () [On_Demand | Stopped] -- C:\Windows\SysWOW64\wbem\vds.mof -- (vds)
SRV - [2006.11.02 08:35:15 | 000,055,846 | ---- | M] () [On_Demand | Stopped] -- C:\Windows\SysWOW64\wbem\vss.mof -- (VSS)
========== Driver Services (SafeList) ==========
DRV:64bit: - [2009.10.24 19:58:53 | 000,314,016 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\SysNative\DRIVERS\atksgt.sys -- (atksgt)
DRV:64bit: - [2009.10.24 19:58:53 | 000,043,680 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\SysNative\DRIVERS\lirsgt.sys -- (lirsgt)
DRV:64bit: - [2009.10.24 19:40:02 | 000,871,408 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\sptd.sys -- (sptd)
DRV:64bit: - [2009.05.29 17:48:49 | 000,021,832 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\hamachi.sys -- (hamachi)
DRV:64bit: - [2009.05.24 00:44:15 | 000,082,816 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\pcouffin.sys -- (pcouffin)
DRV:64bit: - [2008.11.26 19:17:49 | 000,089,168 | ---- | M] () [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswSP.sys -- (aswSP)
DRV:64bit: - [2008.11.26 19:17:30 | 000,022,096 | ---- | M] () [File_System | Auto | Running] -- C:\Windows\SysNative\DRIVERS\aswFsBlk.sys -- (aswFsBlk)
DRV:64bit: - [2008.11.26 19:17:23 | 000,064,592 | ---- | M] () [File_System | Auto | Running] -- C:\Windows\SysNative\DRIVERS\aswMonFlt.sys -- (aswMonFlt)
DRV:64bit: - [2008.11.26 19:16:42 | 000,057,936 | ---- | M] () [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswTdi.sys -- (aswTdi)
DRV:64bit: - [2008.11.26 19:16:32 | 000,027,216 | ---- | M] () [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswRdr.sys -- (aswRdr)
DRV:64bit: - [2008.01.18 22:47:14 | 000,046,080 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\wpdusb.sys -- (WpdUsb)
DRV:64bit: - [2007.10.03 10:18:20 | 000,136,704 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\Rtlh64.sys -- (RTL8169)
DRV:64bit: - [2007.07.13 07:50:34 | 000,607,744 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\av88base.sys -- (AV88BASE)
DRV:64bit: - [2007.04.23 14:15:48 | 000,031,016 | ---- | M] () [Kernel | System | Running] -- C:\Windows\SysNative\DRIVERS\rtlprot.sys -- (RtlProt)
DRV:64bit: - [2007.04.02 23:13:46 | 000,025,088 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\motmodem.sys -- (motmodem)
DRV:64bit: - [2006.11.02 07:28:10 | 000,273,920 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HdAudio.sys -- (HdAudAddService)
DRV - [2008.07.14 10:03:17 | 000,001,088 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysWOW64\wbem\mpsdrv.mof -- (mpsdrv)
DRV - [2006.09.18 23:36:40 | 000,003,066 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysWOW64\wbem\tcpip.mof -- (Tcpip)
DRV - [2006.09.18 08:50:18 | 000,022,784 | ---- | M] (Arcsoft, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysWOW64\drivers\afc.sys -- (Afc)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://qip.ru
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.qip.ru
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://search.qip.ru
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://qip.ru
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.qip.ru/ie
IE - HKCU\..\URLSearchHook: - Reg Error: Key error. File not found
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
O1 HOSTS File: ([2006.09.18 23:37:24 | 000,000,761 | ---- | M]) - C:\Windows\SysNative\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (Podpora odkazu pro Adobe PDF Reader) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (BitComet Helper) - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files (x86)\BitComet\tools\BitCometBHO_1.2.1.2.dll (BitComet)
O2 - BHO: (QIPBHO Class) - {A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE} - C:\Users\Tomas Kotas\AppData\Roaming\Microsoft\Internet Explorer\qipsearchbar.dll (qip.ru)
O4:64bit: - HKLM..\Run: [NvCplDaemon] C:\Windows\SysNative\NvCpl.DLL ()
O4:64bit: - HKLM..\Run: [NvMediaCenter] C:\Windows\SysNative\NvMcTray.DLL ()
O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Windows\RAVCpl64.exe (Realtek Semiconductor)
O4:64bit: - HKLM..\Run: [Skytel] C:\Windows\SkyTel.exe (Realtek Semiconductor Corp.)
O4:64bit: - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files (x86)\Adobe\Reader 8.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [avast!] C:\Program Files\Alwil Software\Avast4\ashDisp.exe (ALWIL Software)
O4 - HKLM..\Run: [IRReceive] C:\Windows\SysWOW64\IRReceive.exe ()
O4 - HKCU..\Run: [DAEMON Tools Lite] C:\Program Files (x86)\DAEMON Tools Lite\daemon.exe (DT Soft Ltd)
O4 - HKCU..\Run: [OEXPRESS] File not found
O4 - HKCU..\Run: [Steam] c:\program files (x86)\valve\steam\steam.exe (Valve Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O8:64bit: - Extra context menu item: Stáhnout odkaz s použitím BitCometu - C:\Program Files (x86)\BitComet\BitComet.exe (http://www.BitComet.com)
O8:64bit: - Extra context menu item: Stáhnout všechna videa s použitím BitCometu - C:\Program Files (x86)\BitComet\BitComet.exe (http://www.BitComet.com)
O8:64bit: - Extra context menu item: Stáhnout všechny odkazy s použitím BitCometu - C:\Program Files (x86)\BitComet\BitComet.exe (http://www.BitComet.com)
O8 - Extra context menu item: Stáhnout odkaz s použitím BitCometu - C:\Program Files (x86)\BitComet\BitComet.exe (http://www.BitComet.com)
O8 - Extra context menu item: Stáhnout všechna videa s použitím BitCometu - C:\Program Files (x86)\BitComet\BitComet.exe (http://www.BitComet.com)
O8 - Extra context menu item: Stáhnout všechny odkazy s použitím BitCometu - C:\Program Files (x86)\BitComet\BitComet.exe (http://www.BitComet.com)
O9 - Extra Button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - C:\Program Files (x86)\BitComet\tools\BitCometBHO_1.2.1.2.dll (BitComet)
O13 - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {784797A8-342D-4072-9486-03C8D0F2F0A1} https://www.battlefieldheroes.com/stati ... 0.21.0.cab (Battlefield Heroes Updater)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 213.195.223.193 213.195.223.194
O18:64bit: - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - Reg Error: Key error. File not found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Users\Public\Pictures\Sample Pictures\Autumn Leaves.jpg
O24 - Desktop BackupWallPaper: C:\Users\Public\Pictures\Sample Pictures\Autumn Leaves.jpg
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{6bb67a37-c0c4-11de-912c-0019665b5ad0}\Shell - "" = AutoRun
O33 - MountPoints2\{6bb67a37-c0c4-11de-912c-0019665b5ad0}\Shell\AutoRun\command - "" = E:\CoJBiBLauncher.exe -- File not found
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
========== Files/Folders - Created Within 30 Days ==========
[2010.05.20 15:05:01 | 000,571,904 | ---- | C] (OldTimer Tools) -- C:\Users\Tomas Kotas\Desktop\OTL.exe
[2010.05.18 17:55:19 | 000,000,000 | ---D | C] -- C:\~$PVRTmp0$
[2010.05.17 18:48:03 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\QIP
[2010.05.15 23:08:53 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Monolith Productions
[2010.05.15 14:28:22 | 000,000,000 | ---D | C] -- C:\Users\Tomas Kotas\Documents\Call of Juarez - Bound in Blood
[2010.05.08 22:26:18 | 000,000,000 | ---D | C] -- C:\Users\Tomas Kotas\Documents\Settlers7
[2010.05.01 00:50:25 | 000,000,000 | ---D | C] -- C:\Users\Tomas Kotas\AppData\Local\storage
[2010.04.30 22:11:33 | 000,000,000 | ---D | C] -- C:\Users\Tomas Kotas\Documents\Heroes of Newerth
[2010.04.25 10:16:14 | 000,000,000 | ---D | C] -- C:\Users\Tomas Kotas\Documents\Bioshock2
[2010.04.25 10:16:14 | 000,000,000 | ---D | C] -- C:\Users\Tomas Kotas\AppData\Roaming\Bioshock2
[2010.04.25 10:15:21 | 000,000,000 | -HSD | C] -- C:\ProgramData\SecuROM
[2010.04.25 01:00:19 | 000,000,000 | ---D | C] -- C:\Users\Tomas Kotas\Documents\My Games
[2010.04.24 10:51:10 | 000,000,000 | ---D | C] -- C:\Users\Tomas Kotas\Desktop\Mashed Fully Loaded
[2010.04.22 20:42:06 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Ubisoft
[2010.04.21 18:31:34 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Electronic Arts
[2010.04.21 16:17:36 | 000,000,000 | ---D | C] -- C:\Users\Tomas Kotas\EADownloadManager
[3 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[2 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2010.05.20 15:08:46 | 006,291,456 | -HS- | M] () -- C:\Users\Tomas Kotas\NTUSER.DAT
[2010.05.20 15:08:16 | 001,393,930 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2010.05.20 15:08:16 | 000,598,600 | ---- | M] () -- C:\Windows\SysNative\perfh005.dat
[2010.05.20 15:08:16 | 000,586,980 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2010.05.20 15:08:16 | 000,114,808 | ---- | M] () -- C:\Windows\SysNative\perfc005.dat
[2010.05.20 15:08:16 | 000,101,052 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2010.05.20 15:05:02 | 000,571,904 | ---- | M] (OldTimer Tools) -- C:\Users\Tomas Kotas\Desktop\OTL.exe
[2010.05.20 15:04:52 | 000,000,000 | ---- | M] () -- C:\Windows\SysWow64\config.nt
[2010.05.20 15:01:47 | 000,004,176 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2010.05.20 15:01:47 | 000,004,176 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2010.05.20 15:01:47 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2010.05.20 15:01:39 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2010.05.20 15:01:34 | 3421,802,496 | -HS- | M] () -- C:\hiberfil.sys
[2010.05.19 22:19:26 | 000,524,288 | -HS- | M] () -- C:\Users\Tomas Kotas\NTUSER.DAT{1484be71-6a85-11db-b53d-88eb28f23ee5}.TMContainer00000000000000000001.regtrans-ms
[2010.05.19 22:19:26 | 000,065,536 | -HS- | M] () -- C:\Users\Tomas Kotas\NTUSER.DAT{1484be71-6a85-11db-b53d-88eb28f23ee5}.TM.blf
[2010.05.19 22:18:52 | 005,268,330 | -H-- | M] () -- C:\Users\Tomas Kotas\AppData\Local\IconCache.db
[2010.05.19 17:37:53 | 000,000,628 | ---- | M] () -- C:\Users\Tomas Kotas\Desktop\OpenTTD.lnk
[2010.05.19 14:37:27 | 003,073,671 | ---- | M] () -- C:\Users\Tomas Kotas\Desktop\The Clash - Should I Stay or Go Now.mp3
[2010.05.17 18:54:56 | 000,000,768 | ---- | M] () -- C:\Users\Tomas Kotas\Desktop\QIP 2005.lnk
[2010.05.16 09:06:03 | 000,001,539 | ---- | M] () -- C:\Users\Public\Desktop\F.E.A.R. Combat.lnk
[2010.05.15 15:04:49 | 000,000,835 | ---- | M] () -- C:\Users\Tomas Kotas\Desktop\Call of Juarez.lnk
[2010.05.14 15:23:10 | 000,323,918 | ---- | M] () -- C:\Users\Tomas Kotas\Desktop\Homer_avi_wmv.mp3
[2010.05.13 21:56:45 | 004,287,971 | ---- | M] () -- C:\Users\Tomas Kotas\Desktop\rtl_partyhits_-_06_-_kiss_-_i_was_made_for_loving_you.mp3
[2010.05.12 22:22:47 | 000,000,225 | ---- | M] () -- C:\Users\Tomas Kotas\Desktop\Portal.url
[2010.05.08 22:26:15 | 000,000,711 | ---- | M] () -- C:\Users\Tomas Kotas\Desktop\The Settlers7 – zástupce.lnk
[2010.05.03 20:12:31 | 004,599,021 | ---- | M] () -- C:\Users\Tomas Kotas\Desktop\Xindl X - Anděl.mp3
[2010.05.01 17:21:29 | 002,079,208 | ---- | M] () -- C:\Users\Tomas Kotas\Desktop\indian_core_46.mp3
[2010.05.01 00:52:58 | 000,001,002 | ---- | M] () -- C:\Users\Tomas Kotas\Desktop\Splinter Cell Conviction.lnk
[2010.04.30 22:11:35 | 000,001,530 | ---- | M] () -- C:\Users\Tomas Kotas\Desktop\Heroes of Newerth.lnk
[2010.04.27 19:12:57 | 000,000,589 | ---- | M] () -- C:\Users\Tomas Kotas\Desktop\Delphi 7.lnk
[2010.04.25 21:26:02 | 046,603,128 | ---- | M] () -- C:\Users\Tomas Kotas\Desktop\01 Hero Within(Song).wav
[2010.04.22 22:00:37 | 000,000,754 | ---- | M] () -- C:\Users\Tomas Kotas\Desktop\AssassinsCreedII – zástupce.lnk
[3 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[2 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ]
========== Files Created - No Company Name ==========
[2010.05.19 17:37:53 | 000,000,628 | ---- | C] () -- C:\Users\Tomas Kotas\Desktop\OpenTTD.lnk
[2010.05.19 14:37:25 | 003,073,671 | ---- | C] () -- C:\Users\Tomas Kotas\Desktop\The Clash - Should I Stay or Go Now.mp3
[2010.05.17 18:54:56 | 000,000,768 | ---- | C] () -- C:\Users\Tomas Kotas\Desktop\QIP 2005.lnk
[2010.05.15 22:59:28 | 000,001,539 | ---- | C] () -- C:\Users\Public\Desktop\F.E.A.R. Combat.lnk
[2010.05.15 15:04:49 | 000,000,835 | ---- | C] () -- C:\Users\Tomas Kotas\Desktop\Call of Juarez.lnk
[2010.05.14 15:22:55 | 000,323,918 | ---- | C] () -- C:\Users\Tomas Kotas\Desktop\Homer_avi_wmv.mp3
[2010.05.13 21:56:43 | 004,287,971 | ---- | C] () -- C:\Users\Tomas Kotas\Desktop\rtl_partyhits_-_06_-_kiss_-_i_was_made_for_loving_you.mp3
[2010.05.12 22:19:31 | 000,000,225 | ---- | C] () -- C:\Users\Tomas Kotas\Desktop\Portal.url
[2010.05.08 22:26:15 | 000,000,711 | ---- | C] () -- C:\Users\Tomas Kotas\Desktop\The Settlers7 – zástupce.lnk
[2010.05.08 21:03:24 | 000,370,694 | ---- | C] () -- C:\Users\Tomas Kotas\AppData\Local\dd_vcredistMSI411E.txt
[2010.05.08 21:03:24 | 000,011,152 | ---- | C] () -- C:\Users\Tomas Kotas\AppData\Local\dd_vcredistUI411E.txt
[2010.05.03 20:12:08 | 004,599,021 | ---- | C] () -- C:\Users\Tomas Kotas\Desktop\Xindl X - Anděl.mp3
[2010.05.01 17:21:24 | 002,079,208 | ---- | C] () -- C:\Users\Tomas Kotas\Desktop\indian_core_46.mp3
[2010.05.01 00:52:58 | 000,001,002 | ---- | C] () -- C:\Users\Tomas Kotas\Desktop\Splinter Cell Conviction.lnk
[2010.04.30 22:11:35 | 000,001,530 | ---- | C] () -- C:\Users\Tomas Kotas\Desktop\Heroes of Newerth.lnk
[2010.04.27 20:10:36 | 000,372,608 | ---- | C] () -- C:\Users\Tomas Kotas\AppData\Local\dd_vcredistMSI3D3E.txt
[2010.04.27 20:10:36 | 000,011,216 | ---- | C] () -- C:\Users\Tomas Kotas\AppData\Local\dd_vcredistUI3D3E.txt
[2010.04.27 19:12:57 | 000,000,589 | ---- | C] () -- C:\Users\Tomas Kotas\Desktop\Delphi 7.lnk
[2010.04.25 21:26:02 | 046,603,128 | ---- | C] () -- C:\Users\Tomas Kotas\Desktop\01 Hero Within(Song).wav
[2010.04.22 22:00:37 | 000,000,754 | ---- | C] () -- C:\Users\Tomas Kotas\Desktop\AssassinsCreedII – zástupce.lnk
[2009.11.06 10:58:04 | 000,178,975 | ---- | C] () -- C:\Windows\SysWow64\xlive.dll.cat
[2009.06.13 12:32:57 | 000,000,049 | ---- | C] () -- C:\Windows\NeroDigital.ini
[2009.06.01 18:02:53 | 000,001,517 | ---- | C] () -- C:\Windows\Taroky.ini
[2009.01.03 01:08:56 | 000,000,086 | ---- | C] () -- C:\Windows\ARCHPR.INI
[2008.12.30 08:54:55 | 000,000,109 | ---- | C] () -- C:\Windows\disney.ini
[2008.10.07 10:13:30 | 000,197,912 | ---- | C] () -- C:\Windows\SysWow64\physxcudart_20.dll
[2008.10.07 10:13:22 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelTraditionalChinese.dll
[2008.10.07 10:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelSwedish.dll
[2008.10.07 10:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelSpanish.dll
[2008.10.07 10:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelSimplifiedChinese.dll
[2008.10.07 10:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelPortugese.dll
[2008.10.07 10:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelKorean.dll
[2008.10.07 10:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelJapanese.dll
[2008.10.07 10:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelGerman.dll
[2008.10.07 10:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelFrench.dll
[2008.07.14 13:39:44 | 000,167,936 | ---- | C] () -- C:\Windows\SysWow64\GTTunerCard.dll
[2008.07.14 13:39:44 | 000,028,672 | ---- | C] () -- C:\Windows\SysWow64\Hookdll.dll
[2008.07.14 13:39:43 | 000,122,880 | ---- | C] () -- C:\Windows\SysWow64\RmCard.dll
[2008.07.14 11:25:17 | 000,368,640 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2008.07.14 11:24:38 | 000,060,124 | ---- | C] () -- C:\Windows\SysWow64\tcpmon.ini
[2008.07.14 09:39:59 | 003,596,288 | ---- | C] () -- C:\Windows\SysWow64\qt-dx331.dll
[2008.07.14 09:39:59 | 000,755,027 | ---- | C] () -- C:\Windows\SysWow64\xvidcore.dll
[2008.07.14 09:39:59 | 000,159,839 | ---- | C] () -- C:\Windows\SysWow64\xvidvfw.dll
[2008.07.14 09:39:58 | 000,007,680 | ---- | C] () -- C:\Windows\SysWow64\ff_vfw.dll
[2008.07.14 09:39:58 | 000,000,547 | ---- | C] () -- C:\Windows\SysWow64\ff_vfw.dll.manifest
[2008.07.14 08:41:53 | 000,005,633 | ---- | C] () -- C:\Windows\Ascd_tmp.ini
[2008.07.14 08:41:52 | 000,010,288 | ---- | C] () -- C:\Windows\SysWow64\drivers\ASUSHWIO.SYS
[2005.10.14 12:56:50 | 000,344,064 | ---- | C] () -- C:\Windows\SysWow64\xvid.dll
[2005.10.14 11:56:50 | 000,155,136 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll
< End of report >
-
1danab
- Nováček
- Příspěvky: 1412
- Registrován: 21 říj 2007 13:04
- Bydliště: České Budějovice
- Kontaktovat uživatele:
Re: Prosím o preventivku
log je ok, ale chybí Vám SP2 a tím i důležité systémové záplaty; doinstalujte 
pokud máte modem, pokuste se jej restartovat
pokud máte modem, pokuste se jej restartovat
Přispějete na provoz fóra?