VIRY.CZ

Nazdar.

Mam taky dlhodobejsi problem zo zasekavanim celeho PC. Stava sa to pri uplne banalnych veciach ako nacitavanie stranky firefoxu , pustenie media playeru, pustenie skypu, atd... Skusal som uz skontrolovat celi PC roznymi programami co mazu vyrusy ked uz ani to nepomahalo tak som celi disk formatoval , reinstaloval som vin asi 6krat , skusal som XP profesional , Win 7 32 a 65bit a stale som nezaznamenal ziadne zlepsenie. Kontroloval som aj hardware ci nahodov nieco neni odpalene alebo tak podobne ale vsetky testy prebehli vporiadku alo by som byt 100% stave dokonca som ho mal aj v servise ale tam povedali ze sa im tato chyba z tym sekanim neprejavuje takze som tam vyhodil 25€ zanic. A to zasekavanie sa neprejavuje v ziadnych pravidelnych intervaloch a je v dlzke od tych 2 az 5 min pricom sa neda robyt uplne nic len akurat tak myskov hybat a este toto sekanie sa prejavuje aj pri necinnosti PC ked mam zapnuty len WMP a hra mi tam muzika tak akurat ked zacne sekat tak seka aj hudbu tak neviem fakt cim to moze byt ci mi tam nejaky proces roby hovadiny ale uz fakt neviem co tak prosim o radu ako by som to mohol vyriesit alebo nazoro ci to moze byt hardverom alebo je to nieco zo softom .

Este dodam nejaky ten log

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 10:54:46, on 22. 9. 2010
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16385)
Boot mode: Normal

Running processes:
C:\Program Files\Alwil Software\Avast5\AvastUI.exe
C:\Program Files (x86)\GIGABYTE\Gamer HUD Lite\HUD.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Program Files (x86)\Windows Media Player\wmplayer.exe
C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.yahoo.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Yahoo! Companion BHO - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn2\ycomp5_6_2_0.dll
O2 - BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: &Yahoo! Companion - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn2\ycomp5_6_2_0.dll
O4 - HKLM\..\Run: [avast5] "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui
O4 - HKLM\..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: GIGABYTE Gamer HUD Lite.lnk = C:\Program Files (x86)\GIGABYTE\Gamer HUD Lite\HUD.exe
O17 - HKLM\System\CCS\Services\Tcpip\..\{EEA09762-B988-4A04-81C7-74ED4E92282A}: NameServer = 192.168.1.50
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Mail Scanner - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Web Scanner - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Performance Driver Service - Unknown owner - C:\Program Files\NVIDIA Corporation\Performance Drivers\nvPDsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: @C:\Program Files (x86)\TuneUp Utilities 2010\TuneUpDefragService.exe,-1 (TuneUp.Defrag) - TuneUp Software - C:\Program Files (x86)\TuneUp Utilities 2010\TuneUpDefragService.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files (x86)\TuneUp Utilities 2010\TuneUpUtilitiesService64.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 6873 bytes

Dobrý večer

Stahněte MBAM z mého podpisu
-Nainstalujte,dejte úplný sken

NIC NEMAZAT
-MBAM má občas falešné detekce,proto budeme mazat až po kontrole logu.
-Log zkopírujte sem.



Stahněte OTL http://oldtimer.geekstogo.com/OTL.exe
-uložte ho na plochu a spustte soubor OTL.exe.
-do bílého okna dole skopírujte tento skript: - zaškrtněte okénko Pro všechny uživatele.
-označte okénka Kontrola na havěť "LOP" a Kontrola na havěť "Purity"
- Klikněte na tlačítko Prohledat
-po dokončení skenu se objeví logy OTL.Txt a Extras.txt, vložte je zde

Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org

Verzia databázy: 4669

Windows 6.1.7600
Internet Explorer 8.0.7600.16385

23. 9. 2010 1:31:39
mbam-log-2010-09-23 (01-31-39).txt

Typ kontroly: Úplná kontrola (C:\|D:\|E:\|F:\|G:\|)
Objektov kontrolovaných: 226830
Uplynulý čas: 26 min, 25 sek

Infikované služby pamäte: 0
Infikované moduly pamäte: 0
Infikované registračné kľúče: 0
Infikované registračné hodnoty: 0
Infikované položky registračných dát: 0
Infikované priečinky: 0
Infikované súbory: 2

Infikované služby pamäte:
(Škodlivé položky neboli zistené)

Infikované moduly pamäte:
(Škodlivé položky neboli zistené)

Infikované registračné kľúče:
(Škodlivé položky neboli zistené)

Infikované registračné hodnoty:
(Škodlivé položky neboli zistené)

Infikované položky registračných dát:
(Škodlivé položky neboli zistené)

Infikované priečinky:
(Škodlivé položky neboli zistené)

Infikované súbory:
C:\Users\PC\Desktop\mix\keygen.exe (Trojan.Agent.CK) -> No action taken.
C:\Users\PC\Desktop\mix\Driver Checker v2.7.4 Datecode 20091231\Keygen\keygen.exe (Trojan.Agent) -> No action taken.


Akurat tieto dva mam aj v avaste v karantene ulozene sa mi tak zda

OTL logfile created on: 23. 9. 2010 1:35:11 - Run 1
OTL by OldTimer - Version 3.2.14.1 Folder = C:\Users\PC\Desktop
64bit- Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 0000041b | Country: Slovenská republika | Language: SKY | Date Format: d. M. yyyy

2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 54,00% Memory free
6,00 Gb Paging File | 5,00 Gb Available in Paging File | 84,00% Paging File free
Paging file location(s): c:\pagefile.sys 4500 4500 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 97,56 Gb Total Space | 40,86 Gb Free Space | 41,89% Space Free | Partition Type: NTFS
Drive D: | 368,10 Gb Total Space | 338,62 Gb Free Space | 91,99% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: PC-PC
Current User Name: PC
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Include 64bit Scans
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

========== Processes (SafeList) ==========

PRC - [2010/09/23 01:04:41 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Users\PC\Desktop\OTL.exe
PRC - [2010/09/16 18:12:07 | 000,910,296 | ---- | M] (Mozilla Corporation) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
PRC - [2010/09/16 18:12:07 | 000,014,808 | ---- | M] (Mozilla Corporation) -- C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
PRC - [2010/09/07 17:12:02 | 002,838,912 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe
PRC - [2010/09/07 17:11:59 | 000,040,384 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
PRC - [2010/07/09 16:09:52 | 000,248,936 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
PRC - [2009/04/17 15:29:58 | 001,689,600 | ---- | M] () -- C:\Program Files (x86)\GIGABYTE\Gamer HUD Lite\HUD.exe


========== Modules (SafeList) ==========

MOD - [2010/09/23 01:04:41 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Users\PC\Desktop\OTL.exe
MOD - [2009/07/14 03:14:10 | 000,095,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msscript.ocx
MOD - [2009/07/14 03:03:50 | 001,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc\comctl32.dll


========== Win32 Services (SafeList) ==========

SRV:64bit: - [2010/09/07 17:11:59 | 000,040,384 | ---- | M] (AVAST Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Web Scanner)
SRV:64bit: - [2010/09/07 17:11:59 | 000,040,384 | ---- | M] (AVAST Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Mail Scanner)
SRV:64bit: - [2010/09/07 17:11:59 | 000,040,384 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus)
SRV:64bit: - [2010/08/27 14:56:38 | 000,036,160 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\Windows\SysNative\uxtuneup.dll -- (UxTuneUp)
SRV:64bit: - [2009/07/14 03:41:56 | 000,195,072 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\umrdp.dll -- (UmRdpService)
SRV:64bit: - [2009/07/14 03:41:53 | 001,361,920 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\PeerDistSvc.dll -- (PeerDistSvc)
SRV:64bit: - [2009/07/14 03:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2009/07/14 03:40:24 | 000,689,152 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\cscsvc.dll -- (CscService)
SRV:64bit: - [2009/07/14 03:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV:64bit: - [2008/12/11 07:08:52 | 004,297,728 | ---- | M] () [Auto | Running] -- C:\Program Files\NVIDIA Corporation\Performance Drivers\nvPDsvc.exe -- (NVIDIA Performance Driver Service)
SRV - [2010/09/16 16:23:47 | 000,607,040 | ---- | M] (TuneUp Software) [On_Demand | Stopped] -- C:\Program Files (x86)\TuneUp Utilities 2010\TuneUpDefragService.exe -- (TuneUp.Defrag)
SRV - [2010/08/27 15:01:22 | 001,403,200 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\Program Files (x86)\TuneUp Utilities 2010\TuneUpUtilitiesService64.exe -- (TuneUp.UtilitiesSvc)
SRV - [2010/08/27 14:56:30 | 000,030,016 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\Windows\SysWOW64\uxtuneup.dll -- (UxTuneUp)
SRV - [2010/07/09 16:09:52 | 000,248,936 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
SRV - [2010/03/18 14:27:14 | 000,138,576 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_64)
SRV - [2010/03/18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)


========== Driver Services (SafeList) ==========

DRV:64bit: - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WPRO_40_1340.sys -- (WPRO_40_1340) WinPcap Packet Driver (WPRO_40_1340)
DRV:64bit: - [2010/09/16 22:16:21 | 000,015,416 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ASACPI.sys -- (MTsensor)
DRV:64bit: - [2010/09/07 16:47:33 | 000,061,008 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV:64bit: - [2010/08/30 19:30:45 | 000,834,544 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\sptd.sys -- (sptd)
DRV:64bit: - [2009/11/05 22:46:22 | 000,027,512 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\dc3d.sys -- (dc3d) MS Hardware Device Detection Driver (USB)
DRV:64bit: - [2009/11/05 22:35:45 | 000,034,160 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\point64k.sys -- (Point64)
DRV:64bit: - [2009/08/23 05:08:10 | 000,056,320 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\L1E62x64.sys -- (L1E)
DRV:64bit: - [2009/07/14 03:52:21 | 000,106,576 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2009/07/14 03:52:21 | 000,028,752 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2009/07/14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/14 03:47:48 | 000,077,888 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2009/07/14 03:45:55 | 000,200,272 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vmbus.sys -- (vmbus)
DRV:64bit: - [2009/07/14 03:45:55 | 000,046,672 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\vmstorfl.sys -- (storflt)
DRV:64bit: - [2009/07/14 03:45:55 | 000,034,896 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\storvsc.sys -- (storvsc)
DRV:64bit: - [2009/07/14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/07/14 01:42:58 | 000,006,656 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vms3cap.sys -- (s3cap)
DRV:64bit: - [2009/07/14 01:42:44 | 000,021,760 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VMBusHID.sys -- (VMBusHID)
DRV:64bit: - [2009/07/14 01:24:27 | 000,514,048 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\csc.sys -- (CSC)
DRV:64bit: - [2009/06/10 22:38:56 | 000,000,308 | ---- | M] () [File_System | On_Demand | Running] -- C:\Windows\SysNative\wbem\ntfs.mof -- (Ntfs)
DRV:64bit: - [2009/06/10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2009/05/25 04:38:20 | 000,966,144 | ---- | M] (Ralink Technology Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\netr28ux.sys -- (netr28ux)
DRV:64bit: - [2009/02/17 19:11:25 | 000,031,400 | ---- | M] (Elaborate Bytes AG) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\ElbyCDIO.sys -- (ElbyCDIO)
DRV:64bit: - [2007/02/16 02:57:06 | 000,040,648 | ---- | M] (SlySoft, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ElbyCDFL.sys -- (ElbyCDFL)
DRV - [2010/02/24 14:41:50 | 000,011,856 | ---- | M] (TuneUp Software) [Kernel | On_Demand | Running] -- C:\Program Files (x86)\TuneUp Utilities 2010\TuneUpUtilitiesDriver64.sys -- (TuneUpUtilitiesDrv)
DRV - [2007/02/16 02:57:06 | 000,040,648 | ---- | M] (SlySoft, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysWOW64\drivers\ElbyCDFL.sys -- (ElbyCDFL)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.yahoo.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-1983612262-500287293-1287327186-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com
IE - HKU\S-1-5-21-1983612262-500287293-1287327186-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 8A 1D 7C F7 B2 37 CB 01 [binary data]
IE - HKU\S-1-5-21-1983612262-500287293-1287327186-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaultengine: "Ask.com"
FF - prefs.js..browser.search.defaultenginename: "Web Search..."
FF - prefs.js..browser.search.defaultthis.engineName: "Softonic-Eng7 Customized Web Search"
FF - prefs.js..browser.search.defaulturl: "http://search.conduit.com/ResultsExt.as ... earchTerms}"
FF - prefs.js..browser.search.order.1: "Ask.com"
FF - prefs.js..browser.search.selectedEngine: "Softonic-Eng7 Customized Web Search"
FF - prefs.js..browser.search.suggest.enabled: false
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.google.sk/firefox?client=fir ... S:official"
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.2.2
FF - prefs.js..keyword.URL: "http://search.conduit.com/ResultsExt.as ... 2405280&q="


FF - HKLM\software\mozilla\Mozilla Firefox 3.6.10\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2010/09/21 10:11:31 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.10\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2010/09/21 10:11:34 | 000,000,000 | ---D | M]

[2010/08/11 02:55:57 | 000,000,000 | ---D | M] -- C:\Users\PC\AppData\Roaming\mozilla\Extensions
[2010/09/22 01:55:19 | 000,000,000 | ---D | M] -- C:\Users\PC\AppData\Roaming\mozilla\Firefox\Profiles\bljv1w8y.default\extensions
[2010/09/15 18:09:45 | 000,000,000 | ---D | M] (Softonic-Eng7 Toolbar) -- C:\Users\PC\AppData\Roaming\mozilla\Firefox\Profiles\bljv1w8y.default\extensions\{414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3}
[2010/09/16 16:30:36 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Users\PC\AppData\Roaming\mozilla\Firefox\Profiles\bljv1w8y.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
[2010/09/16 16:30:38 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2010/09/03 17:06:47 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2010/09/03 17:06:39 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll

O1 HOSTS File: ([2009/06/10 23:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2 - BHO: (Yahoo! Companion BHO) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn2\ycomp5_6_2_0.dll (Yahoo! Inc.)
O3:64bit: - HKLM\..\Toolbar: (no name) - {32099AAC-C132-4136-9E9A-4E364A424E17} - No CLSID value found.
O3 - HKLM\..\Toolbar: (&Yahoo! Companion) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn2\ycomp5_6_2_0.dll (Yahoo! Inc.)
O3 - HKU\S-1-5-21-1983612262-500287293-1287327186-1000\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
O4:64bit: - HKLM..\Run: [NvCplDaemon] C:\Windows\SysNative\NvCpl.DLL (NVIDIA Corporation)
O4:64bit: - HKLM..\Run: [NvMediaCenter] C:\Windows\SysNative\NvMcTray.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\avastUI.exe (AVAST Software)
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\SysWow64\mctadmin.exe File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\SysWow64\mctadmin.exe File not found
O4 - Startup: C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\GIGABYTE Gamer HUD Lite.lnk = C:\Program Files (x86)\GIGABYTE\Gamer HUD Lite\HUD.exe ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O7 - HKU\S-1-5-21-1983612262-500287293-1287327186-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O13 - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_20)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O18:64bit: - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - Reg Error: Key error. File not found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysWow64\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

NetSvcs:64bit: UxTuneUp - C:\Windows\SysNative\uxtuneup.dll (TuneUp Software)
NetSvcs:64bit: AppMgmt - C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)

Drivers32:64bit: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.divxa32 - C:\Windows\SysWow64\msaud32_divx.acm (Microsoft Corporation)
Drivers32: msacm.l3acm - C:\Windows\SysWOW64\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: vidc.cvid - C:\Windows\SysWow64\iccvid.dll (Radius Inc.)

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

========== Files/Folders - Created Within 30 Days ==========

[2010/09/23 01:04:40 | 000,575,488 | ---- | C] (OldTimer Tools) -- C:\Users\PC\Desktop\OTL.exe
[2010/09/22 10:51:45 | 000,000,000 | ---D | C] -- C:\Users\PC\AppData\Local\Diagnostics
[2010/09/22 10:46:56 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Trend Micro
[2010/09/22 10:24:09 | 000,519,680 | ---- | C] (OldTimer Tools) -- C:\Users\PC\Desktop\OTM.exe
[2010/09/22 10:22:20 | 000,000,000 | ---D | C] -- C:\Users\PC\AppData\Roaming\Malwarebytes
[2010/09/22 10:22:05 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysWow64\drivers\mbamswissarmy.sys
[2010/09/22 10:22:03 | 000,024,664 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2010/09/22 10:22:03 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
[2010/09/22 10:22:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2010/09/22 10:21:25 | 006,153,352 | ---- | C] (Malwarebytes Corporation ) -- C:\Users\PC\Desktop\mbam-setup-1.46.exe
[2010/09/22 02:59:24 | 000,906,752 | ---- | C] (Share-rapid.com) -- C:\Users\PC\Desktop\SRDownloader.exe
[2010/09/21 10:29:56 | 000,000,000 | ---D | C] -- C:\Users\PC\Documents\temp
[2010/09/21 10:22:06 | 000,000,000 | ---D | C] -- C:\Windows\DD1865F0AD7340FBB23E1822E02396FF.TMP
[2010/09/21 10:21:56 | 002,117,664 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcplui.exe
[2010/09/21 10:21:56 | 001,100,320 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcpluir.dll
[2010/09/21 10:21:56 | 000,410,656 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcpl.cpl
[2010/09/21 10:20:16 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Wise Installation Wizard
[2010/09/21 10:17:57 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\GIGABYTE
[2010/09/21 10:17:43 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Yahoo!
[2010/09/21 09:59:43 | 000,000,000 | ---D | C] -- C:\Users\PC\AppData\Local\Downloaded Installations
[2010/09/21 09:34:39 | 000,508,448 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NVUNINST.EXE
[2010/09/21 01:23:45 | 000,000,000 | ---D | C] -- C:\Users\PC\Documents\DriverGenius
[2010/09/21 01:22:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Driver-Soft
[2010/09/21 01:22:23 | 000,000,000 | ---D | C] -- C:\Users\PC\Desktop\Dr Ge Prof 10.0.0.526
[2010/09/17 16:54:41 | 003,015,544 | ---- | C] (Sysinternals - www.sysinternals.com) -- C:\Users\PC\Desktop\Procmon.exe
[2010/09/16 22:16:38 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ASUS
[2010/09/16 22:16:34 | 000,053,248 | R--- | C] (Windows XP Bundled build C-Centric Single User) -- C:\Windows\SysWow64\CSVer.dll
[2010/09/16 22:16:34 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Intel
[2010/09/16 22:16:21 | 000,000,000 | ---D | C] -- C:\Intel
[2010/09/16 22:14:36 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Driver Checker
[2010/09/16 21:58:11 | 000,000,000 | ---D | C] -- C:\ProgramData\PC Drivers HeadQuarters
[2010/09/16 21:57:54 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\PC Drivers HeadQuarters
[2010/09/16 21:42:17 | 000,000,000 | ---D | C] -- C:\ProgramData\PC Drivers HeadQuarters Inc
[2010/09/16 21:37:28 | 000,000,000 | ---D | C] -- C:\Users\PC\AppData\Roaming\GetRightToGo
[2010/09/16 21:36:46 | 000,038,848 | ---- | C] (AVAST Software) -- C:\Windows\avastSS.scr
[2010/09/16 21:28:24 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\NVIDIA Corporation
[2010/09/16 21:28:15 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA Corporation
[2010/09/16 21:27:29 | 000,065,128 | ---- | C] (Khronos Group) -- C:\Windows\SysNative\OpenCL.dll
[2010/09/16 21:27:29 | 000,056,936 | ---- | C] (Khronos Group) -- C:\Windows\SysWow64\OpenCL.dll
[2010/09/16 21:27:27 | 000,382,568 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvdecodemft.dll
[2010/09/16 21:27:27 | 000,314,984 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvdecodemft.dll
[2010/09/16 21:27:24 | 010,267,240 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcompiler.dll
[2010/09/16 21:27:24 | 002,761,832 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvenc.dll
[2010/09/16 21:27:24 | 002,506,344 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvenc.dll
[2010/09/16 21:27:23 | 014,513,768 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcompiler.dll
[2010/09/16 21:27:23 | 000,260,712 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcod1922.dll
[2010/09/16 21:27:19 | 000,000,000 | ---D | C] -- C:\NVIDIA
[2010/09/16 21:25:47 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SystemRequirementsLab
[2010/09/16 21:25:45 | 000,000,000 | ---D | C] -- C:\Users\PC\AppData\Roaming\SystemRequirementsLab
[2010/09/16 18:15:48 | 002,441,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iertutil.dll
[2010/09/16 18:14:28 | 000,861,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\oleaut32.dll
[2010/09/16 16:47:10 | 000,121,936 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSP.sys
[2010/09/16 16:47:10 | 000,020,048 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswFsBlk.sys
[2010/09/16 16:47:09 | 000,028,752 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswRdr.sys
[2010/09/16 16:47:07 | 000,051,280 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswTdi.sys
[2010/09/16 16:47:05 | 000,061,008 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswMonFlt.sys
[2010/09/16 16:46:25 | 000,167,592 | ---- | C] (AVAST Software) -- C:\Windows\SysWow64\aswBoot.exe
[2010/09/16 16:46:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Alwil Software
[2010/09/16 16:46:23 | 000,000,000 | ---D | C] -- C:\Program Files\Alwil Software
[2010/09/16 16:23:55 | 000,034,624 | ---- | C] (TuneUp Software) -- C:\Windows\SysNative\TURegOpt.exe
[2010/09/16 16:23:50 | 000,036,160 | ---- | C] (TuneUp Software) -- C:\Windows\SysNative\uxtuneup.dll
[2010/09/16 16:23:50 | 000,030,016 | ---- | C] (TuneUp Software) -- C:\Windows\SysWow64\uxtuneup.dll
[2010/09/16 16:23:50 | 000,025,920 | ---- | C] (TuneUp Software) -- C:\Windows\SysNative\authuitu.dll
[2010/09/16 16:23:50 | 000,021,312 | ---- | C] (TuneUp Software) -- C:\Windows\SysWow64\authuitu.dll
[2010/09/16 16:23:42 | 000,000,000 | ---D | C] -- C:\Users\PC\AppData\Roaming\TuneUp Software
[2010/09/16 16:23:39 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\TuneUp Utilities 2010
[2010/09/16 16:23:21 | 000,000,000 | ---D | C] -- C:\ProgramData\TuneUp Software
[2010/09/16 16:23:16 | 000,000,000 | -HSD | C] -- C:\ProgramData\{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}
[2010/09/15 18:56:01 | 001,493,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_39.dll
[2010/09/15 18:56:01 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_39.dll
[2010/09/15 18:55:58 | 003,851,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_39.dll
[2010/09/15 18:53:37 | 000,000,000 | ---D | C] -- C:\Riot Games
[2010/09/15 18:53:36 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\InstallShield Installation Information
[2010/09/15 18:09:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Softonic-Eng7
[2010/09/12 11:35:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Real
[2010/09/12 11:35:13 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Real
[2010/09/12 11:35:12 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Real
[2010/09/12 11:34:19 | 000,000,000 | ---D | C] -- C:\Users\PC\AppData\Roaming\Real
[2010/09/11 10:28:43 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\CCleaner
[2010/09/08 16:02:54 | 000,000,000 | ---D | C] -- C:\Users\PC\Desktop\mix
[2010/09/04 01:43:27 | 000,000,000 | ---D | C] -- C:\Program Files\7-Zip
[2010/09/03 23:50:27 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\appmgmt
[2010/09/03 17:06:59 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun
[2010/09/03 17:06:59 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java
[2010/09/03 17:06:45 | 000,411,368 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\deployJava1.dll
[2010/09/03 17:06:45 | 000,153,376 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaws.exe
[2010/09/03 17:06:45 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaw.exe
[2010/09/03 17:06:45 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\java.exe
[2010/09/03 17:06:39 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Java
[2010/09/03 17:05:30 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\JDownloader
[2010/08/31 17:55:33 | 000,000,000 | ---D | C] -- C:\Users\PC\Documents\Vuze Downloads
[2010/08/31 17:52:34 | 000,000,000 | ---D | C] -- C:\Users\PC\AppData\Roaming\Azureus
[2010/08/31 17:50:06 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Vuze
[2010/08/31 17:50:06 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\i4j_jres
[2010/08/31 17:50:01 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Conduit
[2010/08/30 19:49:46 | 000,000,000 | ---D | C] -- C:\Users\PC\AppData\Local\GHISLER
[2010/08/30 19:48:14 | 000,000,000 | ---D | C] -- C:\totalcmd
[2010/08/30 19:48:14 | 000,000,000 | ---D | C] -- C:\Users\PC\AppData\Roaming\GHISLER
[2010/08/30 19:31:04 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\DAEMON Tools Toolbar
[2010/08/30 19:30:34 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\DAEMON Tools Lite
[2010/08/30 19:30:29 | 000,000,000 | ---D | C] -- C:\Users\PC\AppData\Roaming\DAEMON Tools Lite
[2010/08/30 19:30:28 | 000,000,000 | ---D | C] -- C:\ProgramData\DAEMON Tools Lite
[2010/08/30 19:06:55 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Elaborate Bytes
[2010/08/30 19:01:12 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SlySoft
[2010/08/27 01:47:17 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\uTorrent
[2010/08/27 01:46:26 | 000,000,000 | ---D | C] -- C:\Users\PC\AppData\Roaming\uTorrent
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2010/09/23 01:40:06 | 002,097,152 | -HS- | M] () -- C:\Users\PC\NTUSER.DAT
[2010/09/23 01:04:41 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Users\PC\Desktop\OTL.exe
[2010/09/23 01:00:37 | 000,014,224 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2010/09/23 01:00:37 | 000,014,224 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2010/09/23 00:53:32 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2010/09/23 00:53:20 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2010/09/23 00:53:14 | 1609,965,568 | -HS- | M] () -- C:\hiberfil.sys
[2010/09/22 11:35:51 | 001,915,938 | -H-- | M] () -- C:\Users\PC\AppData\Local\IconCache.db
[2010/09/22 10:46:56 | 000,002,961 | ---- | M] () -- C:\Users\PC\Desktop\HiJackThis.lnk
[2010/09/22 10:46:32 | 001,402,880 | ---- | M] () -- C:\Users\PC\Desktop\HiJackThis.msi
[2010/09/22 10:24:11 | 000,519,680 | ---- | M] (OldTimer Tools) -- C:\Users\PC\Desktop\OTM.exe
[2010/09/22 10:22:07 | 000,001,033 | ---- | M] () -- C:\Users\PC\Application Data\Microsoft\Internet Explorer\Quick Launch\Malwarebytes' Anti-Malware.lnk
[2010/09/22 10:22:07 | 000,001,009 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2010/09/22 10:21:44 | 006,153,352 | ---- | M] (Malwarebytes Corporation ) -- C:\Users\PC\Desktop\mbam-setup-1.46.exe
[2010/09/22 03:04:43 | 000,000,704 | ---- | M] () -- C:\Users\PC\Desktop\SRDownloader.nast
[2010/09/22 02:59:27 | 000,906,752 | ---- | M] (Share-rapid.com) -- C:\Users\PC\Desktop\SRDownloader.exe
[2010/09/21 10:17:59 | 000,002,153 | ---- | M] () -- C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\GIGABYTE Gamer HUD Lite.lnk
[2010/09/21 10:12:55 | 000,002,560 | ---- | M] () -- C:\Windows\_MSRSTRT.EXE
[2010/09/21 09:56:07 | 000,001,746 | ---- | M] () -- C:\Windows\Language_trs.ini
[2010/09/21 09:44:04 | 000,727,532 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2010/09/21 09:44:04 | 000,615,810 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2010/09/21 09:44:04 | 000,106,190 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2010/09/21 01:43:33 | 000,007,607 | ---- | M] () -- C:\Users\PC\AppData\Local\Resmon.ResmonCfg
[2010/09/19 17:05:50 | 745,259,008 | ---- | M] () -- C:\Users\PC\Desktop\Kick Ass.avi
[2010/09/16 22:16:21 | 000,024,576 | ---- | M] () -- C:\Windows\SysWow64\AsIO.dll
[2010/09/16 22:16:21 | 000,015,416 | ---- | M] () -- C:\Windows\SysNative\drivers\ASACPI.sys
[2010/09/16 22:16:21 | 000,013,368 | ---- | M] () -- C:\Windows\SysWow64\drivers\AsIO.sys
[2010/09/16 21:36:47 | 000,000,000 | ---- | M] () -- C:\Windows\SysWow64\config.nt
[2010/09/16 16:23:47 | 000,002,159 | ---- | M] () -- C:\Users\Public\Desktop\TuneUp Utilities.lnk
[2010/09/15 22:40:08 | 005,881,785 | ---- | M] () -- C:\Users\PC\Desktop\preview.mp3
[2010/09/15 18:56:02 | 000,001,720 | ---- | M] () -- C:\Users\Public\Desktop\Play League of Legends.lnk
[2010/09/11 10:28:43 | 000,001,007 | ---- | M] () -- C:\Users\PC\Desktop\CCleaner.lnk
[2010/09/08 09:32:17 | 000,000,041 | -HS- | M] () -- C:\ProgramData\.zreglib
[2010/09/07 17:12:17 | 000,038,848 | ---- | M] (AVAST Software) -- C:\Windows\avastSS.scr
[2010/09/07 17:11:54 | 000,167,592 | ---- | M] (AVAST Software) -- C:\Windows\SysWow64\aswBoot.exe
[2010/09/07 16:52:29 | 000,051,280 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswTdi.sys
[2010/09/07 16:52:09 | 000,121,936 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSP.sys
[2010/09/07 16:47:49 | 000,028,752 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswRdr.sys
[2010/09/07 16:47:33 | 000,061,008 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswMonFlt.sys
[2010/09/07 16:47:10 | 000,020,048 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswFsBlk.sys
[2010/09/03 17:07:03 | 000,001,021 | ---- | M] () -- C:\Users\Public\Desktop\JDownloader.lnk
[2010/09/03 17:06:39 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\deployJava1.dll
[2010/09/03 17:06:39 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaws.exe
[2010/09/03 17:06:39 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaw.exe
[2010/09/03 17:06:39 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\java.exe
[2010/08/31 17:50:16 | 000,001,848 | ---- | M] () -- C:\Users\PC\Application Data\Microsoft\Internet Explorer\Quick Launch\Vuze.lnk
[2010/08/31 07:19:12 | 002,441,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iertutil.dll
[2010/08/30 21:44:21 | 049,874,563 | ---- | M] () -- C:\Users\PC\Desktop\new 4ed. chaos space marines codex (2007).pdf
[2010/08/30 19:30:45 | 000,834,544 | ---- | M] () -- C:\Windows\SysNative\drivers\sptd.sys
[2010/08/30 19:24:14 | 000,001,113 | ---- | M] () -- C:\Users\Public\Desktop\CloneCD.lnk
[2010/08/30 10:50:02 | 003,015,544 | ---- | M] (Sysinternals - www.sysinternals.com) -- C:\Users\PC\Desktop\Procmon.exe
[2010/08/27 15:02:02 | 000,034,624 | ---- | M] (TuneUp Software) -- C:\Windows\SysNative\TURegOpt.exe
[2010/08/27 14:56:46 | 000,025,920 | ---- | M] (TuneUp Software) -- C:\Windows\SysNative\authuitu.dll
[2010/08/27 14:56:42 | 000,021,312 | ---- | M] (TuneUp Software) -- C:\Windows\SysWow64\authuitu.dll
[2010/08/27 14:56:38 | 000,036,160 | ---- | M] (TuneUp Software) -- C:\Windows\SysNative\uxtuneup.dll
[2010/08/27 14:56:30 | 000,030,016 | ---- | M] (TuneUp Software) -- C:\Windows\SysWow64\uxtuneup.dll
[2010/08/27 01:47:58 | 000,000,967 | ---- | M] () -- C:\Users\PC\Application Data\Microsoft\Internet Explorer\Quick Launch\µTorrent.lnk
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files Created - No Company Name ==========

[2010/09/22 10:46:56 | 000,002,961 | ---- | C] () -- C:\Users\PC\Desktop\HiJackThis.lnk
[2010/09/22 10:46:31 | 001,402,880 | ---- | C] () -- C:\Users\PC\Desktop\HiJackThis.msi
[2010/09/22 10:22:07 | 000,001,033 | ---- | C] () -- C:\Users\PC\Application Data\Microsoft\Internet Explorer\Quick Launch\Malwarebytes' Anti-Malware.lnk
[2010/09/22 10:22:07 | 000,001,009 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2010/09/22 03:03:21 | 000,000,704 | ---- | C] () -- C:\Users\PC\Desktop\SRDownloader.nast
[2010/09/21 10:21:23 | 000,009,694 | ---- | C] () -- C:\Windows\SysNative\nvdisp.nvu
[2010/09/21 10:17:59 | 000,002,153 | ---- | C] () -- C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\GIGABYTE Gamer HUD Lite.lnk
[2010/09/21 10:12:53 | 000,002,560 | ---- | C] () -- C:\Windows\_MSRSTRT.EXE
[2010/09/21 09:56:07 | 000,001,746 | ---- | C] () -- C:\Windows\Language_trs.ini
[2010/09/20 00:36:06 | 1463,077,296 | ---- | C] () -- C:\Users\PC\Desktop\How To Train Your Dragon 2-D HDTV 720p RiP READNFO XViD - IMAGiNE.avi
[2010/09/19 15:58:58 | 745,259,008 | ---- | C] () -- C:\Users\PC\Desktop\Kick Ass.avi
[2010/09/17 16:54:41 | 000,063,306 | ---- | C] () -- C:\Users\PC\Desktop\procmon.chm
[2010/09/16 22:16:41 | 000,024,576 | ---- | C] () -- C:\Windows\SysWow64\AsIO.dll
[2010/09/16 22:16:41 | 000,013,368 | ---- | C] () -- C:\Windows\SysWow64\drivers\AsIO.sys
[2010/09/16 22:16:21 | 000,015,416 | ---- | C] () -- C:\Windows\SysNative\drivers\ASACPI.sys
[2010/09/16 16:47:04 | 000,000,000 | ---- | C] () -- C:\Windows\SysWow64\config.nt
[2010/09/16 16:23:47 | 000,002,159 | ---- | C] () -- C:\Users\Public\Desktop\TuneUp Utilities.lnk
[2010/09/15 22:40:07 | 005,881,785 | ---- | C] () -- C:\Users\PC\Desktop\preview.mp3
[2010/09/15 18:56:02 | 000,001,720 | ---- | C] () -- C:\Users\Public\Desktop\Play League of Legends.lnk
[2010/09/11 10:28:43 | 000,001,007 | ---- | C] () -- C:\Users\PC\Desktop\CCleaner.lnk
[2010/09/08 03:30:35 | 089,633,271 | ---- | C] () -- C:\Users\PC\Desktop\Codex - Chaos Daemons.pdf
[2010/09/03 17:07:03 | 000,001,021 | ---- | C] () -- C:\Users\Public\Desktop\JDownloader.lnk
[2010/08/31 17:50:16 | 000,001,848 | ---- | C] () -- C:\Users\PC\Application Data\Microsoft\Internet Explorer\Quick Launch\Vuze.lnk
[2010/08/30 21:41:15 | 049,874,563 | ---- | C] () -- C:\Users\PC\Desktop\new 4ed. chaos space marines codex (2007).pdf
[2010/08/30 19:48:14 | 000,000,545 | ---- | C] () -- C:\Windows\UC.PIF
[2010/08/30 19:48:14 | 000,000,545 | ---- | C] () -- C:\Windows\RAR.PIF
[2010/08/30 19:48:14 | 000,000,545 | ---- | C] () -- C:\Windows\PKZIP.PIF
[2010/08/30 19:48:14 | 000,000,545 | ---- | C] () -- C:\Windows\PKUNZIP.PIF
[2010/08/30 19:48:14 | 000,000,545 | ---- | C] () -- C:\Windows\NOCLOSE.PIF
[2010/08/30 19:48:14 | 000,000,545 | ---- | C] () -- C:\Windows\LHA.PIF
[2010/08/30 19:48:14 | 000,000,545 | ---- | C] () -- C:\Windows\ARJ.PIF
[2010/08/30 19:30:45 | 000,834,544 | ---- | C] () -- C:\Windows\SysNative\drivers\sptd.sys
[2010/08/30 19:24:14 | 000,001,113 | ---- | C] () -- C:\Users\Public\Desktop\CloneCD.lnk
[2010/08/30 19:03:30 | 000,000,041 | -HS- | C] () -- C:\ProgramData\.zreglib
[2010/08/27 01:47:24 | 000,000,967 | ---- | C] () -- C:\Users\PC\Application Data\Microsoft\Internet Explorer\Quick Launch\µTorrent.lnk
[2010/08/11 01:11:37 | 000,007,607 | ---- | C] () -- C:\Users\PC\AppData\Local\Resmon.ResmonCfg
[2009/07/14 01:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2009/07/13 23:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2007/12/30 01:22:02 | 000,010,296 | ---- | C] () -- C:\Windows\SysWow64\drivers\ASUSHWIO.SYS

========== LOP Check ==========

[2010/09/11 10:29:16 | 000,000,000 | ---D | M] -- C:\Users\PC\AppData\Roaming\Azureus
[2010/08/30 19:37:06 | 000,000,000 | ---D | M] -- C:\Users\PC\AppData\Roaming\DAEMON Tools Lite
[2010/09/16 21:37:51 | 000,000,000 | ---D | M] -- C:\Users\PC\AppData\Roaming\GetRightToGo
[2010/08/30 19:48:14 | 000,000,000 | ---D | M] -- C:\Users\PC\AppData\Roaming\GHISLER
[2010/08/09 13:13:00 | 000,000,000 | ---D | M] -- C:\Users\PC\AppData\Roaming\Opera
[2010/09/16 21:25:49 | 000,000,000 | ---D | M] -- C:\Users\PC\AppData\Roaming\SystemRequirementsLab
[2010/09/16 16:23:42 | 000,000,000 | ---D | M] -- C:\Users\PC\AppData\Roaming\TuneUp Software
[2010/09/11 10:03:21 | 000,000,000 | ---D | M] -- C:\Users\PC\AppData\Roaming\uTorrent
[2009/07/14 07:08:49 | 000,025,254 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

========== Purity Check ==========



========== Custom Scans ==========


< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"Sidebar" = C:\Program Files\Windows Sidebar\sidebar.exe /autoRun -- [2009/07/14 03:39:41 | 001,475,072 | ---- | M] (Microsoft Corporation)

< c:\windows\*.* /U >
[1 c:\windows\*.tmp files -> c:\windows\*.tmp -> ]

< %SYSTEMDRIVE%\*.exe >

< %ALLUSERSPROFILE%\Application Data\*. >

< %ALLUSERSPROFILE%\Application Data\*.exe /s >

< %APPDATA%\*. >
[2010/09/15 18:55:49 | 000,000,000 | ---D | M] -- C:\Users\PC\AppData\Roaming\Adobe
[2010/09/11 10:29:16 | 000,000,000 | ---D | M] -- C:\Users\PC\AppData\Roaming\Azureus
[2010/08/30 19:37:06 | 000,000,000 | ---D | M] -- C:\Users\PC\AppData\Roaming\DAEMON Tools Lite
[2010/09/16 21:37:51 | 000,000,000 | ---D | M] -- C:\Users\PC\AppData\Roaming\GetRightToGo
[2010/08/30 19:48:14 | 000,000,000 | ---D | M] -- C:\Users\PC\AppData\Roaming\GHISLER
[2010/08/17 20:20:36 | 000,000,000 | ---D | M] -- C:\Users\PC\AppData\Roaming\GRETECH
[2010/08/09 11:23:57 | 000,000,000 | ---D | M] -- C:\Users\PC\AppData\Roaming\Identities
[2010/08/11 02:30:53 | 000,000,000 | ---D | M] -- C:\Users\PC\AppData\Roaming\Macromedia
[2010/09/22 10:22:20 | 000,000,000 | ---D | M] -- C:\Users\PC\AppData\Roaming\Malwarebytes
[2009/07/14 09:45:14 | 000,000,000 | ---D | M] -- C:\Users\PC\AppData\Roaming\Media Center Programs
[2010/09/21 10:17:59 | 000,000,000 | --SD | M] -- C:\Users\PC\AppData\Roaming\Microsoft
[2010/08/11 02:55:57 | 000,000,000 | ---D | M] -- C:\Users\PC\AppData\Roaming\Mozilla
[2010/08/09 13:13:00 | 000,000,000 | ---D | M] -- C:\Users\PC\AppData\Roaming\Opera
[2010/09/21 10:11:37 | 000,000,000 | ---D | M] -- C:\Users\PC\AppData\Roaming\Real
[2010/09/22 03:11:18 | 000,000,000 | ---D | M] -- C:\Users\PC\AppData\Roaming\Skype
[2010/08/12 09:53:32 | 000,000,000 | ---D | M] -- C:\Users\PC\AppData\Roaming\skypePM
[2010/09/16 21:25:49 | 000,000,000 | ---D | M] -- C:\Users\PC\AppData\Roaming\SystemRequirementsLab
[2010/09/16 16:23:42 | 000,000,000 | ---D | M] -- C:\Users\PC\AppData\Roaming\TuneUp Software
[2010/09/11 10:03:21 | 000,000,000 | ---D | M] -- C:\Users\PC\AppData\Roaming\uTorrent
[2010/08/14 22:34:55 | 000,000,000 | ---D | M] -- C:\Users\PC\AppData\Roaming\Ventrilo
[2010/08/17 20:05:14 | 000,000,000 | ---D | M] -- C:\Users\PC\AppData\Roaming\WinRAR

< %APPDATA%\*.exe /s >
[2010/08/31 17:52:48 | 000,310,208 | ---- | M] (Georgia Institute of Technology) -- C:\Users\PC\AppData\Roaming\Azureus\plugins\mlab\ShaperProbeC.exe
[2010/09/22 10:46:56 | 000,388,096 | R--- | M] (Trend Micro Inc.) -- C:\Users\PC\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
[2010/09/21 10:17:59 | 000,001,150 | R--- | M] () -- C:\Users\PC\AppData\Roaming\Microsoft\Installer\{8FE4D086-63BD-44EB-882C-C7EA5A1EF016}\ARPPRODUCTICON.exe
[2010/09/21 10:17:59 | 000,040,960 | R--- | M] (Macrovision Corporation) -- C:\Users\PC\AppData\Roaming\Microsoft\Installer\{8FE4D086-63BD-44EB-882C-C7EA5A1EF016}\HUD.exe_8FE4D08663BD44EB882CC7EA5A1EF016.exe
[2010/09/21 10:17:59 | 000,040,960 | R--- | M] (Macrovision Corporation) -- C:\Users\PC\AppData\Roaming\Microsoft\Installer\{8FE4D086-63BD-44EB-882C-C7EA5A1EF016}\NewShortcut1_8FE4D08663BD44EB882CC7EA5A1EF016.exe
[2010/09/21 10:17:59 | 000,008,854 | R--- | M] () -- C:\Users\PC\AppData\Roaming\Microsoft\Installer\{8FE4D086-63BD-44EB-882C-C7EA5A1EF016}\UNINST_Uninstall_Gam_8FE4D08663BD44EB882CC7EA5A1EF016.exe


< MD5 for: AGP440.SYS >
[2009/07/14 03:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\SysWow64\DriverStore\FileRepository\machine.inf_amd64_neutral_9e6bb86c3b39a3e9\AGP440.sys
[2009/07/14 03:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\winsxs\amd64_machine.inf_31bf3856ad364e35_6.1.7600.16385_none_1607dee2d861e021\AGP440.sys

< MD5 for: ATAPI.SYS >
[2009/07/14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysWow64\DriverStore\FileRepository\mshdc.inf_amd64_neutral_a69a58a4286f0b22\atapi.sys
[2009/07/14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7600.16385_none_392d19c13b3ad543\atapi.sys

< MD5 for: CDROM.SYS >
[2009/07/14 01:19:54 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=83D2D75E1EFB81B3450C18131443F7DB -- C:\Windows\SysWow64\DriverStore\FileRepository\cdrom.inf_amd64_neutral_8363d00ecae4322d\cdrom.sys
[2009/07/14 01:19:54 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=83D2D75E1EFB81B3450C18131443F7DB -- C:\Windows\winsxs\amd64_cdrom.inf_31bf3856ad364e35_6.1.7600.16385_none_bb9e4d89bd7870f1\cdrom.sys

< MD5 for: CNGAUDIT.DLL >
[2009/07/14 03:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\SysWOW64\cngaudit.dll
[2009/07/14 03:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\SysWOW64\cngaudit.dll
[2009/07/14 03:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_e83a414890e8132b\cngaudit.dll
[2009/07/14 03:40:20 | 000,018,944 | ---- | M] (Microsoft Corporation) MD5=86FE1B1F8FD42CD0DB641AB1CDB13093 -- C:\Windows\winsxs\amd64_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_4458dccc49458461\cngaudit.dll

< MD5 for: CRYPTSVC.DLL >
[2009/07/14 03:40:24 | 000,175,104 | ---- | M] (Microsoft Corporation) MD5=8C57411B66282C01533CB776F98AD384 -- C:\Windows\winsxs\amd64_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7600.16385_none_d1f48b0bb4805490\cryptsvc.dll
[2009/07/14 03:15:07 | 000,135,680 | ---- | M] (Microsoft Corporation) MD5=9C231178CE4FB385F4B54B0A9080B8A4 -- C:\Windows\SysWOW64\cryptsvc.dll
[2009/07/14 03:15:07 | 000,135,680 | ---- | M] (Microsoft Corporation) MD5=9C231178CE4FB385F4B54B0A9080B8A4 -- C:\Windows\SysWOW64\cryptsvc.dll
[2009/07/14 03:15:07 | 000,135,680 | ---- | M] (Microsoft Corporation) MD5=9C231178CE4FB385F4B54B0A9080B8A4 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7600.16385_none_75d5ef87fc22e35a\cryptsvc.dll

< MD5 for: EXPLORER.EXE >
[2009/07/14 03:14:20 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=15BC38A7492BEFE831966ADB477CF76F -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_b7fe430bc7ce3761\explorer.exe
[2009/10/31 07:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=2626FC9755BE22F805D3CFA0CE3EE727 -- C:\Windows\SysWOW64\explorer.exe
[2009/10/31 07:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=2626FC9755BE22F805D3CFA0CE3EE727 -- C:\Windows\SysWOW64\explorer.exe
[2009/10/31 07:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=2626FC9755BE22F805D3CFA0CE3EE727 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_b819b343c7ba6202\explorer.exe
[2009/08/03 08:19:07 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=700073016DAC1C3D2E7E2CE4223334B6 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_ae84b558ac4eb41c\explorer.exe
[2009/10/31 08:34:59 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=9AAAEC8DAC27AA17B053E6352AD233AE -- C:\Windows\explorer.exe
[2009/10/31 08:34:59 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=9AAAEC8DAC27AA17B053E6352AD233AE -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_adc508f19359a007\explorer.exe
[2009/08/03 07:49:47 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=9FF6C4C91A3711C0A3B18F87B08B518D -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_b8d95faae0af7617\explorer.exe
[2009/10/31 08:38:38 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=B8EC4BD49CE8F6FC457721BFC210B67F -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_ae46d6aeac7ca7c7\explorer.exe
[2009/08/03 07:35:50 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=B95EEB0F4E5EFBF1038A35B3351CF047 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_b853c407c78e3ba9\explorer.exe
[2009/07/14 03:39:10 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=C235A51CB740E45FFA0EBFB9BAFCDA64 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_ada998b9936d7566\explorer.exe
[2009/10/31 08:00:51 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=C76153C7ECA00FA852BB0C193378F917 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_b89b8100e0dd69c2\explorer.exe
[2009/08/03 08:17:37 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=F170B4A061C9E026437B193B4D571799 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_adff19b5932d79ae\explorer.exe

< MD5 for: HAL.DLL >
[2009/07/14 03:47:48 | 000,263,232 | ---- | M] (Microsoft Corporation) MD5=C0A6F6E05E14FBCAEDE7796C8590B7AC -- C:\Windows\winsxs\amd64_microsoft-windows-hal_31bf3856ad364e35_6.1.7600.16385_none_071de44b735b3dfc\hal.dll

< MD5 for: IASTORV.SYS >
[2009/07/14 03:48:04 | 000,410,688 | ---- | M] (Intel Corporation) MD5=D83EFB6FD45DF9D55E9A1AFC63640D50 -- C:\Windows\SysWow64\DriverStore\FileRepository\iastorv.inf_amd64_neutral_18cccb83b34e1453\iaStorV.sys
[2009/07/14 03:48:04 | 000,410,688 | ---- | M] (Intel Corporation) MD5=D83EFB6FD45DF9D55E9A1AFC63640D50 -- C:\Windows\winsxs\amd64_iastorv.inf_31bf3856ad364e35_6.1.7600.16385_none_0b06441fa1790136\iaStorV.sys

< MD5 for: ISAPNP.SYS >
[2009/07/14 03:48:04 | 000,020,544 | ---- | M] (Microsoft Corporation) MD5=2F7B28DC3E1183E5EB418DF55C204F38 -- C:\Windows\SysWow64\DriverStore\FileRepository\machine.inf_amd64_neutral_9e6bb86c3b39a3e9\isapnp.sys
[2009/07/14 03:48:04 | 000,020,544 | ---- | M] (Microsoft Corporation) MD5=2F7B28DC3E1183E5EB418DF55C204F38 -- C:\Windows\winsxs\amd64_machine.inf_31bf3856ad364e35_6.1.7600.16385_none_1607dee2d861e021\isapnp.sys

< MD5 for: LSASS.EXE >
[2009/07/14 03:39:16 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=0793F40B9B8A1BDD266296409DBD91EA -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.16385_none_023f7c69767c3edd\lsass.exe
[2009/07/14 03:39:16 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=0793F40B9B8A1BDD266296409DBD91EA -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.16484_none_023e7e05767d22ad\lsass.exe
[2009/07/14 03:39:16 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=0793F40B9B8A1BDD266296409DBD91EA -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.20594_none_02bd4ae48fa2de68\lsass.exe

< MD5 for: NDIS.SYS >
[2009/07/14 03:48:27 | 000,947,776 | ---- | M] (Microsoft Corporation) MD5=CAD515DBD07D082BB317D9928CE8962C -- C:\Windows\winsxs\amd64_microsoft-windows-ndis_31bf3856ad364e35_6.1.7600.16385_none_03bc1d6e35c013bf\ndis.sys

< MD5 for: NETLOGON.DLL >
[2009/07/14 03:41:52 | 000,692,736 | ---- | M] (Microsoft Corporation) MD5=956D030D375F207B22FB111E06EF9C35 -- C:\Windows\winsxs\amd64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7600.16385_none_59aca8ea51aaeefe\netlogon.dll
[2009/07/14 03:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\SysWOW64\netlogon.dll
[2009/07/14 03:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\SysWOW64\netlogon.dll
[2009/07/14 03:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\winsxs\wow64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7600.16385_none_6401533c860bb0f9\netlogon.dll

< MD5 for: NVRAID.SYS >
[2009/07/14 03:48:27 | 000,149,056 | ---- | M] (NVIDIA Corporation) MD5=3E38712941E9BB4DDBEE00AFFE3FED3D -- C:\Windows\SysWow64\DriverStore\FileRepository\nvraid.inf_amd64_neutral_5bde3fe2945bce9e\nvraid.sys
[2009/07/14 03:48:27 | 000,149,056 | ---- | M] (NVIDIA Corporation) MD5=3E38712941E9BB4DDBEE00AFFE3FED3D -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7600.16385_none_95cfb4ced8afab0e\nvraid.sys

< MD5 for: NVSTOR.SYS >
[2009/07/14 03:45:45 | 000,167,488 | ---- | M] (NVIDIA Corporation) MD5=477DC4D6DEB99BE37084C9AC6D013DA1 -- C:\Windows\SysWow64\DriverStore\FileRepository\nvraid.inf_amd64_neutral_5bde3fe2945bce9e\nvstor.sys
[2009/07/14 03:45:45 | 000,167,488 | ---- | M] (NVIDIA Corporation) MD5=477DC4D6DEB99BE37084C9AC6D013DA1 -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7600.16385_none_95cfb4ced8afab0e\nvstor.sys

< MD5 for: SCECLI.DLL >
[2009/07/14 03:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\SysWOW64\scecli.dll
[2009/07/14 03:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\SysWOW64\scecli.dll
[2009/07/14 03:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\winsxs\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_9e577e55272d37b4\scecli.dll
[2009/07/14 03:41:53 | 000,232,448 | ---- | M] (Microsoft Corporation) MD5=398712DDDAEFB85EDF61DF6A07B65C79 -- C:\Windows\winsxs\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_9402d402f2cc75b9\scecli.dll

< MD5 for: SMSS.EXE >
[2009/07/14 03:39:41 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=1911A3356FA3F77CCC825CCBAC038C2A -- C:\Windows\winsxs\amd64_microsoft-windows-smss_31bf3856ad364e35_6.1.7600.16385_none_082f99a432e2a661\smss.exe

< MD5 for: SVCHOST.EXE >
[2009/07/14 03:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\SysWOW64\svchost.exe
[2009/07/14 03:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\SysWOW64\svchost.exe
[2009/07/14 03:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe
[2009/07/14 03:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\winsxs\amd64_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_11b04b481efec48c\svchost.exe

< MD5 for: TCPIP.SYS >
[2010/06/14 08:39:16 | 001,889,152 | ---- | M] (Microsoft Corporation) MD5=542C6767C68C9D6AAACA59436B0D15C2 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.20733_none_0fd0b57e990e2079\tcpip.sys
[2010/06/14 08:37:36 | 001,896,832 | ---- | M] (Microsoft Corporation) MD5=90A2D722CF64D911879D6C4A4F802A4D -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16610_none_0f59b7ad7fe2fcc8\tcpip.sys
[2009/07/14 03:45:55 | 001,898,576 | ---- | M] (Microsoft Corporation) MD5=912107716BAB424C7870E8E6AF5E07E1 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16385_none_0f1303f98017479d\tcpip.sys

< MD5 for: USERINIT.EXE >
[2009/07/14 03:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\SysWOW64\userinit.exe
[2009/07/14 03:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\SysWOW64\userinit.exe
[2009/07/14 03:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_dbff103933038d7c\userinit.exe
[2009/07/14 03:39:48 | 000,030,208 | ---- | M] (Microsoft Corporation) MD5=6F8F1376A13114CC10C0E69274F5A4DE -- C:\Windows\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_381dabbceb60feb2\userinit.exe

< MD5 for: WINLOGON.EXE >
[2009/07/14 03:39:52 | 000,389,120 | ---- | M] (Microsoft Corporation) MD5=132328DF455B0028F13BF0ABEE51A63A -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16385_none_cbb7f2bdeea2829c\winlogon.exe
[2009/10/28 09:01:57 | 000,389,632 | ---- | M] (Microsoft Corporation) MD5=A93D41A4D4B0D91C072D11DD8AF266DE -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.20560_none_cc522fd507b468f8\winlogon.exe
[2009/10/28 08:24:40 | 000,389,632 | ---- | M] (Microsoft Corporation) MD5=DA3E2A6FA9660CC75B471530CE88453A -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16447_none_cbe534e7ee8042ad\winlogon.exe

< MD5 for: WS2_32.DLL >
[2009/07/14 03:41:58 | 000,296,448 | ---- | M] (Microsoft Corporation) MD5=7083F463788CB34FCC42F565D56F89E8 -- C:\Windows\winsxs\amd64_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.1.7600.16385_none_4eaca269e8070c6b\ws2_32.dll
[2009/07/14 03:16:20 | 000,206,336 | ---- | M] (Microsoft Corporation) MD5=DAAE8A9B8C0ACC7F858454132553C30D -- C:\Windows\SysWOW64\ws2_32.dll
[2009/07/14 03:16:20 | 000,206,336 | ---- | M] (Microsoft Corporation) MD5=DAAE8A9B8C0ACC7F858454132553C30D -- C:\Windows\SysWOW64\ws2_32.dll
[2009/07/14 03:16:20 | 000,206,336 | ---- | M] (Microsoft Corporation) MD5=DAAE8A9B8C0ACC7F858454132553C30D -- C:\Windows\winsxs\x86_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.1.7600.16385_none_f28e06e62fa99b35\ws2_32.dll

koniec prveho logu :


< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >

< %systemroot%\Tasks\*.job /lockedfiles >

< %systemroot%\system32\drivers\*.sys /lockedfiles >

< %systemroot%\System32\config\*.sav >

< %systemroot%\system32\*.dll /lockedfiles >

< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\WUAUSERV
IMAGEPATH REG_EXPAND_SZ %systemroot%\system32\svchost.exe -k netsvcs

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\BITS
IMAGEPATH REG_EXPAND_SZ %SystemRoot%\System32\svchost.exe -k netsvcs

< %systemroot%\system32\drivers\*.sys /3 >

< %systemroot%\system32\*.* /3 >

========== Alternate Data Streams ==========

@Alternate Data Stream - 24 bytes -> C:\Windows:D98FAB52F28FC08D
< End of report >

OTL Extras logfile created on: 23. 9. 2010 1:35:11 - Run 1
OTL by OldTimer - Version 3.2.14.1 Folder = C:\Users\PC\Desktop
64bit- Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 0000041b | Country: Slovenská republika | Language: SKY | Date Format: d. M. yyyy

2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 54,00% Memory free
6,00 Gb Paging File | 5,00 Gb Available in Paging File | 84,00% Paging File free
Paging file location(s): c:\pagefile.sys 4500 4500 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 97,56 Gb Total Space | 40,86 Gb Free Space | 41,89% Space Free | Partition Type: NTFS
Drive D: | 368,10 Gb Total Space | 338,62 Gb Free Space | 91,99% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: PC-PC
Current User Name: PC
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Include 64bit Scans
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

========== Extra Registry (SafeList) ==========


========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = Opera.HTML] -- Reg Error: Key error. File not found

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = Opera.HTML] -- Reg Error: Key error. File not found

[HKEY_USERS\S-1-5-21-1983612262-500287293-1287327186-1000\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %* File not found
cmdfile [open] -- "%1" %* File not found
comfile [open] -- "%1" %* File not found
exefile [open] -- "%1" %* File not found
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1" File not found
http [open] -- "C:\Program Files (x86)\Opera\opera.exe" "%1" File not found
https [open] -- "C:\Program Files (x86)\Opera\opera.exe" "%1" File not found
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %* File not found
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1" File not found
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S File not found
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 File not found
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
http [open] -- "C:\Program Files (x86)\Opera\opera.exe" "%1" File not found
https [open] -- "C:\Program Files (x86)\Opera\opera.exe" "%1" File not found
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

========== Authorized Applications List ==========


========== HKEY_LOCAL_MACHINE Uninstall List ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{23170F69-40C1-2702-0465-000001000000}" = 7-Zip 4.65 (x64 edition)
"{3D3E663D-4E7E-4577-A560-7ECDDD45548A}" = PVSonyDll
"{4C0A8D65-4286-4B58-87FE-18AD24289285}" = NVIDIA Performance Drivers
"{5EBE0F1F-45DF-4298-AC6B-E8E54EAEC834}" = Microsoft IntelliPoint 7.1
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319
"{E6B7BD80-A921-4C72-A68B-44A9EB438BE4}" = Microsoft IntelliType Pro 7.1
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"NVIDIA Display Control Panel" = NVIDIA Display Control Panel
"NVIDIA Drivers" = NVIDIA Drivers

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{196BB40D-1578-3D01-B289-BEFC77A11A1E}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{26A24AE4-039D-4CA4-87B4-2F83216020FF}" = Java(TM) 6 Update 20
"{45A66726-69BC-466B-A7A4-12FCBA4883D7}" = HiJackThis
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{8A809006-C25A-4A3A-9DAB-94659BCDB107}" = NVIDIA PhysX
"{8FE4D086-63BD-44EB-882C-C7EA5A1EF016}" = Gamer HUD Lite
"{92606477-9366-4D3B-8AE3-6BE4B29727AB}" = League of Legends
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{AC76BA86-7AD7-1051-7B44-A93000000001}" = Adobe Reader 9.3.3 - Slovak
"{CE12677C-F7D2-45A8-BBF9-0FC0B972EDC3}" = League of Legends
"{D103C4BA-F905-437A-8049-DB24763BBE36}" = Skype™ 4.2
"{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}" = TuneUp Utilities
"{FE3997D3-6B56-4AC4-A99C-9DDFC45359BF}" = TuneUp Utilities Language Pack (en-US)
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"avast5" = avast! Free Antivirus
"CCleaner" = CCleaner
"CloneCD" = CloneCD
"GOM Player" = GOM Player
"JDownloader" = JDownloader
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Microsoft DirectX SDK (June 2010)" = Microsoft DirectX SDK (June 2010)
"Mozilla Firefox (3.6.10)" = Mozilla Firefox (3.6.10)
"NVIDIAStereo" = NVIDIA Stereoscopic 3D Driver
"PC Wizard 2008_is1" = PC Wizard 2008.1.80
"SystemRequirementsLab" = System Requirements Lab
"Totalcmd" = Total Commander (Remove or Repair)
"TuneUp Utilities" = TuneUp Utilities
"uTorrent" = µTorrent
"WinRAR archiver" = WinRAR archiver
"Yahoo! Companion" = Yahoo! Companion

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 1. 9. 2010 12:31:15 | Computer Name = PC-PC | Source = Microsoft-Windows-Defrag | ID = 257
Description =

Error - 2. 9. 2010 11:12:36 | Computer Name = PC-PC | Source = Microsoft-Windows-Defrag | ID = 257
Description =

Error - 15. 9. 2010 12:09:09 | Computer Name = PC-PC | Source = SideBySide | ID = 16842832
Description = Activation context generation failed for "C:\Users\PC\Desktop\SoftonicDownloader_for_league-of-legends.exe".Error
in manifest or policy file "" on line . A component version required by the application
conflicts with another component version already active. Conflicting components
are:. Component 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc.manifest.
Component
2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_fa645303170382f6.manifest.

Error - 15. 9. 2010 12:09:11 | Computer Name = PC-PC | Source = SideBySide | ID = 16842832
Description = Activation context generation failed for "C:\Users\PC\Desktop\SoftonicDownloader_for_league-of-legends.exe".Error
in manifest or policy file "" on line . A component version required by the application
conflicts with another component version already active. Conflicting components
are:. Component 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc.manifest.
Component
2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_fa645303170382f6.manifest.

Error - 15. 9. 2010 12:09:15 | Computer Name = PC-PC | Source = SideBySide | ID = 16842832
Description = Activation context generation failed for "C:\Users\PC\Desktop\SoftonicDownloader_for_league-of-legends.exe".Error
in manifest or policy file "" on line . A component version required by the application
conflicts with another component version already active. Conflicting components
are:. Component 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc.manifest.
Component
2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_fa645303170382f6.manifest.

Error - 16. 9. 2010 10:42:31 | Computer Name = PC-PC | Source = MsiInstaller | ID = 1013
Description =

Error - 16. 9. 2010 16:26:25 | Computer Name = PC-PC | Source = SideBySide | ID = 16842832
Description = Activation context generation failed for "C:\Users\PC\Desktop\mix\SoftonicDownloader_for_league-of-legends.exe".Error
in manifest or policy file "" on line . A component version required by the application
conflicts with another component version already active. Conflicting components
are:. Component 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc.manifest.
Component
2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_fa645303170382f6.manifest.

Error - 21. 9. 2010 4:00:46 | Computer Name = PC-PC | Source = Driver Detective | ID = 100
Description = Timestamp: 21. 9. 2010 8:00:46 Message: An exception of type 'FormatException'
occurred and was caught ---------Exception Information---------- Exception Information
Local
Time: 21. 9. 2010 10:00:46 Type: DriversHQ.DriverDetective.ExceptionLogging, Version=0.6.8.7,
Culture=neutral, PublicKeyToken=null Message: Guid should contain 32 digits with
4 dashes (xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx). Source: mscorlib TargetSite: Void
.ctor(System.String) Stack Trace: at System.Guid..ctor(String g) at ci.a.c()
--------------------------------------
Additional
Information MachineName: PC-PC Assembly: DriversHQ.DriverDetective.ExceptionLogging,
Version=0.6.8.7, Culture=neutral, PublicKeyToken=null Application Domain: DriversHQ.DriverDetective.Client.exe
ThreadIdentity:
PC-PC\PC ThreadName: WindowsIdentity: PC-PC\PC ProcessName:

Error - 21. 9. 2010 4:05:04 | Computer Name = PC-PC | Source = Driver Detective | ID = 200
Description = Timestamp: 21. 9. 2010 8:05:04 Message: An exception of type 'DriverDetectiveException'
occurred and was caught ---------Exception Information---------- Exception Information
Local
Time: 21. 9. 2010 10:05:04 Type: DriversHQ.DriverDetective.ExceptionLogging, Version=0.6.8.7,
Culture=neutral, PublicKeyToken=null Message: Upgrade Required ---> Please upgrade
Driver Detective. This version is no longer supported. Visit www.drivershq.com
to retrieve the update. Source: Not available TargetSite: Stack Trace: Not available
----------Inner
Exception Information---------- Message: Upgrade Required ---> Please upgrade Driver
Detective. This version is no longer supported. Visit www.drivershq.com to retrieve
the update. Source: System.Web.Services TargetSite: System.Object[] ReadResponse(System.Web.Services.Protocols.SoapClientMessage,
System.Net.WebResponse, System.IO.Stream, Boolean) Stack Trace: at System.Web.Services.Protocols.SoapHttpClientProtocol.ReadResponse(SoapClientMessage
message, WebResponse response, Stream responseStream, Boolean asyncCall) at System.Web.Services.Protocols.SoapHttpClientProtocol.InvokeAsyncCallback(IAsyncResult
result) -------------------------------------- Additional Information MachineName:
PC-PC Assembly: DriversHQ.DriverDetective.ExceptionLogging, Version=0.6.8.7, Culture=neutral,
PublicKeyToken=null Application Domain: DriversHQ.DriverDetective.Client.exe ThreadIdentity:
PC-PC\PC ThreadName: WindowsIdentity: PC-PC\PC ProcessName:

Error - 21. 9. 2010 4:22:07 | Computer Name = PC-PC | Source = MsiInstaller | ID = 1013
Description =

[ System Events ]
Error - 21. 9. 2010 2:46:13 | Computer Name = PC-PC | Source = Service Control Manager | ID = 7000
Description = Spustenie služby ASInsHelp zlyhalo kvôli nasledujúcej chybe: %%2

Error - 21. 9. 2010 3:28:20 | Computer Name = PC-PC | Source = Service Control Manager | ID = 7009
Description = Počas čakania na pripojenie služby Windows Error Reporting Service
bol dosiahnutý časový limit (30000 ms).

Error - 21. 9. 2010 3:39:44 | Computer Name = PC-PC | Source = Service Control Manager | ID = 7000
Description = Spustenie služby ASInsHelp zlyhalo kvôli nasledujúcej chybe: %%2

Error - 21. 9. 2010 4:14:09 | Computer Name = PC-PC | Source = Service Control Manager | ID = 7000
Description = Spustenie služby ASInsHelp zlyhalo kvôli nasledujúcej chybe: %%2

Error - 21. 9. 2010 4:30:01 | Computer Name = PC-PC | Source = Service Control Manager | ID = 7000
Description = Spustenie služby ASInsHelp zlyhalo kvôli nasledujúcej chybe: %%2

Error - 21. 9. 2010 18:51:52 | Computer Name = PC-PC | Source = Service Control Manager | ID = 7000
Description = Spustenie služby ASInsHelp zlyhalo kvôli nasledujúcej chybe: %%2

Error - 22. 9. 2010 2:29:26 | Computer Name = PC-PC | Source = Service Control Manager | ID = 7000
Description = Spustenie služby ASInsHelp zlyhalo kvôli nasledujúcej chybe: %%2

Error - 22. 9. 2010 18:53:32 | Computer Name = PC-PC | Source = Service Control Manager | ID = 7000
Description = Spustenie služby ASInsHelp zlyhalo kvôli nasledujúcej chybe: %%2

Error - 22. 9. 2010 19:13:07 | Computer Name = PC-PC | Source = Service Control Manager | ID = 7009
Description = Počas čakania na pripojenie služby Windows Error Reporting Service
bol dosiahnutý časový limit (30000 ms).

Error - 22. 9. 2010 19:38:48 | Computer Name = PC-PC | Source = Service Control Manager | ID = 7009
Description = Počas čakania na pripojenie služby Windows Error Reporting Service
bol dosiahnutý časový limit (30000 ms).


< End of report >

Spustte OTL
-do bílého okna dole skopírujte tento skript:
-klikněte na tlačítko opravit.
-Následně se pc restartuje.
- Log vložte zde

All processes killed
========== OTL ==========
No active process named explorer.exe was found!
ADS C:\Windows:D98FAB52F28FC08D deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\VMApplet:/pagefile deleted successfully.
64bit-Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.
64bit-Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\VMApplet:/pagefile deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\skype4com\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{FFC8B962-9B40-4DFF-9458-1830C7DD7F5D}\ not found.
File {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - Reg Error: Key error. File not found not found.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\Prefixes\\gopher|:gopher:// /E : value set successfully!
Registry value HKEY_USERS\S-1-5-21-1983612262-500287293-1287327186-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{D4027C7F-154A-4066-A1AD-4243D8127440} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}\ not found.
Prefs.js: "Ask.com" removed from browser.search.defaultengine
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Default_Page_URL| /E : value set successfully!
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Local Page| /E : value set successfully!
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
========== FILES ==========
File\Folder C:\WINDOWS\system32\*.tmp.dll not found.
File\Folder C:\WINDOWS\system32\SET*.tmp not found.
C:\WINDOWS\DD1865F0AD7340FBB23E1822E02396FF.TMP folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP1D33.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP9E41.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_64\Temp\ZAPE291.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_64\Temp\ZAPE56E.tmp folder moved successfully.
C:\WINDOWS\Installer\MSI5929.tmp moved successfully.
C:\WINDOWS\Installer\MSI5B15.tmp moved successfully.
C:\WINDOWS\Installer\MSI70D9.tmp moved successfully.
C:\WINDOWS\Installer\MSI9B1A.tmp moved successfully.
C:\WINDOWS\Installer\MSIB0FC.tmp moved successfully.
C:\WINDOWS\Temp\UDD8813.tmp moved successfully.
File move failed. C:\Windows\Tasks\SCHEDLGU.TXT scheduled to be moved on reboot.
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: PC
->Temp folder emptied: 10154417 bytes
->Temporary Internet Files folder emptied: 22902608 bytes
->Java cache emptied: 161725 bytes
->FireFox cache emptied: 43246210 bytes
->Opera cache emptied: 0 bytes
->Flash cache emptied: 5039 bytes

User: Public

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 168928 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 50333 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 73,00 mb


[EMPTYFLASH]

User: All Users

User: Default

User: Default User

User: PC
->Flash cache emptied: 0 bytes

User: Public

Total Flash Files Cleaned = 0,00 mb


OTL by OldTimer - Version 3.2.14.1 log created on 09242010_005605

Files\Folders moved on Reboot...
File move failed. C:\Windows\Tasks\SCHEDLGU.TXT scheduled to be moved on reboot.
C:\Users\PC\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
File move failed. C:\Windows\temp\_avast5_\Webshlock.txt scheduled to be moved on reboot.

Registry entries deleted on Reboot...


len to mam po anglicky tak dufam ze opravit je Fix

Je
Jak to ted s pc vypadá?

sekol mi zasa takze no neviem teraz ale vizera ze ide troska rychlejsie mozno

Máte všechny drivery v pořádku? Podívejte se dosprávce azřízení, zda tam nemáte nějaké otazníky.

vsetko je tam ok. ale od vcera vecera mi to zatial neseklo iba v noci 3 krat asi za hodinu ale teraz to zatial frci uplne v poriadku tak to este budem nejako testovat a zatazovat ze ci sa to este prejavy dajako . Alebo mas este daku radu ? Este som si stiahol vcera process explorer a tam mam odskrtnute ze confirm kill a zatial to ide no i ked vcera som si vsimol ze mi to seklo ked som vypol wow a kukol som firefox tam som mal v tom exploreri to wow cervenym a sekalo to ako obvikle ale nemyslim si ze na wow je nieco zle lebo mi to seka aj ked prave nehram wow ani to nevypinam ale pri roznych procesoch nahodne napriklad vcera este ked som si kukal videa na nete a pretocil som ho dopredu tak to seklo ale potom som skusil pustiti asi 20 programov naraz a vsetko slapalo vyborne tak neviem no .

Možná je na vině grafika , pokud to souvisí s WOW.
Otestujte a dejte ěvdět

grafika bola testovana v 3d marku bez chyby aj disk procesor ramky ale procesorom si niesom isty mas daky soft na nejaky test ja som to testoval cez prime 95

Spusťte znovu OTL, tentkokrát bez skriptu, dejte volbu scan a vložte zde oba logy.

OTL logfile created on: 24. 9. 2010 23:58:08 - Run 2
OTL by OldTimer - Version 3.2.14.1 Folder = C:\Users\PC\Desktop
64bit- Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 0000041b | Country: Slovenská republika | Language: SKY | Date Format: d. M. yyyy

2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 59,00% Memory free
6,00 Gb Paging File | 5,00 Gb Available in Paging File | 83,00% Paging File free
Paging file location(s): c:\pagefile.sys 4500 4500 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 97,56 Gb Total Space | 40,49 Gb Free Space | 41,50% Space Free | Partition Type: NTFS
Drive D: | 368,10 Gb Total Space | 338,62 Gb Free Space | 91,99% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: PC-PC
Current User Name: PC
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Include 64bit Scans
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

========== Processes (SafeList) ==========

PRC - [2010/09/23 01:04:41 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Users\PC\Desktop\OTL.exe
PRC - [2010/09/16 18:12:07 | 000,910,296 | ---- | M] (Mozilla Corporation) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
PRC - [2010/09/16 18:12:07 | 000,014,808 | ---- | M] (Mozilla Corporation) -- C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
PRC - [2010/09/07 17:12:02 | 002,838,912 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe
PRC - [2010/09/07 17:11:59 | 000,040,384 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
PRC - [2010/07/09 16:09:52 | 000,248,936 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
PRC - [2009/04/17 15:29:58 | 001,689,600 | ---- | M] () -- C:\Program Files (x86)\GIGABYTE\Gamer HUD Lite\HUD.exe


========== Modules (SafeList) ==========

MOD - [2010/09/23 01:04:41 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Users\PC\Desktop\OTL.exe
MOD - [2009/07/14 03:15:36 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\linkinfo.dll
MOD - [2009/07/14 03:14:10 | 000,095,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msscript.ocx
MOD - [2009/07/14 03:03:50 | 001,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc\comctl32.dll


========== Win32 Services (SafeList) ==========

SRV:64bit: - [2010/09/07 17:11:59 | 000,040,384 | ---- | M] (AVAST Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Web Scanner)
SRV:64bit: - [2010/09/07 17:11:59 | 000,040,384 | ---- | M] (AVAST Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Mail Scanner)
SRV:64bit: - [2010/09/07 17:11:59 | 000,040,384 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus)
SRV:64bit: - [2010/08/27 14:56:38 | 000,036,160 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\Windows\SysNative\uxtuneup.dll -- (UxTuneUp)
SRV:64bit: - [2009/07/14 03:41:56 | 000,195,072 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\umrdp.dll -- (UmRdpService)
SRV:64bit: - [2009/07/14 03:41:53 | 001,361,920 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\PeerDistSvc.dll -- (PeerDistSvc)
SRV:64bit: - [2009/07/14 03:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2009/07/14 03:40:24 | 000,689,152 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\cscsvc.dll -- (CscService)
SRV:64bit: - [2009/07/14 03:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV:64bit: - [2008/12/11 07:08:52 | 004,297,728 | ---- | M] () [Auto | Running] -- C:\Program Files\NVIDIA Corporation\Performance Drivers\nvPDsvc.exe -- (NVIDIA Performance Driver Service)
SRV - [2010/09/16 16:23:47 | 000,607,040 | ---- | M] (TuneUp Software) [On_Demand | Stopped] -- C:\Program Files (x86)\TuneUp Utilities 2010\TuneUpDefragService.exe -- (TuneUp.Defrag)
SRV - [2010/08/27 15:01:22 | 001,403,200 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\Program Files (x86)\TuneUp Utilities 2010\TuneUpUtilitiesService64.exe -- (TuneUp.UtilitiesSvc)
SRV - [2010/08/27 14:56:30 | 000,030,016 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\Windows\SysWOW64\uxtuneup.dll -- (UxTuneUp)
SRV - [2010/07/09 16:09:52 | 000,248,936 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
SRV - [2010/03/18 14:27:14 | 000,138,576 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_64)
SRV - [2010/03/18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)


========== Driver Services (SafeList) ==========

DRV:64bit: - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WPRO_40_1340.sys -- (WPRO_40_1340) WinPcap Packet Driver (WPRO_40_1340)
DRV:64bit: - [2010/09/16 22:16:21 | 000,015,416 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ASACPI.sys -- (MTsensor)
DRV:64bit: - [2010/09/07 16:47:33 | 000,061,008 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV:64bit: - [2010/08/30 19:30:45 | 000,834,544 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\sptd.sys -- (sptd)
DRV:64bit: - [2009/11/05 22:46:22 | 000,027,512 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\dc3d.sys -- (dc3d) MS Hardware Device Detection Driver (USB)
DRV:64bit: - [2009/11/05 22:35:45 | 000,034,160 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\point64k.sys -- (Point64)
DRV:64bit: - [2009/08/23 05:08:10 | 000,056,320 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\L1E62x64.sys -- (L1E)
DRV:64bit: - [2009/07/14 03:52:21 | 000,106,576 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2009/07/14 03:52:21 | 000,028,752 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2009/07/14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/14 03:47:48 | 000,077,888 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2009/07/14 03:45:55 | 000,200,272 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vmbus.sys -- (vmbus)
DRV:64bit: - [2009/07/14 03:45:55 | 000,046,672 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\vmstorfl.sys -- (storflt)
DRV:64bit: - [2009/07/14 03:45:55 | 000,034,896 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\storvsc.sys -- (storvsc)
DRV:64bit: - [2009/07/14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/07/14 01:42:58 | 000,006,656 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vms3cap.sys -- (s3cap)
DRV:64bit: - [2009/07/14 01:42:44 | 000,021,760 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VMBusHID.sys -- (VMBusHID)
DRV:64bit: - [2009/07/14 01:24:27 | 000,514,048 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\csc.sys -- (CSC)
DRV:64bit: - [2009/06/10 22:38:56 | 000,000,308 | ---- | M] () [File_System | On_Demand | Running] -- C:\Windows\SysNative\wbem\ntfs.mof -- (Ntfs)
DRV:64bit: - [2009/06/10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2009/05/25 04:38:20 | 000,966,144 | ---- | M] (Ralink Technology Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\netr28ux.sys -- (netr28ux)
DRV:64bit: - [2009/02/17 19:11:25 | 000,031,400 | ---- | M] (Elaborate Bytes AG) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\ElbyCDIO.sys -- (ElbyCDIO)
DRV:64bit: - [2007/02/16 02:57:06 | 000,040,648 | ---- | M] (SlySoft, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ElbyCDFL.sys -- (ElbyCDFL)
DRV - [2010/02/24 14:41:50 | 000,011,856 | ---- | M] (TuneUp Software) [Kernel | On_Demand | Running] -- C:\Program Files (x86)\TuneUp Utilities 2010\TuneUpUtilitiesDriver64.sys -- (TuneUpUtilitiesDrv)
DRV - [2007/02/16 02:57:06 | 000,040,648 | ---- | M] (SlySoft, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysWOW64\drivers\ElbyCDFL.sys -- (ElbyCDFL)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL =
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page =
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page =


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-1983612262-500287293-1287327186-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com
IE - HKU\S-1-5-21-1983612262-500287293-1287327186-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 8A 1D 7C F7 B2 37 CB 01 [binary data]
IE - HKU\S-1-5-21-1983612262-500287293-1287327186-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaultengine: ""
FF - prefs.js..browser.search.defaultenginename: "Web Search..."
FF - prefs.js..browser.search.defaultthis.engineName: "Softonic-Eng7 Customized Web Search"
FF - prefs.js..browser.search.defaulturl: "http://search.conduit.com/ResultsExt.as ... earchTerms}"
FF - prefs.js..browser.search.order.1: "Ask.com"
FF - prefs.js..browser.search.selectedEngine: "Softonic-Eng7 Customized Web Search"
FF - prefs.js..browser.search.suggest.enabled: false
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.google.sk/firefox?client=fir ... S:official"
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.2.2
FF - prefs.js..keyword.URL: "http://search.conduit.com/ResultsExt.as ... 2405280&q="


FF - HKLM\software\mozilla\Mozilla Firefox 3.6.10\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2010/09/21 10:11:31 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.10\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2010/09/21 10:11:34 | 000,000,000 | ---D | M]

[2010/08/11 02:55:57 | 000,000,000 | ---D | M] -- C:\Users\PC\AppData\Roaming\mozilla\Extensions
[2010/09/24 09:55:39 | 000,000,000 | ---D | M] -- C:\Users\PC\AppData\Roaming\mozilla\Firefox\Profiles\bljv1w8y.default\extensions
[2010/09/15 18:09:45 | 000,000,000 | ---D | M] (Softonic-Eng7 Toolbar) -- C:\Users\PC\AppData\Roaming\mozilla\Firefox\Profiles\bljv1w8y.default\extensions\{414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3}
[2010/09/16 16:30:36 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Users\PC\AppData\Roaming\mozilla\Firefox\Profiles\bljv1w8y.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
[2010/09/16 16:30:38 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2010/09/03 17:06:47 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2010/09/03 17:06:39 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll

O1 HOSTS File: ([2009/06/10 23:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2 - BHO: (Yahoo! Companion BHO) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn2\ycomp5_6_2_0.dll (Yahoo! Inc.)
O3:64bit: - HKLM\..\Toolbar: (no name) - {32099AAC-C132-4136-9E9A-4E364A424E17} - No CLSID value found.
O3 - HKLM\..\Toolbar: (&Yahoo! Companion) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn2\ycomp5_6_2_0.dll (Yahoo! Inc.)
O4:64bit: - HKLM..\Run: [NvCplDaemon] C:\Windows\SysNative\NvCpl.DLL (NVIDIA Corporation)
O4:64bit: - HKLM..\Run: [NvMediaCenter] C:\Windows\SysNative\NvMcTray.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\avastUI.exe (AVAST Software)
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\SysWow64\mctadmin.exe File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\SysWow64\mctadmin.exe File not found
O4 - Startup: C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\GIGABYTE Gamer HUD Lite.lnk = C:\Program Files (x86)\GIGABYTE\Gamer HUD Lite\HUD.exe ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O7 - HKU\S-1-5-21-1983612262-500287293-1287327186-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_20)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (systempropertiesperformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (systempropertiesperformance.exe) - C:\Windows\SysWow64\SystemPropertiesPerformance.exe (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2010/09/24 10:35:45 | 000,204,496 | ---- | C] (Malwarebytes) -- C:\Users\PC\Desktop\StartUpLite.exe
[2010/09/24 01:48:39 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2010/09/24 01:48:39 | 000,000,000 | ---D | C] -- C:\rsit
[2010/09/24 00:56:05 | 000,000,000 | ---D | C] -- C:\_OTL
[2010/09/23 01:04:40 | 000,575,488 | ---- | C] (OldTimer Tools) -- C:\Users\PC\Desktop\OTL.exe
[2010/09/22 10:51:45 | 000,000,000 | ---D | C] -- C:\Users\PC\AppData\Local\Diagnostics
[2010/09/22 10:46:56 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Trend Micro
[2010/09/22 10:24:09 | 000,519,680 | ---- | C] (OldTimer Tools) -- C:\Users\PC\Desktop\OTM.exe
[2010/09/22 10:22:20 | 000,000,000 | ---D | C] -- C:\Users\PC\AppData\Roaming\Malwarebytes
[2010/09/22 10:22:05 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysWow64\drivers\mbamswissarmy.sys
[2010/09/22 10:22:03 | 000,024,664 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2010/09/22 10:22:03 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
[2010/09/22 10:22:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2010/09/22 10:21:25 | 006,153,352 | ---- | C] (Malwarebytes Corporation ) -- C:\Users\PC\Desktop\mbam-setup-1.46.exe
[2010/09/22 02:59:24 | 000,906,752 | ---- | C] (Share-rapid.com) -- C:\Users\PC\Desktop\SRDownloader.exe
[2010/09/21 10:29:56 | 000,000,000 | ---D | C] -- C:\Users\PC\Documents\temp
[2010/09/21 10:21:56 | 002,117,664 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcplui.exe
[2010/09/21 10:21:56 | 001,100,320 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcpluir.dll
[2010/09/21 10:21:56 | 000,410,656 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcpl.cpl
[2010/09/21 10:20:16 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Wise Installation Wizard
[2010/09/21 10:17:57 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\GIGABYTE
[2010/09/21 10:17:43 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Yahoo!
[2010/09/21 09:59:43 | 000,000,000 | ---D | C] -- C:\Users\PC\AppData\Local\Downloaded Installations
[2010/09/21 09:34:39 | 000,508,448 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NVUNINST.EXE
[2010/09/21 01:23:45 | 000,000,000 | ---D | C] -- C:\Users\PC\Documents\DriverGenius
[2010/09/21 01:22:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Driver-Soft
[2010/09/21 01:22:23 | 000,000,000 | ---D | C] -- C:\Users\PC\Desktop\Dr Ge Prof 10.0.0.526
[2010/09/17 16:54:41 | 003,015,544 | ---- | C] (Sysinternals - www.sysinternals.com) -- C:\Users\PC\Desktop\Procmon.exe
[2010/09/16 22:16:38 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ASUS
[2010/09/16 22:16:34 | 000,053,248 | R--- | C] (Windows XP Bundled build C-Centric Single User) -- C:\Windows\SysWow64\CSVer.dll
[2010/09/16 22:16:34 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Intel
[2010/09/16 22:16:21 | 000,000,000 | ---D | C] -- C:\Intel
[2010/09/16 22:14:36 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Driver Checker
[2010/09/16 21:58:11 | 000,000,000 | ---D | C] -- C:\ProgramData\PC Drivers HeadQuarters
[2010/09/16 21:57:54 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\PC Drivers HeadQuarters
[2010/09/16 21:42:17 | 000,000,000 | ---D | C] -- C:\ProgramData\PC Drivers HeadQuarters Inc
[2010/09/16 21:37:28 | 000,000,000 | ---D | C] -- C:\Users\PC\AppData\Roaming\GetRightToGo
[2010/09/16 21:36:46 | 000,038,848 | ---- | C] (AVAST Software) -- C:\Windows\avastSS.scr
[2010/09/16 21:28:24 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\NVIDIA Corporation
[2010/09/16 21:28:15 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA Corporation
[2010/09/16 21:27:29 | 000,065,128 | ---- | C] (Khronos Group) -- C:\Windows\SysNative\OpenCL.dll
[2010/09/16 21:27:29 | 000,056,936 | ---- | C] (Khronos Group) -- C:\Windows\SysWow64\OpenCL.dll
[2010/09/16 21:27:27 | 000,382,568 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvdecodemft.dll
[2010/09/16 21:27:27 | 000,314,984 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvdecodemft.dll
[2010/09/16 21:27:24 | 010,267,240 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcompiler.dll
[2010/09/16 21:27:24 | 002,761,832 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvenc.dll
[2010/09/16 21:27:24 | 002,506,344 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvenc.dll
[2010/09/16 21:27:23 | 014,513,768 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcompiler.dll
[2010/09/16 21:27:23 | 000,260,712 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcod1922.dll
[2010/09/16 21:27:19 | 000,000,000 | ---D | C] -- C:\NVIDIA
[2010/09/16 21:25:47 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SystemRequirementsLab
[2010/09/16 21:25:45 | 000,000,000 | ---D | C] -- C:\Users\PC\AppData\Roaming\SystemRequirementsLab
[2010/09/16 18:15:48 | 002,441,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iertutil.dll
[2010/09/16 18:14:28 | 000,861,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\oleaut32.dll
[2010/09/16 16:47:10 | 000,121,936 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSP.sys
[2010/09/16 16:47:10 | 000,020,048 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswFsBlk.sys
[2010/09/16 16:47:09 | 000,028,752 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswRdr.sys
[2010/09/16 16:47:07 | 000,051,280 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswTdi.sys
[2010/09/16 16:47:05 | 000,061,008 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswMonFlt.sys
[2010/09/16 16:46:25 | 000,167,592 | ---- | C] (AVAST Software) -- C:\Windows\SysWow64\aswBoot.exe
[2010/09/16 16:46:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Alwil Software
[2010/09/16 16:46:23 | 000,000,000 | ---D | C] -- C:\Program Files\Alwil Software
[2010/09/16 16:23:55 | 000,034,624 | ---- | C] (TuneUp Software) -- C:\Windows\SysNative\TURegOpt.exe
[2010/09/16 16:23:50 | 000,036,160 | ---- | C] (TuneUp Software) -- C:\Windows\SysNative\uxtuneup.dll
[2010/09/16 16:23:50 | 000,030,016 | ---- | C] (TuneUp Software) -- C:\Windows\SysWow64\uxtuneup.dll
[2010/09/16 16:23:50 | 000,025,920 | ---- | C] (TuneUp Software) -- C:\Windows\SysNative\authuitu.dll
[2010/09/16 16:23:50 | 000,021,312 | ---- | C] (TuneUp Software) -- C:\Windows\SysWow64\authuitu.dll
[2010/09/16 16:23:42 | 000,000,000 | ---D | C] -- C:\Users\PC\AppData\Roaming\TuneUp Software
[2010/09/16 16:23:39 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\TuneUp Utilities 2010
[2010/09/16 16:23:21 | 000,000,000 | ---D | C] -- C:\ProgramData\TuneUp Software
[2010/09/16 16:23:16 | 000,000,000 | -HSD | C] -- C:\ProgramData\{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}
[2010/09/15 18:56:01 | 001,493,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_39.dll
[2010/09/15 18:56:01 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_39.dll
[2010/09/15 18:55:58 | 003,851,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_39.dll
[2010/09/15 18:53:37 | 000,000,000 | ---D | C] -- C:\Riot Games
[2010/09/15 18:53:36 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\InstallShield Installation Information
[2010/09/15 18:09:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Softonic-Eng7
[2010/09/12 11:35:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Real
[2010/09/12 11:35:13 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Real
[2010/09/12 11:35:12 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Real
[2010/09/12 11:34:19 | 000,000,000 | ---D | C] -- C:\Users\PC\AppData\Roaming\Real
[2010/09/11 10:28:43 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\CCleaner
[2010/09/08 16:02:54 | 000,000,000 | ---D | C] -- C:\Users\PC\Desktop\mix
[2010/09/04 01:43:27 | 000,000,000 | ---D | C] -- C:\Program Files\7-Zip
[2010/09/03 23:50:27 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\appmgmt
[2010/09/03 17:06:59 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun
[2010/09/03 17:06:59 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java
[2010/09/03 17:06:45 | 000,411,368 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\deployJava1.dll
[2010/09/03 17:06:45 | 000,153,376 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaws.exe
[2010/09/03 17:06:45 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaw.exe
[2010/09/03 17:06:45 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\java.exe
[2010/09/03 17:06:39 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Java
[2010/09/03 17:05:30 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\JDownloader
[2010/08/31 17:55:33 | 000,000,000 | ---D | C] -- C:\Users\PC\Documents\Vuze Downloads
[2010/08/31 17:52:34 | 000,000,000 | ---D | C] -- C:\Users\PC\AppData\Roaming\Azureus
[2010/08/31 17:50:06 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Vuze
[2010/08/31 17:50:06 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\i4j_jres
[2010/08/31 17:50:01 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Conduit
[2010/08/30 19:49:46 | 000,000,000 | ---D | C] -- C:\Users\PC\AppData\Local\GHISLER
[2010/08/30 19:48:14 | 000,000,000 | ---D | C] -- C:\totalcmd
[2010/08/30 19:48:14 | 000,000,000 | ---D | C] -- C:\Users\PC\AppData\Roaming\GHISLER
[2010/08/30 19:31:04 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\DAEMON Tools Toolbar
[2010/08/30 19:30:34 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\DAEMON Tools Lite
[2010/08/30 19:30:29 | 000,000,000 | ---D | C] -- C:\Users\PC\AppData\Roaming\DAEMON Tools Lite
[2010/08/30 19:30:28 | 000,000,000 | ---D | C] -- C:\ProgramData\DAEMON Tools Lite
[2010/08/30 19:06:55 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Elaborate Bytes
[2010/08/30 19:01:12 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SlySoft
[2010/08/27 01:47:17 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\uTorrent
[2010/08/27 01:46:26 | 000,000,000 | ---D | C] -- C:\Users\PC\AppData\Roaming\uTorrent

========== Files - Modified Within 30 Days ==========

[2010/09/24 23:58:17 | 000,014,224 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2010/09/24 23:58:17 | 000,014,224 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2010/09/24 23:51:04 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2010/09/24 23:50:55 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2010/09/24 23:50:49 | 1609,965,568 | -HS- | M] () -- C:\hiberfil.sys
[2010/09/24 11:42:37 | 002,097,152 | -HS- | M] () -- C:\Users\PC\NTUSER.DAT
[2010/09/24 11:42:34 | 002,546,816 | -H-- | M] () -- C:\Users\PC\AppData\Local\IconCache.db
[2010/09/24 11:21:32 | 000,013,507 | ---- | M] () -- C:\Users\PC\Desktop\MemTest.zip
[2010/09/24 11:19:25 | 000,205,534 | ---- | M] () -- C:\Users\PC\Desktop\docmem1_45.exe
[2010/09/24 11:11:29 | 000,535,482 | ---- | M] () -- C:\Users\PC\Desktop\memtest86-3.5.iso.zip
[2010/09/24 10:35:47 | 000,204,496 | ---- | M] (Malwarebytes) -- C:\Users\PC\Desktop\StartUpLite.exe
[2010/09/24 02:01:11 | 000,007,607 | ---- | M] () -- C:\Users\PC\AppData\Local\Resmon.ResmonCfg
[2010/09/24 01:59:23 | 001,729,668 | ---- | M] () -- C:\Users\PC\Desktop\ProcessExplorer.zip
[2010/09/24 01:48:30 | 000,832,273 | ---- | M] () -- C:\Users\PC\Desktop\RSITx64.exe
[2010/09/23 01:04:41 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Users\PC\Desktop\OTL.exe
[2010/09/22 10:46:56 | 000,002,961 | ---- | M] () -- C:\Users\PC\Desktop\HiJackThis.lnk
[2010/09/22 10:46:32 | 001,402,880 | ---- | M] () -- C:\Users\PC\Desktop\HiJackThis.msi
[2010/09/22 10:24:11 | 000,519,680 | ---- | M] (OldTimer Tools) -- C:\Users\PC\Desktop\OTM.exe
[2010/09/22 10:22:07 | 000,001,033 | ---- | M] () -- C:\Users\PC\Application Data\Microsoft\Internet Explorer\Quick Launch\Malwarebytes' Anti-Malware.lnk
[2010/09/22 10:22:07 | 000,001,009 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2010/09/22 10:21:44 | 006,153,352 | ---- | M] (Malwarebytes Corporation ) -- C:\Users\PC\Desktop\mbam-setup-1.46.exe
[2010/09/22 03:04:43 | 000,000,704 | ---- | M] () -- C:\Users\PC\Desktop\SRDownloader.nast
[2010/09/22 02:59:27 | 000,906,752 | ---- | M] (Share-rapid.com) -- C:\Users\PC\Desktop\SRDownloader.exe
[2010/09/21 10:17:59 | 000,002,153 | ---- | M] () -- C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\GIGABYTE Gamer HUD Lite.lnk
[2010/09/21 10:12:55 | 000,002,560 | ---- | M] () -- C:\Windows\_MSRSTRT.EXE
[2010/09/21 09:56:07 | 000,001,746 | ---- | M] () -- C:\Windows\Language_trs.ini
[2010/09/21 09:44:04 | 000,727,532 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2010/09/21 09:44:04 | 000,615,810 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2010/09/21 09:44:04 | 000,106,190 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2010/09/19 17:05:50 | 745,259,008 | ---- | M] () -- C:\Users\PC\Desktop\Kick Ass.avi
[2010/09/16 22:16:21 | 000,024,576 | ---- | M] () -- C:\Windows\SysWow64\AsIO.dll
[2010/09/16 22:16:21 | 000,015,416 | ---- | M] () -- C:\Windows\SysNative\drivers\ASACPI.sys
[2010/09/16 22:16:21 | 000,013,368 | ---- | M] () -- C:\Windows\SysWow64\drivers\AsIO.sys
[2010/09/16 21:36:47 | 000,000,000 | ---- | M] () -- C:\Windows\SysWow64\config.nt
[2010/09/16 16:23:47 | 000,002,159 | ---- | M] () -- C:\Users\Public\Desktop\TuneUp Utilities.lnk
[2010/09/15 22:40:08 | 005,881,785 | ---- | M] () -- C:\Users\PC\Desktop\preview.mp3
[2010/09/15 18:56:02 | 000,001,720 | ---- | M] () -- C:\Users\Public\Desktop\Play League of Legends.lnk
[2010/09/11 10:28:43 | 000,001,007 | ---- | M] () -- C:\Users\PC\Desktop\CCleaner.lnk
[2010/09/08 09:32:17 | 000,000,041 | -HS- | M] () -- C:\ProgramData\.zreglib
[2010/09/07 17:12:17 | 000,038,848 | ---- | M] (AVAST Software) -- C:\Windows\avastSS.scr
[2010/09/07 17:11:54 | 000,167,592 | ---- | M] (AVAST Software) -- C:\Windows\SysWow64\aswBoot.exe
[2010/09/07 16:52:29 | 000,051,280 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswTdi.sys
[2010/09/07 16:52:09 | 000,121,936 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSP.sys
[2010/09/07 16:47:49 | 000,028,752 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswRdr.sys
[2010/09/07 16:47:33 | 000,061,008 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswMonFlt.sys
[2010/09/07 16:47:10 | 000,020,048 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswFsBlk.sys
[2010/09/03 17:07:03 | 000,001,021 | ---- | M] () -- C:\Users\Public\Desktop\JDownloader.lnk
[2010/09/03 17:06:39 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\deployJava1.dll
[2010/09/03 17:06:39 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaws.exe
[2010/09/03 17:06:39 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaw.exe
[2010/09/03 17:06:39 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\java.exe
[2010/08/31 17:50:16 | 000,001,848 | ---- | M] () -- C:\Users\PC\Application Data\Microsoft\Internet Explorer\Quick Launch\Vuze.lnk
[2010/08/31 07:19:12 | 002,441,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iertutil.dll
[2010/08/30 21:44:21 | 049,874,563 | ---- | M] () -- C:\Users\PC\Desktop\new 4ed. chaos space marines codex (2007).pdf
[2010/08/30 19:30:45 | 000,834,544 | ---- | M] () -- C:\Windows\SysNative\drivers\sptd.sys
[2010/08/30 19:24:14 | 000,001,113 | ---- | M] () -- C:\Users\Public\Desktop\CloneCD.lnk
[2010/08/30 10:50:02 | 003,015,544 | ---- | M] (Sysinternals - www.sysinternals.com) -- C:\Users\PC\Desktop\Procmon.exe
[2010/08/27 15:02:02 | 000,034,624 | ---- | M] (TuneUp Software) -- C:\Windows\SysNative\TURegOpt.exe
[2010/08/27 14:56:46 | 000,025,920 | ---- | M] (TuneUp Software) -- C:\Windows\SysNative\authuitu.dll
[2010/08/27 14:56:42 | 000,021,312 | ---- | M] (TuneUp Software) -- C:\Windows\SysWow64\authuitu.dll
[2010/08/27 14:56:38 | 000,036,160 | ---- | M] (TuneUp Software) -- C:\Windows\SysNative\uxtuneup.dll
[2010/08/27 14:56:30 | 000,030,016 | ---- | M] (TuneUp Software) -- C:\Windows\SysWow64\uxtuneup.dll
[2010/08/27 01:47:58 | 000,000,967 | ---- | M] () -- C:\Users\PC\Application Data\Microsoft\Internet Explorer\Quick Launch\µTorrent.lnk

========== Files Created - No Company Name ==========

[2010/09/24 11:21:31 | 000,013,507 | ---- | C] () -- C:\Users\PC\Desktop\MemTest.zip
[2010/09/24 11:19:23 | 000,205,534 | ---- | C] () -- C:\Users\PC\Desktop\docmem1_45.exe
[2010/09/24 11:10:18 | 000,535,482 | ---- | C] () -- C:\Users\PC\Desktop\memtest86-3.5.iso.zip
[2010/09/24 01:59:18 | 001,729,668 | ---- | C] () -- C:\Users\PC\Desktop\ProcessExplorer.zip
[2010/09/24 01:48:27 | 000,832,273 | ---- | C] () -- C:\Users\PC\Desktop\RSITx64.exe
[2010/09/22 10:46:56 | 000,002,961 | ---- | C] () -- C:\Users\PC\Desktop\HiJackThis.lnk
[2010/09/22 10:46:31 | 001,402,880 | ---- | C] () -- C:\Users\PC\Desktop\HiJackThis.msi
[2010/09/22 10:22:07 | 000,001,033 | ---- | C] () -- C:\Users\PC\Application Data\Microsoft\Internet Explorer\Quick Launch\Malwarebytes' Anti-Malware.lnk
[2010/09/22 10:22:07 | 000,001,009 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2010/09/22 03:03:21 | 000,000,704 | ---- | C] () -- C:\Users\PC\Desktop\SRDownloader.nast
[2010/09/21 10:21:23 | 000,009,694 | ---- | C] () -- C:\Windows\SysNative\nvdisp.nvu
[2010/09/21 10:17:59 | 000,002,153 | ---- | C] () -- C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\GIGABYTE Gamer HUD Lite.lnk
[2010/09/21 10:12:53 | 000,002,560 | ---- | C] () -- C:\Windows\_MSRSTRT.EXE
[2010/09/21 09:56:07 | 000,001,746 | ---- | C] () -- C:\Windows\Language_trs.ini
[2010/09/20 00:36:06 | 1463,077,296 | ---- | C] () -- C:\Users\PC\Desktop\How To Train Your Dragon 2-D HDTV 720p RiP READNFO XViD - IMAGiNE.avi
[2010/09/19 15:58:58 | 745,259,008 | ---- | C] () -- C:\Users\PC\Desktop\Kick Ass.avi
[2010/09/17 16:54:41 | 000,063,306 | ---- | C] () -- C:\Users\PC\Desktop\procmon.chm
[2010/09/16 22:16:41 | 000,024,576 | ---- | C] () -- C:\Windows\SysWow64\AsIO.dll
[2010/09/16 22:16:41 | 000,013,368 | ---- | C] () -- C:\Windows\SysWow64\drivers\AsIO.sys
[2010/09/16 22:16:21 | 000,015,416 | ---- | C] () -- C:\Windows\SysNative\drivers\ASACPI.sys
[2010/09/16 16:47:04 | 000,000,000 | ---- | C] () -- C:\Windows\SysWow64\config.nt
[2010/09/16 16:23:47 | 000,002,159 | ---- | C] () -- C:\Users\Public\Desktop\TuneUp Utilities.lnk
[2010/09/15 22:40:07 | 005,881,785 | ---- | C] () -- C:\Users\PC\Desktop\preview.mp3
[2010/09/15 18:56:02 | 000,001,720 | ---- | C] () -- C:\Users\Public\Desktop\Play League of Legends.lnk
[2010/09/11 10:28:43 | 000,001,007 | ---- | C] () -- C:\Users\PC\Desktop\CCleaner.lnk
[2010/09/08 03:30:35 | 089,633,271 | ---- | C] () -- C:\Users\PC\Desktop\Codex - Chaos Daemons.pdf
[2010/09/03 17:07:03 | 000,001,021 | ---- | C] () -- C:\Users\Public\Desktop\JDownloader.lnk
[2010/08/31 17:50:16 | 000,001,848 | ---- | C] () -- C:\Users\PC\Application Data\Microsoft\Internet Explorer\Quick Launch\Vuze.lnk
[2010/08/30 21:41:15 | 049,874,563 | ---- | C] () -- C:\Users\PC\Desktop\new 4ed. chaos space marines codex (2007).pdf
[2010/08/30 19:48:14 | 000,000,545 | ---- | C] () -- C:\Windows\UC.PIF
[2010/08/30 19:48:14 | 000,000,545 | ---- | C] () -- C:\Windows\RAR.PIF
[2010/08/30 19:48:14 | 000,000,545 | ---- | C] () -- C:\Windows\PKZIP.PIF
[2010/08/30 19:48:14 | 000,000,545 | ---- | C] () -- C:\Windows\PKUNZIP.PIF
[2010/08/30 19:48:14 | 000,000,545 | ---- | C] () -- C:\Windows\NOCLOSE.PIF
[2010/08/30 19:48:14 | 000,000,545 | ---- | C] () -- C:\Windows\LHA.PIF
[2010/08/30 19:48:14 | 000,000,545 | ---- | C] () -- C:\Windows\ARJ.PIF
[2010/08/30 19:30:45 | 000,834,544 | ---- | C] () -- C:\Windows\SysNative\drivers\sptd.sys
[2010/08/30 19:24:14 | 000,001,113 | ---- | C] () -- C:\Users\Public\Desktop\CloneCD.lnk
[2010/08/30 19:03:30 | 000,000,041 | -HS- | C] () -- C:\ProgramData\.zreglib
[2010/08/27 01:47:24 | 000,000,967 | ---- | C] () -- C:\Users\PC\Application Data\Microsoft\Internet Explorer\Quick Launch\µTorrent.lnk
[2010/08/11 01:11:37 | 000,007,607 | ---- | C] () -- C:\Users\PC\AppData\Local\Resmon.ResmonCfg
[2009/07/14 01:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2009/07/13 23:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2007/12/30 01:22:02 | 000,010,296 | ---- | C] () -- C:\Windows\SysWow64\drivers\ASUSHWIO.SYS

========== LOP Check ==========

[2010/09/11 10:29:16 | 000,000,000 | ---D | M] -- C:\Users\PC\AppData\Roaming\Azureus
[2010/08/30 19:37:06 | 000,000,000 | ---D | M] -- C:\Users\PC\AppData\Roaming\DAEMON Tools Lite
[2010/09/16 21:37:51 | 000,000,000 | ---D | M] -- C:\Users\PC\AppData\Roaming\GetRightToGo
[2010/08/30 19:48:14 | 000,000,000 | ---D | M] -- C:\Users\PC\AppData\Roaming\GHISLER
[2010/08/09 13:13:00 | 000,000,000 | ---D | M] -- C:\Users\PC\AppData\Roaming\Opera
[2010/09/16 21:25:49 | 000,000,000 | ---D | M] -- C:\Users\PC\AppData\Roaming\SystemRequirementsLab
[2010/09/16 16:23:42 | 000,000,000 | ---D | M] -- C:\Users\PC\AppData\Roaming\TuneUp Software
[2010/09/11 10:03:21 | 000,000,000 | ---D | M] -- C:\Users\PC\AppData\Roaming\uTorrent
[2010/09/24 11:41:52 | 000,000,614 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

========== Purity Check ==========



========== Alternate Data Streams ==========

@Alternate Data Stream - 24 bytes -> C:\Windows:D98FAB52F28FC08D
< End of report >