virus fake trojan

mám menší problém stiahol som si jeden .exe súbor (screensaver) keď som ho spustil nič sa nestalo myslel som že nefunguje po chvíli mi z obrazovky zmizla asi polovica ikon další problém je že niektoré jpegčka mi nahradil dosť nechutný obrázok hlavne v "dokumentoch" (knižnice>dokumenty)
prebehol som to nodom našiel 3 infiltrácie ale problém nevyriešil ďalej spybot search-destroy ten našiel asi 16 spywarov všetko cookies ale ani to nepomohlo ako to teda vyriešim?

Ahoj.

Stiahni RSIT. Spust, klik na "Continue". Po dokoneceni by se ti mal otvorit textovy subor. Ten skopiruj sem.
Pokial by sa nieco stalo, najdes ho aj na adrese "C:\rsit\log.txt".

keď dám continue prebehne to asi do polovice a potom to píše chybu: line -1: error: Variable used without being declerated.

Aky mas OS?

W7 ultimate (mám to aj v podpise)

Stiahni DDS. Uloz na plochu, ukonci vsetky spustene programy a spust ho. Po skonceni scanu sa otvoria vysledky v 2 oknach - DDS.txt a Attach.txt. Obsah oboch by som rad videl.

ten už išiel tu je attach: http://www.upnito.sk/subor/5b265c7a5c3c ... 4634e.html
a tu DSS: http://www.upnito.sk/subor/b17b07d1c290 ... 1aacf.html

Vloz to prosim ta sem, tie logy nie su take velke, aby sa sem nemestili...kludne aj do 2 postov.

attach:

UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT

DDS (Ver_09-10-26.01)

Microsoft Windows 7 Ultimate
Boot Device: \Device\HarddiskVolume1
Install Date: 17. 9. 2009 18:58:51
System Uptime: 19. 11. 2009 15:17:22 (0 hours ago)

Motherboard: ASUSTeK Computer INC. | | M2N-SLI DELUXE
Processor: AMD Athlon(tm) 64 X2 Dual Core Processor 5000+ | Socket AM2 | 2612/200mhz

==== Disk Partitions =========================

C: is FIXED (NTFS) - 20 GiB total, 4,542 GiB free.
D: is FIXED (NTFS) - 279 GiB total, 155,319 GiB free.
E: is CDROM ()
F: is Removable
G: is CDROM ()
H: is FIXED (NTFS) - 298 GiB total, 16,929 GiB free.

==== Disabled Device Manager Items =============

Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318}
Description: Hamachi Network Interface
Device ID: ROOT\NET\0000
Manufacturer: LogMeIn, Inc.
Name: Hamachi Network Interface
PNP Device ID: ROOT\NET\0000
Service: hamachi

==== System Restore Points ===================

No restore point in system.

==== Installed Programs ======================

3DMark06
4U WMA MP3 Converter 6.2.8
Adobe AIR
Adobe Anchor Service CS4
Adobe Bridge CS4
Adobe CMaps CS4
Adobe Color - Photoshop Specific CS4
Adobe Color EU Extra Settings CS4
Adobe Color JA Extra Settings CS4
Adobe Color NA Recommended Settings CS4
Adobe Color Video Profiles CS CS4
Adobe CSI CS4
Adobe Default Language CS4
Adobe Device Central CS4
Adobe Drive CS4
Adobe Dynamiclink Support
Adobe ExtendScript Toolkit CS4
Adobe Extension Manager CS4
Adobe Flash CS4
Adobe Flash CS4 Extension - Flash Lite STI en
Adobe Flash CS4 Professional
Adobe Flash CS4 STI-en
Adobe Flash Player 10 ActiveX
Adobe Flash Player 10 Plugin
Adobe Fonts All
Adobe Linguistics CS4
Adobe Media Encoder CS4
Adobe Media Player
Adobe Output Module
Adobe PDF Library Files CS4
Adobe Photoshop CS4
Adobe Photoshop CS4 Support
Adobe Reader 9.1
Adobe Search for Help
Adobe Service Manager Extension
Adobe Setup
Adobe Type Support CS4
Adobe Update Manager CS4
Adobe WinSoft Linguistics Plugin
Adobe XMP Panels CS4
AdobeColorCommonSetCMYK
AdobeColorCommonSetRGB
AIMP2
Algodoo v1.6.0
AMD Dual-Core Optimizer
Apple Application Support
Apple Software Update
Ask Toolbar
µTorrent
Audacity 1.2.6
AV Voice Changer Software 6.0
Blaze Gif Creator V5.50
Call of Duty Modern Warfare 2
CobraShare DUploader 1.2.5
Connect
Convert AVI to MP4 1.3
DAEMON Tools Toolbar
ESET NOD32 Antivirus
Fast Audio Converter version 1.4
Flash Movie Player 1.5
FlashDownloader
FlashGet 3.0 Beta
Free Mp3 Wma Converter V 1.81
Free Mp3 Wma Ogg Converter 7.0.1
Futuremark SystemInfo
G-steam
GCFScape 1.7.3
Gothic III
Gtk+ Runtime Environment 2.10.11-1
Hamachi 1.0.2.5
HijackThis 2.0.2
ICQ Toolbar
ICQ6.5
Industrial Audio Software ePodcast Creator Trial
Java(TM) 6 Update 16
kuler
LEGO Digital Designer
Logitech QuickCam
Logitech QuickCam Driver Package
Marc Ecko's Getting Up - Contents Under Pressure
Marc Ecko's Getting Up - Contents Under Pressure SK 1.00
Microsoft Games for Windows - LIVE
Microsoft Games for Windows - LIVE Redistributable
Microsoft Office Professional Edition 2003
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
Morpheus Photo Morpher v3.11
Mozilla Firefox (3.5.5)
NVIDIA Drivers
OF Dragon Rising
OpenAL
PacSteam
PAP 4.0
PAP project files
PDF Settings CS4
Photoshop Camera Raw
Pivot Stickfigure Animator
Pixel Bender Toolkit
Privoxy 3.0.6
ProfiCAD
ProxyFirewall 1.0.4 Beta
PVSonyDll
QuickTime
Skype™ 4.1
Solar System - Earth 3D Screensaver v1.3
Solar System - Mars 3D Screensaver v1.2
Sony Vegas Pro 8.0
Sothink SWF Decompiler
SoundMAX
Source SDK
SpeechRedist
Spybot - Search & Destroy
Suite Shared Configuration CS4
Synfig Studio
Tor 0.2.1.19
Unreal Tournament 2004
Unreal Tournament 3
upnito.sk Manager 2
Valve Hammer Editor
Vidalia 0.1.15
VLC media player 1.0.3
Windows 7 x86 Slovak MUI Installer
Windows Media Player Firefox Plugin
WinRAR archiver

==== Event Viewer Messages From Past Week ========

18. 11. 2009 21:41:58, Error: Service Control Manager [7016] - Služba NVIDIA Display Driver Service oznámila neplatný aktuálny stav 32.
17. 11. 2009 21:31:47, Error: Service Control Manager [7016] - Služba NVIDIA Display Driver Service oznámila neplatný aktuálny stav 32.
17. 11. 2009 20:56:46, Error: Service Control Manager [7016] - Služba NVIDIA Display Driver Service oznámila neplatný aktuálny stav 32.
17. 11. 2009 19:58:30, Error: Service Control Manager [7011] - Počas čakania na odpoveď transakcie od služby Netman bol dosiahnutý časový limit (30000 ms).
17. 11. 2009 14:27:18, Error: Service Control Manager [7011] - Počas čakania na odpoveď transakcie od služby ShellHWDetection bol dosiahnutý časový limit (30000 ms).
17. 11. 2009 14:24:13, Error: Microsoft-Windows-HAL [12] - The platform firmware has corrupted memory across the previous system power transition. Please check for updated firmware for your system.
16. 11. 2009 22:54:47, Error: Service Control Manager [7016] - Služba NVIDIA Display Driver Service oznámila neplatný aktuálny stav 32.
15. 11. 2009 22:55:56, Error: Service Control Manager [7016] - Služba NVIDIA Display Driver Service oznámila neplatný aktuálny stav 32.
14. 11. 2009 23:00:33, Error: Service Control Manager [7016] - Služba NVIDIA Display Driver Service oznámila neplatný aktuálny stav 32.
14. 11. 2009 22:23:37, Error: Service Control Manager [7011] - Počas čakania na odpoveď transakcie od služby ShellHWDetection bol dosiahnutý časový limit (30000 ms).
13. 11. 2009 23:33:43, Error: Service Control Manager [7016] - Služba NVIDIA Display Driver Service oznámila neplatný aktuálny stav 32.
13. 11. 2009 14:37:42, Error: Microsoft-Windows-Application-Experience [205] - The Program Compatibility Assistant service failed to perform the phase two initialization.
12. 11. 2009 21:45:13, Error: Service Control Manager [7016] - Služba NVIDIA Display Driver Service oznámila neplatný aktuálny stav 32.
12. 11. 2009 18:40:39, Error: Service Control Manager [7016] - Služba NVIDIA Display Driver Service oznámila neplatný aktuálny stav 32.

==== End Of File ===========================

DSS:
DDS (Ver_09-10-26.01) - NTFSx86
Run by webkar at 15:42:31,76 on çt 19. 11. 2009
Internet Explorer: 8.0.7600.16385
Microsoft Windows 7 Ultimate 6.1.7600.0.1250.421.1033.18.2046.1178 [GMT 1:00]


============== Running Processes ===============

C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\nvvsvc.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files\ICQ6Toolbar\ICQ Service.exe
C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
C:\Windows\system32\PnkBstrA.exe
C:\Windows\system32\PnkBstrB.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskhost.exe
C:\Windows\Explorer.EXE
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe
C:\Program Files\Logitech\QuickCam\Quickcam.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Windows\system32\WUDFHost.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
D:\Program Files\DAEMON Tools Lite\daemon.exe
D:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\PROGRA~1\ICQ6.5\ICQ.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files\Common Files\Logishrd\LQCVFX\COCIManager.exe
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\explorer.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
D:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Windows NT\Accessories\WORDPAD.EXE
C:\Windows\System32\svchost.exe -k WerSvcGroup
D:\Downloads\dds.scr
C:\Windows\system32\conhost.exe
C:\Windows\system32\wbem\wmiprvse.exe

============== Pseudo HJT Report ===============

uStart Page = hxxp://search.orbitdownloader.com
uURLSearchHooks: H - No File
uURLSearchHooks: ICQToolBar: {855f3b16-6d32-4fe6-8a56-bbb695989046} - c:\program files\icq6toolbar\ICQToolBar.dll
BHO: IECatcher Class: {0682e46a-7040-4049-a6fd-0bcfbc673ad8} - c:\program files\flashdownloader\IntQd.dll
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: Spybot-S&D IE Protection: {53707962-6f74-2d53-2644-206d7942484f} - d:\program files\spybot - search & destroy\SDHelper.dll
BHO: FlashGetBHO: {b070d3e3-fec0-47d9-8e8a-99d4eeb3d3b0} - c:\users\webkar\appdata\roaming\flashgetbho\FlashGetBHO3.dll
BHO: Ask Toolbar: {d4027c7f-154a-4066-a1ad-4243d8127440} - c:\program files\ask.com\GenericAskToolbar.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
TB: Ask Toolbar: {d4027c7f-154a-4066-a1ad-4243d8127440} - c:\program files\ask.com\GenericAskToolbar.dll
TB: ICQToolBar: {855f3b16-6d32-4fe6-8a56-bbb695989046} - c:\program files\icq6toolbar\ICQToolBar.dll
TB: {C55BBCD6-41AD-48AD-9953-3609C48EACC7} - No File
EB: ICQToolBar: {855f3b16-6d32-4fe6-8a56-bbb695989046} - c:\program files\icq6toolbar\ICQToolBar.dll
uRun: [Skype] "c:\program files\skype\phone\Skype.exe" /nosplash /minimized
uRun: [DAEMON Tools Lite] "d:\program files\daemon tools lite\daemon.exe" -autorun
uRun: [MailBlocker] c:\users\webkar\appdata\local\temp\b.exe
uRun: [SpybotSD TeaTimer] d:\program files\spybot - search & destroy\TeaTimer.exe
uRun: [ICQ] "c:\program files\icq6.5\ICQ.exe" silent
uRun: [AdobeUpdater6] "c:\program files\common files\adobe\updater6\Adobe_Updater.exe"
mRun: [egui] "c:\program files\eset\eset nod32 antivirus\egui.exe" /hide /waitservice
mRun: [LogitechCommunicationsManager] "c:\program files\common files\logishrd\lcommgr\Communications_Helper.exe"
mRun: [LogitechQuickCamRibbon] "c:\program files\logitech\quickcam\Quickcam.exe" /hide
mRun: [amd_dc_opt] "c:\program files\amd\amd_dc_opt\amd_dc_opt.exe"
mRun: [SunJavaUpdateSched] "c:\program files\java\jre6\bin\jusched.exe"
mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 9.0\reader\Reader_sl.exe"
mRun: [AdobeCS4ServiceManager] "c:\program files\common files\adobe\cs4servicemanager\CS4ServiceManager.exe" -launchedbylogin
mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime
StartupFolder: c:\users\webkar\appdata\roaming\micros~1\windows\startm~1\programs\startup\hamachi.lnk - c:\program files\hamachi\hamachi.exe
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\privoxy.lnk - c:\program files\vidalia bundle\privoxy\privoxy.exe
mPolicies-system: ConsentPromptBehaviorAdmin = 0 (0x0)
mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
mPolicies-system: EnableLUA = 0 (0x0)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
mPolicies-system: PromptOnSecureDesktop = 0 (0x0)
IE: Download All by FlashGet3 - c:\users\webkar\appdata\roaming\flashgetbho\GetAllUrl.htm
IE: Download by FlashDownloader - c:\program files\flashdownloader\IntQd.htm
IE: Download by FlashGet3 - c:\users\webkar\appdata\roaming\flashgetbho\GetUrl.htm
IE: E&xportovať do programu Microsoft Excel - d:\progra~1\micros~1\office11\EXCEL.EXE/3000
IE: Sothink SWF Catcher - c:\program files\common files\sourcetec\swf catcher\InternetExplorer.htm
IE: {E19ADC6E-3909-43E4-9A89-B7B676377EE3} - c:\program files\common files\sourcetec\swf catcher\InternetExplorer.htm
IE: {E59EB121-F339-4851-A3BA-FE49C35617C2} - c:\program files\icq6.5\ICQ.exe
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - d:\progra~1\micros~1\office11\REFIEBAR.DLL
IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - d:\program files\spybot - search & destroy\SDHelper.dll
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL

================= FIREFOX ===================

FF - ProfilePath - c:\users\webkar\appdata\roaming\mozilla\firefox\profiles\jfr0x2ao.default\

---- FIREFOX POLICIES ----
d:\program files\mozilla firefox\greprefs\all.js - pref("capability.policy.default.XMLHttpRequest.channel", "noAccess");
d:\program files\mozilla firefox\greprefs\all.js - pref("javascript.options.jit.chrome", false);
d:\program files\mozilla firefox\greprefs\all.js - pref("security.checkloaduri", true);
d:\program files\mozilla firefox\greprefs\all.js - pref("bidi.characterset", 1);
d:\program files\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl3.rsa_seed_sha", true);
d:\program files\mozilla firefox\defaults\pref\channel-prefs.js - pref("app.update.channel", "release");
d:\program files\mozilla firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".sk");

============= SERVICES / DRIVERS ===============

R2 ekrn;ESET Service;c:\program files\eset\eset nod32 antivirus\ekrn.exe [2009-5-14 731840]
R2 epfwwfpr;epfwwfpr;c:\windows\system32\drivers\epfwwfpr.sys [2009-5-14 93312]
R2 ICQ Service;ICQ Service;c:\program files\icq6toolbar\ICQ Service.exe [2009-9-29 222968]
R3 AmdTools;AMD Special Tools Driver;c:\windows\system32\drivers\AmdTools.sys [2009-10-3 31744]
R3 PID_0920;Logitech QuickCam Express(PID_0920);c:\windows\system32\drivers\LV532AV.SYS [2005-1-31 163328]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-13 229888]

=============== Created Last 30 ================

2009-11-18 19:34:26 0 d-----w- c:\program files\trend micro
2009-11-18 17:38:51 0 d-----w- c:\programdata\Spybot - Search & Destroy
2009-11-18 14:48:40 1018223 ----a-w- C:\lol.swf
2009-11-17 19:47:13 204 ----a-w- c:\windows\system32\secustat.dat
2009-11-17 19:42:07 25 ----a-w- c:\windows\libem.INI
2009-11-17 19:42:02 0 d-----w- c:\users\webkar\appdata\roaming\FlashGet
2009-11-17 19:42:02 0 d-----w- c:\users\webkar\appdata\roaming\BITS
2009-11-17 19:41:57 0 d-----w- c:\users\webkar\appdata\roaming\FlashGetBHO
2009-11-17 19:41:56 0 d-----w- c:\program files\FlashGet Network
2009-11-17 19:39:53 0 d-----w- c:\program files\Convert AVI to MP4
2009-11-16 20:30:51 0 d-----w- c:\program files\VSTplugins
2009-11-16 20:28:58 0 d-----w- c:\programdata\Sony
2009-11-16 18:05:15 139584 ----a-w- c:\windows\system32\drivers\PnkBstrK.sys
2009-11-16 18:05:06 189104 ----a-w- c:\windows\system32\PnkBstrB.xtr
2009-11-16 18:05:06 189104 ----a-w- c:\windows\system32\PnkBstrB.exe
2009-11-16 18:05:00 75064 ----a-w- c:\windows\system32\PnkBstrA.exe
2009-11-16 13:40:53 0 d-----w- c:\program files\common files\SourceTec
2009-11-16 13:40:49 0 d-----w- c:\program files\SourceTec
2009-11-16 13:19:29 737280 ----a-w- c:\windows\iun6002.exe
2009-11-16 13:19:29 0 d-----w- c:\program files\FlashDownloader
2009-11-15 20:01:49 0 d-----w- c:\users\webkar\appdata\roaming\LEGO Company
2009-11-15 12:00:24 0 d-----w- c:\programdata\Apple Computer
2009-11-15 12:00:05 0 d-----w- c:\programdata\Apple
2009-11-13 21:45:56 0 d-----w- c:\program files\ProfiCAD
2009-11-05 19:57:13 0 d-----w- c:\program files\VideoLAN
2009-10-30 15:45:21 0 d-----w- c:\windows\system32\xlive
2009-10-30 15:45:20 0 d-----w- c:\program files\Microsoft Games for Windows - LIVE
2009-10-30 15:00:04 0 d-----w- c:\windows\system32\directx
2009-10-30 13:48:53 0 d-----w- C:\vcs5BGEffects
2009-10-30 13:47:42 0 d-----w- c:\program files\AV Vcs 6.0
2009-10-30 13:02:31 0 d-----w- c:\users\webkar\appdata\roaming\Free Mp3 Wma Ogg Converter
2009-10-30 13:01:52 0 d-----w- c:\program files\Free Mp3 Wma Ogg Converter
2009-10-30 12:55:53 0 d-----w- c:\program files\Free Audio Pack
2009-10-30 12:54:23 0 d---a-w- c:\programdata\TEMP
2009-10-30 12:54:14 0 d-----w- c:\program files\LitexMedia
2009-10-30 12:46:52 286720 ----a-w- c:\windows\system32\NCTWMAFile2.dll
2009-10-30 12:46:52 143872 ----a-w- c:\windows\system32\NCTWMAFile.dll
2009-10-30 12:46:51 168448 ----a-w- c:\windows\system32\NCTAudioPlayer.dll
2009-10-30 12:46:50 573440 ----a-w- c:\windows\system32\NCTAudioInformation2.dll
2009-10-30 12:46:47 491520 ----a-w- c:\windows\system32\NCTAudioFile.dll
2009-10-30 12:46:46 484352 ----a-w- c:\windows\system32\lame_enc.dll
2009-10-30 12:46:46 344064 ----a-w- c:\windows\system32\msvcr70.dll
2009-10-30 12:46:43 0 d-----w- c:\program files\4U Computing
2009-10-30 09:40:19 0 d-----w- c:\programdata\FLEXnet
2009-10-30 09:29:51 0 d-----w- c:\program files\common files\Macrovision Shared
2009-10-28 17:34:43 0 d-----w- c:\program files\Flash Movie Player
2009-10-28 17:17:08 0 d-----w- c:\users\webkar\appdata\roaming\GrabPro
2009-10-28 17:17:08 0 d-----w- C:\downloads
2009-10-26 17:59:13 0 d-----w- c:\users\webkar\.cobraShare
2009-10-21 16:29:58 376 ----a-w- c:\windows\ODBC.INI
2009-10-21 16:29:55 17920 ----a-w- c:\windows\system32\mdimon.dll
2009-10-21 16:27:54 0 d-----w- c:\windows\PCHEALTH
2009-10-21 12:45:21 43520 ----a-w- c:\windows\system32\CmdLineExt03.dll

==================== Find3M ====================

2009-11-02 19:42:06 195456 ------w- c:\windows\system32\MpSigStub.exe
2009-10-12 12:35:41 411368 ----a-w- c:\windows\system32\deploytk.dll
2009-10-08 19:30:26 0 ---ha-w- c:\windows\system32\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2009-10-07 14:31:52 16567296 ----a-w- c:\windows\system32\Solar System - Earth 3D Screensaver.exe
2009-10-07 14:31:47 331264 ----a-w- c:\windows\system32\Solar System - Earth 3D Screensaver.scr
2009-10-06 14:59:11 107888 ----a-w- c:\windows\system32\CmdLineExt.dll
2009-10-02 04:06:59 728648 ----a-w- c:\windows\system32\drivers\dxgkrnl.sys
2009-09-27 15:47:30 2173544 ----a-w- c:\windows\system32\nvcplui.exe
2009-09-27 15:47:00 92776 ----a-w- c:\windows\system32\nvmctray.dll
2009-09-27 15:47:00 805480 ----a-w- c:\windows\system32\nvsvc.dll
2009-09-27 15:47:00 4033128 ----a-w- c:\windows\system32\nvvitvs.dll
2009-09-27 15:47:00 3553896 ----a-w- c:\windows\system32\nvgames.dll
2009-09-27 15:47:00 3172968 ----a-w- c:\windows\system32\nvwss.dll
2009-09-27 15:47:00 215656 ----a-w- c:\windows\system32\nvvsvc.exe
2009-09-27 15:47:00 195176 ----a-w- c:\windows\system32\nvmccss.dll
2009-09-27 15:47:00 1309288 ----a-w- c:\windows\system32\nvsvs.dll
2009-09-27 15:47:00 1292904 ----a-w- c:\windows\system32\nvmobls.dll
2009-09-27 15:46:00 4942440 ----a-w- c:\windows\system32\nvdisps.dll
2009-09-27 15:46:00 13949544 ----a-w- c:\windows\system32\nvcpl.dll
2009-09-26 17:46:34 25280 ----a-w- c:\windows\system32\drivers\hamachi.sys
2009-09-23 17:28:06 722416 ----a-w- c:\windows\system32\drivers\sptd.sys
2009-09-17 19:59:32 413696 ----a-w- c:\windows\system32\wrap_oal.dll
2009-09-17 19:59:32 110592 ----a-w- c:\windows\system32\OpenAL32.dll
2009-09-10 05:52:05 257024 ----a-w- c:\windows\system32\msv1_0.dll
2009-09-04 16:44:40 69464 ----a-w- c:\windows\system32\XAPOFX1_3.dll
2009-09-04 16:44:40 515416 ----a-w- c:\windows\system32\XAudio2_5.dll
2009-09-04 16:44:40 238936 ----a-w- c:\windows\system32\xactengine3_5.dll
2009-09-04 16:29:34 453456 ----a-w- c:\windows\system32\d3dx10_42.dll
2009-09-04 16:29:34 235344 ----a-w- c:\windows\system32\d3dx11_42.dll
2009-09-04 16:29:32 5501792 ----a-w- c:\windows\system32\d3dcsx_42.dll
2009-09-04 16:29:32 1974616 ----a-w- c:\windows\system32\D3DCompiler_42.dll
2009-09-04 16:29:30 1892184 ----a-w- c:\windows\system32\D3DX9_42.dll
2009-09-03 07:04:15 1320960 ----a-w- c:\windows\system32\CertEnroll.dll
2009-08-29 06:57:31 34816 ----a-w- c:\windows\system32\msasn1.dll
2009-08-29 06:54:52 12625408 ----a-w- c:\windows\system32\wmploc.DLL
2009-07-14 04:56:42 31548 ----a-w- c:\windows\inf\perflib\0409\perfd.dat
2009-07-14 04:56:42 31548 ----a-w- c:\windows\inf\perflib\0409\perfc.dat
2009-07-14 04:56:42 291294 ----a-w- c:\windows\inf\perflib\0409\perfi.dat
2009-07-14 04:56:42 291294 ----a-w- c:\windows\inf\perflib\0409\perfh.dat
2009-07-14 04:41:57 174 --sha-w- c:\program files\desktop.ini
2009-07-14 00:34:40 291294 ----a-w- c:\windows\inf\perflib\0000\perfi.dat
2009-07-14 00:34:40 291294 ----a-w- c:\windows\inf\perflib\0000\perfh.dat
2009-07-14 00:34:38 31548 ----a-w- c:\windows\inf\perflib\0000\perfd.dat
2009-07-14 00:34:38 31548 ----a-w- c:\windows\inf\perflib\0000\perfc.dat
2009-06-10 21:26:35 9633792 --sha-r- c:\windows\fonts\StaticCache.dat
2009-07-14 01:14:45 396800 --sha-w- c:\windows\winsxs\x86_microsoft-windows-mail-app_31bf3856ad364e35_6.1.7600.16385_none_f12e83abb108c86c\WinMail.exe

============= FINISH: 15:43:01,26 ===============

Dakujem...no nieco podozrive ti tam bezi...

Stiahni OTL. Uloz na plochu a spust dvojklikom subor "OTL.exe". Otvori sa okno programu, v nom zaskrtni "Scan All Users", "Lop" aj "Purity Check" a "File Scan" zmen na 7 dni miesto 30. Potom klikni na "Run Scan". Zacne scan pocitaca, po jeho ukonceni sa otvoria dva reporty - obsah oboch potrebujem vidiet.

tu je OTL.txt:
OTL logfile created on: 20. 11. 2009 16:47:49 - Run 1
OTL by OldTimer - Version 3.1.6.0 Folder = D:\Downloads
Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 0000041b | Country: Slovenská republika | Language: SKY | Date Format: d. M. yyyy

2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 50,15% Memory free
4,00 Gb Paging File | 2,96 Gb Available in Paging File | 74,16% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 19,53 Gb Total Space | 4,52 Gb Free Space | 23,14% Space Free | Partition Type: NTFS
Drive D: | 278,56 Gb Total Space | 155,24 Gb Free Space | 55,73% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
Drive H: | 298,09 Gb Total Space | 16,94 Gb Free Space | 5,68% Space Free | Partition Type: NTFS
I: Drive not present or media not loaded

Computer Name: WEBKAR-PC
Current User Name: webkar
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 7 Days
Output = Standard

========== Processes (SafeList) ==========

PRC - [2009/11/20 16:46:54 | 00,529,408 | ---- | M] (OldTimer Tools) -- D:\Downloads\OTL.exe
PRC - [2009/11/20 15:02:39 | 00,189,104 | ---- | M] () -- C:\Windows\System32\PnkBstrB.exe
PRC - [2009/11/16 19:05:00 | 00,075,064 | ---- | M] () -- C:\Windows\System32\PnkBstrA.exe
PRC - [2009/11/03 04:43:31 | 00,908,248 | ---- | M] (Mozilla Corporation) -- D:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2009/10/12 13:35:42 | 00,149,280 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jusched.exe
PRC - [2009/09/27 16:47:00 | 00,215,656 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvvsvc.exe
PRC - [2009/09/27 16:47:00 | 00,215,656 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvvsvc.exe
PRC - [2009/09/02 14:27:36 | 25,623,336 | R--- | M] (Skype Technologies S.A.) -- C:\Program Files\Skype\Phone\Skype.exe
PRC - [2009/09/02 14:27:36 | 00,077,360 | R--- | M] (Skype Technologies) -- C:\Program Files\Skype\Plugin Manager\skypePM.exe
PRC - [2009/08/16 13:01:16 | 00,222,968 | ---- | M] () -- C:\Program Files\ICQ6Toolbar\ICQ Service.exe
PRC - [2009/08/03 06:35:50 | 02,613,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2009/07/14 02:14:50 | 00,195,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WUDFHost.exe
PRC - [2009/07/14 02:14:47 | 01,121,280 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Media Player\wmpnetwk.exe
PRC - [2009/07/14 02:14:47 | 00,254,976 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\WmiPrvSE.exe
PRC - [2009/07/14 02:14:42 | 00,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2009/07/14 02:14:29 | 03,179,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sppsvc.exe
PRC - [2009/05/14 14:47:54 | 00,731,840 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
PRC - [2009/05/14 14:47:08 | 02,029,640 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
PRC - [2009/04/23 14:51:38 | 00,691,656 | ---- | M] (DT Soft Ltd) -- D:\Program Files\DAEMON Tools Lite\daemon.exe
PRC - [2009/03/01 11:59:42 | 00,172,792 | ---- | M] (ICQ, LLC.) -- C:\Program Files\ICQ6.5\ICQ.exe
PRC - [2009/02/27 16:10:28 | 00,035,696 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Adobe\Reader 9.0\Reader\reader_sl.exe
PRC - [2009/01/26 15:31:16 | 02,144,088 | RHS- | M] (Safer Networking Limited) -- D:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
PRC - [2007/10/25 15:37:32 | 02,178,832 | ---- | M] () -- C:\Program Files\Logitech\QuickCam\Quickcam.exe
PRC - [2007/10/25 15:33:22 | 00,563,984 | ---- | M] () -- C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe
PRC - [2007/10/25 15:32:58 | 00,407,824 | ---- | M] (Logitech Inc.) -- C:\Program Files\Common Files\LogiShrd\LQCVFX\COCIManager.exe
PRC - [2007/10/19 12:19:22 | 00,141,848 | ---- | M] (Logitech Inc.) -- C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
PRC - [2007/10/19 12:17:28 | 00,186,904 | ---- | M] (Logitech Inc.) -- C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
PRC - [2007/10/19 12:17:28 | 00,186,904 | ---- | M] (Logitech Inc.) -- C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe


========== Modules (SafeList) ==========

MOD - [2009/11/20 16:46:54 | 00,529,408 | ---- | M] (OldTimer Tools) -- D:\Downloads\OTL.exe
MOD - [2009/07/14 02:16:15 | 00,099,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sspicli.dll
MOD - [2009/07/14 02:16:13 | 00,092,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sechost.dll
MOD - [2009/07/14 02:16:13 | 00,050,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\samcli.dll
MOD - [2009/07/14 02:16:12 | 00,031,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\profapi.dll
MOD - [2009/07/14 02:16:03 | 00,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netutils.dll
MOD - [2009/07/14 02:15:35 | 00,288,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KernelBase.dll
MOD - [2009/07/14 02:15:13 | 00,067,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dwmapi.dll
MOD - [2009/07/14 02:15:11 | 00,064,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\devobj.dll
MOD - [2009/07/14 02:15:07 | 00,036,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cryptbase.dll
MOD - [2009/07/14 02:15:02 | 00,145,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cfgmgr32.dll
MOD - [2009/07/14 02:03:50 | 01,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc\comctl32.dll
MOD - [2007/10/19 12:19:10 | 00,109,080 | ---- | M] (Logitech Inc.) -- C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcInj.dll


========== Win32 Services (SafeList) ==========

SRV - [2009/11/20 15:02:39 | 00,189,104 | ---- | M] () -- C:\Windows\System32\PnkBstrB.exe -- (PnkBstrB)
SRV - [2009/11/16 19:05:00 | 00,075,064 | ---- | M] () -- C:\Windows\System32\PnkBstrA.exe -- (PnkBstrA)
SRV - [2009/10/30 10:29:51 | 00,655,624 | ---- | M] (Acresso Software Inc.) -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2009/10/14 15:59:05 | 00,316,664 | ---- | M] (Valve Corporation) -- C:\Program Files\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2009/09/27 16:47:00 | 00,215,656 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvvsvc.exe -- (nvsvc)
SRV - [2009/08/16 13:01:16 | 00,222,968 | ---- | M] () -- C:\Program Files\ICQ6Toolbar\ICQ Service.exe -- (ICQ Service)
SRV - [2009/07/14 02:16:21 | 00,185,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wwansvc.dll -- (WwanSvc)
SRV - [2009/07/14 02:16:19 | 00,348,672 | ---- | M] (Microsoft Corporation) -- winhttp.dll -- (WinHttpAutoProxySvc)
SRV - [2009/07/14 02:16:17 | 00,151,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbiosrvc.dll -- (WbioSrvc)
SRV - [2009/07/14 02:16:17 | 00,119,808 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\umpo.dll -- (Power)
SRV - [2009/07/14 02:16:16 | 00,037,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\themeservice.dll -- (Themes)
SRV - [2009/07/14 02:16:15 | 00,053,760 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sppuinotify.dll -- (sppuinotify)
SRV - [2009/07/14 02:16:13 | 00,043,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\RpcEpMap.dll -- (RpcEptMapper)
SRV - [2009/07/14 02:16:13 | 00,025,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009/07/14 02:16:12 | 01,004,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)
SRV - [2009/07/14 02:16:12 | 00,269,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pnrpsvc.dll -- (PNRPsvc)
SRV - [2009/07/14 02:16:12 | 00,269,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pnrpsvc.dll -- (p2pimsvc)
SRV - [2009/07/14 02:16:12 | 00,165,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\provsvc.dll -- (HomeGroupProvider)
SRV - [2009/07/14 02:16:12 | 00,020,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pnrpauto.dll -- (PNRPAutoReg)
SRV - [2009/07/14 02:15:41 | 00,680,960 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2009/07/14 02:15:36 | 00,194,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ListSvc.dll -- (HomeGroupListener)
SRV - [2009/07/14 02:15:21 | 00,797,696 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\FntCache.dll -- (FontCache)
SRV - [2009/07/14 02:15:11 | 00,253,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dhcpcore.dll -- (Dhcp)
SRV - [2009/07/14 02:15:10 | 00,218,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\defragsvc.dll -- (defragsvc)
SRV - [2009/07/14 02:14:59 | 00,076,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\bdesvc.dll -- (BDESVC)
SRV - [2009/07/14 02:14:58 | 00,088,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\AxInstSv.dll -- (AxInstSV)
SRV - [2009/07/14 02:14:53 | 00,027,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\appidsvc.dll -- (AppIDSvc)
SRV - [2009/07/14 02:14:47 | 01,121,280 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Media Player\wmpnetwk.exe -- (WMPNetworkSvc)
SRV - [2009/07/14 02:14:29 | 03,179,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sppsvc.exe -- (sppsvc)
SRV - [2009/07/14 02:14:19 | 00,557,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\ehome\ehrecvr.exe -- (ehRecvr)
SRV - [2009/07/14 02:14:19 | 00,094,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\ehome\ehsched.exe -- (ehSched)
SRV - [2009/06/10 22:23:09 | 00,066,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2009/06/10 22:14:51 | 00,042,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe -- (FontCache3.0.0.0)
SRV - [2009/06/10 22:14:05 | 00,128,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe -- (NetTcpPortSharing)
SRV - [2009/06/10 22:14:02 | 00,878,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe -- (idsvc)
SRV - [2009/05/14 14:54:22 | 00,020,680 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe -- (EhttpSrv)
SRV - [2009/05/14 14:47:54 | 00,731,840 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe -- (ekrn)
SRV - [2007/10/19 12:21:16 | 00,141,848 | ---- | M] (Logitech Inc.) -- C:\Program Files\Common Files\LogiShrd\SrvLnch\SrvLnch.exe -- (LVSrvLauncher)
SRV - [2007/10/19 12:19:22 | 00,141,848 | ---- | M] (Logitech Inc.) -- C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe -- (LVPrcSrv)
SRV - [2007/10/19 12:17:28 | 00,186,904 | ---- | M] (Logitech Inc.) -- C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe -- (LVCOMSer)
SRV - [2003/07/28 18:28:22 | 00,089,136 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE -- (ose)


========== Driver Services (SafeList) ==========

DRV - [2009/09/27 22:12:22 | 09,509,832 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm)
DRV - [2009/09/26 18:46:34 | 00,025,280 | ---- | M] (LogMeIn, Inc.) -- C:\Windows\System32\drivers\hamachi.sys -- (hamachi)
DRV - [2009/09/23 18:28:06 | 00,722,416 | ---- | M] () -- C:\Windows\System32\Drivers\sptd.sys -- (sptd)
DRV - [2009/09/17 18:59:47 | 00,298,496 | ---- | M] (Analog Devices, Inc.) -- C:\Windows\System32\drivers\ADIHdAud.sys -- (ADIHdAudAddService)
DRV - [2009/07/14 02:26:21 | 00,015,952 | ---- | M] (CMD Technology, Inc.) -- C:\Windows\system32\DRIVERS\cmdide.sys -- (cmdide)
DRV - [2009/07/14 02:26:17 | 00,297,552 | ---- | M] (Adaptec, Inc.) -- C:\Windows\system32\DRIVERS\adpahci.sys -- (adpahci)
DRV - [2009/07/14 02:26:15 | 00,422,976 | ---- | M] (Adaptec, Inc.) -- C:\Windows\system32\DRIVERS\adp94xx.sys -- (adp94xx)
DRV - [2009/07/14 02:26:15 | 00,159,312 | ---- | M] (AMD Technologies Inc.) -- C:\Windows\system32\DRIVERS\amdsbs.sys -- (amdsbs)
DRV - [2009/07/14 02:26:15 | 00,146,512 | ---- | M] (Adaptec, Inc.) -- C:\Windows\system32\DRIVERS\adpu320.sys -- (adpu320)
DRV - [2009/07/14 02:26:15 | 00,086,608 | ---- | M] (Adaptec, Inc.) -- C:\Windows\system32\DRIVERS\arcsas.sys -- (arcsas)
DRV - [2009/07/14 02:26:15 | 00,079,952 | ---- | M] (Advanced Micro Devices) -- C:\Windows\system32\DRIVERS\amdsata.sys -- (amdsata)
DRV - [2009/07/14 02:26:15 | 00,076,368 | ---- | M] (Adaptec, Inc.) -- C:\Windows\system32\DRIVERS\arc.sys -- (arc)
DRV - [2009/07/14 02:26:15 | 00,023,616 | ---- | M] (Advanced Micro Devices) -- C:\Windows\system32\DRIVERS\amdxata.sys -- (amdxata)
DRV - [2009/07/14 02:26:15 | 00,014,400 | ---- | M] (Acer Laboratories Inc.) -- C:\Windows\system32\DRIVERS\aliide.sys -- (aliide)
DRV - [2009/07/14 02:20:44 | 00,142,416 | ---- | M] (NVIDIA Corporation) -- C:\Windows\system32\DRIVERS\nvstor.sys -- (nvstor)
DRV - [2009/07/14 02:20:44 | 00,117,312 | ---- | M] (NVIDIA Corporation) -- C:\Windows\system32\DRIVERS\nvraid.sys -- (nvraid)
DRV - [2009/07/14 02:20:44 | 00,044,624 | ---- | M] (IBM Corporation) -- C:\Windows\system32\DRIVERS\nfrd960.sys -- (nfrd960)
DRV - [2009/07/14 02:20:37 | 00,089,168 | ---- | M] (LSI Corporation) -- C:\Windows\system32\DRIVERS\lsi_sas.sys -- (LSI_SAS)
DRV - [2009/07/14 02:20:36 | 00,332,352 | ---- | M] (Intel Corporation) -- C:\Windows\system32\DRIVERS\iaStorV.sys -- (iaStorV)
DRV - [2009/07/14 02:20:36 | 00,235,584 | ---- | M] (LSI Corporation, Inc.) -- C:\Windows\system32\DRIVERS\MegaSR.sys -- (MegaSR)
DRV - [2009/07/14 02:20:36 | 00,133,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Drivers\ksecpkg.sys -- (KSecPkg)
DRV - [2009/07/14 02:20:36 | 00,096,848 | ---- | M] (LSI Corporation) -- C:\Windows\system32\DRIVERS\lsi_scsi.sys -- (LSI_SCSI)
DRV - [2009/07/14 02:20:36 | 00,095,824 | ---- | M] (LSI Corporation) -- C:\Windows\system32\DRIVERS\lsi_fc.sys -- (LSI_FC)
DRV - [2009/07/14 02:20:36 | 00,054,864 | ---- | M] (LSI Corporation) -- C:\Windows\system32\DRIVERS\lsi_sas2.sys -- (LSI_SAS2)
DRV - [2009/07/14 02:20:36 | 00,041,040 | ---- | M] (Intel Corp./ICP vortex GmbH) -- C:\Windows\system32\DRIVERS\iirsp.sys -- (iirsp)
DRV - [2009/07/14 02:20:36 | 00,030,800 | ---- | M] (LSI Corporation) -- C:\Windows\system32\DRIVERS\megasas.sys -- (megasas)
DRV - [2009/07/14 02:20:36 | 00,013,904 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\hwpolicy.sys -- (hwpolicy)
DRV - [2009/07/14 02:20:28 | 00,453,712 | ---- | M] (Emulex) -- C:\Windows\system32\DRIVERS\elxstor.sys -- (elxstor)
DRV - [2009/07/14 02:20:28 | 00,070,720 | ---- | M] (Adaptec, Inc.) -- C:\Windows\system32\DRIVERS\djsvs.sys -- (aic78xx)
DRV - [2009/07/14 02:20:28 | 00,067,152 | ---- | M] (Hewlett-Packard Company) -- C:\Windows\system32\DRIVERS\HpSAMD.sys -- (HpSAMD)
DRV - [2009/07/14 02:20:28 | 00,046,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\fsdepends.sys -- (FsDepends)
DRV - [2009/07/14 02:19:11 | 00,141,904 | ---- | M] (VIA Technologies Inc.,Ltd) -- C:\Windows\system32\DRIVERS\vsmraid.sys -- (vsmraid)
DRV - [2009/07/14 02:19:10 | 00,175,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\DRIVERS\vmbus.sys -- (vmbus)
DRV - [2009/07/14 02:19:10 | 00,159,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\DRIVERS\vhdmp.sys -- (vhdmp)
DRV - [2009/07/14 02:19:10 | 00,040,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\DRIVERS\vmstorfl.sys -- (storflt)
DRV - [2009/07/14 02:19:10 | 00,032,832 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\DRIVERS\vdrvroot.sys -- (vdrvroot)
DRV - [2009/07/14 02:19:10 | 00,028,224 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\DRIVERS\storvsc.sys -- (storvsc)
DRV - [2009/07/14 02:19:10 | 00,019,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\wimmount.sys -- (WIMMount)
DRV - [2009/07/14 02:19:10 | 00,016,976 | ---- | M] (VIA Technologies, Inc.) -- C:\Windows\system32\DRIVERS\viaide.sys -- (viaide)
DRV - [2009/07/14 02:19:04 | 01,383,488 | ---- | M] (QLogic Corporation) -- C:\Windows\system32\DRIVERS\ql2300.sys -- (ql2300)
DRV - [2009/07/14 02:19:04 | 00,173,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\rdyboost.sys -- (rdyboost)
DRV - [2009/07/14 02:19:04 | 00,106,064 | ---- | M] (QLogic Corporation) -- C:\Windows\system32\DRIVERS\ql40xx.sys -- (ql40xx)
DRV - [2009/07/14 02:19:04 | 00,077,888 | ---- | M] (Silicon Integrated Systems) -- C:\Windows\system32\DRIVERS\sisraid4.sys -- (SiSRaid4)
DRV - [2009/07/14 02:19:04 | 00,043,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\pcw.sys -- (pcw)
DRV - [2009/07/14 02:19:04 | 00,040,016 | ---- | M] (Silicon Integrated Systems Corp.) -- C:\Windows\system32\DRIVERS\SiSRaid2.sys -- (SiSRaid2)
DRV - [2009/07/14 02:19:04 | 00,021,072 | ---- | M] (Promise Technology) -- C:\Windows\system32\DRIVERS\stexstor.sys -- (stexstor)
DRV - [2009/07/14 02:17:54 | 00,369,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Drivers\cng.sys -- (CNG)
DRV - [2009/07/14 01:57:25 | 00,272,128 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\System32\Drivers\Brserid.sys -- (Brserid)
DRV - [2009/07/14 01:02:41 | 00,018,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\rdpbus.sys -- (rdpbus)
DRV - [2009/07/14 01:01:41 | 00,007,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\RDPREFMP.sys -- (RDPREFMP)
DRV - [2009/07/14 00:55:00 | 00,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\agilevpn.sys -- (RasAgileVpn)
DRV - [2009/07/14 00:53:51 | 00,009,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\wfplwf.sys -- (WfpLwf)
DRV - [2009/07/14 00:52:44 | 00,027,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\ndiscap.sys -- (NdisCap)
DRV - [2009/07/14 00:52:02 | 00,019,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\vwifibus.sys -- (vwifibus)
DRV - [2009/07/14 00:52:00 | 00,163,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\1394ohci.sys -- (1394ohci)
DRV - [2009/07/14 00:51:35 | 00,008,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\DRIVERS\umpass.sys -- (UmPass)
DRV - [2009/07/14 00:51:11 | 00,034,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\winusb.sys -- (WinUsb)
DRV - [2009/07/14 00:51:08 | 00,004,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\mshidkmdf.sys -- (mshidkmdf)
DRV - [2009/07/14 00:46:55 | 00,012,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\DRIVERS\MTConfig.sys -- (MTConfig)
DRV - [2009/07/14 00:45:26 | 00,031,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\CompositeBus.sys -- (CompositeBus)
DRV - [2009/07/14 00:36:52 | 00,050,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\drivers\appid.sys -- (AppID)
DRV - [2009/07/14 00:33:50 | 00,026,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\scfilter.sys -- (scfilter)
DRV - [2009/07/14 00:28:47 | 00,005,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\DRIVERS\vms3cap.sys -- (s3cap)
DRV - [2009/07/14 00:28:45 | 00,017,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\DRIVERS\VMBusHID.sys -- (VMBusHID)
DRV - [2009/07/14 00:24:05 | 00,032,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\discache.sys -- (discache)
DRV - [2009/07/14 00:19:21 | 00,021,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\DRIVERS\HidBatt.sys -- (HidBatt)
DRV - [2009/07/14 00:16:36 | 00,009,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\DRIVERS\acpipmi.sys -- (AcpiPmi)
DRV - [2009/07/14 00:11:04 | 00,052,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\DRIVERS\amdppm.sys -- (AmdPPM)
DRV - [2009/07/13 23:54:14 | 00,026,624 | ---- | M] (Hauppauge Computer Works, Inc.) -- C:\Windows\system32\drivers\hcw85cir.sys -- (hcw85cir)
DRV - [2009/07/13 23:53:33 | 00,012,160 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\System32\Drivers\BrUsbMdm.sys -- (BrUsbMdm)
DRV - [2009/07/13 23:53:33 | 00,011,904 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\System32\Drivers\BrUsbSer.sys -- (BrUsbSer)
DRV - [2009/07/13 23:53:32 | 00,062,336 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\System32\Drivers\BrSerWdm.sys -- (BrSerWdm)
DRV - [2009/07/13 23:53:28 | 00,013,568 | ---- | M] (Brother Industries, Ltd.) -- C:\Windows\system32\DRIVERS\BrFiltLo.sys -- (BrFiltLo)
DRV - [2009/07/13 23:53:28 | 00,005,248 | ---- | M] (Brother Industries, Ltd.) -- C:\Windows\system32\DRIVERS\BrFiltUp.sys -- (BrFiltUp)
DRV - [2009/07/13 23:02:52 | 00,347,264 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\drivers\nvm62x32.sys -- (NVENETFD)
DRV - [2009/07/13 23:02:49 | 00,229,888 | ---- | M] (Broadcom Corporation) -- C:\Windows\System32\drivers\b57nd60x.sys -- (b57nd60x)
DRV - [2009/07/13 23:02:48 | 03,100,160 | ---- | M] (Broadcom Corporation) -- C:\Windows\system32\DRIVERS\evbdx.sys -- (ebdrv)
DRV - [2009/07/13 23:02:48 | 00,430,080 | ---- | M] (Broadcom Corporation) -- C:\Windows\system32\DRIVERS\bxvbdx.sys -- (b06bdrv)
DRV - [2009/07/13 21:50:20 | 00,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) -- C:\Windows\System32\drivers\secdrv.sys -- (secdrv)
DRV - [2009/05/14 14:49:34 | 00,093,312 | ---- | M] (ESET) -- C:\Windows\System32\drivers\epfwwfpr.sys -- (epfwwfpr)
DRV - [2009/05/14 14:47:14 | 00,107,256 | ---- | M] (ESET) -- C:\Windows\System32\drivers\ehdrv.sys -- (ehdrv)
DRV - [2009/05/14 14:41:10 | 00,114,472 | ---- | M] (ESET) -- C:\Windows\System32\drivers\eamon.sys -- (eamon)
DRV - [2008/09/17 13:14:00 | 00,027,672 | R--- | M] (EnTech Taiwan) -- C:\Windows\System32\drivers\Entech.sys -- (ENTECH)
DRV - [2008/08/14 07:57:42 | 00,074,720 | ---- | M] (Adobe Systems, Inc.) -- C:\Windows\System32\drivers\adfs.sys -- (adfs)
DRV - [2007/10/19 12:16:30 | 02,109,976 | ---- | M] (Logitech Inc.) -- C:\Windows\System32\drivers\Lvckap.sys -- (LVcKap)
DRV - [2007/10/11 17:59:24 | 00,025,624 | ---- | M] () -- C:\Windows\System32\drivers\LVPr2Mon.sys -- (LVPr2Mon)
DRV - [2007/10/11 17:59:02 | 02,142,488 | ---- | M] (Logitech Inc.) -- C:\Windows\System32\drivers\LVMVdrv.sys -- (LVMVDrv)
DRV - [2006/06/27 13:24:16 | 00,031,744 | ---- | M] (AMD, Inc.) -- C:\Windows\System32\drivers\AmdTools.sys -- (AmdTools)
DRV - [2005/01/31 09:13:22 | 00,163,328 | ---- | M] () -- C:\Windows\System32\drivers\LV532AV.SYS -- (PID_0920)
DRV - [2005/01/31 09:12:46 | 00,022,016 | ---- | M] (Logitech Inc.) -- C:\Windows\System32\drivers\LVUSBSta.sys -- (LVUSBSta)
DRV - [2004/08/13 08:56:20 | 00,005,810 | ---- | M] () -- C:\Windows\System32\drivers\ASACPI.sys -- (MTsensor)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\System32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157


IE - HKU\.DEFAULT\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-2653023725-807985876-2853891782-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\system32\blank.htm
IE - HKU\S-1-5-21-2653023725-807985876-2853891782-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKU\S-1-5-21-2653023725-807985876-2853891782-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.orbitdownloader.com
IE - HKU\S-1-5-21-2653023725-807985876-2853891782-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 24 24 BC 54 1E 3A CA 01 [binary data]
IE - HKU\S-1-5-21-2653023725-807985876-2853891782-1001\..\URLSearchHook: - Reg Error: Key error. File not found
IE - HKU\S-1-5-21-2653023725-807985876-2853891782-1001\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
IE - HKU\S-1-5-21-2653023725-807985876-2853891782-1001\S-1-5-21-2653023725-807985876-2853891782-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.5.5

FF - HKLM\software\mozilla\Mozilla Firefox 3.5.5\extensions\\Components: D:\Program Files\Mozilla Firefox\components [2009/11/15 13:00:44 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.5\extensions\\Plugins: D:\Program Files\Mozilla Firefox\plugins [2009/11/15 13:05:05 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2009/09/19 10:09:19 | 00,000,000 | ---D | M]

[2009/11/08 19:59:32 | 00,000,000 | ---D | M] -- C:\Users\webkar\AppData\Roaming\mozilla\Extensions
[2009/11/08 19:59:32 | 00,000,000 | ---D | M] -- C:\Users\webkar\AppData\Roaming\mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
[2009/11/08 19:59:32 | 00,000,000 | ---D | M] -- C:\Users\webkar\AppData\Roaming\mozilla\Firefox\Profiles\jfr0x2ao.default\extensions

O1 HOSTS File: (824 bytes) - C:\Windows\System32\drivers\etc\hosts
O2 - BHO: (IECatcher Class) - {0682E46A-7040-4049-A6FD-0BCFBC673AD8} - C:\Program Files\FlashDownloader\IntQd.dll ()
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - D:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O2 - BHO: (FlashGetBHO) - {b070d3e3-fec0-47d9-8e8a-99d4eeb3d3b0} - C:\Users\webkar\AppData\Roaming\FlashGetBHO\FlashGetBHO3.dll (FlashGet)
O2 - BHO: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O3 - HKLM\..\Toolbar: (ICQToolBar) - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
O3 - HKLM\..\Toolbar: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com)
O3 - HKU\S-1-5-21-2653023725-807985876-2853891782-1001\..\Toolbar\WebBrowser: (no name) - {C55BBCD6-41AD-48AD-9953-3609C48EACC7} - No CLSID value found.
O3 - HKU\S-1-5-21-2653023725-807985876-2853891782-1001\..\Toolbar\WebBrowser: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com)
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [AdobeCS4ServiceManager] C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [amd_dc_opt] C:\Program Files\AMD\amd_dc_opt\amd_dc_opt.exe ()
O4 - HKLM..\Run: [egui] C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (ESET)
O4 - HKLM..\Run: [LogitechCommunicationsManager] C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe ()
O4 - HKLM..\Run: [LogitechQuickCamRibbon] C:\Program Files\Logitech\QuickCam\Quickcam.exe ()
O4 - HKLM..\Run: [QuickTime Task] C:\Program Files\QuickTime\QTTask.exe (Apple Inc.)
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre6\bin\jusched.exe (Sun Microsystems, Inc.)
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-2653023725-807985876-2853891782-1001..\Run: [DAEMON Tools Lite] D:\Program Files\DAEMON Tools Lite\daemon.exe (DT Soft Ltd)
O4 - HKU\S-1-5-21-2653023725-807985876-2853891782-1001..\Run: [ICQ] C:\Program Files\ICQ6.5\ICQ.exe (ICQ, LLC.)
O4 - HKU\S-1-5-21-2653023725-807985876-2853891782-1001..\Run: [MailBlocker] C:\Users\webkar\AppData\Local\Temp\b.exe File not found
O4 - HKU\S-1-5-21-2653023725-807985876-2853891782-1001..\Run: [Skype] C:\Program Files\Skype\Phone\Skype.exe (Skype Technologies S.A.)
O4 - HKU\S-1-5-21-2653023725-807985876-2853891782-1001..\Run: [SpybotSD TeaTimer] D:\Program Files\Spybot - Search & Destroy\TeaTimer.exe (Safer Networking Limited)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O4 - Startup: C:\Users\webkar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\hamachi.lnk = C:\Program Files\Hamachi\hamachi.exe File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableInstallerDetection = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableSecureUIAPaths = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableUIADesktopToggle = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableVirtualization = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ValidateAdminCodeSignatures = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: scforceoption = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: FilterAdministratorToken = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_TEXT = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_BITMAP = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_OEMTEXT = 7
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIB = 8
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_PALETTE = 9
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_UNICODETEXT = 13
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIBV5 = 17
O8 - Extra context menu item: Download All by FlashGet3 - C:\Users\webkar\AppData\Roaming\FlashGetBHO\GetAllUrl.htm ()
O8 - Extra context menu item: Download by FlashDownloader - C:\Program Files\FlashDownloader\IntQd.htm ()
O8 - Extra context menu item: Download by FlashGet3 - C:\Users\webkar\AppData\Roaming\FlashGetBHO\GetUrl.htm ()
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - D:\Program Files\Microsoft Office\OFFICE11\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: Sothink SWF Catcher - C:\Program Files\Common Files\SourceTec\SWF Catcher\InternetExplorer.htm ()
O9 - Extra Button: Zdroje informácií - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\Program Files\Microsoft Office\OFFICE11\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - D:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O9 - Extra Button: Sothink SWF Catcher - {E19ADC6E-3909-43E4-9A89-B7B676377EE3} - C:\Program Files\Common Files\SourceTec\SWF Catcher\InternetExplorer.htm ()
O9 - Extra 'Tools' menuitem : Sothink SWF Catcher - {E19ADC6E-3909-43E4-9A89-B7B676377EE3} - C:\Program Files\Common Files\SourceTec\SWF Catcher\InternetExplorer.htm ()
O9 - Extra Button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe (ICQ, LLC.)
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_16)
O16 - DPF: {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_16)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_16)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 195.34.133.21 212.186.211.21
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp - No CLSID value found
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap {3D9F03FA-7A94-11D3-BE81-0050048385D1} - C:\Program Files\Common Files\microsoft shared\Web Components\10\OWC10.DLL (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - C:\Program Files\Common Files\microsoft shared\Web Components\11\OWC11.DLL (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807553E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\microsoft shared\OFFICE11\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O29 - HKLM SecurityProviders - (credssp.dll) - credssp.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (pku2u) - C:\Windows\System32\pku2u.dll (Microsoft Corporation)
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/06/10 22:42:20 | 00,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2009/02/20 12:01:47 | 00,000,000 | ---D | M] - H:\Autodesk -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck) - File not found
O34 - HKLM BootExecute: (autochk) - C:\Windows\System32\autochk.exe (Microsoft Corporation)
O34 - HKLM BootExecute: (*) - File not found
O35 - comfile [open] -- "%1" %* File not found
O35 - exefile [open] -- "%1" %* File not found

========== Files/Folders - Created Within 7 Days ==========

[2009/11/20 15:42:57 | 00,000,000 | ---D | C] -- C:\Users\webkar\Documents\GTA San Andreas User Files
[2009/11/19 21:04:12 | 00,000,000 | ---D | C] -- C:\Windows\.jagex_cache_32
[2009/11/18 20:34:26 | 00,000,000 | ---D | C] -- C:\Program Files\trend micro
[2009/11/18 20:34:25 | 00,000,000 | ---D | C] -- C:\rsit
[2009/11/18 18:38:51 | 00,000,000 | ---D | C] -- C:\ProgramData\Spybot - Search & Destroy
[2009/11/18 18:38:51 | 00,000,000 | ---D | C] -- C:\ProgramData\Spybot - Search & Destroy
[2009/11/17 20:42:02 | 00,000,000 | ---D | C] -- C:\Users\webkar\AppData\Roaming\FlashGet
[2009/11/17 20:42:02 | 00,000,000 | ---D | C] -- C:\Users\webkar\AppData\Roaming\BITS
[2009/11/17 20:41:57 | 00,000,000 | ---D | C] -- C:\Users\webkar\AppData\Roaming\FlashGetBHO
[2009/11/17 20:41:56 | 00,000,000 | ---D | C] -- C:\Program Files\FlashGet Network
[2009/11/17 20:39:53 | 00,000,000 | ---D | C] -- C:\Program Files\Convert AVI to MP4
[2009/11/16 21:30:51 | 00,000,000 | ---D | C] -- C:\Users\webkar\AppData\Roaming\Publish Providers
[2009/11/16 21:30:51 | 00,000,000 | ---D | C] -- C:\Program Files\VSTplugins
[2009/11/16 21:30:45 | 00,000,000 | ---D | C] -- C:\Users\webkar\AppData\Roaming\Sony
[2009/11/16 21:30:45 | 00,000,000 | ---D | C] -- C:\Users\webkar\AppData\Local\Sony
[2009/11/16 21:28:58 | 00,000,000 | ---D | C] -- C:\ProgramData\Sony
[2009/11/16 21:28:58 | 00,000,000 | ---D | C] -- C:\ProgramData\Sony
[2009/11/16 19:04:54 | 00,000,000 | ---D | C] -- C:\Users\webkar\AppData\Local\PunkBuster
[2009/11/16 16:08:51 | 00,000,000 | ---D | C] -- C:\Users\webkar\AppData\Roaming\Download Manager
[2009/11/16 14:41:01 | 00,000,000 | ---D | C] -- C:\Users\webkar\AppData\Local\SourceTec
[2009/11/16 14:40:53 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\SourceTec
[2009/11/16 14:40:49 | 00,000,000 | ---D | C] -- C:\Program Files\SourceTec
[2009/11/16 14:19:29 | 00,737,280 | ---- | C] (Indigo Rose Corporation) -- C:\Windows\iun6002.exe
[2009/11/16 14:19:29 | 00,000,000 | ---D | C] -- C:\Program Files\FlashDownloader
[2009/11/15 21:01:59 | 00,000,000 | ---D | C] -- C:\Users\webkar\Documents\LEGO Creations
[2009/11/15 21:01:49 | 00,000,000 | ---D | C] -- C:\Users\webkar\AppData\Roaming\LEGO Company
[2009/11/15 17:32:41 | 01,974,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_42.dll
[2009/11/15 17:32:41 | 00,515,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_5.dll
[2009/11/15 17:32:41 | 00,238,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_5.dll
[2009/11/15 17:32:40 | 05,501,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dcsx_42.dll
[2009/11/15 17:32:40 | 01,892,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_42.dll
[2009/11/15 17:32:40 | 00,453,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_42.dll
[2009/11/15 17:32:40 | 00,235,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx11_42.dll
[2009/11/15 17:32:39 | 04,178,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_41.dll
[2009/11/15 17:32:39 | 01,846,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_41.dll
[2009/11/15 17:32:39 | 00,517,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_4.dll
[2009/11/15 17:32:39 | 00,453,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_41.dll
[2009/11/15 17:32:39 | 00,069,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_3.dll
[2009/11/15 17:32:38 | 04,379,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_40.dll
[2009/11/15 17:32:38 | 02,036,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_40.dll
[2009/11/15 17:32:38 | 00,452,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_40.dll
[2009/11/15 17:32:38 | 00,235,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_4.dll
[2009/11/15 17:32:38 | 00,022,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\X3DAudio1_6.dll
[2009/11/15 17:32:37 | 00,514,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_3.dll
[2009/11/15 17:32:37 | 00,235,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_3.dll
[2009/11/15 17:32:37 | 00,070,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_2.dll
[2009/11/15 17:32:37 | 00,023,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\X3DAudio1_5.dll
[2009/11/15 14:34:45 | 00,000,000 | ---D | C] -- C:\Users\webkar\AppData\Roaming\dvdcss
[2009/11/15 13:00:24 | 00,000,000 | ---D | C] -- C:\ProgramData\Apple Computer
[2009/11/15 13:00:24 | 00,000,000 | ---D | C] -- C:\ProgramData\Apple Computer
[2009/11/15 13:00:24 | 00,000,000 | ---D | C] -- C:\Program Files\QuickTime
[2009/11/15 13:00:16 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Apple
[2009/11/15 13:00:08 | 00,000,000 | ---D | C] -- C:\Users\webkar\AppData\Local\Apple
[2009/11/15 13:00:05 | 00,000,000 | ---D | C] -- C:\ProgramData\Apple
[2009/11/15 13:00:05 | 00,000,000 | ---D | C] -- C:\ProgramData\Apple
[2009/11/15 13:00:05 | 00,000,000 | ---D | C] -- C:\Program Files\Apple Software Update
[2009/11/13 22:45:56 | 00,000,000 | ---D | C] -- C:\Program Files\ProfiCAD

========== Files - Modified Within 7 Days ==========

[2009/11/20 16:46:13 | 02,283,192 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2009/11/20 16:45:54 | 00,000,286 | -H-- | M] () -- C:\Windows\tasks\{66BA574B-1E11-49b8-909C-8CC9E0E8E015}.job
[2009/11/20 16:45:40 | 00,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2009/11/20 16:45:38 | 00,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2009/11/20 16:45:05 | 16,094,24896 | -HS- | M] () -- C:\hiberfil.sys
[2009/11/20 16:44:19 | 02,883,584 | -HS- | M] () -- C:\Users\webkar\NTUSER.DAT
[2009/11/20 16:32:53 | 00,087,792 | ---- | M] () -- C:\Users\webkar\AppData\Local\GDIPFONTCACHEV1.DAT
[2009/11/20 16:26:16 | 00,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2009/11/20 16:26:16 | 00,000,000 | RHS- | M] () -- C:\IO.SYS
[2009/11/20 15:02:39 | 00,189,104 | ---- | M] () -- C:\Windows\System32\PnkBstrB.xtr
[2009/11/20 15:02:39 | 00,189,104 | ---- | M] () -- C:\Windows\System32\PnkBstrB.exe
[2009/11/20 14:41:29 | 00,139,584 | ---- | M] () -- C:\Windows\System32\drivers\PnkBstrK.sys
[2009/11/20 14:33:51 | 00,014,016 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2009/11/20 14:33:51 | 00,014,016 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2009/11/20 14:33:23 | 00,606,992 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2009/11/20 14:33:23 | 00,103,370 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2009/11/20 14:33:22 | 00,713,888 | ---- | M] () -- C:\Windows\System32\PerfStringBackup.INI
[2009/11/19 21:54:10 | 03,911,319 | -H-- | M] () -- C:\Users\webkar\AppData\Local\IconCache.db
[2009/11/19 21:27:08 | 00,000,038 | ---- | M] () -- C:\Users\webkar\jagex_runescape_preferences.dat
[2009/11/19 21:07:31 | 00,000,063 | ---- | M] () -- C:\Users\webkar\jagex_runescape_preferences2.dat
[2009/11/18 18:39:00 | 00,000,915 | ---- | M] () -- C:\Users\webkar\Desktop\Spybot - Search & Destroy.lnk
[2009/11/18 18:22:27 | 00,820,699 | ---- | M] () -- C:\Users\webkar\Documents\DSC00769.JPG
[2009/11/18 18:22:27 | 00,067,257 | ---- | M] () -- C:\Users\webkar\Documents\k0j994.jpg
[2009/11/18 15:48:47 | 41,620,992 | ---- | M] () -- C:\Users\webkar\Documents\lkoilh.fla
[2009/11/18 15:48:43 | 01,018,223 | ---- | M] () -- C:\lol.swf
[2009/11/18 15:47:25 | 01,018,223 | ---- | M] () -- C:\Users\webkar\Documents\lkoilh.swf
[2009/11/17 20:47:13 | 00,000,204 | ---- | M] () -- C:\Windows\System32\secustat.dat
[2009/11/17 20:42:07 | 00,000,025 | ---- | M] () -- C:\Windows\libem.INI
[2009/11/17 20:42:02 | 00,001,171 | ---- | M] () -- C:\Users\webkar\Desktop\FlashGet 3.0 Beta.lnk
[2009/11/17 20:27:02 | 00,000,000 | ---- | M] () -- C:\Users\webkar\AppData\Roaming\QD info.ini
[2009/11/17 14:59:01 | 00,027,136 | ---- | M] () -- C:\Users\webkar\Documents\Pijem vodu z.doc
[2009/11/16 21:43:53 | 00,033,472 | ---- | M] () -- C:\Users\webkar\Documents\New track 2.mp3.sfk
[2009/11/16 21:43:51 | 00,389,018 | ---- | M] () -- C:\Users\webkar\Documents\New track 2.mp3
[2009/11/16 21:43:24 | 00,011,088 | ---- | M] () -- C:\Users\webkar\Documents\New track 1.mp3.sfk
[2009/11/16 21:43:12 | 00,129,048 | ---- | M] () -- C:\Users\webkar\Documents\New track 1.mp3
[2009/11/16 21:28:02 | 00,009,728 | ---- | M] () -- C:\Windows\System32\BASSMOD.dll
[2009/11/16 19:05:00 | 00,075,064 | ---- | M] () -- C:\Windows\System32\PnkBstrA.exe
[2009/11/16 14:19:47 | 00,001,943 | ---- | M] () -- C:\Users\webkar\Desktop\FlashDownloader.lnk
[2009/11/16 14:19:37 | 00,737,280 | ---- | M] (Indigo Rose Corporation) -- C:\Windows\iun6002.exe
[2009/11/15 21:01:47 | 00,000,995 | ---- | M] () -- C:\Users\webkar\Desktop\LEGO Digital Designer.lnk
[2009/11/15 17:08:56 | 00,007,617 | ---- | M] () -- C:\Users\webkar\AppData\Local\Resmon.ResmonCfg

========== Files Created - No Company Name ==========

[2009/11/20 16:26:16 | 00,000,000 | RHS- | C] () -- C:\MSDOS.SYS
[2009/11/20 16:26:16 | 00,000,000 | RHS- | C] () -- C:\IO.SYS
[2009/11/19 21:05:20 | 00,000,063 | ---- | C] () -- C:\Users\webkar\jagex_runescape_preferences2.dat
[2009/11/19 21:04:23 | 00,000,038 | ---- | C] () -- C:\Users\webkar\jagex_runescape_preferences.dat
[2009/11/18 18:39:00 | 00,000,915 | ---- | C] () -- C:\Users\webkar\Desktop\Spybot - Search & Destroy.lnk
[2009/11/18 15:48:40 | 01,018,223 | ---- | C] () -- C:\lol.swf
[2009/11/17 20:47:13 | 00,000,204 | ---- | C] () -- C:\Windows\System32\secustat.dat
[2009/11/17 20:42:07 | 00,000,025 | ---- | C] () -- C:\Windows\libem.INI
[2009/11/17 20:42:02 | 00,001,171 | ---- | C] () -- C:\Users\webkar\Desktop\FlashGet 3.0 Beta.lnk
[2009/11/17 14:59:00 | 00,027,136 | ---- | C] () -- C:\Users\webkar\Documents\Pijem vodu z.doc
[2009/11/16 21:43:51 | 00,033,472 | ---- | C] () -- C:\Users\webkar\Documents\New track 2.mp3.sfk
[2009/11/16 21:43:50 | 00,389,018 | ---- | C] () -- C:\Users\webkar\Documents\New track 2.mp3
[2009/11/16 21:43:12 | 00,129,048 | ---- | C] () -- C:\Users\webkar\Documents\New track 1.mp3
[2009/11/16 21:43:12 | 00,011,088 | ---- | C] () -- C:\Users\webkar\Documents\New track 1.mp3.sfk
[2009/11/16 19:05:15 | 00,139,584 | ---- | C] () -- C:\Windows\System32\drivers\PnkBstrK.sys
[2009/11/16 19:05:06 | 00,189,104 | ---- | C] () -- C:\Windows\System32\PnkBstrB.xtr
[2009/11/16 19:05:06 | 00,189,104 | ---- | C] () -- C:\Windows\System32\PnkBstrB.exe
[2009/11/16 19:05:00 | 00,075,064 | ---- | C] () -- C:\Windows\System32\PnkBstrA.exe
[2009/11/16 16:37:22 | 00,820,699 | ---- | C] () -- C:\Users\webkar\Documents\DSC00769.JPG
[2009/11/16 15:06:57 | 01,018,223 | ---- | C] () -- C:\Users\webkar\Documents\lkoilh.swf
[2009/11/16 15:06:03 | 41,620,992 | ---- | C] () -- C:\Users\webkar\Documents\lkoilh.fla
[2009/11/16 14:56:19 | 00,000,286 | -H-- | C] () -- C:\Windows\tasks\{66BA574B-1E11-49b8-909C-8CC9E0E8E015}.job
[2009/11/16 14:27:02 | 00,000,000 | ---- | C] () -- C:\Users\webkar\AppData\Roaming\QD info.ini
[2009/11/16 14:19:32 | 00,001,943 | ---- | C] () -- C:\Users\webkar\Desktop\FlashDownloader.lnk
[2009/11/15 21:01:47 | 00,000,995 | ---- | C] () -- C:\Users\webkar\Desktop\LEGO Digital Designer.lnk
[2009/11/15 17:08:56 | 00,007,617 | ---- | C] () -- C:\Users\webkar\AppData\Local\Resmon.ResmonCfg
[2009/10/30 13:46:46 | 00,484,352 | ---- | C] () -- C:\Windows\System32\lame_enc.dll
[2009/10/21 17:29:58 | 00,000,376 | ---- | C] () -- C:\Windows\ODBC.INI
[2009/10/21 13:45:21 | 00,043,520 | ---- | C] () -- C:\Windows\System32\CmdLineExt03.dll
[2009/10/07 19:40:36 | 00,000,036 | ---- | C] () -- C:\Windows\System32\drvlock.sys
[2009/10/07 19:35:36 | 00,000,066 | ---- | C] () -- C:\Windows\System32\IPCROTIDE.SYS
[2009/10/07 19:35:25 | 00,000,077 | ---- | C] () -- C:\Windows\iPC.ini
[2009/10/07 14:29:09 | 00,009,728 | ---- | C] () -- C:\Windows\System32\BASSMOD.dll
[2009/09/23 18:28:06 | 00,722,416 | ---- | C] () -- C:\Windows\System32\drivers\sptd.sys
[2009/09/17 18:17:36 | 03,911,319 | -H-- | C] () -- C:\Users\webkar\AppData\Local\IconCache.db
[2009/09/17 18:13:59 | 00,087,792 | ---- | C] () -- C:\Users\webkar\AppData\Local\GDIPFONTCACHEV1.DAT
[2009/07/14 17:15:00 | 00,178,432 | ---- | C] () -- C:\Windows\System32\xlive.dll.cat
[2009/07/14 05:52:31 | 00,043,318 | ---- | C] () -- C:\Windows\Fonts\GlobalUserInterface.CompositeFont
[2009/07/14 05:52:31 | 00,029,779 | ---- | C] () -- C:\Windows\Fonts\GlobalSerif.CompositeFont
[2009/07/14 05:52:31 | 00,026,489 | ---- | C] () -- C:\Windows\Fonts\GlobalSansSerif.CompositeFont
[2009/07/14 05:52:31 | 00,026,040 | ---- | C] () -- C:\Windows\Fonts\GlobalMonospace.CompositeFont
[2009/07/14 05:41:57 | 00,000,174 | -HS- | C] () -- C:\Program Files\desktop.ini
[2009/07/14 03:04:23 | 00,000,499 | ---- | C] () -- C:\Windows\win.ini
[2009/07/14 03:04:23 | 00,000,219 | ---- | C] () -- C:\Windows\system.ini
[2009/07/14 00:51:43 | 00,073,728 | ---- | C] () -- C:\Windows\System32\BthpanContextHandler.dll
[2009/07/14 00:42:10 | 00,064,000 | ---- | C] () -- C:\Windows\System32\BWContextHandler.dll
[2007/10/11 17:59:24 | 00,025,624 | ---- | C] () -- C:\Windows\System32\drivers\LVPr2Mon.sys
[2005/01/31 09:13:22 | 00,163,328 | ---- | C] () -- C:\Windows\System32\drivers\LV532AV.SYS
[2005/01/31 07:37:58 | 00,009,255 | ---- | C] () -- C:\Windows\System32\lvcoinst.ini
[2004/08/13 08:56:20 | 00,005,810 | ---- | C] () -- C:\Windows\System32\drivers\ASACPI.sys
[2003/04/07 10:38:32 | 00,005,746 | ---- | C] () -- C:\Windows\System32\OUTLPERF.INI

========== LOP Check ==========

[2009/11/16 21:43:55 | 00,000,000 | ---D | M] -- C:\Users\webkar\AppData\Roaming\AIMP
[2009/11/17 20:47:13 | 00,000,000 | ---D | M] -- C:\Users\webkar\AppData\Roaming\BITS
[2009/09/23 18:38:07 | 00,000,000 | ---D | M] -- C:\Users\webkar\AppData\Roaming\DAEMON Tools Lite
[2009/09/23 18:27:55 | 00,000,000 | ---D | M] -- C:\Users\webkar\AppData\Roaming\DAEMON Tools Pro
[2009/11/17 20:42:02 | 00,000,000 | ---D | M] -- C:\Users\webkar\AppData\Roaming\FlashGet
[2009/11/17 20:41:57 | 00,000,000 | ---D | M] -- C:\Users\webkar\AppData\Roaming\FlashGetBHO
[2009/10/30 14:02:31 | 00,000,000 | ---D | M] -- C:\Users\webkar\AppData\Roaming\Free Mp3 Wma Ogg Converter
[2009/10/07 19:27:18 | 00,000,000 | ---D | M] -- C:\Users\webkar\AppData\Roaming\GetRightToGo
[2009/10/28 18:17:08 | 00,000,000 | ---D | M] -- C:\Users\webkar\AppData\Roaming\GrabPro
[2009/09/29 15:20:01 | 00,000,000 | ---D | M] -- C:\Users\webkar\AppData\Roaming\ICQ
[2009/11/15 21:04:35 | 00,000,000 | ---D | M] -- C:\Users\webkar\AppData\Roaming\LEGO Company
[2009/09/26 16:53:57 | 00,000,000 | ---D | M] -- C:\Users\webkar\AppData\Roaming\Morpheus Software
[2009/11/05 20:55:42 | 00,000,000 | ---D | M] -- C:\Users\webkar\AppData\Roaming\Orbit
[2009/11/16 21:30:51 | 00,000,000 | ---D | M] -- C:\Users\webkar\AppData\Roaming\Publish Providers
[2009/11/16 21:42:08 | 00,000,000 | ---D | M] -- C:\Users\webkar\AppData\Roaming\Sony
[2009/10/09 19:54:52 | 00,000,000 | ---D | M] -- C:\Users\webkar\AppData\Roaming\TeamViewer
[2009/11/19 19:55:51 | 00,000,000 | ---D | M] -- C:\Users\webkar\AppData\Roaming\uTorrent
[2009/11/20 16:45:40 | 00,000,006 | -H-- | M] () -- C:\Windows\Tasks\SA.DAT
[2009/09/17 19:49:08 | 00,025,576 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2009/11/20 16:45:54 | 00,000,286 | -H-- | M] () -- C:\Windows\Tasks\{66BA574B-1E11-49b8-909C-8CC9E0E8E015}.job

========== Purity Check ==========



========== Alternate Data Streams ==========

@Alternate Data Stream - 96 bytes -> C:\ProgramData\TEMP:C8B8CEBD
< End of report >

a tu extras.txt :OTL Extras logfile created on: 20. 11. 2009 16:47:49 - Run 1
OTL by OldTimer - Version 3.1.6.0 Folder = D:\Downloads
Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 0000041b | Country: Slovenská republika | Language: SKY | Date Format: d. M. yyyy

2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 50,15% Memory free
4,00 Gb Paging File | 2,96 Gb Available in Paging File | 74,16% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 19,53 Gb Total Space | 4,52 Gb Free Space | 23,14% Space Free | Partition Type: NTFS
Drive D: | 278,56 Gb Total Space | 155,24 Gb Free Space | 55,73% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
Drive H: | 298,09 Gb Total Space | 16,94 Gb Free Space | 5,68% Space Free | Partition Type: NTFS
I: Drive not present or media not loaded

Computer Name: WEBKAR-PC
Current User Name: webkar
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 7 Days
Output = Standard

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.chm [@ = chm.file] -- "%SystemRoot%\hh.exe" %1
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)

[HKEY_USERS\S-1-5-21-2653023725-807985876-2853891782-1001\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- D:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %* File not found
chm.file [open] -- "%SystemRoot%\hh.exe" %1 File not found
cmdfile [open] -- "%1" %* File not found
comfile [open] -- "%1" %* File not found
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %* File not found
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htmlfile [edit] -- "D:\Program Files\Microsoft Office\OFFICE11\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" -nohome (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "D:\Program Files\Microsoft Office\OFFICE11\msohtmed.exe" /p %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" -nohome (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" -nohome (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %* File not found
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1" File not found
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S File not found
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 File not found
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"$INSTDIR\FlvDetector.exe" = C:\Program Files\FlashGet Network\FlashGet 3\FlvDetector.exe:*:Enabled:FGFlvDetector -- File not found
"C:\Program Files\FlashGet Network\FlashGet 3\FlashGet3.exe" = C:\Program Files\FlashGet Network\FlashGet 3\FlashGet3.exe:*:Enabled:Flashget3 -- (Trend Media Corporation Limited)


========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{00ADFB20-AE75-46F4-AD2C-F48B15AC3100}" = Adobe Color NA Recommended Settings CS4
"{02B244A2-7F6A-42E8-A36F-8C385D7A1625}" = Gothic III
"{03DEEAD2-F3B7-45BF-9006-A25D015F00D2}" = Adobe Flash Player 10 Plugin
"{05308C4E-7285-4066-BAE3-6B50DA6ED755}" = Adobe Update Manager CS4
"{054EFA56-2AC1-48F4-A883-0AB89874B972}" = Adobe Extension Manager CS4
"{098727E1-775A-4450-B573-3F441F1CA243}" = kuler
"{0C34B801-6AEC-4667-B053-03A67E2D0415}" = Apple Application Support
"{0D6013AB-A0C7-41DC-973C-E93129C9A29F}" = Adobe Color JA Extra Settings CS4
"{0D67A4E4-5BE0-4C9A-8AD8-AB552B433F23}" = Adobe Setup
"{0F723FC1-7606-4867-866C-CE80AD292DAF}" = Adobe CSI CS4
"{1618734A-3957-4ADD-8199-F973763109A8}" = Adobe Anchor Service CS4
"{16E16F01-2E2D-4248-A42F-76261C147B6C}" = Adobe Drive CS4
"{16E6D2C1-7C90-4309-8EC4-D2212690AAA4}" = AdobeColorCommonSetRGB
"{197A3012-8C85-4FD3-AB66-9EC7E13DB92E}" = Adobe AIR
"{1A4052AB-BA77-44F7-8EE7-9F9131BFD7A6}" = OF Dragon Rising
"{2168245A-B5AD-40D8-A641-48E3E070B5B6}" = Adobe Flash CS4 STI-en
"{24B0F483-4D4D-49BD-858A-AFCA5C3552FD}_is1" = CobraShare DUploader 1.2.5
"{26A24AE4-039D-4CA4-87B4-2F83216016FF}" = Java(TM) 6 Update 16
"{35D94F92-1D3A-43C5-8605-EA268B1A7BD9}" = PDF Settings CS4
"{39F6E2B4-CFE8-C30A-66E8-489651F0F34C}" = Adobe Media Player
"{3A4E8896-C2E7-4084-A4A4-B8FD1894E739}" = Adobe XMP Panels CS4
"{3A6829EF-0791-4FDD-9382-C690DD0821B9}" = Adobe Flash Player 10 ActiveX
"{3D2C9DE6-9ADE-4252-A241-E43723B0CE02}" = Adobe Color - Photoshop Specific CS4
"{3D3E663D-4E7E-4577-A560-7ECDDD45548A}" = PVSonyDll
"{3DA8DF9A-044E-46C4-8531-DEDBB0EE37FF}" = Adobe WinSoft Linguistics Plugin
"{43509E18-076E-40FE-AF38-CA5ED400A5A9}" = Pixel Bender Toolkit
"{4943EFF5-229F-435D-BEA9-BE3CAEA783A7}" = Adobe Service Manager Extension
"{5570C7F0-43D0-4916-8A9E-AEDD52FA86F4}" = Adobe Color EU Extra Settings CS4
"{60DB5894-B5A1-4B62-B0F3-669A22C0EE5D}" = Adobe Dynamiclink Support
"{60DE4033-9503-48D1-A483-7846BD217CA9}" = ICQ6.5
"{63C24A08-70F3-4C8E-B9FB-9F21A903801D}" = Adobe Color Video Profiles CS CS4
"{63E5CDBF-8214-4F03-84F8-CD3CE48639AD}" = Adobe Photoshop CS4 Support
"{67F0E67A-8E93-4C2C-B29D-47C48262738A}" = Adobe Device Central CS4
"{68243FF8-83CA-466B-B2B8-9F99DA5479C4}" = AdobeColorCommonSetCMYK
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{793D1D88-6141-43DE-BE58-59BCE31B4090}" = Adobe Flash CS4 Extension - Flash Lite STI en
"{7F3AD00A-1819-4B15-BB7D-08B3586336D7}" = 3DMark06
"{820D3F45-F6EE-4AAF-81EF-CE21FF21D230}" = Adobe Type Support CS4
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{83877DB1-8B77-45BC-AB43-2BAC22E093E0}" = Adobe Bridge CS4
"{842B4B72-9E8F-4962-B3C1-1C422A5C4434}" = Suite Shared Configuration CS4
"{86D4B82A-ABED-442A-BE86-96357B70F4FE}" = Ask Toolbar
"{8795CBED-55E2-4693-9F14-84EC446935BE}" = SpeechRedist
"{886C92E6-4AF1-4290-BB86-4B5064A1BB7D}" = AMD Dual-Core Optimizer
"{91E3041B-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003
"{931AB7EA-3656-4BB7-864D-022B09E3DD67}" = Adobe Linguistics CS4
"{945AC98B-3DC8-45BE-BAE0-22CEEE37A103}" = Logitech QuickCam
"{94D398EB-D2FD-4FD1-B8C4-592635E8A191}" = Adobe CMaps CS4
"{9ECE13D2-C028-44CB-8A96-A65196E7BBE7}_is1" = Convert AVI to MP4 1.3
"{A1D5E55A-31DF-49BA-8ABA-2EA9B8AFF8A5}" = Windows 7 x86 Slovak MUI Installer
"{A429C2AE-EBF1-4F81-A221-1C115CAADDAD}" = QuickTime
"{AC76BA86-7AD7-1033-7B44-A91000000001}" = Adobe Reader 9.1
"{B29AD377-CC12-490A-A480-1452337C618D}" = Connect
"{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1" = Spybot - Search & Destroy
"{B45FABE7-D101-4D99-A671-E16DA40AF7F0}" = Microsoft Games for Windows - LIVE
"{B578C85A-A84C-4230-A177-C5B2AF565B8C}" = Microsoft Games for Windows - LIVE Redistributable
"{B65BA85C-0A27-4BC0-A22D-A66F0E5B9494}" = Adobe Photoshop CS4
"{B7E2A724-2774-4AC2-9F0A-B58C7319B6E6}" = Sony Vegas Pro 8.0
"{B8F941EA-FC3E-4915-B5EB-E91A47BF3394}" = Marc Ecko's Getting Up - Contents Under Pressure
"{BB4E33EC-8181-4685-96F7-8554293DEC6A}" = Adobe Output Module
"{BCDB856C-D247-4DEE-9132-89C02F4D6B8C}_is1" = Sothink SWF Decompiler
"{BEAD39CD-901D-4267-8B8B-EAA83CB4B70D}" = Pivot Stickfigure Animator
"{BEE64C14-BEF1-4610-8A68-A16EAA47B882}" = Futuremark SystemInfo
"{C52E3EC1-048C-45E1-8D53-10B0C6509683}" = Adobe Default Language CS4
"{CC75AB5C-2110-4A7F-AF52-708680D22FE8}" = Photoshop Camera Raw
"{D103C4BA-F905-437A-8049-DB24763BBE36}" = Skype™ 4.1
"{DEB90B8E-0DCB-48CE-B90E-8842A2BD643E}" = Adobe Media Encoder CS4
"{DF62F79C-BD69-4737-8C74-93F26B895B91}" = ESET NOD32 Antivirus
"{E4848436-0345-47E2-B648-8B522FCDA623}" = Adobe Photoshop CS4
"{EED50C97-C79E-4149-BD82-7C5A22437708}" = Adobe Setup
"{F0A37341-D692-11D4-A984-009027EC0A9C}" = SoundMAX
"{F0E64E2E-3A60-40D8-A55D-92F6831875DA}" = Adobe Search for Help
"{F6E99614-F042-4459-82B7-8B38B2601356}" = Adobe Flash CS4
"{F8EF2B3F-C345-4F20-8FE4-791A20333CD5}" = Adobe ExtendScript Toolkit CS4
"{F93C84A6-0DC6-42AF-89FA-776F7C377353}" = Adobe PDF Library Files CS4
"{FCDD51BB-CAD0-4BB1-B7DF-CE86D1032794}" = Adobe Fonts All
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"4U WMA MP3 Converter_is1" = 4U WMA MP3 Converter 6.2.8
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe_a68eec966ce913ddaa63251dc82ed31" = Adobe Flash CS4 Professional
"Adobe_faf656ef605427ee2f42989c3ad31b8" = Adobe Photoshop CS4
"AIMP2" = AIMP2
"Algodoo_is1" = Algodoo v1.6.0
"Audacity_is1" = Audacity 1.2.6
"AV Voice Changer Software 6.0" = AV Voice Changer Software 6.0
"Blaze Gif Creator_is1" = Blaze Gif Creator V5.50
"Call of Duty Modern Warfare 2_is1" = Call of Duty Modern Warfare 2
"com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Media Player
"DAEMON Tools Toolbar" = DAEMON Tools Toolbar
"Fast Audio Converter_is1" = Fast Audio Converter version 1.4
"Flash Movie Player" = Flash Movie Player 1.5
"FlashDownloader1.02" = FlashDownloader
"FlashGet 3.0 Beta" = FlashGet 3.0 Beta
"Free Mp3 Wma Converter_is1" = Free Mp3 Wma Converter V 1.81
"Free Mp3 Wma Ogg Converter_is1" = Free Mp3 Wma Ogg Converter 7.0.1
"GCFScape_is1" = GCFScape 1.7.3
"G-steam" = G-steam
"Gtk+ Runtime Environment" = Gtk+ Runtime Environment 2.10.11-1
"Hamachi" = Hamachi 1.0.2.5
"HijackThis" = HijackThis 2.0.2
"ICQToolbar" = ICQ Toolbar
"Industrial Audio Software ePodcast Creator Trial_is1" = Industrial Audio Software ePodcast Creator Trial
"lvdrivers_11.50" = Logitech QuickCam Driver Package
"Marc Ecko's Getting Up - Contents Under Pressure SK_is1" = Marc Ecko's Getting Up - Contents Under Pressure SK 1.00
"Morpheus Photo Morpher_is1" = Morpheus Photo Morpher v3.11
"Mozilla Firefox (3.5.5)" = Mozilla Firefox (3.5.5)
"NVIDIA Drivers" = NVIDIA Drivers
"OpenAL" = OpenAL
"PacSteam" = PacSteam
"PAP 4.0_is1" = PAP 4.0
"PAP project files_is1" = PAP project files
"Privoxy" = Privoxy 3.0.6
"ProfiCAD" = ProfiCAD
"ProxyFirewall_is1" = ProxyFirewall 1.0.4 Beta
"Solar System - Earth 3D Screensaver_is1" = Solar System - Earth 3D Screensaver v1.3
"Solar System - Mars 3D Screensaver_is1" = Solar System - Mars 3D Screensaver v1.2
"Steam App 13210" = Unreal Tournament 3
"Steam App 211" = Source SDK
"synfigstudio" = Synfig Studio
"Tor" = Tor 0.2.1.19
"upnito.sk Manager_is1" = upnito.sk Manager 2
"UT2004" = Unreal Tournament 2004
"uTorrent" = µTorrent
"Valve Hammer Editor" = Valve Hammer Editor
"Vidalia" = Vidalia 0.1.15
"VLC media player" = VLC media player 1.0.3
"WinRAR archiver" = WinRAR archiver

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-2653023725-807985876-2853891782-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"New LEGO Digital Designer" = LEGO Digital Designer
"uTorrent" = µTorrent

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 20. 11. 2009 11:30:54 | Computer Name = webkar-PC | Source = Application Error | ID = 1000
Description = Názov chybovej aplikácie: gta_sa.exe, verzia: 0.0.0.0, časová značka:
0x427101ca Názov chybového modulu: gta_sa.exe, verzia: 0.0.0.0, časová značka: 0x427101ca
Kód
výnimky: 0xc0000005 Odstup chyby: 0x0016f348 Identifikácia chybného procesu: 0x1a90
Čas
spustenia chybnej aplikácie: 0x01ca69f66129a558 Cesta chybnej aplikácie: H:\Program
Files\Rockstar Games\GTA San Andreas\gta_sa.exe Cesta chybného modulu: H:\Program
Files\Rockstar Games\GTA San Andreas\gta_sa.exe Identifikácia hlásenia: b0c0e388-d5e9-11de-9c2e-001d6054baaa

Error - 20. 11. 2009 11:31:34 | Computer Name = webkar-PC | Source = Application Error | ID = 1000
Description = Názov chybovej aplikácie: gta_sa.exe, verzia: 0.0.0.0, časová značka:
0x427101ca Názov chybového modulu: gta_sa.exe, verzia: 0.0.0.0, časová značka: 0x427101ca
Kód
výnimky: 0xc0000005 Odstup chyby: 0x0000fb80 Identifikácia chybného procesu: 0x200
Čas
spustenia chybnej aplikácie: 0x01ca69f681326bc8 Cesta chybnej aplikácie: H:\Program
Files\Rockstar Games\GTA San Andreas\gta_sa.exe Cesta chybného modulu: H:\Program
Files\Rockstar Games\GTA San Andreas\gta_sa.exe Identifikácia hlásenia: c8b2ae18-d5e9-11de-9c2e-001d6054baaa

Error - 20. 11. 2009 11:32:25 | Computer Name = webkar-PC | Source = Application Error | ID = 1000
Description = Názov chybovej aplikácie: gta_sa.exe, verzia: 0.0.0.0, časová značka:
0x427101ca Názov chybového modulu: gta_sa.exe, verzia: 0.0.0.0, časová značka: 0x427101ca
Kód
výnimky: 0xc0000005 Odstup chyby: 0x0000fb80 Identifikácia chybného procesu: 0x1888
Čas
spustenia chybnej aplikácie: 0x01ca69f6a0a2e9d8 Cesta chybnej aplikácie: H:\Program
Files\Rockstar Games\GTA San Andreas\gta_sa.exe Cesta chybného modulu: H:\Program
Files\Rockstar Games\GTA San Andreas\gta_sa.exe Identifikácia hlásenia: e6f17288-d5e9-11de-9c2e-001d6054baaa

Error - 20. 11. 2009 11:34:17 | Computer Name = webkar-PC | Source = Application Error | ID = 1000
Description = Názov chybovej aplikácie: gta_sa.exe, verzia: 0.0.0.0, časová značka:
0x427101ca Názov chybového modulu: gta_sa.exe, verzia: 0.0.0.0, časová značka: 0x427101ca
Kód
výnimky: 0xc0000005 Odstup chyby: 0x0000fb80 Identifikácia chybného procesu: 0x1c00
Čas
spustenia chybnej aplikácie: 0x01ca69f6cc24da58 Cesta chybnej aplikácie: H:\Program
Files\Rockstar Games\GTA San Andreas\gta_sa.exe Cesta chybného modulu: H:\Program
Files\Rockstar Games\GTA San Andreas\gta_sa.exe Identifikácia hlásenia: 2977cff8-d5ea-11de-9c2e-001d6054baaa

Error - 20. 11. 2009 11:35:18 | Computer Name = webkar-PC | Source = Application Error | ID = 1000
Description = Názov chybovej aplikácie: gta_sa.exe, verzia: 0.0.0.0, časová značka:
0x427101ca Názov chybového modulu: gta_sa.exe, verzia: 0.0.0.0, časová značka: 0x427101ca
Kód
výnimky: 0xc0000005 Odstup chyby: 0x0000fb80 Identifikácia chybného procesu: 0x1278
Čas
spustenia chybnej aplikácie: 0x01ca69f707365018 Cesta chybnej aplikácie: H:\Program
Files\Rockstar Games\GTA San Andreas\gta_sa.exe Cesta chybného modulu: H:\Program
Files\Rockstar Games\GTA San Andreas\gta_sa.exe Identifikácia hlásenia: 4df303e8-d5ea-11de-9c2e-001d6054baaa

Error - 20. 11. 2009 11:36:24 | Computer Name = webkar-PC | Source = Application Error | ID = 1000
Description = Názov chybovej aplikácie: gta_sa.exe, verzia: 0.0.0.0, časová značka:
0x427101ca Názov chybového modulu: gta_sa.exe, verzia: 0.0.0.0, časová značka: 0x427101ca
Kód
výnimky: 0xc0000005 Odstup chyby: 0x0000fb80 Identifikácia chybného procesu: 0x2f4
Čas
spustenia chybnej aplikácie: 0x01ca69f72b6d1098 Cesta chybnej aplikácie: H:\Program
Files\Rockstar Games\GTA San Andreas\gta_sa.exe Cesta chybného modulu: H:\Program
Files\Rockstar Games\GTA San Andreas\gta_sa.exe Identifikácia hlásenia: 7547fc28-d5ea-11de-9c2e-001d6054baaa

Error - 20. 11. 2009 11:39:50 | Computer Name = webkar-PC | Source = Application Error | ID = 1000
Description = Názov chybovej aplikácie: gta_sa.exe, verzia: 0.0.0.0, časová značka:
0x427101ca Názov chybového modulu: gta_sa.exe, verzia: 0.0.0.0, časová značka: 0x427101ca
Kód
výnimky: 0xc0000005 Odstup chyby: 0x0000fb80 Identifikácia chybného procesu: 0x1e24
Čas
spustenia chybnej aplikácie: 0x01ca69f7a9534248 Cesta chybnej aplikácie: H:\Program
Files\Rockstar Games\GTA San Andreas\gta_sa.exe Cesta chybného modulu: H:\Program
Files\Rockstar Games\GTA San Andreas\gta_sa.exe Identifikácia hlásenia: efefe328-d5ea-11de-9c2e-001d6054baaa

Error - 20. 11. 2009 11:40:57 | Computer Name = webkar-PC | Source = Application Error | ID = 1000
Description = Názov chybovej aplikácie: gta_sa.exe, verzia: 0.0.0.0, časová značka:
0x427101ca Názov chybového modulu: gta_sa.exe, verzia: 0.0.0.0, časová značka: 0x427101ca
Kód
výnimky: 0xc0000005 Odstup chyby: 0x0016f348 Identifikácia chybného procesu: 0x15c0
Čas
spustenia chybnej aplikácie: 0x01ca69f7cfaa2f60 Cesta chybnej aplikácie: H:\Program
Files\Rockstar Games\GTA San Andreas\gta_sa.exe Cesta chybného modulu: H:\Program
Files\Rockstar Games\GTA San Andreas\gta_sa.exe Identifikácia hlásenia: 183ab100-d5eb-11de-9c2e-001d6054baaa

Error - 20. 11. 2009 11:41:36 | Computer Name = webkar-PC | Source = Application Error | ID = 1000
Description = Názov chybovej aplikácie: gta_sa.exe, verzia: 0.0.0.0, časová značka:
0x427101ca Názov chybového modulu: gta_sa.exe, verzia: 0.0.0.0, časová značka: 0x427101ca
Kód
výnimky: 0xc0000005 Odstup chyby: 0x0016f348 Identifikácia chybného procesu: 0x1bdc
Čas
spustenia chybnej aplikácie: 0x01ca69f7e84fb1c0 Cesta chybnej aplikácie: H:\Program
Files\Rockstar Games\GTA San Andreas\gta_sa.exe Cesta chybného modulu: H:\Program
Files\Rockstar Games\GTA San Andreas\gta_sa.exe Identifikácia hlásenia: 2f4d1040-d5eb-11de-9c2e-001d6054baaa

Error - 20. 11. 2009 11:42:40 | Computer Name = webkar-PC | Source = Application Error | ID = 1000
Description = Názov chybovej aplikácie: gta_sa.exe, verzia: 0.0.0.0, časová značka:
0x427101ca Názov chybového modulu: gta_sa.exe, verzia: 0.0.0.0, časová značka: 0x427101ca
Kód
výnimky: 0xc0000005 Odstup chyby: 0x0000fb80 Identifikácia chybného procesu: 0x1d00
Čas
spustenia chybnej aplikácie: 0x01ca69f80f605da0 Cesta chybnej aplikácie: H:\Program
Files\Rockstar Games\GTA San Andreas\gta_sa.exe Cesta chybného modulu: H:\Program
Files\Rockstar Games\GTA San Andreas\gta_sa.exe Identifikácia hlásenia: 55a6d000-d5eb-11de-9c2e-001d6054baaa

[ System Events ]
Error - 17. 11. 2009 9:27:18 | Computer Name = webkar-PC | Source = Service Control Manager | ID = 7011
Description = Počas čakania na odpoveď transakcie od služby ShellHWDetection bol
dosiahnutý časový limit (30000 ms).

Error - 17. 11. 2009 14:58:30 | Computer Name = webkar-PC | Source = Service Control Manager | ID = 7011
Description = Počas čakania na odpoveď transakcie od služby Netman bol dosiahnutý
časový limit (30000 ms).

Error - 17. 11. 2009 15:56:46 | Computer Name = webkar-PC | Source = Service Control Manager | ID = 7016
Description = Služba NVIDIA Display Driver Service oznámila neplatný aktuálny stav
32.

Error - 17. 11. 2009 16:10:49 | Computer Name = webkar-PC | Source = EventLog | ID = 6008
Description = The previous system shutdown at 21:08:56 on ?17. ?11. ?2009 was unexpected.

Error - 17. 11. 2009 16:31:47 | Computer Name = webkar-PC | Source = Service Control Manager | ID = 7016
Description = Služba NVIDIA Display Driver Service oznámila neplatný aktuálny stav
32.

Error - 18. 11. 2009 14:10:35 | Computer Name = webkar-PC | Source = EventLog | ID = 6008
Description = The previous system shutdown at 19:09:21 on ?18. ?11. ?2009 was unexpected.

Error - 18. 11. 2009 16:41:58 | Computer Name = webkar-PC | Source = Service Control Manager | ID = 7016
Description = Služba NVIDIA Display Driver Service oznámila neplatný aktuálny stav
32.

Error - 19. 11. 2009 14:08:59 | Computer Name = webkar-PC | Source = Service Control Manager | ID = 7016
Description = Služba NVIDIA Display Driver Service oznámila neplatný aktuálny stav
32.

Error - 19. 11. 2009 16:54:17 | Computer Name = webkar-PC | Source = Service Control Manager | ID = 7016
Description = Služba NVIDIA Display Driver Service oznámila neplatný aktuálny stav
32.

Error - 20. 11. 2009 11:45:39 | Computer Name = webkar-PC | Source = EventLog | ID = 6008
Description = The previous system shutdown at 16:43:46 on ?20. ?11. ?2009 was unexpected.


< End of report >

Skopiruj do policka pod nazvom "Custom Scans/Fixes":


Klikni na "Run Fix". Program zacne pracovat, mozny je restart PC. Po nom by sa ti mal objavit log, ten by som rad videl.

tu je ten log:
All processes killed
========== OTL ==========
Service ICQ Service stopped successfully!
Service ICQ Service deleted successfully!
C:\Program Files\ICQ6Toolbar\ICQ Service.exe moved successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Default_Secondary_Page_URL| /E : value set successfully!
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Extensions Off Page| /E : value set successfully!
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Local Page| /E : value set successfully!
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Security Risk Page| /E : value set successfully!
Unable to set value : HKU\S-1-5-21-2653023725-807985876-2853891782-1001\SOFTWARE\Microsoft\Internet Explorer\Main\\Local Page| /E!
Unable to set value : HKU\S-1-5-21-2653023725-807985876-2853891782-1001\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page Redirect Cache_TIMESTAMP| /E!
Registry value HKEY_USERS\S-1-5-21-2653023725-807985876-2853891782-1001\Software\Microsoft\Internet Explorer\URLSearchHooks\\ deleted successfully.
Registry value HKEY_USERS\S-1-5-21-2653023725-807985876-2853891782-1001\Software\Microsoft\Internet Explorer\URLSearchHooks\\{855F3B16-6D32-4fe6-8A56-BBB695989046} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{855F3B16-6D32-4fe6-8A56-BBB695989046}\ deleted successfully.
C:\Program Files\ICQ6Toolbar\ICQToolBar.dll moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}\ deleted successfully.
C:\Program Files\Ask.com\GenericAskToolbar.dll moved successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{855F3B16-6D32-4fe6-8A56-BBB695989046} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{855F3B16-6D32-4fe6-8A56-BBB695989046}\ not found.
File C:\Program Files\ICQ6Toolbar\ICQToolBar.dll not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{D4027C7F-154A-4066-A1AD-4243D8127440} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}\ not found.
File C:\Program Files\Ask.com\GenericAskToolbar.dll not found.
Registry value HKEY_USERS\S-1-5-21-2653023725-807985876-2853891782-1001\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{C55BBCD6-41AD-48AD-9953-3609C48EACC7} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{C55BBCD6-41AD-48AD-9953-3609C48EACC7}\ not found.
Registry value HKEY_USERS\S-1-5-21-2653023725-807985876-2853891782-1001\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{D4027C7F-154A-4066-A1AD-4243D8127440} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}\ not found.
File C:\Program Files\Ask.com\GenericAskToolbar.dll not found.
Registry value HKEY_USERS\S-1-5-21-2653023725-807985876-2853891782-1001\Software\Microsoft\Windows\CurrentVersion\Run\\MailBlocker deleted successfully.
C:\Users\webkar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\hamachi.lnk moved successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\Prefixes\\gopher|:gopher:// /E : value set successfully!
Starting removal of ActiveX control {8AD9C840-044E-11D1-B3E9-00805F499D93}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ deleted successfully.
Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ not found.
Starting removal of ActiveX control {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}\ not found.
Starting removal of ActiveX control {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ not found.
Starting removal of ActiveX control {E2883E8F-472F-4FB0-9522-AC9BF37916A7}
C:\Windows\Downloaded Program Files\gp.inf not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{E2883E8F-472F-4FB0-9522-AC9BF37916A7}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E2883E8F-472F-4FB0-9522-AC9BF37916A7}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{E2883E8F-472F-4FB0-9522-AC9BF37916A7}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E2883E8F-472F-4FB0-9522-AC9BF37916A7}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\msdaipp\ deleted successfully.
File Protocol\Handler\msdaipp - No CLSID value found not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\VMApplet:/pagefile deleted successfully.
========== FILES ==========
C:\Program Files\ICQ6Toolbar folder moved successfully.
C:\Program Files\Ask.com folder moved successfully.
ADS C:\ProgramData\TEMP:C8B8CEBD deleted successfully.
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Public

User: webkar
->Temp folder emptied: 58157960 bytes
->Temporary Internet Files folder emptied: 44155376 bytes
->Java cache emptied: 31205742 bytes
->FireFox cache emptied: 94420374 bytes
->Google Chrome cache emptied: 228122309 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
Windows Temp folder emptied: 4646 bytes
Session Manager Temp folder emptied: 1716111242 bytes
Session Manager Tmp folder emptied: 0 bytes
RecycleBin emptied: 1626661690 bytes

Total Files Cleaned = -473,14 mb


OTL by OldTimer - Version 3.1.6.0 log created on 11202009_232737

Files\Folders moved on Reboot...

Registry entries deleted on Reboot...

OK, ten divny kluc je fuc. Dalsi krok:

Stiahni MbAM. Uloz na plochu, otvor "mbam-setup.exe" a nainstaluj. Updatuj. Potom spravis kompletny scan - co program najde, zmaz. Nasledny log vloz sem.