Nedostupan Facebook, zašto?

evo...probao sam sve...taj postupak čak i prije 2 dana.zbilja nezz kaj da napravim.jel bi pomoglo rušenje windowsa i ponovna inastalacija???

skinem ots, ali kad pokrenem scan ne reaira. 

[code]

OTS logfile created on: 23.8.2011. 15:26:56 - Run 4

OTS by OldTimer - Version 3.1.44.3    Folder = C:\Users\compaq\Desktop

 Ultimate Edition  (Version = 6.1.7600) - Type = NTWorkstation

Internet Explorer (Version = 8.0.7600.16385)

Locale: 0000041a | Country: Hrvatska | Language: HRV | Date Format: d.M.yyyy.

763,00 Mb Total Physical Memory | 194,00 Mb Available Physical Memory | 25,00% Memory free

2,00 Gb Paging File | 1,00 Gb Available in Paging File | 52,00% Paging File free

Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files

Drive C: | 49,90 Gb Total Space | 30,86 Gb Free Space | 61,84% Space Free | Partition Type: NTFS

Drive D: | 124,07 Gb Total Space | 62,72 Gb Free Space | 50,55% Space Free | Partition Type: NTFS

Drive E: | 124,02 Gb Total Space | 111,99 Gb Free Space | 90,29% Space Free | Partition Type: NTFS

F: Drive not present or media not loaded

G: Drive not present or media not loaded

H: Drive not present or media not loaded

I: Drive not present or media not loaded

Computer Name: COMPAQ-PC

Current User Name: compaq

Logged in as Administrator.

Current Boot Mode: Normal

Scan Mode: Current user

Company Name Whitelist: Off

Skip Microsoft Files: Off

File Age = 30 Days

[Processes - Safe List]

ots.exe -> C:\Users\compaq\Desktop\OTS.exe -> [2011.08.23 15:13:41 | 000,645,632 | ---- | M] (OldTimer Tools)

googlecrashhandler.exe -> C:\Users\compaq\AppData\Local\Google\Update\1.3.21.65\GoogleCrashHandler.exe -> [2011.07.31 23:31:59 | 000,140,952 | ---- | M] (Google Inc.)

utorrent.exe -> C:\Program Files\uTorrent\uTorrent.exe -> [2011.07.19 12:44:50 | 000,639,864 | ---- | M] (BitTorrent, Inc.)

sweetim.exe -> C:\Program Files\SweetIM\Messenger\SweetIM.exe -> [2010.10.13 16:21:08 | 000,111,928 | R--- | M] (SweetIM Technologies Ltd.)

atieclxx.exe -> C:\Windows\System32\atieclxx.exe -> [2010.09.29 22:49:36 | 000,380,928 | ---- | M] (AMD)

atiesrxx.exe -> C:\Windows\System32\atiesrxx.exe -> [2010.09.29 22:49:10 | 000,176,128 | ---- | M] (AMD)

ekrn.exe -> C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe -> [2010.06.24 09:27:12 | 000,810,144 | ---- | M] (ESET)

egui.exe -> C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe -> [2010.06.24 09:27:06 | 002,202,704 | ---- | M] (ESET)

taskhost.exe -> C:\Windows\System32\taskhost.exe -> [2009.07.14 03:14:42 | 000,049,152 | ---- | M] (Microsoft Corporation)

[Modules - No Company Name]

system.windows.forms.ni.dll -> C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\ad9c2f4737e1e07fa774af31a7d74235\System.Windows.Forms.ni.dll -> [2011.08.22 15:25:12 | 012,431,360 | ---- | M] ()

system.runtime.remoting.ni.dll -> C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\456d5e9d3a0a37697ab28c150e9ac5b7\System.Runtime.Remoting.ni.dll -> [2011.08.22 15:24:27 | 000,771,584 | ---- | M] ()

system.web.ni.dll -> C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\1f8e3dde1c848c4c5ee635aa0dcfcfdd\System.Web.ni.dll -> [2011.08.22 15:24:04 | 011,807,744 | ---- | M] ()

system.drawing.ni.dll -> C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\eba4ec48e3f7f16864c6d96f510fafd9\System.Drawing.ni.dll -> [2011.08.22 15:23:41 | 001,586,688 | ---- | M] ()

system.configuration.ni.dll -> C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\0bddc91cbf37d143f08f6684b2919566\System.Configuration.ni.dll -> [2011.08.22 15:23:13 | 000,971,264 | ---- | M] ()

system.xml.ni.dll -> C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\155679a9c8991cc33f90d6b27bac1977\System.Xml.ni.dll -> [2011.08.22 15:23:10 | 005,452,800 | ---- | M] ()

system.ni.dll -> C:\Windows\assembly\NativeImages_v2.0.50727_32\System\610374fef100556da252243e673ac64b\System.ni.dll -> [2011.08.22 15:22:56 | 007,949,312 | ---- | M] ()

mscorlib.ni.dll -> C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\23bc3936180ff789f44259a211dfc7fc\mscorlib.ni.dll -> [2011.08.22 15:22:24 | 011,490,304 | ---- | M] ()

ppgooglenaclpluginchrome.dll -> C:\Users\compaq\AppData\Local\Google\Chrome\Application\13.0.782.112\ppGoogleNaClPluginChrome.dll -> [2011.08.06 04:21:25 | 000,400,440 | ---- | M] ()

pdf.dll -> C:\Users\compaq\AppData\Local\Google\Chrome\Application\13.0.782.112\pdf.dll -> [2011.08.06 04:21:24 | 004,118,072 | ---- | M] ()

avutil-50.dll -> C:\Users\compaq\AppData\Local\Google\Chrome\Application\13.0.782.112\avutil-50.dll -> [2011.08.06 04:19:58 | 000,104,520 | ---- | M] ()

avformat-52.dll -> C:\Users\compaq\AppData\Local\Google\Chrome\Application\13.0.782.112\avformat-52.dll -> [2011.08.06 04:19:56 | 000,203,848 | ---- | M] ()

avcodec-52.dll -> C:\Users\compaq\AppData\Local\Google\Chrome\Application\13.0.782.112\avcodec-52.dll -> [2011.08.06 04:19:55 | 001,846,344 | ---- | M] ()

gcswf32.dll -> C:\Users\compaq\AppData\Local\Google\Chrome\Application\13.0.782.112\gcswf32.dll -> [2011.08.06 02:29:30 | 006,338,720 | ---- | M] ()

gcswf32.dll -> C:\Users\compaq\AppData\Local\Google\Chrome\APPLIC~1\130782~1.112\gcswf32.dll -> [2011.08.06 02:29:30 | 006,338,720 | ---- | M] ()

cli.aspect.crossdisplay.graphics.dashboard.dll -> C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll -> [2010.09.29 22:11:16 | 000,270,336 | ---- | M] ()

branding.dll -> C:\Program Files\ATI Technologies\ATI.ACE\Branding\Branding.dll -> [2010.08.26 16:51:44 | 000,016,384 | R--- | M] ()

rarext.dll -> C:\Program Files\WinRAR\rarext.dll -> [2009.08.16 17:06:02 | 000,141,312 | ---- | M] ()

[Win32 Services - Safe List]

(TuneUp.Defrag) TuneUp Drive Defrag Service [On_Demand | Stopped] -> C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe -> [2011.07.11 15:59:48 | 000,435,016 | ---- | M] (TuneUp Software)

(Autodesk Licensing Service) Autodesk Licensing Service [On_Demand | Stopped] -> C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe -> [2011.07.11 15:50:24 | 000,085,096 | ---- | M] (Autodesk)

(AMD External Events Utility) AMD External Events Utility [Auto | Running] -> C:\Windows\System32\atiesrxx.exe -> [2010.09.29 22:49:10 | 000,176,128 | ---- | M] (AMD)

(EhttpSrv) ESET HTTP Server [On_Demand | Stopped] -> C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe -> [2010.06.24 09:27:54 | 000,033,584 | ---- | M] (ESET)

(ekrn) ESET Service [Auto | Running] -> C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe -> [2010.06.24 09:27:12 | 000,810,144 | ---- | M] (ESET)

(TuneUp.UtilitiesSvc) TuneUp Utilities Service [Disabled | Stopped] -> C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe -> [2009.10.30 15:28:52 | 001,021,256 | ---- | M] (TuneUp Software)

(UxTuneUp) TuneUp Theme Extension [Auto | Running] -> C:\Windows\System32\uxtuneup.dll -> [2009.10.30 15:24:28 | 000,030,024 | ---- | M] (TuneUp Software)

(SensrSvc) Adaptive Brightness [On_Demand | Stopped] -> C:\Windows\System32\sensrsvc.dll -> [2009.07.14 03:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation)

(PeerDistSvc) BranchCache [On_Demand | Stopped] -> C:\Windows\System32\PeerDistSvc.dll -> [2009.07.14 03:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation)

(WinDefend) Windows Defender [Auto | Running] -> C:\Program Files\Windows Defender\mpsvc.dll -> [2009.07.14 03:15:41 | 000,680,960 | ---- | M] (Microsoft Corporation)

[Driver Services - Safe List]

(sptd) sptd [Kernel | Boot | Running] -> C:\Windows\System32\Drivers\sptd.sys -> [2011.08.18 14:43:06 | 000,443,448 | ---- | M] ()

(teamviewervpn) TeamViewer VPN Adapter [Kernel | On_Demand | Stopped] -> C:\Windows\System32\drivers\teamviewervpn.sys -> [2011.03.30 13:05:55 | 000,025,088 | ---- | M] (TeamViewer GmbH)

(amdkmdag) amdkmdag [Kernel | On_Demand | Running] -> C:\Windows\System32\drivers\atikmdag.sys -> [2010.09.30 00:50:14 | 006,381,568 | ---- | M] (ATI Technologies Inc.)

(amdkmdap) amdkmdap [Kernel | On_Demand | Running] -> C:\Windows\System32\drivers\atikmpag.sys -> [2010.09.29 22:13:18 | 000,221,696 | ---- | M] (Advanced Micro Devices, Inc.)

(eamonm) eamonm [File_System | Auto | Stopped] -> C:\Windows\System32\drivers\eamonm.sys -> [2010.06.24 09:04:14 | 000,136,120 | ---- | M] (ESET)

(AtiPcie) AMD PCI Express (3GIO) Filter [Kernel | Boot | Running] -> C:\Windows\system32\DRIVERS\AtiPcie.sys -> [2010.06.17 05:15:36 | 000,014,392 | ---- | M] (Advanced Micro Devices Inc.)

(amd_sata) amd_sata [Kernel | Boot | Running] -> C:\Windows\system32\DRIVERS\amd_sata.sys -> [2010.05.14 18:04:14 | 000,062,592 | ---- | M] (Advanced Micro Devices)

(amd_xata) amd_xata [Kernel | Boot | Running] -> C:\Windows\system32\DRIVERS\amd_xata.sys -> [2010.05.14 18:04:14 | 000,024,192 | ---- | M] (Advanced Micro Devices)

(usbfilter) AMD USB Filter Driver [Kernel | On_Demand | Running] -> C:\Windows\System32\drivers\usbfilter.sys -> [2010.04.29 05:43:22 | 000,030,464 | ---- | M] (Advanced Micro Devices)

(ehdrv) ehdrv [Kernel | System | Running] -> C:\Windows\System32\drivers\ehdrv.sys -> [2010.04.28 08:17:46 | 000,114,984 | ---- | M] (ESET)

(epfwwfpr) epfwwfpr [Kernel | Auto | Running] -> C:\Windows\System32\drivers\epfwwfpr.sys -> [2010.04.28 08:17:46 | 000,096,896 | ---- | M] (ESET)

(TuneUpUtilitiesDrv) TuneUpUtilitiesDrv [Kernel | On_Demand | Stopped] -> C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys -> [2009.10.14 07:24:44 | 000,010,064 | ---- | M] (TuneUp Software)

(eamon) eamon [File_System | Auto | Running] -> C:\Windows\System32\drivers\eamon.sys -> [2009.09.11 07:17:16 | 000,116,008 | ---- | M] (ESET)

(vmbus) Virtual Machine Bus [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\vmbus.sys -> [2009.07.14 03:19:10 | 000,175,824 | ---- | M] (Microsoft Corporation)

(storflt) Disk Virtual Machine Bus Acceleration Filter Driver [Kernel | Boot | Running] -> C:\Windows\system32\DRIVERS\vmstorfl.sys -> [2009.07.14 03:19:10 | 000,040,896 | ---- | M] (Microsoft Corporation)

(storvsc) storvsc [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\storvsc.sys -> [2009.07.14 03:19:10 | 000,028,224 | ---- | M] (Microsoft Corporation)

(vwifimp) Microsoft Virtual WiFi Miniport Service [Kernel | On_Demand | Running] -> C:\Windows\System32\drivers\vwifimp.sys -> [2009.07.14 01:52:10 | 000,014,336 | ---- | M] (Microsoft Corporation)

(WinUsb) WinUsb [Kernel | On_Demand | Stopped] -> C:\Windows\System32\drivers\winusb.sys -> [2009.07.14 01:51:11 | 000,034,944 | ---- | M] (Microsoft Corporation)

(s3cap) s3cap [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\vms3cap.sys -> [2009.07.14 01:28:47 | 000,005,632 | ---- | M] (Microsoft Corporation)

(VMBusHID) VMBusHID [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\VMBusHID.sys -> [2009.07.14 01:28:45 | 000,017,920 | ---- | M] (Microsoft Corporation)

(sscdmdm) SAMSUNG CDMA Modem Drivers [Kernel | On_Demand | Stopped] -> C:\Windows\System32\drivers\sscdmdm.sys -> [2005.08.17 07:46:26 | 000,093,872 | ---- | M] (MCCI)

(sscdmdfl) SAMSUNG CDMA Modem Filter [Kernel | On_Demand | Stopped] -> C:\Windows\System32\drivers\sscdmdfl.sys -> [2005.08.17 07:46:20 | 000,008,272 | ---- | M] (MCCI)

(sscdbus) SAMSUNG USB Composite Device driver (WDM) [Kernel | On_Demand | Stopped] -> C:\Windows\System32\drivers\sscdbus.sys -> [2005.08.17 07:45:00 | 000,058,352 | ---- | M] (MCCI)

[Registry - Safe List]

< Internet Explorer Settings [HKEY_LOCAL_MACHINE\] > -> -> 

HKEY_LOCAL_MACHINE\: Main\\"Start Page" -> http://home.sweetim.com -> 

HKEY_LOCAL_MACHINE\: Search\\"SearchAssistant" -> http://start.facemoods.com/?a=stonicla&s={searchTerms}&f=4 -> 

HKEY_LOCAL_MACHINE\: URLSearchHooks\\"{40f5f417-32bb-4296-9446-c1e0094e7d82}" [HKLM] -> C:\Program Files\Uptodown_EN\prxtbUpto.dll [Uptodown EN Toolbar] -> [2011.01.17 16:54:02 | 000,175,912 | ---- | M] (Conduit Ltd.)

HKEY_LOCAL_MACHINE\: URLSearchHooks\\"{872b5b88-9db5-4310-bdd0-ac189557e5f5}" [HKLM] -> C:\Program Files\DVDVideoSoftTB\prxtbDVDV.dll [DVDVideoSoftTB Toolbar] -> [2011.01.17 16:54:02 | 000,175,912 | ---- | M] (Conduit Ltd.)

HKEY_LOCAL_MACHINE\: URLSearchHooks\\"{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}" [HKLM] -> C:\Program Files\uTorrentBar\prxtbuTor.dll [uTorrentBar Toolbar] -> [2011.03.28 18:22:54 | 000,176,936 | ---- | M] (Conduit Ltd.)

< Internet Explorer Settings [HKEY_CURRENT_USER\] > -> -> 

HKEY_CURRENT_USER\: Main\\"Default_Search_URL" -> http://www.google.com/ie -> 

HKEY_CURRENT_USER\: Main\\"Search Page" -> http://www.google.com -> 

HKEY_CURRENT_USER\: Main\\"Start Page" -> about:blank -> 

HKEY_CURRENT_USER\: Search\\"Default_Search_URL" -> http://www.google.com/ie -> 

HKEY_CURRENT_USER\: Search\\"SearchAssistant" -> http://www.google.com/ie -> 

HKEY_CURRENT_USER\: SearchURL\\"" -> http://www.google.com/search?q=%s -> 

HKEY_CURRENT_USER\: URLSearchHooks\\"{40f5f417-32bb-4296-9446-c1e0094e7d82}" [HKLM] -> C:\Program Files\Uptodown_EN\prxtbUpto.dll [Uptodown EN Toolbar] -> [2011.01.17 16:54:02 | 000,175,912 | ---- | M] (Conduit Ltd.)

HKEY_CURRENT_USER\: URLSearchHooks\\"{51a86bb3-6602-4c85-92a5-130ee4864f13}" [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found

HKEY_CURRENT_USER\: URLSearchHooks\\"{872b5b88-9db5-4310-bdd0-ac189557e5f5}" [HKLM] -> C:\Program Files\DVDVideoSoftTB\prxtbDVDV.dll [DVDVideoSoftTB Toolbar] -> [2011.01.17 16:54:02 | 000,175,912 | ---- | M] (Conduit Ltd.)

HKEY_CURRENT_USER\: URLSearchHooks\\"{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}" [HKLM] -> C:\Program Files\uTorrentBar\prxtbuTor.dll [uTorrentBar Toolbar] -> [2011.03.28 18:22:54 | 000,176,936 | ---- | M] (Conduit Ltd.)

HKEY_CURRENT_USER\: URLSearchHooks\\"{EEE6C35D-6118-11DC-9C72-001320C79847}" [HKLM] -> C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll [SweetIM ToolbarURLSearchHook Class] -> [2010.10.18 17:28:00 | 000,138,552 | R--- | M] (SweetIM Technologies Ltd.)

HKEY_CURRENT_USER\: "ProxyEnable" -> 0 -> 

< FireFox Extensions [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Mozilla

HKLM\software\mozilla\Firefox\Extensions ->  -> 

HKLM\software\mozilla\Firefox\Extensions\\m3ffxtbr@mywebsearch.com -> C:\PROGRAM FILES\MYWEBSEARCH\BAR\4.BIN -> 

HKLM\software\mozilla\Thunderbird\Extensions ->  -> 

HKLM\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com -> C:\PROGRAM FILES\ESET\ESET NOD32 ANTIVIRUS\MOZILLA THUNDERBIRD [C:\PROGRAM FILES\ESET\ESET NOD32 ANTIVIRUS\MOZILLA THUNDERBIRD] -> [2011.08.22 12:42:28 | 000,000,000 | ---D | M]

< FireFox Extensions [User Folders] > -> 

< HOSTS File > ([2011.08.21 23:46:05 | 000,202,984 | -H-- | M] - 100098 lines) -> C:\Windows\System32\drivers\etc\hosts -> 

First 25 entries...

Reset Hosts

127.0.0.1     localhost

127.0.0.1 facebook.com

127.0.0.1 www.facebook.com

127.0.0.1 af-za.facebook.com

127.0.0.1 az-az.facebook.com

127.0.0.1 id-id.facebook.com

127.0.0.1 ms-my.facebook.com

127.0.0.1 bs-ba.facebook.com

127.0.0.1 ca-es.facebook.com

127.0.0.1 cs-cz.facebook.com

127.0.0.1 cy-gb.facebook.com

127.0.0.1 da-dk.facebook.com

127.0.0.1 de-de.facebook.com

127.0.0.1 et-ee.facebook.com

127.0.0.1 en-gb.facebook.com

127.0.0.1 es-la.facebook.com

127.0.0.1 eo-eo.facebook.com

127.0.0.1 eu-es.facebook.com

127.0.0.1 tl-ph.facebook.com

127.0.0.1 fo-fo.facebook.com

127.0.0.1 fr-fr.facebook.com

127.0.0.1 fy-nl.facebook.com

127.0.0.1 ga-ie.facebook.com

127.0.0.1 gl-es.facebook.com

< BHO's [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\ -> 

{2EECD738-5844-4a99-B4B6-146BF802613B} [HKLM] -> C:\Program Files\BabylonToolbar\BabylonToolbar\1.4.31.6\bh\BabylonToolbar.dll [Babylon toolbar helper] -> [2011.06.27 11:46:00 | 000,270,960 | ---- | M] (Babylon BHO)

{30F9B915-B755-4826-820B-08FBA6BD249D} [HKLM] -> C:\Program Files\ConduitEngine\prxConduitEngine.dll [Conduit Engine ] -> [2011.03.28 18:22:54 | 000,176,936 | ---- | M] (Conduit Ltd.)

{40f5f417-32bb-4296-9446-c1e0094e7d82} [HKLM] -> C:\Program Files\Uptodown_EN\prxtbUpto.dll [Uptodown EN Toolbar] -> [2011.01.17 16:54:02 | 000,175,912 | ---- | M] (Conduit Ltd.)

{872b5b88-9db5-4310-bdd0-ac189557e5f5} [HKLM] -> C:\Program Files\DVDVideoSoftTB\prxtbDVDV.dll [DVDVideoSoftTB Toolbar] -> [2011.01.17 16:54:02 | 000,175,912 | ---- | M] (Conduit Ltd.)

{99079a25-328f-4bd4-be04-00955acaa0a7} [HKLM] ->  [Searchqu Toolbar] -> File not found

{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} [HKLM] -> C:\Program Files\uTorrentBar\prxtbuTor.dll [uTorrentBar Toolbar] -> [2011.03.28 18:22:54 | 000,176,936 | ---- | M] (Conduit Ltd.)

{EEE6C35C-6118-11DC-9C72-001320C79847} [HKLM] -> C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll [SweetIM Toolbar Helper] -> [2010.10.18 17:28:00 | 001,485,112 | R--- | M] (SweetIM Technologies Ltd.)

< Internet Explorer ToolBars [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ToolBar -> 

"{30F9B915-B755-4826-820B-08FBA6BD249D}" [HKLM] -> C:\Program Files\ConduitEngine\prxConduitEngine.dll [Conduit Engine ] -> [2011.03.28 18:22:54 | 000,176,936 | ---- | M] (Conduit Ltd.)

"{40f5f417-32bb-4296-9446-c1e0094e7d82}" [HKLM] -> C:\Program Files\Uptodown_EN\prxtbUpto.dll [Uptodown EN Toolbar] -> [2011.01.17 16:54:02 | 000,175,912 | ---- | M] (Conduit Ltd.)

"{872b5b88-9db5-4310-bdd0-ac189557e5f5}" [HKLM] -> C:\Program Files\DVDVideoSoftTB\prxtbDVDV.dll [DVDVideoSoftTB Toolbar] -> [2011.01.17 16:54:02 | 000,175,912 | ---- | M] (Conduit Ltd.)

"{98889811-442D-49dd-99D7-DC866BE87DBC}" [HKLM] -> C:\Program Files\BabylonToolbar\BabylonToolbar\1.4.31.6\BabylonToolbarTlbr.dll [Babylon Toolbar] -> [2011.06.27 11:46:00 | 000,237,168 | ---- | M] (Babylon Ltd.)

"{99079a25-328f-4bd4-be04-00955acaa0a7}" [HKLM] ->  [Searchqu Toolbar] -> File not found

"{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}" [HKLM] -> C:\Program Files\uTorrentBar\prxtbuTor.dll [uTorrentBar Toolbar] -> [2011.03.28 18:22:54 | 000,176,936 | ---- | M] (Conduit Ltd.)

"{EEE6C35B-6118-11DC-9C72-001320C79847}" [HKLM] -> C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll [SweetIM Toolbar for Internet Explorer] -> [2010.10.18 17:28:00 | 001,485,112 | R--- | M] (SweetIM Technologies Ltd.)

"10" [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found

< Internet Explorer ToolBars [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\ -> 

WebBrowser\\"{30F9B915-B755-4826-820B-08FBA6BD249D}" [HKLM] -> C:\Program Files\ConduitEngine\prxConduitEngine.dll [Conduit Engine ] -> [2011.03.28 18:22:54 | 000,176,936 | ---- | M] (Conduit Ltd.)

WebBrowser\\"{40F5F417-32BB-4296-9446-C1E0094E7D82}" [HKLM] -> C:\Program Files\Uptodown_EN\prxtbUpto.dll [Uptodown EN Toolbar] -> [2011.01.17 16:54:02 | 000,175,912 | ---- | M] (Conduit Ltd.)

WebBrowser\\"{51A86BB3-6602-4C85-92A5-130EE4864F13}" [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found

WebBrowser\\"{872B5B88-9DB5-4310-BDD0-AC189557E5F5}" [HKLM] -> C:\Program Files\DVDVideoSoftTB\prxtbDVDV.dll [DVDVideoSoftTB Toolbar] -> [2011.01.17 16:54:02 | 000,175,912 | ---- | M] (Conduit Ltd.)

WebBrowser\\"{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}" [HKLM] -> C:\Program Files\uTorrentBar\prxtbuTor.dll [uTorrentBar Toolbar] -> [2011.03.28 18:22:54 | 000,176,936 | ---- | M] (Conduit Ltd.)

WebBrowser\\"{EEE6C35B-6118-11DC-9C72-001320C79847}" [HKLM] -> C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll [SweetIM Toolbar for Internet Explorer] -> [2010.10.18 17:28:00 | 001,485,112 | R--- | M] (SweetIM Technologies Ltd.)

< Run [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run -> 

"egui" -> C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe ["C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice] -> [2010.06.24 09:27:06 | 002,202,704 | ---- | M] (ESET)

"StartCCC" -> C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe ["C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun] -> [2010.09.29 22:03:22 | 000,098,304 | ---- | M] (Advanced Micro Devices, Inc.)

"SweetIM" -> C:\Program Files\SweetIM\Messenger\SweetIM.exe [C:\Program Files\SweetIM\Messenger\SweetIM.exe] -> [2010.10.13 16:21:08 | 000,111,928 | R--- | M] (SweetIM Technologies Ltd.)

"tray_ico" ->  [] -> File not found

"tray_ico2" ->  [] -> File not found

"tray_ico3" ->  [] -> File not found

"tray_ico4" ->  [] -> File not found

< Run [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run -> 

"uTorrent" -> C:\Program Files\uTorrent\uTorrent.exe ["C:\Program Files\uTorrent\uTorrent.exe"  /MINIMIZED] -> [2011.07.19 12:44:50 | 000,639,864 | ---- | M] (BitTorrent, Inc.)

< CurrentVersion Policy Settings - System [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System -> 

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System

\\"ConsentPromptBehaviorUser" ->  [3] -> File not found

\\"EnableLUA" ->  [0] -> File not found

\\"EnableSecureUIAPaths" ->  [0] -> File not found

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats

< CurrentVersion Policy Settings - Explorer [HKEY_CURRENT_USER] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer -> 

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer

\\"NoDriveTypeAutoRun" ->  [145] -> File not found

< Internet Explorer Menu Extensions [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\ -> 

E&xport to Microsoft Excel ->  [res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000] -> File not found

Free YouTube Download -> C:\Users\compaq\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubedownload.htm [C:\Users\compaq\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubedownload.htm] -> [2011.07.24 14:34:50 | 000,000,266 | ---- | M] ()

Free YouTube to MP3 Converter -> C:\Users\compaq\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm [C:\Users\compaq\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm] -> [2011.07.24 14:34:50 | 000,000,280 | ---- | M] ()

< Internet Explorer Extensions [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\ -> 

{2670000A-7350-4f3c-8081-5663EE0C6C49}:{48E73304-E1D6-4330-914C-F5F514E3486C} [HKLM] -> C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll [Button: Pošalji u OneNote] -> [2007.08.29 00:49:28 | 000,606,120 | ---- | M] (Microsoft Corporation)

{2670000A-7350-4f3c-8081-5663EE0C6C49}:{48E73304-E1D6-4330-914C-F5F514E3486C} [HKLM] -> C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll [Menu: Po&šalji u OneNote] -> [2007.08.29 00:49:28 | 000,606,120 | ---- | M] (Microsoft Corporation)

{92780B25-18CC-41C8-B9BE-3C9C571A8263}:{FF059E31-CC5A-4E2E-BF3B-96E929D65503} [HKLM] -> C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL [Button: Research] -> [2006.10.26 20:12:22 | 000,040,424 | ---- | M] (Microsoft Corporation)

< Internet Explorer Plugins [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Plugins\ -> 

< Default Prefix > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\DefaultPrefix

"" -> http://

< Trusted Sites Domains [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> 

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> [Key] 0 domain(s) found. -> 

< Trusted Sites Ranges [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> 

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> [Key] 0 range(s) found. -> 

< Trusted Sites Domains [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> 

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> [Key] 0 domain(s) found. -> 

< Trusted Sites Ranges [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> 

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> [Key] 0 range(s) found. -> 

< Downloaded Program Files > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\ -> 

{D27CDB6E-AE6D-11CF-96B8-444553540000} [HKLM] -> http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab [Shockwave Flash Object] -> 

< Name Servers [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\ -> 

DhcpNameServer -> 192.168.1.1 -> 

< Name Servers [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Adapters\ -> 

{22A68273-FA50-4A9A-8E8D-DBD1D068380F}\\DhcpNameServer -> 192.168.1.1   (802.11n Wireless LAN Card) -> 

< Winlogon settings [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon -> 

*VMApplet* -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\VMApplet -> 

SystemPropertiesPerformance.exe -> C:\Windows\System32\SystemPropertiesPerformance.exe -> [2009.07.14 03:14:42 | 000,081,920 | ---- | M] (Microsoft Corporation)

/pagefile ->  -> File not found

*MultiFile Done* -> -> 

< SSODL [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad -> 

"{E6FB5E20-DE35-11CF-9C87-00AA005127ED}" [HKLM] -> Reg Error: Key error. [WebCheck] -> File not found

< SafeBoot AlternateShell [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot -> 

"AlternateShell" -> services32.exe -> 

< CDROM Autorun Setting [HKEY_LOCAL_MACHINE]> -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom ->

"AutoRun" -> 1 -> 

"DisplayName" -> CD-ROM Driver -> 

"ImagePath" ->  [system32\DRIVERS\cdrom.sys] -> File not found

< Drives with AutoRun files > ->  -> 

C:\autoexec.bat [REM Dummy file for NTVDM | ] -> C:\autoexec.bat [ NTFS ] -> [2009.06.10 23:42:20 | 000,000,024 | ---- | M] ()

< MountPoints2 [HKEY_CURRENT_USER] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2 -> 

\{7f6c6629-b119-11e0-8146-70f395a3774f}

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{7f6c6629-b119-11e0-8146-70f395a3774f}\shell

\{7f6c6629-b119-11e0-8146-70f395a3774f}\shell\\"" ->  [AutoRun] -> File not found

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{7f6c6629-b119-11e0-8146-70f395a3774f}\shell\AutoRun\command

\{7f6c6629-b119-11e0-8146-70f395a3774f}\shell\AutoRun\command\\"" ->  [G:\Setup.exe] -> File not found

< Registry Shell Spawning - Select to Repair > -> HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command -> 

comfile [open] -> "%1" %* -> 

exefile [open] -> "%1" %* -> 

< File Associations - Select to Repair > -> HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>\ -> 

.com [@ = comfile] -> "%1" %* -> 

.exe [@ = exefile] -> "%1" %* -> 

[Registry - Additional Scans - Safe List]

< Drivers32 [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32 -> 

"msacm.l3acm" -> C:\Windows\System32\l3codeca.acm [C:\Windows\System32\l3codeca.acm] -> [2009.07.14 03:14:10 | 000,064,000 | ---- | M] (Fraunhofer Institut Integrierte Schaltungen IIS)

"MSVideo8" -> C:\Windows\System32\vfwwdm32.dll [VfWWDM32.dll] -> [2009.07.14 03:16:17 | 000,056,832 | ---- | M] (Microsoft Corporation)

"vidc.cvid" -> C:\Windows\System32\iccvid.dll [iccvid.dll] -> [2010.07.29 08:30:34 | 000,082,944 | ---- | M] (Radius Inc.)

"vidc.VP60" -> C:\Windows\System32\vp6vfw.dll [C:\Windows\system32\vp6vfw.dll] -> [2004.08.18 03:34:07 | 000,442,368 | ---- | M] (On2.com)

"vidc.VP61" -> C:\Windows\System32\vp6vfw.dll [C:\Windows\system32\vp6vfw.dll] -> [2004.08.18 03:34:07 | 000,442,368 | ---- | M] (On2.com)

< HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost > -> ->

*netsvcs* -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs ->

FastUserSwitchingCompatibility ->  -> File not found

Ias -> C:\Windows\System32\ias.dll -> [2009.07.14 03:15:26 | 000,019,456 | ---- | M] (Microsoft Corporation)

Nla ->  -> File not found

Ntmssvc ->  -> File not found

NWCWorkstation ->  -> File not found

Nwsapagent ->  -> File not found

SRService ->  -> File not found

UxTuneUp -> C:\Windows\System32\uxtuneup.dll -> [2009.10.30 15:24:28 | 000,030,024 | ---- | M] (TuneUp Software)

WmdmPmSp ->  -> File not found

LogonHours ->  -> File not found

PCAudit ->  -> File not found

helpsvc ->  -> File not found

uploadmgr ->  -> File not found

*MultiFile Done* -> -> 

< Registry Shell Spawning - Select to Repair > -> HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command -> 

batfile [open] -> "%1" %* -> 

cmdfile [open] -> "%1" %* -> 

comfile [open] -> "%1" %* -> 

cplfile [cplopen] -> %SystemRoot%\System32\control.exe "%1",%* -> [2009.07.14 03:14:15 | 000,113,152 | ---- | M] (Microsoft Corporation)

exefile [open] -> "%1" %* -> 

hlpfile [open] -> %SystemRoot%\winhlp32.exe %1 -> [2009.07.14 03:14:45 | 000,009,728 | ---- | M] (Microsoft Corporation)

http [open] -> "C:\Program Files\Opera\Opera.exe" "%1" -> 

https [open] -> "C:\Program Files\Opera\Opera.exe" "%1" -> 

inffile [install] -> %SystemRoot%\System32\InfDefaultInstall.exe "%1" -> [2009.07.14 03:14:21 | 000,009,216 | ---- | M] (Microsoft Corporation)

piffile [open] -> "%1" %* -> 

scrfile [config] -> "%1" -> 

scrfile [install] -> rundll32.exe desk.cpl,InstallScreenSaver %l -> 

scrfile [open] -> "%1" /S -> 

Unknown [openas] -> %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 -> 

Directory [cmd] -> cmd.exe /s /k pushd "%V" -> [2009.07.14 03:14:15 | 000,301,568 | ---- | M] (Microsoft Corporation)

Directory [OneNote.Open] -> C:\PROGRA~1\MICROS~2\Office12\ONENOTE.EXE "%L" -> 

< EventViewer Logs - Last 10 Errors > -> Event Information -> Description

Application [ Error ] 19.8.2011. 14:12:45 Computer Name = compaq-PC | Source = MsiInstaller | ID = 10005 -> Description = 

Application [ Error ] 21.8.2011. 17:46:13 Computer Name = compaq-PC | Source = VSS | ID = 8194 -> Description = 

Application [ Error ] 21.8.2011. 18:23:01 Computer Name = compaq-PC | Source = Microsoft-Windows-LoadPerf | ID = 3006 -> Description = Unable to read the performance counter strings defined for the 01a language ID. The first DWORD in the Data section contains the Win32 error code.

Application [ Error ] 21.8.2011. 18:44:16 Computer Name = compaq-PC | Source = Application Hang | ID = 1002 -> Description = The program Opera.exe version 11.50.1074.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.   Process ID: 370   Start Time: 01cc6053cae2bf90   Termination Time: 9   Application Path: C:\Program Files\Opera\Opera.exe   Report Id: 14726c76-cc47-11e0-b597-70f395a3774f  

Application [ Error ] 21.8.2011. 18:58:39 Computer Name = compaq-PC | Source = VSS | ID = 8194 -> Description = 

Application [ Error ] 22.8.2011. 6:42:25 Computer Name = compaq-PC | Source = MsiInstaller | ID = 11704 -> Description = 

Application [ Error ] 22.8.2011. 18:26:57 Computer Name = compaq-PC | Source = RasClient | ID = 20227 -> Description = 

Application [ Error ] 22.8.2011. 18:26:57 Computer Name = compaq-PC | Source = RasClient | ID = 20227 -> Description = 

Application [ Error ] 23.8.2011. 9:15:16 Computer Name = compaq-PC | Source = Application Hang | ID = 1002 -> Description = The program OTS.exe version 3.1.44.3 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.   Process ID: e14   Start Time: 01cc61969e871f0e   Termination Time: 12   Application Path: C:\Users\compaq\Downloads\OTS.exe   Report Id: ee1c3e00-cd89-11e0-bcca-70f395a3774f  

Application [ Error ] 23.8.2011. 9:16:34 Computer Name = compaq-PC | Source = Application Hang | ID = 1002 -> Description = The program OTS.exe version 3.1.44.3 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.   Process ID: b74   Start Time: 01cc6196c61129b9   Termination Time: 33   Application Path: C:\Users\compaq\Downloads\OTS.exe   Report Id: 1b8f9b78-cd8a-11e0-bcca-70f395a3774f  

System [ Error ] 6.8.2011. 5:17:37 Computer Name = compaq-PC | Source = cdrom | ID = 262155 -> Description = The driver detected a controller error on \Device\CdRom0.

System [ Error ] 6.8.2011. 5:17:46 Computer Name = compaq-PC | Source = cdrom | ID = 262155 -> Description = The driver detected a controller error on \Device\CdRom0.

System [ Error ] 6.8.2011. 5:17:54 Computer Name = compaq-PC | Source = cdrom | ID = 262155 -> Description = The driver detected a controller error on \Device\CdRom0.

System [ Error ] 6.8.2011. 5:18:03 Computer Name = compaq-PC | Source = cdrom | ID = 262155 -> Description = The driver detected a controller error on \Device\CdRom0.

System [ Error ] 6.8.2011. 5:18:12 Computer Name = compaq-PC | Source = cdrom | ID = 262155 -> Description = The driver detected a controller error on \Device\CdRom0.

System [ Error ] 6.8.2011. 5:18:20 Computer Name = compaq-PC | Source = cdrom | ID = 262155 -> Description = The driver detected a controller error on \Device\CdRom0.

System [ Error ] 6.8.2011. 5:18:29 Computer Name = compaq-PC | Source = cdrom | ID = 262155 -> Description = The driver detected a controller error on \Device\CdRom0.

System [ Error ] 6.8.2011. 5:18:37 Computer Name = compaq-PC | Source = cdrom | ID = 262155 -> Description = The driver detected a controller error on \Device\CdRom0.

System [ Error ] 6.8.2011. 5:18:46 Computer Name = compaq-PC | Source = cdrom | ID = 262155 -> Description = The driver detected a controller error on \Device\CdRom0.

System [ Error ] 6.8.2011. 8:38:35 Computer Name = compaq-PC | Source = DCOM | ID = 10010 -> Description = 

[Files/Folders - Created Within 30 Days]

 OTS.exe -> C:\Users\compaq\Desktop\OTS.exe -> [2011.08.23 15:13:35 | 000,645,632 | ---- | C] (OldTimer Tools)

 WindowsUpdate -> C:\Users\compaq\AppData\Local\WindowsUpdate -> [2011.08.23 02:37:55 | 000,000,000 | ---D | C]

 PresentationHost.exe -> C:\Windows\System32\PresentationHost.exe -> [2011.08.22 14:17:49 | 000,295,264 | ---- | C] (Microsoft Corporation)

 PresentationHostProxy.dll -> C:\Windows\System32\PresentationHostProxy.dll -> [2011.08.22 14:17:49 | 000,099,176 | ---- | C] (Microsoft Corporation)

 netfxperf.dll -> C:\Windows\System32\netfxperf.dll -> [2011.08.22 14:17:49 | 000,049,472 | ---- | C] (Microsoft Corporation)

 browserchoice.exe -> C:\Windows\System32\browserchoice.exe -> [2011.08.22 13:45:05 | 000,293,376 | ---- | C] (Microsoft Corporation)

 tzres.dll -> C:\Windows\System32\tzres.dll -> [2011.08.22 13:33:02 | 000,002,048 | ---- | C] (Microsoft Corporation)

 mfc42.dll -> C:\Windows\System32\mfc42.dll -> [2011.08.22 13:32:38 | 001,137,664 | ---- | C] (Microsoft Corporation)

 mfc42u.dll -> C:\Windows\System32\mfc42u.dll -> [2011.08.22 13:32:36 | 001,164,288 | ---- | C] (Microsoft Corporation)

 mstime.dll -> C:\Windows\System32\mstime.dll -> [2011.08.22 13:31:53 | 000,606,208 | ---- | C] (Microsoft Corporation)

 msfeeds.dll -> C:\Windows\System32\msfeeds.dll -> [2011.08.22 13:31:52 | 000,599,552 | ---- | C] (Microsoft Corporation)

 iedkcs32.dll -> C:\Windows\System32\iedkcs32.dll -> [2011.08.22 13:31:51 | 000,381,440 | ---- | C] (Microsoft Corporation)

 licmgr10.dll -> C:\Windows\System32\licmgr10.dll -> [2011.08.22 13:31:50 | 000,044,544 | ---- | C] (Microsoft Corporation)

 iepeers.dll -> C:\Windows\System32\iepeers.dll -> [2011.08.22 13:31:49 | 000,185,856 | ---- | C] (Microsoft Corporation)

 msfeedsbs.dll -> C:\Windows\System32\msfeedsbs.dll -> [2011.08.22 13:31:49 | 000,064,512 | ---- | C] (Microsoft Corporation)

 ieui.dll -> C:\Windows\System32\ieui.dll -> [2011.08.22 13:31:48 | 000,176,640 | ---- | C] (Microsoft Corporation)

 url.dll -> C:\Windows\System32\url.dll -> [2011.08.22 13:31:47 | 000,132,096 | ---- | C] (Microsoft Corporation)

 jsproxy.dll -> C:\Windows\System32\jsproxy.dll -> [2011.08.22 13:31:47 | 000,048,128 | ---- | C] (Microsoft Corporation)

 msfeedssync.exe -> C:\Windows\System32\msfeedssync.exe -> [2011.08.22 13:31:47 | 000,012,800 | ---- | C] (Microsoft Corporation)

 mshtml.tlb -> C:\Windows\System32\mshtml.tlb -> [2011.08.22 13:31:46 | 001,638,912 | ---- | C] (Microsoft Corporation)

 html.iec -> C:\Windows\System32\html.iec -> [2011.08.22 13:31:46 | 000,386,048 | ---- | C] (Microsoft Corporation)

 CertEnroll.dll -> C:\Windows\System32\CertEnroll.dll -> [2011.08.22 13:31:30 | 001,320,960 | ---- | C] (Microsoft Corporation)

 winload.exe -> C:\Windows\System32\winload.exe -> [2011.08.22 13:31:28 | 000,507,568 | ---- | C] (Microsoft Corporation)

 winresume.exe -> C:\Windows\System32\winresume.exe -> [2011.08.22 13:31:27 | 000,442,920 | ---- | C] (Microsoft Corporation)

 taskschd.dll -> C:\Windows\System32\taskschd.dll -> [2011.08.22 13:30:30 | 000,496,128 | ---- | C] (Microsoft Corporation)

 wmicmiplugin.dll -> C:\Windows\System32\wmicmiplugin.dll -> [2011.08.22 13:30:30 | 000,351,232 | ---- | C] (Microsoft Corporation)

 taskcomp.dll -> C:\Windows\System32\taskcomp.dll -> [2011.08.22 13:30:29 | 000,305,152 | ---- | C] (Microsoft Corporation)

 schtasks.exe -> C:\Windows\System32\schtasks.exe -> [2011.08.22 13:30:29 | 000,179,712 | ---- | C] (Microsoft Corporation)

 ntkrnlpa.exe -> C:\Windows\System32\ntkrnlpa.exe -> [2011.08.22 13:30:20 | 003,957,120 | ---- | C] (Microsoft Corporation)

 ntoskrnl.exe -> C:\Windows\System32\ntoskrnl.exe -> [2011.08.22 13:30:20 | 003,902,336 | ---- | C] (Microsoft Corporation)

 mfc40.dll -> C:\Windows\System32\mfc40.dll -> [2011.08.22 13:30:08 | 000,954,752 | ---- | C] (Microsoft Corporation)

 mfc40u.dll -> C:\Windows\System32\mfc40u.dll -> [2011.08.22 13:30:07 | 000,954,288 | ---- | C] (Microsoft Corporation)

 conhost.exe -> C:\Windows\System32\conhost.exe -> [2011.08.22 13:29:59 | 000,271,360 | ---- | C] (Microsoft Corporation)

 winsrv.dll -> C:\Windows\System32\winsrv.dll -> [2011.08.22 13:29:59 | 000,169,984 | ---- | C] (Microsoft Corporation)

 api-ms-win-core-libraryloader-l1-1-0.dll -> C:\Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll -> [2011.08.22 13:29:59 | 000,003,584 | -H-- | C] (Microsoft Corporation)

 api-ms-win-core-file-l1-1-0.dll -> C:\Windows\System32\api-ms-win-core-file-l1-1-0.dll -> [2011.08.22 13:29:58 | 000,005,120 | -H-- | C] (Microsoft Corporation)

 api-ms-win-core-heap-l1-1-0.dll -> C:\Windows\System32\api-ms-win-core-heap-l1-1-0.dll -> [2011.08.22 13:29:58 | 000,003,584 | -H-- | C] (Microsoft Corporation)

 api-ms-win-core-sysinfo-l1-1-0.dll -> C:\Windows\System32\api-ms-win-core-sysinfo-l1-1-0.dll -> [2011.08.22 13:29:57 | 000,004,096 | -H-- | C] (Microsoft Corporation)

 api-ms-win-core-synch-l1-1-0.dll -> C:\Windows\System32\api-ms-win-core-synch-l1-1-0.dll -> [2011.08.22 13:29:57 | 000,004,096 | -H-- | C] (Microsoft Corporation)

 api-ms-win-core-misc-l1-1-0.dll -> C:\Windows\System32\api-ms-win-core-misc-l1-1-0.dll -> [2011.08.22 13:29:57 | 000,004,096 | -H-- | C] (Microsoft Corporation)

 api-ms-win-core-localregistry-l1-1-0.dll -> C:\Windows\System32\api-ms-win-core-localregistry-l1-1-0.dll -> [2011.08.22 13:29:57 | 000,004,096 | -H-- | C] (Microsoft Corporation)

 api-ms-win-core-processenvironment-l1-1-0.dll -> C:\Windows\System32\api-ms-win-core-processenvironment-l1-1-0.dll -> [2011.08.22 13:29:57 | 000,003,584 | -H-- | C] (Microsoft Corporation)

 api-ms-win-core-namedpipe-l1-1-0.dll -> C:\Windows\System32\api-ms-win-core-namedpipe-l1-1-0.dll -> [2011.08.22 13:29:57 | 000,003,584 | -H-- | C] (Microsoft Corporation)

 api-ms-win-core-memory-l1-1-0.dll -> C:\Windows\System32\api-ms-win-core-memory-l1-1-0.dll -> [2011.08.22 13:29:57 | 000,003,584 | -H-- | C] (Microsoft Corporation)

 api-ms-win-core-interlocked-l1-1-0.dll -> C:\Windows\System32\api-ms-win-core-interlocked-l1-1-0.dll -> [2011.08.22 13:29:57 | 000,003,584 | -H-- | C] (Microsoft Corporation)

 api-ms-win-core-string-l1-1-0.dll -> C:\Windows\System32\api-ms-win-core-string-l1-1-0.dll -> [2011.08.22 13:29:57 | 000,003,072 | -H-- | C] (Microsoft Corporation)

 api-ms-win-core-rtlsupport-l1-1-0.dll -> C:\Windows\System32\api-ms-win-core-rtlsupport-l1-1-0.dll -> [2011.08.22 13:29:57 | 000,003,072 | -H-- | C] (Microsoft Corporation)

 api-ms-win-core-profile-l1-1-0.dll -> C:\Windows\System32\api-ms-win-core-profile-l1-1-0.dll -> [2011.08.22 13:29:57 | 000,003,072 | -H-- | C] (Microsoft Corporation)

 api-ms-win-core-io-l1-1-0.dll -> C:\Windows\System32\api-ms-win-core-io-l1-1-0.dll -> [2011.08.22 13:29:57 | 000,003,072 | -H-- | C] (Microsoft Corporation)

 api-ms-win-core-handle-l1-1-0.dll -> C:\Windows\System32\api-ms-win-core-handle-l1-1-0.dll -> [2011.08.22 13:29:57 | 000,003,072 | -H-- | C] (Microsoft Corporation)

 api-ms-win-core-fibers-l1-1-0.dll -> C:\Windows\System32\api-ms-win-core-fibers-l1-1-0.dll -> [2011.08.22 13:29:57 | 000,003,072 | -H-- | C] (Microsoft Corporation)

 api-ms-win-core-errorhandling-l1-1-0.dll -> C:\Windows\System32\api-ms-win-core-errorhandling-l1-1-0.dll -> [2011.08.22 13:29:57 | 000,003,072 | -H-- | C] (Microsoft Corporation)

 api-ms-win-core-delayload-l1-1-0.dll -> C:\Windows\System32\api-ms-win-core-delayload-l1-1-0.dll -> [2011.08.22 13:29:57 | 000,003,072 | -H-- | C] (Microsoft Corporation)

 api-ms-win-security-base-l1-1-0.dll -> C:\Windows\System32\api-ms-win-security-base-l1-1-0.dll -> [2011.08.22 13:29:56 | 000,006,144 | -H-- | C] (Microsoft Corporation)

 api-ms-win-core-threadpool-l1-1-0.dll -> C:\Windows\System32\api-ms-win-core-threadpool-l1-1-0.dll -> [2011.08.22 13:29:56 | 000,004,608 | -H-- | C] (Microsoft Corporation)

 api-ms-win-core-processthreads-l1-1-0.dll -> C:\Windows\System32\api-ms-win-core-processthreads-l1-1-0.dll -> [2011.08.22 13:29:56 | 000,004,608 | -H-- | C] (Microsoft Corporation)

 api-ms-win-core-localization-l1-1-0.dll -> C:\Windows\System32\api-ms-win-core-localization-l1-1-0.dll -> [2011.08.22 13:29:56 | 000,004,096 | -H-- | C] (Microsoft Corporation)

 api-ms-win-core-xstate-l1-1-0.dll -> C:\Windows\System32\api-ms-win-core-xstate-l1-1-0.dll -> [2011.08.22 13:29:56 | 000,003,584 | -H-- | C] (Microsoft Corporation)

 api-ms-win-core-util-l1-1-0.dll -> C:\Windows\System32\api-ms-win-core-util-l1-1-0.dll -> [2011.08.22 13:29:56 | 000,003,072 | -H-- | C] (Microsoft Corporation)

 api-ms-win-core-debug-l1-1-0.dll -> C:\Windows\System32\api-ms-win-core-debug-l1-1-0.dll -> [2011.08.22 13:29:56 | 000,003,072 | -H-- | C] (Microsoft Corporation)

 api-ms-win-core-datetime-l1-1-0.dll -> C:\Windows\System32\api-ms-win-core-datetime-l1-1-0.dll -> [2011.08.22 13:29:56 | 000,003,072 | -H-- | C] (Microsoft Corporation)

 api-ms-win-core-console-l1-1-0.dll -> C:\Windows\System32\api-ms-win-core-console-l1-1-0.dll -> [2011.08.22 13:29:55 | 000,003,072 | -H-- | C] (Microsoft Corporation)

 webio.dll -> C:\Windows\System32\webio.dll -> [2011.08.22 13:29:45 | 000,314,368 | ---- | C] (Microsoft Corporation)

 wmploc.DLL -> C:\Windows\System32\wmploc.DLL -> [2011.08.22 13:29:28 | 012,625,408 | ---- | C] (Microsoft Corporation)

 CPFilters.dll -> C:\Windows\System32\CPFilters.dll -> [2011.08.22 13:29:23 | 000,642,048 | ---- | C] (Microsoft Corporation)

 EncDec.dll -> C:\Windows\System32\EncDec.dll -> [2011.08.22 13:29:22 | 000,534,528 | ---- | C] (Microsoft Corporation)

 sbe.dll -> C:\Windows\System32\sbe.dll -> [2011.08.22 13:29:20 | 000,850,432 | ---- | C] (Microsoft Corporation)

 mpg2splt.ax -> C:\Windows\System32\mpg2splt.ax -> [2011.08.22 13:29:20 | 000,199,680 | ---- | C] (Microsoft Corporation)

 dnscacheugc.exe -> C:\Windows\System32\dnscacheugc.exe -> [2011.08.22 13:29:04 | 000,028,672 | ---- | C] (Microsoft Corporation)

 atmfd.dll -> C:\Windows\System32\atmfd.dll -> [2011.08.22 13:28:47 | 000,294,912 | ---- | C] (Adobe Systems Incorporated)

 atmlib.dll -> C:\Windows\System32\atmlib.dll -> [2011.08.22 13:28:46 | 000,034,304 | ---- | C] (Adobe Systems)

 odbcjt32.dll -> C:\Windows\System32\odbcjt32.dll -> [2011.08.22 13:28:41 | 000,319,488 | ---- | C] (Microsoft Corporation)

 odbccp32.dll -> C:\Windows\System32\odbccp32.dll -> [2011.08.22 13:28:41 | 000,122,880 | ---- | C] (Microsoft Corporation)

 odbccu32.dll -> C:\Windows\System32\odbccu32.dll -> [2011.08.22 13:28:41 | 000,086,016 | ---- | C] (Microsoft Corporation)

 odbccr32.dll -> C:\Windows\System32\odbccr32.dll -> [2011.08.22 13:28:41 | 000,081,920 | ---- | C] (Microsoft Corporation)

 odbctrac.dll -> C:\Windows\System32\odbctrac.dll -> [2011.08.22 13:28:40 | 000,163,840 | ---- | C] (Microsoft Corporation)

 fontsub.dll -> C:\Windows\System32\fontsub.dll -> [2011.08.22 13:28:15 | 000,070,656 | ---- | C] (Microsoft Corporation)

 FXSCOVER.exe -> C:\Windows\System32\FXSCOVER.exe -> [2011.08.22 13:28:06 | 000,191,488 | ---- | C] (Microsoft Corporation)

 wmpmde.dll -> C:\Windows\System32\wmpmde.dll -> [2011.08.22 13:27:57 | 000,738,816 | ---- | C] (Microsoft Corporation)

 consent.exe -> C:\Windows\System32\consent.exe -> [2011.08.22 13:27:45 | 000,101,760 | ---- | C] (Microsoft Corporation)

 win32k.sys -> C:\Windows\System32\win32k.sys -> [2011.08.22 13:27:34 | 002,332,672 | ---- | C] (Microsoft Corporation)

 t2embed.dll -> C:\Windows\System32\t2embed.dll -> [2011.08.22 13:27:32 | 000,109,056 | ---- | C] (Microsoft Corporation)

 ir32_32.dll -> C:\Windows\System32\ir32_32.dll -> [2011.08.22 13:27:26 | 000,197,632 | ---- | C] (Intel(R) Corporation)

 iccvid.dll -> C:\Windows\System32\iccvid.dll -> [2011.08.22 13:27:26 | 000,082,944 | ---- | C] (Radius Inc.)

 quartz.dll -> C:\Windows\System32\quartz.dll -> [2011.08.22 13:27:17 | 001,328,640 | ---- | C] (Microsoft Corporation)

 mciavi32.dll -> C:\Windows\System32\mciavi32.dll -> [2011.08.22 13:27:17 | 000,084,480 | ---- | C] (Microsoft Corporation)

 asycfilt.dll -> C:\Windows\System32\asycfilt.dll -> [2011.08.22 13:26:59 | 000,067,584 | ---- | C] (Microsoft Corporation)

 poqexec.exe -> C:\Windows\System32\poqexec.exe -> [2011.08.22 12:59:21 | 000,123,904 | ---- | C] (Microsoft Corporation)

 ESET -> C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET -> [2011.08.22 12:42:28 | 000,000,000 | ---D | C]

 ESET -> C:\ProgramData\ESET -> [2011.08.22 12:42:28 | 000,000,000 | ---D | C]

 ESET -> C:\Program Files\ESET -> [2011.08.22 12:42:28 | 000,000,000 | ---D | C]

 Opera -> C:\Users\compaq\AppData\Roaming\Opera -> [2011.08.22 00:43:52 | 000,000,000 | ---D | C]

 Opera -> C:\Users\compaq\AppData\Local\Opera -> [2011.08.22 00:43:52 | 000,000,000 | ---D | C]

 Opera -> C:\Program Files\Opera -> [2011.08.22 00:43:09 | 000,000,000 | ---D | C]

 Google Chrome -> C:\Users\compaq\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome -> [2011.08.22 00:34:04 | 000,000,000 | ---D | C]

 Malwarebytes -> C:\Users\compaq\AppData\Roaming\Malwarebytes -> [2011.08.21 23:58:01 | 000,000,000 | ---D | C]

 Malwarebytes -> C:\ProgramData\Malwarebytes -> [2011.08.21 23:57:50 | 000,000,000 | ---D | C]

 Sammsoft -> C:\Users\compaq\AppData\Roaming\Sammsoft -> [2011.08.21 23:46:49 | 000,000,000 | ---D | C]

 MFAData -> C:\ProgramData\MFAData -> [2011.08.19 20:17:50 | 000,000,000 | ---D | C]

 Config.Msi -> C:\Config.Msi -> [2011.08.19 19:44:29 | 000,000,000 | -HSD | C]

 Systweak -> C:\Users\compaq\AppData\Roaming\Systweak -> [2011.08.19 16:44:35 | 000,000,000 | ---D | C]

 roboot.exe -> C:\Windows\System32\roboot.exe -> [2011.08.19 16:44:31 | 000,017,280 | ---- | C] (Systweak Inc., (www.systweak.com))

 ElevatedDiagnostics -> C:\Users\compaq\AppData\Local\ElevatedDiagnostics -> [2011.08.19 14:25:09 | 000,000,000 | ---D | C]

 update.tray-15-0-lnk -> C:\Windows\update.tray-15-0-lnk -> [2011.08.19 14:24:52 | 000,000,000 | -H-D | C]

 update.tray-15-0 -> C:\Windows\update.tray-15-0 -> [2011.08.19 14:24:52 | 000,000,000 | -H-D | C]

 update.7.1 -> C:\Windows\update.7.1 -> [2011.08.19 13:18:46 | 000,000,000 | -H-D | C]

 ufa -> C:\Windows\ufa -> [2011.08.19 11:24:58 | 000,000,000 | ---D | C]

 phoenix -> C:\Windows\phoenix -> [2011.08.19 11:24:58 | 000,000,000 | ---D | C]

 update.5.0 -> C:\Windows\update.5.0 -> [2011.08.19 11:21:30 | 000,000,000 | -H-D | C]

 update.2 -> C:\Windows\update.2 -> [2011.08.19 11:19:44 | 000,000,000 | -H-D | C]

 av_ico -> C:\Windows\av_ico -> [2011.08.19 11:18:26 | 000,000,000 | ---D | C]

 update.1 -> C:\Windows\update.1 -> [2011.08.19 11:15:06 | 000,000,000 | -H-D | C]

 update.tray-2-0-lnk -> C:\Windows\update.tray-2-0-lnk -> [2011.08.19 11:15:04 | 000,000,000 | -H-D | C]

 update.tray-2-0 -> C:\Windows\update.tray-2-0 -> [2011.08.19 11:15:04 | 000,000,000 | -H-D | C]

 DAEMON Tools Images -> C:\Users\Public\Documents\DAEMON Tools Images -> [2011.08.18 14:36:06 | 000,000,000 | ---D | C]

 DAEMON Tools Lite -> C:\Users\compaq\AppData\Roaming\DAEMON Tools Lite -> [2011.08.18 14:27:26 | 000,000,000 | ---D | C]

 DAEMON Tools Lite -> C:\ProgramData\DAEMON Tools Lite -> [2011.08.18 14:27:21 | 000,000,000 | ---D | C]

 vp6vfw.dll -> C:\Windows\System32\vp6vfw.dll -> [2011.08.18 13:56:16 | 000,442,368 | ---- | C] (On2.com)

 MagicISO -> C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MagicISO -> [2011.08.18 12:40:45 | 000,000,000 | ---D | C]

 MagicISO -> C:\Program Files\MagicISO -> [2011.08.18 12:40:43 | 000,000,000 | ---D | C]

 EA Games -> C:\Users\Public\Documents\EA Games -> [2011.08.18 12:40:04 | 000,000,000 | ---D | C]

 EA Games -> C:\Users\compaq\Documents\EA Games -> [2011.08.18 12:40:03 | 000,000,000 | ---D | C]

 TeamViewer -> C:\Users\compaq\AppData\Roaming\TeamViewer -> [2011.08.17 16:03:29 | 000,000,000 | ---D | C]

 teamviewervpn.sys -> C:\Windows\System32\drivers\teamviewervpn.sys -> [2011.08.17 15:56:18 | 000,025,088 | ---- | C] (TeamViewer GmbH)

 TeamViewer -> C:\Program Files\TeamViewer -> [2011.08.17 15:56:14 | 000,000,000 | ---D | C]

 Mozilla -> C:\Users\compaq\AppData\Roaming\Mozilla -> [2011.08.17 13:44:05 | 000,000,000 | ---D | C]

 BERNINA My Label -> C:\Users\compaq\AppData\Roaming\BERNINA My Label -> [2011.08.17 02:19:39 | 000,000,000 | ---D | C]

 My_Label_Demo -> C:\Program Files\My_Label_Demo -> [2011.08.17 02:18:27 | 000,000,000 | ---D | C]

 MSVCP50.DLL -> C:\Windows\System32\MSVCP50.DLL -> [2011.08.12 01:52:11 | 000,565,760 | R--- | C] (Microsoft Corporation)

 Electronic Arts -> C:\Program Files\Electronic Arts -> [2011.08.12 01:52:10 | 000,000,000 | ---D | C]

 Maxis -> C:\Program Files\Maxis -> [2011.08.12 01:31:54 | 000,000,000 | ---D | C]

 IsUninst.exe -> C:\Windows\IsUninst.exe -> [2011.08.12 01:27:49 | 000,306,688 | ---- | C] (InstallShield Software Corporation)

 Microsoft Games -> C:\Users\compaq\AppData\Local\Microsoft Games -> [2011.08.08 18:05:24 | 000,000,000 | ---D | C]

 appmgmt -> C:\Windows\System32\appmgmt -> [2011.08.08 10:38:11 | 000,000,000 | ---D | C]

 Google -> C:\Program Files\Google -> [2011.08.07 00:47:44 | 000,000,000 | ---D | C]

 BabylonUpdater -> C:\ProgramData\BabylonUpdater -> [2011.08.06 11:23:54 | 000,000,000 | ---D | C]

 Premium -> C:\ProgramData\Premium -> [2011.08.06 11:23:27 | 000,000,000 | ---D | C]

 InstallMate -> C:\ProgramData\InstallMate -> [2011.08.06 11:23:22 | 000,000,000 | ---D | C]

 boost_interprocess -> C:\ProgramData\boost_interprocess -> [2011.07.28 22:45:25 | 000,000,000 | ---D | C]

 PackageAware -> C:\Users\compaq\AppData\Local\PackageAware -> [2011.07.28 22:44:34 | 000,000,000 | ---D | C]

 Games -> C:\Users\compaq\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games -> [2011.07.26 15:28:07 | 000,000,000 | ---D | C]

 KONAMI -> C:\Users\compaq\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\KONAMI -> [2011.07.26 15:02:37 | 000,000,000 | ---D | C]

 KONAMI -> C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KONAMI -> [2011.07.26 15:02:37 | 000,000,000 | ---D | C]

 Diagnostics -> C:\Users\compaq\AppData\Local\Diagnostics -> [2011.07.25 20:12:49 | 000,000,000 | ---D | C]

 Notes -> C:\Users\compaq\Documents\Notes -> [2011.07.24 16:40:05 | 000,000,000 | R--D | C]

 1 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> 

[Files/Folders - Modified Within 30 Days]

 OTS.exe -> C:\Users\compaq\Desktop\OTS.exe -> [2011.08.23 15:13:41 | 000,645,632 | ---- | M] (OldTimer Tools)

 GoogleUpdateTaskUserS-1-5-21-3541811885-2136072918-1360324994-1000UA.job -> C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3541811885-2136072918-1360324994-1000UA.job -> [2011.08.23 14:37:02 | 000,000,962 | ---- | M] ()

 7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 -> C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 -> [2011.08.23 14:15:01 | 000,014,016 | -H-- | M] ()

 7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 -> C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 -> [2011.08.23 14:15:01 | 000,014,016 | -H-- | M] ()

 bootstat.dat -> C:\Windows\bootstat.dat -> [2011.08.23 14:07:20 | 000,067,584 | --S- | M] ()

 hiberfil.sys -> C:\hiberfil.sys -> [2011.08.23 14:07:14 | 599,969,792 | -HS- | M] ()

 GoogleUpdateTaskUserS-1-5-21-3541811885-2136072918-1360324994-1000Core.job -> C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3541811885-2136072918-1360324994-1000Core.job -> [2011.08.22 23:37:01 | 000,000,910 | ---- | M] ()

 FNTCACHE.DAT -> C:\Windows\System32\FNTCACHE.DAT -> [2011.08.22 15:20:34 | 000,481,520 | ---- | M] ()

 eav_nt32_enu.msi -> C:\Users\compaq\Desktop\eav_nt32_enu.msi -> [2011.08.22 12:41:48 | 045,807,616 | ---- | M] ()

 perfh009.dat -> C:\Windows\System32\perfh009.dat -> [2011.08.22 11:25:42 | 000,610,094 | ---- | M] ()

 perfc009.dat -> C:\Windows\System32\perfc009.dat -> [2011.08.22 11:25:42 | 000,104,412 | ---- | M] ()

 Launch Internet Explorer Browser.lnk -> C:\Users\compaq\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk -> [2011.08.22 00:32:49 | 000,001,406 | ---- | M] ()

 hosts -> C:\Windows\System32\drivers\etc\hosts -> [2011.08.21 23:46:05 | 000,202,984 | -H-- | M] ()

 hîsts -> C:\Windows\System32\drivers\etc\hîsts -> [2011.08.21 23:46:05 | 000,000,734 | ---- | M] ()

 info1 -> C:\Windows\info1 -> [2011.08.21 23:45:37 | 000,000,178 | ---- | M] ()

 phoenix.rar -> C:\Windows\phoenix.rar -> [2011.08.19 11:24:57 | 005,589,370 | ---- | M] ()

 rpcminer.rar -> C:\Windows\rpcminer.rar -> [2011.08.19 11:24:57 | 001,075,284 | ---- | M] ()

 unrar.exe -> C:\Windows\unrar.exe -> [2011.08.19 11:24:57 | 000,246,272 | ---- | M] ()

 ufa.rar -> C:\Windows\ufa.rar -> [2011.08.19 11:24:57 | 000,182,617 | ---- | M] ()

 geoiplist.rar -> C:\Windows\geoiplist.rar -> [2011.08.19 11:24:16 | 000,904,792 | ---- | M] ()

 loader2.exe_ok -> C:\Windows\loader2.exe_ok -> [2011.08.19 11:19:17 | 000,000,000 | ---- | M] ()

 imgres.jpg -> C:\Users\compaq\imgres.jpg -> [2011.08.19 09:00:38 | 000,004,407 | ---- | M] ()

 DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini -> C:\Users\compaq\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini -> [2011.08.17 23:28:09 | 000,003,584 | ---- | M] ()

 MSDOS.SYS -> C:\MSDOS.SYS -> [2011.08.12 01:27:40 | 000,000,000 | RHS- | M] ()

 IO.SYS -> C:\IO.SYS -> [2011.08.12 01:27:40 | 000,000,000 | RHS- | M] ()

 savage beauty.jpg -> C:\Users\compaq\Desktop\savage beauty.jpg -> [2011.08.06 17:16:52 | 000,244,297 | ---- | M] ()

 Microsoft Office Outlook.lnk -> C:\Users\compaq\Application Data\Microsoft\Internet Explorer\Quick Launch\Microsoft Office Outlook.lnk -> [2011.08.01 19:02:57 | 000,001,110 | ---- | M] ()

 49 C:\Windows\Temp\*.tmp files -> C:\Windows\Temp\*.tmp -> 

 1 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> 

[Files - No Company Name]

 eav_nt32_enu.msi -> C:\Users\compaq\Desktop\eav_nt32_enu.msi -> [2011.08.22 12:37:01 | 045,807,616 | ---- | C] ()

 phoenix.rar -> C:\Windows\phoenix.rar -> [2011.08.19 11:24:57 | 005,589,370 | ---- | C] ()

 rpcminer.rar -> C:\Windows\rpcminer.rar -> [2011.08.19 11:24:57 | 001,075,284 | ---- | C] ()

 ufa.rar -> C:\Windows\ufa.rar -> [2011.08.19 11:24:57 | 000,182,617 | ---- | C] ()

 geoiplist -> C:\Windows\geoiplist -> [2011.08.19 11:21:53 | 004,636,907 | ---- | C] ()

 geoiplist.rar -> C:\Windows\geoiplist.rar -> [2011.08.19 11:21:52 | 000,904,792 | ---- | C] ()

 unrar.exe -> C:\Windows\unrar.exe -> [2011.08.19 11:21:52 | 000,246,272 | ---- | C] ()

 info1 -> C:\Windows\info1 -> [2011.08.19 11:19:44 | 000,000,178 | ---- | C] ()

 loader2.exe_ok -> C:\Windows\loader2.exe_ok -> [2011.08.19 11:19:10 | 000,000,000 | ---- | C] ()

 imgres.jpg -> C:\Users\compaq\imgres.jpg -> [2011.08.19 09:00:38 | 000,004,407 | ---- | C] ()

 DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini -> C:\Users\compaq\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini -> [2011.08.17 23:28:09 | 000,003,584 | ---- | C] ()

 MSDOS.SYS -> C:\MSDOS.SYS -> [2011.08.12 01:27:40 | 000,000,000 | RHS- | C] ()

 IO.SYS -> C:\IO.SYS -> [2011.08.12 01:27:40 | 000,000,000 | RHS- | C] ()

 savage beauty.jpg -> C:\Users\compaq\Desktop\savage beauty.jpg -> [2011.08.06 17:16:46 | 000,244,297 | ---- | C] ()

 Microsoft Office Outlook.lnk -> C:\Users\compaq\Application Data\Microsoft\Internet Explorer\Quick Launch\Microsoft Office Outlook.lnk -> [2011.08.01 19:02:57 | 000,001,110 | ---- | C] ()

 unrar.dll -> C:\Windows\System32\unrar.dll -> [2011.07.11 16:05:30 | 000,165,376 | ---- | C] ()

 ativpsrm.bin -> C:\Windows\ativpsrm.bin -> [2011.07.11 15:27:55 | 000,000,000 | ---- | C] ()

 atiicdxx.dat -> C:\Windows\System32\atiicdxx.dat -> [2010.06.16 09:22:58 | 000,219,348 | ---- | C] ()

 atipblag.dat -> C:\Windows\System32\atipblag.dat -> [2010.06.15 18:28:54 | 000,002,857 | ---- | C] ()

 bootstat.dat -> C:\Windows\bootstat.dat -> [2009.07.14 06:57:37 | 000,067,584 | --S- | C] ()

 FNTCACHE.DAT -> C:\Windows\System32\FNTCACHE.DAT -> [2009.07.14 06:33:53 | 000,481,520 | ---- | C] ()

 perfh009.dat -> C:\Windows\System32\perfh009.dat -> [2009.07.14 04:05:48 | 000,610,094 | ---- | C] ()

 perfi009.dat -> C:\Windows\System32\perfi009.dat -> [2009.07.14 04:05:48 | 000,291,294 | ---- | C] ()

 perfc009.dat -> C:\Windows\System32\perfc009.dat -> [2009.07.14 04:05:48 | 000,104,412 | ---- | C] ()

 perfd009.dat -> C:\Windows\System32\perfd009.dat -> [2009.07.14 04:05:48 | 000,031,548 | ---- | C] ()

 NOISE.DAT -> C:\Windows\System32\NOISE.DAT -> [2009.07.14 04:05:05 | 000,000,741 | ---- | C] ()

 dssec.dat -> C:\Windows\System32\dssec.dat -> [2009.07.14 04:04:11 | 000,215,943 | ---- | C] ()

 PrintBrmUi.exe -> C:\Windows\System32\PrintBrmUi.exe -> [2009.07.14 02:19:49 | 000,066,048 | ---- | C] ()

 mib.bin -> C:\Windows\mib.bin -> [2009.07.14 01:55:01 | 000,043,131 | ---- | C] ()

 BthpanContextHandler.dll -> C:\Windows\System32\BthpanContextHandler.dll -> [2009.07.14 01:51:43 | 000,073,728 | ---- | C] ()

 BWContextHandler.dll -> C:\Windows\System32\BWContextHandler.dll -> [2009.07.14 01:42:10 | 000,064,000 | ---- | C] ()

 mlang.dat -> C:\Windows\System32\mlang.dat -> [2009.06.10 23:26:10 | 000,673,088 | ---- | C] ()

[File - Lop Check]

 .purple -> C:\Users\compaq\AppData\Roaming\.purple -> [2011.07.15 21:49:37 | 000,000,000 | ---D | M]

 Autodesk -> C:\Users\compaq\AppData\Roaming\Autodesk -> [2011.07.11 15:52:48 | 000,000,000 | ---D | M]

 Babylon -> C:\Users\compaq\AppData\Roaming\Babylon -> [2011.07.12 22:25:40 | 000,000,000 | ---D | M]

 BERNINA My Label -> C:\Users\compaq\AppData\Roaming\BERNINA My Label -> [2011.08.17 02:19:39 | 000,000,000 | ---D | M]

 DAEMON Tools Lite -> C:\Users\compaq\AppData\Roaming\DAEMON Tools Lite -> [2011.08.18 19:51:53 | 000,000,000 | ---D | M]

 DAEMON Tools Pro -> C:\Users\compaq\AppData\Roaming\DAEMON Tools Pro -> [2011.07.14 16:09:54 | 000,000,000 | ---D | M]

 DVDVideoSoft -> C:\Users\compaq\AppData\Roaming\DVDVideoSoft -> [2011.07.24 14:35:26 | 000,000,000 | ---D | M]

 DVDVideoSoftIEHelpers -> C:\Users\compaq\AppData\Roaming\DVDVideoSoftIEHelpers -> [2011.07.24 14:34:50 | 000,000,000 | ---D | M]

 GetRightToGo -> C:\Users\compaq\AppData\Roaming\GetRightToGo -> [2011.07.21 20:28:47 | 000,000,000 | ---D | M]

 Opera -> C:\Users\compaq\AppData\Roaming\Opera -> [2011.08.22 00:43:52 | 000,000,000 | ---D | M]

 Sammsoft -> C:\Users\compaq\AppData\Roaming\Sammsoft -> [2011.08.22 00:09:11 | 000,000,000 | ---D | M]

 Systweak -> C:\Users\compaq\AppData\Roaming\Systweak -> [2011.08.19 19:59:16 | 000,000,000 | ---D | M]

 TeamViewer -> C:\Users\compaq\AppData\Roaming\TeamViewer -> [2011.08.17 16:28:51 | 000,000,000 | ---D | M]

 TuneUp Software -> C:\Users\compaq\AppData\Roaming\TuneUp Software -> [2011.07.11 15:59:39 | 000,000,000 | ---D | M]

 uTorrent -> C:\Users\compaq\AppData\Roaming\uTorrent -> [2011.08.23 15:27:42 | 000,000,000 | ---D | M]

 SCHEDLGU.TXT -> C:\Windows\Tasks\SCHEDLGU.TXT -> [2009.07.14 06:53:46 | 000,030,378 | ---- | M] ()

[Custom Scans]

< netsvcs >

< %SYSTEMDRIVE%\*.exe >

< MD5 Scans Start>

< %systemdrive%\EXPLORER.EXE  /md5 /s >

 explorer.exe : MD5=0FB9C74046656D1579A64660AD67B746 -> C:\Windows\SoftwareDistribution\Download\f2f739a8d939cb0fdc769a3446af420a\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_54149f9ef14031fc\explorer.exe -> [2011.02.26 07:19:21 | 002,616,320 | ---- | M] (Microsoft Corporation)

 explorer.exe : MD5=15BC38A7492BEFE831966ADB477CF76F -> C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_518afd35db100430\explorer.exe -> [2009.07.14 03:14:20 | 002,613,248 | ---- | M] (Microsoft Corporation)

 explorer.exe : MD5=255CF508D7CFB10E0794D6AC93280BD8 -> C:\Windows\SoftwareDistribution\Download\f2f739a8d939cb0fdc769a3446af420a\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20910_none_525b5180f3f95373\explorer.exe -> [2011.02.26 07:51:13 | 002,614,784 | ---- | M] (Microsoft Corporation)

 explorer.exe : MD5=2626FC9755BE22F805D3CFA0CE3EE727 -> C:\Windows\explorer.exe -> [2009.10.31 07:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation)

 explorer.exe : MD5=2626FC9755BE22F805D3CFA0CE3EE727 -> C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_51a66d6ddafc2ed1\explorer.exe -> [2009.10.31 07:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation)

 explorer.exe : MD5=2AF58D15EDC06EC6FDACCE1F19482BBF -> C:\Windows\SoftwareDistribution\Download\f2f739a8d939cb0fdc769a3446af420a\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16768_none_51a3a583dafd0cef\explorer.exe -> [2011.02.26 07:33:07 | 002,614,784 | ---- | M] (Microsoft Corporation)

 explorer.exe : MD5=40D777B7A95E00593EB1568C68514493 -> C:\Windows\SoftwareDistribution\Download\18e2c83e42cc8f0cc17b5dbfaf982690\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_53bc10fdd7fe87ca\explorer.exe -> [2010.11.20 14:17:09 | 002,616,320 | ---- | M] (Microsoft Corporation)

 explorer.exe : MD5=8B88EBBB05A0E56B7DCC708498C02B3E -> C:\Windows\SoftwareDistribution\Download\f2f739a8d939cb0fdc769a3446af420a\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_5389023fd8245f84\explorer.exe -> [2011.02.25 07:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation)

 explorer.exe : MD5=9FF6C4C91A3711C0A3B18F87B08B518D -> C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_526619d4f3f142e6\explorer.exe -> [2009.08.03 07:49:47 | 002,613,248 | ---- | M] (Microsoft Corporation)

 explorer.exe : MD5=B95EEB0F4E5EFBF1038A35B3351CF047 -> C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_51e07e31dad00878\explorer.exe -> [2009.08.03 07:35:50 | 002,613,248 | ---- | M] (Microsoft Corporation)

 explorer.exe : MD5=C76153C7ECA00FA852BB0C193378F917 -> C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_52283b2af41f3691\explorer.exe -> [2009.10.31 08:00:51 | 002,614,272 | ---- | M] (Microsoft Corporation)

< %systemdrive%\SVCHOST.EXE  /md5 /s >

 svchost.exe : MD5=54A47F6B5E09A77E61649109C6A08866 -> C:\Windows\System32\svchost.exe -> [2009.07.14 03:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation)

 svchost.exe : MD5=54A47F6B5E09A77E61649109C6A08866 -> C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe -> [2009.07.14 03:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation)

< %systemdrive%\USERINIT.EXE  /md5 /s >

 userinit.exe : MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -> C:\Windows\SoftwareDistribution\Download\18e2c83e42cc8f0cc17b5dbfaf982690\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_de3024012ff21116\userinit.exe -> [2010.11.20 14:17:48 | 000,026,624 | ---- | M] (Microsoft Corporation)

 userinit.exe : MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -> C:\Windows\System32\userinit.exe -> [2009.07.14 03:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation)

 userinit.exe : MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -> C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_dbff103933038d7c\userinit.exe -> [2009.07.14 03:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation)

< %systemdrive%\WINLOGON.EXE  /md5 /s >

 winlogon.exe : MD5=37CDB7E72EB66BA85A87CBE37E7F03FD -> C:\Windows\System32\winlogon.exe -> [2009.10.28 08:17:59 | 000,285,696 | ---- | M] (Microsoft Corporation)

 winlogon.exe : MD5=37CDB7E72EB66BA85A87CBE37E7F03FD -> C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16447_none_6fc699643622d177\winlogon.exe -> [2009.10.28 08:17:59 | 000,285,696 | ---- | M] (Microsoft Corporation)

 winlogon.exe : MD5=3BABE6767C78FBF5FB8435FEED187F30 -> C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.20560_none_703394514f56f7c2\winlogon.exe -> [2009.10.28 07:52:08 | 000,285,696 | ---- | M] (Microsoft Corporation)

 winlogon.exe : MD5=6D13E1406F50C66E2A95D97F22C47560 -> C:\Windows\SoftwareDistribution\Download\18e2c83e42cc8f0cc17b5dbfaf982690\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.17514_none_71ca6b0233339500\winlogon.exe -> [2010.11.20 14:17:54 | 000,286,720 | ---- | M] (Microsoft Corporation)

 winlogon.exe : MD5=8EC6A4AB12B8F3759E21F8E3A388F2CF -> C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16385_none_6f99573a36451166\winlogon.exe -> [2009.07.14 03:14:45 | 000,285,696 | ---- | M] (Microsoft Corporation)

< MD5 Scans End>

< %systemroot%\*. /mp /s >

< hklm\software\clients\startmenuinternet|command /rs >

HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\InstallInfo ->  -> 

HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\InstallInfo\\ShowIconsCommand -> C:\USERS\COMPAQ\APPDATA\LOCAL\GOOGLE\CHROME\APPLICATION\CHROME.EXE ["C:\USERS\COMPAQ\APPDATA\LOCAL\GOOGLE\CHROME\APPLICATION\CHROME.EXE" --SHOW-ICONS] -> [2011.08.06 04:21:27 | 001,017,912 | ---- | M] (Google Inc.)

HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\InstallInfo\\HideIconsCommand -> C:\USERS\COMPAQ\APPDATA\LOCAL\GOOGLE\CHROME\APPLICATION\CHROME.EXE ["C:\USERS\COMPAQ\APPDATA\LOCAL\GOOGLE\CHROME\APPLICATION\CHROME.EXE" --HIDE-ICONS] -> [2011.08.06 04:21:27 | 001,017,912 | ---- | M] (Google Inc.)

HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\InstallInfo\\ReinstallCommand -> C:\USERS\COMPAQ\APPDATA\LOCAL\GOOGLE\CHROME\APPLICATION\CHROME.EXE ["C:\USERS\COMPAQ\APPDATA\LOCAL\GOOGLE\CHROME\APPLICATION\CHROME.EXE" --MAKE-DEFAULT-BROWSER] -> [2011.08.06 04:21:27 | 001,017,912 | ---- | M] (Google Inc.)

HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\shell\open\command ->  -> 

HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\shell\open\command\\ -> C:\USERS\COMPAQ\APPDATA\LOCAL\GOOGLE\CHROME\APPLICATION\CHROME.EXE ["C:\USERS\COMPAQ\APPDATA\LOCAL\GOOGLE\CHROME\APPLICATION\CHROME.EXE"] -> [2011.08.06 04:21:27 | 001,017,912 | ---- | M] (Google Inc.)

HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo ->  -> 

HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ShowIconsCommand -> C:\Windows\System32\IE4UINIT.EXE ["C:\WINDOWS\SYSTEM32\IE4UINIT.EXE" -SHOW] -> [2009.07.14 03:14:21 | 000,176,128 | ---- | M] (Microsoft Corporation)

HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ReinstallCommand -> C:\Windows\System32\IE4UINIT.EXE ["C:\WINDOWS\SYSTEM32\IE4UINIT.EXE" -REINSTALL] -> [2009.07.14 03:14:21 | 000,176,128 | ---- | M] (Microsoft Corporation)

HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\HideIconsCommand -> C:\Windows\System32\IE4UINIT.EXE ["C:\WINDOWS\SYSTEM32\IE4UINIT.EXE" -HIDE] -> [2009.07.14 03:14:21 | 000,176,128 | ---- | M] (Microsoft Corporation)

HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\naom\command ->  -> 

HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\naom\command\\ -> C:\PROGRAM FILES\INTERNET EXPLORER\IEXPLORE.EXE ["C:\PROGRAM FILES\INTERNET EXPLORER\IEXPLORE.EXE" -EXTOFF] -> [2011.06.21 07:37:00 | 000,673,040 | ---- | M] (Microsoft Corporation)

HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\open\command ->  -> 

HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\open\command\\ -> C:\PROGRAM FILES\INTERNET EXPLORER\IEXPLORE.EXE [C:\PROGRAM FILES\INTERNET EXPLORER\IEXPLORE.EXE] -> [2011.06.21 07:37:00 | 000,673,040 | ---- | M] (Microsoft Corporation)

HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Opera\InstallInfo ->  -> 

HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Opera\InstallInfo\\ShowIconsCommand -> "C:\PROGRAM FILES\OPERA\OPERA.EXE" /SHOWICONSCOMMAND -> 

HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Opera\InstallInfo\\HideIconsCommand -> "C:\PROGRAM FILES\OPERA\OPERA.EXE" /HIDEICONSCOMMAND -> 

HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Opera\InstallInfo\\ReinstallCommand -> "C:\PROGRAM FILES\OPERA\OPERA.EXE" /REINSTALLBROWSER -> 

HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Opera\shell\open\command ->  -> 

HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Opera\shell\open\command\\ -> "C:\PROGRAM FILES\OPERA\OPERA.EXE" -> 

< hklm\software\clients\startmenuinternet|command /64 /rs >

HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\InstallInfo ->  -> 

HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\InstallInfo\\ShowIconsCommand -> C:\USERS\COMPAQ\APPDATA\LOCAL\GOOGLE\CHROME\APPLICATION\CHROME.EXE ["C:\USERS\COMPAQ\APPDATA\LOCAL\GOOGLE\CHROME\APPLICATION\CHROME.EXE" --SHOW-ICONS] -> [2011.08.06 04:21:27 | 001,017,912 | ---- | M] (Google Inc.)

HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\InstallInfo\\HideIconsCommand -> C:\USERS\COMPAQ\APPDATA\LOCAL\GOOGLE\CHROME\APPLICATION\CHROME.EXE ["C:\USERS\COMPAQ\APPDATA\LOCAL\GOOGLE\CHROME\APPLICATION\CHROME.EXE" --HIDE-ICONS] -> [2011.08.06 04:21:27 | 001,017,912 | ---- | M] (Google Inc.)

HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\InstallInfo\\ReinstallCommand -> C:\USERS\COMPAQ\APPDATA\LOCAL\GOOGLE\CHROME\APPLICATION\CHROME.EXE ["C:\USERS\COMPAQ\APPDATA\LOCAL\GOOGLE\CHROME\APPLICATION\CHROME.EXE" --MAKE-DEFAULT-BROWSER] -> [2011.08.06 04:21:27 | 001,017,912 | ---- | M] (Google Inc.)

HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\shell\open\command ->  -> 

HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\shell\open\command\\ -> C:\USERS\COMPAQ\APPDATA\LOCAL\GOOGLE\CHROME\APPLICATION\CHROME.EXE ["C:\USERS\COMPAQ\APPDATA\LOCAL\GOOGLE\CHROME\APPLICATION\CHROME.EXE"] -> [2011.08.06 04:21:27 | 001,017,912 | ---- | M] (Google Inc.)

HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo ->  -> 

HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ShowIconsCommand -> C:\Windows\System32\IE4UINIT.EXE ["C:\WINDOWS\SYSTEM32\IE4UINIT.EXE" -SHOW] -> [2009.07.14 03:14:21 | 000,176,128 | ---- | M] (Microsoft Corporation)

HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ReinstallCommand -> C:\Windows\System32\IE4UINIT.EXE ["C:\WINDOWS\SYSTEM32\IE4UINIT.EXE" -REINSTALL] -> [2009.07.14 03:14:21 | 000,176,128 | ---- | M] (Microsoft Corporation)

HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\HideIconsCommand -> C:\Windows\System32\IE4UINIT.EXE ["C:\WINDOWS\SYSTEM32\IE4UINIT.EXE" -HIDE] -> [2009.07.14 03:14:21 | 000,176,128 | ---- | M] (Microsoft Corporation)

HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\naom\command ->  -> 

HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\naom\command\\ -> C:\PROGRAM FILES\INTERNET EXPLORER\IEXPLORE.EXE ["C:\PROGRAM FILES\INTERNET EXPLORER\IEXPLORE.EXE" -EXTOFF] -> [2011.06.21 07:37:00 | 000,673,040 | ---- | M] (Microsoft Corporation)

HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\open\command ->  -> 

HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\open\command\\ -> C:\PROGRAM FILES\INTERNET EXPLORER\IEXPLORE.EXE [C:\PROGRAM FILES\INTERNET EXPLORER\IEXPLORE.EXE] -> [2011.06.21 07:37:00 | 000,673,040 | ---- | M] (Microsoft Corporation)

HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Opera\InstallInfo ->  -> 

HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Opera\InstallInfo\\ShowIconsCommand -> "C:\PROGRAM FILES\OPERA\OPERA.EXE" /SHOWICONSCOMMAND -> 

HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Opera\InstallInfo\\HideIconsCommand -> "C:\PROGRAM FILES\OPERA\OPERA.EXE" /HIDEICONSCOMMAND -> 

HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Opera\InstallInfo\\ReinstallCommand -> "C:\PROGRAM FILES\OPERA\OPERA.EXE" /REINSTALLBROWSER -> 

HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Opera\shell\open\command ->  -> 

HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Opera\shell\open\command\\ -> "C:\PROGRAM FILES\OPERA\OPERA.EXE" -> 

< End of report >

[/code]

 ok, sad sačekaj minut da pogledam logove...ti u međuvremenu pokušaj izbrisati antivirus koji imaš, ako ne uspiješ preko add/remove javi

 eset remover

 pokrenut ćeš ovaj esetov remover da obrišeš sve što je ostalo od eseta

http://www.nod32.nl/download/tool/nod32removal.exe

nakon toga:

otvori OTS i ovo kopiraj u prazno polje

:files
C:\Users\compaq\AppData\Local\WindowsUpdate
C:\Windows\update.tray-15-0-lnk
C:\Windows\update.tray-15-0
C:\Windows\update.7.1
C:\Windows\ufa
C:\Windows\phoenix
C:\Windows\update.5.0
C:\Windows\update.1
C:\Windows\update.tray-2-0-lnk
C:\Windows\update.tray-2-0
C:\Windows\System32\drivers\etc\hîsts
C:\Windows\info1
C:\Windows\phoenix.rar
C:\Windows\unrar.exe
C:\Windows\rpcminer.rar
C:\Windows\ufa.rar
C:\Windows\geoiplist.rar
C:\Windows\loader2.exe_ok
C:\Users\compaq\imgres.jpg
:end

[resethosts]
[Empty Temp Folders]
[EmptyFlash]
[CreateRestorePoint]
[ClearAllRestorePoints]
[Reboot]

klik na RUN FIX

2.odradi dio iz prethodnog posta vezno za combofix

-log koji dobiješ isto tako kopiraj

3. instaliraj antivirus

nakon ovoga ćeš moći bez problema na fejs

pokreni combofix, ja ću ga maknit preko combofixa

jesi li pokrenio OTS skriptu ?

da obavezno pokreni combofix, ima još nekih drivera za pobrisati....ako dobiješ obavijest da je antivrs aktivan, ignoriraj poruku jer ti u stvari nemaš antivrusa i nemžeš učiniti štetu računalu

link sa kojeg ćeš skiniti combofix je ovaj i nijedan drugi

http://www.bleepingcomputer.com/download/anti-virus/combofix

dakle, kad si pokrenio program i pokaže se plavi ekran ti ne trebaš ništa upisivati niti dirati dok traje scan...sve što trebaš je sačekati da pođe 50 faza, prelazak tih faza traje obično desetak minuta

sačekaj minut da pregledam log pa se javim

otvori notepad i ovo kopiraj u notepad

Folder::
c:\users\compaq\AppData\Local\WindowsUpdate
c:\windows\update.tray-15-0-lnk
c:\windows\update.tray-15-0
c:\windows\ufa
c:\windows\av_ico
c:\windows\update.tray-2-0-lnk
c:\windows\update.tray-2-0

File::
c:\windows\unrar.exe

zatvori notepad i spremi kao CFScript na desktop

-isključi antivirus

-skriptu sa mišem uvuci u combofix.exe

http://zaslike.com/files/nyod8iphxn7tqex1pnhw.gif

-log koji dobiješ kopiraj

nakon ovog koraka je računalo potpuno čisto što se tiče malwarea

u novi notepad ili ovaj koji mi je on dao????

ComboFix 11-08-23.03 - compaq 3.08.2011.  19:33:39.3.1 - x86

Microsoft Windows 7 Ultimate   6.1.7600.0.1250.385.1033.18.763.320 [GMT 2:00]

Running from: c:\users\compaq\Desktop\ComboFix.exe

Command switches used :: c:\users\compaq\Desktop\CFScript.txt

AV: ESET Smart Security 4.2 *Disabled/Outdated* {77DEAFED-8149-104B-25A1-21771CA47CD1}

SP: ESET Smart Security 4.2 *Disabled/Outdated* {CCBF4E09-A773-1FC5-1F11-1A056723366C}

SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

.

FILE ::

"c:\windows\unrar.exe"

.

.

(((((((((((((((((((((((((((((((((((((((   Other Deletions   )))))))))))))))))))))))))))))))))))))))))))))))))

.

.

c:\users\compaq\AppData\Local\WindowsUpdate

c:\users\compaq\AppData\Local\WindowsUpdate\OptIn\AuthCab\tempauthcab.cab

c:\windows\av_ico

c:\windows\av_ico\ico_defender_start.ico

c:\windows\av_ico\ico_NOD_AV_START.ico

c:\windows\av_ico\ico_NOD_SYSINSP.ico

c:\windows\av_ico\ico_NOD_SYSRESC.ico

c:\windows\av_ico\ico_NOD_TXT.ico

c:\windows\av_ico\ico_NOD_UNINSTALL.ico

c:\windows\ufa

c:\windows\unrar.exe

c:\windows\update.tray-15-0-lnk

c:\windows\update.tray-15-0

c:\windows\update.tray-2-0-lnk

c:\windows\update.tray-2-0

.

.

(((((((((((((((((((((((((   Files Created from 2011-07-23 to 2011-08-23  )))))))))))))))))))))))))))))))

.

.

2011-08-23 17:40 . 2011-08-23 17:40 -------- d-----w- c:\users\Default\AppData\Local\temp

2011-08-23 17:40 . 2011-08-23 17:40 -------- d-----w- c:\users\compaq\AppData\Local\temp

2011-08-23 16:28 . 2011-08-23 16:30 -------- d-----w- c:\program files\Ask.com

2011-08-23 16:11 . 2011-08-23 16:11 -------- d-----w- C:\_OTS

2011-08-23 14:21 . 2011-08-23 14:21 -------- d-----w- c:\program files\Conduit

2011-08-23 14:21 . 2011-08-23 14:21 -------- d-----w- c:\program files\BrotherSoft_Extreme

2011-08-23 14:13 . 2011-08-23 14:13 -------- d-----w- c:\windows\system32\Wat

2011-08-23 14:09 . 2011-08-23 14:09 -------- d-----w- c:\program files\Microsoft CAPICOM 2.1.0.2

2011-08-23 14:04 . 2010-03-04 04:04 146304 ----a-w- c:\windows\system32\drivers\usbvideo.sys

2011-08-23 14:04 . 2010-03-04 03:57 190976 ----a-w- c:\windows\system32\drivers\ks.sys

2011-08-23 14:02 . 2011-08-23 14:02 -------- d-----w- c:\users\Default\AppData\Local\Microsoft Help

2011-08-23 14:02 . 2010-09-14 06:07 276992 ----a-w- c:\windows\system32\wcncsvc.dll

2011-08-23 10:50 . 2011-08-16 06:48 7152464 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{150258B5-FDE3-4E2E-86B4-DBFC5DCC00DA}\mpengine.dll

2011-08-23 10:06 . 2010-08-04 06:17 417792 ----a-w- c:\windows\system32\msdri.dll

2011-08-23 10:06 . 2010-08-04 06:15 204288 ----a-w- c:\windows\system32\MSNP.ax

2011-08-23 10:06 . 2009-12-13 09:30 465408 ----a-w- c:\windows\system32\psisdecd.dll

2011-08-23 10:04 . 2011-02-24 05:32 288256 ----a-w- c:\windows\system32\XpsGdiConverter.dll

2011-08-23 10:03 . 2010-01-18 23:29 85504 ----a-w- c:\windows\system32\secproc_ssp.dll

2011-08-23 10:03 . 2010-01-18 23:28 277504 ----a-w- c:\windows\system32\RMActivate_ssp_isv.exe

2011-08-23 10:03 . 2010-01-18 23:28 280064 ----a-w- c:\windows\system32\RMActivate_ssp.exe

2011-08-23 10:03 . 2010-10-19 08:10 7680 ----a-w- c:\program files\Internet Explorer\iecompat.dll

2011-08-23 10:02 . 2010-11-02 04:46 728448 ----a-w- c:\windows\system32\drivers\dxgkrnl.sys

2011-08-23 10:02 . 2011-02-03 05:45 219008 ----a-w- c:\windows\system32\drivers\dxgmms1.sys

2011-08-23 10:02 . 2010-11-02 04:23 107520 ----a-w- c:\windows\system32\cdd.dll

2011-08-23 00:30 . 2011-04-28 03:29 60416 ----a-w- c:\windows\system32\drivers\BTHUSB.SYS

2011-08-23 00:30 . 2011-04-28 03:29 393216 ----a-w- c:\windows\system32\drivers\bthport.sys

2011-08-22 12:34 . 2009-09-10 05:52 257024 ----a-w- c:\windows\system32\msv1_0.dll

2011-08-22 12:17 . 2009-11-25 10:47 99176 ----a-w- c:\windows\system32\PresentationHostProxy.dll

2011-08-22 12:17 . 2009-11-25 10:47 49472 ----a-w- c:\windows\system32\netfxperf.dll

2011-08-22 12:17 . 2009-11-25 10:47 297808 ----a-w- c:\windows\system32\mscoree.dll

2011-08-22 12:17 . 2009-11-25 10:47 295264 ----a-w- c:\windows\system32\PresentationHost.exe

2011-08-22 12:17 . 2009-11-25 10:47 1130824 ----a-w- c:\windows\system32\dfshim.dll

2011-08-22 11:45 . 2010-02-11 07:10 293376 ----a-w- c:\windows\system32\browserchoice.exe

2011-08-22 11:33 . 2010-10-27 04:32 2048 ----a-w- c:\windows\system32\tzres.dll

2011-08-22 11:32 . 2009-12-29 06:55 172032 ----a-w- c:\windows\system32\wintrust.dll

2011-08-22 11:32 . 2011-03-11 05:40 1137664 ----a-w- c:\windows\system32\mfc42.dll

2011-08-22 11:32 . 2011-03-11 05:40 1164288 ----a-w- c:\windows\system32\mfc42u.dll

2011-08-22 11:32 . 2009-12-11 07:44 133720 ----a-w- c:\windows\system32\drivers\ksecpkg.sys

2011-08-22 11:32 . 2009-12-11 07:38 1037312 ----a-w- c:\windows\system32\lsasrv.dll

2011-08-22 11:30 . 2010-11-02 04:41 351232 ----a-w- c:\windows\system32\wmicmiplugin.dll

2011-08-22 11:29 . 2011-07-16 04:37 169984 ----a-w- c:\windows\system32\winsrv.dll

2011-08-22 11:28 . 2010-12-18 05:30 2690560 ----a-w- c:\windows\system32\mstscax.dll

2011-08-22 11:27 . 2010-08-21 05:36 738816 ----a-w- c:\windows\system32\wmpmde.dll

2011-08-22 11:26 . 2010-03-05 07:42 67584 ----a-w- c:\windows\system32\asycfilt.dll

2011-08-22 11:26 . 2009-08-29 06:57 34816 ----a-w- c:\windows\system32\msasn1.dll

2011-08-22 11:23 . 2011-02-23 05:05 69632 ----a-w- c:\windows\system32\drivers\bowser.sys

2011-08-22 11:00 . 2010-05-05 06:46 363520 ----a-w- c:\windows\system32\StructuredQuery.dll

2011-08-22 10:59 . 2011-04-09 05:56 123904 ----a-w- c:\windows\system32\poqexec.exe

2011-08-22 10:42 . 2011-08-22 10:42 -------- d-----w- c:\program files\ESET

2011-08-21 22:43 . 2011-08-21 22:43 -------- d-----w- c:\users\compaq\AppData\Local\Opera

2011-08-21 22:43 . 2011-08-21 23:46 -------- d-----w- c:\program files\Opera

2011-08-21 21:58 . 2011-08-21 21:58 -------- d-----w- c:\users\compaq\AppData\Roaming\Malwarebytes

2011-08-21 21:57 . 2011-08-21 21:57 -------- d-----w- c:\programdata\Malwarebytes

2011-08-21 21:46 . 2011-08-23 16:48 -------- d-----w- c:\users\compaq\AppData\Roaming\Sammsoft

2011-08-19 18:17 . 2011-08-19 18:19 -------- d-----w- c:\programdata\MFAData

2011-08-19 14:44 . 2011-08-19 17:59 -------- d-----w- c:\users\compaq\AppData\Roaming\Systweak

2011-08-19 14:44 . 2011-07-07 11:26 17280 ----a-w- c:\windows\system32\roboot.exe

2011-08-19 12:25 . 2011-08-22 11:02 -------- d-----w- c:\users\compaq\AppData\Local\ElevatedDiagnostics

2011-08-18 12:43 . 2011-08-18 12:43 443448 ----a-w- c:\windows\system32\drivers\sptd.sys

2011-08-18 12:27 . 2011-08-18 17:51 -------- d-----w- c:\users\compaq\AppData\Roaming\DAEMON Tools Lite

2011-08-18 12:27 . 2011-08-21 22:23 -------- d-----w- c:\programdata\DAEMON Tools Lite

2011-08-18 11:56 . 2004-08-18 01:34 442368 ----a-w- c:\windows\system32\vp6vfw.dll

2011-08-18 10:40 . 2011-08-18 13:32 -------- d-----w- c:\program files\MagicISO

2011-08-17 14:03 . 2011-08-17 14:28 -------- d-----w- c:\users\compaq\AppData\Roaming\TeamViewer

2011-08-17 13:56 . 2011-03-30 11:05 25088 ----a-w- c:\windows\system32\drivers\teamviewervpn.sys

2011-08-17 13:56 . 2011-08-17 13:56 -------- d-----w- c:\program files\TeamViewer

2011-08-17 00:19 . 2011-08-17 00:19 -------- d-----w- c:\users\compaq\AppData\Roaming\BERNINA My Label

2011-08-17 00:18 . 2011-08-17 00:25 -------- d-----w- c:\program files\My_Label_Demo

2011-08-11 23:52 . 1997-01-22 20:26 565760 ----a-r- c:\windows\system32\MSVCP50.DLL

2011-08-11 23:52 . 2011-08-11 23:52 -------- d-----w- c:\program files\Electronic Arts

2011-08-11 23:31 . 2011-08-11 23:53 -------- d-----w- c:\program files\Maxis

2011-08-11 23:27 . 1998-10-29 15:45 306688 ----a-w- c:\windows\IsUninst.exe

2011-08-08 16:05 . 2011-08-08 16:08 -------- d-----w- c:\users\compaq\AppData\Local\Microsoft Games

2011-08-06 22:47 . 2011-08-21 23:47 -------- d-----w- c:\program files\Google

2011-08-06 09:23 . 2011-08-06 10:39 -------- d-----w- c:\programdata\BabylonUpdater

2011-08-06 09:23 . 2011-08-06 09:23 -------- d-----w- c:\programdata\Premium

2011-08-06 09:23 . 2011-08-06 09:24 -------- d-----w- c:\programdata\InstallMate

2011-07-28 20:45 . 2011-07-29 09:39 -------- d-----w- c:\programdata\boost_interprocess

2011-07-28 20:44 . 2011-07-28 20:44 -------- d-----w- c:\users\compaq\AppData\Local\PackageAware

2011-07-25 18:12 . 2011-08-08 08:19 -------- d-----w- c:\users\compaq\AppData\Local\Diagnostics

.

.

.

((((((((((((((((((((((((((((((((((((((((   Find3M Report   ))))))))))))))))))))))))))))))))))))))))))))))))))))

.

2011-07-12 20:23 . 2011-07-12 20:23 404640 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl

.

.

(((((((((((((((((((((((((((((((((((((   Reg Loading Points   ))))))))))))))))))))))))))))))))))))))))))))))))))

.

.

*Note* empty entries & legit default entries are not shown 

REGEDIT4

.

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]

"{00000000-6E41-4FD3-8538-502F5495E5FC}"= "c:\program files\Ask.com\GenericAskToolbar.dll" [2011-07-29 1515688]

"{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}"= "c:\program files\uTorrentBar\prxtbuTor.dll" [2011-03-28 176936]

"{51a86bb3-6602-4c85-92a5-130ee4864f13}"= "c:\program files\BrotherSoft_Extreme\prxtbBrot.dll" [2011-03-28 176936]

"{872b5b88-9db5-4310-bdd0-ac189557e5f5}"= "c:\program files\DVDVideoSoftTB\prxtbDVDV.dll" [2011-01-17 175912]

"{EEE6C35D-6118-11DC-9C72-001320C79847}"= "c:\program files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll" [2010-10-18 138552]

.

[HKEY_CLASSES_ROOT\clsid\{00000000-6e41-4fd3-8538-502f5495e5fc}]

.

[HKEY_CLASSES_ROOT\clsid\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}]

.

[HKEY_CLASSES_ROOT\clsid\{51a86bb3-6602-4c85-92a5-130ee4864f13}]

.

[HKEY_CLASSES_ROOT\clsid\{872b5b88-9db5-4310-bdd0-ac189557e5f5}]

.

[HKEY_CLASSES_ROOT\clsid\{eee6c35d-6118-11dc-9c72-001320c79847}]

[HKEY_CLASSES_ROOT\SweetIM_URLSearchHook.ToolbarURLSearchHook.1]

[HKEY_CLASSES_ROOT\TypeLib\{EEE6C35F-6118-11DC-9C72-001320C79847}]

[HKEY_CLASSES_ROOT\SweetIM_URLSearchHook.ToolbarURLSearchHook]

.

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}]

2011-03-28 16:22 176936 ----a-w- c:\program files\ConduitEngine\prxConduitEngine.dll

.

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{51a86bb3-6602-4c85-92a5-130ee4864f13}]

2011-03-28 16:22 176936 ----a-w- c:\program files\BrotherSoft_Extreme\prxtbBrot.dll

.

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{872b5b88-9db5-4310-bdd0-ac189557e5f5}]

2011-01-17 14:54 175912 ----a-w- c:\program files\DVDVideoSoftTB\prxtbDVDV.dll

.

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}]

2011-03-28 16:22 176936 ----a-w- c:\program files\uTorrentBar\prxtbuTor.dll

.

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]

2011-07-29 20:05 1515688 ----a-w- c:\program files\Ask.com\GenericAskToolbar.dll

.

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847}]

2010-10-18 15:28 1485112 ----a-r- c:\program files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]

"{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}"= "c:\program files\uTorrentBar\prxtbuTor.dll" [2011-03-28 176936]

"{30F9B915-B755-4826-820B-08FBA6BD249D}"= "c:\program files\ConduitEngine\prxConduitEngine.dll" [2011-03-28 176936]

"{872b5b88-9db5-4310-bdd0-ac189557e5f5}"= "c:\program files\DVDVideoSoftTB\prxtbDVDV.dll" [2011-01-17 175912]

"{EEE6C35B-6118-11DC-9C72-001320C79847}"= "c:\program files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll" [2010-10-18 1485112]

"{51a86bb3-6602-4c85-92a5-130ee4864f13}"= "c:\program files\BrotherSoft_Extreme\prxtbBrot.dll" [2011-03-28 176936]

"{D4027C7F-154A-4066-A1AD-4243D8127440}"= "c:\program files\Ask.com\GenericAskToolbar.dll" [2011-07-29 1515688]

.

[HKEY_CLASSES_ROOT\clsid\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}]

.

[HKEY_CLASSES_ROOT\clsid\{30f9b915-b755-4826-820b-08fba6bd249d}]

.

[HKEY_CLASSES_ROOT\clsid\{872b5b88-9db5-4310-bdd0-ac189557e5f5}]

.

[HKEY_CLASSES_ROOT\clsid\{eee6c35b-6118-11dc-9c72-001320c79847}]

[HKEY_CLASSES_ROOT\SWEETIE.IEToolbar.1]

[HKEY_CLASSES_ROOT\TypeLib\{EEE6C35E-6118-11DC-9C72-001320C79847}]

[HKEY_CLASSES_ROOT\SWEETIE.IEToolbar]

.

[HKEY_CLASSES_ROOT\clsid\{51a86bb3-6602-4c85-92a5-130ee4864f13}]

.

[HKEY_CLASSES_ROOT\clsid\{d4027c7f-154a-4066-a1ad-4243d8127440}]

[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd.1]

[HKEY_CLASSES_ROOT\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}]

[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd]

.

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]

"{51A86BB3-6602-4C85-92A5-130EE4864F13}"= "c:\program files\BrotherSoft_Extreme\prxtbBrot.dll" [2011-03-28 176936]

"{872B5B88-9DB5-4310-BDD0-AC189557E5F5}"= "c:\program files\DVDVideoSoftTB\prxtbDVDV.dll" [2011-01-17 175912]

"{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}"= "c:\program files\uTorrentBar\prxtbuTor.dll" [2011-03-28 176936]

"{EEE6C35B-6118-11DC-9C72-001320C79847}"= "c:\program files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll" [2010-10-18 1485112]

"{30F9B915-B755-4826-820B-08FBA6BD249D}"= "c:\program files\ConduitEngine\prxConduitEngine.dll" [2011-03-28 176936]

"{D4027C7F-154A-4066-A1AD-4243D8127440}"= "c:\program files\Ask.com\GenericAskToolbar.dll" [2011-07-29 1515688]

.

[HKEY_CLASSES_ROOT\clsid\{51a86bb3-6602-4c85-92a5-130ee4864f13}]

.

[HKEY_CLASSES_ROOT\clsid\{872b5b88-9db5-4310-bdd0-ac189557e5f5}]

.

[HKEY_CLASSES_ROOT\clsid\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}]

.

[HKEY_CLASSES_ROOT\clsid\{eee6c35b-6118-11dc-9c72-001320c79847}]

[HKEY_CLASSES_ROOT\SWEETIE.IEToolbar.1]

[HKEY_CLASSES_ROOT\TypeLib\{EEE6C35E-6118-11DC-9C72-001320C79847}]

[HKEY_CLASSES_ROOT\SWEETIE.IEToolbar]

.

[HKEY_CLASSES_ROOT\clsid\{30f9b915-b755-4826-820b-08fba6bd249d}]

.

[HKEY_CLASSES_ROOT\clsid\{d4027c7f-154a-4066-a1ad-4243d8127440}]

[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd.1]

[HKEY_CLASSES_ROOT\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}]

[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd]

.

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"uTorrent"="c:\program files\uTorrent\uTorrent.exe" [2011-07-19 639864]

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2010-09-29 98304]

"SweetIM"="c:\program files\SweetIM\Messenger\SweetIM.exe" [2010-10-13 111928]

"egui"="c:\program files\ESET\ESET NOD32 Antivirus\egui.exe" [2010-06-24 2202704]

"ApnUpdater"="c:\program files\Ask.com\Updater\Updater.exe" [2011-07-29 887976]

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]

"ConsentPromptBehaviorUser"= 3 (0x3)

"EnableLUA"= 0 (0x0)

"EnableSecureUIAPaths"= 0 (0x0)

"EnableUIADesktopToggle"= 0 (0x0)

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]

"aux"=wdmaud.drv

.

[HKEY_LOCAL_MACHINE\software\microsoft\security center]

"FirewallOverride"=dword:00000001

"DisableThumbnailCache"=dword:00000001

.

R3 teamviewervpn;TeamViewer VPN Adapter;c:\windows\system32\DRIVERS\teamviewervpn.sys [2011-03-30 25088]

R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys [2009-10-14 10064]

R3 WatAdminSvc;Servis Tehnologije aktivacije sustava Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2011-08-23 1343400]

R4 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe [2009-10-30 1021256]

S0 amd_sata;amd_sata;c:\windows\system32\DRIVERS\amd_sata.sys [2010-05-14 62592]

S0 amd_xata;amd_xata;c:\windows\system32\DRIVERS\amd_xata.sys [2010-05-14 24192]

S0 sptd;sptd;c:\windows\\SystemRoot\System32\Drivers\sptd.sys [x]

S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-13 48128]

S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2010-09-29 176128]

S2 ekrn;ESET Service;c:\program files\ESET\ESET NOD32 Antivirus\ekrn.exe [2010-06-24 810144]

S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atikmdag.sys [2010-09-29 6381568]

S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [2010-09-29 221696]

S3 netr28;Ralink 802.11n Wireless Driver for Windows Vista;c:\windows\system32\DRIVERS\netr28.sys [2009-07-13 530944]

S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt86win7.sys [2009-07-13 139776]

S3 usbfilter;AMD USB Filter Driver;c:\windows\system32\DRIVERS\usbfilter.sys [2010-04-29 30464]

S3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [2009-07-13 14336]

.

.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost  - NetSvcs

UxTuneUp

.

Contents of the 'Scheduled Tasks' folder

.

2011-08-22 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3541811885-2136072918-1360324994-1000Core.job

- c:\users\compaq\AppData\Local\Google\Update\GoogleUpdate.exe [2011-07-11 18:26]

.

2011-08-23 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3541811885-2136072918-1360324994-1000UA.job

- c:\users\compaq\AppData\Local\Google\Update\GoogleUpdate.exe [2011-07-11 18:26]

.

.

------- Supplementary Scan -------

.

uStart Page = hxxp://search.conduit.com?SearchSource=10&ctid=CT2776682

uDefault_Search_URL = hxxp://www.google.com/ie

mStart Page = hxxp://home.sweetim.com

uSearchAssistant = hxxp://www.google.com/ie

uSearchURL,(Default) = hxxp://www.google.com/search?q=%s

IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000

IE: Free YouTube Download - c:\users\compaq\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubedownload.htm

IE: Free YouTube to MP3 Converter - c:\users\compaq\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm

TCP: DhcpNameServer = 192.168.1.1

.

.

--------------------- LOCKED REGISTRY KEYS ---------------------

.

[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]

@Denied: (A) (Users)

@Denied: (A) (Everyone)

@Allowed: (B 1 2 3 4 5) (S-1-5-20)

"BlindDial"=dword:00000000

.

[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]

@Denied: (Full) (Everyone)

.

Completion time: 2011-08-23  19:43:54

ComboFix-quarantined-files.txt  2011-08-23 17:43

ComboFix2.txt  2011-08-23 17:08

.

Pre-Run: 34.043.166.720 bytes free

Post-Run: 33.759.670.272 bytes free

.

- - End Of File - - 143A8F055E44A2265BEF96C60BFF3871

perfektno...hvala puno imaš pivo u vž-u!!!zbilja hvala!!!

ipak ima...eset smart security se još pojavljuje, ali nemogu ga sa onim appremoverom...