Logfile of random's system information tool 1.09 (written by random/random)
Run by Natalia at 2012-12-29 11:09:29
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 152 GB (76%) free of 200 GB
Total RAM: 4000 MB (50% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:10:39, on 29/12/2012
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16457)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Program Files (x86)\McAfee Security Scan\3.0.207\SSScheduler.exe
C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe
C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe
C:\Program Files (x86)\BearShare Applications\MediaBar\Datamngr\datamngrUI.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Windows\SysWOW64\ACEngSvr.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Windows\AsScrPro.exe
C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_5_502_135.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_5_502_135.exe
C:\Program Files\trend micro\Natalia.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://asus.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.bearshare.net
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://asus.msn.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - {e9df9360-97f8-4690-afe6-996c80790da4} - (no file)
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Partner BHO Class - {83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4} - C:\ProgramData\Partner\Partner.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Searchqu Toolbar - {99079a25-328f-4bd4-be04-00955acaa0a7} - C:\PROGRA~2\SEARCH~1\Datamngr\ToolBar\searchqudtx.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll
O2 - BHO: DataMngr - {B939CF93-F2CB-443d-956C-DC523D85C9DB} - C:\PROGRA~2\BEARSH~1\MediaBar\Datamngr\BROWSE~1.DLL
O2 - BHO: Wincore Mediabar - {c2d64ff7-0ab8-4263-89c9-ea3b0f8f050c} - C:\PROGRA~2\BEARSH~1\MediaBar\Datamngr\ToolBar\wincorebsdtx.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files (x86)\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll
O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing)
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing)
O3 - Toolbar: Wincore Mediabar - {c2d64ff7-0ab8-4263-89c9-ea3b0f8f050c} - C:\PROGRA~2\BEARSH~1\MediaBar\Datamngr\ToolBar\wincorebsdtx.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O3 - Toolbar: Searchqu Toolbar - {99079a25-328f-4bd4-be04-00955acaa0a7} - C:\PROGRA~2\SEARCH~1\Datamngr\ToolBar\searchqudtx.dll
O4 - HKLM\..\Run: [Nuance PDF Reader-reminder] "C:\Program Files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe" -r "C:\ProgramData\Nuance\PDF Reader\Ereg\Ereg.ini"
O4 - HKLM\..\Run: [ASUSPRP] "C:\Program Files (x86)\ASUS\APRP\APRP.EXE"
O4 - HKLM\..\Run: [ASUSWebStorage] C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.84.161\AsusWSPanel.exe /S
O4 - HKLM\..\Run: [SonicMasterTray] C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe
O4 - HKLM\..\Run: [Wireless Console 3] C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
O4 - HKLM\..\Run: [UpdateLBPShortCut] "C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\LabelPrint" UpdateWithCreateOnce "Software\CyberLink\LabelPrint\2.5"
O4 - HKLM\..\Run: [UpdateP2GoShortCut] "C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\6.0"
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [RIMBBLaunchAgent.exe] C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe
O4 - HKLM\..\Run: [DATAMNGR] C:\PROGRA~2\BEARSH~1\MediaBar\Datamngr\DATAMN~1.EXE
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [TkBellExe] "c:\program files (x86)\real\realplayer\Update\realsched.exe" -osboot
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
O4 - HKLM\..\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Global Startup: FancyStart daemon.lnk = ?
O4 - Global Startup: McAfee Security Scan Plus.lnk = C:\Program Files (x86)\McAfee Security Scan\3.0.207\SSScheduler.exe
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O20 - AppInit_DLLs: C:\PROGRA~2\BEARSH~1\MediaBar\Datamngr\datamngr.dll C:\PROGRA~2\BEARSH~1\MediaBar\Datamngr\IEBHO.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AFBAgent - Unknown owner - C:\Windows\system32\FBAgent.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: ASLDR Service (ASLDRService) - ASUSTek Computer Inc. - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
O23 - Service: ASUS InstantOn Service (ASUS InstantOn) - ASUS - C:\Program Files (x86)\Common Files\InstantOn\InsOnSrv.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: avast! Firewall - AVAST Software - C:\Program Files\AVAST Software\Avast\afwServ.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files (x86)\McAfee Security Scan\3.0.207\McCHSvc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Partner Service - Google Inc. - C:\ProgramData\Partner\Partner.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 14065 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Windows\system32\FBAgent.exe"
C:\Windows\system32\WLANExt.exe 36340608
\??\C:\Windows\system32\conhost.exe "-1814656271-1447060876103846285620256435866949911-892393412488117653-655821916
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe"
"C:\Program Files (x86)\ASUS\SmartLogon\smartlogon.exe" -switch-3be2f036c43042cdb03588591c9325c3
"C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe"
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
"C:\Program Files\AVAST Software\Avast\afwServ.exe"
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
"C:\Program Files (x86)\Common Files\InstantOn\InsOnSrv.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE"
"C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe"
WLIDSvcM.exe 2344
"C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE"
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"taskhost.exe"
"C:\Program Files (x86)\Common Files\InstantOn\InsOnWMI.exe"
"C:\Windows\system32\Dwm.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe"
taskeng.exe {A0C9519D-4DEC-4462-90F7-9F75A1452284}
C:\Windows\Explorer.EXE
taskeng.exe {4286E054-297A-4FEE-A1A4-62E3C31B2E2F}
taskeng.exe {2725E741-4858-4D26-9C09-20EFBC453416}
"C:\Program Files\P4G\BatteryLife.exe"
"C:\Program Files (x86)\ASUS\Splendid\ACMON.exe"
"C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\Elantech\ETDCtrl.exe"
"C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SF3
"C:\Program Files (x86)\McAfee Security Scan\3.0.207\SSScheduler.exe"
"C:\Program Files\Elantech\ETDCtrlHelper.exe"
"C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe"
"C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe"
ATKOSD.exe
KBFiltr.exe
"C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe"
WDC.exe
"C:\Program Files (x86)\BearShare Applications\MediaBar\Datamngr\datamngrUI.exe"
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe" -osboot
"C:\Program Files (x86)\iTunes\iTunesHelper.exe"
"C:\Program Files\iPod\bin\iPodService.exe"
C:\Windows\SysWOW64\ACEngSvr.exe -Embedding
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Windows\AsScrPro.exe"
"C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe" --channel=2780.da7ac00.1266789106 "C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_135.dll" E7CF176E110C211B -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" 2780 "\\.\pipe\gecko-crash-server-pipe.2780" plugin
"C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_5_502_135.exe" --proxy-stub-channel=Flash2280.65DCB7B8.41 --host-broker-channel=Flash2280.65DCB7B8.18467 --host-pid=2280 --host-npapi-version=27 --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_135.dll"
"C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_5_502_135.exe" --channel=4692.0024F3E4.1332886994 --proxy-stub-channel=Flash2280.65DCB7B8.41 --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_135.dll" --host-npapi-version=27 --type=renderer
C:\Windows\servicing\TrustedInstaller.exe
C:\Windows\System32\svchost.exe -k swprv
"C:\Windows\system32\wuauclt.exe"
"C:\Users\Natalia\Desktop\RSITx64.exe"
"C:\Windows\System32\osk.exe"
C:\Windows\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\ReclaimerUpdateFiles_Natalia.job
C:\Windows\tasks\ReclaimerUpdateXML_Natalia.job
C:\Windows\tasks\RNUpgradeHelperLogonPrompt_Natalia.job
=========Mozilla firefox=========
ProfilePath - C:\Users\Natalia\AppData\Roaming\Mozilla\Firefox\Profiles\fgljcp4i.default
prefs.js - "browser.startup.homepage" - "http://www.google.co.uk/"
prefs.js - "keyword.URL" - "http://dts.search-results.com/sr?src=ff ... =2&sr=0&q="
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.5.502.135 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_135.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=]
"Description"=iTunes Detector Plug-in
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=1.0]
"Description"=
"Path"=C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nppl3260;version=15.0.2.72]
"Description"=RealPlayer(tm) LiveConnect-Enabled Plug-In
"Path"=c:\program files (x86)\real\realplayer\Netscape6\nppl3260.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprjplug;version=15.0.2.72]
"Description"=RealJukebox Netscape Plugin
"Path"=c:\program files (x86)\real\realplayer\Netscape6\nprjplug.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprpchromebrowserrecordext;version=15.0.2.72]
"Description"=RealNetworks(tm) RealPlayer Chrome Background Extension Plug-In
"Path"=C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprphtml5videoshim;version=15.0.2.72]
"Description"=RealPlayer(tm) HTML5VideoShim Plug-In
"Path"=C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprpjplug;version=15.0.2.72]
"Description"=15.0.2.72
"Path"=c:\program files (x86)\real\realplayer\Netscape6\nprpjplug.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=]
"Description"=
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@RIM.com/WebSLLauncher,version=1.0]
"Description"=BlackBerry Web Software Loading Helper Plug-In for Mozilla browsers
"Path"=C:\Program Files (x86)\Common Files\Research In Motion\BBWebSLLauncher\NPWebSLLauncher.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\ZEON/PDF,version=2.0]
"Description"=
"Path"=C:\Program Files (x86)\Nuance\PDF Reader\bin\nppdf.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.5.502.135 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_11_5_502_135.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
C:\Program Files (x86)\Mozilla Firefox\extensions\
{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
{972ce4c6-7e08-4474-a285-3208198ce6fd}
C:\Program Files (x86)\Mozilla Firefox\components\
binary.manifest
browsercomps.dll
C:\Program Files (x86)\Mozilla Firefox\searchplugins\
amazon-en-GB.xml
bing.xml
chambers-en-GB.xml
eBay-en-GB.xml
google.xml
Search_Results.xml
twitter.xml
wikipedia.xml
yahoo-en-GB.xml
C:\Users\Natalia\AppData\Roaming\Mozilla\Firefox\Profiles\fgljcp4i.default\extensions\
{99079a25-328f-4bd4-be04-00955acaa0a7}
{c2d64ff7-0ab8-4263-89c9-ea3b0f8f050c}
{e9df9360-97f8-4690-afe6-996c80790da4}
C:\Users\Natalia\AppData\Roaming\Mozilla\Firefox\Profiles\fgljcp4i.default\searchplugins\
Search_Results.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}]
avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2012-03-07 1211776]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4}]
Partner BHO Class - C:\ProgramData\Partner\Partner64.dll [2011-04-01 750064]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 529280]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2011-04-01 346736]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg64.dll [2011-04-01 318960]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B939CF93-F2CB-443d-956C-DC523D85C9DB}]
DataMngr - C:\PROGRA~2\BEARSH~1\MediaBar\Datamngr\x64\BROWSE~1.DLL [2012-03-04 118192]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4}]
Partner BHO Class - C:\ProgramData\Partner\Partner.dll [2011-04-01 433648]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2012-03-07 1003704]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{99079a25-328f-4bd4-be04-00955acaa0a7}]
Searchqu Toolbar - C:\PROGRA~2\SEARCH~1\Datamngr\ToolBar\searchqudtx.dll [2012-02-27 88976]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2011-04-01 256112]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2012-03-02 4296864]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll [2011-04-01 761840]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B939CF93-F2CB-443d-956C-DC523D85C9DB}]
DataMngr - C:\PROGRA~2\BEARSH~1\MediaBar\Datamngr\BROWSE~1.DLL [2012-03-04 101296]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{c2d64ff7-0ab8-4263-89c9-ea3b0f8f050c}]
Wincore Mediabar - C:\PROGRA~2\BEARSH~1\MediaBar\Datamngr\ToolBar\wincorebsdtx.dll [2012-02-28 87480]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C84D72FE-E17D-4195-BB24-76C02E2E7C4E}]
Google Dictionary Compression sdch - C:\Program Files (x86)\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll [2011-04-01 458736]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}]
Bing Bar Helper - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-03-02 1089288]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2011-04-01 346736]
{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2012-03-07 1211776]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2011-04-01 256112]
{8dcb7100-df86-4384-8842-8fa844297b3f} - Bing Bar - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-03-02 1089288]
{c2d64ff7-0ab8-4263-89c9-ea3b0f8f050c} - Wincore Mediabar - C:\PROGRA~2\BEARSH~1\MediaBar\Datamngr\ToolBar\wincorebsdtx.dll [2012-02-28 87480]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2012-03-07 1003704]
{99079a25-328f-4bd4-be04-00955acaa0a7} - Searchqu Toolbar - C:\PROGRA~2\SEARCH~1\Datamngr\ToolBar\searchqudtx.dll [2012-02-27 88976]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2011-07-01 167704]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2011-07-01 392472]
"Persistence"=C:\Windows\system32\igfxpers.exe [2011-07-01 416024]
"ETDCtrl"=C:\Program Files\Elantech\ETDCtrl.exe [2010-12-31 2587944]
"AmIcoSinglun64"=C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [2011-03-21 361984]
"RtHDVBg"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2011-08-16 2277480]
"Setwallpaper"=c:\programdata\SetWallpaper.cmd []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ASUS Screen Saver Protector]
C:\Windows\AsScrPro.exe [2011-09-22 3058304]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CLMLServer]
C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [2009-11-02 103720]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RtHDVCpl]
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2011-08-16 12673128]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Nuance PDF Reader-reminder"=C:\Program Files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe [2008-11-03 328992]
"ASUSPRP"=C:\Program Files (x86)\ASUS\APRP\APRP.EXE [2011-04-01 2018032]
"ASUSWebStorage"=C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.84.161\AsusWSPanel.exe [2011-02-23 731472]
"SonicMasterTray"=C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe [2010-07-10 984400]
"Wireless Console 3"=C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [2010-09-23 1601536]
"UpdateLBPShortCut"=C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe [2009-05-20 222504]
"UpdateP2GoShortCut"=C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe [2009-05-20 222504]
"APSDaemon"=C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2012-08-27 59280]
"RIMBBLaunchAgent.exe"=C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe [2011-09-01 90448]
"DATAMNGR"=C:\PROGRA~2\BEARSH~1\MediaBar\Datamngr\DATAMN~1.EXE [2012-03-04 1693800]
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2012-03-07 4241512]
"TkBellExe"=c:\program files (x86)\real\realplayer\Update\realsched.exe [2012-03-29 296056]
"iTunesHelper"=C:\Program Files (x86)\iTunes\iTunesHelper.exe [2012-09-09 421776]
"ATKOSD2"=C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [2012-09-14 328064]
"ATKMEDIA"=C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [2012-07-17 178848]
"HControlUser"=C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [2009-06-19 105016]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
FancyStart daemon.lnk - C:\Windows\Installer\{C944B4C5-1C4D-4D95-8AC0-7CEF13914131}\_77B5857C27147149171BE7.exe
McAfee Security Scan Plus.lnk - C:\Program Files (x86)\McAfee Security Scan\3.0.207\SSScheduler.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\PROGRA~2\BEARSH~1\MediaBar\Datamngr\x64\datamngr.dll C:\PROGRA~2\BEARSH~1\MediaBar\Datamngr\x64\IEBHO.dll "
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2011-06-26 389632]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2012-12-29 11:09:29 ----D---- C:\rsit
2012-12-29 11:09:29 ----D---- C:\Program Files\trend micro
2012-12-21 20:54:14 ----D---- C:\preload64
2012-12-21 20:45:56 ----D---- C:\Users\Natalia\AppData\Roaming\PCCUStubInstaller
2012-12-12 15:07:48 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2012-12-12 15:07:48 ----A---- C:\Windows\system32\mshtmled.dll
2012-12-12 15:07:47 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2012-12-12 15:07:46 ----A---- C:\Windows\SYSWOW64\ieui.dll
2012-12-12 15:07:45 ----A---- C:\Windows\SYSWOW64\url.dll
2012-12-12 15:07:45 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2012-12-12 15:07:45 ----A---- C:\Windows\system32\url.dll
2012-12-12 15:07:45 ----A---- C:\Windows\system32\ieUnatt.exe
2012-12-12 15:07:45 ----A---- C:\Windows\system32\ieui.dll
2012-12-12 15:07:44 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2012-12-12 15:07:44 ----A---- C:\Windows\system32\urlmon.dll
2012-12-12 15:07:43 ----A---- C:\Windows\system32\msfeeds.dll
2012-12-12 15:07:43 ----A---- C:\Windows\system32\jscript9.dll
2012-12-12 15:07:42 ----A---- C:\Windows\SYSWOW64\wininet.dll
2012-12-12 15:07:42 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2012-12-12 15:07:42 ----A---- C:\Windows\system32\wininet.dll
2012-12-12 15:07:41 ----A---- C:\Windows\system32\jsproxy.dll
2012-12-12 15:07:40 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2012-12-12 15:07:40 ----A---- C:\Windows\SYSWOW64\jscript.dll
2012-12-12 15:07:40 ----A---- C:\Windows\system32\vbscript.dll
2012-12-12 15:07:40 ----A---- C:\Windows\system32\jscript.dll
2012-12-12 15:07:39 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2012-12-12 15:07:39 ----A---- C:\Windows\system32\iertutil.dll
2012-12-12 15:07:38 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2012-12-12 15:07:36 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2012-12-12 15:07:33 ----A---- C:\Windows\system32\mshtml.dll
2012-12-12 15:07:32 ----A---- C:\Windows\system32\ieframe.dll
2012-12-12 15:07:31 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2012-12-12 07:45:42 ----A---- C:\Windows\SYSWOW64\tzres.dll
2012-12-12 07:45:42 ----A---- C:\Windows\system32\tzres.dll
2012-12-12 07:45:36 ----A---- C:\Windows\system32\win32k.sys
2012-12-12 07:45:35 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2012-12-12 07:45:35 ----A---- C:\Windows\system32\atmlib.dll
2012-12-12 07:45:35 ----A---- C:\Windows\system32\atmfd.dll
2012-12-12 07:45:34 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2012-12-12 07:45:27 ----A---- C:\Windows\system32\KernelBase.dll
2012-12-12 07:45:26 ----A---- C:\Windows\system32\winsrv.dll
2012-12-12 07:45:26 ----A---- C:\Windows\system32\kernel32.dll
2012-12-12 07:45:26 ----A---- C:\Windows\system32\conhost.exe
2012-12-12 07:45:25 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2012-12-12 07:45:25 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2012-12-12 07:45:23 ----A---- C:\Windows\SYSWOW64\wow32.dll
2012-12-12 07:45:23 ----A---- C:\Windows\SYSWOW64\setup16.exe
2012-12-12 07:45:23 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2012-12-12 07:45:23 ----A---- C:\Windows\system32\wow64win.dll
2012-12-12 07:45:23 ----A---- C:\Windows\system32\wow64cpu.dll
2012-12-12 07:45:23 ----A---- C:\Windows\system32\wow64.dll
2012-12-12 07:45:23 ----A---- C:\Windows\system32\ntvdm64.dll
2012-12-12 07:45:20 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2012-12-12 07:45:20 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2012-12-12 07:45:20 ----A---- C:\Windows\SYSWOW64\instnm.exe
2012-12-12 07:45:19 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2012-12-12 07:45:19 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2012-12-12 07:45:19 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2012-12-12 07:45:19 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2012-12-12 07:45:19 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2012-12-12 07:45:19 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2012-12-12 07:45:19 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2012-12-12 07:45:19 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2012-12-12 07:45:19 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2012-12-12 07:45:19 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2012-12-12 07:45:19 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2012-12-12 07:45:18 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2012-12-12 07:45:18 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2012-12-12 07:45:18 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2012-12-12 07:45:18 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2012-12-12 07:45:18 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2012-12-12 07:45:18 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2012-12-12 07:45:18 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2012-12-12 07:45:18 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2012-12-12 07:45:18 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2012-12-12 07:45:18 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2012-12-12 07:45:18 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2012-12-12 07:45:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2012-12-12 07:45:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2012-12-12 07:45:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2012-12-12 07:45:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2012-12-12 07:45:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2012-12-12 07:45:17 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2012-12-12 07:45:17 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2012-12-12 07:45:17 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2012-12-12 07:45:17 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2012-12-12 07:45:17 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2012-12-12 07:45:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2012-12-12 07:45:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2012-12-12 07:45:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2012-12-12 07:45:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2012-12-12 07:45:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2012-12-12 07:45:16 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2012-12-12 07:45:16 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2012-12-12 07:45:16 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2012-12-12 07:45:16 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2012-12-12 07:45:16 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2012-12-12 07:45:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2012-12-12 07:45:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2012-12-12 07:45:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2012-12-12 07:45:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2012-12-12 07:45:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2012-12-12 07:45:15 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2012-12-12 07:45:15 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2012-12-12 07:45:14 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2012-12-12 07:45:14 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2012-12-12 07:45:14 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2012-12-12 07:45:14 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2012-12-12 07:45:14 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2012-12-12 07:45:13 ----A---- C:\Windows\SYSWOW64\user.exe
2012-12-12 07:44:39 ----A---- C:\Windows\system32\dpnet.dll
2012-12-12 07:44:38 ----A---- C:\Windows\SYSWOW64\dpnet.dll
2012-12-08 21:18:24 ----D---- C:\Program Files (x86)\Mozilla Firefox
======List of files/folders modified in the last 1 month======
2012-12-29 11:09:33 ----D---- C:\Windows\Temp
2012-12-29 11:09:29 ----RD---- C:\Program Files
2012-12-29 11:06:20 ----D---- C:\Windows\winsxs
2012-12-29 11:06:16 ----D---- C:\Windows\system32\catroot2
2012-12-29 11:06:16 ----D---- C:\Windows\system32\catroot
2012-12-29 11:05:40 ----SHD---- C:\System Volume Information
2012-12-29 11:05:05 ----D---- C:\Windows\system32\config
2012-12-29 11:03:54 ----A---- C:\Windows\SYSWOW64\log.txt
2012-12-29 11:03:39 ----HD---- C:\ASUS.DAT
2012-12-29 11:03:38 ----D---- C:\Windows\system32\Tasks
2012-12-21 21:17:42 ----SHD---- C:\Windows\Installer
2012-12-21 21:16:52 ----D---- C:\Program Files (x86)\ASUS
2012-12-21 20:58:58 ----RSD---- C:\Windows\assembly
2012-12-21 20:58:57 ----RD---- C:\Program Files (x86)
2012-12-21 20:58:54 ----HD---- C:\ProgramData
2012-12-21 20:57:58 ----D---- C:\AsusVibeData
2012-12-21 20:57:30 ----D---- C:\Windows
2012-12-21 20:56:47 ----A---- C:\Windows\system32\AutoRunFilter.ini
2012-12-21 20:56:22 ----A---- C:\Windows\SYSWOW64\acovcnt.exe
2012-12-21 20:32:44 ----D---- C:\Windows\System32
2012-12-21 20:32:44 ----D---- C:\Windows\inf
2012-12-21 20:32:44 ----A---- C:\Windows\system32\PerfStringBackup.INI
2012-12-21 20:14:40 ----A---- C:\Windows\ntbtlog.txt
2012-12-21 10:44:41 ----D---- C:\Windows\Prefetch
2012-12-19 07:16:48 ----D---- C:\Windows\Tasks
2012-12-14 18:46:15 ----D---- C:\Windows\rescache
2012-12-13 07:57:30 ----D---- C:\Windows\SYSWOW64\en-US
2012-12-13 07:57:30 ----D---- C:\Windows\SysWOW64
2012-12-13 07:57:30 ----D---- C:\Windows\system32\en-US
2012-12-13 07:57:19 ----D---- C:\Windows\AppPatch
2012-12-13 07:57:19 ----D---- C:\Program Files (x86)\Internet Explorer
2012-12-13 07:57:18 ----D---- C:\Windows\SYSWOW64\migration
2012-12-13 07:57:16 ----D---- C:\Windows\system32\migration
2012-12-13 07:57:16 ----D---- C:\Program Files\Internet Explorer
2012-12-12 14:09:45 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2012-12-10 08:38:55 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswNdis;avast! Firewall NDIS Filter Service; C:\Windows\system32\DRIVERS\aswNdis.sys [2012-03-06 12368]
R0 aswNdis2;avast! Firewall Core Firewall Service; C:\Windows\system32\drivers\aswNdis2.sys [2012-03-06 258904]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2010-11-05 438808]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R1 aswFW;avast! TDI Firewall driver; C:\Windows\system32\drivers\aswFW.sys [2012-03-06 141144]
R1 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2012-03-07 28504]
R1 aswRdr;aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [2012-03-07 53080]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2012-03-07 819032]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2012-03-07 337240]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2012-03-07 59224]
R1 ATKWMIACPIIO;ATKWMIACPI Driver; \??\C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [2011-09-07 17536]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 ASMMAP64;ASMMAP64; \??\C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-07-02 15416]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2012-03-07 24408]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2012-03-07 69976]
R3 asmthub3;ASMedia USB3 Hub Service; C:\Windows\system32\DRIVERS\asmthub3.sys [2011-06-02 128488]
R3 asmtxhci;ASMEDIA XHCI Service; C:\Windows\system32\DRIVERS\asmtxhci.sys [2011-06-02 401896]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2011-05-24 2750464]
R3 ETD;ELAN PS/2 Port Input Device; C:\Windows\system32\DRIVERS\ETD.sys [2010-12-31 138024]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2012-08-21 33240]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2011-06-26 12231584]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2011-08-16 3056360]
R3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2010-10-14 317440]
R3 kbfiltr;Keyboard Filter; C:\Windows\system32\DRIVERS\kbfiltr.sys [2009-07-20 15416]
R3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1C62x64.sys [2010-08-24 76912]
R3 MEIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2010-10-19 56344]
R3 RimVSerPort;RIM Virtual Serial Port v2; C:\Windows\system32\DRIVERS\RimSerial_AMD64.sys [2011-07-20 44032]
R3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\Windows\System32\Drivers\RootMdm.sys [2009-07-14 11264]
R3 Sftfs;Sftfs; C:\Windows\system32\DRIVERS\Sftfslh.sys [2011-10-01 764264]
R3 Sftplay;Sftplay; C:\Windows\system32\DRIVERS\Sftplaylh.sys [2011-10-01 268648]
R3 Sftredir;Sftredir; C:\Windows\system32\DRIVERS\Sftredirlh.sys [2011-10-01 25960]
R3 Sftvol;Sftvol; C:\Windows\system32\DRIVERS\Sftvollh.sys [2011-10-01 22376]
S3 BthEnum;Bluetooth Request Block Driver; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Bluetooth Port Driver; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Bluetooth Radio USB Driver; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2010-09-23 48488]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 RimUsb;BlackBerry Smartphone; C:\Windows\System32\Drivers\RimUsb_AMD64.sys [2011-07-25 74752]
S3 SiSGbeLH;SiS191/SiS190 Ethernet Device NDIS 6.0 Driver; C:\Windows\system32\DRIVERS\SiSG664.sys [2009-06-10 56832]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-20 31232]
S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2012-07-09 52736]
S3 WimFltr;WimFltr; C:\Windows\system32\DRIVERS\wimfltr.sys [2008-05-24 154168]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AFBAgent;AFBAgent; C:\Windows\system32\FBAgent.exe [2011-01-25 379520]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2012-08-11 55184]
R2 ASLDRService;ASLDR Service; C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe [2012-09-11 106880]
R2 ASUS InstantOn;ASUS InstantOn Service; C:\Program Files (x86)\Common Files\InstantOn\InsOnSrv.exe [2011-07-07 88704]
R2 ATKGFNEXSrv;ATKGFNEX Service; C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [2011-11-21 96896]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2012-03-07 44768]
R2 avast! Firewall;avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [2012-03-06 134920]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 462184]
R2 cvhsvc;Client Virtualization Handler; C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [2012-01-04 822624]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2010-12-21 325656]
R2 SeaPort;SeaPort; C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE [2011-02-25 249648]
R2 sftlist;Application Virtualization Client; C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2011-10-01 508776]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-12-21 2656280]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 2286976]
R3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2012-09-09 936848]
R3 sftvsa;Application Virtualization Service Agent; C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2011-10-01 219496]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 gupdate;Google Update Service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-04-01 135664]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2012-11-09 160944]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-12-12 250808]
S3 BBSvc;Bing Bar Update Service; C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE [2011-03-02 183560]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2010-09-23 1493352]
S3 gupdatem;Google Update Service (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-04-01 135664]
S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2011-04-01 182768]
S3 McComponentHostService;McAfee Security Scan Component Host Service; C:\Program Files (x86)\McAfee Security Scan\3.0.207\McCHSvc.exe [2011-06-17 237008]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-12-08 115168]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 Partner Service;Partner Service; C:\ProgramData\Partner\Partner.exe [2011-04-01 332272]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-03-13 1255736]
S4 wlcrasvc;Windows Live Mesh remote connections service; C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-09-23 57184]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
nefunguji nektere klavesy
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
nefunguji nektere klavesy
Majkl55
Re: nefunguji nektere klavesy
Zdravim 
Zkousel jste jinou klavesnici?
V nouzovem rezimu funguje normalne?
Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner a ulozte ho na plochu.
Ukoncete vsechny programy, jinak to AdwCleaner udela za vas.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce.
Kliknete na Search a program zacne pracovat.
Az skonci, vyplivne na vas log (pokud ne, najdete ho zde C:\AdwCleaner[R?].txt ), ten mi sem zkopirujte.
Zkousel jste jinou klavesnici? V nouzovem rezimu funguje normalne? Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner a ulozte ho na plochu.Ukoncete vsechny programy, jinak to AdwCleaner udela za vas.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce.
Kliknete na Search a program zacne pracovat.
Az skonci, vyplivne na vas log (pokud ne, najdete ho zde C:\AdwCleaner[R?].txt ), ten mi sem zkopirujte.
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: nefunguji nektere klavesy
dobry den,diky za pomoc. externi klavesnici nemam k dispozici a v safe modu klavesy taky nefunguji.zkusil jsem i ovladace a stale nic
# AdwCleaner v2.103 - Logfile created 12/29/2012 at 14:33:56
# Updated 25/12/2012 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : Natalia - NATALIA-PC
# Boot Mode : Normal
# Running from : C:\Users\Natalia\Desktop\adwcleaner.exe
# Option [Search]
***** [Services] *****
***** [Files / Folders] *****
File Found : C:\Program Files (x86)\Mozilla FireFox\searchplugins\Search_Results.xml
File Found : C:\Users\Natalia\AppData\Local\Temp\Searchqu.ini
File Found : C:\Users\Natalia\AppData\Local\Temp\searchqutoolbar-manifest.xml
File Found : C:\Users\Natalia\AppData\Local\Temp\SetupDataMngr_Searchqu.exe
File Found : C:\Users\Natalia\AppData\Roaming\Mozilla\Firefox\Profiles\fgljcp4i.default\searchplugins\Search_Results.xml
Folder Found : C:\Program Files (x86)\Conduit
Folder Found : C:\Program Files (x86)\Ilivid
Folder Found : C:\Program Files (x86)\Searchqu Toolbar
Folder Found : C:\ProgramData\boost_interprocess
Folder Found : C:\ProgramData\Partner
Folder Found : C:\Users\Natalia\AppData\Local\Conduit
Folder Found : C:\Users\Natalia\AppData\Local\Google\Chrome\User Data\Default\Extensions\fooihgffjknjfdidhkpgeibbipkjlhpn
Folder Found : C:\Users\Natalia\AppData\Local\Ilivid Player
Folder Found : C:\Users\Natalia\AppData\Local\Temp\CT3072254
Folder Found : C:\Users\Natalia\AppData\LocalLow\Conduit
Folder Found : C:\Users\Natalia\AppData\LocalLow\Searchqutoolbar
Folder Found : C:\Users\Natalia\AppData\Roaming\Mozilla\Firefox\Profiles\fgljcp4i.default\ConduitCommon
Folder Found : C:\Users\Natalia\AppData\Roaming\Mozilla\Firefox\Profiles\fgljcp4i.default\CT3072254
Folder Found : C:\Users\Natalia\AppData\Roaming\Mozilla\Firefox\Profiles\fgljcp4i.default\extensions\{99079a25-328f-4bd4-be04-00955acaa0a7}
Folder Found : C:\Users\Natalia\AppData\Roaming\Mozilla\Firefox\Profiles\fgljcp4i.default\extensions\{c2d64ff7-0ab8-4263-89c9-ea3b0f8f050c}
Folder Found : C:\Users\Natalia\AppData\Roaming\Mozilla\Firefox\Profiles\fgljcp4i.default\extensions\{e9df9360-97f8-4690-afe6-996c80790da4}
Folder Found : C:\Users\Natalia\AppData\Roaming\Mozilla\Firefox\Profiles\fgljcp4i.default\Searchqutoolbar
***** [Registry] *****
Data Found : [x64] HKLM\..\Windows [AppInit_DLLs] = C:\PROGRA~2\BEARSH~1\MediaBar\Datamngr\x64\datamngr.dll
Data Found : [x64] HKLM\..\Windows [AppInit_DLLs] = C:\PROGRA~2\BEARSH~1\MediaBar\Datamngr\x64\IEBHO.dll
Data Found : HKLM\..\Windows [AppInit_DLLs] = C:\PROGRA~2\BEARSH~1\MediaBar\Datamngr\datamngr.dll
Data Found : HKLM\..\Windows [AppInit_DLLs] = C:\PROGRA~2\BEARSH~1\MediaBar\Datamngr\IEBHO.dll
Key Found : HKCU\Software\Conduit
Key Found : HKCU\Software\DataMngr
Key Found : HKCU\Software\DataMngr_Toolbar
Key Found : HKCU\Software\ilivid
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{B939CF93-F2CB-443d-956C-DC523D85C9DB}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C2D64FF7-0AB8-4263-89C9-EA3B0F8F050C}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{B939CF93-F2CB-443d-956C-DC523D85C9DB}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C2D64FF7-0AB8-4263-89C9-EA3B0F8F050C}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD22}
Key Found : HKLM\SOFTWARE\Classes\AppID\{28A88B70-D874-4f73-BBBA-9B2B222FB7D6}
Key Found : HKLM\SOFTWARE\Classes\AppID\{AC662AF2-4601-4A68-84DF-A3FE83F1A5F9}
Key Found : HKLM\SOFTWARE\Classes\AppID\{D97A8234-F2A2-4AD4-91D5-FECDB2C553AF}
Key Found : HKLM\SOFTWARE\Classes\AppID\BrowserConnection.dll
Key Found : HKLM\SOFTWARE\Classes\AppID\DNSBHO.dll
Key Found : HKLM\SOFTWARE\Classes\AppID\kt_bho_dll.dll
Key Found : HKLM\SOFTWARE\Classes\BrowserConnection.Loader
Key Found : HKLM\SOFTWARE\Classes\BrowserConnection.Loader.1
Key Found : HKLM\SOFTWARE\Classes\DnsBHO.BHO
Key Found : HKLM\SOFTWARE\Classes\DnsBHO.BHO.1
Key Found : HKLM\SOFTWARE\Classes\kt_bho.KettleBho
Key Found : HKLM\SOFTWARE\Classes\kt_bho.KettleBho.1
Key Found : HKLM\SOFTWARE\Classes\Toolbar.CT3072254
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{86676E13-D6D8-4652-9FCF-F2047F1FB000}
Key Found : HKLM\Software\Conduit
Key Found : HKLM\Software\DataMngr
Key Found : HKLM\Software\ilivid
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SearchquMediaBar_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SearchquMediaBar_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SetupDataMngr_Searchqu_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SetupDataMngr_Searchqu_RASMANCS
Key Found : HKLM\Software\SearchquMediabarTb
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{99079A25-328F-4BD4-BE04-00955ACAA0A7}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{B939CF93-F2CB-443d-956C-DC523D85C9DB}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{C2D64FF7-0AB8-4263-89C9-EA3B0F8F050C}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}
Key Found : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\fooihgffjknjfdidhkpgeibbipkjlhpn
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{99079A25-328F-4BD4-BE04-00955ACAA0A7}
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C2D64FF7-0AB8-4263-89C9-EA3B0F8F050C}
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD22}
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4}
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{99079A25-328F-4BD4-BE04-00955ACAA0A7}
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B939CF93-F2CB-443d-956C-DC523D85C9DB}
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C2D64FF7-0AB8-4263-89C9-EA3B0F8F050C}
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\ilivid
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Searchqu Toolbar
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Wincore MediaBar
Key Found : HKLM\SOFTWARE\Classes\CLSID\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{B939CF93-F2CB-443d-956C-DC523D85C9DB}
Key Found : HKLM\SOFTWARE\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}
Key Found : HKLM\SOFTWARE\DataMngr
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD22}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B939CF93-F2CB-443d-956C-DC523D85C9DB}
Key Found : HKU\S-1-5-21-3013937028-2936379504-1300654602-1000\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD22}
Value Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [DataMngr]
Value Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{99079A25-328F-4BD4-BE04-00955ACAA0A7}]
Value Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{C2D64FF7-0AB8-4263-89C9-EA3B0F8F050C}]
Value Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [10]
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [10]
***** [Internet Browsers] *****
-\\ Internet Explorer v9.0.8112.16457
[OK] Registry is clean.
-\\ Mozilla Firefox v17.0.1 (en-GB)
File : C:\Users\Natalia\AppData\Roaming\Mozilla\Firefox\Profiles\fgljcp4i.default\prefs.js
Found : user_pref("CT3072254..clientLogIsEnabled", false);
Found : user_pref("CT3072254..clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.as[...]
Found : user_pref("CT3072254..uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/Re[...]
Found : user_pref("CT3072254.ALLOW_SHOWING_HIDDEN_TOOLBAR", false);
Found : user_pref("CT3072254.AboutPrivacyUrl", "hxxp://www.conduit.com/privacy/Default.aspx");
Found : user_pref("CT3072254.BrowserCompStateIsOpen_129572934028070084", true);
Found : user_pref("CT3072254.BrowserCompStateIsOpen_129573914344030086", true);
Found : user_pref("CT3072254.CTID", "CT3072254");
Found : user_pref("CT3072254.CurrentServerDate", "14-3-2012");
Found : user_pref("CT3072254.DSInstall", false);
Found : user_pref("CT3072254.DialogsAlignMode", "LTR");
Found : user_pref("CT3072254.DialogsGetterLastCheckTime", "Wed Mar 14 2012 13:41:08 GMT+0000 (GMT Standard T[...]
Found : user_pref("CT3072254.DownloadReferralCookieData", "");
Found : user_pref("CT3072254.EnableClickToSearchBox", false);
Found : user_pref("CT3072254.EnableSearchHistory", false);
Found : user_pref("CT3072254.EnableSearchSuggest", false);
Found : user_pref("CT3072254.FirstServerDate", "14-3-2012");
Found : user_pref("CT3072254.FirstTime", true);
Found : user_pref("CT3072254.FirstTimeFF3", true);
Found : user_pref("CT3072254.FixPageNotFoundErrors", true);
Found : user_pref("CT3072254.GroupingServerCheckInterval", 1440);
Found : user_pref("CT3072254.GroupingServiceUrl", "hxxp://grouping.services.conduit.com/");
Found : user_pref("CT3072254.HPInstall", false);
Found : user_pref("CT3072254.HasUserGlobalKeys", true);
Found : user_pref("CT3072254.HomePageProtectorEnabled", false);
Found : user_pref("CT3072254.HomepageBeforeUnload", "hxxp://search.bearshare.net");
Found : user_pref("CT3072254.Initialize", true);
Found : user_pref("CT3072254.InitializeCommonPrefs", true);
Found : user_pref("CT3072254.InstallationAndCookieDataSentCount", 1);
Found : user_pref("CT3072254.InstallationId", "ConduitXPEIntegration");
Found : user_pref("CT3072254.InstallationType", "ConduitXPEIntegration");
Found : user_pref("CT3072254.InstalledDate", "Wed Mar 14 2012 13:41:07 GMT+0000 (GMT Standard Time)");
Found : user_pref("CT3072254.IsAlertDBUpdated", true);
Found : user_pref("CT3072254.IsGrouping", false);
Found : user_pref("CT3072254.IsInitSetupIni", true);
Found : user_pref("CT3072254.IsMulticommunity", false);
Found : user_pref("CT3072254.IsOpenThankYouPage", true);
Found : user_pref("CT3072254.IsOpenUninstallPage", false);
Found : user_pref("CT3072254.LanguagePackLastCheckTime", "Wed Mar 14 2012 13:41:07 GMT+0000 (GMT Standard Ti[...]
Found : user_pref("CT3072254.LanguagePackReloadIntervalMM", 1440);
Found : user_pref("CT3072254.LanguagePackServiceUrl", "hxxp://translation.users.conduit.com/Translation.ashx[...]
Found : user_pref("CT3072254.LastLogin_3.10.0.1", "Wed Mar 14 2012 13:41:07 GMT+0000 (GMT Standard Time)");
Found : user_pref("CT3072254.LatestVersion", "3.10.0.1");
Found : user_pref("CT3072254.Locale", "en");
Found : user_pref("CT3072254.MCDetectTooltipHeight", "83");
Found : user_pref("CT3072254.MCDetectTooltipShow", false);
Found : user_pref("CT3072254.MCDetectTooltipUrl", "hxxp://@EB_INSTALL_LINK@/rank/tooltip/?version=1");
Found : user_pref("CT3072254.MCDetectTooltipWidth", "295");
Found : user_pref("CT3072254.MyStuffEnabledAtInstallation", true);
Found : user_pref("CT3072254.OriginalFirstVersion", "3.10.0.1");
Found : user_pref("CT3072254.RadioShrinked", "shrinked");
Found : user_pref("CT3072254.RadioShrinkedFromSetup", true);
Found : user_pref("CT3072254.SHRINK_TOOLBAR", 0);
Found : user_pref("CT3072254.SearchBackToDefaultEngine", false);
Found : user_pref("CT3072254.SearchBoxWidth", 219);
Found : user_pref("CT3072254.SearchCaption", "uTorrentControl Customized Web Search");
Found : user_pref("CT3072254.SearchEngineBeforeUnload", "Search Results");
Found : user_pref("CT3072254.SearchFromAddressBarIsInit", true);
Found : user_pref("CT3072254.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT307[...]
Found : user_pref("CT3072254.SearchInNewTabEnabled", true);
Found : user_pref("CT3072254.SearchInNewTabIntervalMM", 1440);
Found : user_pref("CT3072254.SearchInNewTabLastCheckTime", "Wed Mar 14 2012 13:41:07 GMT+0000 (GMT Standard [...]
Found : user_pref("CT3072254.SearchInNewTabServiceUrl", "hxxp://newtab.conduit-hosting.com/newtab/?ctid=EB_T[...]
Found : user_pref("CT3072254.SearchInNewTabUserEnabled", false);
Found : user_pref("CT3072254.SearchProtectorEnabled", false);
Found : user_pref("CT3072254.SearchProtectorToolbarDisabled", true);
Found : user_pref("CT3072254.SendProtectorDataViaLogin", true);
Found : user_pref("CT3072254.ServiceMapLastCheckTime", "Wed Mar 14 2012 13:41:05 GMT+0000 (GMT Standard Time[...]
Found : user_pref("CT3072254.SettingsLastCheckTime", "Wed Mar 14 2012 17:21:24 GMT+0000 (GMT Standard Time)"[...]
Found : user_pref("CT3072254.SettingsLastUpdate", "1328745691");
Found : user_pref("CT3072254.TBHomePageUrl", "hxxp://search.conduit.com/?ctid=CT3072254&SearchSource=13");
Found : user_pref("CT3072254.ThirdPartyComponentsInterval", 504);
Found : user_pref("CT3072254.ThirdPartyComponentsLastCheck", "Wed Mar 14 2012 13:41:05 GMT+0000 (GMT Standar[...]
Found : user_pref("CT3072254.ThirdPartyComponentsLastUpdate", "1312887586");
Found : user_pref("CT3072254.ToolbarDisabled", true);
Found : user_pref("CT3072254.ToolbarShrinkedFromSetup", true);
Found : user_pref("CT3072254.TrusteLinkUrl", "hxxp://trust.conduit.com/CT3072254");
Found : user_pref("CT3072254.TrustedApiDomains", "conduit.com,conduit-hosting.com,conduit-services.com,clien[...]
Found : user_pref("CT3072254.UserID", "UN47141250658992273");
Found : user_pref("CT3072254.ValidationData_Search", 0);
Found : user_pref("CT3072254.ValidationData_Toolbar", 2);
Found : user_pref("CT3072254.alertChannelId", "1463703");
Found : user_pref("CT3072254.approveUntrustedApps", true);
Found : user_pref("CT3072254.autoDisableScopes", -1);
Found : user_pref("CT3072254.backendstorage.cbfirsttime", "576564204D617220313420323031322031333A34313A31312[...]
Found : user_pref("CT3072254.componentAlertEnabled", false);
Found : user_pref("CT3072254.components.1002", false);
Found : user_pref("CT3072254.components.129572934028070084", false);
Found : user_pref("CT3072254.components.129572934844292843", false);
Found : user_pref("CT3072254.components.129573914344030086", false);
Found : user_pref("CT3072254.components.129586117436877147", false);
Found : user_pref("CT3072254.generalConfigFromLogin", "{\"ApiMaxAlerts\":\"12\",\"SocialDomains\":\"social.c[...]
Found : user_pref("CT3072254.globalFirstTimeInfoLastCheckTime", "Wed Mar 14 2012 13:41:07 GMT+0000 (GMT Stan[...]
Found : user_pref("CT3072254.homepageProtectorEnableByLogin", true);
Found : user_pref("CT3072254.initDone", true);
Found : user_pref("CT3072254.isAppTrackingManagerOn", true);
Found : user_pref("CT3072254.isFirstRadioInstallation", false);
Found : user_pref("CT3072254.isSearchProtectorNotifyChanges", false);
Found : user_pref("CT3072254.myStuffEnabled", true);
Found : user_pref("CT3072254.myStuffPublihserMinWidth", 400);
Found : user_pref("CT3072254.myStuffSearchUrl", "hxxp://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOr[...]
Found : user_pref("CT3072254.myStuffServiceIntervalMM", 1440);
Found : user_pref("CT3072254.myStuffServiceUrl", "hxxp://mystuff.conduit-services.com/MyStuffService.ashx?Co[...]
Found : user_pref("CT3072254.navigateToUrlOnSearch", false);
Found : user_pref("CT3072254.revertSettingsEnabled", true);
Found : user_pref("CT3072254.searchProtectorDialogDelayInSec", 10);
Found : user_pref("CT3072254.searchProtectorEnableByLogin", true);
Found : user_pref("CT3072254.testingCtid", "");
Found : user_pref("CT3072254.toolbarAppMetaDataLastCheckTime", "Wed Mar 14 2012 13:41:06 GMT+0000 (GMT Stand[...]
Found : user_pref("CT3072254.toolbarContextMenuLastCheckTime", "Wed Mar 14 2012 13:41:07 GMT+0000 (GMT Stand[...]
Found : user_pref("CT3072254.usageEnabled", false);
Found : user_pref("CT3072254.usagesFlag", 2);
Found : user_pref("CommunityToolbar.ETag.hxxp://Settings.toolbar.search.conduit.com/root/CT3072254/CT3072254[...]
Found : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/1463703/1459357/UK", "\"0\"[...]
Found : user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-services.com/?ctid=CT3072254", [...]
Found : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=GottenApps&lo[...]
Found : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=OtherApps&loc[...]
Found : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=SharedApps&lo[...]
Found : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=Toolbar&local[...]
Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.alert.conduit-services.com/alert/dlg.pkg", "\[...]
Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.10[...]
Found : user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/Toolbar/?ownerId=CT3072254",[...]
Found : user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-services.com/?locale=en", "\"15c[...]
Found : user_pref("CommunityToolbar.LatestLibsPath", "file:///C:\\Users\\Natalia\\AppData\\Roaming\\Mozilla\[...]
Found : user_pref("CommunityToolbar.LatestToolbarVersionInstalled", "3.10.0.1");
Found : user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "hxxp://dts.search-results.com/sr?src=ffb[...]
Found : user_pref("CommunityToolbar.ToolbarsList", "CT3072254");
Found : user_pref("CommunityToolbar.ToolbarsList2", "CT3072254");
Found : user_pref("CommunityToolbar.ToolbarsList4", "CT3072254");
Found : user_pref("CommunityToolbar.globalUserId", "c58d7e92-2d7a-4f36-83d9-6903663a06ee");
Found : user_pref("CommunityToolbar.isAlertUrlAddedToFeedItemTable", true);
Found : user_pref("CommunityToolbar.isClickActionAddedToFeedItemTable", true);
Found : user_pref("CommunityToolbar.notifications.alertDialogsGetterLastCheckTime", "Wed Mar 14 2012 13:41:0[...]
Found : user_pref("CommunityToolbar.notifications.alertEnabled", false);
Found : user_pref("CommunityToolbar.notifications.alertInfoInterval", 1440);
Found : user_pref("CommunityToolbar.notifications.alertInfoLastCheckTime", "Wed Mar 14 2012 17:21:33 GMT+000[...]
Found : user_pref("CommunityToolbar.notifications.clientsServerUrl", "hxxp://alert.client.conduit.com");
Found : user_pref("CommunityToolbar.notifications.locale", "en");
Found : user_pref("CommunityToolbar.notifications.loginIntervalMin", 1440);
Found : user_pref("CommunityToolbar.notifications.loginLastCheckTime", "Wed Mar 14 2012 13:41:05 GMT+0000 (G[...]
Found : user_pref("CommunityToolbar.notifications.loginLastUpdateTime", "1313487611");
Found : user_pref("CommunityToolbar.notifications.messageShowTimeSec", 20);
Found : user_pref("CommunityToolbar.notifications.servicesServerUrl", "hxxp://alert.services.conduit.com");
Found : user_pref("CommunityToolbar.notifications.showTrayIcon", false);
Found : user_pref("CommunityToolbar.notifications.userCloseIntervalMin", 300);
Found : user_pref("CommunityToolbar.notifications.userId", "fa298b58-9a43-4faa-996d-ab46449f03cf");
Found : user_pref("CommunityToolbar.originalHomepage", "hxxp://search.bearshare.net");
Found : user_pref("CommunityToolbar.originalSearchEngine", "Search Results");
Found : user_pref("browser.search.defaultenginename", "Search Results");
Found : user_pref("browser.search.order.1", "Search Results");
Found : user_pref("keyword.URL", "hxxp://dts.search-results.com/sr?src=ffb&appid=102&systemid=2&sr=0&q=");
-\\ Google Chrome v23.0.1271.97
File : C:\Users\Natalia\AppData\Local\Google\Chrome\User Data\Default\Preferences
Found [l.8] : homepage = "hxxp://www.searchnu.com/406",
Found [l.12] : urls_to_restore_on_startup = [ "hxxp://www.searchnu.com/406" ]
Found [l.36] : search_url = "hxxp://dts.search-results.com/sr?src=crb&appid=119&systemid=406&sr=0&q={searchTerms}"
Found [l.203] : homepage = "hxxp://www.searchnu.com/406",
Found [l.368] : urls_to_restore_on_startup = [ "hxxp://www.searchnu.com/406" ]
*************************
AdwCleaner[R1].txt - [20774 octets] - [29/12/2012 14:33:56]
########## EOF - C:\AdwCleaner[R1].txt - [20835 octets] ##########
# AdwCleaner v2.103 - Logfile created 12/29/2012 at 14:33:56
# Updated 25/12/2012 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : Natalia - NATALIA-PC
# Boot Mode : Normal
# Running from : C:\Users\Natalia\Desktop\adwcleaner.exe
# Option [Search]
***** [Services] *****
***** [Files / Folders] *****
File Found : C:\Program Files (x86)\Mozilla FireFox\searchplugins\Search_Results.xml
File Found : C:\Users\Natalia\AppData\Local\Temp\Searchqu.ini
File Found : C:\Users\Natalia\AppData\Local\Temp\searchqutoolbar-manifest.xml
File Found : C:\Users\Natalia\AppData\Local\Temp\SetupDataMngr_Searchqu.exe
File Found : C:\Users\Natalia\AppData\Roaming\Mozilla\Firefox\Profiles\fgljcp4i.default\searchplugins\Search_Results.xml
Folder Found : C:\Program Files (x86)\Conduit
Folder Found : C:\Program Files (x86)\Ilivid
Folder Found : C:\Program Files (x86)\Searchqu Toolbar
Folder Found : C:\ProgramData\boost_interprocess
Folder Found : C:\ProgramData\Partner
Folder Found : C:\Users\Natalia\AppData\Local\Conduit
Folder Found : C:\Users\Natalia\AppData\Local\Google\Chrome\User Data\Default\Extensions\fooihgffjknjfdidhkpgeibbipkjlhpn
Folder Found : C:\Users\Natalia\AppData\Local\Ilivid Player
Folder Found : C:\Users\Natalia\AppData\Local\Temp\CT3072254
Folder Found : C:\Users\Natalia\AppData\LocalLow\Conduit
Folder Found : C:\Users\Natalia\AppData\LocalLow\Searchqutoolbar
Folder Found : C:\Users\Natalia\AppData\Roaming\Mozilla\Firefox\Profiles\fgljcp4i.default\ConduitCommon
Folder Found : C:\Users\Natalia\AppData\Roaming\Mozilla\Firefox\Profiles\fgljcp4i.default\CT3072254
Folder Found : C:\Users\Natalia\AppData\Roaming\Mozilla\Firefox\Profiles\fgljcp4i.default\extensions\{99079a25-328f-4bd4-be04-00955acaa0a7}
Folder Found : C:\Users\Natalia\AppData\Roaming\Mozilla\Firefox\Profiles\fgljcp4i.default\extensions\{c2d64ff7-0ab8-4263-89c9-ea3b0f8f050c}
Folder Found : C:\Users\Natalia\AppData\Roaming\Mozilla\Firefox\Profiles\fgljcp4i.default\extensions\{e9df9360-97f8-4690-afe6-996c80790da4}
Folder Found : C:\Users\Natalia\AppData\Roaming\Mozilla\Firefox\Profiles\fgljcp4i.default\Searchqutoolbar
***** [Registry] *****
Data Found : [x64] HKLM\..\Windows [AppInit_DLLs] = C:\PROGRA~2\BEARSH~1\MediaBar\Datamngr\x64\datamngr.dll
Data Found : [x64] HKLM\..\Windows [AppInit_DLLs] = C:\PROGRA~2\BEARSH~1\MediaBar\Datamngr\x64\IEBHO.dll
Data Found : HKLM\..\Windows [AppInit_DLLs] = C:\PROGRA~2\BEARSH~1\MediaBar\Datamngr\datamngr.dll
Data Found : HKLM\..\Windows [AppInit_DLLs] = C:\PROGRA~2\BEARSH~1\MediaBar\Datamngr\IEBHO.dll
Key Found : HKCU\Software\Conduit
Key Found : HKCU\Software\DataMngr
Key Found : HKCU\Software\DataMngr_Toolbar
Key Found : HKCU\Software\ilivid
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{B939CF93-F2CB-443d-956C-DC523D85C9DB}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C2D64FF7-0AB8-4263-89C9-EA3B0F8F050C}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{B939CF93-F2CB-443d-956C-DC523D85C9DB}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C2D64FF7-0AB8-4263-89C9-EA3B0F8F050C}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD22}
Key Found : HKLM\SOFTWARE\Classes\AppID\{28A88B70-D874-4f73-BBBA-9B2B222FB7D6}
Key Found : HKLM\SOFTWARE\Classes\AppID\{AC662AF2-4601-4A68-84DF-A3FE83F1A5F9}
Key Found : HKLM\SOFTWARE\Classes\AppID\{D97A8234-F2A2-4AD4-91D5-FECDB2C553AF}
Key Found : HKLM\SOFTWARE\Classes\AppID\BrowserConnection.dll
Key Found : HKLM\SOFTWARE\Classes\AppID\DNSBHO.dll
Key Found : HKLM\SOFTWARE\Classes\AppID\kt_bho_dll.dll
Key Found : HKLM\SOFTWARE\Classes\BrowserConnection.Loader
Key Found : HKLM\SOFTWARE\Classes\BrowserConnection.Loader.1
Key Found : HKLM\SOFTWARE\Classes\DnsBHO.BHO
Key Found : HKLM\SOFTWARE\Classes\DnsBHO.BHO.1
Key Found : HKLM\SOFTWARE\Classes\kt_bho.KettleBho
Key Found : HKLM\SOFTWARE\Classes\kt_bho.KettleBho.1
Key Found : HKLM\SOFTWARE\Classes\Toolbar.CT3072254
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{86676E13-D6D8-4652-9FCF-F2047F1FB000}
Key Found : HKLM\Software\Conduit
Key Found : HKLM\Software\DataMngr
Key Found : HKLM\Software\ilivid
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SearchquMediaBar_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SearchquMediaBar_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SetupDataMngr_Searchqu_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SetupDataMngr_Searchqu_RASMANCS
Key Found : HKLM\Software\SearchquMediabarTb
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{99079A25-328F-4BD4-BE04-00955ACAA0A7}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{B939CF93-F2CB-443d-956C-DC523D85C9DB}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{C2D64FF7-0AB8-4263-89C9-EA3B0F8F050C}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}
Key Found : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\fooihgffjknjfdidhkpgeibbipkjlhpn
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{99079A25-328F-4BD4-BE04-00955ACAA0A7}
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C2D64FF7-0AB8-4263-89C9-EA3B0F8F050C}
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD22}
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4}
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{99079A25-328F-4BD4-BE04-00955ACAA0A7}
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B939CF93-F2CB-443d-956C-DC523D85C9DB}
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C2D64FF7-0AB8-4263-89C9-EA3B0F8F050C}
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\ilivid
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Searchqu Toolbar
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Wincore MediaBar
Key Found : HKLM\SOFTWARE\Classes\CLSID\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{B939CF93-F2CB-443d-956C-DC523D85C9DB}
Key Found : HKLM\SOFTWARE\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}
Key Found : HKLM\SOFTWARE\DataMngr
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD22}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B939CF93-F2CB-443d-956C-DC523D85C9DB}
Key Found : HKU\S-1-5-21-3013937028-2936379504-1300654602-1000\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD22}
Value Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [DataMngr]
Value Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{99079A25-328F-4BD4-BE04-00955ACAA0A7}]
Value Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{C2D64FF7-0AB8-4263-89C9-EA3B0F8F050C}]
Value Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [10]
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [10]
***** [Internet Browsers] *****
-\\ Internet Explorer v9.0.8112.16457
[OK] Registry is clean.
-\\ Mozilla Firefox v17.0.1 (en-GB)
File : C:\Users\Natalia\AppData\Roaming\Mozilla\Firefox\Profiles\fgljcp4i.default\prefs.js
Found : user_pref("CT3072254..clientLogIsEnabled", false);
Found : user_pref("CT3072254..clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.as[...]
Found : user_pref("CT3072254..uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/Re[...]
Found : user_pref("CT3072254.ALLOW_SHOWING_HIDDEN_TOOLBAR", false);
Found : user_pref("CT3072254.AboutPrivacyUrl", "hxxp://www.conduit.com/privacy/Default.aspx");
Found : user_pref("CT3072254.BrowserCompStateIsOpen_129572934028070084", true);
Found : user_pref("CT3072254.BrowserCompStateIsOpen_129573914344030086", true);
Found : user_pref("CT3072254.CTID", "CT3072254");
Found : user_pref("CT3072254.CurrentServerDate", "14-3-2012");
Found : user_pref("CT3072254.DSInstall", false);
Found : user_pref("CT3072254.DialogsAlignMode", "LTR");
Found : user_pref("CT3072254.DialogsGetterLastCheckTime", "Wed Mar 14 2012 13:41:08 GMT+0000 (GMT Standard T[...]
Found : user_pref("CT3072254.DownloadReferralCookieData", "");
Found : user_pref("CT3072254.EnableClickToSearchBox", false);
Found : user_pref("CT3072254.EnableSearchHistory", false);
Found : user_pref("CT3072254.EnableSearchSuggest", false);
Found : user_pref("CT3072254.FirstServerDate", "14-3-2012");
Found : user_pref("CT3072254.FirstTime", true);
Found : user_pref("CT3072254.FirstTimeFF3", true);
Found : user_pref("CT3072254.FixPageNotFoundErrors", true);
Found : user_pref("CT3072254.GroupingServerCheckInterval", 1440);
Found : user_pref("CT3072254.GroupingServiceUrl", "hxxp://grouping.services.conduit.com/");
Found : user_pref("CT3072254.HPInstall", false);
Found : user_pref("CT3072254.HasUserGlobalKeys", true);
Found : user_pref("CT3072254.HomePageProtectorEnabled", false);
Found : user_pref("CT3072254.HomepageBeforeUnload", "hxxp://search.bearshare.net");
Found : user_pref("CT3072254.Initialize", true);
Found : user_pref("CT3072254.InitializeCommonPrefs", true);
Found : user_pref("CT3072254.InstallationAndCookieDataSentCount", 1);
Found : user_pref("CT3072254.InstallationId", "ConduitXPEIntegration");
Found : user_pref("CT3072254.InstallationType", "ConduitXPEIntegration");
Found : user_pref("CT3072254.InstalledDate", "Wed Mar 14 2012 13:41:07 GMT+0000 (GMT Standard Time)");
Found : user_pref("CT3072254.IsAlertDBUpdated", true);
Found : user_pref("CT3072254.IsGrouping", false);
Found : user_pref("CT3072254.IsInitSetupIni", true);
Found : user_pref("CT3072254.IsMulticommunity", false);
Found : user_pref("CT3072254.IsOpenThankYouPage", true);
Found : user_pref("CT3072254.IsOpenUninstallPage", false);
Found : user_pref("CT3072254.LanguagePackLastCheckTime", "Wed Mar 14 2012 13:41:07 GMT+0000 (GMT Standard Ti[...]
Found : user_pref("CT3072254.LanguagePackReloadIntervalMM", 1440);
Found : user_pref("CT3072254.LanguagePackServiceUrl", "hxxp://translation.users.conduit.com/Translation.ashx[...]
Found : user_pref("CT3072254.LastLogin_3.10.0.1", "Wed Mar 14 2012 13:41:07 GMT+0000 (GMT Standard Time)");
Found : user_pref("CT3072254.LatestVersion", "3.10.0.1");
Found : user_pref("CT3072254.Locale", "en");
Found : user_pref("CT3072254.MCDetectTooltipHeight", "83");
Found : user_pref("CT3072254.MCDetectTooltipShow", false);
Found : user_pref("CT3072254.MCDetectTooltipUrl", "hxxp://@EB_INSTALL_LINK@/rank/tooltip/?version=1");
Found : user_pref("CT3072254.MCDetectTooltipWidth", "295");
Found : user_pref("CT3072254.MyStuffEnabledAtInstallation", true);
Found : user_pref("CT3072254.OriginalFirstVersion", "3.10.0.1");
Found : user_pref("CT3072254.RadioShrinked", "shrinked");
Found : user_pref("CT3072254.RadioShrinkedFromSetup", true);
Found : user_pref("CT3072254.SHRINK_TOOLBAR", 0);
Found : user_pref("CT3072254.SearchBackToDefaultEngine", false);
Found : user_pref("CT3072254.SearchBoxWidth", 219);
Found : user_pref("CT3072254.SearchCaption", "uTorrentControl Customized Web Search");
Found : user_pref("CT3072254.SearchEngineBeforeUnload", "Search Results");
Found : user_pref("CT3072254.SearchFromAddressBarIsInit", true);
Found : user_pref("CT3072254.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT307[...]
Found : user_pref("CT3072254.SearchInNewTabEnabled", true);
Found : user_pref("CT3072254.SearchInNewTabIntervalMM", 1440);
Found : user_pref("CT3072254.SearchInNewTabLastCheckTime", "Wed Mar 14 2012 13:41:07 GMT+0000 (GMT Standard [...]
Found : user_pref("CT3072254.SearchInNewTabServiceUrl", "hxxp://newtab.conduit-hosting.com/newtab/?ctid=EB_T[...]
Found : user_pref("CT3072254.SearchInNewTabUserEnabled", false);
Found : user_pref("CT3072254.SearchProtectorEnabled", false);
Found : user_pref("CT3072254.SearchProtectorToolbarDisabled", true);
Found : user_pref("CT3072254.SendProtectorDataViaLogin", true);
Found : user_pref("CT3072254.ServiceMapLastCheckTime", "Wed Mar 14 2012 13:41:05 GMT+0000 (GMT Standard Time[...]
Found : user_pref("CT3072254.SettingsLastCheckTime", "Wed Mar 14 2012 17:21:24 GMT+0000 (GMT Standard Time)"[...]
Found : user_pref("CT3072254.SettingsLastUpdate", "1328745691");
Found : user_pref("CT3072254.TBHomePageUrl", "hxxp://search.conduit.com/?ctid=CT3072254&SearchSource=13");
Found : user_pref("CT3072254.ThirdPartyComponentsInterval", 504);
Found : user_pref("CT3072254.ThirdPartyComponentsLastCheck", "Wed Mar 14 2012 13:41:05 GMT+0000 (GMT Standar[...]
Found : user_pref("CT3072254.ThirdPartyComponentsLastUpdate", "1312887586");
Found : user_pref("CT3072254.ToolbarDisabled", true);
Found : user_pref("CT3072254.ToolbarShrinkedFromSetup", true);
Found : user_pref("CT3072254.TrusteLinkUrl", "hxxp://trust.conduit.com/CT3072254");
Found : user_pref("CT3072254.TrustedApiDomains", "conduit.com,conduit-hosting.com,conduit-services.com,clien[...]
Found : user_pref("CT3072254.UserID", "UN47141250658992273");
Found : user_pref("CT3072254.ValidationData_Search", 0);
Found : user_pref("CT3072254.ValidationData_Toolbar", 2);
Found : user_pref("CT3072254.alertChannelId", "1463703");
Found : user_pref("CT3072254.approveUntrustedApps", true);
Found : user_pref("CT3072254.autoDisableScopes", -1);
Found : user_pref("CT3072254.backendstorage.cbfirsttime", "576564204D617220313420323031322031333A34313A31312[...]
Found : user_pref("CT3072254.componentAlertEnabled", false);
Found : user_pref("CT3072254.components.1002", false);
Found : user_pref("CT3072254.components.129572934028070084", false);
Found : user_pref("CT3072254.components.129572934844292843", false);
Found : user_pref("CT3072254.components.129573914344030086", false);
Found : user_pref("CT3072254.components.129586117436877147", false);
Found : user_pref("CT3072254.generalConfigFromLogin", "{\"ApiMaxAlerts\":\"12\",\"SocialDomains\":\"social.c[...]
Found : user_pref("CT3072254.globalFirstTimeInfoLastCheckTime", "Wed Mar 14 2012 13:41:07 GMT+0000 (GMT Stan[...]
Found : user_pref("CT3072254.homepageProtectorEnableByLogin", true);
Found : user_pref("CT3072254.initDone", true);
Found : user_pref("CT3072254.isAppTrackingManagerOn", true);
Found : user_pref("CT3072254.isFirstRadioInstallation", false);
Found : user_pref("CT3072254.isSearchProtectorNotifyChanges", false);
Found : user_pref("CT3072254.myStuffEnabled", true);
Found : user_pref("CT3072254.myStuffPublihserMinWidth", 400);
Found : user_pref("CT3072254.myStuffSearchUrl", "hxxp://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOr[...]
Found : user_pref("CT3072254.myStuffServiceIntervalMM", 1440);
Found : user_pref("CT3072254.myStuffServiceUrl", "hxxp://mystuff.conduit-services.com/MyStuffService.ashx?Co[...]
Found : user_pref("CT3072254.navigateToUrlOnSearch", false);
Found : user_pref("CT3072254.revertSettingsEnabled", true);
Found : user_pref("CT3072254.searchProtectorDialogDelayInSec", 10);
Found : user_pref("CT3072254.searchProtectorEnableByLogin", true);
Found : user_pref("CT3072254.testingCtid", "");
Found : user_pref("CT3072254.toolbarAppMetaDataLastCheckTime", "Wed Mar 14 2012 13:41:06 GMT+0000 (GMT Stand[...]
Found : user_pref("CT3072254.toolbarContextMenuLastCheckTime", "Wed Mar 14 2012 13:41:07 GMT+0000 (GMT Stand[...]
Found : user_pref("CT3072254.usageEnabled", false);
Found : user_pref("CT3072254.usagesFlag", 2);
Found : user_pref("CommunityToolbar.ETag.hxxp://Settings.toolbar.search.conduit.com/root/CT3072254/CT3072254[...]
Found : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/1463703/1459357/UK", "\"0\"[...]
Found : user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-services.com/?ctid=CT3072254", [...]
Found : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=GottenApps&lo[...]
Found : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=OtherApps&loc[...]
Found : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=SharedApps&lo[...]
Found : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=Toolbar&local[...]
Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.alert.conduit-services.com/alert/dlg.pkg", "\[...]
Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.10[...]
Found : user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/Toolbar/?ownerId=CT3072254",[...]
Found : user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-services.com/?locale=en", "\"15c[...]
Found : user_pref("CommunityToolbar.LatestLibsPath", "file:///C:\\Users\\Natalia\\AppData\\Roaming\\Mozilla\[...]
Found : user_pref("CommunityToolbar.LatestToolbarVersionInstalled", "3.10.0.1");
Found : user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "hxxp://dts.search-results.com/sr?src=ffb[...]
Found : user_pref("CommunityToolbar.ToolbarsList", "CT3072254");
Found : user_pref("CommunityToolbar.ToolbarsList2", "CT3072254");
Found : user_pref("CommunityToolbar.ToolbarsList4", "CT3072254");
Found : user_pref("CommunityToolbar.globalUserId", "c58d7e92-2d7a-4f36-83d9-6903663a06ee");
Found : user_pref("CommunityToolbar.isAlertUrlAddedToFeedItemTable", true);
Found : user_pref("CommunityToolbar.isClickActionAddedToFeedItemTable", true);
Found : user_pref("CommunityToolbar.notifications.alertDialogsGetterLastCheckTime", "Wed Mar 14 2012 13:41:0[...]
Found : user_pref("CommunityToolbar.notifications.alertEnabled", false);
Found : user_pref("CommunityToolbar.notifications.alertInfoInterval", 1440);
Found : user_pref("CommunityToolbar.notifications.alertInfoLastCheckTime", "Wed Mar 14 2012 17:21:33 GMT+000[...]
Found : user_pref("CommunityToolbar.notifications.clientsServerUrl", "hxxp://alert.client.conduit.com");
Found : user_pref("CommunityToolbar.notifications.locale", "en");
Found : user_pref("CommunityToolbar.notifications.loginIntervalMin", 1440);
Found : user_pref("CommunityToolbar.notifications.loginLastCheckTime", "Wed Mar 14 2012 13:41:05 GMT+0000 (G[...]
Found : user_pref("CommunityToolbar.notifications.loginLastUpdateTime", "1313487611");
Found : user_pref("CommunityToolbar.notifications.messageShowTimeSec", 20);
Found : user_pref("CommunityToolbar.notifications.servicesServerUrl", "hxxp://alert.services.conduit.com");
Found : user_pref("CommunityToolbar.notifications.showTrayIcon", false);
Found : user_pref("CommunityToolbar.notifications.userCloseIntervalMin", 300);
Found : user_pref("CommunityToolbar.notifications.userId", "fa298b58-9a43-4faa-996d-ab46449f03cf");
Found : user_pref("CommunityToolbar.originalHomepage", "hxxp://search.bearshare.net");
Found : user_pref("CommunityToolbar.originalSearchEngine", "Search Results");
Found : user_pref("browser.search.defaultenginename", "Search Results");
Found : user_pref("browser.search.order.1", "Search Results");
Found : user_pref("keyword.URL", "hxxp://dts.search-results.com/sr?src=ffb&appid=102&systemid=2&sr=0&q=");
-\\ Google Chrome v23.0.1271.97
File : C:\Users\Natalia\AppData\Local\Google\Chrome\User Data\Default\Preferences
Found [l.8] : homepage = "hxxp://www.searchnu.com/406",
Found [l.12] : urls_to_restore_on_startup = [ "hxxp://www.searchnu.com/406" ]
Found [l.36] : search_url = "hxxp://dts.search-results.com/sr?src=crb&appid=119&systemid=406&sr=0&q={searchTerms}"
Found [l.203] : homepage = "hxxp://www.searchnu.com/406",
Found [l.368] : urls_to_restore_on_startup = [ "hxxp://www.searchnu.com/406" ]
*************************
AdwCleaner[R1].txt - [20774 octets] - [29/12/2012 14:33:56]
########## EOF - C:\AdwCleaner[R1].txt - [20835 octets] ##########
Majkl55
Re: nefunguji nektere klavesy
Kdyz to dela i v nouzovem rezimu, vypada to opravdu na vadnou klavesnici. Zkuste si treba na chvili pujcit od souseda, nebo nekoho a vyzkousejte.
Znovu ukoncete vsechny programy a spustte AdwCleaner jako spravce.
Tentokrat kliknete na Delete
Program zacne pracovat (muze dojit k restartu pc) a vyplivne dalsi log (pripadne bude zde C:\AdwCleaner [S1].txt ). Ten mi sem zase zkopirujte.
Znovu ukoncete vsechny programy a spustte AdwCleaner jako spravce.Tentokrat kliknete na Delete
Program zacne pracovat (muze dojit k restartu pc) a vyplivne dalsi log (pripadne bude zde C:\AdwCleaner [S1].txt ). Ten mi sem zase zkopirujte.
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: nefunguji nektere klavesy
vyzkousim dekuji
# AdwCleaner v2.103 - Logfile created 12/30/2012 at 10:50:05
# Updated 25/12/2012 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : Natalia - NATALIA-PC
# Boot Mode : Normal
# Running from : C:\Users\Natalia\Desktop\adwcleaner.exe
# Option [Delete]
***** [Services] *****
***** [Files / Folders] *****
File Deleted : C:\Program Files (x86)\Mozilla FireFox\searchplugins\Search_Results.xml
File Deleted : C:\Users\Natalia\AppData\Local\Temp\Searchqu.ini
File Deleted : C:\Users\Natalia\AppData\Local\Temp\searchqutoolbar-manifest.xml
File Deleted : C:\Users\Natalia\AppData\Local\Temp\SetupDataMngr_Searchqu.exe
File Deleted : C:\Users\Natalia\AppData\Roaming\Mozilla\Firefox\Profiles\fgljcp4i.default\searchplugins\Search_Results.xml
Folder Deleted : C:\Program Files (x86)\Conduit
Folder Deleted : C:\Program Files (x86)\Ilivid
Folder Deleted : C:\Program Files (x86)\Searchqu Toolbar
Folder Deleted : C:\ProgramData\boost_interprocess
Folder Deleted : C:\ProgramData\Partner
Folder Deleted : C:\Users\Natalia\AppData\Local\Conduit
Folder Deleted : C:\Users\Natalia\AppData\Local\Google\Chrome\User Data\Default\Extensions\fooihgffjknjfdidhkpgeibbipkjlhpn
Folder Deleted : C:\Users\Natalia\AppData\Local\Ilivid Player
Folder Deleted : C:\Users\Natalia\AppData\Local\Temp\CT3072254
Folder Deleted : C:\Users\Natalia\AppData\LocalLow\Conduit
Folder Deleted : C:\Users\Natalia\AppData\LocalLow\Searchqutoolbar
Folder Deleted : C:\Users\Natalia\AppData\Roaming\Mozilla\Firefox\Profiles\fgljcp4i.default\ConduitCommon
Folder Deleted : C:\Users\Natalia\AppData\Roaming\Mozilla\Firefox\Profiles\fgljcp4i.default\CT3072254
Folder Deleted : C:\Users\Natalia\AppData\Roaming\Mozilla\Firefox\Profiles\fgljcp4i.default\extensions\{99079a25-328f-4bd4-be04-00955acaa0a7}
Folder Deleted : C:\Users\Natalia\AppData\Roaming\Mozilla\Firefox\Profiles\fgljcp4i.default\extensions\{c2d64ff7-0ab8-4263-89c9-ea3b0f8f050c}
Folder Deleted : C:\Users\Natalia\AppData\Roaming\Mozilla\Firefox\Profiles\fgljcp4i.default\extensions\{e9df9360-97f8-4690-afe6-996c80790da4}
Folder Deleted : C:\Users\Natalia\AppData\Roaming\Mozilla\Firefox\Profiles\fgljcp4i.default\Searchqutoolbar
***** [Registry] *****
Data Deleted : [x64] HKLM\..\Windows [AppInit_DLLs] = C:\PROGRA~2\BEARSH~1\MediaBar\Datamngr\x64\datamngr.dll
Data Deleted : [x64] HKLM\..\Windows [AppInit_DLLs] = C:\PROGRA~2\BEARSH~1\MediaBar\Datamngr\x64\IEBHO.dll
Data Deleted : HKLM\..\Windows [AppInit_DLLs] = C:\PROGRA~2\BEARSH~1\MediaBar\Datamngr\datamngr.dll
Data Deleted : HKLM\..\Windows [AppInit_DLLs] = C:\PROGRA~2\BEARSH~1\MediaBar\Datamngr\IEBHO.dll
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\DataMngr
Key Deleted : HKCU\Software\DataMngr_Toolbar
Key Deleted : HKCU\Software\ilivid
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{B939CF93-F2CB-443d-956C-DC523D85C9DB}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C2D64FF7-0AB8-4263-89C9-EA3B0F8F050C}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{B939CF93-F2CB-443d-956C-DC523D85C9DB}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C2D64FF7-0AB8-4263-89C9-EA3B0F8F050C}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD22}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{28A88B70-D874-4f73-BBBA-9B2B222FB7D6}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{AC662AF2-4601-4A68-84DF-A3FE83F1A5F9}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{D97A8234-F2A2-4AD4-91D5-FECDB2C553AF}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\BrowserConnection.dll
Key Deleted : HKLM\SOFTWARE\Classes\AppID\DNSBHO.dll
Key Deleted : HKLM\SOFTWARE\Classes\AppID\kt_bho_dll.dll
Key Deleted : HKLM\SOFTWARE\Classes\BrowserConnection.Loader
Key Deleted : HKLM\SOFTWARE\Classes\BrowserConnection.Loader.1
Key Deleted : HKLM\SOFTWARE\Classes\DnsBHO.BHO
Key Deleted : HKLM\SOFTWARE\Classes\DnsBHO.BHO.1
Key Deleted : HKLM\SOFTWARE\Classes\kt_bho.KettleBho
Key Deleted : HKLM\SOFTWARE\Classes\kt_bho.KettleBho.1
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT3072254
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{86676E13-D6D8-4652-9FCF-F2047F1FB000}
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\Software\DataMngr
Key Deleted : HKLM\Software\ilivid
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SearchquMediaBar_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SearchquMediaBar_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SetupDataMngr_Searchqu_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SetupDataMngr_Searchqu_RASMANCS
Key Deleted : HKLM\Software\SearchquMediabarTb
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{99079A25-328F-4BD4-BE04-00955ACAA0A7}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{B939CF93-F2CB-443d-956C-DC523D85C9DB}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{C2D64FF7-0AB8-4263-89C9-EA3B0F8F050C}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\fooihgffjknjfdidhkpgeibbipkjlhpn
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{99079A25-328F-4BD4-BE04-00955ACAA0A7}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C2D64FF7-0AB8-4263-89C9-EA3B0F8F050C}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD22}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{99079A25-328F-4BD4-BE04-00955ACAA0A7}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B939CF93-F2CB-443d-956C-DC523D85C9DB}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C2D64FF7-0AB8-4263-89C9-EA3B0F8F050C}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\ilivid
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Searchqu Toolbar
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Wincore MediaBar
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B939CF93-F2CB-443d-956C-DC523D85C9DB}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}
Key Deleted : HKLM\SOFTWARE\DataMngr
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD22}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B939CF93-F2CB-443d-956C-DC523D85C9DB}
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [DataMngr]
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{99079A25-328F-4BD4-BE04-00955ACAA0A7}]
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{C2D64FF7-0AB8-4263-89C9-EA3B0F8F050C}]
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [10]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [10]
***** [Internet Browsers] *****
-\\ Internet Explorer v9.0.8112.16457
[OK] Registry is clean.
-\\ Mozilla Firefox v17.0.1 (en-GB)
File : C:\Users\Natalia\AppData\Roaming\Mozilla\Firefox\Profiles\fgljcp4i.default\prefs.js
Deleted : user_pref("CT3072254..clientLogIsEnabled", false);
Deleted : user_pref("CT3072254..clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.as[...]
Deleted : user_pref("CT3072254..uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/Re[...]
Deleted : user_pref("CT3072254.ALLOW_SHOWING_HIDDEN_TOOLBAR", false);
Deleted : user_pref("CT3072254.AboutPrivacyUrl", "hxxp://www.conduit.com/privacy/Default.aspx");
Deleted : user_pref("CT3072254.BrowserCompStateIsOpen_129572934028070084", true);
Deleted : user_pref("CT3072254.BrowserCompStateIsOpen_129573914344030086", true);
Deleted : user_pref("CT3072254.CTID", "CT3072254");
Deleted : user_pref("CT3072254.CurrentServerDate", "14-3-2012");
Deleted : user_pref("CT3072254.DSInstall", false);
Deleted : user_pref("CT3072254.DialogsAlignMode", "LTR");
Deleted : user_pref("CT3072254.DialogsGetterLastCheckTime", "Wed Mar 14 2012 13:41:08 GMT+0000 (GMT Standard T[...]
Deleted : user_pref("CT3072254.DownloadReferralCookieData", "");
Deleted : user_pref("CT3072254.EnableClickToSearchBox", false);
Deleted : user_pref("CT3072254.EnableSearchHistory", false);
Deleted : user_pref("CT3072254.EnableSearchSuggest", false);
Deleted : user_pref("CT3072254.FirstServerDate", "14-3-2012");
Deleted : user_pref("CT3072254.FirstTime", true);
Deleted : user_pref("CT3072254.FirstTimeFF3", true);
Deleted : user_pref("CT3072254.FixPageNotFoundErrors", true);
Deleted : user_pref("CT3072254.GroupingServerCheckInterval", 1440);
Deleted : user_pref("CT3072254.GroupingServiceUrl", "hxxp://grouping.services.conduit.com/");
Deleted : user_pref("CT3072254.HPInstall", false);
Deleted : user_pref("CT3072254.HasUserGlobalKeys", true);
Deleted : user_pref("CT3072254.HomePageProtectorEnabled", false);
Deleted : user_pref("CT3072254.HomepageBeforeUnload", "hxxp://search.bearshare.net");
Deleted : user_pref("CT3072254.Initialize", true);
Deleted : user_pref("CT3072254.InitializeCommonPrefs", true);
Deleted : user_pref("CT3072254.InstallationAndCookieDataSentCount", 1);
Deleted : user_pref("CT3072254.InstallationId", "ConduitXPEIntegration");
Deleted : user_pref("CT3072254.InstallationType", "ConduitXPEIntegration");
Deleted : user_pref("CT3072254.InstalledDate", "Wed Mar 14 2012 13:41:07 GMT+0000 (GMT Standard Time)");
Deleted : user_pref("CT3072254.IsAlertDBUpdated", true);
Deleted : user_pref("CT3072254.IsGrouping", false);
Deleted : user_pref("CT3072254.IsInitSetupIni", true);
Deleted : user_pref("CT3072254.IsMulticommunity", false);
Deleted : user_pref("CT3072254.IsOpenThankYouPage", true);
Deleted : user_pref("CT3072254.IsOpenUninstallPage", false);
Deleted : user_pref("CT3072254.LanguagePackLastCheckTime", "Wed Mar 14 2012 13:41:07 GMT+0000 (GMT Standard Ti[...]
Deleted : user_pref("CT3072254.LanguagePackReloadIntervalMM", 1440);
Deleted : user_pref("CT3072254.LanguagePackServiceUrl", "hxxp://translation.users.conduit.com/Translation.ashx[...]
Deleted : user_pref("CT3072254.LastLogin_3.10.0.1", "Wed Mar 14 2012 13:41:07 GMT+0000 (GMT Standard Time)");
Deleted : user_pref("CT3072254.LatestVersion", "3.10.0.1");
Deleted : user_pref("CT3072254.Locale", "en");
Deleted : user_pref("CT3072254.MCDetectTooltipHeight", "83");
Deleted : user_pref("CT3072254.MCDetectTooltipShow", false);
Deleted : user_pref("CT3072254.MCDetectTooltipUrl", "hxxp://@EB_INSTALL_LINK@/rank/tooltip/?version=1");
Deleted : user_pref("CT3072254.MCDetectTooltipWidth", "295");
Deleted : user_pref("CT3072254.MyStuffEnabledAtInstallation", true);
Deleted : user_pref("CT3072254.OriginalFirstVersion", "3.10.0.1");
Deleted : user_pref("CT3072254.RadioShrinked", "shrinked");
Deleted : user_pref("CT3072254.RadioShrinkedFromSetup", true);
Deleted : user_pref("CT3072254.SHRINK_TOOLBAR", 0);
Deleted : user_pref("CT3072254.SearchBackToDefaultEngine", false);
Deleted : user_pref("CT3072254.SearchBoxWidth", 219);
Deleted : user_pref("CT3072254.SearchCaption", "uTorrentControl Customized Web Search");
Deleted : user_pref("CT3072254.SearchEngineBeforeUnload", "Search Results");
Deleted : user_pref("CT3072254.SearchFromAddressBarIsInit", true);
Deleted : user_pref("CT3072254.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT307[...]
Deleted : user_pref("CT3072254.SearchInNewTabEnabled", true);
Deleted : user_pref("CT3072254.SearchInNewTabIntervalMM", 1440);
Deleted : user_pref("CT3072254.SearchInNewTabLastCheckTime", "Wed Mar 14 2012 13:41:07 GMT+0000 (GMT Standard [...]
Deleted : user_pref("CT3072254.SearchInNewTabServiceUrl", "hxxp://newtab.conduit-hosting.com/newtab/?ctid=EB_T[...]
Deleted : user_pref("CT3072254.SearchInNewTabUserEnabled", false);
Deleted : user_pref("CT3072254.SearchProtectorEnabled", false);
Deleted : user_pref("CT3072254.SearchProtectorToolbarDisabled", true);
Deleted : user_pref("CT3072254.SendProtectorDataViaLogin", true);
Deleted : user_pref("CT3072254.ServiceMapLastCheckTime", "Wed Mar 14 2012 13:41:05 GMT+0000 (GMT Standard Time[...]
Deleted : user_pref("CT3072254.SettingsLastCheckTime", "Wed Mar 14 2012 17:21:24 GMT+0000 (GMT Standard Time)"[...]
Deleted : user_pref("CT3072254.SettingsLastUpdate", "1328745691");
Deleted : user_pref("CT3072254.TBHomePageUrl", "hxxp://search.conduit.com/?ctid=CT3072254&SearchSource=13");
Deleted : user_pref("CT3072254.ThirdPartyComponentsInterval", 504);
Deleted : user_pref("CT3072254.ThirdPartyComponentsLastCheck", "Wed Mar 14 2012 13:41:05 GMT+0000 (GMT Standar[...]
Deleted : user_pref("CT3072254.ThirdPartyComponentsLastUpdate", "1312887586");
Deleted : user_pref("CT3072254.ToolbarDisabled", true);
Deleted : user_pref("CT3072254.ToolbarShrinkedFromSetup", true);
Deleted : user_pref("CT3072254.TrusteLinkUrl", "hxxp://trust.conduit.com/CT3072254");
Deleted : user_pref("CT3072254.TrustedApiDomains", "conduit.com,conduit-hosting.com,conduit-services.com,clien[...]
Deleted : user_pref("CT3072254.UserID", "UN47141250658992273");
Deleted : user_pref("CT3072254.ValidationData_Search", 0);
Deleted : user_pref("CT3072254.ValidationData_Toolbar", 2);
Deleted : user_pref("CT3072254.alertChannelId", "1463703");
Deleted : user_pref("CT3072254.approveUntrustedApps", true);
Deleted : user_pref("CT3072254.autoDisableScopes", -1);
Deleted : user_pref("CT3072254.backendstorage.cbfirsttime", "576564204D617220313420323031322031333A34313A31312[...]
Deleted : user_pref("CT3072254.componentAlertEnabled", false);
Deleted : user_pref("CT3072254.components.1002", false);
Deleted : user_pref("CT3072254.components.129572934028070084", false);
Deleted : user_pref("CT3072254.components.129572934844292843", false);
Deleted : user_pref("CT3072254.components.129573914344030086", false);
Deleted : user_pref("CT3072254.components.129586117436877147", false);
Deleted : user_pref("CT3072254.generalConfigFromLogin", "{\"ApiMaxAlerts\":\"12\",\"SocialDomains\":\"social.c[...]
Deleted : user_pref("CT3072254.globalFirstTimeInfoLastCheckTime", "Wed Mar 14 2012 13:41:07 GMT+0000 (GMT Stan[...]
Deleted : user_pref("CT3072254.homepageProtectorEnableByLogin", true);
Deleted : user_pref("CT3072254.initDone", true);
Deleted : user_pref("CT3072254.isAppTrackingManagerOn", true);
Deleted : user_pref("CT3072254.isFirstRadioInstallation", false);
Deleted : user_pref("CT3072254.isSearchProtectorNotifyChanges", false);
Deleted : user_pref("CT3072254.myStuffEnabled", true);
Deleted : user_pref("CT3072254.myStuffPublihserMinWidth", 400);
Deleted : user_pref("CT3072254.myStuffSearchUrl", "hxxp://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOr[...]
Deleted : user_pref("CT3072254.myStuffServiceIntervalMM", 1440);
Deleted : user_pref("CT3072254.myStuffServiceUrl", "hxxp://mystuff.conduit-services.com/MyStuffService.ashx?Co[...]
Deleted : user_pref("CT3072254.navigateToUrlOnSearch", false);
Deleted : user_pref("CT3072254.revertSettingsEnabled", true);
Deleted : user_pref("CT3072254.searchProtectorDialogDelayInSec", 10);
Deleted : user_pref("CT3072254.searchProtectorEnableByLogin", true);
Deleted : user_pref("CT3072254.testingCtid", "");
Deleted : user_pref("CT3072254.toolbarAppMetaDataLastCheckTime", "Wed Mar 14 2012 13:41:06 GMT+0000 (GMT Stand[...]
Deleted : user_pref("CT3072254.toolbarContextMenuLastCheckTime", "Wed Mar 14 2012 13:41:07 GMT+0000 (GMT Stand[...]
Deleted : user_pref("CT3072254.usageEnabled", false);
Deleted : user_pref("CT3072254.usagesFlag", 2);
Deleted : user_pref("CommunityToolbar.ETag.hxxp://Settings.toolbar.search.conduit.com/root/CT3072254/CT3072254[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/1463703/1459357/UK", "\"0\"[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-services.com/?ctid=CT3072254", [...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=GottenApps&lo[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=OtherApps&loc[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=SharedApps&lo[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=Toolbar&local[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.alert.conduit-services.com/alert/dlg.pkg", "\[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.10[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/Toolbar/?ownerId=CT3072254",[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-services.com/?locale=en", "\"15c[...]
Deleted : user_pref("CommunityToolbar.LatestLibsPath", "file:///C:\\Users\\Natalia\\AppData\\Roaming\\Mozilla\[...]
Deleted : user_pref("CommunityToolbar.LatestToolbarVersionInstalled", "3.10.0.1");
Deleted : user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "hxxp://dts.search-results.com/sr?src=ffb[...]
Deleted : user_pref("CommunityToolbar.ToolbarsList", "CT3072254");
Deleted : user_pref("CommunityToolbar.ToolbarsList2", "CT3072254");
Deleted : user_pref("CommunityToolbar.ToolbarsList4", "CT3072254");
Deleted : user_pref("CommunityToolbar.globalUserId", "c58d7e92-2d7a-4f36-83d9-6903663a06ee");
Deleted : user_pref("CommunityToolbar.isAlertUrlAddedToFeedItemTable", true);
Deleted : user_pref("CommunityToolbar.isClickActionAddedToFeedItemTable", true);
Deleted : user_pref("CommunityToolbar.notifications.alertDialogsGetterLastCheckTime", "Wed Mar 14 2012 13:41:0[...]
Deleted : user_pref("CommunityToolbar.notifications.alertEnabled", false);
Deleted : user_pref("CommunityToolbar.notifications.alertInfoInterval", 1440);
Deleted : user_pref("CommunityToolbar.notifications.alertInfoLastCheckTime", "Wed Mar 14 2012 17:21:33 GMT+000[...]
Deleted : user_pref("CommunityToolbar.notifications.clientsServerUrl", "hxxp://alert.client.conduit.com");
Deleted : user_pref("CommunityToolbar.notifications.locale", "en");
Deleted : user_pref("CommunityToolbar.notifications.loginIntervalMin", 1440);
Deleted : user_pref("CommunityToolbar.notifications.loginLastCheckTime", "Wed Mar 14 2012 13:41:05 GMT+0000 (G[...]
Deleted : user_pref("CommunityToolbar.notifications.loginLastUpdateTime", "1313487611");
Deleted : user_pref("CommunityToolbar.notifications.messageShowTimeSec", 20);
Deleted : user_pref("CommunityToolbar.notifications.servicesServerUrl", "hxxp://alert.services.conduit.com");
Deleted : user_pref("CommunityToolbar.notifications.showTrayIcon", false);
Deleted : user_pref("CommunityToolbar.notifications.userCloseIntervalMin", 300);
Deleted : user_pref("CommunityToolbar.notifications.userId", "fa298b58-9a43-4faa-996d-ab46449f03cf");
Deleted : user_pref("CommunityToolbar.originalHomepage", "hxxp://search.bearshare.net");
Deleted : user_pref("CommunityToolbar.originalSearchEngine", "Search Results");
Deleted : user_pref("browser.search.defaultenginename", "Search Results");
Deleted : user_pref("browser.search.order.1", "Search Results");
Deleted : user_pref("keyword.URL", "hxxp://dts.search-results.com/sr?src=ffb&appid=102&systemid=2&sr=0&q=");
-\\ Google Chrome v23.0.1271.97
File : C:\Users\Natalia\AppData\Local\Google\Chrome\User Data\Default\Preferences
Deleted [l.8] : homepage = "hxxp://www.searchnu.com/406",
Deleted [l.12] : urls_to_restore_on_startup = [ "hxxp://www.searchnu.com/406" ]
Deleted [l.36] : search_url = "hxxp://dts.search-results.com/sr?src=crb&appid=119&systemid=406&sr=0&q={searchT[...]
Deleted [l.203] : homepage = "hxxp://www.searchnu.com/406",
Deleted [l.368] : urls_to_restore_on_startup = [ "hxxp://www.searchnu.com/406" ]
*************************
AdwCleaner[R1].txt - [20887 octets] - [29/12/2012 14:33:56]
AdwCleaner[S1].txt - [21171 octets] - [30/12/2012 10:50:05]
########## EOF - C:\AdwCleaner[S1].txt - [21232 octets] ##########
# AdwCleaner v2.103 - Logfile created 12/30/2012 at 10:50:05
# Updated 25/12/2012 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : Natalia - NATALIA-PC
# Boot Mode : Normal
# Running from : C:\Users\Natalia\Desktop\adwcleaner.exe
# Option [Delete]
***** [Services] *****
***** [Files / Folders] *****
File Deleted : C:\Program Files (x86)\Mozilla FireFox\searchplugins\Search_Results.xml
File Deleted : C:\Users\Natalia\AppData\Local\Temp\Searchqu.ini
File Deleted : C:\Users\Natalia\AppData\Local\Temp\searchqutoolbar-manifest.xml
File Deleted : C:\Users\Natalia\AppData\Local\Temp\SetupDataMngr_Searchqu.exe
File Deleted : C:\Users\Natalia\AppData\Roaming\Mozilla\Firefox\Profiles\fgljcp4i.default\searchplugins\Search_Results.xml
Folder Deleted : C:\Program Files (x86)\Conduit
Folder Deleted : C:\Program Files (x86)\Ilivid
Folder Deleted : C:\Program Files (x86)\Searchqu Toolbar
Folder Deleted : C:\ProgramData\boost_interprocess
Folder Deleted : C:\ProgramData\Partner
Folder Deleted : C:\Users\Natalia\AppData\Local\Conduit
Folder Deleted : C:\Users\Natalia\AppData\Local\Google\Chrome\User Data\Default\Extensions\fooihgffjknjfdidhkpgeibbipkjlhpn
Folder Deleted : C:\Users\Natalia\AppData\Local\Ilivid Player
Folder Deleted : C:\Users\Natalia\AppData\Local\Temp\CT3072254
Folder Deleted : C:\Users\Natalia\AppData\LocalLow\Conduit
Folder Deleted : C:\Users\Natalia\AppData\LocalLow\Searchqutoolbar
Folder Deleted : C:\Users\Natalia\AppData\Roaming\Mozilla\Firefox\Profiles\fgljcp4i.default\ConduitCommon
Folder Deleted : C:\Users\Natalia\AppData\Roaming\Mozilla\Firefox\Profiles\fgljcp4i.default\CT3072254
Folder Deleted : C:\Users\Natalia\AppData\Roaming\Mozilla\Firefox\Profiles\fgljcp4i.default\extensions\{99079a25-328f-4bd4-be04-00955acaa0a7}
Folder Deleted : C:\Users\Natalia\AppData\Roaming\Mozilla\Firefox\Profiles\fgljcp4i.default\extensions\{c2d64ff7-0ab8-4263-89c9-ea3b0f8f050c}
Folder Deleted : C:\Users\Natalia\AppData\Roaming\Mozilla\Firefox\Profiles\fgljcp4i.default\extensions\{e9df9360-97f8-4690-afe6-996c80790da4}
Folder Deleted : C:\Users\Natalia\AppData\Roaming\Mozilla\Firefox\Profiles\fgljcp4i.default\Searchqutoolbar
***** [Registry] *****
Data Deleted : [x64] HKLM\..\Windows [AppInit_DLLs] = C:\PROGRA~2\BEARSH~1\MediaBar\Datamngr\x64\datamngr.dll
Data Deleted : [x64] HKLM\..\Windows [AppInit_DLLs] = C:\PROGRA~2\BEARSH~1\MediaBar\Datamngr\x64\IEBHO.dll
Data Deleted : HKLM\..\Windows [AppInit_DLLs] = C:\PROGRA~2\BEARSH~1\MediaBar\Datamngr\datamngr.dll
Data Deleted : HKLM\..\Windows [AppInit_DLLs] = C:\PROGRA~2\BEARSH~1\MediaBar\Datamngr\IEBHO.dll
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\DataMngr
Key Deleted : HKCU\Software\DataMngr_Toolbar
Key Deleted : HKCU\Software\ilivid
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{B939CF93-F2CB-443d-956C-DC523D85C9DB}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C2D64FF7-0AB8-4263-89C9-EA3B0F8F050C}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{B939CF93-F2CB-443d-956C-DC523D85C9DB}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C2D64FF7-0AB8-4263-89C9-EA3B0F8F050C}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD22}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{28A88B70-D874-4f73-BBBA-9B2B222FB7D6}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{AC662AF2-4601-4A68-84DF-A3FE83F1A5F9}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{D97A8234-F2A2-4AD4-91D5-FECDB2C553AF}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\BrowserConnection.dll
Key Deleted : HKLM\SOFTWARE\Classes\AppID\DNSBHO.dll
Key Deleted : HKLM\SOFTWARE\Classes\AppID\kt_bho_dll.dll
Key Deleted : HKLM\SOFTWARE\Classes\BrowserConnection.Loader
Key Deleted : HKLM\SOFTWARE\Classes\BrowserConnection.Loader.1
Key Deleted : HKLM\SOFTWARE\Classes\DnsBHO.BHO
Key Deleted : HKLM\SOFTWARE\Classes\DnsBHO.BHO.1
Key Deleted : HKLM\SOFTWARE\Classes\kt_bho.KettleBho
Key Deleted : HKLM\SOFTWARE\Classes\kt_bho.KettleBho.1
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT3072254
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{86676E13-D6D8-4652-9FCF-F2047F1FB000}
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\Software\DataMngr
Key Deleted : HKLM\Software\ilivid
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SearchquMediaBar_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SearchquMediaBar_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SetupDataMngr_Searchqu_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SetupDataMngr_Searchqu_RASMANCS
Key Deleted : HKLM\Software\SearchquMediabarTb
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{99079A25-328F-4BD4-BE04-00955ACAA0A7}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{B939CF93-F2CB-443d-956C-DC523D85C9DB}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{C2D64FF7-0AB8-4263-89C9-EA3B0F8F050C}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\fooihgffjknjfdidhkpgeibbipkjlhpn
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{99079A25-328F-4BD4-BE04-00955ACAA0A7}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C2D64FF7-0AB8-4263-89C9-EA3B0F8F050C}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD22}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{99079A25-328F-4BD4-BE04-00955ACAA0A7}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B939CF93-F2CB-443d-956C-DC523D85C9DB}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C2D64FF7-0AB8-4263-89C9-EA3B0F8F050C}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\ilivid
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Searchqu Toolbar
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Wincore MediaBar
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B939CF93-F2CB-443d-956C-DC523D85C9DB}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}
Key Deleted : HKLM\SOFTWARE\DataMngr
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD22}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B939CF93-F2CB-443d-956C-DC523D85C9DB}
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [DataMngr]
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{99079A25-328F-4BD4-BE04-00955ACAA0A7}]
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{C2D64FF7-0AB8-4263-89C9-EA3B0F8F050C}]
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [10]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [10]
***** [Internet Browsers] *****
-\\ Internet Explorer v9.0.8112.16457
[OK] Registry is clean.
-\\ Mozilla Firefox v17.0.1 (en-GB)
File : C:\Users\Natalia\AppData\Roaming\Mozilla\Firefox\Profiles\fgljcp4i.default\prefs.js
Deleted : user_pref("CT3072254..clientLogIsEnabled", false);
Deleted : user_pref("CT3072254..clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.as[...]
Deleted : user_pref("CT3072254..uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/Re[...]
Deleted : user_pref("CT3072254.ALLOW_SHOWING_HIDDEN_TOOLBAR", false);
Deleted : user_pref("CT3072254.AboutPrivacyUrl", "hxxp://www.conduit.com/privacy/Default.aspx");
Deleted : user_pref("CT3072254.BrowserCompStateIsOpen_129572934028070084", true);
Deleted : user_pref("CT3072254.BrowserCompStateIsOpen_129573914344030086", true);
Deleted : user_pref("CT3072254.CTID", "CT3072254");
Deleted : user_pref("CT3072254.CurrentServerDate", "14-3-2012");
Deleted : user_pref("CT3072254.DSInstall", false);
Deleted : user_pref("CT3072254.DialogsAlignMode", "LTR");
Deleted : user_pref("CT3072254.DialogsGetterLastCheckTime", "Wed Mar 14 2012 13:41:08 GMT+0000 (GMT Standard T[...]
Deleted : user_pref("CT3072254.DownloadReferralCookieData", "");
Deleted : user_pref("CT3072254.EnableClickToSearchBox", false);
Deleted : user_pref("CT3072254.EnableSearchHistory", false);
Deleted : user_pref("CT3072254.EnableSearchSuggest", false);
Deleted : user_pref("CT3072254.FirstServerDate", "14-3-2012");
Deleted : user_pref("CT3072254.FirstTime", true);
Deleted : user_pref("CT3072254.FirstTimeFF3", true);
Deleted : user_pref("CT3072254.FixPageNotFoundErrors", true);
Deleted : user_pref("CT3072254.GroupingServerCheckInterval", 1440);
Deleted : user_pref("CT3072254.GroupingServiceUrl", "hxxp://grouping.services.conduit.com/");
Deleted : user_pref("CT3072254.HPInstall", false);
Deleted : user_pref("CT3072254.HasUserGlobalKeys", true);
Deleted : user_pref("CT3072254.HomePageProtectorEnabled", false);
Deleted : user_pref("CT3072254.HomepageBeforeUnload", "hxxp://search.bearshare.net");
Deleted : user_pref("CT3072254.Initialize", true);
Deleted : user_pref("CT3072254.InitializeCommonPrefs", true);
Deleted : user_pref("CT3072254.InstallationAndCookieDataSentCount", 1);
Deleted : user_pref("CT3072254.InstallationId", "ConduitXPEIntegration");
Deleted : user_pref("CT3072254.InstallationType", "ConduitXPEIntegration");
Deleted : user_pref("CT3072254.InstalledDate", "Wed Mar 14 2012 13:41:07 GMT+0000 (GMT Standard Time)");
Deleted : user_pref("CT3072254.IsAlertDBUpdated", true);
Deleted : user_pref("CT3072254.IsGrouping", false);
Deleted : user_pref("CT3072254.IsInitSetupIni", true);
Deleted : user_pref("CT3072254.IsMulticommunity", false);
Deleted : user_pref("CT3072254.IsOpenThankYouPage", true);
Deleted : user_pref("CT3072254.IsOpenUninstallPage", false);
Deleted : user_pref("CT3072254.LanguagePackLastCheckTime", "Wed Mar 14 2012 13:41:07 GMT+0000 (GMT Standard Ti[...]
Deleted : user_pref("CT3072254.LanguagePackReloadIntervalMM", 1440);
Deleted : user_pref("CT3072254.LanguagePackServiceUrl", "hxxp://translation.users.conduit.com/Translation.ashx[...]
Deleted : user_pref("CT3072254.LastLogin_3.10.0.1", "Wed Mar 14 2012 13:41:07 GMT+0000 (GMT Standard Time)");
Deleted : user_pref("CT3072254.LatestVersion", "3.10.0.1");
Deleted : user_pref("CT3072254.Locale", "en");
Deleted : user_pref("CT3072254.MCDetectTooltipHeight", "83");
Deleted : user_pref("CT3072254.MCDetectTooltipShow", false);
Deleted : user_pref("CT3072254.MCDetectTooltipUrl", "hxxp://@EB_INSTALL_LINK@/rank/tooltip/?version=1");
Deleted : user_pref("CT3072254.MCDetectTooltipWidth", "295");
Deleted : user_pref("CT3072254.MyStuffEnabledAtInstallation", true);
Deleted : user_pref("CT3072254.OriginalFirstVersion", "3.10.0.1");
Deleted : user_pref("CT3072254.RadioShrinked", "shrinked");
Deleted : user_pref("CT3072254.RadioShrinkedFromSetup", true);
Deleted : user_pref("CT3072254.SHRINK_TOOLBAR", 0);
Deleted : user_pref("CT3072254.SearchBackToDefaultEngine", false);
Deleted : user_pref("CT3072254.SearchBoxWidth", 219);
Deleted : user_pref("CT3072254.SearchCaption", "uTorrentControl Customized Web Search");
Deleted : user_pref("CT3072254.SearchEngineBeforeUnload", "Search Results");
Deleted : user_pref("CT3072254.SearchFromAddressBarIsInit", true);
Deleted : user_pref("CT3072254.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT307[...]
Deleted : user_pref("CT3072254.SearchInNewTabEnabled", true);
Deleted : user_pref("CT3072254.SearchInNewTabIntervalMM", 1440);
Deleted : user_pref("CT3072254.SearchInNewTabLastCheckTime", "Wed Mar 14 2012 13:41:07 GMT+0000 (GMT Standard [...]
Deleted : user_pref("CT3072254.SearchInNewTabServiceUrl", "hxxp://newtab.conduit-hosting.com/newtab/?ctid=EB_T[...]
Deleted : user_pref("CT3072254.SearchInNewTabUserEnabled", false);
Deleted : user_pref("CT3072254.SearchProtectorEnabled", false);
Deleted : user_pref("CT3072254.SearchProtectorToolbarDisabled", true);
Deleted : user_pref("CT3072254.SendProtectorDataViaLogin", true);
Deleted : user_pref("CT3072254.ServiceMapLastCheckTime", "Wed Mar 14 2012 13:41:05 GMT+0000 (GMT Standard Time[...]
Deleted : user_pref("CT3072254.SettingsLastCheckTime", "Wed Mar 14 2012 17:21:24 GMT+0000 (GMT Standard Time)"[...]
Deleted : user_pref("CT3072254.SettingsLastUpdate", "1328745691");
Deleted : user_pref("CT3072254.TBHomePageUrl", "hxxp://search.conduit.com/?ctid=CT3072254&SearchSource=13");
Deleted : user_pref("CT3072254.ThirdPartyComponentsInterval", 504);
Deleted : user_pref("CT3072254.ThirdPartyComponentsLastCheck", "Wed Mar 14 2012 13:41:05 GMT+0000 (GMT Standar[...]
Deleted : user_pref("CT3072254.ThirdPartyComponentsLastUpdate", "1312887586");
Deleted : user_pref("CT3072254.ToolbarDisabled", true);
Deleted : user_pref("CT3072254.ToolbarShrinkedFromSetup", true);
Deleted : user_pref("CT3072254.TrusteLinkUrl", "hxxp://trust.conduit.com/CT3072254");
Deleted : user_pref("CT3072254.TrustedApiDomains", "conduit.com,conduit-hosting.com,conduit-services.com,clien[...]
Deleted : user_pref("CT3072254.UserID", "UN47141250658992273");
Deleted : user_pref("CT3072254.ValidationData_Search", 0);
Deleted : user_pref("CT3072254.ValidationData_Toolbar", 2);
Deleted : user_pref("CT3072254.alertChannelId", "1463703");
Deleted : user_pref("CT3072254.approveUntrustedApps", true);
Deleted : user_pref("CT3072254.autoDisableScopes", -1);
Deleted : user_pref("CT3072254.backendstorage.cbfirsttime", "576564204D617220313420323031322031333A34313A31312[...]
Deleted : user_pref("CT3072254.componentAlertEnabled", false);
Deleted : user_pref("CT3072254.components.1002", false);
Deleted : user_pref("CT3072254.components.129572934028070084", false);
Deleted : user_pref("CT3072254.components.129572934844292843", false);
Deleted : user_pref("CT3072254.components.129573914344030086", false);
Deleted : user_pref("CT3072254.components.129586117436877147", false);
Deleted : user_pref("CT3072254.generalConfigFromLogin", "{\"ApiMaxAlerts\":\"12\",\"SocialDomains\":\"social.c[...]
Deleted : user_pref("CT3072254.globalFirstTimeInfoLastCheckTime", "Wed Mar 14 2012 13:41:07 GMT+0000 (GMT Stan[...]
Deleted : user_pref("CT3072254.homepageProtectorEnableByLogin", true);
Deleted : user_pref("CT3072254.initDone", true);
Deleted : user_pref("CT3072254.isAppTrackingManagerOn", true);
Deleted : user_pref("CT3072254.isFirstRadioInstallation", false);
Deleted : user_pref("CT3072254.isSearchProtectorNotifyChanges", false);
Deleted : user_pref("CT3072254.myStuffEnabled", true);
Deleted : user_pref("CT3072254.myStuffPublihserMinWidth", 400);
Deleted : user_pref("CT3072254.myStuffSearchUrl", "hxxp://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOr[...]
Deleted : user_pref("CT3072254.myStuffServiceIntervalMM", 1440);
Deleted : user_pref("CT3072254.myStuffServiceUrl", "hxxp://mystuff.conduit-services.com/MyStuffService.ashx?Co[...]
Deleted : user_pref("CT3072254.navigateToUrlOnSearch", false);
Deleted : user_pref("CT3072254.revertSettingsEnabled", true);
Deleted : user_pref("CT3072254.searchProtectorDialogDelayInSec", 10);
Deleted : user_pref("CT3072254.searchProtectorEnableByLogin", true);
Deleted : user_pref("CT3072254.testingCtid", "");
Deleted : user_pref("CT3072254.toolbarAppMetaDataLastCheckTime", "Wed Mar 14 2012 13:41:06 GMT+0000 (GMT Stand[...]
Deleted : user_pref("CT3072254.toolbarContextMenuLastCheckTime", "Wed Mar 14 2012 13:41:07 GMT+0000 (GMT Stand[...]
Deleted : user_pref("CT3072254.usageEnabled", false);
Deleted : user_pref("CT3072254.usagesFlag", 2);
Deleted : user_pref("CommunityToolbar.ETag.hxxp://Settings.toolbar.search.conduit.com/root/CT3072254/CT3072254[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/1463703/1459357/UK", "\"0\"[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-services.com/?ctid=CT3072254", [...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=GottenApps&lo[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=OtherApps&loc[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=SharedApps&lo[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=Toolbar&local[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.alert.conduit-services.com/alert/dlg.pkg", "\[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.10[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/Toolbar/?ownerId=CT3072254",[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-services.com/?locale=en", "\"15c[...]
Deleted : user_pref("CommunityToolbar.LatestLibsPath", "file:///C:\\Users\\Natalia\\AppData\\Roaming\\Mozilla\[...]
Deleted : user_pref("CommunityToolbar.LatestToolbarVersionInstalled", "3.10.0.1");
Deleted : user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "hxxp://dts.search-results.com/sr?src=ffb[...]
Deleted : user_pref("CommunityToolbar.ToolbarsList", "CT3072254");
Deleted : user_pref("CommunityToolbar.ToolbarsList2", "CT3072254");
Deleted : user_pref("CommunityToolbar.ToolbarsList4", "CT3072254");
Deleted : user_pref("CommunityToolbar.globalUserId", "c58d7e92-2d7a-4f36-83d9-6903663a06ee");
Deleted : user_pref("CommunityToolbar.isAlertUrlAddedToFeedItemTable", true);
Deleted : user_pref("CommunityToolbar.isClickActionAddedToFeedItemTable", true);
Deleted : user_pref("CommunityToolbar.notifications.alertDialogsGetterLastCheckTime", "Wed Mar 14 2012 13:41:0[...]
Deleted : user_pref("CommunityToolbar.notifications.alertEnabled", false);
Deleted : user_pref("CommunityToolbar.notifications.alertInfoInterval", 1440);
Deleted : user_pref("CommunityToolbar.notifications.alertInfoLastCheckTime", "Wed Mar 14 2012 17:21:33 GMT+000[...]
Deleted : user_pref("CommunityToolbar.notifications.clientsServerUrl", "hxxp://alert.client.conduit.com");
Deleted : user_pref("CommunityToolbar.notifications.locale", "en");
Deleted : user_pref("CommunityToolbar.notifications.loginIntervalMin", 1440);
Deleted : user_pref("CommunityToolbar.notifications.loginLastCheckTime", "Wed Mar 14 2012 13:41:05 GMT+0000 (G[...]
Deleted : user_pref("CommunityToolbar.notifications.loginLastUpdateTime", "1313487611");
Deleted : user_pref("CommunityToolbar.notifications.messageShowTimeSec", 20);
Deleted : user_pref("CommunityToolbar.notifications.servicesServerUrl", "hxxp://alert.services.conduit.com");
Deleted : user_pref("CommunityToolbar.notifications.showTrayIcon", false);
Deleted : user_pref("CommunityToolbar.notifications.userCloseIntervalMin", 300);
Deleted : user_pref("CommunityToolbar.notifications.userId", "fa298b58-9a43-4faa-996d-ab46449f03cf");
Deleted : user_pref("CommunityToolbar.originalHomepage", "hxxp://search.bearshare.net");
Deleted : user_pref("CommunityToolbar.originalSearchEngine", "Search Results");
Deleted : user_pref("browser.search.defaultenginename", "Search Results");
Deleted : user_pref("browser.search.order.1", "Search Results");
Deleted : user_pref("keyword.URL", "hxxp://dts.search-results.com/sr?src=ffb&appid=102&systemid=2&sr=0&q=");
-\\ Google Chrome v23.0.1271.97
File : C:\Users\Natalia\AppData\Local\Google\Chrome\User Data\Default\Preferences
Deleted [l.8] : homepage = "hxxp://www.searchnu.com/406",
Deleted [l.12] : urls_to_restore_on_startup = [ "hxxp://www.searchnu.com/406" ]
Deleted [l.36] : search_url = "hxxp://dts.search-results.com/sr?src=crb&appid=119&systemid=406&sr=0&q={searchT[...]
Deleted [l.203] : homepage = "hxxp://www.searchnu.com/406",
Deleted [l.368] : urls_to_restore_on_startup = [ "hxxp://www.searchnu.com/406" ]
*************************
AdwCleaner[R1].txt - [20887 octets] - [29/12/2012 14:33:56]
AdwCleaner[S1].txt - [21171 octets] - [30/12/2012 10:50:05]
########## EOF - C:\AdwCleaner[S1].txt - [21232 octets] ##########
Majkl55
Re: nefunguji nektere klavesy
Udelejte !!!uplnou!!! kontrolu s MBAM http://forum.viry.cz/viewtopic.php?f=29&t=115222 a dejte sem vysledky. Predem nic nemazte, miva obcas falesne detekcePokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: nefunguji nektere klavesy
Malwarebytes Anti-Malware (Zkušební verze Malwarebytes Anti-Malware.) 1.70.0.1100
www.malwarebytes.org
Verze: v2012.12.30.10
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Natalia :: NATALIA-PC [administrátor]
Ochrana: Povolena
30/12/2012 20:14:22
mbam-log-2012-12-30 (20-14-22).txt
Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 213162
Uplynulý čas: 3 minut, 31 sekund
Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené soubory: 0
(Žádné škodlivé položky nebyly zjištěny)
(konec)
www.malwarebytes.org
Verze: v2012.12.30.10
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Natalia :: NATALIA-PC [administrátor]
Ochrana: Povolena
30/12/2012 20:14:22
mbam-log-2012-12-30 (20-14-22).txt
Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 213162
Uplynulý čas: 3 minut, 31 sekund
Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené soubory: 0
(Žádné škodlivé položky nebyly zjištěny)
(konec)
Majkl55
Re: nefunguji nektere klavesy
Uz jste sehnal nejakou klavesnici? Podivejte se na to cervene slovo s tema 6ti vykricnikama
Márty84 píše:
Majkl55 píše:30/12/2012 20:14:22
mbam-log-2012-12-30 (20-14-22).txt
Typ: Rychlá kontrola
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: nefunguji nektere klavesy
pardon nevsimnul jsem si 
Malwarebytes Anti-Malware (Zkušební verze Malwarebytes Anti-Malware.) 1.70.0.1100
www.malwarebytes.org
Verze: v2012.12.30.10
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Natalia :: NATALIA-PC [administrátor]
Ochrana: Povolena
01/01/2013 17:34:18
mbam-log-2013-01-01 (17-34-18).txt
Typ: Kompletní kontrola (C:\|D:\|Q:\|)
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 341300
Uplynulý čas: 52 minut, 24 sekund
Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené soubory: 0
(Žádné škodlivé položky nebyly zjištěny)
(konec)
Malwarebytes Anti-Malware (Zkušební verze Malwarebytes Anti-Malware.) 1.70.0.1100
www.malwarebytes.org
Verze: v2012.12.30.10
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Natalia :: NATALIA-PC [administrátor]
Ochrana: Povolena
01/01/2013 17:34:18
mbam-log-2013-01-01 (17-34-18).txt
Typ: Kompletní kontrola (C:\|D:\|Q:\|)
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 341300
Uplynulý čas: 52 minut, 24 sekund
Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené soubory: 0
(Žádné škodlivé položky nebyly zjištěny)
(konec)
Majkl55
Re: nefunguji nektere klavesy
MBAM zase odinstalujte.
Na havet to opravdu nevypada. Dokud nevyzkousite jinou klavesnici, nebudem moudrejsi.
Na havet to opravdu nevypada. Dokud nevyzkousite jinou klavesnici, nebudem moudrejsi.
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: nefunguji nektere klavesy
Diky moc, zkusim sehnat klavesnici a uvidime, jestli bude fungovat. Zatim moc dekuju za pomoc a az budu vedet vic, tak se ozvu. Preju hezky den a vse nejlepsi do Noveho roku 
Majkl55
Re: nefunguji nektere klavesy
Vy jste ji jeste porad nesehnal? 
To bydlite na samote u lesa, ze nikdo v okoli nema pocitac s klavesnici? 
No zatim neni vubec zac, kdyz je to porad stejne
Dekuji
Vam take 
10.3.2013 pro neaktivitu
http://forum.viry.cz/viewtopic.php?f=12&t=123975
To bydlite na samote u lesa, ze nikdo v okoli nema pocitac s klavesnici? No zatim neni vubec zac, kdyz je to porad stejne
Dekuji
Vam take 10.3.2013 pro neaktivitu
http://forum.viry.cz/viewtopic.php?f=12&t=123975Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Přispějete na provoz fóra?