Dobrý den,
Před pár dny se mi výrazně zpomalil notebook, děkuji za jakékoliv rady.
DDS (Ver_2012-11-20.01) - NTFS_x86
Internet Explorer: 10.0.9200.16576
Run by Renata at 19:42:09 on 2013-05-31
Microsoft Windows 7 Professional 6.1.7601.1.1250.420.1029.18.3055.1241 [GMT 2:00]
.
AV: Microsoft Security Essentials *Enabled/Updated* {3F839487-C7A2-C958-E30C-E2825BA31FB5}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Microsoft Security Essentials *Enabled/Updated* {84E27563-E198-C6D6-D9BC-D9F020245508}
.
============== Running Processes ================
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Program Files\Microsoft Security Client\MsMpEng.exe
C:\Windows\system32\atiesrxx.exe
C:\Program Files\IDT\WDM\STacSV.exe
C:\Windows\system32\Hpservice.exe
C:\Windows\system32\atieclxx.exe
C:\Windows\system32\WLANExt.exe
C:\Windows\system32\conhost.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\taskhost.exe
C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files\IDT\WDM\aestsrv.exe
C:\Program Files\LSI SoftModem\agrsmsvc.exe
C:\ProgramData\BrowserProtect\2.6.1125.80\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BrowserProtect.exe
c:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
C:\Windows\system32\schtasks.exe
C:\Windows\system32\conhost.exe
C:\ProgramData\BrowserProtect\2.6.1125.80\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BrowserProtect.exe
C:\Windows\system32\dgdersvc.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\FsUsbExService.Exe
C:\Program Files\Hewlett-Packard\Shared\HPDrvMntSvc.exe
C:\Program Files\Hewlett-Packard\HP HotKey Support\hpHotkeyMonitor.exe
C:\Windows\system32\dmwu.exe
C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\Spyware Terminator\st_rsser.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\Microsoft Security Client\NisSrv.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Hewlett-Packard\HP HotKey Support\QLBController.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe
C:\Program Files\IDT\WDM\sttray.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\System32\StikyNot.exe
C:\Users\Renata\AppData\Roaming\Yontoo\YontooDesktop.exe
C:\Program Files\DAEMON Tools Lite\DTLite.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\Hewlett-Packard\HP Support Framework\HPSF.exe
c:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe
C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\Hewlett-Packard\HP Support Framework\hpsa_service.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Main.exe
C:\Windows\system32\atieclxx.exe
C:\Windows\system32\taskhost.exe
C:\Windows\System32\jmdp\stij.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\Dwm.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Users\Renata\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Program Files\IDT\WDM\sttray.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Users\Renata\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Renata\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Renata\AppData\Local\Google\Chrome\Application\chrome.exe
c:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Users\Renata\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Main.exe
C:\Users\Renata\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\system32\conhost.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\System32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www1.delta-search.com/?affID=119816&babsrc=HP_ss&mntrId=4E6176F1A142E774
uSearch Bar = hxxp://www.google.com/ie
uSearch Page = hxxp://www.google.com
uDefault_Search_URL = hxxp://www.google.com/ie
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
uURLSearchHooks: <No Name>: - LocalServer32 - <no file>
uURLSearchHooks: {fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - <orphaned>
uURLSearchHooks: {7473b6bd-4691-4744-a82b-7854eb3d70b6} - <orphaned>
uURLSearchHooks: {124d001a-bdcb-472f-aa59-bbe7e4bc3204} - <orphaned>
mURLSearchHooks: {855F3B16-6D32-4fe6-8A56-BBB695989046} - <orphaned>
mURLSearchHooks: <No Name>: - LocalServer32 - <no file>
BHO: Skype Browser Helper: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
BHO: HP Network Check Helper: {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - c:\program files\hewlett-packard\hp support framework\resources\hpnetworkcheck\HPNetworkCheckPlugin.dll
uRun: [KiesTrayAgent] <no file>
mRun: [StartCCC] "c:\program files\ati technologies\ati.ace\core-static\CLIStart.exe" MSRun
mRun: [QLBController] c:\program files\hewlett-packard\hp hotkey support\QLBController.exe /start
mRun: [SynTPEnh] c:\program files\synaptics\syntp\SynTPEnh.exe
mRun: [HPWirelessAssistant] c:\program files\hewlett-packard\hp wireless assistant\delayedappstarter.exe 120 c:\program files\hewlett-packard\hp wireless assistant\HPWA_Main.exe /hidden
mRun: [NeroFilterCheck] c:\windows\system32\NeroCheck.exe
mRun: [MSC] "c:\program files\microsoft security client\msseces.exe" -hide -runkey
mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
mRun: [SpywareTerminatorShield] c:\program files\spyware terminator\SpywareTerminatorShield.exe
mRun: [SpywareTerminatorUpdater] c:\program files\spyware terminator\SpywareTerminatorUpdate.exe
mRun: [SysTrayApp] c:\program files\idt\wdm\sttray.exe
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\blueto~1.lnk - c:\program files\widcomm\bluetooth software\BTTray.exe
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: E&xportovat do aplikace Microsoft Office Excel - c:\progra~1\micros~2\office11\EXCEL.EXE/3000
IE: Odeslat obrázek do zařízení &Bluetooth... - c:\program files\widcomm\bluetooth software\btsendto_ie_ctx.htm
IE: Odeslat stránku do zařízení &Bluetooth... - c:\program files\widcomm\bluetooth software\btsendto_ie.htm
IE: {25510184-5A38-4A99-B273-DCA8EEF6CD08} - c:\program files\hewlett-packard\hp support framework\resources\hpnetworkcheck\NCLauncherFromIE.exe
IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}
IE: {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\program files\widcomm\bluetooth software\btsendto_ie.htm
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
TCP: NameServer = 192.168.0.1
TCP: Interfaces\{CF06E172-5E2A-4F07-88F2-80BB52F5C009} : DHCPNameServer = 192.168.0.1
TCP: Interfaces\{CF06E172-5E2A-4F07-88F2-80BB52F5C009}\64966656A64697E236A702E4144502A5 : DHCPNameServer = 88.81.64.1 88.81.92.1
TCP: Interfaces\{CF06E172-5E2A-4F07-88F2-80BB52F5C009}\94E6475627E65647 : DHCPNameServer = 10.0.0.138
TCP: Interfaces\{CF06E172-5E2A-4F07-88F2-80BB52F5C009}\A456A7572716 : DHCPNameServer = 10.10.21.1 88.81.64.1 88.81.92.1
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
AppInit_DLLs= c:\progra~2\browse~1\261125~1.80\{c16c1~1\browse~1.dll
SSODL: WebCheck - <orphaned>
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\users\renata\appdata\roaming\mozilla\firefox\profiles\uzgpurg2.default\
FF - prefs.js: browser.search.selectedEngine - Delta Search
FF - prefs.js: browser.startup.homepage - hxxp://www1.delta-search.com/?affID=119816&babsrc=HP_ss&mntrId=4E6176F1A142E774
FF - prefs.js: keyword.URL - hxxp://eu.ask.com/web?l=dis&o=APN10089&gct=kwd&qsrc=2869&apn_dtid=^PFM004^YY^CZ&apn_ptnrs=^A5F&apn_uid=1040175303404503&p2=^A5F^PFM004^YY^CZ&q=
FF - plugin: c:\program files\adobe\reader 10.0\reader\air\nppdf32.dll
FF - plugin: c:\program files\google\google earth\plugin\npgeplugin.dll
FF - plugin: c:\program files\google\picasa3\npPicasa3.dll
FF - plugin: c:\program files\google\update\1.3.21.145\npGoogleUpdate3.dll
FF - plugin: c:\program files\microsoft silverlight\5.1.20125.0\npctrlui.dll
FF - plugin: c:\users\renata\appdata\local\google\update\1.3.21.145\npGoogleUpdate3.dll
FF - plugin: c:\users\renata\appdata\roaming\mozilla\firefox\profiles\uzgpurg2.default\extensions\{124d001a-bdcb-472f-aa59-bbe7e4bc3204}\plugins\np-mswmp.dll
FF - plugin: c:\users\renata\appdata\roaming\mozilla\firefox\profiles\uzgpurg2.default\extensions\{124d001a-bdcb-472f-aa59-bbe7e4bc3204}\plugins\npConduitFirefoxPlugin.dll
FF - plugin: c:\users\renata\appdata\roaming\mozilla\firefox\profiles\uzgpurg2.default\extensions\{7473b6bd-4691-4744-a82b-7854eb3d70b6}\plugins\np-mswmp.dll
FF - plugin: c:\users\renata\appdata\roaming\mozilla\firefox\profiles\uzgpurg2.default\extensions\{7473b6bd-4691-4744-a82b-7854eb3d70b6}\plugins\npConduitFirefoxPlugin.dll
FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_11_7_700_202.dll
FF - plugin: c:\windows\system32\wat\npWatWeb.dll
.
---- FIREFOX POLICIES ----
FF - user.js: extentions.y2layers.installId - c02629a4-85cd-4f38-ba4b-bb84a0dd7db9
FF - user.js: extentions.y2layers.defaultEnableAppsList - bestvideodownloader,ezLooker,pagerage,buzzdock,toprelatedtopics,twittube
.
FF - user.js: extensions.autoDisableScopes - 14
FF - user.js: extensions.incredibar_i.newTab - false
FF - user.js: extensions.incredibar_i.tlbrSrchUrl - hxxp://mystart.Incredibar.com/?a=6OyKkjwo9M&loc=IB_TB&i=26&search=
FF - user.js: extensions.incredibar_i.id - 4e614cce00000000000076f1a142e774
FF - user.js: extensions.incredibar_i.instlDay - 15559
FF - user.js: extensions.incredibar_i.vrsn - 1.5.11.14
FF - user.js: extensions.incredibar_i.vrsni - 1.5.11.14
FF - user.js: extensions.incredibar_i.vrsnTs - 1.5.11.1419:22:44
FF - user.js: extensions.incredibar_i.prtnrId - Incredibar
FF - user.js: extensions.incredibar_i.prdct - incredibar
FF - user.js: extensions.incredibar_i.aflt - orgnl
FF - user.js: extensions.incredibar_i.smplGrp - none
FF - user.js: extensions.incredibar_i.tlbrId - base
FF - user.js: extensions.incredibar_i.instlRef -
FF - user.js: extensions.incredibar_i.dfltLng -
FF - user.js: extensions.incredibar_i.excTlbr - false
FF - user.js: extensions.incredibar_i.ms_url_id -
FF - user.js: extensions.incredibar_i.upn2 - 6OyKkjwo9M
FF - user.js: extensions.incredibar_i.upn2n - 92261890875400430
FF - user.js: extensions.incredibar_i.productid - 26
FF - user.js: extensions.incredibar_i.installerproductid - 26
FF - user.js: extensions.incredibar_i.did - 10658
FF - user.js: extensions.incredibar_i.ppd -
FF - user.js: extensions.BabylonToolbar_i.babTrack - affID=112059&tt=120812_bandext_3312_7
FF - user.js: extensions.BabylonToolbar_i.babExt -
FF - user.js: extensions.BabylonToolbar_i.srcExt - ss
FF - user.js: extensions.BabylonToolbar.tlbrSrchUrl - hxxp://www.google.com/search?babsrc=TB_ggl&q=
FF - user.js: extensions.BabylonToolbar.id - 4e614cce00000000000076f1a142e774
FF - user.js: extensions.BabylonToolbar.instlDay - 15565
FF - user.js: extensions.BabylonToolbar.vrsn - 1.6.4.6
FF - user.js: extensions.BabylonToolbar.vrsni - 1.6.4.6
FF - user.js: extensions.BabylonToolbar_i.vrsnTs - 1.6.4.619:03:48
FF - user.js: extensions.BabylonToolbar.prtnrId - babylon
FF - user.js: extensions.BabylonToolbar.prdct - BabylonToolbar
FF - user.js: extensions.BabylonToolbar.aflt - babsst
FF - user.js: extensions.BabylonToolbar_i.smplGrp - none
FF - user.js: extensions.BabylonToolbar.tlbrId - base
FF - user.js: extensions.BabylonToolbar.instlRef - sst
FF - user.js: extensions.BabylonToolbar.dfltLng - en
FF - user.js: extensions.BabylonToolbar.excTlbr - false
FF - user.js: extensions.BabylonToolbar.admin - false
.
============= SERVICES / DRIVERS ===============
.
R0 MpFilter;Microsoft Malware Protection Driver;c:\windows\system32\drivers\MpFilter.sys [2013-1-20 195296]
R0 pe3aprwb;Simon the Sorcerer Environment Driver (pe3aprwb);c:\windows\system32\drivers\pe3aprwb.sys [2007-12-18 65160]
R0 ps7aprwb;Simon the Sorcerer Synchronization Driver (ps7aprwb);c:\windows\system32\drivers\ps7aprwb.sys [2007-12-18 68752]
R1 MpKsl6e81f310;MpKsl6e81f310;c:\programdata\microsoft\microsoft antimalware\definition updates\{b0a5877f-0a07-4a76-a1cb-d5e8e1422882}\MpKsl6e81f310.sys [2013-5-31 29904]
R1 sp_rsdrv2;Spyware Terminator 2012 Realtime Shield Driver;c:\windows\system32\drivers\sp_rsdrv2.sys [2013-5-23 32768]
R2 AESTFilters;Andrea ST Filters Service;c:\program files\idt\wdm\AEstSrv.exe [2010-7-20 81920]
R2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2013-5-30 176128]
R2 BrowserProtect;BrowserProtect;c:\programdata\browserprotect\2.6.1125.80\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BrowserProtect.exe [2013-4-14 2569168]
R2 dgdersvc;Device Error Recovery Service;c:\windows\system32\dgdersvc.exe [2009-12-22 95568]
R2 FsUsbExService;FsUsbExService;c:\windows\system32\FsUsbExService.Exe [2010-7-20 217088]
R2 HP Support Assistant Service;HP Support Assistant Service;c:\program files\hewlett-packard\hp support framework\HPSA_Service.exe [2012-9-27 86528]
R2 HP Wireless Assistant Service;HP Wireless Assistant Service;c:\program files\hewlett-packard\hp wireless assistant\HPWA_Service.exe [2009-12-16 102968]
R2 HPDrvMntSvc.exe;HP Quick Synchronization Service;c:\program files\hewlett-packard\shared\HPDrvMntSvc.exe [2012-8-10 197536]
R2 hpHotkeyMonitor;HP Hotkey Monitor;c:\program files\hewlett-packard\hp hotkey support\hpHotkeyMonitor.exe [2010-1-4 264248]
R2 hpsrv;HP Service;c:\windows\system32\hpservice.exe [2011-5-13 26168]
R2 IBUpdaterService;IBUpdaterService;c:\windows\system32\dmwu.exe [2012-9-17 1156400]
R2 NisDrv;Microsoft Network Inspection System;c:\windows\system32\drivers\NisDrvWFP.sys [2010-10-24 100328]
R2 ST2012_Svc;Spyware Terminator 2012 Realtime Shield Service;c:\program files\spyware terminator\st_rsser.exe [2013-5-23 587912]
R2 UNS;Intel(R) Management & Security Application User Notification Service;c:\program files\intel\intel(r) management engine components\uns\UNS.exe [2010-7-20 2320920]
R3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\drivers\btwl2cap.sys [2010-7-20 29472]
R3 dgderdrv;dgderdrv;c:\windows\system32\drivers\dgderdrv.sys [2009-12-22 18136]
R3 FsUsbExDisk;FsUsbExDisk;c:\windows\system32\FsUsbExDisk.Sys [2010-7-20 36640]
R3 NisSrv;Kontrola sítě Microsoft;c:\program files\microsoft security client\NisSrv.exe [2013-1-27 295232]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 pr2aprwb;Simon the Sorcerer Drivers Auto Removal (pr2aprwb);c:\windows\system32\pr2aprwb.exe svc --> c:\windows\system32\pr2aprwb.exe svc [?]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-14 229888]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\drivers\RtsUStor.sys [2010-7-20 181792]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\drivers\Rt86win7.sys [2010-7-20 257568]
S3 StorSvc;Služba úložiště;c:\windows\system32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-14 20992]
S3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\TsUsbFlt.sys [2011-7-2 52224]
S3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\wat\WatAdminSvc.exe [2010-7-25 1343400]
SUnknown MpKsl7e86ebc7;MpKsl7e86ebc7; [x]
.
=============== Created Last 30 ================
.
2013-05-31 17:05:30 60872 ----a-w- c:\programdata\microsoft\microsoft antimalware\definition updates\{b0a5877f-0a07-4a76-a1cb-d5e8e1422882}\offreg.dll
2013-05-31 17:05:24 29904 ----a-w- c:\programdata\microsoft\microsoft antimalware\definition updates\{b0a5877f-0a07-4a76-a1cb-d5e8e1422882}\MpKsl6e81f310.sys
2013-05-31 16:39:17 -------- d-----w- c:\program files\CCleaner
2013-05-31 16:11:50 7016152 ----a-w- c:\programdata\microsoft\microsoft antimalware\definition updates\{b0a5877f-0a07-4a76-a1cb-d5e8e1422882}\mpengine.dll
2013-05-30 18:32:48 86016 ----a-w- c:\windows\system32\AESTCom.dll
2013-05-30 18:32:48 61440 ----a-w- c:\windows\system32\aestaren.dll
2013-05-30 18:32:48 380928 ----a-w- c:\windows\system32\aestecap.dll
2013-05-30 18:32:48 140288 ----a-w- c:\windows\system32\aestacap.dll
2013-05-30 18:32:47 495708 ----a-w- c:\windows\sttray.exe
2013-05-30 18:32:47 1953792 ----a-w- c:\windows\system32\stlang.dll
2013-05-30 18:32:47 12705884 ----a-w- c:\windows\system32\idtcpl.cpl
2013-05-30 18:32:25 179712 ----a-w- c:\windows\system32\staco.dll
2013-05-30 15:26:32 7016152 ----a-w- c:\programdata\microsoft\microsoft antimalware\definition updates\backup\mpengine.dll
2013-05-23 20:32:37 -------- d-----w- c:\program files\Cisco
2013-05-23 18:44:38 32768 ----a-w- c:\windows\system32\drivers\sp_rsdrv2.sys
2013-05-23 18:44:22 -------- d-----w- c:\users\renata\appdata\roaming\Spyware Terminator
2013-05-23 18:44:22 -------- d-----w- c:\programdata\Spyware Terminator
2013-05-23 18:41:56 -------- d-----w- c:\program files\Spyware Terminator
2013-05-23 18:40:47 64000 ------w- c:\windows\system32\agrsmdel.exe
2013-05-23 18:40:47 14848 ------w- c:\windows\system32\agrsco64.dll
2013-05-23 18:40:10 -------- d-----w- c:\program files\LSI SoftModem
2013-05-23 18:38:41 64000 ----a-w- c:\windows\agrsmdel.exe
2013-05-23 18:38:41 13824 ------w- c:\windows\system32\agrscoin.dll
2013-05-23 18:38:41 1163328 ----a-w- c:\windows\system32\drivers\AGRSM.sys
2013-05-23 18:24:19 -------- d-----w- c:\windows\Options
2013-05-23 18:23:49 93344 ----a-w- c:\windows\system32\athcfg11resloc.dll
2013-05-23 18:23:49 85152 ----a-w- c:\windows\system32\wgapiloc.dll
2013-05-23 18:23:49 64672 ----a-w- c:\windows\system32\athihvui.dll
2013-05-23 18:23:49 429312 ----a-w- c:\windows\system32\wgapi.dll
2013-05-23 18:23:49 400544 ----a-w- c:\windows\system32\athihvs.dll
2013-05-23 18:23:49 339200 ----a-w- c:\windows\system32\wcapiU.dll
2013-05-23 18:23:49 -------- d-----w- c:\windows\system32\nn-NO
2013-05-23 18:23:48 417000 ----a-w- c:\windows\system32\wcapi.dll
2013-05-23 18:23:48 314624 ----a-w- c:\windows\system32\athcfg20U.dll
2013-05-23 18:23:48 302312 ----a-w- c:\windows\system32\athcfg20.dll
2013-05-23 18:23:48 130312 ----a-w- c:\windows\system32\athcfg20resU.dll
2013-05-23 18:23:48 130288 ----a-w- c:\windows\system32\athcfg20res.dll
2013-05-21 13:43:12 724464 ------w- c:\programdata\microsoft\microsoft antimalware\definition updates\{0ed7cf7e-acc7-4b87-9747-a1dc0e5babf3}\gapaengine.dll
2013-05-15 14:57:11 40960 ----a-w- c:\windows\system32\wwanprotdim.dll
2013-05-15 14:57:11 186368 ----a-w- c:\windows\system32\wwansvc.dll
2013-05-15 14:57:10 2347520 ----a-w- c:\windows\system32\win32k.sys
2013-05-15 14:57:04 728424 ----a-w- c:\windows\system32\drivers\dxgkrnl.sys
2013-05-15 14:57:04 218984 ----a-w- c:\windows\system32\drivers\dxgmms1.sys
2013-05-15 14:56:56 1796096 ----a-w- c:\windows\system32\authui.dll
2013-05-15 14:56:56 101720 ----a-w- c:\windows\system32\consent.exe
2013-05-15 14:56:55 47104 ----a-w- c:\windows\system32\appinfo.dll
2013-05-10 07:57:26 187456 ----a-w- c:\program files\mozilla firefox\plugins\nppdf32.dll
.
==================== Find3M ====================
.
2013-05-30 18:28:25 431616 ----a-w- c:\windows\system32\drivers\stwrt.sys
2013-05-30 18:28:24 934912 ----a-w- c:\windows\system32\stapo.dll
2013-05-30 18:28:24 531968 ------w- c:\windows\system32\stapi32.dll
2013-05-30 18:28:24 405504 ----a-w- c:\windows\system32\stcplx.dll
2013-05-14 19:37:44 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2013-05-14 19:37:44 692104 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2013-05-02 15:28:50 238872 ------w- c:\windows\system32\MpSigStub.exe
2013-04-14 11:46:32 466008 ----a-w- c:\windows\system32\drivers\sptd.sys
2013-04-13 04:45:16 474624 ----a-w- c:\windows\apppatch\AcSpecfc.dll
2013-04-13 04:45:15 2176512 ----a-w- c:\windows\apppatch\AcGenral.dll
2013-04-12 13:45:29 1211752 ----a-w- c:\windows\system32\drivers\ntfs.sys
2013-04-07 08:54:58 1156400 ----a-w- c:\windows\system32\dmwu.exe
2013-04-07 08:52:34 27136 ----a-w- c:\windows\system32\ImHttpComm.dll
2013-04-02 14:09:52 4550656 ----a-w- c:\windows\system32\GPhotos.scr
2013-03-19 05:04:13 3968856 ----a-w- c:\windows\system32\ntkrnlpa.exe
2013-03-19 05:04:10 3913560 ----a-w- c:\windows\system32\ntoskrnl.exe
2013-03-19 04:48:45 38912 ----a-w- c:\windows\system32\csrsrv.dll
2013-03-19 02:49:16 69632 ----a-w- c:\windows\system32\smss.exe
.
============= FINISH: 20:35:28,80 ===============
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosím o kontrolu logu
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119526
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu logu
Zdravím!
Spusťte nejprve tuto utilitu:
Spusťte nejprve tuto utilitu:
Stáhněte AdwCleaner http://www.stahuj.centrum.cz/utility_a_ ... dwcleaner/
Uložte na plochu
Ukončete všechny programy
Klikněte na Search (hledat)
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontrolu logu
# AdwCleaner v2.301 - Log vytvooen 31/05/2013 v 22:20:58
# Aktualizováno 16/05/2013 Xplode
# Operaení systém : Windows 7 Professional Service Pack 1 (32 bits)
# Uživatel : Renata - RENATA-PC
# Spuštin systém : Normální
# Spuštino z : C:\Users\Renata\Downloads\adwcleaner.exe
# Volba [Prohledat]
***** [Služby] *****
Nalezeno : BrowserProtect
Nalezeno : IBUpdaterService
***** [Soubory / Složky] *****
Složka Nalezeno : C:\Program Files\1ClickDownload
Složka Nalezeno : C:\Program Files\Conduit
Složka Nalezeno : C:\Program Files\ICQ6Toolbar
Složka Nalezeno : C:\Program Files\Mozilla Firefox\Extensions\ffxtlbr@babylon.com
Složka Nalezeno : C:\Program Files\Perion
Složka Nalezeno : C:\ProgramData\Ask
Složka Nalezeno : C:\ProgramData\Babylon
Složka Nalezeno : C:\ProgramData\BrowserProtect
Složka Nalezeno : C:\ProgramData\ICQ\ICQToolbar
Složka Nalezeno : C:\ProgramData\Tarma Installer
Složka Nalezeno : C:\Users\Renata\AppData\Local\Google\Chrome\User Data\Default\Extensions\jifflliplgeajjdhmkcfnngfpgbjonjg
Složka Nalezeno : C:\Users\Renata\AppData\Local\Google\Chrome\User Data\Default\Extensions\pmlghpafmmnmmkjdhacccolfgnkiboco
Složka Nalezeno : C:\Users\Renata\AppData\Local\Temp\CT3220468
Složka Nalezeno : C:\Users\Renata\AppData\LocalLow\BabylonToolbar
Složka Nalezeno : C:\Users\Renata\AppData\LocalLow\Conduit
Složka Nalezeno : C:\Users\Renata\AppData\Roaming\BabSolution
Složka Nalezeno : C:\Users\Renata\AppData\Roaming\Babylon
Složka Nalezeno : C:\Users\Renata\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BrowserProtect
Složka Nalezeno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\0e85her5.default\Conduit
Složka Nalezeno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\0e85her5.default\CT1750559
Složka Nalezeno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\0e85her5.default\extensions\{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}
Složka Nalezeno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\0e85her5.default\extensions\plugin@yontoo.com
Složka Nalezeno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\5hmbs2yj.default\extensions\plugin@yontoo.com
Složka Nalezeno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\9dmbk278.default\extensions\plugin@yontoo.com
Složka Nalezeno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\od3412mv.default\extensions\plugin@yontoo.com
Složka Nalezeno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\s274s0yb.default\extensions\plugin@yontoo.com
Složka Nalezeno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\uzgpurg2.default\CT2481032
Složka Nalezeno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\uzgpurg2.default\CT3220468
Složka Nalezeno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\uzgpurg2.default\extensions\{124d001a-bdcb-472f-aa59-bbe7e4bc3204}
Složka Nalezeno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\uzgpurg2.default\extensions\{7473b6bd-4691-4744-a82b-7854eb3d70b6}
Složka Nalezeno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\uzgpurg2.default\jetpack
Složka Nalezeno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\uzgpurg2.default\Smartbar
Složka Nalezeno : C:\Users\Renata\AppData\Roaming\Yontoo
Složka Nalezeno : C:\Windows\system32\WNLT
Soubor Nalezeno : C:\Program Files\Mozilla Firefox\searchplugins\ask.xml
Soubor Nalezeno : C:\Program Files\Mozilla Firefox\searchplugins\babylon.xml
Soubor Nalezeno : C:\user.js
Soubor Nalezeno : C:\Users\Renata\AppData\Local\Google\Chrome\User Data\Default\bProtector Web Data
Soubor Nalezeno : C:\Users\Renata\AppData\Local\Google\Chrome\User Data\Default\bprotectorpreferences
Soubor Nalezeno : C:\Users\Renata\AppData\Roaming\BabMaint.exe
Soubor Nalezeno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\0e85her5.default\searchplugins\Conduit.xml
Soubor Nalezeno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\od3412mv.default\searchplugins\Askcom.xml
Soubor Nalezeno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\od3412mv.default\searchplugins\icqplugin.xml
Soubor Nalezeno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\uzgpurg2.default\bProtector_extensions.rdf
Soubor Nalezeno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\uzgpurg2.default\bprotector_extensions.sqlite
Soubor Nalezeno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\uzgpurg2.default\bprotector_prefs.js
Soubor Nalezeno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\uzgpurg2.default\BrowserMngr_extensions.sqlite
Soubor Nalezeno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\uzgpurg2.default\browsermngr_prefs.js
Soubor Nalezeno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\uzgpurg2.default\extensions\OneClickDownload@OneClickDownload.com.xpi
Soubor Nalezeno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\uzgpurg2.default\extensions\plugin@yontoo.com.xpi
Soubor Nalezeno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\uzgpurg2.default\searchplugins\Askcom.xml
Soubor Nalezeno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\uzgpurg2.default\searchplugins\Babylon.xml
Soubor Nalezeno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\uzgpurg2.default\searchplugins\BrowserProtect.xml
Soubor Nalezeno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\uzgpurg2.default\searchplugins\MyStart Search.xml
Soubor Nalezeno : C:\Windows\system32\conduitEngine.tmp
Soubor Nalezeno : C:\Windows\system32\dmwu.exe
Soubor Nalezeno : C:\Windows\system32\ImhxxpComm.dll
***** [Registry] *****
Data Nalezeno : HKLM\..\Windows [AppInit_DLLs] = c:\progra~2\browse~1\261125~1.80\{c16c1~1\browse~1.dll
Hodnota Nalezeno : HKCU\Software\Microsoft\Internet Explorer\Main [bprotector start page]
Hodnota Nalezeno : HKCU\Software\Microsoft\Internet Explorer\Main [BrowserMngr Start Page]
Hodnota Nalezeno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes [bProtectorDefaultScope]
Hodnota Nalezeno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes [BrowserMngrDefaultScope]
Hodnota Nalezeno : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Hodnota Nalezeno : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [Yontoo Desktop]
Hodnota Nalezeno : HKCU\Software\Mozilla\Firefox\Extensions [{0F827075-B026-42F3-885D-98981EE7B1AE}]
Hodnota Nalezeno : HKCU\Software\Mozilla\Firefox\Extensions [{b64982b1-d112-42b5-b1e4-d3867c4533f8}]
Hodnota Nalezeno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{98889811-442D-49DD-99D7-DC866BE87DBC}]
Hodnota Nalezeno : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{855F3B16-6D32-4FE6-8A56-BBB695989046}]
Hodnota Nalezeno : HKLM\SOFTWARE\Mozilla\Firefox\extensions [{336D0C35-8A85-403a-B9D2-65C292C39087}]
Hodnota Nalezeno : HKLM\SOFTWARE\Mozilla\Firefox\extensions [{FE1DEEEA-DB6D-44b8-83F0-34FC0F9D1052}]
Klíe Nalezeno : HKCU\Software\1ClickDownload
Klíe Nalezeno : HKCU\Software\5f53d8d8b06fbf14
Klíe Nalezeno : HKCU\Software\APN PIP
Klíe Nalezeno : HKCU\Software\AppDataLow\AskBarDis
Klíe Nalezeno : HKCU\Software\AppDataLow\Software\Conduit
Klíe Nalezeno : HKCU\Software\AppDataLow\Software\ConduitSearchScopes
Klíe Nalezeno : HKCU\Software\AppDataLow\Software\SmartBar
Klíe Nalezeno : HKCU\Software\BabylonToolbar
Klíe Nalezeno : HKCU\Software\BrowserMngr
Klíe Nalezeno : HKCU\Software\Conduit
Klíe Nalezeno : HKCU\Software\DataMngr
Klíe Nalezeno : HKCU\Software\IM
Klíe Nalezeno : HKCU\Software\ImInstaller
Klíe Nalezeno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Klíe Nalezeno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40B7-AC73-056A5EBA4A7E}
Klíe Nalezeno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}
Klíe Nalezeno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AD22EBAF-0D18-4FC7-90CC-5EA0ABBE9EB8}
Klíe Nalezeno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{B9C7CE32-DA91-43C2-B7E9-0E9AAFC675CD}
Klíe Nalezeno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{CFF4DB9B-135F-47C0-9269-B4C6572FD61A}
Klíe Nalezeno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings
Klíe Nalezeno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{855F3B16-6D32-4FE6-8A56-BBB695989046}
Klíe Nalezeno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}
Klíe Nalezeno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{00000000-6E41-4FD3-8538-502F5495E5FC}
Klíe Nalezeno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Klíe Nalezeno : HKCU\Software\PIP
Klíe Nalezeno : HKCU\Software\PrivitizeVPNInstallDates
Klíe Nalezeno : HKCU\Software\Softonic
Klíe Nalezeno : HKCU\Software\StartSearch
Klíe Nalezeno : HKCU\Software\WNLT
Klíe Nalezeno : HKLM\SOFTWARE\14919ea49a8f3b4aa3cf1058d9a64cec
Klíe Nalezeno : HKLM\SOFTWARE\5f53d8d8b06fbf14
Klíe Nalezeno : HKLM\Software\Babylon
Klíe Nalezeno : HKLM\Software\BrowserMngr
Klíe Nalezeno : HKLM\SOFTWARE\Classes\AppID\{5B1881D1-D9C7-46DF-B041-1E593282C7D0}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\AppID\{608D3067-77E8-463D-9084-908966806826}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\AppID\{CFDAFE39-20CE-451D-BD45-A37452F39CF0}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\AppID\YontooIEClient.DLL
Klíe Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{7E84186E-B5DE-4226-8A66-6E49C6B511B4}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{99066096-8989-4612-841F-621A01D54AD7}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{FE9271F2-6EFD-44B0-A826-84C829536E93}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\Conduit.Engine
Klíe Nalezeno : HKLM\SOFTWARE\Classes\Interface\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\Interface\{1AD27395-1659-4DFF-A319-2CFA243861A5}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\Prod.cap
Klíe Nalezeno : HKLM\SOFTWARE\Classes\Toolbar.CT1750559
Klíe Nalezeno : HKLM\SOFTWARE\Classes\Toolbar.CT2481032
Klíe Nalezeno : HKLM\SOFTWARE\Classes\Toolbar.CT3220468
Klíe Nalezeno : HKLM\SOFTWARE\Classes\YontooIEClient.Api
Klíe Nalezeno : HKLM\SOFTWARE\Classes\YontooIEClient.Api.1
Klíe Nalezeno : HKLM\SOFTWARE\Classes\YontooIEClient.Layers
Klíe Nalezeno : HKLM\Software\Conduit
Klíe Nalezeno : HKLM\Software\DataMngr
Klíe Nalezeno : HKLM\SOFTWARE\Google\Chrome\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd
Klíe Nalezeno : HKLM\SOFTWARE\Google\Chrome\Extensions\eooncjejnppfjjklapaamhcdmjbilmde
Klíe Nalezeno : HKLM\SOFTWARE\Google\Chrome\Extensions\jifflliplgeajjdhmkcfnngfpgbjonjg
Klíe Nalezeno : HKLM\SOFTWARE\Google\Chrome\Extensions\niapdbllcanepiiimjjndipklodoedlc
Klíe Nalezeno : HKLM\SOFTWARE\Google\Chrome\Extensions\pgafcinpmmpklohkojmllohdhomoefph
Klíe Nalezeno : HKLM\SOFTWARE\Google\Chrome\Extensions\pmlghpafmmnmmkjdhacccolfgnkiboco
Klíe Nalezeno : HKLM\Software\Iminent
Klíe Nalezeno : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Klíe Nalezeno : HKLM\SOFTWARE\Microsoft\Tracing\ConduitInstaller_RASAPI32
Klíe Nalezeno : HKLM\SOFTWARE\Microsoft\Tracing\ConduitInstaller_RASMANCS
Klíe Nalezeno : HKLM\SOFTWARE\Microsoft\Tracing\IncredibarToolbar_RASAPI32
Klíe Nalezeno : HKLM\SOFTWARE\Microsoft\Tracing\IncredibarToolbar_RASMANCS
Klíe Nalezeno : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASAPI32
Klíe Nalezeno : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASMANCS
Klíe Nalezeno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\BrowserProtect
Klíe Nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB}
Klíe Nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Klíe Nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{15D2D75C-9CB2-4EFD-BAD7-B9B4CB4BC693}
Klíe Nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}
Klíe Nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Delta Chrome Toolbar
Klíe Nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WNLT
Klíe Nalezeno : HKLM\Software\PIP
Klíe Nalezeno : HKLM\Software\Tarma Installer
Klíe Nalezeno : HKLM\Software\Web Assistant
Klíe Nalezeno : HKLM\Software\WNLT
Klíe Nalezeno : HKU\.DEFAULT\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Klíe Nalezeno : HKU\S-1-5-18\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Klíe Nalezeno : HKU\S-1-5-21-3683041670-2158295546-2881036051-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Klíe Nalezeno : HKU\S-1-5-21-3683041670-2158295546-2881036051-1000\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40B7-AC73-056A5EBA4A7E}
Klíe Nalezeno : HKU\S-1-5-21-3683041670-2158295546-2881036051-1000\Software\Microsoft\Internet Explorer\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}
Klíe Nalezeno : HKU\S-1-5-21-3683041670-2158295546-2881036051-1000\Software\Microsoft\Internet Explorer\SearchScopes\{AD22EBAF-0D18-4FC7-90CC-5EA0ABBE9EB8}
Klíe Nalezeno : HKU\S-1-5-21-3683041670-2158295546-2881036051-1000\Software\Microsoft\Internet Explorer\SearchScopes\{B9C7CE32-DA91-43C2-B7E9-0E9AAFC675CD}
Klíe Nalezeno : HKU\S-1-5-21-3683041670-2158295546-2881036051-1000\Software\Microsoft\Internet Explorer\SearchScopes\{CFF4DB9B-135F-47C0-9269-B4C6572FD61A}
***** [Internetové prohlížeee] *****
-\\ Internet Explorer v10.0.9200.16576
[HKCU\Software\Microsoft\Internet Explorer\Main - Start Page] = hxxp://www1.delta-search.com/?affID=119816&babsrc=HP_ss&mntrId=4E6176F1A142E774
[HKCU\Software\Microsoft\Internet Explorer\Main - ICQ Search] = hxxp://search.icq.com/search/results.php?q={searchTerms}&ch_id=osd
[HKCU\Software\Microsoft\Internet Explorer\Main - BrowserMngr Start Page] = hxxp://search.babylon.com/?affID=112059&tt=120812_bandext_3312_3&babsrc=HP_ss&mntrId=4e614cce00000000000076f1a142e774
[HKCU\Software\Microsoft\Internet Explorer\Main - bProtector Start Page] = hxxp://www1.delta-search.com/?affID=119816&babsrc=HP_ss&mntrId=4E6176F1A142E774
-\\ Mozilla Firefox v20.0.1 (cs)
Soubor : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\0e85her5.default\prefs.js
Nalezeno : user_pref("CT1750559.AboutPrivacyUrl", "hxxp://www.conduit.com/privacy/Default.aspx");
Nalezeno : user_pref("CT1750559.CTID", "CT1750559");
Nalezeno : user_pref("CT1750559.CurrentServerDate", "28-4-2011");
Nalezeno : user_pref("CT1750559.DialogsAlignMode", "LTR");
Nalezeno : user_pref("CT1750559.FirstServerDate", "28-4-2011");
Nalezeno : user_pref("CT1750559.FirstTime", true);
Nalezeno : user_pref("CT1750559.FirstTimeFF3", true);
Nalezeno : user_pref("CT1750559.FixPageNotFoundErrors", true);
Nalezeno : user_pref("CT1750559.GroupingServerCheckInterval", 1440);
Nalezeno : user_pref("CT1750559.GroupingServiceUrl", "hxxp://grouping.services.conduit.com/");
Nalezeno : user_pref("CT1750559.Initialize", true);
Nalezeno : user_pref("CT1750559.InitializeCommonPrefs", true);
Nalezeno : user_pref("CT1750559.InstalledDate", "Thu Apr 28 2011 19:17:48 GMT+0200");
Nalezeno : user_pref("CT1750559.InvalidateCache", false);
Nalezeno : user_pref("CT1750559.IsGrouping", false);
Nalezeno : user_pref("CT1750559.IsMulticommunity", false);
Nalezeno : user_pref("CT1750559.IsOpenThankYouPage", true);
Nalezeno : user_pref("CT1750559.IsOpenUninstallPage", true);
Nalezeno : user_pref("CT1750559.LanguagePackLastCheckTime", "Thu Apr 28 2011 19:17:50 GMT+0200");
Nalezeno : user_pref("CT1750559.LanguagePackReloadIntervalMM", 1440);
Nalezeno : user_pref("CT1750559.LanguagePackServiceUrl", "hxxp://translation.users.conduit.com/Translation.ashx[...]
Nalezeno : user_pref("CT1750559.LastLogin_2.5.6.0", "Thu Apr 28 2011 19:17:48 GMT+0200");
Nalezeno : user_pref("CT1750559.LatestVersion", "3.3.3.2");
Nalezeno : user_pref("CT1750559.Locale", "en-us");
Nalezeno : user_pref("CT1750559.LoginCache", 4);
Nalezeno : user_pref("CT1750559.MCDetectTooltipHeight", "83");
Nalezeno : user_pref("CT1750559.MCDetectTooltipUrl", "hxxp://@EB_INSTALL_LINK@/rank/tooltip/?version=1");
Nalezeno : user_pref("CT1750559.MCDetectTooltipWidth", "295");
Nalezeno : user_pref("CT1750559.RadioIsPodcast", false);
Nalezeno : user_pref("CT1750559.RadioLastCheckTime", "Thu Apr 28 2011 19:17:49 GMT+0200");
Nalezeno : user_pref("CT1750559.RadioLastUpdateIPServer", "3");
Nalezeno : user_pref("CT1750559.RadioLastUpdateServer", "128929877726170000");
Nalezeno : user_pref("CT1750559.RadioMediaID", "11237206");
Nalezeno : user_pref("CT1750559.RadioMediaType", "Media Player");
Nalezeno : user_pref("CT1750559.RadioMenuSelectedID", "EBRadioMenu_CT175055911237206");
Nalezeno : user_pref("CT1750559.RadioStationName", "1.FM%20Dance");
Nalezeno : user_pref("CT1750559.RadioStationURL", "hxxp://dance.1.fm/energydance128k?MSWMExt=.asf");
Nalezeno : user_pref("CT1750559.SHRINK_TOOLBAR", 1);
Nalezeno : user_pref("CT1750559.SavedHomepage", "www.seznam.cz");
Nalezeno : user_pref("CT1750559.SearchEngine", "Search||hxxp://search.conduit.com/Results.aspx?q=UCM_SEARCH_TER[...]
Nalezeno : user_pref("CT1750559.SearchFromAddressBarIsInit", true);
Nalezeno : user_pref("CT1750559.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT175[...]
Nalezeno : user_pref("CT1750559.SearchInNewTabEnabled", true);
Nalezeno : user_pref("CT1750559.SearchInNewTabIntervalMM", 1440);
Nalezeno : user_pref("CT1750559.SearchInNewTabLastCheckTime", "Thu Apr 28 2011 19:17:49 GMT+0200");
Nalezeno : user_pref("CT1750559.SearchInNewTabServiceUrl", "hxxp://newtab.conduit-hosting.com/newtab/?ctid=EB_T[...]
Nalezeno : user_pref("CT1750559.SearchInNewTabUsageUrl", "hxxp://Usage.Hosting.conduit-services.com/UsageServic[...]
Nalezeno : user_pref("CT1750559.SettingsCheckIntervalMin", 120);
Nalezeno : user_pref("CT1750559.SettingsLastCheckTime", "Thu Apr 28 2011 19:17:47 GMT+0200");
Nalezeno : user_pref("CT1750559.SettingsLastUpdate", "1302854560");
Nalezeno : user_pref("CT1750559.ThirdPartyComponentsInterval", 504);
Nalezeno : user_pref("CT1750559.ThirdPartyComponentsLastCheck", "Thu Apr 28 2011 19:17:47 GMT+0200");
Nalezeno : user_pref("CT1750559.ThirdPartyComponentsLastUpdate", "1246786978");
Nalezeno : user_pref("CT1750559.TrusteLinkUrl", "hxxp://trust.conduit.com/EB_ORIGINAL_CTID");
Nalezeno : user_pref("CT1750559.UserID", "UN15234199655916736");
Nalezeno : user_pref("CT1750559.ValidationData_Toolbar", 2);
Nalezeno : user_pref("CT1750559.WeatherNetwork", "");
Nalezeno : user_pref("CT1750559.WeatherPollDate", "Thu Apr 28 2011 19:17:52 GMT+0200");
Nalezeno : user_pref("CT1750559.WeatherUnit", "C");
Nalezeno : user_pref("CT1750559.alertChannelId", "31130");
Nalezeno : user_pref("CT1750559.backendstorage.hxxp://cmg1_conduit-widgets_com/pitsi.state", "4F50454E");
Nalezeno : user_pref("CT1750559.clientLogIsEnabled", false);
Nalezeno : user_pref("CT1750559.clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.asm[...]
Nalezeno : user_pref("CT1750559.myStuffEnabled", true);
Nalezeno : user_pref("CT1750559.myStuffPublihserMinWidth", 400);
Nalezeno : user_pref("CT1750559.myStuffSearchUrl", "hxxp://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOr[...]
Nalezeno : user_pref("CT1750559.myStuffServiceIntervalMM", 1440);
Nalezeno : user_pref("CT1750559.myStuffServiceUrl", "hxxp://mystuff.conduit-services.com/MyStuffService.ashx?Co[...]
Nalezeno : user_pref("CT1750559.uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/Reg[...]
Nalezeno : user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "chrome://browser-region/locale/region.pr[...]
Nalezeno : user_pref("CommunityToolbar.ToolbarsList", "CT1750559");
Nalezeno : user_pref("CommunityToolbar.ToolbarsList2", "CT1750559");
Nalezeno : user_pref("CommunityToolbar.facebook.settingsLastCheckTime", "Thu Apr 28 2011 19:17:49 GMT+0200");
Nalezeno : user_pref("CommunityToolbar.keywordURLSelectedCTID", "CT1750559");
Nalezeno : user_pref("browser.search.defaultthis.engineName", "BS Player Customized Web Search");
Nalezeno : user_pref("browser.search.defaulturl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT1750559&Sea[...]
Nalezeno : user_pref("browser.search.selectedEngine", "BS Player Customized Web Search");
Nalezeno : user_pref("keyword.URL", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT1750559&q=");
Nalezeno : user_pref("browser.newtab.url", "hxxp://mystart.incredibar.com/mb128?a=6OyKkjwo9M&loc=FF_NT");user_p[...]
Soubor : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\5hmbs2yj.default\prefs.js
Nalezeno : user_pref("browser.newtab.url", "hxxp://mystart.incredibar.com/mb128?a=6OyKkjwo9M&loc=FF_NT");user_p[...]
Soubor : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\9dmbk278.default\prefs.js
Nalezeno : user_pref("browser.newtab.url", "hxxp://mystart.incredibar.com/mb128?a=6OyKkjwo9M&loc=FF_NT");user_p[...]
Soubor : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\od3412mv.default\prefs.js
Nalezeno : user_pref("browser.search.defaultengine", "Ask.com");
Nalezeno : user_pref("browser.search.defaultenginename", "Ask.com");
Nalezeno : user_pref("browser.search.order.1", "Ask.com");
Nalezeno : user_pref("browser.search.selectedEngine", "Ask.com");
Nalezeno : user_pref("extensions.asktb.cbid", "QR");
Nalezeno : user_pref("extensions.asktb.crumb", "2010.12.01+09.25.40-toolbar002iad-CZ-UHJhZ3VlLEN6ZWNoIFJlcHVibG[...]
Nalezeno : user_pref("extensions.asktb.default-channel-url-mask", "hxxp://www.ask.com/web?q={query}&o={o}&l={l}[...]
Nalezeno : user_pref("extensions.asktb.dtid", "YYYYYYYYCZ");
Nalezeno : user_pref("extensions.asktb.fresh-install", false);
Nalezeno : user_pref("extensions.asktb.l", "dis");
Nalezeno : user_pref("extensions.asktb.last-config-req", "1297789640483");
Nalezeno : user_pref("extensions.asktb.locale", "en_US");
Nalezeno : user_pref("extensions.asktb.o", "16205");
Nalezeno : user_pref("extensions.asktb.overlay-reloaded-using-restart", true);
Nalezeno : user_pref("extensions.asktb.qsrc", "2871");
Nalezeno : user_pref("extensions.asktb.r", "3");
Nalezeno : user_pref("extensions.asktb.search-plugin-suggestions-url", "hxxp://ss.websearch.ask.com/query?qsrc=[...]
Nalezeno : user_pref("extensions.asktb.search-suggestions-enabled", true);
Nalezeno : user_pref("icqtoolbar.allowSendURL", false);
Nalezeno : user_pref("icqtoolbar.engineVerified", false);
Nalezeno : user_pref("icqtoolbar.hiddenElements", "itb_options");
Nalezeno : user_pref("icqtoolbar.installTime", "1288727407");
Nalezeno : user_pref("icqtoolbar.newtab_state", "1");
Nalezeno : user_pref("icqtoolbar.numberOfSearches", 0);
Nalezeno : user_pref("icqtoolbar.previousFFVersion", "3.6.12");
Nalezeno : user_pref("icqtoolbar.skip_default_search", "no");
Nalezeno : user_pref("icqtoolbar.suggestions", false);
Nalezeno : user_pref("icqtoolbar.uninstStatSent", true);
Nalezeno : user_pref("icqtoolbar.uniqueID", "128870542612887058801288727407313");
Nalezeno : user_pref("icqtoolbar.usageStatstTimestamp", 1288814053);
Nalezeno : user_pref("icqtoolbar.voucherHideClicks", 0);
Nalezeno : user_pref("icqtoolbar.voucherMoreLinkClicks", 0);
Nalezeno : user_pref("icqtoolbar.voucherRedeemClicks", 0);
Nalezeno : user_pref("icqtoolbar.voucherWasShown", 0);
Nalezeno : user_pref("icqtoolbar.xmlEnableSuggestions", false);
Nalezeno : user_pref("icqtoolbar.xmlLanguage", "cs");
Nalezeno : user_pref("keyword.URL", "hxxp://websearch.ask.com/redirect?client=ff&src=kw&tb=CDS&o=16205&locale=e[...]
Nalezeno : user_pref("browser.newtab.url", "hxxp://mystart.incredibar.com/mb128?a=6OyKkjwo9M&loc=FF_NT");user_p[...]
Soubor : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\s274s0yb.default\prefs.js
Nalezeno : user_pref("browser.newtab.url", "hxxp://mystart.incredibar.com/mb128?a=6OyKkjwo9M&loc=FF_NT");user_p[...]
Soubor : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\uzgpurg2.default\prefs.js
Nalezeno : user_pref("CT2481032.1000082.isDisplayHidden", "true");
Nalezeno : user_pref("CT2481032.1000082.state", "{\"state\":\"stopped\",\"text\":\"Californi...\",\"description[...]
Nalezeno : user_pref("CT2481032.CBOpenMAMSettings.enc", "MA==");
Nalezeno : user_pref("CT2481032.ENABALE_HISTORY", "{\"dataType\":\"string\",\"data\":\"true\"}");
Nalezeno : user_pref("CT2481032.ENABLE_RETURN_WEB_SEARCH_ON_THE_PAGE", "{\"dataType\":\"string\",\"data\":\"tru[...]
Nalezeno : user_pref("CT2481032.FirstTime", "true");
Nalezeno : user_pref("CT2481032.FirstTimeFF3", "true");
Nalezeno : user_pref("CT2481032.LoginRevertSettingsEnabled", true);
Nalezeno : user_pref("CT2481032.UserID", "UN75412603070472550");
Nalezeno : user_pref("CT2481032.addressBarTakeOverEnabledInHidden", "true");
Nalezeno : user_pref("CT2481032.autoDisableScopes", 14);
Nalezeno : user_pref("CT2481032.cb_experience_000.enc", "MQ==");
Nalezeno : user_pref("CT2481032.cb_firstuse0100.enc", "MQ==");
Nalezeno : user_pref("CT2481032.cbcountry_001.enc", "Q1o=");
Nalezeno : user_pref("CT2481032.cbfirsttime.enc", "VHVlIE5vdiAyNyAyMDEyIDIwOjQ2OjU2IEdNVCswMTAw");
Nalezeno : user_pref("CT2481032.defaultSearch", "false");
Nalezeno : user_pref("CT2481032.enableAlerts", "false");
Nalezeno : user_pref("CT2481032.enableFix404ByUser", "FALSE");
Nalezeno : user_pref("CT2481032.enableSearchFromAddressBar", "false");
Nalezeno : user_pref("CT2481032.firstTimeDialogOpened", "true");
Nalezeno : user_pref("CT2481032.fixPageNotFoundError", "true");
Nalezeno : user_pref("CT2481032.fixPageNotFoundErrorByUser", "true");
Nalezeno : user_pref("CT2481032.fixPageNotFoundErrorInHidden", "true");
Nalezeno : user_pref("CT2481032.fixUrls", true);
Nalezeno : user_pref("CT2481032.hxxp___www_socialgrowthtechnologies_com_couponbuddy_v001.APP_WIN_FEATURES.enc",[...]
Nalezeno : user_pref("CT2481032.installId", "conduitnsisintegration");
Nalezeno : user_pref("CT2481032.installType", "conduitnsisintegration");
Nalezeno : user_pref("CT2481032.isCheckedStartAsHidden", true);
Nalezeno : user_pref("CT2481032.isEnableAllDialogs", "{\"dataType\":\"string\",\"data\":\"true\"}");
Nalezeno : user_pref("CT2481032.isFirstTimeToolbarLoading", "false");
Nalezeno : user_pref("CT2481032.isNewTabEnabled", false);
Nalezeno : user_pref("CT2481032.isPerformedSmartBarTransition", "true");
Nalezeno : user_pref("CT2481032.isToolbarShrinked", "{\"dataType\":\"string\",\"data\":\"false\"}");
Nalezeno : user_pref("CT2481032.lastNewTabSettings", "{\"isEnabled\":false,\"newTabUrl\":\"hxxp://search.condui[...]
Nalezeno : user_pref("CT2481032.lastVersion", "10.15.2.523");
Nalezeno : user_pref("CT2481032.migrateAppsAndComponents", true);
Nalezeno : user_pref("CT2481032.navigationAliasesJson", "{\"EB_SEARCH_TERM\":\"\",\"EB_MAIN_FRAME_URL\":\"hxxp%[...]
Nalezeno : user_pref("CT2481032.openThankYouPage", "false");
Nalezeno : user_pref("CT2481032.openUninstallPage", "false");
Nalezeno : user_pref("CT2481032.price-gong.bornDate", "{\"dataType\":\"string\",\"data\":\"{\\\"Response\\\":\\[...]
Nalezeno : user_pref("CT2481032.price-gong.isManagedApp", "true");
Nalezeno : user_pref("CT2481032.revertSettingsEnabled", "false");
Nalezeno : user_pref("CT2481032.search.searchAppId", "129058858240125318");
Nalezeno : user_pref("CT2481032.search.searchCount", "0");
Nalezeno : user_pref("CT2481032.searchInNewTabEnabled", "false");
Nalezeno : user_pref("CT2481032.searchInNewTabEnabledByUser", "false");
Nalezeno : user_pref("CT2481032.searchInNewTabEnabledInHidden", "true");
Nalezeno : user_pref("CT2481032.selectToSearchBoxEnabled", "{\"dataType\":\"string\",\"data\":\"true\"}");
Nalezeno : user_pref("CT2481032.serviceLayer_service_login_isFirstLoginInvoked", "{\"dataType\":\"boolean\",\"d[...]
Nalezeno : user_pref("CT2481032.serviceLayer_service_login_loginCount", "{\"dataType\":\"number\",\"data\":\"4\[...]
Nalezeno : user_pref("CT2481032.serviceLayer_service_toolbarGrouping_activeCTID", "{\"dataType\":\"string\",\"d[...]
Nalezeno : user_pref("CT2481032.serviceLayer_service_toolbarGrouping_activeDownloadUrl", "{\"dataType\":\"strin[...]
Nalezeno : user_pref("CT2481032.serviceLayer_service_toolbarGrouping_activeToolbarName", "{\"dataType\":\"strin[...]
Nalezeno : user_pref("CT2481032.serviceLayer_service_toolbarGrouping_invoked", "{\"dataType\":\"string\",\"data[...]
Nalezeno : user_pref("CT2481032.serviceLayer_services_app.twitter.user-cnet_lastUpdate", "1354651751436");
Nalezeno : user_pref("CT2481032.serviceLayer_services_app.twitter.user-cnnbrk_lastUpdate", "1354651751577");
Nalezeno : user_pref("CT2481032.serviceLayer_services_app.twitter.user-computeractive_lastUpdate", "13546517517[...]
Nalezeno : user_pref("CT2481032.serviceLayer_services_app.twitter.user-dailymirror_lastUpdate", "1354651751653"[...]
Nalezeno : user_pref("CT2481032.serviceLayer_services_app.twitter.user-google_lastUpdate", "1354651751619");
Nalezeno : user_pref("CT2481032.serviceLayer_services_app.twitter.user-techcrunch_lastUpdate", "1354651751374")[...]
Nalezeno : user_pref("CT2481032.serviceLayer_services_app.twitter.user-thesun_news_lastUpdate", "1354651751640"[...]
Nalezeno : user_pref("CT2481032.serviceLayer_services_app.twitter.user-wired_lastUpdate", "1354651751729");
Nalezeno : user_pref("CT2481032.serviceLayer_services_appTrackingFirstTime_lastUpdate", "1354045607196");
Nalezeno : user_pref("CT2481032.serviceLayer_services_appsMetadata_lastUpdate", "1354651746537");
Nalezeno : user_pref("CT2481032.serviceLayer_services_gottenAppsContextMenu_lastUpdate", "1354045608432");
Nalezeno : user_pref("CT2481032.serviceLayer_services_location_lastUpdate", "1369247005199");
Nalezeno : user_pref("CT2481032.serviceLayer_services_login_10.13.40.15_lastUpdate", "1359283103293");
Nalezeno : user_pref("CT2481032.serviceLayer_services_login_10.14.42.7_lastUpdate", "1362516737676");
Nalezeno : user_pref("CT2481032.serviceLayer_services_login_10.14.65.43_lastUpdate", "1366033249087");
Nalezeno : user_pref("CT2481032.serviceLayer_services_login_10.15.0.562_lastUpdate", "1366532718643");
Nalezeno : user_pref("CT2481032.serviceLayer_services_login_10.15.2.523_lastUpdate", "1369246963150");
Nalezeno : user_pref("CT2481032.serviceLayer_services_otherAppsContextMenu_lastUpdate", "1354045607905");
Nalezeno : user_pref("CT2481032.serviceLayer_services_searchAPI_lastUpdate", "1354651746795");
Nalezeno : user_pref("CT2481032.serviceLayer_services_serviceMap_lastUpdate", "1369247005196");
Nalezeno : user_pref("CT2481032.serviceLayer_services_toolbarContextMenu_lastUpdate", "1354045608386");
Nalezeno : user_pref("CT2481032.serviceLayer_services_toolbarSettings_lastUpdate", "1369247005198");
Nalezeno : user_pref("CT2481032.serviceLayer_services_translation_lastUpdate", "1369247005197");
Nalezeno : user_pref("CT2481032.serviceLayer_services_userApps1ec55dac-8dca-406b-9697-5d68893c1c0c_lastUpdate",[...]
Nalezeno : user_pref("CT2481032.serviceLayer_services_userApps_lastUpdate", "1354045640991");
Nalezeno : user_pref("CT2481032.settingsINI", true);
Nalezeno : user_pref("CT2481032.shouldFirstTimeDialog", "false");
Nalezeno : user_pref("CT2481032.showToolbarPermission", "false");
Nalezeno : user_pref("CT2481032.smartbar.CTID", "CT2481032");
Nalezeno : user_pref("CT2481032.smartbar.Uninstall", "0");
Nalezeno : user_pref("CT2481032.smartbar.isHidden", true);
Nalezeno : user_pref("CT2481032.smartbar.toolbarName", "Ashampoo US ");
Nalezeno : user_pref("CT2481032.startPage", "false");
Nalezeno : user_pref("CT2481032.toolbarBornServerTime", "27-11-2012");
Nalezeno : user_pref("CT2481032.toolbarCurrentServerTime", "22-5-2013");
Nalezeno : user_pref("CT2481032.toolbarLoginClientTime", "Tue Apr 16 2013 20:53:27 GMT+0200");
Nalezeno : user_pref("CT2481032.url_history0001.enc", "aHR0cDovL3d3dy5zc2hzb3BhdmEuY3ovaXNhcy9wcnViZXpuYS1rbGFz[...]
Nalezeno : user_pref("CT2481032_Firefox.csv", "[{\"from\":\"Abs Layer\",\"action\":\"loading toolbar\",\"time\"[...]
Nalezeno : user_pref("CT3220468.BT_Stats", "{\"last_log\":1348927710,\"uuid\":157883722652164,\"seq_id\":1,\"ss[...]
Nalezeno : user_pref("CT3220468.ENABALE_HISTORY", "{\"dataType\":\"string\",\"data\":\"true\"}");
Nalezeno : user_pref("CT3220468.ENABLE_RETURN_WEB_SEARCH_ON_THE_PAGE", "{\"dataType\":\"string\",\"data\":\"tru[...]
Nalezeno : user_pref("CT3220468.FirstTime", "true");
Nalezeno : user_pref("CT3220468.FirstTimeFF3", "true");
Nalezeno : user_pref("CT3220468.LoginRevertSettingsEnabled", true);
Nalezeno : user_pref("CT3220468.RevertSettingsEnabled", true);
Nalezeno : user_pref("CT3220468.UserID", "UN92059843445263539");
Nalezeno : user_pref("CT3220468.addressBarTakeOverEnabledInHidden", "true");
Nalezeno : user_pref("CT3220468.autoDisableScopes", 14);
Nalezeno : user_pref("CT3220468.cbfirsttime", "Sat Sep 29 2012 16:08:29 GMT+0200");
Nalezeno : user_pref("CT3220468.defaultSearch", "FALSE");
Nalezeno : user_pref("CT3220468.enableAlerts", "always");
Nalezeno : user_pref("CT3220468.enableFix404ByUser", "FALSE");
Nalezeno : user_pref("CT3220468.enableSearchFromAddressBar", "FALSE");
Nalezeno : user_pref("CT3220468.firstTimeDialogOpened", "true");
Nalezeno : user_pref("CT3220468.fixPageNotFoundError", "true");
Nalezeno : user_pref("CT3220468.fixPageNotFoundErrorByUser", "true");
Nalezeno : user_pref("CT3220468.fixPageNotFoundErrorInHidden", "true");
Nalezeno : user_pref("CT3220468.fixUrls", true);
Nalezeno : user_pref("CT3220468.installId", "fft6711.tmp.exe");
Nalezeno : user_pref("CT3220468.installType", "XPE");
Nalezeno : user_pref("CT3220468.isCheckedStartAsHidden", true);
Nalezeno : user_pref("CT3220468.isEnableAllDialogs", "{\"dataType\":\"string\",\"data\":\"true\"}");
Nalezeno : user_pref("CT3220468.isFirstTimeToolbarLoading", "false");
Nalezeno : user_pref("CT3220468.isNewTabEnabled", true);
Nalezeno : user_pref("CT3220468.isPerformedSmartBarTransition", "true");
Nalezeno : user_pref("CT3220468.isToolbarShrinked", "{\"dataType\":\"string\",\"data\":\"false\"}");
Nalezeno : user_pref("CT3220468.isWelcomPage", "{\"dataType\":\"boolean\",\"data\":\"true\"}");
Nalezeno : user_pref("CT3220468.lastNewTabSettings", "{\"isEnabled\":true,\"newTabUrl\":\"hxxp://search.conduit[...]
Nalezeno : user_pref("CT3220468.lastVersion", "10.16.2.509");
Nalezeno : user_pref("CT3220468.migrateAppsAndComponents", true);
Nalezeno : user_pref("CT3220468.navigationAliasesJson", "{\"EB_SEARCH_TERM\":\"\",\"EB_MAIN_FRAME_URL\":\"hxxp%[...]
Nalezeno : user_pref("CT3220468.openThankYouPage", "true");
Nalezeno : user_pref("CT3220468.openUninstallPage", "FALSE");
Nalezeno : user_pref("CT3220468.search.searchAppId", "129813684258939747");
Nalezeno : user_pref("CT3220468.search.searchCount", "0");
Nalezeno : user_pref("CT3220468.searchInNewTabEnabledByUser", "true");
Nalezeno : user_pref("CT3220468.searchInNewTabEnabledInHidden", "true");
Nalezeno : user_pref("CT3220468.selectToSearchBoxEnabled", "{\"dataType\":\"string\",\"data\":\"true\"}");
Nalezeno : user_pref("CT3220468.serviceLayer_service_login_isFirstLoginInvoked", "{\"dataType\":\"boolean\",\"d[...]
Nalezeno : user_pref("CT3220468.serviceLayer_service_login_loginCount", "{\"dataType\":\"number\",\"data\":\"4\[...]
Nalezeno : user_pref("CT3220468.serviceLayer_service_toolbarGrouping_activeCTID", "{\"dataType\":\"string\",\"d[...]
Nalezeno : user_pref("CT3220468.serviceLayer_service_toolbarGrouping_activeDownloadUrl", "{\"dataType\":\"strin[...]
Nalezeno : user_pref("CT3220468.serviceLayer_service_toolbarGrouping_activeToolbarName", "{\"dataType\":\"strin[...]
Nalezeno : user_pref("CT3220468.serviceLayer_service_toolbarGrouping_invoked", "{\"dataType\":\"string\",\"data[...]
Nalezeno : user_pref("CT3220468.serviceLayer_service_usage_toolbarUsageCount", "{\"dataType\":\"number\",\"data[...]
Nalezeno : user_pref("CT3220468.serviceLayer_services_appTrackingFirstTime_lastUpdate", "1348927697889");
Nalezeno : user_pref("CT3220468.serviceLayer_services_appsMetadata_lastUpdate", "1348927697682");
Nalezeno : user_pref("CT3220468.serviceLayer_services_gottenAppsContextMenu_lastUpdate", "1348927698881");
Nalezeno : user_pref("CT3220468.serviceLayer_services_location_lastUpdate", "1369247005202");
Nalezeno : user_pref("CT3220468.serviceLayer_services_login_10.10.27.6_lastUpdate", "1352999678654");
Nalezeno : user_pref("CT3220468.serviceLayer_services_login_10.13.40.15_lastUpdate", "1359283104158");
Nalezeno : user_pref("CT3220468.serviceLayer_services_login_10.14.370.524_lastUpdate", "1366033298693");
Nalezeno : user_pref("CT3220468.serviceLayer_services_login_10.14.40.128_lastUpdate", "1362516735193");
Nalezeno : user_pref("CT3220468.serviceLayer_services_login_10.14.65.43_lastUpdate", "1363554851306");
Nalezeno : user_pref("CT3220468.serviceLayer_services_login_10.15.0.562_lastUpdate", "1369246962905");
Nalezeno : user_pref("CT3220468.serviceLayer_services_login_10.16.2.509_lastUpdate", "1369253499220");
Nalezeno : user_pref("CT3220468.serviceLayer_services_otherAppsContextMenu_lastUpdate", "1348927698841");
Nalezeno : user_pref("CT3220468.serviceLayer_services_searchAPI_lastUpdate", "1348927697133");
Nalezeno : user_pref("CT3220468.serviceLayer_services_serviceMap_lastUpdate", "1369247005200");
Nalezeno : user_pref("CT3220468.serviceLayer_services_toolbarContextMenu_lastUpdate", "1348927698802");
Nalezeno : user_pref("CT3220468.serviceLayer_services_toolbarSettings_lastUpdate", "1369247005202");
Nalezeno : user_pref("CT3220468.serviceLayer_services_translation_lastUpdate", "1369247005201");
Nalezeno : user_pref("CT3220468.settingsINI", true);
Nalezeno : user_pref("CT3220468.shouldFirstTimeDialog", "false");
Nalezeno : user_pref("CT3220468.showToolbarPermission", "false");
Nalezeno : user_pref("CT3220468.smartbar.CTID", "CT3220468");
Nalezeno : user_pref("CT3220468.smartbar.Uninstall", "0");
Nalezeno : user_pref("CT3220468.smartbar.isHidden", true);
Nalezeno : user_pref("CT3220468.smartbar.toolbarName", "uTorrentControl_v2 ");
Nalezeno : user_pref("CT3220468.startPage", "userChanged");
Nalezeno : user_pref("CT3220468.toolbarBornServerTime", "29-9-2012");
Nalezeno : user_pref("CT3220468.toolbarCurrentServerTime", "22-5-2013");
Nalezeno : user_pref("CT3220468.toolbarLoginClientTime", "Tue Mar 19 2013 20:49:51 GMT+0100");
Nalezeno : user_pref("CT3220468.upgradeFromClearSBVersion", true);
Nalezeno : user_pref("CT3220468_Firefox.csv", "[{\"from\":\"Abs Layer\",\"action\":\"loading toolbar\",\"time\"[...]
Nalezeno : user_pref("avg.install.userHPSettings", "hxxp://www1.delta-search.com/?affID=119816&babsrc=HP_ss&mnt[...]
Nalezeno : user_pref("avg.install.userSPSettings", "Delta Search");
Nalezeno : user_pref("browser.newtab.url", "hxxp://www1.delta-search.com/?affID=119816&babsrc=NT_ss&mntrId=4E61[...]
Nalezeno : user_pref("browser.search.selectedEngine", "Delta Search");
Nalezeno : user_pref("browser.startup.homepage", "hxxp://www1.delta-search.com/?affID=119816&babsrc=HP_ss&mntrI[...]
Nalezeno : user_pref("extensions.BabylonToolbar.admin", false);
Nalezeno : user_pref("extensions.BabylonToolbar.aflt", "babsst");
Nalezeno : user_pref("extensions.BabylonToolbar.dfltLng", "en");
Nalezeno : user_pref("extensions.BabylonToolbar.excTlbr", false);
Nalezeno : user_pref("extensions.BabylonToolbar.id", "4e614cce00000000000076f1a142e774");
Nalezeno : user_pref("extensions.BabylonToolbar.instlDay", "15565");
Nalezeno : user_pref("extensions.BabylonToolbar.instlRef", "sst");
Nalezeno : user_pref("extensions.BabylonToolbar.prdct", "BabylonToolbar");
Nalezeno : user_pref("extensions.BabylonToolbar.prtnrId", "babylon");
Nalezeno : user_pref("extensions.BabylonToolbar.tlbrId", "base");
Nalezeno : user_pref("extensions.BabylonToolbar.tlbrSrchUrl", "hxxp://www.google.com/search?babsrc=TB_ggl&q=");
Nalezeno : user_pref("extensions.BabylonToolbar.vrsn", "1.6.4.6");
Nalezeno : user_pref("extensions.BabylonToolbar.vrsni", "1.6.4.6");
Nalezeno : user_pref("extensions.BabylonToolbar_i.babExt", "");
Nalezeno : user_pref("extensions.BabylonToolbar_i.babTrack", "affID=112059&tt=120812_bandext_3312_7");
Nalezeno : user_pref("extensions.BabylonToolbar_i.newTab", true);
Nalezeno : user_pref("extensions.BabylonToolbar_i.newTabUrl", "hxxp://search.babylon.com/?affID=112059&tt=12081[...]
Nalezeno : user_pref("extensions.BabylonToolbar_i.smplGrp", "none");
Nalezeno : user_pref("extensions.BabylonToolbar_i.srcExt", "ss");
Nalezeno : user_pref("extensions.BabylonToolbar_i.vrsnTs", "1.6.4.619:03:48");
Nalezeno : user_pref("extensions.incredibar.admin", false);
Nalezeno : user_pref("extensions.incredibar.aflt", "orgnl");
Nalezeno : user_pref("extensions.incredibar.cntry", "CZ");
Nalezeno : user_pref("extensions.incredibar.dfltLng", "");
Nalezeno : user_pref("extensions.incredibar.dfltSrch", false);
Nalezeno : user_pref("extensions.incredibar.did", "10658");
Nalezeno : user_pref("extensions.incredibar.envrmnt", "production");
Nalezeno : user_pref("extensions.incredibar.excTlbr", false);
Nalezeno : user_pref("extensions.incredibar.hdrMd5", "56B95DE1EDE995C4384A7AF67E0AF2A8");
Nalezeno : user_pref("extensions.incredibar.hmpg", false);
Nalezeno : user_pref("extensions.incredibar.id", "4e614cce00000000000076f1a142e774");
Nalezeno : user_pref("extensions.incredibar.installerproductid", "26");
Nalezeno : user_pref("extensions.incredibar.instlDay", "15559");
Nalezeno : user_pref("extensions.incredibar.instlRef", "");
Nalezeno : user_pref("extensions.incredibar.isDcmntCmplt", true);
Nalezeno : user_pref("extensions.incredibar.lastVrsnTs", "1.5.11.1419:22:44");
Nalezeno : user_pref("extensions.incredibar.mntrvrsn", "1.2.0");
Nalezeno : user_pref("extensions.incredibar.newTab", false);
Nalezeno : user_pref("extensions.incredibar.noFFXTlbr", false);
Nalezeno : user_pref("extensions.incredibar.ppd", "");
Nalezeno : user_pref("extensions.incredibar.prdct", "incredibar");
Nalezeno : user_pref("extensions.incredibar.productid", "26");
Nalezeno : user_pref("extensions.incredibar.prtnrId", "Incredibar");
Nalezeno : user_pref("extensions.incredibar.sg", "none");
Nalezeno : user_pref("extensions.incredibar.smplGrp", "none");
Nalezeno : user_pref("extensions.incredibar.tlbrId", "base");
Nalezeno : user_pref("extensions.incredibar.tlbrSrchUrl", "hxxp://mystart.Incredibar.com/?a=6OyKkjwo9M&loc=IB_T[...]
Nalezeno : user_pref("extensions.incredibar.upn2", "6OyKkjwo9M");
Nalezeno : user_pref("extensions.incredibar.upn2n", "92261890875400430");
Nalezeno : user_pref("extensions.incredibar.vrsn", "1.5.11.14");
Nalezeno : user_pref("extensions.incredibar.vrsnTs", "1.5.11.1419:22:44");
Nalezeno : user_pref("extensions.incredibar.vrsni", "1.5.11.14");
Nalezeno : user_pref("extensions.incredibar_i.aflt", "orgnl");
Nalezeno : user_pref("extensions.incredibar_i.dfltLng", "");
Nalezeno : user_pref("extensions.incredibar_i.did", "10658");
Nalezeno : user_pref("extensions.incredibar_i.excTlbr", false);
Nalezeno : user_pref("extensions.incredibar_i.id", "4e614cce00000000000076f1a142e774");
Nalezeno : user_pref("extensions.incredibar_i.installerproductid", "26");
Nalezeno : user_pref("extensions.incredibar_i.instlDay", "15559");
Nalezeno : user_pref("extensions.incredibar_i.instlRef", "");
Nalezeno : user_pref("extensions.incredibar_i.ms_url_id", "");
Nalezeno : user_pref("extensions.incredibar_i.newTab", false);
Nalezeno : user_pref("extensions.incredibar_i.ppd", "");
Nalezeno : user_pref("extensions.incredibar_i.prdct", "incredibar");
Nalezeno : user_pref("extensions.incredibar_i.productid", "26");
Nalezeno : user_pref("extensions.incredibar_i.prtnrId", "Incredibar");
Nalezeno : user_pref("extensions.incredibar_i.smplGrp", "none");
Nalezeno : user_pref("extensions.incredibar_i.tlbrId", "base");
Nalezeno : user_pref("extensions.incredibar_i.tlbrSrchUrl", "hxxp://mystart.Incredibar.com/?a=6OyKkjwo9M&loc=IB[...]
Nalezeno : user_pref("extensions.incredibar_i.upn2", "6OyKkjwo9M");
Nalezeno : user_pref("extensions.incredibar_i.upn2n", "92261890875400430");
Nalezeno : user_pref("extensions.incredibar_i.vrsn", "1.5.11.14");
Nalezeno : user_pref("extensions.incredibar_i.vrsnTs", "1.5.11.1419:22:44");
Nalezeno : user_pref("extensions.incredibar_i.vrsni", "1.5.11.14");
Nalezeno : user_pref("extentions.y2layers.defaultEnableAppsList", "bestvideodownloader,ezLooker,pagerage,buzzdo[...]
Nalezeno : user_pref("extentions.y2layers.installId", "c02629a4-85cd-4f38-ba4b-bb84a0dd7db9");
Nalezeno : user_pref("keyword.URL", "hxxp://eu.ask.com/web?l=dis&o=APN10089&gct=kwd&qsrc=2869&apn_dtid=^PFM004^[...]
Nalezeno : user_pref("smartBar.searchInNewTabOwner", "CT3220468");
Nalezeno : user_pref("smartbar.machineId", "ZOJJT5QCLWUOAKVUIKV+KSLE2FZLN9JRD/MPDX6OHQFBQ5VQ6JEQJWNHCLOVXLIAIKJ[...]
Nalezeno : user_pref("sweetim.toolbar.urls.homepage", "hxxp://search.babylon.com/?affID=112059&tt=120812_bandex[...]
Nalezeno : user_pref("{336D0C35-8A85-403a-B9D2-65C292C39087}.ScriptData_WSG_whiteList", "{\"search.babylon.com\[...]
-\\ Google Chrome v27.0.1453.94
Soubor : C:\Users\Renata\AppData\Local\Google\Chrome\User Data\Default\Preferences
Nalezeno [l.2481] : homepage = "hxxp://www1.delta-search.com/?affID=119816&babsrc=HP_ss&mntrId=4E6176F1A142E774",
Nalezeno [l.2861] : urls_to_restore_on_startup = [ "hxxp://www1.delta-search.com/?affID=119816&babsrc=HP_ss&mntrId=4E6176F1A142E774" ]
*************************
AdwCleaner[R1].txt - [46251 octets] - [31/05/2013 22:20:58]
########## EOF - C:\AdwCleaner[R1].txt - [46312 octets] ##########
# Aktualizováno 16/05/2013 Xplode
# Operaení systém : Windows 7 Professional Service Pack 1 (32 bits)
# Uživatel : Renata - RENATA-PC
# Spuštin systém : Normální
# Spuštino z : C:\Users\Renata\Downloads\adwcleaner.exe
# Volba [Prohledat]
***** [Služby] *****
Nalezeno : BrowserProtect
Nalezeno : IBUpdaterService
***** [Soubory / Složky] *****
Složka Nalezeno : C:\Program Files\1ClickDownload
Složka Nalezeno : C:\Program Files\Conduit
Složka Nalezeno : C:\Program Files\ICQ6Toolbar
Složka Nalezeno : C:\Program Files\Mozilla Firefox\Extensions\ffxtlbr@babylon.com
Složka Nalezeno : C:\Program Files\Perion
Složka Nalezeno : C:\ProgramData\Ask
Složka Nalezeno : C:\ProgramData\Babylon
Složka Nalezeno : C:\ProgramData\BrowserProtect
Složka Nalezeno : C:\ProgramData\ICQ\ICQToolbar
Složka Nalezeno : C:\ProgramData\Tarma Installer
Složka Nalezeno : C:\Users\Renata\AppData\Local\Google\Chrome\User Data\Default\Extensions\jifflliplgeajjdhmkcfnngfpgbjonjg
Složka Nalezeno : C:\Users\Renata\AppData\Local\Google\Chrome\User Data\Default\Extensions\pmlghpafmmnmmkjdhacccolfgnkiboco
Složka Nalezeno : C:\Users\Renata\AppData\Local\Temp\CT3220468
Složka Nalezeno : C:\Users\Renata\AppData\LocalLow\BabylonToolbar
Složka Nalezeno : C:\Users\Renata\AppData\LocalLow\Conduit
Složka Nalezeno : C:\Users\Renata\AppData\Roaming\BabSolution
Složka Nalezeno : C:\Users\Renata\AppData\Roaming\Babylon
Složka Nalezeno : C:\Users\Renata\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BrowserProtect
Složka Nalezeno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\0e85her5.default\Conduit
Složka Nalezeno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\0e85her5.default\CT1750559
Složka Nalezeno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\0e85her5.default\extensions\{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}
Složka Nalezeno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\0e85her5.default\extensions\plugin@yontoo.com
Složka Nalezeno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\5hmbs2yj.default\extensions\plugin@yontoo.com
Složka Nalezeno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\9dmbk278.default\extensions\plugin@yontoo.com
Složka Nalezeno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\od3412mv.default\extensions\plugin@yontoo.com
Složka Nalezeno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\s274s0yb.default\extensions\plugin@yontoo.com
Složka Nalezeno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\uzgpurg2.default\CT2481032
Složka Nalezeno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\uzgpurg2.default\CT3220468
Složka Nalezeno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\uzgpurg2.default\extensions\{124d001a-bdcb-472f-aa59-bbe7e4bc3204}
Složka Nalezeno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\uzgpurg2.default\extensions\{7473b6bd-4691-4744-a82b-7854eb3d70b6}
Složka Nalezeno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\uzgpurg2.default\jetpack
Složka Nalezeno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\uzgpurg2.default\Smartbar
Složka Nalezeno : C:\Users\Renata\AppData\Roaming\Yontoo
Složka Nalezeno : C:\Windows\system32\WNLT
Soubor Nalezeno : C:\Program Files\Mozilla Firefox\searchplugins\ask.xml
Soubor Nalezeno : C:\Program Files\Mozilla Firefox\searchplugins\babylon.xml
Soubor Nalezeno : C:\user.js
Soubor Nalezeno : C:\Users\Renata\AppData\Local\Google\Chrome\User Data\Default\bProtector Web Data
Soubor Nalezeno : C:\Users\Renata\AppData\Local\Google\Chrome\User Data\Default\bprotectorpreferences
Soubor Nalezeno : C:\Users\Renata\AppData\Roaming\BabMaint.exe
Soubor Nalezeno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\0e85her5.default\searchplugins\Conduit.xml
Soubor Nalezeno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\od3412mv.default\searchplugins\Askcom.xml
Soubor Nalezeno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\od3412mv.default\searchplugins\icqplugin.xml
Soubor Nalezeno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\uzgpurg2.default\bProtector_extensions.rdf
Soubor Nalezeno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\uzgpurg2.default\bprotector_extensions.sqlite
Soubor Nalezeno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\uzgpurg2.default\bprotector_prefs.js
Soubor Nalezeno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\uzgpurg2.default\BrowserMngr_extensions.sqlite
Soubor Nalezeno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\uzgpurg2.default\browsermngr_prefs.js
Soubor Nalezeno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\uzgpurg2.default\extensions\OneClickDownload@OneClickDownload.com.xpi
Soubor Nalezeno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\uzgpurg2.default\extensions\plugin@yontoo.com.xpi
Soubor Nalezeno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\uzgpurg2.default\searchplugins\Askcom.xml
Soubor Nalezeno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\uzgpurg2.default\searchplugins\Babylon.xml
Soubor Nalezeno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\uzgpurg2.default\searchplugins\BrowserProtect.xml
Soubor Nalezeno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\uzgpurg2.default\searchplugins\MyStart Search.xml
Soubor Nalezeno : C:\Windows\system32\conduitEngine.tmp
Soubor Nalezeno : C:\Windows\system32\dmwu.exe
Soubor Nalezeno : C:\Windows\system32\ImhxxpComm.dll
***** [Registry] *****
Data Nalezeno : HKLM\..\Windows [AppInit_DLLs] = c:\progra~2\browse~1\261125~1.80\{c16c1~1\browse~1.dll
Hodnota Nalezeno : HKCU\Software\Microsoft\Internet Explorer\Main [bprotector start page]
Hodnota Nalezeno : HKCU\Software\Microsoft\Internet Explorer\Main [BrowserMngr Start Page]
Hodnota Nalezeno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes [bProtectorDefaultScope]
Hodnota Nalezeno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes [BrowserMngrDefaultScope]
Hodnota Nalezeno : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Hodnota Nalezeno : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [Yontoo Desktop]
Hodnota Nalezeno : HKCU\Software\Mozilla\Firefox\Extensions [{0F827075-B026-42F3-885D-98981EE7B1AE}]
Hodnota Nalezeno : HKCU\Software\Mozilla\Firefox\Extensions [{b64982b1-d112-42b5-b1e4-d3867c4533f8}]
Hodnota Nalezeno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{98889811-442D-49DD-99D7-DC866BE87DBC}]
Hodnota Nalezeno : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{855F3B16-6D32-4FE6-8A56-BBB695989046}]
Hodnota Nalezeno : HKLM\SOFTWARE\Mozilla\Firefox\extensions [{336D0C35-8A85-403a-B9D2-65C292C39087}]
Hodnota Nalezeno : HKLM\SOFTWARE\Mozilla\Firefox\extensions [{FE1DEEEA-DB6D-44b8-83F0-34FC0F9D1052}]
Klíe Nalezeno : HKCU\Software\1ClickDownload
Klíe Nalezeno : HKCU\Software\5f53d8d8b06fbf14
Klíe Nalezeno : HKCU\Software\APN PIP
Klíe Nalezeno : HKCU\Software\AppDataLow\AskBarDis
Klíe Nalezeno : HKCU\Software\AppDataLow\Software\Conduit
Klíe Nalezeno : HKCU\Software\AppDataLow\Software\ConduitSearchScopes
Klíe Nalezeno : HKCU\Software\AppDataLow\Software\SmartBar
Klíe Nalezeno : HKCU\Software\BabylonToolbar
Klíe Nalezeno : HKCU\Software\BrowserMngr
Klíe Nalezeno : HKCU\Software\Conduit
Klíe Nalezeno : HKCU\Software\DataMngr
Klíe Nalezeno : HKCU\Software\IM
Klíe Nalezeno : HKCU\Software\ImInstaller
Klíe Nalezeno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Klíe Nalezeno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40B7-AC73-056A5EBA4A7E}
Klíe Nalezeno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}
Klíe Nalezeno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AD22EBAF-0D18-4FC7-90CC-5EA0ABBE9EB8}
Klíe Nalezeno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{B9C7CE32-DA91-43C2-B7E9-0E9AAFC675CD}
Klíe Nalezeno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{CFF4DB9B-135F-47C0-9269-B4C6572FD61A}
Klíe Nalezeno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings
Klíe Nalezeno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{855F3B16-6D32-4FE6-8A56-BBB695989046}
Klíe Nalezeno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}
Klíe Nalezeno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{00000000-6E41-4FD3-8538-502F5495E5FC}
Klíe Nalezeno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Klíe Nalezeno : HKCU\Software\PIP
Klíe Nalezeno : HKCU\Software\PrivitizeVPNInstallDates
Klíe Nalezeno : HKCU\Software\Softonic
Klíe Nalezeno : HKCU\Software\StartSearch
Klíe Nalezeno : HKCU\Software\WNLT
Klíe Nalezeno : HKLM\SOFTWARE\14919ea49a8f3b4aa3cf1058d9a64cec
Klíe Nalezeno : HKLM\SOFTWARE\5f53d8d8b06fbf14
Klíe Nalezeno : HKLM\Software\Babylon
Klíe Nalezeno : HKLM\Software\BrowserMngr
Klíe Nalezeno : HKLM\SOFTWARE\Classes\AppID\{5B1881D1-D9C7-46DF-B041-1E593282C7D0}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\AppID\{608D3067-77E8-463D-9084-908966806826}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\AppID\{CFDAFE39-20CE-451D-BD45-A37452F39CF0}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\AppID\YontooIEClient.DLL
Klíe Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{7E84186E-B5DE-4226-8A66-6E49C6B511B4}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{99066096-8989-4612-841F-621A01D54AD7}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{FE9271F2-6EFD-44B0-A826-84C829536E93}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\Conduit.Engine
Klíe Nalezeno : HKLM\SOFTWARE\Classes\Interface\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\Interface\{1AD27395-1659-4DFF-A319-2CFA243861A5}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\Prod.cap
Klíe Nalezeno : HKLM\SOFTWARE\Classes\Toolbar.CT1750559
Klíe Nalezeno : HKLM\SOFTWARE\Classes\Toolbar.CT2481032
Klíe Nalezeno : HKLM\SOFTWARE\Classes\Toolbar.CT3220468
Klíe Nalezeno : HKLM\SOFTWARE\Classes\YontooIEClient.Api
Klíe Nalezeno : HKLM\SOFTWARE\Classes\YontooIEClient.Api.1
Klíe Nalezeno : HKLM\SOFTWARE\Classes\YontooIEClient.Layers
Klíe Nalezeno : HKLM\Software\Conduit
Klíe Nalezeno : HKLM\Software\DataMngr
Klíe Nalezeno : HKLM\SOFTWARE\Google\Chrome\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd
Klíe Nalezeno : HKLM\SOFTWARE\Google\Chrome\Extensions\eooncjejnppfjjklapaamhcdmjbilmde
Klíe Nalezeno : HKLM\SOFTWARE\Google\Chrome\Extensions\jifflliplgeajjdhmkcfnngfpgbjonjg
Klíe Nalezeno : HKLM\SOFTWARE\Google\Chrome\Extensions\niapdbllcanepiiimjjndipklodoedlc
Klíe Nalezeno : HKLM\SOFTWARE\Google\Chrome\Extensions\pgafcinpmmpklohkojmllohdhomoefph
Klíe Nalezeno : HKLM\SOFTWARE\Google\Chrome\Extensions\pmlghpafmmnmmkjdhacccolfgnkiboco
Klíe Nalezeno : HKLM\Software\Iminent
Klíe Nalezeno : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Klíe Nalezeno : HKLM\SOFTWARE\Microsoft\Tracing\ConduitInstaller_RASAPI32
Klíe Nalezeno : HKLM\SOFTWARE\Microsoft\Tracing\ConduitInstaller_RASMANCS
Klíe Nalezeno : HKLM\SOFTWARE\Microsoft\Tracing\IncredibarToolbar_RASAPI32
Klíe Nalezeno : HKLM\SOFTWARE\Microsoft\Tracing\IncredibarToolbar_RASMANCS
Klíe Nalezeno : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASAPI32
Klíe Nalezeno : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASMANCS
Klíe Nalezeno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\BrowserProtect
Klíe Nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB}
Klíe Nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Klíe Nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{15D2D75C-9CB2-4EFD-BAD7-B9B4CB4BC693}
Klíe Nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}
Klíe Nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Delta Chrome Toolbar
Klíe Nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WNLT
Klíe Nalezeno : HKLM\Software\PIP
Klíe Nalezeno : HKLM\Software\Tarma Installer
Klíe Nalezeno : HKLM\Software\Web Assistant
Klíe Nalezeno : HKLM\Software\WNLT
Klíe Nalezeno : HKU\.DEFAULT\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Klíe Nalezeno : HKU\S-1-5-18\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Klíe Nalezeno : HKU\S-1-5-21-3683041670-2158295546-2881036051-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Klíe Nalezeno : HKU\S-1-5-21-3683041670-2158295546-2881036051-1000\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40B7-AC73-056A5EBA4A7E}
Klíe Nalezeno : HKU\S-1-5-21-3683041670-2158295546-2881036051-1000\Software\Microsoft\Internet Explorer\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}
Klíe Nalezeno : HKU\S-1-5-21-3683041670-2158295546-2881036051-1000\Software\Microsoft\Internet Explorer\SearchScopes\{AD22EBAF-0D18-4FC7-90CC-5EA0ABBE9EB8}
Klíe Nalezeno : HKU\S-1-5-21-3683041670-2158295546-2881036051-1000\Software\Microsoft\Internet Explorer\SearchScopes\{B9C7CE32-DA91-43C2-B7E9-0E9AAFC675CD}
Klíe Nalezeno : HKU\S-1-5-21-3683041670-2158295546-2881036051-1000\Software\Microsoft\Internet Explorer\SearchScopes\{CFF4DB9B-135F-47C0-9269-B4C6572FD61A}
***** [Internetové prohlížeee] *****
-\\ Internet Explorer v10.0.9200.16576
[HKCU\Software\Microsoft\Internet Explorer\Main - Start Page] = hxxp://www1.delta-search.com/?affID=119816&babsrc=HP_ss&mntrId=4E6176F1A142E774
[HKCU\Software\Microsoft\Internet Explorer\Main - ICQ Search] = hxxp://search.icq.com/search/results.php?q={searchTerms}&ch_id=osd
[HKCU\Software\Microsoft\Internet Explorer\Main - BrowserMngr Start Page] = hxxp://search.babylon.com/?affID=112059&tt=120812_bandext_3312_3&babsrc=HP_ss&mntrId=4e614cce00000000000076f1a142e774
[HKCU\Software\Microsoft\Internet Explorer\Main - bProtector Start Page] = hxxp://www1.delta-search.com/?affID=119816&babsrc=HP_ss&mntrId=4E6176F1A142E774
-\\ Mozilla Firefox v20.0.1 (cs)
Soubor : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\0e85her5.default\prefs.js
Nalezeno : user_pref("CT1750559.AboutPrivacyUrl", "hxxp://www.conduit.com/privacy/Default.aspx");
Nalezeno : user_pref("CT1750559.CTID", "CT1750559");
Nalezeno : user_pref("CT1750559.CurrentServerDate", "28-4-2011");
Nalezeno : user_pref("CT1750559.DialogsAlignMode", "LTR");
Nalezeno : user_pref("CT1750559.FirstServerDate", "28-4-2011");
Nalezeno : user_pref("CT1750559.FirstTime", true);
Nalezeno : user_pref("CT1750559.FirstTimeFF3", true);
Nalezeno : user_pref("CT1750559.FixPageNotFoundErrors", true);
Nalezeno : user_pref("CT1750559.GroupingServerCheckInterval", 1440);
Nalezeno : user_pref("CT1750559.GroupingServiceUrl", "hxxp://grouping.services.conduit.com/");
Nalezeno : user_pref("CT1750559.Initialize", true);
Nalezeno : user_pref("CT1750559.InitializeCommonPrefs", true);
Nalezeno : user_pref("CT1750559.InstalledDate", "Thu Apr 28 2011 19:17:48 GMT+0200");
Nalezeno : user_pref("CT1750559.InvalidateCache", false);
Nalezeno : user_pref("CT1750559.IsGrouping", false);
Nalezeno : user_pref("CT1750559.IsMulticommunity", false);
Nalezeno : user_pref("CT1750559.IsOpenThankYouPage", true);
Nalezeno : user_pref("CT1750559.IsOpenUninstallPage", true);
Nalezeno : user_pref("CT1750559.LanguagePackLastCheckTime", "Thu Apr 28 2011 19:17:50 GMT+0200");
Nalezeno : user_pref("CT1750559.LanguagePackReloadIntervalMM", 1440);
Nalezeno : user_pref("CT1750559.LanguagePackServiceUrl", "hxxp://translation.users.conduit.com/Translation.ashx[...]
Nalezeno : user_pref("CT1750559.LastLogin_2.5.6.0", "Thu Apr 28 2011 19:17:48 GMT+0200");
Nalezeno : user_pref("CT1750559.LatestVersion", "3.3.3.2");
Nalezeno : user_pref("CT1750559.Locale", "en-us");
Nalezeno : user_pref("CT1750559.LoginCache", 4);
Nalezeno : user_pref("CT1750559.MCDetectTooltipHeight", "83");
Nalezeno : user_pref("CT1750559.MCDetectTooltipUrl", "hxxp://@EB_INSTALL_LINK@/rank/tooltip/?version=1");
Nalezeno : user_pref("CT1750559.MCDetectTooltipWidth", "295");
Nalezeno : user_pref("CT1750559.RadioIsPodcast", false);
Nalezeno : user_pref("CT1750559.RadioLastCheckTime", "Thu Apr 28 2011 19:17:49 GMT+0200");
Nalezeno : user_pref("CT1750559.RadioLastUpdateIPServer", "3");
Nalezeno : user_pref("CT1750559.RadioLastUpdateServer", "128929877726170000");
Nalezeno : user_pref("CT1750559.RadioMediaID", "11237206");
Nalezeno : user_pref("CT1750559.RadioMediaType", "Media Player");
Nalezeno : user_pref("CT1750559.RadioMenuSelectedID", "EBRadioMenu_CT175055911237206");
Nalezeno : user_pref("CT1750559.RadioStationName", "1.FM%20Dance");
Nalezeno : user_pref("CT1750559.RadioStationURL", "hxxp://dance.1.fm/energydance128k?MSWMExt=.asf");
Nalezeno : user_pref("CT1750559.SHRINK_TOOLBAR", 1);
Nalezeno : user_pref("CT1750559.SavedHomepage", "www.seznam.cz");
Nalezeno : user_pref("CT1750559.SearchEngine", "Search||hxxp://search.conduit.com/Results.aspx?q=UCM_SEARCH_TER[...]
Nalezeno : user_pref("CT1750559.SearchFromAddressBarIsInit", true);
Nalezeno : user_pref("CT1750559.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT175[...]
Nalezeno : user_pref("CT1750559.SearchInNewTabEnabled", true);
Nalezeno : user_pref("CT1750559.SearchInNewTabIntervalMM", 1440);
Nalezeno : user_pref("CT1750559.SearchInNewTabLastCheckTime", "Thu Apr 28 2011 19:17:49 GMT+0200");
Nalezeno : user_pref("CT1750559.SearchInNewTabServiceUrl", "hxxp://newtab.conduit-hosting.com/newtab/?ctid=EB_T[...]
Nalezeno : user_pref("CT1750559.SearchInNewTabUsageUrl", "hxxp://Usage.Hosting.conduit-services.com/UsageServic[...]
Nalezeno : user_pref("CT1750559.SettingsCheckIntervalMin", 120);
Nalezeno : user_pref("CT1750559.SettingsLastCheckTime", "Thu Apr 28 2011 19:17:47 GMT+0200");
Nalezeno : user_pref("CT1750559.SettingsLastUpdate", "1302854560");
Nalezeno : user_pref("CT1750559.ThirdPartyComponentsInterval", 504);
Nalezeno : user_pref("CT1750559.ThirdPartyComponentsLastCheck", "Thu Apr 28 2011 19:17:47 GMT+0200");
Nalezeno : user_pref("CT1750559.ThirdPartyComponentsLastUpdate", "1246786978");
Nalezeno : user_pref("CT1750559.TrusteLinkUrl", "hxxp://trust.conduit.com/EB_ORIGINAL_CTID");
Nalezeno : user_pref("CT1750559.UserID", "UN15234199655916736");
Nalezeno : user_pref("CT1750559.ValidationData_Toolbar", 2);
Nalezeno : user_pref("CT1750559.WeatherNetwork", "");
Nalezeno : user_pref("CT1750559.WeatherPollDate", "Thu Apr 28 2011 19:17:52 GMT+0200");
Nalezeno : user_pref("CT1750559.WeatherUnit", "C");
Nalezeno : user_pref("CT1750559.alertChannelId", "31130");
Nalezeno : user_pref("CT1750559.backendstorage.hxxp://cmg1_conduit-widgets_com/pitsi.state", "4F50454E");
Nalezeno : user_pref("CT1750559.clientLogIsEnabled", false);
Nalezeno : user_pref("CT1750559.clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.asm[...]
Nalezeno : user_pref("CT1750559.myStuffEnabled", true);
Nalezeno : user_pref("CT1750559.myStuffPublihserMinWidth", 400);
Nalezeno : user_pref("CT1750559.myStuffSearchUrl", "hxxp://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOr[...]
Nalezeno : user_pref("CT1750559.myStuffServiceIntervalMM", 1440);
Nalezeno : user_pref("CT1750559.myStuffServiceUrl", "hxxp://mystuff.conduit-services.com/MyStuffService.ashx?Co[...]
Nalezeno : user_pref("CT1750559.uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/Reg[...]
Nalezeno : user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "chrome://browser-region/locale/region.pr[...]
Nalezeno : user_pref("CommunityToolbar.ToolbarsList", "CT1750559");
Nalezeno : user_pref("CommunityToolbar.ToolbarsList2", "CT1750559");
Nalezeno : user_pref("CommunityToolbar.facebook.settingsLastCheckTime", "Thu Apr 28 2011 19:17:49 GMT+0200");
Nalezeno : user_pref("CommunityToolbar.keywordURLSelectedCTID", "CT1750559");
Nalezeno : user_pref("browser.search.defaultthis.engineName", "BS Player Customized Web Search");
Nalezeno : user_pref("browser.search.defaulturl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT1750559&Sea[...]
Nalezeno : user_pref("browser.search.selectedEngine", "BS Player Customized Web Search");
Nalezeno : user_pref("keyword.URL", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT1750559&q=");
Nalezeno : user_pref("browser.newtab.url", "hxxp://mystart.incredibar.com/mb128?a=6OyKkjwo9M&loc=FF_NT");user_p[...]
Soubor : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\5hmbs2yj.default\prefs.js
Nalezeno : user_pref("browser.newtab.url", "hxxp://mystart.incredibar.com/mb128?a=6OyKkjwo9M&loc=FF_NT");user_p[...]
Soubor : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\9dmbk278.default\prefs.js
Nalezeno : user_pref("browser.newtab.url", "hxxp://mystart.incredibar.com/mb128?a=6OyKkjwo9M&loc=FF_NT");user_p[...]
Soubor : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\od3412mv.default\prefs.js
Nalezeno : user_pref("browser.search.defaultengine", "Ask.com");
Nalezeno : user_pref("browser.search.defaultenginename", "Ask.com");
Nalezeno : user_pref("browser.search.order.1", "Ask.com");
Nalezeno : user_pref("browser.search.selectedEngine", "Ask.com");
Nalezeno : user_pref("extensions.asktb.cbid", "QR");
Nalezeno : user_pref("extensions.asktb.crumb", "2010.12.01+09.25.40-toolbar002iad-CZ-UHJhZ3VlLEN6ZWNoIFJlcHVibG[...]
Nalezeno : user_pref("extensions.asktb.default-channel-url-mask", "hxxp://www.ask.com/web?q={query}&o={o}&l={l}[...]
Nalezeno : user_pref("extensions.asktb.dtid", "YYYYYYYYCZ");
Nalezeno : user_pref("extensions.asktb.fresh-install", false);
Nalezeno : user_pref("extensions.asktb.l", "dis");
Nalezeno : user_pref("extensions.asktb.last-config-req", "1297789640483");
Nalezeno : user_pref("extensions.asktb.locale", "en_US");
Nalezeno : user_pref("extensions.asktb.o", "16205");
Nalezeno : user_pref("extensions.asktb.overlay-reloaded-using-restart", true);
Nalezeno : user_pref("extensions.asktb.qsrc", "2871");
Nalezeno : user_pref("extensions.asktb.r", "3");
Nalezeno : user_pref("extensions.asktb.search-plugin-suggestions-url", "hxxp://ss.websearch.ask.com/query?qsrc=[...]
Nalezeno : user_pref("extensions.asktb.search-suggestions-enabled", true);
Nalezeno : user_pref("icqtoolbar.allowSendURL", false);
Nalezeno : user_pref("icqtoolbar.engineVerified", false);
Nalezeno : user_pref("icqtoolbar.hiddenElements", "itb_options");
Nalezeno : user_pref("icqtoolbar.installTime", "1288727407");
Nalezeno : user_pref("icqtoolbar.newtab_state", "1");
Nalezeno : user_pref("icqtoolbar.numberOfSearches", 0);
Nalezeno : user_pref("icqtoolbar.previousFFVersion", "3.6.12");
Nalezeno : user_pref("icqtoolbar.skip_default_search", "no");
Nalezeno : user_pref("icqtoolbar.suggestions", false);
Nalezeno : user_pref("icqtoolbar.uninstStatSent", true);
Nalezeno : user_pref("icqtoolbar.uniqueID", "128870542612887058801288727407313");
Nalezeno : user_pref("icqtoolbar.usageStatstTimestamp", 1288814053);
Nalezeno : user_pref("icqtoolbar.voucherHideClicks", 0);
Nalezeno : user_pref("icqtoolbar.voucherMoreLinkClicks", 0);
Nalezeno : user_pref("icqtoolbar.voucherRedeemClicks", 0);
Nalezeno : user_pref("icqtoolbar.voucherWasShown", 0);
Nalezeno : user_pref("icqtoolbar.xmlEnableSuggestions", false);
Nalezeno : user_pref("icqtoolbar.xmlLanguage", "cs");
Nalezeno : user_pref("keyword.URL", "hxxp://websearch.ask.com/redirect?client=ff&src=kw&tb=CDS&o=16205&locale=e[...]
Nalezeno : user_pref("browser.newtab.url", "hxxp://mystart.incredibar.com/mb128?a=6OyKkjwo9M&loc=FF_NT");user_p[...]
Soubor : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\s274s0yb.default\prefs.js
Nalezeno : user_pref("browser.newtab.url", "hxxp://mystart.incredibar.com/mb128?a=6OyKkjwo9M&loc=FF_NT");user_p[...]
Soubor : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\uzgpurg2.default\prefs.js
Nalezeno : user_pref("CT2481032.1000082.isDisplayHidden", "true");
Nalezeno : user_pref("CT2481032.1000082.state", "{\"state\":\"stopped\",\"text\":\"Californi...\",\"description[...]
Nalezeno : user_pref("CT2481032.CBOpenMAMSettings.enc", "MA==");
Nalezeno : user_pref("CT2481032.ENABALE_HISTORY", "{\"dataType\":\"string\",\"data\":\"true\"}");
Nalezeno : user_pref("CT2481032.ENABLE_RETURN_WEB_SEARCH_ON_THE_PAGE", "{\"dataType\":\"string\",\"data\":\"tru[...]
Nalezeno : user_pref("CT2481032.FirstTime", "true");
Nalezeno : user_pref("CT2481032.FirstTimeFF3", "true");
Nalezeno : user_pref("CT2481032.LoginRevertSettingsEnabled", true);
Nalezeno : user_pref("CT2481032.UserID", "UN75412603070472550");
Nalezeno : user_pref("CT2481032.addressBarTakeOverEnabledInHidden", "true");
Nalezeno : user_pref("CT2481032.autoDisableScopes", 14);
Nalezeno : user_pref("CT2481032.cb_experience_000.enc", "MQ==");
Nalezeno : user_pref("CT2481032.cb_firstuse0100.enc", "MQ==");
Nalezeno : user_pref("CT2481032.cbcountry_001.enc", "Q1o=");
Nalezeno : user_pref("CT2481032.cbfirsttime.enc", "VHVlIE5vdiAyNyAyMDEyIDIwOjQ2OjU2IEdNVCswMTAw");
Nalezeno : user_pref("CT2481032.defaultSearch", "false");
Nalezeno : user_pref("CT2481032.enableAlerts", "false");
Nalezeno : user_pref("CT2481032.enableFix404ByUser", "FALSE");
Nalezeno : user_pref("CT2481032.enableSearchFromAddressBar", "false");
Nalezeno : user_pref("CT2481032.firstTimeDialogOpened", "true");
Nalezeno : user_pref("CT2481032.fixPageNotFoundError", "true");
Nalezeno : user_pref("CT2481032.fixPageNotFoundErrorByUser", "true");
Nalezeno : user_pref("CT2481032.fixPageNotFoundErrorInHidden", "true");
Nalezeno : user_pref("CT2481032.fixUrls", true);
Nalezeno : user_pref("CT2481032.hxxp___www_socialgrowthtechnologies_com_couponbuddy_v001.APP_WIN_FEATURES.enc",[...]
Nalezeno : user_pref("CT2481032.installId", "conduitnsisintegration");
Nalezeno : user_pref("CT2481032.installType", "conduitnsisintegration");
Nalezeno : user_pref("CT2481032.isCheckedStartAsHidden", true);
Nalezeno : user_pref("CT2481032.isEnableAllDialogs", "{\"dataType\":\"string\",\"data\":\"true\"}");
Nalezeno : user_pref("CT2481032.isFirstTimeToolbarLoading", "false");
Nalezeno : user_pref("CT2481032.isNewTabEnabled", false);
Nalezeno : user_pref("CT2481032.isPerformedSmartBarTransition", "true");
Nalezeno : user_pref("CT2481032.isToolbarShrinked", "{\"dataType\":\"string\",\"data\":\"false\"}");
Nalezeno : user_pref("CT2481032.lastNewTabSettings", "{\"isEnabled\":false,\"newTabUrl\":\"hxxp://search.condui[...]
Nalezeno : user_pref("CT2481032.lastVersion", "10.15.2.523");
Nalezeno : user_pref("CT2481032.migrateAppsAndComponents", true);
Nalezeno : user_pref("CT2481032.navigationAliasesJson", "{\"EB_SEARCH_TERM\":\"\",\"EB_MAIN_FRAME_URL\":\"hxxp%[...]
Nalezeno : user_pref("CT2481032.openThankYouPage", "false");
Nalezeno : user_pref("CT2481032.openUninstallPage", "false");
Nalezeno : user_pref("CT2481032.price-gong.bornDate", "{\"dataType\":\"string\",\"data\":\"{\\\"Response\\\":\\[...]
Nalezeno : user_pref("CT2481032.price-gong.isManagedApp", "true");
Nalezeno : user_pref("CT2481032.revertSettingsEnabled", "false");
Nalezeno : user_pref("CT2481032.search.searchAppId", "129058858240125318");
Nalezeno : user_pref("CT2481032.search.searchCount", "0");
Nalezeno : user_pref("CT2481032.searchInNewTabEnabled", "false");
Nalezeno : user_pref("CT2481032.searchInNewTabEnabledByUser", "false");
Nalezeno : user_pref("CT2481032.searchInNewTabEnabledInHidden", "true");
Nalezeno : user_pref("CT2481032.selectToSearchBoxEnabled", "{\"dataType\":\"string\",\"data\":\"true\"}");
Nalezeno : user_pref("CT2481032.serviceLayer_service_login_isFirstLoginInvoked", "{\"dataType\":\"boolean\",\"d[...]
Nalezeno : user_pref("CT2481032.serviceLayer_service_login_loginCount", "{\"dataType\":\"number\",\"data\":\"4\[...]
Nalezeno : user_pref("CT2481032.serviceLayer_service_toolbarGrouping_activeCTID", "{\"dataType\":\"string\",\"d[...]
Nalezeno : user_pref("CT2481032.serviceLayer_service_toolbarGrouping_activeDownloadUrl", "{\"dataType\":\"strin[...]
Nalezeno : user_pref("CT2481032.serviceLayer_service_toolbarGrouping_activeToolbarName", "{\"dataType\":\"strin[...]
Nalezeno : user_pref("CT2481032.serviceLayer_service_toolbarGrouping_invoked", "{\"dataType\":\"string\",\"data[...]
Nalezeno : user_pref("CT2481032.serviceLayer_services_app.twitter.user-cnet_lastUpdate", "1354651751436");
Nalezeno : user_pref("CT2481032.serviceLayer_services_app.twitter.user-cnnbrk_lastUpdate", "1354651751577");
Nalezeno : user_pref("CT2481032.serviceLayer_services_app.twitter.user-computeractive_lastUpdate", "13546517517[...]
Nalezeno : user_pref("CT2481032.serviceLayer_services_app.twitter.user-dailymirror_lastUpdate", "1354651751653"[...]
Nalezeno : user_pref("CT2481032.serviceLayer_services_app.twitter.user-google_lastUpdate", "1354651751619");
Nalezeno : user_pref("CT2481032.serviceLayer_services_app.twitter.user-techcrunch_lastUpdate", "1354651751374")[...]
Nalezeno : user_pref("CT2481032.serviceLayer_services_app.twitter.user-thesun_news_lastUpdate", "1354651751640"[...]
Nalezeno : user_pref("CT2481032.serviceLayer_services_app.twitter.user-wired_lastUpdate", "1354651751729");
Nalezeno : user_pref("CT2481032.serviceLayer_services_appTrackingFirstTime_lastUpdate", "1354045607196");
Nalezeno : user_pref("CT2481032.serviceLayer_services_appsMetadata_lastUpdate", "1354651746537");
Nalezeno : user_pref("CT2481032.serviceLayer_services_gottenAppsContextMenu_lastUpdate", "1354045608432");
Nalezeno : user_pref("CT2481032.serviceLayer_services_location_lastUpdate", "1369247005199");
Nalezeno : user_pref("CT2481032.serviceLayer_services_login_10.13.40.15_lastUpdate", "1359283103293");
Nalezeno : user_pref("CT2481032.serviceLayer_services_login_10.14.42.7_lastUpdate", "1362516737676");
Nalezeno : user_pref("CT2481032.serviceLayer_services_login_10.14.65.43_lastUpdate", "1366033249087");
Nalezeno : user_pref("CT2481032.serviceLayer_services_login_10.15.0.562_lastUpdate", "1366532718643");
Nalezeno : user_pref("CT2481032.serviceLayer_services_login_10.15.2.523_lastUpdate", "1369246963150");
Nalezeno : user_pref("CT2481032.serviceLayer_services_otherAppsContextMenu_lastUpdate", "1354045607905");
Nalezeno : user_pref("CT2481032.serviceLayer_services_searchAPI_lastUpdate", "1354651746795");
Nalezeno : user_pref("CT2481032.serviceLayer_services_serviceMap_lastUpdate", "1369247005196");
Nalezeno : user_pref("CT2481032.serviceLayer_services_toolbarContextMenu_lastUpdate", "1354045608386");
Nalezeno : user_pref("CT2481032.serviceLayer_services_toolbarSettings_lastUpdate", "1369247005198");
Nalezeno : user_pref("CT2481032.serviceLayer_services_translation_lastUpdate", "1369247005197");
Nalezeno : user_pref("CT2481032.serviceLayer_services_userApps1ec55dac-8dca-406b-9697-5d68893c1c0c_lastUpdate",[...]
Nalezeno : user_pref("CT2481032.serviceLayer_services_userApps_lastUpdate", "1354045640991");
Nalezeno : user_pref("CT2481032.settingsINI", true);
Nalezeno : user_pref("CT2481032.shouldFirstTimeDialog", "false");
Nalezeno : user_pref("CT2481032.showToolbarPermission", "false");
Nalezeno : user_pref("CT2481032.smartbar.CTID", "CT2481032");
Nalezeno : user_pref("CT2481032.smartbar.Uninstall", "0");
Nalezeno : user_pref("CT2481032.smartbar.isHidden", true);
Nalezeno : user_pref("CT2481032.smartbar.toolbarName", "Ashampoo US ");
Nalezeno : user_pref("CT2481032.startPage", "false");
Nalezeno : user_pref("CT2481032.toolbarBornServerTime", "27-11-2012");
Nalezeno : user_pref("CT2481032.toolbarCurrentServerTime", "22-5-2013");
Nalezeno : user_pref("CT2481032.toolbarLoginClientTime", "Tue Apr 16 2013 20:53:27 GMT+0200");
Nalezeno : user_pref("CT2481032.url_history0001.enc", "aHR0cDovL3d3dy5zc2hzb3BhdmEuY3ovaXNhcy9wcnViZXpuYS1rbGFz[...]
Nalezeno : user_pref("CT2481032_Firefox.csv", "[{\"from\":\"Abs Layer\",\"action\":\"loading toolbar\",\"time\"[...]
Nalezeno : user_pref("CT3220468.BT_Stats", "{\"last_log\":1348927710,\"uuid\":157883722652164,\"seq_id\":1,\"ss[...]
Nalezeno : user_pref("CT3220468.ENABALE_HISTORY", "{\"dataType\":\"string\",\"data\":\"true\"}");
Nalezeno : user_pref("CT3220468.ENABLE_RETURN_WEB_SEARCH_ON_THE_PAGE", "{\"dataType\":\"string\",\"data\":\"tru[...]
Nalezeno : user_pref("CT3220468.FirstTime", "true");
Nalezeno : user_pref("CT3220468.FirstTimeFF3", "true");
Nalezeno : user_pref("CT3220468.LoginRevertSettingsEnabled", true);
Nalezeno : user_pref("CT3220468.RevertSettingsEnabled", true);
Nalezeno : user_pref("CT3220468.UserID", "UN92059843445263539");
Nalezeno : user_pref("CT3220468.addressBarTakeOverEnabledInHidden", "true");
Nalezeno : user_pref("CT3220468.autoDisableScopes", 14);
Nalezeno : user_pref("CT3220468.cbfirsttime", "Sat Sep 29 2012 16:08:29 GMT+0200");
Nalezeno : user_pref("CT3220468.defaultSearch", "FALSE");
Nalezeno : user_pref("CT3220468.enableAlerts", "always");
Nalezeno : user_pref("CT3220468.enableFix404ByUser", "FALSE");
Nalezeno : user_pref("CT3220468.enableSearchFromAddressBar", "FALSE");
Nalezeno : user_pref("CT3220468.firstTimeDialogOpened", "true");
Nalezeno : user_pref("CT3220468.fixPageNotFoundError", "true");
Nalezeno : user_pref("CT3220468.fixPageNotFoundErrorByUser", "true");
Nalezeno : user_pref("CT3220468.fixPageNotFoundErrorInHidden", "true");
Nalezeno : user_pref("CT3220468.fixUrls", true);
Nalezeno : user_pref("CT3220468.installId", "fft6711.tmp.exe");
Nalezeno : user_pref("CT3220468.installType", "XPE");
Nalezeno : user_pref("CT3220468.isCheckedStartAsHidden", true);
Nalezeno : user_pref("CT3220468.isEnableAllDialogs", "{\"dataType\":\"string\",\"data\":\"true\"}");
Nalezeno : user_pref("CT3220468.isFirstTimeToolbarLoading", "false");
Nalezeno : user_pref("CT3220468.isNewTabEnabled", true);
Nalezeno : user_pref("CT3220468.isPerformedSmartBarTransition", "true");
Nalezeno : user_pref("CT3220468.isToolbarShrinked", "{\"dataType\":\"string\",\"data\":\"false\"}");
Nalezeno : user_pref("CT3220468.isWelcomPage", "{\"dataType\":\"boolean\",\"data\":\"true\"}");
Nalezeno : user_pref("CT3220468.lastNewTabSettings", "{\"isEnabled\":true,\"newTabUrl\":\"hxxp://search.conduit[...]
Nalezeno : user_pref("CT3220468.lastVersion", "10.16.2.509");
Nalezeno : user_pref("CT3220468.migrateAppsAndComponents", true);
Nalezeno : user_pref("CT3220468.navigationAliasesJson", "{\"EB_SEARCH_TERM\":\"\",\"EB_MAIN_FRAME_URL\":\"hxxp%[...]
Nalezeno : user_pref("CT3220468.openThankYouPage", "true");
Nalezeno : user_pref("CT3220468.openUninstallPage", "FALSE");
Nalezeno : user_pref("CT3220468.search.searchAppId", "129813684258939747");
Nalezeno : user_pref("CT3220468.search.searchCount", "0");
Nalezeno : user_pref("CT3220468.searchInNewTabEnabledByUser", "true");
Nalezeno : user_pref("CT3220468.searchInNewTabEnabledInHidden", "true");
Nalezeno : user_pref("CT3220468.selectToSearchBoxEnabled", "{\"dataType\":\"string\",\"data\":\"true\"}");
Nalezeno : user_pref("CT3220468.serviceLayer_service_login_isFirstLoginInvoked", "{\"dataType\":\"boolean\",\"d[...]
Nalezeno : user_pref("CT3220468.serviceLayer_service_login_loginCount", "{\"dataType\":\"number\",\"data\":\"4\[...]
Nalezeno : user_pref("CT3220468.serviceLayer_service_toolbarGrouping_activeCTID", "{\"dataType\":\"string\",\"d[...]
Nalezeno : user_pref("CT3220468.serviceLayer_service_toolbarGrouping_activeDownloadUrl", "{\"dataType\":\"strin[...]
Nalezeno : user_pref("CT3220468.serviceLayer_service_toolbarGrouping_activeToolbarName", "{\"dataType\":\"strin[...]
Nalezeno : user_pref("CT3220468.serviceLayer_service_toolbarGrouping_invoked", "{\"dataType\":\"string\",\"data[...]
Nalezeno : user_pref("CT3220468.serviceLayer_service_usage_toolbarUsageCount", "{\"dataType\":\"number\",\"data[...]
Nalezeno : user_pref("CT3220468.serviceLayer_services_appTrackingFirstTime_lastUpdate", "1348927697889");
Nalezeno : user_pref("CT3220468.serviceLayer_services_appsMetadata_lastUpdate", "1348927697682");
Nalezeno : user_pref("CT3220468.serviceLayer_services_gottenAppsContextMenu_lastUpdate", "1348927698881");
Nalezeno : user_pref("CT3220468.serviceLayer_services_location_lastUpdate", "1369247005202");
Nalezeno : user_pref("CT3220468.serviceLayer_services_login_10.10.27.6_lastUpdate", "1352999678654");
Nalezeno : user_pref("CT3220468.serviceLayer_services_login_10.13.40.15_lastUpdate", "1359283104158");
Nalezeno : user_pref("CT3220468.serviceLayer_services_login_10.14.370.524_lastUpdate", "1366033298693");
Nalezeno : user_pref("CT3220468.serviceLayer_services_login_10.14.40.128_lastUpdate", "1362516735193");
Nalezeno : user_pref("CT3220468.serviceLayer_services_login_10.14.65.43_lastUpdate", "1363554851306");
Nalezeno : user_pref("CT3220468.serviceLayer_services_login_10.15.0.562_lastUpdate", "1369246962905");
Nalezeno : user_pref("CT3220468.serviceLayer_services_login_10.16.2.509_lastUpdate", "1369253499220");
Nalezeno : user_pref("CT3220468.serviceLayer_services_otherAppsContextMenu_lastUpdate", "1348927698841");
Nalezeno : user_pref("CT3220468.serviceLayer_services_searchAPI_lastUpdate", "1348927697133");
Nalezeno : user_pref("CT3220468.serviceLayer_services_serviceMap_lastUpdate", "1369247005200");
Nalezeno : user_pref("CT3220468.serviceLayer_services_toolbarContextMenu_lastUpdate", "1348927698802");
Nalezeno : user_pref("CT3220468.serviceLayer_services_toolbarSettings_lastUpdate", "1369247005202");
Nalezeno : user_pref("CT3220468.serviceLayer_services_translation_lastUpdate", "1369247005201");
Nalezeno : user_pref("CT3220468.settingsINI", true);
Nalezeno : user_pref("CT3220468.shouldFirstTimeDialog", "false");
Nalezeno : user_pref("CT3220468.showToolbarPermission", "false");
Nalezeno : user_pref("CT3220468.smartbar.CTID", "CT3220468");
Nalezeno : user_pref("CT3220468.smartbar.Uninstall", "0");
Nalezeno : user_pref("CT3220468.smartbar.isHidden", true);
Nalezeno : user_pref("CT3220468.smartbar.toolbarName", "uTorrentControl_v2 ");
Nalezeno : user_pref("CT3220468.startPage", "userChanged");
Nalezeno : user_pref("CT3220468.toolbarBornServerTime", "29-9-2012");
Nalezeno : user_pref("CT3220468.toolbarCurrentServerTime", "22-5-2013");
Nalezeno : user_pref("CT3220468.toolbarLoginClientTime", "Tue Mar 19 2013 20:49:51 GMT+0100");
Nalezeno : user_pref("CT3220468.upgradeFromClearSBVersion", true);
Nalezeno : user_pref("CT3220468_Firefox.csv", "[{\"from\":\"Abs Layer\",\"action\":\"loading toolbar\",\"time\"[...]
Nalezeno : user_pref("avg.install.userHPSettings", "hxxp://www1.delta-search.com/?affID=119816&babsrc=HP_ss&mnt[...]
Nalezeno : user_pref("avg.install.userSPSettings", "Delta Search");
Nalezeno : user_pref("browser.newtab.url", "hxxp://www1.delta-search.com/?affID=119816&babsrc=NT_ss&mntrId=4E61[...]
Nalezeno : user_pref("browser.search.selectedEngine", "Delta Search");
Nalezeno : user_pref("browser.startup.homepage", "hxxp://www1.delta-search.com/?affID=119816&babsrc=HP_ss&mntrI[...]
Nalezeno : user_pref("extensions.BabylonToolbar.admin", false);
Nalezeno : user_pref("extensions.BabylonToolbar.aflt", "babsst");
Nalezeno : user_pref("extensions.BabylonToolbar.dfltLng", "en");
Nalezeno : user_pref("extensions.BabylonToolbar.excTlbr", false);
Nalezeno : user_pref("extensions.BabylonToolbar.id", "4e614cce00000000000076f1a142e774");
Nalezeno : user_pref("extensions.BabylonToolbar.instlDay", "15565");
Nalezeno : user_pref("extensions.BabylonToolbar.instlRef", "sst");
Nalezeno : user_pref("extensions.BabylonToolbar.prdct", "BabylonToolbar");
Nalezeno : user_pref("extensions.BabylonToolbar.prtnrId", "babylon");
Nalezeno : user_pref("extensions.BabylonToolbar.tlbrId", "base");
Nalezeno : user_pref("extensions.BabylonToolbar.tlbrSrchUrl", "hxxp://www.google.com/search?babsrc=TB_ggl&q=");
Nalezeno : user_pref("extensions.BabylonToolbar.vrsn", "1.6.4.6");
Nalezeno : user_pref("extensions.BabylonToolbar.vrsni", "1.6.4.6");
Nalezeno : user_pref("extensions.BabylonToolbar_i.babExt", "");
Nalezeno : user_pref("extensions.BabylonToolbar_i.babTrack", "affID=112059&tt=120812_bandext_3312_7");
Nalezeno : user_pref("extensions.BabylonToolbar_i.newTab", true);
Nalezeno : user_pref("extensions.BabylonToolbar_i.newTabUrl", "hxxp://search.babylon.com/?affID=112059&tt=12081[...]
Nalezeno : user_pref("extensions.BabylonToolbar_i.smplGrp", "none");
Nalezeno : user_pref("extensions.BabylonToolbar_i.srcExt", "ss");
Nalezeno : user_pref("extensions.BabylonToolbar_i.vrsnTs", "1.6.4.619:03:48");
Nalezeno : user_pref("extensions.incredibar.admin", false);
Nalezeno : user_pref("extensions.incredibar.aflt", "orgnl");
Nalezeno : user_pref("extensions.incredibar.cntry", "CZ");
Nalezeno : user_pref("extensions.incredibar.dfltLng", "");
Nalezeno : user_pref("extensions.incredibar.dfltSrch", false);
Nalezeno : user_pref("extensions.incredibar.did", "10658");
Nalezeno : user_pref("extensions.incredibar.envrmnt", "production");
Nalezeno : user_pref("extensions.incredibar.excTlbr", false);
Nalezeno : user_pref("extensions.incredibar.hdrMd5", "56B95DE1EDE995C4384A7AF67E0AF2A8");
Nalezeno : user_pref("extensions.incredibar.hmpg", false);
Nalezeno : user_pref("extensions.incredibar.id", "4e614cce00000000000076f1a142e774");
Nalezeno : user_pref("extensions.incredibar.installerproductid", "26");
Nalezeno : user_pref("extensions.incredibar.instlDay", "15559");
Nalezeno : user_pref("extensions.incredibar.instlRef", "");
Nalezeno : user_pref("extensions.incredibar.isDcmntCmplt", true);
Nalezeno : user_pref("extensions.incredibar.lastVrsnTs", "1.5.11.1419:22:44");
Nalezeno : user_pref("extensions.incredibar.mntrvrsn", "1.2.0");
Nalezeno : user_pref("extensions.incredibar.newTab", false);
Nalezeno : user_pref("extensions.incredibar.noFFXTlbr", false);
Nalezeno : user_pref("extensions.incredibar.ppd", "");
Nalezeno : user_pref("extensions.incredibar.prdct", "incredibar");
Nalezeno : user_pref("extensions.incredibar.productid", "26");
Nalezeno : user_pref("extensions.incredibar.prtnrId", "Incredibar");
Nalezeno : user_pref("extensions.incredibar.sg", "none");
Nalezeno : user_pref("extensions.incredibar.smplGrp", "none");
Nalezeno : user_pref("extensions.incredibar.tlbrId", "base");
Nalezeno : user_pref("extensions.incredibar.tlbrSrchUrl", "hxxp://mystart.Incredibar.com/?a=6OyKkjwo9M&loc=IB_T[...]
Nalezeno : user_pref("extensions.incredibar.upn2", "6OyKkjwo9M");
Nalezeno : user_pref("extensions.incredibar.upn2n", "92261890875400430");
Nalezeno : user_pref("extensions.incredibar.vrsn", "1.5.11.14");
Nalezeno : user_pref("extensions.incredibar.vrsnTs", "1.5.11.1419:22:44");
Nalezeno : user_pref("extensions.incredibar.vrsni", "1.5.11.14");
Nalezeno : user_pref("extensions.incredibar_i.aflt", "orgnl");
Nalezeno : user_pref("extensions.incredibar_i.dfltLng", "");
Nalezeno : user_pref("extensions.incredibar_i.did", "10658");
Nalezeno : user_pref("extensions.incredibar_i.excTlbr", false);
Nalezeno : user_pref("extensions.incredibar_i.id", "4e614cce00000000000076f1a142e774");
Nalezeno : user_pref("extensions.incredibar_i.installerproductid", "26");
Nalezeno : user_pref("extensions.incredibar_i.instlDay", "15559");
Nalezeno : user_pref("extensions.incredibar_i.instlRef", "");
Nalezeno : user_pref("extensions.incredibar_i.ms_url_id", "");
Nalezeno : user_pref("extensions.incredibar_i.newTab", false);
Nalezeno : user_pref("extensions.incredibar_i.ppd", "");
Nalezeno : user_pref("extensions.incredibar_i.prdct", "incredibar");
Nalezeno : user_pref("extensions.incredibar_i.productid", "26");
Nalezeno : user_pref("extensions.incredibar_i.prtnrId", "Incredibar");
Nalezeno : user_pref("extensions.incredibar_i.smplGrp", "none");
Nalezeno : user_pref("extensions.incredibar_i.tlbrId", "base");
Nalezeno : user_pref("extensions.incredibar_i.tlbrSrchUrl", "hxxp://mystart.Incredibar.com/?a=6OyKkjwo9M&loc=IB[...]
Nalezeno : user_pref("extensions.incredibar_i.upn2", "6OyKkjwo9M");
Nalezeno : user_pref("extensions.incredibar_i.upn2n", "92261890875400430");
Nalezeno : user_pref("extensions.incredibar_i.vrsn", "1.5.11.14");
Nalezeno : user_pref("extensions.incredibar_i.vrsnTs", "1.5.11.1419:22:44");
Nalezeno : user_pref("extensions.incredibar_i.vrsni", "1.5.11.14");
Nalezeno : user_pref("extentions.y2layers.defaultEnableAppsList", "bestvideodownloader,ezLooker,pagerage,buzzdo[...]
Nalezeno : user_pref("extentions.y2layers.installId", "c02629a4-85cd-4f38-ba4b-bb84a0dd7db9");
Nalezeno : user_pref("keyword.URL", "hxxp://eu.ask.com/web?l=dis&o=APN10089&gct=kwd&qsrc=2869&apn_dtid=^PFM004^[...]
Nalezeno : user_pref("smartBar.searchInNewTabOwner", "CT3220468");
Nalezeno : user_pref("smartbar.machineId", "ZOJJT5QCLWUOAKVUIKV+KSLE2FZLN9JRD/MPDX6OHQFBQ5VQ6JEQJWNHCLOVXLIAIKJ[...]
Nalezeno : user_pref("sweetim.toolbar.urls.homepage", "hxxp://search.babylon.com/?affID=112059&tt=120812_bandex[...]
Nalezeno : user_pref("{336D0C35-8A85-403a-B9D2-65C292C39087}.ScriptData_WSG_whiteList", "{\"search.babylon.com\[...]
-\\ Google Chrome v27.0.1453.94
Soubor : C:\Users\Renata\AppData\Local\Google\Chrome\User Data\Default\Preferences
Nalezeno [l.2481] : homepage = "hxxp://www1.delta-search.com/?affID=119816&babsrc=HP_ss&mntrId=4E6176F1A142E774",
Nalezeno [l.2861] : urls_to_restore_on_startup = [ "hxxp://www1.delta-search.com/?affID=119816&babsrc=HP_ss&mntrId=4E6176F1A142E774" ]
*************************
AdwCleaner[R1].txt - [46251 octets] - [31/05/2013 22:20:58]
########## EOF - C:\AdwCleaner[R1].txt - [46312 octets] ##########
-
Rudy
- Site Admin
- Příspěvky: 119526
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu logu
Spusťte znovu ADWCleaner a klikněte na >Delete< (smazat). Vložte nový log.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontrolu logu
# AdwCleaner v2.301 - Log vytvooen 31/05/2013 v 22:32:21
# Aktualizováno 16/05/2013 Xplode
# Operaení systém : Windows 7 Professional Service Pack 1 (32 bits)
# Uživatel : Renata - RENATA-PC
# Spuštin systém : Normální
# Spuštino z : C:\Users\Renata\Downloads\adwcleaner.exe
# Volba [Vymazat]
***** [Služby] *****
Zastaveno & vymazáno : BrowserProtect
Zastaveno & vymazáno : IBUpdaterService
***** [Soubory / Složky] *****
Složka Vymazáno : C:\Program Files\1ClickDownload
Složka Vymazáno : C:\Program Files\Conduit
Složka Vymazáno : C:\Program Files\Mozilla Firefox\Extensions\ffxtlbr@babylon.com
Složka Vymazáno : C:\Program Files\Perion
Složka Vymazáno : C:\ProgramData\Ask
Složka Vymazáno : C:\ProgramData\Babylon
Složka Vymazáno : C:\ProgramData\ICQ\ICQToolbar
Složka Vymazáno : C:\ProgramData\Tarma Installer
Složka Vymazáno : C:\Users\Renata\AppData\Local\Google\Chrome\User Data\Default\Extensions\jifflliplgeajjdhmkcfnngfpgbjonjg
Složka Vymazáno : C:\Users\Renata\AppData\Local\Google\Chrome\User Data\Default\Extensions\pmlghpafmmnmmkjdhacccolfgnkiboco
Složka Vymazáno : C:\Users\Renata\AppData\Local\Temp\CT3220468
Složka Vymazáno : C:\Users\Renata\AppData\LocalLow\BabylonToolbar
Složka Vymazáno : C:\Users\Renata\AppData\LocalLow\Conduit
Složka Vymazáno : C:\Users\Renata\AppData\Roaming\BabSolution
Složka Vymazáno : C:\Users\Renata\AppData\Roaming\Babylon
Složka Vymazáno : C:\Users\Renata\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BrowserProtect
Složka Vymazáno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\0e85her5.default\Conduit
Složka Vymazáno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\0e85her5.default\CT1750559
Složka Vymazáno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\0e85her5.default\extensions\{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}
Složka Vymazáno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\0e85her5.default\extensions\plugin@yontoo.com
Složka Vymazáno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\5hmbs2yj.default\extensions\plugin@yontoo.com
Složka Vymazáno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\9dmbk278.default\extensions\plugin@yontoo.com
Složka Vymazáno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\od3412mv.default\extensions\plugin@yontoo.com
Složka Vymazáno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\s274s0yb.default\extensions\plugin@yontoo.com
Složka Vymazáno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\uzgpurg2.default\CT2481032
Složka Vymazáno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\uzgpurg2.default\CT3220468
Složka Vymazáno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\uzgpurg2.default\extensions\{124d001a-bdcb-472f-aa59-bbe7e4bc3204}
Složka Vymazáno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\uzgpurg2.default\extensions\{7473b6bd-4691-4744-a82b-7854eb3d70b6}
Složka Vymazáno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\uzgpurg2.default\jetpack
Složka Vymazáno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\uzgpurg2.default\Smartbar
Složka Vymazáno : C:\Users\Renata\AppData\Roaming\Yontoo
Složka Vymazáno : C:\Windows\system32\WNLT
Soubor Vymazáno : C:\Program Files\Mozilla Firefox\searchplugins\ask.xml
Soubor Vymazáno : C:\Program Files\Mozilla Firefox\searchplugins\babylon.xml
Soubor Vymazáno : C:\user.js
Soubor Vymazáno : C:\Users\Renata\AppData\Local\Google\Chrome\User Data\Default\bProtector Web Data
Soubor Vymazáno : C:\Users\Renata\AppData\Local\Google\Chrome\User Data\Default\bprotectorpreferences
Soubor Vymazáno : C:\Users\Renata\AppData\Roaming\BabMaint.exe
Soubor Vymazáno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\0e85her5.default\searchplugins\Conduit.xml
Soubor Vymazáno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\od3412mv.default\searchplugins\Askcom.xml
Soubor Vymazáno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\od3412mv.default\searchplugins\icqplugin.xml
Soubor Vymazáno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\uzgpurg2.default\bProtector_extensions.rdf
Soubor Vymazáno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\uzgpurg2.default\bprotector_extensions.sqlite
Soubor Vymazáno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\uzgpurg2.default\bprotector_prefs.js
Soubor Vymazáno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\uzgpurg2.default\BrowserMngr_extensions.sqlite
Soubor Vymazáno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\uzgpurg2.default\browsermngr_prefs.js
Soubor Vymazáno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\uzgpurg2.default\extensions\OneClickDownload@OneClickDownload.com.xpi
Soubor Vymazáno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\uzgpurg2.default\extensions\plugin@yontoo.com.xpi
Soubor Vymazáno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\uzgpurg2.default\searchplugins\Askcom.xml
Soubor Vymazáno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\uzgpurg2.default\searchplugins\Babylon.xml
Soubor Vymazáno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\uzgpurg2.default\searchplugins\BrowserProtect.xml
Soubor Vymazáno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\uzgpurg2.default\searchplugins\MyStart Search.xml
Soubor Vymazáno : C:\Windows\system32\conduitEngine.tmp
Vymazáno poi restartu : C:\Program Files\ICQ6Toolbar
Vymazáno poi restartu : C:\ProgramData\BrowserProtect
Vymazáno poi restartu : C:\Windows\system32\Zynga
Vymazáno poi restartu : C:\Windows\system32\Zynga
***** [Registry] *****
Data Vymazáno : HKLM\..\Windows [AppInit_DLLs] = c:\progra~2\browse~1\261125~1.80\{c16c1~1\browse~1.dll
Hodnota Vymazáno : HKCU\Software\Microsoft\Internet Explorer\Main [bprotector start page]
Hodnota Vymazáno : HKCU\Software\Microsoft\Internet Explorer\Main [BrowserMngr Start Page]
Hodnota Vymazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes [bProtectorDefaultScope]
Hodnota Vymazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes [BrowserMngrDefaultScope]
Hodnota Vymazáno : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Hodnota Vymazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [Yontoo Desktop]
Hodnota Vymazáno : HKCU\Software\Mozilla\Firefox\Extensions [{0F827075-B026-42F3-885D-98981EE7B1AE}]
Hodnota Vymazáno : HKCU\Software\Mozilla\Firefox\Extensions [{b64982b1-d112-42b5-b1e4-d3867c4533f8}]
Hodnota Vymazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{98889811-442D-49DD-99D7-DC866BE87DBC}]
Hodnota Vymazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{855F3B16-6D32-4FE6-8A56-BBB695989046}]
Hodnota Vymazáno : HKLM\SOFTWARE\Mozilla\Firefox\extensions [{336D0C35-8A85-403a-B9D2-65C292C39087}]
Hodnota Vymazáno : HKLM\SOFTWARE\Mozilla\Firefox\extensions [{FE1DEEEA-DB6D-44b8-83F0-34FC0F9D1052}]
Klíe Vymazáno : HKCU\Software\1ClickDownload
Klíe Vymazáno : HKCU\Software\5f53d8d8b06fbf14
Klíe Vymazáno : HKCU\Software\APN PIP
Klíe Vymazáno : HKCU\Software\AppDataLow\AskBarDis
Klíe Vymazáno : HKCU\Software\AppDataLow\Software\Conduit
Klíe Vymazáno : HKCU\Software\AppDataLow\Software\ConduitSearchScopes
Klíe Vymazáno : HKCU\Software\AppDataLow\Software\SmartBar
Klíe Vymazáno : HKCU\Software\BabylonToolbar
Klíe Vymazáno : HKCU\Software\BrowserMngr
Klíe Vymazáno : HKCU\Software\Conduit
Klíe Vymazáno : HKCU\Software\DataMngr
Klíe Vymazáno : HKCU\Software\IM
Klíe Vymazáno : HKCU\Software\ImInstaller
Klíe Vymazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Klíe Vymazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40B7-AC73-056A5EBA4A7E}
Klíe Vymazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}
Klíe Vymazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AD22EBAF-0D18-4FC7-90CC-5EA0ABBE9EB8}
Klíe Vymazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{B9C7CE32-DA91-43C2-B7E9-0E9AAFC675CD}
Klíe Vymazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{CFF4DB9B-135F-47C0-9269-B4C6572FD61A}
Klíe Vymazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings
Klíe Vymazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{855F3B16-6D32-4FE6-8A56-BBB695989046}
Klíe Vymazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}
Klíe Vymazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{00000000-6E41-4FD3-8538-502F5495E5FC}
Klíe Vymazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Klíe Vymazáno : HKCU\Software\PIP
Klíe Vymazáno : HKCU\Software\PrivitizeVPNInstallDates
Klíe Vymazáno : HKCU\Software\Softonic
Klíe Vymazáno : HKCU\Software\StartSearch
Klíe Vymazáno : HKCU\Software\WNLT
Klíe Vymazáno : HKLM\SOFTWARE\14919ea49a8f3b4aa3cf1058d9a64cec
Klíe Vymazáno : HKLM\SOFTWARE\5f53d8d8b06fbf14
Klíe Vymazáno : HKLM\Software\Babylon
Klíe Vymazáno : HKLM\Software\BrowserMngr
Klíe Vymazáno : HKLM\SOFTWARE\Classes\AppID\{5B1881D1-D9C7-46DF-B041-1E593282C7D0}
Klíe Vymazáno : HKLM\SOFTWARE\Classes\AppID\{608D3067-77E8-463D-9084-908966806826}
Klíe Vymazáno : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Klíe Vymazáno : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Klíe Vymazáno : HKLM\SOFTWARE\Classes\AppID\{CFDAFE39-20CE-451D-BD45-A37452F39CF0}
Klíe Vymazáno : HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}
Klíe Vymazáno : HKLM\SOFTWARE\Classes\AppID\YontooIEClient.DLL
Klíe Vymazáno : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Klíe Vymazáno : HKLM\SOFTWARE\Classes\CLSID\{7E84186E-B5DE-4226-8A66-6E49C6B511B4}
Klíe Vymazáno : HKLM\SOFTWARE\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
Klíe Vymazáno : HKLM\SOFTWARE\Classes\CLSID\{99066096-8989-4612-841F-621A01D54AD7}
Klíe Vymazáno : HKLM\SOFTWARE\Classes\CLSID\{FE9271F2-6EFD-44B0-A826-84C829536E93}
Klíe Vymazáno : HKLM\SOFTWARE\Classes\Conduit.Engine
Klíe Vymazáno : HKLM\SOFTWARE\Classes\Interface\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}
Klíe Vymazáno : HKLM\SOFTWARE\Classes\Interface\{1AD27395-1659-4DFF-A319-2CFA243861A5}
Klíe Vymazáno : HKLM\SOFTWARE\Classes\Prod.cap
Klíe Vymazáno : HKLM\SOFTWARE\Classes\Toolbar.CT1750559
Klíe Vymazáno : HKLM\SOFTWARE\Classes\Toolbar.CT2481032
Klíe Vymazáno : HKLM\SOFTWARE\Classes\Toolbar.CT3220468
Klíe Vymazáno : HKLM\SOFTWARE\Classes\YontooIEClient.Api
Klíe Vymazáno : HKLM\SOFTWARE\Classes\YontooIEClient.Api.1
Klíe Vymazáno : HKLM\SOFTWARE\Classes\YontooIEClient.Layers
Klíe Vymazáno : HKLM\Software\Conduit
Klíe Vymazáno : HKLM\Software\DataMngr
Klíe Vymazáno : HKLM\SOFTWARE\Google\Chrome\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd
Klíe Vymazáno : HKLM\SOFTWARE\Google\Chrome\Extensions\eooncjejnppfjjklapaamhcdmjbilmde
Klíe Vymazáno : HKLM\SOFTWARE\Google\Chrome\Extensions\jifflliplgeajjdhmkcfnngfpgbjonjg
Klíe Vymazáno : HKLM\SOFTWARE\Google\Chrome\Extensions\niapdbllcanepiiimjjndipklodoedlc
Klíe Vymazáno : HKLM\SOFTWARE\Google\Chrome\Extensions\pgafcinpmmpklohkojmllohdhomoefph
Klíe Vymazáno : HKLM\SOFTWARE\Google\Chrome\Extensions\pmlghpafmmnmmkjdhacccolfgnkiboco
Klíe Vymazáno : HKLM\Software\Iminent
Klíe Vymazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Klíe Vymazáno : HKLM\SOFTWARE\Microsoft\Tracing\ConduitInstaller_RASAPI32
Klíe Vymazáno : HKLM\SOFTWARE\Microsoft\Tracing\ConduitInstaller_RASMANCS
Klíe Vymazáno : HKLM\SOFTWARE\Microsoft\Tracing\IncredibarToolbar_RASAPI32
Klíe Vymazáno : HKLM\SOFTWARE\Microsoft\Tracing\IncredibarToolbar_RASMANCS
Klíe Vymazáno : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASAPI32
Klíe Vymazáno : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASMANCS
Klíe Vymazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB}
Klíe Vymazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Klíe Vymazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{15D2D75C-9CB2-4EFD-BAD7-B9B4CB4BC693}
Klíe Vymazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}
Klíe Vymazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Delta Chrome Toolbar
Klíe Vymazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WNLT
Klíe Vymazáno : HKLM\Software\PIP
Klíe Vymazáno : HKLM\Software\Tarma Installer
Klíe Vymazáno : HKLM\Software\Web Assistant
Klíe Vymazáno : HKLM\Software\WNLT
Klíe Vymazáno : HKU\.DEFAULT\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
***** [Internetové prohlížeee] *****
-\\ Internet Explorer v10.0.9200.16576
Zaminino : [HKCU\Software\Microsoft\Internet Explorer\Main - Start Page] = hxxp://www1.delta-search.com/?affID=119816&babsrc=HP_ss&mntrId=4E6176F1A142E774 --> hxxp://www.google.com
Zaminino : [HKCU\Software\Microsoft\Internet Explorer\Main - ICQ Search] = hxxp://search.icq.com/search/results.php?q={searchTerms}&ch_id=osd --> hxxp://www.google.com
-\\ Mozilla Firefox v20.0.1 (cs)
Soubor : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\0e85her5.default\prefs.js
C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\0e85her5.default\user.js ... Vymazáno !
Vymazáno : user_pref("CT1750559.AboutPrivacyUrl", "hxxp://www.conduit.com/privacy/Default.aspx");
Vymazáno : user_pref("CT1750559.CTID", "CT1750559");
Vymazáno : user_pref("CT1750559.CurrentServerDate", "28-4-2011");
Vymazáno : user_pref("CT1750559.DialogsAlignMode", "LTR");
Vymazáno : user_pref("CT1750559.FirstServerDate", "28-4-2011");
Vymazáno : user_pref("CT1750559.FirstTime", true);
Vymazáno : user_pref("CT1750559.FirstTimeFF3", true);
Vymazáno : user_pref("CT1750559.FixPageNotFoundErrors", true);
Vymazáno : user_pref("CT1750559.GroupingServerCheckInterval", 1440);
Vymazáno : user_pref("CT1750559.GroupingServiceUrl", "hxxp://grouping.services.conduit.com/");
Vymazáno : user_pref("CT1750559.Initialize", true);
Vymazáno : user_pref("CT1750559.InitializeCommonPrefs", true);
Vymazáno : user_pref("CT1750559.InstalledDate", "Thu Apr 28 2011 19:17:48 GMT+0200");
Vymazáno : user_pref("CT1750559.InvalidateCache", false);
Vymazáno : user_pref("CT1750559.IsGrouping", false);
Vymazáno : user_pref("CT1750559.IsMulticommunity", false);
Vymazáno : user_pref("CT1750559.IsOpenThankYouPage", true);
Vymazáno : user_pref("CT1750559.IsOpenUninstallPage", true);
Vymazáno : user_pref("CT1750559.LanguagePackLastCheckTime", "Thu Apr 28 2011 19:17:50 GMT+0200");
Vymazáno : user_pref("CT1750559.LanguagePackReloadIntervalMM", 1440);
Vymazáno : user_pref("CT1750559.LanguagePackServiceUrl", "hxxp://translation.users.conduit.com/Translation.ashx[...]
Vymazáno : user_pref("CT1750559.LastLogin_2.5.6.0", "Thu Apr 28 2011 19:17:48 GMT+0200");
Vymazáno : user_pref("CT1750559.LatestVersion", "3.3.3.2");
Vymazáno : user_pref("CT1750559.Locale", "en-us");
Vymazáno : user_pref("CT1750559.LoginCache", 4);
Vymazáno : user_pref("CT1750559.MCDetectTooltipHeight", "83");
Vymazáno : user_pref("CT1750559.MCDetectTooltipUrl", "hxxp://@EB_INSTALL_LINK@/rank/tooltip/?version=1");
Vymazáno : user_pref("CT1750559.MCDetectTooltipWidth", "295");
Vymazáno : user_pref("CT1750559.RadioIsPodcast", false);
Vymazáno : user_pref("CT1750559.RadioLastCheckTime", "Thu Apr 28 2011 19:17:49 GMT+0200");
Vymazáno : user_pref("CT1750559.RadioLastUpdateIPServer", "3");
Vymazáno : user_pref("CT1750559.RadioLastUpdateServer", "128929877726170000");
Vymazáno : user_pref("CT1750559.RadioMediaID", "11237206");
Vymazáno : user_pref("CT1750559.RadioMediaType", "Media Player");
Vymazáno : user_pref("CT1750559.RadioMenuSelectedID", "EBRadioMenu_CT175055911237206");
Vymazáno : user_pref("CT1750559.RadioStationName", "1.FM%20Dance");
Vymazáno : user_pref("CT1750559.RadioStationURL", "hxxp://dance.1.fm/energydance128k?MSWMExt=.asf");
Vymazáno : user_pref("CT1750559.SHRINK_TOOLBAR", 1);
Vymazáno : user_pref("CT1750559.SavedHomepage", "www.seznam.cz");
Vymazáno : user_pref("CT1750559.SearchEngine", "Search||hxxp://search.conduit.com/Results.aspx?q=UCM_SEARCH_TER[...]
Vymazáno : user_pref("CT1750559.SearchFromAddressBarIsInit", true);
Vymazáno : user_pref("CT1750559.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT175[...]
Vymazáno : user_pref("CT1750559.SearchInNewTabEnabled", true);
Vymazáno : user_pref("CT1750559.SearchInNewTabIntervalMM", 1440);
Vymazáno : user_pref("CT1750559.SearchInNewTabLastCheckTime", "Thu Apr 28 2011 19:17:49 GMT+0200");
Vymazáno : user_pref("CT1750559.SearchInNewTabServiceUrl", "hxxp://newtab.conduit-hosting.com/newtab/?ctid=EB_T[...]
Vymazáno : user_pref("CT1750559.SearchInNewTabUsageUrl", "hxxp://Usage.Hosting.conduit-services.com/UsageServic[...]
Vymazáno : user_pref("CT1750559.SettingsCheckIntervalMin", 120);
Vymazáno : user_pref("CT1750559.SettingsLastCheckTime", "Thu Apr 28 2011 19:17:47 GMT+0200");
Vymazáno : user_pref("CT1750559.SettingsLastUpdate", "1302854560");
Vymazáno : user_pref("CT1750559.ThirdPartyComponentsInterval", 504);
Vymazáno : user_pref("CT1750559.ThirdPartyComponentsLastCheck", "Thu Apr 28 2011 19:17:47 GMT+0200");
Vymazáno : user_pref("CT1750559.ThirdPartyComponentsLastUpdate", "1246786978");
Vymazáno : user_pref("CT1750559.TrusteLinkUrl", "hxxp://trust.conduit.com/EB_ORIGINAL_CTID");
Vymazáno : user_pref("CT1750559.UserID", "UN15234199655916736");
Vymazáno : user_pref("CT1750559.ValidationData_Toolbar", 2);
Vymazáno : user_pref("CT1750559.WeatherNetwork", "");
Vymazáno : user_pref("CT1750559.WeatherPollDate", "Thu Apr 28 2011 19:17:52 GMT+0200");
Vymazáno : user_pref("CT1750559.WeatherUnit", "C");
Vymazáno : user_pref("CT1750559.alertChannelId", "31130");
Vymazáno : user_pref("CT1750559.backendstorage.hxxp://cmg1_conduit-widgets_com/pitsi.state", "4F50454E");
Vymazáno : user_pref("CT1750559.clientLogIsEnabled", false);
Vymazáno : user_pref("CT1750559.clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.asm[...]
Vymazáno : user_pref("CT1750559.myStuffEnabled", true);
Vymazáno : user_pref("CT1750559.myStuffPublihserMinWidth", 400);
Vymazáno : user_pref("CT1750559.myStuffSearchUrl", "hxxp://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOr[...]
Vymazáno : user_pref("CT1750559.myStuffServiceIntervalMM", 1440);
Vymazáno : user_pref("CT1750559.myStuffServiceUrl", "hxxp://mystuff.conduit-services.com/MyStuffService.ashx?Co[...]
Vymazáno : user_pref("CT1750559.uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/Reg[...]
Vymazáno : user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "chrome://browser-region/locale/region.pr[...]
Vymazáno : user_pref("CommunityToolbar.ToolbarsList", "CT1750559");
Vymazáno : user_pref("CommunityToolbar.ToolbarsList2", "CT1750559");
Vymazáno : user_pref("CommunityToolbar.facebook.settingsLastCheckTime", "Thu Apr 28 2011 19:17:49 GMT+0200");
Vymazáno : user_pref("CommunityToolbar.keywordURLSelectedCTID", "CT1750559");
Vymazáno : user_pref("browser.search.defaultthis.engineName", "BS Player Customized Web Search");
Vymazáno : user_pref("browser.search.defaulturl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT1750559&Sea[...]
Vymazáno : user_pref("browser.search.selectedEngine", "BS Player Customized Web Search");
Vymazáno : user_pref("keyword.URL", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT1750559&q=");
Vymazáno : user_pref("browser.newtab.url", "hxxp://mystart.incredibar.com/mb128?a=6OyKkjwo9M&loc=FF_NT");user_p[...]
Soubor : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\5hmbs2yj.default\prefs.js
C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\5hmbs2yj.default\user.js ... Vymazáno !
Vymazáno : user_pref("browser.newtab.url", "hxxp://mystart.incredibar.com/mb128?a=6OyKkjwo9M&loc=FF_NT");user_p[...]
Soubor : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\9dmbk278.default\prefs.js
C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\9dmbk278.default\user.js ... Vymazáno !
Vymazáno : user_pref("browser.newtab.url", "hxxp://mystart.incredibar.com/mb128?a=6OyKkjwo9M&loc=FF_NT");user_p[...]
Soubor : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\od3412mv.default\prefs.js
C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\od3412mv.default\user.js ... Vymazáno !
Vymazáno : user_pref("browser.search.defaultengine", "Ask.com");
Vymazáno : user_pref("browser.search.defaultenginename", "Ask.com");
Vymazáno : user_pref("browser.search.order.1", "Ask.com");
Vymazáno : user_pref("browser.search.selectedEngine", "Ask.com");
Vymazáno : user_pref("extensions.asktb.cbid", "QR");
Vymazáno : user_pref("extensions.asktb.crumb", "2010.12.01+09.25.40-toolbar002iad-CZ-UHJhZ3VlLEN6ZWNoIFJlcHVibG[...]
Vymazáno : user_pref("extensions.asktb.default-channel-url-mask", "hxxp://www.ask.com/web?q={query}&o={o}&l={l}[...]
Vymazáno : user_pref("extensions.asktb.dtid", "YYYYYYYYCZ");
Vymazáno : user_pref("extensions.asktb.fresh-install", false);
Vymazáno : user_pref("extensions.asktb.l", "dis");
Vymazáno : user_pref("extensions.asktb.last-config-req", "1297789640483");
Vymazáno : user_pref("extensions.asktb.locale", "en_US");
Vymazáno : user_pref("extensions.asktb.o", "16205");
Vymazáno : user_pref("extensions.asktb.overlay-reloaded-using-restart", true);
Vymazáno : user_pref("extensions.asktb.qsrc", "2871");
Vymazáno : user_pref("extensions.asktb.r", "3");
Vymazáno : user_pref("extensions.asktb.search-plugin-suggestions-url", "hxxp://ss.websearch.ask.com/query?qsrc=[...]
Vymazáno : user_pref("extensions.asktb.search-suggestions-enabled", true);
Vymazáno : user_pref("icqtoolbar.allowSendURL", false);
Vymazáno : user_pref("icqtoolbar.engineVerified", false);
Vymazáno : user_pref("icqtoolbar.hiddenElements", "itb_options");
Vymazáno : user_pref("icqtoolbar.installTime", "1288727407");
Vymazáno : user_pref("icqtoolbar.newtab_state", "1");
Vymazáno : user_pref("icqtoolbar.numberOfSearches", 0);
Vymazáno : user_pref("icqtoolbar.previousFFVersion", "3.6.12");
Vymazáno : user_pref("icqtoolbar.skip_default_search", "no");
Vymazáno : user_pref("icqtoolbar.suggestions", false);
Vymazáno : user_pref("icqtoolbar.uninstStatSent", true);
Vymazáno : user_pref("icqtoolbar.uniqueID", "128870542612887058801288727407313");
Vymazáno : user_pref("icqtoolbar.usageStatstTimestamp", 1288814053);
Vymazáno : user_pref("icqtoolbar.voucherHideClicks", 0);
Vymazáno : user_pref("icqtoolbar.voucherMoreLinkClicks", 0);
Vymazáno : user_pref("icqtoolbar.voucherRedeemClicks", 0);
Vymazáno : user_pref("icqtoolbar.voucherWasShown", 0);
Vymazáno : user_pref("icqtoolbar.xmlEnableSuggestions", false);
Vymazáno : user_pref("icqtoolbar.xmlLanguage", "cs");
Vymazáno : user_pref("keyword.URL", "hxxp://websearch.ask.com/redirect?client=ff&src=kw&tb=CDS&o=16205&locale=e[...]
Vymazáno : user_pref("browser.newtab.url", "hxxp://mystart.incredibar.com/mb128?a=6OyKkjwo9M&loc=FF_NT");user_p[...]
Soubor : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\s274s0yb.default\prefs.js
C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\s274s0yb.default\user.js ... Vymazáno !
Vymazáno : user_pref("browser.newtab.url", "hxxp://mystart.incredibar.com/mb128?a=6OyKkjwo9M&loc=FF_NT");user_p[...]
Soubor : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\uzgpurg2.default\prefs.js
C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\uzgpurg2.default\user.js ... Vymazáno !
Vymazáno : user_pref("CT2481032.1000082.isDisplayHidden", "true");
Vymazáno : user_pref("CT2481032.1000082.state", "{\"state\":\"stopped\",\"text\":\"Californi...\",\"description[...]
Vymazáno : user_pref("CT2481032.CBOpenMAMSettings.enc", "MA==");
Vymazáno : user_pref("CT2481032.ENABALE_HISTORY", "{\"dataType\":\"string\",\"data\":\"true\"}");
Vymazáno : user_pref("CT2481032.ENABLE_RETURN_WEB_SEARCH_ON_THE_PAGE", "{\"dataType\":\"string\",\"data\":\"tru[...]
Vymazáno : user_pref("CT2481032.FirstTime", "true");
Vymazáno : user_pref("CT2481032.FirstTimeFF3", "true");
Vymazáno : user_pref("CT2481032.LoginRevertSettingsEnabled", true);
Vymazáno : user_pref("CT2481032.UserID", "UN75412603070472550");
Vymazáno : user_pref("CT2481032.addressBarTakeOverEnabledInHidden", "true");
Vymazáno : user_pref("CT2481032.autoDisableScopes", 14);
Vymazáno : user_pref("CT2481032.cb_experience_000.enc", "MQ==");
Vymazáno : user_pref("CT2481032.cb_firstuse0100.enc", "MQ==");
Vymazáno : user_pref("CT2481032.cbcountry_001.enc", "Q1o=");
Vymazáno : user_pref("CT2481032.cbfirsttime.enc", "VHVlIE5vdiAyNyAyMDEyIDIwOjQ2OjU2IEdNVCswMTAw");
Vymazáno : user_pref("CT2481032.defaultSearch", "false");
Vymazáno : user_pref("CT2481032.enableAlerts", "false");
Vymazáno : user_pref("CT2481032.enableFix404ByUser", "FALSE");
Vymazáno : user_pref("CT2481032.enableSearchFromAddressBar", "false");
Vymazáno : user_pref("CT2481032.firstTimeDialogOpened", "true");
Vymazáno : user_pref("CT2481032.fixPageNotFoundError", "true");
Vymazáno : user_pref("CT2481032.fixPageNotFoundErrorByUser", "true");
Vymazáno : user_pref("CT2481032.fixPageNotFoundErrorInHidden", "true");
Vymazáno : user_pref("CT2481032.fixUrls", true);
Vymazáno : user_pref("CT2481032.hxxp___www_socialgrowthtechnologies_com_couponbuddy_v001.APP_WIN_FEATURES.enc",[...]
Vymazáno : user_pref("CT2481032.installId", "conduitnsisintegration");
Vymazáno : user_pref("CT2481032.installType", "conduitnsisintegration");
Vymazáno : user_pref("CT2481032.isCheckedStartAsHidden", true);
Vymazáno : user_pref("CT2481032.isEnableAllDialogs", "{\"dataType\":\"string\",\"data\":\"true\"}");
Vymazáno : user_pref("CT2481032.isFirstTimeToolbarLoading", "false");
Vymazáno : user_pref("CT2481032.isNewTabEnabled", false);
Vymazáno : user_pref("CT2481032.isPerformedSmartBarTransition", "true");
Vymazáno : user_pref("CT2481032.isToolbarShrinked", "{\"dataType\":\"string\",\"data\":\"false\"}");
Vymazáno : user_pref("CT2481032.lastNewTabSettings", "{\"isEnabled\":false,\"newTabUrl\":\"hxxp://search.condui[...]
Vymazáno : user_pref("CT2481032.lastVersion", "10.15.2.523");
Vymazáno : user_pref("CT2481032.migrateAppsAndComponents", true);
Vymazáno : user_pref("CT2481032.navigationAliasesJson", "{\"EB_SEARCH_TERM\":\"\",\"EB_MAIN_FRAME_URL\":\"hxxp%[...]
Vymazáno : user_pref("CT2481032.openThankYouPage", "false");
Vymazáno : user_pref("CT2481032.openUninstallPage", "false");
Vymazáno : user_pref("CT2481032.price-gong.bornDate", "{\"dataType\":\"string\",\"data\":\"{\\\"Response\\\":\\[...]
Vymazáno : user_pref("CT2481032.price-gong.isManagedApp", "true");
Vymazáno : user_pref("CT2481032.revertSettingsEnabled", "false");
Vymazáno : user_pref("CT2481032.search.searchAppId", "129058858240125318");
Vymazáno : user_pref("CT2481032.search.searchCount", "0");
Vymazáno : user_pref("CT2481032.searchInNewTabEnabled", "false");
Vymazáno : user_pref("CT2481032.searchInNewTabEnabledByUser", "false");
Vymazáno : user_pref("CT2481032.searchInNewTabEnabledInHidden", "true");
Vymazáno : user_pref("CT2481032.selectToSearchBoxEnabled", "{\"dataType\":\"string\",\"data\":\"true\"}");
Vymazáno : user_pref("CT2481032.serviceLayer_service_login_isFirstLoginInvoked", "{\"dataType\":\"boolean\",\"d[...]
Vymazáno : user_pref("CT2481032.serviceLayer_service_login_loginCount", "{\"dataType\":\"number\",\"data\":\"4\[...]
Vymazáno : user_pref("CT2481032.serviceLayer_service_toolbarGrouping_activeCTID", "{\"dataType\":\"string\",\"d[...]
Vymazáno : user_pref("CT2481032.serviceLayer_service_toolbarGrouping_activeDownloadUrl", "{\"dataType\":\"strin[...]
Vymazáno : user_pref("CT2481032.serviceLayer_service_toolbarGrouping_activeToolbarName", "{\"dataType\":\"strin[...]
Vymazáno : user_pref("CT2481032.serviceLayer_service_toolbarGrouping_invoked", "{\"dataType\":\"string\",\"data[...]
Vymazáno : user_pref("CT2481032.serviceLayer_services_app.twitter.user-cnet_lastUpdate", "1354651751436");
Vymazáno : user_pref("CT2481032.serviceLayer_services_app.twitter.user-cnnbrk_lastUpdate", "1354651751577");
Vymazáno : user_pref("CT2481032.serviceLayer_services_app.twitter.user-computeractive_lastUpdate", "13546517517[...]
Vymazáno : user_pref("CT2481032.serviceLayer_services_app.twitter.user-dailymirror_lastUpdate", "1354651751653"[...]
Vymazáno : user_pref("CT2481032.serviceLayer_services_app.twitter.user-google_lastUpdate", "1354651751619");
Vymazáno : user_pref("CT2481032.serviceLayer_services_app.twitter.user-techcrunch_lastUpdate", "1354651751374")[...]
Vymazáno : user_pref("CT2481032.serviceLayer_services_app.twitter.user-thesun_news_lastUpdate", "1354651751640"[...]
Vymazáno : user_pref("CT2481032.serviceLayer_services_app.twitter.user-wired_lastUpdate", "1354651751729");
Vymazáno : user_pref("CT2481032.serviceLayer_services_appTrackingFirstTime_lastUpdate", "1354045607196");
Vymazáno : user_pref("CT2481032.serviceLayer_services_appsMetadata_lastUpdate", "1354651746537");
Vymazáno : user_pref("CT2481032.serviceLayer_services_gottenAppsContextMenu_lastUpdate", "1354045608432");
Vymazáno : user_pref("CT2481032.serviceLayer_services_location_lastUpdate", "1369247005199");
Vymazáno : user_pref("CT2481032.serviceLayer_services_login_10.13.40.15_lastUpdate", "1359283103293");
Vymazáno : user_pref("CT2481032.serviceLayer_services_login_10.14.42.7_lastUpdate", "1362516737676");
Vymazáno : user_pref("CT2481032.serviceLayer_services_login_10.14.65.43_lastUpdate", "1366033249087");
Vymazáno : user_pref("CT2481032.serviceLayer_services_login_10.15.0.562_lastUpdate", "1366532718643");
Vymazáno : user_pref("CT2481032.serviceLayer_services_login_10.15.2.523_lastUpdate", "1369246963150");
Vymazáno : user_pref("CT2481032.serviceLayer_services_otherAppsContextMenu_lastUpdate", "1354045607905");
Vymazáno : user_pref("CT2481032.serviceLayer_services_searchAPI_lastUpdate", "1354651746795");
Vymazáno : user_pref("CT2481032.serviceLayer_services_serviceMap_lastUpdate", "1369247005196");
Vymazáno : user_pref("CT2481032.serviceLayer_services_toolbarContextMenu_lastUpdate", "1354045608386");
Vymazáno : user_pref("CT2481032.serviceLayer_services_toolbarSettings_lastUpdate", "1369247005198");
Vymazáno : user_pref("CT2481032.serviceLayer_services_translation_lastUpdate", "1369247005197");
Vymazáno : user_pref("CT2481032.serviceLayer_services_userApps1ec55dac-8dca-406b-9697-5d68893c1c0c_lastUpdate",[...]
Vymazáno : user_pref("CT2481032.serviceLayer_services_userApps_lastUpdate", "1354045640991");
Vymazáno : user_pref("CT2481032.settingsINI", true);
Vymazáno : user_pref("CT2481032.shouldFirstTimeDialog", "false");
Vymazáno : user_pref("CT2481032.showToolbarPermission", "false");
Vymazáno : user_pref("CT2481032.smartbar.CTID", "CT2481032");
Vymazáno : user_pref("CT2481032.smartbar.Uninstall", "0");
Vymazáno : user_pref("CT2481032.smartbar.isHidden", true);
Vymazáno : user_pref("CT2481032.smartbar.toolbarName", "Ashampoo US ");
Vymazáno : user_pref("CT2481032.startPage", "false");
Vymazáno : user_pref("CT2481032.toolbarBornServerTime", "27-11-2012");
Vymazáno : user_pref("CT2481032.toolbarCurrentServerTime", "22-5-2013");
Vymazáno : user_pref("CT2481032.toolbarLoginClientTime", "Tue Apr 16 2013 20:53:27 GMT+0200");
Vymazáno : user_pref("CT2481032.url_history0001.enc", "aHR0cDovL3d3dy5zc2hzb3BhdmEuY3ovaXNhcy9wcnViZXpuYS1rbGFz[...]
Vymazáno : user_pref("CT2481032_Firefox.csv", "[{\"from\":\"Abs Layer\",\"action\":\"loading toolbar\",\"time\"[...]
Vymazáno : user_pref("CT3220468.BT_Stats", "{\"last_log\":1348927710,\"uuid\":157883722652164,\"seq_id\":1,\"ss[...]
Vymazáno : user_pref("CT3220468.ENABALE_HISTORY", "{\"dataType\":\"string\",\"data\":\"true\"}");
Vymazáno : user_pref("CT3220468.ENABLE_RETURN_WEB_SEARCH_ON_THE_PAGE", "{\"dataType\":\"string\",\"data\":\"tru[...]
Vymazáno : user_pref("CT3220468.FirstTime", "true");
Vymazáno : user_pref("CT3220468.FirstTimeFF3", "true");
Vymazáno : user_pref("CT3220468.LoginRevertSettingsEnabled", true);
Vymazáno : user_pref("CT3220468.RevertSettingsEnabled", true);
Vymazáno : user_pref("CT3220468.UserID", "UN92059843445263539");
Vymazáno : user_pref("CT3220468.addressBarTakeOverEnabledInHidden", "true");
Vymazáno : user_pref("CT3220468.autoDisableScopes", 14);
Vymazáno : user_pref("CT3220468.cbfirsttime", "Sat Sep 29 2012 16:08:29 GMT+0200");
Vymazáno : user_pref("CT3220468.defaultSearch", "FALSE");
Vymazáno : user_pref("CT3220468.enableAlerts", "always");
Vymazáno : user_pref("CT3220468.enableFix404ByUser", "FALSE");
Vymazáno : user_pref("CT3220468.enableSearchFromAddressBar", "FALSE");
Vymazáno : user_pref("CT3220468.firstTimeDialogOpened", "true");
Vymazáno : user_pref("CT3220468.fixPageNotFoundError", "true");
Vymazáno : user_pref("CT3220468.fixPageNotFoundErrorByUser", "true");
Vymazáno : user_pref("CT3220468.fixPageNotFoundErrorInHidden", "true");
Vymazáno : user_pref("CT3220468.fixUrls", true);
Vymazáno : user_pref("CT3220468.installId", "fft6711.tmp.exe");
Vymazáno : user_pref("CT3220468.installType", "XPE");
Vymazáno : user_pref("CT3220468.isCheckedStartAsHidden", true);
Vymazáno : user_pref("CT3220468.isEnableAllDialogs", "{\"dataType\":\"string\",\"data\":\"true\"}");
Vymazáno : user_pref("CT3220468.isFirstTimeToolbarLoading", "false");
Vymazáno : user_pref("CT3220468.isNewTabEnabled", true);
Vymazáno : user_pref("CT3220468.isPerformedSmartBarTransition", "true");
Vymazáno : user_pref("CT3220468.isToolbarShrinked", "{\"dataType\":\"string\",\"data\":\"false\"}");
Vymazáno : user_pref("CT3220468.isWelcomPage", "{\"dataType\":\"boolean\",\"data\":\"true\"}");
Vymazáno : user_pref("CT3220468.lastNewTabSettings", "{\"isEnabled\":true,\"newTabUrl\":\"hxxp://search.conduit[...]
Vymazáno : user_pref("CT3220468.lastVersion", "10.16.2.509");
Vymazáno : user_pref("CT3220468.migrateAppsAndComponents", true);
Vymazáno : user_pref("CT3220468.navigationAliasesJson", "{\"EB_SEARCH_TERM\":\"\",\"EB_MAIN_FRAME_URL\":\"hxxp%[...]
Vymazáno : user_pref("CT3220468.openThankYouPage", "true");
Vymazáno : user_pref("CT3220468.openUninstallPage", "FALSE");
Vymazáno : user_pref("CT3220468.search.searchAppId", "129813684258939747");
Vymazáno : user_pref("CT3220468.search.searchCount", "0");
Vymazáno : user_pref("CT3220468.searchInNewTabEnabledByUser", "true");
Vymazáno : user_pref("CT3220468.searchInNewTabEnabledInHidden", "true");
Vymazáno : user_pref("CT3220468.selectToSearchBoxEnabled", "{\"dataType\":\"string\",\"data\":\"true\"}");
Vymazáno : user_pref("CT3220468.serviceLayer_service_login_isFirstLoginInvoked", "{\"dataType\":\"boolean\",\"d[...]
Vymazáno : user_pref("CT3220468.serviceLayer_service_login_loginCount", "{\"dataType\":\"number\",\"data\":\"4\[...]
Vymazáno : user_pref("CT3220468.serviceLayer_service_toolbarGrouping_activeCTID", "{\"dataType\":\"string\",\"d[...]
Vymazáno : user_pref("CT3220468.serviceLayer_service_toolbarGrouping_activeDownloadUrl", "{\"dataType\":\"strin[...]
Vymazáno : user_pref("CT3220468.serviceLayer_service_toolbarGrouping_activeToolbarName", "{\"dataType\":\"strin[...]
Vymazáno : user_pref("CT3220468.serviceLayer_service_toolbarGrouping_invoked", "{\"dataType\":\"string\",\"data[...]
Vymazáno : user_pref("CT3220468.serviceLayer_service_usage_toolbarUsageCount", "{\"dataType\":\"number\",\"data[...]
Vymazáno : user_pref("CT3220468.serviceLayer_services_appTrackingFirstTime_lastUpdate", "1348927697889");
Vymazáno : user_pref("CT3220468.serviceLayer_services_appsMetadata_lastUpdate", "1348927697682");
Vymazáno : user_pref("CT3220468.serviceLayer_services_gottenAppsContextMenu_lastUpdate", "1348927698881");
Vymazáno : user_pref("CT3220468.serviceLayer_services_location_lastUpdate", "1369247005202");
Vymazáno : user_pref("CT3220468.serviceLayer_services_login_10.10.27.6_lastUpdate", "1352999678654");
Vymazáno : user_pref("CT3220468.serviceLayer_services_login_10.13.40.15_lastUpdate", "1359283104158");
Vymazáno : user_pref("CT3220468.serviceLayer_services_login_10.14.370.524_lastUpdate", "1366033298693");
Vymazáno : user_pref("CT3220468.serviceLayer_services_login_10.14.40.128_lastUpdate", "1362516735193");
Vymazáno : user_pref("CT3220468.serviceLayer_services_login_10.14.65.43_lastUpdate", "1363554851306");
Vymazáno : user_pref("CT3220468.serviceLayer_services_login_10.15.0.562_lastUpdate", "1369246962905");
Vymazáno : user_pref("CT3220468.serviceLayer_services_login_10.16.2.509_lastUpdate", "1369253499220");
Vymazáno : user_pref("CT3220468.serviceLayer_services_otherAppsContextMenu_lastUpdate", "1348927698841");
Vymazáno : user_pref("CT3220468.serviceLayer_services_searchAPI_lastUpdate", "1348927697133");
Vymazáno : user_pref("CT3220468.serviceLayer_services_serviceMap_lastUpdate", "1369247005200");
Vymazáno : user_pref("CT3220468.serviceLayer_services_toolbarContextMenu_lastUpdate", "1348927698802");
Vymazáno : user_pref("CT3220468.serviceLayer_services_toolbarSettings_lastUpdate", "1369247005202");
Vymazáno : user_pref("CT3220468.serviceLayer_services_translation_lastUpdate", "1369247005201");
Vymazáno : user_pref("CT3220468.settingsINI", true);
Vymazáno : user_pref("CT3220468.shouldFirstTimeDialog", "false");
Vymazáno : user_pref("CT3220468.showToolbarPermission", "false");
Vymazáno : user_pref("CT3220468.smartbar.CTID", "CT3220468");
Vymazáno : user_pref("CT3220468.smartbar.Uninstall", "0");
Vymazáno : user_pref("CT3220468.smartbar.isHidden", true);
Vymazáno : user_pref("CT3220468.smartbar.toolbarName", "uTorrentControl_v2 ");
Vymazáno : user_pref("CT3220468.startPage", "userChanged");
Vymazáno : user_pref("CT3220468.toolbarBornServerTime", "29-9-2012");
Vymazáno : user_pref("CT3220468.toolbarCurrentServerTime", "22-5-2013");
Vymazáno : user_pref("CT3220468.toolbarLoginClientTime", "Tue Mar 19 2013 20:49:51 GMT+0100");
Vymazáno : user_pref("CT3220468.upgradeFromClearSBVersion", true);
Vymazáno : user_pref("CT3220468_Firefox.csv", "[{\"from\":\"Abs Layer\",\"action\":\"loading toolbar\",\"time\"[...]
Vymazáno : user_pref("avg.install.userHPSettings", "hxxp://www1.delta-search.com/?affID=119816&babsrc=HP_ss&mnt[...]
Vymazáno : user_pref("avg.install.userSPSettings", "Delta Search");
Vymazáno : user_pref("browser.newtab.url", "hxxp://www1.delta-search.com/?affID=119816&babsrc=NT_ss&mntrId=4E61[...]
Vymazáno : user_pref("browser.search.selectedEngine", "Delta Search");
Vymazáno : user_pref("browser.startup.homepage", "hxxp://www1.delta-search.com/?affID=119816&babsrc=HP_ss&mntrI[...]
Vymazáno : user_pref("extensions.BabylonToolbar.admin", false);
Vymazáno : user_pref("extensions.BabylonToolbar.aflt", "babsst");
Vymazáno : user_pref("extensions.BabylonToolbar.dfltLng", "en");
Vymazáno : user_pref("extensions.BabylonToolbar.excTlbr", false);
Vymazáno : user_pref("extensions.BabylonToolbar.id", "4e614cce00000000000076f1a142e774");
Vymazáno : user_pref("extensions.BabylonToolbar.instlDay", "15565");
Vymazáno : user_pref("extensions.BabylonToolbar.instlRef", "sst");
Vymazáno : user_pref("extensions.BabylonToolbar.prdct", "BabylonToolbar");
Vymazáno : user_pref("extensions.BabylonToolbar.prtnrId", "babylon");
Vymazáno : user_pref("extensions.BabylonToolbar.tlbrId", "base");
Vymazáno : user_pref("extensions.BabylonToolbar.tlbrSrchUrl", "hxxp://www.google.com/search?babsrc=TB_ggl&q=");
Vymazáno : user_pref("extensions.BabylonToolbar.vrsn", "1.6.4.6");
Vymazáno : user_pref("extensions.BabylonToolbar.vrsni", "1.6.4.6");
Vymazáno : user_pref("extensions.BabylonToolbar_i.babExt", "");
Vymazáno : user_pref("extensions.BabylonToolbar_i.babTrack", "affID=112059&tt=120812_bandext_3312_7");
Vymazáno : user_pref("extensions.BabylonToolbar_i.newTab", true);
Vymazáno : user_pref("extensions.BabylonToolbar_i.newTabUrl", "hxxp://search.babylon.com/?affID=112059&tt=12081[...]
Vymazáno : user_pref("extensions.BabylonToolbar_i.smplGrp", "none");
Vymazáno : user_pref("extensions.BabylonToolbar_i.srcExt", "ss");
Vymazáno : user_pref("extensions.BabylonToolbar_i.vrsnTs", "1.6.4.619:03:48");
Vymazáno : user_pref("extensions.incredibar.admin", false);
Vymazáno : user_pref("extensions.incredibar.aflt", "orgnl");
Vymazáno : user_pref("extensions.incredibar.cntry", "CZ");
Vymazáno : user_pref("extensions.incredibar.dfltLng", "");
Vymazáno : user_pref("extensions.incredibar.dfltSrch", false);
Vymazáno : user_pref("extensions.incredibar.did", "10658");
Vymazáno : user_pref("extensions.incredibar.envrmnt", "production");
Vymazáno : user_pref("extensions.incredibar.excTlbr", false);
Vymazáno : user_pref("extensions.incredibar.hdrMd5", "56B95DE1EDE995C4384A7AF67E0AF2A8");
Vymazáno : user_pref("extensions.incredibar.hmpg", false);
Vymazáno : user_pref("extensions.incredibar.id", "4e614cce00000000000076f1a142e774");
Vymazáno : user_pref("extensions.incredibar.installerproductid", "26");
Vymazáno : user_pref("extensions.incredibar.instlDay", "15559");
Vymazáno : user_pref("extensions.incredibar.instlRef", "");
Vymazáno : user_pref("extensions.incredibar.isDcmntCmplt", true);
Vymazáno : user_pref("extensions.incredibar.lastVrsnTs", "1.5.11.1419:22:44");
Vymazáno : user_pref("extensions.incredibar.mntrvrsn", "1.2.0");
Vymazáno : user_pref("extensions.incredibar.newTab", false);
Vymazáno : user_pref("extensions.incredibar.noFFXTlbr", false);
Vymazáno : user_pref("extensions.incredibar.ppd", "");
Vymazáno : user_pref("extensions.incredibar.prdct", "incredibar");
Vymazáno : user_pref("extensions.incredibar.productid", "26");
Vymazáno : user_pref("extensions.incredibar.prtnrId", "Incredibar");
Vymazáno : user_pref("extensions.incredibar.sg", "none");
Vymazáno : user_pref("extensions.incredibar.smplGrp", "none");
Vymazáno : user_pref("extensions.incredibar.tlbrId", "base");
Vymazáno : user_pref("extensions.incredibar.tlbrSrchUrl", "hxxp://mystart.Incredibar.com/?a=6OyKkjwo9M&loc=IB_T[...]
Vymazáno : user_pref("extensions.incredibar.upn2", "6OyKkjwo9M");
Vymazáno : user_pref("extensions.incredibar.upn2n", "92261890875400430");
Vymazáno : user_pref("extensions.incredibar.vrsn", "1.5.11.14");
Vymazáno : user_pref("extensions.incredibar.vrsnTs", "1.5.11.1419:22:44");
Vymazáno : user_pref("extensions.incredibar.vrsni", "1.5.11.14");
Vymazáno : user_pref("extensions.incredibar_i.aflt", "orgnl");
Vymazáno : user_pref("extensions.incredibar_i.dfltLng", "");
Vymazáno : user_pref("extensions.incredibar_i.did", "10658");
Vymazáno : user_pref("extensions.incredibar_i.excTlbr", false);
Vymazáno : user_pref("extensions.incredibar_i.id", "4e614cce00000000000076f1a142e774");
Vymazáno : user_pref("extensions.incredibar_i.installerproductid", "26");
Vymazáno : user_pref("extensions.incredibar_i.instlDay", "15559");
Vymazáno : user_pref("extensions.incredibar_i.instlRef", "");
Vymazáno : user_pref("extensions.incredibar_i.ms_url_id", "");
Vymazáno : user_pref("extensions.incredibar_i.newTab", false);
Vymazáno : user_pref("extensions.incredibar_i.ppd", "");
Vymazáno : user_pref("extensions.incredibar_i.prdct", "incredibar");
Vymazáno : user_pref("extensions.incredibar_i.productid", "26");
Vymazáno : user_pref("extensions.incredibar_i.prtnrId", "Incredibar");
Vymazáno : user_pref("extensions.incredibar_i.smplGrp", "none");
Vymazáno : user_pref("extensions.incredibar_i.tlbrId", "base");
Vymazáno : user_pref("extensions.incredibar_i.tlbrSrchUrl", "hxxp://mystart.Incredibar.com/?a=6OyKkjwo9M&loc=IB[...]
Vymazáno : user_pref("extensions.incredibar_i.upn2", "6OyKkjwo9M");
Vymazáno : user_pref("extensions.incredibar_i.upn2n", "92261890875400430");
Vymazáno : user_pref("extensions.incredibar_i.vrsn", "1.5.11.14");
Vymazáno : user_pref("extensions.incredibar_i.vrsnTs", "1.5.11.1419:22:44");
Vymazáno : user_pref("extensions.incredibar_i.vrsni", "1.5.11.14");
Vymazáno : user_pref("extentions.y2layers.defaultEnableAppsList", "bestvideodownloader,ezLooker,pagerage,buzzdo[...]
Vymazáno : user_pref("extentions.y2layers.installId", "c02629a4-85cd-4f38-ba4b-bb84a0dd7db9");
Vymazáno : user_pref("keyword.URL", "hxxp://eu.ask.com/web?l=dis&o=APN10089&gct=kwd&qsrc=2869&apn_dtid=^PFM004^[...]
Vymazáno : user_pref("smartBar.searchInNewTabOwner", "CT3220468");
Vymazáno : user_pref("smartbar.machineId", "ZOJJT5QCLWUOAKVUIKV+KSLE2FZLN9JRD/MPDX6OHQFBQ5VQ6JEQJWNHCLOVXLIAIKJ[...]
Vymazáno : user_pref("sweetim.toolbar.urls.homepage", "hxxp://search.babylon.com/?affID=112059&tt=120812_bandex[...]
Vymazáno : user_pref("{336D0C35-8A85-403a-B9D2-65C292C39087}.ScriptData_WSG_whiteList", "{\"search.babylon.com\[...]
-\\ Google Chrome v27.0.1453.94
Soubor : C:\Users\Renata\AppData\Local\Google\Chrome\User Data\Default\Preferences
Vymazáno [l.2477] : homepage = "hxxp://www1.delta-search.com/?affID=119816&babsrc=HP_ss&mntrId=4E6176F1A142E774",
Vymazáno [l.2857] : urls_to_restore_on_startup = [ "hxxp://www1.delta-search.com/?affID=119816&babsrc=HP_ss&mntrI[...]
*************************
AdwCleaner[R1].txt - [46382 octets] - [31/05/2013 22:20:58]
AdwCleaner[R2].txt - [46443 octets] - [31/05/2013 22:31:43]
AdwCleaner[S1].txt - [45547 octets] - [31/05/2013 22:32:21]
########## EOF - C:\AdwCleaner[S1].txt - [45608 octets] ##########
# Aktualizováno 16/05/2013 Xplode
# Operaení systém : Windows 7 Professional Service Pack 1 (32 bits)
# Uživatel : Renata - RENATA-PC
# Spuštin systém : Normální
# Spuštino z : C:\Users\Renata\Downloads\adwcleaner.exe
# Volba [Vymazat]
***** [Služby] *****
Zastaveno & vymazáno : BrowserProtect
Zastaveno & vymazáno : IBUpdaterService
***** [Soubory / Složky] *****
Složka Vymazáno : C:\Program Files\1ClickDownload
Složka Vymazáno : C:\Program Files\Conduit
Složka Vymazáno : C:\Program Files\Mozilla Firefox\Extensions\ffxtlbr@babylon.com
Složka Vymazáno : C:\Program Files\Perion
Složka Vymazáno : C:\ProgramData\Ask
Složka Vymazáno : C:\ProgramData\Babylon
Složka Vymazáno : C:\ProgramData\ICQ\ICQToolbar
Složka Vymazáno : C:\ProgramData\Tarma Installer
Složka Vymazáno : C:\Users\Renata\AppData\Local\Google\Chrome\User Data\Default\Extensions\jifflliplgeajjdhmkcfnngfpgbjonjg
Složka Vymazáno : C:\Users\Renata\AppData\Local\Google\Chrome\User Data\Default\Extensions\pmlghpafmmnmmkjdhacccolfgnkiboco
Složka Vymazáno : C:\Users\Renata\AppData\Local\Temp\CT3220468
Složka Vymazáno : C:\Users\Renata\AppData\LocalLow\BabylonToolbar
Složka Vymazáno : C:\Users\Renata\AppData\LocalLow\Conduit
Složka Vymazáno : C:\Users\Renata\AppData\Roaming\BabSolution
Složka Vymazáno : C:\Users\Renata\AppData\Roaming\Babylon
Složka Vymazáno : C:\Users\Renata\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BrowserProtect
Složka Vymazáno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\0e85her5.default\Conduit
Složka Vymazáno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\0e85her5.default\CT1750559
Složka Vymazáno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\0e85her5.default\extensions\{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}
Složka Vymazáno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\0e85her5.default\extensions\plugin@yontoo.com
Složka Vymazáno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\5hmbs2yj.default\extensions\plugin@yontoo.com
Složka Vymazáno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\9dmbk278.default\extensions\plugin@yontoo.com
Složka Vymazáno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\od3412mv.default\extensions\plugin@yontoo.com
Složka Vymazáno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\s274s0yb.default\extensions\plugin@yontoo.com
Složka Vymazáno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\uzgpurg2.default\CT2481032
Složka Vymazáno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\uzgpurg2.default\CT3220468
Složka Vymazáno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\uzgpurg2.default\extensions\{124d001a-bdcb-472f-aa59-bbe7e4bc3204}
Složka Vymazáno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\uzgpurg2.default\extensions\{7473b6bd-4691-4744-a82b-7854eb3d70b6}
Složka Vymazáno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\uzgpurg2.default\jetpack
Složka Vymazáno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\uzgpurg2.default\Smartbar
Složka Vymazáno : C:\Users\Renata\AppData\Roaming\Yontoo
Složka Vymazáno : C:\Windows\system32\WNLT
Soubor Vymazáno : C:\Program Files\Mozilla Firefox\searchplugins\ask.xml
Soubor Vymazáno : C:\Program Files\Mozilla Firefox\searchplugins\babylon.xml
Soubor Vymazáno : C:\user.js
Soubor Vymazáno : C:\Users\Renata\AppData\Local\Google\Chrome\User Data\Default\bProtector Web Data
Soubor Vymazáno : C:\Users\Renata\AppData\Local\Google\Chrome\User Data\Default\bprotectorpreferences
Soubor Vymazáno : C:\Users\Renata\AppData\Roaming\BabMaint.exe
Soubor Vymazáno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\0e85her5.default\searchplugins\Conduit.xml
Soubor Vymazáno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\od3412mv.default\searchplugins\Askcom.xml
Soubor Vymazáno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\od3412mv.default\searchplugins\icqplugin.xml
Soubor Vymazáno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\uzgpurg2.default\bProtector_extensions.rdf
Soubor Vymazáno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\uzgpurg2.default\bprotector_extensions.sqlite
Soubor Vymazáno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\uzgpurg2.default\bprotector_prefs.js
Soubor Vymazáno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\uzgpurg2.default\BrowserMngr_extensions.sqlite
Soubor Vymazáno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\uzgpurg2.default\browsermngr_prefs.js
Soubor Vymazáno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\uzgpurg2.default\extensions\OneClickDownload@OneClickDownload.com.xpi
Soubor Vymazáno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\uzgpurg2.default\extensions\plugin@yontoo.com.xpi
Soubor Vymazáno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\uzgpurg2.default\searchplugins\Askcom.xml
Soubor Vymazáno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\uzgpurg2.default\searchplugins\Babylon.xml
Soubor Vymazáno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\uzgpurg2.default\searchplugins\BrowserProtect.xml
Soubor Vymazáno : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\uzgpurg2.default\searchplugins\MyStart Search.xml
Soubor Vymazáno : C:\Windows\system32\conduitEngine.tmp
Vymazáno poi restartu : C:\Program Files\ICQ6Toolbar
Vymazáno poi restartu : C:\ProgramData\BrowserProtect
Vymazáno poi restartu : C:\Windows\system32\Zynga
Vymazáno poi restartu : C:\Windows\system32\Zynga
***** [Registry] *****
Data Vymazáno : HKLM\..\Windows [AppInit_DLLs] = c:\progra~2\browse~1\261125~1.80\{c16c1~1\browse~1.dll
Hodnota Vymazáno : HKCU\Software\Microsoft\Internet Explorer\Main [bprotector start page]
Hodnota Vymazáno : HKCU\Software\Microsoft\Internet Explorer\Main [BrowserMngr Start Page]
Hodnota Vymazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes [bProtectorDefaultScope]
Hodnota Vymazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes [BrowserMngrDefaultScope]
Hodnota Vymazáno : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Hodnota Vymazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [Yontoo Desktop]
Hodnota Vymazáno : HKCU\Software\Mozilla\Firefox\Extensions [{0F827075-B026-42F3-885D-98981EE7B1AE}]
Hodnota Vymazáno : HKCU\Software\Mozilla\Firefox\Extensions [{b64982b1-d112-42b5-b1e4-d3867c4533f8}]
Hodnota Vymazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{98889811-442D-49DD-99D7-DC866BE87DBC}]
Hodnota Vymazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{855F3B16-6D32-4FE6-8A56-BBB695989046}]
Hodnota Vymazáno : HKLM\SOFTWARE\Mozilla\Firefox\extensions [{336D0C35-8A85-403a-B9D2-65C292C39087}]
Hodnota Vymazáno : HKLM\SOFTWARE\Mozilla\Firefox\extensions [{FE1DEEEA-DB6D-44b8-83F0-34FC0F9D1052}]
Klíe Vymazáno : HKCU\Software\1ClickDownload
Klíe Vymazáno : HKCU\Software\5f53d8d8b06fbf14
Klíe Vymazáno : HKCU\Software\APN PIP
Klíe Vymazáno : HKCU\Software\AppDataLow\AskBarDis
Klíe Vymazáno : HKCU\Software\AppDataLow\Software\Conduit
Klíe Vymazáno : HKCU\Software\AppDataLow\Software\ConduitSearchScopes
Klíe Vymazáno : HKCU\Software\AppDataLow\Software\SmartBar
Klíe Vymazáno : HKCU\Software\BabylonToolbar
Klíe Vymazáno : HKCU\Software\BrowserMngr
Klíe Vymazáno : HKCU\Software\Conduit
Klíe Vymazáno : HKCU\Software\DataMngr
Klíe Vymazáno : HKCU\Software\IM
Klíe Vymazáno : HKCU\Software\ImInstaller
Klíe Vymazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Klíe Vymazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40B7-AC73-056A5EBA4A7E}
Klíe Vymazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}
Klíe Vymazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AD22EBAF-0D18-4FC7-90CC-5EA0ABBE9EB8}
Klíe Vymazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{B9C7CE32-DA91-43C2-B7E9-0E9AAFC675CD}
Klíe Vymazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{CFF4DB9B-135F-47C0-9269-B4C6572FD61A}
Klíe Vymazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings
Klíe Vymazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{855F3B16-6D32-4FE6-8A56-BBB695989046}
Klíe Vymazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}
Klíe Vymazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{00000000-6E41-4FD3-8538-502F5495E5FC}
Klíe Vymazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Klíe Vymazáno : HKCU\Software\PIP
Klíe Vymazáno : HKCU\Software\PrivitizeVPNInstallDates
Klíe Vymazáno : HKCU\Software\Softonic
Klíe Vymazáno : HKCU\Software\StartSearch
Klíe Vymazáno : HKCU\Software\WNLT
Klíe Vymazáno : HKLM\SOFTWARE\14919ea49a8f3b4aa3cf1058d9a64cec
Klíe Vymazáno : HKLM\SOFTWARE\5f53d8d8b06fbf14
Klíe Vymazáno : HKLM\Software\Babylon
Klíe Vymazáno : HKLM\Software\BrowserMngr
Klíe Vymazáno : HKLM\SOFTWARE\Classes\AppID\{5B1881D1-D9C7-46DF-B041-1E593282C7D0}
Klíe Vymazáno : HKLM\SOFTWARE\Classes\AppID\{608D3067-77E8-463D-9084-908966806826}
Klíe Vymazáno : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Klíe Vymazáno : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Klíe Vymazáno : HKLM\SOFTWARE\Classes\AppID\{CFDAFE39-20CE-451D-BD45-A37452F39CF0}
Klíe Vymazáno : HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}
Klíe Vymazáno : HKLM\SOFTWARE\Classes\AppID\YontooIEClient.DLL
Klíe Vymazáno : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Klíe Vymazáno : HKLM\SOFTWARE\Classes\CLSID\{7E84186E-B5DE-4226-8A66-6E49C6B511B4}
Klíe Vymazáno : HKLM\SOFTWARE\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
Klíe Vymazáno : HKLM\SOFTWARE\Classes\CLSID\{99066096-8989-4612-841F-621A01D54AD7}
Klíe Vymazáno : HKLM\SOFTWARE\Classes\CLSID\{FE9271F2-6EFD-44B0-A826-84C829536E93}
Klíe Vymazáno : HKLM\SOFTWARE\Classes\Conduit.Engine
Klíe Vymazáno : HKLM\SOFTWARE\Classes\Interface\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}
Klíe Vymazáno : HKLM\SOFTWARE\Classes\Interface\{1AD27395-1659-4DFF-A319-2CFA243861A5}
Klíe Vymazáno : HKLM\SOFTWARE\Classes\Prod.cap
Klíe Vymazáno : HKLM\SOFTWARE\Classes\Toolbar.CT1750559
Klíe Vymazáno : HKLM\SOFTWARE\Classes\Toolbar.CT2481032
Klíe Vymazáno : HKLM\SOFTWARE\Classes\Toolbar.CT3220468
Klíe Vymazáno : HKLM\SOFTWARE\Classes\YontooIEClient.Api
Klíe Vymazáno : HKLM\SOFTWARE\Classes\YontooIEClient.Api.1
Klíe Vymazáno : HKLM\SOFTWARE\Classes\YontooIEClient.Layers
Klíe Vymazáno : HKLM\Software\Conduit
Klíe Vymazáno : HKLM\Software\DataMngr
Klíe Vymazáno : HKLM\SOFTWARE\Google\Chrome\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd
Klíe Vymazáno : HKLM\SOFTWARE\Google\Chrome\Extensions\eooncjejnppfjjklapaamhcdmjbilmde
Klíe Vymazáno : HKLM\SOFTWARE\Google\Chrome\Extensions\jifflliplgeajjdhmkcfnngfpgbjonjg
Klíe Vymazáno : HKLM\SOFTWARE\Google\Chrome\Extensions\niapdbllcanepiiimjjndipklodoedlc
Klíe Vymazáno : HKLM\SOFTWARE\Google\Chrome\Extensions\pgafcinpmmpklohkojmllohdhomoefph
Klíe Vymazáno : HKLM\SOFTWARE\Google\Chrome\Extensions\pmlghpafmmnmmkjdhacccolfgnkiboco
Klíe Vymazáno : HKLM\Software\Iminent
Klíe Vymazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Klíe Vymazáno : HKLM\SOFTWARE\Microsoft\Tracing\ConduitInstaller_RASAPI32
Klíe Vymazáno : HKLM\SOFTWARE\Microsoft\Tracing\ConduitInstaller_RASMANCS
Klíe Vymazáno : HKLM\SOFTWARE\Microsoft\Tracing\IncredibarToolbar_RASAPI32
Klíe Vymazáno : HKLM\SOFTWARE\Microsoft\Tracing\IncredibarToolbar_RASMANCS
Klíe Vymazáno : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASAPI32
Klíe Vymazáno : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASMANCS
Klíe Vymazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB}
Klíe Vymazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Klíe Vymazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{15D2D75C-9CB2-4EFD-BAD7-B9B4CB4BC693}
Klíe Vymazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}
Klíe Vymazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Delta Chrome Toolbar
Klíe Vymazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WNLT
Klíe Vymazáno : HKLM\Software\PIP
Klíe Vymazáno : HKLM\Software\Tarma Installer
Klíe Vymazáno : HKLM\Software\Web Assistant
Klíe Vymazáno : HKLM\Software\WNLT
Klíe Vymazáno : HKU\.DEFAULT\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
***** [Internetové prohlížeee] *****
-\\ Internet Explorer v10.0.9200.16576
Zaminino : [HKCU\Software\Microsoft\Internet Explorer\Main - Start Page] = hxxp://www1.delta-search.com/?affID=119816&babsrc=HP_ss&mntrId=4E6176F1A142E774 --> hxxp://www.google.com
Zaminino : [HKCU\Software\Microsoft\Internet Explorer\Main - ICQ Search] = hxxp://search.icq.com/search/results.php?q={searchTerms}&ch_id=osd --> hxxp://www.google.com
-\\ Mozilla Firefox v20.0.1 (cs)
Soubor : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\0e85her5.default\prefs.js
C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\0e85her5.default\user.js ... Vymazáno !
Vymazáno : user_pref("CT1750559.AboutPrivacyUrl", "hxxp://www.conduit.com/privacy/Default.aspx");
Vymazáno : user_pref("CT1750559.CTID", "CT1750559");
Vymazáno : user_pref("CT1750559.CurrentServerDate", "28-4-2011");
Vymazáno : user_pref("CT1750559.DialogsAlignMode", "LTR");
Vymazáno : user_pref("CT1750559.FirstServerDate", "28-4-2011");
Vymazáno : user_pref("CT1750559.FirstTime", true);
Vymazáno : user_pref("CT1750559.FirstTimeFF3", true);
Vymazáno : user_pref("CT1750559.FixPageNotFoundErrors", true);
Vymazáno : user_pref("CT1750559.GroupingServerCheckInterval", 1440);
Vymazáno : user_pref("CT1750559.GroupingServiceUrl", "hxxp://grouping.services.conduit.com/");
Vymazáno : user_pref("CT1750559.Initialize", true);
Vymazáno : user_pref("CT1750559.InitializeCommonPrefs", true);
Vymazáno : user_pref("CT1750559.InstalledDate", "Thu Apr 28 2011 19:17:48 GMT+0200");
Vymazáno : user_pref("CT1750559.InvalidateCache", false);
Vymazáno : user_pref("CT1750559.IsGrouping", false);
Vymazáno : user_pref("CT1750559.IsMulticommunity", false);
Vymazáno : user_pref("CT1750559.IsOpenThankYouPage", true);
Vymazáno : user_pref("CT1750559.IsOpenUninstallPage", true);
Vymazáno : user_pref("CT1750559.LanguagePackLastCheckTime", "Thu Apr 28 2011 19:17:50 GMT+0200");
Vymazáno : user_pref("CT1750559.LanguagePackReloadIntervalMM", 1440);
Vymazáno : user_pref("CT1750559.LanguagePackServiceUrl", "hxxp://translation.users.conduit.com/Translation.ashx[...]
Vymazáno : user_pref("CT1750559.LastLogin_2.5.6.0", "Thu Apr 28 2011 19:17:48 GMT+0200");
Vymazáno : user_pref("CT1750559.LatestVersion", "3.3.3.2");
Vymazáno : user_pref("CT1750559.Locale", "en-us");
Vymazáno : user_pref("CT1750559.LoginCache", 4);
Vymazáno : user_pref("CT1750559.MCDetectTooltipHeight", "83");
Vymazáno : user_pref("CT1750559.MCDetectTooltipUrl", "hxxp://@EB_INSTALL_LINK@/rank/tooltip/?version=1");
Vymazáno : user_pref("CT1750559.MCDetectTooltipWidth", "295");
Vymazáno : user_pref("CT1750559.RadioIsPodcast", false);
Vymazáno : user_pref("CT1750559.RadioLastCheckTime", "Thu Apr 28 2011 19:17:49 GMT+0200");
Vymazáno : user_pref("CT1750559.RadioLastUpdateIPServer", "3");
Vymazáno : user_pref("CT1750559.RadioLastUpdateServer", "128929877726170000");
Vymazáno : user_pref("CT1750559.RadioMediaID", "11237206");
Vymazáno : user_pref("CT1750559.RadioMediaType", "Media Player");
Vymazáno : user_pref("CT1750559.RadioMenuSelectedID", "EBRadioMenu_CT175055911237206");
Vymazáno : user_pref("CT1750559.RadioStationName", "1.FM%20Dance");
Vymazáno : user_pref("CT1750559.RadioStationURL", "hxxp://dance.1.fm/energydance128k?MSWMExt=.asf");
Vymazáno : user_pref("CT1750559.SHRINK_TOOLBAR", 1);
Vymazáno : user_pref("CT1750559.SavedHomepage", "www.seznam.cz");
Vymazáno : user_pref("CT1750559.SearchEngine", "Search||hxxp://search.conduit.com/Results.aspx?q=UCM_SEARCH_TER[...]
Vymazáno : user_pref("CT1750559.SearchFromAddressBarIsInit", true);
Vymazáno : user_pref("CT1750559.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT175[...]
Vymazáno : user_pref("CT1750559.SearchInNewTabEnabled", true);
Vymazáno : user_pref("CT1750559.SearchInNewTabIntervalMM", 1440);
Vymazáno : user_pref("CT1750559.SearchInNewTabLastCheckTime", "Thu Apr 28 2011 19:17:49 GMT+0200");
Vymazáno : user_pref("CT1750559.SearchInNewTabServiceUrl", "hxxp://newtab.conduit-hosting.com/newtab/?ctid=EB_T[...]
Vymazáno : user_pref("CT1750559.SearchInNewTabUsageUrl", "hxxp://Usage.Hosting.conduit-services.com/UsageServic[...]
Vymazáno : user_pref("CT1750559.SettingsCheckIntervalMin", 120);
Vymazáno : user_pref("CT1750559.SettingsLastCheckTime", "Thu Apr 28 2011 19:17:47 GMT+0200");
Vymazáno : user_pref("CT1750559.SettingsLastUpdate", "1302854560");
Vymazáno : user_pref("CT1750559.ThirdPartyComponentsInterval", 504);
Vymazáno : user_pref("CT1750559.ThirdPartyComponentsLastCheck", "Thu Apr 28 2011 19:17:47 GMT+0200");
Vymazáno : user_pref("CT1750559.ThirdPartyComponentsLastUpdate", "1246786978");
Vymazáno : user_pref("CT1750559.TrusteLinkUrl", "hxxp://trust.conduit.com/EB_ORIGINAL_CTID");
Vymazáno : user_pref("CT1750559.UserID", "UN15234199655916736");
Vymazáno : user_pref("CT1750559.ValidationData_Toolbar", 2);
Vymazáno : user_pref("CT1750559.WeatherNetwork", "");
Vymazáno : user_pref("CT1750559.WeatherPollDate", "Thu Apr 28 2011 19:17:52 GMT+0200");
Vymazáno : user_pref("CT1750559.WeatherUnit", "C");
Vymazáno : user_pref("CT1750559.alertChannelId", "31130");
Vymazáno : user_pref("CT1750559.backendstorage.hxxp://cmg1_conduit-widgets_com/pitsi.state", "4F50454E");
Vymazáno : user_pref("CT1750559.clientLogIsEnabled", false);
Vymazáno : user_pref("CT1750559.clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.asm[...]
Vymazáno : user_pref("CT1750559.myStuffEnabled", true);
Vymazáno : user_pref("CT1750559.myStuffPublihserMinWidth", 400);
Vymazáno : user_pref("CT1750559.myStuffSearchUrl", "hxxp://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOr[...]
Vymazáno : user_pref("CT1750559.myStuffServiceIntervalMM", 1440);
Vymazáno : user_pref("CT1750559.myStuffServiceUrl", "hxxp://mystuff.conduit-services.com/MyStuffService.ashx?Co[...]
Vymazáno : user_pref("CT1750559.uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/Reg[...]
Vymazáno : user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "chrome://browser-region/locale/region.pr[...]
Vymazáno : user_pref("CommunityToolbar.ToolbarsList", "CT1750559");
Vymazáno : user_pref("CommunityToolbar.ToolbarsList2", "CT1750559");
Vymazáno : user_pref("CommunityToolbar.facebook.settingsLastCheckTime", "Thu Apr 28 2011 19:17:49 GMT+0200");
Vymazáno : user_pref("CommunityToolbar.keywordURLSelectedCTID", "CT1750559");
Vymazáno : user_pref("browser.search.defaultthis.engineName", "BS Player Customized Web Search");
Vymazáno : user_pref("browser.search.defaulturl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT1750559&Sea[...]
Vymazáno : user_pref("browser.search.selectedEngine", "BS Player Customized Web Search");
Vymazáno : user_pref("keyword.URL", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT1750559&q=");
Vymazáno : user_pref("browser.newtab.url", "hxxp://mystart.incredibar.com/mb128?a=6OyKkjwo9M&loc=FF_NT");user_p[...]
Soubor : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\5hmbs2yj.default\prefs.js
C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\5hmbs2yj.default\user.js ... Vymazáno !
Vymazáno : user_pref("browser.newtab.url", "hxxp://mystart.incredibar.com/mb128?a=6OyKkjwo9M&loc=FF_NT");user_p[...]
Soubor : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\9dmbk278.default\prefs.js
C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\9dmbk278.default\user.js ... Vymazáno !
Vymazáno : user_pref("browser.newtab.url", "hxxp://mystart.incredibar.com/mb128?a=6OyKkjwo9M&loc=FF_NT");user_p[...]
Soubor : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\od3412mv.default\prefs.js
C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\od3412mv.default\user.js ... Vymazáno !
Vymazáno : user_pref("browser.search.defaultengine", "Ask.com");
Vymazáno : user_pref("browser.search.defaultenginename", "Ask.com");
Vymazáno : user_pref("browser.search.order.1", "Ask.com");
Vymazáno : user_pref("browser.search.selectedEngine", "Ask.com");
Vymazáno : user_pref("extensions.asktb.cbid", "QR");
Vymazáno : user_pref("extensions.asktb.crumb", "2010.12.01+09.25.40-toolbar002iad-CZ-UHJhZ3VlLEN6ZWNoIFJlcHVibG[...]
Vymazáno : user_pref("extensions.asktb.default-channel-url-mask", "hxxp://www.ask.com/web?q={query}&o={o}&l={l}[...]
Vymazáno : user_pref("extensions.asktb.dtid", "YYYYYYYYCZ");
Vymazáno : user_pref("extensions.asktb.fresh-install", false);
Vymazáno : user_pref("extensions.asktb.l", "dis");
Vymazáno : user_pref("extensions.asktb.last-config-req", "1297789640483");
Vymazáno : user_pref("extensions.asktb.locale", "en_US");
Vymazáno : user_pref("extensions.asktb.o", "16205");
Vymazáno : user_pref("extensions.asktb.overlay-reloaded-using-restart", true);
Vymazáno : user_pref("extensions.asktb.qsrc", "2871");
Vymazáno : user_pref("extensions.asktb.r", "3");
Vymazáno : user_pref("extensions.asktb.search-plugin-suggestions-url", "hxxp://ss.websearch.ask.com/query?qsrc=[...]
Vymazáno : user_pref("extensions.asktb.search-suggestions-enabled", true);
Vymazáno : user_pref("icqtoolbar.allowSendURL", false);
Vymazáno : user_pref("icqtoolbar.engineVerified", false);
Vymazáno : user_pref("icqtoolbar.hiddenElements", "itb_options");
Vymazáno : user_pref("icqtoolbar.installTime", "1288727407");
Vymazáno : user_pref("icqtoolbar.newtab_state", "1");
Vymazáno : user_pref("icqtoolbar.numberOfSearches", 0);
Vymazáno : user_pref("icqtoolbar.previousFFVersion", "3.6.12");
Vymazáno : user_pref("icqtoolbar.skip_default_search", "no");
Vymazáno : user_pref("icqtoolbar.suggestions", false);
Vymazáno : user_pref("icqtoolbar.uninstStatSent", true);
Vymazáno : user_pref("icqtoolbar.uniqueID", "128870542612887058801288727407313");
Vymazáno : user_pref("icqtoolbar.usageStatstTimestamp", 1288814053);
Vymazáno : user_pref("icqtoolbar.voucherHideClicks", 0);
Vymazáno : user_pref("icqtoolbar.voucherMoreLinkClicks", 0);
Vymazáno : user_pref("icqtoolbar.voucherRedeemClicks", 0);
Vymazáno : user_pref("icqtoolbar.voucherWasShown", 0);
Vymazáno : user_pref("icqtoolbar.xmlEnableSuggestions", false);
Vymazáno : user_pref("icqtoolbar.xmlLanguage", "cs");
Vymazáno : user_pref("keyword.URL", "hxxp://websearch.ask.com/redirect?client=ff&src=kw&tb=CDS&o=16205&locale=e[...]
Vymazáno : user_pref("browser.newtab.url", "hxxp://mystart.incredibar.com/mb128?a=6OyKkjwo9M&loc=FF_NT");user_p[...]
Soubor : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\s274s0yb.default\prefs.js
C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\s274s0yb.default\user.js ... Vymazáno !
Vymazáno : user_pref("browser.newtab.url", "hxxp://mystart.incredibar.com/mb128?a=6OyKkjwo9M&loc=FF_NT");user_p[...]
Soubor : C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\uzgpurg2.default\prefs.js
C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\uzgpurg2.default\user.js ... Vymazáno !
Vymazáno : user_pref("CT2481032.1000082.isDisplayHidden", "true");
Vymazáno : user_pref("CT2481032.1000082.state", "{\"state\":\"stopped\",\"text\":\"Californi...\",\"description[...]
Vymazáno : user_pref("CT2481032.CBOpenMAMSettings.enc", "MA==");
Vymazáno : user_pref("CT2481032.ENABALE_HISTORY", "{\"dataType\":\"string\",\"data\":\"true\"}");
Vymazáno : user_pref("CT2481032.ENABLE_RETURN_WEB_SEARCH_ON_THE_PAGE", "{\"dataType\":\"string\",\"data\":\"tru[...]
Vymazáno : user_pref("CT2481032.FirstTime", "true");
Vymazáno : user_pref("CT2481032.FirstTimeFF3", "true");
Vymazáno : user_pref("CT2481032.LoginRevertSettingsEnabled", true);
Vymazáno : user_pref("CT2481032.UserID", "UN75412603070472550");
Vymazáno : user_pref("CT2481032.addressBarTakeOverEnabledInHidden", "true");
Vymazáno : user_pref("CT2481032.autoDisableScopes", 14);
Vymazáno : user_pref("CT2481032.cb_experience_000.enc", "MQ==");
Vymazáno : user_pref("CT2481032.cb_firstuse0100.enc", "MQ==");
Vymazáno : user_pref("CT2481032.cbcountry_001.enc", "Q1o=");
Vymazáno : user_pref("CT2481032.cbfirsttime.enc", "VHVlIE5vdiAyNyAyMDEyIDIwOjQ2OjU2IEdNVCswMTAw");
Vymazáno : user_pref("CT2481032.defaultSearch", "false");
Vymazáno : user_pref("CT2481032.enableAlerts", "false");
Vymazáno : user_pref("CT2481032.enableFix404ByUser", "FALSE");
Vymazáno : user_pref("CT2481032.enableSearchFromAddressBar", "false");
Vymazáno : user_pref("CT2481032.firstTimeDialogOpened", "true");
Vymazáno : user_pref("CT2481032.fixPageNotFoundError", "true");
Vymazáno : user_pref("CT2481032.fixPageNotFoundErrorByUser", "true");
Vymazáno : user_pref("CT2481032.fixPageNotFoundErrorInHidden", "true");
Vymazáno : user_pref("CT2481032.fixUrls", true);
Vymazáno : user_pref("CT2481032.hxxp___www_socialgrowthtechnologies_com_couponbuddy_v001.APP_WIN_FEATURES.enc",[...]
Vymazáno : user_pref("CT2481032.installId", "conduitnsisintegration");
Vymazáno : user_pref("CT2481032.installType", "conduitnsisintegration");
Vymazáno : user_pref("CT2481032.isCheckedStartAsHidden", true);
Vymazáno : user_pref("CT2481032.isEnableAllDialogs", "{\"dataType\":\"string\",\"data\":\"true\"}");
Vymazáno : user_pref("CT2481032.isFirstTimeToolbarLoading", "false");
Vymazáno : user_pref("CT2481032.isNewTabEnabled", false);
Vymazáno : user_pref("CT2481032.isPerformedSmartBarTransition", "true");
Vymazáno : user_pref("CT2481032.isToolbarShrinked", "{\"dataType\":\"string\",\"data\":\"false\"}");
Vymazáno : user_pref("CT2481032.lastNewTabSettings", "{\"isEnabled\":false,\"newTabUrl\":\"hxxp://search.condui[...]
Vymazáno : user_pref("CT2481032.lastVersion", "10.15.2.523");
Vymazáno : user_pref("CT2481032.migrateAppsAndComponents", true);
Vymazáno : user_pref("CT2481032.navigationAliasesJson", "{\"EB_SEARCH_TERM\":\"\",\"EB_MAIN_FRAME_URL\":\"hxxp%[...]
Vymazáno : user_pref("CT2481032.openThankYouPage", "false");
Vymazáno : user_pref("CT2481032.openUninstallPage", "false");
Vymazáno : user_pref("CT2481032.price-gong.bornDate", "{\"dataType\":\"string\",\"data\":\"{\\\"Response\\\":\\[...]
Vymazáno : user_pref("CT2481032.price-gong.isManagedApp", "true");
Vymazáno : user_pref("CT2481032.revertSettingsEnabled", "false");
Vymazáno : user_pref("CT2481032.search.searchAppId", "129058858240125318");
Vymazáno : user_pref("CT2481032.search.searchCount", "0");
Vymazáno : user_pref("CT2481032.searchInNewTabEnabled", "false");
Vymazáno : user_pref("CT2481032.searchInNewTabEnabledByUser", "false");
Vymazáno : user_pref("CT2481032.searchInNewTabEnabledInHidden", "true");
Vymazáno : user_pref("CT2481032.selectToSearchBoxEnabled", "{\"dataType\":\"string\",\"data\":\"true\"}");
Vymazáno : user_pref("CT2481032.serviceLayer_service_login_isFirstLoginInvoked", "{\"dataType\":\"boolean\",\"d[...]
Vymazáno : user_pref("CT2481032.serviceLayer_service_login_loginCount", "{\"dataType\":\"number\",\"data\":\"4\[...]
Vymazáno : user_pref("CT2481032.serviceLayer_service_toolbarGrouping_activeCTID", "{\"dataType\":\"string\",\"d[...]
Vymazáno : user_pref("CT2481032.serviceLayer_service_toolbarGrouping_activeDownloadUrl", "{\"dataType\":\"strin[...]
Vymazáno : user_pref("CT2481032.serviceLayer_service_toolbarGrouping_activeToolbarName", "{\"dataType\":\"strin[...]
Vymazáno : user_pref("CT2481032.serviceLayer_service_toolbarGrouping_invoked", "{\"dataType\":\"string\",\"data[...]
Vymazáno : user_pref("CT2481032.serviceLayer_services_app.twitter.user-cnet_lastUpdate", "1354651751436");
Vymazáno : user_pref("CT2481032.serviceLayer_services_app.twitter.user-cnnbrk_lastUpdate", "1354651751577");
Vymazáno : user_pref("CT2481032.serviceLayer_services_app.twitter.user-computeractive_lastUpdate", "13546517517[...]
Vymazáno : user_pref("CT2481032.serviceLayer_services_app.twitter.user-dailymirror_lastUpdate", "1354651751653"[...]
Vymazáno : user_pref("CT2481032.serviceLayer_services_app.twitter.user-google_lastUpdate", "1354651751619");
Vymazáno : user_pref("CT2481032.serviceLayer_services_app.twitter.user-techcrunch_lastUpdate", "1354651751374")[...]
Vymazáno : user_pref("CT2481032.serviceLayer_services_app.twitter.user-thesun_news_lastUpdate", "1354651751640"[...]
Vymazáno : user_pref("CT2481032.serviceLayer_services_app.twitter.user-wired_lastUpdate", "1354651751729");
Vymazáno : user_pref("CT2481032.serviceLayer_services_appTrackingFirstTime_lastUpdate", "1354045607196");
Vymazáno : user_pref("CT2481032.serviceLayer_services_appsMetadata_lastUpdate", "1354651746537");
Vymazáno : user_pref("CT2481032.serviceLayer_services_gottenAppsContextMenu_lastUpdate", "1354045608432");
Vymazáno : user_pref("CT2481032.serviceLayer_services_location_lastUpdate", "1369247005199");
Vymazáno : user_pref("CT2481032.serviceLayer_services_login_10.13.40.15_lastUpdate", "1359283103293");
Vymazáno : user_pref("CT2481032.serviceLayer_services_login_10.14.42.7_lastUpdate", "1362516737676");
Vymazáno : user_pref("CT2481032.serviceLayer_services_login_10.14.65.43_lastUpdate", "1366033249087");
Vymazáno : user_pref("CT2481032.serviceLayer_services_login_10.15.0.562_lastUpdate", "1366532718643");
Vymazáno : user_pref("CT2481032.serviceLayer_services_login_10.15.2.523_lastUpdate", "1369246963150");
Vymazáno : user_pref("CT2481032.serviceLayer_services_otherAppsContextMenu_lastUpdate", "1354045607905");
Vymazáno : user_pref("CT2481032.serviceLayer_services_searchAPI_lastUpdate", "1354651746795");
Vymazáno : user_pref("CT2481032.serviceLayer_services_serviceMap_lastUpdate", "1369247005196");
Vymazáno : user_pref("CT2481032.serviceLayer_services_toolbarContextMenu_lastUpdate", "1354045608386");
Vymazáno : user_pref("CT2481032.serviceLayer_services_toolbarSettings_lastUpdate", "1369247005198");
Vymazáno : user_pref("CT2481032.serviceLayer_services_translation_lastUpdate", "1369247005197");
Vymazáno : user_pref("CT2481032.serviceLayer_services_userApps1ec55dac-8dca-406b-9697-5d68893c1c0c_lastUpdate",[...]
Vymazáno : user_pref("CT2481032.serviceLayer_services_userApps_lastUpdate", "1354045640991");
Vymazáno : user_pref("CT2481032.settingsINI", true);
Vymazáno : user_pref("CT2481032.shouldFirstTimeDialog", "false");
Vymazáno : user_pref("CT2481032.showToolbarPermission", "false");
Vymazáno : user_pref("CT2481032.smartbar.CTID", "CT2481032");
Vymazáno : user_pref("CT2481032.smartbar.Uninstall", "0");
Vymazáno : user_pref("CT2481032.smartbar.isHidden", true);
Vymazáno : user_pref("CT2481032.smartbar.toolbarName", "Ashampoo US ");
Vymazáno : user_pref("CT2481032.startPage", "false");
Vymazáno : user_pref("CT2481032.toolbarBornServerTime", "27-11-2012");
Vymazáno : user_pref("CT2481032.toolbarCurrentServerTime", "22-5-2013");
Vymazáno : user_pref("CT2481032.toolbarLoginClientTime", "Tue Apr 16 2013 20:53:27 GMT+0200");
Vymazáno : user_pref("CT2481032.url_history0001.enc", "aHR0cDovL3d3dy5zc2hzb3BhdmEuY3ovaXNhcy9wcnViZXpuYS1rbGFz[...]
Vymazáno : user_pref("CT2481032_Firefox.csv", "[{\"from\":\"Abs Layer\",\"action\":\"loading toolbar\",\"time\"[...]
Vymazáno : user_pref("CT3220468.BT_Stats", "{\"last_log\":1348927710,\"uuid\":157883722652164,\"seq_id\":1,\"ss[...]
Vymazáno : user_pref("CT3220468.ENABALE_HISTORY", "{\"dataType\":\"string\",\"data\":\"true\"}");
Vymazáno : user_pref("CT3220468.ENABLE_RETURN_WEB_SEARCH_ON_THE_PAGE", "{\"dataType\":\"string\",\"data\":\"tru[...]
Vymazáno : user_pref("CT3220468.FirstTime", "true");
Vymazáno : user_pref("CT3220468.FirstTimeFF3", "true");
Vymazáno : user_pref("CT3220468.LoginRevertSettingsEnabled", true);
Vymazáno : user_pref("CT3220468.RevertSettingsEnabled", true);
Vymazáno : user_pref("CT3220468.UserID", "UN92059843445263539");
Vymazáno : user_pref("CT3220468.addressBarTakeOverEnabledInHidden", "true");
Vymazáno : user_pref("CT3220468.autoDisableScopes", 14);
Vymazáno : user_pref("CT3220468.cbfirsttime", "Sat Sep 29 2012 16:08:29 GMT+0200");
Vymazáno : user_pref("CT3220468.defaultSearch", "FALSE");
Vymazáno : user_pref("CT3220468.enableAlerts", "always");
Vymazáno : user_pref("CT3220468.enableFix404ByUser", "FALSE");
Vymazáno : user_pref("CT3220468.enableSearchFromAddressBar", "FALSE");
Vymazáno : user_pref("CT3220468.firstTimeDialogOpened", "true");
Vymazáno : user_pref("CT3220468.fixPageNotFoundError", "true");
Vymazáno : user_pref("CT3220468.fixPageNotFoundErrorByUser", "true");
Vymazáno : user_pref("CT3220468.fixPageNotFoundErrorInHidden", "true");
Vymazáno : user_pref("CT3220468.fixUrls", true);
Vymazáno : user_pref("CT3220468.installId", "fft6711.tmp.exe");
Vymazáno : user_pref("CT3220468.installType", "XPE");
Vymazáno : user_pref("CT3220468.isCheckedStartAsHidden", true);
Vymazáno : user_pref("CT3220468.isEnableAllDialogs", "{\"dataType\":\"string\",\"data\":\"true\"}");
Vymazáno : user_pref("CT3220468.isFirstTimeToolbarLoading", "false");
Vymazáno : user_pref("CT3220468.isNewTabEnabled", true);
Vymazáno : user_pref("CT3220468.isPerformedSmartBarTransition", "true");
Vymazáno : user_pref("CT3220468.isToolbarShrinked", "{\"dataType\":\"string\",\"data\":\"false\"}");
Vymazáno : user_pref("CT3220468.isWelcomPage", "{\"dataType\":\"boolean\",\"data\":\"true\"}");
Vymazáno : user_pref("CT3220468.lastNewTabSettings", "{\"isEnabled\":true,\"newTabUrl\":\"hxxp://search.conduit[...]
Vymazáno : user_pref("CT3220468.lastVersion", "10.16.2.509");
Vymazáno : user_pref("CT3220468.migrateAppsAndComponents", true);
Vymazáno : user_pref("CT3220468.navigationAliasesJson", "{\"EB_SEARCH_TERM\":\"\",\"EB_MAIN_FRAME_URL\":\"hxxp%[...]
Vymazáno : user_pref("CT3220468.openThankYouPage", "true");
Vymazáno : user_pref("CT3220468.openUninstallPage", "FALSE");
Vymazáno : user_pref("CT3220468.search.searchAppId", "129813684258939747");
Vymazáno : user_pref("CT3220468.search.searchCount", "0");
Vymazáno : user_pref("CT3220468.searchInNewTabEnabledByUser", "true");
Vymazáno : user_pref("CT3220468.searchInNewTabEnabledInHidden", "true");
Vymazáno : user_pref("CT3220468.selectToSearchBoxEnabled", "{\"dataType\":\"string\",\"data\":\"true\"}");
Vymazáno : user_pref("CT3220468.serviceLayer_service_login_isFirstLoginInvoked", "{\"dataType\":\"boolean\",\"d[...]
Vymazáno : user_pref("CT3220468.serviceLayer_service_login_loginCount", "{\"dataType\":\"number\",\"data\":\"4\[...]
Vymazáno : user_pref("CT3220468.serviceLayer_service_toolbarGrouping_activeCTID", "{\"dataType\":\"string\",\"d[...]
Vymazáno : user_pref("CT3220468.serviceLayer_service_toolbarGrouping_activeDownloadUrl", "{\"dataType\":\"strin[...]
Vymazáno : user_pref("CT3220468.serviceLayer_service_toolbarGrouping_activeToolbarName", "{\"dataType\":\"strin[...]
Vymazáno : user_pref("CT3220468.serviceLayer_service_toolbarGrouping_invoked", "{\"dataType\":\"string\",\"data[...]
Vymazáno : user_pref("CT3220468.serviceLayer_service_usage_toolbarUsageCount", "{\"dataType\":\"number\",\"data[...]
Vymazáno : user_pref("CT3220468.serviceLayer_services_appTrackingFirstTime_lastUpdate", "1348927697889");
Vymazáno : user_pref("CT3220468.serviceLayer_services_appsMetadata_lastUpdate", "1348927697682");
Vymazáno : user_pref("CT3220468.serviceLayer_services_gottenAppsContextMenu_lastUpdate", "1348927698881");
Vymazáno : user_pref("CT3220468.serviceLayer_services_location_lastUpdate", "1369247005202");
Vymazáno : user_pref("CT3220468.serviceLayer_services_login_10.10.27.6_lastUpdate", "1352999678654");
Vymazáno : user_pref("CT3220468.serviceLayer_services_login_10.13.40.15_lastUpdate", "1359283104158");
Vymazáno : user_pref("CT3220468.serviceLayer_services_login_10.14.370.524_lastUpdate", "1366033298693");
Vymazáno : user_pref("CT3220468.serviceLayer_services_login_10.14.40.128_lastUpdate", "1362516735193");
Vymazáno : user_pref("CT3220468.serviceLayer_services_login_10.14.65.43_lastUpdate", "1363554851306");
Vymazáno : user_pref("CT3220468.serviceLayer_services_login_10.15.0.562_lastUpdate", "1369246962905");
Vymazáno : user_pref("CT3220468.serviceLayer_services_login_10.16.2.509_lastUpdate", "1369253499220");
Vymazáno : user_pref("CT3220468.serviceLayer_services_otherAppsContextMenu_lastUpdate", "1348927698841");
Vymazáno : user_pref("CT3220468.serviceLayer_services_searchAPI_lastUpdate", "1348927697133");
Vymazáno : user_pref("CT3220468.serviceLayer_services_serviceMap_lastUpdate", "1369247005200");
Vymazáno : user_pref("CT3220468.serviceLayer_services_toolbarContextMenu_lastUpdate", "1348927698802");
Vymazáno : user_pref("CT3220468.serviceLayer_services_toolbarSettings_lastUpdate", "1369247005202");
Vymazáno : user_pref("CT3220468.serviceLayer_services_translation_lastUpdate", "1369247005201");
Vymazáno : user_pref("CT3220468.settingsINI", true);
Vymazáno : user_pref("CT3220468.shouldFirstTimeDialog", "false");
Vymazáno : user_pref("CT3220468.showToolbarPermission", "false");
Vymazáno : user_pref("CT3220468.smartbar.CTID", "CT3220468");
Vymazáno : user_pref("CT3220468.smartbar.Uninstall", "0");
Vymazáno : user_pref("CT3220468.smartbar.isHidden", true);
Vymazáno : user_pref("CT3220468.smartbar.toolbarName", "uTorrentControl_v2 ");
Vymazáno : user_pref("CT3220468.startPage", "userChanged");
Vymazáno : user_pref("CT3220468.toolbarBornServerTime", "29-9-2012");
Vymazáno : user_pref("CT3220468.toolbarCurrentServerTime", "22-5-2013");
Vymazáno : user_pref("CT3220468.toolbarLoginClientTime", "Tue Mar 19 2013 20:49:51 GMT+0100");
Vymazáno : user_pref("CT3220468.upgradeFromClearSBVersion", true);
Vymazáno : user_pref("CT3220468_Firefox.csv", "[{\"from\":\"Abs Layer\",\"action\":\"loading toolbar\",\"time\"[...]
Vymazáno : user_pref("avg.install.userHPSettings", "hxxp://www1.delta-search.com/?affID=119816&babsrc=HP_ss&mnt[...]
Vymazáno : user_pref("avg.install.userSPSettings", "Delta Search");
Vymazáno : user_pref("browser.newtab.url", "hxxp://www1.delta-search.com/?affID=119816&babsrc=NT_ss&mntrId=4E61[...]
Vymazáno : user_pref("browser.search.selectedEngine", "Delta Search");
Vymazáno : user_pref("browser.startup.homepage", "hxxp://www1.delta-search.com/?affID=119816&babsrc=HP_ss&mntrI[...]
Vymazáno : user_pref("extensions.BabylonToolbar.admin", false);
Vymazáno : user_pref("extensions.BabylonToolbar.aflt", "babsst");
Vymazáno : user_pref("extensions.BabylonToolbar.dfltLng", "en");
Vymazáno : user_pref("extensions.BabylonToolbar.excTlbr", false);
Vymazáno : user_pref("extensions.BabylonToolbar.id", "4e614cce00000000000076f1a142e774");
Vymazáno : user_pref("extensions.BabylonToolbar.instlDay", "15565");
Vymazáno : user_pref("extensions.BabylonToolbar.instlRef", "sst");
Vymazáno : user_pref("extensions.BabylonToolbar.prdct", "BabylonToolbar");
Vymazáno : user_pref("extensions.BabylonToolbar.prtnrId", "babylon");
Vymazáno : user_pref("extensions.BabylonToolbar.tlbrId", "base");
Vymazáno : user_pref("extensions.BabylonToolbar.tlbrSrchUrl", "hxxp://www.google.com/search?babsrc=TB_ggl&q=");
Vymazáno : user_pref("extensions.BabylonToolbar.vrsn", "1.6.4.6");
Vymazáno : user_pref("extensions.BabylonToolbar.vrsni", "1.6.4.6");
Vymazáno : user_pref("extensions.BabylonToolbar_i.babExt", "");
Vymazáno : user_pref("extensions.BabylonToolbar_i.babTrack", "affID=112059&tt=120812_bandext_3312_7");
Vymazáno : user_pref("extensions.BabylonToolbar_i.newTab", true);
Vymazáno : user_pref("extensions.BabylonToolbar_i.newTabUrl", "hxxp://search.babylon.com/?affID=112059&tt=12081[...]
Vymazáno : user_pref("extensions.BabylonToolbar_i.smplGrp", "none");
Vymazáno : user_pref("extensions.BabylonToolbar_i.srcExt", "ss");
Vymazáno : user_pref("extensions.BabylonToolbar_i.vrsnTs", "1.6.4.619:03:48");
Vymazáno : user_pref("extensions.incredibar.admin", false);
Vymazáno : user_pref("extensions.incredibar.aflt", "orgnl");
Vymazáno : user_pref("extensions.incredibar.cntry", "CZ");
Vymazáno : user_pref("extensions.incredibar.dfltLng", "");
Vymazáno : user_pref("extensions.incredibar.dfltSrch", false);
Vymazáno : user_pref("extensions.incredibar.did", "10658");
Vymazáno : user_pref("extensions.incredibar.envrmnt", "production");
Vymazáno : user_pref("extensions.incredibar.excTlbr", false);
Vymazáno : user_pref("extensions.incredibar.hdrMd5", "56B95DE1EDE995C4384A7AF67E0AF2A8");
Vymazáno : user_pref("extensions.incredibar.hmpg", false);
Vymazáno : user_pref("extensions.incredibar.id", "4e614cce00000000000076f1a142e774");
Vymazáno : user_pref("extensions.incredibar.installerproductid", "26");
Vymazáno : user_pref("extensions.incredibar.instlDay", "15559");
Vymazáno : user_pref("extensions.incredibar.instlRef", "");
Vymazáno : user_pref("extensions.incredibar.isDcmntCmplt", true);
Vymazáno : user_pref("extensions.incredibar.lastVrsnTs", "1.5.11.1419:22:44");
Vymazáno : user_pref("extensions.incredibar.mntrvrsn", "1.2.0");
Vymazáno : user_pref("extensions.incredibar.newTab", false);
Vymazáno : user_pref("extensions.incredibar.noFFXTlbr", false);
Vymazáno : user_pref("extensions.incredibar.ppd", "");
Vymazáno : user_pref("extensions.incredibar.prdct", "incredibar");
Vymazáno : user_pref("extensions.incredibar.productid", "26");
Vymazáno : user_pref("extensions.incredibar.prtnrId", "Incredibar");
Vymazáno : user_pref("extensions.incredibar.sg", "none");
Vymazáno : user_pref("extensions.incredibar.smplGrp", "none");
Vymazáno : user_pref("extensions.incredibar.tlbrId", "base");
Vymazáno : user_pref("extensions.incredibar.tlbrSrchUrl", "hxxp://mystart.Incredibar.com/?a=6OyKkjwo9M&loc=IB_T[...]
Vymazáno : user_pref("extensions.incredibar.upn2", "6OyKkjwo9M");
Vymazáno : user_pref("extensions.incredibar.upn2n", "92261890875400430");
Vymazáno : user_pref("extensions.incredibar.vrsn", "1.5.11.14");
Vymazáno : user_pref("extensions.incredibar.vrsnTs", "1.5.11.1419:22:44");
Vymazáno : user_pref("extensions.incredibar.vrsni", "1.5.11.14");
Vymazáno : user_pref("extensions.incredibar_i.aflt", "orgnl");
Vymazáno : user_pref("extensions.incredibar_i.dfltLng", "");
Vymazáno : user_pref("extensions.incredibar_i.did", "10658");
Vymazáno : user_pref("extensions.incredibar_i.excTlbr", false);
Vymazáno : user_pref("extensions.incredibar_i.id", "4e614cce00000000000076f1a142e774");
Vymazáno : user_pref("extensions.incredibar_i.installerproductid", "26");
Vymazáno : user_pref("extensions.incredibar_i.instlDay", "15559");
Vymazáno : user_pref("extensions.incredibar_i.instlRef", "");
Vymazáno : user_pref("extensions.incredibar_i.ms_url_id", "");
Vymazáno : user_pref("extensions.incredibar_i.newTab", false);
Vymazáno : user_pref("extensions.incredibar_i.ppd", "");
Vymazáno : user_pref("extensions.incredibar_i.prdct", "incredibar");
Vymazáno : user_pref("extensions.incredibar_i.productid", "26");
Vymazáno : user_pref("extensions.incredibar_i.prtnrId", "Incredibar");
Vymazáno : user_pref("extensions.incredibar_i.smplGrp", "none");
Vymazáno : user_pref("extensions.incredibar_i.tlbrId", "base");
Vymazáno : user_pref("extensions.incredibar_i.tlbrSrchUrl", "hxxp://mystart.Incredibar.com/?a=6OyKkjwo9M&loc=IB[...]
Vymazáno : user_pref("extensions.incredibar_i.upn2", "6OyKkjwo9M");
Vymazáno : user_pref("extensions.incredibar_i.upn2n", "92261890875400430");
Vymazáno : user_pref("extensions.incredibar_i.vrsn", "1.5.11.14");
Vymazáno : user_pref("extensions.incredibar_i.vrsnTs", "1.5.11.1419:22:44");
Vymazáno : user_pref("extensions.incredibar_i.vrsni", "1.5.11.14");
Vymazáno : user_pref("extentions.y2layers.defaultEnableAppsList", "bestvideodownloader,ezLooker,pagerage,buzzdo[...]
Vymazáno : user_pref("extentions.y2layers.installId", "c02629a4-85cd-4f38-ba4b-bb84a0dd7db9");
Vymazáno : user_pref("keyword.URL", "hxxp://eu.ask.com/web?l=dis&o=APN10089&gct=kwd&qsrc=2869&apn_dtid=^PFM004^[...]
Vymazáno : user_pref("smartBar.searchInNewTabOwner", "CT3220468");
Vymazáno : user_pref("smartbar.machineId", "ZOJJT5QCLWUOAKVUIKV+KSLE2FZLN9JRD/MPDX6OHQFBQ5VQ6JEQJWNHCLOVXLIAIKJ[...]
Vymazáno : user_pref("sweetim.toolbar.urls.homepage", "hxxp://search.babylon.com/?affID=112059&tt=120812_bandex[...]
Vymazáno : user_pref("{336D0C35-8A85-403a-B9D2-65C292C39087}.ScriptData_WSG_whiteList", "{\"search.babylon.com\[...]
-\\ Google Chrome v27.0.1453.94
Soubor : C:\Users\Renata\AppData\Local\Google\Chrome\User Data\Default\Preferences
Vymazáno [l.2477] : homepage = "hxxp://www1.delta-search.com/?affID=119816&babsrc=HP_ss&mntrId=4E6176F1A142E774",
Vymazáno [l.2857] : urls_to_restore_on_startup = [ "hxxp://www1.delta-search.com/?affID=119816&babsrc=HP_ss&mntrI[...]
*************************
AdwCleaner[R1].txt - [46382 octets] - [31/05/2013 22:20:58]
AdwCleaner[R2].txt - [46443 octets] - [31/05/2013 22:31:43]
AdwCleaner[S1].txt - [45547 octets] - [31/05/2013 22:32:21]
########## EOF - C:\AdwCleaner[S1].txt - [45608 octets] ##########
-
Rudy
- Site Admin
- Příspěvky: 119526
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu logu
Dejte nový log RSIT.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontrolu logu
Logfile of random's system information tool 1.09 (written by random/random)
Run by Renata at 2013-05-31 23:02:10
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 38 GB (38%) free of 100 GB
Total RAM: 3055 MB (60% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 23:02:16, on 31.5.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16576)
Boot mode: Normal
Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Program Files\Spyware Terminator\st_rsser.exe
C:\Windows\Explorer.EXE
C:\Windows\System32\rundll32.exe
C:\Program Files\Hewlett-Packard\HP HotKey Support\QLBController.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe
C:\Program Files\IDT\WDM\sttray.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\System32\StikyNot.exe
C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
c:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe
C:\Users\Renata\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Renata\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Renata\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Renata\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Users\Renata\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Main.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Hewlett-Packard\HP Support Framework\HPSF.exe
C:\Users\Renata\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Renata\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\Renata\Downloads\RSIT.exe
C:\Program Files\trend micro\Renata.exe
C:\Windows\system32\DllHost.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - - (no file)
R3 - URLSearchHook: (no name) - {fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - (no file)
R3 - URLSearchHook: (no name) - {7473b6bd-4691-4744-a82b-7854eb3d70b6} - (no file)
R3 - URLSearchHook: (no name) - {124d001a-bdcb-472f-aa59-bbe7e4bc3204} - (no file)
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [QLBController] C:\Program Files\Hewlett-Packard\HP HotKey Support\QLBController.exe /start
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [HPWirelessAssistant] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe 120 C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Main.exe /hidden
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Windows\system32\NeroCheck.exe
O4 - HKLM\..\Run: [MSC] "C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SpywareTerminatorShield] C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe
O4 - HKLM\..\Run: [SpywareTerminatorUpdater] C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe
O4 - HKLM\..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray.exe
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Google Update] "C:\Users\Renata\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [RESTART_STICKY_NOTES] C:\Windows\System32\StikyNot.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Global Startup: Bluetooth.lnk = ?
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: @C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: @c:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @c:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Program Files\IDT\WDM\aestsrv.exe
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - LSI Corporation - C:\Program Files\LSI SoftModem\agrsmsvc.exe
O23 - Service: AMD External Events Utility - AMD - C:\Windows\system32\atiesrxx.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - c:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: Device Error Recovery Service (dgdersvc) - Devguru Co., Ltd. - C:\Windows\system32\dgdersvc.exe
O23 - Service: FsUsbExService - Teruten - C:\Windows\system32\FsUsbExService.Exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Support Framework\hpsa_service.exe
O23 - Service: HP Wireless Assistant Service - Hewlett-Packard - C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
O23 - Service: HP Quick Synchronization Service (HPDrvMntSvc.exe) - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\Shared\HPDrvMntSvc.exe
O23 - Service: HP Hotkey Monitor (hpHotkeyMonitor) - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP HotKey Support\hpHotkeyMonitor.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: HP Service (hpsrv) - Hewlett-Packard Company - C:\Windows\system32\Hpservice.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: Spyware Terminator 2012 Realtime Shield Service (ST2012_Svc) - Crawler.com - C:\Program Files\Spyware Terminator\st_rsser.exe
O23 - Service: @%SystemRoot%\system32\stlang.dll,-10122 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV.exe
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
--
End of file - 10207 bytes
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3683041670-2158295546-2881036051-1000Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3683041670-2158295546-2881036051-1000UA.job
C:\Windows\tasks\HPCeeScheduleForRenata.job
=========Mozilla firefox=========
ProfilePath - C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\0e85her5.default
prefs.js - "browser.startup.homepage" - "www.seznam.cz"
prefs.js - "extensions.enabledItems" - "{ea614400-e918-4741-9a97-7a972ff7c30b}:2.0.10, {fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}:2.5.6.0, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.17"
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.7.700.202 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_11_7_700_202.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@google.com/npPicasa3,version=3.0.0]
"Description"=Picasa3 plugin
"Path"=C:\Program Files\Google\Picasa3\npPicasa3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=C:\Windows\system32\Wat\npWatWeb.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.145\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.145\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
C:\Program Files\Mozilla Firefox\extensions\
{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
{972ce4c6-7e08-4474-a285-3208198ce6fd}
C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll
C:\Program Files\Mozilla Firefox\plugins\
NPOFFICE.DLL
nppdf32.dll
C:\Program Files\Mozilla Firefox\searchplugins\
babylon.xml
google.xml
heureka-cz.xml
jyxo-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2011-10-10 3834016]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2012-07-09 351136]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2010-03-18 98304]
"QLBController"=C:\Program Files\Hewlett-Packard\HP HotKey Support\QLBController.exe [2010-01-04 254520]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-06-04 1791272]
"HPWirelessAssistant"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe [2009-12-16 8192]
"NeroFilterCheck"=C:\Windows\system32\NeroCheck.exe [2001-07-09 155648]
"MSC"=C:\Program Files\Microsoft Security Client\msseces.exe [2013-01-27 947152]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576]
"SpywareTerminatorShield"=C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe [2013-04-03 2777736]
"SpywareTerminatorUpdater"=C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe [2013-04-03 3684488]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray.exe [2013-05-30 495708]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"KiesTrayAgent"= []
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1174016]
"Google Update"=C:\Users\Renata\AppData\Local\Google\Update\GoogleUpdate.exe [2012-07-11 116648]
"RESTART_STICKY_NOTES"=C:\Windows\System32\StikyNot.exe [2009-07-14 354304]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"wave6"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer6"=wdmaud.drv
"vidc.VP60"=C:\Windows\system32\vp6vfw.dll
"vidc.VP61"=C:\Windows\system32\vp6vfw.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2013-05-31 23:02:10 ----D---- C:\rsit
2013-05-31 22:32:40 ----A---- C:\Windows\DeleteOnReboot.bat
2013-05-31 22:32:21 ----A---- C:\AdwCleaner[S1].txt
2013-05-31 22:31:43 ----A---- C:\AdwCleaner[R2].txt
2013-05-31 22:20:58 ----A---- C:\AdwCleaner[R1].txt
2013-05-31 20:43:29 ----D---- C:\Program Files\Trend Micro
2013-05-31 18:39:17 ----D---- C:\Program Files\CCleaner
2013-05-30 21:39:03 ----A---- C:\Windows\system32\drivers\atikmpag.sys
2013-05-30 21:39:03 ----A---- C:\Windows\system32\drivers\atikmdag.sys
2013-05-30 21:39:03 ----A---- C:\Windows\system32\drivers\ati2erec.dll
2013-05-30 21:39:03 ----A---- C:\Windows\system32\atitmmxx.dll
2013-05-30 21:39:03 ----A---- C:\Windows\system32\atipdlxx.dll
2013-05-30 21:39:03 ----A---- C:\Windows\system32\atipblag.dat
2013-05-30 21:39:03 ----A---- C:\Windows\system32\atioglxx.dll
2013-05-30 21:39:03 ----A---- C:\Windows\system32\atimuixx.dll
2013-05-30 21:39:03 ----A---- C:\Windows\system32\atimpc32.dll
2013-05-30 21:39:03 ----A---- C:\Windows\system32\atiicdxx.dat
2013-05-30 21:39:03 ----A---- C:\Windows\system32\atiglpxx.dll
2013-05-30 21:39:03 ----A---- C:\Windows\system32\atigktxx.dll
2013-05-30 21:39:03 ----A---- C:\Windows\system32\atiesrxx.exe
2013-05-30 21:39:03 ----A---- C:\Windows\system32\atieclxx.exe
2013-05-30 21:39:03 ----A---- C:\Windows\system32\ATIDEMGX.dll
2013-05-30 21:39:03 ----A---- C:\Windows\system32\aticalrt.dll
2013-05-30 21:39:03 ----A---- C:\Windows\system32\aticaldd.dll
2013-05-30 21:39:03 ----A---- C:\Windows\system32\aticalcl.dll
2013-05-30 21:39:03 ----A---- C:\Windows\system32\atiapfxx.exe
2013-05-30 21:39:03 ----A---- C:\Windows\system32\atiadlxx.dll
2013-05-30 21:39:03 ----A---- C:\Windows\system32\amdpcom32.dll
2013-05-30 21:39:02 ----A---- C:\Windows\system32\ati2edxx.dll
2013-05-30 20:32:48 ----A---- C:\Windows\system32\aestecap.dll
2013-05-30 20:32:48 ----A---- C:\Windows\system32\AESTCom.dll
2013-05-30 20:32:48 ----A---- C:\Windows\system32\aestaren.dll
2013-05-30 20:32:48 ----A---- C:\Windows\system32\aestacap.dll
2013-05-30 20:32:47 ----A---- C:\Windows\system32\stlang.dll
2013-05-30 20:32:47 ----A---- C:\Windows\sttray.exe
2013-05-30 20:32:25 ----A---- C:\Windows\system32\staco.dll
2013-05-26 22:20:57 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2013-05-26 22:20:57 ----A---- C:\Windows\system32\elshyph.dll
2013-05-26 22:20:56 ----A---- C:\Windows\system32\wininet.dll
2013-05-26 22:20:56 ----A---- C:\Windows\system32\wextract.exe
2013-05-26 22:20:56 ----A---- C:\Windows\system32\vbscript.dll
2013-05-26 22:20:56 ----A---- C:\Windows\system32\urlmon.dll
2013-05-26 22:20:56 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2013-05-26 22:20:56 ----A---- C:\Windows\system32\msrating.dll
2013-05-26 22:20:56 ----A---- C:\Windows\system32\msls31.dll
2013-05-26 22:20:56 ----A---- C:\Windows\system32\mshtmled.dll
2013-05-26 22:20:56 ----A---- C:\Windows\system32\msfeeds.dll
2013-05-26 22:20:56 ----A---- C:\Windows\system32\jsproxy.dll
2013-05-26 22:20:56 ----A---- C:\Windows\system32\inseng.dll
2013-05-26 22:20:56 ----A---- C:\Windows\system32\iexpress.exe
2013-05-26 22:20:56 ----A---- C:\Windows\system32\iertutil.dll
2013-05-26 22:20:55 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2013-05-26 22:20:55 ----A---- C:\Windows\system32\pngfilt.dll
2013-05-26 22:20:55 ----A---- C:\Windows\system32\occache.dll
2013-05-26 22:20:55 ----A---- C:\Windows\system32\mshtmler.dll
2013-05-26 22:20:55 ----A---- C:\Windows\system32\mshtml.dll
2013-05-26 22:20:55 ----A---- C:\Windows\system32\mshta.exe
2013-05-26 22:20:55 ----A---- C:\Windows\system32\msfeedssync.exe
2013-05-26 22:20:55 ----A---- C:\Windows\system32\msfeedsbs.dll
2013-05-26 22:20:55 ----A---- C:\Windows\system32\jscript9.dll
2013-05-26 22:20:55 ----A---- C:\Windows\system32\jscript.dll
2013-05-26 22:20:55 ----A---- C:\Windows\system32\imgutil.dll
2013-05-26 22:20:55 ----A---- C:\Windows\system32\ieUnatt.exe
2013-05-26 22:20:55 ----A---- C:\Windows\system32\ieui.dll
2013-05-26 22:20:55 ----A---- C:\Windows\system32\iesysprep.dll
2013-05-26 22:20:55 ----A---- C:\Windows\system32\iepeers.dll
2013-05-26 22:20:55 ----A---- C:\Windows\system32\ieframe.dll
2013-05-26 22:20:55 ----A---- C:\Windows\system32\IEAdvpack.dll
2013-05-26 22:20:54 ----A---- C:\Windows\system32\webcheck.dll
2013-05-26 22:20:54 ----A---- C:\Windows\system32\url.dll
2013-05-26 22:20:54 ----A---- C:\Windows\system32\mshtmlmedia.dll
2013-05-26 22:20:54 ----A---- C:\Windows\system32\licmgr10.dll
2013-05-26 22:20:54 ----A---- C:\Windows\system32\iesetup.dll
2013-05-26 22:20:54 ----A---- C:\Windows\system32\iernonce.dll
2013-05-26 22:20:54 ----A---- C:\Windows\system32\iedkcs32.dll
2013-05-26 22:20:54 ----A---- C:\Windows\system32\ieapfltr.dll
2013-05-26 22:20:54 ----A---- C:\Windows\system32\ieapfltr.dat
2013-05-26 22:20:54 ----A---- C:\Windows\system32\ie4uinit.exe
2013-05-26 22:20:54 ----A---- C:\Windows\system32\icardie.dll
2013-05-26 22:20:54 ----A---- C:\Windows\system32\dxtrans.dll
2013-05-26 22:20:54 ----A---- C:\Windows\system32\dxtmsft.dll
2013-05-23 22:32:37 ----D---- C:\Program Files\Cisco
2013-05-23 20:44:38 ----A---- C:\Windows\system32\drivers\sp_rsdrv2.sys
2013-05-23 20:44:22 ----D---- C:\Users\Renata\AppData\Roaming\Spyware Terminator
2013-05-23 20:44:22 ----D---- C:\ProgramData\Spyware Terminator
2013-05-23 20:41:56 ----D---- C:\Program Files\Spyware Terminator
2013-05-23 20:40:47 ----N---- C:\Windows\system32\agrsmdel.exe
2013-05-23 20:40:47 ----N---- C:\Windows\system32\agrsco64.dll
2013-05-23 20:40:10 ----D---- C:\Program Files\LSI SoftModem
2013-05-23 20:38:41 ----N---- C:\Windows\system32\agrscoin.dll
2013-05-23 20:38:41 ----A---- C:\Windows\system32\drivers\AGRSM.sys
2013-05-23 20:38:41 ----A---- C:\Windows\agrsmdel.exe
2013-05-23 20:24:19 ----D---- C:\Windows\Options
2013-05-23 20:23:49 ----D---- C:\Windows\system32\nn-NO
2013-05-23 20:23:49 ----A---- C:\Windows\system32\wgapiloc.dll
2013-05-23 20:23:49 ----A---- C:\Windows\system32\wgapi.dll
2013-05-23 20:23:49 ----A---- C:\Windows\system32\wcapiU.dll
2013-05-23 20:23:49 ----A---- C:\Windows\system32\athihvui.dll
2013-05-23 20:23:49 ----A---- C:\Windows\system32\athihvs.dll
2013-05-23 20:23:49 ----A---- C:\Windows\system32\athcfg11resloc.dll
2013-05-23 20:23:48 ----A---- C:\Windows\system32\wcapi.dll
2013-05-23 20:23:48 ----A---- C:\Windows\system32\athcfg20U.dll
2013-05-23 20:23:48 ----A---- C:\Windows\system32\athcfg20resU.dll
2013-05-23 20:23:48 ----A---- C:\Windows\system32\athcfg20res.dll
2013-05-23 20:23:48 ----A---- C:\Windows\system32\athcfg20.dll
2013-05-15 16:57:11 ----A---- C:\Windows\system32\wwansvc.dll
2013-05-15 16:57:11 ----A---- C:\Windows\system32\wwanprotdim.dll
2013-05-15 16:57:10 ----A---- C:\Windows\system32\win32k.sys
2013-05-15 16:57:04 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2013-05-15 16:57:04 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2013-05-15 16:56:57 ----A---- C:\Windows\system32\shell32.dll
2013-05-15 16:56:56 ----A---- C:\Windows\system32\consent.exe
2013-05-15 16:56:56 ----A---- C:\Windows\system32\authui.dll
2013-05-15 16:56:55 ----A---- C:\Windows\system32\shdocvw.dll
2013-05-15 16:56:55 ----A---- C:\Windows\system32\appinfo.dll
======List of files/folders modified in the last 1 month======
2013-05-31 23:02:01 ----D---- C:\Windows\Temp
2013-05-31 22:48:16 ----D---- C:\Windows\system32\config
2013-05-31 22:40:52 ----D---- C:\Windows\System32
2013-05-31 22:40:52 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-05-31 22:34:40 ----D---- C:\Windows\system32\drivers
2013-05-31 22:34:38 ----A---- C:\Windows\system32\log.txt
2013-05-31 22:34:34 ----D---- C:\Windows
2013-05-31 22:32:41 ----RD---- C:\Program Files
2013-05-31 22:32:40 ----HD---- C:\ProgramData
2013-05-31 20:48:17 ----SHD---- C:\System Volume Information
2013-05-31 20:46:43 ----D---- C:\Windows\inf
2013-05-31 20:43:34 ----SHD---- C:\Windows\Installer
2013-05-31 19:06:49 ----RD---- C:\Users
2013-05-31 19:04:33 ----D---- C:\Windows\system32\Tasks
2013-05-31 19:01:22 ----HD---- C:\Program Files\InstallShield Installation Information
2013-05-31 19:01:20 ----D---- C:\Program Files\Sega
2013-05-31 19:01:05 ----RSD---- C:\Windows\Fonts
2013-05-31 18:52:24 ----D---- C:\Users\Renata\AppData\Roaming\DAEMON Tools Lite
2013-05-31 18:50:43 ----D---- C:\Windows\Panther
2013-05-31 18:50:43 ----D---- C:\Windows\ModemLogs
2013-05-31 18:50:40 ----D---- C:\Windows\Minidump
2013-05-31 18:50:40 ----D---- C:\Windows\Logs
2013-05-31 18:50:40 ----D---- C:\Windows\debug
2013-05-31 18:33:20 ----D---- C:\ProgramData\Skype
2013-05-31 18:33:19 ----RD---- C:\Program Files\Skype
2013-05-31 18:33:19 ----D---- C:\Program Files\Common Files
2013-05-31 18:33:13 ----D---- C:\Users\Renata\AppData\Roaming\Skype
2013-05-31 18:30:02 ----D---- C:\Program Files\All Ten Fingers
2013-05-30 21:45:45 ----D---- C:\Windows\system32\catroot
2013-05-30 21:45:07 ----D---- C:\Windows\system32\DriverStore
2013-05-30 21:38:37 ----D---- C:\SwSetup
2013-05-30 21:38:34 ----A---- C:\Windows\system32\coinst.dll
2013-05-30 21:38:34 ----A---- C:\Windows\system32\atiuxpag.dll
2013-05-30 21:38:34 ----A---- C:\Windows\system32\atiumdva.dll
2013-05-30 21:38:34 ----A---- C:\Windows\system32\atiumdag.dll
2013-05-30 21:38:34 ----A---- C:\Windows\system32\atiu9pag.dll
2013-05-30 21:38:32 ----A---- C:\Windows\system32\atidxx32.dll
2013-05-30 21:38:32 ----A---- C:\Windows\system32\aticfx32.dll
2013-05-30 20:34:33 ----D---- C:\Program Files\IDT
2013-05-30 20:28:24 ----N---- C:\Windows\system32\stapi32.dll
2013-05-30 20:28:24 ----A---- C:\Windows\system32\stcplx.dll
2013-05-30 20:28:24 ----A---- C:\Windows\system32\stapo.dll
2013-05-30 17:29:57 ----A---- C:\Windows\system32\HP_ActiveX_Patch_NOT_DETECTED.txt
2013-05-29 18:24:18 ----D---- C:\Windows\rescache
2013-05-27 05:43:20 ----D---- C:\Windows\winsxs
2013-05-27 05:33:07 ----D---- C:\Windows\system32\cs-CZ
2013-05-27 05:33:07 ----D---- C:\Program Files\Internet Explorer
2013-05-27 05:33:04 ----D---- C:\Windows\system32\migration
2013-05-27 05:33:04 ----D---- C:\Windows\PolicyDefinitions
2013-05-27 05:33:03 ----D---- C:\Windows\system32\en-US
2013-05-26 22:28:08 ----D---- C:\Windows\system32\catroot2
2013-05-23 20:23:49 ----D---- C:\Windows\system32\zh-TW
2013-05-23 20:23:49 ----D---- C:\Windows\system32\zh-CN
2013-05-23 20:23:49 ----D---- C:\Windows\system32\tr-TR
2013-05-23 20:23:49 ----D---- C:\Windows\system32\sv-SE
2013-05-23 20:23:49 ----D---- C:\Windows\system32\ru-RU
2013-05-23 20:23:49 ----D---- C:\Windows\system32\pt-PT
2013-05-23 20:23:49 ----D---- C:\Windows\system32\pl-PL
2013-05-23 20:23:49 ----D---- C:\Windows\system32\nl-NL
2013-05-23 20:23:49 ----D---- C:\Windows\system32\ko-KR
2013-05-23 20:23:49 ----D---- C:\Windows\system32\ja-JP
2013-05-23 20:23:49 ----D---- C:\Windows\system32\it-IT
2013-05-23 20:23:49 ----D---- C:\Windows\system32\hu-HU
2013-05-23 20:23:49 ----D---- C:\Windows\system32\fr-FR
2013-05-23 20:23:49 ----D---- C:\Windows\system32\fi-FI
2013-05-23 20:23:49 ----D---- C:\Windows\system32\es-ES
2013-05-23 20:23:49 ----D---- C:\Windows\system32\el-GR
2013-05-23 20:23:49 ----D---- C:\Windows\system32\de-DE
2013-05-23 20:23:49 ----D---- C:\Windows\system32\da-DK
2013-05-19 18:59:53 ----D---- C:\Windows\Microsoft.NET
2013-05-19 18:58:52 ----RSD---- C:\Windows\assembly
2013-05-17 06:01:43 ----D---- C:\Windows\Prefetch
2013-05-15 21:26:03 ----D---- C:\Windows\AppPatch
2013-05-15 19:39:38 ----A---- C:\Windows\win.ini
2013-05-15 18:58:33 ----A---- C:\Windows\system32\MRT.exe
2013-05-14 21:37:44 ----A---- C:\Windows\system32\FlashPlayerApp.exe
2013-05-13 19:21:03 ----D---- C:\ProgramData\BrowserProtect
2013-05-09 17:17:19 ----D---- C:\Windows\Tasks
2013-05-02 17:28:50 ----N---- C:\Windows\system32\MpSigStub.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 giveio;giveio; C:\Windows\system32\giveio.sys [1996-04-03 5248]
R0 hpdskflt;HP Filter; C:\Windows\system32\DRIVERS\hpdskflt.sys [2011-05-13 25656]
R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2013-01-20 195296]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R0 speedfan;speedfan; C:\Windows\system32\speedfan.sys [2011-03-18 25240]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2013-04-14 466008]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 388096]
R1 MpKsl5421d871;MpKsl5421d871; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{B0A5877F-0A07-4A76-A1CB-D5E8E1422882}\MpKsl5421d871.sys [2013-05-31 29904]
R1 sp_rsdrv2;Spyware Terminator 2012 Realtime Shield Driver; \??\C:\Windows\system32\drivers\sp_rsdrv2.sys [2011-06-21 32768]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R2 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2013-01-20 100328]
R3 Accelerometer;HP Mobile Data Protection Sensor; C:\Windows\system32\DRIVERS\Accelerometer.sys [2011-05-13 35896]
R3 AgereSoftModem;Agere Systems Soft Modem; C:\Windows\system32\DRIVERS\AGRSM.sys [2013-05-23 1163328]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2013-05-30 5590016]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2013-05-30 210432]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athr.sys [2011-02-22 2184704]
R3 AtiHdmiService;ATI Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\AtiHdmi.sys [2010-03-09 107024]
R3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 34816]
R3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696]
R3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 60416]
R3 btwaudio;Bluetooth Audio Device Service; C:\Windows\system32\drivers\btwaudio.sys [2009-09-17 86056]
R3 btwavdt;Bluetooth AVDT; C:\Windows\system32\DRIVERS\btwavdt.sys [2009-09-17 108072]
R3 btwl2cap;Bluetooth L2CAP Service; C:\Windows\system32\DRIVERS\btwl2cap.sys [2009-09-17 29472]
R3 btwrchid;btwrchid; C:\Windows\system32\DRIVERS\btwrchid.sys [2009-09-17 18472]
R3 dgderdrv;dgderdrv; C:\Windows\System32\drivers\dgderdrv.sys [2009-12-22 18136]
R3 FsUsbExDisk;FsUsbExDisk; \??\C:\Windows\system32\FsUsbExDisk.SYS [2009-12-22 36640]
R3 HECI;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECI.sys [2009-09-17 41088]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\Windows\system32\DRIVERS\HpqKbFiltr.sys [2009-07-16 15872]
R3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\Windows\system32\DRIVERS\snp2uvc.sys [2009-12-18 1763968]
R3 STHDA;@%SystemRoot%\system32\stlang.dll,-10322; C:\Windows\system32\DRIVERS\stwrt.sys [2013-05-30 431616]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2010-06-04 1303728]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 14336]
R4 ps7aprwb;Simon the Sorcerer Synchronization Driver (ps7aprwb); C:\Windows\system32\drivers\ps7aprwb.sys []
S2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;Ovladač filtru AMD portu AGP; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2013-05-30 5590016]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 393728]
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device; C:\Windows\system32\DRIVERS\ew_hwusbdev.sys []
S3 ew_usbenumfilter;huawei_CompositeFilter; C:\Windows\system32\DRIVERS\ew_usbenumfilter.sys []
S3 huawei_cdcacm;huawei_cdcacm; C:\Windows\system32\DRIVERS\ew_jucdcacm.sys []
S3 huawei_enumerator;huawei_enumerator; C:\Windows\system32\DRIVERS\ew_jubusenum.sys []
S3 huawei_ext_ctrl;huawei_ext_ctrl; C:\Windows\system32\DRIVERS\ew_juextctrl.sys []
S3 huawei_wwanecm;huawei_wwanecm; C:\Windows\system32\DRIVERS\ew_juwwanecm.sys []
S3 nmwcd;Nokia USB Phone Parent; C:\Windows\system32\drivers\ccdcmb.sys []
S3 nmwcdc;Nokia USB Generic; C:\Windows\system32\drivers\ccdcmbo.sys []
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfd.sys []
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\Windows\System32\Drivers\RtsUStor.sys [2009-11-11 181792]
S3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt86win7.sys [2010-01-12 257568]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632]
S3 sisagp;Filtr SIS sběrnice AGP; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 35840]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltj.sys []
S3 viaagp;Filtr VIA sběrnice AGP; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-05-10 65640]
R2 AESTFilters;Andrea ST Filters Service; C:\Program Files\IDT\WDM\aestsrv.exe [2013-05-30 81920]
R2 AgereModemAudio;Agere Modem Call Progress Audio; C:\Program Files\LSI SoftModem\agrsmsvc.exe [2013-05-23 14336]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2013-05-30 176128]
R2 btwdins;Bluetooth Service; c:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2009-09-04 595232]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 dgdersvc;Device Error Recovery Service; C:\Windows\system32\dgdersvc.exe [2009-12-22 95568]
R2 FsUsbExService;FsUsbExService; C:\Windows\system32\FsUsbExService.Exe [2009-12-22 217088]
R2 HP Support Assistant Service;HP Support Assistant Service; C:\Program Files\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2012-09-27 86528]
R2 HP Wireless Assistant Service;HP Wireless Assistant Service; C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe [2009-12-16 102968]
R2 HPDrvMntSvc.exe;HP Quick Synchronization Service; C:\Program Files\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2012-08-10 197536]
R2 hpHotkeyMonitor;HP Hotkey Monitor; C:\Program Files\Hewlett-Packard\HP HotKey Support\hpHotkeyMonitor.exe [2010-01-04 264248]
R2 hpsrv;HP Service; C:\Windows\system32\Hpservice.exe [2011-05-13 26168]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2009-11-04 268824]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-19 322120]
R2 MsMpSvc;Microsoft Antimalware Service; C:\Program Files\Microsoft Security Client\MsMpEng.exe [2013-01-27 20456]
R2 ST2012_Svc;Spyware Terminator 2012 Realtime Shield Service; C:\Program Files\Spyware Terminator\st_rsser.exe [2013-04-03 587912]
R2 STacSV;@%SystemRoot%\system32\stlang.dll,-10122; C:\Program Files\IDT\WDM\STacSV.exe [2013-05-30 254034]
R2 UNS;Intel(R) Management & Security Application User Notification Service; C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2009-11-04 2320920]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe [2012-08-10 1001376]
R3 NisSrv;@C:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; C:\Program Files\Microsoft Security Client\NisSrv.exe [2013-01-27 295232]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-04-01 116648]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-05-14 256904]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-04-01 116648]
S3 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2011-05-10 136120]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2013-04-24 115608]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2010-07-25 1343400]
-----------------EOF-----------------
Run by Renata at 2013-05-31 23:02:10
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 38 GB (38%) free of 100 GB
Total RAM: 3055 MB (60% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 23:02:16, on 31.5.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16576)
Boot mode: Normal
Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Program Files\Spyware Terminator\st_rsser.exe
C:\Windows\Explorer.EXE
C:\Windows\System32\rundll32.exe
C:\Program Files\Hewlett-Packard\HP HotKey Support\QLBController.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe
C:\Program Files\IDT\WDM\sttray.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\System32\StikyNot.exe
C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
c:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe
C:\Users\Renata\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Renata\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Renata\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Renata\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Users\Renata\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Main.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Hewlett-Packard\HP Support Framework\HPSF.exe
C:\Users\Renata\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Renata\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\Renata\Downloads\RSIT.exe
C:\Program Files\trend micro\Renata.exe
C:\Windows\system32\DllHost.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - - (no file)
R3 - URLSearchHook: (no name) - {fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - (no file)
R3 - URLSearchHook: (no name) - {7473b6bd-4691-4744-a82b-7854eb3d70b6} - (no file)
R3 - URLSearchHook: (no name) - {124d001a-bdcb-472f-aa59-bbe7e4bc3204} - (no file)
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [QLBController] C:\Program Files\Hewlett-Packard\HP HotKey Support\QLBController.exe /start
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [HPWirelessAssistant] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe 120 C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Main.exe /hidden
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Windows\system32\NeroCheck.exe
O4 - HKLM\..\Run: [MSC] "C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SpywareTerminatorShield] C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe
O4 - HKLM\..\Run: [SpywareTerminatorUpdater] C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe
O4 - HKLM\..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray.exe
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Google Update] "C:\Users\Renata\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [RESTART_STICKY_NOTES] C:\Windows\System32\StikyNot.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Global Startup: Bluetooth.lnk = ?
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: @C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: @c:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @c:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Program Files\IDT\WDM\aestsrv.exe
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - LSI Corporation - C:\Program Files\LSI SoftModem\agrsmsvc.exe
O23 - Service: AMD External Events Utility - AMD - C:\Windows\system32\atiesrxx.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - c:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: Device Error Recovery Service (dgdersvc) - Devguru Co., Ltd. - C:\Windows\system32\dgdersvc.exe
O23 - Service: FsUsbExService - Teruten - C:\Windows\system32\FsUsbExService.Exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Support Framework\hpsa_service.exe
O23 - Service: HP Wireless Assistant Service - Hewlett-Packard - C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
O23 - Service: HP Quick Synchronization Service (HPDrvMntSvc.exe) - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\Shared\HPDrvMntSvc.exe
O23 - Service: HP Hotkey Monitor (hpHotkeyMonitor) - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP HotKey Support\hpHotkeyMonitor.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: HP Service (hpsrv) - Hewlett-Packard Company - C:\Windows\system32\Hpservice.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: Spyware Terminator 2012 Realtime Shield Service (ST2012_Svc) - Crawler.com - C:\Program Files\Spyware Terminator\st_rsser.exe
O23 - Service: @%SystemRoot%\system32\stlang.dll,-10122 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV.exe
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
--
End of file - 10207 bytes
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3683041670-2158295546-2881036051-1000Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3683041670-2158295546-2881036051-1000UA.job
C:\Windows\tasks\HPCeeScheduleForRenata.job
=========Mozilla firefox=========
ProfilePath - C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\0e85her5.default
prefs.js - "browser.startup.homepage" - "www.seznam.cz"
prefs.js - "extensions.enabledItems" - "{ea614400-e918-4741-9a97-7a972ff7c30b}:2.0.10, {fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}:2.5.6.0, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.17"
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.7.700.202 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_11_7_700_202.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@google.com/npPicasa3,version=3.0.0]
"Description"=Picasa3 plugin
"Path"=C:\Program Files\Google\Picasa3\npPicasa3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=C:\Windows\system32\Wat\npWatWeb.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.145\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.145\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
C:\Program Files\Mozilla Firefox\extensions\
{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
{972ce4c6-7e08-4474-a285-3208198ce6fd}
C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll
C:\Program Files\Mozilla Firefox\plugins\
NPOFFICE.DLL
nppdf32.dll
C:\Program Files\Mozilla Firefox\searchplugins\
babylon.xml
google.xml
heureka-cz.xml
jyxo-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2011-10-10 3834016]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2012-07-09 351136]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2010-03-18 98304]
"QLBController"=C:\Program Files\Hewlett-Packard\HP HotKey Support\QLBController.exe [2010-01-04 254520]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-06-04 1791272]
"HPWirelessAssistant"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe [2009-12-16 8192]
"NeroFilterCheck"=C:\Windows\system32\NeroCheck.exe [2001-07-09 155648]
"MSC"=C:\Program Files\Microsoft Security Client\msseces.exe [2013-01-27 947152]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576]
"SpywareTerminatorShield"=C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe [2013-04-03 2777736]
"SpywareTerminatorUpdater"=C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe [2013-04-03 3684488]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray.exe [2013-05-30 495708]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"KiesTrayAgent"= []
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1174016]
"Google Update"=C:\Users\Renata\AppData\Local\Google\Update\GoogleUpdate.exe [2012-07-11 116648]
"RESTART_STICKY_NOTES"=C:\Windows\System32\StikyNot.exe [2009-07-14 354304]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"wave6"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer6"=wdmaud.drv
"vidc.VP60"=C:\Windows\system32\vp6vfw.dll
"vidc.VP61"=C:\Windows\system32\vp6vfw.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2013-05-31 23:02:10 ----D---- C:\rsit
2013-05-31 22:32:40 ----A---- C:\Windows\DeleteOnReboot.bat
2013-05-31 22:32:21 ----A---- C:\AdwCleaner[S1].txt
2013-05-31 22:31:43 ----A---- C:\AdwCleaner[R2].txt
2013-05-31 22:20:58 ----A---- C:\AdwCleaner[R1].txt
2013-05-31 20:43:29 ----D---- C:\Program Files\Trend Micro
2013-05-31 18:39:17 ----D---- C:\Program Files\CCleaner
2013-05-30 21:39:03 ----A---- C:\Windows\system32\drivers\atikmpag.sys
2013-05-30 21:39:03 ----A---- C:\Windows\system32\drivers\atikmdag.sys
2013-05-30 21:39:03 ----A---- C:\Windows\system32\drivers\ati2erec.dll
2013-05-30 21:39:03 ----A---- C:\Windows\system32\atitmmxx.dll
2013-05-30 21:39:03 ----A---- C:\Windows\system32\atipdlxx.dll
2013-05-30 21:39:03 ----A---- C:\Windows\system32\atipblag.dat
2013-05-30 21:39:03 ----A---- C:\Windows\system32\atioglxx.dll
2013-05-30 21:39:03 ----A---- C:\Windows\system32\atimuixx.dll
2013-05-30 21:39:03 ----A---- C:\Windows\system32\atimpc32.dll
2013-05-30 21:39:03 ----A---- C:\Windows\system32\atiicdxx.dat
2013-05-30 21:39:03 ----A---- C:\Windows\system32\atiglpxx.dll
2013-05-30 21:39:03 ----A---- C:\Windows\system32\atigktxx.dll
2013-05-30 21:39:03 ----A---- C:\Windows\system32\atiesrxx.exe
2013-05-30 21:39:03 ----A---- C:\Windows\system32\atieclxx.exe
2013-05-30 21:39:03 ----A---- C:\Windows\system32\ATIDEMGX.dll
2013-05-30 21:39:03 ----A---- C:\Windows\system32\aticalrt.dll
2013-05-30 21:39:03 ----A---- C:\Windows\system32\aticaldd.dll
2013-05-30 21:39:03 ----A---- C:\Windows\system32\aticalcl.dll
2013-05-30 21:39:03 ----A---- C:\Windows\system32\atiapfxx.exe
2013-05-30 21:39:03 ----A---- C:\Windows\system32\atiadlxx.dll
2013-05-30 21:39:03 ----A---- C:\Windows\system32\amdpcom32.dll
2013-05-30 21:39:02 ----A---- C:\Windows\system32\ati2edxx.dll
2013-05-30 20:32:48 ----A---- C:\Windows\system32\aestecap.dll
2013-05-30 20:32:48 ----A---- C:\Windows\system32\AESTCom.dll
2013-05-30 20:32:48 ----A---- C:\Windows\system32\aestaren.dll
2013-05-30 20:32:48 ----A---- C:\Windows\system32\aestacap.dll
2013-05-30 20:32:47 ----A---- C:\Windows\system32\stlang.dll
2013-05-30 20:32:47 ----A---- C:\Windows\sttray.exe
2013-05-30 20:32:25 ----A---- C:\Windows\system32\staco.dll
2013-05-26 22:20:57 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2013-05-26 22:20:57 ----A---- C:\Windows\system32\elshyph.dll
2013-05-26 22:20:56 ----A---- C:\Windows\system32\wininet.dll
2013-05-26 22:20:56 ----A---- C:\Windows\system32\wextract.exe
2013-05-26 22:20:56 ----A---- C:\Windows\system32\vbscript.dll
2013-05-26 22:20:56 ----A---- C:\Windows\system32\urlmon.dll
2013-05-26 22:20:56 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2013-05-26 22:20:56 ----A---- C:\Windows\system32\msrating.dll
2013-05-26 22:20:56 ----A---- C:\Windows\system32\msls31.dll
2013-05-26 22:20:56 ----A---- C:\Windows\system32\mshtmled.dll
2013-05-26 22:20:56 ----A---- C:\Windows\system32\msfeeds.dll
2013-05-26 22:20:56 ----A---- C:\Windows\system32\jsproxy.dll
2013-05-26 22:20:56 ----A---- C:\Windows\system32\inseng.dll
2013-05-26 22:20:56 ----A---- C:\Windows\system32\iexpress.exe
2013-05-26 22:20:56 ----A---- C:\Windows\system32\iertutil.dll
2013-05-26 22:20:55 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2013-05-26 22:20:55 ----A---- C:\Windows\system32\pngfilt.dll
2013-05-26 22:20:55 ----A---- C:\Windows\system32\occache.dll
2013-05-26 22:20:55 ----A---- C:\Windows\system32\mshtmler.dll
2013-05-26 22:20:55 ----A---- C:\Windows\system32\mshtml.dll
2013-05-26 22:20:55 ----A---- C:\Windows\system32\mshta.exe
2013-05-26 22:20:55 ----A---- C:\Windows\system32\msfeedssync.exe
2013-05-26 22:20:55 ----A---- C:\Windows\system32\msfeedsbs.dll
2013-05-26 22:20:55 ----A---- C:\Windows\system32\jscript9.dll
2013-05-26 22:20:55 ----A---- C:\Windows\system32\jscript.dll
2013-05-26 22:20:55 ----A---- C:\Windows\system32\imgutil.dll
2013-05-26 22:20:55 ----A---- C:\Windows\system32\ieUnatt.exe
2013-05-26 22:20:55 ----A---- C:\Windows\system32\ieui.dll
2013-05-26 22:20:55 ----A---- C:\Windows\system32\iesysprep.dll
2013-05-26 22:20:55 ----A---- C:\Windows\system32\iepeers.dll
2013-05-26 22:20:55 ----A---- C:\Windows\system32\ieframe.dll
2013-05-26 22:20:55 ----A---- C:\Windows\system32\IEAdvpack.dll
2013-05-26 22:20:54 ----A---- C:\Windows\system32\webcheck.dll
2013-05-26 22:20:54 ----A---- C:\Windows\system32\url.dll
2013-05-26 22:20:54 ----A---- C:\Windows\system32\mshtmlmedia.dll
2013-05-26 22:20:54 ----A---- C:\Windows\system32\licmgr10.dll
2013-05-26 22:20:54 ----A---- C:\Windows\system32\iesetup.dll
2013-05-26 22:20:54 ----A---- C:\Windows\system32\iernonce.dll
2013-05-26 22:20:54 ----A---- C:\Windows\system32\iedkcs32.dll
2013-05-26 22:20:54 ----A---- C:\Windows\system32\ieapfltr.dll
2013-05-26 22:20:54 ----A---- C:\Windows\system32\ieapfltr.dat
2013-05-26 22:20:54 ----A---- C:\Windows\system32\ie4uinit.exe
2013-05-26 22:20:54 ----A---- C:\Windows\system32\icardie.dll
2013-05-26 22:20:54 ----A---- C:\Windows\system32\dxtrans.dll
2013-05-26 22:20:54 ----A---- C:\Windows\system32\dxtmsft.dll
2013-05-23 22:32:37 ----D---- C:\Program Files\Cisco
2013-05-23 20:44:38 ----A---- C:\Windows\system32\drivers\sp_rsdrv2.sys
2013-05-23 20:44:22 ----D---- C:\Users\Renata\AppData\Roaming\Spyware Terminator
2013-05-23 20:44:22 ----D---- C:\ProgramData\Spyware Terminator
2013-05-23 20:41:56 ----D---- C:\Program Files\Spyware Terminator
2013-05-23 20:40:47 ----N---- C:\Windows\system32\agrsmdel.exe
2013-05-23 20:40:47 ----N---- C:\Windows\system32\agrsco64.dll
2013-05-23 20:40:10 ----D---- C:\Program Files\LSI SoftModem
2013-05-23 20:38:41 ----N---- C:\Windows\system32\agrscoin.dll
2013-05-23 20:38:41 ----A---- C:\Windows\system32\drivers\AGRSM.sys
2013-05-23 20:38:41 ----A---- C:\Windows\agrsmdel.exe
2013-05-23 20:24:19 ----D---- C:\Windows\Options
2013-05-23 20:23:49 ----D---- C:\Windows\system32\nn-NO
2013-05-23 20:23:49 ----A---- C:\Windows\system32\wgapiloc.dll
2013-05-23 20:23:49 ----A---- C:\Windows\system32\wgapi.dll
2013-05-23 20:23:49 ----A---- C:\Windows\system32\wcapiU.dll
2013-05-23 20:23:49 ----A---- C:\Windows\system32\athihvui.dll
2013-05-23 20:23:49 ----A---- C:\Windows\system32\athihvs.dll
2013-05-23 20:23:49 ----A---- C:\Windows\system32\athcfg11resloc.dll
2013-05-23 20:23:48 ----A---- C:\Windows\system32\wcapi.dll
2013-05-23 20:23:48 ----A---- C:\Windows\system32\athcfg20U.dll
2013-05-23 20:23:48 ----A---- C:\Windows\system32\athcfg20resU.dll
2013-05-23 20:23:48 ----A---- C:\Windows\system32\athcfg20res.dll
2013-05-23 20:23:48 ----A---- C:\Windows\system32\athcfg20.dll
2013-05-15 16:57:11 ----A---- C:\Windows\system32\wwansvc.dll
2013-05-15 16:57:11 ----A---- C:\Windows\system32\wwanprotdim.dll
2013-05-15 16:57:10 ----A---- C:\Windows\system32\win32k.sys
2013-05-15 16:57:04 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2013-05-15 16:57:04 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2013-05-15 16:56:57 ----A---- C:\Windows\system32\shell32.dll
2013-05-15 16:56:56 ----A---- C:\Windows\system32\consent.exe
2013-05-15 16:56:56 ----A---- C:\Windows\system32\authui.dll
2013-05-15 16:56:55 ----A---- C:\Windows\system32\shdocvw.dll
2013-05-15 16:56:55 ----A---- C:\Windows\system32\appinfo.dll
======List of files/folders modified in the last 1 month======
2013-05-31 23:02:01 ----D---- C:\Windows\Temp
2013-05-31 22:48:16 ----D---- C:\Windows\system32\config
2013-05-31 22:40:52 ----D---- C:\Windows\System32
2013-05-31 22:40:52 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-05-31 22:34:40 ----D---- C:\Windows\system32\drivers
2013-05-31 22:34:38 ----A---- C:\Windows\system32\log.txt
2013-05-31 22:34:34 ----D---- C:\Windows
2013-05-31 22:32:41 ----RD---- C:\Program Files
2013-05-31 22:32:40 ----HD---- C:\ProgramData
2013-05-31 20:48:17 ----SHD---- C:\System Volume Information
2013-05-31 20:46:43 ----D---- C:\Windows\inf
2013-05-31 20:43:34 ----SHD---- C:\Windows\Installer
2013-05-31 19:06:49 ----RD---- C:\Users
2013-05-31 19:04:33 ----D---- C:\Windows\system32\Tasks
2013-05-31 19:01:22 ----HD---- C:\Program Files\InstallShield Installation Information
2013-05-31 19:01:20 ----D---- C:\Program Files\Sega
2013-05-31 19:01:05 ----RSD---- C:\Windows\Fonts
2013-05-31 18:52:24 ----D---- C:\Users\Renata\AppData\Roaming\DAEMON Tools Lite
2013-05-31 18:50:43 ----D---- C:\Windows\Panther
2013-05-31 18:50:43 ----D---- C:\Windows\ModemLogs
2013-05-31 18:50:40 ----D---- C:\Windows\Minidump
2013-05-31 18:50:40 ----D---- C:\Windows\Logs
2013-05-31 18:50:40 ----D---- C:\Windows\debug
2013-05-31 18:33:20 ----D---- C:\ProgramData\Skype
2013-05-31 18:33:19 ----RD---- C:\Program Files\Skype
2013-05-31 18:33:19 ----D---- C:\Program Files\Common Files
2013-05-31 18:33:13 ----D---- C:\Users\Renata\AppData\Roaming\Skype
2013-05-31 18:30:02 ----D---- C:\Program Files\All Ten Fingers
2013-05-30 21:45:45 ----D---- C:\Windows\system32\catroot
2013-05-30 21:45:07 ----D---- C:\Windows\system32\DriverStore
2013-05-30 21:38:37 ----D---- C:\SwSetup
2013-05-30 21:38:34 ----A---- C:\Windows\system32\coinst.dll
2013-05-30 21:38:34 ----A---- C:\Windows\system32\atiuxpag.dll
2013-05-30 21:38:34 ----A---- C:\Windows\system32\atiumdva.dll
2013-05-30 21:38:34 ----A---- C:\Windows\system32\atiumdag.dll
2013-05-30 21:38:34 ----A---- C:\Windows\system32\atiu9pag.dll
2013-05-30 21:38:32 ----A---- C:\Windows\system32\atidxx32.dll
2013-05-30 21:38:32 ----A---- C:\Windows\system32\aticfx32.dll
2013-05-30 20:34:33 ----D---- C:\Program Files\IDT
2013-05-30 20:28:24 ----N---- C:\Windows\system32\stapi32.dll
2013-05-30 20:28:24 ----A---- C:\Windows\system32\stcplx.dll
2013-05-30 20:28:24 ----A---- C:\Windows\system32\stapo.dll
2013-05-30 17:29:57 ----A---- C:\Windows\system32\HP_ActiveX_Patch_NOT_DETECTED.txt
2013-05-29 18:24:18 ----D---- C:\Windows\rescache
2013-05-27 05:43:20 ----D---- C:\Windows\winsxs
2013-05-27 05:33:07 ----D---- C:\Windows\system32\cs-CZ
2013-05-27 05:33:07 ----D---- C:\Program Files\Internet Explorer
2013-05-27 05:33:04 ----D---- C:\Windows\system32\migration
2013-05-27 05:33:04 ----D---- C:\Windows\PolicyDefinitions
2013-05-27 05:33:03 ----D---- C:\Windows\system32\en-US
2013-05-26 22:28:08 ----D---- C:\Windows\system32\catroot2
2013-05-23 20:23:49 ----D---- C:\Windows\system32\zh-TW
2013-05-23 20:23:49 ----D---- C:\Windows\system32\zh-CN
2013-05-23 20:23:49 ----D---- C:\Windows\system32\tr-TR
2013-05-23 20:23:49 ----D---- C:\Windows\system32\sv-SE
2013-05-23 20:23:49 ----D---- C:\Windows\system32\ru-RU
2013-05-23 20:23:49 ----D---- C:\Windows\system32\pt-PT
2013-05-23 20:23:49 ----D---- C:\Windows\system32\pl-PL
2013-05-23 20:23:49 ----D---- C:\Windows\system32\nl-NL
2013-05-23 20:23:49 ----D---- C:\Windows\system32\ko-KR
2013-05-23 20:23:49 ----D---- C:\Windows\system32\ja-JP
2013-05-23 20:23:49 ----D---- C:\Windows\system32\it-IT
2013-05-23 20:23:49 ----D---- C:\Windows\system32\hu-HU
2013-05-23 20:23:49 ----D---- C:\Windows\system32\fr-FR
2013-05-23 20:23:49 ----D---- C:\Windows\system32\fi-FI
2013-05-23 20:23:49 ----D---- C:\Windows\system32\es-ES
2013-05-23 20:23:49 ----D---- C:\Windows\system32\el-GR
2013-05-23 20:23:49 ----D---- C:\Windows\system32\de-DE
2013-05-23 20:23:49 ----D---- C:\Windows\system32\da-DK
2013-05-19 18:59:53 ----D---- C:\Windows\Microsoft.NET
2013-05-19 18:58:52 ----RSD---- C:\Windows\assembly
2013-05-17 06:01:43 ----D---- C:\Windows\Prefetch
2013-05-15 21:26:03 ----D---- C:\Windows\AppPatch
2013-05-15 19:39:38 ----A---- C:\Windows\win.ini
2013-05-15 18:58:33 ----A---- C:\Windows\system32\MRT.exe
2013-05-14 21:37:44 ----A---- C:\Windows\system32\FlashPlayerApp.exe
2013-05-13 19:21:03 ----D---- C:\ProgramData\BrowserProtect
2013-05-09 17:17:19 ----D---- C:\Windows\Tasks
2013-05-02 17:28:50 ----N---- C:\Windows\system32\MpSigStub.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 giveio;giveio; C:\Windows\system32\giveio.sys [1996-04-03 5248]
R0 hpdskflt;HP Filter; C:\Windows\system32\DRIVERS\hpdskflt.sys [2011-05-13 25656]
R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2013-01-20 195296]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R0 speedfan;speedfan; C:\Windows\system32\speedfan.sys [2011-03-18 25240]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2013-04-14 466008]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 388096]
R1 MpKsl5421d871;MpKsl5421d871; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{B0A5877F-0A07-4A76-A1CB-D5E8E1422882}\MpKsl5421d871.sys [2013-05-31 29904]
R1 sp_rsdrv2;Spyware Terminator 2012 Realtime Shield Driver; \??\C:\Windows\system32\drivers\sp_rsdrv2.sys [2011-06-21 32768]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R2 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2013-01-20 100328]
R3 Accelerometer;HP Mobile Data Protection Sensor; C:\Windows\system32\DRIVERS\Accelerometer.sys [2011-05-13 35896]
R3 AgereSoftModem;Agere Systems Soft Modem; C:\Windows\system32\DRIVERS\AGRSM.sys [2013-05-23 1163328]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2013-05-30 5590016]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2013-05-30 210432]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athr.sys [2011-02-22 2184704]
R3 AtiHdmiService;ATI Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\AtiHdmi.sys [2010-03-09 107024]
R3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 34816]
R3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696]
R3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 60416]
R3 btwaudio;Bluetooth Audio Device Service; C:\Windows\system32\drivers\btwaudio.sys [2009-09-17 86056]
R3 btwavdt;Bluetooth AVDT; C:\Windows\system32\DRIVERS\btwavdt.sys [2009-09-17 108072]
R3 btwl2cap;Bluetooth L2CAP Service; C:\Windows\system32\DRIVERS\btwl2cap.sys [2009-09-17 29472]
R3 btwrchid;btwrchid; C:\Windows\system32\DRIVERS\btwrchid.sys [2009-09-17 18472]
R3 dgderdrv;dgderdrv; C:\Windows\System32\drivers\dgderdrv.sys [2009-12-22 18136]
R3 FsUsbExDisk;FsUsbExDisk; \??\C:\Windows\system32\FsUsbExDisk.SYS [2009-12-22 36640]
R3 HECI;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECI.sys [2009-09-17 41088]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\Windows\system32\DRIVERS\HpqKbFiltr.sys [2009-07-16 15872]
R3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\Windows\system32\DRIVERS\snp2uvc.sys [2009-12-18 1763968]
R3 STHDA;@%SystemRoot%\system32\stlang.dll,-10322; C:\Windows\system32\DRIVERS\stwrt.sys [2013-05-30 431616]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2010-06-04 1303728]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 14336]
R4 ps7aprwb;Simon the Sorcerer Synchronization Driver (ps7aprwb); C:\Windows\system32\drivers\ps7aprwb.sys []
S2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;Ovladač filtru AMD portu AGP; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2013-05-30 5590016]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 393728]
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device; C:\Windows\system32\DRIVERS\ew_hwusbdev.sys []
S3 ew_usbenumfilter;huawei_CompositeFilter; C:\Windows\system32\DRIVERS\ew_usbenumfilter.sys []
S3 huawei_cdcacm;huawei_cdcacm; C:\Windows\system32\DRIVERS\ew_jucdcacm.sys []
S3 huawei_enumerator;huawei_enumerator; C:\Windows\system32\DRIVERS\ew_jubusenum.sys []
S3 huawei_ext_ctrl;huawei_ext_ctrl; C:\Windows\system32\DRIVERS\ew_juextctrl.sys []
S3 huawei_wwanecm;huawei_wwanecm; C:\Windows\system32\DRIVERS\ew_juwwanecm.sys []
S3 nmwcd;Nokia USB Phone Parent; C:\Windows\system32\drivers\ccdcmb.sys []
S3 nmwcdc;Nokia USB Generic; C:\Windows\system32\drivers\ccdcmbo.sys []
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfd.sys []
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\Windows\System32\Drivers\RtsUStor.sys [2009-11-11 181792]
S3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt86win7.sys [2010-01-12 257568]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632]
S3 sisagp;Filtr SIS sběrnice AGP; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 35840]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltj.sys []
S3 viaagp;Filtr VIA sběrnice AGP; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-05-10 65640]
R2 AESTFilters;Andrea ST Filters Service; C:\Program Files\IDT\WDM\aestsrv.exe [2013-05-30 81920]
R2 AgereModemAudio;Agere Modem Call Progress Audio; C:\Program Files\LSI SoftModem\agrsmsvc.exe [2013-05-23 14336]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2013-05-30 176128]
R2 btwdins;Bluetooth Service; c:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2009-09-04 595232]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 dgdersvc;Device Error Recovery Service; C:\Windows\system32\dgdersvc.exe [2009-12-22 95568]
R2 FsUsbExService;FsUsbExService; C:\Windows\system32\FsUsbExService.Exe [2009-12-22 217088]
R2 HP Support Assistant Service;HP Support Assistant Service; C:\Program Files\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2012-09-27 86528]
R2 HP Wireless Assistant Service;HP Wireless Assistant Service; C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe [2009-12-16 102968]
R2 HPDrvMntSvc.exe;HP Quick Synchronization Service; C:\Program Files\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2012-08-10 197536]
R2 hpHotkeyMonitor;HP Hotkey Monitor; C:\Program Files\Hewlett-Packard\HP HotKey Support\hpHotkeyMonitor.exe [2010-01-04 264248]
R2 hpsrv;HP Service; C:\Windows\system32\Hpservice.exe [2011-05-13 26168]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2009-11-04 268824]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-19 322120]
R2 MsMpSvc;Microsoft Antimalware Service; C:\Program Files\Microsoft Security Client\MsMpEng.exe [2013-01-27 20456]
R2 ST2012_Svc;Spyware Terminator 2012 Realtime Shield Service; C:\Program Files\Spyware Terminator\st_rsser.exe [2013-04-03 587912]
R2 STacSV;@%SystemRoot%\system32\stlang.dll,-10122; C:\Program Files\IDT\WDM\STacSV.exe [2013-05-30 254034]
R2 UNS;Intel(R) Management & Security Application User Notification Service; C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2009-11-04 2320920]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe [2012-08-10 1001376]
R3 NisSrv;@C:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; C:\Program Files\Microsoft Security Client\NisSrv.exe [2013-01-27 295232]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-04-01 116648]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-05-14 256904]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-04-01 116648]
S3 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2011-05-10 136120]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2013-04-24 115608]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2010-07-25 1343400]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 119526
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu logu
Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:
a klikněte na >MoveIt!<. Po skenu restartujte PC a dejte nový log RSIT.
:files
C:\Program Files\Skype\Toolbars
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3683041670-2158295546-2881036051-1000Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3683041670-2158295546-2881036051-1000UA.job
:reg
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
:commands
[Purity]
[Emptytemp]
[Emptyflash]
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontrolu logu
Logfile of random's system information tool 1.09 (written by random/random)
Run by Renata at 2013-06-01 12:05:11
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 38 GB (38%) free of 100 GB
Total RAM: 3055 MB (64% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:05:19, on 1.6.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16576)
Boot mode: Normal
Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Spyware Terminator\st_rsser.exe
C:\Program Files\Hewlett-Packard\HP HotKey Support\QLBController.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe
C:\Program Files\IDT\WDM\sttray.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Users\Renata\AppData\Local\Google\Update\GoogleUpdate.exe
C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe
C:\Windows\System32\StikyNot.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
c:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe
C:\Users\Renata\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Renata\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Renata\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Users\Renata\Downloads\RSIT.exe
C:\Program Files\trend micro\Renata.exe
C:\Windows\system32\DllHost.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - - (no file)
R3 - URLSearchHook: (no name) - {fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - (no file)
R3 - URLSearchHook: (no name) - {7473b6bd-4691-4744-a82b-7854eb3d70b6} - (no file)
R3 - URLSearchHook: (no name) - {124d001a-bdcb-472f-aa59-bbe7e4bc3204} - (no file)
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [QLBController] C:\Program Files\Hewlett-Packard\HP HotKey Support\QLBController.exe /start
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [HPWirelessAssistant] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe 120 C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Main.exe /hidden
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Windows\system32\NeroCheck.exe
O4 - HKLM\..\Run: [MSC] "C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SpywareTerminatorShield] C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe
O4 - HKLM\..\Run: [SpywareTerminatorUpdater] C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe
O4 - HKLM\..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray.exe
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Google Update] "C:\Users\Renata\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [RESTART_STICKY_NOTES] C:\Windows\System32\StikyNot.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Global Startup: Bluetooth.lnk = ?
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: @C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (file missing)
O9 - Extra 'Tools' menuitem: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (file missing)
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: @c:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @c:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (file missing)
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Program Files\IDT\WDM\aestsrv.exe
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - LSI Corporation - C:\Program Files\LSI SoftModem\agrsmsvc.exe
O23 - Service: AMD External Events Utility - AMD - C:\Windows\system32\atiesrxx.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - c:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: Device Error Recovery Service (dgdersvc) - Devguru Co., Ltd. - C:\Windows\system32\dgdersvc.exe
O23 - Service: FsUsbExService - Teruten - C:\Windows\system32\FsUsbExService.Exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Support Framework\hpsa_service.exe
O23 - Service: HP Wireless Assistant Service - Hewlett-Packard - C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
O23 - Service: HP Quick Synchronization Service (HPDrvMntSvc.exe) - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\Shared\HPDrvMntSvc.exe
O23 - Service: HP Hotkey Monitor (hpHotkeyMonitor) - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP HotKey Support\hpHotkeyMonitor.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: HP Service (hpsrv) - Hewlett-Packard Company - C:\Windows\system32\Hpservice.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: Spyware Terminator 2012 Realtime Shield Service (ST2012_Svc) - Crawler.com - C:\Program Files\Spyware Terminator\st_rsser.exe
O23 - Service: @%SystemRoot%\system32\stlang.dll,-10122 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV.exe
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
--
End of file - 9737 bytes
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\HPCeeScheduleForRenata.job
=========Mozilla firefox=========
ProfilePath - C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\0e85her5.default
prefs.js - "browser.startup.homepage" - "www.seznam.cz"
prefs.js - "extensions.enabledItems" - "{ea614400-e918-4741-9a97-7a972ff7c30b}:2.0.10, {fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}:2.5.6.0, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.17"
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.7.700.202 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_11_7_700_202.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@google.com/npPicasa3,version=3.0.0]
"Description"=Picasa3 plugin
"Path"=C:\Program Files\Google\Picasa3\npPicasa3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=C:\Windows\system32\Wat\npWatWeb.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.145\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.145\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
C:\Program Files\Mozilla Firefox\extensions\
{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
{972ce4c6-7e08-4474-a285-3208198ce6fd}
C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll
C:\Program Files\Mozilla Firefox\plugins\
NPOFFICE.DLL
nppdf32.dll
C:\Program Files\Mozilla Firefox\searchplugins\
babylon.xml
google.xml
heureka-cz.xml
jyxo-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2012-07-09 351136]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2010-03-18 98304]
"QLBController"=C:\Program Files\Hewlett-Packard\HP HotKey Support\QLBController.exe [2010-01-04 254520]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-06-04 1791272]
"HPWirelessAssistant"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe [2009-12-16 8192]
"NeroFilterCheck"=C:\Windows\system32\NeroCheck.exe [2001-07-09 155648]
"MSC"=C:\Program Files\Microsoft Security Client\msseces.exe [2013-01-27 947152]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576]
"SpywareTerminatorShield"=C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe [2013-04-03 2777736]
"SpywareTerminatorUpdater"=C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe [2013-04-03 3684488]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray.exe [2013-05-30 495708]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"KiesTrayAgent"= []
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1174016]
"Google Update"=C:\Users\Renata\AppData\Local\Google\Update\GoogleUpdate.exe [2012-07-11 116648]
"RESTART_STICKY_NOTES"=C:\Windows\System32\StikyNot.exe [2009-07-14 354304]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"wave6"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer6"=wdmaud.drv
"vidc.VP60"=C:\Windows\system32\vp6vfw.dll
"vidc.VP61"=C:\Windows\system32\vp6vfw.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2013-06-01 12:02:07 ----D---- C:\_OTM
2013-05-31 23:02:10 ----D---- C:\rsit
2013-05-31 22:32:40 ----A---- C:\Windows\DeleteOnReboot.bat
2013-05-31 22:32:21 ----A---- C:\AdwCleaner[S1].txt
2013-05-31 22:31:43 ----A---- C:\AdwCleaner[R2].txt
2013-05-31 22:20:58 ----A---- C:\AdwCleaner[R1].txt
2013-05-31 20:43:29 ----D---- C:\Program Files\Trend Micro
2013-05-31 18:39:17 ----D---- C:\Program Files\CCleaner
2013-05-30 21:39:03 ----A---- C:\Windows\system32\drivers\atikmpag.sys
2013-05-30 21:39:03 ----A---- C:\Windows\system32\drivers\atikmdag.sys
2013-05-30 21:39:03 ----A---- C:\Windows\system32\drivers\ati2erec.dll
2013-05-30 21:39:03 ----A---- C:\Windows\system32\atitmmxx.dll
2013-05-30 21:39:03 ----A---- C:\Windows\system32\atipdlxx.dll
2013-05-30 21:39:03 ----A---- C:\Windows\system32\atipblag.dat
2013-05-30 21:39:03 ----A---- C:\Windows\system32\atioglxx.dll
2013-05-30 21:39:03 ----A---- C:\Windows\system32\atimuixx.dll
2013-05-30 21:39:03 ----A---- C:\Windows\system32\atimpc32.dll
2013-05-30 21:39:03 ----A---- C:\Windows\system32\atiicdxx.dat
2013-05-30 21:39:03 ----A---- C:\Windows\system32\atiglpxx.dll
2013-05-30 21:39:03 ----A---- C:\Windows\system32\atigktxx.dll
2013-05-30 21:39:03 ----A---- C:\Windows\system32\atiesrxx.exe
2013-05-30 21:39:03 ----A---- C:\Windows\system32\atieclxx.exe
2013-05-30 21:39:03 ----A---- C:\Windows\system32\ATIDEMGX.dll
2013-05-30 21:39:03 ----A---- C:\Windows\system32\aticalrt.dll
2013-05-30 21:39:03 ----A---- C:\Windows\system32\aticaldd.dll
2013-05-30 21:39:03 ----A---- C:\Windows\system32\aticalcl.dll
2013-05-30 21:39:03 ----A---- C:\Windows\system32\atiapfxx.exe
2013-05-30 21:39:03 ----A---- C:\Windows\system32\atiadlxx.dll
2013-05-30 21:39:03 ----A---- C:\Windows\system32\amdpcom32.dll
2013-05-30 21:39:02 ----A---- C:\Windows\system32\ati2edxx.dll
2013-05-30 20:32:48 ----A---- C:\Windows\system32\aestecap.dll
2013-05-30 20:32:48 ----A---- C:\Windows\system32\AESTCom.dll
2013-05-30 20:32:48 ----A---- C:\Windows\system32\aestaren.dll
2013-05-30 20:32:48 ----A---- C:\Windows\system32\aestacap.dll
2013-05-30 20:32:47 ----A---- C:\Windows\system32\stlang.dll
2013-05-30 20:32:47 ----A---- C:\Windows\sttray.exe
2013-05-30 20:32:25 ----A---- C:\Windows\system32\staco.dll
2013-05-26 22:20:57 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2013-05-26 22:20:57 ----A---- C:\Windows\system32\elshyph.dll
2013-05-26 22:20:56 ----A---- C:\Windows\system32\wininet.dll
2013-05-26 22:20:56 ----A---- C:\Windows\system32\wextract.exe
2013-05-26 22:20:56 ----A---- C:\Windows\system32\vbscript.dll
2013-05-26 22:20:56 ----A---- C:\Windows\system32\urlmon.dll
2013-05-26 22:20:56 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2013-05-26 22:20:56 ----A---- C:\Windows\system32\msrating.dll
2013-05-26 22:20:56 ----A---- C:\Windows\system32\msls31.dll
2013-05-26 22:20:56 ----A---- C:\Windows\system32\mshtmled.dll
2013-05-26 22:20:56 ----A---- C:\Windows\system32\msfeeds.dll
2013-05-26 22:20:56 ----A---- C:\Windows\system32\jsproxy.dll
2013-05-26 22:20:56 ----A---- C:\Windows\system32\inseng.dll
2013-05-26 22:20:56 ----A---- C:\Windows\system32\iexpress.exe
2013-05-26 22:20:56 ----A---- C:\Windows\system32\iertutil.dll
2013-05-26 22:20:55 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2013-05-26 22:20:55 ----A---- C:\Windows\system32\pngfilt.dll
2013-05-26 22:20:55 ----A---- C:\Windows\system32\occache.dll
2013-05-26 22:20:55 ----A---- C:\Windows\system32\mshtmler.dll
2013-05-26 22:20:55 ----A---- C:\Windows\system32\mshtml.dll
2013-05-26 22:20:55 ----A---- C:\Windows\system32\mshta.exe
2013-05-26 22:20:55 ----A---- C:\Windows\system32\msfeedssync.exe
2013-05-26 22:20:55 ----A---- C:\Windows\system32\msfeedsbs.dll
2013-05-26 22:20:55 ----A---- C:\Windows\system32\jscript9.dll
2013-05-26 22:20:55 ----A---- C:\Windows\system32\jscript.dll
2013-05-26 22:20:55 ----A---- C:\Windows\system32\imgutil.dll
2013-05-26 22:20:55 ----A---- C:\Windows\system32\ieUnatt.exe
2013-05-26 22:20:55 ----A---- C:\Windows\system32\ieui.dll
2013-05-26 22:20:55 ----A---- C:\Windows\system32\iesysprep.dll
2013-05-26 22:20:55 ----A---- C:\Windows\system32\iepeers.dll
2013-05-26 22:20:55 ----A---- C:\Windows\system32\ieframe.dll
2013-05-26 22:20:55 ----A---- C:\Windows\system32\IEAdvpack.dll
2013-05-26 22:20:54 ----A---- C:\Windows\system32\webcheck.dll
2013-05-26 22:20:54 ----A---- C:\Windows\system32\url.dll
2013-05-26 22:20:54 ----A---- C:\Windows\system32\mshtmlmedia.dll
2013-05-26 22:20:54 ----A---- C:\Windows\system32\licmgr10.dll
2013-05-26 22:20:54 ----A---- C:\Windows\system32\iesetup.dll
2013-05-26 22:20:54 ----A---- C:\Windows\system32\iernonce.dll
2013-05-26 22:20:54 ----A---- C:\Windows\system32\iedkcs32.dll
2013-05-26 22:20:54 ----A---- C:\Windows\system32\ieapfltr.dll
2013-05-26 22:20:54 ----A---- C:\Windows\system32\ieapfltr.dat
2013-05-26 22:20:54 ----A---- C:\Windows\system32\ie4uinit.exe
2013-05-26 22:20:54 ----A---- C:\Windows\system32\icardie.dll
2013-05-26 22:20:54 ----A---- C:\Windows\system32\dxtrans.dll
2013-05-26 22:20:54 ----A---- C:\Windows\system32\dxtmsft.dll
2013-05-23 22:32:37 ----D---- C:\Program Files\Cisco
2013-05-23 20:44:38 ----A---- C:\Windows\system32\drivers\sp_rsdrv2.sys
2013-05-23 20:44:22 ----D---- C:\Users\Renata\AppData\Roaming\Spyware Terminator
2013-05-23 20:44:22 ----D---- C:\ProgramData\Spyware Terminator
2013-05-23 20:41:56 ----D---- C:\Program Files\Spyware Terminator
2013-05-23 20:40:47 ----N---- C:\Windows\system32\agrsmdel.exe
2013-05-23 20:40:47 ----N---- C:\Windows\system32\agrsco64.dll
2013-05-23 20:40:10 ----D---- C:\Program Files\LSI SoftModem
2013-05-23 20:38:41 ----N---- C:\Windows\system32\agrscoin.dll
2013-05-23 20:38:41 ----A---- C:\Windows\system32\drivers\AGRSM.sys
2013-05-23 20:38:41 ----A---- C:\Windows\agrsmdel.exe
2013-05-23 20:24:19 ----D---- C:\Windows\Options
2013-05-23 20:23:49 ----D---- C:\Windows\system32\nn-NO
2013-05-23 20:23:49 ----A---- C:\Windows\system32\wgapiloc.dll
2013-05-23 20:23:49 ----A---- C:\Windows\system32\wgapi.dll
2013-05-23 20:23:49 ----A---- C:\Windows\system32\wcapiU.dll
2013-05-23 20:23:49 ----A---- C:\Windows\system32\athihvui.dll
2013-05-23 20:23:49 ----A---- C:\Windows\system32\athihvs.dll
2013-05-23 20:23:49 ----A---- C:\Windows\system32\athcfg11resloc.dll
2013-05-23 20:23:48 ----A---- C:\Windows\system32\wcapi.dll
2013-05-23 20:23:48 ----A---- C:\Windows\system32\athcfg20U.dll
2013-05-23 20:23:48 ----A---- C:\Windows\system32\athcfg20resU.dll
2013-05-23 20:23:48 ----A---- C:\Windows\system32\athcfg20res.dll
2013-05-23 20:23:48 ----A---- C:\Windows\system32\athcfg20.dll
2013-05-15 16:57:11 ----A---- C:\Windows\system32\wwansvc.dll
2013-05-15 16:57:11 ----A---- C:\Windows\system32\wwanprotdim.dll
2013-05-15 16:57:10 ----A---- C:\Windows\system32\win32k.sys
2013-05-15 16:57:04 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2013-05-15 16:57:04 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2013-05-15 16:56:57 ----A---- C:\Windows\system32\shell32.dll
2013-05-15 16:56:56 ----A---- C:\Windows\system32\consent.exe
2013-05-15 16:56:56 ----A---- C:\Windows\system32\authui.dll
2013-05-15 16:56:55 ----A---- C:\Windows\system32\shdocvw.dll
2013-05-15 16:56:55 ----A---- C:\Windows\system32\appinfo.dll
======List of files/folders modified in the last 1 month======
2013-06-01 12:04:53 ----D---- C:\Windows\Temp
2013-06-01 12:03:53 ----A---- C:\Windows\system32\log.txt
2013-06-01 12:02:52 ----D---- C:\Windows\system32\config
2013-06-01 12:02:32 ----RD---- C:\Program Files\Skype
2013-06-01 12:02:32 ----D---- C:\Windows\Tasks
2013-06-01 11:58:59 ----D---- C:\Windows\System32
2013-05-31 22:40:52 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-05-31 22:34:40 ----D---- C:\Windows\system32\drivers
2013-05-31 22:34:34 ----D---- C:\Windows
2013-05-31 22:32:41 ----RD---- C:\Program Files
2013-05-31 22:32:40 ----HD---- C:\ProgramData
2013-05-31 20:48:17 ----SHD---- C:\System Volume Information
2013-05-31 20:46:43 ----D---- C:\Windows\inf
2013-05-31 20:43:34 ----SHD---- C:\Windows\Installer
2013-05-31 19:06:49 ----RD---- C:\Users
2013-05-31 19:04:33 ----D---- C:\Windows\system32\Tasks
2013-05-31 19:01:22 ----HD---- C:\Program Files\InstallShield Installation Information
2013-05-31 19:01:20 ----D---- C:\Program Files\Sega
2013-05-31 19:01:05 ----RSD---- C:\Windows\Fonts
2013-05-31 18:52:24 ----D---- C:\Users\Renata\AppData\Roaming\DAEMON Tools Lite
2013-05-31 18:50:43 ----D---- C:\Windows\Panther
2013-05-31 18:50:43 ----D---- C:\Windows\ModemLogs
2013-05-31 18:50:40 ----D---- C:\Windows\Minidump
2013-05-31 18:50:40 ----D---- C:\Windows\Logs
2013-05-31 18:50:40 ----D---- C:\Windows\debug
2013-05-31 18:33:20 ----D---- C:\ProgramData\Skype
2013-05-31 18:33:19 ----D---- C:\Program Files\Common Files
2013-05-31 18:33:13 ----D---- C:\Users\Renata\AppData\Roaming\Skype
2013-05-31 18:30:02 ----D---- C:\Program Files\All Ten Fingers
2013-05-30 21:45:45 ----D---- C:\Windows\system32\catroot
2013-05-30 21:45:07 ----D---- C:\Windows\system32\DriverStore
2013-05-30 21:38:37 ----D---- C:\SwSetup
2013-05-30 21:38:34 ----A---- C:\Windows\system32\coinst.dll
2013-05-30 21:38:34 ----A---- C:\Windows\system32\atiuxpag.dll
2013-05-30 21:38:34 ----A---- C:\Windows\system32\atiumdva.dll
2013-05-30 21:38:34 ----A---- C:\Windows\system32\atiumdag.dll
2013-05-30 21:38:34 ----A---- C:\Windows\system32\atiu9pag.dll
2013-05-30 21:38:32 ----A---- C:\Windows\system32\atidxx32.dll
2013-05-30 21:38:32 ----A---- C:\Windows\system32\aticfx32.dll
2013-05-30 20:34:33 ----D---- C:\Program Files\IDT
2013-05-30 20:28:24 ----N---- C:\Windows\system32\stapi32.dll
2013-05-30 20:28:24 ----A---- C:\Windows\system32\stcplx.dll
2013-05-30 20:28:24 ----A---- C:\Windows\system32\stapo.dll
2013-05-30 17:29:57 ----A---- C:\Windows\system32\HP_ActiveX_Patch_NOT_DETECTED.txt
2013-05-29 18:24:18 ----D---- C:\Windows\rescache
2013-05-27 05:43:20 ----D---- C:\Windows\winsxs
2013-05-27 05:33:07 ----D---- C:\Windows\system32\cs-CZ
2013-05-27 05:33:07 ----D---- C:\Program Files\Internet Explorer
2013-05-27 05:33:04 ----D---- C:\Windows\system32\migration
2013-05-27 05:33:04 ----D---- C:\Windows\PolicyDefinitions
2013-05-27 05:33:03 ----D---- C:\Windows\system32\en-US
2013-05-26 22:28:08 ----D---- C:\Windows\system32\catroot2
2013-05-23 20:23:49 ----D---- C:\Windows\system32\zh-TW
2013-05-23 20:23:49 ----D---- C:\Windows\system32\zh-CN
2013-05-23 20:23:49 ----D---- C:\Windows\system32\tr-TR
2013-05-23 20:23:49 ----D---- C:\Windows\system32\sv-SE
2013-05-23 20:23:49 ----D---- C:\Windows\system32\ru-RU
2013-05-23 20:23:49 ----D---- C:\Windows\system32\pt-PT
2013-05-23 20:23:49 ----D---- C:\Windows\system32\pl-PL
2013-05-23 20:23:49 ----D---- C:\Windows\system32\nl-NL
2013-05-23 20:23:49 ----D---- C:\Windows\system32\ko-KR
2013-05-23 20:23:49 ----D---- C:\Windows\system32\ja-JP
2013-05-23 20:23:49 ----D---- C:\Windows\system32\it-IT
2013-05-23 20:23:49 ----D---- C:\Windows\system32\hu-HU
2013-05-23 20:23:49 ----D---- C:\Windows\system32\fr-FR
2013-05-23 20:23:49 ----D---- C:\Windows\system32\fi-FI
2013-05-23 20:23:49 ----D---- C:\Windows\system32\es-ES
2013-05-23 20:23:49 ----D---- C:\Windows\system32\el-GR
2013-05-23 20:23:49 ----D---- C:\Windows\system32\de-DE
2013-05-23 20:23:49 ----D---- C:\Windows\system32\da-DK
2013-05-19 18:59:53 ----D---- C:\Windows\Microsoft.NET
2013-05-19 18:58:52 ----RSD---- C:\Windows\assembly
2013-05-17 06:01:43 ----D---- C:\Windows\Prefetch
2013-05-15 21:26:03 ----D---- C:\Windows\AppPatch
2013-05-15 19:39:38 ----A---- C:\Windows\win.ini
2013-05-15 18:58:33 ----A---- C:\Windows\system32\MRT.exe
2013-05-14 21:37:44 ----A---- C:\Windows\system32\FlashPlayerApp.exe
2013-05-13 19:21:03 ----D---- C:\ProgramData\BrowserProtect
2013-05-02 17:28:50 ----N---- C:\Windows\system32\MpSigStub.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 giveio;giveio; C:\Windows\system32\giveio.sys [1996-04-03 5248]
R0 hpdskflt;HP Filter; C:\Windows\system32\DRIVERS\hpdskflt.sys [2011-05-13 25656]
R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2013-01-20 195296]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R0 speedfan;speedfan; C:\Windows\system32\speedfan.sys [2011-03-18 25240]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2013-04-14 466008]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 388096]
R1 MpKsl710efd9f;MpKsl710efd9f; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{B0A5877F-0A07-4A76-A1CB-D5E8E1422882}\MpKsl710efd9f.sys [2013-06-01 29904]
R1 sp_rsdrv2;Spyware Terminator 2012 Realtime Shield Driver; \??\C:\Windows\system32\drivers\sp_rsdrv2.sys [2011-06-21 32768]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R2 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2013-01-20 100328]
R3 Accelerometer;HP Mobile Data Protection Sensor; C:\Windows\system32\DRIVERS\Accelerometer.sys [2011-05-13 35896]
R3 AgereSoftModem;Agere Systems Soft Modem; C:\Windows\system32\DRIVERS\AGRSM.sys [2013-05-23 1163328]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2013-05-30 5590016]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2013-05-30 210432]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athr.sys [2011-02-22 2184704]
R3 AtiHdmiService;ATI Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\AtiHdmi.sys [2010-03-09 107024]
R3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 34816]
R3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696]
R3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 60416]
R3 btwaudio;Bluetooth Audio Device Service; C:\Windows\system32\drivers\btwaudio.sys [2009-09-17 86056]
R3 btwavdt;Bluetooth AVDT; C:\Windows\system32\DRIVERS\btwavdt.sys [2009-09-17 108072]
R3 btwl2cap;Bluetooth L2CAP Service; C:\Windows\system32\DRIVERS\btwl2cap.sys [2009-09-17 29472]
R3 btwrchid;btwrchid; C:\Windows\system32\DRIVERS\btwrchid.sys [2009-09-17 18472]
R3 dgderdrv;dgderdrv; C:\Windows\System32\drivers\dgderdrv.sys [2009-12-22 18136]
R3 FsUsbExDisk;FsUsbExDisk; \??\C:\Windows\system32\FsUsbExDisk.SYS [2009-12-22 36640]
R3 HECI;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECI.sys [2009-09-17 41088]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\Windows\system32\DRIVERS\HpqKbFiltr.sys [2009-07-16 15872]
R3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\Windows\system32\DRIVERS\snp2uvc.sys [2009-12-18 1763968]
R3 STHDA;@%SystemRoot%\system32\stlang.dll,-10322; C:\Windows\system32\DRIVERS\stwrt.sys [2013-05-30 431616]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2010-06-04 1303728]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 14336]
S2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;Ovladač filtru AMD portu AGP; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2013-05-30 5590016]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 393728]
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device; C:\Windows\system32\DRIVERS\ew_hwusbdev.sys []
S3 ew_usbenumfilter;huawei_CompositeFilter; C:\Windows\system32\DRIVERS\ew_usbenumfilter.sys []
S3 huawei_cdcacm;huawei_cdcacm; C:\Windows\system32\DRIVERS\ew_jucdcacm.sys []
S3 huawei_enumerator;huawei_enumerator; C:\Windows\system32\DRIVERS\ew_jubusenum.sys []
S3 huawei_ext_ctrl;huawei_ext_ctrl; C:\Windows\system32\DRIVERS\ew_juextctrl.sys []
S3 huawei_wwanecm;huawei_wwanecm; C:\Windows\system32\DRIVERS\ew_juwwanecm.sys []
S3 nmwcd;Nokia USB Phone Parent; C:\Windows\system32\drivers\ccdcmb.sys []
S3 nmwcdc;Nokia USB Generic; C:\Windows\system32\drivers\ccdcmbo.sys []
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfd.sys []
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\Windows\System32\Drivers\RtsUStor.sys [2009-11-11 181792]
S3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt86win7.sys [2010-01-12 257568]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632]
S3 sisagp;Filtr SIS sběrnice AGP; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 35840]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltj.sys []
S3 viaagp;Filtr VIA sběrnice AGP; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-05-10 65640]
R2 AESTFilters;Andrea ST Filters Service; C:\Program Files\IDT\WDM\aestsrv.exe [2013-05-30 81920]
R2 AgereModemAudio;Agere Modem Call Progress Audio; C:\Program Files\LSI SoftModem\agrsmsvc.exe [2013-05-23 14336]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2013-05-30 176128]
R2 btwdins;Bluetooth Service; c:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2009-09-04 595232]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 dgdersvc;Device Error Recovery Service; C:\Windows\system32\dgdersvc.exe [2009-12-22 95568]
R2 FsUsbExService;FsUsbExService; C:\Windows\system32\FsUsbExService.Exe [2009-12-22 217088]
R2 HPDrvMntSvc.exe;HP Quick Synchronization Service; C:\Program Files\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2012-08-10 197536]
R2 hpHotkeyMonitor;HP Hotkey Monitor; C:\Program Files\Hewlett-Packard\HP HotKey Support\hpHotkeyMonitor.exe [2010-01-04 264248]
R2 hpsrv;HP Service; C:\Windows\system32\Hpservice.exe [2011-05-13 26168]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2009-11-04 268824]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-19 322120]
R2 MsMpSvc;Microsoft Antimalware Service; C:\Program Files\Microsoft Security Client\MsMpEng.exe [2013-01-27 20456]
R2 ST2012_Svc;Spyware Terminator 2012 Realtime Shield Service; C:\Program Files\Spyware Terminator\st_rsser.exe [2013-04-03 587912]
R2 STacSV;@%SystemRoot%\system32\stlang.dll,-10122; C:\Program Files\IDT\WDM\STacSV.exe [2013-05-30 254034]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe [2012-08-10 1001376]
R3 NisSrv;@C:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; C:\Program Files\Microsoft Security Client\NisSrv.exe [2013-01-27 295232]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-04-01 116648]
S2 HP Support Assistant Service;HP Support Assistant Service; C:\Program Files\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2012-09-27 86528]
S2 HP Wireless Assistant Service;HP Wireless Assistant Service; C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe [2009-12-16 102968]
S2 UNS;Intel(R) Management & Security Application User Notification Service; C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2009-11-04 2320920]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-05-14 256904]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-04-01 116648]
S3 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2011-05-10 136120]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2013-04-24 115608]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2010-07-25 1343400]
-----------------EOF-----------------
Run by Renata at 2013-06-01 12:05:11
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 38 GB (38%) free of 100 GB
Total RAM: 3055 MB (64% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:05:19, on 1.6.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16576)
Boot mode: Normal
Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Spyware Terminator\st_rsser.exe
C:\Program Files\Hewlett-Packard\HP HotKey Support\QLBController.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe
C:\Program Files\IDT\WDM\sttray.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Users\Renata\AppData\Local\Google\Update\GoogleUpdate.exe
C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe
C:\Windows\System32\StikyNot.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
c:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe
C:\Users\Renata\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Renata\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Renata\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Users\Renata\Downloads\RSIT.exe
C:\Program Files\trend micro\Renata.exe
C:\Windows\system32\DllHost.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - - (no file)
R3 - URLSearchHook: (no name) - {fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - (no file)
R3 - URLSearchHook: (no name) - {7473b6bd-4691-4744-a82b-7854eb3d70b6} - (no file)
R3 - URLSearchHook: (no name) - {124d001a-bdcb-472f-aa59-bbe7e4bc3204} - (no file)
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [QLBController] C:\Program Files\Hewlett-Packard\HP HotKey Support\QLBController.exe /start
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [HPWirelessAssistant] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe 120 C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Main.exe /hidden
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Windows\system32\NeroCheck.exe
O4 - HKLM\..\Run: [MSC] "C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SpywareTerminatorShield] C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe
O4 - HKLM\..\Run: [SpywareTerminatorUpdater] C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe
O4 - HKLM\..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray.exe
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Google Update] "C:\Users\Renata\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [RESTART_STICKY_NOTES] C:\Windows\System32\StikyNot.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Global Startup: Bluetooth.lnk = ?
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: @C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (file missing)
O9 - Extra 'Tools' menuitem: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (file missing)
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: @c:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @c:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (file missing)
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Program Files\IDT\WDM\aestsrv.exe
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - LSI Corporation - C:\Program Files\LSI SoftModem\agrsmsvc.exe
O23 - Service: AMD External Events Utility - AMD - C:\Windows\system32\atiesrxx.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - c:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: Device Error Recovery Service (dgdersvc) - Devguru Co., Ltd. - C:\Windows\system32\dgdersvc.exe
O23 - Service: FsUsbExService - Teruten - C:\Windows\system32\FsUsbExService.Exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Support Framework\hpsa_service.exe
O23 - Service: HP Wireless Assistant Service - Hewlett-Packard - C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
O23 - Service: HP Quick Synchronization Service (HPDrvMntSvc.exe) - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\Shared\HPDrvMntSvc.exe
O23 - Service: HP Hotkey Monitor (hpHotkeyMonitor) - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP HotKey Support\hpHotkeyMonitor.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: HP Service (hpsrv) - Hewlett-Packard Company - C:\Windows\system32\Hpservice.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: Spyware Terminator 2012 Realtime Shield Service (ST2012_Svc) - Crawler.com - C:\Program Files\Spyware Terminator\st_rsser.exe
O23 - Service: @%SystemRoot%\system32\stlang.dll,-10122 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV.exe
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
--
End of file - 9737 bytes
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\HPCeeScheduleForRenata.job
=========Mozilla firefox=========
ProfilePath - C:\Users\Renata\AppData\Roaming\Mozilla\Firefox\Profiles\0e85her5.default
prefs.js - "browser.startup.homepage" - "www.seznam.cz"
prefs.js - "extensions.enabledItems" - "{ea614400-e918-4741-9a97-7a972ff7c30b}:2.0.10, {fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}:2.5.6.0, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.17"
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.7.700.202 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_11_7_700_202.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@google.com/npPicasa3,version=3.0.0]
"Description"=Picasa3 plugin
"Path"=C:\Program Files\Google\Picasa3\npPicasa3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=C:\Windows\system32\Wat\npWatWeb.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.145\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.145\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
C:\Program Files\Mozilla Firefox\extensions\
{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
{972ce4c6-7e08-4474-a285-3208198ce6fd}
C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll
C:\Program Files\Mozilla Firefox\plugins\
NPOFFICE.DLL
nppdf32.dll
C:\Program Files\Mozilla Firefox\searchplugins\
babylon.xml
google.xml
heureka-cz.xml
jyxo-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2012-07-09 351136]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2010-03-18 98304]
"QLBController"=C:\Program Files\Hewlett-Packard\HP HotKey Support\QLBController.exe [2010-01-04 254520]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-06-04 1791272]
"HPWirelessAssistant"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe [2009-12-16 8192]
"NeroFilterCheck"=C:\Windows\system32\NeroCheck.exe [2001-07-09 155648]
"MSC"=C:\Program Files\Microsoft Security Client\msseces.exe [2013-01-27 947152]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576]
"SpywareTerminatorShield"=C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe [2013-04-03 2777736]
"SpywareTerminatorUpdater"=C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe [2013-04-03 3684488]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray.exe [2013-05-30 495708]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"KiesTrayAgent"= []
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1174016]
"Google Update"=C:\Users\Renata\AppData\Local\Google\Update\GoogleUpdate.exe [2012-07-11 116648]
"RESTART_STICKY_NOTES"=C:\Windows\System32\StikyNot.exe [2009-07-14 354304]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"wave6"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer6"=wdmaud.drv
"vidc.VP60"=C:\Windows\system32\vp6vfw.dll
"vidc.VP61"=C:\Windows\system32\vp6vfw.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2013-06-01 12:02:07 ----D---- C:\_OTM
2013-05-31 23:02:10 ----D---- C:\rsit
2013-05-31 22:32:40 ----A---- C:\Windows\DeleteOnReboot.bat
2013-05-31 22:32:21 ----A---- C:\AdwCleaner[S1].txt
2013-05-31 22:31:43 ----A---- C:\AdwCleaner[R2].txt
2013-05-31 22:20:58 ----A---- C:\AdwCleaner[R1].txt
2013-05-31 20:43:29 ----D---- C:\Program Files\Trend Micro
2013-05-31 18:39:17 ----D---- C:\Program Files\CCleaner
2013-05-30 21:39:03 ----A---- C:\Windows\system32\drivers\atikmpag.sys
2013-05-30 21:39:03 ----A---- C:\Windows\system32\drivers\atikmdag.sys
2013-05-30 21:39:03 ----A---- C:\Windows\system32\drivers\ati2erec.dll
2013-05-30 21:39:03 ----A---- C:\Windows\system32\atitmmxx.dll
2013-05-30 21:39:03 ----A---- C:\Windows\system32\atipdlxx.dll
2013-05-30 21:39:03 ----A---- C:\Windows\system32\atipblag.dat
2013-05-30 21:39:03 ----A---- C:\Windows\system32\atioglxx.dll
2013-05-30 21:39:03 ----A---- C:\Windows\system32\atimuixx.dll
2013-05-30 21:39:03 ----A---- C:\Windows\system32\atimpc32.dll
2013-05-30 21:39:03 ----A---- C:\Windows\system32\atiicdxx.dat
2013-05-30 21:39:03 ----A---- C:\Windows\system32\atiglpxx.dll
2013-05-30 21:39:03 ----A---- C:\Windows\system32\atigktxx.dll
2013-05-30 21:39:03 ----A---- C:\Windows\system32\atiesrxx.exe
2013-05-30 21:39:03 ----A---- C:\Windows\system32\atieclxx.exe
2013-05-30 21:39:03 ----A---- C:\Windows\system32\ATIDEMGX.dll
2013-05-30 21:39:03 ----A---- C:\Windows\system32\aticalrt.dll
2013-05-30 21:39:03 ----A---- C:\Windows\system32\aticaldd.dll
2013-05-30 21:39:03 ----A---- C:\Windows\system32\aticalcl.dll
2013-05-30 21:39:03 ----A---- C:\Windows\system32\atiapfxx.exe
2013-05-30 21:39:03 ----A---- C:\Windows\system32\atiadlxx.dll
2013-05-30 21:39:03 ----A---- C:\Windows\system32\amdpcom32.dll
2013-05-30 21:39:02 ----A---- C:\Windows\system32\ati2edxx.dll
2013-05-30 20:32:48 ----A---- C:\Windows\system32\aestecap.dll
2013-05-30 20:32:48 ----A---- C:\Windows\system32\AESTCom.dll
2013-05-30 20:32:48 ----A---- C:\Windows\system32\aestaren.dll
2013-05-30 20:32:48 ----A---- C:\Windows\system32\aestacap.dll
2013-05-30 20:32:47 ----A---- C:\Windows\system32\stlang.dll
2013-05-30 20:32:47 ----A---- C:\Windows\sttray.exe
2013-05-30 20:32:25 ----A---- C:\Windows\system32\staco.dll
2013-05-26 22:20:57 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2013-05-26 22:20:57 ----A---- C:\Windows\system32\elshyph.dll
2013-05-26 22:20:56 ----A---- C:\Windows\system32\wininet.dll
2013-05-26 22:20:56 ----A---- C:\Windows\system32\wextract.exe
2013-05-26 22:20:56 ----A---- C:\Windows\system32\vbscript.dll
2013-05-26 22:20:56 ----A---- C:\Windows\system32\urlmon.dll
2013-05-26 22:20:56 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2013-05-26 22:20:56 ----A---- C:\Windows\system32\msrating.dll
2013-05-26 22:20:56 ----A---- C:\Windows\system32\msls31.dll
2013-05-26 22:20:56 ----A---- C:\Windows\system32\mshtmled.dll
2013-05-26 22:20:56 ----A---- C:\Windows\system32\msfeeds.dll
2013-05-26 22:20:56 ----A---- C:\Windows\system32\jsproxy.dll
2013-05-26 22:20:56 ----A---- C:\Windows\system32\inseng.dll
2013-05-26 22:20:56 ----A---- C:\Windows\system32\iexpress.exe
2013-05-26 22:20:56 ----A---- C:\Windows\system32\iertutil.dll
2013-05-26 22:20:55 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2013-05-26 22:20:55 ----A---- C:\Windows\system32\pngfilt.dll
2013-05-26 22:20:55 ----A---- C:\Windows\system32\occache.dll
2013-05-26 22:20:55 ----A---- C:\Windows\system32\mshtmler.dll
2013-05-26 22:20:55 ----A---- C:\Windows\system32\mshtml.dll
2013-05-26 22:20:55 ----A---- C:\Windows\system32\mshta.exe
2013-05-26 22:20:55 ----A---- C:\Windows\system32\msfeedssync.exe
2013-05-26 22:20:55 ----A---- C:\Windows\system32\msfeedsbs.dll
2013-05-26 22:20:55 ----A---- C:\Windows\system32\jscript9.dll
2013-05-26 22:20:55 ----A---- C:\Windows\system32\jscript.dll
2013-05-26 22:20:55 ----A---- C:\Windows\system32\imgutil.dll
2013-05-26 22:20:55 ----A---- C:\Windows\system32\ieUnatt.exe
2013-05-26 22:20:55 ----A---- C:\Windows\system32\ieui.dll
2013-05-26 22:20:55 ----A---- C:\Windows\system32\iesysprep.dll
2013-05-26 22:20:55 ----A---- C:\Windows\system32\iepeers.dll
2013-05-26 22:20:55 ----A---- C:\Windows\system32\ieframe.dll
2013-05-26 22:20:55 ----A---- C:\Windows\system32\IEAdvpack.dll
2013-05-26 22:20:54 ----A---- C:\Windows\system32\webcheck.dll
2013-05-26 22:20:54 ----A---- C:\Windows\system32\url.dll
2013-05-26 22:20:54 ----A---- C:\Windows\system32\mshtmlmedia.dll
2013-05-26 22:20:54 ----A---- C:\Windows\system32\licmgr10.dll
2013-05-26 22:20:54 ----A---- C:\Windows\system32\iesetup.dll
2013-05-26 22:20:54 ----A---- C:\Windows\system32\iernonce.dll
2013-05-26 22:20:54 ----A---- C:\Windows\system32\iedkcs32.dll
2013-05-26 22:20:54 ----A---- C:\Windows\system32\ieapfltr.dll
2013-05-26 22:20:54 ----A---- C:\Windows\system32\ieapfltr.dat
2013-05-26 22:20:54 ----A---- C:\Windows\system32\ie4uinit.exe
2013-05-26 22:20:54 ----A---- C:\Windows\system32\icardie.dll
2013-05-26 22:20:54 ----A---- C:\Windows\system32\dxtrans.dll
2013-05-26 22:20:54 ----A---- C:\Windows\system32\dxtmsft.dll
2013-05-23 22:32:37 ----D---- C:\Program Files\Cisco
2013-05-23 20:44:38 ----A---- C:\Windows\system32\drivers\sp_rsdrv2.sys
2013-05-23 20:44:22 ----D---- C:\Users\Renata\AppData\Roaming\Spyware Terminator
2013-05-23 20:44:22 ----D---- C:\ProgramData\Spyware Terminator
2013-05-23 20:41:56 ----D---- C:\Program Files\Spyware Terminator
2013-05-23 20:40:47 ----N---- C:\Windows\system32\agrsmdel.exe
2013-05-23 20:40:47 ----N---- C:\Windows\system32\agrsco64.dll
2013-05-23 20:40:10 ----D---- C:\Program Files\LSI SoftModem
2013-05-23 20:38:41 ----N---- C:\Windows\system32\agrscoin.dll
2013-05-23 20:38:41 ----A---- C:\Windows\system32\drivers\AGRSM.sys
2013-05-23 20:38:41 ----A---- C:\Windows\agrsmdel.exe
2013-05-23 20:24:19 ----D---- C:\Windows\Options
2013-05-23 20:23:49 ----D---- C:\Windows\system32\nn-NO
2013-05-23 20:23:49 ----A---- C:\Windows\system32\wgapiloc.dll
2013-05-23 20:23:49 ----A---- C:\Windows\system32\wgapi.dll
2013-05-23 20:23:49 ----A---- C:\Windows\system32\wcapiU.dll
2013-05-23 20:23:49 ----A---- C:\Windows\system32\athihvui.dll
2013-05-23 20:23:49 ----A---- C:\Windows\system32\athihvs.dll
2013-05-23 20:23:49 ----A---- C:\Windows\system32\athcfg11resloc.dll
2013-05-23 20:23:48 ----A---- C:\Windows\system32\wcapi.dll
2013-05-23 20:23:48 ----A---- C:\Windows\system32\athcfg20U.dll
2013-05-23 20:23:48 ----A---- C:\Windows\system32\athcfg20resU.dll
2013-05-23 20:23:48 ----A---- C:\Windows\system32\athcfg20res.dll
2013-05-23 20:23:48 ----A---- C:\Windows\system32\athcfg20.dll
2013-05-15 16:57:11 ----A---- C:\Windows\system32\wwansvc.dll
2013-05-15 16:57:11 ----A---- C:\Windows\system32\wwanprotdim.dll
2013-05-15 16:57:10 ----A---- C:\Windows\system32\win32k.sys
2013-05-15 16:57:04 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2013-05-15 16:57:04 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2013-05-15 16:56:57 ----A---- C:\Windows\system32\shell32.dll
2013-05-15 16:56:56 ----A---- C:\Windows\system32\consent.exe
2013-05-15 16:56:56 ----A---- C:\Windows\system32\authui.dll
2013-05-15 16:56:55 ----A---- C:\Windows\system32\shdocvw.dll
2013-05-15 16:56:55 ----A---- C:\Windows\system32\appinfo.dll
======List of files/folders modified in the last 1 month======
2013-06-01 12:04:53 ----D---- C:\Windows\Temp
2013-06-01 12:03:53 ----A---- C:\Windows\system32\log.txt
2013-06-01 12:02:52 ----D---- C:\Windows\system32\config
2013-06-01 12:02:32 ----RD---- C:\Program Files\Skype
2013-06-01 12:02:32 ----D---- C:\Windows\Tasks
2013-06-01 11:58:59 ----D---- C:\Windows\System32
2013-05-31 22:40:52 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-05-31 22:34:40 ----D---- C:\Windows\system32\drivers
2013-05-31 22:34:34 ----D---- C:\Windows
2013-05-31 22:32:41 ----RD---- C:\Program Files
2013-05-31 22:32:40 ----HD---- C:\ProgramData
2013-05-31 20:48:17 ----SHD---- C:\System Volume Information
2013-05-31 20:46:43 ----D---- C:\Windows\inf
2013-05-31 20:43:34 ----SHD---- C:\Windows\Installer
2013-05-31 19:06:49 ----RD---- C:\Users
2013-05-31 19:04:33 ----D---- C:\Windows\system32\Tasks
2013-05-31 19:01:22 ----HD---- C:\Program Files\InstallShield Installation Information
2013-05-31 19:01:20 ----D---- C:\Program Files\Sega
2013-05-31 19:01:05 ----RSD---- C:\Windows\Fonts
2013-05-31 18:52:24 ----D---- C:\Users\Renata\AppData\Roaming\DAEMON Tools Lite
2013-05-31 18:50:43 ----D---- C:\Windows\Panther
2013-05-31 18:50:43 ----D---- C:\Windows\ModemLogs
2013-05-31 18:50:40 ----D---- C:\Windows\Minidump
2013-05-31 18:50:40 ----D---- C:\Windows\Logs
2013-05-31 18:50:40 ----D---- C:\Windows\debug
2013-05-31 18:33:20 ----D---- C:\ProgramData\Skype
2013-05-31 18:33:19 ----D---- C:\Program Files\Common Files
2013-05-31 18:33:13 ----D---- C:\Users\Renata\AppData\Roaming\Skype
2013-05-31 18:30:02 ----D---- C:\Program Files\All Ten Fingers
2013-05-30 21:45:45 ----D---- C:\Windows\system32\catroot
2013-05-30 21:45:07 ----D---- C:\Windows\system32\DriverStore
2013-05-30 21:38:37 ----D---- C:\SwSetup
2013-05-30 21:38:34 ----A---- C:\Windows\system32\coinst.dll
2013-05-30 21:38:34 ----A---- C:\Windows\system32\atiuxpag.dll
2013-05-30 21:38:34 ----A---- C:\Windows\system32\atiumdva.dll
2013-05-30 21:38:34 ----A---- C:\Windows\system32\atiumdag.dll
2013-05-30 21:38:34 ----A---- C:\Windows\system32\atiu9pag.dll
2013-05-30 21:38:32 ----A---- C:\Windows\system32\atidxx32.dll
2013-05-30 21:38:32 ----A---- C:\Windows\system32\aticfx32.dll
2013-05-30 20:34:33 ----D---- C:\Program Files\IDT
2013-05-30 20:28:24 ----N---- C:\Windows\system32\stapi32.dll
2013-05-30 20:28:24 ----A---- C:\Windows\system32\stcplx.dll
2013-05-30 20:28:24 ----A---- C:\Windows\system32\stapo.dll
2013-05-30 17:29:57 ----A---- C:\Windows\system32\HP_ActiveX_Patch_NOT_DETECTED.txt
2013-05-29 18:24:18 ----D---- C:\Windows\rescache
2013-05-27 05:43:20 ----D---- C:\Windows\winsxs
2013-05-27 05:33:07 ----D---- C:\Windows\system32\cs-CZ
2013-05-27 05:33:07 ----D---- C:\Program Files\Internet Explorer
2013-05-27 05:33:04 ----D---- C:\Windows\system32\migration
2013-05-27 05:33:04 ----D---- C:\Windows\PolicyDefinitions
2013-05-27 05:33:03 ----D---- C:\Windows\system32\en-US
2013-05-26 22:28:08 ----D---- C:\Windows\system32\catroot2
2013-05-23 20:23:49 ----D---- C:\Windows\system32\zh-TW
2013-05-23 20:23:49 ----D---- C:\Windows\system32\zh-CN
2013-05-23 20:23:49 ----D---- C:\Windows\system32\tr-TR
2013-05-23 20:23:49 ----D---- C:\Windows\system32\sv-SE
2013-05-23 20:23:49 ----D---- C:\Windows\system32\ru-RU
2013-05-23 20:23:49 ----D---- C:\Windows\system32\pt-PT
2013-05-23 20:23:49 ----D---- C:\Windows\system32\pl-PL
2013-05-23 20:23:49 ----D---- C:\Windows\system32\nl-NL
2013-05-23 20:23:49 ----D---- C:\Windows\system32\ko-KR
2013-05-23 20:23:49 ----D---- C:\Windows\system32\ja-JP
2013-05-23 20:23:49 ----D---- C:\Windows\system32\it-IT
2013-05-23 20:23:49 ----D---- C:\Windows\system32\hu-HU
2013-05-23 20:23:49 ----D---- C:\Windows\system32\fr-FR
2013-05-23 20:23:49 ----D---- C:\Windows\system32\fi-FI
2013-05-23 20:23:49 ----D---- C:\Windows\system32\es-ES
2013-05-23 20:23:49 ----D---- C:\Windows\system32\el-GR
2013-05-23 20:23:49 ----D---- C:\Windows\system32\de-DE
2013-05-23 20:23:49 ----D---- C:\Windows\system32\da-DK
2013-05-19 18:59:53 ----D---- C:\Windows\Microsoft.NET
2013-05-19 18:58:52 ----RSD---- C:\Windows\assembly
2013-05-17 06:01:43 ----D---- C:\Windows\Prefetch
2013-05-15 21:26:03 ----D---- C:\Windows\AppPatch
2013-05-15 19:39:38 ----A---- C:\Windows\win.ini
2013-05-15 18:58:33 ----A---- C:\Windows\system32\MRT.exe
2013-05-14 21:37:44 ----A---- C:\Windows\system32\FlashPlayerApp.exe
2013-05-13 19:21:03 ----D---- C:\ProgramData\BrowserProtect
2013-05-02 17:28:50 ----N---- C:\Windows\system32\MpSigStub.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 giveio;giveio; C:\Windows\system32\giveio.sys [1996-04-03 5248]
R0 hpdskflt;HP Filter; C:\Windows\system32\DRIVERS\hpdskflt.sys [2011-05-13 25656]
R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2013-01-20 195296]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R0 speedfan;speedfan; C:\Windows\system32\speedfan.sys [2011-03-18 25240]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2013-04-14 466008]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 388096]
R1 MpKsl710efd9f;MpKsl710efd9f; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{B0A5877F-0A07-4A76-A1CB-D5E8E1422882}\MpKsl710efd9f.sys [2013-06-01 29904]
R1 sp_rsdrv2;Spyware Terminator 2012 Realtime Shield Driver; \??\C:\Windows\system32\drivers\sp_rsdrv2.sys [2011-06-21 32768]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R2 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2013-01-20 100328]
R3 Accelerometer;HP Mobile Data Protection Sensor; C:\Windows\system32\DRIVERS\Accelerometer.sys [2011-05-13 35896]
R3 AgereSoftModem;Agere Systems Soft Modem; C:\Windows\system32\DRIVERS\AGRSM.sys [2013-05-23 1163328]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2013-05-30 5590016]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2013-05-30 210432]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athr.sys [2011-02-22 2184704]
R3 AtiHdmiService;ATI Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\AtiHdmi.sys [2010-03-09 107024]
R3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 34816]
R3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696]
R3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 60416]
R3 btwaudio;Bluetooth Audio Device Service; C:\Windows\system32\drivers\btwaudio.sys [2009-09-17 86056]
R3 btwavdt;Bluetooth AVDT; C:\Windows\system32\DRIVERS\btwavdt.sys [2009-09-17 108072]
R3 btwl2cap;Bluetooth L2CAP Service; C:\Windows\system32\DRIVERS\btwl2cap.sys [2009-09-17 29472]
R3 btwrchid;btwrchid; C:\Windows\system32\DRIVERS\btwrchid.sys [2009-09-17 18472]
R3 dgderdrv;dgderdrv; C:\Windows\System32\drivers\dgderdrv.sys [2009-12-22 18136]
R3 FsUsbExDisk;FsUsbExDisk; \??\C:\Windows\system32\FsUsbExDisk.SYS [2009-12-22 36640]
R3 HECI;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECI.sys [2009-09-17 41088]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\Windows\system32\DRIVERS\HpqKbFiltr.sys [2009-07-16 15872]
R3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\Windows\system32\DRIVERS\snp2uvc.sys [2009-12-18 1763968]
R3 STHDA;@%SystemRoot%\system32\stlang.dll,-10322; C:\Windows\system32\DRIVERS\stwrt.sys [2013-05-30 431616]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2010-06-04 1303728]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 14336]
S2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;Ovladač filtru AMD portu AGP; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2013-05-30 5590016]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 393728]
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device; C:\Windows\system32\DRIVERS\ew_hwusbdev.sys []
S3 ew_usbenumfilter;huawei_CompositeFilter; C:\Windows\system32\DRIVERS\ew_usbenumfilter.sys []
S3 huawei_cdcacm;huawei_cdcacm; C:\Windows\system32\DRIVERS\ew_jucdcacm.sys []
S3 huawei_enumerator;huawei_enumerator; C:\Windows\system32\DRIVERS\ew_jubusenum.sys []
S3 huawei_ext_ctrl;huawei_ext_ctrl; C:\Windows\system32\DRIVERS\ew_juextctrl.sys []
S3 huawei_wwanecm;huawei_wwanecm; C:\Windows\system32\DRIVERS\ew_juwwanecm.sys []
S3 nmwcd;Nokia USB Phone Parent; C:\Windows\system32\drivers\ccdcmb.sys []
S3 nmwcdc;Nokia USB Generic; C:\Windows\system32\drivers\ccdcmbo.sys []
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfd.sys []
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\Windows\System32\Drivers\RtsUStor.sys [2009-11-11 181792]
S3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt86win7.sys [2010-01-12 257568]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632]
S3 sisagp;Filtr SIS sběrnice AGP; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 35840]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltj.sys []
S3 viaagp;Filtr VIA sběrnice AGP; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-05-10 65640]
R2 AESTFilters;Andrea ST Filters Service; C:\Program Files\IDT\WDM\aestsrv.exe [2013-05-30 81920]
R2 AgereModemAudio;Agere Modem Call Progress Audio; C:\Program Files\LSI SoftModem\agrsmsvc.exe [2013-05-23 14336]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2013-05-30 176128]
R2 btwdins;Bluetooth Service; c:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2009-09-04 595232]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 dgdersvc;Device Error Recovery Service; C:\Windows\system32\dgdersvc.exe [2009-12-22 95568]
R2 FsUsbExService;FsUsbExService; C:\Windows\system32\FsUsbExService.Exe [2009-12-22 217088]
R2 HPDrvMntSvc.exe;HP Quick Synchronization Service; C:\Program Files\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2012-08-10 197536]
R2 hpHotkeyMonitor;HP Hotkey Monitor; C:\Program Files\Hewlett-Packard\HP HotKey Support\hpHotkeyMonitor.exe [2010-01-04 264248]
R2 hpsrv;HP Service; C:\Windows\system32\Hpservice.exe [2011-05-13 26168]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2009-11-04 268824]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-19 322120]
R2 MsMpSvc;Microsoft Antimalware Service; C:\Program Files\Microsoft Security Client\MsMpEng.exe [2013-01-27 20456]
R2 ST2012_Svc;Spyware Terminator 2012 Realtime Shield Service; C:\Program Files\Spyware Terminator\st_rsser.exe [2013-04-03 587912]
R2 STacSV;@%SystemRoot%\system32\stlang.dll,-10122; C:\Program Files\IDT\WDM\STacSV.exe [2013-05-30 254034]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe [2012-08-10 1001376]
R3 NisSrv;@C:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; C:\Program Files\Microsoft Security Client\NisSrv.exe [2013-01-27 295232]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-04-01 116648]
S2 HP Support Assistant Service;HP Support Assistant Service; C:\Program Files\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2012-09-27 86528]
S2 HP Wireless Assistant Service;HP Wireless Assistant Service; C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe [2009-12-16 102968]
S2 UNS;Intel(R) Management & Security Application User Notification Service; C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2009-11-04 2320920]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-05-14 256904]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-04-01 116648]
S3 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2011-05-10 136120]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2013-04-24 115608]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2010-07-25 1343400]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 119526
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu logu
Dvouklikem na soubor C:\Program Files\trend micro\Renata.exe spusťte HijackThis. Klikněte na "Do a system scan only" a v otevřeném okně vlevo ve čtverečcích zaškrtněte:
Klikněte na >FixChecked<. Pak znovu spusťte OTM a klikněte na >CleanUp!<. OTM po sobě uklidí. Nakonec restartujte PC.R3 - URLSearchHook: (no name) - - (no file)
R3 - URLSearchHook: (no name) - {fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - (no file)
R3 - URLSearchHook: (no name) - {7473b6bd-4691-4744-a82b-7854eb3d70b6} - (no file)
R3 - URLSearchHook: (no name) - {124d001a-bdcb-472f-aa59-bbe7e4bc3204} - (no file)
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (file missing)
O9 - Extra 'Tools' menuitem: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (file missing)
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (file missing)
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontrolu logu
Hotovo až na : O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (file missing)
Když to zaškrtnu tak se to smaže, ale pak se to tam objeví znovu. Jinak ale notebook už pracuje jak má.
Když to zaškrtnu tak se to smaže, ale pak se to tam objeví znovu. Jinak ale notebook už pracuje jak má.
-
Rudy
- Site Admin
- Příspěvky: 119526
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu logu
Ta poslední akce je jen odstranění neškodných zbytků. Některé položky fixnout nejdou. Pokud NB pracuje jak má, je to vše.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontrolu logu
Dobře, moc děkuji za pomoc.
-
Rudy
- Site Admin
- Příspěvky: 119526
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu logu
Rádo se stalo! 
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?