Dobrý den, při vyhledávání na googlu a následném kliknutí na některý z výsledků dojde k přesměrování na stránku ihavenet.com, prosím o pomoc
Logfile of random's system information tool 1.06 (written by random/random)
Run by Jiří Pánek at 2013-09-28 10:54:49
Systém Microsoft Windows XP Professional Service Pack 3
System drive F: has 98 GB (41%) free of 238 GB
Total RAM: 2047 MB (69% free)
HijackThis download failed
======Scheduled tasks folder======
F:\WINDOWS\tasks\Adobe Flash Player Updater.job
F:\WINDOWS\tasks\mrpq.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - F:\Program Files\Java\jre7\bin\ssv.dll [2013-06-12 463272]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - F:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18 403840]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - F:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-06-12 171944]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"WheelMouse"=F:\Program Files\A4Tech\Mouse\Amoumain.exe [2006-02-17 163840]
"RTHDCPL"=F:\WINDOWS\RTHDCPL.EXE [2009-03-24 17567744]
"avgnt"=F:\Program Files\Avira\AntiVir Desktop\avgnt.exe [2013-08-29 347192]
"KernelFaultCheck"=F:\WINDOWS\system32\dumprep 0 -k []
"Adobe ARM"=F:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576]
"SunJavaUpdateSched"=F:\Program Files\Common Files\Java\Java Update\jusched.exe [2013-03-12 253816]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=F:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
F:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPDJ Taskbar Utility]
F:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb10.exe [2004-03-04 172032]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui]
F:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe --auto-start []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ProcessGovernor]
F:\Program Files\Process Lasso\processgovernor.exe [2011-05-31 323600]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ProcessLassoManagementConsole]
F:\Program Files\Process Lasso\processlasso.exe [2011-05-31 576528]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl]
F:\Program Files\CyberLink\PowerDVD\PDVDServ.exe [2004-11-02 32768]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\StartCCC]
F:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2012-04-05 98304]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\{1290A33C-85F5-4164-A1BE-7DD299D4986A}]
F:\Program Files\CyberLink\PowerBackup\PBKScheduler.exe [2004-06-08 69721]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\F:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^WDDMStatus.lnk]
F:\PROGRA~1\WESTER~1\WDSMAR~1\WDDRIV~1\WDDMST~1.EXE [2011-03-09 3986944]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
F:\WINDOWS\system32\Ati2evxx.dll [2012-04-06 192512]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
F:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265096]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - F:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MpfService]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=
"NoDrives"=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"F:\Strong\StrongDC.exe"="F:\Strong\StrongDC.exe:*:Enabled:StrongDC"
"F:\WINDOWS\system32\PnkBstrA.exe"="F:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA"
"F:\WINDOWS\system32\PnkBstrB.exe"="F:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB"
"F:\Program Files\THQ\S.T.A.L.K.E.R. - Shadow of Chernobyl\bin\XR_3DA.exe"="F:\Program Files\THQ\S.T.A.L.K.E.R. - Shadow of Chernobyl\bin\XR_3DA.exe:*:Enabled:S.T.A.L.K.E.R. - Shadow of Chernobyl (CLI)"
"F:\Program Files\THQ\S.T.A.L.K.E.R. - Shadow of Chernobyl\bin\dedicated\XR_3DA.exe"="F:\Program Files\THQ\S.T.A.L.K.E.R. - Shadow of Chernobyl\bin\dedicated\XR_3DA.exe:*:Enabled:S.T.A.L.K.E.R. - Shadow of Chernobyl (SRV)"
"F:\Program Files\uTorrent\uTorrent.exe"="F:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent"
"F:\Program Files\Ubisoft\Far Cry 2\bin\FarCry2.exe"="F:\Program Files\Ubisoft\Far Cry 2\bin\FarCry2.exe:*:Enabled:Far Cry 2"
"F:\Program Files\Ubisoft\Far Cry 2\bin\FC2Launcher.exe"="F:\Program Files\Ubisoft\Far Cry 2\bin\FC2Launcher.exe:*:Enabled:Far Cry 2 Updater"
"F:\Program Files\Ubisoft\Far Cry 2\bin\FC2Editor.exe"="F:\Program Files\Ubisoft\Far Cry 2\bin\FC2Editor.exe:*:Enabled:Editor"
"%windir%\system32\drivers\svchost.exe"="%windir%\system32\drivers\svchost.exe:*:Enabled:svchost"
"F:\Program Files\Steam\Steam.exe"="F:\Program Files\Steam\Steam.exe:*:Enabled:Steam"
"F:\Program Files\Ubisoft\Related Designs\ANNO 1404\Anno4.exe"="F:\Program Files\Ubisoft\Related Designs\ANNO 1404\Anno4.exe:*:Enabled:ANNO 1404"
"F:\Program Files\Ubisoft\Related Designs\ANNO 1404\tools\Anno4Web.exe"="F:\Program Files\Ubisoft\Related Designs\ANNO 1404\tools\Anno4Web.exe:*:Enabled:ANNO 1404 Web"
"F:\Program Files\theHunter\launcher\launcher.exe"="F:\Program Files\theHunter\launcher\launcher.exe:*:Enabled:theHunter Launcher"
"F:\Program Files\Aspyr\Guitar Hero III\gh3.exe"="F:\Program Files\Aspyr\Guitar Hero III\gh3.exe:*:Enabled:Guitar Hero III"
"F:\Program Files\EA SPORTS\FIFA 11\Game\fifa.exe"="F:\Program Files\EA SPORTS\FIFA 11\Game\fifa.exe:*:Enabled:FIFA 11"
"F:\Program Files\World_of_Tanks\WOTLauncher.exe"="F:\Program Files\World_of_Tanks\WOTLauncher.exe:*:Enabled:World of Tanks Launcher"
"F:\Program Files\World_of_Tanks\WorldOfTanks.exe"="F:\Program Files\World_of_Tanks\WorldOfTanks.exe:*:Enabled:World of Tanks"
"F:\Program Files\Winamp\winamp.exe"="F:\Program Files\Winamp\winamp.exe:*:Enabled:Winamp"
"F:\Program Files\ICQ7.5\ICQ.exe"="F:\Program Files\ICQ7.5\ICQ.exe:*:Enabled:ICQ7.5"
"F:\Program Files\Steam\steamapps\jirin13\team fortress 2\hl2.exe"="F:\Program Files\Steam\steamapps\jirin13\team fortress 2\hl2.exe:*:Enabled:hl2"
"F:\Program Files\Mozilla Firefox\plugin-container.exe"="F:\Program Files\Mozilla Firefox\plugin-container.exe:*:Enabled:Plugin Container for Firefox"
"F:\Program Files\Codemasters\DiRT 3\dirt3_game.exe"="F:\Program Files\Codemasters\DiRT 3\dirt3_game.exe:*:Enabled:DiRT 3"
"F:\Program Files\Steam\steamapps\common\chime\Chime.exe"="F:\Program Files\Steam\steamapps\common\chime\Chime.exe:*:Enabled:Chime"
"F:\Program Files\Steam\steamapps\common\flight_control_hd\flightControl_win32.exe"="F:\Program Files\Steam\steamapps\common\flight_control_hd\flightControl_win32.exe:*:Enabled:Flight Control HD"
"F:\Program Files\Q.U.B.E\Binaries\Win32\QUBE.exe"="F:\Program Files\Q.U.B.E\Binaries\Win32\QUBE.exe:*:Enabled:QUBE"
"F:\Program Files\Toxic Games\QUBE\Binaries\Win32\QUBE.exe"="F:\Program Files\Toxic Games\QUBE\Binaries\Win32\QUBE.exe:*:Enabled:QUBE"
"F:\Program Files\HLSW\hlsw.exe"="F:\Program Files\HLSW\hlsw.exe:*:Enabled:HLSW Application"
"F:\Program Files\Steam\steamapps\jirin13\day of defeat source\hl2.exe"="F:\Program Files\Steam\steamapps\jirin13\day of defeat source\hl2.exe:*:Enabled:Day of Defeat: Source"
"F:\Program Files\Rock of Ages\Binaries\Win32\RoA.exe"="F:\Program Files\Rock of Ages\Binaries\Win32\RoA.exe:*:Enabled:RoA"
"F:\Program Files\World_of_Warplanes\WOWpLauncher.exe"="F:\Program Files\World_of_Warplanes\WOWpLauncher.exe:*:Enabled:World of Warplanes Launcher"
"F:\Program Files\World_of_Warplanes\WorldOfWarplanes.exe"="F:\Program Files\World_of_Warplanes\WorldOfWarplanes.exe:*:Enabled:World of Warplanes"
"F:\Documents and Settings\Jiří Pánek\Local Settings\temp\7zS5012\HPDiagnosticCoreUI.exe"="F:\Documents and Settings\Jiří Pánek\Local Settings\temp\7zS5012\HPDiagnosticCoreUI.exe:*:Enabled:HPSAPS"
"F:\Program Files\HP\HP Deskjet 1050 J410 series\Bin\USBSetup.exe"="F:\Program Files\HP\HP Deskjet 1050 J410 series\Bin\USBSetup.exe:LocalSubNet:Enabled:Instalace zařízení HP"
"F:\Program Files\Steam\steamapps\common\beat hazard\BeatHazard.exe"="F:\Program Files\Steam\steamapps\common\beat hazard\BeatHazard.exe:*:Enabled:Beat Hazard"
"F:\Program Files\Steam\steamapps\common\beat hazard\runme.exe"="F:\Program Files\Steam\steamapps\common\beat hazard\runme.exe:*:Enabled:Beat Hazard"
"F:\Program Files\2K Games\Gearbox Software\Borderlands\Binaries\Borderlands.exe"="F:\Program Files\2K Games\Gearbox Software\Borderlands\Binaries\Borderlands.exe:*:Enabled:Borderlands"
"F:\Program Files\Java\jre7\bin\javaw.exe"="F:\Program Files\Java\jre7\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary"
"F:\Program Files\Steam\steamapps\common\audiosurf\engine\QuestViewer.exe"="F:\Program Files\Steam\steamapps\common\audiosurf\engine\QuestViewer.exe:*:Enabled:Audiosurf"
"F:\Program Files\Signal Ops\panda3d\spacebullet_1.9\win_i386\p3dpythonw.exe"="F:\Program Files\Signal Ops\panda3d\spacebullet_1.9\win_i386\p3dpythonw.exe:*:Enabled:p3dpythonw"
"F:\Program Files\Mozilla Firefox\firefox.exe"="F:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Mozilla Firefox"
"F:\Program Files\Steam\steamapps\common\Day of Defeat Source\hl2.exe"="F:\Program Files\Steam\steamapps\common\Day of Defeat Source\hl2.exe:*:Enabled:Day of Defeat: Source"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\drivers\svchost.exe"="%windir%\system32\drivers\svchost.exe:*:Enabled:svchost"
"F:\Program Files\ICQ7.1\ICQ.exe"="F:\Program Files\ICQ7.1\ICQ.exe:*:Enabled:ICQ7.1"
"F:\Program Files\ICQ7.5\ICQ.exe"="F:\Program Files\ICQ7.5\ICQ.exe:*:Enabled:ICQ7.5"
======List of files/folders created in the last 1 months======
======List of files/folders modified in the last 1 months======
2013-09-28 10:54:51 ----D---- F:\Program Files\trend micro
2013-09-28 10:53:02 ----D---- F:\WINDOWS\Temp
2013-09-28 10:52:00 ----RD---- F:\Program Files
2013-09-28 10:51:19 ----D---- F:\WINDOWS\system32
2013-09-28 10:51:15 ----A---- F:\WINDOWS\SchedLgU.Txt
2013-09-28 10:50:22 ----D---- F:\WINDOWS\Prefetch
2013-09-28 10:50:21 ----D---- F:\WINDOWS\system32\drivers
2013-09-28 09:34:00 ----D---- F:\WINDOWS
2013-09-28 00:45:13 ----D---- F:\Torrents
2013-09-27 22:15:02 ----D---- F:\Documents and Settings\Jiří Pánek\Data aplikací\Winamp
2013-09-27 21:52:35 ----D---- F:\Program Files\Steam
2013-09-27 21:52:35 ----D---- F:\Documents and Settings\Jiří Pánek\Data aplikací\Media Player Classic
2013-09-27 21:52:34 ----D---- F:\WINDOWS\Minidump
2013-09-27 21:52:34 ----D---- F:\WINDOWS\Logs
2013-09-27 21:52:34 ----D---- F:\Documents and Settings\Jiří Pánek\Data aplikací\uTorrent
2013-09-27 21:51:09 ----D---- F:\Program Files\CCleaner
2013-09-24 19:11:58 ----D---- F:\WINDOWS\system32\NtmsData
2013-09-24 19:11:21 ----D---- F:\WINDOWS\Registration
2013-09-19 21:46:30 ----A---- F:\WINDOWS\system32\FlashPlayerApp.exe
2013-09-19 02:16:34 ----D---- F:\WINDOWS\system32\CatRoot2
2013-09-13 12:00:06 ----SHD---- F:\WINDOWS\Installer
2013-09-10 11:19:58 ----SHD---- F:\System Volume Information
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 Amfilter;A4Tech Mouse Filter Driver; F:\WINDOWS\system32\DRIVERS\Amfilter.sys [2006-01-11 8704]
R1 avipbb;avipbb; F:\WINDOWS\system32\DRIVERS\avipbb.sys [2013-08-29 136672]
R1 avkmgr;avkmgr; F:\WINDOWS\system32\DRIVERS\avkmgr.sys [2013-03-30 37352]
R1 intelppm;Řadič procesoru Intel; F:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 kbdhid;Ovladač klávesnice standardu HID; F:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R1 ssmdrv;ssmdrv; F:\WINDOWS\system32\DRIVERS\ssmdrv.sys [2012-08-27 28520]
R2 acedrv11;acedrv11; \??\F:\WINDOWS\system32\drivers\acedrv11.sys []
R2 atksgt;atksgt; F:\WINDOWS\system32\DRIVERS\atksgt.sys [2009-08-12 281760]
R2 avgntflt;avgntflt; F:\WINDOWS\system32\DRIVERS\avgntflt.sys [2013-09-04 88840]
R2 lirsgt;lirsgt; F:\WINDOWS\system32\DRIVERS\lirsgt.sys [2009-08-12 25888]
R2 MICOMPar;MICOMPar; F:\WINDOWS\system32\drivers\MICOMPar.sys [2008-01-03 13488]
R3 ati2mtag;ati2mtag; F:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2012-04-06 7746048]
R3 FET5X86V;VIA Rhine-Family Fast-Ethernet Adapter Driver Service; F:\WINDOWS\system32\DRIVERS\fetnd5bv.sys [2007-02-27 42496]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; F:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 hidusb;Ovladač třídy standardu HID; F:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); F:\WINDOWS\system32\drivers\RtkHDAud.sys [2009-03-24 5056000]
R3 mouhid;Ovladač myši standardu HID; F:\WINDOWS\system32\DRIVERS\mouhid.sys [2002-09-23 12160]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; F:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-14 32128]
R3 usbehci;Ovladač miniportu rozšířeného radiče hostitele Microsoft USB 2.0; F:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-14 30208]
R3 usbhub;Ovladač standardního rozbočovače USB; F:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-14 59520]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; F:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
R3 vaxscsi;vaxscsi; F:\WINDOWS\System32\Drivers\vaxscsi.sys [2009-08-24 223128]
R3 WmBEnum;Logitech Virtual Bus Enumerator Driver; F:\WINDOWS\system32\drivers\WmBEnum.sys [2004-05-13 10144]
R3 WmXlCore;Logitech WingMan Translation Layer Driver; F:\WINDOWS\system32\drivers\WmXlCore.sys [2004-05-13 44384]
S1 ATITool;ATITool Overclocking Utility; F:\WINDOWS\system32\DRIVERS\ATITool.sys [2006-11-10 24064]
S2 ADILOADER;General Purpose USB Driver (adildr.sys); F:\WINDOWS\System32\Drivers\adildr.sys []
S3 adiusbaw;USB ADSL WAN Adapter; F:\WINDOWS\system32\DRIVERS\adiusbaw.sys []
S3 Ambfilt;Ambfilt; F:\WINDOWS\system32\drivers\Ambfilt.sys [2008-08-05 1684736]
S3 Amusbprt;A4Tech HID-compliant Mouse Driver; F:\WINDOWS\system32\DRIVERS\Amusbprt.sys [2006-05-09 13312]
S3 CrystalSysInfo;CrystalSysInfo; \??\F:\Program Files\MediaCoder\SysInfo.sys []
S3 FETNDIS;VIA PCI 10/100Mb Fast Ethernet Adapter NT Driver; F:\WINDOWS\system32\DRIVERS\fetnd5.sys []
S3 hamachi;Hamachi Network Interface; F:\WINDOWS\system32\DRIVERS\hamachi.sys [2009-03-18 26176]
S3 Monfilt;Monfilt; F:\WINDOWS\system32\drivers\Monfilt.sys [2006-01-04 1389056]
S3 NRKCTL32;NRKCTL32; \??\F:\Documents and Settings\Jiří Pánek\Plocha\Jiřin\NRKCTL32.SYS []
S3 pcouffin;VSO Software pcouffin; F:\WINDOWS\System32\Drivers\pcouffin.sys [2009-07-13 47360]
S3 usbprint;Třída USB Printer; F:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-14 25856]
S3 usbscan;Ovladač skeneru USB; F:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-14 15104]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; F:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 WDC_SAM;WD SCSI Pass Thru driver; F:\WINDOWS\system32\DRIVERS\wdcsam.sys [2011-02-16 11520]
S3 WmFilter;Logitech WingMan HID Filter Driver; F:\WINDOWS\system32\drivers\WmFilter.sys [2004-05-13 21440]
S3 WmHidLo;Logitech WingMan USB Filter Driver; F:\WINDOWS\system32\drivers\WmHidLo.sys [2004-05-13 14720]
S3 WmVirHid;Logitech Virtual Hid Device Driver; F:\WINDOWS\system32\drivers\WmVirHid.sys [2004-05-13 5600]
S3 WpdUsb;WpdUsb; F:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; F:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 IntelIde;IntelIde; F:\WINDOWS\system32\drivers\IntelIde.sys []
S4 sr;Ovladač filtru Obnovy systému; F:\WINDOWS\system32\DRIVERS\sr.sys [2008-04-14 73344]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AntiVirService;Avira Real-Time Protection; F:\Program Files\Avira\AntiVir Desktop\avguard.exe [2013-08-29 108088]
R2 AntiVirSchedulerService;Avira Scheduler; F:\Program Files\Avira\AntiVir Desktop\sched.exe [2013-08-29 84024]
R2 Ati HotKey Poller;Ati HotKey Poller; F:\WINDOWS\system32\Ati2evxx.exe [2012-04-06 647168]
R2 JavaQuickStarterService;Java Quick Starter; F:\Program Files\Java\jre7\bin\jqs.exe [2013-06-12 182184]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; F:\Program Files\Common Files\LightScribe\LSSrvc.exe [2006-04-24 73728]
R2 O&O Defrag;O&O Defrag; F:\WINDOWS\system32\oodag.exe [2007-01-12 707344]
R2 PnkBstrA;PnkBstrA; F:\WINDOWS\system32\PnkBstrA.exe [2012-07-09 76888]
R2 StarWindService;StarWind iSCSI Service; F:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe [2005-04-02 217600]
R2 WDDMService;WDDMService; F:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe [2011-03-09 238592]
R2 wlidsvc;Windows Live ID Sign-in Assistant; F:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2009-08-18 1529728]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; F:\WINDOWS\system32\svchost.exe [2004-08-17 14336]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; F:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; F:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-09-19 257416]
S3 aspnet_state;Stavová služba ASP.NET; F:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; F:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; f:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 IDriverT;InstallDriver Table Manager; F:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 idsvc;Windows CardSpace; F:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 MozillaMaintenance;Mozilla Maintenance Service; F:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2013-08-17 117656]
S3 WDFME;WD File Management Engine; F:\Program Files\Western Digital\WD SmartWare\Front Parlor\WDFME\WDFME.exe [2011-03-09 1060864]
S3 WDSC;WD File Management Shadow Engine; F:\Program Files\Western Digital\WD SmartWare\Front Parlor\WDSC.exe [2011-03-09 484352]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; F:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; F:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; f:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
přesměrování na ihavenet.com
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: přesměrování na ihavenet.com
Zdravim 
Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Stahnete Malwarebytes' Anti-Malware (zkracene MBAM) http://forum.viry.cz/viewtopic.php?f=29&t=115222
Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
- Ulozte nejlepe na plochu
- Ukoncete vsechny programy
- Kliknete na Scan a nasledne Clean
- Probehne oprava, restart PC a pak se objevi log, pripadne bude ulozen ve slozce c:\AdwCleaner\AdwCleaner[S?].txt, ten sem vlozte
Stahnete Malwarebytes' Anti-Malware (zkracene MBAM) http://forum.viry.cz/viewtopic.php?f=29&t=115222
- Provedte aktualizaci
- Provedte uplny sken - nic nemazte
- MBAM miva obcas falesne detekce, proto vlozte log do prispevku a pockejte na posouzeni
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen
od 1. února 2011.
Člen
od 1. února 2011.Re: přesměrování na ihavenet.com
# AdwCleaner v3.005 - Report created 28/09/2013 at 14:29:45
# Updated 22/09/2013 by Xplode
# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)
# Username : Jiří Pánek - JI-04DB9DE0CC7F
# Running from : F:\Documents and Settings\Jiří Pánek\Plocha\adwcleaner.exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
Folder Deleted : F:\Documents and Settings\All Users\Data aplikací\Babylon
Folder Deleted : F:\Documents and Settings\All Users\Data aplikací\GameTap Web Player
Folder Deleted : F:\Documents and Settings\All Users\Data aplikací\Trymedia
Folder Deleted : F:\Program Files\DAEMON Tools Toolbar
Folder Deleted : F:\Documents and Settings\Jiří Pánek\Local Settings\Data aplikací\Babylon
File Deleted : F:\Program Files\Mozilla Firefox\searchplugins\Babylon.xml
File Deleted : F:\Documents and Settings\Jiří Pánek\Data aplikací\Mozilla\Firefox\Profiles\k3wdxs7c.default\searchplugins\daemon-search.xml
File Deleted : F:\Documents and Settings\Jiří Pánek\Data aplikací\Mozilla\Firefox\Profiles\k3wdxs7c.default\user.js
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escort.DLL
Key Deleted : HKLM\SOFTWARE\Classes\bbylntlbr.bbylntlbrHlpr
Key Deleted : HKLM\SOFTWARE\Classes\bbylntlbr.bbylntlbrHlpr.1
Key Deleted : HKLM\SOFTWARE\Classes\DTToolbar.ToolBandObj
Key Deleted : HKLM\SOFTWARE\Classes\DTToolbar.ToolBandObj.1
Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{32099AAC-C132-4136-9E9A-4E364A424E17}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{78888F8B-D5E4-43CE-89F5-C8C18223AF64}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A3A2A5C0-1306-4D1A-A093-9CECA4230002}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C8D424EF-CB21-49A0-8659-476FBAB0F8E8}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{09C554C3-109B-483C-A06B-F14172F1A947}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{3E288F79-03E4-4983-A48E-0D879B51FF19}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{B12E99ED-69BD-437C-86BE-C862B9E5444D}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2EECD738-5844-4A99-B4B6-146BF802613B}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{32099AAC-C132-4136-9E9A-4E364A424E17}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{98889811-442D-49DD-99D7-DC866BE87DBC}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35B-6118-11DC-9C72-001320C79847}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2EECD738-5844-4A99-B4B6-146BF802613B}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{32099AAC-C132-4136-9E9A-4E364A424E17}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{98889811-442D-49DD-99D7-DC866BE87DBC}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EEE6C35B-6118-11DC-9C72-001320C79847}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0D7562AE-8EF6-416D-A838-AB665251703A}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{32099AAC-C132-4136-9E9A-4E364A424E17}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{EEE6C35B-6118-11DC-9C72-001320C79847}]
Key Deleted : HKCU\Software\ICQToolbar
Key Deleted : HKCU\Software\Softonic
Key Deleted : HKCU\Software\YahooPartnerToolbar
Key Deleted : HKLM\Software\Babylon
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\daemon tools toolbar
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\daemon tools toolbar
***** [ Browsers ] *****
-\\ Internet Explorer v8.0.6001.18702
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURls [Tabs]
-\\ Mozilla Firefox v23.0.1 (cs)
[ File : F:\Documents and Settings\Jiří Pánek\Data aplikací\Mozilla\Firefox\Profiles\k3wdxs7c.default\prefs.js ]
Line Deleted : user_pref("browser.search.defaultenginename", "SweetIM Search");
Line Deleted : user_pref("extensions.BabylonToolbar.admin", false);
Line Deleted : user_pref("extensions.BabylonToolbar.aflt", "babclient");
Line Deleted : user_pref("extensions.BabylonToolbar.babExt", "");
Line Deleted : user_pref("extensions.BabylonToolbar.babTrack", "affID=11900");
Line Deleted : user_pref("extensions.BabylonToolbar.bbDpng", 28);
Line Deleted : user_pref("extensions.BabylonToolbar.dfltSrch", false);
Line Deleted : user_pref("extensions.BabylonToolbar.hmpg", false);
Line Deleted : user_pref("extensions.BabylonToolbar.id", "000000000000000000000019665e22f4");
Line Deleted : user_pref("extensions.BabylonToolbar.instlDay", "15336");
Line Deleted : user_pref("extensions.BabylonToolbar.instlRef", "std");
Line Deleted : user_pref("extensions.BabylonToolbar.lastDP", 28);
Line Deleted : user_pref("extensions.BabylonToolbar.lastVrsnTs", "1.5.3.1719:26:23");
Line Deleted : user_pref("extensions.BabylonToolbar.mntrFFxVrsn", "8.0");
Line Deleted : user_pref("extensions.BabylonToolbar.newTab", true);
Line Deleted : user_pref("extensions.BabylonToolbar.newTabUrl", "hxxp://search.babylon.com/?babsrc=NT_bb");
Line Deleted : user_pref("extensions.BabylonToolbar.noFFXTlbr", false);
Line Deleted : user_pref("extensions.BabylonToolbar.prdct", "BabylonToolbar");
Line Deleted : user_pref("extensions.BabylonToolbar.propectorlck", 63665293);
Line Deleted : user_pref("extensions.BabylonToolbar.prtnrId", "babylon");
Line Deleted : user_pref("extensions.BabylonToolbar.ptch_0717", true);
Line Deleted : user_pref("extensions.BabylonToolbar.smplGrp", "none");
Line Deleted : user_pref("extensions.BabylonToolbar.srcExt", "");
Line Deleted : user_pref("extensions.BabylonToolbar.tlbrId", "base");
Line Deleted : user_pref("extensions.BabylonToolbar.vrsn", "1.5.3.17");
Line Deleted : user_pref("extensions.BabylonToolbar.vrsnTs", "1.5.3.1719:26:23");
Line Deleted : user_pref("extensions.BabylonToolbar.vrsni", "1.5.3.17");
Line Deleted : user_pref("extensions.BabylonToolbar_i.aflt", "babclient");
Line Deleted : user_pref("extensions.BabylonToolbar_i.babExt", "");
Line Deleted : user_pref("extensions.BabylonToolbar_i.babTrack", "affID=11900");
Line Deleted : user_pref("extensions.BabylonToolbar_i.hardId", "000000000000000000000019665e22f4");
Line Deleted : user_pref("extensions.BabylonToolbar_i.id", "000000000000000000000019665e22f4");
Line Deleted : user_pref("extensions.BabylonToolbar_i.instlDay", "15336");
Line Deleted : user_pref("extensions.BabylonToolbar_i.instlRef", "std");
Line Deleted : user_pref("extensions.BabylonToolbar_i.newTab", false);
Line Deleted : user_pref("extensions.BabylonToolbar_i.prdct", "BabylonToolbar");
Line Deleted : user_pref("extensions.BabylonToolbar_i.prtnrId", "babylon");
Line Deleted : user_pref("extensions.BabylonToolbar_i.smplGrp", "none");
Line Deleted : user_pref("extensions.BabylonToolbar_i.srcExt", "");
Line Deleted : user_pref("extensions.BabylonToolbar_i.tlbrId", "base");
Line Deleted : user_pref("extensions.BabylonToolbar_i.vrsn", "1.5.3.17");
Line Deleted : user_pref("extensions.BabylonToolbar_i.vrsnTs", "1.5.3.1719:26:23");
Line Deleted : user_pref("extensions.BabylonToolbar_i.vrsni", "1.5.3.17");
Line Deleted : user_pref("sweetim.toolbar.previous.browser.search.defaultenginename", "QIP Search");
Line Deleted : user_pref("sweetim.toolbar.previous.browser.search.defaulturl", "");
Line Deleted : user_pref("sweetim.toolbar.previous.browser.search.selectedEngine", "");
Line Deleted : user_pref("sweetim.toolbar.previous.browser.startup.homepage", "hxxp://www.seznam.cz/");
Line Deleted : user_pref("sweetim.toolbar.urls.homepage", "hxxp://home.sweetim.com");
*************************
AdwCleaner[R0].txt - [8251 octets] - [28/09/2013 14:28:43]
AdwCleaner[S0].txt - [8270 octets] - [28/09/2013 14:29:45]
########## EOF - F:\AdwCleaner\AdwCleaner[S0].txt - [8330 octets] ##########
# Updated 22/09/2013 by Xplode
# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)
# Username : Jiří Pánek - JI-04DB9DE0CC7F
# Running from : F:\Documents and Settings\Jiří Pánek\Plocha\adwcleaner.exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
Folder Deleted : F:\Documents and Settings\All Users\Data aplikací\Babylon
Folder Deleted : F:\Documents and Settings\All Users\Data aplikací\GameTap Web Player
Folder Deleted : F:\Documents and Settings\All Users\Data aplikací\Trymedia
Folder Deleted : F:\Program Files\DAEMON Tools Toolbar
Folder Deleted : F:\Documents and Settings\Jiří Pánek\Local Settings\Data aplikací\Babylon
File Deleted : F:\Program Files\Mozilla Firefox\searchplugins\Babylon.xml
File Deleted : F:\Documents and Settings\Jiří Pánek\Data aplikací\Mozilla\Firefox\Profiles\k3wdxs7c.default\searchplugins\daemon-search.xml
File Deleted : F:\Documents and Settings\Jiří Pánek\Data aplikací\Mozilla\Firefox\Profiles\k3wdxs7c.default\user.js
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escort.DLL
Key Deleted : HKLM\SOFTWARE\Classes\bbylntlbr.bbylntlbrHlpr
Key Deleted : HKLM\SOFTWARE\Classes\bbylntlbr.bbylntlbrHlpr.1
Key Deleted : HKLM\SOFTWARE\Classes\DTToolbar.ToolBandObj
Key Deleted : HKLM\SOFTWARE\Classes\DTToolbar.ToolBandObj.1
Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{32099AAC-C132-4136-9E9A-4E364A424E17}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{78888F8B-D5E4-43CE-89F5-C8C18223AF64}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A3A2A5C0-1306-4D1A-A093-9CECA4230002}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C8D424EF-CB21-49A0-8659-476FBAB0F8E8}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{09C554C3-109B-483C-A06B-F14172F1A947}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{3E288F79-03E4-4983-A48E-0D879B51FF19}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{B12E99ED-69BD-437C-86BE-C862B9E5444D}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2EECD738-5844-4A99-B4B6-146BF802613B}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{32099AAC-C132-4136-9E9A-4E364A424E17}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{98889811-442D-49DD-99D7-DC866BE87DBC}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35B-6118-11DC-9C72-001320C79847}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2EECD738-5844-4A99-B4B6-146BF802613B}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{32099AAC-C132-4136-9E9A-4E364A424E17}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{98889811-442D-49DD-99D7-DC866BE87DBC}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EEE6C35B-6118-11DC-9C72-001320C79847}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0D7562AE-8EF6-416D-A838-AB665251703A}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{32099AAC-C132-4136-9E9A-4E364A424E17}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{EEE6C35B-6118-11DC-9C72-001320C79847}]
Key Deleted : HKCU\Software\ICQToolbar
Key Deleted : HKCU\Software\Softonic
Key Deleted : HKCU\Software\YahooPartnerToolbar
Key Deleted : HKLM\Software\Babylon
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\daemon tools toolbar
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\daemon tools toolbar
***** [ Browsers ] *****
-\\ Internet Explorer v8.0.6001.18702
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURls [Tabs]
-\\ Mozilla Firefox v23.0.1 (cs)
[ File : F:\Documents and Settings\Jiří Pánek\Data aplikací\Mozilla\Firefox\Profiles\k3wdxs7c.default\prefs.js ]
Line Deleted : user_pref("browser.search.defaultenginename", "SweetIM Search");
Line Deleted : user_pref("extensions.BabylonToolbar.admin", false);
Line Deleted : user_pref("extensions.BabylonToolbar.aflt", "babclient");
Line Deleted : user_pref("extensions.BabylonToolbar.babExt", "");
Line Deleted : user_pref("extensions.BabylonToolbar.babTrack", "affID=11900");
Line Deleted : user_pref("extensions.BabylonToolbar.bbDpng", 28);
Line Deleted : user_pref("extensions.BabylonToolbar.dfltSrch", false);
Line Deleted : user_pref("extensions.BabylonToolbar.hmpg", false);
Line Deleted : user_pref("extensions.BabylonToolbar.id", "000000000000000000000019665e22f4");
Line Deleted : user_pref("extensions.BabylonToolbar.instlDay", "15336");
Line Deleted : user_pref("extensions.BabylonToolbar.instlRef", "std");
Line Deleted : user_pref("extensions.BabylonToolbar.lastDP", 28);
Line Deleted : user_pref("extensions.BabylonToolbar.lastVrsnTs", "1.5.3.1719:26:23");
Line Deleted : user_pref("extensions.BabylonToolbar.mntrFFxVrsn", "8.0");
Line Deleted : user_pref("extensions.BabylonToolbar.newTab", true);
Line Deleted : user_pref("extensions.BabylonToolbar.newTabUrl", "hxxp://search.babylon.com/?babsrc=NT_bb");
Line Deleted : user_pref("extensions.BabylonToolbar.noFFXTlbr", false);
Line Deleted : user_pref("extensions.BabylonToolbar.prdct", "BabylonToolbar");
Line Deleted : user_pref("extensions.BabylonToolbar.propectorlck", 63665293);
Line Deleted : user_pref("extensions.BabylonToolbar.prtnrId", "babylon");
Line Deleted : user_pref("extensions.BabylonToolbar.ptch_0717", true);
Line Deleted : user_pref("extensions.BabylonToolbar.smplGrp", "none");
Line Deleted : user_pref("extensions.BabylonToolbar.srcExt", "");
Line Deleted : user_pref("extensions.BabylonToolbar.tlbrId", "base");
Line Deleted : user_pref("extensions.BabylonToolbar.vrsn", "1.5.3.17");
Line Deleted : user_pref("extensions.BabylonToolbar.vrsnTs", "1.5.3.1719:26:23");
Line Deleted : user_pref("extensions.BabylonToolbar.vrsni", "1.5.3.17");
Line Deleted : user_pref("extensions.BabylonToolbar_i.aflt", "babclient");
Line Deleted : user_pref("extensions.BabylonToolbar_i.babExt", "");
Line Deleted : user_pref("extensions.BabylonToolbar_i.babTrack", "affID=11900");
Line Deleted : user_pref("extensions.BabylonToolbar_i.hardId", "000000000000000000000019665e22f4");
Line Deleted : user_pref("extensions.BabylonToolbar_i.id", "000000000000000000000019665e22f4");
Line Deleted : user_pref("extensions.BabylonToolbar_i.instlDay", "15336");
Line Deleted : user_pref("extensions.BabylonToolbar_i.instlRef", "std");
Line Deleted : user_pref("extensions.BabylonToolbar_i.newTab", false);
Line Deleted : user_pref("extensions.BabylonToolbar_i.prdct", "BabylonToolbar");
Line Deleted : user_pref("extensions.BabylonToolbar_i.prtnrId", "babylon");
Line Deleted : user_pref("extensions.BabylonToolbar_i.smplGrp", "none");
Line Deleted : user_pref("extensions.BabylonToolbar_i.srcExt", "");
Line Deleted : user_pref("extensions.BabylonToolbar_i.tlbrId", "base");
Line Deleted : user_pref("extensions.BabylonToolbar_i.vrsn", "1.5.3.17");
Line Deleted : user_pref("extensions.BabylonToolbar_i.vrsnTs", "1.5.3.1719:26:23");
Line Deleted : user_pref("extensions.BabylonToolbar_i.vrsni", "1.5.3.17");
Line Deleted : user_pref("sweetim.toolbar.previous.browser.search.defaultenginename", "QIP Search");
Line Deleted : user_pref("sweetim.toolbar.previous.browser.search.defaulturl", "");
Line Deleted : user_pref("sweetim.toolbar.previous.browser.search.selectedEngine", "");
Line Deleted : user_pref("sweetim.toolbar.previous.browser.startup.homepage", "hxxp://www.seznam.cz/");
Line Deleted : user_pref("sweetim.toolbar.urls.homepage", "hxxp://home.sweetim.com");
*************************
AdwCleaner[R0].txt - [8251 octets] - [28/09/2013 14:28:43]
AdwCleaner[S0].txt - [8270 octets] - [28/09/2013 14:29:45]
########## EOF - F:\AdwCleaner\AdwCleaner[S0].txt - [8330 octets] ##########
Re: přesměrování na ihavenet.com
Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org
Verze: v2013.09.28.05
Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
Jiří Pánek :: JI-04DB9DE0CC7F [administrátor]
28.9.2013 14:35:57
MBAM-log-2013-09-28 (16-15-46).txt
Typ: Kompletní kontrola (F:\|)
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 458357
Uplynulý čas: 1 hodin, 39 minut, 11 sekund
Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené soubory: 7
F:\Documents and Settings\Jiří Pánek\Plocha\Jiřin\checkDisk.exe (Trojan.Delf) -> Nebyla provedena žádná instrukce.
F:\Documents and Settings\Jiří Pánek\Plocha\Jiřin\Aces High\data\39dll.dll (PUP.HackTool.DDoS) -> Nebyla provedena žádná instrukce.
F:\Documents and Settings\Jiří Pánek\Plocha\Jiřin\Programy\checkdisk.zip (Trojan.Delf) -> Nebyla provedena žádná instrukce.
F:\Program Files\Codemasters\DiRT 3\SKIDROW.dll (Trojan.Downloader.H) -> Nebyla provedena žádná instrukce.
F:\Program Files\Codemasters\DiRT 3\paul.dll (PUP.RiskwareTool.CK) -> Nebyla provedena žádná instrukce.
F:\Torrents\Alcohol 120.v1.9.5.4327.Retail + Crack By Odiliada\Alcohol 120.v1.9.5.4327.Retail + Crack.rar (PUP.Hacktool.Patcher) -> Nebyla provedena žádná instrukce.
F:\Torrents\O&O Defrag 8.6 Build 2294 Professional\keygen.exe (Riskware.Tool.CK) -> Nebyla provedena žádná instrukce.
(konec)
www.malwarebytes.org
Verze: v2013.09.28.05
Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
Jiří Pánek :: JI-04DB9DE0CC7F [administrátor]
28.9.2013 14:35:57
MBAM-log-2013-09-28 (16-15-46).txt
Typ: Kompletní kontrola (F:\|)
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 458357
Uplynulý čas: 1 hodin, 39 minut, 11 sekund
Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené soubory: 7
F:\Documents and Settings\Jiří Pánek\Plocha\Jiřin\checkDisk.exe (Trojan.Delf) -> Nebyla provedena žádná instrukce.
F:\Documents and Settings\Jiří Pánek\Plocha\Jiřin\Aces High\data\39dll.dll (PUP.HackTool.DDoS) -> Nebyla provedena žádná instrukce.
F:\Documents and Settings\Jiří Pánek\Plocha\Jiřin\Programy\checkdisk.zip (Trojan.Delf) -> Nebyla provedena žádná instrukce.
F:\Program Files\Codemasters\DiRT 3\SKIDROW.dll (Trojan.Downloader.H) -> Nebyla provedena žádná instrukce.
F:\Program Files\Codemasters\DiRT 3\paul.dll (PUP.RiskwareTool.CK) -> Nebyla provedena žádná instrukce.
F:\Torrents\Alcohol 120.v1.9.5.4327.Retail + Crack By Odiliada\Alcohol 120.v1.9.5.4327.Retail + Crack.rar (PUP.Hacktool.Patcher) -> Nebyla provedena žádná instrukce.
F:\Torrents\O&O Defrag 8.6 Build 2294 Professional\keygen.exe (Riskware.Tool.CK) -> Nebyla provedena žádná instrukce.
(konec)
Re: přesměrování na ihavenet.com
Nalezy MBAMu smazte, objevi se log, ten rad uvidim...
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: přesměrování na ihavenet.com
Malwarebytes Anti-Malware (Zkušební verze Malwarebytes Anti-Malware.) 1.75.0.1300
www.malwarebytes.org
Verze: v2013.09.28.05
Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
Jiří Pánek :: JI-04DB9DE0CC7F [administrátor]
Ochrana: Zakázána
29.9.2013 10:53:20
mbam-log-2013-09-29 (10-53-20).txt
Typ: Kompletní kontrola (F:\|)
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 458595
Uplynulý čas: 1 hodin, 32 minut, 58 sekund
Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené soubory: 7
F:\Documents and Settings\Jiří Pánek\Plocha\Jiřin\checkDisk.exe (Trojan.Delf) -> Přesun do karantény a smazání se zdařilo.
F:\Documents and Settings\Jiří Pánek\Plocha\Jiřin\Aces High\data\39dll.dll (PUP.HackTool.DDoS) -> Přesun do karantény a smazání se zdařilo.
F:\Documents and Settings\Jiří Pánek\Plocha\Jiřin\Programy\checkdisk.zip (Trojan.Delf) -> Přesun do karantény a smazání se zdařilo.
F:\Program Files\Codemasters\DiRT 3\SKIDROW.dll (Trojan.Downloader.H) -> Přesun do karantény a smazání se zdařilo.
F:\Program Files\Codemasters\DiRT 3\paul.dll (PUP.RiskwareTool.CK) -> Přesun do karantény a smazání se zdařilo.
F:\Torrents\Alcohol 120.v1.9.5.4327.Retail + Crack By Odiliada\Alcohol 120.v1.9.5.4327.Retail + Crack.rar (PUP.Hacktool.Patcher) -> Přesun do karantény a smazání se zdařilo.
F:\Torrents\O&O Defrag 8.6 Build 2294 Professional\keygen.exe (Riskware.Tool.CK) -> Přesun do karantény a smazání se zdařilo.
(konec)
www.malwarebytes.org
Verze: v2013.09.28.05
Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
Jiří Pánek :: JI-04DB9DE0CC7F [administrátor]
Ochrana: Zakázána
29.9.2013 10:53:20
mbam-log-2013-09-29 (10-53-20).txt
Typ: Kompletní kontrola (F:\|)
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 458595
Uplynulý čas: 1 hodin, 32 minut, 58 sekund
Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené soubory: 7
F:\Documents and Settings\Jiří Pánek\Plocha\Jiřin\checkDisk.exe (Trojan.Delf) -> Přesun do karantény a smazání se zdařilo.
F:\Documents and Settings\Jiří Pánek\Plocha\Jiřin\Aces High\data\39dll.dll (PUP.HackTool.DDoS) -> Přesun do karantény a smazání se zdařilo.
F:\Documents and Settings\Jiří Pánek\Plocha\Jiřin\Programy\checkdisk.zip (Trojan.Delf) -> Přesun do karantény a smazání se zdařilo.
F:\Program Files\Codemasters\DiRT 3\SKIDROW.dll (Trojan.Downloader.H) -> Přesun do karantény a smazání se zdařilo.
F:\Program Files\Codemasters\DiRT 3\paul.dll (PUP.RiskwareTool.CK) -> Přesun do karantény a smazání se zdařilo.
F:\Torrents\Alcohol 120.v1.9.5.4327.Retail + Crack By Odiliada\Alcohol 120.v1.9.5.4327.Retail + Crack.rar (PUP.Hacktool.Patcher) -> Přesun do karantény a smazání se zdařilo.
F:\Torrents\O&O Defrag 8.6 Build 2294 Professional\keygen.exe (Riskware.Tool.CK) -> Přesun do karantény a smazání se zdařilo.
(konec)
Re: přesměrování na ihavenet.com
Poprosim o novy log z RSIT
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: přesměrování na ihavenet.com
Logfile of random's system information tool 1.06 (written by random/random)
Run by Jiří Pánek at 2013-09-30 15:32:15
Systém Microsoft Windows XP Professional Service Pack 3
System drive F: has 97 GB (41%) free of 238 GB
Total RAM: 2047 MB (68% free)
HijackThis download failed
======Scheduled tasks folder======
F:\WINDOWS\tasks\Adobe Flash Player Updater.job
F:\WINDOWS\tasks\mrpq.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - F:\Program Files\Java\jre7\bin\ssv.dll [2013-06-12 463272]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - F:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18 403840]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - F:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-06-12 171944]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"WheelMouse"=F:\Program Files\A4Tech\Mouse\Amoumain.exe [2006-02-17 163840]
"RTHDCPL"=F:\WINDOWS\RTHDCPL.EXE [2009-03-24 17567744]
"avgnt"=F:\Program Files\Avira\AntiVir Desktop\avgnt.exe [2013-08-29 347192]
"Adobe ARM"=F:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576]
"SunJavaUpdateSched"=F:\Program Files\Common Files\Java\Java Update\jusched.exe [2013-03-12 253816]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=F:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
F:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPDJ Taskbar Utility]
F:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb10.exe [2004-03-04 172032]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui]
F:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe --auto-start []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ProcessGovernor]
F:\Program Files\Process Lasso\processgovernor.exe [2011-05-31 323600]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ProcessLassoManagementConsole]
F:\Program Files\Process Lasso\processlasso.exe [2011-05-31 576528]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl]
F:\Program Files\CyberLink\PowerDVD\PDVDServ.exe [2004-11-02 32768]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\StartCCC]
F:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2012-04-05 98304]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\{1290A33C-85F5-4164-A1BE-7DD299D4986A}]
F:\Program Files\CyberLink\PowerBackup\PBKScheduler.exe [2004-06-08 69721]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\F:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^WDDMStatus.lnk]
F:\PROGRA~1\WESTER~1\WDSMAR~1\WDDRIV~1\WDDMST~1.EXE [2011-03-09 3986944]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
F:\WINDOWS\system32\Ati2evxx.dll [2012-04-06 192512]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
F:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265096]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - F:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MpfService]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=
"NoDrives"=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"F:\Strong\StrongDC.exe"="F:\Strong\StrongDC.exe:*:Enabled:StrongDC"
"F:\WINDOWS\system32\PnkBstrA.exe"="F:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA"
"F:\WINDOWS\system32\PnkBstrB.exe"="F:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB"
"F:\Program Files\THQ\S.T.A.L.K.E.R. - Shadow of Chernobyl\bin\XR_3DA.exe"="F:\Program Files\THQ\S.T.A.L.K.E.R. - Shadow of Chernobyl\bin\XR_3DA.exe:*:Enabled:S.T.A.L.K.E.R. - Shadow of Chernobyl (CLI)"
"F:\Program Files\THQ\S.T.A.L.K.E.R. - Shadow of Chernobyl\bin\dedicated\XR_3DA.exe"="F:\Program Files\THQ\S.T.A.L.K.E.R. - Shadow of Chernobyl\bin\dedicated\XR_3DA.exe:*:Enabled:S.T.A.L.K.E.R. - Shadow of Chernobyl (SRV)"
"F:\Program Files\uTorrent\uTorrent.exe"="F:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent"
"F:\Program Files\Ubisoft\Far Cry 2\bin\FarCry2.exe"="F:\Program Files\Ubisoft\Far Cry 2\bin\FarCry2.exe:*:Enabled:Far Cry 2"
"F:\Program Files\Ubisoft\Far Cry 2\bin\FC2Launcher.exe"="F:\Program Files\Ubisoft\Far Cry 2\bin\FC2Launcher.exe:*:Enabled:Far Cry 2 Updater"
"F:\Program Files\Ubisoft\Far Cry 2\bin\FC2Editor.exe"="F:\Program Files\Ubisoft\Far Cry 2\bin\FC2Editor.exe:*:Enabled:Editor"
"%windir%\system32\drivers\svchost.exe"="%windir%\system32\drivers\svchost.exe:*:Enabled:svchost"
"F:\Program Files\Steam\Steam.exe"="F:\Program Files\Steam\Steam.exe:*:Enabled:Steam"
"F:\Program Files\Ubisoft\Related Designs\ANNO 1404\Anno4.exe"="F:\Program Files\Ubisoft\Related Designs\ANNO 1404\Anno4.exe:*:Enabled:ANNO 1404"
"F:\Program Files\Ubisoft\Related Designs\ANNO 1404\tools\Anno4Web.exe"="F:\Program Files\Ubisoft\Related Designs\ANNO 1404\tools\Anno4Web.exe:*:Enabled:ANNO 1404 Web"
"F:\Program Files\theHunter\launcher\launcher.exe"="F:\Program Files\theHunter\launcher\launcher.exe:*:Enabled:theHunter Launcher"
"F:\Program Files\Aspyr\Guitar Hero III\gh3.exe"="F:\Program Files\Aspyr\Guitar Hero III\gh3.exe:*:Enabled:Guitar Hero III"
"F:\Program Files\EA SPORTS\FIFA 11\Game\fifa.exe"="F:\Program Files\EA SPORTS\FIFA 11\Game\fifa.exe:*:Enabled:FIFA 11"
"F:\Program Files\World_of_Tanks\WOTLauncher.exe"="F:\Program Files\World_of_Tanks\WOTLauncher.exe:*:Enabled:World of Tanks Launcher"
"F:\Program Files\World_of_Tanks\WorldOfTanks.exe"="F:\Program Files\World_of_Tanks\WorldOfTanks.exe:*:Enabled:World of Tanks"
"F:\Program Files\Winamp\winamp.exe"="F:\Program Files\Winamp\winamp.exe:*:Enabled:Winamp"
"F:\Program Files\ICQ7.5\ICQ.exe"="F:\Program Files\ICQ7.5\ICQ.exe:*:Enabled:ICQ7.5"
"F:\Program Files\Steam\steamapps\jirin13\team fortress 2\hl2.exe"="F:\Program Files\Steam\steamapps\jirin13\team fortress 2\hl2.exe:*:Enabled:hl2"
"F:\Program Files\Mozilla Firefox\plugin-container.exe"="F:\Program Files\Mozilla Firefox\plugin-container.exe:*:Enabled:Plugin Container for Firefox"
"F:\Program Files\Codemasters\DiRT 3\dirt3_game.exe"="F:\Program Files\Codemasters\DiRT 3\dirt3_game.exe:*:Enabled:DiRT 3"
"F:\Program Files\Steam\steamapps\common\chime\Chime.exe"="F:\Program Files\Steam\steamapps\common\chime\Chime.exe:*:Enabled:Chime"
"F:\Program Files\Steam\steamapps\common\flight_control_hd\flightControl_win32.exe"="F:\Program Files\Steam\steamapps\common\flight_control_hd\flightControl_win32.exe:*:Enabled:Flight Control HD"
"F:\Program Files\Q.U.B.E\Binaries\Win32\QUBE.exe"="F:\Program Files\Q.U.B.E\Binaries\Win32\QUBE.exe:*:Enabled:QUBE"
"F:\Program Files\Toxic Games\QUBE\Binaries\Win32\QUBE.exe"="F:\Program Files\Toxic Games\QUBE\Binaries\Win32\QUBE.exe:*:Enabled:QUBE"
"F:\Program Files\HLSW\hlsw.exe"="F:\Program Files\HLSW\hlsw.exe:*:Enabled:HLSW Application"
"F:\Program Files\Steam\steamapps\jirin13\day of defeat source\hl2.exe"="F:\Program Files\Steam\steamapps\jirin13\day of defeat source\hl2.exe:*:Enabled:Day of Defeat: Source"
"F:\Program Files\Rock of Ages\Binaries\Win32\RoA.exe"="F:\Program Files\Rock of Ages\Binaries\Win32\RoA.exe:*:Enabled:RoA"
"F:\Program Files\World_of_Warplanes\WOWpLauncher.exe"="F:\Program Files\World_of_Warplanes\WOWpLauncher.exe:*:Enabled:World of Warplanes Launcher"
"F:\Program Files\World_of_Warplanes\WorldOfWarplanes.exe"="F:\Program Files\World_of_Warplanes\WorldOfWarplanes.exe:*:Enabled:World of Warplanes"
"F:\Documents and Settings\Jiří Pánek\Local Settings\temp\7zS5012\HPDiagnosticCoreUI.exe"="F:\Documents and Settings\Jiří Pánek\Local Settings\temp\7zS5012\HPDiagnosticCoreUI.exe:*:Enabled:HPSAPS"
"F:\Program Files\HP\HP Deskjet 1050 J410 series\Bin\USBSetup.exe"="F:\Program Files\HP\HP Deskjet 1050 J410 series\Bin\USBSetup.exe:LocalSubNet:Enabled:Instalace zařízení HP"
"F:\Program Files\Steam\steamapps\common\beat hazard\BeatHazard.exe"="F:\Program Files\Steam\steamapps\common\beat hazard\BeatHazard.exe:*:Enabled:Beat Hazard"
"F:\Program Files\Steam\steamapps\common\beat hazard\runme.exe"="F:\Program Files\Steam\steamapps\common\beat hazard\runme.exe:*:Enabled:Beat Hazard"
"F:\Program Files\2K Games\Gearbox Software\Borderlands\Binaries\Borderlands.exe"="F:\Program Files\2K Games\Gearbox Software\Borderlands\Binaries\Borderlands.exe:*:Enabled:Borderlands"
"F:\Program Files\Java\jre7\bin\javaw.exe"="F:\Program Files\Java\jre7\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary"
"F:\Program Files\Steam\steamapps\common\audiosurf\engine\QuestViewer.exe"="F:\Program Files\Steam\steamapps\common\audiosurf\engine\QuestViewer.exe:*:Enabled:Audiosurf"
"F:\Program Files\Signal Ops\panda3d\spacebullet_1.9\win_i386\p3dpythonw.exe"="F:\Program Files\Signal Ops\panda3d\spacebullet_1.9\win_i386\p3dpythonw.exe:*:Enabled:p3dpythonw"
"F:\Program Files\Mozilla Firefox\firefox.exe"="F:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Mozilla Firefox"
"F:\Program Files\Steam\steamapps\common\Day of Defeat Source\hl2.exe"="F:\Program Files\Steam\steamapps\common\Day of Defeat Source\hl2.exe:*:Enabled:Day of Defeat: Source"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\drivers\svchost.exe"="%windir%\system32\drivers\svchost.exe:*:Enabled:svchost"
"F:\Program Files\ICQ7.1\ICQ.exe"="F:\Program Files\ICQ7.1\ICQ.exe:*:Enabled:ICQ7.1"
"F:\Program Files\ICQ7.5\ICQ.exe"="F:\Program Files\ICQ7.5\ICQ.exe:*:Enabled:ICQ7.5"
======List of files/folders created in the last 1 months======
2013-09-28 14:34:40 ----D---- F:\Program Files\Malwarebytes' Anti-Malware
2013-09-28 14:28:41 ----D---- F:\AdwCleaner
======List of files/folders modified in the last 1 months======
2013-09-30 15:32:17 ----D---- F:\Program Files\trend micro
2013-09-30 15:32:03 ----D---- F:\WINDOWS\Temp
2013-09-30 14:46:00 ----A---- F:\WINDOWS\SchedLgU.Txt
2013-09-30 13:23:22 ----D---- F:\WINDOWS\system32
2013-09-29 21:43:23 ----D---- F:\WINDOWS\Prefetch
2013-09-29 12:32:50 ----D---- F:\WINDOWS\system32\drivers
2013-09-29 12:30:22 ----HDC---- F:\WINDOWS\$NtUninstallKB2570791$
2013-09-28 19:19:07 ----D---- F:\Torrents
2013-09-28 18:25:48 ----D---- F:\Documents and Settings\Jiří Pánek\Data aplikací\Media Player Classic
2013-09-28 14:34:40 ----RD---- F:\Program Files
2013-09-28 09:34:00 ----D---- F:\WINDOWS
2013-09-27 22:15:02 ----D---- F:\Documents and Settings\Jiří Pánek\Data aplikací\Winamp
2013-09-27 21:52:35 ----D---- F:\Program Files\Steam
2013-09-27 21:52:34 ----D---- F:\WINDOWS\Minidump
2013-09-27 21:52:34 ----D---- F:\WINDOWS\Logs
2013-09-27 21:52:34 ----D---- F:\Documents and Settings\Jiří Pánek\Data aplikací\uTorrent
2013-09-27 21:51:09 ----D---- F:\Program Files\CCleaner
2013-09-24 19:11:58 ----D---- F:\WINDOWS\system32\NtmsData
2013-09-24 19:11:21 ----D---- F:\WINDOWS\Registration
2013-09-19 21:46:30 ----A---- F:\WINDOWS\system32\FlashPlayerApp.exe
2013-09-19 02:16:34 ----D---- F:\WINDOWS\system32\CatRoot2
2013-09-13 12:00:06 ----SHD---- F:\WINDOWS\Installer
2013-09-10 11:19:58 ----SHD---- F:\System Volume Information
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 Amfilter;A4Tech Mouse Filter Driver; F:\WINDOWS\system32\DRIVERS\Amfilter.sys [2006-01-11 8704]
R1 avipbb;avipbb; F:\WINDOWS\system32\DRIVERS\avipbb.sys [2013-08-29 136672]
R1 avkmgr;avkmgr; F:\WINDOWS\system32\DRIVERS\avkmgr.sys [2013-03-30 37352]
R1 intelppm;Řadič procesoru Intel; F:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 kbdhid;Ovladač klávesnice standardu HID; F:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R1 ssmdrv;ssmdrv; F:\WINDOWS\system32\DRIVERS\ssmdrv.sys [2012-08-27 28520]
R2 acedrv11;acedrv11; \??\F:\WINDOWS\system32\drivers\acedrv11.sys []
R2 atksgt;atksgt; F:\WINDOWS\system32\DRIVERS\atksgt.sys [2009-08-12 281760]
R2 avgntflt;avgntflt; F:\WINDOWS\system32\DRIVERS\avgntflt.sys [2013-09-04 88840]
R2 lirsgt;lirsgt; F:\WINDOWS\system32\DRIVERS\lirsgt.sys [2009-08-12 25888]
R2 MICOMPar;MICOMPar; F:\WINDOWS\system32\drivers\MICOMPar.sys [2008-01-03 13488]
R3 ati2mtag;ati2mtag; F:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2012-04-06 7746048]
R3 FET5X86V;VIA Rhine-Family Fast-Ethernet Adapter Driver Service; F:\WINDOWS\system32\DRIVERS\fetnd5bv.sys [2007-02-27 42496]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; F:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 hidusb;Ovladač třídy standardu HID; F:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); F:\WINDOWS\system32\drivers\RtkHDAud.sys [2009-03-24 5056000]
R3 MBAMProtector;MBAMProtector; \??\F:\WINDOWS\system32\drivers\mbam.sys []
R3 mouhid;Ovladač myši standardu HID; F:\WINDOWS\system32\DRIVERS\mouhid.sys [2002-09-23 12160]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; F:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-14 32128]
R3 usbehci;Ovladač miniportu rozšířeného radiče hostitele Microsoft USB 2.0; F:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-14 30208]
R3 usbhub;Ovladač standardního rozbočovače USB; F:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-14 59520]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; F:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
R3 vaxscsi;vaxscsi; F:\WINDOWS\System32\Drivers\vaxscsi.sys [2009-08-24 223128]
R3 WmBEnum;Logitech Virtual Bus Enumerator Driver; F:\WINDOWS\system32\drivers\WmBEnum.sys [2004-05-13 10144]
R3 WmXlCore;Logitech WingMan Translation Layer Driver; F:\WINDOWS\system32\drivers\WmXlCore.sys [2004-05-13 44384]
S1 ATITool;ATITool Overclocking Utility; F:\WINDOWS\system32\DRIVERS\ATITool.sys [2006-11-10 24064]
S2 ADILOADER;General Purpose USB Driver (adildr.sys); F:\WINDOWS\System32\Drivers\adildr.sys []
S3 adiusbaw;USB ADSL WAN Adapter; F:\WINDOWS\system32\DRIVERS\adiusbaw.sys []
S3 Ambfilt;Ambfilt; F:\WINDOWS\system32\drivers\Ambfilt.sys [2008-08-05 1684736]
S3 Amusbprt;A4Tech HID-compliant Mouse Driver; F:\WINDOWS\system32\DRIVERS\Amusbprt.sys [2006-05-09 13312]
S3 CrystalSysInfo;CrystalSysInfo; \??\F:\Program Files\MediaCoder\SysInfo.sys []
S3 FETNDIS;VIA PCI 10/100Mb Fast Ethernet Adapter NT Driver; F:\WINDOWS\system32\DRIVERS\fetnd5.sys []
S3 hamachi;Hamachi Network Interface; F:\WINDOWS\system32\DRIVERS\hamachi.sys [2009-03-18 26176]
S3 Monfilt;Monfilt; F:\WINDOWS\system32\drivers\Monfilt.sys [2006-01-04 1389056]
S3 NRKCTL32;NRKCTL32; \??\F:\Documents and Settings\Jiří Pánek\Plocha\Jiřin\NRKCTL32.SYS []
S3 pcouffin;VSO Software pcouffin; F:\WINDOWS\System32\Drivers\pcouffin.sys [2009-07-13 47360]
S3 usbprint;Třída USB Printer; F:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-14 25856]
S3 usbscan;Ovladač skeneru USB; F:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-14 15104]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; F:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 WDC_SAM;WD SCSI Pass Thru driver; F:\WINDOWS\system32\DRIVERS\wdcsam.sys [2011-02-16 11520]
S3 WmFilter;Logitech WingMan HID Filter Driver; F:\WINDOWS\system32\drivers\WmFilter.sys [2004-05-13 21440]
S3 WmHidLo;Logitech WingMan USB Filter Driver; F:\WINDOWS\system32\drivers\WmHidLo.sys [2004-05-13 14720]
S3 WmVirHid;Logitech Virtual Hid Device Driver; F:\WINDOWS\system32\drivers\WmVirHid.sys [2004-05-13 5600]
S3 WpdUsb;WpdUsb; F:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; F:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 IntelIde;IntelIde; F:\WINDOWS\system32\drivers\IntelIde.sys []
S4 sr;Ovladač filtru Obnovy systému; F:\WINDOWS\system32\DRIVERS\sr.sys [2008-04-14 73344]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AntiVirService;Avira Real-Time Protection; F:\Program Files\Avira\AntiVir Desktop\avguard.exe [2013-08-29 108088]
R2 AntiVirSchedulerService;Avira Scheduler; F:\Program Files\Avira\AntiVir Desktop\sched.exe [2013-08-29 84024]
R2 Ati HotKey Poller;Ati HotKey Poller; F:\WINDOWS\system32\Ati2evxx.exe [2012-04-06 647168]
R2 JavaQuickStarterService;Java Quick Starter; F:\Program Files\Java\jre7\bin\jqs.exe [2013-06-12 182184]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; F:\Program Files\Common Files\LightScribe\LSSrvc.exe [2006-04-24 73728]
R2 MBAMScheduler;MBAMScheduler; F:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [2013-04-04 418376]
R2 O&O Defrag;O&O Defrag; F:\WINDOWS\system32\oodag.exe [2007-01-12 707344]
R2 PnkBstrA;PnkBstrA; F:\WINDOWS\system32\PnkBstrA.exe [2012-07-09 76888]
R2 StarWindService;StarWind iSCSI Service; F:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe [2005-04-02 217600]
R2 WDDMService;WDDMService; F:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe [2011-03-09 238592]
R2 wlidsvc;Windows Live ID Sign-in Assistant; F:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2009-08-18 1529728]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; F:\WINDOWS\system32\svchost.exe [2004-08-17 14336]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; F:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 MBAMService;MBAMService; F:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [2013-04-04 701512]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; F:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-09-19 257416]
S3 aspnet_state;Stavová služba ASP.NET; F:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; F:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; f:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 IDriverT;InstallDriver Table Manager; F:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 idsvc;Windows CardSpace; F:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 MozillaMaintenance;Mozilla Maintenance Service; F:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2013-08-17 117656]
S3 WDFME;WD File Management Engine; F:\Program Files\Western Digital\WD SmartWare\Front Parlor\WDFME\WDFME.exe [2011-03-09 1060864]
S3 WDSC;WD File Management Shadow Engine; F:\Program Files\Western Digital\WD SmartWare\Front Parlor\WDSC.exe [2011-03-09 484352]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; F:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; F:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; f:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
-----------------EOF-----------------
Run by Jiří Pánek at 2013-09-30 15:32:15
Systém Microsoft Windows XP Professional Service Pack 3
System drive F: has 97 GB (41%) free of 238 GB
Total RAM: 2047 MB (68% free)
HijackThis download failed
======Scheduled tasks folder======
F:\WINDOWS\tasks\Adobe Flash Player Updater.job
F:\WINDOWS\tasks\mrpq.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - F:\Program Files\Java\jre7\bin\ssv.dll [2013-06-12 463272]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - F:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18 403840]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - F:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-06-12 171944]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"WheelMouse"=F:\Program Files\A4Tech\Mouse\Amoumain.exe [2006-02-17 163840]
"RTHDCPL"=F:\WINDOWS\RTHDCPL.EXE [2009-03-24 17567744]
"avgnt"=F:\Program Files\Avira\AntiVir Desktop\avgnt.exe [2013-08-29 347192]
"Adobe ARM"=F:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576]
"SunJavaUpdateSched"=F:\Program Files\Common Files\Java\Java Update\jusched.exe [2013-03-12 253816]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=F:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
F:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPDJ Taskbar Utility]
F:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb10.exe [2004-03-04 172032]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui]
F:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe --auto-start []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ProcessGovernor]
F:\Program Files\Process Lasso\processgovernor.exe [2011-05-31 323600]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ProcessLassoManagementConsole]
F:\Program Files\Process Lasso\processlasso.exe [2011-05-31 576528]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl]
F:\Program Files\CyberLink\PowerDVD\PDVDServ.exe [2004-11-02 32768]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\StartCCC]
F:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2012-04-05 98304]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\{1290A33C-85F5-4164-A1BE-7DD299D4986A}]
F:\Program Files\CyberLink\PowerBackup\PBKScheduler.exe [2004-06-08 69721]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\F:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^WDDMStatus.lnk]
F:\PROGRA~1\WESTER~1\WDSMAR~1\WDDRIV~1\WDDMST~1.EXE [2011-03-09 3986944]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
F:\WINDOWS\system32\Ati2evxx.dll [2012-04-06 192512]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
F:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265096]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - F:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MpfService]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=
"NoDrives"=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"F:\Strong\StrongDC.exe"="F:\Strong\StrongDC.exe:*:Enabled:StrongDC"
"F:\WINDOWS\system32\PnkBstrA.exe"="F:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA"
"F:\WINDOWS\system32\PnkBstrB.exe"="F:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB"
"F:\Program Files\THQ\S.T.A.L.K.E.R. - Shadow of Chernobyl\bin\XR_3DA.exe"="F:\Program Files\THQ\S.T.A.L.K.E.R. - Shadow of Chernobyl\bin\XR_3DA.exe:*:Enabled:S.T.A.L.K.E.R. - Shadow of Chernobyl (CLI)"
"F:\Program Files\THQ\S.T.A.L.K.E.R. - Shadow of Chernobyl\bin\dedicated\XR_3DA.exe"="F:\Program Files\THQ\S.T.A.L.K.E.R. - Shadow of Chernobyl\bin\dedicated\XR_3DA.exe:*:Enabled:S.T.A.L.K.E.R. - Shadow of Chernobyl (SRV)"
"F:\Program Files\uTorrent\uTorrent.exe"="F:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent"
"F:\Program Files\Ubisoft\Far Cry 2\bin\FarCry2.exe"="F:\Program Files\Ubisoft\Far Cry 2\bin\FarCry2.exe:*:Enabled:Far Cry 2"
"F:\Program Files\Ubisoft\Far Cry 2\bin\FC2Launcher.exe"="F:\Program Files\Ubisoft\Far Cry 2\bin\FC2Launcher.exe:*:Enabled:Far Cry 2 Updater"
"F:\Program Files\Ubisoft\Far Cry 2\bin\FC2Editor.exe"="F:\Program Files\Ubisoft\Far Cry 2\bin\FC2Editor.exe:*:Enabled:Editor"
"%windir%\system32\drivers\svchost.exe"="%windir%\system32\drivers\svchost.exe:*:Enabled:svchost"
"F:\Program Files\Steam\Steam.exe"="F:\Program Files\Steam\Steam.exe:*:Enabled:Steam"
"F:\Program Files\Ubisoft\Related Designs\ANNO 1404\Anno4.exe"="F:\Program Files\Ubisoft\Related Designs\ANNO 1404\Anno4.exe:*:Enabled:ANNO 1404"
"F:\Program Files\Ubisoft\Related Designs\ANNO 1404\tools\Anno4Web.exe"="F:\Program Files\Ubisoft\Related Designs\ANNO 1404\tools\Anno4Web.exe:*:Enabled:ANNO 1404 Web"
"F:\Program Files\theHunter\launcher\launcher.exe"="F:\Program Files\theHunter\launcher\launcher.exe:*:Enabled:theHunter Launcher"
"F:\Program Files\Aspyr\Guitar Hero III\gh3.exe"="F:\Program Files\Aspyr\Guitar Hero III\gh3.exe:*:Enabled:Guitar Hero III"
"F:\Program Files\EA SPORTS\FIFA 11\Game\fifa.exe"="F:\Program Files\EA SPORTS\FIFA 11\Game\fifa.exe:*:Enabled:FIFA 11"
"F:\Program Files\World_of_Tanks\WOTLauncher.exe"="F:\Program Files\World_of_Tanks\WOTLauncher.exe:*:Enabled:World of Tanks Launcher"
"F:\Program Files\World_of_Tanks\WorldOfTanks.exe"="F:\Program Files\World_of_Tanks\WorldOfTanks.exe:*:Enabled:World of Tanks"
"F:\Program Files\Winamp\winamp.exe"="F:\Program Files\Winamp\winamp.exe:*:Enabled:Winamp"
"F:\Program Files\ICQ7.5\ICQ.exe"="F:\Program Files\ICQ7.5\ICQ.exe:*:Enabled:ICQ7.5"
"F:\Program Files\Steam\steamapps\jirin13\team fortress 2\hl2.exe"="F:\Program Files\Steam\steamapps\jirin13\team fortress 2\hl2.exe:*:Enabled:hl2"
"F:\Program Files\Mozilla Firefox\plugin-container.exe"="F:\Program Files\Mozilla Firefox\plugin-container.exe:*:Enabled:Plugin Container for Firefox"
"F:\Program Files\Codemasters\DiRT 3\dirt3_game.exe"="F:\Program Files\Codemasters\DiRT 3\dirt3_game.exe:*:Enabled:DiRT 3"
"F:\Program Files\Steam\steamapps\common\chime\Chime.exe"="F:\Program Files\Steam\steamapps\common\chime\Chime.exe:*:Enabled:Chime"
"F:\Program Files\Steam\steamapps\common\flight_control_hd\flightControl_win32.exe"="F:\Program Files\Steam\steamapps\common\flight_control_hd\flightControl_win32.exe:*:Enabled:Flight Control HD"
"F:\Program Files\Q.U.B.E\Binaries\Win32\QUBE.exe"="F:\Program Files\Q.U.B.E\Binaries\Win32\QUBE.exe:*:Enabled:QUBE"
"F:\Program Files\Toxic Games\QUBE\Binaries\Win32\QUBE.exe"="F:\Program Files\Toxic Games\QUBE\Binaries\Win32\QUBE.exe:*:Enabled:QUBE"
"F:\Program Files\HLSW\hlsw.exe"="F:\Program Files\HLSW\hlsw.exe:*:Enabled:HLSW Application"
"F:\Program Files\Steam\steamapps\jirin13\day of defeat source\hl2.exe"="F:\Program Files\Steam\steamapps\jirin13\day of defeat source\hl2.exe:*:Enabled:Day of Defeat: Source"
"F:\Program Files\Rock of Ages\Binaries\Win32\RoA.exe"="F:\Program Files\Rock of Ages\Binaries\Win32\RoA.exe:*:Enabled:RoA"
"F:\Program Files\World_of_Warplanes\WOWpLauncher.exe"="F:\Program Files\World_of_Warplanes\WOWpLauncher.exe:*:Enabled:World of Warplanes Launcher"
"F:\Program Files\World_of_Warplanes\WorldOfWarplanes.exe"="F:\Program Files\World_of_Warplanes\WorldOfWarplanes.exe:*:Enabled:World of Warplanes"
"F:\Documents and Settings\Jiří Pánek\Local Settings\temp\7zS5012\HPDiagnosticCoreUI.exe"="F:\Documents and Settings\Jiří Pánek\Local Settings\temp\7zS5012\HPDiagnosticCoreUI.exe:*:Enabled:HPSAPS"
"F:\Program Files\HP\HP Deskjet 1050 J410 series\Bin\USBSetup.exe"="F:\Program Files\HP\HP Deskjet 1050 J410 series\Bin\USBSetup.exe:LocalSubNet:Enabled:Instalace zařízení HP"
"F:\Program Files\Steam\steamapps\common\beat hazard\BeatHazard.exe"="F:\Program Files\Steam\steamapps\common\beat hazard\BeatHazard.exe:*:Enabled:Beat Hazard"
"F:\Program Files\Steam\steamapps\common\beat hazard\runme.exe"="F:\Program Files\Steam\steamapps\common\beat hazard\runme.exe:*:Enabled:Beat Hazard"
"F:\Program Files\2K Games\Gearbox Software\Borderlands\Binaries\Borderlands.exe"="F:\Program Files\2K Games\Gearbox Software\Borderlands\Binaries\Borderlands.exe:*:Enabled:Borderlands"
"F:\Program Files\Java\jre7\bin\javaw.exe"="F:\Program Files\Java\jre7\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary"
"F:\Program Files\Steam\steamapps\common\audiosurf\engine\QuestViewer.exe"="F:\Program Files\Steam\steamapps\common\audiosurf\engine\QuestViewer.exe:*:Enabled:Audiosurf"
"F:\Program Files\Signal Ops\panda3d\spacebullet_1.9\win_i386\p3dpythonw.exe"="F:\Program Files\Signal Ops\panda3d\spacebullet_1.9\win_i386\p3dpythonw.exe:*:Enabled:p3dpythonw"
"F:\Program Files\Mozilla Firefox\firefox.exe"="F:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Mozilla Firefox"
"F:\Program Files\Steam\steamapps\common\Day of Defeat Source\hl2.exe"="F:\Program Files\Steam\steamapps\common\Day of Defeat Source\hl2.exe:*:Enabled:Day of Defeat: Source"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\drivers\svchost.exe"="%windir%\system32\drivers\svchost.exe:*:Enabled:svchost"
"F:\Program Files\ICQ7.1\ICQ.exe"="F:\Program Files\ICQ7.1\ICQ.exe:*:Enabled:ICQ7.1"
"F:\Program Files\ICQ7.5\ICQ.exe"="F:\Program Files\ICQ7.5\ICQ.exe:*:Enabled:ICQ7.5"
======List of files/folders created in the last 1 months======
2013-09-28 14:34:40 ----D---- F:\Program Files\Malwarebytes' Anti-Malware
2013-09-28 14:28:41 ----D---- F:\AdwCleaner
======List of files/folders modified in the last 1 months======
2013-09-30 15:32:17 ----D---- F:\Program Files\trend micro
2013-09-30 15:32:03 ----D---- F:\WINDOWS\Temp
2013-09-30 14:46:00 ----A---- F:\WINDOWS\SchedLgU.Txt
2013-09-30 13:23:22 ----D---- F:\WINDOWS\system32
2013-09-29 21:43:23 ----D---- F:\WINDOWS\Prefetch
2013-09-29 12:32:50 ----D---- F:\WINDOWS\system32\drivers
2013-09-29 12:30:22 ----HDC---- F:\WINDOWS\$NtUninstallKB2570791$
2013-09-28 19:19:07 ----D---- F:\Torrents
2013-09-28 18:25:48 ----D---- F:\Documents and Settings\Jiří Pánek\Data aplikací\Media Player Classic
2013-09-28 14:34:40 ----RD---- F:\Program Files
2013-09-28 09:34:00 ----D---- F:\WINDOWS
2013-09-27 22:15:02 ----D---- F:\Documents and Settings\Jiří Pánek\Data aplikací\Winamp
2013-09-27 21:52:35 ----D---- F:\Program Files\Steam
2013-09-27 21:52:34 ----D---- F:\WINDOWS\Minidump
2013-09-27 21:52:34 ----D---- F:\WINDOWS\Logs
2013-09-27 21:52:34 ----D---- F:\Documents and Settings\Jiří Pánek\Data aplikací\uTorrent
2013-09-27 21:51:09 ----D---- F:\Program Files\CCleaner
2013-09-24 19:11:58 ----D---- F:\WINDOWS\system32\NtmsData
2013-09-24 19:11:21 ----D---- F:\WINDOWS\Registration
2013-09-19 21:46:30 ----A---- F:\WINDOWS\system32\FlashPlayerApp.exe
2013-09-19 02:16:34 ----D---- F:\WINDOWS\system32\CatRoot2
2013-09-13 12:00:06 ----SHD---- F:\WINDOWS\Installer
2013-09-10 11:19:58 ----SHD---- F:\System Volume Information
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 Amfilter;A4Tech Mouse Filter Driver; F:\WINDOWS\system32\DRIVERS\Amfilter.sys [2006-01-11 8704]
R1 avipbb;avipbb; F:\WINDOWS\system32\DRIVERS\avipbb.sys [2013-08-29 136672]
R1 avkmgr;avkmgr; F:\WINDOWS\system32\DRIVERS\avkmgr.sys [2013-03-30 37352]
R1 intelppm;Řadič procesoru Intel; F:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 kbdhid;Ovladač klávesnice standardu HID; F:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R1 ssmdrv;ssmdrv; F:\WINDOWS\system32\DRIVERS\ssmdrv.sys [2012-08-27 28520]
R2 acedrv11;acedrv11; \??\F:\WINDOWS\system32\drivers\acedrv11.sys []
R2 atksgt;atksgt; F:\WINDOWS\system32\DRIVERS\atksgt.sys [2009-08-12 281760]
R2 avgntflt;avgntflt; F:\WINDOWS\system32\DRIVERS\avgntflt.sys [2013-09-04 88840]
R2 lirsgt;lirsgt; F:\WINDOWS\system32\DRIVERS\lirsgt.sys [2009-08-12 25888]
R2 MICOMPar;MICOMPar; F:\WINDOWS\system32\drivers\MICOMPar.sys [2008-01-03 13488]
R3 ati2mtag;ati2mtag; F:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2012-04-06 7746048]
R3 FET5X86V;VIA Rhine-Family Fast-Ethernet Adapter Driver Service; F:\WINDOWS\system32\DRIVERS\fetnd5bv.sys [2007-02-27 42496]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; F:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 hidusb;Ovladač třídy standardu HID; F:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); F:\WINDOWS\system32\drivers\RtkHDAud.sys [2009-03-24 5056000]
R3 MBAMProtector;MBAMProtector; \??\F:\WINDOWS\system32\drivers\mbam.sys []
R3 mouhid;Ovladač myši standardu HID; F:\WINDOWS\system32\DRIVERS\mouhid.sys [2002-09-23 12160]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; F:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-14 32128]
R3 usbehci;Ovladač miniportu rozšířeného radiče hostitele Microsoft USB 2.0; F:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-14 30208]
R3 usbhub;Ovladač standardního rozbočovače USB; F:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-14 59520]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; F:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
R3 vaxscsi;vaxscsi; F:\WINDOWS\System32\Drivers\vaxscsi.sys [2009-08-24 223128]
R3 WmBEnum;Logitech Virtual Bus Enumerator Driver; F:\WINDOWS\system32\drivers\WmBEnum.sys [2004-05-13 10144]
R3 WmXlCore;Logitech WingMan Translation Layer Driver; F:\WINDOWS\system32\drivers\WmXlCore.sys [2004-05-13 44384]
S1 ATITool;ATITool Overclocking Utility; F:\WINDOWS\system32\DRIVERS\ATITool.sys [2006-11-10 24064]
S2 ADILOADER;General Purpose USB Driver (adildr.sys); F:\WINDOWS\System32\Drivers\adildr.sys []
S3 adiusbaw;USB ADSL WAN Adapter; F:\WINDOWS\system32\DRIVERS\adiusbaw.sys []
S3 Ambfilt;Ambfilt; F:\WINDOWS\system32\drivers\Ambfilt.sys [2008-08-05 1684736]
S3 Amusbprt;A4Tech HID-compliant Mouse Driver; F:\WINDOWS\system32\DRIVERS\Amusbprt.sys [2006-05-09 13312]
S3 CrystalSysInfo;CrystalSysInfo; \??\F:\Program Files\MediaCoder\SysInfo.sys []
S3 FETNDIS;VIA PCI 10/100Mb Fast Ethernet Adapter NT Driver; F:\WINDOWS\system32\DRIVERS\fetnd5.sys []
S3 hamachi;Hamachi Network Interface; F:\WINDOWS\system32\DRIVERS\hamachi.sys [2009-03-18 26176]
S3 Monfilt;Monfilt; F:\WINDOWS\system32\drivers\Monfilt.sys [2006-01-04 1389056]
S3 NRKCTL32;NRKCTL32; \??\F:\Documents and Settings\Jiří Pánek\Plocha\Jiřin\NRKCTL32.SYS []
S3 pcouffin;VSO Software pcouffin; F:\WINDOWS\System32\Drivers\pcouffin.sys [2009-07-13 47360]
S3 usbprint;Třída USB Printer; F:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-14 25856]
S3 usbscan;Ovladač skeneru USB; F:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-14 15104]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; F:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 WDC_SAM;WD SCSI Pass Thru driver; F:\WINDOWS\system32\DRIVERS\wdcsam.sys [2011-02-16 11520]
S3 WmFilter;Logitech WingMan HID Filter Driver; F:\WINDOWS\system32\drivers\WmFilter.sys [2004-05-13 21440]
S3 WmHidLo;Logitech WingMan USB Filter Driver; F:\WINDOWS\system32\drivers\WmHidLo.sys [2004-05-13 14720]
S3 WmVirHid;Logitech Virtual Hid Device Driver; F:\WINDOWS\system32\drivers\WmVirHid.sys [2004-05-13 5600]
S3 WpdUsb;WpdUsb; F:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; F:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 IntelIde;IntelIde; F:\WINDOWS\system32\drivers\IntelIde.sys []
S4 sr;Ovladač filtru Obnovy systému; F:\WINDOWS\system32\DRIVERS\sr.sys [2008-04-14 73344]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AntiVirService;Avira Real-Time Protection; F:\Program Files\Avira\AntiVir Desktop\avguard.exe [2013-08-29 108088]
R2 AntiVirSchedulerService;Avira Scheduler; F:\Program Files\Avira\AntiVir Desktop\sched.exe [2013-08-29 84024]
R2 Ati HotKey Poller;Ati HotKey Poller; F:\WINDOWS\system32\Ati2evxx.exe [2012-04-06 647168]
R2 JavaQuickStarterService;Java Quick Starter; F:\Program Files\Java\jre7\bin\jqs.exe [2013-06-12 182184]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; F:\Program Files\Common Files\LightScribe\LSSrvc.exe [2006-04-24 73728]
R2 MBAMScheduler;MBAMScheduler; F:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [2013-04-04 418376]
R2 O&O Defrag;O&O Defrag; F:\WINDOWS\system32\oodag.exe [2007-01-12 707344]
R2 PnkBstrA;PnkBstrA; F:\WINDOWS\system32\PnkBstrA.exe [2012-07-09 76888]
R2 StarWindService;StarWind iSCSI Service; F:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe [2005-04-02 217600]
R2 WDDMService;WDDMService; F:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe [2011-03-09 238592]
R2 wlidsvc;Windows Live ID Sign-in Assistant; F:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2009-08-18 1529728]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; F:\WINDOWS\system32\svchost.exe [2004-08-17 14336]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; F:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 MBAMService;MBAMService; F:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [2013-04-04 701512]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; F:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-09-19 257416]
S3 aspnet_state;Stavová služba ASP.NET; F:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; F:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; f:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 IDriverT;InstallDriver Table Manager; F:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 idsvc;Windows CardSpace; F:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 MozillaMaintenance;Mozilla Maintenance Service; F:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2013-08-17 117656]
S3 WDFME;WD File Management Engine; F:\Program Files\Western Digital\WD SmartWare\Front Parlor\WDFME\WDFME.exe [2011-03-09 1060864]
S3 WDSC;WD File Management Shadow Engine; F:\Program Files\Western Digital\WD SmartWare\Front Parlor\WDSC.exe [2011-03-09 484352]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; F:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; F:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; f:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
-----------------EOF-----------------
Re: přesměrování na ihavenet.com
Stahnete OTL http://oldtimer.geekstogo.com/OTL.exe a ulozte jej na plochu
- Pokud pouzivate Win Vista ci W7, kliknete na OTL pravym a dejte Run As Administrator ci Spustit jako spravce
- Do spodniho okenka Vlastni skenovani/opravy vlozte skript nize
Kód: Vybrat vše
:reg [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "Adobe ARM"=- "SunJavaUpdateSched"=- [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "ctfmon.exe"=- [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM] [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui] [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ProcessLassoManagementConsole] [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl] :files F:\WINDOWS\tasks\*.job %windir%\system32\*.tmp.dll /s %windir%\system32\SET*.tmp /s %windir%\*.tmp :commands [RESETHOSTS] [EMPTYTEMP] [EMPTYFLASH] [EMPTYJAVA]- Nasledne kliknete na Opravit
- PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: přesměrování na ihavenet.com
All processes killed
========== REGISTRY ==========
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\Adobe ARM deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\ctfmon.exe deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ProcessLassoManagementConsole\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl\ deleted successfully.
========== FILES ==========
F:\WINDOWS\tasks\Adobe Flash Player Updater.job moved successfully.
F:\WINDOWS\tasks\mrpq.job moved successfully.
File/Folder F:\WINDOWS\system32\*.tmp.dll not found.
File/Folder F:\WINDOWS\system32\SET*.tmp not found.
F:\WINDOWS\D56B0E274A3E46C9B5C1D93D580C099C.TMP folder moved successfully.
F:\WINDOWS\msdownld.tmp folder moved successfully.
========== COMMANDS ==========
File move failed. F:\WINDOWS\System32\drivers\etc\Hosts scheduled to be moved on reboot.
Error: Unble to create default HOSTS file!
[EMPTYTEMP]
User: Administrator
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: All Users
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: JiYí Pánek
User: Jiøí Pánek
User: Jiýˇ P nek
->Temporary Internet Files folder emptied: 33180 bytes
User: Jiřà Pánek
User: Jiří Pánek
->Temp folder emptied: 1784570 bytes
->Temporary Internet Files folder emptied: 1112156 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 419615602 bytes
->Flash cache emptied: 2313 bytes
User: LocalService
->Temp folder emptied: 66016 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->Flash cache emptied: 0 bytes
User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 3913 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 0 bytes
Total Files Cleaned = 403,00 mb
[EMPTYFLASH]
User: Administrator
User: All Users
User: Default User
User: JiYí Pánek
User: Jiøí Pánek
User: Jiýˇ P nek
User: Jiřà Pánek
User: Jiří Pánek
->Flash cache emptied: 0 bytes
User: LocalService
->Flash cache emptied: 0 bytes
User: NetworkService
Total Flash Files Cleaned = 0,00 mb
[EMPTYJAVA]
User: Administrator
User: All Users
User: Default User
User: JiYí Pánek
User: Jiøí Pánek
User: Jiýˇ P nek
User: Jiřà Pánek
User: Jiří Pánek
->Java cache emptied: 0 bytes
User: LocalService
User: NetworkService
Total Java Files Cleaned = 0,00 mb
OTL by OldTimer - Version 3.2.69.0 log created on 10032013_170152
Files\Folders moved on Reboot...
F:\WINDOWS\System32\drivers\etc\Hosts moved successfully.
PendingFileRenameOperations files...
Registry entries deleted on Reboot...
========== REGISTRY ==========
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\Adobe ARM deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\ctfmon.exe deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ProcessLassoManagementConsole\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl\ deleted successfully.
========== FILES ==========
F:\WINDOWS\tasks\Adobe Flash Player Updater.job moved successfully.
F:\WINDOWS\tasks\mrpq.job moved successfully.
File/Folder F:\WINDOWS\system32\*.tmp.dll not found.
File/Folder F:\WINDOWS\system32\SET*.tmp not found.
F:\WINDOWS\D56B0E274A3E46C9B5C1D93D580C099C.TMP folder moved successfully.
F:\WINDOWS\msdownld.tmp folder moved successfully.
========== COMMANDS ==========
File move failed. F:\WINDOWS\System32\drivers\etc\Hosts scheduled to be moved on reboot.
Error: Unble to create default HOSTS file!
[EMPTYTEMP]
User: Administrator
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: All Users
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: JiYí Pánek
User: Jiøí Pánek
User: Jiýˇ P nek
->Temporary Internet Files folder emptied: 33180 bytes
User: Jiřà Pánek
User: Jiří Pánek
->Temp folder emptied: 1784570 bytes
->Temporary Internet Files folder emptied: 1112156 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 419615602 bytes
->Flash cache emptied: 2313 bytes
User: LocalService
->Temp folder emptied: 66016 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->Flash cache emptied: 0 bytes
User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 3913 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 0 bytes
Total Files Cleaned = 403,00 mb
[EMPTYFLASH]
User: Administrator
User: All Users
User: Default User
User: JiYí Pánek
User: Jiøí Pánek
User: Jiýˇ P nek
User: Jiřà Pánek
User: Jiří Pánek
->Flash cache emptied: 0 bytes
User: LocalService
->Flash cache emptied: 0 bytes
User: NetworkService
Total Flash Files Cleaned = 0,00 mb
[EMPTYJAVA]
User: Administrator
User: All Users
User: Default User
User: JiYí Pánek
User: Jiøí Pánek
User: Jiýˇ P nek
User: Jiřà Pánek
User: Jiří Pánek
->Java cache emptied: 0 bytes
User: LocalService
User: NetworkService
Total Java Files Cleaned = 0,00 mb
OTL by OldTimer - Version 3.2.69.0 log created on 10032013_170152
Files\Folders moved on Reboot...
F:\WINDOWS\System32\drivers\etc\Hosts moved successfully.
PendingFileRenameOperations files...
Registry entries deleted on Reboot...
Re: přesměrování na ihavenet.com
T-Cleaner http://vyosek.ic.cz/pro_usery/T-Cleaner.exe
- Stahnete a spustte
- Pro potvrzeni volby mackejte A, Enter
- Po pouziti utilitu smazte
- Antiviry touhou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)
OTC http://oldtimer.geekstogo.com/OTC.exe
- Stahnete a spustte
- Kliknete na CleanUp a potvrdte YES
- Program uklidi a restartuje PC
TFC http://oldtimer.geekstogo.com/TFC.exe
- Stahnete a spustte
- Kliknete na Start a potvrdte OK
- Program uklidi a restartuje pc
- Po pouziti utilitu smazte
Stahnete Ccleaner http://forum.viry.cz/viewtopic.php?t=7478Panel čistič
- Vse nechte jak je, jen dejte Analyzovat a pote Spustit CCleaner
- dejte Hledej problémy
- nasledne Opravit problémy - zalohu registru doporucuji udelat, opravte vsechny problemy
- postup opakujte dokud nebude bez problemu - vetsinou cca 3x
- Zde muzete odinstalovat nepotrebne programy
Napiste jak se chova PC"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: přesměrování na ihavenet.com
Vypadá to dobře, tak děkuji
Re: přesměrování na ihavenet.com
Zase nekdy 
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.
Přispějete na provoz fóra?