Příkazový řádek se mi ukázal asi na vteřinku a pak se počitač rest......
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosím o kontrolu
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Prosím o kontrolu
Mise se nezdařila.
Příkazový řádek se mi ukázal asi na vteřinku a pak se počitač rest......
Příkazový řádek se mi ukázal asi na vteřinku a pak se počitač rest......
Re: Prosím o kontrolu
Takže zkusíl jsem se dostat k těm složkám co jste chtěl abych Vám uploadnul, Našel jsem ale pouze WINLOGON ZDE http://uloz.to/xtsbrmwJ/winlogon-rar
heslo 123
Druhý soubor jsem hledal jak přes vyhledavač tak i ručně ale nelze nalézt, tak mě napadlo že je možná skrytý ale zvláštní je, že mi nejde zobrazit skryté složky. Když dam v průzkumníku F10 Dám na Nástroje tam tam nemám možnost - MOŽNOSTI SLOŽKY tudíž nemůžu zobrazit skryté soubory.. Zajímavé. jdu zkusit ten ComboFix
heslo 123
Druhý soubor jsem hledal jak přes vyhledavač tak i ručně ale nelze nalézt, tak mě napadlo že je možná skrytý ale zvláštní je, že mi nejde zobrazit skryté složky. Když dam v průzkumníku F10 Dám na Nástroje tam tam nemám možnost - MOŽNOSTI SLOŽKY tudíž nemůžu zobrazit skryté soubory.. Zajímavé. jdu zkusit ten ComboFix
Re: Prosím o kontrolu
http://uloz.to/xuw1cTqP/kesenjangansosial-rar heslo opět 123
ComboFix jsem znovu stahl, přejmenoval ale stale to stejné, restart.
ComboFix jsem znovu stahl, přejmenoval ale stale to stejné, restart.
Re: Prosím o kontrolu
v pohodě, nespěchám
Já zatím děkuji
Já zatím děkuji
Re: Prosím o kontrolu
Absolutne neumim,
Ale pokud by to šlo mužem se domluvit že se přes jeden programek napojis ke mě do PC .
Ale pokud by to šlo mužem se domluvit že se přes jeden programek napojis ke mě do PC .
Re: Prosím o kontrolu
Dobře omlouvám se, připadalo mi to jako lepší a pohodlnější.
Budu tedy čekat v pátek, zatím moc děkuji.
Budu tedy čekat v pátek, zatím moc děkuji.
Re: Prosím o kontrolu
takze vse odstraneno podle navodu..v kroku tri jsrm odstranil pres 23souboru brontok.Pisi Vam ted z mobilu. Ppte co jsem restartoval Pc mi nenajeli ikony ale pruzkumnik windows . a kdyz jsrm zapl novou ulohu jako explorer.exe tak se opet spustil pruzkumnik windows..predtim vsim jsem se samozrejme podival do As a vypada to tam ciste..jen jsem nekde asi udelal chybu jelikoz si ppcitac mysli ze explorer je pruzkumnik windows ale daval jsem si pozor pri tom modifikovani..zvlastni..pockam radeji na vas..pracovat s Pc SAMOzrejme muzu ale asi jsem nekde udelal chybicku
Re: Prosím o kontrolu
haveti tam.nejsou ale absolutne ted nevim co mam delat
Re: Prosím o kontrolu
vse mam spravne
Re: Prosím o kontrolu
dobre zkusim.ale berete v potaz ze misto ikon pri startu win se mi zobrazuje pruzkumnik? preto ze mam vse spravne podle navodu
Re: Prosím o kontrolu
bemam stazeny combofix. abych ho mohl stahnout musim zapnout internet ale ten mi zapbout z nejakeho duvodu nejde. dam pipojit k siti ale nic se nedeje
Re: Prosím o kontrolu
a sakra..no kdyz jsem vypinal internet dal jsem v liste dole ZAKAZAT a tak jsrm ho vypl a ted nevim jak ho zapojit i kdyz se dostanu pres pruzkumnik do windowsu tak se mi nepodari sprovoznit internet.. comvofix jsem radeji smazala jelikoz jsme ho prejmenpvavali na services.exe a rikal jsem si ze kdyztak ho pote tahnu znova...
Re: Prosím o kontrolu
tak uz se mi podaril zapnout net..jdu na Combofix
Re: Prosím o kontrolu
už mi najel PC i s ikonama po provedeni skenu ComboFixem. zde je log :
ComboFix 13-10-31.01 - PC 31.10.2013 21:20:48.1.2 - x86
Microsoft Windows 7 Ultimate 6.1.7600.0.1250.420.1029.18.2048.1186 [GMT 1:00]
Spuštěný z: c:\users\PC\Desktop\ComboFix.exe
SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\programdata\Microsoft\Crypto\Keys\Keys.exe
c:\programdata\Microsoft\Crypto\RSA\MachineKeys\MachineKeys.exe
c:\programdata\Microsoft\Crypto\RSA\S-1-5-18\S-1-5-18.exe
c:\programdata\Microsoft\Network\Downloader\Downloader.exe
c:\programdata\Microsoft\Office\OFFICE.exe
c:\programdata\Microsoft\User Account Pictures\Default Pictures\Default Pictures.exe
c:\programdata\nvidia\nvidia.exe
c:\programdata\windows
c:\users\PC\AppData\Local\Adobe\Color\Color.exe
c:\users\PC\AppData\Local\Bron.tok.A17.em.bin
c:\users\PC\AppData\Local\ListHost17.txt
c:\users\PC\AppData\Local\Microsoft\Internet Explorer\Internet Explorer.exe
c:\users\PC\AppData\Local\Microsoft\OFFICE\Office.exe
c:\users\PC\AppData\Local\Microsoft\Windows\Explorer\explorer.exe
c:\users\PC\AppData\Local\Microsoft\Windows\Temporary Internet Files\Temporary Internet Files.exe
c:\users\PC\AppData\Local\Microsoft\Windows\Windows.exe
c:\users\PC\AppData\Roaming\Microsoft\Crypto\RSA\S-1-5-21-3438367943-3009045665-384546852-1001\S-1-5-21-3438367943-3009045665-384546852-1001.exe
c:\users\PC\AppData\Roaming\Microsoft\HTML Help\HTML Help.exe
c:\users\PC\AppData\Roaming\Microsoft\Office\Office.exe
c:\users\PC\AppData\Roaming\Microsoft\Protect\Protect.exe
c:\users\PC\AppData\Roaming\Microsoft\Protect\S-1-5-21-3438367943-3009045665-384546852-1001\S-1-5-21-3438367943-3009045665-384546852-1001.exe
c:\users\PC\AppData\Roaming\Microsoft\Windows\Cookies\Cookies.exe
c:\users\PC\AppData\Roaming\Microsoft\Windows\Recent\Recent.exe
c:\users\PC\AppData\Roaming\Microsoft\Windows\Templates\4896-NendangBro.com
c:\users\PC\AppData\Roaming\Microsoft\Windows\Themes\Themes.exe
c:\users\PC\AppData\Roaming\Mozilla\Firefox\firefox.exe
c:\users\PC\AppData\Roaming\Skype\Skype.exe
c:\users\PC\AppData\Roaming\WinRAR\WinRAR.exe
c:\users\PC\Favorites\Favorites.exe
c:\users\PC\Favorites\Links\Links.exe
c:\users\PC\Favorites\Weby společnosti Microsoft\Weby společnosti Microsoft.exe
c:\users\PC\Favorites\Windows Live\Windows Live.exe
c:\users\PC\videos\Videos.exe
c:\users\Public\videos\Videos.exe
c:\users\UpdatusUser\AppData\Local\Microsoft\Windows\Windows.exe
c:\users\UpdatusUser\AppData\Roaming\Microsoft\Protect\Protect.exe
c:\users\UpdatusUser\AppData\Roaming\Microsoft\Protect\S-1-5-21-3438367943-3009045665-384546852-1003\S-1-5-21-3438367943-3009045665-384546852-1003.exe
c:\windows\iun6002.exe
c:\windows\security\Database\tmp.edb
c:\windows\system32\cmd-brontok.exe
c:\windows\system32\PC's Setting.scr
c:\windows\system32\System32\MASetupCleaner.exe
c:\windows\system32\System32\muzapp.exe
c:\windows\system32\tmpD31D.tmp
c:\windows\system32\tmpD32E.tmp
c:\windows\system32\tmpD8E.tmp
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2013-09-28 do 2013-10-31 )))))))))))))))))))))))))))))))
.
.
2013-10-31 20:26 . 2013-10-31 20:27 -------- d-----w- c:\users\PC\AppData\Local\temp
2013-10-31 20:26 . 2013-10-31 20:26 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp
2013-10-31 20:26 . 2013-10-31 20:26 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-10-30 17:26 . 2013-10-30 17:26 -------- d-----w- C:\FRST
2013-10-25 19:30 . 2013-10-25 19:30 -------- d-----w- C:\rsit
2013-10-25 10:43 . 2013-10-25 10:43 -------- d--h--w- c:\windows\PIF
2013-10-21 11:32 . 2013-10-21 11:33 -------- d-----w- C:\Fifa 14 UE
2013-10-12 12:49 . 2013-10-31 18:34 1064 ------w- c:\users\PC\AppData\Local\NetMailTmp.bin
2013-10-08 17:36 . 2013-10-09 14:36 17750408 ----a-w- c:\windows\system32\FlashPlayerInstaller.exe
2013-10-04 11:40 . 2013-10-04 11:40 -------- d-----w- c:\program files\MegaDev
2013-10-04 10:56 . 2013-10-04 10:56 -------- d-----w- c:\users\PC\AppData\Local\CrashRpt
2013-10-03 15:19 . 2013-10-03 15:19 -------- d-----w- c:\program files\AGEIA Technologies
2013-10-03 15:15 . 2013-09-12 08:51 9253664 ----a-w- c:\windows\system32\drivers\nvlddmkm.sys
2013-10-03 15:15 . 2013-09-12 08:51 893728 ----a-w- c:\windows\system32\nvdispgenco3232723.dll
2013-10-03 15:15 . 2013-09-12 08:51 7720576 ----a-w- c:\windows\system32\nvcuda.dll
2013-10-03 15:15 . 2013-09-12 08:51 6329552 ----a-w- c:\windows\system32\nvopencl.dll
2013-10-03 15:15 . 2013-09-12 08:51 586016 ----a-w- c:\windows\system32\NvFBC.dll
2013-10-03 15:15 . 2013-09-12 08:51 515360 ----a-w- c:\windows\system32\NvIFR.dll
2013-10-03 15:15 . 2013-09-12 08:51 2789152 ----a-w- c:\windows\system32\nvcuvid.dll
2013-10-03 15:15 . 2013-09-12 08:51 22102304 ----a-w- c:\windows\system32\nvoglv32.dll
2013-10-03 15:15 . 2013-09-12 08:51 2007328 ----a-w- c:\windows\system32\nvcuvenc.dll
2013-10-03 15:15 . 2013-09-12 08:51 1049376 ----a-w- c:\windows\system32\nvdispco3232723.dll
2013-10-03 15:15 . 2013-09-12 08:51 17560352 ----a-w- c:\windows\system32\nvcompiler.dll
2013-10-03 15:11 . 2013-08-20 13:33 33568 ----a-w- c:\windows\system32\drivers\nvvad32v.sys
2013-10-03 15:11 . 2013-08-20 13:32 28448 ----a-w- c:\windows\system32\nvaudcap32v.dll
2013-10-02 13:27 . 2013-10-02 13:27 -------- d-----w- c:\users\PC\AppData\Roaming\LolClient
2013-10-02 10:55 . 2008-07-12 06:18 467984 ----a-w- c:\windows\system32\d3dx10_39.dll
2013-10-02 10:55 . 2008-07-12 06:18 1493528 ----a-w- c:\windows\system32\D3DCompiler_39.dll
2013-10-02 10:54 . 2008-07-12 06:18 3851784 ----a-w- c:\windows\system32\D3DX9_39.dll
2013-10-02 10:54 . 2013-10-02 10:54 -------- d-sh--w- c:\windows\system32\AI_RecycleBin
2013-10-02 10:54 . 2013-10-29 18:25 -------- d-----w- c:\users\PC\AppData\Local\PMB Files
2013-10-02 10:54 . 2013-10-29 18:25 -------- d-----w- c:\programdata\PMB Files
2013-10-02 10:54 . 2013-10-02 10:54 -------- d-----w- c:\program files\Pando Networks
2013-10-02 10:53 . 2013-10-02 10:54 -------- d-----w- c:\users\PC\AppData\Roaming\Riot Games
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-10-20 12:52 . 2012-04-28 22:26 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2013-10-20 12:52 . 2012-04-28 22:26 692616 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2013-09-30 18:42 . 2013-09-30 18:42 444952 ----a-w- c:\windows\system32\wrap_oal.dll
2013-09-30 18:42 . 2013-09-30 18:42 109080 ----a-w- c:\windows\system32\OpenAL32.dll
2013-09-12 08:51 . 2013-06-09 16:56 12947360 ----a-w- c:\windows\system32\nvd3dum.dll
2013-09-12 08:51 . 2012-04-27 13:27 2630304 ----a-w- c:\windows\system32\nvapi.dll
2013-09-12 08:51 . 2009-07-13 22:09 13628208 ----a-w- c:\windows\system32\nvwgf2um.dll
2013-09-12 06:28 . 2012-04-27 13:28 4265760 ----a-w- c:\windows\system32\nvcpl.dll
2013-09-12 06:28 . 2012-04-27 13:28 3006240 ----a-w- c:\windows\system32\nvsvc.dll
2013-09-12 06:28 . 2012-04-27 13:28 662816 ----a-w- c:\windows\system32\nvvsvc.exe
2013-09-12 06:28 . 2012-04-27 13:28 62752 ----a-w- c:\windows\system32\nvshext.dll
2013-09-12 06:28 . 2012-04-27 13:28 2555168 ----a-w- c:\windows\system32\nvsvcr.dll
2013-09-12 06:28 . 2012-04-27 13:28 209184 ----a-w- c:\windows\system32\nvmctray.dll
2013-09-11 23:17 . 2013-09-11 23:17 571168 ----a-w- c:\windows\system32\nvStreaming.exe
2013-09-11 04:55 . 2012-09-05 10:55 61728 ----a-w- C:\kbfilter.sys
2013-09-11 04:55 . 2012-07-01 19:11 61728 ----a-w- c:\windows\system32\drivers\kbfilter.sys
2013-09-11 04:55 . 2012-12-26 13:14 98 ----a-w- C:\install.bat
2013-09-11 04:55 . 2012-12-26 13:14 81 ----a-w- C:\uninstall.bat
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"uTorrent"="c:\program files\uTorrent\uTorrent.exe" [2012-12-22 969104]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\program files\Common Files\Ahead\Lib\NMBgMonitor.exe" [2007-06-27 152872]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2006-10-26 31016]
"NeroFilterCheck"="c:\program files\Common Files\Ahead\Lib\NeroCheck.exe" [2007-03-01 153136]
"Nvtmru"="c:\program files\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe" [2013-08-27 1028896]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKLM\~\startupfolder\C:^Users^PC^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^HDDlife.lnk]
path=c:\users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\HDDlife.lnk
backup=c:\windows\pss\HDDlife.lnk.Startup
backupExtension=.Startup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AlcoholAutomount]
2012-01-05 15:42 75624 ----a-w- c:\program files\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesHelper]
2012-05-04 05:36 955792 ----a-w- c:\program files\Samsung\Kies\KiesHelper.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesPDLR]
2012-05-04 05:37 21392 ----a-w- c:\program files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PwmConsole.exe]
2013-09-11 04:55 1168408 ----a-w- c:\program files\Trend Micro\TMIDS\PwmConsole.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RTHDVCPL]
2011-12-13 14:58 11487848 ------w- c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sidebar]
2009-07-14 01:14 1173504 ----a-w- c:\program files\Windows Sidebar\sidebar.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]
2012-12-22 11:28 969104 ----a-w- c:\program files\uTorrent\uTorrent.exe
.
R2 AxAutoMntSrv;Alcohol Virtual Drive Auto-mount Service;c:\program files\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [2012-01-05 75624]
R2 OMSI download service;Sony Ericsson OMSI download service;c:\program files\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe [2009-04-30 90112]
R2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [2013-06-03 162408]
R3 androidusb;SAMSUNG Android Composite ADB Interface Driver;c:\windows\system32\Drivers\ssadadb.sys [2010-12-21 30312]
R3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudbus.sys [2012-02-24 80824]
R3 kbfilter;kbfilter;c:\windows\system32\DRIVERS\kbfilter.sys [2013-09-11 61728]
R3 Sony PC Companion;Sony PC Companion;c:\program files\Sony\Sony PC Companion\PCCService.exe [2012-01-18 155320]
R3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM);c:\windows\system32\DRIVERS\ssadbus.sys [2011-06-02 121064]
R3 ssadmdfl;SAMSUNG Android USB Modem (Filter);c:\windows\system32\DRIVERS\ssadmdfl.sys [2011-06-02 12776]
R3 ssadmdm;SAMSUNG Android USB Modem Drivers;c:\windows\system32\DRIVERS\ssadmdm.sys [2011-06-02 136808]
R3 ssadserd;SAMSUNG Android USB Diagnostic Serial Port (WDM);c:\windows\system32\DRIVERS\ssadserd.sys [2011-06-02 114280]
R3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudmdm.sys [2012-02-24 181432]
S0 sptd;sptd;c:\windows\\SystemRoot\System32\Drivers\sptd.sys [x]
S1 avgtp;avgtp;c:\windows\system32\drivers\avgtpx86.sys [2012-11-08 26984]
S2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [2012-04-04 654408]
S2 NvStreamSvc;NVIDIA Streamer Service;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2013-08-27 14573856]
S2 PwmSvc;Trend Micro DirectPass Central Control Service;c:\program files\Trend Micro\TMIDS\PwmSvc.exe [2013-09-11 230424]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2013-09-11 414496]
S2 TeamViewer7;TeamViewer 7;c:\program files\TeamViewer\Version7\TeamViewer_Service.exe [2012-03-19 2666880]
S2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files\TuneUp Utilities 2013\TuneUpUtilitiesService32.exe [2013-01-31 1724192]
S3 Atc002;NDIS Miniport Driver for Atheros L2 Fast Ethernet - adaptér;c:\windows\system32\DRIVERS\l260x86.sys [2009-07-13 29184]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2012-04-04 22344]
S3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);c:\windows\system32\drivers\nvvad32v.sys [2013-08-20 33568]
S3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files\TuneUp Utilities 2013\TuneUpUtilitiesDriver32.sys [2012-09-19 10088]
.
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
.
Obsah adresáře 'Naplánované úlohy'
.
2013-10-31 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2012-05-20 08:57]
.
2013-10-31 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2012-05-20 08:57]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www1.delta-search.com/?babsrc=HP_ss&mntrId=786800E04D6BC9D5&affID=121564&tsp=4953
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~3\Office12\EXCEL.EXE/3000
IE: {{781B39EC-2E18-41FC-9B00-B84E4FFCA85F} - c:\program files\ICQ7M\ICQ.exe
TCP: DhcpNameServer = 109.231.191.1 109.231.191.3
FF - ProfilePath - c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\78yi2wbv.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
FF - user.js: extensions.delta.tlbrSrchUrl -
FF - user.js: extensions.delta.id - 7868f8d000000000000000e04d6bc9d5
FF - user.js: extensions.delta.appId - {C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
FF - user.js: extensions.delta.instlDay - 15881
FF - user.js: extensions.delta.vrsn - 1.8.21.5
FF - user.js: extensions.delta.vrsni - 1.8.21.5
FF - user.js: extensions.delta.vrsnTs - 1.8.21.517:28
FF - user.js: extensions.delta.prtnrId - delta
FF - user.js: extensions.delta.prdct - delta
FF - user.js: extensions.delta.aflt - babsst
FF - user.js: extensions.delta.smplGrp - none
FF - user.js: extensions.delta.tlbrId - base
FF - user.js: extensions.delta.instlRef - sst
FF - user.js: extensions.delta.dfltLng - cs
FF - user.js: extensions.delta.excTlbr - false
FF - user.js: extensions.delta.ffxUnstlRst - true
FF - user.js: extensions.delta.admin - false
FF - user.js: extensions.delta_i.babTrack - affID=121562&tt=250613_gr1&tsp=4924
FF - user.js: extensions.delta_i.babExt -
FF - user.js: extensions.delta_i.srcExt - ss
FF - user.js: extensions.delta.autoRvrt - false
FF - user.js: extensions.delta.rvrt - false
FF - user.js: extensions.delta.newTab - false
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
HKCU-Run-RGSC - d:\gta 4\Rockstar Games Social Club\RGSCLauncher.exe
AddRemove-Call of Duty - c:\progra~1\CALLOF~1\Uninstall\Unwise.exe
AddRemove-Cool's_Codec_pack_4.12 - c:\windows\iun6002.exe
AddRemove-Far Cry 3_is1 - d:\far cry 3\unins000.exe
AddRemove-Football Superstars_is1 - c:\football superstars\unins000.exe
AddRemove-Hitman Absolution_is1 - d:\hitman absolution\unins000.exe
AddRemove-Metro Last Light_is1 - d:\metro 3\Metro Last Light\unins000.exe
AddRemove-Rockstar Games Social Club - c:\program files\Rockstar Games\Social Club\uninstallRGSCRedistributable.exe
AddRemove-SCANIA Truck Driving Simulator - d:\scania simulator\SCANIA Truck Driving Simulator\uninst.exe
AddRemove-Slender The Arrival_is1 - d:\slender the arrival\unins000.exe
AddRemove-{1EAC1D02-C6AC-4FA6-9A44-96258C37C812EU}_is1 - c:\games\World_of_Tanks\unins000.exe
AddRemove-01_Simmental - c:\program files\Samsung\USB Drivers\01_Simmental\Uninstall.exe
AddRemove-02_Siberian - c:\program files\Samsung\USB Drivers\02_Siberian\Uninstall.exe
AddRemove-03_Swallowtail - c:\program files\Samsung\USB Drivers\03_Swallowtail\Uninstall.exe
AddRemove-04_semseyite - c:\program files\Samsung\USB Drivers\04_semseyite\Uninstall.exe
AddRemove-05_Sloan - c:\program files\Samsung\USB Drivers\05_Sloan\Uninstall.exe
AddRemove-06_Spencer - c:\program files\Samsung\USB Drivers\06_Spencer\Uninstall.exe
AddRemove-07_Schorl - c:\program files\Samsung\USB Drivers\07_Schorl\Uninstall.exe
AddRemove-08_EMPChipset - c:\program files\Samsung\USB Drivers\08_EMPChipset\Uninstall.exe
AddRemove-09_Hsp - c:\program files\Samsung\USB Drivers\09_Hsp\Uninstall.exe
AddRemove-11_HSP_Plus_Default - c:\program files\Samsung\USB Drivers\11_HSP_Plus_Default\Uninstall.exe
AddRemove-16_Shrewsbury - c:\program files\Samsung\USB Drivers\16_Shrewsbury\Uninstall.exe
AddRemove-17_EMP_Chipset2 - c:\program files\Samsung\USB Drivers\17_EMP_Chipset2\Uninstall.exe
AddRemove-18_Zinia_Serial_Driver - c:\program files\Samsung\USB Drivers\18_Zinia_Serial_Driver\Uninstall.exe
AddRemove-19_VIA_driver - c:\program files\Samsung\USB Drivers\19_VIA_driver\Uninstall.exe
AddRemove-20_NXP_Driver - c:\program files\Samsung\USB Drivers\20_NXP_Driver\Uninstall.exe
AddRemove-21_Searsburg - c:\program files\Samsung\USB Drivers\21_Searsburg\Uninstall.exe
AddRemove-22_WiBro_WiMAX - c:\program files\Samsung\USB Drivers\22_WiBro_WiMAX\Uninstall.exe
AddRemove-24_flashusbdriver - c:\program files\Samsung\USB Drivers\24_flashusbdriver\Uninstall.exe
AddRemove-25_escape - c:\program files\Samsung\USB Drivers\25_escape\Uninstall.exe
AddRemove-Čeština pro GTA IV v1.0.7.0 1.0.7.0 - c:\program files\Rockstar Games\Grand Theft Auto IV\Uninstall.exe
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-3438367943-3009045665-384546852-1001\Software\SecuROM\License information*]
"datasecu"=hex:0e,d2,d4,ef,95,4b,8b,bf,8d,8b,55,cf,d5,34,fb,e0,b8,a8,0f,de,a9,
65,fe,82,c9,e3,39,18,9a,5b,fa,11,24,a8,85,b4,3f,f8,a0,12,53,12,4e,92,e0,26,\
"rkeysecu"=hex:f3,f9,07,27,dd,a9,ea,ea,90,dc,aa,db,6a,8a,35,c0
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2013-10-31 21:28:39
ComboFix-quarantined-files.txt 2013-10-31 20:28
.
Před spuštěním: Volných bajtů: 10 503 045 120
Po spuštění: Volných bajtů: 12 154 089 472
.
- - End Of File - - D1251D268757774DDD4CC7F038B4157F
A36C5E4F47E84449FF07ED3517B43A31
ComboFix 13-10-31.01 - PC 31.10.2013 21:20:48.1.2 - x86
Microsoft Windows 7 Ultimate 6.1.7600.0.1250.420.1029.18.2048.1186 [GMT 1:00]
Spuštěný z: c:\users\PC\Desktop\ComboFix.exe
SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\programdata\Microsoft\Crypto\Keys\Keys.exe
c:\programdata\Microsoft\Crypto\RSA\MachineKeys\MachineKeys.exe
c:\programdata\Microsoft\Crypto\RSA\S-1-5-18\S-1-5-18.exe
c:\programdata\Microsoft\Network\Downloader\Downloader.exe
c:\programdata\Microsoft\Office\OFFICE.exe
c:\programdata\Microsoft\User Account Pictures\Default Pictures\Default Pictures.exe
c:\programdata\nvidia\nvidia.exe
c:\programdata\windows
c:\users\PC\AppData\Local\Adobe\Color\Color.exe
c:\users\PC\AppData\Local\Bron.tok.A17.em.bin
c:\users\PC\AppData\Local\ListHost17.txt
c:\users\PC\AppData\Local\Microsoft\Internet Explorer\Internet Explorer.exe
c:\users\PC\AppData\Local\Microsoft\OFFICE\Office.exe
c:\users\PC\AppData\Local\Microsoft\Windows\Explorer\explorer.exe
c:\users\PC\AppData\Local\Microsoft\Windows\Temporary Internet Files\Temporary Internet Files.exe
c:\users\PC\AppData\Local\Microsoft\Windows\Windows.exe
c:\users\PC\AppData\Roaming\Microsoft\Crypto\RSA\S-1-5-21-3438367943-3009045665-384546852-1001\S-1-5-21-3438367943-3009045665-384546852-1001.exe
c:\users\PC\AppData\Roaming\Microsoft\HTML Help\HTML Help.exe
c:\users\PC\AppData\Roaming\Microsoft\Office\Office.exe
c:\users\PC\AppData\Roaming\Microsoft\Protect\Protect.exe
c:\users\PC\AppData\Roaming\Microsoft\Protect\S-1-5-21-3438367943-3009045665-384546852-1001\S-1-5-21-3438367943-3009045665-384546852-1001.exe
c:\users\PC\AppData\Roaming\Microsoft\Windows\Cookies\Cookies.exe
c:\users\PC\AppData\Roaming\Microsoft\Windows\Recent\Recent.exe
c:\users\PC\AppData\Roaming\Microsoft\Windows\Templates\4896-NendangBro.com
c:\users\PC\AppData\Roaming\Microsoft\Windows\Themes\Themes.exe
c:\users\PC\AppData\Roaming\Mozilla\Firefox\firefox.exe
c:\users\PC\AppData\Roaming\Skype\Skype.exe
c:\users\PC\AppData\Roaming\WinRAR\WinRAR.exe
c:\users\PC\Favorites\Favorites.exe
c:\users\PC\Favorites\Links\Links.exe
c:\users\PC\Favorites\Weby společnosti Microsoft\Weby společnosti Microsoft.exe
c:\users\PC\Favorites\Windows Live\Windows Live.exe
c:\users\PC\videos\Videos.exe
c:\users\Public\videos\Videos.exe
c:\users\UpdatusUser\AppData\Local\Microsoft\Windows\Windows.exe
c:\users\UpdatusUser\AppData\Roaming\Microsoft\Protect\Protect.exe
c:\users\UpdatusUser\AppData\Roaming\Microsoft\Protect\S-1-5-21-3438367943-3009045665-384546852-1003\S-1-5-21-3438367943-3009045665-384546852-1003.exe
c:\windows\iun6002.exe
c:\windows\security\Database\tmp.edb
c:\windows\system32\cmd-brontok.exe
c:\windows\system32\PC's Setting.scr
c:\windows\system32\System32\MASetupCleaner.exe
c:\windows\system32\System32\muzapp.exe
c:\windows\system32\tmpD31D.tmp
c:\windows\system32\tmpD32E.tmp
c:\windows\system32\tmpD8E.tmp
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2013-09-28 do 2013-10-31 )))))))))))))))))))))))))))))))
.
.
2013-10-31 20:26 . 2013-10-31 20:27 -------- d-----w- c:\users\PC\AppData\Local\temp
2013-10-31 20:26 . 2013-10-31 20:26 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp
2013-10-31 20:26 . 2013-10-31 20:26 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-10-30 17:26 . 2013-10-30 17:26 -------- d-----w- C:\FRST
2013-10-25 19:30 . 2013-10-25 19:30 -------- d-----w- C:\rsit
2013-10-25 10:43 . 2013-10-25 10:43 -------- d--h--w- c:\windows\PIF
2013-10-21 11:32 . 2013-10-21 11:33 -------- d-----w- C:\Fifa 14 UE
2013-10-12 12:49 . 2013-10-31 18:34 1064 ------w- c:\users\PC\AppData\Local\NetMailTmp.bin
2013-10-08 17:36 . 2013-10-09 14:36 17750408 ----a-w- c:\windows\system32\FlashPlayerInstaller.exe
2013-10-04 11:40 . 2013-10-04 11:40 -------- d-----w- c:\program files\MegaDev
2013-10-04 10:56 . 2013-10-04 10:56 -------- d-----w- c:\users\PC\AppData\Local\CrashRpt
2013-10-03 15:19 . 2013-10-03 15:19 -------- d-----w- c:\program files\AGEIA Technologies
2013-10-03 15:15 . 2013-09-12 08:51 9253664 ----a-w- c:\windows\system32\drivers\nvlddmkm.sys
2013-10-03 15:15 . 2013-09-12 08:51 893728 ----a-w- c:\windows\system32\nvdispgenco3232723.dll
2013-10-03 15:15 . 2013-09-12 08:51 7720576 ----a-w- c:\windows\system32\nvcuda.dll
2013-10-03 15:15 . 2013-09-12 08:51 6329552 ----a-w- c:\windows\system32\nvopencl.dll
2013-10-03 15:15 . 2013-09-12 08:51 586016 ----a-w- c:\windows\system32\NvFBC.dll
2013-10-03 15:15 . 2013-09-12 08:51 515360 ----a-w- c:\windows\system32\NvIFR.dll
2013-10-03 15:15 . 2013-09-12 08:51 2789152 ----a-w- c:\windows\system32\nvcuvid.dll
2013-10-03 15:15 . 2013-09-12 08:51 22102304 ----a-w- c:\windows\system32\nvoglv32.dll
2013-10-03 15:15 . 2013-09-12 08:51 2007328 ----a-w- c:\windows\system32\nvcuvenc.dll
2013-10-03 15:15 . 2013-09-12 08:51 1049376 ----a-w- c:\windows\system32\nvdispco3232723.dll
2013-10-03 15:15 . 2013-09-12 08:51 17560352 ----a-w- c:\windows\system32\nvcompiler.dll
2013-10-03 15:11 . 2013-08-20 13:33 33568 ----a-w- c:\windows\system32\drivers\nvvad32v.sys
2013-10-03 15:11 . 2013-08-20 13:32 28448 ----a-w- c:\windows\system32\nvaudcap32v.dll
2013-10-02 13:27 . 2013-10-02 13:27 -------- d-----w- c:\users\PC\AppData\Roaming\LolClient
2013-10-02 10:55 . 2008-07-12 06:18 467984 ----a-w- c:\windows\system32\d3dx10_39.dll
2013-10-02 10:55 . 2008-07-12 06:18 1493528 ----a-w- c:\windows\system32\D3DCompiler_39.dll
2013-10-02 10:54 . 2008-07-12 06:18 3851784 ----a-w- c:\windows\system32\D3DX9_39.dll
2013-10-02 10:54 . 2013-10-02 10:54 -------- d-sh--w- c:\windows\system32\AI_RecycleBin
2013-10-02 10:54 . 2013-10-29 18:25 -------- d-----w- c:\users\PC\AppData\Local\PMB Files
2013-10-02 10:54 . 2013-10-29 18:25 -------- d-----w- c:\programdata\PMB Files
2013-10-02 10:54 . 2013-10-02 10:54 -------- d-----w- c:\program files\Pando Networks
2013-10-02 10:53 . 2013-10-02 10:54 -------- d-----w- c:\users\PC\AppData\Roaming\Riot Games
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-10-20 12:52 . 2012-04-28 22:26 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2013-10-20 12:52 . 2012-04-28 22:26 692616 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2013-09-30 18:42 . 2013-09-30 18:42 444952 ----a-w- c:\windows\system32\wrap_oal.dll
2013-09-30 18:42 . 2013-09-30 18:42 109080 ----a-w- c:\windows\system32\OpenAL32.dll
2013-09-12 08:51 . 2013-06-09 16:56 12947360 ----a-w- c:\windows\system32\nvd3dum.dll
2013-09-12 08:51 . 2012-04-27 13:27 2630304 ----a-w- c:\windows\system32\nvapi.dll
2013-09-12 08:51 . 2009-07-13 22:09 13628208 ----a-w- c:\windows\system32\nvwgf2um.dll
2013-09-12 06:28 . 2012-04-27 13:28 4265760 ----a-w- c:\windows\system32\nvcpl.dll
2013-09-12 06:28 . 2012-04-27 13:28 3006240 ----a-w- c:\windows\system32\nvsvc.dll
2013-09-12 06:28 . 2012-04-27 13:28 662816 ----a-w- c:\windows\system32\nvvsvc.exe
2013-09-12 06:28 . 2012-04-27 13:28 62752 ----a-w- c:\windows\system32\nvshext.dll
2013-09-12 06:28 . 2012-04-27 13:28 2555168 ----a-w- c:\windows\system32\nvsvcr.dll
2013-09-12 06:28 . 2012-04-27 13:28 209184 ----a-w- c:\windows\system32\nvmctray.dll
2013-09-11 23:17 . 2013-09-11 23:17 571168 ----a-w- c:\windows\system32\nvStreaming.exe
2013-09-11 04:55 . 2012-09-05 10:55 61728 ----a-w- C:\kbfilter.sys
2013-09-11 04:55 . 2012-07-01 19:11 61728 ----a-w- c:\windows\system32\drivers\kbfilter.sys
2013-09-11 04:55 . 2012-12-26 13:14 98 ----a-w- C:\install.bat
2013-09-11 04:55 . 2012-12-26 13:14 81 ----a-w- C:\uninstall.bat
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"uTorrent"="c:\program files\uTorrent\uTorrent.exe" [2012-12-22 969104]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\program files\Common Files\Ahead\Lib\NMBgMonitor.exe" [2007-06-27 152872]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2006-10-26 31016]
"NeroFilterCheck"="c:\program files\Common Files\Ahead\Lib\NeroCheck.exe" [2007-03-01 153136]
"Nvtmru"="c:\program files\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe" [2013-08-27 1028896]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKLM\~\startupfolder\C:^Users^PC^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^HDDlife.lnk]
path=c:\users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\HDDlife.lnk
backup=c:\windows\pss\HDDlife.lnk.Startup
backupExtension=.Startup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AlcoholAutomount]
2012-01-05 15:42 75624 ----a-w- c:\program files\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesHelper]
2012-05-04 05:36 955792 ----a-w- c:\program files\Samsung\Kies\KiesHelper.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesPDLR]
2012-05-04 05:37 21392 ----a-w- c:\program files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PwmConsole.exe]
2013-09-11 04:55 1168408 ----a-w- c:\program files\Trend Micro\TMIDS\PwmConsole.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RTHDVCPL]
2011-12-13 14:58 11487848 ------w- c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sidebar]
2009-07-14 01:14 1173504 ----a-w- c:\program files\Windows Sidebar\sidebar.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]
2012-12-22 11:28 969104 ----a-w- c:\program files\uTorrent\uTorrent.exe
.
R2 AxAutoMntSrv;Alcohol Virtual Drive Auto-mount Service;c:\program files\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [2012-01-05 75624]
R2 OMSI download service;Sony Ericsson OMSI download service;c:\program files\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe [2009-04-30 90112]
R2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [2013-06-03 162408]
R3 androidusb;SAMSUNG Android Composite ADB Interface Driver;c:\windows\system32\Drivers\ssadadb.sys [2010-12-21 30312]
R3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudbus.sys [2012-02-24 80824]
R3 kbfilter;kbfilter;c:\windows\system32\DRIVERS\kbfilter.sys [2013-09-11 61728]
R3 Sony PC Companion;Sony PC Companion;c:\program files\Sony\Sony PC Companion\PCCService.exe [2012-01-18 155320]
R3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM);c:\windows\system32\DRIVERS\ssadbus.sys [2011-06-02 121064]
R3 ssadmdfl;SAMSUNG Android USB Modem (Filter);c:\windows\system32\DRIVERS\ssadmdfl.sys [2011-06-02 12776]
R3 ssadmdm;SAMSUNG Android USB Modem Drivers;c:\windows\system32\DRIVERS\ssadmdm.sys [2011-06-02 136808]
R3 ssadserd;SAMSUNG Android USB Diagnostic Serial Port (WDM);c:\windows\system32\DRIVERS\ssadserd.sys [2011-06-02 114280]
R3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudmdm.sys [2012-02-24 181432]
S0 sptd;sptd;c:\windows\\SystemRoot\System32\Drivers\sptd.sys [x]
S1 avgtp;avgtp;c:\windows\system32\drivers\avgtpx86.sys [2012-11-08 26984]
S2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [2012-04-04 654408]
S2 NvStreamSvc;NVIDIA Streamer Service;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2013-08-27 14573856]
S2 PwmSvc;Trend Micro DirectPass Central Control Service;c:\program files\Trend Micro\TMIDS\PwmSvc.exe [2013-09-11 230424]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2013-09-11 414496]
S2 TeamViewer7;TeamViewer 7;c:\program files\TeamViewer\Version7\TeamViewer_Service.exe [2012-03-19 2666880]
S2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files\TuneUp Utilities 2013\TuneUpUtilitiesService32.exe [2013-01-31 1724192]
S3 Atc002;NDIS Miniport Driver for Atheros L2 Fast Ethernet - adaptér;c:\windows\system32\DRIVERS\l260x86.sys [2009-07-13 29184]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2012-04-04 22344]
S3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);c:\windows\system32\drivers\nvvad32v.sys [2013-08-20 33568]
S3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files\TuneUp Utilities 2013\TuneUpUtilitiesDriver32.sys [2012-09-19 10088]
.
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
.
Obsah adresáře 'Naplánované úlohy'
.
2013-10-31 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2012-05-20 08:57]
.
2013-10-31 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2012-05-20 08:57]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www1.delta-search.com/?babsrc=HP_ss&mntrId=786800E04D6BC9D5&affID=121564&tsp=4953
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~3\Office12\EXCEL.EXE/3000
IE: {{781B39EC-2E18-41FC-9B00-B84E4FFCA85F} - c:\program files\ICQ7M\ICQ.exe
TCP: DhcpNameServer = 109.231.191.1 109.231.191.3
FF - ProfilePath - c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\78yi2wbv.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
FF - user.js: extensions.delta.tlbrSrchUrl -
FF - user.js: extensions.delta.id - 7868f8d000000000000000e04d6bc9d5
FF - user.js: extensions.delta.appId - {C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
FF - user.js: extensions.delta.instlDay - 15881
FF - user.js: extensions.delta.vrsn - 1.8.21.5
FF - user.js: extensions.delta.vrsni - 1.8.21.5
FF - user.js: extensions.delta.vrsnTs - 1.8.21.517:28
FF - user.js: extensions.delta.prtnrId - delta
FF - user.js: extensions.delta.prdct - delta
FF - user.js: extensions.delta.aflt - babsst
FF - user.js: extensions.delta.smplGrp - none
FF - user.js: extensions.delta.tlbrId - base
FF - user.js: extensions.delta.instlRef - sst
FF - user.js: extensions.delta.dfltLng - cs
FF - user.js: extensions.delta.excTlbr - false
FF - user.js: extensions.delta.ffxUnstlRst - true
FF - user.js: extensions.delta.admin - false
FF - user.js: extensions.delta_i.babTrack - affID=121562&tt=250613_gr1&tsp=4924
FF - user.js: extensions.delta_i.babExt -
FF - user.js: extensions.delta_i.srcExt - ss
FF - user.js: extensions.delta.autoRvrt - false
FF - user.js: extensions.delta.rvrt - false
FF - user.js: extensions.delta.newTab - false
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
HKCU-Run-RGSC - d:\gta 4\Rockstar Games Social Club\RGSCLauncher.exe
AddRemove-Call of Duty - c:\progra~1\CALLOF~1\Uninstall\Unwise.exe
AddRemove-Cool's_Codec_pack_4.12 - c:\windows\iun6002.exe
AddRemove-Far Cry 3_is1 - d:\far cry 3\unins000.exe
AddRemove-Football Superstars_is1 - c:\football superstars\unins000.exe
AddRemove-Hitman Absolution_is1 - d:\hitman absolution\unins000.exe
AddRemove-Metro Last Light_is1 - d:\metro 3\Metro Last Light\unins000.exe
AddRemove-Rockstar Games Social Club - c:\program files\Rockstar Games\Social Club\uninstallRGSCRedistributable.exe
AddRemove-SCANIA Truck Driving Simulator - d:\scania simulator\SCANIA Truck Driving Simulator\uninst.exe
AddRemove-Slender The Arrival_is1 - d:\slender the arrival\unins000.exe
AddRemove-{1EAC1D02-C6AC-4FA6-9A44-96258C37C812EU}_is1 - c:\games\World_of_Tanks\unins000.exe
AddRemove-01_Simmental - c:\program files\Samsung\USB Drivers\01_Simmental\Uninstall.exe
AddRemove-02_Siberian - c:\program files\Samsung\USB Drivers\02_Siberian\Uninstall.exe
AddRemove-03_Swallowtail - c:\program files\Samsung\USB Drivers\03_Swallowtail\Uninstall.exe
AddRemove-04_semseyite - c:\program files\Samsung\USB Drivers\04_semseyite\Uninstall.exe
AddRemove-05_Sloan - c:\program files\Samsung\USB Drivers\05_Sloan\Uninstall.exe
AddRemove-06_Spencer - c:\program files\Samsung\USB Drivers\06_Spencer\Uninstall.exe
AddRemove-07_Schorl - c:\program files\Samsung\USB Drivers\07_Schorl\Uninstall.exe
AddRemove-08_EMPChipset - c:\program files\Samsung\USB Drivers\08_EMPChipset\Uninstall.exe
AddRemove-09_Hsp - c:\program files\Samsung\USB Drivers\09_Hsp\Uninstall.exe
AddRemove-11_HSP_Plus_Default - c:\program files\Samsung\USB Drivers\11_HSP_Plus_Default\Uninstall.exe
AddRemove-16_Shrewsbury - c:\program files\Samsung\USB Drivers\16_Shrewsbury\Uninstall.exe
AddRemove-17_EMP_Chipset2 - c:\program files\Samsung\USB Drivers\17_EMP_Chipset2\Uninstall.exe
AddRemove-18_Zinia_Serial_Driver - c:\program files\Samsung\USB Drivers\18_Zinia_Serial_Driver\Uninstall.exe
AddRemove-19_VIA_driver - c:\program files\Samsung\USB Drivers\19_VIA_driver\Uninstall.exe
AddRemove-20_NXP_Driver - c:\program files\Samsung\USB Drivers\20_NXP_Driver\Uninstall.exe
AddRemove-21_Searsburg - c:\program files\Samsung\USB Drivers\21_Searsburg\Uninstall.exe
AddRemove-22_WiBro_WiMAX - c:\program files\Samsung\USB Drivers\22_WiBro_WiMAX\Uninstall.exe
AddRemove-24_flashusbdriver - c:\program files\Samsung\USB Drivers\24_flashusbdriver\Uninstall.exe
AddRemove-25_escape - c:\program files\Samsung\USB Drivers\25_escape\Uninstall.exe
AddRemove-Čeština pro GTA IV v1.0.7.0 1.0.7.0 - c:\program files\Rockstar Games\Grand Theft Auto IV\Uninstall.exe
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-3438367943-3009045665-384546852-1001\Software\SecuROM\License information*]
"datasecu"=hex:0e,d2,d4,ef,95,4b,8b,bf,8d,8b,55,cf,d5,34,fb,e0,b8,a8,0f,de,a9,
65,fe,82,c9,e3,39,18,9a,5b,fa,11,24,a8,85,b4,3f,f8,a0,12,53,12,4e,92,e0,26,\
"rkeysecu"=hex:f3,f9,07,27,dd,a9,ea,ea,90,dc,aa,db,6a,8a,35,c0
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2013-10-31 21:28:39
ComboFix-quarantined-files.txt 2013-10-31 20:28
.
Před spuštěním: Volných bajtů: 10 503 045 120
Po spuštění: Volných bajtů: 12 154 089 472
.
- - End Of File - - D1251D268757774DDD4CC7F038B4157F
A36C5E4F47E84449FF07ED3517B43A31
Re: Prosím o kontrolu
# AdwCleaner v3.010 - Report created 01/11/2013 at 23:50:19
# Updated 20/10/2013 by Xplode
# Operating System : Windows 7 Ultimate (32 bits)
# Username : PC - PC-PC
# Running from : C:\Users\PC\Desktop\adwcleaner.exe
# Option : Scan
***** [ Services ] *****
***** [ Files / Folders ] *****
File Found : C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\78yi2wbv.default\searchplugins\Babylon.xml
File Found : C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\78yi2wbv.default\user.js
Folder Found : C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\78yi2wbv.default\Extensions\ffxtlbr@delta.com
Folder Found C:\Program Files\Delta
Folder Found C:\Program Files\myfree codec
Folder Found C:\ProgramData\Babylon
Folder Found C:\ProgramData\Microsoft\Windows\Start Menu\Programs\myfree codec
Folder Found C:\ProgramData\Microsoft\Windows\Start Menu\Programs\myfree codec
Folder Found C:\Users\PC\AppData\Roaming\Babylon
Folder Found C:\Users\PC\AppData\Roaming\Delta
Folder Found C:\Users\PC\AppData\Roaming\dvdvideosoftiehelpers
Folder Found C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\78yi2wbv.default\ICQToolbarData
Folder Found C:\Users\PC\AppData\Roaming\OpenCandy
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Found : HKCU\Software\Delta
Key Found : HKCU\Software\ICQ\ICQToolbar
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\MyFreeCodec
Key Found : HKCU\Software\Myfree Codec
Key Found : HKLM\SOFTWARE\Classes\AppID\{39CB8175-E224-4446-8746-00566302DF8D}
Key Found : HKLM\SOFTWARE\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56}
Key Found : HKLM\SOFTWARE\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}
Key Found : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Key Found : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Key Found : HKLM\SOFTWARE\Classes\AppID\escortEng.DLL
Key Found : HKLM\SOFTWARE\Classes\AppID\esrv.EXE
Key Found : HKLM\SOFTWARE\Classes\AppID\secman.DLL
Key Found : HKLM\SOFTWARE\Classes\CLSID\{00000001-4FEF-40D3-B3FA-E0531B897F98}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{5C3B5DAA-0AFF-4808-90FB-0F2F2D760E36}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{64697678-0000-0010-8000-00AA00389B71}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{86838207-681D-469D-9511-D0DCC6F19F9B}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{FD501041-8EBE-11CE-8183-00AA00577DA2}
Key Found : HKLM\SOFTWARE\Classes\Interface\{1231839B-064E-4788-B865-465A1B5266FD}
Key Found : HKLM\SOFTWARE\Classes\Interface\{2DAC2231-CC35-482B-97C5-CED1D4185080}
Key Found : HKLM\SOFTWARE\Classes\Interface\{3F1CD84C-04A3-4EA0-9EA1-7D134FD66C82}
Key Found : HKLM\SOFTWARE\Classes\Interface\{3F83A9CA-B5F0-44EC-9357-35BB3E84B07F}
Key Found : HKLM\SOFTWARE\Classes\Interface\{47E520EA-CAD2-4F51-8F30-613B3A1C33EB}
Key Found : HKLM\SOFTWARE\Classes\Interface\{57C91446-8D81-4156-A70E-624551442DE9}
Key Found : HKLM\SOFTWARE\Classes\Interface\{70AFB7B2-9FB5-4A70-905B-0E9576142E1D}
Key Found : HKLM\SOFTWARE\Classes\Interface\{7AD65FD1-79E0-406D-B03C-DD7C14726D69}
Key Found : HKLM\SOFTWARE\Classes\Interface\{97DD820D-2E20-40AD-B01E-6730B2FCE630}
Key Found : HKLM\SOFTWARE\Classes\Interface\{B177446D-54A4-4869-BABC-8566110B4BE0}
Key Found : HKLM\SOFTWARE\Classes\Interface\{D9D1DFC5-502D-43E4-B1BB-4D0B7841489A}
Key Found : HKLM\SOFTWARE\Classes\Interface\{E0B07188-A528-4F9E-B2F7-C7FDE8680AE4}
Key Found : HKLM\SOFTWARE\Classes\Interface\{F05B12E1-ADE8-4485-B45B-898748B53C37}
Key Found : HKLM\SOFTWARE\Classes\Prod.cap
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{13ABD093-D46F-40DF-A608-47E162EC799D}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{4599D05A-D545-4069-BB42-5895B4EAE05B}
Key Found : HKLM\Software\Delta
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof
Key Found : HKLM\Software\ICQ\ICQToolbar
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{348C2DF3-1191-4C3E-92A6-B3A89A9D9C85}
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasapi32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasmancs
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\AskSLib_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\AskSLib_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Delta
Key Found : HKLM\Software\Myfree Codec
***** [ Browsers ] *****
-\\ Internet Explorer v8.0.7600.16385
Setting Found : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page] - hxxp://www1.delta-search.com/?babsrc=HP_ss&mntrId=786800E04D6BC9D5&affID=121564&tsp=4953
Setting Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURls [Tabs] - hxxp://www1.delta-search.com/?babsrc=NT_ss&mntrId=786800E04D6BC9D5&affID=121564&tsp=4953
-\\ Mozilla Firefox v24.0 (cs)
[ File : C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\78yi2wbv.default\prefs.js ]
Line Found : user_pref("browser.newtab.url", "hxxp://www1.delta-search.com/?babsrc=NT_ss&mntrId=786800E04D6BC9D5&affID=121564&tsp=4953");
Line Found : user_pref("extensions.delta.admin", false);
Line Found : user_pref("extensions.delta.aflt", "babsst");
Line Found : user_pref("extensions.delta.appId", "{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}");
Line Found : user_pref("extensions.delta.autoRvrt", "false");
Line Found : user_pref("extensions.delta.dfltLng", "cs");
Line Found : user_pref("extensions.delta.excTlbr", false);
Line Found : user_pref("extensions.delta.ffxUnstlRst", true);
Line Found : user_pref("extensions.delta.id", "7868f8d000000000000000e04d6bc9d5");
Line Found : user_pref("extensions.delta.instlDay", "15881");
Line Found : user_pref("extensions.delta.instlRef", "sst");
Line Found : user_pref("extensions.delta.newTab", false);
Line Found : user_pref("extensions.delta.prdct", "delta");
Line Found : user_pref("extensions.delta.prtnrId", "delta");
Line Found : user_pref("extensions.delta.rvrt", "false");
Line Found : user_pref("extensions.delta.smplGrp", "none");
Line Found : user_pref("extensions.delta.tlbrId", "base");
Line Found : user_pref("extensions.delta.tlbrSrchUrl", "");
Line Found : user_pref("extensions.delta.vrsn", "1.8.21.5");
Line Found : user_pref("extensions.delta.vrsnTs", "1.8.21.517:28:14");
Line Found : user_pref("extensions.delta.vrsni", "1.8.21.5");
Line Found : user_pref("extensions.delta_i.babExt", "");
Line Found : user_pref("extensions.delta_i.babTrack", "affID=121562&tt=250613_gr1&tsp=4924");
Line Found : user_pref("extensions.delta_i.srcExt", "ss");
-\\ Google Chrome v
[ File : C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\preferences ]
Found : homepage
*************************
AdwCleaner[R0].txt - [6968 octets] - [01/11/2013 23:50:19]
########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [7028 octets] ##########
# Updated 20/10/2013 by Xplode
# Operating System : Windows 7 Ultimate (32 bits)
# Username : PC - PC-PC
# Running from : C:\Users\PC\Desktop\adwcleaner.exe
# Option : Scan
***** [ Services ] *****
***** [ Files / Folders ] *****
File Found : C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\78yi2wbv.default\searchplugins\Babylon.xml
File Found : C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\78yi2wbv.default\user.js
Folder Found : C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\78yi2wbv.default\Extensions\ffxtlbr@delta.com
Folder Found C:\Program Files\Delta
Folder Found C:\Program Files\myfree codec
Folder Found C:\ProgramData\Babylon
Folder Found C:\ProgramData\Microsoft\Windows\Start Menu\Programs\myfree codec
Folder Found C:\ProgramData\Microsoft\Windows\Start Menu\Programs\myfree codec
Folder Found C:\Users\PC\AppData\Roaming\Babylon
Folder Found C:\Users\PC\AppData\Roaming\Delta
Folder Found C:\Users\PC\AppData\Roaming\dvdvideosoftiehelpers
Folder Found C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\78yi2wbv.default\ICQToolbarData
Folder Found C:\Users\PC\AppData\Roaming\OpenCandy
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Found : HKCU\Software\Delta
Key Found : HKCU\Software\ICQ\ICQToolbar
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\MyFreeCodec
Key Found : HKCU\Software\Myfree Codec
Key Found : HKLM\SOFTWARE\Classes\AppID\{39CB8175-E224-4446-8746-00566302DF8D}
Key Found : HKLM\SOFTWARE\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56}
Key Found : HKLM\SOFTWARE\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}
Key Found : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Key Found : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Key Found : HKLM\SOFTWARE\Classes\AppID\escortEng.DLL
Key Found : HKLM\SOFTWARE\Classes\AppID\esrv.EXE
Key Found : HKLM\SOFTWARE\Classes\AppID\secman.DLL
Key Found : HKLM\SOFTWARE\Classes\CLSID\{00000001-4FEF-40D3-B3FA-E0531B897F98}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{5C3B5DAA-0AFF-4808-90FB-0F2F2D760E36}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{64697678-0000-0010-8000-00AA00389B71}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{86838207-681D-469D-9511-D0DCC6F19F9B}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{FD501041-8EBE-11CE-8183-00AA00577DA2}
Key Found : HKLM\SOFTWARE\Classes\Interface\{1231839B-064E-4788-B865-465A1B5266FD}
Key Found : HKLM\SOFTWARE\Classes\Interface\{2DAC2231-CC35-482B-97C5-CED1D4185080}
Key Found : HKLM\SOFTWARE\Classes\Interface\{3F1CD84C-04A3-4EA0-9EA1-7D134FD66C82}
Key Found : HKLM\SOFTWARE\Classes\Interface\{3F83A9CA-B5F0-44EC-9357-35BB3E84B07F}
Key Found : HKLM\SOFTWARE\Classes\Interface\{47E520EA-CAD2-4F51-8F30-613B3A1C33EB}
Key Found : HKLM\SOFTWARE\Classes\Interface\{57C91446-8D81-4156-A70E-624551442DE9}
Key Found : HKLM\SOFTWARE\Classes\Interface\{70AFB7B2-9FB5-4A70-905B-0E9576142E1D}
Key Found : HKLM\SOFTWARE\Classes\Interface\{7AD65FD1-79E0-406D-B03C-DD7C14726D69}
Key Found : HKLM\SOFTWARE\Classes\Interface\{97DD820D-2E20-40AD-B01E-6730B2FCE630}
Key Found : HKLM\SOFTWARE\Classes\Interface\{B177446D-54A4-4869-BABC-8566110B4BE0}
Key Found : HKLM\SOFTWARE\Classes\Interface\{D9D1DFC5-502D-43E4-B1BB-4D0B7841489A}
Key Found : HKLM\SOFTWARE\Classes\Interface\{E0B07188-A528-4F9E-B2F7-C7FDE8680AE4}
Key Found : HKLM\SOFTWARE\Classes\Interface\{F05B12E1-ADE8-4485-B45B-898748B53C37}
Key Found : HKLM\SOFTWARE\Classes\Prod.cap
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{13ABD093-D46F-40DF-A608-47E162EC799D}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{4599D05A-D545-4069-BB42-5895B4EAE05B}
Key Found : HKLM\Software\Delta
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof
Key Found : HKLM\Software\ICQ\ICQToolbar
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{348C2DF3-1191-4C3E-92A6-B3A89A9D9C85}
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasapi32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasmancs
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\AskSLib_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\AskSLib_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Delta
Key Found : HKLM\Software\Myfree Codec
***** [ Browsers ] *****
-\\ Internet Explorer v8.0.7600.16385
Setting Found : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page] - hxxp://www1.delta-search.com/?babsrc=HP_ss&mntrId=786800E04D6BC9D5&affID=121564&tsp=4953
Setting Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURls [Tabs] - hxxp://www1.delta-search.com/?babsrc=NT_ss&mntrId=786800E04D6BC9D5&affID=121564&tsp=4953
-\\ Mozilla Firefox v24.0 (cs)
[ File : C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\78yi2wbv.default\prefs.js ]
Line Found : user_pref("browser.newtab.url", "hxxp://www1.delta-search.com/?babsrc=NT_ss&mntrId=786800E04D6BC9D5&affID=121564&tsp=4953");
Line Found : user_pref("extensions.delta.admin", false);
Line Found : user_pref("extensions.delta.aflt", "babsst");
Line Found : user_pref("extensions.delta.appId", "{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}");
Line Found : user_pref("extensions.delta.autoRvrt", "false");
Line Found : user_pref("extensions.delta.dfltLng", "cs");
Line Found : user_pref("extensions.delta.excTlbr", false);
Line Found : user_pref("extensions.delta.ffxUnstlRst", true);
Line Found : user_pref("extensions.delta.id", "7868f8d000000000000000e04d6bc9d5");
Line Found : user_pref("extensions.delta.instlDay", "15881");
Line Found : user_pref("extensions.delta.instlRef", "sst");
Line Found : user_pref("extensions.delta.newTab", false);
Line Found : user_pref("extensions.delta.prdct", "delta");
Line Found : user_pref("extensions.delta.prtnrId", "delta");
Line Found : user_pref("extensions.delta.rvrt", "false");
Line Found : user_pref("extensions.delta.smplGrp", "none");
Line Found : user_pref("extensions.delta.tlbrId", "base");
Line Found : user_pref("extensions.delta.tlbrSrchUrl", "");
Line Found : user_pref("extensions.delta.vrsn", "1.8.21.5");
Line Found : user_pref("extensions.delta.vrsnTs", "1.8.21.517:28:14");
Line Found : user_pref("extensions.delta.vrsni", "1.8.21.5");
Line Found : user_pref("extensions.delta_i.babExt", "");
Line Found : user_pref("extensions.delta_i.babTrack", "affID=121562&tt=250613_gr1&tsp=4924");
Line Found : user_pref("extensions.delta_i.srcExt", "ss");
-\\ Google Chrome v
[ File : C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\preferences ]
Found : homepage
*************************
AdwCleaner[R0].txt - [6968 octets] - [01/11/2013 23:50:19]
########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [7028 octets] ##########
Přispějete na provoz fóra?