Dobrý den,
poslední dobou se mi zdá, že je můj počítač pomalejší než předtím a navíc mi v prohlížeči vyskakují okna s reklamami a podtrhávají se slova textů, viz http://i441.photobucket.com/albums/qq13 ... e1bd80.jpg .
Prosím o kontrolu. Log z HJT přikládám níže.
Logfile of random's system information tool 1.09 (written by random/random)
Run by XXX at 2014-01-18 15:35:18
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 104 GB (42%) free of 250 GB
Total RAM: 2046 MB (41% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 15:35:34, on 18.1.2014
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.21364)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\DivX\DivX Update\DivXUpdate.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\SweetIM\Messenger\SweetIM.exe
C:\Program Files\SweetIM\Communicator\SweetPacksUpdateManager.exe
C:\Program Files\Alwil Software\Avast5\avastUI.exe
C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\GIGABYTE\ET6\GUI.exe
C:\Program Files\DAEMON Tools Lite\DTLite.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Gigabyte\EasySaver\ESSVR.EXE
C:\Program Files\Guard-ICQ\GuardICQ.exe
C:\WINDOWS\system32\dmwu.exe
C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jqs.exe
C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\Program Files\Sunbelt Software\Personal Firewall\SbPFLnch.exe
C:\Documents and Settings\XXX\Data aplikací\OCS\SM\SearchAnonymizerHelper.exe
C:\Program Files\SocialVPN\SocialVPNService.exe
C:\Program Files\Sunbelt Software\Personal Firewall\SbPFSvc.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\TUProgSt.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files\Sunbelt Software\Personal Firewall\SbPFCl.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\WINDOWS\system32\jmdp\stij.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Program Files\Common Files\Java\Java Update\jucheck.exe
C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\XXX\Dokumenty\Downloads\RSIT.exe
C:\Program Files\trend micro\XXX.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://qip.ru
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.qip.ru
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.qip.ru/ie
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.qip.ru
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://qip.ru
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.qip.ru/ie
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://go.microsoft.com/fwlink/?LinkId=74005
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: QIPBHO Class - {95289393-33EA-4F8D-B952-483415B9C955} - C:\Documents and Settings\XXX\Data aplikací\Microsoft\Internet Explorer\qipsearchbar.dll
R3 - URLSearchHook: (no name) - - (no file)
R3 - URLSearchHook: DVDVideoSoftTB Toolbar - {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Program Files\DVDVideoSoftTB\prxtbDVD0.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: YoutubeAdblocker - {0D2E4734-AD78-1969-8515-C70C95E8E296} - C:\Program Files\YoutubeAdblocker\Zrt.dll
O2 - BHO: surf And Keep - {1AA21982-9C00-F0AB-9E37-F6F3C299A42B} - C:\Program Files\surf And Keep\wn04gQR.dll
O2 - BHO: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\prxConduitEngine.dll
O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll
O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.5.4.11.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll
O2 - BHO: DVDVideoSoftTB - {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Program Files\DVDVideoSoftTB\prxtbDVD0.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: QIPBHO - {95289393-33EA-4F8D-B952-483415B9C955} - C:\Documents and Settings\XXX\Data aplikací\Microsoft\Internet Explorer\qipsearchbar.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll
O2 - BHO: SWEETIE - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O3 - Toolbar: DVDVideoSoftTB Toolbar - {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Program Files\DVDVideoSoftTB\prxtbDVD0.dll
O3 - Toolbar: (no name) - {98889811-442D-49dd-99D7-DC866BE87DBC} - (no file)
O3 - Toolbar: (no name) - {99079a25-328f-4bd4-be04-00955acaa0a7} - (no file)
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll
O3 - Toolbar: (no name) - !{EEE6C35B-6118-11DC-9C72-001320C79847} - (no file)
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [EasyTuneVI] C:\Program Files\GIGABYTE\ET6\ETcall.exe
O4 - HKLM\..\Run: [Ocs_SM] C:\Documents and Settings\XXX\Data aplikací\OCS\SM\SearchAnonymizer.exe
O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [DivXUpdate] "C:\Program Files\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [SweetIM] C:\Program Files\SweetIM\Messenger\SweetIM.exe
O4 - HKLM\..\Run: [Sweetpacks Communicator] C:\Program Files\SweetIM\Communicator\SweetPacksUpdateManager.exe
O4 - HKLM\..\Run: [avast] "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui
O4 - HKLM\..\Run: [NvBackend] "C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe"
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [nwiz] C:\Program Files\NVIDIA Corporation\nview\nwiz.exe /installquiet
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe" /c
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Stáhnout odkaz s použitím BitCometu - res://C:\Program Files\BitComet\BitComet.exe/AddLink.htm
O8 - Extra context menu item: Stáhnout všechny odkazy s použitím BitCometu - res://C:\Program Files\BitComet\BitComet.exe/AddAllLink.htm
O9 - Extra button: StylishProfile - {14CD42DD-ABCD-3586-DCAB-40E3693E3737} - C:\Program Files\Stylish Profile\ct.htm
O9 - Extra 'Tools' menuitem: StylishProfile - {14CD42DD-ABCD-3586-DCAB-40E3693E3737} - C:\Program Files\Stylish Profile\ct.htm
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files\PokerStars\PokerStarsUpdate.exe (file missing)
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:\Program Files\BitComet\tools\BitCometBHO_1.5.4.11.dll/206 (file missing)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: PokerStars.net - {FA9B9510-9FCB-4ca0-818C-5D0987B47C4D} - C:\Program Files\PokerStars.NET\PokerStarsUpdate.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {4BFD075D-C36E-4F28-BB0A-5D472795197A} (PowerLoader Class) - http://download09.managerzone.com/socce ... Loader.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{55983BC5-5B87-438D-917C-08D5D30220F9}: NameServer = 10.128.137.145,213.168.176.3
O17 - HKLM\System\CCS\Services\Tcpip\..\{D2F6BAD6-2E49-46A2-AC9A-02FFF2DF1E20}: NameServer = 10.128.137.145,213.168.176.3
O17 - HKLM\System\CS2\Services\Tcpip\..\{55983BC5-5B87-438D-917C-08D5D30220F9}: NameServer = 10.128.137.145,213.168.176.3
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O20 - AppInit_DLLs:
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: ES lite Service for program management. (ES lite Service) - Unknown owner - C:\Program Files\Gigabyte\EasySaver\ESSVR.EXE
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Guard.Mail.ru - Unknown owner - C:\Program Files\Guard-ICQ\GuardICQ.exe
O23 - Service: IBUpdaterService - Unknown owner - C:\WINDOWS\system32\dmwu.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Oracle Corporation - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jqs.exe
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Unknown owner - C:\Program Files\WinPcap\rpcapd.exe
O23 - Service: SbPF.Launcher - Sunbelt Software, Inc. - C:\Program Files\Sunbelt Software\Personal Firewall\SbPFLnch.exe
O23 - Service: SearchAnonymizer - Unknown owner - C:\Documents and Settings\XXX\Data aplikací\OCS\SM\SearchAnonymizerHelper.exe
O23 - Service: ServiceLayer - Nokia. - D:\Program Files\Nokia\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: SocialVPN - Unknown owner - C:\Program Files\SocialVPN\SocialVPNService.exe
O23 - Service: Sunbelt Personal Firewall 4 (SPF4) - Sunbelt Software, Inc. - C:\Program Files\Sunbelt Software\Personal Firewall\SbPFSvc.exe
O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software - C:\WINDOWS\System32\TuneUpDefragService.exe
O23 - Service: TuneUp Program Statistics Service (TuneUp.ProgramStatisticsSvc) - TuneUp Software - C:\WINDOWS\System32\TUProgSt.exe
--
End of file - 14344 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\1-Click Maintenance.job
C:\WINDOWS\tasks\AppleSoftwareUpdate.job
C:\WINDOWS\tasks\avast! Emergency Update.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-448539723-1647877149-725345543-1003Core.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-448539723-1647877149-725345543-1003UA.job
C:\WINDOWS\tasks\Norton Security Scan for XXX.job
C:\WINDOWS\tasks\Úklid 1 kliknutím.job
=========Mozilla firefox=========
ProfilePath - C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default
prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "http://qip.ru"
prefs.js - "extensions.enabledItems" - "{872b5b88-9db5-4310-bdd0-ac189557e5f5}:2.7.2.0, {6236BA26-C117-4007-928C-DE0716C7FA82}:1.0.2, {800b5000-a755-47e1-992b-48a1c1357f07}:1.1.7, {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}:6.0.17, {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20, jqs@sun.com:1.0, {8675f4b3-2f19-11ed-2d6b-0800600c0a16}:1.0, {20a82645-c095-46ed-80e3-08825760534b}:1.2.1, {63414328-3ab4-2c84-6c41-5a473c4b2ff7}:1.0, {6236BA26-C117-4007-928C-DE0716C7FA96}:1.0.4, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.5.8"
prefs.js - "keyword.URL" - "http://search.qip.ru/search?from=FF&query="
"{20a82645-c095-46ed-80e3-08825760534b}"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"{23fcfd51-4958-4f00-80a3-ae97e717ed8b}"=C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5
"wrc@avast.com"=C:\Program Files\Alwil Software\Avast5\WebRep\FF
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10.1 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\WINDOWS\system32\Adobe\Director\np32dsw.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0]
"Description"=DivX Plus Web Player
"Path"=C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0]
"Description"=DivX VOD Helper Plug-in
"Path"=C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.5.1]
"Description"=
"Path"=C:\WINDOWS\system32\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.5.1]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.0]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
C:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}
{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
C:\Program Files\Mozilla Firefox\components\
AskHPRFF.js
AskSearch.js
binary.manifest
browsercomps.dll
nsIBitCometAgent.xpt
nsIQTScriptablePlugin.xpt
C:\Program Files\Mozilla Firefox\plugins\
npBitCometAgent.dll
NPOFF12.DLL
npqtplugin.dll
npqtplugin2.dll
npqtplugin3.dll
npqtplugin4.dll
npqtplugin5.dll
npqtplugin6.dll
npqtplugin7.dll
QuickTimePlugin.class
C:\Program Files\Mozilla Firefox\searchplugins\
babylon.xml
google.xml
heureka-cz.xml
jyxo-cz.xml
Search_Results.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml
yahoo.xml
C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\extensions\
engine@conduit.com
ffxtlbr@babylon.com
ieeyj@aaiuyyau.edu
iyoiu@zrhrxkjq.edu
{20a82645-c095-46ed-80e3-08825760534b}
{32a1fd71-835e-4b11-8e54-886fda0b4c89}
{6236BA26-C117-4007-928C-DE0716C7FA82}
{63414328-3ab4-2c84-6c41-5a473c4b2ff7}
{800b5000-a755-47e1-992b-48a1c1357f07}
{8675f4b3-2f19-11ed-2d6b-0800600c0a16}
{8675f4b3-2f19-11ed-2d6b-0800600c0a17}
{8675f4b3-2f19-11ed-2d6b-0800600c0a18}
{8675f4b3-2f19-11ed-2d6b-0800600c0a19}
{872b5b88-9db5-4310-bdd0-ac189557e5f5}
{B042753D-F57E-4e8e-A01B-7379A6D4CEFB}
{E9A1DEE0-C623-4439-8932-001E7D17607D}
{ea614400-e918-4741-9a97-7a972ff7c30b}
C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\
askcom.xml
daemon-search.xml
firmycz.xml
icqplugin-1.xml
icqplugin-10.xml
icqplugin-11.xml
icqplugin-12.xml
icqplugin-13.xml
icqplugin-2.xml
icqplugin-3.xml
icqplugin-4.xml
icqplugin-5.xml
icqplugin-6.xml
icqplugin-7.xml
icqplugin-8.xml
icqplugin-9.xml
icqplugin.xml
mapycz.xml
MyStart Search.xml
MyStart.xml
qip-search.xml
Search_Results.xml
sweetim.xml
Sweetpacks Search.xml
web-search.xml
zbocz.xml
{3CC5A861-7085-4329-BF4A-DFD056A00CDB}.xml
{96431DA7-2E65-4889-AA51-91DA1E37F875}.xml
{A9941E98-F141-402D-9719-CC92D54D0484}.xml
{B56F6713-4E29-4E8C-BB1A-5D9E1616940F}.xml
{B68E2246-C966-48F3-A498-67133D2E0DEE}.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
AcroIEHlprObj Class - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll [2004-12-14 63136]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0D2E4734-AD78-1969-8515-C70C95E8E296}]
YoutubeAdblocker - C:\Program Files\YoutubeAdblocker\Zrt.dll [2012-12-24 426496]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1AA21982-9C00-F0AB-9E37-F6F3C299A42B}]
surf And Keep - C:\Program Files\surf And Keep\wn04gQR.dll [2013-12-24 426496]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}]
Conduit Engine - C:\Program Files\ConduitEngine\prxConduitEngine.dll [2011-01-17 175912]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{326E768D-4182-46FD-9C16-1449A49795F4}]
DivX Plus Web Player HTML5 <video> - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll [2011-12-12 194432]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{39F7E362-828A-4B5A-BCAF-5B79BFDFEA60}]
BitComet Helper - C:\Program Files\BitComet\tools\BitCometBHO_1.5.4.11.dll [2011-04-11 767280]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll [2012-07-05 453544]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{872b5b88-9db5-4310-bdd0-ac189557e5f5}]
DVDVideoSoftTB Toolbar - C:\Program Files\DVDVideoSoftTB\prxtbDVD0.dll [2011-05-09 176936]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll [2012-08-21 1227224]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18 403840]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95289393-33EA-4F8D-B952-483415B9C955}]
QIPBHO Class - C:\Documents and Settings\XXX\Data aplikací\Microsoft\Internet Explorer\qipsearchbar.dll [2012-11-26 143472]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll [2012-07-05 157616]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847}]
SweetPacks Browser Helper - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll [2012-07-04 1310040]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{872b5b88-9db5-4310-bdd0-ac189557e5f5} - DVDVideoSoftTB Toolbar - C:\Program Files\DVDVideoSoftTB\prxtbDVD0.dll [2011-05-09 176936]
{98889811-442D-49dd-99D7-DC866BE87DBC}
{99079a25-328f-4bd4-be04-00955acaa0a7}
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll [2012-08-21 1227224]
!{EEE6C35B-6118-11DC-9C72-001320C79847}
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2009-01-13 18084864]
"EasyTuneVI"=C:\Program Files\GIGABYTE\ET6\ETcall.exe [2007-07-26 20480]
"Ocs_SM"=C:\Documents and Settings\XXX\Data aplikací\OCS\SM\SearchAnonymizer.exe [2010-11-03 106496]
"Kernel and Hardware Abstraction Layer"=C:\WINDOWS\KHALMNPR.EXE [2008-02-29 76304]
"QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2010-11-29 421888]
"GrooveMonitor"=C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
"DivXUpdate"=C:\Program Files\DivX\DivX Update\DivXUpdate.exe [2011-07-29 1259376]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2012-01-17 252296]
"SweetIM"=C:\Program Files\SweetIM\Messenger\SweetIM.exe [2012-10-04 115032]
"Sweetpacks Communicator"=C:\Program Files\SweetIM\Communicator\SweetPacksUpdateManager.exe [2012-08-15 231768]
"avast"=C:\Program Files\Alwil Software\Avast5\avastUI.exe [2012-08-21 4282728]
"NvBackend"=C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [2013-12-10 2279712]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2013-06-21 15677728]
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2013-06-21 223008]
"nwiz"=C:\Program Files\NVIDIA Corporation\nview\nwiz.exe [2013-06-21 2586912]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2009-10-30 369200]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"Google Update"=C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe [2011-07-27 136176]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=" "
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\LBTWlgn]
c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll [2008-05-02 72208]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265096]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WdfLoadGroup]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WdfLoadGroup]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=323
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE"="C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe"="C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe:*:Enabled:Adobe CSI CS4"
"C:\Program Files\KONAMI\Pro Evolution Soccer 2010\football4fun.exe"="C:\Program Files\KONAMI\Pro Evolution Soccer 2010\football4fun.exe:*:Enabled:Pro Evolution Soccer 2010"
"D:\Program Files\PES 11\pes2011-100.exe"="D:\Program Files\PES 11\pes2011-100.exe:*:Enabled:Pro Evolution Soccer 2011"
"D:\Program Files\PES 11\gacp_11.exe"="D:\Program Files\PES 11\gacp_11.exe:*:Enabled:Pro Evolution Soccer 2011"
"C:\WINDOWS\system32\msiexec.exe"="C:\WINDOWS\system32\msiexec.exe:*:Enabled:UpdateManagerSetup"
"C:\Program Files\SweetIM\Communicator\SweetPacksUpdateManager.exe"="C:\Program Files\SweetIM\Communicator\SweetPacksUpdateManager.exe:*:Enabled:SweetPacksUpdateManager"
"C:\WINDOWS\system32\dmwu.exe"="C:\WINDOWS\system32\dmwu.exe:*:Enabled:dmwu"
"C:\WINDOWS\system32\ARFC\wrtc.exe"="C:\WINDOWS\system32\ARFC\wrtc.exe:*:Enabled:wrtc"
"C:\Program Files\Sports Interactive\Football Manager 2011 Russian\fm.exe"="C:\Program Files\Sports Interactive\Football Manager 2011 Russian\fm.exe:*:Disabled:Football Manager 2011"
"C:\Program Files\BitComet\BitComet.exe"="C:\Program Files\BitComet\BitComet.exe:*:Enabled:BitComet.exe"
"C:\hry\FIFA 14\Game\fifa14.exe"="C:\hry\FIFA 14\Game\fifa14.exe:*:Enabled:FIFA 14"
"C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe"="C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe:*:Enabled:NVIDIA Network Service TCP Exception (HTTPS)"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"VIDC.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"VIDC.YVYU"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"vidc.ffds"=C:\PROGRA~1\COMBIN~1\Filters\FFDShow\ff_vfw.dll
"vidc.VP60"=C:\WINDOWS\system32\vp6vfw.dll
"vidc.VP61"=C:\WINDOWS\system32\vp6vfw.dll
"vidc.DIVX"=DivX.dll
"vidc.yv12"=DivX.dll
"MSVideo8"=VfWWDM32.dll
======List of files/folders created in the last 1 month======
2014-01-18 01:03:08 ----HDC---- C:\WINDOWS\$NtUninstallKB2914368$
2013-12-30 14:49:46 ----D---- C:\WINDOWS\system32\jmdp
2013-12-27 16:45:22 ----A---- C:\WINDOWS\imsins.BAK
2013-12-26 14:02:51 ----D---- C:\Documents and Settings\XXX\Data aplikací\NVIDIA
2013-12-24 13:46:50 ----D---- C:\Program Files\YoutubeAdblocker
2013-12-24 13:46:50 ----D---- C:\Documents and Settings\All Users\Data aplikací\YoutubeAdblocker
2013-12-24 13:46:40 ----D---- C:\Program Files\surf And Keep
2013-12-24 13:46:40 ----D---- C:\Documents and Settings\All Users\Data aplikací\surf And Keep
2013-12-24 13:46:28 ----D---- C:\Documents and Settings\All Users\Data aplikací\dc60de014abbdb08
2013-12-24 13:45:36 ----D---- C:\Documents and Settings\All Users\Data aplikací\InstallMate
2013-12-24 13:05:17 ----D---- C:\Program Files\AGEIA Technologies
2013-12-24 13:03:43 ----A---- C:\WINDOWS\system32\OpenCL.dll
2013-12-24 13:03:17 ----A---- C:\WINDOWS\system32\nvopencl.dll
2013-12-24 13:03:17 ----A---- C:\WINDOWS\system32\nvdispgenco3232049.dll
2013-12-24 13:03:17 ----A---- C:\WINDOWS\system32\nvdispco3232049.dll
2013-12-24 13:03:16 ----A---- C:\WINDOWS\system32\nvcompiler.dll
2013-12-24 12:58:45 ----D---- C:\NVIDIA
2013-12-24 12:50:10 ----D---- C:\Documents and Settings\All Users\Data aplikací\NVIDIA Corporation
2013-12-22 11:38:56 ----D---- C:\Documents and Settings\All Users\Data aplikací\Origin
2013-12-22 11:24:08 ----D---- C:\hry
2013-12-20 18:46:49 ----D---- C:\Games
======List of files/folders modified in the last 1 month======
2014-01-18 15:35:22 ----D---- C:\Program Files\trend micro
2014-01-18 15:35:12 ----D---- C:\WINDOWS\Prefetch
2014-01-18 14:20:14 ----D---- C:\WINDOWS\system32\CatRoot2
2014-01-18 14:16:16 ----D---- C:\Program Files\Common Files\Symantec Shared
2014-01-18 12:56:27 ----D---- C:\WINDOWS\Temp
2014-01-18 09:59:00 ----A---- C:\WINDOWS\SchedLgU.Txt
2014-01-18 08:55:14 ----D---- C:\WINDOWS\system32
2014-01-18 08:55:00 ----D---- C:\WINDOWS
2014-01-18 01:06:35 ----SHD---- C:\WINDOWS\Installer
2014-01-18 01:06:35 ----SHD---- C:\Config.Msi
2014-01-18 01:06:32 ----D---- C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
2014-01-18 01:03:27 ----D---- C:\WINDOWS\system32\MRT
2014-01-18 01:03:26 ----D---- C:\WINDOWS\Debug
2014-01-18 01:03:19 ----A---- C:\WINDOWS\system32\MRT.exe
2014-01-18 01:03:13 ----HD---- C:\WINDOWS\inf
2014-01-18 01:03:11 ----RSHDC---- C:\WINDOWS\system32\dllcache
2014-01-18 01:03:11 ----D---- C:\WINDOWS\system32\drivers
2014-01-04 21:31:45 ----SHD---- C:\WINDOWS\CSC
2013-12-31 00:39:31 ----D---- C:\Documents and Settings\XXX\Data aplikací\BitComet
2013-12-30 13:57:31 ----D---- C:\WINDOWS\system32\WNLT
2013-12-30 13:57:28 ----D---- C:\WINDOWS\system32\ARFC
2013-12-30 13:53:11 ----D---- C:\Downloads
2013-12-29 11:12:40 ----A---- C:\WINDOWS\system32\dmwu.exe
2013-12-29 11:08:00 ----A---- C:\WINDOWS\system32\ImHttpComm.dll
2013-12-28 11:04:08 ----D---- C:\Documents and Settings\XXX\Data aplikací\vlc
2013-12-27 17:48:31 ----A---- C:\WINDOWS\NeroDigital.ini
2013-12-25 10:44:21 ----RSD---- C:\WINDOWS\assembly
2013-12-25 10:44:21 ----D---- C:\WINDOWS\Microsoft.NET
2013-12-25 09:34:32 ----D---- C:\WINDOWS\WinSxS
2013-12-25 09:34:25 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2013-12-25 09:03:02 ----A---- C:\WINDOWS\system32\msvcr80.dll
2013-12-25 09:03:02 ----A---- C:\WINDOWS\system32\msvcp80.dll
2013-12-25 09:03:02 ----A---- C:\WINDOWS\system32\msvcm80.dll
2013-12-24 13:46:50 ----RD---- C:\Program Files
2013-12-24 13:05:17 ----D---- C:\Program Files\NVIDIA Corporation
2013-12-24 13:04:20 ----D---- C:\WINDOWS\Help
2013-12-24 13:00:21 ----D---- C:\WINDOWS\system32\ReinstallBackups
2013-12-24 12:47:59 ----D---- C:\WINDOWS\system32\cs-cz
2013-12-24 12:43:13 ----D---- C:\WINDOWS\system32\en-us
2013-12-24 12:43:06 ----D---- C:\Program Files\Microsoft.NET
2013-12-22 11:35:36 ----HD---- C:\Program Files\Common Files\EAInstaller
2013-12-22 11:34:33 ----D---- C:\WINDOWS\system32\DirectX
2013-12-21 17:43:33 ----D---- C:\Documents and Settings\All Users\Data aplikací\BlazeVideo
2013-12-21 17:41:46 ----D---- C:\Program Files\Software Informer
2013-12-21 17:39:57 ----D---- C:\Program Files\E.M. PowerPoint Video Converter
2013-12-21 17:35:18 ----D---- C:\Program Files\CCleaner
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 ohci1394;Hostitelský řadič IEEE 1394 dle standardu OHCI Texas Instruments; C:\WINDOWS\system32\DRIVERS\ohci1394.sys [2008-04-13 61696]
R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2010-07-12 45648]
R0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2009-12-24 691696]
R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-15 76544]
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2012-08-21 25256]
R1 AmdPPM;Ovladač procesoru HwPState AMD; C:\WINDOWS\system32\DRIVERS\AmdPPM.sys [2007-04-16 33792]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2012-08-21 35928]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2012-08-21 729752]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2012-08-21 355632]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2012-08-21 54232]
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R1 SbFw;SbFw; C:\WINDOWS\system32\drivers\SbFw.sys [2008-10-31 270888]
R1 sbhips;Sunbelt HIPS Driver; C:\WINDOWS\system32\drivers\sbhips.sys [2008-06-21 66600]
R1 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\WINDOWS\system32\DRIVERS\wmiacpi.sys [2008-04-13 8832]
R2 adfs;adfs; C:\WINDOWS\system32\drivers\adfs.sys [2008-08-14 74720]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\drivers\aswFsBlk.sys [2012-08-21 21256]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2012-08-21 97608]
R2 atksgt;atksgt; C:\WINDOWS\system32\DRIVERS\atksgt.sys [2009-12-04 278984]
R2 lirsgt;lirsgt; C:\WINDOWS\system32\DRIVERS\lirsgt.sys [2009-12-04 25416]
R3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800]
R3 DynCal;Dynamic Calibration Service; C:\WINDOWS\system32\drivers\Dyncal.sys [2001-05-21 8051]
R3 gdrv;gdrv; \??\C:\WINDOWS\gdrv.sys []
R3 GVTDrv;GVTDrv; \??\C:\WINDOWS\system32\Drivers\GVTDrv.sys []
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2009-01-20 5027840]
R3 IpopTap;IpopTap; C:\WINDOWS\system32\DRIVERS\IpopTap.sys [2011-02-08 26624]
R3 L8042Kbd;Logitech SetPoint Keyboard Driver; C:\WINDOWS\system32\DRIVERS\L8042Kbd.sys [2008-02-29 20240]
R3 L8042mou;SetPoint PS/2 Mouse Filter Driver; C:\WINDOWS\system32\DRIVERS\L8042mou.Sys [2008-02-29 63120]
R3 LHidFilt;Logitech SetPoint KMDF HID Filter Driver; C:\WINDOWS\system32\DRIVERS\LHidFilt.Sys [2008-02-29 35344]
R3 LMouFilt;Logitech SetPoint KMDF Mouse Filter Driver; C:\WINDOWS\system32\DRIVERS\LMouFilt.Sys [2008-02-29 36880]
R3 LMouKE;SetPoint Mouse Filter Driver; C:\WINDOWS\system32\DRIVERS\LMouKE.Sys [2008-02-29 79120]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2013-06-21 10973504]
R3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys [2008-10-30 117888]
R3 SBFWIMCL;Sunbelt Software Firewall NDIS IM Filter Miniport; C:\WINDOWS\system32\DRIVERS\sbfwim.sys [2008-06-21 65576]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2013-08-09 32384]
R3 Wdf01000;Wdf01000; C:\WINDOWS\system32\DRIVERS\Wdf01000.sys [2006-11-02 492000]
S3 ambqe8az;ambqe8az; C:\WINDOWS\system32\drivers\ambqe8az.sys []
S3 catchme;catchme; \??\C:\DOCUME~1\XXX\LOCALS~1\Temp\catchme.sys []
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 cnnctfy2MP;cnnctfy2MP; C:\WINDOWS\system32\DRIVERS\cnnctfy2.sys []
S3 cpuz132;cpuz132; \??\C:\DOCUME~1\XXX\LOCALS~1\Temp\cpuz132\cpuz132_x32.sys []
S3 ENTECH;ENTECH; \??\C:\WINDOWS\system32\DRIVERS\ENTECH.sys []
S3 GMSIPCI;GMSIPCI; \??\D:\INSTALL\GMSIPCI.SYS []
S3 hamachi;Hamachi Network Interface; C:\WINDOWS\system32\DRIVERS\hamachi.sys [2009-03-18 26176]
S3 IT9135BDA;IT9135 BDA Devices; C:\WINDOWS\System32\Drivers\IT9135BDA.sys [2011-10-19 145280]
S3 MPE;Filtr MPE BDA; C:\WINDOWS\system32\DRIVERS\MPE.sys [2008-04-13 15232]
S3 MSICPL;MSICPL; \??\D:\install4\MSICPL.sys []
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 nmwcd;Nokia USB Phone Parent; C:\WINDOWS\system32\drivers\nmwcd.sys [2007-02-22 137216]
S3 nmwcdc;Nokia USB Generic; C:\WINDOWS\system32\drivers\nmwcdc.sys [2007-02-22 8320]
S3 nmwcdcj;Nokia USB Port; C:\WINDOWS\system32\drivers\nmwcdcj.sys [2007-02-22 12288]
S3 nmwcdcm;Nokia USB Modem; C:\WINDOWS\system32\drivers\nmwcdcm.sys [2007-02-22 12288]
S3 NPF;NetGroup Packet Filter Driver; C:\WINDOWS\system32\drivers\npf.sys [2003-04-04 30336]
S3 NTACCESS;NTACCESS; \??\D:\NTACCESS.sys []
S3 SetupNTGLM7X;SetupNTGLM7X; \??\D:\NTGLM7X.sys []
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 taphss;Anchorfree HSS Adapter; C:\WINDOWS\system32\DRIVERS\taphss.sys [2012-03-26 32768]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2013-07-03 14976]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 VClone;VClone; C:\WINDOWS\system32\DRIVERS\VClone.sys [2009-05-23 29696]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-15 82688]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2012-08-21 44808]
R2 ES lite Service;ES lite Service for program management.; C:\Program Files\Gigabyte\EasySaver\ESSVR.EXE [2009-02-05 68136]
R2 Guard.Mail.ru;Guard.Mail.ru; C:\Program Files\Guard-ICQ\GuardICQ.exe [2013-01-24 1564368]
R2 IBUpdaterService;IBUpdaterService; C:\WINDOWS\system32\dmwu.exe [2013-12-29 1488176]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jqs.exe [2012-07-05 161704]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [2013-12-10 1494304]
R2 NVSvc;NVIDIA Driver Helper Service; C:\WINDOWS\system32\nvsvc32.exe [2013-06-21 156960]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2010-04-02 66872]
R2 SbPF.Launcher;SbPF.Launcher; C:\Program Files\Sunbelt Software\Personal Firewall\SbPFLnch.exe [2008-10-31 95528]
R2 SearchAnonymizer;SearchAnonymizer; C:\Documents and Settings\XXX\Data aplikací\OCS\SM\SearchAnonymizerHelper.exe [2010-11-03 40960]
R2 SocialVPN;SocialVPN; C:\Program Files\SocialVPN\SocialVPNService.exe [2011-02-08 5632]
R2 SPF4;Sunbelt Personal Firewall 4; C:\Program Files\Sunbelt Software\Personal Firewall\SbPFSvc.exe [2008-10-31 1365288]
R2 TuneUp.ProgramStatisticsSvc;TuneUp Program Statistics Service; C:\WINDOWS\System32\TUProgSt.exe [2009-12-03 603904]
R2 UxTuneUp;TuneUp Theme Extension; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2009-08-18 1529728]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2010-03-14 655624]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 LBTServ;Logitech Bluetooth Service; C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe [2008-05-02 121360]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 rpcapd;Remote Packet Capture Protocol v.0 (experimental); C:\Program Files\WinPcap\rpcapd.exe [2003-04-04 77824]
S3 ServiceLayer;ServiceLayer; D:\Program Files\Nokia\PC Connectivity Solution\ServiceLayer.exe [2007-06-15 300544]
S3 TuneUp.Defrag;TuneUp Drive Defrag Service; C:\WINDOWS\System32\TuneUpDefragService.exe [2009-12-03 360192]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2013-07-20 754856]
S4 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S4 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-01-15 774144]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2007-03-12 271920]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Vyskakující reklamy apod.
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Vyskakující reklamy apod.
Zdravim 
Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner a ulozte ho na plochu.
Ukoncete vsechny programy, jinak to AdwCleaner udela za vas.
Spustte ho.
Kliknete na Scan a program zacne pracovat.
Az skonci, vyplivne na vas log (pokud ne, najdete ho zde C:\AdwCleaner\AdwCleaner[R?].txt ), ten mi sem zkopirujte.
Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner a ulozte ho na plochu.Ukoncete vsechny programy, jinak to AdwCleaner udela za vas.
Spustte ho.
Kliknete na Scan a program zacne pracovat.
Az skonci, vyplivne na vas log (pokud ne, najdete ho zde C:\AdwCleaner\AdwCleaner[R?].txt ), ten mi sem zkopirujte.
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Vyskakující reklamy apod.
# AdwCleaner v3.017 - Report created 18/01/2014 at 16:12:45
# Updated 12/01/2014 by Xplode
# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)
# Username : XXX - XXX-07A3B26BAE8
# Running from : C:\Documents and Settings\XXX\Plocha\adwcleaner.exe
# Option : Scan
***** [ Services ] *****
Service Found : IBUpdaterService
Service Found : SearchAnonymizer
***** [ Files / Folders ] *****
File Found : C:\Documents and Settings\All Users\Plocha\iLivid.lnk
File Found : C:\Documents and Settings\XXX\Data aplikací\Microsoft\Internet Explorer\qipsearchbar.dll
File Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\{1FD91A9C-410C-4090-BBCC-55D3450EF433}
File Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\{EEE6C361-6118-11DC-9C72-001320C79847}.xpi
File Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\wtxpcom@mybrowserbar.com
File Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\Askcom.xml
File Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\daemon-search.xml
File Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\icqplugin.xml
File Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\icqplugin-1.xml
File Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\icqplugin-10.xml
File Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\icqplugin-11.xml
File Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\icqplugin-12.xml
File Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\icqplugin-13.xml
File Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\icqplugin-2.xml
File Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\icqplugin-3.xml
File Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\icqplugin-4.xml
File Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\icqplugin-5.xml
File Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\icqplugin-6.xml
File Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\icqplugin-7.xml
File Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\icqplugin-8.xml
File Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\icqplugin-9.xml
File Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\MyStart Search.xml
File Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\MyStart.xml
File Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\qip-search.xml
File Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\Search_Results.xml
File Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\SweetIm.xml
File Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\Sweetpacks Search.xml
File Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\web-search.xml
File Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\user.js
File Found : C:\Program Files\Mozilla Firefox\Components\AskHPRFF.js
File Found : C:\Program Files\Mozilla Firefox\Components\AskSearch.js
File Found : C:\Program Files\Mozilla Firefox\searchplugins\Babylon.xml
File Found : C:\Program Files\Mozilla Firefox\searchplugins\Search_Results.xml
File Found : C:\WINDOWS\system32\conduitEngine.tmp
File Found : C:\WINDOWS\system32\dmwu.exe
File Found : C:\WINDOWS\system32\ImhxxpComm.dll
Folder Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\{20a82645-c095-46ed-80e3-08825760534b}
Folder Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\{32a1fd71-835e-4b11-8e54-886fda0b4c89}
Folder Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\{32A1FD71-835E-4B11-8E54-886FDA0B4C89}
Folder Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\{6236BA26-C117-4007-928C-DE0716C7FA82}
Folder Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\{63414328-3ab4-2c84-6c41-5a473c4b2ff7}
Folder Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\{800B5000-A755-47E1-992B-48A1C1357F07}
Folder Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
Folder Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\{8675f4b3-2f19-11ed-2d6b-0800600c0a16}
Folder Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\{8675f4b3-2f19-11ed-2d6b-0800600c0a17}
Folder Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\{8675f4b3-2f19-11ed-2d6b-0800600c0a18}
Folder Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\{8675f4b3-2f19-11ed-2d6b-0800600c0a19}
Folder Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\{872b5b88-9db5-4310-bdd0-ac189557e5f5}
Folder Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\{872b5b88-9db5-4310-bdd0-ac189557e5f5}
Folder Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\{872b5b88-9db5-4310-bdd0-ac189557e5f5}
Folder Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\{B042753D-F57E-4e8e-A01B-7379A6D4CEFB}
Folder Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\{E9A1DEE0-C623-4439-8932-001E7D17607D}
Folder Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\{E9A1DEE0-C623-4439-8932-001E7D17607D}
Folder Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
Folder Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\engine@conduit.com
Folder Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\engine@conduit.com
Folder Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\ffxtlbr@babylon.com
Folder Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\ffxtlbr@babylon.com
Folder Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\ieeyj@aaiuyyau.edu
Folder Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\iyoiu@zrhrxkjq.edu
Folder Found : C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn
Folder Found : C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\ogccgbmabaphcakpiclgcnmcnimhokcj
Folder Found C:\Documents and Settings\All Users\Data aplikací\Babylon
Folder Found C:\Documents and Settings\All Users\Data aplikací\boost_interprocess
Folder Found C:\Documents and Settings\All Users\Data aplikací\ICQ\ICQToolbar
Folder Found C:\Documents and Settings\All Users\Data aplikací\surf And Keep
Folder Found C:\Documents and Settings\All Users\Data aplikací\SweetIM
Folder Found C:\Documents and Settings\All Users\Data aplikací\YoutubeAdblocker
Folder Found C:\Documents and Settings\NetworkService\Local Settings\Data aplikací\DVDVideoSoftTB
Folder Found C:\Documents and Settings\NetworkService\Local Settings\Data aplikací\DVDVideoSoftTB
Folder Found C:\Documents and Settings\XXX\Data aplikací\Babylon
Folder Found C:\Documents and Settings\XXX\Data aplikací\BabylonToolbar
Folder Found C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Conduit
Folder Found C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\ConduitEngine
Folder Found C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\CT2269050
Folder Found C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\ICQToolbarData
Folder Found C:\Documents and Settings\XXX\Data aplikací\OCS
Folder Found C:\Documents and Settings\XXX\Data aplikací\PriceGong
Folder Found C:\Documents and Settings\XXX\Data aplikací\searchquband
Folder Found C:\Documents and Settings\XXX\Local Settings\Data aplikací\Conduit
Folder Found C:\Documents and Settings\XXX\Local Settings\Data aplikací\ConduitEngine
Folder Found C:\Documents and Settings\XXX\Local Settings\Data aplikací\DVDVideoSoftTB
Folder Found C:\Documents and Settings\XXX\Local Settings\Data aplikací\DVDVideoSoftTB
Folder Found C:\Documents and Settings\XXX\Local Settings\Data aplikací\PackageAware
Folder Found C:\Documents and Settings\XXX\Nabídka Start\Programy\LSHunter.TV
Folder Found C:\Program Files\~BabylonToolbar
Folder Found C:\Program Files\Conduit
Folder Found C:\Program Files\ConduitEngine
Folder Found C:\Program Files\DVDVideoSoftTB
Folder Found C:\Program Files\DVDVideoSoftTB
Folder Found C:\Program Files\hotspot shield
Folder Found C:\Program Files\ICQ6Toolbar
Folder Found C:\Program Files\iLivid
Folder Found C:\Program Files\LSHunter.TV
Folder Found C:\Program Files\surf And Keep
Folder Found C:\Program Files\SweetIM
Folder Found C:\Program Files\YoutubeAdblocker
Folder Found C:\WINDOWS\Installer\{A0C9DF2B-89B5-4483-8983-18A68200F1B4}
Folder Found C:\WINDOWS\system32\ARFC
Folder Found C:\WINDOWS\system32\jmdp
Folder Found C:\WINDOWS\system32\WNLT
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Found : HKCU\Software\1ClickDownload
Key Found : HKCU\Software\AppDataLow\Software\Search Settings
Key Found : HKCU\Software\BabylonToolbar
Key Found : HKCU\Software\Conduit
Key Found : HKCU\Software\conduitEngine
Key Found : HKCU\Software\conduitEngine
Key Found : HKCU\Software\DataMngr
Key Found : HKCU\Software\DVDVideoSoftTB
Key Found : HKCU\Software\DVDVideoSoftTB
Key Found : HKCU\Software\ilivid
Key Found : HKCU\Software\IM
Key Found : HKCU\Software\ImInstaller
Key Found : HKCU\Software\InstallCore
Key Found : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\ICQ\ICQToolBar
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40B7-AC73-056A5EBA4A7E}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AD22EBAF-0D18-4FC7-90CC-5EA0ABBE9EB8}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{CF739809-1C6C-47C0-85B9-569DBB141420}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{855F3B16-6D32-4FE6-8A56-BBB695989046}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EEE6C35B-6118-11DC-9C72-001320C79847}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{F3FEE66E-E034-436A-86E4-9690573BEE8A}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{14CD42DD-ABCD-3586-DCAB-40E3693E3737}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2EECD738-5844-4A99-B4B6-146BF802613B}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3041D03E-FD4B-44E0-B742-2D9B88305F98}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{30F9B915-B755-4826-820B-08FBA6BD249D}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{30F9B915-B755-4826-820B-08FBA6BD249D}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{855F3B16-6D32-4FE6-8A56-BBB695989046}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{872B5B88-9DB5-4310-BDD0-AC189557E5F5}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{872B5B88-9DB5-4310-BDD0-AC189557E5F5}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{98889811-442D-49DD-99D7-DC866BE87DBC}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{98C400D1-B796-48DF-B8D2-81C57DE757C7}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{99079A25-328F-4BD4-BE04-00955ACAA0A7}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9D717F81-9148-4F12-8568-69135F087DB0}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35B-6118-11DC-9C72-001320C79847}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35C-6118-11DC-9C72-001320C79847}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F3FEE66E-E034-436A-86E4-9690573BEE8A}
Key Found : HKCU\Software\OCS
Key Found : HKCU\Software\PriceGong
Key Found : HKCU\Software\SmartBar
Key Found : HKCU\Software\wnlt
Key Found : HKCU\Software\YahooPartnerToolbar
Key Found : HKCU\Toolbar
Key Found : HKLM\SOFTWARE\14919ea49a8f3b4aa3cf1058d9a64cec
Key Found : HKLM\Software\AskBarDis
Key Found : HKLM\Software\Babylon
Key Found : HKLM\Software\BabylonToolbar
Key Found : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
Key Found : HKLM\SOFTWARE\Classes\AppID\{35C1605E-438B-4D64-AAB1-8885F097A9B1}
Key Found : HKLM\SOFTWARE\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Key Found : HKLM\SOFTWARE\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
Key Found : HKLM\SOFTWARE\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}
Key Found : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Key Found : HKLM\SOFTWARE\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Key Found : HKLM\SOFTWARE\Classes\AppID\escort.DLL
Key Found : HKLM\SOFTWARE\Classes\AppID\escortApp.DLL
Key Found : HKLM\SOFTWARE\Classes\AppID\escortEng.DLL
Key Found : HKLM\SOFTWARE\Classes\AppID\escorTlbr.DLL
Key Found : HKLM\SOFTWARE\Classes\AppID\esrv.EXE
Key Found : HKLM\SOFTWARE\Classes\AppID\GenericAskToolbar.DLL
Key Found : HKLM\SOFTWARE\Classes\b
Key Found : HKLM\SOFTWARE\Classes\Babylon.dskBnd
Key Found : HKLM\SOFTWARE\Classes\Babylon.dskBnd.1
Key Found : HKLM\SOFTWARE\Classes\bbylnApp.appCore
Key Found : HKLM\SOFTWARE\Classes\bbylnApp.appCore.1
Key Found : HKLM\SOFTWARE\Classes\bbylntlbr.bbylntlbrHlpr
Key Found : HKLM\SOFTWARE\Classes\bbylntlbr.bbylntlbrHlpr.1
Key Found : HKLM\SOFTWARE\Classes\CLSID\{0702A2B6-13AA-4090-9E01-BCDC85DD933F}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{08993A7C-E764-4172-9627-BFB5EA6897B2}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{128A6C66-AC6A-4617-8268-AB7F47B7215E}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{30F9B915-B755-4826-820B-08FBA6BD249D}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{30F9B915-B755-4826-820B-08FBA6BD249D}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{571715D7-3395-4DF0-B43C-784836209E60}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{622FD888-4E91-4D68-84D4-7262FD0811BF}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{7AE64690-65B7-4D6C-8EAE-63435DBF99E1}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{82AC53B4-164C-4B07-A016-437A8388B81A}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{872B5B88-9DB5-4310-BDD0-AC189557E5F5}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{872B5B88-9DB5-4310-BDD0-AC189557E5F5}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{98C400D1-B796-48DF-B8D2-81C57DE757C7}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{A4A0CB15-8465-4F58-A7E5-73084EA2A064}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{B0DE3308-5D5A-470D-81B9-634FC078393B}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{EEE6C35B-6118-11DC-9C72-001320C79847}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{EEE6C35C-6118-11DC-9C72-001320C79847}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{EEE6C35D-6118-11DC-9C72-001320C79847}
Key Found : HKLM\SOFTWARE\Classes\Conduit.Engine
Key Found : HKLM\SOFTWARE\Classes\escort.escortIEPane
Key Found : HKLM\SOFTWARE\Classes\escort.escortIEPane.1
Key Found : HKLM\SOFTWARE\Classes\escort.escrtBtn.1
Key Found : HKLM\SOFTWARE\Classes\esrv.BabylonESrvc
Key Found : HKLM\SOFTWARE\Classes\esrv.BabylonESrvc.1
Key Found : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd
Key Found : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd.1
Key Found : HKLM\SOFTWARE\Classes\ilivid
Key Found : HKLM\Software\Classes\Installer\Features\9EE58E3C298524145B73CBBED3CAC4D3
Key Found : HKLM\Software\Classes\Installer\Features\B2FD9C0A5B9838449838816A28001F4B
Key Found : HKLM\Software\Classes\Installer\Features\EB6AF8AEEB922FA4392548F13812E50B
Key Found : HKLM\Software\Classes\Installer\Products\9EE58E3C298524145B73CBBED3CAC4D3
Key Found : HKLM\Software\Classes\Installer\Products\B2FD9C0A5B9838449838816A28001F4B
Key Found : HKLM\Software\Classes\Installer\Products\EB6AF8AEEB922FA4392548F13812E50B
Key Found : HKLM\SOFTWARE\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}
Key Found : HKLM\SOFTWARE\Classes\Interface\{44C3C1DB-2127-433C-98EC-4C9412B5FC3A}
Key Found : HKLM\SOFTWARE\Classes\Interface\{4634804A-F0B0-4A74-A550-FC0EEF8A4362}
Key Found : HKLM\SOFTWARE\Classes\Interface\{4C07EA4F-5F52-4222-B170-4CD9ED33BAEA}
Key Found : HKLM\SOFTWARE\Classes\Interface\{4D5132DD-BB2B-4249-B5E0-D145A8C982E1}
Key Found : HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Key Found : HKLM\SOFTWARE\Classes\Interface\{706D4A4B-184A-4434-B331-296B07493D2D}
Key Found : HKLM\SOFTWARE\Classes\Interface\{8BE10F21-185F-4CA0-B789-9921674C3993}
Key Found : HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Key Found : HKLM\SOFTWARE\Classes\Interface\{94C0B25D-3359-4B10-B227-F96A77DB773F}
Key Found : HKLM\SOFTWARE\Classes\Interface\{A439801C-961D-452C-AB42-7848E9CBD289}
Key Found : HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Key Found : HKLM\SOFTWARE\Classes\Interface\{B0B75FBA-7288-4FD3-A9EB-7EE27FA65599}
Key Found : HKLM\SOFTWARE\Classes\Interface\{B173667F-8395-4317-8DD6-45AD1FE00047}
Key Found : HKLM\SOFTWARE\Classes\Interface\{B32672B3-F656-46E0-B584-FE61C0BB6037}
Key Found : HKLM\SOFTWARE\Classes\Interface\{BFE569F7-646C-4512-969B-9BE3E580D393}
Key Found : HKLM\SOFTWARE\Classes\Interface\{C2434722-5C85-4CA0-BA69-1B67E7AB3D68}
Key Found : HKLM\SOFTWARE\Classes\Interface\{C2996524-2187-441F-A398-CD6CB6B3D020}
Key Found : HKLM\SOFTWARE\Classes\Interface\{C44FEFF4-EF0C-4CF7-83D0-92B4266A32B9}
Key Found : HKLM\SOFTWARE\Classes\Interface\{C66F0B7A-BD67-4982-AF71-C6CA6E7F016F}
Key Found : HKLM\SOFTWARE\Classes\Interface\{E047E227-5342-4D94-80F7-CFB154BF55BD}
Key Found : HKLM\SOFTWARE\Classes\Interface\{E3F79BE9-24D4-4F4D-8C13-DF2C9899F82E}
Key Found : HKLM\SOFTWARE\Classes\Interface\{E77EEF95-3E83-4BB8-9C0D-4A5163774997}
Key Found : HKLM\SOFTWARE\Classes\Interface\{EAF749DC-CD87-4B04-B22A-D4AC3FBCB2BC}
Key Found : HKLM\SOFTWARE\Classes\Interface\{EEE6C358-6118-11DC-9C72-001320C79847}
Key Found : HKLM\SOFTWARE\Classes\Interface\{EEE6C359-6118-11DC-9C72-001320C79847}
Key Found : HKLM\SOFTWARE\Classes\Interface\{EEE6C35A-6118-11DC-9C72-001320C79847}
Key Found : HKLM\SOFTWARE\Classes\Interface\{F131923C-381D-4E4C-A472-4A17118FD742}
Key Found : HKLM\SOFTWARE\Classes\Interface\{F4EBB1E2-21F3-4786-8CF4-16EC5925867F}
Key Found : HKLM\SOFTWARE\Classes\MediaPlayer.GraphicsUtils
Key Found : HKLM\SOFTWARE\Classes\MediaPlayer.GraphicsUtils.1
Key Found : HKLM\SOFTWARE\Classes\MgMediaPlayer.GifAnimator
Key Found : HKLM\SOFTWARE\Classes\MgMediaPlayer.GifAnimator.1
Key Found : HKLM\SOFTWARE\Classes\Prod.cap
Key Found : HKLM\SOFTWARE\Classes\sim-packages
Key Found : HKLM\SOFTWARE\Classes\SWEETIE.IEToolbar
Key Found : HKLM\SOFTWARE\Classes\SWEETIE.IEToolbar.1
Key Found : HKLM\SOFTWARE\Classes\sweetim_urlsearchhook.toolbarurlsearchhook
Key Found : HKLM\SOFTWARE\Classes\sweetim_urlsearchhook.toolbarurlsearchhook.1
Key Found : HKLM\SOFTWARE\Classes\Toolbar.CT2224613
Key Found : HKLM\SOFTWARE\Classes\Toolbar.CT2269050
Key Found : HKLM\SOFTWARE\Classes\Toolbar3.sweetie
Key Found : HKLM\SOFTWARE\Classes\Toolbar3.sweetie.1
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{4D3B167E-5FD8-4276-8FD7-9DF19C1E4D19}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{EEE6C35E-6118-11DC-9C72-001320C79847}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{EEE6C35F-6118-11DC-9C72-001320C79847}
Key Found : HKLM\Software\Conduit
Key Found : HKLM\Software\conduitEngine
Key Found : HKLM\Software\conduitEngine
Key Found : HKLM\Software\dt soft\daemon tools toolbar
Key Found : HKLM\Software\DVDVideoSoftTB
Key Found : HKLM\Software\DVDVideoSoftTB
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\ogccgbmabaphcakpiclgcnmcnimhokcj
Key Found : HKLM\Software\ICQ\ICQToolbar
Key Found : HKLM\Software\ilivid
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{14CD42DD-ABCD-3586-DCAB-40E3693E3737}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{CF739809-1C6C-47C0-85B9-569DBB141420}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{4820778D-AB0D-6D18-C316-52A6A0E1D507}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{A0C9DF2B-89B5-4483-8983-18A68200F1B4}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{A35CA8FF-CB7D-8361-1CB9-83219CD11C78}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{c3e85ee9-5892-4142-b537-bceb3dac4c3d}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{ea8fa6be-29be-4af2-9352-841f83215eb0}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\1ClickDownload
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\DVDVideoSoftTB Toolbar
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\ilivid
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\SearchAnonymizer
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\wnlt
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\SweetIM.exe
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{872B5B88-9DB5-4310-BDD0-AC189557E5F5}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{872B5B88-9DB5-4310-BDD0-AC189557E5F5}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{98C400D1-B796-48DF-B8D2-81C57DE757C7}
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\789034A89BAC50E4782F0A7BDBF75632
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\A97CEC23332751B47BA4B95BAA50C9D0
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\00E944CB89111313EAF35A0553F547F9
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\02F47BF73B948514FAACADD8CBBDF37D
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\07D5290CDBDAE4242926B8E6CA650501
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\080D9F5E1E95FEE4794CE438E635239E
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\08E33F7B61DEFF24BB9673ED7D467636
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0E3D8A5B48622A445A7DF73FEFF32C3F
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0FF2AEFF45EEA0A48A4B33C1973B6094
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\12BF94BD06C95F343A77631402B9556A
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1A24B5BB8521B03E0C8D908F5ABC0AE6
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1E264E0A5959A1C46BA9175A878B12EA
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2124D8A8CF720FD44866190AF560228E
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\27A325ACED8CA4743A30127638591ADB
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2E6768B6932D112438F047C54D180635
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\305B09CE8C53A214DB58887F62F25536
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\34EDDB1BFB3A2D448845F3EFD0F15A43
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\350D17402BD84234EAF7D32F08172D7C
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\351716A953E21214898904032EAE2E81
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\397C771A7BCAC904697C3EC629ED33ED
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3EE8C5F419057E1478A654868CEE60B5
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\427EA997C413D1D47907CBFC7B2DB432
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4318DF19719275242801CBE292063A4C
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\45FC115D1FEAEF849A4E1610D6EC8BF0
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\46A5861A389ADB844AF89E31BC9DF0A1
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4735D908D66E1BA46B6C2D7185A12B2B
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\49B0E1A6FF50BBE4289E4E23DE6EA0C7
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4CCCAC049F34D0540AAC13011398BEDB
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\53F55AF3F4049ED3FA6EA6F88E414E24
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5C4389D0BFB302C479DE4178BD5D9EBA
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5D2B09BDEF4FE54418E6F3373CDBC7AC
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\61B65D3397A1FBF4CB1571B5E4F6B5B0
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\68E4BF4B11615E03C97732FD581AB607
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\68E8A05C60DD9254591DBD16C94EDDBF
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\697E782CF574CC34CBB9566440BA12BC
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\69D6A6B2ED56AF24EA6335EAD6E91CA4
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6AA0923513360135B272E8289C5F13FA
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6AE27A8613CF7EA4782F2886F67295E5
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\75D5168E5E176C24981B4E5DBD991078
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\76D8378E2DDAED3428720A631F6E3BF0
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7CE172051F585E04187BCB97570BFA74
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7FFA128C2B0FF414D805FC5627883401
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\86A901BA5265452499DCBF719C378EE3
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\86EDC790504E1834DBC20C9A04328FD2
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8724E58E6C7D00C48A0D4F3345EB2C26
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\88ABD1CD5C40EC84789A7F6EF86DAC5E
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8CE3DDAB2D152683FBCEB4866BCD2B0F
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\922525DCC5199162F8935747CA3D8E59
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\97C3D0F82E712E241A2F969F45E3351C
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\980289C22F80A7C4BB9323DC61255E4E
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\98CC8BF5A4A6E6C4ABF7051DDAB8B058
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9A001B259DB7D694E818BE29B973992C
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9A4B7EF3789F871419D9302583B20C15
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9E7F556BF224D804D96A96F0F6344789
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A189D17A469616C4688D23E192996267
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A6C53B0F76C44004A8F36716213017DB
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AB676B0E1B9EFA049B9F7DDDA9645734
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AF6CE16AFEA5C9A39B766468A8B35C21
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B31BBB0B825EDEF45AB0FE7099C68C81
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B471D8D7319336B4CA89374ED0D7B806
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B59F2D8189784CC46A4597F2842480B0
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BAE2EC163C6A68A48921573E0E7E199D
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BC30043663AA2CA4DA1DAA9CA5FDCC75
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BD746FB95FB8E5B45BF66BE54D5FD91F
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BF4F885EDEE45644EB1E0C99E0162399
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C06C6662FA5B04646829E4A460857770
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CCF399FCD6D2D3F46BF02A1378654FC9
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CE21F3FD57B244142880EF15A165A156
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CEEB3E14ABE8270419B0FD762E18F7C6
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D149C1355C98DE24E82CEFBD996FE06A
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D15DAF33C220F91468A1D7D57C31ACD7
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D3BA76A44C779424889063D5098ED2D6
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D6D0EB9FDBD90C04D92A7E729058F10D
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DB59FDB786388EA4D897F3EE715683AC
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DB8DAD19CFBCC2049A4477183787E8C5
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E1C820A74ED67374BA048B52CB3C3804
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E4748F9A4181FCE46A23C13B517B9420
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EC65F200D112357449C8B1BC3CFA03D0
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ED1B5E9A3BDB51349BF96E842C062D98
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F327D0C73C0973644A21E8CC852267A0
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F754C503375A13344B22388E18DFE87E
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FA96423FE2B98E248A3B23548D1E22D9
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FB1E44269B58F433A8C8E671E37CFDCF
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FDC83385E6C239F4C876A77A37DF581D
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FECBC2BC14DA6CD459BD59A041709836
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\9EE58E3C298524145B73CBBED3CAC4D3
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\B2FD9C0A5B9838449838816A28001F4B
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\EB6AF8AEEB922FA4392548F13812E50B
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{4820778D-AB0D-6D18-C316-52A6A0E1D507}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A0C9DF2B-89B5-4483-8983-18A68200F1B4}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A35CA8FF-CB7D-8361-1CB9-83219CD11C78}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{c3e85ee9-5892-4142-b537-bceb3dac4c3d}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{ea8fa6be-29be-4af2-9352-841f83215eb0}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\1ClickDownload
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\DVDVideoSoftTB Toolbar
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ilivid
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchAnonymizer
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\wnlt
Key Found : HKLM\Software\wnlt
Value Found : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]
Value Found : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{872B5B88-9DB5-4310-BDD0-AC189557E5F5}]
Value Found : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{872B5B88-9DB5-4310-BDD0-AC189557E5F5}]
Value Found : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Value Found : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{872B5B88-9DB5-4310-BDD0-AC189557E5F5}]
Value Found : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{872B5B88-9DB5-4310-BDD0-AC189557E5F5}]
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{872B5B88-9DB5-4310-BDD0-AC189557E5F5}]
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{872B5B88-9DB5-4310-BDD0-AC189557E5F5}]
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{98889811-442D-49DD-99D7-DC866BE87DBC}]
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{99079A25-328F-4BD4-BE04-00955ACAA0A7}]
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{855F3B16-6D32-4FE6-8A56-BBB695989046}]
Value Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [Ocs_SM]
Value Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [SweetIM]
Value Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [Sweetpacks Communicator]
Value Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs [C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgHelperApp.exe]
Value Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs [C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarProxy.dll]
Value Found : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [{20a82645-c095-46ed-80e3-08825760534b}]
Value Found : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List [C:\Program Files\SweetIM\Communicator\SweetPacksUpdateManager.exe]
Value Found : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List [C:\WINDOWS\system32\ARFC\wrtc.exe]
***** [ Browsers ] *****
-\\ Internet Explorer v7.0.6000.21364
Setting Found : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page] - hxxp://qip.ru
Setting Found : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search] - hxxp://search.icq.com/search/results.php?q={searchTerms}&ch_id=osd
Setting Found : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Page_URL] - hxxp://qip.ru
Setting Found : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Search_URL] - hxxp://search.qip.ru
Setting Found : HKCU\Software\Microsoft\Internet Explorer\Main [Search Page] - hxxp://search.qip.ru
Setting Found : HKCU\Software\Microsoft\Internet Explorer\Main [Search Bar] - hxxp://search.qip.ru/ie
Setting Found : HKCU\Software\Microsoft\Internet Explorer\Search [SearchAssistant] - hxxp://search.qip.ru/ie
-\\ Mozilla Firefox v4.0 (cs)
[ File : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\prefs.js ]
Line Found : user_pref("CT2269050..clientLogIsEnabled", true);
Line Found : user_pref("CT2269050..clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.asmx/ReportDiagnosticsEvent");
Line Found : user_pref("CT2269050..uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/RegisterToolbarUninstallation");
Line Found : user_pref("CT2269050.ALLOW_SHOWING_HIDDEN_TOOLBAR", false);
Line Found : user_pref("CT2269050.AboutPrivacyUrl", "hxxp://www.conduit.com/privacy/Default.aspx");
Line Found : user_pref("CT2269050.BrowserCompStateIsOpen_129681780741097243", true);
Line Found : user_pref("CT2269050.BrowserCompStateIsOpen_129853623028165512", true);
Line Found : user_pref("CT2269050.BrowserCompStateIsOpen_129881141106886992", true);
Line Found : user_pref("CT2269050.BrowserCompStateIsOpen_129977890572899945", true);
Line Found : user_pref("CT2269050.BrowserCompStateIsOpen_130100683276316706", true);
Line Found : user_pref("CT2269050.BrowserCompStateIsOpen_1359634297000", true);
Line Found : user_pref("CT2269050.CT2269050.lastNewTabSettings", "{\"isEnabled\":true,\"newTabUrl\":\"hxxp://search.conduit.com/?ctid=CT2269050&octid=CT2269050&SearchSource=15&CUI=SB_CUI&SSPV=EB_SSPV&Lay=1&UM=UM_I[...]
Line Found : user_pref("CT2269050.CTID", "CT2269050");
Line Found : user_pref("CT2269050.ConfigurationLastCheckTime", "Sat Jan 04 2014 00:14:23 GMT+0100");
Line Found : user_pref("CT2269050.CurrentServerDate", "4-1-2014");
Line Found : user_pref("CT2269050.DialogsAlignMode", "LTR");
Line Found : user_pref("CT2269050.DialogsGetterLastCheckTime", "Sun Dec 29 2013 19:00:46 GMT+0100");
Line Found : user_pref("CT2269050.DownloadReferralCookieData", "");
Line Found : user_pref("CT2269050.EMailNotifierPollDate", "Sat Mar 19 2011 21:08:30 GMT+0100");
Line Found : user_pref("CT2269050.FirstServerDate", "19-3-2011");
Line Found : user_pref("CT2269050.FirstTime", true);
Line Found : user_pref("CT2269050.FirstTimeFF3", true);
Line Found : user_pref("CT2269050.FirstTimeSettingsDone", true);
Line Found : user_pref("CT2269050.FixPageNotFoundErrors", true);
Line Found : user_pref("CT2269050.GroupingServerCheckInterval", 1440);
Line Found : user_pref("CT2269050.GroupingServiceUrl", "hxxp://grouping.services.conduit.com/");
Line Found : user_pref("CT2269050.HasUserGlobalKeys", true);
Line Found : user_pref("CT2269050.Initialize", true);
Line Found : user_pref("CT2269050.InitializeCommonPrefs", true);
Line Found : user_pref("CT2269050.InstallationAndCookieDataSentCount", 3);
Line Found : user_pref("CT2269050.InstallationType", "UnknownIntegration");
Line Found : user_pref("CT2269050.InstalledDate", "Sat Mar 19 2011 21:08:30 GMT+0100");
Line Found : user_pref("CT2269050.InvalidateCache", false);
Line Found : user_pref("CT2269050.IsGrouping", false);
Line Found : user_pref("CT2269050.IsMulticommunity", false);
Line Found : user_pref("CT2269050.IsOpenThankYouPage", false);
Line Found : user_pref("CT2269050.IsOpenUninstallPage", false);
Line Found : user_pref("CT2269050.LanguagePackLastCheckTime", "Sat Jan 04 2014 00:14:24 GMT+0100");
Line Found : user_pref("CT2269050.LanguagePackReloadIntervalMM", 1440);
Line Found : user_pref("CT2269050.LanguagePackServiceUrl", "hxxp://translation.users.conduit.com/Translation.ashx");
Line Found : user_pref("CT2269050.LastLogin_2.7.2.0", "Sat Mar 19 2011 21:08:30 GMT+0100");
Line Found : user_pref("CT2269050.LastLogin_3.12.0.7", "Mon Apr 23 2012 15:59:55 GMT+0200");
Line Found : user_pref("CT2269050.LastLogin_3.12.2.3", "Wed May 30 2012 16:31:26 GMT+0200");
Line Found : user_pref("CT2269050.LastLogin_3.13.0.6", "Thu Jun 28 2012 21:24:27 GMT+0200");
Line Found : user_pref("CT2269050.LastLogin_3.14.1.0", "Fri Aug 24 2012 23:40:31 GMT+0200");
Line Found : user_pref("CT2269050.LastLogin_3.15.1.0", "Sun Mar 17 2013 10:40:35 GMT+0100");
Line Found : user_pref("CT2269050.LastLogin_3.18.0.7", "Mon Jul 15 2013 18:46:46 GMT+0200");
Line Found : user_pref("CT2269050.LastLogin_3.19.0.3", "Tue Jul 30 2013 13:36:52 GMT+0200");
Line Found : user_pref("CT2269050.LastLogin_3.20.0.4", "Sat Jan 04 2014 00:14:23 GMT+0100");
Line Found : user_pref("CT2269050.LatestVersion", "3.20.0.4");
Line Found : user_pref("CT2269050.Locale", "en");
Line Found : user_pref("CT2269050.LoginCache", 4);
Line Found : user_pref("CT2269050.MCDetectTooltipHeight", "83");
Line Found : user_pref("CT2269050.MCDetectTooltipUrl", "hxxp://@EB_INSTALL_LINK@/rank/tooltip/?version=1");
Line Found : user_pref("CT2269050.MCDetectTooltipWidth", "295");
Line Found : user_pref("CT2269050.MyStuffEnabledAtInstallation", true);
Line Found : user_pref("CT2269050.RadioIsPodcast", false);
Line Found : user_pref("CT2269050.RadioLastCheckTime", "Sat Mar 19 2011 21:08:31 GMT+0100");
Line Found : user_pref("CT2269050.RadioLastUpdateIPServer", "3");
Line Found : user_pref("CT2269050.RadioLastUpdateServer", "129132338014870000");
Line Found : user_pref("CT2269050.RadioMediaID", "12473383");
Line Found : user_pref("CT2269050.RadioMediaType", "Media Player");
Line Found : user_pref("CT2269050.RadioMenuSelectedID", "EBRadioMenu_CT226905012473383");
Line Found : user_pref("CT2269050.RadioStationName", "Hotmix%20108");
Line Found : user_pref("CT2269050.RadioStationURL", "hxxp://67.202.67.18:8082");
Line Found : user_pref("CT2269050.SearchAPILastCheckTime", "Sat Jan 04 2014 00:14:23 GMT+0100");
Line Found : user_pref("CT2269050.SearchEngine", "Search||hxxp://search.conduit.com/Results.aspx?q=UCM_SEARCH_TERM&ctid=CT2269050&octid=EB_ORIGINAL_CTID&SearchSource=1");
Line Found : user_pref("CT2269050.SearchFromAddressBarIsInit", true);
Line Found : user_pref("CT2269050.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2269050&q=");
Line Found : user_pref("CT2269050.SearchInNewTabEnabled", true);
Line Found : user_pref("CT2269050.SearchInNewTabIntervalMM", 1440);
Line Found : user_pref("CT2269050.SearchInNewTabLastCheckTime", "Tue Jul 30 2013 13:36:54 GMT+0200");
Line Found : user_pref("CT2269050.SearchInNewTabServiceUrl", "hxxp://newtab.conduit-hosting.com/newtab/?ctid=EB_TOOLBAR_ID&UM=UM_ID");
Line Found : user_pref("CT2269050.SearchInNewTabURLFromSearchAPI", "hxxp://search.conduit.com/?ctid=CT2269050&octid=CT2269050&SearchSource=15&CUI=SB_CUI&SSPV=EB_SSPV&Lay=1&UM=UM_ID");
Line Found : user_pref("CT2269050.SearchInNewTabUsageUrl", "hxxp://Usage.Hosting.conduit-services.com/UsageService.asmx/UsersRequests?ctid=EB_TOOLBAR_ID");
Line Found : user_pref("CT2269050.SearchProtectorToolbarDisabled", true);
Line Found : user_pref("CT2269050.ServiceMapLastCheckTime", "Sat Jan 04 2014 00:14:23 GMT+0100");
Line Found : user_pref("CT2269050.SettingsCheckIntervalMin", 120);
Line Found : user_pref("CT2269050.SettingsLastCheckTime", "Sat Jan 04 2014 00:14:21 GMT+0100");
Line Found : user_pref("CT2269050.SettingsLastUpdate", "1388396832");
Line Found : user_pref("CT2269050.ThirdPartyComponentsInterval", 504);
Line Found : user_pref("CT2269050.ThirdPartyComponentsLastCheck", "Sat Mar 19 2011 21:08:29 GMT+0100");
Line Found : user_pref("CT2269050.ThirdPartyComponentsLastUpdate", "1246790578");
Line Found : user_pref("CT2269050.ToolbarDisabled", true);
Line Found : user_pref("CT2269050.ToolbarShrinkedFromSetup", false);
Line Found : user_pref("CT2269050.TrusteLinkUrl", "hxxp://trust.conduit.com/CT2269050");
Line Found : user_pref("CT2269050.TrustedApiDomains", "conduit.com,conduit-hosting.com,conduit-services.com,client.conduit-storage.com,OurToolbar.com,CommunityToolbars.com,ForumToolbar.com,MyBlogToolbar.com,MyCity[...]
Line Found : user_pref("CT2269050.UserID", "UN96468876364014428");
Line Found : user_pref("CT2269050.WeatherNetwork", "");
Line Found : user_pref("CT2269050.WeatherPollDate", "Sat Mar 19 2011 21:08:31 GMT+0100");
Line Found : user_pref("CT2269050.WeatherUnit", "C");
Line Found : user_pref("CT2269050.alertChannelId", "666138");
Line Found : user_pref("CT2269050.clientLogIsEnabled", true);
Line Found : user_pref("CT2269050.clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.asmx/ReportDiagnosticsEvent");
Line Found : user_pref("CT2269050.countryCode", "CZ");
Line Found : user_pref("CT2269050.generalConfigFromLogin", "{\"ApiMaxAlerts\":\"12\",\"SocialDomains\":\"social.conduit.com;apps.conduit.com;services.apps.conduit.com\",\"AppsDetectionUrlPattern\":\"hxxp://appdown[...]
Line Found : user_pref("CT2269050.homepageProtectorEnableByLogin", true);
Line Found : user_pref("CT2269050.initDone", true);
Line Found : user_pref("CT2269050.myStuffEnabled", true);
Line Found : user_pref("CT2269050.myStuffPublihserMinWidth", 400);
Line Found : user_pref("CT2269050.myStuffSearchUrl", "hxxp://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOrigin=29&ctid=EB_TOOLBAR_ID&octid=EB_ORIGINAL_CTID");
Line Found : user_pref("CT2269050.myStuffServiceIntervalMM", 1440);
Line Found : user_pref("CT2269050.myStuffServiceUrl", "hxxp://mystuff.conduit-services.com/MyStuffService.ashx?ComponentId=EB_MY_STUFF_INSTANCE_GUID&lut=EB_MY_STUFF_LUT");
Line Found : user_pref("CT2269050.revertSettingsEnabled", true);
Line Found : user_pref("CT2269050.searchProtectorDialogDelayInSec", 10);
Line Found : user_pref("CT2269050.searchProtectorEnableByLogin", true);
Line Found : user_pref("CT2269050.testingCtid", "");
Line Found : user_pref("CT2269050.toolbarAppMetaDataLastCheckTime", "Sat Jan 04 2014 00:14:24 GMT+0100");
Line Found : user_pref("CT2269050.uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/RegisterToolbarUninstallation");
Line Found : user_pref("CT2269050.usagesFlag", 2);
Line Found : user_pref("CommunityToolbar.ETag.hxxp://Settings.toolbar.search.conduit.com/root/CT2269050/CT2269050", "\"72b79788f1918c910c98bb0cc0fc29473\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/909619/905414/CZ", "\"0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-services.com/?ctid=CT2269050", "\"1365594729\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.alert.conduit-services.com/alert/dlg.pkg", "\"8076e3ce381dcd1:0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.engine.conduit-services.com/DLG.pkg?ver=3.3.3.2", "\"0652eeacc6cb1:0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.12.0.7", "\"4ead38b3e6bcd1:0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.12.2.3", "\"4ead38b3e6bcd1:0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.13.0.6", "\"0d648794549cd1:0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.14.1.0", "\"0e0a4327275cd1:0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.15.1.0", "\"0343677cfb1cd1:0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.18.0.7", "\"0343677cfb1cd1:0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.19.0.3", "\"2a1a0d7b586ce1:0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.20.0.4", "\"9f8d2729abc2ce1:0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://ip2location.conduit-services.com/ip/?ctid=CT2269050&ver=3.20.0.4&client=ToolbarConfiguration", "\"badf7f81a956c80178572e48829d3f0d\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/Toolbar/?ownerId=CT2269050", "\"52c3f1538cb4af4ada257fcbc6b15d49\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services.com/?browser=FF&lut=0", "634356118310000000");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-services.com/?locale=EB_LOCALE", "\"f6726278d87c7067bebc10b6654cab6b\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-services.com/?locale=en", "\"015abb9b447624efd4ea2ce0c49b3f41\"");
Line Found : user_pref("CommunityToolbar.EngineHiddenByUser", true);
Line Found : user_pref("CommunityToolbar.EngineOwner", "ConduitEngine");
Line Found : user_pref("CommunityToolbar.EngineOwnerGuid", "engine@conduit.com");
Line Found : user_pref("CommunityToolbar.EngineOwnerToolbarId", "conduitengine");
Line Found : user_pref("CommunityToolbar.IsEngineShown", false);
Line Found : user_pref("CommunityToolbar.IsMyStuffImportedToEngine", true);
Line Found : user_pref("CommunityToolbar.OriginalEngineOwner", "ConduitEngine");
Line Found : user_pref("CommunityToolbar.OriginalEngineOwnerGuid", "engine@conduit.com");
Line Found : user_pref("CommunityToolbar.OriginalEngineOwnerToolbarId", "conduitengine");
Line Found : user_pref("CommunityToolbar.ToolbarsList", "CT2269050,ConduitEngine");
Line Found : user_pref("CommunityToolbar.ToolbarsList2", "CT2269050");
Line Found : user_pref("CommunityToolbar.alert.alertDialogsGetterLastCheckTime", "Mon Jul 30 2012 14:32:29 GMT+0200");
Line Found : user_pref("CommunityToolbar.alert.alertInfoInterval", 1440);
Line Found : user_pref("CommunityToolbar.alert.alertInfoLastCheckTime", "Sat Dec 21 2013 17:42:02 GMT+0100");
Line Found : user_pref("CommunityToolbar.alert.clientsServerUrl", "hxxp://alert.client.conduit.com");
Line Found : user_pref("CommunityToolbar.alert.locale", "en");
Line Found : user_pref("CommunityToolbar.alert.loginIntervalMin", 1440);
Line Found : user_pref("CommunityToolbar.alert.loginLastCheckTime", "Sat Jan 11 2014 19:33:28 GMT+0100");
Line Found : user_pref("CommunityToolbar.alert.loginLastUpdateTime", "1313487611");
Line Found : user_pref("CommunityToolbar.alert.messageShowTimeSec", 20);
Line Found : user_pref("CommunityToolbar.alert.servicesServerUrl", "hxxp://alert.services.conduit.com");
Line Found : user_pref("CommunityToolbar.alert.showTrayIcon", false);
Line Found : user_pref("CommunityToolbar.alert.userCloseIntervalMin", 300);
Line Found : user_pref("CommunityToolbar.alert.userId", "2c966f0f-1109-4d16-abc9-9275a5fee531");
Line Found : user_pref("CommunityToolbar.globalUserId", "0b0fbbdf-c779-4b42-88a2-7859d141bcbe");
Line Found : user_pref("CommunityToolbar.isAlertUrlAddedToFeedItemTable", true);
Line Found : user_pref("CommunityToolbar.isClickActionAddedToFeedItemTable", true);
Line Found : user_pref("ConduitEngine.AppTrackingLastCheckTime", "Sat Dec 21 2013 17:42:03 GMT+0100");
Line Found : user_pref("ConduitEngine.CTID", "ConduitEngine");
Line Found : user_pref("ConduitEngine.DialogsGetterLastCheckTime", "Mon Apr 04 2011 16:39:30 GMT+0200");
Line Found : user_pref("ConduitEngine.FirstServerDate", "04/04/2011 17");
Line Found : user_pref("ConduitEngine.FirstTime", true);
Line Found : user_pref("ConduitEngine.FirstTimeFF3", true);
Line Found : user_pref("ConduitEngine.HasUserGlobalKeys", true);
Line Found : user_pref("ConduitEngine.Initialize", true);
Line Found : user_pref("ConduitEngine.InitializeCommonPrefs", true);
Line Found : user_pref("ConduitEngine.InstalledDate", "Mon Apr 04 2011 16:39:30 GMT+0200");
Line Found : user_pref("ConduitEngine.IsMulticommunity", false);
Line Found : user_pref("ConduitEngine.IsOpenThankYouPage", false);
Line Found : user_pref("ConduitEngine.IsOpenUninstallPage", true);
Line Found : user_pref("ConduitEngine.LanguagePackLastCheckTime", "Mon Apr 04 2011 16:39:30 GMT+0200");
Line Found : user_pref("ConduitEngine.LastLogin_3.3.3.2", "Mon Apr 04 2011 16:39:30 GMT+0200");
Line Found : user_pref("ConduitEngine.SearchFromAddressBarIsInit", true);
Line Found : user_pref("ConduitEngine.SettingsLastCheckTime", "Mon Apr 04 2011 16:39:30 GMT+0200");
Line Found : user_pref("ConduitEngine.UserID", "UN08166318491654612");
Line Found : user_pref("ConduitEngine.componentAlertEnabled", false);
Line Found : user_pref("ConduitEngine.engineLocale", "cs");
Line Found : user_pref("ConduitEngine.enngineContextMenuLastCheckTime", "Mon Apr 04 2011 16:39:30 GMT+0200");
Line Found : user_pref("ConduitEngine.globalFirstTimeInfoLastCheckTime", "Mon Apr 04 2011 20:39:31 GMT+0200");
Line Found : user_pref("ConduitEngine.initDone", true);
Line Found : user_pref("ConduitEngine.isAppTrackingManagerOn", true);
Line Found : user_pref("ConduitEngine.usagesFlag", 2);
Line Found : user_pref("browser.search.defaultengine", "Ask.com");
Line Found : user_pref("browser.search.defaultenginename", "QIP Search");
Line Found : user_pref("browser.search.order.1", "Search Results");
Line Found : user_pref("browser.search.selectedEngine", "QIP Search");
Line Found : user_pref("browser.startup.homepage", "hxxp://qip.ru");
Line Found : user_pref("extensions.BabylonToolbar.admin", false);
Line Found : user_pref("extensions.BabylonToolbar.aflt", "babsst");
Line Found : user_pref("extensions.BabylonToolbar.babExt", "");
Line Found : user_pref("extensions.BabylonToolbar.babTrack", "affID=112060&tt=280612_6_");
Line Found : user_pref("extensions.BabylonToolbar.bbDpng", 11);
Line Found : user_pref("extensions.BabylonToolbar.dfltLng", "en");
Line Found : user_pref("extensions.BabylonToolbar.dfltSrch", true);
Line Found : user_pref("extensions.BabylonToolbar.hmpg", true);
Line Found : user_pref("extensions.BabylonToolbar.id", "40d26e8e00000000000000ff05642178");
Line Found : user_pref("extensions.BabylonToolbar.instlDay", "15522");
Line Found : user_pref("extensions.BabylonToolbar.instlRef", "sst");
Line Found : user_pref("extensions.BabylonToolbar.keyWordUrl", "hxxp://search.babylon.com/?affID=112060&tt=280612_6_&babsrc=KW_ss&mntrId=40d26e8e00000000000000ff05642178&q=");
Line Found : user_pref("extensions.BabylonToolbar.lastDP", 11);
Line Found : user_pref("extensions.BabylonToolbar.lastVrsnTs", "1.5.3.1713:31:23");
Line Found : user_pref("extensions.BabylonToolbar.mntrFFxVrsn", "4.0");
Line Found : user_pref("extensions.BabylonToolbar.newTab", false);
Line Found : user_pref("extensions.BabylonToolbar.newTabUrl", "hxxp://search.babylon.com/?affID=112060&tt=280612_6_&babsrc=NT_ss&mntrId=40d26e8e00000000000000ff05642178");
Line Found : user_pref("extensions.BabylonToolbar.noFFXTlbr", false);
Line Found : user_pref("extensions.BabylonToolbar.prdct", "BabylonToolbar");
Line Found : user_pref("extensions.BabylonToolbar.propectorlck", 128025259);
Line Found : user_pref("extensions.BabylonToolbar.prtkDS", 0);
Line Found : user_pref("extensions.BabylonToolbar.prtkHmpg", 0);
Line Found : user_pref("extensions.BabylonToolbar.prtnrId", "babylon");
Line Found : user_pref("extensions.BabylonToolbar.ptch_0717", true);
Line Found : user_pref("extensions.BabylonToolbar.smplGrp", "azb");
Line Found : user_pref("extensions.BabylonToolbar.srcExt", "ss");
Line Found : user_pref("extensions.BabylonToolbar.srchPrvdr", "Search the web (Babylon)");
Line Found : user_pref("extensions.BabylonToolbar.tlbrId", "base");
Line Found : user_pref("extensions.BabylonToolbar.vrsn", "1.5.3.17");
Line Found : user_pref("extensions.BabylonToolbar.vrsnTs", "1.5.3.1713:31:23");
Line Found : user_pref("extensions.BabylonToolbar.vrsni", "1.5.3.17");
Line Found : user_pref("extensions.BabylonToolbar_i.aflt", "babsst");
Line Found : user_pref("extensions.BabylonToolbar_i.babExt", "");
Line Found : user_pref("extensions.BabylonToolbar_i.babTrack", "affID=112060&tt=280612_6_");
Line Found : user_pref("extensions.BabylonToolbar_i.hardId", "40d26e8e00000000000000ff05642178");
Line Found : user_pref("extensions.BabylonToolbar_i.id", "40d26e8e00000000000000ff05642178");
Line Found : user_pref("extensions.BabylonToolbar_i.instlDay", "15522");
Line Found : user_pref("extensions.BabylonToolbar_i.instlRef", "sst");
Line Found : user_pref("extensions.BabylonToolbar_i.newTab", false);
Line Found : user_pref("extensions.BabylonToolbar_i.prdct", "BabylonToolbar");
Line Found : user_pref("extensions.BabylonToolbar_i.prtnrId", "babylon");
Line Found : user_pref("extensions.BabylonToolbar_i.smplGrp", "none");
Line Found : user_pref("extensions.BabylonToolbar_i.srcExt", "ss");
Line Found : user_pref("extensions.BabylonToolbar_i.tlbrId", "base");
Line Found : user_pref("extensions.BabylonToolbar_i.vrsn", "1.5.3.17");
Line Found : user_pref("extensions.BabylonToolbar_i.vrsnTs", "1.5.3.1713:31:23");
Line Found : user_pref("extensions.BabylonToolbar_i.vrsni", "1.5.3.17");
Line Found : user_pref("extensions.Zk5gD.scode", "(function(){if(window.self.location.hostname.indexOf(\"acebook.co\")>-1){return};var _wlst={lsKey:\"ssjsmn2ja8ddw2a\",get:function(b,a){if(3<b)return a(!1);var d=t[...]
Line Found : user_pref("extensions.enabledAddons", "{8675f4b3-2f19-11ed-2d6b-0800600c0a16}:1.0,engine@conduit.com:3.3.3.2,{8675f4b3-2f19-11ed-2d6b-0800600c0a17}:1.0,{8675f4b3-2f19-11ed-2d6b-0800600c0a18}:1.0,{8675[...]
Line Found : user_pref("extensions.w8lzAU.scode", "(function(){if(window.self.location.hostname.indexOf(\"acebook.co\")>-1){return};if(window.self.location.protocol.indexOf('hxxp')>-1 && window.self==window.top &&[...]
Line Found : user_pref("extensions.wrc.SearchRules.ask.com.style", ".WRCN {display:none} #yui-main .tsrc_vnru .title + .WRCN, #yui-main #teoma-results .title + .WRCN {display:inline !important; background: url(\"I[...]
Line Found : user_pref("extensions.wrc.SearchRules.ask.com.url", "^hxxp(s)?\\:\\/\\/(.+\\.)?ask\\.com\\/.*");
Line Found : user_pref("extensions.wrc.SearchRules.rambler.ru.style", ".WRCN {display:none} .search-results .title + .WRCN {display:inline !important; background: url(\"IMAGE\") right no-repeat}");
Line Found : user_pref("icqtoolbar.allowSendURL", false);
Line Found : user_pref("icqtoolbar.defSearchChange", true);
Line Found : user_pref("icqtoolbar.engineVerified", true);
Line Found : user_pref("icqtoolbar.facebookSmilesAddonShowedPopup", true);
Line Found : user_pref("icqtoolbar.firstTbRun", false);
Line Found : user_pref("icqtoolbar.geolastmodified", 1389465211);
Line Found : user_pref("icqtoolbar.history", "prci%C4%8Dky||hxxp%3A%2F%2Fsearch.icq.com%2Fsearch%2Fresults.php%3Fq%3DemailMilan.Pohodar||related%3Aemail.seznam.cz%2F||Seznamka%20Flirt||emailMilan.Pohodar||email||s[...]
Line Found : user_pref("icqtoolbar.hpChange", true);
Line Found : user_pref("icqtoolbar.icqgeo", 42);
Line Found : user_pref("icqtoolbar.installTime", "1359558856");
Line Found : user_pref("icqtoolbar.installsource", "1");
Line Found : user_pref("icqtoolbar.newtab_most_visited_state", "1");
Line Found : user_pref("icqtoolbar.newtab_recently_closed_state", "1");
Line Found : user_pref("icqtoolbar.newtab_state", "1");
Line Found : user_pref("icqtoolbar.numberOfSearches", 0);
Line Found : user_pref("icqtoolbar.previousFFVersion", "4.0");
Line Found : user_pref("icqtoolbar.skip_default_search", "no");
Line Found : user_pref("icqtoolbar.suggestions", false);
Line Found : user_pref("icqtoolbar.uniqueID", "126167846212616784521261682055168");
Line Found : user_pref("icqtoolbar.usageStatstTimestamp", 1389465214);
Line Found : user_pref("icqtoolbar.userEngineApproved", true);
Line Found : user_pref("icqtoolbar.userHpApproved", true);
Line Found : user_pref("icqtoolbar.version", "1.5.3");
Line Found : user_pref("icqtoolbar.voucherHideClicks", 0);
Line Found : user_pref("icqtoolbar.voucherMoreLinkClicks", 0);
Line Found : user_pref("icqtoolbar.voucherRedeemClicks", 0);
Line Found : user_pref("icqtoolbar.voucherWasShown", 0);
Line Found : user_pref("icqtoolbar.xmlEnableHomePageDsGuard", false);
Line Found : user_pref("icqtoolbar.xmlEnableSuggestions", false);
Line Found : user_pref("icqtoolbar.xmlLanguage", "cs");
Line Found : user_pref("keyword.URL", "hxxp://search.qip.ru/search?from=FF&query=");
Line Found : user_pref("sp4ff.sp.kissdelta.facebook.com", "d24a660b74268cb526395dd5cb1197a5");
-\\ Google Chrome v
[ File : C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\User Data\Default\preferences ]
Found : homepage
Found : search_url
*************************
AdwCleaner[R0].txt - [65240 octets] - [18/01/2014 16:12:45]
########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [65301 octets] ##########
# Updated 12/01/2014 by Xplode
# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)
# Username : XXX - XXX-07A3B26BAE8
# Running from : C:\Documents and Settings\XXX\Plocha\adwcleaner.exe
# Option : Scan
***** [ Services ] *****
Service Found : IBUpdaterService
Service Found : SearchAnonymizer
***** [ Files / Folders ] *****
File Found : C:\Documents and Settings\All Users\Plocha\iLivid.lnk
File Found : C:\Documents and Settings\XXX\Data aplikací\Microsoft\Internet Explorer\qipsearchbar.dll
File Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\{1FD91A9C-410C-4090-BBCC-55D3450EF433}
File Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\{EEE6C361-6118-11DC-9C72-001320C79847}.xpi
File Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\wtxpcom@mybrowserbar.com
File Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\Askcom.xml
File Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\daemon-search.xml
File Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\icqplugin.xml
File Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\icqplugin-1.xml
File Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\icqplugin-10.xml
File Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\icqplugin-11.xml
File Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\icqplugin-12.xml
File Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\icqplugin-13.xml
File Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\icqplugin-2.xml
File Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\icqplugin-3.xml
File Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\icqplugin-4.xml
File Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\icqplugin-5.xml
File Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\icqplugin-6.xml
File Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\icqplugin-7.xml
File Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\icqplugin-8.xml
File Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\icqplugin-9.xml
File Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\MyStart Search.xml
File Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\MyStart.xml
File Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\qip-search.xml
File Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\Search_Results.xml
File Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\SweetIm.xml
File Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\Sweetpacks Search.xml
File Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\web-search.xml
File Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\user.js
File Found : C:\Program Files\Mozilla Firefox\Components\AskHPRFF.js
File Found : C:\Program Files\Mozilla Firefox\Components\AskSearch.js
File Found : C:\Program Files\Mozilla Firefox\searchplugins\Babylon.xml
File Found : C:\Program Files\Mozilla Firefox\searchplugins\Search_Results.xml
File Found : C:\WINDOWS\system32\conduitEngine.tmp
File Found : C:\WINDOWS\system32\dmwu.exe
File Found : C:\WINDOWS\system32\ImhxxpComm.dll
Folder Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\{20a82645-c095-46ed-80e3-08825760534b}
Folder Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\{32a1fd71-835e-4b11-8e54-886fda0b4c89}
Folder Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\{32A1FD71-835E-4B11-8E54-886FDA0B4C89}
Folder Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\{6236BA26-C117-4007-928C-DE0716C7FA82}
Folder Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\{63414328-3ab4-2c84-6c41-5a473c4b2ff7}
Folder Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\{800B5000-A755-47E1-992B-48A1C1357F07}
Folder Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
Folder Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\{8675f4b3-2f19-11ed-2d6b-0800600c0a16}
Folder Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\{8675f4b3-2f19-11ed-2d6b-0800600c0a17}
Folder Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\{8675f4b3-2f19-11ed-2d6b-0800600c0a18}
Folder Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\{8675f4b3-2f19-11ed-2d6b-0800600c0a19}
Folder Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\{872b5b88-9db5-4310-bdd0-ac189557e5f5}
Folder Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\{872b5b88-9db5-4310-bdd0-ac189557e5f5}
Folder Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\{872b5b88-9db5-4310-bdd0-ac189557e5f5}
Folder Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\{B042753D-F57E-4e8e-A01B-7379A6D4CEFB}
Folder Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\{E9A1DEE0-C623-4439-8932-001E7D17607D}
Folder Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\{E9A1DEE0-C623-4439-8932-001E7D17607D}
Folder Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
Folder Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\engine@conduit.com
Folder Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\engine@conduit.com
Folder Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\ffxtlbr@babylon.com
Folder Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\ffxtlbr@babylon.com
Folder Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\ieeyj@aaiuyyau.edu
Folder Found : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\iyoiu@zrhrxkjq.edu
Folder Found : C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn
Folder Found : C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\ogccgbmabaphcakpiclgcnmcnimhokcj
Folder Found C:\Documents and Settings\All Users\Data aplikací\Babylon
Folder Found C:\Documents and Settings\All Users\Data aplikací\boost_interprocess
Folder Found C:\Documents and Settings\All Users\Data aplikací\ICQ\ICQToolbar
Folder Found C:\Documents and Settings\All Users\Data aplikací\surf And Keep
Folder Found C:\Documents and Settings\All Users\Data aplikací\SweetIM
Folder Found C:\Documents and Settings\All Users\Data aplikací\YoutubeAdblocker
Folder Found C:\Documents and Settings\NetworkService\Local Settings\Data aplikací\DVDVideoSoftTB
Folder Found C:\Documents and Settings\NetworkService\Local Settings\Data aplikací\DVDVideoSoftTB
Folder Found C:\Documents and Settings\XXX\Data aplikací\Babylon
Folder Found C:\Documents and Settings\XXX\Data aplikací\BabylonToolbar
Folder Found C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Conduit
Folder Found C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\ConduitEngine
Folder Found C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\CT2269050
Folder Found C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\ICQToolbarData
Folder Found C:\Documents and Settings\XXX\Data aplikací\OCS
Folder Found C:\Documents and Settings\XXX\Data aplikací\PriceGong
Folder Found C:\Documents and Settings\XXX\Data aplikací\searchquband
Folder Found C:\Documents and Settings\XXX\Local Settings\Data aplikací\Conduit
Folder Found C:\Documents and Settings\XXX\Local Settings\Data aplikací\ConduitEngine
Folder Found C:\Documents and Settings\XXX\Local Settings\Data aplikací\DVDVideoSoftTB
Folder Found C:\Documents and Settings\XXX\Local Settings\Data aplikací\DVDVideoSoftTB
Folder Found C:\Documents and Settings\XXX\Local Settings\Data aplikací\PackageAware
Folder Found C:\Documents and Settings\XXX\Nabídka Start\Programy\LSHunter.TV
Folder Found C:\Program Files\~BabylonToolbar
Folder Found C:\Program Files\Conduit
Folder Found C:\Program Files\ConduitEngine
Folder Found C:\Program Files\DVDVideoSoftTB
Folder Found C:\Program Files\DVDVideoSoftTB
Folder Found C:\Program Files\hotspot shield
Folder Found C:\Program Files\ICQ6Toolbar
Folder Found C:\Program Files\iLivid
Folder Found C:\Program Files\LSHunter.TV
Folder Found C:\Program Files\surf And Keep
Folder Found C:\Program Files\SweetIM
Folder Found C:\Program Files\YoutubeAdblocker
Folder Found C:\WINDOWS\Installer\{A0C9DF2B-89B5-4483-8983-18A68200F1B4}
Folder Found C:\WINDOWS\system32\ARFC
Folder Found C:\WINDOWS\system32\jmdp
Folder Found C:\WINDOWS\system32\WNLT
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Found : HKCU\Software\1ClickDownload
Key Found : HKCU\Software\AppDataLow\Software\Search Settings
Key Found : HKCU\Software\BabylonToolbar
Key Found : HKCU\Software\Conduit
Key Found : HKCU\Software\conduitEngine
Key Found : HKCU\Software\conduitEngine
Key Found : HKCU\Software\DataMngr
Key Found : HKCU\Software\DVDVideoSoftTB
Key Found : HKCU\Software\DVDVideoSoftTB
Key Found : HKCU\Software\ilivid
Key Found : HKCU\Software\IM
Key Found : HKCU\Software\ImInstaller
Key Found : HKCU\Software\InstallCore
Key Found : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\ICQ\ICQToolBar
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40B7-AC73-056A5EBA4A7E}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AD22EBAF-0D18-4FC7-90CC-5EA0ABBE9EB8}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{CF739809-1C6C-47C0-85B9-569DBB141420}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{855F3B16-6D32-4FE6-8A56-BBB695989046}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EEE6C35B-6118-11DC-9C72-001320C79847}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{F3FEE66E-E034-436A-86E4-9690573BEE8A}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{14CD42DD-ABCD-3586-DCAB-40E3693E3737}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2EECD738-5844-4A99-B4B6-146BF802613B}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3041D03E-FD4B-44E0-B742-2D9B88305F98}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{30F9B915-B755-4826-820B-08FBA6BD249D}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{30F9B915-B755-4826-820B-08FBA6BD249D}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{855F3B16-6D32-4FE6-8A56-BBB695989046}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{872B5B88-9DB5-4310-BDD0-AC189557E5F5}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{872B5B88-9DB5-4310-BDD0-AC189557E5F5}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{98889811-442D-49DD-99D7-DC866BE87DBC}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{98C400D1-B796-48DF-B8D2-81C57DE757C7}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{99079A25-328F-4BD4-BE04-00955ACAA0A7}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9D717F81-9148-4F12-8568-69135F087DB0}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35B-6118-11DC-9C72-001320C79847}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35C-6118-11DC-9C72-001320C79847}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F3FEE66E-E034-436A-86E4-9690573BEE8A}
Key Found : HKCU\Software\OCS
Key Found : HKCU\Software\PriceGong
Key Found : HKCU\Software\SmartBar
Key Found : HKCU\Software\wnlt
Key Found : HKCU\Software\YahooPartnerToolbar
Key Found : HKCU\Toolbar
Key Found : HKLM\SOFTWARE\14919ea49a8f3b4aa3cf1058d9a64cec
Key Found : HKLM\Software\AskBarDis
Key Found : HKLM\Software\Babylon
Key Found : HKLM\Software\BabylonToolbar
Key Found : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
Key Found : HKLM\SOFTWARE\Classes\AppID\{35C1605E-438B-4D64-AAB1-8885F097A9B1}
Key Found : HKLM\SOFTWARE\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Key Found : HKLM\SOFTWARE\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
Key Found : HKLM\SOFTWARE\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}
Key Found : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Key Found : HKLM\SOFTWARE\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Key Found : HKLM\SOFTWARE\Classes\AppID\escort.DLL
Key Found : HKLM\SOFTWARE\Classes\AppID\escortApp.DLL
Key Found : HKLM\SOFTWARE\Classes\AppID\escortEng.DLL
Key Found : HKLM\SOFTWARE\Classes\AppID\escorTlbr.DLL
Key Found : HKLM\SOFTWARE\Classes\AppID\esrv.EXE
Key Found : HKLM\SOFTWARE\Classes\AppID\GenericAskToolbar.DLL
Key Found : HKLM\SOFTWARE\Classes\b
Key Found : HKLM\SOFTWARE\Classes\Babylon.dskBnd
Key Found : HKLM\SOFTWARE\Classes\Babylon.dskBnd.1
Key Found : HKLM\SOFTWARE\Classes\bbylnApp.appCore
Key Found : HKLM\SOFTWARE\Classes\bbylnApp.appCore.1
Key Found : HKLM\SOFTWARE\Classes\bbylntlbr.bbylntlbrHlpr
Key Found : HKLM\SOFTWARE\Classes\bbylntlbr.bbylntlbrHlpr.1
Key Found : HKLM\SOFTWARE\Classes\CLSID\{0702A2B6-13AA-4090-9E01-BCDC85DD933F}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{08993A7C-E764-4172-9627-BFB5EA6897B2}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{128A6C66-AC6A-4617-8268-AB7F47B7215E}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{30F9B915-B755-4826-820B-08FBA6BD249D}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{30F9B915-B755-4826-820B-08FBA6BD249D}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{571715D7-3395-4DF0-B43C-784836209E60}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{622FD888-4E91-4D68-84D4-7262FD0811BF}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{7AE64690-65B7-4D6C-8EAE-63435DBF99E1}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{82AC53B4-164C-4B07-A016-437A8388B81A}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{872B5B88-9DB5-4310-BDD0-AC189557E5F5}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{872B5B88-9DB5-4310-BDD0-AC189557E5F5}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{98C400D1-B796-48DF-B8D2-81C57DE757C7}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{A4A0CB15-8465-4F58-A7E5-73084EA2A064}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{B0DE3308-5D5A-470D-81B9-634FC078393B}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{EEE6C35B-6118-11DC-9C72-001320C79847}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{EEE6C35C-6118-11DC-9C72-001320C79847}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{EEE6C35D-6118-11DC-9C72-001320C79847}
Key Found : HKLM\SOFTWARE\Classes\Conduit.Engine
Key Found : HKLM\SOFTWARE\Classes\escort.escortIEPane
Key Found : HKLM\SOFTWARE\Classes\escort.escortIEPane.1
Key Found : HKLM\SOFTWARE\Classes\escort.escrtBtn.1
Key Found : HKLM\SOFTWARE\Classes\esrv.BabylonESrvc
Key Found : HKLM\SOFTWARE\Classes\esrv.BabylonESrvc.1
Key Found : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd
Key Found : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd.1
Key Found : HKLM\SOFTWARE\Classes\ilivid
Key Found : HKLM\Software\Classes\Installer\Features\9EE58E3C298524145B73CBBED3CAC4D3
Key Found : HKLM\Software\Classes\Installer\Features\B2FD9C0A5B9838449838816A28001F4B
Key Found : HKLM\Software\Classes\Installer\Features\EB6AF8AEEB922FA4392548F13812E50B
Key Found : HKLM\Software\Classes\Installer\Products\9EE58E3C298524145B73CBBED3CAC4D3
Key Found : HKLM\Software\Classes\Installer\Products\B2FD9C0A5B9838449838816A28001F4B
Key Found : HKLM\Software\Classes\Installer\Products\EB6AF8AEEB922FA4392548F13812E50B
Key Found : HKLM\SOFTWARE\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}
Key Found : HKLM\SOFTWARE\Classes\Interface\{44C3C1DB-2127-433C-98EC-4C9412B5FC3A}
Key Found : HKLM\SOFTWARE\Classes\Interface\{4634804A-F0B0-4A74-A550-FC0EEF8A4362}
Key Found : HKLM\SOFTWARE\Classes\Interface\{4C07EA4F-5F52-4222-B170-4CD9ED33BAEA}
Key Found : HKLM\SOFTWARE\Classes\Interface\{4D5132DD-BB2B-4249-B5E0-D145A8C982E1}
Key Found : HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Key Found : HKLM\SOFTWARE\Classes\Interface\{706D4A4B-184A-4434-B331-296B07493D2D}
Key Found : HKLM\SOFTWARE\Classes\Interface\{8BE10F21-185F-4CA0-B789-9921674C3993}
Key Found : HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Key Found : HKLM\SOFTWARE\Classes\Interface\{94C0B25D-3359-4B10-B227-F96A77DB773F}
Key Found : HKLM\SOFTWARE\Classes\Interface\{A439801C-961D-452C-AB42-7848E9CBD289}
Key Found : HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Key Found : HKLM\SOFTWARE\Classes\Interface\{B0B75FBA-7288-4FD3-A9EB-7EE27FA65599}
Key Found : HKLM\SOFTWARE\Classes\Interface\{B173667F-8395-4317-8DD6-45AD1FE00047}
Key Found : HKLM\SOFTWARE\Classes\Interface\{B32672B3-F656-46E0-B584-FE61C0BB6037}
Key Found : HKLM\SOFTWARE\Classes\Interface\{BFE569F7-646C-4512-969B-9BE3E580D393}
Key Found : HKLM\SOFTWARE\Classes\Interface\{C2434722-5C85-4CA0-BA69-1B67E7AB3D68}
Key Found : HKLM\SOFTWARE\Classes\Interface\{C2996524-2187-441F-A398-CD6CB6B3D020}
Key Found : HKLM\SOFTWARE\Classes\Interface\{C44FEFF4-EF0C-4CF7-83D0-92B4266A32B9}
Key Found : HKLM\SOFTWARE\Classes\Interface\{C66F0B7A-BD67-4982-AF71-C6CA6E7F016F}
Key Found : HKLM\SOFTWARE\Classes\Interface\{E047E227-5342-4D94-80F7-CFB154BF55BD}
Key Found : HKLM\SOFTWARE\Classes\Interface\{E3F79BE9-24D4-4F4D-8C13-DF2C9899F82E}
Key Found : HKLM\SOFTWARE\Classes\Interface\{E77EEF95-3E83-4BB8-9C0D-4A5163774997}
Key Found : HKLM\SOFTWARE\Classes\Interface\{EAF749DC-CD87-4B04-B22A-D4AC3FBCB2BC}
Key Found : HKLM\SOFTWARE\Classes\Interface\{EEE6C358-6118-11DC-9C72-001320C79847}
Key Found : HKLM\SOFTWARE\Classes\Interface\{EEE6C359-6118-11DC-9C72-001320C79847}
Key Found : HKLM\SOFTWARE\Classes\Interface\{EEE6C35A-6118-11DC-9C72-001320C79847}
Key Found : HKLM\SOFTWARE\Classes\Interface\{F131923C-381D-4E4C-A472-4A17118FD742}
Key Found : HKLM\SOFTWARE\Classes\Interface\{F4EBB1E2-21F3-4786-8CF4-16EC5925867F}
Key Found : HKLM\SOFTWARE\Classes\MediaPlayer.GraphicsUtils
Key Found : HKLM\SOFTWARE\Classes\MediaPlayer.GraphicsUtils.1
Key Found : HKLM\SOFTWARE\Classes\MgMediaPlayer.GifAnimator
Key Found : HKLM\SOFTWARE\Classes\MgMediaPlayer.GifAnimator.1
Key Found : HKLM\SOFTWARE\Classes\Prod.cap
Key Found : HKLM\SOFTWARE\Classes\sim-packages
Key Found : HKLM\SOFTWARE\Classes\SWEETIE.IEToolbar
Key Found : HKLM\SOFTWARE\Classes\SWEETIE.IEToolbar.1
Key Found : HKLM\SOFTWARE\Classes\sweetim_urlsearchhook.toolbarurlsearchhook
Key Found : HKLM\SOFTWARE\Classes\sweetim_urlsearchhook.toolbarurlsearchhook.1
Key Found : HKLM\SOFTWARE\Classes\Toolbar.CT2224613
Key Found : HKLM\SOFTWARE\Classes\Toolbar.CT2269050
Key Found : HKLM\SOFTWARE\Classes\Toolbar3.sweetie
Key Found : HKLM\SOFTWARE\Classes\Toolbar3.sweetie.1
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{4D3B167E-5FD8-4276-8FD7-9DF19C1E4D19}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{EEE6C35E-6118-11DC-9C72-001320C79847}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{EEE6C35F-6118-11DC-9C72-001320C79847}
Key Found : HKLM\Software\Conduit
Key Found : HKLM\Software\conduitEngine
Key Found : HKLM\Software\conduitEngine
Key Found : HKLM\Software\dt soft\daemon tools toolbar
Key Found : HKLM\Software\DVDVideoSoftTB
Key Found : HKLM\Software\DVDVideoSoftTB
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\ogccgbmabaphcakpiclgcnmcnimhokcj
Key Found : HKLM\Software\ICQ\ICQToolbar
Key Found : HKLM\Software\ilivid
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{14CD42DD-ABCD-3586-DCAB-40E3693E3737}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{CF739809-1C6C-47C0-85B9-569DBB141420}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{4820778D-AB0D-6D18-C316-52A6A0E1D507}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{A0C9DF2B-89B5-4483-8983-18A68200F1B4}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{A35CA8FF-CB7D-8361-1CB9-83219CD11C78}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{c3e85ee9-5892-4142-b537-bceb3dac4c3d}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{ea8fa6be-29be-4af2-9352-841f83215eb0}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\1ClickDownload
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\DVDVideoSoftTB Toolbar
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\ilivid
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\SearchAnonymizer
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\wnlt
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\SweetIM.exe
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{872B5B88-9DB5-4310-BDD0-AC189557E5F5}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{872B5B88-9DB5-4310-BDD0-AC189557E5F5}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{98C400D1-B796-48DF-B8D2-81C57DE757C7}
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\789034A89BAC50E4782F0A7BDBF75632
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\A97CEC23332751B47BA4B95BAA50C9D0
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\00E944CB89111313EAF35A0553F547F9
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\02F47BF73B948514FAACADD8CBBDF37D
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\07D5290CDBDAE4242926B8E6CA650501
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\080D9F5E1E95FEE4794CE438E635239E
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\08E33F7B61DEFF24BB9673ED7D467636
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0E3D8A5B48622A445A7DF73FEFF32C3F
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0FF2AEFF45EEA0A48A4B33C1973B6094
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\12BF94BD06C95F343A77631402B9556A
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1A24B5BB8521B03E0C8D908F5ABC0AE6
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1E264E0A5959A1C46BA9175A878B12EA
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2124D8A8CF720FD44866190AF560228E
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\27A325ACED8CA4743A30127638591ADB
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2E6768B6932D112438F047C54D180635
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\305B09CE8C53A214DB58887F62F25536
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\34EDDB1BFB3A2D448845F3EFD0F15A43
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\350D17402BD84234EAF7D32F08172D7C
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\351716A953E21214898904032EAE2E81
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\397C771A7BCAC904697C3EC629ED33ED
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3EE8C5F419057E1478A654868CEE60B5
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\427EA997C413D1D47907CBFC7B2DB432
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4318DF19719275242801CBE292063A4C
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\45FC115D1FEAEF849A4E1610D6EC8BF0
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\46A5861A389ADB844AF89E31BC9DF0A1
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4735D908D66E1BA46B6C2D7185A12B2B
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\49B0E1A6FF50BBE4289E4E23DE6EA0C7
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4CCCAC049F34D0540AAC13011398BEDB
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\53F55AF3F4049ED3FA6EA6F88E414E24
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5C4389D0BFB302C479DE4178BD5D9EBA
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5D2B09BDEF4FE54418E6F3373CDBC7AC
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\61B65D3397A1FBF4CB1571B5E4F6B5B0
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\68E4BF4B11615E03C97732FD581AB607
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\68E8A05C60DD9254591DBD16C94EDDBF
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\697E782CF574CC34CBB9566440BA12BC
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\69D6A6B2ED56AF24EA6335EAD6E91CA4
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6AA0923513360135B272E8289C5F13FA
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6AE27A8613CF7EA4782F2886F67295E5
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\75D5168E5E176C24981B4E5DBD991078
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\76D8378E2DDAED3428720A631F6E3BF0
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7CE172051F585E04187BCB97570BFA74
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7FFA128C2B0FF414D805FC5627883401
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\86A901BA5265452499DCBF719C378EE3
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\86EDC790504E1834DBC20C9A04328FD2
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8724E58E6C7D00C48A0D4F3345EB2C26
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\88ABD1CD5C40EC84789A7F6EF86DAC5E
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8CE3DDAB2D152683FBCEB4866BCD2B0F
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\922525DCC5199162F8935747CA3D8E59
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\97C3D0F82E712E241A2F969F45E3351C
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\980289C22F80A7C4BB9323DC61255E4E
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\98CC8BF5A4A6E6C4ABF7051DDAB8B058
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9A001B259DB7D694E818BE29B973992C
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9A4B7EF3789F871419D9302583B20C15
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9E7F556BF224D804D96A96F0F6344789
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A189D17A469616C4688D23E192996267
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A6C53B0F76C44004A8F36716213017DB
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AB676B0E1B9EFA049B9F7DDDA9645734
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AF6CE16AFEA5C9A39B766468A8B35C21
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B31BBB0B825EDEF45AB0FE7099C68C81
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B471D8D7319336B4CA89374ED0D7B806
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B59F2D8189784CC46A4597F2842480B0
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BAE2EC163C6A68A48921573E0E7E199D
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BC30043663AA2CA4DA1DAA9CA5FDCC75
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BD746FB95FB8E5B45BF66BE54D5FD91F
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BF4F885EDEE45644EB1E0C99E0162399
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C06C6662FA5B04646829E4A460857770
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CCF399FCD6D2D3F46BF02A1378654FC9
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CE21F3FD57B244142880EF15A165A156
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CEEB3E14ABE8270419B0FD762E18F7C6
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D149C1355C98DE24E82CEFBD996FE06A
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D15DAF33C220F91468A1D7D57C31ACD7
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D3BA76A44C779424889063D5098ED2D6
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D6D0EB9FDBD90C04D92A7E729058F10D
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DB59FDB786388EA4D897F3EE715683AC
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DB8DAD19CFBCC2049A4477183787E8C5
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E1C820A74ED67374BA048B52CB3C3804
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E4748F9A4181FCE46A23C13B517B9420
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EC65F200D112357449C8B1BC3CFA03D0
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ED1B5E9A3BDB51349BF96E842C062D98
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F327D0C73C0973644A21E8CC852267A0
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F754C503375A13344B22388E18DFE87E
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FA96423FE2B98E248A3B23548D1E22D9
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FB1E44269B58F433A8C8E671E37CFDCF
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FDC83385E6C239F4C876A77A37DF581D
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FECBC2BC14DA6CD459BD59A041709836
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\9EE58E3C298524145B73CBBED3CAC4D3
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\B2FD9C0A5B9838449838816A28001F4B
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\EB6AF8AEEB922FA4392548F13812E50B
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{4820778D-AB0D-6D18-C316-52A6A0E1D507}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A0C9DF2B-89B5-4483-8983-18A68200F1B4}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A35CA8FF-CB7D-8361-1CB9-83219CD11C78}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{c3e85ee9-5892-4142-b537-bceb3dac4c3d}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{ea8fa6be-29be-4af2-9352-841f83215eb0}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\1ClickDownload
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\DVDVideoSoftTB Toolbar
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ilivid
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchAnonymizer
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\wnlt
Key Found : HKLM\Software\wnlt
Value Found : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]
Value Found : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{872B5B88-9DB5-4310-BDD0-AC189557E5F5}]
Value Found : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{872B5B88-9DB5-4310-BDD0-AC189557E5F5}]
Value Found : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Value Found : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{872B5B88-9DB5-4310-BDD0-AC189557E5F5}]
Value Found : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{872B5B88-9DB5-4310-BDD0-AC189557E5F5}]
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{872B5B88-9DB5-4310-BDD0-AC189557E5F5}]
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{872B5B88-9DB5-4310-BDD0-AC189557E5F5}]
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{98889811-442D-49DD-99D7-DC866BE87DBC}]
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{99079A25-328F-4BD4-BE04-00955ACAA0A7}]
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{855F3B16-6D32-4FE6-8A56-BBB695989046}]
Value Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [Ocs_SM]
Value Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [SweetIM]
Value Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [Sweetpacks Communicator]
Value Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs [C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgHelperApp.exe]
Value Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs [C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarProxy.dll]
Value Found : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [{20a82645-c095-46ed-80e3-08825760534b}]
Value Found : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List [C:\Program Files\SweetIM\Communicator\SweetPacksUpdateManager.exe]
Value Found : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List [C:\WINDOWS\system32\ARFC\wrtc.exe]
***** [ Browsers ] *****
-\\ Internet Explorer v7.0.6000.21364
Setting Found : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page] - hxxp://qip.ru
Setting Found : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search] - hxxp://search.icq.com/search/results.php?q={searchTerms}&ch_id=osd
Setting Found : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Page_URL] - hxxp://qip.ru
Setting Found : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Search_URL] - hxxp://search.qip.ru
Setting Found : HKCU\Software\Microsoft\Internet Explorer\Main [Search Page] - hxxp://search.qip.ru
Setting Found : HKCU\Software\Microsoft\Internet Explorer\Main [Search Bar] - hxxp://search.qip.ru/ie
Setting Found : HKCU\Software\Microsoft\Internet Explorer\Search [SearchAssistant] - hxxp://search.qip.ru/ie
-\\ Mozilla Firefox v4.0 (cs)
[ File : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\prefs.js ]
Line Found : user_pref("CT2269050..clientLogIsEnabled", true);
Line Found : user_pref("CT2269050..clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.asmx/ReportDiagnosticsEvent");
Line Found : user_pref("CT2269050..uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/RegisterToolbarUninstallation");
Line Found : user_pref("CT2269050.ALLOW_SHOWING_HIDDEN_TOOLBAR", false);
Line Found : user_pref("CT2269050.AboutPrivacyUrl", "hxxp://www.conduit.com/privacy/Default.aspx");
Line Found : user_pref("CT2269050.BrowserCompStateIsOpen_129681780741097243", true);
Line Found : user_pref("CT2269050.BrowserCompStateIsOpen_129853623028165512", true);
Line Found : user_pref("CT2269050.BrowserCompStateIsOpen_129881141106886992", true);
Line Found : user_pref("CT2269050.BrowserCompStateIsOpen_129977890572899945", true);
Line Found : user_pref("CT2269050.BrowserCompStateIsOpen_130100683276316706", true);
Line Found : user_pref("CT2269050.BrowserCompStateIsOpen_1359634297000", true);
Line Found : user_pref("CT2269050.CT2269050.lastNewTabSettings", "{\"isEnabled\":true,\"newTabUrl\":\"hxxp://search.conduit.com/?ctid=CT2269050&octid=CT2269050&SearchSource=15&CUI=SB_CUI&SSPV=EB_SSPV&Lay=1&UM=UM_I[...]
Line Found : user_pref("CT2269050.CTID", "CT2269050");
Line Found : user_pref("CT2269050.ConfigurationLastCheckTime", "Sat Jan 04 2014 00:14:23 GMT+0100");
Line Found : user_pref("CT2269050.CurrentServerDate", "4-1-2014");
Line Found : user_pref("CT2269050.DialogsAlignMode", "LTR");
Line Found : user_pref("CT2269050.DialogsGetterLastCheckTime", "Sun Dec 29 2013 19:00:46 GMT+0100");
Line Found : user_pref("CT2269050.DownloadReferralCookieData", "");
Line Found : user_pref("CT2269050.EMailNotifierPollDate", "Sat Mar 19 2011 21:08:30 GMT+0100");
Line Found : user_pref("CT2269050.FirstServerDate", "19-3-2011");
Line Found : user_pref("CT2269050.FirstTime", true);
Line Found : user_pref("CT2269050.FirstTimeFF3", true);
Line Found : user_pref("CT2269050.FirstTimeSettingsDone", true);
Line Found : user_pref("CT2269050.FixPageNotFoundErrors", true);
Line Found : user_pref("CT2269050.GroupingServerCheckInterval", 1440);
Line Found : user_pref("CT2269050.GroupingServiceUrl", "hxxp://grouping.services.conduit.com/");
Line Found : user_pref("CT2269050.HasUserGlobalKeys", true);
Line Found : user_pref("CT2269050.Initialize", true);
Line Found : user_pref("CT2269050.InitializeCommonPrefs", true);
Line Found : user_pref("CT2269050.InstallationAndCookieDataSentCount", 3);
Line Found : user_pref("CT2269050.InstallationType", "UnknownIntegration");
Line Found : user_pref("CT2269050.InstalledDate", "Sat Mar 19 2011 21:08:30 GMT+0100");
Line Found : user_pref("CT2269050.InvalidateCache", false);
Line Found : user_pref("CT2269050.IsGrouping", false);
Line Found : user_pref("CT2269050.IsMulticommunity", false);
Line Found : user_pref("CT2269050.IsOpenThankYouPage", false);
Line Found : user_pref("CT2269050.IsOpenUninstallPage", false);
Line Found : user_pref("CT2269050.LanguagePackLastCheckTime", "Sat Jan 04 2014 00:14:24 GMT+0100");
Line Found : user_pref("CT2269050.LanguagePackReloadIntervalMM", 1440);
Line Found : user_pref("CT2269050.LanguagePackServiceUrl", "hxxp://translation.users.conduit.com/Translation.ashx");
Line Found : user_pref("CT2269050.LastLogin_2.7.2.0", "Sat Mar 19 2011 21:08:30 GMT+0100");
Line Found : user_pref("CT2269050.LastLogin_3.12.0.7", "Mon Apr 23 2012 15:59:55 GMT+0200");
Line Found : user_pref("CT2269050.LastLogin_3.12.2.3", "Wed May 30 2012 16:31:26 GMT+0200");
Line Found : user_pref("CT2269050.LastLogin_3.13.0.6", "Thu Jun 28 2012 21:24:27 GMT+0200");
Line Found : user_pref("CT2269050.LastLogin_3.14.1.0", "Fri Aug 24 2012 23:40:31 GMT+0200");
Line Found : user_pref("CT2269050.LastLogin_3.15.1.0", "Sun Mar 17 2013 10:40:35 GMT+0100");
Line Found : user_pref("CT2269050.LastLogin_3.18.0.7", "Mon Jul 15 2013 18:46:46 GMT+0200");
Line Found : user_pref("CT2269050.LastLogin_3.19.0.3", "Tue Jul 30 2013 13:36:52 GMT+0200");
Line Found : user_pref("CT2269050.LastLogin_3.20.0.4", "Sat Jan 04 2014 00:14:23 GMT+0100");
Line Found : user_pref("CT2269050.LatestVersion", "3.20.0.4");
Line Found : user_pref("CT2269050.Locale", "en");
Line Found : user_pref("CT2269050.LoginCache", 4);
Line Found : user_pref("CT2269050.MCDetectTooltipHeight", "83");
Line Found : user_pref("CT2269050.MCDetectTooltipUrl", "hxxp://@EB_INSTALL_LINK@/rank/tooltip/?version=1");
Line Found : user_pref("CT2269050.MCDetectTooltipWidth", "295");
Line Found : user_pref("CT2269050.MyStuffEnabledAtInstallation", true);
Line Found : user_pref("CT2269050.RadioIsPodcast", false);
Line Found : user_pref("CT2269050.RadioLastCheckTime", "Sat Mar 19 2011 21:08:31 GMT+0100");
Line Found : user_pref("CT2269050.RadioLastUpdateIPServer", "3");
Line Found : user_pref("CT2269050.RadioLastUpdateServer", "129132338014870000");
Line Found : user_pref("CT2269050.RadioMediaID", "12473383");
Line Found : user_pref("CT2269050.RadioMediaType", "Media Player");
Line Found : user_pref("CT2269050.RadioMenuSelectedID", "EBRadioMenu_CT226905012473383");
Line Found : user_pref("CT2269050.RadioStationName", "Hotmix%20108");
Line Found : user_pref("CT2269050.RadioStationURL", "hxxp://67.202.67.18:8082");
Line Found : user_pref("CT2269050.SearchAPILastCheckTime", "Sat Jan 04 2014 00:14:23 GMT+0100");
Line Found : user_pref("CT2269050.SearchEngine", "Search||hxxp://search.conduit.com/Results.aspx?q=UCM_SEARCH_TERM&ctid=CT2269050&octid=EB_ORIGINAL_CTID&SearchSource=1");
Line Found : user_pref("CT2269050.SearchFromAddressBarIsInit", true);
Line Found : user_pref("CT2269050.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2269050&q=");
Line Found : user_pref("CT2269050.SearchInNewTabEnabled", true);
Line Found : user_pref("CT2269050.SearchInNewTabIntervalMM", 1440);
Line Found : user_pref("CT2269050.SearchInNewTabLastCheckTime", "Tue Jul 30 2013 13:36:54 GMT+0200");
Line Found : user_pref("CT2269050.SearchInNewTabServiceUrl", "hxxp://newtab.conduit-hosting.com/newtab/?ctid=EB_TOOLBAR_ID&UM=UM_ID");
Line Found : user_pref("CT2269050.SearchInNewTabURLFromSearchAPI", "hxxp://search.conduit.com/?ctid=CT2269050&octid=CT2269050&SearchSource=15&CUI=SB_CUI&SSPV=EB_SSPV&Lay=1&UM=UM_ID");
Line Found : user_pref("CT2269050.SearchInNewTabUsageUrl", "hxxp://Usage.Hosting.conduit-services.com/UsageService.asmx/UsersRequests?ctid=EB_TOOLBAR_ID");
Line Found : user_pref("CT2269050.SearchProtectorToolbarDisabled", true);
Line Found : user_pref("CT2269050.ServiceMapLastCheckTime", "Sat Jan 04 2014 00:14:23 GMT+0100");
Line Found : user_pref("CT2269050.SettingsCheckIntervalMin", 120);
Line Found : user_pref("CT2269050.SettingsLastCheckTime", "Sat Jan 04 2014 00:14:21 GMT+0100");
Line Found : user_pref("CT2269050.SettingsLastUpdate", "1388396832");
Line Found : user_pref("CT2269050.ThirdPartyComponentsInterval", 504);
Line Found : user_pref("CT2269050.ThirdPartyComponentsLastCheck", "Sat Mar 19 2011 21:08:29 GMT+0100");
Line Found : user_pref("CT2269050.ThirdPartyComponentsLastUpdate", "1246790578");
Line Found : user_pref("CT2269050.ToolbarDisabled", true);
Line Found : user_pref("CT2269050.ToolbarShrinkedFromSetup", false);
Line Found : user_pref("CT2269050.TrusteLinkUrl", "hxxp://trust.conduit.com/CT2269050");
Line Found : user_pref("CT2269050.TrustedApiDomains", "conduit.com,conduit-hosting.com,conduit-services.com,client.conduit-storage.com,OurToolbar.com,CommunityToolbars.com,ForumToolbar.com,MyBlogToolbar.com,MyCity[...]
Line Found : user_pref("CT2269050.UserID", "UN96468876364014428");
Line Found : user_pref("CT2269050.WeatherNetwork", "");
Line Found : user_pref("CT2269050.WeatherPollDate", "Sat Mar 19 2011 21:08:31 GMT+0100");
Line Found : user_pref("CT2269050.WeatherUnit", "C");
Line Found : user_pref("CT2269050.alertChannelId", "666138");
Line Found : user_pref("CT2269050.clientLogIsEnabled", true);
Line Found : user_pref("CT2269050.clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.asmx/ReportDiagnosticsEvent");
Line Found : user_pref("CT2269050.countryCode", "CZ");
Line Found : user_pref("CT2269050.generalConfigFromLogin", "{\"ApiMaxAlerts\":\"12\",\"SocialDomains\":\"social.conduit.com;apps.conduit.com;services.apps.conduit.com\",\"AppsDetectionUrlPattern\":\"hxxp://appdown[...]
Line Found : user_pref("CT2269050.homepageProtectorEnableByLogin", true);
Line Found : user_pref("CT2269050.initDone", true);
Line Found : user_pref("CT2269050.myStuffEnabled", true);
Line Found : user_pref("CT2269050.myStuffPublihserMinWidth", 400);
Line Found : user_pref("CT2269050.myStuffSearchUrl", "hxxp://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOrigin=29&ctid=EB_TOOLBAR_ID&octid=EB_ORIGINAL_CTID");
Line Found : user_pref("CT2269050.myStuffServiceIntervalMM", 1440);
Line Found : user_pref("CT2269050.myStuffServiceUrl", "hxxp://mystuff.conduit-services.com/MyStuffService.ashx?ComponentId=EB_MY_STUFF_INSTANCE_GUID&lut=EB_MY_STUFF_LUT");
Line Found : user_pref("CT2269050.revertSettingsEnabled", true);
Line Found : user_pref("CT2269050.searchProtectorDialogDelayInSec", 10);
Line Found : user_pref("CT2269050.searchProtectorEnableByLogin", true);
Line Found : user_pref("CT2269050.testingCtid", "");
Line Found : user_pref("CT2269050.toolbarAppMetaDataLastCheckTime", "Sat Jan 04 2014 00:14:24 GMT+0100");
Line Found : user_pref("CT2269050.uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/RegisterToolbarUninstallation");
Line Found : user_pref("CT2269050.usagesFlag", 2);
Line Found : user_pref("CommunityToolbar.ETag.hxxp://Settings.toolbar.search.conduit.com/root/CT2269050/CT2269050", "\"72b79788f1918c910c98bb0cc0fc29473\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/909619/905414/CZ", "\"0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-services.com/?ctid=CT2269050", "\"1365594729\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.alert.conduit-services.com/alert/dlg.pkg", "\"8076e3ce381dcd1:0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.engine.conduit-services.com/DLG.pkg?ver=3.3.3.2", "\"0652eeacc6cb1:0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.12.0.7", "\"4ead38b3e6bcd1:0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.12.2.3", "\"4ead38b3e6bcd1:0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.13.0.6", "\"0d648794549cd1:0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.14.1.0", "\"0e0a4327275cd1:0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.15.1.0", "\"0343677cfb1cd1:0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.18.0.7", "\"0343677cfb1cd1:0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.19.0.3", "\"2a1a0d7b586ce1:0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.20.0.4", "\"9f8d2729abc2ce1:0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://ip2location.conduit-services.com/ip/?ctid=CT2269050&ver=3.20.0.4&client=ToolbarConfiguration", "\"badf7f81a956c80178572e48829d3f0d\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/Toolbar/?ownerId=CT2269050", "\"52c3f1538cb4af4ada257fcbc6b15d49\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services.com/?browser=FF&lut=0", "634356118310000000");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-services.com/?locale=EB_LOCALE", "\"f6726278d87c7067bebc10b6654cab6b\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-services.com/?locale=en", "\"015abb9b447624efd4ea2ce0c49b3f41\"");
Line Found : user_pref("CommunityToolbar.EngineHiddenByUser", true);
Line Found : user_pref("CommunityToolbar.EngineOwner", "ConduitEngine");
Line Found : user_pref("CommunityToolbar.EngineOwnerGuid", "engine@conduit.com");
Line Found : user_pref("CommunityToolbar.EngineOwnerToolbarId", "conduitengine");
Line Found : user_pref("CommunityToolbar.IsEngineShown", false);
Line Found : user_pref("CommunityToolbar.IsMyStuffImportedToEngine", true);
Line Found : user_pref("CommunityToolbar.OriginalEngineOwner", "ConduitEngine");
Line Found : user_pref("CommunityToolbar.OriginalEngineOwnerGuid", "engine@conduit.com");
Line Found : user_pref("CommunityToolbar.OriginalEngineOwnerToolbarId", "conduitengine");
Line Found : user_pref("CommunityToolbar.ToolbarsList", "CT2269050,ConduitEngine");
Line Found : user_pref("CommunityToolbar.ToolbarsList2", "CT2269050");
Line Found : user_pref("CommunityToolbar.alert.alertDialogsGetterLastCheckTime", "Mon Jul 30 2012 14:32:29 GMT+0200");
Line Found : user_pref("CommunityToolbar.alert.alertInfoInterval", 1440);
Line Found : user_pref("CommunityToolbar.alert.alertInfoLastCheckTime", "Sat Dec 21 2013 17:42:02 GMT+0100");
Line Found : user_pref("CommunityToolbar.alert.clientsServerUrl", "hxxp://alert.client.conduit.com");
Line Found : user_pref("CommunityToolbar.alert.locale", "en");
Line Found : user_pref("CommunityToolbar.alert.loginIntervalMin", 1440);
Line Found : user_pref("CommunityToolbar.alert.loginLastCheckTime", "Sat Jan 11 2014 19:33:28 GMT+0100");
Line Found : user_pref("CommunityToolbar.alert.loginLastUpdateTime", "1313487611");
Line Found : user_pref("CommunityToolbar.alert.messageShowTimeSec", 20);
Line Found : user_pref("CommunityToolbar.alert.servicesServerUrl", "hxxp://alert.services.conduit.com");
Line Found : user_pref("CommunityToolbar.alert.showTrayIcon", false);
Line Found : user_pref("CommunityToolbar.alert.userCloseIntervalMin", 300);
Line Found : user_pref("CommunityToolbar.alert.userId", "2c966f0f-1109-4d16-abc9-9275a5fee531");
Line Found : user_pref("CommunityToolbar.globalUserId", "0b0fbbdf-c779-4b42-88a2-7859d141bcbe");
Line Found : user_pref("CommunityToolbar.isAlertUrlAddedToFeedItemTable", true);
Line Found : user_pref("CommunityToolbar.isClickActionAddedToFeedItemTable", true);
Line Found : user_pref("ConduitEngine.AppTrackingLastCheckTime", "Sat Dec 21 2013 17:42:03 GMT+0100");
Line Found : user_pref("ConduitEngine.CTID", "ConduitEngine");
Line Found : user_pref("ConduitEngine.DialogsGetterLastCheckTime", "Mon Apr 04 2011 16:39:30 GMT+0200");
Line Found : user_pref("ConduitEngine.FirstServerDate", "04/04/2011 17");
Line Found : user_pref("ConduitEngine.FirstTime", true);
Line Found : user_pref("ConduitEngine.FirstTimeFF3", true);
Line Found : user_pref("ConduitEngine.HasUserGlobalKeys", true);
Line Found : user_pref("ConduitEngine.Initialize", true);
Line Found : user_pref("ConduitEngine.InitializeCommonPrefs", true);
Line Found : user_pref("ConduitEngine.InstalledDate", "Mon Apr 04 2011 16:39:30 GMT+0200");
Line Found : user_pref("ConduitEngine.IsMulticommunity", false);
Line Found : user_pref("ConduitEngine.IsOpenThankYouPage", false);
Line Found : user_pref("ConduitEngine.IsOpenUninstallPage", true);
Line Found : user_pref("ConduitEngine.LanguagePackLastCheckTime", "Mon Apr 04 2011 16:39:30 GMT+0200");
Line Found : user_pref("ConduitEngine.LastLogin_3.3.3.2", "Mon Apr 04 2011 16:39:30 GMT+0200");
Line Found : user_pref("ConduitEngine.SearchFromAddressBarIsInit", true);
Line Found : user_pref("ConduitEngine.SettingsLastCheckTime", "Mon Apr 04 2011 16:39:30 GMT+0200");
Line Found : user_pref("ConduitEngine.UserID", "UN08166318491654612");
Line Found : user_pref("ConduitEngine.componentAlertEnabled", false);
Line Found : user_pref("ConduitEngine.engineLocale", "cs");
Line Found : user_pref("ConduitEngine.enngineContextMenuLastCheckTime", "Mon Apr 04 2011 16:39:30 GMT+0200");
Line Found : user_pref("ConduitEngine.globalFirstTimeInfoLastCheckTime", "Mon Apr 04 2011 20:39:31 GMT+0200");
Line Found : user_pref("ConduitEngine.initDone", true);
Line Found : user_pref("ConduitEngine.isAppTrackingManagerOn", true);
Line Found : user_pref("ConduitEngine.usagesFlag", 2);
Line Found : user_pref("browser.search.defaultengine", "Ask.com");
Line Found : user_pref("browser.search.defaultenginename", "QIP Search");
Line Found : user_pref("browser.search.order.1", "Search Results");
Line Found : user_pref("browser.search.selectedEngine", "QIP Search");
Line Found : user_pref("browser.startup.homepage", "hxxp://qip.ru");
Line Found : user_pref("extensions.BabylonToolbar.admin", false);
Line Found : user_pref("extensions.BabylonToolbar.aflt", "babsst");
Line Found : user_pref("extensions.BabylonToolbar.babExt", "");
Line Found : user_pref("extensions.BabylonToolbar.babTrack", "affID=112060&tt=280612_6_");
Line Found : user_pref("extensions.BabylonToolbar.bbDpng", 11);
Line Found : user_pref("extensions.BabylonToolbar.dfltLng", "en");
Line Found : user_pref("extensions.BabylonToolbar.dfltSrch", true);
Line Found : user_pref("extensions.BabylonToolbar.hmpg", true);
Line Found : user_pref("extensions.BabylonToolbar.id", "40d26e8e00000000000000ff05642178");
Line Found : user_pref("extensions.BabylonToolbar.instlDay", "15522");
Line Found : user_pref("extensions.BabylonToolbar.instlRef", "sst");
Line Found : user_pref("extensions.BabylonToolbar.keyWordUrl", "hxxp://search.babylon.com/?affID=112060&tt=280612_6_&babsrc=KW_ss&mntrId=40d26e8e00000000000000ff05642178&q=");
Line Found : user_pref("extensions.BabylonToolbar.lastDP", 11);
Line Found : user_pref("extensions.BabylonToolbar.lastVrsnTs", "1.5.3.1713:31:23");
Line Found : user_pref("extensions.BabylonToolbar.mntrFFxVrsn", "4.0");
Line Found : user_pref("extensions.BabylonToolbar.newTab", false);
Line Found : user_pref("extensions.BabylonToolbar.newTabUrl", "hxxp://search.babylon.com/?affID=112060&tt=280612_6_&babsrc=NT_ss&mntrId=40d26e8e00000000000000ff05642178");
Line Found : user_pref("extensions.BabylonToolbar.noFFXTlbr", false);
Line Found : user_pref("extensions.BabylonToolbar.prdct", "BabylonToolbar");
Line Found : user_pref("extensions.BabylonToolbar.propectorlck", 128025259);
Line Found : user_pref("extensions.BabylonToolbar.prtkDS", 0);
Line Found : user_pref("extensions.BabylonToolbar.prtkHmpg", 0);
Line Found : user_pref("extensions.BabylonToolbar.prtnrId", "babylon");
Line Found : user_pref("extensions.BabylonToolbar.ptch_0717", true);
Line Found : user_pref("extensions.BabylonToolbar.smplGrp", "azb");
Line Found : user_pref("extensions.BabylonToolbar.srcExt", "ss");
Line Found : user_pref("extensions.BabylonToolbar.srchPrvdr", "Search the web (Babylon)");
Line Found : user_pref("extensions.BabylonToolbar.tlbrId", "base");
Line Found : user_pref("extensions.BabylonToolbar.vrsn", "1.5.3.17");
Line Found : user_pref("extensions.BabylonToolbar.vrsnTs", "1.5.3.1713:31:23");
Line Found : user_pref("extensions.BabylonToolbar.vrsni", "1.5.3.17");
Line Found : user_pref("extensions.BabylonToolbar_i.aflt", "babsst");
Line Found : user_pref("extensions.BabylonToolbar_i.babExt", "");
Line Found : user_pref("extensions.BabylonToolbar_i.babTrack", "affID=112060&tt=280612_6_");
Line Found : user_pref("extensions.BabylonToolbar_i.hardId", "40d26e8e00000000000000ff05642178");
Line Found : user_pref("extensions.BabylonToolbar_i.id", "40d26e8e00000000000000ff05642178");
Line Found : user_pref("extensions.BabylonToolbar_i.instlDay", "15522");
Line Found : user_pref("extensions.BabylonToolbar_i.instlRef", "sst");
Line Found : user_pref("extensions.BabylonToolbar_i.newTab", false);
Line Found : user_pref("extensions.BabylonToolbar_i.prdct", "BabylonToolbar");
Line Found : user_pref("extensions.BabylonToolbar_i.prtnrId", "babylon");
Line Found : user_pref("extensions.BabylonToolbar_i.smplGrp", "none");
Line Found : user_pref("extensions.BabylonToolbar_i.srcExt", "ss");
Line Found : user_pref("extensions.BabylonToolbar_i.tlbrId", "base");
Line Found : user_pref("extensions.BabylonToolbar_i.vrsn", "1.5.3.17");
Line Found : user_pref("extensions.BabylonToolbar_i.vrsnTs", "1.5.3.1713:31:23");
Line Found : user_pref("extensions.BabylonToolbar_i.vrsni", "1.5.3.17");
Line Found : user_pref("extensions.Zk5gD.scode", "(function(){if(window.self.location.hostname.indexOf(\"acebook.co\")>-1){return};var _wlst={lsKey:\"ssjsmn2ja8ddw2a\",get:function(b,a){if(3<b)return a(!1);var d=t[...]
Line Found : user_pref("extensions.enabledAddons", "{8675f4b3-2f19-11ed-2d6b-0800600c0a16}:1.0,engine@conduit.com:3.3.3.2,{8675f4b3-2f19-11ed-2d6b-0800600c0a17}:1.0,{8675f4b3-2f19-11ed-2d6b-0800600c0a18}:1.0,{8675[...]
Line Found : user_pref("extensions.w8lzAU.scode", "(function(){if(window.self.location.hostname.indexOf(\"acebook.co\")>-1){return};if(window.self.location.protocol.indexOf('hxxp')>-1 && window.self==window.top &&[...]
Line Found : user_pref("extensions.wrc.SearchRules.ask.com.style", ".WRCN {display:none} #yui-main .tsrc_vnru .title + .WRCN, #yui-main #teoma-results .title + .WRCN {display:inline !important; background: url(\"I[...]
Line Found : user_pref("extensions.wrc.SearchRules.ask.com.url", "^hxxp(s)?\\:\\/\\/(.+\\.)?ask\\.com\\/.*");
Line Found : user_pref("extensions.wrc.SearchRules.rambler.ru.style", ".WRCN {display:none} .search-results .title + .WRCN {display:inline !important; background: url(\"IMAGE\") right no-repeat}");
Line Found : user_pref("icqtoolbar.allowSendURL", false);
Line Found : user_pref("icqtoolbar.defSearchChange", true);
Line Found : user_pref("icqtoolbar.engineVerified", true);
Line Found : user_pref("icqtoolbar.facebookSmilesAddonShowedPopup", true);
Line Found : user_pref("icqtoolbar.firstTbRun", false);
Line Found : user_pref("icqtoolbar.geolastmodified", 1389465211);
Line Found : user_pref("icqtoolbar.history", "prci%C4%8Dky||hxxp%3A%2F%2Fsearch.icq.com%2Fsearch%2Fresults.php%3Fq%3DemailMilan.Pohodar||related%3Aemail.seznam.cz%2F||Seznamka%20Flirt||emailMilan.Pohodar||email||s[...]
Line Found : user_pref("icqtoolbar.hpChange", true);
Line Found : user_pref("icqtoolbar.icqgeo", 42);
Line Found : user_pref("icqtoolbar.installTime", "1359558856");
Line Found : user_pref("icqtoolbar.installsource", "1");
Line Found : user_pref("icqtoolbar.newtab_most_visited_state", "1");
Line Found : user_pref("icqtoolbar.newtab_recently_closed_state", "1");
Line Found : user_pref("icqtoolbar.newtab_state", "1");
Line Found : user_pref("icqtoolbar.numberOfSearches", 0);
Line Found : user_pref("icqtoolbar.previousFFVersion", "4.0");
Line Found : user_pref("icqtoolbar.skip_default_search", "no");
Line Found : user_pref("icqtoolbar.suggestions", false);
Line Found : user_pref("icqtoolbar.uniqueID", "126167846212616784521261682055168");
Line Found : user_pref("icqtoolbar.usageStatstTimestamp", 1389465214);
Line Found : user_pref("icqtoolbar.userEngineApproved", true);
Line Found : user_pref("icqtoolbar.userHpApproved", true);
Line Found : user_pref("icqtoolbar.version", "1.5.3");
Line Found : user_pref("icqtoolbar.voucherHideClicks", 0);
Line Found : user_pref("icqtoolbar.voucherMoreLinkClicks", 0);
Line Found : user_pref("icqtoolbar.voucherRedeemClicks", 0);
Line Found : user_pref("icqtoolbar.voucherWasShown", 0);
Line Found : user_pref("icqtoolbar.xmlEnableHomePageDsGuard", false);
Line Found : user_pref("icqtoolbar.xmlEnableSuggestions", false);
Line Found : user_pref("icqtoolbar.xmlLanguage", "cs");
Line Found : user_pref("keyword.URL", "hxxp://search.qip.ru/search?from=FF&query=");
Line Found : user_pref("sp4ff.sp.kissdelta.facebook.com", "d24a660b74268cb526395dd5cb1197a5");
-\\ Google Chrome v
[ File : C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\User Data\Default\preferences ]
Found : homepage
Found : search_url
*************************
AdwCleaner[R0].txt - [65240 octets] - [18/01/2014 16:12:45]
########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [65301 octets] ##########
Re: Vyskakující reklamy apod.
Znovu ukoncete vsechny programy a spustte AdwCleaner.Tentokrat kliknete na Clean
Program zacne pracovat (muze dojit k restartu pc) a vyplivne dalsi log (pripadne bude zde C:\AdwCleaner\AdwCleaner [S?].txt ). Ten mi sem zase zkopirujte.
Udelejte !!!kompletni!!! kontrolu s MBAM http://forum.viry.cz/viewtopic.php?f=29&t=115222 a dejte sem vysledky. Predem nic nemazte, miva obcas falesne detekcePokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Vyskakující reklamy apod.
Tak konečně to dojelo, tady to je:
# AdwCleaner v3.017 - Report created 18/01/2014 at 16:40:48
# Updated 12/01/2014 by Xplode
# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)
# Username : XXX - XXX-07A3B26BAE8
# Running from : C:\Documents and Settings\XXX\Plocha\adwcleaner.exe
# Option : Clean
***** [ Services ] *****
[#] Service Deleted : IBUpdaterService
Service Deleted : SearchAnonymizer
***** [ Files / Folders ] *****
Folder Deleted : C:\Documents and Settings\All Users\Data aplikací\Babylon
Folder Deleted : C:\Documents and Settings\All Users\Data aplikací\boost_interprocess
Folder Deleted : C:\Documents and Settings\All Users\Data aplikací\ICQ\ICQToolbar
Folder Deleted : C:\Documents and Settings\All Users\Data aplikací\SweetIM
Folder Deleted : C:\Documents and Settings\All Users\Data aplikací\YoutubeAdblocker
[!] Folder Deleted : C:\Documents and Settings\All Users\Data aplikací\surf And Keep
Folder Deleted : C:\Program Files\~BabylonToolbar
Folder Deleted : C:\Program Files\Conduit
Folder Deleted : C:\Program Files\ConduitEngine
Folder Deleted : C:\Program Files\DVDVideoSoftTB
Folder Deleted : C:\Program Files\hotspot shield
Folder Deleted : C:\Program Files\ICQ6Toolbar
Folder Deleted : C:\Program Files\iLivid
Folder Deleted : C:\Program Files\LSHunter.TV
Folder Deleted : C:\Program Files\SweetIM
Folder Deleted : C:\Program Files\YoutubeAdblocker
Folder Deleted : C:\Program Files\surf And Keep
Folder Deleted : C:\WINDOWS\Installer\{A0C9DF2B-89B5-4483-8983-18A68200F1B4}
Folder Deleted : C:\WINDOWS\system32\ARFC
Folder Deleted : C:\WINDOWS\system32\jmdp
Folder Deleted : C:\WINDOWS\system32\WNLT
Folder Deleted : C:\Documents and Settings\NetworkService\Local Settings\Data aplikací\DVDVideoSoftTB
Folder Deleted : C:\Documents and Settings\XXX\Local Settings\Data aplikací\Conduit
Folder Deleted : C:\Documents and Settings\XXX\Local Settings\Data aplikací\ConduitEngine
Folder Deleted : C:\Documents and Settings\XXX\Local Settings\Data aplikací\DVDVideoSoftTB
Folder Deleted : C:\Documents and Settings\XXX\Local Settings\Data aplikací\PackageAware
Folder Deleted : C:\Documents and Settings\XXX\Data aplikací\Babylon
Folder Deleted : C:\Documents and Settings\XXX\Data aplikací\BabylonToolbar
Folder Deleted : C:\Documents and Settings\XXX\Data aplikací\OCS
Folder Deleted : C:\Documents and Settings\XXX\Data aplikací\PriceGong
Folder Deleted : C:\Documents and Settings\XXX\Data aplikací\searchquband
Folder Deleted : C:\Documents and Settings\XXX\Nabídka Start\Programy\LSHunter.TV
Folder Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Conduit
Folder Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\ConduitEngine
Folder Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\ICQToolbarData
Folder Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\CT2269050
Folder Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\{32A1FD71-835E-4B11-8E54-886FDA0B4C89}
Folder Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\{800B5000-A755-47E1-992B-48A1C1357F07}
Folder Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\{872b5b88-9db5-4310-bdd0-ac189557e5f5}
Folder Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\{E9A1DEE0-C623-4439-8932-001E7D17607D}
Folder Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\engine@conduit.com
Folder Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\ffxtlbr@babylon.com
Folder Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\ieeyj@aaiuyyau.edu
Folder Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\iyoiu@zrhrxkjq.edu
Folder Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\{20a82645-c095-46ed-80e3-08825760534b}
Folder Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\{6236BA26-C117-4007-928C-DE0716C7FA82}
Folder Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\{63414328-3ab4-2c84-6c41-5a473c4b2ff7}
Folder Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\{8675f4b3-2f19-11ed-2d6b-0800600c0a16}
Folder Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\{8675f4b3-2f19-11ed-2d6b-0800600c0a17}
Folder Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\{8675f4b3-2f19-11ed-2d6b-0800600c0a18}
Folder Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\{8675f4b3-2f19-11ed-2d6b-0800600c0a19}
Folder Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\{B042753D-F57E-4e8e-A01B-7379A6D4CEFB}
Folder Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
[!] Folder Deleted : C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn
[!] Folder Deleted : C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\ogccgbmabaphcakpiclgcnmcnimhokcj
File Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\{1FD91A9C-410C-4090-BBCC-55D3450EF433}
File Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\{EEE6C361-6118-11DC-9C72-001320C79847}.xpi
File Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\wtxpcom@mybrowserbar.com
File Deleted : C:\Documents and Settings\All Users\Plocha\iLivid.lnk
File Deleted : C:\WINDOWS\system32\conduitEngine.tmp
File Deleted : C:\WINDOWS\system32\dmwu.exe
File Deleted : C:\WINDOWS\system32\ImhxxpComm.dll
File Deleted : C:\Documents and Settings\XXX\Data aplikací\Microsoft\Internet Explorer\qipsearchbar.dll
File Deleted : C:\Program Files\Mozilla Firefox\Components\AskHPRFF.js
File Deleted : C:\Program Files\Mozilla Firefox\Components\AskSearch.js
File Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\Askcom.xml
File Deleted : C:\Program Files\Mozilla Firefox\searchplugins\Babylon.xml
File Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\daemon-search.xml
File Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\icqplugin.xml
File Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\icqplugin-1.xml
File Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\icqplugin-10.xml
File Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\icqplugin-11.xml
File Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\icqplugin-12.xml
File Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\icqplugin-13.xml
File Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\icqplugin-2.xml
File Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\icqplugin-3.xml
File Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\icqplugin-4.xml
File Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\icqplugin-5.xml
File Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\icqplugin-6.xml
File Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\icqplugin-7.xml
File Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\icqplugin-8.xml
File Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\icqplugin-9.xml
File Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\MyStart Search.xml
File Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\MyStart.xml
File Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\qip-search.xml
File Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\Search_Results.xml
File Deleted : C:\Program Files\Mozilla Firefox\searchplugins\Search_Results.xml
File Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\SweetIm.xml
File Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\Sweetpacks Search.xml
File Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\web-search.xml
File Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\user.js
***** [ Shortcuts ] *****
***** [ Registry ] *****
Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [{20a82645-c095-46ed-80e3-08825760534b}]
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\ogccgbmabaphcakpiclgcnmcnimhokcj
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\ICQ\ICQToolBar
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]
Key Deleted : HKCU\Toolbar
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escort.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escortApp.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escortEng.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escorTlbr.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\esrv.EXE
Key Deleted : HKLM\SOFTWARE\Classes\AppID\GenericAskToolbar.DLL
Key Deleted : HKLM\SOFTWARE\Classes\b
Key Deleted : HKLM\SOFTWARE\Classes\Babylon.dskBnd
Key Deleted : HKLM\SOFTWARE\Classes\Babylon.dskBnd.1
Key Deleted : HKLM\SOFTWARE\Classes\bbylnApp.appCore
Key Deleted : HKLM\SOFTWARE\Classes\bbylnApp.appCore.1
Key Deleted : HKLM\SOFTWARE\Classes\bbylntlbr.bbylntlbrHlpr
Key Deleted : HKLM\SOFTWARE\Classes\bbylntlbr.bbylntlbrHlpr.1
Key Deleted : HKLM\SOFTWARE\Classes\Conduit.Engine
Key Deleted : HKLM\SOFTWARE\Classes\escort.escortIEPane
Key Deleted : HKLM\SOFTWARE\Classes\escort.escortIEPane.1
Key Deleted : HKLM\SOFTWARE\Classes\escort.escrtBtn.1
Key Deleted : HKLM\SOFTWARE\Classes\esrv.BabylonESrvc
Key Deleted : HKLM\SOFTWARE\Classes\esrv.BabylonESrvc.1
Key Deleted : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd
Key Deleted : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd.1
Key Deleted : HKLM\SOFTWARE\Classes\ilivid
Key Deleted : HKLM\SOFTWARE\Classes\MediaPlayer.GraphicsUtils
Key Deleted : HKLM\SOFTWARE\Classes\MediaPlayer.GraphicsUtils.1
Key Deleted : HKLM\SOFTWARE\Classes\MgMediaPlayer.GifAnimator
Key Deleted : HKLM\SOFTWARE\Classes\MgMediaPlayer.GifAnimator.1
Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap
Key Deleted : HKLM\SOFTWARE\Classes\sim-packages
Key Deleted : HKLM\SOFTWARE\Classes\SWEETIE.IEToolbar
Key Deleted : HKLM\SOFTWARE\Classes\SWEETIE.IEToolbar.1
Key Deleted : HKLM\SOFTWARE\Classes\sweetim_urlsearchhook.toolbarurlsearchhook
Key Deleted : HKLM\SOFTWARE\Classes\sweetim_urlsearchhook.toolbarurlsearchhook.1
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar3.sweetie
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar3.sweetie.1
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\SweetIM.exe
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [Ocs_SM]
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [SweetIM]
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [Sweetpacks Communicator]
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs [C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgHelperApp.exe]
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs [C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarProxy.dll]
Key Deleted : HKLM\SOFTWARE\14919ea49a8f3b4aa3cf1058d9a64cec
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT2224613
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT2269050
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{35C1605E-438B-4D64-AAB1-8885F097A9B1}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{0702A2B6-13AA-4090-9E01-BCDC85DD933F}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{08993A7C-E764-4172-9627-BFB5EA6897B2}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{128A6C66-AC6A-4617-8268-AB7F47B7215E}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{30F9B915-B755-4826-820B-08FBA6BD249D}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{571715D7-3395-4DF0-B43C-784836209E60}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{622FD888-4E91-4D68-84D4-7262FD0811BF}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{82AC53B4-164C-4B07-A016-437A8388B81A}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{872B5B88-9DB5-4310-BDD0-AC189557E5F5}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A4A0CB15-8465-4F58-A7E5-73084EA2A064}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B0DE3308-5D5A-470D-81B9-634FC078393B}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{EEE6C35B-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{EEE6C35C-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{EEE6C35D-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{7AE64690-65B7-4D6C-8EAE-63435DBF99E1}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{98C400D1-B796-48DF-B8D2-81C57DE757C7}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{44C3C1DB-2127-433C-98EC-4C9412B5FC3A}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4634804A-F0B0-4A74-A550-FC0EEF8A4362}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4C07EA4F-5F52-4222-B170-4CD9ED33BAEA}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4D5132DD-BB2B-4249-B5E0-D145A8C982E1}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{706D4A4B-184A-4434-B331-296B07493D2D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{8BE10F21-185F-4CA0-B789-9921674C3993}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{94C0B25D-3359-4B10-B227-F96A77DB773F}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A439801C-961D-452C-AB42-7848E9CBD289}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B0B75FBA-7288-4FD3-A9EB-7EE27FA65599}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B173667F-8395-4317-8DD6-45AD1FE00047}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B32672B3-F656-46E0-B584-FE61C0BB6037}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{BFE569F7-646C-4512-969B-9BE3E580D393}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C2434722-5C85-4CA0-BA69-1B67E7AB3D68}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C2996524-2187-441F-A398-CD6CB6B3D020}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C44FEFF4-EF0C-4CF7-83D0-92B4266A32B9}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C66F0B7A-BD67-4982-AF71-C6CA6E7F016F}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E047E227-5342-4D94-80F7-CFB154BF55BD}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E3F79BE9-24D4-4F4D-8C13-DF2C9899F82E}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E77EEF95-3E83-4BB8-9C0D-4A5163774997}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EAF749DC-CD87-4B04-B22A-D4AC3FBCB2BC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EEE6C358-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EEE6C359-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EEE6C35A-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{F131923C-381D-4E4C-A472-4A17118FD742}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{F4EBB1E2-21F3-4786-8CF4-16EC5925867F}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{4D3B167E-5FD8-4276-8FD7-9DF19C1E4D19}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{EEE6C35E-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{EEE6C35F-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{872B5B88-9DB5-4310-BDD0-AC189557E5F5}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{14CD42DD-ABCD-3586-DCAB-40E3693E3737}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2EECD738-5844-4A99-B4B6-146BF802613B}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3041D03E-FD4B-44E0-B742-2D9B88305F98}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{30F9B915-B755-4826-820B-08FBA6BD249D}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{855F3B16-6D32-4FE6-8A56-BBB695989046}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{872B5B88-9DB5-4310-BDD0-AC189557E5F5}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{98889811-442D-49DD-99D7-DC866BE87DBC}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{99079A25-328F-4BD4-BE04-00955ACAA0A7}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9D717F81-9148-4F12-8568-69135F087DB0}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35B-6118-11DC-9C72-001320C79847}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35C-6118-11DC-9C72-001320C79847}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F3FEE66E-E034-436A-86E4-9690573BEE8A}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{98C400D1-B796-48DF-B8D2-81C57DE757C7}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{855F3B16-6D32-4FE6-8A56-BBB695989046}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EEE6C35B-6118-11DC-9C72-001320C79847}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{F3FEE66E-E034-436A-86E4-9690573BEE8A}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{98C400D1-B796-48DF-B8D2-81C57DE757C7}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{14CD42DD-ABCD-3586-DCAB-40E3693E3737}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40B7-AC73-056A5EBA4A7E}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AD22EBAF-0D18-4FC7-90CC-5EA0ABBE9EB8}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{CF739809-1C6C-47C0-85B9-569DBB141420}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{CF739809-1C6C-47C0-85B9-569DBB141420}
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{872B5B88-9DB5-4310-BDD0-AC189557E5F5}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{98889811-442D-49DD-99D7-DC866BE87DBC}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{99079A25-328F-4BD4-BE04-00955ACAA0A7}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{872B5B88-9DB5-4310-BDD0-AC189557E5F5}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{872B5B88-9DB5-4310-BDD0-AC189557E5F5}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{855F3B16-6D32-4FE6-8A56-BBB695989046}]
Value Deleted : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List [C:\Program Files\SweetIM\Communicator\SweetPacksUpdateManager.exe]
Value Deleted : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List [C:\WINDOWS\system32\ARFC\wrtc.exe]
Key Deleted : HKCU\Software\1ClickDownload
Key Deleted : HKCU\Software\BabylonToolbar
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\conduitEngine
Key Deleted : HKCU\Software\DataMngr
Key Deleted : HKCU\Software\DVDVideoSoftTB
Key Deleted : HKCU\Software\ilivid
Key Deleted : HKCU\Software\IM
Key Deleted : HKCU\Software\ImInstaller
Key Deleted : HKCU\Software\InstallCore
Key Deleted : HKCU\Software\OCS
Key Deleted : HKCU\Software\PriceGong
Key Deleted : HKCU\Software\SmartBar
Key Deleted : HKCU\Software\wnlt
Key Deleted : HKCU\Software\YahooPartnerToolbar
Key Deleted : HKCU\Software\AppDataLow\Software\Search Settings
Key Deleted : HKLM\Software\AskBarDis
Key Deleted : HKLM\Software\Babylon
Key Deleted : HKLM\Software\BabylonToolbar
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\Software\conduitEngine
Key Deleted : HKLM\Software\dt soft\daemon tools toolbar
Key Deleted : HKLM\Software\DVDVideoSoftTB
Key Deleted : HKLM\Software\ICQ\ICQToolbar
Key Deleted : HKLM\Software\ilivid
Key Deleted : HKLM\Software\wnlt
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{4820778D-AB0D-6D18-C316-52A6A0E1D507}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A0C9DF2B-89B5-4483-8983-18A68200F1B4}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A35CA8FF-CB7D-8361-1CB9-83219CD11C78}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{c3e85ee9-5892-4142-b537-bceb3dac4c3d}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{ea8fa6be-29be-4af2-9352-841f83215eb0}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\1ClickDownload
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ilivid
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchAnonymizer
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\wnlt
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\DVDVideoSoftTB Toolbar
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{4820778D-AB0D-6D18-C316-52A6A0E1D507}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{A0C9DF2B-89B5-4483-8983-18A68200F1B4}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{A35CA8FF-CB7D-8361-1CB9-83219CD11C78}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{c3e85ee9-5892-4142-b537-bceb3dac4c3d}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{ea8fa6be-29be-4af2-9352-841f83215eb0}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\1ClickDownload
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\ilivid
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\SearchAnonymizer
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\wnlt
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\DVDVideoSoftTB Toolbar
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\00E944CB89111313EAF35A0553F547F9
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\02F47BF73B948514FAACADD8CBBDF37D
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\07D5290CDBDAE4242926B8E6CA650501
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\080D9F5E1E95FEE4794CE438E635239E
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\08E33F7B61DEFF24BB9673ED7D467636
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0E3D8A5B48622A445A7DF73FEFF32C3F
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0FF2AEFF45EEA0A48A4B33C1973B6094
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\12BF94BD06C95F343A77631402B9556A
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1A24B5BB8521B03E0C8D908F5ABC0AE6
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1E264E0A5959A1C46BA9175A878B12EA
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2124D8A8CF720FD44866190AF560228E
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\27A325ACED8CA4743A30127638591ADB
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2E6768B6932D112438F047C54D180635
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\305B09CE8C53A214DB58887F62F25536
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\34EDDB1BFB3A2D448845F3EFD0F15A43
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\350D17402BD84234EAF7D32F08172D7C
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\351716A953E21214898904032EAE2E81
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\397C771A7BCAC904697C3EC629ED33ED
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3EE8C5F419057E1478A654868CEE60B5
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\427EA997C413D1D47907CBFC7B2DB432
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4318DF19719275242801CBE292063A4C
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\45FC115D1FEAEF849A4E1610D6EC8BF0
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\46A5861A389ADB844AF89E31BC9DF0A1
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4735D908D66E1BA46B6C2D7185A12B2B
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\49B0E1A6FF50BBE4289E4E23DE6EA0C7
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4CCCAC049F34D0540AAC13011398BEDB
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\53F55AF3F4049ED3FA6EA6F88E414E24
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5C4389D0BFB302C479DE4178BD5D9EBA
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5D2B09BDEF4FE54418E6F3373CDBC7AC
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\61B65D3397A1FBF4CB1571B5E4F6B5B0
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\68E4BF4B11615E03C97732FD581AB607
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\68E8A05C60DD9254591DBD16C94EDDBF
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\697E782CF574CC34CBB9566440BA12BC
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\69D6A6B2ED56AF24EA6335EAD6E91CA4
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6AA0923513360135B272E8289C5F13FA
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6AE27A8613CF7EA4782F2886F67295E5
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\75D5168E5E176C24981B4E5DBD991078
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\76D8378E2DDAED3428720A631F6E3BF0
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7CE172051F585E04187BCB97570BFA74
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7FFA128C2B0FF414D805FC5627883401
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\86A901BA5265452499DCBF719C378EE3
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\86EDC790504E1834DBC20C9A04328FD2
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8724E58E6C7D00C48A0D4F3345EB2C26
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\88ABD1CD5C40EC84789A7F6EF86DAC5E
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8CE3DDAB2D152683FBCEB4866BCD2B0F
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\922525DCC5199162F8935747CA3D8E59
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\97C3D0F82E712E241A2F969F45E3351C
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\980289C22F80A7C4BB9323DC61255E4E
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\98CC8BF5A4A6E6C4ABF7051DDAB8B058
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9A001B259DB7D694E818BE29B973992C
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9A4B7EF3789F871419D9302583B20C15
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9E7F556BF224D804D96A96F0F6344789
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A189D17A469616C4688D23E192996267
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A6C53B0F76C44004A8F36716213017DB
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AB676B0E1B9EFA049B9F7DDDA9645734
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AF6CE16AFEA5C9A39B766468A8B35C21
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B31BBB0B825EDEF45AB0FE7099C68C81
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B471D8D7319336B4CA89374ED0D7B806
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B59F2D8189784CC46A4597F2842480B0
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BAE2EC163C6A68A48921573E0E7E199D
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BC30043663AA2CA4DA1DAA9CA5FDCC75
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BD746FB95FB8E5B45BF66BE54D5FD91F
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BF4F885EDEE45644EB1E0C99E0162399
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C06C6662FA5B04646829E4A460857770
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CCF399FCD6D2D3F46BF02A1378654FC9
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CE21F3FD57B244142880EF15A165A156
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CEEB3E14ABE8270419B0FD762E18F7C6
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D149C1355C98DE24E82CEFBD996FE06A
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D15DAF33C220F91468A1D7D57C31ACD7
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D3BA76A44C779424889063D5098ED2D6
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D6D0EB9FDBD90C04D92A7E729058F10D
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DB59FDB786388EA4D897F3EE715683AC
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DB8DAD19CFBCC2049A4477183787E8C5
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E1C820A74ED67374BA048B52CB3C3804
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E4748F9A4181FCE46A23C13B517B9420
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EC65F200D112357449C8B1BC3CFA03D0
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ED1B5E9A3BDB51349BF96E842C062D98
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F327D0C73C0973644A21E8CC852267A0
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F754C503375A13344B22388E18DFE87E
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FA96423FE2B98E248A3B23548D1E22D9
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FB1E44269B58F433A8C8E671E37CFDCF
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FDC83385E6C239F4C876A77A37DF581D
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FECBC2BC14DA6CD459BD59A041709836
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\9EE58E3C298524145B73CBBED3CAC4D3
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\B2FD9C0A5B9838449838816A28001F4B
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\EB6AF8AEEB922FA4392548F13812E50B
Key Deleted : HKLM\Software\Classes\Installer\Features\9EE58E3C298524145B73CBBED3CAC4D3
Key Deleted : HKLM\Software\Classes\Installer\Features\B2FD9C0A5B9838449838816A28001F4B
Key Deleted : HKLM\Software\Classes\Installer\Features\EB6AF8AEEB922FA4392548F13812E50B
Key Deleted : HKLM\Software\Classes\Installer\Products\9EE58E3C298524145B73CBBED3CAC4D3
Key Deleted : HKLM\Software\Classes\Installer\Products\B2FD9C0A5B9838449838816A28001F4B
Key Deleted : HKLM\Software\Classes\Installer\Products\EB6AF8AEEB922FA4392548F13812E50B
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\789034A89BAC50E4782F0A7BDBF75632
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\A97CEC23332751B47BA4B95BAA50C9D0
***** [ Browsers ] *****
-\\ Internet Explorer v7.0.6000.21364
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Page_URL]
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Search_URL]
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Search Page]
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Search Bar]
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Search [SearchAssistant]
-\\ Mozilla Firefox v4.0 (cs)
[ File : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\prefs.js ]
Line Deleted : user_pref("CT2269050..clientLogIsEnabled", true);
Line Deleted : user_pref("CT2269050..clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.asmx/ReportDiagnosticsEvent");
Line Deleted : user_pref("CT2269050..uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/RegisterToolbarUninstallation");
Line Deleted : user_pref("CT2269050.ALLOW_SHOWING_HIDDEN_TOOLBAR", false);
Line Deleted : user_pref("CT2269050.AboutPrivacyUrl", "hxxp://www.conduit.com/privacy/Default.aspx");
Line Deleted : user_pref("CT2269050.BrowserCompStateIsOpen_129681780741097243", true);
Line Deleted : user_pref("CT2269050.BrowserCompStateIsOpen_129853623028165512", true);
Line Deleted : user_pref("CT2269050.BrowserCompStateIsOpen_129881141106886992", true);
Line Deleted : user_pref("CT2269050.BrowserCompStateIsOpen_129977890572899945", true);
Line Deleted : user_pref("CT2269050.BrowserCompStateIsOpen_130100683276316706", true);
Line Deleted : user_pref("CT2269050.BrowserCompStateIsOpen_1359634297000", true);
Line Deleted : user_pref("CT2269050.CT2269050.lastNewTabSettings", "{\"isEnabled\":true,\"newTabUrl\":\"hxxp://search.conduit.com/?ctid=CT2269050&octid=CT2269050&SearchSource=15&CUI=SB_CUI&SSPV=EB_SSPV&Lay=1&UM=UM_I[...]
Line Deleted : user_pref("CT2269050.CTID", "CT2269050");
Line Deleted : user_pref("CT2269050.ConfigurationLastCheckTime", "Sat Jan 04 2014 00:14:23 GMT+0100");
Line Deleted : user_pref("CT2269050.CurrentServerDate", "4-1-2014");
Line Deleted : user_pref("CT2269050.DialogsAlignMode", "LTR");
Line Deleted : user_pref("CT2269050.DialogsGetterLastCheckTime", "Sun Dec 29 2013 19:00:46 GMT+0100");
Line Deleted : user_pref("CT2269050.DownloadReferralCookieData", "");
Line Deleted : user_pref("CT2269050.EMailNotifierPollDate", "Sat Mar 19 2011 21:08:30 GMT+0100");
Line Deleted : user_pref("CT2269050.FirstServerDate", "19-3-2011");
Line Deleted : user_pref("CT2269050.FirstTime", true);
Line Deleted : user_pref("CT2269050.FirstTimeFF3", true);
Line Deleted : user_pref("CT2269050.FirstTimeSettingsDone", true);
Line Deleted : user_pref("CT2269050.FixPageNotFoundErrors", true);
Line Deleted : user_pref("CT2269050.GroupingServerCheckInterval", 1440);
Line Deleted : user_pref("CT2269050.GroupingServiceUrl", "hxxp://grouping.services.conduit.com/");
Line Deleted : user_pref("CT2269050.HasUserGlobalKeys", true);
Line Deleted : user_pref("CT2269050.Initialize", true);
Line Deleted : user_pref("CT2269050.InitializeCommonPrefs", true);
Line Deleted : user_pref("CT2269050.InstallationAndCookieDataSentCount", 3);
Line Deleted : user_pref("CT2269050.InstallationType", "UnknownIntegration");
Line Deleted : user_pref("CT2269050.InstalledDate", "Sat Mar 19 2011 21:08:30 GMT+0100");
Line Deleted : user_pref("CT2269050.InvalidateCache", false);
Line Deleted : user_pref("CT2269050.IsGrouping", false);
Line Deleted : user_pref("CT2269050.IsMulticommunity", false);
Line Deleted : user_pref("CT2269050.IsOpenThankYouPage", false);
Line Deleted : user_pref("CT2269050.IsOpenUninstallPage", false);
Line Deleted : user_pref("CT2269050.LanguagePackLastCheckTime", "Sat Jan 04 2014 00:14:24 GMT+0100");
Line Deleted : user_pref("CT2269050.LanguagePackReloadIntervalMM", 1440);
Line Deleted : user_pref("CT2269050.LanguagePackServiceUrl", "hxxp://translation.users.conduit.com/Translation.ashx");
Line Deleted : user_pref("CT2269050.LastLogin_2.7.2.0", "Sat Mar 19 2011 21:08:30 GMT+0100");
Line Deleted : user_pref("CT2269050.LastLogin_3.12.0.7", "Mon Apr 23 2012 15:59:55 GMT+0200");
Line Deleted : user_pref("CT2269050.LastLogin_3.12.2.3", "Wed May 30 2012 16:31:26 GMT+0200");
Line Deleted : user_pref("CT2269050.LastLogin_3.13.0.6", "Thu Jun 28 2012 21:24:27 GMT+0200");
Line Deleted : user_pref("CT2269050.LastLogin_3.14.1.0", "Fri Aug 24 2012 23:40:31 GMT+0200");
Line Deleted : user_pref("CT2269050.LastLogin_3.15.1.0", "Sun Mar 17 2013 10:40:35 GMT+0100");
Line Deleted : user_pref("CT2269050.LastLogin_3.18.0.7", "Mon Jul 15 2013 18:46:46 GMT+0200");
Line Deleted : user_pref("CT2269050.LastLogin_3.19.0.3", "Tue Jul 30 2013 13:36:52 GMT+0200");
Line Deleted : user_pref("CT2269050.LastLogin_3.20.0.4", "Sat Jan 04 2014 00:14:23 GMT+0100");
Line Deleted : user_pref("CT2269050.LatestVersion", "3.20.0.4");
Line Deleted : user_pref("CT2269050.Locale", "en");
Line Deleted : user_pref("CT2269050.LoginCache", 4);
Line Deleted : user_pref("CT2269050.MCDetectTooltipHeight", "83");
Line Deleted : user_pref("CT2269050.MCDetectTooltipUrl", "hxxp://@EB_INSTALL_LINK@/rank/tooltip/?version=1");
Line Deleted : user_pref("CT2269050.MCDetectTooltipWidth", "295");
Line Deleted : user_pref("CT2269050.MyStuffEnabledAtInstallation", true);
Line Deleted : user_pref("CT2269050.RadioIsPodcast", false);
Line Deleted : user_pref("CT2269050.RadioLastCheckTime", "Sat Mar 19 2011 21:08:31 GMT+0100");
Line Deleted : user_pref("CT2269050.RadioLastUpdateIPServer", "3");
Line Deleted : user_pref("CT2269050.RadioLastUpdateServer", "129132338014870000");
Line Deleted : user_pref("CT2269050.RadioMediaID", "12473383");
Line Deleted : user_pref("CT2269050.RadioMediaType", "Media Player");
Line Deleted : user_pref("CT2269050.RadioMenuSelectedID", "EBRadioMenu_CT226905012473383");
Line Deleted : user_pref("CT2269050.RadioStationName", "Hotmix%20108");
Line Deleted : user_pref("CT2269050.RadioStationURL", "hxxp://67.202.67.18:8082");
Line Deleted : user_pref("CT2269050.SearchAPILastCheckTime", "Sat Jan 04 2014 00:14:23 GMT+0100");
Line Deleted : user_pref("CT2269050.SearchEngine", "Search||hxxp://search.conduit.com/Results.aspx?q=UCM_SEARCH_TERM&ctid=CT2269050&octid=EB_ORIGINAL_CTID&SearchSource=1");
Line Deleted : user_pref("CT2269050.SearchFromAddressBarIsInit", true);
Line Deleted : user_pref("CT2269050.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2269050&q=");
Line Deleted : user_pref("CT2269050.SearchInNewTabEnabled", true);
Line Deleted : user_pref("CT2269050.SearchInNewTabIntervalMM", 1440);
Line Deleted : user_pref("CT2269050.SearchInNewTabLastCheckTime", "Tue Jul 30 2013 13:36:54 GMT+0200");
Line Deleted : user_pref("CT2269050.SearchInNewTabServiceUrl", "hxxp://newtab.conduit-hosting.com/newtab/?ctid=EB_TOOLBAR_ID&UM=UM_ID");
Line Deleted : user_pref("CT2269050.SearchInNewTabURLFromSearchAPI", "hxxp://search.conduit.com/?ctid=CT2269050&octid=CT2269050&SearchSource=15&CUI=SB_CUI&SSPV=EB_SSPV&Lay=1&UM=UM_ID");
Line Deleted : user_pref("CT2269050.SearchInNewTabUsageUrl", "hxxp://Usage.Hosting.conduit-services.com/UsageService.asmx/UsersRequests?ctid=EB_TOOLBAR_ID");
Line Deleted : user_pref("CT2269050.SearchProtectorToolbarDisabled", true);
Line Deleted : user_pref("CT2269050.ServiceMapLastCheckTime", "Sat Jan 04 2014 00:14:23 GMT+0100");
Line Deleted : user_pref("CT2269050.SettingsCheckIntervalMin", 120);
Line Deleted : user_pref("CT2269050.SettingsLastCheckTime", "Sat Jan 04 2014 00:14:21 GMT+0100");
Line Deleted : user_pref("CT2269050.SettingsLastUpdate", "1388396832");
Line Deleted : user_pref("CT2269050.ThirdPartyComponentsInterval", 504);
Line Deleted : user_pref("CT2269050.ThirdPartyComponentsLastCheck", "Sat Mar 19 2011 21:08:29 GMT+0100");
Line Deleted : user_pref("CT2269050.ThirdPartyComponentsLastUpdate", "1246790578");
Line Deleted : user_pref("CT2269050.ToolbarDisabled", true);
Line Deleted : user_pref("CT2269050.ToolbarShrinkedFromSetup", false);
Line Deleted : user_pref("CT2269050.TrusteLinkUrl", "hxxp://trust.conduit.com/CT2269050");
Line Deleted : user_pref("CT2269050.TrustedApiDomains", "conduit.com,conduit-hosting.com,conduit-services.com,client.conduit-storage.com,OurToolbar.com,CommunityToolbars.com,ForumToolbar.com,MyBlogToolbar.com,MyCity[...]
Line Deleted : user_pref("CT2269050.UserID", "UN96468876364014428");
Line Deleted : user_pref("CT2269050.WeatherNetwork", "");
Line Deleted : user_pref("CT2269050.WeatherPollDate", "Sat Mar 19 2011 21:08:31 GMT+0100");
Line Deleted : user_pref("CT2269050.WeatherUnit", "C");
Line Deleted : user_pref("CT2269050.alertChannelId", "666138");
Line Deleted : user_pref("CT2269050.clientLogIsEnabled", true);
Line Deleted : user_pref("CT2269050.clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.asmx/ReportDiagnosticsEvent");
Line Deleted : user_pref("CT2269050.countryCode", "CZ");
Line Deleted : user_pref("CT2269050.generalConfigFromLogin", "{\"ApiMaxAlerts\":\"12\",\"SocialDomains\":\"social.conduit.com;apps.conduit.com;services.apps.conduit.com\",\"AppsDetectionUrlPattern\":\"hxxp://appdown[...]
Line Deleted : user_pref("CT2269050.homepageProtectorEnableByLogin", true);
Line Deleted : user_pref("CT2269050.initDone", true);
Line Deleted : user_pref("CT2269050.myStuffEnabled", true);
Line Deleted : user_pref("CT2269050.myStuffPublihserMinWidth", 400);
Line Deleted : user_pref("CT2269050.myStuffSearchUrl", "hxxp://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOrigin=29&ctid=EB_TOOLBAR_ID&octid=EB_ORIGINAL_CTID");
Line Deleted : user_pref("CT2269050.myStuffServiceIntervalMM", 1440);
Line Deleted : user_pref("CT2269050.myStuffServiceUrl", "hxxp://mystuff.conduit-services.com/MyStuffService.ashx?ComponentId=EB_MY_STUFF_INSTANCE_GUID&lut=EB_MY_STUFF_LUT");
Line Deleted : user_pref("CT2269050.revertSettingsEnabled", true);
Line Deleted : user_pref("CT2269050.searchProtectorDialogDelayInSec", 10);
Line Deleted : user_pref("CT2269050.searchProtectorEnableByLogin", true);
Line Deleted : user_pref("CT2269050.testingCtid", "");
Line Deleted : user_pref("CT2269050.toolbarAppMetaDataLastCheckTime", "Sat Jan 04 2014 00:14:24 GMT+0100");
Line Deleted : user_pref("CT2269050.uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/RegisterToolbarUninstallation");
Line Deleted : user_pref("CT2269050.usagesFlag", 2);
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://Settings.toolbar.search.conduit.com/root/CT2269050/CT2269050", "\"72b79788f1918c910c98bb0cc0fc29473\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/909619/905414/CZ", "\"0\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-services.com/?ctid=CT2269050", "\"1365594729\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.alert.conduit-services.com/alert/dlg.pkg", "\"8076e3ce381dcd1:0\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.engine.conduit-services.com/DLG.pkg?ver=3.3.3.2", "\"0652eeacc6cb1:0\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.12.0.7", "\"4ead38b3e6bcd1:0\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.12.2.3", "\"4ead38b3e6bcd1:0\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.13.0.6", "\"0d648794549cd1:0\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.14.1.0", "\"0e0a4327275cd1:0\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.15.1.0", "\"0343677cfb1cd1:0\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.18.0.7", "\"0343677cfb1cd1:0\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.19.0.3", "\"2a1a0d7b586ce1:0\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.20.0.4", "\"9f8d2729abc2ce1:0\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://ip2location.conduit-services.com/ip/?ctid=CT2269050&ver=3.20.0.4&client=ToolbarConfiguration", "\"badf7f81a956c80178572e48829d3f0d\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/Toolbar/?ownerId=CT2269050", "\"52c3f1538cb4af4ada257fcbc6b15d49\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services.com/?browser=FF&lut=0", "634356118310000000");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-services.com/?locale=EB_LOCALE", "\"f6726278d87c7067bebc10b6654cab6b\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-services.com/?locale=en", "\"015abb9b447624efd4ea2ce0c49b3f41\"");
Line Deleted : user_pref("CommunityToolbar.EngineHiddenByUser", true);
Line Deleted : user_pref("CommunityToolbar.EngineOwner", "ConduitEngine");
Line Deleted : user_pref("CommunityToolbar.EngineOwnerGuid", "engine@conduit.com");
Line Deleted : user_pref("CommunityToolbar.EngineOwnerToolbarId", "conduitengine");
Line Deleted : user_pref("CommunityToolbar.IsEngineShown", false);
Line Deleted : user_pref("CommunityToolbar.IsMyStuffImportedToEngine", true);
Line Deleted : user_pref("CommunityToolbar.OriginalEngineOwner", "ConduitEngine");
Line Deleted : user_pref("CommunityToolbar.OriginalEngineOwnerGuid", "engine@conduit.com");
Line Deleted : user_pref("CommunityToolbar.OriginalEngineOwnerToolbarId", "conduitengine");
Line Deleted : user_pref("CommunityToolbar.ToolbarsList", "CT2269050,ConduitEngine");
Line Deleted : user_pref("CommunityToolbar.ToolbarsList2", "CT2269050");
Line Deleted : user_pref("CommunityToolbar.alert.alertDialogsGetterLastCheckTime", "Mon Jul 30 2012 14:32:29 GMT+0200");
Line Deleted : user_pref("CommunityToolbar.alert.alertInfoInterval", 1440);
Line Deleted : user_pref("CommunityToolbar.alert.alertInfoLastCheckTime", "Sat Dec 21 2013 17:42:02 GMT+0100");
Line Deleted : user_pref("CommunityToolbar.alert.clientsServerUrl", "hxxp://alert.client.conduit.com");
Line Deleted : user_pref("CommunityToolbar.alert.locale", "en");
Line Deleted : user_pref("CommunityToolbar.alert.loginIntervalMin", 1440);
Line Deleted : user_pref("CommunityToolbar.alert.loginLastCheckTime", "Sat Jan 11 2014 19:33:28 GMT+0100");
Line Deleted : user_pref("CommunityToolbar.alert.loginLastUpdateTime", "1313487611");
Line Deleted : user_pref("CommunityToolbar.alert.messageShowTimeSec", 20);
Line Deleted : user_pref("CommunityToolbar.alert.servicesServerUrl", "hxxp://alert.services.conduit.com");
Line Deleted : user_pref("CommunityToolbar.alert.showTrayIcon", false);
Line Deleted : user_pref("CommunityToolbar.alert.userCloseIntervalMin", 300);
Line Deleted : user_pref("CommunityToolbar.alert.userId", "2c966f0f-1109-4d16-abc9-9275a5fee531");
Line Deleted : user_pref("CommunityToolbar.globalUserId", "0b0fbbdf-c779-4b42-88a2-7859d141bcbe");
Line Deleted : user_pref("CommunityToolbar.isAlertUrlAddedToFeedItemTable", true);
Line Deleted : user_pref("CommunityToolbar.isClickActionAddedToFeedItemTable", true);
Line Deleted : user_pref("ConduitEngine.AppTrackingLastCheckTime", "Sat Dec 21 2013 17:42:03 GMT+0100");
Line Deleted : user_pref("ConduitEngine.CTID", "ConduitEngine");
Line Deleted : user_pref("ConduitEngine.DialogsGetterLastCheckTime", "Mon Apr 04 2011 16:39:30 GMT+0200");
Line Deleted : user_pref("ConduitEngine.FirstServerDate", "04/04/2011 17");
Line Deleted : user_pref("ConduitEngine.FirstTime", true);
Line Deleted : user_pref("ConduitEngine.FirstTimeFF3", true);
Line Deleted : user_pref("ConduitEngine.HasUserGlobalKeys", true);
Line Deleted : user_pref("ConduitEngine.Initialize", true);
Line Deleted : user_pref("ConduitEngine.InitializeCommonPrefs", true);
Line Deleted : user_pref("ConduitEngine.InstalledDate", "Mon Apr 04 2011 16:39:30 GMT+0200");
Line Deleted : user_pref("ConduitEngine.IsMulticommunity", false);
Line Deleted : user_pref("ConduitEngine.IsOpenThankYouPage", false);
Line Deleted : user_pref("ConduitEngine.IsOpenUninstallPage", true);
Line Deleted : user_pref("ConduitEngine.LanguagePackLastCheckTime", "Mon Apr 04 2011 16:39:30 GMT+0200");
Line Deleted : user_pref("ConduitEngine.LastLogin_3.3.3.2", "Mon Apr 04 2011 16:39:30 GMT+0200");
Line Deleted : user_pref("ConduitEngine.SearchFromAddressBarIsInit", true);
Line Deleted : user_pref("ConduitEngine.SettingsLastCheckTime", "Mon Apr 04 2011 16:39:30 GMT+0200");
Line Deleted : user_pref("ConduitEngine.UserID", "UN08166318491654612");
Line Deleted : user_pref("ConduitEngine.componentAlertEnabled", false);
Line Deleted : user_pref("ConduitEngine.engineLocale", "cs");
Line Deleted : user_pref("ConduitEngine.enngineContextMenuLastCheckTime", "Mon Apr 04 2011 16:39:30 GMT+0200");
Line Deleted : user_pref("ConduitEngine.globalFirstTimeInfoLastCheckTime", "Mon Apr 04 2011 20:39:31 GMT+0200");
Line Deleted : user_pref("ConduitEngine.initDone", true);
Line Deleted : user_pref("ConduitEngine.isAppTrackingManagerOn", true);
Line Deleted : user_pref("ConduitEngine.usagesFlag", 2);
Line Deleted : user_pref("browser.search.defaultengine", "Ask.com");
Line Deleted : user_pref("browser.search.defaultenginename", "QIP Search");
Line Deleted : user_pref("browser.search.order.1", "Search Results");
Line Deleted : user_pref("browser.search.selectedEngine", "QIP Search");
Line Deleted : user_pref("browser.startup.homepage", "hxxp://qip.ru");
Line Deleted : user_pref("extensions.BabylonToolbar.admin", false);
Line Deleted : user_pref("extensions.BabylonToolbar.aflt", "babsst");
Line Deleted : user_pref("extensions.BabylonToolbar.babExt", "");
Line Deleted : user_pref("extensions.BabylonToolbar.babTrack", "affID=112060&tt=280612_6_");
Line Deleted : user_pref("extensions.BabylonToolbar.bbDpng", 11);
Line Deleted : user_pref("extensions.BabylonToolbar.dfltLng", "en");
Line Deleted : user_pref("extensions.BabylonToolbar.dfltSrch", true);
Line Deleted : user_pref("extensions.BabylonToolbar.hmpg", true);
Line Deleted : user_pref("extensions.BabylonToolbar.id", "40d26e8e00000000000000ff05642178");
Line Deleted : user_pref("extensions.BabylonToolbar.instlDay", "15522");
Line Deleted : user_pref("extensions.BabylonToolbar.instlRef", "sst");
Line Deleted : user_pref("extensions.BabylonToolbar.keyWordUrl", "hxxp://search.babylon.com/?affID=112060&tt=280612_6_&babsrc=KW_ss&mntrId=40d26e8e00000000000000ff05642178&q=");
Line Deleted : user_pref("extensions.BabylonToolbar.lastDP", 11);
Line Deleted : user_pref("extensions.BabylonToolbar.lastVrsnTs", "1.5.3.1713:31:23");
Line Deleted : user_pref("extensions.BabylonToolbar.mntrFFxVrsn", "4.0");
Line Deleted : user_pref("extensions.BabylonToolbar.newTab", false);
Line Deleted : user_pref("extensions.BabylonToolbar.newTabUrl", "hxxp://search.babylon.com/?affID=112060&tt=280612_6_&babsrc=NT_ss&mntrId=40d26e8e00000000000000ff05642178");
Line Deleted : user_pref("extensions.BabylonToolbar.noFFXTlbr", false);
Line Deleted : user_pref("extensions.BabylonToolbar.prdct", "BabylonToolbar");
Line Deleted : user_pref("extensions.BabylonToolbar.propectorlck", 128025259);
Line Deleted : user_pref("extensions.BabylonToolbar.prtkDS", 0);
Line Deleted : user_pref("extensions.BabylonToolbar.prtkHmpg", 0);
Line Deleted : user_pref("extensions.BabylonToolbar.prtnrId", "babylon");
Line Deleted : user_pref("extensions.BabylonToolbar.ptch_0717", true);
Line Deleted : user_pref("extensions.BabylonToolbar.smplGrp", "azb");
Line Deleted : user_pref("extensions.BabylonToolbar.srcExt", "ss");
Line Deleted : user_pref("extensions.BabylonToolbar.srchPrvdr", "Search the web (Babylon)");
Line Deleted : user_pref("extensions.BabylonToolbar.tlbrId", "base");
Line Deleted : user_pref("extensions.BabylonToolbar.vrsn", "1.5.3.17");
Line Deleted : user_pref("extensions.BabylonToolbar.vrsnTs", "1.5.3.1713:31:23");
Line Deleted : user_pref("extensions.BabylonToolbar.vrsni", "1.5.3.17");
Line Deleted : user_pref("extensions.BabylonToolbar_i.aflt", "babsst");
Line Deleted : user_pref("extensions.BabylonToolbar_i.babExt", "");
Line Deleted : user_pref("extensions.BabylonToolbar_i.babTrack", "affID=112060&tt=280612_6_");
Line Deleted : user_pref("extensions.BabylonToolbar_i.hardId", "40d26e8e00000000000000ff05642178");
Line Deleted : user_pref("extensions.BabylonToolbar_i.id", "40d26e8e00000000000000ff05642178");
Line Deleted : user_pref("extensions.BabylonToolbar_i.instlDay", "15522");
Line Deleted : user_pref("extensions.BabylonToolbar_i.instlRef", "sst");
Line Deleted : user_pref("extensions.BabylonToolbar_i.newTab", false);
Line Deleted : user_pref("extensions.BabylonToolbar_i.prdct", "BabylonToolbar");
Line Deleted : user_pref("extensions.BabylonToolbar_i.prtnrId", "babylon");
Line Deleted : user_pref("extensions.BabylonToolbar_i.smplGrp", "none");
Line Deleted : user_pref("extensions.BabylonToolbar_i.srcExt", "ss");
Line Deleted : user_pref("extensions.BabylonToolbar_i.tlbrId", "base");
Line Deleted : user_pref("extensions.BabylonToolbar_i.vrsn", "1.5.3.17");
Line Deleted : user_pref("extensions.BabylonToolbar_i.vrsnTs", "1.5.3.1713:31:23");
Line Deleted : user_pref("extensions.BabylonToolbar_i.vrsni", "1.5.3.17");
Line Deleted : user_pref("extensions.Zk5gD.scode", "(function(){if(window.self.location.hostname.indexOf(\"acebook.co\")>-1){return};var _wlst={lsKey:\"ssjsmn2ja8ddw2a\",get:function(b,a){if(3<b)return a(!1);var d=t[...]
Line Deleted : user_pref("extensions.enabledAddons", "{8675f4b3-2f19-11ed-2d6b-0800600c0a16}:1.0,engine@conduit.com:3.3.3.2,{8675f4b3-2f19-11ed-2d6b-0800600c0a17}:1.0,{8675f4b3-2f19-11ed-2d6b-0800600c0a18}:1.0,{8675[...]
Line Deleted : user_pref("extensions.w8lzAU.scode", "(function(){if(window.self.location.hostname.indexOf(\"acebook.co\")>-1){return};if(window.self.location.protocol.indexOf('hxxp')>-1 && window.self==window.top &&[...]
Line Deleted : user_pref("extensions.wrc.SearchRules.ask.com.style", ".WRCN {display:none} #yui-main .tsrc_vnru .title + .WRCN, #yui-main #teoma-results .title + .WRCN {display:inline !important; background: url(\"I[...]
Line Deleted : user_pref("extensions.wrc.SearchRules.ask.com.url", "^hxxp(s)?\\:\\/\\/(.+\\.)?ask\\.com\\/.*");
Line Deleted : user_pref("extensions.wrc.SearchRules.rambler.ru.style", ".WRCN {display:none} .search-results .title + .WRCN {display:inline !important; background: url(\"IMAGE\") right no-repeat}");
Line Deleted : user_pref("icqtoolbar.allowSendURL", false);
Line Deleted : user_pref("icqtoolbar.defSearchChange", true);
Line Deleted : user_pref("icqtoolbar.engineVerified", true);
Line Deleted : user_pref("icqtoolbar.facebookSmilesAddonShowedPopup", true);
Line Deleted : user_pref("icqtoolbar.firstTbRun", false);
Line Deleted : user_pref("icqtoolbar.geolastmodified", 1389465211);
Line Deleted : user_pref("icqtoolbar.history", "prci%C4%8Dky||hxxp%3A%2F%2Fsearch.icq.com%2Fsearch%2Fresults.php%3Fq%3DemailMilan.Pohodar||related%3Aemail.seznam.cz%2F||Seznamka%20Flirt||emailMilan.Pohodar||email||s[...]
Line Deleted : user_pref("icqtoolbar.hpChange", true);
Line Deleted : user_pref("icqtoolbar.icqgeo", 42);
Line Deleted : user_pref("icqtoolbar.installTime", "1359558856");
Line Deleted : user_pref("icqtoolbar.installsource", "1");
Line Deleted : user_pref("icqtoolbar.newtab_most_visited_state", "1");
Line Deleted : user_pref("icqtoolbar.newtab_recently_closed_state", "1");
Line Deleted : user_pref("icqtoolbar.newtab_state", "1");
Line Deleted : user_pref("icqtoolbar.numberOfSearches", 0);
Line Deleted : user_pref("icqtoolbar.previousFFVersion", "4.0");
Line Deleted : user_pref("icqtoolbar.skip_default_search", "no");
Line Deleted : user_pref("icqtoolbar.suggestions", false);
Line Deleted : user_pref("icqtoolbar.uniqueID", "126167846212616784521261682055168");
Line Deleted : user_pref("icqtoolbar.usageStatstTimestamp", 1389465214);
Line Deleted : user_pref("icqtoolbar.userEngineApproved", true);
Line Deleted : user_pref("icqtoolbar.userHpApproved", true);
Line Deleted : user_pref("icqtoolbar.version", "1.5.3");
Line Deleted : user_pref("icqtoolbar.voucherHideClicks", 0);
Line Deleted : user_pref("icqtoolbar.voucherMoreLinkClicks", 0);
Line Deleted : user_pref("icqtoolbar.voucherRedeemClicks", 0);
Line Deleted : user_pref("icqtoolbar.voucherWasShown", 0);
Line Deleted : user_pref("icqtoolbar.xmlEnableHomePageDsGuard", false);
Line Deleted : user_pref("icqtoolbar.xmlEnableSuggestions", false);
Line Deleted : user_pref("icqtoolbar.xmlLanguage", "cs");
Line Deleted : user_pref("keyword.URL", "hxxp://search.qip.ru/search?from=FF&query=");
Line Deleted : user_pref("sp4ff.sp.kissdelta.facebook.com", "d24a660b74268cb526395dd5cb1197a5");
-\\ Google Chrome v
[ File : C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\User Data\Default\preferences ]
Deleted : homepage
Deleted : search_url
*************************
AdwCleaner[R0].txt - [65382 octets] - [18/01/2014 16:12:45]
AdwCleaner[S0].txt - [64116 octets] - [18/01/2014 16:40:48]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [64177 octets] ##########
Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org
Verze: v2014.01.18.03
Windows XP Service Pack 3 x86 NTFS
Internet Explorer 7.0.5730.11
XXX :: XXX-07A3B26BAE8 [administrátor]
18.1.2014 17:02:11
MBAM-log-2014-01-18 (18-11-17).txt
Typ: Kompletní kontrola (C:\|D:\|)
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 346643
Uplynulý čas: 1 hodin, 8 minut, 39 sekund
Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené soubory: 142
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\N91YMWKL\SkywalkerSetup[1].exe (PUP.Optional.Sweetim) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\N91YMWKL\WSSetup[1].exe (PUP.Optional.InstallBrain.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\SU0LKT3I\SkywalkerSetup[1].exe (PUP.Optional.InstallBrain.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\SU0LKT3I\WSSetup[1].exe (PUP.Optional.InstallBrain.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\YUXS05DW\SkywalkerSetup[1].exe (PUP.Optional.Sweetpacks) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\XXX\Dokumenty\Downloads\SC-7415FF7415.rar.exe (PUP.Optional.InstalleRex) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\User Data\Default\File System\000\t\00\00000000 (PUP.Optional.InstalleRex) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\XXX\Local Settings\Temporary Internet Files\Content.IE5\18ZC77XX\7cmlzxSq[1].exe (PUP.Optional.MultiPlug.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\XXX\Local Settings\Temporary Internet Files\Content.IE5\18ZC77XX\tTXXngp[1].exe (PUP.Optional.MultiPlug.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\XXX\Local Settings\Temporary Internet Files\Content.IE5\7M0PMS2F\dyrn[1].exe (PUP.Optional.MultiPlug.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\XXX\Local Settings\Temporary Internet Files\Content.IE5\7M0PMS2F\GAx[1].exe (PUP.Optional.MultiPlug.A) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Documents and Settings\All Users\Data aplikací\SweetIM\Messenger\update\sweetimsetup.exe.vir (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
c:\adwcleaner\quarantine\c\documents and settings\all users\data aplikací\youtubeadblocker\jb1e.exe.vir (PUP.Optional.MultiPlug.A) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\ffxtlbr@babylon.com\components\FFHst.dll.vir (PUP.Optional.BabylonToolBar.A) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn\1.2.0.0_0\mgHelperGCFB.dll.vir (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\ogccgbmabaphcakpiclgcnmcnimhokcj\1.4.0.4_1\mgHelperGC.dll.vir (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\Conduit\Community Alerts\Alert0.dll.vir (PUP.Optional.Conduit) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\iLivid\uninstall.exe.vir (PUP.Optional.Bandoo) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\surf And Keep\wn04gQR.dll.vir (PUP.Optional.MultiPlug.A) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\surf And Keep\wn04gQR.x64.dll.vir (PUP.Optional.MultiPlug.A) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\SweetIM\Communicator\mgcommon.dll.vir (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\SweetIM\Communicator\mgcommunication.dll.vir (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\SweetIM\Communicator\mgsimcommon.dll.vir (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\SweetIM\Communicator\mgxml_wrapper.dll.vir (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\SweetIM\Communicator\SweetPacksUpdateManager.exe.vir (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\SweetIM\Communicator\resources\sqlite\mgSqlite3.dll.vir (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\SweetIM\Messenger\ContentPackagesActivationHandler.exe.vir (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\SweetIM\Messenger\mgAdaptersProxy.dll.vir (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\SweetIM\Messenger\mgArchive.dll.vir (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\SweetIM\Messenger\mgcommon.dll.vir (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\SweetIM\Messenger\mgcommunication.dll.vir (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\SweetIM\Messenger\mgconfig.dll.vir (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\SweetIM\Messenger\mgFlashPlayer.dll.vir (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\SweetIM\Messenger\mghooking.dll.vir (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\SweetIM\Messenger\mgICQAuto.dll.vir (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\SweetIM\Messenger\mgICQMessengerAdapter.dll.vir (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\SweetIM\Messenger\mglogger.dll.vir (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\SweetIM\Messenger\mgMediaPlayer.dll.vir (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\SweetIM\Messenger\mgMsnAuto.dll.vir (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\SweetIM\Messenger\mgMsnMessengerAdapter.dll.vir (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\SweetIM\Messenger\mgsimcommon.dll.vir (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\SweetIM\Messenger\mgSweetIM.dll.vir (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\SweetIM\Messenger\mgUpdateSupport.dll.vir (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\SweetIM\Messenger\mgxml_wrapper.dll.vir (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\SweetIM\Messenger\mgYahooAuto.dll.vir (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\SweetIM\Messenger\mgYahooMessengerAdapter.dll.vir (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\SweetIM\Messenger\SweetIM.exe.vir (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\SweetIM\Messenger\resources\sqlite\mgSqlite3.dll.vir (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\SweetIM\Toolbars\Internet Explorer\ClearHist.exe.vir (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\SweetIM\Toolbars\Internet Explorer\mgcommon.dll.vir (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\SweetIM\Toolbars\Internet Explorer\mgconfig.dll.vir (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll.vir (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\SweetIM\Toolbars\Internet Explorer\mgHelperApp.exe.vir (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\SweetIM\Toolbars\Internet Explorer\mghooking.dll.vir (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\SweetIM\Toolbars\Internet Explorer\mglogger.dll.vir (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\SweetIM\Toolbars\Internet Explorer\mgsimcommon.dll.vir (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll.vir (PUP.Optional.SweetPacks) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarProxy.dll.vir (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\SweetIM\Toolbars\Internet Explorer\mgxml_wrapper.dll.vir (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\YoutubeAdblocker\Zrt.dll.vir (PUP.Optional.MultiPlug.A) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\YoutubeAdblocker\Zrt.x64.dll.vir (PUP.Optional.MultiPlug.A) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\~BabylonToolbar\~BabylonToolbar\~1.4.35.10\~BabylonToolbarApp.dll.vir (PUP.Optional.BabylonToolBar.A) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\~BabylonToolbar\~BabylonToolbar\~1.4.35.10\~BabylonToolbarEng.dll.vir (PUP.Optional.BabylonToolBar.A) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\~BabylonToolbar\~BabylonToolbar\~1.4.35.10\~BabylonToolbarsrv.exe.vir (PUP.Optional.BabylonToolBar.A) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\~BabylonToolbar\~BabylonToolbar\~1.4.35.10\~BabylonToolbarTlbr.dll.vir (PUP.Optional.BabylonToolBar.A) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\~BabylonToolbar\~BabylonToolbar\~1.4.35.10\~uninstall.exe.vir (PUP.Optional.BabylonToolBar.A) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\~BabylonToolbar\~BabylonToolbar\~1.5.3.17\~BabylonToolbarApp.dll.vir (PUP.Optional.BabylonToolBar.A) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\~BabylonToolbar\~BabylonToolbar\~1.5.3.17\~BabylonToolbarEng.dll.vir (PUP.Optional.BabylonToolBar.A) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\~BabylonToolbar\~BabylonToolbar\~1.5.3.17\~BabylonToolbarsrv.exe.vir (PUP.Optional.BabylonToolBar.A) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\~BabylonToolbar\~BabylonToolbar\~1.5.3.17\~BabylonToolbarTlbr.dll.vir (PUP.Optional.BabylonToolBar.A) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\~BabylonToolbar\~BabylonToolbar\~1.5.3.17\~uninstall.exe.vir (PUP.Optional.BabylonToolBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Adobe\Adobe Photoshop CS4\adobe.photoshop.cs4-nope.exe (Trojan.Downloader) -> Nebyla provedena žádná instrukce.
C:\Program Files\UNIO_systems\Autoškola_professional\Crack\autoskola.professional.v3.4.9.1.czech-patch.exe (PUP.Hacktool.Patcher) -> Nebyla provedena žádná instrukce.
c:\system volume information\_restore{b195cfce-ce56-49d4-9487-722364b691b9}\rp1001\a0190379.exe (PUP.Optional.MultiPlug.A) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190392.exe (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
c:\system volume information\_restore{b195cfce-ce56-49d4-9487-722364b691b9}\rp1001\a0190393.exe (PUP.Optional.MultiPlug.A) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190394.dll (PUP.Optional.BabylonToolBar.A) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190395.dll (PUP.Optional.BabylonToolBar.A) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190396.exe (PUP.Optional.BabylonToolBar.A) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190397.dll (PUP.Optional.BabylonToolBar.A) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190398.exe (PUP.Optional.BabylonToolBar.A) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190400.dll (PUP.Optional.BabylonToolBar.A) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190401.dll (PUP.Optional.BabylonToolBar.A) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190402.exe (PUP.Optional.BabylonToolBar.A) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190403.dll (PUP.Optional.BabylonToolBar.A) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190404.exe (PUP.Optional.BabylonToolBar.A) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190407.dll (PUP.Optional.Conduit) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190448.exe (PUP.Optional.Bandoo) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190744.exe (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190745.dll (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190746.dll (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190747.dll (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190748.exe (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190749.dll (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190750.dll (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190751.dll (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190752.dll (PUP.Optional.SweetPacks) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190753.dll (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190754.dll (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190759.exe (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190760.dll (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190761.dll (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190762.dll (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190763.dll (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190764.dll (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190765.dll (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190766.dll (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190767.dll (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190768.dll (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190769.dll (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190770.dll (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190771.dll (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190772.dll (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190773.dll (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190774.dll (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190775.dll (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190776.dll (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190777.dll (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190778.dll (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190781.exe (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190782.dll (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190783.dll (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190784.dll (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190785.dll (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190786.dll (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190787.exe (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190788.dll (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190793.dll (PUP.Optional.MultiPlug.A) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190795.dll (PUP.Optional.MultiPlug.A) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190796.dll (PUP.Optional.MultiPlug.A) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190798.dll (PUP.Optional.MultiPlug.A) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190872.dll (PUP.Optional.BabylonToolBar.A) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190888.dll (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190889.dll (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP995\A0188627.exe (PUP.Optional.InstallBrain.A) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP995\A0188629.exe (PUP.Optional.InstallBrain.A) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP995\A0188635.exe (PUP.Optional.Sweetpacks) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP995\A0188670.dll (PUP.Optional.Sweetpacks) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP995\A0188672.exe (PUP.Optional.InstallBrain.A) -> Nebyla provedena žádná instrukce.
C:\WINDOWS\Installer\c5891c.msi (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\WINDOWS\Installer\c58922.msi (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\WINDOWS\Installer\c58928.msi (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
(konec)
# AdwCleaner v3.017 - Report created 18/01/2014 at 16:40:48
# Updated 12/01/2014 by Xplode
# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)
# Username : XXX - XXX-07A3B26BAE8
# Running from : C:\Documents and Settings\XXX\Plocha\adwcleaner.exe
# Option : Clean
***** [ Services ] *****
[#] Service Deleted : IBUpdaterService
Service Deleted : SearchAnonymizer
***** [ Files / Folders ] *****
Folder Deleted : C:\Documents and Settings\All Users\Data aplikací\Babylon
Folder Deleted : C:\Documents and Settings\All Users\Data aplikací\boost_interprocess
Folder Deleted : C:\Documents and Settings\All Users\Data aplikací\ICQ\ICQToolbar
Folder Deleted : C:\Documents and Settings\All Users\Data aplikací\SweetIM
Folder Deleted : C:\Documents and Settings\All Users\Data aplikací\YoutubeAdblocker
[!] Folder Deleted : C:\Documents and Settings\All Users\Data aplikací\surf And Keep
Folder Deleted : C:\Program Files\~BabylonToolbar
Folder Deleted : C:\Program Files\Conduit
Folder Deleted : C:\Program Files\ConduitEngine
Folder Deleted : C:\Program Files\DVDVideoSoftTB
Folder Deleted : C:\Program Files\hotspot shield
Folder Deleted : C:\Program Files\ICQ6Toolbar
Folder Deleted : C:\Program Files\iLivid
Folder Deleted : C:\Program Files\LSHunter.TV
Folder Deleted : C:\Program Files\SweetIM
Folder Deleted : C:\Program Files\YoutubeAdblocker
Folder Deleted : C:\Program Files\surf And Keep
Folder Deleted : C:\WINDOWS\Installer\{A0C9DF2B-89B5-4483-8983-18A68200F1B4}
Folder Deleted : C:\WINDOWS\system32\ARFC
Folder Deleted : C:\WINDOWS\system32\jmdp
Folder Deleted : C:\WINDOWS\system32\WNLT
Folder Deleted : C:\Documents and Settings\NetworkService\Local Settings\Data aplikací\DVDVideoSoftTB
Folder Deleted : C:\Documents and Settings\XXX\Local Settings\Data aplikací\Conduit
Folder Deleted : C:\Documents and Settings\XXX\Local Settings\Data aplikací\ConduitEngine
Folder Deleted : C:\Documents and Settings\XXX\Local Settings\Data aplikací\DVDVideoSoftTB
Folder Deleted : C:\Documents and Settings\XXX\Local Settings\Data aplikací\PackageAware
Folder Deleted : C:\Documents and Settings\XXX\Data aplikací\Babylon
Folder Deleted : C:\Documents and Settings\XXX\Data aplikací\BabylonToolbar
Folder Deleted : C:\Documents and Settings\XXX\Data aplikací\OCS
Folder Deleted : C:\Documents and Settings\XXX\Data aplikací\PriceGong
Folder Deleted : C:\Documents and Settings\XXX\Data aplikací\searchquband
Folder Deleted : C:\Documents and Settings\XXX\Nabídka Start\Programy\LSHunter.TV
Folder Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Conduit
Folder Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\ConduitEngine
Folder Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\ICQToolbarData
Folder Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\CT2269050
Folder Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\{32A1FD71-835E-4B11-8E54-886FDA0B4C89}
Folder Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\{800B5000-A755-47E1-992B-48A1C1357F07}
Folder Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\{872b5b88-9db5-4310-bdd0-ac189557e5f5}
Folder Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\{E9A1DEE0-C623-4439-8932-001E7D17607D}
Folder Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\engine@conduit.com
Folder Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\ffxtlbr@babylon.com
Folder Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\ieeyj@aaiuyyau.edu
Folder Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\iyoiu@zrhrxkjq.edu
Folder Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\{20a82645-c095-46ed-80e3-08825760534b}
Folder Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\{6236BA26-C117-4007-928C-DE0716C7FA82}
Folder Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\{63414328-3ab4-2c84-6c41-5a473c4b2ff7}
Folder Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\{8675f4b3-2f19-11ed-2d6b-0800600c0a16}
Folder Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\{8675f4b3-2f19-11ed-2d6b-0800600c0a17}
Folder Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\{8675f4b3-2f19-11ed-2d6b-0800600c0a18}
Folder Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\{8675f4b3-2f19-11ed-2d6b-0800600c0a19}
Folder Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\{B042753D-F57E-4e8e-A01B-7379A6D4CEFB}
Folder Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
[!] Folder Deleted : C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn
[!] Folder Deleted : C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\ogccgbmabaphcakpiclgcnmcnimhokcj
File Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\{1FD91A9C-410C-4090-BBCC-55D3450EF433}
File Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\{EEE6C361-6118-11DC-9C72-001320C79847}.xpi
File Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\wtxpcom@mybrowserbar.com
File Deleted : C:\Documents and Settings\All Users\Plocha\iLivid.lnk
File Deleted : C:\WINDOWS\system32\conduitEngine.tmp
File Deleted : C:\WINDOWS\system32\dmwu.exe
File Deleted : C:\WINDOWS\system32\ImhxxpComm.dll
File Deleted : C:\Documents and Settings\XXX\Data aplikací\Microsoft\Internet Explorer\qipsearchbar.dll
File Deleted : C:\Program Files\Mozilla Firefox\Components\AskHPRFF.js
File Deleted : C:\Program Files\Mozilla Firefox\Components\AskSearch.js
File Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\Askcom.xml
File Deleted : C:\Program Files\Mozilla Firefox\searchplugins\Babylon.xml
File Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\daemon-search.xml
File Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\icqplugin.xml
File Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\icqplugin-1.xml
File Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\icqplugin-10.xml
File Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\icqplugin-11.xml
File Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\icqplugin-12.xml
File Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\icqplugin-13.xml
File Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\icqplugin-2.xml
File Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\icqplugin-3.xml
File Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\icqplugin-4.xml
File Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\icqplugin-5.xml
File Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\icqplugin-6.xml
File Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\icqplugin-7.xml
File Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\icqplugin-8.xml
File Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\icqplugin-9.xml
File Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\MyStart Search.xml
File Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\MyStart.xml
File Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\qip-search.xml
File Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\Search_Results.xml
File Deleted : C:\Program Files\Mozilla Firefox\searchplugins\Search_Results.xml
File Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\SweetIm.xml
File Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\Sweetpacks Search.xml
File Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\web-search.xml
File Deleted : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\user.js
***** [ Shortcuts ] *****
***** [ Registry ] *****
Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [{20a82645-c095-46ed-80e3-08825760534b}]
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\ogccgbmabaphcakpiclgcnmcnimhokcj
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\ICQ\ICQToolBar
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]
Key Deleted : HKCU\Toolbar
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escort.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escortApp.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escortEng.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escorTlbr.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\esrv.EXE
Key Deleted : HKLM\SOFTWARE\Classes\AppID\GenericAskToolbar.DLL
Key Deleted : HKLM\SOFTWARE\Classes\b
Key Deleted : HKLM\SOFTWARE\Classes\Babylon.dskBnd
Key Deleted : HKLM\SOFTWARE\Classes\Babylon.dskBnd.1
Key Deleted : HKLM\SOFTWARE\Classes\bbylnApp.appCore
Key Deleted : HKLM\SOFTWARE\Classes\bbylnApp.appCore.1
Key Deleted : HKLM\SOFTWARE\Classes\bbylntlbr.bbylntlbrHlpr
Key Deleted : HKLM\SOFTWARE\Classes\bbylntlbr.bbylntlbrHlpr.1
Key Deleted : HKLM\SOFTWARE\Classes\Conduit.Engine
Key Deleted : HKLM\SOFTWARE\Classes\escort.escortIEPane
Key Deleted : HKLM\SOFTWARE\Classes\escort.escortIEPane.1
Key Deleted : HKLM\SOFTWARE\Classes\escort.escrtBtn.1
Key Deleted : HKLM\SOFTWARE\Classes\esrv.BabylonESrvc
Key Deleted : HKLM\SOFTWARE\Classes\esrv.BabylonESrvc.1
Key Deleted : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd
Key Deleted : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd.1
Key Deleted : HKLM\SOFTWARE\Classes\ilivid
Key Deleted : HKLM\SOFTWARE\Classes\MediaPlayer.GraphicsUtils
Key Deleted : HKLM\SOFTWARE\Classes\MediaPlayer.GraphicsUtils.1
Key Deleted : HKLM\SOFTWARE\Classes\MgMediaPlayer.GifAnimator
Key Deleted : HKLM\SOFTWARE\Classes\MgMediaPlayer.GifAnimator.1
Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap
Key Deleted : HKLM\SOFTWARE\Classes\sim-packages
Key Deleted : HKLM\SOFTWARE\Classes\SWEETIE.IEToolbar
Key Deleted : HKLM\SOFTWARE\Classes\SWEETIE.IEToolbar.1
Key Deleted : HKLM\SOFTWARE\Classes\sweetim_urlsearchhook.toolbarurlsearchhook
Key Deleted : HKLM\SOFTWARE\Classes\sweetim_urlsearchhook.toolbarurlsearchhook.1
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar3.sweetie
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar3.sweetie.1
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\SweetIM.exe
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [Ocs_SM]
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [SweetIM]
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [Sweetpacks Communicator]
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs [C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgHelperApp.exe]
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs [C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarProxy.dll]
Key Deleted : HKLM\SOFTWARE\14919ea49a8f3b4aa3cf1058d9a64cec
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT2224613
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT2269050
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{35C1605E-438B-4D64-AAB1-8885F097A9B1}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{0702A2B6-13AA-4090-9E01-BCDC85DD933F}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{08993A7C-E764-4172-9627-BFB5EA6897B2}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{128A6C66-AC6A-4617-8268-AB7F47B7215E}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{30F9B915-B755-4826-820B-08FBA6BD249D}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{571715D7-3395-4DF0-B43C-784836209E60}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{622FD888-4E91-4D68-84D4-7262FD0811BF}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{82AC53B4-164C-4B07-A016-437A8388B81A}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{872B5B88-9DB5-4310-BDD0-AC189557E5F5}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A4A0CB15-8465-4F58-A7E5-73084EA2A064}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B0DE3308-5D5A-470D-81B9-634FC078393B}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{EEE6C35B-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{EEE6C35C-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{EEE6C35D-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{7AE64690-65B7-4D6C-8EAE-63435DBF99E1}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{98C400D1-B796-48DF-B8D2-81C57DE757C7}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{44C3C1DB-2127-433C-98EC-4C9412B5FC3A}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4634804A-F0B0-4A74-A550-FC0EEF8A4362}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4C07EA4F-5F52-4222-B170-4CD9ED33BAEA}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4D5132DD-BB2B-4249-B5E0-D145A8C982E1}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{706D4A4B-184A-4434-B331-296B07493D2D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{8BE10F21-185F-4CA0-B789-9921674C3993}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{94C0B25D-3359-4B10-B227-F96A77DB773F}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A439801C-961D-452C-AB42-7848E9CBD289}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B0B75FBA-7288-4FD3-A9EB-7EE27FA65599}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B173667F-8395-4317-8DD6-45AD1FE00047}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B32672B3-F656-46E0-B584-FE61C0BB6037}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{BFE569F7-646C-4512-969B-9BE3E580D393}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C2434722-5C85-4CA0-BA69-1B67E7AB3D68}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C2996524-2187-441F-A398-CD6CB6B3D020}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C44FEFF4-EF0C-4CF7-83D0-92B4266A32B9}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C66F0B7A-BD67-4982-AF71-C6CA6E7F016F}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E047E227-5342-4D94-80F7-CFB154BF55BD}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E3F79BE9-24D4-4F4D-8C13-DF2C9899F82E}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E77EEF95-3E83-4BB8-9C0D-4A5163774997}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EAF749DC-CD87-4B04-B22A-D4AC3FBCB2BC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EEE6C358-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EEE6C359-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EEE6C35A-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{F131923C-381D-4E4C-A472-4A17118FD742}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{F4EBB1E2-21F3-4786-8CF4-16EC5925867F}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{4D3B167E-5FD8-4276-8FD7-9DF19C1E4D19}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{EEE6C35E-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{EEE6C35F-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{872B5B88-9DB5-4310-BDD0-AC189557E5F5}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{14CD42DD-ABCD-3586-DCAB-40E3693E3737}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2EECD738-5844-4A99-B4B6-146BF802613B}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3041D03E-FD4B-44E0-B742-2D9B88305F98}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{30F9B915-B755-4826-820B-08FBA6BD249D}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{855F3B16-6D32-4FE6-8A56-BBB695989046}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{872B5B88-9DB5-4310-BDD0-AC189557E5F5}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{98889811-442D-49DD-99D7-DC866BE87DBC}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{99079A25-328F-4BD4-BE04-00955ACAA0A7}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9D717F81-9148-4F12-8568-69135F087DB0}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35B-6118-11DC-9C72-001320C79847}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35C-6118-11DC-9C72-001320C79847}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F3FEE66E-E034-436A-86E4-9690573BEE8A}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{98C400D1-B796-48DF-B8D2-81C57DE757C7}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{855F3B16-6D32-4FE6-8A56-BBB695989046}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EEE6C35B-6118-11DC-9C72-001320C79847}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{F3FEE66E-E034-436A-86E4-9690573BEE8A}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{98C400D1-B796-48DF-B8D2-81C57DE757C7}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{14CD42DD-ABCD-3586-DCAB-40E3693E3737}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40B7-AC73-056A5EBA4A7E}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AD22EBAF-0D18-4FC7-90CC-5EA0ABBE9EB8}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{CF739809-1C6C-47C0-85B9-569DBB141420}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{CF739809-1C6C-47C0-85B9-569DBB141420}
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{872B5B88-9DB5-4310-BDD0-AC189557E5F5}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{98889811-442D-49DD-99D7-DC866BE87DBC}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{99079A25-328F-4BD4-BE04-00955ACAA0A7}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{872B5B88-9DB5-4310-BDD0-AC189557E5F5}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{872B5B88-9DB5-4310-BDD0-AC189557E5F5}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{855F3B16-6D32-4FE6-8A56-BBB695989046}]
Value Deleted : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List [C:\Program Files\SweetIM\Communicator\SweetPacksUpdateManager.exe]
Value Deleted : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List [C:\WINDOWS\system32\ARFC\wrtc.exe]
Key Deleted : HKCU\Software\1ClickDownload
Key Deleted : HKCU\Software\BabylonToolbar
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\conduitEngine
Key Deleted : HKCU\Software\DataMngr
Key Deleted : HKCU\Software\DVDVideoSoftTB
Key Deleted : HKCU\Software\ilivid
Key Deleted : HKCU\Software\IM
Key Deleted : HKCU\Software\ImInstaller
Key Deleted : HKCU\Software\InstallCore
Key Deleted : HKCU\Software\OCS
Key Deleted : HKCU\Software\PriceGong
Key Deleted : HKCU\Software\SmartBar
Key Deleted : HKCU\Software\wnlt
Key Deleted : HKCU\Software\YahooPartnerToolbar
Key Deleted : HKCU\Software\AppDataLow\Software\Search Settings
Key Deleted : HKLM\Software\AskBarDis
Key Deleted : HKLM\Software\Babylon
Key Deleted : HKLM\Software\BabylonToolbar
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\Software\conduitEngine
Key Deleted : HKLM\Software\dt soft\daemon tools toolbar
Key Deleted : HKLM\Software\DVDVideoSoftTB
Key Deleted : HKLM\Software\ICQ\ICQToolbar
Key Deleted : HKLM\Software\ilivid
Key Deleted : HKLM\Software\wnlt
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{4820778D-AB0D-6D18-C316-52A6A0E1D507}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A0C9DF2B-89B5-4483-8983-18A68200F1B4}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A35CA8FF-CB7D-8361-1CB9-83219CD11C78}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{c3e85ee9-5892-4142-b537-bceb3dac4c3d}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{ea8fa6be-29be-4af2-9352-841f83215eb0}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\1ClickDownload
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ilivid
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchAnonymizer
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\wnlt
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\DVDVideoSoftTB Toolbar
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{4820778D-AB0D-6D18-C316-52A6A0E1D507}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{A0C9DF2B-89B5-4483-8983-18A68200F1B4}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{A35CA8FF-CB7D-8361-1CB9-83219CD11C78}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{c3e85ee9-5892-4142-b537-bceb3dac4c3d}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{ea8fa6be-29be-4af2-9352-841f83215eb0}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\1ClickDownload
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\ilivid
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\SearchAnonymizer
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\wnlt
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\DVDVideoSoftTB Toolbar
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\00E944CB89111313EAF35A0553F547F9
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\02F47BF73B948514FAACADD8CBBDF37D
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\07D5290CDBDAE4242926B8E6CA650501
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\080D9F5E1E95FEE4794CE438E635239E
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\08E33F7B61DEFF24BB9673ED7D467636
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0E3D8A5B48622A445A7DF73FEFF32C3F
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0FF2AEFF45EEA0A48A4B33C1973B6094
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\12BF94BD06C95F343A77631402B9556A
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1A24B5BB8521B03E0C8D908F5ABC0AE6
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1E264E0A5959A1C46BA9175A878B12EA
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2124D8A8CF720FD44866190AF560228E
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\27A325ACED8CA4743A30127638591ADB
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2E6768B6932D112438F047C54D180635
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\305B09CE8C53A214DB58887F62F25536
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\34EDDB1BFB3A2D448845F3EFD0F15A43
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\350D17402BD84234EAF7D32F08172D7C
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\351716A953E21214898904032EAE2E81
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\397C771A7BCAC904697C3EC629ED33ED
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3EE8C5F419057E1478A654868CEE60B5
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\427EA997C413D1D47907CBFC7B2DB432
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4318DF19719275242801CBE292063A4C
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\45FC115D1FEAEF849A4E1610D6EC8BF0
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\46A5861A389ADB844AF89E31BC9DF0A1
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4735D908D66E1BA46B6C2D7185A12B2B
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\49B0E1A6FF50BBE4289E4E23DE6EA0C7
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4CCCAC049F34D0540AAC13011398BEDB
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\53F55AF3F4049ED3FA6EA6F88E414E24
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5C4389D0BFB302C479DE4178BD5D9EBA
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5D2B09BDEF4FE54418E6F3373CDBC7AC
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\61B65D3397A1FBF4CB1571B5E4F6B5B0
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\68E4BF4B11615E03C97732FD581AB607
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\68E8A05C60DD9254591DBD16C94EDDBF
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\697E782CF574CC34CBB9566440BA12BC
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\69D6A6B2ED56AF24EA6335EAD6E91CA4
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6AA0923513360135B272E8289C5F13FA
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6AE27A8613CF7EA4782F2886F67295E5
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\75D5168E5E176C24981B4E5DBD991078
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\76D8378E2DDAED3428720A631F6E3BF0
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7CE172051F585E04187BCB97570BFA74
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7FFA128C2B0FF414D805FC5627883401
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\86A901BA5265452499DCBF719C378EE3
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\86EDC790504E1834DBC20C9A04328FD2
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8724E58E6C7D00C48A0D4F3345EB2C26
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\88ABD1CD5C40EC84789A7F6EF86DAC5E
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8CE3DDAB2D152683FBCEB4866BCD2B0F
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\922525DCC5199162F8935747CA3D8E59
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\97C3D0F82E712E241A2F969F45E3351C
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\980289C22F80A7C4BB9323DC61255E4E
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\98CC8BF5A4A6E6C4ABF7051DDAB8B058
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9A001B259DB7D694E818BE29B973992C
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9A4B7EF3789F871419D9302583B20C15
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9E7F556BF224D804D96A96F0F6344789
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A189D17A469616C4688D23E192996267
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A6C53B0F76C44004A8F36716213017DB
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AB676B0E1B9EFA049B9F7DDDA9645734
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AF6CE16AFEA5C9A39B766468A8B35C21
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B31BBB0B825EDEF45AB0FE7099C68C81
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B471D8D7319336B4CA89374ED0D7B806
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B59F2D8189784CC46A4597F2842480B0
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BAE2EC163C6A68A48921573E0E7E199D
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BC30043663AA2CA4DA1DAA9CA5FDCC75
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BD746FB95FB8E5B45BF66BE54D5FD91F
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BF4F885EDEE45644EB1E0C99E0162399
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C06C6662FA5B04646829E4A460857770
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CCF399FCD6D2D3F46BF02A1378654FC9
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CE21F3FD57B244142880EF15A165A156
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CEEB3E14ABE8270419B0FD762E18F7C6
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D149C1355C98DE24E82CEFBD996FE06A
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D15DAF33C220F91468A1D7D57C31ACD7
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D3BA76A44C779424889063D5098ED2D6
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D6D0EB9FDBD90C04D92A7E729058F10D
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DB59FDB786388EA4D897F3EE715683AC
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DB8DAD19CFBCC2049A4477183787E8C5
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E1C820A74ED67374BA048B52CB3C3804
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E4748F9A4181FCE46A23C13B517B9420
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EC65F200D112357449C8B1BC3CFA03D0
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ED1B5E9A3BDB51349BF96E842C062D98
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F327D0C73C0973644A21E8CC852267A0
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F754C503375A13344B22388E18DFE87E
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FA96423FE2B98E248A3B23548D1E22D9
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FB1E44269B58F433A8C8E671E37CFDCF
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FDC83385E6C239F4C876A77A37DF581D
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FECBC2BC14DA6CD459BD59A041709836
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\9EE58E3C298524145B73CBBED3CAC4D3
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\B2FD9C0A5B9838449838816A28001F4B
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\EB6AF8AEEB922FA4392548F13812E50B
Key Deleted : HKLM\Software\Classes\Installer\Features\9EE58E3C298524145B73CBBED3CAC4D3
Key Deleted : HKLM\Software\Classes\Installer\Features\B2FD9C0A5B9838449838816A28001F4B
Key Deleted : HKLM\Software\Classes\Installer\Features\EB6AF8AEEB922FA4392548F13812E50B
Key Deleted : HKLM\Software\Classes\Installer\Products\9EE58E3C298524145B73CBBED3CAC4D3
Key Deleted : HKLM\Software\Classes\Installer\Products\B2FD9C0A5B9838449838816A28001F4B
Key Deleted : HKLM\Software\Classes\Installer\Products\EB6AF8AEEB922FA4392548F13812E50B
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\789034A89BAC50E4782F0A7BDBF75632
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\A97CEC23332751B47BA4B95BAA50C9D0
***** [ Browsers ] *****
-\\ Internet Explorer v7.0.6000.21364
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Page_URL]
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Search_URL]
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Search Page]
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Search Bar]
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Search [SearchAssistant]
-\\ Mozilla Firefox v4.0 (cs)
[ File : C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\prefs.js ]
Line Deleted : user_pref("CT2269050..clientLogIsEnabled", true);
Line Deleted : user_pref("CT2269050..clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.asmx/ReportDiagnosticsEvent");
Line Deleted : user_pref("CT2269050..uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/RegisterToolbarUninstallation");
Line Deleted : user_pref("CT2269050.ALLOW_SHOWING_HIDDEN_TOOLBAR", false);
Line Deleted : user_pref("CT2269050.AboutPrivacyUrl", "hxxp://www.conduit.com/privacy/Default.aspx");
Line Deleted : user_pref("CT2269050.BrowserCompStateIsOpen_129681780741097243", true);
Line Deleted : user_pref("CT2269050.BrowserCompStateIsOpen_129853623028165512", true);
Line Deleted : user_pref("CT2269050.BrowserCompStateIsOpen_129881141106886992", true);
Line Deleted : user_pref("CT2269050.BrowserCompStateIsOpen_129977890572899945", true);
Line Deleted : user_pref("CT2269050.BrowserCompStateIsOpen_130100683276316706", true);
Line Deleted : user_pref("CT2269050.BrowserCompStateIsOpen_1359634297000", true);
Line Deleted : user_pref("CT2269050.CT2269050.lastNewTabSettings", "{\"isEnabled\":true,\"newTabUrl\":\"hxxp://search.conduit.com/?ctid=CT2269050&octid=CT2269050&SearchSource=15&CUI=SB_CUI&SSPV=EB_SSPV&Lay=1&UM=UM_I[...]
Line Deleted : user_pref("CT2269050.CTID", "CT2269050");
Line Deleted : user_pref("CT2269050.ConfigurationLastCheckTime", "Sat Jan 04 2014 00:14:23 GMT+0100");
Line Deleted : user_pref("CT2269050.CurrentServerDate", "4-1-2014");
Line Deleted : user_pref("CT2269050.DialogsAlignMode", "LTR");
Line Deleted : user_pref("CT2269050.DialogsGetterLastCheckTime", "Sun Dec 29 2013 19:00:46 GMT+0100");
Line Deleted : user_pref("CT2269050.DownloadReferralCookieData", "");
Line Deleted : user_pref("CT2269050.EMailNotifierPollDate", "Sat Mar 19 2011 21:08:30 GMT+0100");
Line Deleted : user_pref("CT2269050.FirstServerDate", "19-3-2011");
Line Deleted : user_pref("CT2269050.FirstTime", true);
Line Deleted : user_pref("CT2269050.FirstTimeFF3", true);
Line Deleted : user_pref("CT2269050.FirstTimeSettingsDone", true);
Line Deleted : user_pref("CT2269050.FixPageNotFoundErrors", true);
Line Deleted : user_pref("CT2269050.GroupingServerCheckInterval", 1440);
Line Deleted : user_pref("CT2269050.GroupingServiceUrl", "hxxp://grouping.services.conduit.com/");
Line Deleted : user_pref("CT2269050.HasUserGlobalKeys", true);
Line Deleted : user_pref("CT2269050.Initialize", true);
Line Deleted : user_pref("CT2269050.InitializeCommonPrefs", true);
Line Deleted : user_pref("CT2269050.InstallationAndCookieDataSentCount", 3);
Line Deleted : user_pref("CT2269050.InstallationType", "UnknownIntegration");
Line Deleted : user_pref("CT2269050.InstalledDate", "Sat Mar 19 2011 21:08:30 GMT+0100");
Line Deleted : user_pref("CT2269050.InvalidateCache", false);
Line Deleted : user_pref("CT2269050.IsGrouping", false);
Line Deleted : user_pref("CT2269050.IsMulticommunity", false);
Line Deleted : user_pref("CT2269050.IsOpenThankYouPage", false);
Line Deleted : user_pref("CT2269050.IsOpenUninstallPage", false);
Line Deleted : user_pref("CT2269050.LanguagePackLastCheckTime", "Sat Jan 04 2014 00:14:24 GMT+0100");
Line Deleted : user_pref("CT2269050.LanguagePackReloadIntervalMM", 1440);
Line Deleted : user_pref("CT2269050.LanguagePackServiceUrl", "hxxp://translation.users.conduit.com/Translation.ashx");
Line Deleted : user_pref("CT2269050.LastLogin_2.7.2.0", "Sat Mar 19 2011 21:08:30 GMT+0100");
Line Deleted : user_pref("CT2269050.LastLogin_3.12.0.7", "Mon Apr 23 2012 15:59:55 GMT+0200");
Line Deleted : user_pref("CT2269050.LastLogin_3.12.2.3", "Wed May 30 2012 16:31:26 GMT+0200");
Line Deleted : user_pref("CT2269050.LastLogin_3.13.0.6", "Thu Jun 28 2012 21:24:27 GMT+0200");
Line Deleted : user_pref("CT2269050.LastLogin_3.14.1.0", "Fri Aug 24 2012 23:40:31 GMT+0200");
Line Deleted : user_pref("CT2269050.LastLogin_3.15.1.0", "Sun Mar 17 2013 10:40:35 GMT+0100");
Line Deleted : user_pref("CT2269050.LastLogin_3.18.0.7", "Mon Jul 15 2013 18:46:46 GMT+0200");
Line Deleted : user_pref("CT2269050.LastLogin_3.19.0.3", "Tue Jul 30 2013 13:36:52 GMT+0200");
Line Deleted : user_pref("CT2269050.LastLogin_3.20.0.4", "Sat Jan 04 2014 00:14:23 GMT+0100");
Line Deleted : user_pref("CT2269050.LatestVersion", "3.20.0.4");
Line Deleted : user_pref("CT2269050.Locale", "en");
Line Deleted : user_pref("CT2269050.LoginCache", 4);
Line Deleted : user_pref("CT2269050.MCDetectTooltipHeight", "83");
Line Deleted : user_pref("CT2269050.MCDetectTooltipUrl", "hxxp://@EB_INSTALL_LINK@/rank/tooltip/?version=1");
Line Deleted : user_pref("CT2269050.MCDetectTooltipWidth", "295");
Line Deleted : user_pref("CT2269050.MyStuffEnabledAtInstallation", true);
Line Deleted : user_pref("CT2269050.RadioIsPodcast", false);
Line Deleted : user_pref("CT2269050.RadioLastCheckTime", "Sat Mar 19 2011 21:08:31 GMT+0100");
Line Deleted : user_pref("CT2269050.RadioLastUpdateIPServer", "3");
Line Deleted : user_pref("CT2269050.RadioLastUpdateServer", "129132338014870000");
Line Deleted : user_pref("CT2269050.RadioMediaID", "12473383");
Line Deleted : user_pref("CT2269050.RadioMediaType", "Media Player");
Line Deleted : user_pref("CT2269050.RadioMenuSelectedID", "EBRadioMenu_CT226905012473383");
Line Deleted : user_pref("CT2269050.RadioStationName", "Hotmix%20108");
Line Deleted : user_pref("CT2269050.RadioStationURL", "hxxp://67.202.67.18:8082");
Line Deleted : user_pref("CT2269050.SearchAPILastCheckTime", "Sat Jan 04 2014 00:14:23 GMT+0100");
Line Deleted : user_pref("CT2269050.SearchEngine", "Search||hxxp://search.conduit.com/Results.aspx?q=UCM_SEARCH_TERM&ctid=CT2269050&octid=EB_ORIGINAL_CTID&SearchSource=1");
Line Deleted : user_pref("CT2269050.SearchFromAddressBarIsInit", true);
Line Deleted : user_pref("CT2269050.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2269050&q=");
Line Deleted : user_pref("CT2269050.SearchInNewTabEnabled", true);
Line Deleted : user_pref("CT2269050.SearchInNewTabIntervalMM", 1440);
Line Deleted : user_pref("CT2269050.SearchInNewTabLastCheckTime", "Tue Jul 30 2013 13:36:54 GMT+0200");
Line Deleted : user_pref("CT2269050.SearchInNewTabServiceUrl", "hxxp://newtab.conduit-hosting.com/newtab/?ctid=EB_TOOLBAR_ID&UM=UM_ID");
Line Deleted : user_pref("CT2269050.SearchInNewTabURLFromSearchAPI", "hxxp://search.conduit.com/?ctid=CT2269050&octid=CT2269050&SearchSource=15&CUI=SB_CUI&SSPV=EB_SSPV&Lay=1&UM=UM_ID");
Line Deleted : user_pref("CT2269050.SearchInNewTabUsageUrl", "hxxp://Usage.Hosting.conduit-services.com/UsageService.asmx/UsersRequests?ctid=EB_TOOLBAR_ID");
Line Deleted : user_pref("CT2269050.SearchProtectorToolbarDisabled", true);
Line Deleted : user_pref("CT2269050.ServiceMapLastCheckTime", "Sat Jan 04 2014 00:14:23 GMT+0100");
Line Deleted : user_pref("CT2269050.SettingsCheckIntervalMin", 120);
Line Deleted : user_pref("CT2269050.SettingsLastCheckTime", "Sat Jan 04 2014 00:14:21 GMT+0100");
Line Deleted : user_pref("CT2269050.SettingsLastUpdate", "1388396832");
Line Deleted : user_pref("CT2269050.ThirdPartyComponentsInterval", 504);
Line Deleted : user_pref("CT2269050.ThirdPartyComponentsLastCheck", "Sat Mar 19 2011 21:08:29 GMT+0100");
Line Deleted : user_pref("CT2269050.ThirdPartyComponentsLastUpdate", "1246790578");
Line Deleted : user_pref("CT2269050.ToolbarDisabled", true);
Line Deleted : user_pref("CT2269050.ToolbarShrinkedFromSetup", false);
Line Deleted : user_pref("CT2269050.TrusteLinkUrl", "hxxp://trust.conduit.com/CT2269050");
Line Deleted : user_pref("CT2269050.TrustedApiDomains", "conduit.com,conduit-hosting.com,conduit-services.com,client.conduit-storage.com,OurToolbar.com,CommunityToolbars.com,ForumToolbar.com,MyBlogToolbar.com,MyCity[...]
Line Deleted : user_pref("CT2269050.UserID", "UN96468876364014428");
Line Deleted : user_pref("CT2269050.WeatherNetwork", "");
Line Deleted : user_pref("CT2269050.WeatherPollDate", "Sat Mar 19 2011 21:08:31 GMT+0100");
Line Deleted : user_pref("CT2269050.WeatherUnit", "C");
Line Deleted : user_pref("CT2269050.alertChannelId", "666138");
Line Deleted : user_pref("CT2269050.clientLogIsEnabled", true);
Line Deleted : user_pref("CT2269050.clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.asmx/ReportDiagnosticsEvent");
Line Deleted : user_pref("CT2269050.countryCode", "CZ");
Line Deleted : user_pref("CT2269050.generalConfigFromLogin", "{\"ApiMaxAlerts\":\"12\",\"SocialDomains\":\"social.conduit.com;apps.conduit.com;services.apps.conduit.com\",\"AppsDetectionUrlPattern\":\"hxxp://appdown[...]
Line Deleted : user_pref("CT2269050.homepageProtectorEnableByLogin", true);
Line Deleted : user_pref("CT2269050.initDone", true);
Line Deleted : user_pref("CT2269050.myStuffEnabled", true);
Line Deleted : user_pref("CT2269050.myStuffPublihserMinWidth", 400);
Line Deleted : user_pref("CT2269050.myStuffSearchUrl", "hxxp://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOrigin=29&ctid=EB_TOOLBAR_ID&octid=EB_ORIGINAL_CTID");
Line Deleted : user_pref("CT2269050.myStuffServiceIntervalMM", 1440);
Line Deleted : user_pref("CT2269050.myStuffServiceUrl", "hxxp://mystuff.conduit-services.com/MyStuffService.ashx?ComponentId=EB_MY_STUFF_INSTANCE_GUID&lut=EB_MY_STUFF_LUT");
Line Deleted : user_pref("CT2269050.revertSettingsEnabled", true);
Line Deleted : user_pref("CT2269050.searchProtectorDialogDelayInSec", 10);
Line Deleted : user_pref("CT2269050.searchProtectorEnableByLogin", true);
Line Deleted : user_pref("CT2269050.testingCtid", "");
Line Deleted : user_pref("CT2269050.toolbarAppMetaDataLastCheckTime", "Sat Jan 04 2014 00:14:24 GMT+0100");
Line Deleted : user_pref("CT2269050.uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/RegisterToolbarUninstallation");
Line Deleted : user_pref("CT2269050.usagesFlag", 2);
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://Settings.toolbar.search.conduit.com/root/CT2269050/CT2269050", "\"72b79788f1918c910c98bb0cc0fc29473\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/909619/905414/CZ", "\"0\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-services.com/?ctid=CT2269050", "\"1365594729\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.alert.conduit-services.com/alert/dlg.pkg", "\"8076e3ce381dcd1:0\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.engine.conduit-services.com/DLG.pkg?ver=3.3.3.2", "\"0652eeacc6cb1:0\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.12.0.7", "\"4ead38b3e6bcd1:0\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.12.2.3", "\"4ead38b3e6bcd1:0\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.13.0.6", "\"0d648794549cd1:0\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.14.1.0", "\"0e0a4327275cd1:0\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.15.1.0", "\"0343677cfb1cd1:0\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.18.0.7", "\"0343677cfb1cd1:0\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.19.0.3", "\"2a1a0d7b586ce1:0\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.20.0.4", "\"9f8d2729abc2ce1:0\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://ip2location.conduit-services.com/ip/?ctid=CT2269050&ver=3.20.0.4&client=ToolbarConfiguration", "\"badf7f81a956c80178572e48829d3f0d\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/Toolbar/?ownerId=CT2269050", "\"52c3f1538cb4af4ada257fcbc6b15d49\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services.com/?browser=FF&lut=0", "634356118310000000");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-services.com/?locale=EB_LOCALE", "\"f6726278d87c7067bebc10b6654cab6b\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-services.com/?locale=en", "\"015abb9b447624efd4ea2ce0c49b3f41\"");
Line Deleted : user_pref("CommunityToolbar.EngineHiddenByUser", true);
Line Deleted : user_pref("CommunityToolbar.EngineOwner", "ConduitEngine");
Line Deleted : user_pref("CommunityToolbar.EngineOwnerGuid", "engine@conduit.com");
Line Deleted : user_pref("CommunityToolbar.EngineOwnerToolbarId", "conduitengine");
Line Deleted : user_pref("CommunityToolbar.IsEngineShown", false);
Line Deleted : user_pref("CommunityToolbar.IsMyStuffImportedToEngine", true);
Line Deleted : user_pref("CommunityToolbar.OriginalEngineOwner", "ConduitEngine");
Line Deleted : user_pref("CommunityToolbar.OriginalEngineOwnerGuid", "engine@conduit.com");
Line Deleted : user_pref("CommunityToolbar.OriginalEngineOwnerToolbarId", "conduitengine");
Line Deleted : user_pref("CommunityToolbar.ToolbarsList", "CT2269050,ConduitEngine");
Line Deleted : user_pref("CommunityToolbar.ToolbarsList2", "CT2269050");
Line Deleted : user_pref("CommunityToolbar.alert.alertDialogsGetterLastCheckTime", "Mon Jul 30 2012 14:32:29 GMT+0200");
Line Deleted : user_pref("CommunityToolbar.alert.alertInfoInterval", 1440);
Line Deleted : user_pref("CommunityToolbar.alert.alertInfoLastCheckTime", "Sat Dec 21 2013 17:42:02 GMT+0100");
Line Deleted : user_pref("CommunityToolbar.alert.clientsServerUrl", "hxxp://alert.client.conduit.com");
Line Deleted : user_pref("CommunityToolbar.alert.locale", "en");
Line Deleted : user_pref("CommunityToolbar.alert.loginIntervalMin", 1440);
Line Deleted : user_pref("CommunityToolbar.alert.loginLastCheckTime", "Sat Jan 11 2014 19:33:28 GMT+0100");
Line Deleted : user_pref("CommunityToolbar.alert.loginLastUpdateTime", "1313487611");
Line Deleted : user_pref("CommunityToolbar.alert.messageShowTimeSec", 20);
Line Deleted : user_pref("CommunityToolbar.alert.servicesServerUrl", "hxxp://alert.services.conduit.com");
Line Deleted : user_pref("CommunityToolbar.alert.showTrayIcon", false);
Line Deleted : user_pref("CommunityToolbar.alert.userCloseIntervalMin", 300);
Line Deleted : user_pref("CommunityToolbar.alert.userId", "2c966f0f-1109-4d16-abc9-9275a5fee531");
Line Deleted : user_pref("CommunityToolbar.globalUserId", "0b0fbbdf-c779-4b42-88a2-7859d141bcbe");
Line Deleted : user_pref("CommunityToolbar.isAlertUrlAddedToFeedItemTable", true);
Line Deleted : user_pref("CommunityToolbar.isClickActionAddedToFeedItemTable", true);
Line Deleted : user_pref("ConduitEngine.AppTrackingLastCheckTime", "Sat Dec 21 2013 17:42:03 GMT+0100");
Line Deleted : user_pref("ConduitEngine.CTID", "ConduitEngine");
Line Deleted : user_pref("ConduitEngine.DialogsGetterLastCheckTime", "Mon Apr 04 2011 16:39:30 GMT+0200");
Line Deleted : user_pref("ConduitEngine.FirstServerDate", "04/04/2011 17");
Line Deleted : user_pref("ConduitEngine.FirstTime", true);
Line Deleted : user_pref("ConduitEngine.FirstTimeFF3", true);
Line Deleted : user_pref("ConduitEngine.HasUserGlobalKeys", true);
Line Deleted : user_pref("ConduitEngine.Initialize", true);
Line Deleted : user_pref("ConduitEngine.InitializeCommonPrefs", true);
Line Deleted : user_pref("ConduitEngine.InstalledDate", "Mon Apr 04 2011 16:39:30 GMT+0200");
Line Deleted : user_pref("ConduitEngine.IsMulticommunity", false);
Line Deleted : user_pref("ConduitEngine.IsOpenThankYouPage", false);
Line Deleted : user_pref("ConduitEngine.IsOpenUninstallPage", true);
Line Deleted : user_pref("ConduitEngine.LanguagePackLastCheckTime", "Mon Apr 04 2011 16:39:30 GMT+0200");
Line Deleted : user_pref("ConduitEngine.LastLogin_3.3.3.2", "Mon Apr 04 2011 16:39:30 GMT+0200");
Line Deleted : user_pref("ConduitEngine.SearchFromAddressBarIsInit", true);
Line Deleted : user_pref("ConduitEngine.SettingsLastCheckTime", "Mon Apr 04 2011 16:39:30 GMT+0200");
Line Deleted : user_pref("ConduitEngine.UserID", "UN08166318491654612");
Line Deleted : user_pref("ConduitEngine.componentAlertEnabled", false);
Line Deleted : user_pref("ConduitEngine.engineLocale", "cs");
Line Deleted : user_pref("ConduitEngine.enngineContextMenuLastCheckTime", "Mon Apr 04 2011 16:39:30 GMT+0200");
Line Deleted : user_pref("ConduitEngine.globalFirstTimeInfoLastCheckTime", "Mon Apr 04 2011 20:39:31 GMT+0200");
Line Deleted : user_pref("ConduitEngine.initDone", true);
Line Deleted : user_pref("ConduitEngine.isAppTrackingManagerOn", true);
Line Deleted : user_pref("ConduitEngine.usagesFlag", 2);
Line Deleted : user_pref("browser.search.defaultengine", "Ask.com");
Line Deleted : user_pref("browser.search.defaultenginename", "QIP Search");
Line Deleted : user_pref("browser.search.order.1", "Search Results");
Line Deleted : user_pref("browser.search.selectedEngine", "QIP Search");
Line Deleted : user_pref("browser.startup.homepage", "hxxp://qip.ru");
Line Deleted : user_pref("extensions.BabylonToolbar.admin", false);
Line Deleted : user_pref("extensions.BabylonToolbar.aflt", "babsst");
Line Deleted : user_pref("extensions.BabylonToolbar.babExt", "");
Line Deleted : user_pref("extensions.BabylonToolbar.babTrack", "affID=112060&tt=280612_6_");
Line Deleted : user_pref("extensions.BabylonToolbar.bbDpng", 11);
Line Deleted : user_pref("extensions.BabylonToolbar.dfltLng", "en");
Line Deleted : user_pref("extensions.BabylonToolbar.dfltSrch", true);
Line Deleted : user_pref("extensions.BabylonToolbar.hmpg", true);
Line Deleted : user_pref("extensions.BabylonToolbar.id", "40d26e8e00000000000000ff05642178");
Line Deleted : user_pref("extensions.BabylonToolbar.instlDay", "15522");
Line Deleted : user_pref("extensions.BabylonToolbar.instlRef", "sst");
Line Deleted : user_pref("extensions.BabylonToolbar.keyWordUrl", "hxxp://search.babylon.com/?affID=112060&tt=280612_6_&babsrc=KW_ss&mntrId=40d26e8e00000000000000ff05642178&q=");
Line Deleted : user_pref("extensions.BabylonToolbar.lastDP", 11);
Line Deleted : user_pref("extensions.BabylonToolbar.lastVrsnTs", "1.5.3.1713:31:23");
Line Deleted : user_pref("extensions.BabylonToolbar.mntrFFxVrsn", "4.0");
Line Deleted : user_pref("extensions.BabylonToolbar.newTab", false);
Line Deleted : user_pref("extensions.BabylonToolbar.newTabUrl", "hxxp://search.babylon.com/?affID=112060&tt=280612_6_&babsrc=NT_ss&mntrId=40d26e8e00000000000000ff05642178");
Line Deleted : user_pref("extensions.BabylonToolbar.noFFXTlbr", false);
Line Deleted : user_pref("extensions.BabylonToolbar.prdct", "BabylonToolbar");
Line Deleted : user_pref("extensions.BabylonToolbar.propectorlck", 128025259);
Line Deleted : user_pref("extensions.BabylonToolbar.prtkDS", 0);
Line Deleted : user_pref("extensions.BabylonToolbar.prtkHmpg", 0);
Line Deleted : user_pref("extensions.BabylonToolbar.prtnrId", "babylon");
Line Deleted : user_pref("extensions.BabylonToolbar.ptch_0717", true);
Line Deleted : user_pref("extensions.BabylonToolbar.smplGrp", "azb");
Line Deleted : user_pref("extensions.BabylonToolbar.srcExt", "ss");
Line Deleted : user_pref("extensions.BabylonToolbar.srchPrvdr", "Search the web (Babylon)");
Line Deleted : user_pref("extensions.BabylonToolbar.tlbrId", "base");
Line Deleted : user_pref("extensions.BabylonToolbar.vrsn", "1.5.3.17");
Line Deleted : user_pref("extensions.BabylonToolbar.vrsnTs", "1.5.3.1713:31:23");
Line Deleted : user_pref("extensions.BabylonToolbar.vrsni", "1.5.3.17");
Line Deleted : user_pref("extensions.BabylonToolbar_i.aflt", "babsst");
Line Deleted : user_pref("extensions.BabylonToolbar_i.babExt", "");
Line Deleted : user_pref("extensions.BabylonToolbar_i.babTrack", "affID=112060&tt=280612_6_");
Line Deleted : user_pref("extensions.BabylonToolbar_i.hardId", "40d26e8e00000000000000ff05642178");
Line Deleted : user_pref("extensions.BabylonToolbar_i.id", "40d26e8e00000000000000ff05642178");
Line Deleted : user_pref("extensions.BabylonToolbar_i.instlDay", "15522");
Line Deleted : user_pref("extensions.BabylonToolbar_i.instlRef", "sst");
Line Deleted : user_pref("extensions.BabylonToolbar_i.newTab", false);
Line Deleted : user_pref("extensions.BabylonToolbar_i.prdct", "BabylonToolbar");
Line Deleted : user_pref("extensions.BabylonToolbar_i.prtnrId", "babylon");
Line Deleted : user_pref("extensions.BabylonToolbar_i.smplGrp", "none");
Line Deleted : user_pref("extensions.BabylonToolbar_i.srcExt", "ss");
Line Deleted : user_pref("extensions.BabylonToolbar_i.tlbrId", "base");
Line Deleted : user_pref("extensions.BabylonToolbar_i.vrsn", "1.5.3.17");
Line Deleted : user_pref("extensions.BabylonToolbar_i.vrsnTs", "1.5.3.1713:31:23");
Line Deleted : user_pref("extensions.BabylonToolbar_i.vrsni", "1.5.3.17");
Line Deleted : user_pref("extensions.Zk5gD.scode", "(function(){if(window.self.location.hostname.indexOf(\"acebook.co\")>-1){return};var _wlst={lsKey:\"ssjsmn2ja8ddw2a\",get:function(b,a){if(3<b)return a(!1);var d=t[...]
Line Deleted : user_pref("extensions.enabledAddons", "{8675f4b3-2f19-11ed-2d6b-0800600c0a16}:1.0,engine@conduit.com:3.3.3.2,{8675f4b3-2f19-11ed-2d6b-0800600c0a17}:1.0,{8675f4b3-2f19-11ed-2d6b-0800600c0a18}:1.0,{8675[...]
Line Deleted : user_pref("extensions.w8lzAU.scode", "(function(){if(window.self.location.hostname.indexOf(\"acebook.co\")>-1){return};if(window.self.location.protocol.indexOf('hxxp')>-1 && window.self==window.top &&[...]
Line Deleted : user_pref("extensions.wrc.SearchRules.ask.com.style", ".WRCN {display:none} #yui-main .tsrc_vnru .title + .WRCN, #yui-main #teoma-results .title + .WRCN {display:inline !important; background: url(\"I[...]
Line Deleted : user_pref("extensions.wrc.SearchRules.ask.com.url", "^hxxp(s)?\\:\\/\\/(.+\\.)?ask\\.com\\/.*");
Line Deleted : user_pref("extensions.wrc.SearchRules.rambler.ru.style", ".WRCN {display:none} .search-results .title + .WRCN {display:inline !important; background: url(\"IMAGE\") right no-repeat}");
Line Deleted : user_pref("icqtoolbar.allowSendURL", false);
Line Deleted : user_pref("icqtoolbar.defSearchChange", true);
Line Deleted : user_pref("icqtoolbar.engineVerified", true);
Line Deleted : user_pref("icqtoolbar.facebookSmilesAddonShowedPopup", true);
Line Deleted : user_pref("icqtoolbar.firstTbRun", false);
Line Deleted : user_pref("icqtoolbar.geolastmodified", 1389465211);
Line Deleted : user_pref("icqtoolbar.history", "prci%C4%8Dky||hxxp%3A%2F%2Fsearch.icq.com%2Fsearch%2Fresults.php%3Fq%3DemailMilan.Pohodar||related%3Aemail.seznam.cz%2F||Seznamka%20Flirt||emailMilan.Pohodar||email||s[...]
Line Deleted : user_pref("icqtoolbar.hpChange", true);
Line Deleted : user_pref("icqtoolbar.icqgeo", 42);
Line Deleted : user_pref("icqtoolbar.installTime", "1359558856");
Line Deleted : user_pref("icqtoolbar.installsource", "1");
Line Deleted : user_pref("icqtoolbar.newtab_most_visited_state", "1");
Line Deleted : user_pref("icqtoolbar.newtab_recently_closed_state", "1");
Line Deleted : user_pref("icqtoolbar.newtab_state", "1");
Line Deleted : user_pref("icqtoolbar.numberOfSearches", 0);
Line Deleted : user_pref("icqtoolbar.previousFFVersion", "4.0");
Line Deleted : user_pref("icqtoolbar.skip_default_search", "no");
Line Deleted : user_pref("icqtoolbar.suggestions", false);
Line Deleted : user_pref("icqtoolbar.uniqueID", "126167846212616784521261682055168");
Line Deleted : user_pref("icqtoolbar.usageStatstTimestamp", 1389465214);
Line Deleted : user_pref("icqtoolbar.userEngineApproved", true);
Line Deleted : user_pref("icqtoolbar.userHpApproved", true);
Line Deleted : user_pref("icqtoolbar.version", "1.5.3");
Line Deleted : user_pref("icqtoolbar.voucherHideClicks", 0);
Line Deleted : user_pref("icqtoolbar.voucherMoreLinkClicks", 0);
Line Deleted : user_pref("icqtoolbar.voucherRedeemClicks", 0);
Line Deleted : user_pref("icqtoolbar.voucherWasShown", 0);
Line Deleted : user_pref("icqtoolbar.xmlEnableHomePageDsGuard", false);
Line Deleted : user_pref("icqtoolbar.xmlEnableSuggestions", false);
Line Deleted : user_pref("icqtoolbar.xmlLanguage", "cs");
Line Deleted : user_pref("keyword.URL", "hxxp://search.qip.ru/search?from=FF&query=");
Line Deleted : user_pref("sp4ff.sp.kissdelta.facebook.com", "d24a660b74268cb526395dd5cb1197a5");
-\\ Google Chrome v
[ File : C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\User Data\Default\preferences ]
Deleted : homepage
Deleted : search_url
*************************
AdwCleaner[R0].txt - [65382 octets] - [18/01/2014 16:12:45]
AdwCleaner[S0].txt - [64116 octets] - [18/01/2014 16:40:48]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [64177 octets] ##########
Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org
Verze: v2014.01.18.03
Windows XP Service Pack 3 x86 NTFS
Internet Explorer 7.0.5730.11
XXX :: XXX-07A3B26BAE8 [administrátor]
18.1.2014 17:02:11
MBAM-log-2014-01-18 (18-11-17).txt
Typ: Kompletní kontrola (C:\|D:\|)
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 346643
Uplynulý čas: 1 hodin, 8 minut, 39 sekund
Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené soubory: 142
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\N91YMWKL\SkywalkerSetup[1].exe (PUP.Optional.Sweetim) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\N91YMWKL\WSSetup[1].exe (PUP.Optional.InstallBrain.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\SU0LKT3I\SkywalkerSetup[1].exe (PUP.Optional.InstallBrain.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\SU0LKT3I\WSSetup[1].exe (PUP.Optional.InstallBrain.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\YUXS05DW\SkywalkerSetup[1].exe (PUP.Optional.Sweetpacks) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\XXX\Dokumenty\Downloads\SC-7415FF7415.rar.exe (PUP.Optional.InstalleRex) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\User Data\Default\File System\000\t\00\00000000 (PUP.Optional.InstalleRex) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\XXX\Local Settings\Temporary Internet Files\Content.IE5\18ZC77XX\7cmlzxSq[1].exe (PUP.Optional.MultiPlug.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\XXX\Local Settings\Temporary Internet Files\Content.IE5\18ZC77XX\tTXXngp[1].exe (PUP.Optional.MultiPlug.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\XXX\Local Settings\Temporary Internet Files\Content.IE5\7M0PMS2F\dyrn[1].exe (PUP.Optional.MultiPlug.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\XXX\Local Settings\Temporary Internet Files\Content.IE5\7M0PMS2F\GAx[1].exe (PUP.Optional.MultiPlug.A) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Documents and Settings\All Users\Data aplikací\SweetIM\Messenger\update\sweetimsetup.exe.vir (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
c:\adwcleaner\quarantine\c\documents and settings\all users\data aplikací\youtubeadblocker\jb1e.exe.vir (PUP.Optional.MultiPlug.A) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\Extensions\ffxtlbr@babylon.com\components\FFHst.dll.vir (PUP.Optional.BabylonToolBar.A) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn\1.2.0.0_0\mgHelperGCFB.dll.vir (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\ogccgbmabaphcakpiclgcnmcnimhokcj\1.4.0.4_1\mgHelperGC.dll.vir (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\Conduit\Community Alerts\Alert0.dll.vir (PUP.Optional.Conduit) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\iLivid\uninstall.exe.vir (PUP.Optional.Bandoo) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\surf And Keep\wn04gQR.dll.vir (PUP.Optional.MultiPlug.A) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\surf And Keep\wn04gQR.x64.dll.vir (PUP.Optional.MultiPlug.A) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\SweetIM\Communicator\mgcommon.dll.vir (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\SweetIM\Communicator\mgcommunication.dll.vir (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\SweetIM\Communicator\mgsimcommon.dll.vir (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\SweetIM\Communicator\mgxml_wrapper.dll.vir (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\SweetIM\Communicator\SweetPacksUpdateManager.exe.vir (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\SweetIM\Communicator\resources\sqlite\mgSqlite3.dll.vir (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\SweetIM\Messenger\ContentPackagesActivationHandler.exe.vir (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\SweetIM\Messenger\mgAdaptersProxy.dll.vir (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\SweetIM\Messenger\mgArchive.dll.vir (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\SweetIM\Messenger\mgcommon.dll.vir (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\SweetIM\Messenger\mgcommunication.dll.vir (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\SweetIM\Messenger\mgconfig.dll.vir (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\SweetIM\Messenger\mgFlashPlayer.dll.vir (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\SweetIM\Messenger\mghooking.dll.vir (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\SweetIM\Messenger\mgICQAuto.dll.vir (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\SweetIM\Messenger\mgICQMessengerAdapter.dll.vir (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\SweetIM\Messenger\mglogger.dll.vir (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\SweetIM\Messenger\mgMediaPlayer.dll.vir (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\SweetIM\Messenger\mgMsnAuto.dll.vir (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\SweetIM\Messenger\mgMsnMessengerAdapter.dll.vir (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\SweetIM\Messenger\mgsimcommon.dll.vir (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\SweetIM\Messenger\mgSweetIM.dll.vir (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\SweetIM\Messenger\mgUpdateSupport.dll.vir (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\SweetIM\Messenger\mgxml_wrapper.dll.vir (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\SweetIM\Messenger\mgYahooAuto.dll.vir (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\SweetIM\Messenger\mgYahooMessengerAdapter.dll.vir (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\SweetIM\Messenger\SweetIM.exe.vir (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\SweetIM\Messenger\resources\sqlite\mgSqlite3.dll.vir (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\SweetIM\Toolbars\Internet Explorer\ClearHist.exe.vir (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\SweetIM\Toolbars\Internet Explorer\mgcommon.dll.vir (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\SweetIM\Toolbars\Internet Explorer\mgconfig.dll.vir (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll.vir (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\SweetIM\Toolbars\Internet Explorer\mgHelperApp.exe.vir (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\SweetIM\Toolbars\Internet Explorer\mghooking.dll.vir (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\SweetIM\Toolbars\Internet Explorer\mglogger.dll.vir (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\SweetIM\Toolbars\Internet Explorer\mgsimcommon.dll.vir (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll.vir (PUP.Optional.SweetPacks) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarProxy.dll.vir (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\SweetIM\Toolbars\Internet Explorer\mgxml_wrapper.dll.vir (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\YoutubeAdblocker\Zrt.dll.vir (PUP.Optional.MultiPlug.A) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\YoutubeAdblocker\Zrt.x64.dll.vir (PUP.Optional.MultiPlug.A) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\~BabylonToolbar\~BabylonToolbar\~1.4.35.10\~BabylonToolbarApp.dll.vir (PUP.Optional.BabylonToolBar.A) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\~BabylonToolbar\~BabylonToolbar\~1.4.35.10\~BabylonToolbarEng.dll.vir (PUP.Optional.BabylonToolBar.A) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\~BabylonToolbar\~BabylonToolbar\~1.4.35.10\~BabylonToolbarsrv.exe.vir (PUP.Optional.BabylonToolBar.A) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\~BabylonToolbar\~BabylonToolbar\~1.4.35.10\~BabylonToolbarTlbr.dll.vir (PUP.Optional.BabylonToolBar.A) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\~BabylonToolbar\~BabylonToolbar\~1.4.35.10\~uninstall.exe.vir (PUP.Optional.BabylonToolBar.A) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\~BabylonToolbar\~BabylonToolbar\~1.5.3.17\~BabylonToolbarApp.dll.vir (PUP.Optional.BabylonToolBar.A) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\~BabylonToolbar\~BabylonToolbar\~1.5.3.17\~BabylonToolbarEng.dll.vir (PUP.Optional.BabylonToolBar.A) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\~BabylonToolbar\~BabylonToolbar\~1.5.3.17\~BabylonToolbarsrv.exe.vir (PUP.Optional.BabylonToolBar.A) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\~BabylonToolbar\~BabylonToolbar\~1.5.3.17\~BabylonToolbarTlbr.dll.vir (PUP.Optional.BabylonToolBar.A) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\~BabylonToolbar\~BabylonToolbar\~1.5.3.17\~uninstall.exe.vir (PUP.Optional.BabylonToolBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Adobe\Adobe Photoshop CS4\adobe.photoshop.cs4-nope.exe (Trojan.Downloader) -> Nebyla provedena žádná instrukce.
C:\Program Files\UNIO_systems\Autoškola_professional\Crack\autoskola.professional.v3.4.9.1.czech-patch.exe (PUP.Hacktool.Patcher) -> Nebyla provedena žádná instrukce.
c:\system volume information\_restore{b195cfce-ce56-49d4-9487-722364b691b9}\rp1001\a0190379.exe (PUP.Optional.MultiPlug.A) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190392.exe (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
c:\system volume information\_restore{b195cfce-ce56-49d4-9487-722364b691b9}\rp1001\a0190393.exe (PUP.Optional.MultiPlug.A) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190394.dll (PUP.Optional.BabylonToolBar.A) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190395.dll (PUP.Optional.BabylonToolBar.A) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190396.exe (PUP.Optional.BabylonToolBar.A) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190397.dll (PUP.Optional.BabylonToolBar.A) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190398.exe (PUP.Optional.BabylonToolBar.A) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190400.dll (PUP.Optional.BabylonToolBar.A) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190401.dll (PUP.Optional.BabylonToolBar.A) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190402.exe (PUP.Optional.BabylonToolBar.A) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190403.dll (PUP.Optional.BabylonToolBar.A) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190404.exe (PUP.Optional.BabylonToolBar.A) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190407.dll (PUP.Optional.Conduit) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190448.exe (PUP.Optional.Bandoo) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190744.exe (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190745.dll (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190746.dll (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190747.dll (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190748.exe (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190749.dll (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190750.dll (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190751.dll (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190752.dll (PUP.Optional.SweetPacks) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190753.dll (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190754.dll (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190759.exe (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190760.dll (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190761.dll (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190762.dll (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190763.dll (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190764.dll (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190765.dll (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190766.dll (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190767.dll (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190768.dll (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190769.dll (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190770.dll (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190771.dll (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190772.dll (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190773.dll (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190774.dll (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190775.dll (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190776.dll (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190777.dll (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190778.dll (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190781.exe (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190782.dll (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190783.dll (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190784.dll (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190785.dll (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190786.dll (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190787.exe (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190788.dll (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190793.dll (PUP.Optional.MultiPlug.A) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190795.dll (PUP.Optional.MultiPlug.A) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190796.dll (PUP.Optional.MultiPlug.A) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190798.dll (PUP.Optional.MultiPlug.A) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190872.dll (PUP.Optional.BabylonToolBar.A) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190888.dll (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP1001\A0190889.dll (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP995\A0188627.exe (PUP.Optional.InstallBrain.A) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP995\A0188629.exe (PUP.Optional.InstallBrain.A) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP995\A0188635.exe (PUP.Optional.Sweetpacks) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP995\A0188670.dll (PUP.Optional.Sweetpacks) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{B195CFCE-CE56-49D4-9487-722364B691B9}\RP995\A0188672.exe (PUP.Optional.InstallBrain.A) -> Nebyla provedena žádná instrukce.
C:\WINDOWS\Installer\c5891c.msi (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\WINDOWS\Installer\c58922.msi (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\WINDOWS\Installer\c58928.msi (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
(konec)
Re: Vyskakující reklamy apod.
Vsechny nalezy nechte odstranit.
Po odstraneni a restartu pc vymazte body obnovy, havet je v nich http://forum.viry.cz/viewtopic.php?f=46&t=47040
Po dalsim restartu pc a opetovnem zapnuti funkce vytvareni bodu obnovy zopakujte test MBAM, at vime, jestli se to nevraci. Napiste vysledek a podle nej zvolim dalsi postup.
Po odstraneni a restartu pc vymazte body obnovy, havet je v nich http://forum.viry.cz/viewtopic.php?f=46&t=47040
Po dalsim restartu pc a opetovnem zapnuti funkce vytvareni bodu obnovy zopakujte test MBAM, at vime, jestli se to nevraci. Napiste vysledek a podle nej zvolim dalsi postup.
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Vyskakující reklamy apod.
Zde je výsledek, nicméně problém s podtrháváním textu stále přetrvává.
Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org
Verze: v2014.01.18.03
Windows XP Service Pack 3 x86 NTFS
Internet Explorer 7.0.5730.11
XXX :: XXX-07A3B26BAE8 [administrátor]
18.1.2014 19:10:20
mbam-log-2014-01-18 (19-10-20).txt
Typ: Kompletní kontrola (C:\|D:\|)
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 338395
Uplynulý čas: 55 minut, 59 sekund
Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené soubory: 0
(Žádné škodlivé položky nebyly zjištěny)
(konec)
Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org
Verze: v2014.01.18.03
Windows XP Service Pack 3 x86 NTFS
Internet Explorer 7.0.5730.11
XXX :: XXX-07A3B26BAE8 [administrátor]
18.1.2014 19:10:20
mbam-log-2014-01-18 (19-10-20).txt
Typ: Kompletní kontrola (C:\|D:\|)
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 338395
Uplynulý čas: 55 minut, 59 sekund
Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené soubory: 0
(Žádné škodlivé položky nebyly zjištěny)
(konec)
Re: Vyskakující reklamy apod.
Vsak taky jeste nekoncime.
MBAM odinstalujte.
Jestli bude Avast rvat, ze to chce otevrit v sandboxu, nedovolte to! Vyberte moznost Otevrit normalne
Stahnete RogueKiller http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe , ulozte ho na plochu a spustte.
Probehne kratoucky testik a pak se zpristupni vpravo nahore tlacitko Prohledat. Na to kliknete a probehne dalsi test.
Po dokonceni kliknete na napis Zprava a objevi se log. Ten mi sem vlozte
MBAM odinstalujte. Jestli bude Avast rvat, ze to chce otevrit v sandboxu, nedovolte to! Vyberte moznost Otevrit normalne Stahnete RogueKiller http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe , ulozte ho na plochu a spustte.Probehne kratoucky testik a pak se zpristupni vpravo nahore tlacitko Prohledat. Na to kliknete a probehne dalsi test.
Po dokonceni kliknete na napis Zprava a objevi se log. Ten mi sem vlozte
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Vyskakující reklamy apod.
RogueKiller V8.8.2 [Jan 17 2014] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.adlice.com/forum/
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com
Operační systém : Windows XP (5.1.2600 Service Pack 3) 32 bits version
Spuštěno v : Normální režim
Uživatel : XXX [Práva správce]
Mód : Kontrola -- Datum : 01/18/2014 20:54:03
| ARK || FAK || MBR |
¤¤¤ Škodlivé procesy: : 0 ¤¤¤
¤¤¤ ¤¤¤ Záznamy Registrů: : 8 ¤¤¤
[DNS][PUM] HKLM\[...]\CCSet\[...]\{55983BC5-5B87-438D-917C-08D5D30220F9} : NameServer (10.128.137.145,213.168.176.3 [(Private Address) (XX) - CZECH REPUBLIC (CZ)]) -> NALEZENO
[DNS][PUM] HKLM\[...]\CCSet\[...]\{D2F6BAD6-2E49-46A2-AC9A-02FFF2DF1E20} : NameServer (10.128.137.145,213.168.176.3 [(Private Address) (XX) - CZECH REPUBLIC (CZ)]) -> NALEZENO
[DNS][PUM] HKLM\[...]\CS001\[...]\{55983BC5-5B87-438D-917C-08D5D30220F9} : NameServer (10.128.137.145,213.168.176.3 [(Private Address) (XX) - CZECH REPUBLIC (CZ)]) -> NALEZENO
[DNS][PUM] HKLM\[...]\CS001\[...]\{D2F6BAD6-2E49-46A2-AC9A-02FFF2DF1E20} : NameServer (10.128.137.145,213.168.176.3 [(Private Address) (XX) - CZECH REPUBLIC (CZ)]) -> NALEZENO
[DNS][PUM] HKLM\[...]\CS002\[...]\{55983BC5-5B87-438D-917C-08D5D30220F9} : NameServer (10.128.137.145,213.168.176.3 [(Private Address) (XX) - CZECH REPUBLIC (CZ)]) -> NALEZENO
[DNS][PUM] HKLM\[...]\CS003\[...]\{55983BC5-5B87-438D-917C-08D5D30220F9} : NameServer (10.128.137.145,213.168.176.3 [(Private Address) (XX) - CZECH REPUBLIC (CZ)]) -> NALEZENO
[DNS][PUM] HKLM\[...]\CS003\[...]\{D2F6BAD6-2E49-46A2-AC9A-02FFF2DF1E20} : NameServer (10.128.137.145,213.168.176.3 [(Private Address) (XX) - CZECH REPUBLIC (CZ)]) -> NALEZENO
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NALEZENO
¤¤¤ naplánované úlohy : 0 ¤¤¤
¤¤¤ spuštění položky : 0 ¤¤¤
¤¤¤ Webové prohlížeče : 0 ¤¤¤
¤¤¤ Browser Addons : 0 ¤¤¤
¤¤¤ Zvláštní soubory / Složky: ¤¤¤
¤¤¤ Ovladač : [NAHRÁNO] ¤¤¤
[Inline] IAT @explorer.exe (CreateThread) : KERNEL32.dll -> HOOKED (Unknown @ 0x0008057C)
[Inline] IAT @explorer.exe (VirtualAlloc) : KERNEL32.dll -> HOOKED (Unknown @ 0x00080004)
[Inline] IAT @explorer.exe (CreateProcessW) : KERNEL32.dll -> HOOKED (Unknown @ 0x000802C0)
[Inline] EAT @explorer.exe (CreateProcessA) : kernel32.dll -> HOOKED (Unknown @ 0x00080234)
[Inline] EAT @explorer.exe (CreateProcessInternalA) : kernel32.dll -> HOOKED (Unknown @ 0x0008034C)
[Inline] EAT @explorer.exe (CreateProcessInternalW) : kernel32.dll -> HOOKED (Unknown @ 0x000803D8)
[Inline] EAT @explorer.exe (CreateProcessW) : kernel32.dll -> HOOKED (Unknown @ 0x000802C0)
[Inline] EAT @explorer.exe (CreateRemoteThread) : kernel32.dll -> HOOKED (Unknown @ 0x000804F0)
[Inline] EAT @explorer.exe (CreateThread) : kernel32.dll -> HOOKED (Unknown @ 0x0008057C)
[Inline] EAT @explorer.exe (SetThreadContext) : kernel32.dll -> HOOKED (Unknown @ 0x00080608)
[Inline] EAT @explorer.exe (VirtualAlloc) : kernel32.dll -> HOOKED (Unknown @ 0x00080004)
[Inline] EAT @explorer.exe (VirtualAllocEx) : kernel32.dll -> HOOKED (Unknown @ 0x0008011C)
[Inline] EAT @explorer.exe (VirtualProtect) : kernel32.dll -> HOOKED (Unknown @ 0x00080090)
[Inline] EAT @explorer.exe (VirtualProtectEx) : kernel32.dll -> HOOKED (Unknown @ 0x000801A8)
[Inline] EAT @explorer.exe (WinExec) : kernel32.dll -> HOOKED (Unknown @ 0x00080464)
[Inline] EAT @explorer.exe (WriteProcessMemory) : kernel32.dll -> HOOKED (Unknown @ 0x00080694)
[Inline] EAT @explorer.exe (SetWindowsHookExA) : USER32.dll -> HOOKED (Unknown @ 0x00080720)
[Inline] EAT @explorer.exe (SetWindowsHookExW) : USER32.dll -> HOOKED (Unknown @ 0x000807AC)
[Inline] EAT @explorer.exe (InternetConnectA) : WININET.dll -> HOOKED (Unknown @ 0x00080F54)
[Inline] EAT @explorer.exe (InternetConnectW) : WININET.dll -> HOOKED (Unknown @ 0x00080FE0)
[Inline] EAT @explorer.exe (InternetOpenA) : WININET.dll -> HOOKED (Unknown @ 0x00080D24)
[Inline] EAT @explorer.exe (InternetOpenUrlA) : WININET.dll -> HOOKED (Unknown @ 0x00080E3C)
[Inline] EAT @explorer.exe (InternetOpenUrlW) : WININET.dll -> HOOKED (Unknown @ 0x00080EC8)
[Inline] EAT @explorer.exe (InternetOpenW) : WININET.dll -> HOOKED (Unknown @ 0x00080DB0)
[Inline] EAT @explorer.exe (?MILLIS_PER_SECOND@GCDate@@2JB) : GrooveUtil.DLL -> HOOKED (Unknown @ 0xC8F7333C)
[Inline] EAT @explorer.exe (URLDownloadA) : urlmon.dll -> HOOKED (Unknown @ 0x00080A68)
[Inline] EAT @explorer.exe (URLDownloadToCacheFileA) : urlmon.dll -> HOOKED (Unknown @ 0x00080C98)
[Inline] EAT @explorer.exe (URLDownloadToCacheFileW) : urlmon.dll -> HOOKED (Unknown @ 0x00080C0C)
[Inline] EAT @explorer.exe (URLDownloadToFileA) : urlmon.dll -> HOOKED (Unknown @ 0x00080B80)
[Inline] EAT @explorer.exe (URLDownloadToFileW) : urlmon.dll -> HOOKED (Unknown @ 0x00080AF4)
[Inline] EAT @explorer.exe (URLDownloadW) : urlmon.dll -> HOOKED (Unknown @ 0x000809DC)
[Inline] EAT @explorer.exe (bind) : WS2_32.dll -> HOOKED (Unknown @ 0x00080838)
[Inline] EAT @explorer.exe (connect) : WS2_32.dll -> HOOKED (Unknown @ 0x00080950)
[Inline] EAT @explorer.exe (socket) : WS2_32.dll -> HOOKED (Unknown @ 0x000808C4)
¤¤¤ Externí včelstvo: ¤¤¤
¤¤¤ Nákaza : ¤¤¤
¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts
127.0.0.1 localhost
¤¤¤ Kontrola MBR: ¤¤¤
+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) ST3500418AS +++++
--- User ---
[MBR] 1c29d5e32554abf137e04899a7bbd071
[BSP] 10b562927b86f405aad538928b9a56b9 : Windows XP MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 250003 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 512007615 | Size: 226933 Mo
User = LL1 ... OK!
User = LL2 ... OK!
Dokončeno : << RKreport[0]_S_01182014_205403.txt >>
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.adlice.com/forum/
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com
Operační systém : Windows XP (5.1.2600 Service Pack 3) 32 bits version
Spuštěno v : Normální režim
Uživatel : XXX [Práva správce]
Mód : Kontrola -- Datum : 01/18/2014 20:54:03
| ARK || FAK || MBR |
¤¤¤ Škodlivé procesy: : 0 ¤¤¤
¤¤¤ ¤¤¤ Záznamy Registrů: : 8 ¤¤¤
[DNS][PUM] HKLM\[...]\CCSet\[...]\{55983BC5-5B87-438D-917C-08D5D30220F9} : NameServer (10.128.137.145,213.168.176.3 [(Private Address) (XX) - CZECH REPUBLIC (CZ)]) -> NALEZENO
[DNS][PUM] HKLM\[...]\CCSet\[...]\{D2F6BAD6-2E49-46A2-AC9A-02FFF2DF1E20} : NameServer (10.128.137.145,213.168.176.3 [(Private Address) (XX) - CZECH REPUBLIC (CZ)]) -> NALEZENO
[DNS][PUM] HKLM\[...]\CS001\[...]\{55983BC5-5B87-438D-917C-08D5D30220F9} : NameServer (10.128.137.145,213.168.176.3 [(Private Address) (XX) - CZECH REPUBLIC (CZ)]) -> NALEZENO
[DNS][PUM] HKLM\[...]\CS001\[...]\{D2F6BAD6-2E49-46A2-AC9A-02FFF2DF1E20} : NameServer (10.128.137.145,213.168.176.3 [(Private Address) (XX) - CZECH REPUBLIC (CZ)]) -> NALEZENO
[DNS][PUM] HKLM\[...]\CS002\[...]\{55983BC5-5B87-438D-917C-08D5D30220F9} : NameServer (10.128.137.145,213.168.176.3 [(Private Address) (XX) - CZECH REPUBLIC (CZ)]) -> NALEZENO
[DNS][PUM] HKLM\[...]\CS003\[...]\{55983BC5-5B87-438D-917C-08D5D30220F9} : NameServer (10.128.137.145,213.168.176.3 [(Private Address) (XX) - CZECH REPUBLIC (CZ)]) -> NALEZENO
[DNS][PUM] HKLM\[...]\CS003\[...]\{D2F6BAD6-2E49-46A2-AC9A-02FFF2DF1E20} : NameServer (10.128.137.145,213.168.176.3 [(Private Address) (XX) - CZECH REPUBLIC (CZ)]) -> NALEZENO
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NALEZENO
¤¤¤ naplánované úlohy : 0 ¤¤¤
¤¤¤ spuštění položky : 0 ¤¤¤
¤¤¤ Webové prohlížeče : 0 ¤¤¤
¤¤¤ Browser Addons : 0 ¤¤¤
¤¤¤ Zvláštní soubory / Složky: ¤¤¤
¤¤¤ Ovladač : [NAHRÁNO] ¤¤¤
[Inline] IAT @explorer.exe (CreateThread) : KERNEL32.dll -> HOOKED (Unknown @ 0x0008057C)
[Inline] IAT @explorer.exe (VirtualAlloc) : KERNEL32.dll -> HOOKED (Unknown @ 0x00080004)
[Inline] IAT @explorer.exe (CreateProcessW) : KERNEL32.dll -> HOOKED (Unknown @ 0x000802C0)
[Inline] EAT @explorer.exe (CreateProcessA) : kernel32.dll -> HOOKED (Unknown @ 0x00080234)
[Inline] EAT @explorer.exe (CreateProcessInternalA) : kernel32.dll -> HOOKED (Unknown @ 0x0008034C)
[Inline] EAT @explorer.exe (CreateProcessInternalW) : kernel32.dll -> HOOKED (Unknown @ 0x000803D8)
[Inline] EAT @explorer.exe (CreateProcessW) : kernel32.dll -> HOOKED (Unknown @ 0x000802C0)
[Inline] EAT @explorer.exe (CreateRemoteThread) : kernel32.dll -> HOOKED (Unknown @ 0x000804F0)
[Inline] EAT @explorer.exe (CreateThread) : kernel32.dll -> HOOKED (Unknown @ 0x0008057C)
[Inline] EAT @explorer.exe (SetThreadContext) : kernel32.dll -> HOOKED (Unknown @ 0x00080608)
[Inline] EAT @explorer.exe (VirtualAlloc) : kernel32.dll -> HOOKED (Unknown @ 0x00080004)
[Inline] EAT @explorer.exe (VirtualAllocEx) : kernel32.dll -> HOOKED (Unknown @ 0x0008011C)
[Inline] EAT @explorer.exe (VirtualProtect) : kernel32.dll -> HOOKED (Unknown @ 0x00080090)
[Inline] EAT @explorer.exe (VirtualProtectEx) : kernel32.dll -> HOOKED (Unknown @ 0x000801A8)
[Inline] EAT @explorer.exe (WinExec) : kernel32.dll -> HOOKED (Unknown @ 0x00080464)
[Inline] EAT @explorer.exe (WriteProcessMemory) : kernel32.dll -> HOOKED (Unknown @ 0x00080694)
[Inline] EAT @explorer.exe (SetWindowsHookExA) : USER32.dll -> HOOKED (Unknown @ 0x00080720)
[Inline] EAT @explorer.exe (SetWindowsHookExW) : USER32.dll -> HOOKED (Unknown @ 0x000807AC)
[Inline] EAT @explorer.exe (InternetConnectA) : WININET.dll -> HOOKED (Unknown @ 0x00080F54)
[Inline] EAT @explorer.exe (InternetConnectW) : WININET.dll -> HOOKED (Unknown @ 0x00080FE0)
[Inline] EAT @explorer.exe (InternetOpenA) : WININET.dll -> HOOKED (Unknown @ 0x00080D24)
[Inline] EAT @explorer.exe (InternetOpenUrlA) : WININET.dll -> HOOKED (Unknown @ 0x00080E3C)
[Inline] EAT @explorer.exe (InternetOpenUrlW) : WININET.dll -> HOOKED (Unknown @ 0x00080EC8)
[Inline] EAT @explorer.exe (InternetOpenW) : WININET.dll -> HOOKED (Unknown @ 0x00080DB0)
[Inline] EAT @explorer.exe (?MILLIS_PER_SECOND@GCDate@@2JB) : GrooveUtil.DLL -> HOOKED (Unknown @ 0xC8F7333C)
[Inline] EAT @explorer.exe (URLDownloadA) : urlmon.dll -> HOOKED (Unknown @ 0x00080A68)
[Inline] EAT @explorer.exe (URLDownloadToCacheFileA) : urlmon.dll -> HOOKED (Unknown @ 0x00080C98)
[Inline] EAT @explorer.exe (URLDownloadToCacheFileW) : urlmon.dll -> HOOKED (Unknown @ 0x00080C0C)
[Inline] EAT @explorer.exe (URLDownloadToFileA) : urlmon.dll -> HOOKED (Unknown @ 0x00080B80)
[Inline] EAT @explorer.exe (URLDownloadToFileW) : urlmon.dll -> HOOKED (Unknown @ 0x00080AF4)
[Inline] EAT @explorer.exe (URLDownloadW) : urlmon.dll -> HOOKED (Unknown @ 0x000809DC)
[Inline] EAT @explorer.exe (bind) : WS2_32.dll -> HOOKED (Unknown @ 0x00080838)
[Inline] EAT @explorer.exe (connect) : WS2_32.dll -> HOOKED (Unknown @ 0x00080950)
[Inline] EAT @explorer.exe (socket) : WS2_32.dll -> HOOKED (Unknown @ 0x000808C4)
¤¤¤ Externí včelstvo: ¤¤¤
¤¤¤ Nákaza : ¤¤¤
¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts
127.0.0.1 localhost
¤¤¤ Kontrola MBR: ¤¤¤
+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) ST3500418AS +++++
--- User ---
[MBR] 1c29d5e32554abf137e04899a7bbd071
[BSP] 10b562927b86f405aad538928b9a56b9 : Windows XP MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 250003 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 512007615 | Size: 226933 Mo
User = LL1 ... OK!
User = LL2 ... OK!
Dokončeno : << RKreport[0]_S_01182014_205403.txt >>
Re: Vyskakující reklamy apod.
Znovu spustte RogueKiller (pokud jste ho jeste nezavrel/a, rovnou kliknete na napis Smazat)Probehne kratoucky testik a pak se zpristupni vpravo nahore tlacitko Prohledat. Na to kliknete a probehne dalsi test.
Po dokonceni kliknete na napis Smazat.
Pak kliknete na napis Zprava a objevi se log. Ten mi sem vlozte.
Pak kliknete na napis Oprava Host a Zprava.
Objevi se dalsi log. I ten mi sem vlozte.
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Vyskakující reklamy apod.
RogueKiller V8.8.2 [Jan 17 2014] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.adlice.com/forum/
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com
Operační systém : Windows XP (5.1.2600 Service Pack 3) 32 bits version
Spuštěno v : Normální režim
Uživatel : XXX [Práva správce]
Mód : Odebrat -- Datum : 01/18/2014 23:05:21
| ARK || FAK || MBR |
¤¤¤ Škodlivé procesy: : 0 ¤¤¤
¤¤¤ ¤¤¤ Záznamy Registrů: : 0 ¤¤¤
¤¤¤ naplánované úlohy : 0 ¤¤¤
¤¤¤ spuštění položky : 0 ¤¤¤
¤¤¤ Webové prohlížeče : 0 ¤¤¤
¤¤¤ Browser Addons : 0 ¤¤¤
¤¤¤ Zvláštní soubory / Složky: ¤¤¤
¤¤¤ Ovladač : [NAHRÁNO] ¤¤¤
[Inline] IAT @explorer.exe (CreateThread) : KERNEL32.dll -> HOOKED (Unknown @ 0x0008057C)
[Inline] IAT @explorer.exe (VirtualAlloc) : KERNEL32.dll -> HOOKED (Unknown @ 0x00080004)
[Inline] IAT @explorer.exe (CreateProcessW) : KERNEL32.dll -> HOOKED (Unknown @ 0x000802C0)
[Inline] EAT @explorer.exe (CreateProcessA) : kernel32.dll -> HOOKED (Unknown @ 0x00080234)
[Inline] EAT @explorer.exe (CreateProcessInternalA) : kernel32.dll -> HOOKED (Unknown @ 0x0008034C)
[Inline] EAT @explorer.exe (CreateProcessInternalW) : kernel32.dll -> HOOKED (Unknown @ 0x000803D8)
[Inline] EAT @explorer.exe (CreateProcessW) : kernel32.dll -> HOOKED (Unknown @ 0x000802C0)
[Inline] EAT @explorer.exe (CreateRemoteThread) : kernel32.dll -> HOOKED (Unknown @ 0x000804F0)
[Inline] EAT @explorer.exe (CreateThread) : kernel32.dll -> HOOKED (Unknown @ 0x0008057C)
[Inline] EAT @explorer.exe (SetThreadContext) : kernel32.dll -> HOOKED (Unknown @ 0x00080608)
[Inline] EAT @explorer.exe (VirtualAlloc) : kernel32.dll -> HOOKED (Unknown @ 0x00080004)
[Inline] EAT @explorer.exe (VirtualAllocEx) : kernel32.dll -> HOOKED (Unknown @ 0x0008011C)
[Inline] EAT @explorer.exe (VirtualProtect) : kernel32.dll -> HOOKED (Unknown @ 0x00080090)
[Inline] EAT @explorer.exe (VirtualProtectEx) : kernel32.dll -> HOOKED (Unknown @ 0x000801A8)
[Inline] EAT @explorer.exe (WinExec) : kernel32.dll -> HOOKED (Unknown @ 0x00080464)
[Inline] EAT @explorer.exe (WriteProcessMemory) : kernel32.dll -> HOOKED (Unknown @ 0x00080694)
[Inline] EAT @explorer.exe (SetWindowsHookExA) : USER32.dll -> HOOKED (Unknown @ 0x00080720)
[Inline] EAT @explorer.exe (SetWindowsHookExW) : USER32.dll -> HOOKED (Unknown @ 0x000807AC)
[Inline] EAT @explorer.exe (InternetConnectA) : WININET.dll -> HOOKED (Unknown @ 0x00080F54)
[Inline] EAT @explorer.exe (InternetConnectW) : WININET.dll -> HOOKED (Unknown @ 0x00080FE0)
[Inline] EAT @explorer.exe (InternetOpenA) : WININET.dll -> HOOKED (Unknown @ 0x00080D24)
[Inline] EAT @explorer.exe (InternetOpenUrlA) : WININET.dll -> HOOKED (Unknown @ 0x00080E3C)
[Inline] EAT @explorer.exe (InternetOpenUrlW) : WININET.dll -> HOOKED (Unknown @ 0x00080EC8)
[Inline] EAT @explorer.exe (InternetOpenW) : WININET.dll -> HOOKED (Unknown @ 0x00080DB0)
[Inline] EAT @explorer.exe (?MILLIS_PER_SECOND@GCDate@@2JB) : GrooveUtil.DLL -> HOOKED (Unknown @ 0xC8F7333C)
[Inline] EAT @explorer.exe (URLDownloadA) : urlmon.dll -> HOOKED (Unknown @ 0x00080A68)
[Inline] EAT @explorer.exe (URLDownloadToCacheFileA) : urlmon.dll -> HOOKED (Unknown @ 0x00080C98)
[Inline] EAT @explorer.exe (URLDownloadToCacheFileW) : urlmon.dll -> HOOKED (Unknown @ 0x00080C0C)
[Inline] EAT @explorer.exe (URLDownloadToFileA) : urlmon.dll -> HOOKED (Unknown @ 0x00080B80)
[Inline] EAT @explorer.exe (URLDownloadToFileW) : urlmon.dll -> HOOKED (Unknown @ 0x00080AF4)
[Inline] EAT @explorer.exe (URLDownloadW) : urlmon.dll -> HOOKED (Unknown @ 0x000809DC)
[Inline] EAT @explorer.exe (bind) : WS2_32.dll -> HOOKED (Unknown @ 0x00080838)
[Inline] EAT @explorer.exe (connect) : WS2_32.dll -> HOOKED (Unknown @ 0x00080950)
[Inline] EAT @explorer.exe (socket) : WS2_32.dll -> HOOKED (Unknown @ 0x000808C4)
¤¤¤ Externí včelstvo: ¤¤¤
¤¤¤ Nákaza : ¤¤¤
¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts
127.0.0.1 localhost
¤¤¤ Kontrola MBR: ¤¤¤
+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) ST3500418AS +++++
--- User ---
[MBR] 1c29d5e32554abf137e04899a7bbd071
[BSP] 10b562927b86f405aad538928b9a56b9 : Windows XP MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 250003 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 512007615 | Size: 226933 Mo
User = LL1 ... OK!
User = LL2 ... OK!
Dokončeno : << RKreport[0]_D_01182014_230521.txt >>
RKreport[0]_D_01182014_230126.txt;RKreport[0]_S_01182014_205403.txt;RKreport[0]_S_01182014_230306.txt
RKreport[0]_S_01182014_230459.txt
RogueKiller V8.8.2 [Jan 17 2014] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.adlice.com/forum/
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com
Operační systém : Windows XP (5.1.2600 Service Pack 3) 32 bits version
Spuštěno v : Normální režim
Uživatel : XXX [Práva správce]
Mód : Oprava HOSTS -- Datum : 01/18/2014 23:05:55
| ARK || FAK || MBR |
¤¤¤ Škodlivé procesy: : 0 ¤¤¤
¤¤¤ ¤¤¤ Záznamy Registrů: : 0 ¤¤¤
¤¤¤ Ovladač : [NAHRÁNO] ¤¤¤
¤¤¤ Externí včelstvo: ¤¤¤
¤¤¤ Nákaza : ¤¤¤
¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts
127.0.0.1 localhost
¤¤¤ Resetovaný HOSTS: ¤¤¤
127.0.0.1 localhost
Dokončeno : << RKreport[0]_H_01182014_230555.txt >>
RKreport[0]_D_01182014_230126.txt;RKreport[0]_D_01182014_230521.txt;RKreport[0]_S_01182014_205403.txt
RKreport[0]_S_01182014_230306.txt;RKreport[0]_S_01182014_230459.txt
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.adlice.com/forum/
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com
Operační systém : Windows XP (5.1.2600 Service Pack 3) 32 bits version
Spuštěno v : Normální režim
Uživatel : XXX [Práva správce]
Mód : Odebrat -- Datum : 01/18/2014 23:05:21
| ARK || FAK || MBR |
¤¤¤ Škodlivé procesy: : 0 ¤¤¤
¤¤¤ ¤¤¤ Záznamy Registrů: : 0 ¤¤¤
¤¤¤ naplánované úlohy : 0 ¤¤¤
¤¤¤ spuštění položky : 0 ¤¤¤
¤¤¤ Webové prohlížeče : 0 ¤¤¤
¤¤¤ Browser Addons : 0 ¤¤¤
¤¤¤ Zvláštní soubory / Složky: ¤¤¤
¤¤¤ Ovladač : [NAHRÁNO] ¤¤¤
[Inline] IAT @explorer.exe (CreateThread) : KERNEL32.dll -> HOOKED (Unknown @ 0x0008057C)
[Inline] IAT @explorer.exe (VirtualAlloc) : KERNEL32.dll -> HOOKED (Unknown @ 0x00080004)
[Inline] IAT @explorer.exe (CreateProcessW) : KERNEL32.dll -> HOOKED (Unknown @ 0x000802C0)
[Inline] EAT @explorer.exe (CreateProcessA) : kernel32.dll -> HOOKED (Unknown @ 0x00080234)
[Inline] EAT @explorer.exe (CreateProcessInternalA) : kernel32.dll -> HOOKED (Unknown @ 0x0008034C)
[Inline] EAT @explorer.exe (CreateProcessInternalW) : kernel32.dll -> HOOKED (Unknown @ 0x000803D8)
[Inline] EAT @explorer.exe (CreateProcessW) : kernel32.dll -> HOOKED (Unknown @ 0x000802C0)
[Inline] EAT @explorer.exe (CreateRemoteThread) : kernel32.dll -> HOOKED (Unknown @ 0x000804F0)
[Inline] EAT @explorer.exe (CreateThread) : kernel32.dll -> HOOKED (Unknown @ 0x0008057C)
[Inline] EAT @explorer.exe (SetThreadContext) : kernel32.dll -> HOOKED (Unknown @ 0x00080608)
[Inline] EAT @explorer.exe (VirtualAlloc) : kernel32.dll -> HOOKED (Unknown @ 0x00080004)
[Inline] EAT @explorer.exe (VirtualAllocEx) : kernel32.dll -> HOOKED (Unknown @ 0x0008011C)
[Inline] EAT @explorer.exe (VirtualProtect) : kernel32.dll -> HOOKED (Unknown @ 0x00080090)
[Inline] EAT @explorer.exe (VirtualProtectEx) : kernel32.dll -> HOOKED (Unknown @ 0x000801A8)
[Inline] EAT @explorer.exe (WinExec) : kernel32.dll -> HOOKED (Unknown @ 0x00080464)
[Inline] EAT @explorer.exe (WriteProcessMemory) : kernel32.dll -> HOOKED (Unknown @ 0x00080694)
[Inline] EAT @explorer.exe (SetWindowsHookExA) : USER32.dll -> HOOKED (Unknown @ 0x00080720)
[Inline] EAT @explorer.exe (SetWindowsHookExW) : USER32.dll -> HOOKED (Unknown @ 0x000807AC)
[Inline] EAT @explorer.exe (InternetConnectA) : WININET.dll -> HOOKED (Unknown @ 0x00080F54)
[Inline] EAT @explorer.exe (InternetConnectW) : WININET.dll -> HOOKED (Unknown @ 0x00080FE0)
[Inline] EAT @explorer.exe (InternetOpenA) : WININET.dll -> HOOKED (Unknown @ 0x00080D24)
[Inline] EAT @explorer.exe (InternetOpenUrlA) : WININET.dll -> HOOKED (Unknown @ 0x00080E3C)
[Inline] EAT @explorer.exe (InternetOpenUrlW) : WININET.dll -> HOOKED (Unknown @ 0x00080EC8)
[Inline] EAT @explorer.exe (InternetOpenW) : WININET.dll -> HOOKED (Unknown @ 0x00080DB0)
[Inline] EAT @explorer.exe (?MILLIS_PER_SECOND@GCDate@@2JB) : GrooveUtil.DLL -> HOOKED (Unknown @ 0xC8F7333C)
[Inline] EAT @explorer.exe (URLDownloadA) : urlmon.dll -> HOOKED (Unknown @ 0x00080A68)
[Inline] EAT @explorer.exe (URLDownloadToCacheFileA) : urlmon.dll -> HOOKED (Unknown @ 0x00080C98)
[Inline] EAT @explorer.exe (URLDownloadToCacheFileW) : urlmon.dll -> HOOKED (Unknown @ 0x00080C0C)
[Inline] EAT @explorer.exe (URLDownloadToFileA) : urlmon.dll -> HOOKED (Unknown @ 0x00080B80)
[Inline] EAT @explorer.exe (URLDownloadToFileW) : urlmon.dll -> HOOKED (Unknown @ 0x00080AF4)
[Inline] EAT @explorer.exe (URLDownloadW) : urlmon.dll -> HOOKED (Unknown @ 0x000809DC)
[Inline] EAT @explorer.exe (bind) : WS2_32.dll -> HOOKED (Unknown @ 0x00080838)
[Inline] EAT @explorer.exe (connect) : WS2_32.dll -> HOOKED (Unknown @ 0x00080950)
[Inline] EAT @explorer.exe (socket) : WS2_32.dll -> HOOKED (Unknown @ 0x000808C4)
¤¤¤ Externí včelstvo: ¤¤¤
¤¤¤ Nákaza : ¤¤¤
¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts
127.0.0.1 localhost
¤¤¤ Kontrola MBR: ¤¤¤
+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) ST3500418AS +++++
--- User ---
[MBR] 1c29d5e32554abf137e04899a7bbd071
[BSP] 10b562927b86f405aad538928b9a56b9 : Windows XP MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 250003 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 512007615 | Size: 226933 Mo
User = LL1 ... OK!
User = LL2 ... OK!
Dokončeno : << RKreport[0]_D_01182014_230521.txt >>
RKreport[0]_D_01182014_230126.txt;RKreport[0]_S_01182014_205403.txt;RKreport[0]_S_01182014_230306.txt
RKreport[0]_S_01182014_230459.txt
RogueKiller V8.8.2 [Jan 17 2014] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.adlice.com/forum/
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com
Operační systém : Windows XP (5.1.2600 Service Pack 3) 32 bits version
Spuštěno v : Normální režim
Uživatel : XXX [Práva správce]
Mód : Oprava HOSTS -- Datum : 01/18/2014 23:05:55
| ARK || FAK || MBR |
¤¤¤ Škodlivé procesy: : 0 ¤¤¤
¤¤¤ ¤¤¤ Záznamy Registrů: : 0 ¤¤¤
¤¤¤ Ovladač : [NAHRÁNO] ¤¤¤
¤¤¤ Externí včelstvo: ¤¤¤
¤¤¤ Nákaza : ¤¤¤
¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts
127.0.0.1 localhost
¤¤¤ Resetovaný HOSTS: ¤¤¤
127.0.0.1 localhost
Dokončeno : << RKreport[0]_H_01182014_230555.txt >>
RKreport[0]_D_01182014_230126.txt;RKreport[0]_D_01182014_230521.txt;RKreport[0]_S_01182014_205403.txt
RKreport[0]_S_01182014_230306.txt;RKreport[0]_S_01182014_230459.txt
Re: Vyskakující reklamy apod.
Dejte novy log z RSIT
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Vyskakující reklamy apod.
Logfile of random's system information tool 1.09 (written by random/random)
Run by XXX at 2014-01-19 10:20:24
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 118 GB (47%) free of 250 GB
Total RAM: 2046 MB (41% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 10:20:29, on 19.1.2014
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.21364)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\DivX\DivX Update\DivXUpdate.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Alwil Software\Avast5\avastUI.exe
C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\DAEMON Tools Lite\DTLite.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\GIGABYTE\ET6\GUI.exe
C:\Program Files\Gigabyte\EasySaver\ESSVR.EXE
C:\Program Files\Guard-ICQ\GuardICQ.exe
C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jqs.exe
C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\Program Files\Sunbelt Software\Personal Firewall\SbPFLnch.exe
C:\Program Files\SocialVPN\SocialVPNService.exe
C:\Program Files\Sunbelt Software\Personal Firewall\SbPFSvc.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\TUProgSt.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Sunbelt Software\Personal Firewall\SbPFCl.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\WINDOWS\System32\svchost.exe
C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\XXX\Dokumenty\Downloads\RSIT (1).exe
C:\Program Files\trend micro\XXX.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://go.microsoft.com/fwlink/?LinkId=74005
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: QIPBHO Class - {95289393-33EA-4F8D-B952-483415B9C955} - C:\Documents and Settings\XXX\Data aplikací\Microsoft\Internet Explorer\qipsearchbar.dll (file missing)
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: YoutubeAdblocker - {0D2E4734-AD78-1969-8515-C70C95E8E296} - C:\Program Files\YoutubeAdblocker\Zrt.dll (file missing)
O2 - BHO: surf And Keep - {1AA21982-9C00-F0AB-9E37-F6F3C299A42B} - C:\Program Files\surf And Keep\wn04gQR.dll (file missing)
O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll
O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.5.4.11.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: QIPBHO - {95289393-33EA-4F8D-B952-483415B9C955} - C:\Documents and Settings\XXX\Data aplikací\Microsoft\Internet Explorer\qipsearchbar.dll (file missing)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll
O3 - Toolbar: (no name) - !{EEE6C35B-6118-11DC-9C72-001320C79847} - (no file)
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [EasyTuneVI] C:\Program Files\GIGABYTE\ET6\ETcall.exe
O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [DivXUpdate] "C:\Program Files\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [avast] "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui
O4 - HKLM\..\Run: [NvBackend] "C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe"
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [nwiz] C:\Program Files\NVIDIA Corporation\nview\nwiz.exe /installquiet
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe" /c
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Stáhnout odkaz s použitím BitCometu - res://C:\Program Files\BitComet\BitComet.exe/AddLink.htm
O8 - Extra context menu item: Stáhnout všechny odkazy s použitím BitCometu - res://C:\Program Files\BitComet\BitComet.exe/AddAllLink.htm
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files\PokerStars\PokerStarsUpdate.exe (file missing)
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:\Program Files\BitComet\tools\BitCometBHO_1.5.4.11.dll/206 (file missing)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: PokerStars.net - {FA9B9510-9FCB-4ca0-818C-5D0987B47C4D} - C:\Program Files\PokerStars.NET\PokerStarsUpdate.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {4BFD075D-C36E-4F28-BB0A-5D472795197A} (PowerLoader Class) - http://download09.managerzone.com/socce ... Loader.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{55983BC5-5B87-438D-917C-08D5D30220F9}: NameServer = 10.128.137.145,213.168.176.3
O17 - HKLM\System\CCS\Services\Tcpip\..\{D2F6BAD6-2E49-46A2-AC9A-02FFF2DF1E20}: NameServer = 10.128.137.145,213.168.176.3
O17 - HKLM\System\CS2\Services\Tcpip\..\{55983BC5-5B87-438D-917C-08D5D30220F9}: NameServer = 10.128.137.145,213.168.176.3
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: ES lite Service for program management. (ES lite Service) - Unknown owner - C:\Program Files\Gigabyte\EasySaver\ESSVR.EXE
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Guard.Mail.ru - Unknown owner - C:\Program Files\Guard-ICQ\GuardICQ.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Oracle Corporation - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jqs.exe
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Unknown owner - C:\Program Files\WinPcap\rpcapd.exe
O23 - Service: SbPF.Launcher - Sunbelt Software, Inc. - C:\Program Files\Sunbelt Software\Personal Firewall\SbPFLnch.exe
O23 - Service: ServiceLayer - Nokia. - D:\Program Files\Nokia\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: SocialVPN - Unknown owner - C:\Program Files\SocialVPN\SocialVPNService.exe
O23 - Service: Sunbelt Personal Firewall 4 (SPF4) - Sunbelt Software, Inc. - C:\Program Files\Sunbelt Software\Personal Firewall\SbPFSvc.exe
O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software - C:\WINDOWS\System32\TuneUpDefragService.exe
O23 - Service: TuneUp Program Statistics Service (TuneUp.ProgramStatisticsSvc) - TuneUp Software - C:\WINDOWS\System32\TUProgSt.exe
--
End of file - 11707 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\1-Click Maintenance.job
C:\WINDOWS\tasks\AppleSoftwareUpdate.job
C:\WINDOWS\tasks\avast! Emergency Update.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-448539723-1647877149-725345543-1003Core.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-448539723-1647877149-725345543-1003UA.job
C:\WINDOWS\tasks\Norton Security Scan for XXX.job
C:\WINDOWS\tasks\Úklid 1 kliknutím.job
=========Mozilla firefox=========
ProfilePath - C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default
prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "extensions.enabledItems" - "{872b5b88-9db5-4310-bdd0-ac189557e5f5}:2.7.2.0, {6236BA26-C117-4007-928C-DE0716C7FA82}:1.0.2, {800b5000-a755-47e1-992b-48a1c1357f07}:1.1.7, {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}:6.0.17, {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20, jqs@sun.com:1.0, {8675f4b3-2f19-11ed-2d6b-0800600c0a16}:1.0, {20a82645-c095-46ed-80e3-08825760534b}:1.2.1, {63414328-3ab4-2c84-6c41-5a473c4b2ff7}:1.0, {6236BA26-C117-4007-928C-DE0716C7FA96}:1.0.4, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.5.8"
"{23fcfd51-4958-4f00-80a3-ae97e717ed8b}"=C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5
"wrc@avast.com"=C:\Program Files\Alwil Software\Avast5\WebRep\FF
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10.1 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\WINDOWS\system32\Adobe\Director\np32dsw.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0]
"Description"=DivX Plus Web Player
"Path"=C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0]
"Description"=DivX VOD Helper Plug-in
"Path"=C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.5.1]
"Description"=
"Path"=C:\WINDOWS\system32\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.5.1]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.0]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
C:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}
{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll
nsIBitCometAgent.xpt
nsIQTScriptablePlugin.xpt
C:\Program Files\Mozilla Firefox\plugins\
npBitCometAgent.dll
NPOFF12.DLL
npqtplugin.dll
npqtplugin2.dll
npqtplugin3.dll
npqtplugin4.dll
npqtplugin5.dll
npqtplugin6.dll
npqtplugin7.dll
QuickTimePlugin.class
C:\Program Files\Mozilla Firefox\searchplugins\
google.xml
heureka-cz.xml
jyxo-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml
yahoo.xml
C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\
firmycz.xml
mapycz.xml
zbocz.xml
{3CC5A861-7085-4329-BF4A-DFD056A00CDB}.xml
{96431DA7-2E65-4889-AA51-91DA1E37F875}.xml
{A9941E98-F141-402D-9719-CC92D54D0484}.xml
{B56F6713-4E29-4E8C-BB1A-5D9E1616940F}.xml
{B68E2246-C966-48F3-A498-67133D2E0DEE}.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
AcroIEHlprObj Class - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll [2004-12-14 63136]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0D2E4734-AD78-1969-8515-C70C95E8E296}]
YoutubeAdblocker - C:\Program Files\YoutubeAdblocker\Zrt.dll []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1AA21982-9C00-F0AB-9E37-F6F3C299A42B}]
surf And Keep - C:\Program Files\surf And Keep\wn04gQR.dll []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{326E768D-4182-46FD-9C16-1449A49795F4}]
DivX Plus Web Player HTML5 <video> - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll [2011-12-12 194432]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{39F7E362-828A-4B5A-BCAF-5B79BFDFEA60}]
BitComet Helper - C:\Program Files\BitComet\tools\BitCometBHO_1.5.4.11.dll [2011-04-11 767280]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll [2012-07-05 453544]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll [2012-08-21 1227224]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18 403840]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95289393-33EA-4F8D-B952-483415B9C955}]
QIPBHO Class - C:\Documents and Settings\XXX\Data aplikací\Microsoft\Internet Explorer\qipsearchbar.dll []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll [2012-07-05 157616]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll [2012-08-21 1227224]
!{EEE6C35B-6118-11DC-9C72-001320C79847}
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2009-01-13 18084864]
"EasyTuneVI"=C:\Program Files\GIGABYTE\ET6\ETcall.exe [2007-07-26 20480]
"Kernel and Hardware Abstraction Layer"=C:\WINDOWS\KHALMNPR.EXE [2008-02-29 76304]
"QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2010-11-29 421888]
"GrooveMonitor"=C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
"DivXUpdate"=C:\Program Files\DivX\DivX Update\DivXUpdate.exe [2011-07-29 1259376]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2012-01-17 252296]
"avast"=C:\Program Files\Alwil Software\Avast5\avastUI.exe [2012-08-21 4282728]
"NvBackend"=C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [2013-12-10 2279712]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2013-06-21 15677728]
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2013-06-21 223008]
"nwiz"=C:\Program Files\NVIDIA Corporation\nview\nwiz.exe [2013-06-21 2586912]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2009-10-30 369200]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"Google Update"=C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe [2011-07-27 136176]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\LBTWlgn]
c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll [2008-05-02 72208]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265096]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WdfLoadGroup]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WdfLoadGroup]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=323
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE"="C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe"="C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe:*:Enabled:Adobe CSI CS4"
"C:\Program Files\KONAMI\Pro Evolution Soccer 2010\football4fun.exe"="C:\Program Files\KONAMI\Pro Evolution Soccer 2010\football4fun.exe:*:Enabled:Pro Evolution Soccer 2010"
"D:\Program Files\PES 11\pes2011-100.exe"="D:\Program Files\PES 11\pes2011-100.exe:*:Enabled:Pro Evolution Soccer 2011"
"D:\Program Files\PES 11\gacp_11.exe"="D:\Program Files\PES 11\gacp_11.exe:*:Enabled:Pro Evolution Soccer 2011"
"C:\WINDOWS\system32\msiexec.exe"="C:\WINDOWS\system32\msiexec.exe:*:Enabled:UpdateManagerSetup"
"C:\WINDOWS\system32\dmwu.exe"="C:\WINDOWS\system32\dmwu.exe:*:Enabled:dmwu"
"C:\Program Files\Sports Interactive\Football Manager 2011 Russian\fm.exe"="C:\Program Files\Sports Interactive\Football Manager 2011 Russian\fm.exe:*:Disabled:Football Manager 2011"
"C:\Program Files\BitComet\BitComet.exe"="C:\Program Files\BitComet\BitComet.exe:*:Enabled:BitComet.exe"
"C:\hry\FIFA 14\Game\fifa14.exe"="C:\hry\FIFA 14\Game\fifa14.exe:*:Enabled:FIFA 14"
"C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe"="C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe:*:Enabled:NVIDIA Network Service TCP Exception (HTTPS)"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"VIDC.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"VIDC.YVYU"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"vidc.ffds"=C:\PROGRA~1\COMBIN~1\Filters\FFDShow\ff_vfw.dll
"vidc.VP60"=C:\WINDOWS\system32\vp6vfw.dll
"vidc.VP61"=C:\WINDOWS\system32\vp6vfw.dll
"vidc.DIVX"=DivX.dll
"vidc.yv12"=DivX.dll
"MSVideo8"=VfWWDM32.dll
======List of files/folders created in the last 1 month======
2014-01-18 17:00:51 ----D---- C:\Documents and Settings\XXX\Data aplikací\Malwarebytes
2014-01-18 17:00:37 ----D---- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
2014-01-18 16:12:31 ----D---- C:\AdwCleaner
2014-01-18 01:03:08 ----HDC---- C:\WINDOWS\$NtUninstallKB2914368$
2013-12-27 16:45:22 ----A---- C:\WINDOWS\imsins.BAK
2013-12-26 14:02:51 ----D---- C:\Documents and Settings\XXX\Data aplikací\NVIDIA
2013-12-24 13:46:28 ----D---- C:\Documents and Settings\All Users\Data aplikací\dc60de014abbdb08
2013-12-24 13:45:36 ----D---- C:\Documents and Settings\All Users\Data aplikací\InstallMate
2013-12-24 13:05:17 ----D---- C:\Program Files\AGEIA Technologies
2013-12-24 13:03:43 ----A---- C:\WINDOWS\system32\OpenCL.dll
2013-12-24 13:03:17 ----A---- C:\WINDOWS\system32\nvopencl.dll
2013-12-24 13:03:17 ----A---- C:\WINDOWS\system32\nvdispgenco3232049.dll
2013-12-24 13:03:17 ----A---- C:\WINDOWS\system32\nvdispco3232049.dll
2013-12-24 13:03:16 ----A---- C:\WINDOWS\system32\nvcompiler.dll
2013-12-24 12:58:45 ----D---- C:\NVIDIA
2013-12-24 12:50:10 ----D---- C:\Documents and Settings\All Users\Data aplikací\NVIDIA Corporation
2013-12-22 11:38:56 ----D---- C:\Documents and Settings\All Users\Data aplikací\Origin
2013-12-22 11:24:08 ----D---- C:\hry
2013-12-20 18:46:49 ----D---- C:\Games
======List of files/folders modified in the last 1 month======
2014-01-19 10:20:27 ----D---- C:\WINDOWS\Prefetch
2014-01-19 10:20:25 ----D---- C:\Program Files\trend micro
2014-01-19 10:17:42 ----D---- C:\WINDOWS\Temp
2014-01-19 10:17:10 ----D---- C:\WINDOWS\system32
2014-01-19 01:25:39 ----A---- C:\WINDOWS\SchedLgU.Txt
2014-01-19 01:25:29 ----D---- C:\WINDOWS\system32\CatRoot2
2014-01-18 23:04:58 ----D---- C:\WINDOWS\system32\drivers
2014-01-18 20:50:00 ----RD---- C:\Program Files
2014-01-18 19:08:37 ----SHD---- C:\System Volume Information
2014-01-18 19:08:37 ----D---- C:\WINDOWS\system32\Restore
2014-01-18 18:58:29 ----HDC---- C:\WINDOWS\$NtUninstallKB974571_0$
2014-01-18 18:56:38 ----SHD---- C:\WINDOWS\Installer
2014-01-18 17:47:39 ----D---- C:\WINDOWS\down
2014-01-18 16:41:04 ----D---- C:\Documents and Settings\All Users\Data aplikací\ICQ
2014-01-18 14:16:16 ----D---- C:\Program Files\Common Files\Symantec Shared
2014-01-18 08:55:00 ----D---- C:\WINDOWS
2014-01-18 01:06:35 ----SHD---- C:\Config.Msi
2014-01-18 01:06:32 ----D---- C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
2014-01-18 01:05:35 ----D---- C:\WINDOWS\system32\MRT
2014-01-18 01:03:26 ----D---- C:\WINDOWS\Debug
2014-01-18 01:03:19 ----A---- C:\WINDOWS\system32\MRT.exe
2014-01-18 01:03:13 ----HD---- C:\WINDOWS\inf
2014-01-18 01:03:11 ----RSHDC---- C:\WINDOWS\system32\dllcache
2014-01-04 21:31:45 ----SHD---- C:\WINDOWS\CSC
2013-12-31 00:39:31 ----D---- C:\Documents and Settings\XXX\Data aplikací\BitComet
2013-12-30 13:53:11 ----D---- C:\Downloads
2013-12-28 11:04:08 ----D---- C:\Documents and Settings\XXX\Data aplikací\vlc
2013-12-27 17:48:31 ----A---- C:\WINDOWS\NeroDigital.ini
2013-12-25 10:44:21 ----RSD---- C:\WINDOWS\assembly
2013-12-25 10:44:21 ----D---- C:\WINDOWS\Microsoft.NET
2013-12-25 09:34:32 ----D---- C:\WINDOWS\WinSxS
2013-12-25 09:34:25 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2013-12-25 09:03:02 ----A---- C:\WINDOWS\system32\msvcr80.dll
2013-12-25 09:03:02 ----A---- C:\WINDOWS\system32\msvcp80.dll
2013-12-25 09:03:02 ----A---- C:\WINDOWS\system32\msvcm80.dll
2013-12-24 13:05:17 ----D---- C:\Program Files\NVIDIA Corporation
2013-12-24 13:04:20 ----D---- C:\WINDOWS\Help
2013-12-24 13:00:21 ----D---- C:\WINDOWS\system32\ReinstallBackups
2013-12-24 12:47:59 ----D---- C:\WINDOWS\system32\cs-cz
2013-12-24 12:43:13 ----D---- C:\WINDOWS\system32\en-us
2013-12-24 12:43:06 ----D---- C:\Program Files\Microsoft.NET
2013-12-22 11:35:36 ----HD---- C:\Program Files\Common Files\EAInstaller
2013-12-22 11:34:33 ----D---- C:\WINDOWS\system32\DirectX
2013-12-21 17:43:33 ----D---- C:\Documents and Settings\All Users\Data aplikací\BlazeVideo
2013-12-21 17:41:46 ----D---- C:\Program Files\Software Informer
2013-12-21 17:39:57 ----D---- C:\Program Files\E.M. PowerPoint Video Converter
2013-12-21 17:35:18 ----D---- C:\Program Files\CCleaner
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 ohci1394;Hostitelský řadič IEEE 1394 dle standardu OHCI Texas Instruments; C:\WINDOWS\system32\DRIVERS\ohci1394.sys [2008-04-13 61696]
R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2010-07-12 45648]
R0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2009-12-24 691696]
R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-15 76544]
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2012-08-21 25256]
R1 AmdPPM;Ovladač procesoru HwPState AMD; C:\WINDOWS\system32\DRIVERS\AmdPPM.sys [2007-04-16 33792]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2012-08-21 35928]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2012-08-21 729752]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2012-08-21 355632]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2012-08-21 54232]
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R1 SbFw;SbFw; C:\WINDOWS\system32\drivers\SbFw.sys [2008-10-31 270888]
R1 sbhips;Sunbelt HIPS Driver; C:\WINDOWS\system32\drivers\sbhips.sys [2008-06-21 66600]
R1 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\WINDOWS\system32\DRIVERS\wmiacpi.sys [2008-04-13 8832]
R2 adfs;adfs; C:\WINDOWS\system32\drivers\adfs.sys [2008-08-14 74720]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\drivers\aswFsBlk.sys [2012-08-21 21256]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2012-08-21 97608]
R2 atksgt;atksgt; C:\WINDOWS\system32\DRIVERS\atksgt.sys [2009-12-04 278984]
R2 lirsgt;lirsgt; C:\WINDOWS\system32\DRIVERS\lirsgt.sys [2009-12-04 25416]
R3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800]
R3 DynCal;Dynamic Calibration Service; C:\WINDOWS\system32\drivers\Dyncal.sys [2001-05-21 8051]
R3 gdrv;gdrv; \??\C:\WINDOWS\gdrv.sys []
R3 GVTDrv;GVTDrv; \??\C:\WINDOWS\system32\Drivers\GVTDrv.sys []
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2009-01-20 5027840]
R3 IpopTap;IpopTap; C:\WINDOWS\system32\DRIVERS\IpopTap.sys [2011-02-08 26624]
R3 L8042Kbd;Logitech SetPoint Keyboard Driver; C:\WINDOWS\system32\DRIVERS\L8042Kbd.sys [2008-02-29 20240]
R3 L8042mou;SetPoint PS/2 Mouse Filter Driver; C:\WINDOWS\system32\DRIVERS\L8042mou.Sys [2008-02-29 63120]
R3 LHidFilt;Logitech SetPoint KMDF HID Filter Driver; C:\WINDOWS\system32\DRIVERS\LHidFilt.Sys [2008-02-29 35344]
R3 LMouFilt;Logitech SetPoint KMDF Mouse Filter Driver; C:\WINDOWS\system32\DRIVERS\LMouFilt.Sys [2008-02-29 36880]
R3 LMouKE;SetPoint Mouse Filter Driver; C:\WINDOWS\system32\DRIVERS\LMouKE.Sys [2008-02-29 79120]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2013-06-21 10973504]
R3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys [2008-10-30 117888]
R3 SBFWIMCL;Sunbelt Software Firewall NDIS IM Filter Miniport; C:\WINDOWS\system32\DRIVERS\sbfwim.sys [2008-06-21 65576]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2013-08-09 32384]
R3 Wdf01000;Wdf01000; C:\WINDOWS\system32\DRIVERS\Wdf01000.sys [2006-11-02 492000]
S3 alch8vvn;alch8vvn; C:\WINDOWS\system32\drivers\alch8vvn.sys []
S3 catchme;catchme; \??\C:\DOCUME~1\XXX\LOCALS~1\Temp\catchme.sys []
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 cnnctfy2MP;cnnctfy2MP; C:\WINDOWS\system32\DRIVERS\cnnctfy2.sys []
S3 cpuz132;cpuz132; \??\C:\DOCUME~1\XXX\LOCALS~1\Temp\cpuz132\cpuz132_x32.sys []
S3 ENTECH;ENTECH; \??\C:\WINDOWS\system32\DRIVERS\ENTECH.sys []
S3 GMSIPCI;GMSIPCI; \??\D:\INSTALL\GMSIPCI.SYS []
S3 hamachi;Hamachi Network Interface; C:\WINDOWS\system32\DRIVERS\hamachi.sys [2009-03-18 26176]
S3 IT9135BDA;IT9135 BDA Devices; C:\WINDOWS\System32\Drivers\IT9135BDA.sys [2011-10-19 145280]
S3 MPE;Filtr MPE BDA; C:\WINDOWS\system32\DRIVERS\MPE.sys [2008-04-13 15232]
S3 MSICPL;MSICPL; \??\D:\install4\MSICPL.sys []
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 nmwcd;Nokia USB Phone Parent; C:\WINDOWS\system32\drivers\nmwcd.sys [2007-02-22 137216]
S3 nmwcdc;Nokia USB Generic; C:\WINDOWS\system32\drivers\nmwcdc.sys [2007-02-22 8320]
S3 nmwcdcj;Nokia USB Port; C:\WINDOWS\system32\drivers\nmwcdcj.sys [2007-02-22 12288]
S3 nmwcdcm;Nokia USB Modem; C:\WINDOWS\system32\drivers\nmwcdcm.sys [2007-02-22 12288]
S3 NPF;NetGroup Packet Filter Driver; C:\WINDOWS\system32\drivers\npf.sys [2003-04-04 30336]
S3 NTACCESS;NTACCESS; \??\D:\NTACCESS.sys []
S3 SetupNTGLM7X;SetupNTGLM7X; \??\D:\NTGLM7X.sys []
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 taphss;Anchorfree HSS Adapter; C:\WINDOWS\system32\DRIVERS\taphss.sys [2012-03-26 32768]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2013-07-03 14976]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 VClone;VClone; C:\WINDOWS\system32\DRIVERS\VClone.sys [2009-05-23 29696]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-15 82688]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2012-08-21 44808]
R2 ES lite Service;ES lite Service for program management.; C:\Program Files\Gigabyte\EasySaver\ESSVR.EXE [2009-02-05 68136]
R2 Guard.Mail.ru;Guard.Mail.ru; C:\Program Files\Guard-ICQ\GuardICQ.exe [2013-01-24 1564368]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jqs.exe [2012-07-05 161704]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [2013-12-10 1494304]
R2 NVSvc;NVIDIA Driver Helper Service; C:\WINDOWS\system32\nvsvc32.exe [2013-06-21 156960]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2010-04-02 66872]
R2 SbPF.Launcher;SbPF.Launcher; C:\Program Files\Sunbelt Software\Personal Firewall\SbPFLnch.exe [2008-10-31 95528]
R2 SocialVPN;SocialVPN; C:\Program Files\SocialVPN\SocialVPNService.exe [2011-02-08 5632]
R2 SPF4;Sunbelt Personal Firewall 4; C:\Program Files\Sunbelt Software\Personal Firewall\SbPFSvc.exe [2008-10-31 1365288]
R2 TuneUp.ProgramStatisticsSvc;TuneUp Program Statistics Service; C:\WINDOWS\System32\TUProgSt.exe [2009-12-03 603904]
R2 UxTuneUp;TuneUp Theme Extension; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2009-08-18 1529728]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2010-03-14 655624]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 LBTServ;Logitech Bluetooth Service; C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe [2008-05-02 121360]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 rpcapd;Remote Packet Capture Protocol v.0 (experimental); C:\Program Files\WinPcap\rpcapd.exe [2003-04-04 77824]
S3 ServiceLayer;ServiceLayer; D:\Program Files\Nokia\PC Connectivity Solution\ServiceLayer.exe [2007-06-15 300544]
S3 TuneUp.Defrag;TuneUp Drive Defrag Service; C:\WINDOWS\System32\TuneUpDefragService.exe [2009-12-03 360192]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2013-07-20 754856]
S4 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S4 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-01-15 774144]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2007-03-12 271920]
-----------------EOF-----------------
Run by XXX at 2014-01-19 10:20:24
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 118 GB (47%) free of 250 GB
Total RAM: 2046 MB (41% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 10:20:29, on 19.1.2014
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.21364)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\DivX\DivX Update\DivXUpdate.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Alwil Software\Avast5\avastUI.exe
C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\DAEMON Tools Lite\DTLite.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\GIGABYTE\ET6\GUI.exe
C:\Program Files\Gigabyte\EasySaver\ESSVR.EXE
C:\Program Files\Guard-ICQ\GuardICQ.exe
C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jqs.exe
C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\Program Files\Sunbelt Software\Personal Firewall\SbPFLnch.exe
C:\Program Files\SocialVPN\SocialVPNService.exe
C:\Program Files\Sunbelt Software\Personal Firewall\SbPFSvc.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\TUProgSt.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Sunbelt Software\Personal Firewall\SbPFCl.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\WINDOWS\System32\svchost.exe
C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\XXX\Dokumenty\Downloads\RSIT (1).exe
C:\Program Files\trend micro\XXX.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://go.microsoft.com/fwlink/?LinkId=74005
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: QIPBHO Class - {95289393-33EA-4F8D-B952-483415B9C955} - C:\Documents and Settings\XXX\Data aplikací\Microsoft\Internet Explorer\qipsearchbar.dll (file missing)
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: YoutubeAdblocker - {0D2E4734-AD78-1969-8515-C70C95E8E296} - C:\Program Files\YoutubeAdblocker\Zrt.dll (file missing)
O2 - BHO: surf And Keep - {1AA21982-9C00-F0AB-9E37-F6F3C299A42B} - C:\Program Files\surf And Keep\wn04gQR.dll (file missing)
O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll
O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.5.4.11.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: QIPBHO - {95289393-33EA-4F8D-B952-483415B9C955} - C:\Documents and Settings\XXX\Data aplikací\Microsoft\Internet Explorer\qipsearchbar.dll (file missing)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll
O3 - Toolbar: (no name) - !{EEE6C35B-6118-11DC-9C72-001320C79847} - (no file)
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [EasyTuneVI] C:\Program Files\GIGABYTE\ET6\ETcall.exe
O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [DivXUpdate] "C:\Program Files\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [avast] "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui
O4 - HKLM\..\Run: [NvBackend] "C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe"
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [nwiz] C:\Program Files\NVIDIA Corporation\nview\nwiz.exe /installquiet
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe" /c
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Stáhnout odkaz s použitím BitCometu - res://C:\Program Files\BitComet\BitComet.exe/AddLink.htm
O8 - Extra context menu item: Stáhnout všechny odkazy s použitím BitCometu - res://C:\Program Files\BitComet\BitComet.exe/AddAllLink.htm
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files\PokerStars\PokerStarsUpdate.exe (file missing)
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:\Program Files\BitComet\tools\BitCometBHO_1.5.4.11.dll/206 (file missing)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: PokerStars.net - {FA9B9510-9FCB-4ca0-818C-5D0987B47C4D} - C:\Program Files\PokerStars.NET\PokerStarsUpdate.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {4BFD075D-C36E-4F28-BB0A-5D472795197A} (PowerLoader Class) - http://download09.managerzone.com/socce ... Loader.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{55983BC5-5B87-438D-917C-08D5D30220F9}: NameServer = 10.128.137.145,213.168.176.3
O17 - HKLM\System\CCS\Services\Tcpip\..\{D2F6BAD6-2E49-46A2-AC9A-02FFF2DF1E20}: NameServer = 10.128.137.145,213.168.176.3
O17 - HKLM\System\CS2\Services\Tcpip\..\{55983BC5-5B87-438D-917C-08D5D30220F9}: NameServer = 10.128.137.145,213.168.176.3
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: ES lite Service for program management. (ES lite Service) - Unknown owner - C:\Program Files\Gigabyte\EasySaver\ESSVR.EXE
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Guard.Mail.ru - Unknown owner - C:\Program Files\Guard-ICQ\GuardICQ.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Oracle Corporation - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jqs.exe
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Unknown owner - C:\Program Files\WinPcap\rpcapd.exe
O23 - Service: SbPF.Launcher - Sunbelt Software, Inc. - C:\Program Files\Sunbelt Software\Personal Firewall\SbPFLnch.exe
O23 - Service: ServiceLayer - Nokia. - D:\Program Files\Nokia\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: SocialVPN - Unknown owner - C:\Program Files\SocialVPN\SocialVPNService.exe
O23 - Service: Sunbelt Personal Firewall 4 (SPF4) - Sunbelt Software, Inc. - C:\Program Files\Sunbelt Software\Personal Firewall\SbPFSvc.exe
O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software - C:\WINDOWS\System32\TuneUpDefragService.exe
O23 - Service: TuneUp Program Statistics Service (TuneUp.ProgramStatisticsSvc) - TuneUp Software - C:\WINDOWS\System32\TUProgSt.exe
--
End of file - 11707 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\1-Click Maintenance.job
C:\WINDOWS\tasks\AppleSoftwareUpdate.job
C:\WINDOWS\tasks\avast! Emergency Update.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-448539723-1647877149-725345543-1003Core.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-448539723-1647877149-725345543-1003UA.job
C:\WINDOWS\tasks\Norton Security Scan for XXX.job
C:\WINDOWS\tasks\Úklid 1 kliknutím.job
=========Mozilla firefox=========
ProfilePath - C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default
prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "extensions.enabledItems" - "{872b5b88-9db5-4310-bdd0-ac189557e5f5}:2.7.2.0, {6236BA26-C117-4007-928C-DE0716C7FA82}:1.0.2, {800b5000-a755-47e1-992b-48a1c1357f07}:1.1.7, {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}:6.0.17, {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20, jqs@sun.com:1.0, {8675f4b3-2f19-11ed-2d6b-0800600c0a16}:1.0, {20a82645-c095-46ed-80e3-08825760534b}:1.2.1, {63414328-3ab4-2c84-6c41-5a473c4b2ff7}:1.0, {6236BA26-C117-4007-928C-DE0716C7FA96}:1.0.4, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.5.8"
"{23fcfd51-4958-4f00-80a3-ae97e717ed8b}"=C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5
"wrc@avast.com"=C:\Program Files\Alwil Software\Avast5\WebRep\FF
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10.1 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\WINDOWS\system32\Adobe\Director\np32dsw.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0]
"Description"=DivX Plus Web Player
"Path"=C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0]
"Description"=DivX VOD Helper Plug-in
"Path"=C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.5.1]
"Description"=
"Path"=C:\WINDOWS\system32\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.5.1]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.0]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
C:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}
{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll
nsIBitCometAgent.xpt
nsIQTScriptablePlugin.xpt
C:\Program Files\Mozilla Firefox\plugins\
npBitCometAgent.dll
NPOFF12.DLL
npqtplugin.dll
npqtplugin2.dll
npqtplugin3.dll
npqtplugin4.dll
npqtplugin5.dll
npqtplugin6.dll
npqtplugin7.dll
QuickTimePlugin.class
C:\Program Files\Mozilla Firefox\searchplugins\
google.xml
heureka-cz.xml
jyxo-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml
yahoo.xml
C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\
firmycz.xml
mapycz.xml
zbocz.xml
{3CC5A861-7085-4329-BF4A-DFD056A00CDB}.xml
{96431DA7-2E65-4889-AA51-91DA1E37F875}.xml
{A9941E98-F141-402D-9719-CC92D54D0484}.xml
{B56F6713-4E29-4E8C-BB1A-5D9E1616940F}.xml
{B68E2246-C966-48F3-A498-67133D2E0DEE}.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
AcroIEHlprObj Class - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll [2004-12-14 63136]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0D2E4734-AD78-1969-8515-C70C95E8E296}]
YoutubeAdblocker - C:\Program Files\YoutubeAdblocker\Zrt.dll []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1AA21982-9C00-F0AB-9E37-F6F3C299A42B}]
surf And Keep - C:\Program Files\surf And Keep\wn04gQR.dll []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{326E768D-4182-46FD-9C16-1449A49795F4}]
DivX Plus Web Player HTML5 <video> - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll [2011-12-12 194432]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{39F7E362-828A-4B5A-BCAF-5B79BFDFEA60}]
BitComet Helper - C:\Program Files\BitComet\tools\BitCometBHO_1.5.4.11.dll [2011-04-11 767280]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll [2012-07-05 453544]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll [2012-08-21 1227224]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18 403840]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95289393-33EA-4F8D-B952-483415B9C955}]
QIPBHO Class - C:\Documents and Settings\XXX\Data aplikací\Microsoft\Internet Explorer\qipsearchbar.dll []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll [2012-07-05 157616]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll [2012-08-21 1227224]
!{EEE6C35B-6118-11DC-9C72-001320C79847}
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2009-01-13 18084864]
"EasyTuneVI"=C:\Program Files\GIGABYTE\ET6\ETcall.exe [2007-07-26 20480]
"Kernel and Hardware Abstraction Layer"=C:\WINDOWS\KHALMNPR.EXE [2008-02-29 76304]
"QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2010-11-29 421888]
"GrooveMonitor"=C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
"DivXUpdate"=C:\Program Files\DivX\DivX Update\DivXUpdate.exe [2011-07-29 1259376]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2012-01-17 252296]
"avast"=C:\Program Files\Alwil Software\Avast5\avastUI.exe [2012-08-21 4282728]
"NvBackend"=C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [2013-12-10 2279712]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2013-06-21 15677728]
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2013-06-21 223008]
"nwiz"=C:\Program Files\NVIDIA Corporation\nview\nwiz.exe [2013-06-21 2586912]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2009-10-30 369200]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"Google Update"=C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe [2011-07-27 136176]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\LBTWlgn]
c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll [2008-05-02 72208]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265096]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WdfLoadGroup]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WdfLoadGroup]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=323
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE"="C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe"="C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe:*:Enabled:Adobe CSI CS4"
"C:\Program Files\KONAMI\Pro Evolution Soccer 2010\football4fun.exe"="C:\Program Files\KONAMI\Pro Evolution Soccer 2010\football4fun.exe:*:Enabled:Pro Evolution Soccer 2010"
"D:\Program Files\PES 11\pes2011-100.exe"="D:\Program Files\PES 11\pes2011-100.exe:*:Enabled:Pro Evolution Soccer 2011"
"D:\Program Files\PES 11\gacp_11.exe"="D:\Program Files\PES 11\gacp_11.exe:*:Enabled:Pro Evolution Soccer 2011"
"C:\WINDOWS\system32\msiexec.exe"="C:\WINDOWS\system32\msiexec.exe:*:Enabled:UpdateManagerSetup"
"C:\WINDOWS\system32\dmwu.exe"="C:\WINDOWS\system32\dmwu.exe:*:Enabled:dmwu"
"C:\Program Files\Sports Interactive\Football Manager 2011 Russian\fm.exe"="C:\Program Files\Sports Interactive\Football Manager 2011 Russian\fm.exe:*:Disabled:Football Manager 2011"
"C:\Program Files\BitComet\BitComet.exe"="C:\Program Files\BitComet\BitComet.exe:*:Enabled:BitComet.exe"
"C:\hry\FIFA 14\Game\fifa14.exe"="C:\hry\FIFA 14\Game\fifa14.exe:*:Enabled:FIFA 14"
"C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe"="C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe:*:Enabled:NVIDIA Network Service TCP Exception (HTTPS)"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"VIDC.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"VIDC.YVYU"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"vidc.ffds"=C:\PROGRA~1\COMBIN~1\Filters\FFDShow\ff_vfw.dll
"vidc.VP60"=C:\WINDOWS\system32\vp6vfw.dll
"vidc.VP61"=C:\WINDOWS\system32\vp6vfw.dll
"vidc.DIVX"=DivX.dll
"vidc.yv12"=DivX.dll
"MSVideo8"=VfWWDM32.dll
======List of files/folders created in the last 1 month======
2014-01-18 17:00:51 ----D---- C:\Documents and Settings\XXX\Data aplikací\Malwarebytes
2014-01-18 17:00:37 ----D---- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
2014-01-18 16:12:31 ----D---- C:\AdwCleaner
2014-01-18 01:03:08 ----HDC---- C:\WINDOWS\$NtUninstallKB2914368$
2013-12-27 16:45:22 ----A---- C:\WINDOWS\imsins.BAK
2013-12-26 14:02:51 ----D---- C:\Documents and Settings\XXX\Data aplikací\NVIDIA
2013-12-24 13:46:28 ----D---- C:\Documents and Settings\All Users\Data aplikací\dc60de014abbdb08
2013-12-24 13:45:36 ----D---- C:\Documents and Settings\All Users\Data aplikací\InstallMate
2013-12-24 13:05:17 ----D---- C:\Program Files\AGEIA Technologies
2013-12-24 13:03:43 ----A---- C:\WINDOWS\system32\OpenCL.dll
2013-12-24 13:03:17 ----A---- C:\WINDOWS\system32\nvopencl.dll
2013-12-24 13:03:17 ----A---- C:\WINDOWS\system32\nvdispgenco3232049.dll
2013-12-24 13:03:17 ----A---- C:\WINDOWS\system32\nvdispco3232049.dll
2013-12-24 13:03:16 ----A---- C:\WINDOWS\system32\nvcompiler.dll
2013-12-24 12:58:45 ----D---- C:\NVIDIA
2013-12-24 12:50:10 ----D---- C:\Documents and Settings\All Users\Data aplikací\NVIDIA Corporation
2013-12-22 11:38:56 ----D---- C:\Documents and Settings\All Users\Data aplikací\Origin
2013-12-22 11:24:08 ----D---- C:\hry
2013-12-20 18:46:49 ----D---- C:\Games
======List of files/folders modified in the last 1 month======
2014-01-19 10:20:27 ----D---- C:\WINDOWS\Prefetch
2014-01-19 10:20:25 ----D---- C:\Program Files\trend micro
2014-01-19 10:17:42 ----D---- C:\WINDOWS\Temp
2014-01-19 10:17:10 ----D---- C:\WINDOWS\system32
2014-01-19 01:25:39 ----A---- C:\WINDOWS\SchedLgU.Txt
2014-01-19 01:25:29 ----D---- C:\WINDOWS\system32\CatRoot2
2014-01-18 23:04:58 ----D---- C:\WINDOWS\system32\drivers
2014-01-18 20:50:00 ----RD---- C:\Program Files
2014-01-18 19:08:37 ----SHD---- C:\System Volume Information
2014-01-18 19:08:37 ----D---- C:\WINDOWS\system32\Restore
2014-01-18 18:58:29 ----HDC---- C:\WINDOWS\$NtUninstallKB974571_0$
2014-01-18 18:56:38 ----SHD---- C:\WINDOWS\Installer
2014-01-18 17:47:39 ----D---- C:\WINDOWS\down
2014-01-18 16:41:04 ----D---- C:\Documents and Settings\All Users\Data aplikací\ICQ
2014-01-18 14:16:16 ----D---- C:\Program Files\Common Files\Symantec Shared
2014-01-18 08:55:00 ----D---- C:\WINDOWS
2014-01-18 01:06:35 ----SHD---- C:\Config.Msi
2014-01-18 01:06:32 ----D---- C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
2014-01-18 01:05:35 ----D---- C:\WINDOWS\system32\MRT
2014-01-18 01:03:26 ----D---- C:\WINDOWS\Debug
2014-01-18 01:03:19 ----A---- C:\WINDOWS\system32\MRT.exe
2014-01-18 01:03:13 ----HD---- C:\WINDOWS\inf
2014-01-18 01:03:11 ----RSHDC---- C:\WINDOWS\system32\dllcache
2014-01-04 21:31:45 ----SHD---- C:\WINDOWS\CSC
2013-12-31 00:39:31 ----D---- C:\Documents and Settings\XXX\Data aplikací\BitComet
2013-12-30 13:53:11 ----D---- C:\Downloads
2013-12-28 11:04:08 ----D---- C:\Documents and Settings\XXX\Data aplikací\vlc
2013-12-27 17:48:31 ----A---- C:\WINDOWS\NeroDigital.ini
2013-12-25 10:44:21 ----RSD---- C:\WINDOWS\assembly
2013-12-25 10:44:21 ----D---- C:\WINDOWS\Microsoft.NET
2013-12-25 09:34:32 ----D---- C:\WINDOWS\WinSxS
2013-12-25 09:34:25 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2013-12-25 09:03:02 ----A---- C:\WINDOWS\system32\msvcr80.dll
2013-12-25 09:03:02 ----A---- C:\WINDOWS\system32\msvcp80.dll
2013-12-25 09:03:02 ----A---- C:\WINDOWS\system32\msvcm80.dll
2013-12-24 13:05:17 ----D---- C:\Program Files\NVIDIA Corporation
2013-12-24 13:04:20 ----D---- C:\WINDOWS\Help
2013-12-24 13:00:21 ----D---- C:\WINDOWS\system32\ReinstallBackups
2013-12-24 12:47:59 ----D---- C:\WINDOWS\system32\cs-cz
2013-12-24 12:43:13 ----D---- C:\WINDOWS\system32\en-us
2013-12-24 12:43:06 ----D---- C:\Program Files\Microsoft.NET
2013-12-22 11:35:36 ----HD---- C:\Program Files\Common Files\EAInstaller
2013-12-22 11:34:33 ----D---- C:\WINDOWS\system32\DirectX
2013-12-21 17:43:33 ----D---- C:\Documents and Settings\All Users\Data aplikací\BlazeVideo
2013-12-21 17:41:46 ----D---- C:\Program Files\Software Informer
2013-12-21 17:39:57 ----D---- C:\Program Files\E.M. PowerPoint Video Converter
2013-12-21 17:35:18 ----D---- C:\Program Files\CCleaner
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 ohci1394;Hostitelský řadič IEEE 1394 dle standardu OHCI Texas Instruments; C:\WINDOWS\system32\DRIVERS\ohci1394.sys [2008-04-13 61696]
R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2010-07-12 45648]
R0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2009-12-24 691696]
R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-15 76544]
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2012-08-21 25256]
R1 AmdPPM;Ovladač procesoru HwPState AMD; C:\WINDOWS\system32\DRIVERS\AmdPPM.sys [2007-04-16 33792]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2012-08-21 35928]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2012-08-21 729752]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2012-08-21 355632]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2012-08-21 54232]
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R1 SbFw;SbFw; C:\WINDOWS\system32\drivers\SbFw.sys [2008-10-31 270888]
R1 sbhips;Sunbelt HIPS Driver; C:\WINDOWS\system32\drivers\sbhips.sys [2008-06-21 66600]
R1 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\WINDOWS\system32\DRIVERS\wmiacpi.sys [2008-04-13 8832]
R2 adfs;adfs; C:\WINDOWS\system32\drivers\adfs.sys [2008-08-14 74720]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\drivers\aswFsBlk.sys [2012-08-21 21256]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2012-08-21 97608]
R2 atksgt;atksgt; C:\WINDOWS\system32\DRIVERS\atksgt.sys [2009-12-04 278984]
R2 lirsgt;lirsgt; C:\WINDOWS\system32\DRIVERS\lirsgt.sys [2009-12-04 25416]
R3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800]
R3 DynCal;Dynamic Calibration Service; C:\WINDOWS\system32\drivers\Dyncal.sys [2001-05-21 8051]
R3 gdrv;gdrv; \??\C:\WINDOWS\gdrv.sys []
R3 GVTDrv;GVTDrv; \??\C:\WINDOWS\system32\Drivers\GVTDrv.sys []
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2009-01-20 5027840]
R3 IpopTap;IpopTap; C:\WINDOWS\system32\DRIVERS\IpopTap.sys [2011-02-08 26624]
R3 L8042Kbd;Logitech SetPoint Keyboard Driver; C:\WINDOWS\system32\DRIVERS\L8042Kbd.sys [2008-02-29 20240]
R3 L8042mou;SetPoint PS/2 Mouse Filter Driver; C:\WINDOWS\system32\DRIVERS\L8042mou.Sys [2008-02-29 63120]
R3 LHidFilt;Logitech SetPoint KMDF HID Filter Driver; C:\WINDOWS\system32\DRIVERS\LHidFilt.Sys [2008-02-29 35344]
R3 LMouFilt;Logitech SetPoint KMDF Mouse Filter Driver; C:\WINDOWS\system32\DRIVERS\LMouFilt.Sys [2008-02-29 36880]
R3 LMouKE;SetPoint Mouse Filter Driver; C:\WINDOWS\system32\DRIVERS\LMouKE.Sys [2008-02-29 79120]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2013-06-21 10973504]
R3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys [2008-10-30 117888]
R3 SBFWIMCL;Sunbelt Software Firewall NDIS IM Filter Miniport; C:\WINDOWS\system32\DRIVERS\sbfwim.sys [2008-06-21 65576]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2013-08-09 32384]
R3 Wdf01000;Wdf01000; C:\WINDOWS\system32\DRIVERS\Wdf01000.sys [2006-11-02 492000]
S3 alch8vvn;alch8vvn; C:\WINDOWS\system32\drivers\alch8vvn.sys []
S3 catchme;catchme; \??\C:\DOCUME~1\XXX\LOCALS~1\Temp\catchme.sys []
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 cnnctfy2MP;cnnctfy2MP; C:\WINDOWS\system32\DRIVERS\cnnctfy2.sys []
S3 cpuz132;cpuz132; \??\C:\DOCUME~1\XXX\LOCALS~1\Temp\cpuz132\cpuz132_x32.sys []
S3 ENTECH;ENTECH; \??\C:\WINDOWS\system32\DRIVERS\ENTECH.sys []
S3 GMSIPCI;GMSIPCI; \??\D:\INSTALL\GMSIPCI.SYS []
S3 hamachi;Hamachi Network Interface; C:\WINDOWS\system32\DRIVERS\hamachi.sys [2009-03-18 26176]
S3 IT9135BDA;IT9135 BDA Devices; C:\WINDOWS\System32\Drivers\IT9135BDA.sys [2011-10-19 145280]
S3 MPE;Filtr MPE BDA; C:\WINDOWS\system32\DRIVERS\MPE.sys [2008-04-13 15232]
S3 MSICPL;MSICPL; \??\D:\install4\MSICPL.sys []
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 nmwcd;Nokia USB Phone Parent; C:\WINDOWS\system32\drivers\nmwcd.sys [2007-02-22 137216]
S3 nmwcdc;Nokia USB Generic; C:\WINDOWS\system32\drivers\nmwcdc.sys [2007-02-22 8320]
S3 nmwcdcj;Nokia USB Port; C:\WINDOWS\system32\drivers\nmwcdcj.sys [2007-02-22 12288]
S3 nmwcdcm;Nokia USB Modem; C:\WINDOWS\system32\drivers\nmwcdcm.sys [2007-02-22 12288]
S3 NPF;NetGroup Packet Filter Driver; C:\WINDOWS\system32\drivers\npf.sys [2003-04-04 30336]
S3 NTACCESS;NTACCESS; \??\D:\NTACCESS.sys []
S3 SetupNTGLM7X;SetupNTGLM7X; \??\D:\NTGLM7X.sys []
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 taphss;Anchorfree HSS Adapter; C:\WINDOWS\system32\DRIVERS\taphss.sys [2012-03-26 32768]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2013-07-03 14976]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 VClone;VClone; C:\WINDOWS\system32\DRIVERS\VClone.sys [2009-05-23 29696]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-15 82688]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2012-08-21 44808]
R2 ES lite Service;ES lite Service for program management.; C:\Program Files\Gigabyte\EasySaver\ESSVR.EXE [2009-02-05 68136]
R2 Guard.Mail.ru;Guard.Mail.ru; C:\Program Files\Guard-ICQ\GuardICQ.exe [2013-01-24 1564368]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jqs.exe [2012-07-05 161704]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [2013-12-10 1494304]
R2 NVSvc;NVIDIA Driver Helper Service; C:\WINDOWS\system32\nvsvc32.exe [2013-06-21 156960]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2010-04-02 66872]
R2 SbPF.Launcher;SbPF.Launcher; C:\Program Files\Sunbelt Software\Personal Firewall\SbPFLnch.exe [2008-10-31 95528]
R2 SocialVPN;SocialVPN; C:\Program Files\SocialVPN\SocialVPNService.exe [2011-02-08 5632]
R2 SPF4;Sunbelt Personal Firewall 4; C:\Program Files\Sunbelt Software\Personal Firewall\SbPFSvc.exe [2008-10-31 1365288]
R2 TuneUp.ProgramStatisticsSvc;TuneUp Program Statistics Service; C:\WINDOWS\System32\TUProgSt.exe [2009-12-03 603904]
R2 UxTuneUp;TuneUp Theme Extension; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2009-08-18 1529728]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2010-03-14 655624]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 LBTServ;Logitech Bluetooth Service; C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe [2008-05-02 121360]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 rpcapd;Remote Packet Capture Protocol v.0 (experimental); C:\Program Files\WinPcap\rpcapd.exe [2003-04-04 77824]
S3 ServiceLayer;ServiceLayer; D:\Program Files\Nokia\PC Connectivity Solution\ServiceLayer.exe [2007-06-15 300544]
S3 TuneUp.Defrag;TuneUp Drive Defrag Service; C:\WINDOWS\System32\TuneUpDefragService.exe [2009-12-03 360192]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2013-07-20 754856]
S4 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S4 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-01-15 774144]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2007-03-12 271920]
-----------------EOF-----------------
Re: Vyskakující reklamy apod.
Jestli bude Avast rvat, ze to chce otevrit v sandboxu, nedovolte to! Vyberte moznost Otevrit normalne Stahnete OTL http://oldtimer.geekstogo.com/OTL.exe , ulozte na plochu a spustte.Oznacte polozky (dejte tam zatrzitka) Pro všechny uživatele, Kontrola na havěť "LOP" a Kontrola na havěť "Purity"
Do spodniho okna vlozte nasledujici text
Kód: Vybrat vše
CREATERESTOREPOINT
netsvcs
drivers32
savembr:0
/md5start
adp3132.sys
AGP440.sys
ahcix86.sys
ahcix86s.sys
atapi.sys
autochk.exe
cdrom.sys
cngaudit.dll
cryptsvc.dll
eNetHook.dll
eventlog.dll
explorer.exe
hal.dll
Changer.sys
iaStor.sys
iastorv.sys
IdeChnDr.sys
isapnp.sys
JakNDis.sys
KR10N.sys
logevent.dll
lsass.exe
mv61xx.sys
ndis.sys
netlogon.dll
ntelogon.dll
nvata.sys
nvatabus.sys
nvgts.sys
nvraid.sys
nvrd32.sys
nvstor.sys
nvstor32.sys
scecli.dll
sceclt.dll
smss.exe
svchost.exe
symmpi.sys
tcpip.sys
userinit.exe
vaxscsi.sys
viamraid.sys
viasraid.sys
ViPrt.sys
winlogon.exe
ws2_32.dll
/md5stop
%systemroot%*.* /U /s
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
%SYSTEMDRIVE%\*.exe
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s
reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c
type c:\boot.ini >> test.txt /c
%SystemDrive%\PhysicalMBR.bin /md5
*crack* /s
*keygen* /s
*AntiWPA* /s
*loader* /s
*minodlogin* /s
*tnod* /s
*AutoKMS* /s
*activator* /s
*serial* /s
*w7lxe* /s
Po skenu se vytvori dva logy (OTL.Txt a Extras.txt), oba sem vlozte (kdyz budou dlouhe, rozdelte je do vice prispevku).
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Vyskakující reklamy apod.
OTL logfile created on: 19.1.2014 12:00:13 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\XXX\Plocha
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.11)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
2,00 Gb Total Physical Memory | 0,49 Gb Available Physical Memory | 24,48% Memory free
3,85 Gb Paging File | 2,26 Gb Available in Paging File | 58,75% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 244,14 Gb Total Space | 115,67 Gb Free Space | 47,38% Space Free | Partition Type: NTFS
Drive D: | 221,62 Gb Total Space | 191,79 Gb Free Space | 86,54% Space Free | Partition Type: NTFS
Computer Name: XXX-07A3B26BAE8 | User Name: XXX | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2014.01.19 11:57:39 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\XXX\Plocha\OTL.exe
PRC - [2014.01.11 11:29:23 | 000,866,584 | ---- | M] (Google Inc.) -- C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
PRC - [2013.12.10 03:22:32 | 002,279,712 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
PRC - [2013.12.10 03:21:14 | 001,494,304 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
PRC - [2013.01.24 15:10:42 | 001,564,368 | ---- | M] () -- C:\Program Files\Guard-ICQ\GuardICQ.exe
PRC - [2012.08.21 10:12:26 | 004,282,728 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe
PRC - [2012.08.21 10:12:25 | 000,044,808 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
PRC - [2012.07.05 21:07:00 | 000,161,704 | ---- | M] (Oracle Corporation) -- C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jqs.exe
PRC - [2012.01.17 10:07:58 | 000,505,736 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Common Files\Java\Java Update\jucheck.exe
PRC - [2011.07.29 00:08:12 | 001,259,376 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe
PRC - [2011.02.08 07:20:44 | 000,005,632 | ---- | M] () -- C:\Program Files\SocialVPN\SocialVPNService.exe
PRC - [2009.12.03 22:35:57 | 000,603,904 | ---- | M] (TuneUp Software) -- C:\WINDOWS\system32\TUProgSt.exe
PRC - [2009.10.30 12:57:08 | 000,369,200 | ---- | M] (DT Soft Ltd) -- C:\Program Files\DAEMON Tools Lite\DTLite.exe
PRC - [2009.02.05 13:43:26 | 000,068,136 | ---- | M] () -- C:\Program Files\Gigabyte\EasySaver\essvr.exe
PRC - [2008.10.31 07:24:28 | 001,365,288 | ---- | M] (Sunbelt Software, Inc.) -- C:\Program Files\Sunbelt Software\Personal Firewall\SbPFSvc.exe
PRC - [2008.10.31 07:24:28 | 000,095,528 | ---- | M] (Sunbelt Software, Inc.) -- C:\Program Files\Sunbelt Software\Personal Firewall\SbPFLnch.exe
PRC - [2008.10.31 07:24:26 | 001,705,256 | ---- | M] (Sunbelt Software, Inc.) -- C:\Program Files\Sunbelt Software\Personal Firewall\SbPFCl.exe
PRC - [2008.04.14 04:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2008.03.25 17:21:56 | 000,219,656 | ---- | M] () -- C:\Program Files\Gigabyte\ET6\GUI.exe
========== Modules (No Company Name) ==========
MOD - [2014.01.18 21:48:23 | 002,247,168 | ---- | M] () -- C:\Program Files\Alwil Software\Avast5\defs\14011801\algo.dll
MOD - [2014.01.18 09:19:05 | 004,591,616 | ---- | M] () -- C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\User Data\SwiftShader\1.0.5.0\libGLESv2.dll
MOD - [2014.01.18 09:19:05 | 000,112,128 | ---- | M] () -- C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\User Data\SwiftShader\1.0.5.0\libEGL.dll
MOD - [2014.01.11 11:29:21 | 000,399,640 | ---- | M] () -- C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\Application\32.0.1700.76\ppgooglenaclpluginchrome.dll
MOD - [2014.01.11 11:29:19 | 013,615,896 | ---- | M] () -- C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\Application\32.0.1700.76\PepperFlash\pepflashplayer.dll
MOD - [2014.01.11 11:29:17 | 004,055,320 | ---- | M] () -- C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\Application\32.0.1700.76\pdf.dll
MOD - [2014.01.11 11:28:11 | 001,634,584 | ---- | M] () -- C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\Application\32.0.1700.76\ffmpegsumo.dll
MOD - [2013.10.12 09:11:56 | 002,295,808 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Core\83cd19e8259b8dd9435c1c3f8f31b60c\System.Core.ni.dll
MOD - [2013.10.11 23:51:59 | 000,978,944 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Configuration\1b7600e7fe5e152f21ba6d79f3c0c3b6\System.Configuration.ni.dll
MOD - [2013.10.05 13:28:22 | 000,212,992 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\15fd2d2f4e709154b44187a6915db244\System.ServiceProcess.ni.dll
MOD - [2013.10.05 13:24:07 | 005,462,016 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Xml\f93600ac836b9140e1df13bb0f6bfccf\System.Xml.ni.dll
MOD - [2013.10.05 13:23:45 | 007,977,984 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System\10df39542df7d48462451fc39bce8418\System.ni.dll
MOD - [2013.07.15 08:11:03 | 011,497,984 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\mscorlib\b14359470744c840c59fbe4e58034fd6\mscorlib.ni.dll
MOD - [2013.07.10 17:07:22 | 000,756,888 | ---- | M] () -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSPTLS.DLL
MOD - [2013.01.24 15:10:42 | 001,564,368 | ---- | M] () -- C:\Program Files\Guard-ICQ\GuardICQ.exe
MOD - [2011.07.29 00:09:42 | 000,096,112 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdateCheck.dll
MOD - [2011.07.29 00:08:12 | 001,259,376 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe
MOD - [2011.02.08 07:20:44 | 000,005,632 | ---- | M] () -- C:\Program Files\SocialVPN\SocialVPNService.exe
MOD - [2011.02.08 07:20:36 | 000,381,952 | ---- | M] () -- C:\Program Files\SocialVPN\Brunet.dll
MOD - [2011.02.08 07:20:36 | 000,088,064 | ---- | M] () -- C:\Program Files\SocialVPN\Ipop.Managed.dll
MOD - [2011.02.08 07:20:36 | 000,061,440 | ---- | M] () -- C:\Program Files\SocialVPN\Brunet.Security.dll
MOD - [2011.02.08 07:20:36 | 000,036,352 | ---- | M] () -- C:\Program Files\SocialVPN\Brunet.Services.Dht.dll
MOD - [2011.02.08 07:20:36 | 000,021,504 | ---- | M] () -- C:\Program Files\SocialVPN\Brunet.Services.Coordinate.dll
MOD - [2011.02.08 07:20:36 | 000,019,456 | ---- | M] () -- C:\Program Files\SocialVPN\Brunet.Xmpp.dll
MOD - [2011.02.08 07:20:36 | 000,014,336 | ---- | M] () -- C:\Program Files\SocialVPN\Brunet.Services.XmlRpc.dll
MOD - [2009.05.01 00:31:06 | 000,466,944 | ---- | M] () -- C:\WINDOWS\system32\nvshell.dll
MOD - [2009.02.16 14:19:48 | 002,191,431 | ---- | M] () -- C:\Program Files\Gigabyte\ET6\Normal.dll
MOD - [2009.02.16 12:02:02 | 000,327,747 | ---- | M] () -- C:\Program Files\Gigabyte\ET6\work.dll
MOD - [2009.02.13 13:25:10 | 000,253,952 | ---- | M] () -- C:\Program Files\Gigabyte\ET6\MFCCPU.dll
MOD - [2009.02.12 21:47:40 | 000,135,168 | ---- | M] () -- C:\Program Files\Gigabyte\ET6\OCK.dll
MOD - [2009.02.12 14:41:22 | 000,106,496 | ---- | M] () -- C:\Program Files\Gigabyte\ET6\HM.dll
MOD - [2009.02.05 13:43:26 | 000,068,136 | ---- | M] () -- C:\Program Files\Gigabyte\EasySaver\essvr.exe
MOD - [2008.12.19 18:05:54 | 000,192,512 | ---- | M] () -- C:\Program Files\Gigabyte\ET6\GVTunner.dll
MOD - [2008.12.05 17:03:52 | 000,098,304 | ---- | M] () -- C:\Program Files\Gigabyte\EasySaver\ycc.dll
MOD - [2008.10.24 16:06:46 | 000,098,304 | ---- | M] () -- C:\Program Files\Gigabyte\ET6\ycc.dll
MOD - [2008.09.01 14:26:32 | 000,102,400 | ---- | M] () -- C:\Program Files\Gigabyte\ET6\SF.dll
MOD - [2008.05.07 15:22:58 | 000,102,400 | ---- | M] () -- C:\Program Files\Gigabyte\ET6\CIAMIB.dll
MOD - [2008.04.14 04:21:47 | 000,014,336 | ---- | M] () -- C:\WINDOWS\system32\msdmo.dll
MOD - [2008.03.25 17:21:56 | 000,219,656 | ---- | M] () -- C:\Program Files\Gigabyte\ET6\GUI.exe
MOD - [2007.01.22 11:22:28 | 000,470,016 | ---- | M] () -- C:\Program Files\Sunbelt Software\Personal Firewall\PocoXML.dll
MOD - [2007.01.22 11:22:14 | 000,859,648 | ---- | M] () -- C:\Program Files\Sunbelt Software\Personal Firewall\PocoFoundation.dll
MOD - [2007.01.22 11:22:12 | 000,018,432 | ---- | M] () -- C:\Program Files\Sunbelt Software\Personal Firewall\PocoExt.dll
MOD - [2006.07.13 19:04:04 | 000,126,464 | ---- | M] () -- C:\Program Files\WinRAR\RarExt.dll
MOD - [2006.02.14 15:36:10 | 000,155,648 | ---- | M] () -- C:\Program Files\Sunbelt Software\Personal Firewall\ssleay32.dll
MOD - [2006.02.14 15:35:54 | 000,827,392 | ---- | M] () -- C:\Program Files\Sunbelt Software\Personal Firewall\libeay32.dll
MOD - [2003.02.14 14:11:46 | 000,102,400 | ---- | M] () -- C:\Program Files\Gigabyte\ET6\Sound.dll
========== Services (SafeList) ==========
SRV - [2013.12.10 03:21:14 | 001,494,304 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe -- (NvNetworkService)
SRV - [2013.01.24 15:10:42 | 001,564,368 | ---- | M] () [Auto | Running] -- C:\Program Files\Guard-ICQ\GuardICQ.exe -- (Guard.Mail.ru)
SRV - [2012.08.21 10:12:25 | 000,044,808 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus)
SRV - [2012.07.05 21:07:00 | 000,161,704 | ---- | M] (Oracle Corporation) [Auto | Running] -- C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jqs.exe -- (JavaQuickStarterService)
SRV - [2011.02.08 07:20:44 | 000,005,632 | ---- | M] () [Auto | Running] -- C:\Program Files\SocialVPN\SocialVPNService.exe -- (SocialVPN)
SRV - [2010.03.14 09:38:22 | 000,655,624 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2009.12.03 22:35:57 | 000,603,904 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\WINDOWS\system32\TUProgSt.exe -- (TuneUp.ProgramStatisticsSvc)
SRV - [2009.12.03 22:35:55 | 000,360,192 | ---- | M] (TuneUp Software) [On_Demand | Stopped] -- C:\WINDOWS\system32\TuneUpDefragService.exe -- (TuneUp.Defrag)
SRV - [2009.02.05 13:43:26 | 000,068,136 | ---- | M] () [Auto | Running] -- C:\Program Files\Gigabyte\EasySaver\essvr.exe -- (ES lite Service)
SRV - [2008.12.11 13:31:36 | 000,027,904 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\WINDOWS\system32\uxtuneup.dll -- (UxTuneUp)
SRV - [2008.10.31 07:24:28 | 001,365,288 | ---- | M] (Sunbelt Software, Inc.) [Auto | Running] -- C:\Program Files\Sunbelt Software\Personal Firewall\SbPFSvc.exe -- (SPF4)
SRV - [2008.10.31 07:24:28 | 000,095,528 | ---- | M] (Sunbelt Software, Inc.) [Auto | Running] -- C:\Program Files\Sunbelt Software\Personal Firewall\SbPFLnch.exe -- (SbPF.Launcher)
SRV - [2008.05.02 02:42:06 | 000,121,360 | ---- | M] (Logitech, Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe -- (LBTServ)
SRV - [2007.06.15 16:55:00 | 000,300,544 | ---- | M] (Nokia.) [On_Demand | Stopped] -- D:\Program Files\Nokia\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2003.04.04 13:54:50 | 000,077,824 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\WinPcap\rpcapd.exe -- (rpcapd)
========== Driver Services (SafeList) ==========
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA)
DRV - File not found [Kernel | On_Demand | Stopped] -- D:\NTGLM7X.sys -- (SetupNTGLM7X)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP)
DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump)
DRV - File not found [Kernel | On_Demand | Stopped] -- D:\NTACCESS.sys -- (NTACCESS)
DRV - File not found [Kernel | On_Demand | Stopped] -- D:\install4\MSICPL.sys -- (MSICPL)
DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc)
DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt)
DRV - File not found [Kernel | System | Stopped] -- -- (Changer)
DRV - File not found [Kernel | On_Demand | Stopped] -- D:\INSTALL\GMSIPCI.SYS -- (GMSIPCI)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\DOCUME~1\XXX\LOCALS~1\Temp\cpuz132\cpuz132_x32.sys -- (cpuz132)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\cnnctfy2.sys -- (cnnctfy2MP)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\DOCUME~1\XXX\LOCALS~1\Temp\catchme.sys -- (catchme)
DRV - File not found [Kernel | On_Demand | Unknown] -- -- (alch8vvn)
DRV - [2014.01.19 10:17:11 | 000,024,944 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\GVTDrv.sys -- (GVTDrv)
DRV - [2014.01.19 10:16:16 | 000,016,608 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\gdrv.sys -- (gdrv)
DRV - [2012.08.21 10:13:15 | 000,729,752 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\WINDOWS\System32\drivers\aswSnx.sys -- (aswSnx)
DRV - [2012.08.21 10:13:15 | 000,355,632 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2012.08.21 10:13:15 | 000,054,232 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2012.08.21 10:13:14 | 000,097,608 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2)
DRV - [2012.08.21 10:13:14 | 000,035,928 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2012.08.21 10:13:13 | 000,025,256 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4)
DRV - [2012.08.21 10:13:13 | 000,021,256 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2012.03.26 22:45:14 | 000,032,768 | ---- | M] (AnchorFree Inc) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\taphss.sys -- (taphss)
DRV - [2011.10.19 06:46:32 | 000,145,280 | R--- | M] (ITE ) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\IT9135BDA.sys -- (IT9135BDA)
DRV - [2011.02.08 07:20:44 | 000,026,624 | ---- | M] (The OpenVPN Project) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\IpopTap.sys -- (IpopTap)
DRV - [2009.12.24 22:14:17 | 000,691,696 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\sptd.sys -- (sptd)
DRV - [2009.12.04 14:16:20 | 000,278,984 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\atksgt.sys -- (atksgt)
DRV - [2009.12.04 14:16:19 | 000,025,416 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\lirsgt.sys -- (lirsgt)
DRV - [2009.03.18 16:35:40 | 000,026,176 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\hamachi.sys -- (hamachi)
DRV - [2009.01.20 11:53:06 | 005,027,840 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService)
DRV - [2008.10.31 07:09:06 | 000,270,888 | R--- | M] (Sunbelt Software, Inc.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\SbFw.sys -- (SbFw)
DRV - [2008.10.30 14:14:20 | 000,117,888 | R--- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtenicxp.sys -- (RTLE8023xp)
DRV - [2008.06.21 04:54:54 | 000,066,600 | R--- | M] (Sunbelt Software, Inc.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\sbhips.sys -- (sbhips)
DRV - [2008.06.21 04:54:54 | 000,065,576 | ---- | M] (Sunbelt Software, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\SbFwIm.sys -- (SBFWIMCL)
DRV - [2008.04.13 19:46:22 | 000,015,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\MPE.sys -- (MPE)
DRV - [2008.02.29 03:13:36 | 000,079,120 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LMouKE.Sys -- (LMouKE)
DRV - [2008.02.29 03:13:24 | 000,036,880 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LMouFilt.Sys -- (LMouFilt)
DRV - [2008.02.29 03:13:16 | 000,035,344 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LHidFilt.Sys -- (LHidFilt)
DRV - [2008.02.29 03:12:56 | 000,063,120 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\L8042mou.Sys -- (L8042mou)
DRV - [2008.02.29 03:12:48 | 000,020,240 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\L8042Kbd.sys -- (L8042Kbd)
DRV - [2007.04.16 16:46:34 | 000,033,792 | ---- | M] (Advanced Micro Devices) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AmdPPM.sys -- (AmdPPM)
DRV - [2007.02.22 11:15:56 | 000,137,216 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmwcd.sys -- (nmwcd)
DRV - [2007.02.22 11:15:14 | 000,012,288 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmwcdcm.sys -- (nmwcdcm)
DRV - [2007.02.22 11:15:14 | 000,012,288 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmwcdcj.sys -- (nmwcdcj)
DRV - [2007.02.22 11:15:14 | 000,008,320 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmwcdc.sys -- (nmwcdc)
DRV - [2003.04.04 14:07:20 | 000,030,336 | ---- | M] (Politecnico di Torino) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\npf.sys -- (NPF)
DRV - [2001.05.21 14:01:16 | 000,008,051 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\DynCal.sys -- (DynCal)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\..\URLSearchHook: - No CLSID value found
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKU\.DEFAULT\..\URLSearchHook: - No CLSID value found
IE - HKU\.DEFAULT\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - No CLSID value found
IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope =
IE - HKU\.DEFAULT\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={ ... rer:source?}
IE - HKU\.DEFAULT\..\SearchScopes\{CF739809-1C6C-47C0-85B9-569DBB141420}: "URL" = http://toolbar.ask.com/toolbarv/askRedi ... rms}&crm=1
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\..\URLSearchHook: - No CLSID value found
IE - HKU\S-1-5-18\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - No CLSID value found
IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-18\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={ ... rer:source?}
IE - HKU\S-1-5-18\..\SearchScopes\{CF739809-1C6C-47C0-85B9-569DBB141420}: "URL" = http://toolbar.ask.com/toolbarv/askRedi ... rms}&crm=1
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-21-448539723-1647877149-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
IE - HKU\S-1-5-21-448539723-1647877149-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
IE - HKU\S-1-5-21-448539723-1647877149-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com
IE - HKU\S-1-5-21-448539723-1647877149-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKU\S-1-5-21-448539723-1647877149-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = [binary data]
IE - HKU\S-1-5-21-448539723-1647877149-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
IE - HKU\S-1-5-21-448539723-1647877149-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com
IE - HKU\S-1-5-21-448539723-1647877149-725345543-1003\..\URLSearchHook: - No CLSID value found
IE - HKU\S-1-5-21-448539723-1647877149-725345543-1003\..\URLSearchHook: {95289393-33EA-4F8D-B952-483415B9C955} - SOFTWARE\Classes\CLSID\{95289393-33EA-4F8D-B952-483415B9C955}\InprocServer32 File not found
IE - HKU\S-1-5-21-448539723-1647877149-725345543-1003\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-21-448539723-1647877149-725345543-1003\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com.anonymize-me.de/ ... d=icqt&k=0
IE - HKU\S-1-5-21-448539723-1647877149-725345543-1003\..\SearchScopes\{48A55549-86A9-4D39-815F-01AABA304C5A}: "URL" = http://search.ebay.de.anonymize-me.de/? ... bounce&k=0
IE - HKU\S-1-5-21-448539723-1647877149-725345543-1003\..\SearchScopes\{53447FCC-1258-4A8F-B7C2-99F6CB5D6AFF}: "URL" = http://de.wikipedia.org.anonymize-me.de ... bounce&k=0
IE - HKU\S-1-5-21-448539723-1647877149-725345543-1003\..\SearchScopes\{5D815831-F504-4022-BB4F-717B11535B23}: "URL" = http://search.yahoo.com/search?fr=chr-g ... earchTerms}
IE - HKU\S-1-5-21-448539723-1647877149-725345543-1003\..\SearchScopes\{B045934A-595C-4913-8258-2E84791358E7}: "URL" = http://www.pricerunner.de.anonymize-me. ... bounce&k=0
IE - HKU\S-1-5-21-448539723-1647877149-725345543-1003\..\SearchScopes\{ED0FAA19-3AC9-436B-8CE6-F46A6A7F3F89}: "URL" = http://www.myvideo.de.anonymize-me.de/? ... bounce&k=0
IE - HKU\S-1-5-21-448539723-1647877149-725345543-1003\..\SearchScopes\{EFA8C4CC-92B2-4D13-ADDD-D08C3DF05250}: "URL" = http://www.otto.de.anonymize-me.de/?to= ... bounce&k=0
IE - HKU\S-1-5-21-448539723-1647877149-725345543-1003\..\SearchScopes\{F26E8C1B-A498-46E5-BF8F-FADEAFF44667}: "URL" = http://www.amazon.de.anonymize-me.de/?t ... bounce&k=0
IE - HKU\S-1-5-21-448539723-1647877149-725345543-1003\..\SearchScopes\search13: "URL" = http://search13.net.anonymize-me.de/?an ... d=icqt&k=0
IE - HKU\S-1-5-21-448539723-1647877149-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - prefs.js..browser.search.defaulturl: "http://search13.net/search.php?clid=486&q="
FF - prefs.js..browser.search.param.yahoo-fr: "chr-greentree_ff&type=937811&ilc=12"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..extensions.enabledAddons: {23fcfd51-4958-4f00-80a3-ae97e717ed8b}:2.1.2.145
FF - prefs.js..extensions.enabledAddons: wrc@avast.com:7.0.1466
FF - prefs.js..extensions.enabledAddons: QipCounter@qip.ru:1.0
FF - prefs.js..extensions.enabledAddons: {6236BA26-C117-4007-928C-DE0716C7FA96}:1.0.16
FF - prefs.js..extensions.enabledAddons: {8675f4b3-2f19-11ed-2d6b-1823600c0a19}:1.0.5
FF - prefs.js..extensions.enabledAddons: {6236BA26-C117-4007-928C-DE0716C7FA80}:1.0.34
FF - prefs.js..extensions.enabledAddons: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js..extensions.enabledItems: {872b5b88-9db5-4310-bdd0-ac189557e5f5}:2.7.2.0
FF - prefs.js..extensions.enabledItems: {6236BA26-C117-4007-928C-DE0716C7FA82}:1.0.2
FF - prefs.js..extensions.enabledItems: {800b5000-a755-47e1-992b-48a1c1357f07}:1.1.7
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: {8675f4b3-2f19-11ed-2d6b-0800600c0a16}:1.0
FF - prefs.js..extensions.enabledItems: {63414328-3ab4-2c84-6c41-5a473c4b2ff7}:1.0
FF - prefs.js..extensions.enabledItems: {6236BA26-C117-4007-928C-DE0716C7FA96}:1.0.4
FF - user.js - File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.5.1: C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.5.1: C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.1.0: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKCU\Software\MozillaPlugins\@facebook.com/FBPlugin,version=1.0.3: C:\Documents and Settings\XXX\Data aplikací\Facebook\npfbplugin_1_0_3.dll ( )
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2012.03.03 11:31:21 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\Alwil Software\Avast5\WebRep\FF [2012.09.17 16:08:42 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 4.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2014.01.18 16:41:56 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 4.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2013.12.08 14:50:05 | 000,000,000 | ---D | M]
[2013.10.05 13:44:51 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\XXX\Data aplikací\Mozilla\Extensions
[2014.01.18 16:41:55 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\extensions
[2012.08.24 13:47:32 | 000,005,054 | ---- | M] () (No name found) -- C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\extensions\QipCounter@qip.ru.xpi
[2013.12.20 18:01:10 | 000,022,677 | ---- | M] () (No name found) -- C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\extensions\{6236BA26-C117-4007-928C-DE0716C7FA80}.xpi
[2013.12.20 18:01:10 | 000,004,234 | ---- | M] () (No name found) -- C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\extensions\{6236BA26-C117-4007-928C-DE0716C7FA96}.xpi
[2013.12.20 18:01:10 | 000,004,146 | ---- | M] () (No name found) -- C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\extensions\{8675f4b3-2f19-11ed-2d6b-1823600c0a19}.xpi
[2010.11.03 22:44:10 | 000,002,366 | ---- | M] () -- C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\firmycz.xml
[2010.11.03 22:44:10 | 000,002,358 | ---- | M] () -- C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\mapycz.xml
[2010.11.03 22:44:10 | 000,002,332 | ---- | M] () -- C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\zbocz.xml
[2010.11.03 22:44:10 | 000,002,182 | ---- | M] () -- C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\{3CC5A861-7085-4329-BF4A-DFD056A00CDB}.xml
[2010.11.03 22:44:10 | 000,001,864 | ---- | M] () -- C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\{96431DA7-2E65-4889-AA51-91DA1E37F875}.xml
[2010.11.03 22:44:10 | 000,002,071 | ---- | M] () -- C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\{A9941E98-F141-402D-9719-CC92D54D0484}.xml
[2010.11.03 22:44:10 | 000,024,033 | ---- | M] () -- C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\{B56F6713-4E29-4E8C-BB1A-5D9E1616940F}.xml
[2010.11.03 22:44:10 | 000,002,516 | ---- | M] () -- C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\{B68E2246-C966-48F3-A498-67133D2E0DEE}.xml
[2013.10.05 13:44:51 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2010.04.19 16:21:16 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2011.04.04 05:43:14 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\distribution\extensions
[2011.04.04 05:43:14 | 000,000,000 | ---D | M] (Seznam lištička) -- C:\Program Files\Mozilla Firefox\distribution\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\XXX\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\PFVA3IW3.DEFAULT\EXTENSIONS\{6236BA26-C117-4007-928C-DE0716C7FA80}.XPI
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\XXX\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\PFVA3IW3.DEFAULT\EXTENSIONS\{6236BA26-C117-4007-928C-DE0716C7FA96}.XPI
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\XXX\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\PFVA3IW3.DEFAULT\EXTENSIONS\{8675F4B3-2F19-11ED-2D6B-1823600C0A19}.XPI
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\XXX\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\PFVA3IW3.DEFAULT\EXTENSIONS\QIPCOUNTER@QIP.RU.XPI
[2012.09.17 16:08:42 | 000,000,000 | ---D | M] (avast! WebRep) -- C:\PROGRAM FILES\ALWIL SOFTWARE\AVAST5\WEBREP\FF
[2012.03.03 11:31:21 | 000,000,000 | ---D | M] (DivX Plus Web Player HTML5 <video>) -- C:\PROGRAM FILES\DIVX\DIVX PLUS WEB PLAYER\FIREFOX\DIVXHTML5
[2011.03.18 18:55:52 | 000,142,296 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2012.01.12 09:58:30 | 000,917,816 | ---- | M] (BitComet) -- C:\Program Files\mozilla firefox\plugins\npBitCometAgent.dll
[2010.01.01 09:00:00 | 000,002,208 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\heureka-cz.xml
[2010.01.01 09:00:00 | 000,000,638 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\jyxo-cz.xml
[2010.01.01 09:00:00 | 000,001,367 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\seznam-cz.xml
[2010.01.01 09:00:00 | 000,000,654 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\slunecnice-cz.xml
[2010.01.01 09:00:00 | 000,001,179 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-cz.xml
========== Chrome ==========
CHR - default_search_provider: Search Results (Enabled)
CHR - default_search_provider: search_url = http://dts.search-results.com/sr?src=cr ... earchTerms}
CHR - default_search_provider: suggest_url = ,
CHR - homepage: http://www.google.com
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Documents and Settings\XXX\Local Settings\Data aplikac\u00ED\Google\Chrome\Application\32.0.1700.76\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Documents and Settings\XXX\Local Settings\Data aplikac\u00ED\Google\Chrome\Application\32.0.1700.76\pdf.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Documents and Settings\XXX\Local Settings\Data aplikac\u00ED\Google\Chrome\Application\32.0.1700.76\gcswf32.dll
CHR - plugin: Shockwave Flash (Disabled) = C:\Documents and Settings\XXX\Local Settings\Data aplikac\u00ED\Google\Chrome\User Data\PepperFlash\11.1.31.203\pepflashplayer.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
CHR - plugin: Adobe Acrobat (Disabled) = C:\Program Files\Adobe\Acrobat 7.0\Reader\Browser\nppdf32.dll
CHR - plugin: Java Deployment Toolkit 6.0.200.2 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
CHR - plugin: 2007 Microsoft Office system (Enabled) = C:\Program Files\Mozilla Firefox\plugins\NPOFF12.DLL
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin6.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin7.dll
CHR - plugin: Microsoft\\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll
CHR - plugin: Microsoft\\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll
CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Enabled) = C:\Program Files\Windows Media Player\npdsplay.dll
CHR - plugin: Facebook Plugin (Enabled) = C:\Documents and Settings\XXX\Data aplikac\u00ED\Facebook\npfbplugin_1_0_3.dll
CHR - plugin: Google Update (Enabled) = C:\Documents and Settings\XXX\Local Settings\Data aplikac\u00ED\Google\Update\1.3.21.111\npGoogleUpdate3.dll
CHR - plugin: DivX VOD Helper Plug-in (Enabled) = C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll
CHR - plugin: DivX Plus Web Player (Enabled) = C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll
CHR - plugin: Silverlight Plug-In (Enabled) = C:\Program Files\Microsoft Silverlight\4.1.10111.0\npctrl.dll
CHR - plugin: Windows Presentation Foundation (Enabled) = C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
CHR - plugin: Shockwave for Director (Enabled) = C:\WINDOWS\system32\Adobe\Director\np32dsw.dll
CHR - Extension: greatsaver = C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\ccnhmmlcfkmfoelkhpkdpmldmdkcccpe\2.7\
CHR - Extension: Adblock for Youtube\u2122 = C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\cmedhionkhpnakcndndgjdbohmhepckk\2.12_0\
CHR - Extension: AdBlock Premium = C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\fndlhnanhedoklpdaacidomdnplcjcpj\2.6.4.3_0\
CHR - Extension: avast! WebRep = C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\7.0.1466_0\
CHR - Extension: YoutubeAdblocker = C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\lgejeikkegokdmepickelhiapchicnfc\1.0\
CHR - Extension: Pen\u011B\u017Eenka Google = C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_1\
CHR - Extension: DivX Plus Web Player HTML5 \\u003Cvideo\\u003E = C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm\2.1.2.145_0\
CHR - Extension: greatsaver = C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\ccnhmmlcfkmfoelkhpkdpmldmdkcccpe\2.7\
CHR - Extension: Adblock for Youtube\u2122 = C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\cmedhionkhpnakcndndgjdbohmhepckk\2.12_0\
CHR - Extension: AdBlock Premium = C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\fndlhnanhedoklpdaacidomdnplcjcpj\2.6.4.3_0\
CHR - Extension: avast! WebRep = C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\7.0.1466_0\
CHR - Extension: YoutubeAdblocker = C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\lgejeikkegokdmepickelhiapchicnfc\1.0\
CHR - Extension: Pen\u011B\u017Eenka Google = C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_1\
CHR - Extension: DivX Plus Web Player HTML5 \\u003Cvideo\\u003E = C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm\2.1.2.145_0\
O1 HOSTS File: ([2014.01.18 23:05:55 | 000,000,741 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (YoutubeAdblocker) - {0D2E4734-AD78-1969-8515-C70C95E8E296} - C:\Program Files\YoutubeAdblocker\Zrt.dll File not found
O2 - BHO: (surf And Keep) - {1AA21982-9C00-F0AB-9E37-F6F3C299A42B} - C:\Program Files\surf And Keep\wn04gQR.dll File not found
O2 - BHO: (DivX Plus Web Player HTML5 <video>) - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
O2 - BHO: (BitComet Helper) - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.5.4.11.dll (BitComet)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (QIPBHO Class) - {95289393-33EA-4F8D-B952-483415B9C955} - C:\Documents and Settings\XXX\Data aplikací\Microsoft\Internet Explorer\qipsearchbar.dll File not found
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll (Oracle Corporation)
O3 - HKLM\..\Toolbar: (no name) - !{EEE6C35B-6118-11DC-9C72-001320C79847} - No CLSID value found.
O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found.
O4 - HKLM..\Run: [avast] C:\Program Files\Alwil Software\Avast5\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [DivXUpdate] C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
O4 - HKLM..\Run: [EasyTuneVI] C:\Program Files\Gigabyte\ET6\ETcall.exe ()
O4 - HKLM..\Run: [Kernel and Hardware Abstraction Layer] C:\WINDOWS\KHALMNPR.Exe (Logitech, Inc.)
O4 - HKLM..\Run: [NvBackend] C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe (NVIDIA Corporation)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\Program Files\NVIDIA Corporation\nview\nwiz.exe ()
O4 - HKU\S-1-5-21-448539723-1647877149-725345543-1003..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-448539723-1647877149-725345543-1003\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-448539723-1647877149-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-21-448539723-1647877149-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 File not found
O8 - Extra context menu item: Stáhnout odkaz s použitím BitCometu - C:\Program Files\BitComet\BitComet.exe (www.BitComet.com)
O8 - Extra context menu item: Stáhnout všechny odkazy s použitím BitCometu - C:\Program Files\BitComet\BitComet.exe (www.BitComet.com)
O9 - Extra Button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files\PokerStars\PokerStarsUpdate.exe File not found
O9 - Extra Button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - C:\Program Files\BitComet\tools\BitCometBHO_1.5.4.11.dll (BitComet)
O9 - Extra Button: PokerStars.net - {FA9B9510-9FCB-4ca0-818C-5D0987B47C4D} - C:\Program Files\PokerStars.NET\PokerStarsUpdate.exe File not found
O16 - DPF: {4BFD075D-C36E-4F28-BB0A-5D472795197A} http://download09.managerzone.com/socce ... Loader.cab (PowerLoader Class)
O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_20)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 172.31.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{0E9E11E3-655E-4F48-A115-2BC74B39E157}: DhcpNameServer = 172.31.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{55983BC5-5B87-438D-917C-08D5D30220F9}: NameServer = 10.128.137.145,213.168.176.3
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{D2F6BAD6-2E49-46A2-AC9A-02FFF2DF1E20}: NameServer = 10.128.137.145,213.168.176.3
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\LBTWlgn: DllName - (c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll) - c:\Program Files\Common Files\Logishrd\Bluetooth\LBTWLgn.dll (Logitech, Inc.)
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\XXX\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\XXX\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009.12.03 21:56:06 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
CREATERESTOREPOINT
Restore point Set: OTL Restore Point
NetSvcs: 6to4 - File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: UxTuneUp - C:\WINDOWS\system32\uxtuneup.dll (TuneUp Software)
NetSvcs: WmdmPmSp - File not found
Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: MSVideo8 - C:\WINDOWS\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.DIVX - C:\WINDOWS\System32\DivX.dll (DivX, Inc.)
Drivers32: vidc.ffds - C:\Program Files\Combined Community Codec Pack\Filters\FFDShow\ff_vfw.dll ()
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation)
Drivers32: vidc.VP60 - C:\WINDOWS\system32\vp6vfw.dll (On2.com)
Drivers32: vidc.VP61 - C:\WINDOWS\system32\vp6vfw.dll (On2.com)
Drivers32: vidc.yv12 - C:\WINDOWS\System32\DivX.dll (DivX, Inc.)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin
========== Files/Folders - Created Within 30 Days ==========
[2014.01.19 11:57:54 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\XXX\Plocha\OTL.exe
[2014.01.18 20:51:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\XXX\Plocha\RK_Quarantine
[2014.01.18 17:00:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\XXX\Data aplikací\Malwarebytes
[2014.01.18 17:00:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
[2014.01.18 16:12:31 | 000,000,000 | ---D | C] -- C:\AdwCleaner
[2013.12.30 10:43:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\XXX\Plocha\oldies
[2013.12.27 17:32:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\XXX\Plocha\Gravity.2013.DVDSCR.XVID.AC3-MiLLENiUM
[2013.12.26 14:02:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\XXX\Data aplikací\NVIDIA
[2013.12.24 14:16:53 | 029,347,328 | R--- | C] (Electronic Arts) -- C:\Documents and Settings\XXX\Plocha\fifa14-www.skidrowcrack.com.exe
[2013.12.24 14:10:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\XXX\Plocha\bla2
[2013.12.24 13:59:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\XXX\Plocha\bla
[2013.12.24 13:46:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\dc60de014abbdb08
[2013.12.24 13:45:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\InstallMate
[2013.12.24 13:05:17 | 000,000,000 | ---D | C] -- C:\Program Files\AGEIA Technologies
[2013.12.24 13:03:43 | 000,057,344 | ---- | C] (Khronos Group) -- C:\WINDOWS\System32\OpenCL.dll
[2013.12.24 13:03:17 | 006,320,128 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvopencl.dll
[2013.12.24 13:03:17 | 001,024,288 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvdispco3232049.dll
[2013.12.24 13:03:17 | 000,893,728 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvdispgenco3232049.dll
[2013.12.24 13:03:16 | 017,551,360 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcompiler.dll
[2013.12.24 12:58:45 | 000,000,000 | ---D | C] -- C:\NVIDIA
[2013.12.24 12:51:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\XXX\Local Settings\Data aplikací\NVIDIA
[2013.12.24 12:50:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\NVIDIA Corporation
[2013.12.24 12:48:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\NVIDIA Corporation
[2013.12.23 23:20:56 | 000,000,000 | R--D | C] -- C:\Documents and Settings\XXX\Dokumenty\Hudba
[2013.12.22 14:34:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\XXX\Plocha\kraje
[2013.12.22 11:38:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Origin
[2013.12.22 11:38:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\XXX\Dokumenty\FIFA 14
[2013.12.22 11:24:08 | 000,000,000 | ---D | C] -- C:\hry
[2013.12.22 11:19:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\XXX\Plocha\FIFA 14 CZ
[2013.12.21 17:32:47 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\XXX\Recent
[2013.12.21 15:31:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\XXX\Plocha\Regionální organizace Česka
[2013.12.20 18:46:49 | 000,000,000 | ---D | C] -- C:\Games
[2013.12.20 18:04:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\XXX\Plocha\FIFA 14
[6 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[11 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[1 C:\Documents and Settings\XXX\Plocha\*.tmp files -> C:\Documents and Settings\XXX\Plocha\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2014.01.19 12:02:34 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2014.01.19 12:00:00 | 000,000,482 | ---- | M] () -- C:\WINDOWS\tasks\1-Click Maintenance.job
[2014.01.19 12:00:00 | 000,000,474 | ---- | M] () -- C:\WINDOWS\tasks\Úklid 1 kliknutím.job
[2014.01.19 11:59:00 | 000,001,018 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-448539723-1647877149-725345543-1003UA.job
[2014.01.19 11:57:39 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\XXX\Plocha\OTL.exe
[2014.01.19 10:17:11 | 000,024,944 | ---- | M] () -- C:\WINDOWS\System32\drivers\GVTDrv.sys
[2014.01.19 10:17:10 | 000,000,004 | ---- | M] () -- C:\WINDOWS\System32\GVTunner.ref
[2014.01.19 10:17:07 | 000,000,318 | -H-- | M] () -- C:\WINDOWS\tasks\avast! Emergency Update.job
[2014.01.19 10:17:00 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2014.01.19 10:16:16 | 000,016,608 | ---- | M] (Windows (R) 2000 DDK provider) -- C:\WINDOWS\gdrv.sys
[2014.01.19 10:16:07 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2014.01.19 00:36:58 | 000,002,078 | ---- | M] () -- C:\WINDOWS\System32\nvAppTimestamps
[2014.01.18 20:50:19 | 003,809,280 | ---- | M] () -- C:\Documents and Settings\XXX\Plocha\RogueKiller.exe
[2014.01.18 17:41:05 | 000,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2014.01.18 16:11:39 | 001,236,282 | ---- | M] () -- C:\Documents and Settings\XXX\Plocha\adwcleaner.exe
[2014.01.18 15:59:00 | 000,000,966 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-448539723-1647877149-725345543-1003Core.job
[2014.01.18 15:39:51 | 000,198,616 | ---- | M] () -- C:\Documents and Settings\XXX\Plocha\Untitled 1.jpg
[2014.01.18 14:23:01 | 000,000,402 | -H-- | M] () -- C:\WINDOWS\tasks\Norton Security Scan for XXX.job
[2014.01.17 18:02:27 | 000,002,241 | ---- | M] () -- C:\Documents and Settings\XXX\Plocha\Google Chrome.lnk
[2014.01.12 14:23:09 | 003,169,413 | ---- | M] () -- C:\Documents and Settings\XXX\Plocha\Burkert_BP (1).pdf
[2014.01.01 23:58:52 | 002,161,681 | ---- | M] () -- C:\Documents and Settings\XXX\Plocha\Anetka.jpg
[2013.12.30 23:55:31 | 207,994,546 | ---- | M] () -- C:\Documents and Settings\XXX\Plocha\oldies.rar
[2013.12.30 18:54:44 | 000,027,678 | ---- | M] () -- C:\Documents and Settings\XXX\Plocha\How.I.Met.Your.Mother.S09E09.HDTV.x264-2HD.srt
[2013.12.30 18:53:37 | 000,028,536 | ---- | M] () -- C:\Documents and Settings\XXX\Plocha\How.I.Met.Your.Mother.S09E08.HDTV.x264-2HD.srt
[2013.12.30 18:51:27 | 000,028,212 | ---- | M] () -- C:\Documents and Settings\XXX\Plocha\How.I.Met.Your.Mother.S09E07.HDTV.x264-LOL.srt
[2013.12.30 13:53:11 | 168,138,995 | ---- | M] () -- C:\Documents and Settings\XXX\Plocha\How.I.Met.Your.Mother.S09E07.HDTV.x264-LOL.mp4
[2013.12.30 11:51:09 | 195,060,766 | ---- | M] () -- C:\Documents and Settings\XXX\Plocha\How.I.Met.Your.Mother.S09E08.HDTV.x264-2HD.mp4
[2013.12.30 11:49:54 | 186,814,123 | ---- | M] () -- C:\Documents and Settings\XXX\Plocha\How.I.Met.Your.Mother.S09E09.HDTV.x264-2HD.mp4
[2013.12.29 15:50:33 | 521,902,364 | ---- | M] () -- C:\Documents and Settings\XXX\Plocha\The.Big.Bang.Theory.S07E09.720p.HDTV.X264-DIMENSION.mkv
[2013.12.29 15:40:08 | 513,093,942 | ---- | M] () -- C:\Documents and Settings\XXX\Plocha\The.Big.Bang.Theory.S07E10.720p.HDTV.X264-DIMENSION.mkv
[2013.12.29 15:39:31 | 576,327,426 | ---- | M] () -- C:\Documents and Settings\XXX\Plocha\The.Big.Bang.Theory.S07E11.720p.HDTV.X264-DIMENSION.mkv
[2013.12.27 21:59:36 | 145,017,369 | ---- | M] () -- C:\Documents and Settings\XXX\Plocha\the.big.bang.theory.708.hdtv-lol.mp4
[2013.12.27 17:48:31 | 000,083,968 | ---- | M] () -- C:\Documents and Settings\XXX\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2013.12.27 17:48:31 | 000,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2013.12.27 16:45:27 | 000,001,943 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2013.12.25 23:53:06 | 554,073,235 | ---- | M] () -- C:\Documents and Settings\XXX\Plocha\The.Big.Bang.Theory.S07E07.720p.HDTV.X264-DIMENSION.mkv
[2013.12.25 09:34:25 | 000,505,380 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2013.12.25 09:34:25 | 000,500,664 | ---- | M] () -- C:\WINDOWS\System32\perfh005.dat
[2013.12.25 09:34:25 | 000,104,340 | ---- | M] () -- C:\WINDOWS\System32\perfc005.dat
[2013.12.25 09:34:25 | 000,089,226 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2013.12.25 09:03:02 | 000,632,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msvcr80.dll
[2013.12.25 09:03:02 | 000,554,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msvcp80.dll
[2013.12.25 09:03:02 | 000,479,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msvcm80.dll
[2013.12.25 08:37:29 | 001,555,999 | ---- | M] () -- C:\Documents and Settings\XXX\Plocha\2560x1440-City-Wallpaper-2560x1440.jpg
[2013.12.24 15:05:49 | 112,111,300 | ---- | M] () -- C:\Documents and Settings\XXX\Plocha\FIFACrashDump_CL1468411_2013.12.24_14.05.48.dmp
[2013.12.24 13:03:42 | 001,098,236 | ---- | M] () -- C:\WINDOWS\System32\nvdrsdb0.bin
[2013.12.24 13:03:42 | 000,000,001 | ---- | M] () -- C:\WINDOWS\System32\nvdrssel.bin
[2013.12.24 13:03:38 | 001,098,236 | ---- | M] () -- C:\WINDOWS\System32\nvdrsdb1.bin
[2013.12.24 13:03:38 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\nvdrswr.lk
[2013.12.24 12:06:05 | 000,229,488 | ---- | M] () -- C:\WINDOWS\System32\NvApps.xml
[2013.12.22 11:34:16 | 000,000,670 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\FIFA 14.lnk
[2013.12.22 11:34:16 | 000,000,599 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\FIFA 14 Nastavení.lnk
[6 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[11 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[1 C:\Documents and Settings\XXX\Plocha\*.tmp files -> C:\Documents and Settings\XXX\Plocha\*.tmp -> ]
========== Files Created - No Company Name ==========
[2014.01.19 12:02:34 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2014.01.18 20:50:56 | 003,809,280 | ---- | C] () -- C:\Documents and Settings\XXX\Plocha\RogueKiller.exe
[2014.01.18 16:12:12 | 001,236,282 | ---- | C] () -- C:\Documents and Settings\XXX\Plocha\adwcleaner.exe
[2014.01.12 14:23:08 | 003,169,413 | ---- | C] () -- C:\Documents and Settings\XXX\Plocha\Burkert_BP (1).pdf
[2014.01.03 16:03:27 | 002,161,681 | ---- | C] () -- C:\Documents and Settings\XXX\Plocha\Anetka.jpg
[2013.12.30 23:54:11 | 207,994,546 | ---- | C] () -- C:\Documents and Settings\XXX\Plocha\oldies.rar
[2013.12.30 18:54:44 | 000,027,678 | ---- | C] () -- C:\Documents and Settings\XXX\Plocha\How.I.Met.Your.Mother.S09E09.HDTV.x264-2HD.srt
[2013.12.30 18:53:37 | 000,028,536 | ---- | C] () -- C:\Documents and Settings\XXX\Plocha\How.I.Met.Your.Mother.S09E08.HDTV.x264-2HD.srt
[2013.12.30 18:51:27 | 000,028,212 | ---- | C] () -- C:\Documents and Settings\XXX\Plocha\How.I.Met.Your.Mother.S09E07.HDTV.x264-LOL.srt
[2013.12.30 18:46:37 | 168,138,995 | ---- | C] () -- C:\Documents and Settings\XXX\Plocha\How.I.Met.Your.Mother.S09E07.HDTV.x264-LOL.mp4
[2013.12.30 18:46:21 | 186,814,123 | ---- | C] () -- C:\Documents and Settings\XXX\Plocha\How.I.Met.Your.Mother.S09E09.HDTV.x264-2HD.mp4
[2013.12.30 18:46:14 | 195,060,766 | ---- | C] () -- C:\Documents and Settings\XXX\Plocha\How.I.Met.Your.Mother.S09E08.HDTV.x264-2HD.mp4
[2013.12.30 01:15:17 | 000,028,424 | ---- | C] () -- C:\Documents and Settings\XXX\Plocha\The.Big.Bang.Theory.S07E11.720p.HDTV.X264-DIMENSION.srt
[2013.12.30 01:14:05 | 576,327,426 | ---- | C] () -- C:\Documents and Settings\XXX\Plocha\The.Big.Bang.Theory.S07E11.720p.HDTV.X264-DIMENSION.mkv
[2013.12.29 16:38:46 | 000,031,741 | ---- | C] () -- C:\Documents and Settings\XXX\Plocha\The.Big.Bang.Theory.S07E10.720p.HDTV.X264-DIMENSION.srt
[2013.12.29 16:37:35 | 513,093,942 | ---- | C] () -- C:\Documents and Settings\XXX\Plocha\The.Big.Bang.Theory.S07E10.720p.HDTV.X264-DIMENSION.mkv
[2013.12.29 15:52:20 | 521,902,364 | ---- | C] () -- C:\Documents and Settings\XXX\Plocha\The.Big.Bang.Theory.S07E09.720p.HDTV.X264-DIMENSION.mkv
[2013.12.28 11:03:26 | 000,028,573 | ---- | C] () -- C:\Documents and Settings\XXX\Plocha\the.big.bang.theory.708.hdtv-lol.srt
[2013.12.28 11:02:54 | 145,017,369 | ---- | C] () -- C:\Documents and Settings\XXX\Plocha\the.big.bang.theory.708.hdtv-lol.mp4
[2013.12.27 16:45:22 | 000,001,943 | ---- | C] () -- C:\WINDOWS\imsins.BAK
[2013.12.26 14:02:08 | 000,028,476 | ---- | C] () -- C:\Documents and Settings\XXX\Plocha\The.Big.Bang.Theory.S07E07.720p.HDTV.X264-DIMENSION.srt
[2013.12.26 14:01:25 | 554,073,235 | ---- | C] () -- C:\Documents and Settings\XXX\Plocha\The.Big.Bang.Theory.S07E07.720p.HDTV.X264-DIMENSION.mkv
[2013.12.25 08:37:28 | 001,555,999 | ---- | C] () -- C:\Documents and Settings\XXX\Plocha\2560x1440-City-Wallpaper-2560x1440.jpg
[2013.12.24 15:05:48 | 112,111,300 | ---- | C] () -- C:\Documents and Settings\XXX\Plocha\FIFACrashDump_CL1468411_2013.12.24_14.05.48.dmp
[2013.12.24 13:08:13 | 000,002,078 | ---- | C] () -- C:\WINDOWS\System32\nvAppTimestamps
[2013.12.24 13:06:03 | 000,545,142 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\WPFFontCache_v0400-System.dat
[2013.12.24 13:03:38 | 001,098,236 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb1.bin
[2013.12.24 13:03:38 | 001,098,236 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb0.bin
[2013.12.24 13:03:38 | 000,000,001 | ---- | C] () -- C:\WINDOWS\System32\nvdrssel.bin
[2013.12.24 13:03:38 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\nvdrswr.lk
[2013.12.24 13:03:17 | 000,017,134 | ---- | C] () -- C:\WINDOWS\System32\nvinfo.pb
[2013.12.24 13:03:16 | 002,289,288 | ---- | C] () -- C:\WINDOWS\System32\nvdata.data
[2013.12.22 11:34:16 | 000,000,670 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\FIFA 14.lnk
[2013.12.22 11:34:16 | 000,000,599 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\FIFA 14 Nastavení.lnk
[2012.12.22 14:13:43 | 000,000,014 | ---- | C] () -- C:\WINDOWS\System32\SysInfo_6.dll
[2012.12.22 14:13:31 | 000,363,520 | ---- | C] () -- C:\WINDOWS\System32\PsisDecd.dll
[2012.02.17 17:20:11 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll
[2011.12.29 15:06:58 | 000,000,952 | ---- | C] () -- C:\Documents and Settings\XXX\Local Settings\Data aplikací\SRDownloader.nast
[2011.10.15 18:21:05 | 000,005,030 | ---- | C] () -- C:\Documents and Settings\All Users\Data aplikací\bqeojehc.wbx
[2011.02.10 22:36:32 | 000,000,760 | ---- | C] () -- C:\Documents and Settings\XXX\Data aplikací\setup_ldm.iss
[2010.04.25 06:33:07 | 000,004,726 | ---- | C] () -- C:\Documents and Settings\XXX\.recently-used.xbel
[2010.03.27 23:29:15 | 000,417,792 | ---- | C] () -- C:\Documents and Settings\XXX\GL4JavbJauGljJNI14.dll
[2010.02.14 03:25:17 | 000,000,086 | ---- | C] () -- C:\Documents and Settings\XXX\default.pls
[2009.12.28 11:21:16 | 000,083,968 | ---- | C] () -- C:\Documents and Settings\XXX\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009.12.27 09:17:43 | 000,000,123 | ---- | C] () -- C:\Documents and Settings\XXX\Local Settings\Data aplikací\fusioncache.dat
========== ZeroAccess Check ==========
[2009.12.25 15:55:13 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shdocvw.dll -- [2008.04.14 04:21:55 | 001,499,648 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = C:\WINDOWS\system32\wbem\fastprox.dll -- [2009.02.09 11:56:05 | 000,473,600 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = C:\WINDOWS\system32\wbem\wbemess.dll -- [2008.04.14 04:22:05 | 000,273,920 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\XXX\Plocha
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.11)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
2,00 Gb Total Physical Memory | 0,49 Gb Available Physical Memory | 24,48% Memory free
3,85 Gb Paging File | 2,26 Gb Available in Paging File | 58,75% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 244,14 Gb Total Space | 115,67 Gb Free Space | 47,38% Space Free | Partition Type: NTFS
Drive D: | 221,62 Gb Total Space | 191,79 Gb Free Space | 86,54% Space Free | Partition Type: NTFS
Computer Name: XXX-07A3B26BAE8 | User Name: XXX | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2014.01.19 11:57:39 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\XXX\Plocha\OTL.exe
PRC - [2014.01.11 11:29:23 | 000,866,584 | ---- | M] (Google Inc.) -- C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
PRC - [2013.12.10 03:22:32 | 002,279,712 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
PRC - [2013.12.10 03:21:14 | 001,494,304 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
PRC - [2013.01.24 15:10:42 | 001,564,368 | ---- | M] () -- C:\Program Files\Guard-ICQ\GuardICQ.exe
PRC - [2012.08.21 10:12:26 | 004,282,728 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe
PRC - [2012.08.21 10:12:25 | 000,044,808 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
PRC - [2012.07.05 21:07:00 | 000,161,704 | ---- | M] (Oracle Corporation) -- C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jqs.exe
PRC - [2012.01.17 10:07:58 | 000,505,736 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Common Files\Java\Java Update\jucheck.exe
PRC - [2011.07.29 00:08:12 | 001,259,376 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe
PRC - [2011.02.08 07:20:44 | 000,005,632 | ---- | M] () -- C:\Program Files\SocialVPN\SocialVPNService.exe
PRC - [2009.12.03 22:35:57 | 000,603,904 | ---- | M] (TuneUp Software) -- C:\WINDOWS\system32\TUProgSt.exe
PRC - [2009.10.30 12:57:08 | 000,369,200 | ---- | M] (DT Soft Ltd) -- C:\Program Files\DAEMON Tools Lite\DTLite.exe
PRC - [2009.02.05 13:43:26 | 000,068,136 | ---- | M] () -- C:\Program Files\Gigabyte\EasySaver\essvr.exe
PRC - [2008.10.31 07:24:28 | 001,365,288 | ---- | M] (Sunbelt Software, Inc.) -- C:\Program Files\Sunbelt Software\Personal Firewall\SbPFSvc.exe
PRC - [2008.10.31 07:24:28 | 000,095,528 | ---- | M] (Sunbelt Software, Inc.) -- C:\Program Files\Sunbelt Software\Personal Firewall\SbPFLnch.exe
PRC - [2008.10.31 07:24:26 | 001,705,256 | ---- | M] (Sunbelt Software, Inc.) -- C:\Program Files\Sunbelt Software\Personal Firewall\SbPFCl.exe
PRC - [2008.04.14 04:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2008.03.25 17:21:56 | 000,219,656 | ---- | M] () -- C:\Program Files\Gigabyte\ET6\GUI.exe
========== Modules (No Company Name) ==========
MOD - [2014.01.18 21:48:23 | 002,247,168 | ---- | M] () -- C:\Program Files\Alwil Software\Avast5\defs\14011801\algo.dll
MOD - [2014.01.18 09:19:05 | 004,591,616 | ---- | M] () -- C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\User Data\SwiftShader\1.0.5.0\libGLESv2.dll
MOD - [2014.01.18 09:19:05 | 000,112,128 | ---- | M] () -- C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\User Data\SwiftShader\1.0.5.0\libEGL.dll
MOD - [2014.01.11 11:29:21 | 000,399,640 | ---- | M] () -- C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\Application\32.0.1700.76\ppgooglenaclpluginchrome.dll
MOD - [2014.01.11 11:29:19 | 013,615,896 | ---- | M] () -- C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\Application\32.0.1700.76\PepperFlash\pepflashplayer.dll
MOD - [2014.01.11 11:29:17 | 004,055,320 | ---- | M] () -- C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\Application\32.0.1700.76\pdf.dll
MOD - [2014.01.11 11:28:11 | 001,634,584 | ---- | M] () -- C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\Application\32.0.1700.76\ffmpegsumo.dll
MOD - [2013.10.12 09:11:56 | 002,295,808 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Core\83cd19e8259b8dd9435c1c3f8f31b60c\System.Core.ni.dll
MOD - [2013.10.11 23:51:59 | 000,978,944 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Configuration\1b7600e7fe5e152f21ba6d79f3c0c3b6\System.Configuration.ni.dll
MOD - [2013.10.05 13:28:22 | 000,212,992 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\15fd2d2f4e709154b44187a6915db244\System.ServiceProcess.ni.dll
MOD - [2013.10.05 13:24:07 | 005,462,016 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Xml\f93600ac836b9140e1df13bb0f6bfccf\System.Xml.ni.dll
MOD - [2013.10.05 13:23:45 | 007,977,984 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System\10df39542df7d48462451fc39bce8418\System.ni.dll
MOD - [2013.07.15 08:11:03 | 011,497,984 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\mscorlib\b14359470744c840c59fbe4e58034fd6\mscorlib.ni.dll
MOD - [2013.07.10 17:07:22 | 000,756,888 | ---- | M] () -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSPTLS.DLL
MOD - [2013.01.24 15:10:42 | 001,564,368 | ---- | M] () -- C:\Program Files\Guard-ICQ\GuardICQ.exe
MOD - [2011.07.29 00:09:42 | 000,096,112 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdateCheck.dll
MOD - [2011.07.29 00:08:12 | 001,259,376 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe
MOD - [2011.02.08 07:20:44 | 000,005,632 | ---- | M] () -- C:\Program Files\SocialVPN\SocialVPNService.exe
MOD - [2011.02.08 07:20:36 | 000,381,952 | ---- | M] () -- C:\Program Files\SocialVPN\Brunet.dll
MOD - [2011.02.08 07:20:36 | 000,088,064 | ---- | M] () -- C:\Program Files\SocialVPN\Ipop.Managed.dll
MOD - [2011.02.08 07:20:36 | 000,061,440 | ---- | M] () -- C:\Program Files\SocialVPN\Brunet.Security.dll
MOD - [2011.02.08 07:20:36 | 000,036,352 | ---- | M] () -- C:\Program Files\SocialVPN\Brunet.Services.Dht.dll
MOD - [2011.02.08 07:20:36 | 000,021,504 | ---- | M] () -- C:\Program Files\SocialVPN\Brunet.Services.Coordinate.dll
MOD - [2011.02.08 07:20:36 | 000,019,456 | ---- | M] () -- C:\Program Files\SocialVPN\Brunet.Xmpp.dll
MOD - [2011.02.08 07:20:36 | 000,014,336 | ---- | M] () -- C:\Program Files\SocialVPN\Brunet.Services.XmlRpc.dll
MOD - [2009.05.01 00:31:06 | 000,466,944 | ---- | M] () -- C:\WINDOWS\system32\nvshell.dll
MOD - [2009.02.16 14:19:48 | 002,191,431 | ---- | M] () -- C:\Program Files\Gigabyte\ET6\Normal.dll
MOD - [2009.02.16 12:02:02 | 000,327,747 | ---- | M] () -- C:\Program Files\Gigabyte\ET6\work.dll
MOD - [2009.02.13 13:25:10 | 000,253,952 | ---- | M] () -- C:\Program Files\Gigabyte\ET6\MFCCPU.dll
MOD - [2009.02.12 21:47:40 | 000,135,168 | ---- | M] () -- C:\Program Files\Gigabyte\ET6\OCK.dll
MOD - [2009.02.12 14:41:22 | 000,106,496 | ---- | M] () -- C:\Program Files\Gigabyte\ET6\HM.dll
MOD - [2009.02.05 13:43:26 | 000,068,136 | ---- | M] () -- C:\Program Files\Gigabyte\EasySaver\essvr.exe
MOD - [2008.12.19 18:05:54 | 000,192,512 | ---- | M] () -- C:\Program Files\Gigabyte\ET6\GVTunner.dll
MOD - [2008.12.05 17:03:52 | 000,098,304 | ---- | M] () -- C:\Program Files\Gigabyte\EasySaver\ycc.dll
MOD - [2008.10.24 16:06:46 | 000,098,304 | ---- | M] () -- C:\Program Files\Gigabyte\ET6\ycc.dll
MOD - [2008.09.01 14:26:32 | 000,102,400 | ---- | M] () -- C:\Program Files\Gigabyte\ET6\SF.dll
MOD - [2008.05.07 15:22:58 | 000,102,400 | ---- | M] () -- C:\Program Files\Gigabyte\ET6\CIAMIB.dll
MOD - [2008.04.14 04:21:47 | 000,014,336 | ---- | M] () -- C:\WINDOWS\system32\msdmo.dll
MOD - [2008.03.25 17:21:56 | 000,219,656 | ---- | M] () -- C:\Program Files\Gigabyte\ET6\GUI.exe
MOD - [2007.01.22 11:22:28 | 000,470,016 | ---- | M] () -- C:\Program Files\Sunbelt Software\Personal Firewall\PocoXML.dll
MOD - [2007.01.22 11:22:14 | 000,859,648 | ---- | M] () -- C:\Program Files\Sunbelt Software\Personal Firewall\PocoFoundation.dll
MOD - [2007.01.22 11:22:12 | 000,018,432 | ---- | M] () -- C:\Program Files\Sunbelt Software\Personal Firewall\PocoExt.dll
MOD - [2006.07.13 19:04:04 | 000,126,464 | ---- | M] () -- C:\Program Files\WinRAR\RarExt.dll
MOD - [2006.02.14 15:36:10 | 000,155,648 | ---- | M] () -- C:\Program Files\Sunbelt Software\Personal Firewall\ssleay32.dll
MOD - [2006.02.14 15:35:54 | 000,827,392 | ---- | M] () -- C:\Program Files\Sunbelt Software\Personal Firewall\libeay32.dll
MOD - [2003.02.14 14:11:46 | 000,102,400 | ---- | M] () -- C:\Program Files\Gigabyte\ET6\Sound.dll
========== Services (SafeList) ==========
SRV - [2013.12.10 03:21:14 | 001,494,304 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe -- (NvNetworkService)
SRV - [2013.01.24 15:10:42 | 001,564,368 | ---- | M] () [Auto | Running] -- C:\Program Files\Guard-ICQ\GuardICQ.exe -- (Guard.Mail.ru)
SRV - [2012.08.21 10:12:25 | 000,044,808 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus)
SRV - [2012.07.05 21:07:00 | 000,161,704 | ---- | M] (Oracle Corporation) [Auto | Running] -- C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jqs.exe -- (JavaQuickStarterService)
SRV - [2011.02.08 07:20:44 | 000,005,632 | ---- | M] () [Auto | Running] -- C:\Program Files\SocialVPN\SocialVPNService.exe -- (SocialVPN)
SRV - [2010.03.14 09:38:22 | 000,655,624 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2009.12.03 22:35:57 | 000,603,904 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\WINDOWS\system32\TUProgSt.exe -- (TuneUp.ProgramStatisticsSvc)
SRV - [2009.12.03 22:35:55 | 000,360,192 | ---- | M] (TuneUp Software) [On_Demand | Stopped] -- C:\WINDOWS\system32\TuneUpDefragService.exe -- (TuneUp.Defrag)
SRV - [2009.02.05 13:43:26 | 000,068,136 | ---- | M] () [Auto | Running] -- C:\Program Files\Gigabyte\EasySaver\essvr.exe -- (ES lite Service)
SRV - [2008.12.11 13:31:36 | 000,027,904 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\WINDOWS\system32\uxtuneup.dll -- (UxTuneUp)
SRV - [2008.10.31 07:24:28 | 001,365,288 | ---- | M] (Sunbelt Software, Inc.) [Auto | Running] -- C:\Program Files\Sunbelt Software\Personal Firewall\SbPFSvc.exe -- (SPF4)
SRV - [2008.10.31 07:24:28 | 000,095,528 | ---- | M] (Sunbelt Software, Inc.) [Auto | Running] -- C:\Program Files\Sunbelt Software\Personal Firewall\SbPFLnch.exe -- (SbPF.Launcher)
SRV - [2008.05.02 02:42:06 | 000,121,360 | ---- | M] (Logitech, Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe -- (LBTServ)
SRV - [2007.06.15 16:55:00 | 000,300,544 | ---- | M] (Nokia.) [On_Demand | Stopped] -- D:\Program Files\Nokia\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2003.04.04 13:54:50 | 000,077,824 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\WinPcap\rpcapd.exe -- (rpcapd)
========== Driver Services (SafeList) ==========
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA)
DRV - File not found [Kernel | On_Demand | Stopped] -- D:\NTGLM7X.sys -- (SetupNTGLM7X)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP)
DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump)
DRV - File not found [Kernel | On_Demand | Stopped] -- D:\NTACCESS.sys -- (NTACCESS)
DRV - File not found [Kernel | On_Demand | Stopped] -- D:\install4\MSICPL.sys -- (MSICPL)
DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc)
DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt)
DRV - File not found [Kernel | System | Stopped] -- -- (Changer)
DRV - File not found [Kernel | On_Demand | Stopped] -- D:\INSTALL\GMSIPCI.SYS -- (GMSIPCI)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\DOCUME~1\XXX\LOCALS~1\Temp\cpuz132\cpuz132_x32.sys -- (cpuz132)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\cnnctfy2.sys -- (cnnctfy2MP)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\DOCUME~1\XXX\LOCALS~1\Temp\catchme.sys -- (catchme)
DRV - File not found [Kernel | On_Demand | Unknown] -- -- (alch8vvn)
DRV - [2014.01.19 10:17:11 | 000,024,944 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\GVTDrv.sys -- (GVTDrv)
DRV - [2014.01.19 10:16:16 | 000,016,608 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\gdrv.sys -- (gdrv)
DRV - [2012.08.21 10:13:15 | 000,729,752 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\WINDOWS\System32\drivers\aswSnx.sys -- (aswSnx)
DRV - [2012.08.21 10:13:15 | 000,355,632 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2012.08.21 10:13:15 | 000,054,232 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2012.08.21 10:13:14 | 000,097,608 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2)
DRV - [2012.08.21 10:13:14 | 000,035,928 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2012.08.21 10:13:13 | 000,025,256 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4)
DRV - [2012.08.21 10:13:13 | 000,021,256 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2012.03.26 22:45:14 | 000,032,768 | ---- | M] (AnchorFree Inc) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\taphss.sys -- (taphss)
DRV - [2011.10.19 06:46:32 | 000,145,280 | R--- | M] (ITE ) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\IT9135BDA.sys -- (IT9135BDA)
DRV - [2011.02.08 07:20:44 | 000,026,624 | ---- | M] (The OpenVPN Project) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\IpopTap.sys -- (IpopTap)
DRV - [2009.12.24 22:14:17 | 000,691,696 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\sptd.sys -- (sptd)
DRV - [2009.12.04 14:16:20 | 000,278,984 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\atksgt.sys -- (atksgt)
DRV - [2009.12.04 14:16:19 | 000,025,416 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\lirsgt.sys -- (lirsgt)
DRV - [2009.03.18 16:35:40 | 000,026,176 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\hamachi.sys -- (hamachi)
DRV - [2009.01.20 11:53:06 | 005,027,840 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService)
DRV - [2008.10.31 07:09:06 | 000,270,888 | R--- | M] (Sunbelt Software, Inc.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\SbFw.sys -- (SbFw)
DRV - [2008.10.30 14:14:20 | 000,117,888 | R--- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtenicxp.sys -- (RTLE8023xp)
DRV - [2008.06.21 04:54:54 | 000,066,600 | R--- | M] (Sunbelt Software, Inc.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\sbhips.sys -- (sbhips)
DRV - [2008.06.21 04:54:54 | 000,065,576 | ---- | M] (Sunbelt Software, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\SbFwIm.sys -- (SBFWIMCL)
DRV - [2008.04.13 19:46:22 | 000,015,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\MPE.sys -- (MPE)
DRV - [2008.02.29 03:13:36 | 000,079,120 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LMouKE.Sys -- (LMouKE)
DRV - [2008.02.29 03:13:24 | 000,036,880 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LMouFilt.Sys -- (LMouFilt)
DRV - [2008.02.29 03:13:16 | 000,035,344 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LHidFilt.Sys -- (LHidFilt)
DRV - [2008.02.29 03:12:56 | 000,063,120 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\L8042mou.Sys -- (L8042mou)
DRV - [2008.02.29 03:12:48 | 000,020,240 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\L8042Kbd.sys -- (L8042Kbd)
DRV - [2007.04.16 16:46:34 | 000,033,792 | ---- | M] (Advanced Micro Devices) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AmdPPM.sys -- (AmdPPM)
DRV - [2007.02.22 11:15:56 | 000,137,216 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmwcd.sys -- (nmwcd)
DRV - [2007.02.22 11:15:14 | 000,012,288 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmwcdcm.sys -- (nmwcdcm)
DRV - [2007.02.22 11:15:14 | 000,012,288 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmwcdcj.sys -- (nmwcdcj)
DRV - [2007.02.22 11:15:14 | 000,008,320 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmwcdc.sys -- (nmwcdc)
DRV - [2003.04.04 14:07:20 | 000,030,336 | ---- | M] (Politecnico di Torino) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\npf.sys -- (NPF)
DRV - [2001.05.21 14:01:16 | 000,008,051 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\DynCal.sys -- (DynCal)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\..\URLSearchHook: - No CLSID value found
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKU\.DEFAULT\..\URLSearchHook: - No CLSID value found
IE - HKU\.DEFAULT\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - No CLSID value found
IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope =
IE - HKU\.DEFAULT\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={ ... rer:source?}
IE - HKU\.DEFAULT\..\SearchScopes\{CF739809-1C6C-47C0-85B9-569DBB141420}: "URL" = http://toolbar.ask.com/toolbarv/askRedi ... rms}&crm=1
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\..\URLSearchHook: - No CLSID value found
IE - HKU\S-1-5-18\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - No CLSID value found
IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-18\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={ ... rer:source?}
IE - HKU\S-1-5-18\..\SearchScopes\{CF739809-1C6C-47C0-85B9-569DBB141420}: "URL" = http://toolbar.ask.com/toolbarv/askRedi ... rms}&crm=1
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-21-448539723-1647877149-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
IE - HKU\S-1-5-21-448539723-1647877149-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
IE - HKU\S-1-5-21-448539723-1647877149-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com
IE - HKU\S-1-5-21-448539723-1647877149-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKU\S-1-5-21-448539723-1647877149-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = [binary data]
IE - HKU\S-1-5-21-448539723-1647877149-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
IE - HKU\S-1-5-21-448539723-1647877149-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com
IE - HKU\S-1-5-21-448539723-1647877149-725345543-1003\..\URLSearchHook: - No CLSID value found
IE - HKU\S-1-5-21-448539723-1647877149-725345543-1003\..\URLSearchHook: {95289393-33EA-4F8D-B952-483415B9C955} - SOFTWARE\Classes\CLSID\{95289393-33EA-4F8D-B952-483415B9C955}\InprocServer32 File not found
IE - HKU\S-1-5-21-448539723-1647877149-725345543-1003\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-21-448539723-1647877149-725345543-1003\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com.anonymize-me.de/ ... d=icqt&k=0
IE - HKU\S-1-5-21-448539723-1647877149-725345543-1003\..\SearchScopes\{48A55549-86A9-4D39-815F-01AABA304C5A}: "URL" = http://search.ebay.de.anonymize-me.de/? ... bounce&k=0
IE - HKU\S-1-5-21-448539723-1647877149-725345543-1003\..\SearchScopes\{53447FCC-1258-4A8F-B7C2-99F6CB5D6AFF}: "URL" = http://de.wikipedia.org.anonymize-me.de ... bounce&k=0
IE - HKU\S-1-5-21-448539723-1647877149-725345543-1003\..\SearchScopes\{5D815831-F504-4022-BB4F-717B11535B23}: "URL" = http://search.yahoo.com/search?fr=chr-g ... earchTerms}
IE - HKU\S-1-5-21-448539723-1647877149-725345543-1003\..\SearchScopes\{B045934A-595C-4913-8258-2E84791358E7}: "URL" = http://www.pricerunner.de.anonymize-me. ... bounce&k=0
IE - HKU\S-1-5-21-448539723-1647877149-725345543-1003\..\SearchScopes\{ED0FAA19-3AC9-436B-8CE6-F46A6A7F3F89}: "URL" = http://www.myvideo.de.anonymize-me.de/? ... bounce&k=0
IE - HKU\S-1-5-21-448539723-1647877149-725345543-1003\..\SearchScopes\{EFA8C4CC-92B2-4D13-ADDD-D08C3DF05250}: "URL" = http://www.otto.de.anonymize-me.de/?to= ... bounce&k=0
IE - HKU\S-1-5-21-448539723-1647877149-725345543-1003\..\SearchScopes\{F26E8C1B-A498-46E5-BF8F-FADEAFF44667}: "URL" = http://www.amazon.de.anonymize-me.de/?t ... bounce&k=0
IE - HKU\S-1-5-21-448539723-1647877149-725345543-1003\..\SearchScopes\search13: "URL" = http://search13.net.anonymize-me.de/?an ... d=icqt&k=0
IE - HKU\S-1-5-21-448539723-1647877149-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - prefs.js..browser.search.defaulturl: "http://search13.net/search.php?clid=486&q="
FF - prefs.js..browser.search.param.yahoo-fr: "chr-greentree_ff&type=937811&ilc=12"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..extensions.enabledAddons: {23fcfd51-4958-4f00-80a3-ae97e717ed8b}:2.1.2.145
FF - prefs.js..extensions.enabledAddons: wrc@avast.com:7.0.1466
FF - prefs.js..extensions.enabledAddons: QipCounter@qip.ru:1.0
FF - prefs.js..extensions.enabledAddons: {6236BA26-C117-4007-928C-DE0716C7FA96}:1.0.16
FF - prefs.js..extensions.enabledAddons: {8675f4b3-2f19-11ed-2d6b-1823600c0a19}:1.0.5
FF - prefs.js..extensions.enabledAddons: {6236BA26-C117-4007-928C-DE0716C7FA80}:1.0.34
FF - prefs.js..extensions.enabledAddons: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js..extensions.enabledItems: {872b5b88-9db5-4310-bdd0-ac189557e5f5}:2.7.2.0
FF - prefs.js..extensions.enabledItems: {6236BA26-C117-4007-928C-DE0716C7FA82}:1.0.2
FF - prefs.js..extensions.enabledItems: {800b5000-a755-47e1-992b-48a1c1357f07}:1.1.7
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: {8675f4b3-2f19-11ed-2d6b-0800600c0a16}:1.0
FF - prefs.js..extensions.enabledItems: {63414328-3ab4-2c84-6c41-5a473c4b2ff7}:1.0
FF - prefs.js..extensions.enabledItems: {6236BA26-C117-4007-928C-DE0716C7FA96}:1.0.4
FF - user.js - File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.5.1: C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.5.1: C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.1.0: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKCU\Software\MozillaPlugins\@facebook.com/FBPlugin,version=1.0.3: C:\Documents and Settings\XXX\Data aplikací\Facebook\npfbplugin_1_0_3.dll ( )
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2012.03.03 11:31:21 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\Alwil Software\Avast5\WebRep\FF [2012.09.17 16:08:42 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 4.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2014.01.18 16:41:56 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 4.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2013.12.08 14:50:05 | 000,000,000 | ---D | M]
[2013.10.05 13:44:51 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\XXX\Data aplikací\Mozilla\Extensions
[2014.01.18 16:41:55 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\extensions
[2012.08.24 13:47:32 | 000,005,054 | ---- | M] () (No name found) -- C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\extensions\QipCounter@qip.ru.xpi
[2013.12.20 18:01:10 | 000,022,677 | ---- | M] () (No name found) -- C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\extensions\{6236BA26-C117-4007-928C-DE0716C7FA80}.xpi
[2013.12.20 18:01:10 | 000,004,234 | ---- | M] () (No name found) -- C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\extensions\{6236BA26-C117-4007-928C-DE0716C7FA96}.xpi
[2013.12.20 18:01:10 | 000,004,146 | ---- | M] () (No name found) -- C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\extensions\{8675f4b3-2f19-11ed-2d6b-1823600c0a19}.xpi
[2010.11.03 22:44:10 | 000,002,366 | ---- | M] () -- C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\firmycz.xml
[2010.11.03 22:44:10 | 000,002,358 | ---- | M] () -- C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\mapycz.xml
[2010.11.03 22:44:10 | 000,002,332 | ---- | M] () -- C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\zbocz.xml
[2010.11.03 22:44:10 | 000,002,182 | ---- | M] () -- C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\{3CC5A861-7085-4329-BF4A-DFD056A00CDB}.xml
[2010.11.03 22:44:10 | 000,001,864 | ---- | M] () -- C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\{96431DA7-2E65-4889-AA51-91DA1E37F875}.xml
[2010.11.03 22:44:10 | 000,002,071 | ---- | M] () -- C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\{A9941E98-F141-402D-9719-CC92D54D0484}.xml
[2010.11.03 22:44:10 | 000,024,033 | ---- | M] () -- C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\{B56F6713-4E29-4E8C-BB1A-5D9E1616940F}.xml
[2010.11.03 22:44:10 | 000,002,516 | ---- | M] () -- C:\Documents and Settings\XXX\Data aplikací\Mozilla\Firefox\Profiles\pfva3iw3.default\searchplugins\{B68E2246-C966-48F3-A498-67133D2E0DEE}.xml
[2013.10.05 13:44:51 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2010.04.19 16:21:16 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2011.04.04 05:43:14 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\distribution\extensions
[2011.04.04 05:43:14 | 000,000,000 | ---D | M] (Seznam lištička) -- C:\Program Files\Mozilla Firefox\distribution\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\XXX\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\PFVA3IW3.DEFAULT\EXTENSIONS\{6236BA26-C117-4007-928C-DE0716C7FA80}.XPI
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\XXX\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\PFVA3IW3.DEFAULT\EXTENSIONS\{6236BA26-C117-4007-928C-DE0716C7FA96}.XPI
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\XXX\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\PFVA3IW3.DEFAULT\EXTENSIONS\{8675F4B3-2F19-11ED-2D6B-1823600C0A19}.XPI
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\XXX\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\PFVA3IW3.DEFAULT\EXTENSIONS\QIPCOUNTER@QIP.RU.XPI
[2012.09.17 16:08:42 | 000,000,000 | ---D | M] (avast! WebRep) -- C:\PROGRAM FILES\ALWIL SOFTWARE\AVAST5\WEBREP\FF
[2012.03.03 11:31:21 | 000,000,000 | ---D | M] (DivX Plus Web Player HTML5 <video>) -- C:\PROGRAM FILES\DIVX\DIVX PLUS WEB PLAYER\FIREFOX\DIVXHTML5
[2011.03.18 18:55:52 | 000,142,296 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2012.01.12 09:58:30 | 000,917,816 | ---- | M] (BitComet) -- C:\Program Files\mozilla firefox\plugins\npBitCometAgent.dll
[2010.01.01 09:00:00 | 000,002,208 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\heureka-cz.xml
[2010.01.01 09:00:00 | 000,000,638 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\jyxo-cz.xml
[2010.01.01 09:00:00 | 000,001,367 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\seznam-cz.xml
[2010.01.01 09:00:00 | 000,000,654 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\slunecnice-cz.xml
[2010.01.01 09:00:00 | 000,001,179 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-cz.xml
========== Chrome ==========
CHR - default_search_provider: Search Results (Enabled)
CHR - default_search_provider: search_url = http://dts.search-results.com/sr?src=cr ... earchTerms}
CHR - default_search_provider: suggest_url = ,
CHR - homepage: http://www.google.com
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Documents and Settings\XXX\Local Settings\Data aplikac\u00ED\Google\Chrome\Application\32.0.1700.76\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Documents and Settings\XXX\Local Settings\Data aplikac\u00ED\Google\Chrome\Application\32.0.1700.76\pdf.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Documents and Settings\XXX\Local Settings\Data aplikac\u00ED\Google\Chrome\Application\32.0.1700.76\gcswf32.dll
CHR - plugin: Shockwave Flash (Disabled) = C:\Documents and Settings\XXX\Local Settings\Data aplikac\u00ED\Google\Chrome\User Data\PepperFlash\11.1.31.203\pepflashplayer.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
CHR - plugin: Adobe Acrobat (Disabled) = C:\Program Files\Adobe\Acrobat 7.0\Reader\Browser\nppdf32.dll
CHR - plugin: Java Deployment Toolkit 6.0.200.2 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
CHR - plugin: 2007 Microsoft Office system (Enabled) = C:\Program Files\Mozilla Firefox\plugins\NPOFF12.DLL
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin6.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin7.dll
CHR - plugin: Microsoft\\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll
CHR - plugin: Microsoft\\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll
CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Enabled) = C:\Program Files\Windows Media Player\npdsplay.dll
CHR - plugin: Facebook Plugin (Enabled) = C:\Documents and Settings\XXX\Data aplikac\u00ED\Facebook\npfbplugin_1_0_3.dll
CHR - plugin: Google Update (Enabled) = C:\Documents and Settings\XXX\Local Settings\Data aplikac\u00ED\Google\Update\1.3.21.111\npGoogleUpdate3.dll
CHR - plugin: DivX VOD Helper Plug-in (Enabled) = C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll
CHR - plugin: DivX Plus Web Player (Enabled) = C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll
CHR - plugin: Silverlight Plug-In (Enabled) = C:\Program Files\Microsoft Silverlight\4.1.10111.0\npctrl.dll
CHR - plugin: Windows Presentation Foundation (Enabled) = C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
CHR - plugin: Shockwave for Director (Enabled) = C:\WINDOWS\system32\Adobe\Director\np32dsw.dll
CHR - Extension: greatsaver = C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\ccnhmmlcfkmfoelkhpkdpmldmdkcccpe\2.7\
CHR - Extension: Adblock for Youtube\u2122 = C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\cmedhionkhpnakcndndgjdbohmhepckk\2.12_0\
CHR - Extension: AdBlock Premium = C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\fndlhnanhedoklpdaacidomdnplcjcpj\2.6.4.3_0\
CHR - Extension: avast! WebRep = C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\7.0.1466_0\
CHR - Extension: YoutubeAdblocker = C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\lgejeikkegokdmepickelhiapchicnfc\1.0\
CHR - Extension: Pen\u011B\u017Eenka Google = C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_1\
CHR - Extension: DivX Plus Web Player HTML5 \\u003Cvideo\\u003E = C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm\2.1.2.145_0\
CHR - Extension: greatsaver = C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\ccnhmmlcfkmfoelkhpkdpmldmdkcccpe\2.7\
CHR - Extension: Adblock for Youtube\u2122 = C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\cmedhionkhpnakcndndgjdbohmhepckk\2.12_0\
CHR - Extension: AdBlock Premium = C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\fndlhnanhedoklpdaacidomdnplcjcpj\2.6.4.3_0\
CHR - Extension: avast! WebRep = C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\7.0.1466_0\
CHR - Extension: YoutubeAdblocker = C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\lgejeikkegokdmepickelhiapchicnfc\1.0\
CHR - Extension: Pen\u011B\u017Eenka Google = C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_1\
CHR - Extension: DivX Plus Web Player HTML5 \\u003Cvideo\\u003E = C:\Documents and Settings\XXX\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm\2.1.2.145_0\
O1 HOSTS File: ([2014.01.18 23:05:55 | 000,000,741 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (YoutubeAdblocker) - {0D2E4734-AD78-1969-8515-C70C95E8E296} - C:\Program Files\YoutubeAdblocker\Zrt.dll File not found
O2 - BHO: (surf And Keep) - {1AA21982-9C00-F0AB-9E37-F6F3C299A42B} - C:\Program Files\surf And Keep\wn04gQR.dll File not found
O2 - BHO: (DivX Plus Web Player HTML5 <video>) - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
O2 - BHO: (BitComet Helper) - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.5.4.11.dll (BitComet)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (QIPBHO Class) - {95289393-33EA-4F8D-B952-483415B9C955} - C:\Documents and Settings\XXX\Data aplikací\Microsoft\Internet Explorer\qipsearchbar.dll File not found
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll (Oracle Corporation)
O3 - HKLM\..\Toolbar: (no name) - !{EEE6C35B-6118-11DC-9C72-001320C79847} - No CLSID value found.
O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found.
O4 - HKLM..\Run: [avast] C:\Program Files\Alwil Software\Avast5\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [DivXUpdate] C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
O4 - HKLM..\Run: [EasyTuneVI] C:\Program Files\Gigabyte\ET6\ETcall.exe ()
O4 - HKLM..\Run: [Kernel and Hardware Abstraction Layer] C:\WINDOWS\KHALMNPR.Exe (Logitech, Inc.)
O4 - HKLM..\Run: [NvBackend] C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe (NVIDIA Corporation)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\Program Files\NVIDIA Corporation\nview\nwiz.exe ()
O4 - HKU\S-1-5-21-448539723-1647877149-725345543-1003..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-448539723-1647877149-725345543-1003\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-448539723-1647877149-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-21-448539723-1647877149-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 File not found
O8 - Extra context menu item: Stáhnout odkaz s použitím BitCometu - C:\Program Files\BitComet\BitComet.exe (www.BitComet.com)
O8 - Extra context menu item: Stáhnout všechny odkazy s použitím BitCometu - C:\Program Files\BitComet\BitComet.exe (www.BitComet.com)
O9 - Extra Button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files\PokerStars\PokerStarsUpdate.exe File not found
O9 - Extra Button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - C:\Program Files\BitComet\tools\BitCometBHO_1.5.4.11.dll (BitComet)
O9 - Extra Button: PokerStars.net - {FA9B9510-9FCB-4ca0-818C-5D0987B47C4D} - C:\Program Files\PokerStars.NET\PokerStarsUpdate.exe File not found
O16 - DPF: {4BFD075D-C36E-4F28-BB0A-5D472795197A} http://download09.managerzone.com/socce ... Loader.cab (PowerLoader Class)
O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_20)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 172.31.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{0E9E11E3-655E-4F48-A115-2BC74B39E157}: DhcpNameServer = 172.31.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{55983BC5-5B87-438D-917C-08D5D30220F9}: NameServer = 10.128.137.145,213.168.176.3
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{D2F6BAD6-2E49-46A2-AC9A-02FFF2DF1E20}: NameServer = 10.128.137.145,213.168.176.3
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\LBTWlgn: DllName - (c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll) - c:\Program Files\Common Files\Logishrd\Bluetooth\LBTWLgn.dll (Logitech, Inc.)
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\XXX\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\XXX\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009.12.03 21:56:06 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
CREATERESTOREPOINT
Restore point Set: OTL Restore Point
NetSvcs: 6to4 - File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: UxTuneUp - C:\WINDOWS\system32\uxtuneup.dll (TuneUp Software)
NetSvcs: WmdmPmSp - File not found
Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: MSVideo8 - C:\WINDOWS\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.DIVX - C:\WINDOWS\System32\DivX.dll (DivX, Inc.)
Drivers32: vidc.ffds - C:\Program Files\Combined Community Codec Pack\Filters\FFDShow\ff_vfw.dll ()
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation)
Drivers32: vidc.VP60 - C:\WINDOWS\system32\vp6vfw.dll (On2.com)
Drivers32: vidc.VP61 - C:\WINDOWS\system32\vp6vfw.dll (On2.com)
Drivers32: vidc.yv12 - C:\WINDOWS\System32\DivX.dll (DivX, Inc.)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin
========== Files/Folders - Created Within 30 Days ==========
[2014.01.19 11:57:54 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\XXX\Plocha\OTL.exe
[2014.01.18 20:51:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\XXX\Plocha\RK_Quarantine
[2014.01.18 17:00:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\XXX\Data aplikací\Malwarebytes
[2014.01.18 17:00:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
[2014.01.18 16:12:31 | 000,000,000 | ---D | C] -- C:\AdwCleaner
[2013.12.30 10:43:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\XXX\Plocha\oldies
[2013.12.27 17:32:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\XXX\Plocha\Gravity.2013.DVDSCR.XVID.AC3-MiLLENiUM
[2013.12.26 14:02:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\XXX\Data aplikací\NVIDIA
[2013.12.24 14:16:53 | 029,347,328 | R--- | C] (Electronic Arts) -- C:\Documents and Settings\XXX\Plocha\fifa14-www.skidrowcrack.com.exe
[2013.12.24 14:10:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\XXX\Plocha\bla2
[2013.12.24 13:59:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\XXX\Plocha\bla
[2013.12.24 13:46:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\dc60de014abbdb08
[2013.12.24 13:45:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\InstallMate
[2013.12.24 13:05:17 | 000,000,000 | ---D | C] -- C:\Program Files\AGEIA Technologies
[2013.12.24 13:03:43 | 000,057,344 | ---- | C] (Khronos Group) -- C:\WINDOWS\System32\OpenCL.dll
[2013.12.24 13:03:17 | 006,320,128 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvopencl.dll
[2013.12.24 13:03:17 | 001,024,288 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvdispco3232049.dll
[2013.12.24 13:03:17 | 000,893,728 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvdispgenco3232049.dll
[2013.12.24 13:03:16 | 017,551,360 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcompiler.dll
[2013.12.24 12:58:45 | 000,000,000 | ---D | C] -- C:\NVIDIA
[2013.12.24 12:51:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\XXX\Local Settings\Data aplikací\NVIDIA
[2013.12.24 12:50:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\NVIDIA Corporation
[2013.12.24 12:48:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\NVIDIA Corporation
[2013.12.23 23:20:56 | 000,000,000 | R--D | C] -- C:\Documents and Settings\XXX\Dokumenty\Hudba
[2013.12.22 14:34:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\XXX\Plocha\kraje
[2013.12.22 11:38:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Origin
[2013.12.22 11:38:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\XXX\Dokumenty\FIFA 14
[2013.12.22 11:24:08 | 000,000,000 | ---D | C] -- C:\hry
[2013.12.22 11:19:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\XXX\Plocha\FIFA 14 CZ
[2013.12.21 17:32:47 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\XXX\Recent
[2013.12.21 15:31:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\XXX\Plocha\Regionální organizace Česka
[2013.12.20 18:46:49 | 000,000,000 | ---D | C] -- C:\Games
[2013.12.20 18:04:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\XXX\Plocha\FIFA 14
[6 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[11 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[1 C:\Documents and Settings\XXX\Plocha\*.tmp files -> C:\Documents and Settings\XXX\Plocha\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2014.01.19 12:02:34 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2014.01.19 12:00:00 | 000,000,482 | ---- | M] () -- C:\WINDOWS\tasks\1-Click Maintenance.job
[2014.01.19 12:00:00 | 000,000,474 | ---- | M] () -- C:\WINDOWS\tasks\Úklid 1 kliknutím.job
[2014.01.19 11:59:00 | 000,001,018 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-448539723-1647877149-725345543-1003UA.job
[2014.01.19 11:57:39 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\XXX\Plocha\OTL.exe
[2014.01.19 10:17:11 | 000,024,944 | ---- | M] () -- C:\WINDOWS\System32\drivers\GVTDrv.sys
[2014.01.19 10:17:10 | 000,000,004 | ---- | M] () -- C:\WINDOWS\System32\GVTunner.ref
[2014.01.19 10:17:07 | 000,000,318 | -H-- | M] () -- C:\WINDOWS\tasks\avast! Emergency Update.job
[2014.01.19 10:17:00 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2014.01.19 10:16:16 | 000,016,608 | ---- | M] (Windows (R) 2000 DDK provider) -- C:\WINDOWS\gdrv.sys
[2014.01.19 10:16:07 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2014.01.19 00:36:58 | 000,002,078 | ---- | M] () -- C:\WINDOWS\System32\nvAppTimestamps
[2014.01.18 20:50:19 | 003,809,280 | ---- | M] () -- C:\Documents and Settings\XXX\Plocha\RogueKiller.exe
[2014.01.18 17:41:05 | 000,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2014.01.18 16:11:39 | 001,236,282 | ---- | M] () -- C:\Documents and Settings\XXX\Plocha\adwcleaner.exe
[2014.01.18 15:59:00 | 000,000,966 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-448539723-1647877149-725345543-1003Core.job
[2014.01.18 15:39:51 | 000,198,616 | ---- | M] () -- C:\Documents and Settings\XXX\Plocha\Untitled 1.jpg
[2014.01.18 14:23:01 | 000,000,402 | -H-- | M] () -- C:\WINDOWS\tasks\Norton Security Scan for XXX.job
[2014.01.17 18:02:27 | 000,002,241 | ---- | M] () -- C:\Documents and Settings\XXX\Plocha\Google Chrome.lnk
[2014.01.12 14:23:09 | 003,169,413 | ---- | M] () -- C:\Documents and Settings\XXX\Plocha\Burkert_BP (1).pdf
[2014.01.01 23:58:52 | 002,161,681 | ---- | M] () -- C:\Documents and Settings\XXX\Plocha\Anetka.jpg
[2013.12.30 23:55:31 | 207,994,546 | ---- | M] () -- C:\Documents and Settings\XXX\Plocha\oldies.rar
[2013.12.30 18:54:44 | 000,027,678 | ---- | M] () -- C:\Documents and Settings\XXX\Plocha\How.I.Met.Your.Mother.S09E09.HDTV.x264-2HD.srt
[2013.12.30 18:53:37 | 000,028,536 | ---- | M] () -- C:\Documents and Settings\XXX\Plocha\How.I.Met.Your.Mother.S09E08.HDTV.x264-2HD.srt
[2013.12.30 18:51:27 | 000,028,212 | ---- | M] () -- C:\Documents and Settings\XXX\Plocha\How.I.Met.Your.Mother.S09E07.HDTV.x264-LOL.srt
[2013.12.30 13:53:11 | 168,138,995 | ---- | M] () -- C:\Documents and Settings\XXX\Plocha\How.I.Met.Your.Mother.S09E07.HDTV.x264-LOL.mp4
[2013.12.30 11:51:09 | 195,060,766 | ---- | M] () -- C:\Documents and Settings\XXX\Plocha\How.I.Met.Your.Mother.S09E08.HDTV.x264-2HD.mp4
[2013.12.30 11:49:54 | 186,814,123 | ---- | M] () -- C:\Documents and Settings\XXX\Plocha\How.I.Met.Your.Mother.S09E09.HDTV.x264-2HD.mp4
[2013.12.29 15:50:33 | 521,902,364 | ---- | M] () -- C:\Documents and Settings\XXX\Plocha\The.Big.Bang.Theory.S07E09.720p.HDTV.X264-DIMENSION.mkv
[2013.12.29 15:40:08 | 513,093,942 | ---- | M] () -- C:\Documents and Settings\XXX\Plocha\The.Big.Bang.Theory.S07E10.720p.HDTV.X264-DIMENSION.mkv
[2013.12.29 15:39:31 | 576,327,426 | ---- | M] () -- C:\Documents and Settings\XXX\Plocha\The.Big.Bang.Theory.S07E11.720p.HDTV.X264-DIMENSION.mkv
[2013.12.27 21:59:36 | 145,017,369 | ---- | M] () -- C:\Documents and Settings\XXX\Plocha\the.big.bang.theory.708.hdtv-lol.mp4
[2013.12.27 17:48:31 | 000,083,968 | ---- | M] () -- C:\Documents and Settings\XXX\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2013.12.27 17:48:31 | 000,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2013.12.27 16:45:27 | 000,001,943 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2013.12.25 23:53:06 | 554,073,235 | ---- | M] () -- C:\Documents and Settings\XXX\Plocha\The.Big.Bang.Theory.S07E07.720p.HDTV.X264-DIMENSION.mkv
[2013.12.25 09:34:25 | 000,505,380 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2013.12.25 09:34:25 | 000,500,664 | ---- | M] () -- C:\WINDOWS\System32\perfh005.dat
[2013.12.25 09:34:25 | 000,104,340 | ---- | M] () -- C:\WINDOWS\System32\perfc005.dat
[2013.12.25 09:34:25 | 000,089,226 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2013.12.25 09:03:02 | 000,632,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msvcr80.dll
[2013.12.25 09:03:02 | 000,554,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msvcp80.dll
[2013.12.25 09:03:02 | 000,479,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msvcm80.dll
[2013.12.25 08:37:29 | 001,555,999 | ---- | M] () -- C:\Documents and Settings\XXX\Plocha\2560x1440-City-Wallpaper-2560x1440.jpg
[2013.12.24 15:05:49 | 112,111,300 | ---- | M] () -- C:\Documents and Settings\XXX\Plocha\FIFACrashDump_CL1468411_2013.12.24_14.05.48.dmp
[2013.12.24 13:03:42 | 001,098,236 | ---- | M] () -- C:\WINDOWS\System32\nvdrsdb0.bin
[2013.12.24 13:03:42 | 000,000,001 | ---- | M] () -- C:\WINDOWS\System32\nvdrssel.bin
[2013.12.24 13:03:38 | 001,098,236 | ---- | M] () -- C:\WINDOWS\System32\nvdrsdb1.bin
[2013.12.24 13:03:38 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\nvdrswr.lk
[2013.12.24 12:06:05 | 000,229,488 | ---- | M] () -- C:\WINDOWS\System32\NvApps.xml
[2013.12.22 11:34:16 | 000,000,670 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\FIFA 14.lnk
[2013.12.22 11:34:16 | 000,000,599 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\FIFA 14 Nastavení.lnk
[6 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[11 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[1 C:\Documents and Settings\XXX\Plocha\*.tmp files -> C:\Documents and Settings\XXX\Plocha\*.tmp -> ]
========== Files Created - No Company Name ==========
[2014.01.19 12:02:34 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2014.01.18 20:50:56 | 003,809,280 | ---- | C] () -- C:\Documents and Settings\XXX\Plocha\RogueKiller.exe
[2014.01.18 16:12:12 | 001,236,282 | ---- | C] () -- C:\Documents and Settings\XXX\Plocha\adwcleaner.exe
[2014.01.12 14:23:08 | 003,169,413 | ---- | C] () -- C:\Documents and Settings\XXX\Plocha\Burkert_BP (1).pdf
[2014.01.03 16:03:27 | 002,161,681 | ---- | C] () -- C:\Documents and Settings\XXX\Plocha\Anetka.jpg
[2013.12.30 23:54:11 | 207,994,546 | ---- | C] () -- C:\Documents and Settings\XXX\Plocha\oldies.rar
[2013.12.30 18:54:44 | 000,027,678 | ---- | C] () -- C:\Documents and Settings\XXX\Plocha\How.I.Met.Your.Mother.S09E09.HDTV.x264-2HD.srt
[2013.12.30 18:53:37 | 000,028,536 | ---- | C] () -- C:\Documents and Settings\XXX\Plocha\How.I.Met.Your.Mother.S09E08.HDTV.x264-2HD.srt
[2013.12.30 18:51:27 | 000,028,212 | ---- | C] () -- C:\Documents and Settings\XXX\Plocha\How.I.Met.Your.Mother.S09E07.HDTV.x264-LOL.srt
[2013.12.30 18:46:37 | 168,138,995 | ---- | C] () -- C:\Documents and Settings\XXX\Plocha\How.I.Met.Your.Mother.S09E07.HDTV.x264-LOL.mp4
[2013.12.30 18:46:21 | 186,814,123 | ---- | C] () -- C:\Documents and Settings\XXX\Plocha\How.I.Met.Your.Mother.S09E09.HDTV.x264-2HD.mp4
[2013.12.30 18:46:14 | 195,060,766 | ---- | C] () -- C:\Documents and Settings\XXX\Plocha\How.I.Met.Your.Mother.S09E08.HDTV.x264-2HD.mp4
[2013.12.30 01:15:17 | 000,028,424 | ---- | C] () -- C:\Documents and Settings\XXX\Plocha\The.Big.Bang.Theory.S07E11.720p.HDTV.X264-DIMENSION.srt
[2013.12.30 01:14:05 | 576,327,426 | ---- | C] () -- C:\Documents and Settings\XXX\Plocha\The.Big.Bang.Theory.S07E11.720p.HDTV.X264-DIMENSION.mkv
[2013.12.29 16:38:46 | 000,031,741 | ---- | C] () -- C:\Documents and Settings\XXX\Plocha\The.Big.Bang.Theory.S07E10.720p.HDTV.X264-DIMENSION.srt
[2013.12.29 16:37:35 | 513,093,942 | ---- | C] () -- C:\Documents and Settings\XXX\Plocha\The.Big.Bang.Theory.S07E10.720p.HDTV.X264-DIMENSION.mkv
[2013.12.29 15:52:20 | 521,902,364 | ---- | C] () -- C:\Documents and Settings\XXX\Plocha\The.Big.Bang.Theory.S07E09.720p.HDTV.X264-DIMENSION.mkv
[2013.12.28 11:03:26 | 000,028,573 | ---- | C] () -- C:\Documents and Settings\XXX\Plocha\the.big.bang.theory.708.hdtv-lol.srt
[2013.12.28 11:02:54 | 145,017,369 | ---- | C] () -- C:\Documents and Settings\XXX\Plocha\the.big.bang.theory.708.hdtv-lol.mp4
[2013.12.27 16:45:22 | 000,001,943 | ---- | C] () -- C:\WINDOWS\imsins.BAK
[2013.12.26 14:02:08 | 000,028,476 | ---- | C] () -- C:\Documents and Settings\XXX\Plocha\The.Big.Bang.Theory.S07E07.720p.HDTV.X264-DIMENSION.srt
[2013.12.26 14:01:25 | 554,073,235 | ---- | C] () -- C:\Documents and Settings\XXX\Plocha\The.Big.Bang.Theory.S07E07.720p.HDTV.X264-DIMENSION.mkv
[2013.12.25 08:37:28 | 001,555,999 | ---- | C] () -- C:\Documents and Settings\XXX\Plocha\2560x1440-City-Wallpaper-2560x1440.jpg
[2013.12.24 15:05:48 | 112,111,300 | ---- | C] () -- C:\Documents and Settings\XXX\Plocha\FIFACrashDump_CL1468411_2013.12.24_14.05.48.dmp
[2013.12.24 13:08:13 | 000,002,078 | ---- | C] () -- C:\WINDOWS\System32\nvAppTimestamps
[2013.12.24 13:06:03 | 000,545,142 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\WPFFontCache_v0400-System.dat
[2013.12.24 13:03:38 | 001,098,236 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb1.bin
[2013.12.24 13:03:38 | 001,098,236 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb0.bin
[2013.12.24 13:03:38 | 000,000,001 | ---- | C] () -- C:\WINDOWS\System32\nvdrssel.bin
[2013.12.24 13:03:38 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\nvdrswr.lk
[2013.12.24 13:03:17 | 000,017,134 | ---- | C] () -- C:\WINDOWS\System32\nvinfo.pb
[2013.12.24 13:03:16 | 002,289,288 | ---- | C] () -- C:\WINDOWS\System32\nvdata.data
[2013.12.22 11:34:16 | 000,000,670 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\FIFA 14.lnk
[2013.12.22 11:34:16 | 000,000,599 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\FIFA 14 Nastavení.lnk
[2012.12.22 14:13:43 | 000,000,014 | ---- | C] () -- C:\WINDOWS\System32\SysInfo_6.dll
[2012.12.22 14:13:31 | 000,363,520 | ---- | C] () -- C:\WINDOWS\System32\PsisDecd.dll
[2012.02.17 17:20:11 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll
[2011.12.29 15:06:58 | 000,000,952 | ---- | C] () -- C:\Documents and Settings\XXX\Local Settings\Data aplikací\SRDownloader.nast
[2011.10.15 18:21:05 | 000,005,030 | ---- | C] () -- C:\Documents and Settings\All Users\Data aplikací\bqeojehc.wbx
[2011.02.10 22:36:32 | 000,000,760 | ---- | C] () -- C:\Documents and Settings\XXX\Data aplikací\setup_ldm.iss
[2010.04.25 06:33:07 | 000,004,726 | ---- | C] () -- C:\Documents and Settings\XXX\.recently-used.xbel
[2010.03.27 23:29:15 | 000,417,792 | ---- | C] () -- C:\Documents and Settings\XXX\GL4JavbJauGljJNI14.dll
[2010.02.14 03:25:17 | 000,000,086 | ---- | C] () -- C:\Documents and Settings\XXX\default.pls
[2009.12.28 11:21:16 | 000,083,968 | ---- | C] () -- C:\Documents and Settings\XXX\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009.12.27 09:17:43 | 000,000,123 | ---- | C] () -- C:\Documents and Settings\XXX\Local Settings\Data aplikací\fusioncache.dat
========== ZeroAccess Check ==========
[2009.12.25 15:55:13 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shdocvw.dll -- [2008.04.14 04:21:55 | 001,499,648 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = C:\WINDOWS\system32\wbem\fastprox.dll -- [2009.02.09 11:56:05 | 000,473,600 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = C:\WINDOWS\system32\wbem\wbemess.dll -- [2008.04.14 04:22:05 | 000,273,920 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
Přispějete na provoz fóra?
