VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

System Tool - Vir

https://forum.viry.cz:443/viewtopic.php?t=107870

Stránka 3 z 6

Re: System Tool - Vir

Napsal: 26 pro 2010 17:50
od vyosek
:arrow: Avast patri mezi spicku mezi free antiviry, nevim kde jste ziskal info ze je na nic...Pokud chcete do zabezpeceni PC invetsovat, tak poridte NIS ci KIS - je to komplexni balicek a zrejme v soucasne dobe nejlepsi reseni

:arrow: Firewall ve windows je diravy jako reseto, doporucuji nainstalovat nejaky externi - k cemu je dobry http://www.viry.cz/forum/viewtopic.php?f=41&t=20980 , prehled osobnich firewallu http://www.viry.cz/forum/viewtopic.php?f=41&t=6523

:arrow: K antiSpy programu, muzete nainstalovat SuperAntiSpyare - info o nem http://www.viry.cz/forum/viewtopic.php?f=29&t=51359

:arrow: Clanek o nami doporucenem zabezpeceni PC mate zde http://www.viry.cz/forum/viewtopic.php?f=29&t=6152

Re: System Tool - Vir

Napsal: 26 pro 2010 18:22
od Kopy619
Takze mam nainstalovat ten Zone Alarm Free? To je tedy firewall a nebude vadit kdyz tam budu mit tento a jeste asi nejaky ten puvodni od Windowsu ze? Jinak nainstaloval jsem uz (jeste nez jste napsal) ten Spyware Terminator a dal aby tam nebyl ten rez. stit. Mam si ho tedy nechat nebo odinstalovat a dat tam ten co je rovnou bez rez. stitu, ten Super AntiSpyware?

Re: System Tool - Vir

Napsal: 26 pro 2010 18:26
od vyosek
:arrow: Spyware Terminatora muzete nechat, pouze si pohlidejte at nema zapnuty ten rez. stit

:arrow: Pokud nainstalujete ZoneAlarm, tak se windowsovsky firewall vypne a bude Vam fungovat ZA - ale takto to ma byt...

Re: System Tool - Vir

Napsal: 26 pro 2010 18:32
od Kopy619
DIky. Nektere toolbary me ale nejdou nikterak vymazat. Je to ale tak jeden, dva z celkovych tak 10, na zadnem prohlizeci nic nebylo, jen na Mozile a bylo tam tak 5 Toolbaru, coz je divne, kdyz uz tam ani tolik byt nemuzu, dal jsem je ale nezobrazovat, takze by nemely byt nebezpecni ze?

Re: System Tool - Vir

Napsal: 26 pro 2010 18:36
od vyosek
Zkuste je pripadne odinstalovate pres CCleaner nebo v Mozille Nastroje - Spravce doplnku a odinstalovat jej...

Re: System Tool - Vir

Napsal: 26 pro 2010 18:51
od Kopy619
Diky. Ja to pres Ccleaner delal ale nesly mi rpave vsechny a na Mozile jsem to nemohl najit. Ted uz to mam, az na jeden ten jsem odinstaloval i zakazal ale porad je tam ale zasedly a nefunguje takze to je v pohode. Jenom mne deprimuje ze dole pravo od toho noveho firewall porad vyjizdi nejake ikonky, zatim 3 a ptaji se mne zda chci neci povolit nebo zamitnout (allow A deny - tusim) tak jsem zatim dal dvakrat ano pac to byli myslim ty nove programy a jednou ne jelikoz chtel pristup nejaky toolbar, ale ja myslel ze to samo vyhodnoti situaci, nebo jak casto se mne to bude ptat? Jo a nejsem si jiste zda mohu vypnou ten Zone Alarm abych tim nevypl cely firewall.

Re: System Tool - Vir

Napsal: 26 pro 2010 18:55
od vyosek
:arrow: Od toho prave firewall je, aby se ptal - neco ma uz naucene, ale vetsinu jej musite naucit...timhle Vam hlida komunikace vaseho Pc...tak na ty toolbary kouknem dukladneji a zbavime Vas jich..Pokud vypnete ZA tak by se mel zapnout ten windowsovsky = deravy...Pokud by Vam ZA vadilo, tak muzete zkusit PC Tools Firewall Plus (bez Spyware Doctora)

:arrow: Stahnete OTL (viz muj podpis) a ulozte jej na plochu
  • Pokud pouzivate Win Vista ci W7, kliknete na OTL pravym a dejte Run As Administrator ci Spustit jako spravce
  • Pokud pouzivate 64bitovy OS, zkontrolujte, zda-li je zaskrtnuty ctverecek u Pro 64 bitové OS, pokud ne, zaskrtnete jej
  • Zaskrtnete okenko Pro vsechny uzivatele
  • Zaskrtnete okenko Kontrola na havet "LOP"
  • Zaskrtnete okenko Kontrola na havet "Purity"
  • Stari souboru zmente z 30 dnu na 7 dnu
  • Kliknete na tlacitko Prohledat
  • Po dokonceni skenu (cca 5 az 10 min) se objevi logy OTL.txt a Extras.txt, oba sem vlozte

Re: System Tool - Vir

Napsal: 26 pro 2010 19:07
od Kopy619
Tak ten z mozilu uz tam nastesti neni, ale je tu asi posledni, ktery nejde smazat pres Ccleaner. Hend tu mate ty soubory. Jinak me ten firewall nevadi ze se pta ale nechcu udelat spatny rozhodnuti, jak mam vedet jestli dat allow nebo deny. Netusim kdy to a kdy zase to druhe... :-(

Re: System Tool - Vir

Napsal: 26 pro 2010 19:09
od vyosek
allow je povolit...povolujte jen komunikaci souborum(programum) ktere znate...ktery ten toolbar Vam nejde dat pryc...zatim mi sem dejte jen otl.txt, ten druhy extras.txt nebude snad treba...

Re: System Tool - Vir

Napsal: 26 pro 2010 19:10
od Kopy619
OTL logfile created on: 26.12.2010 19:06:20 - Run 1
OTL by OldTimer - Version 3.2.18.0 Folder = C:\Users\User\Downloads
64bit-Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18999)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

4,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 59,00% Memory free
8,00 Gb Paging File | 6,00 Gb Available in Paging File | 78,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 596,17 Gb Total Space | 202,78 Gb Free Space | 34,01% Space Free | Partition Type: NTFS

Computer Name: USER-PC | User Name: User | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days

========== Processes (SafeList) ==========

PRC - [2010.12.26 19:05:06 | 000,602,624 | ---- | M] (OldTimer Tools) -- C:\Users\User\Downloads\OTL (1).exe
PRC - [2010.12.26 17:44:23 | 003,318,784 | ---- | M] (Crawler.com) -- C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe
PRC - [2010.12.09 00:28:23 | 000,991,800 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
PRC - [2010.11.16 17:47:56 | 002,435,592 | ---- | M] (Check Point Software Technologies LTD) -- C:\Windows\SysWOW64\ZoneLabs\vsmon.exe
PRC - [2010.11.16 17:46:04 | 001,043,968 | ---- | M] (Check Point Software Technologies LTD) -- C:\Program Files (x86)\Zone Labs\ZoneAlarm\zlclient.exe
PRC - [2010.08.24 21:36:44 | 000,002,560 | ---- | M] () -- C:\Windows\Runservice.exe
PRC - [2010.07.22 18:54:54 | 000,103,736 | ---- | M] () -- C:\Windows\SysWOW64\PnkBstrB.exe
PRC - [2010.07.22 18:54:47 | 000,066,872 | ---- | M] () -- C:\Windows\SysWOW64\PnkBstrA.exe
PRC - [2010.06.28 21:57:18 | 002,837,864 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe
PRC - [2010.06.28 21:57:15 | 000,040,384 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
PRC - [2010.02.12 17:07:32 | 005,933,912 | ---- | M] (Logitech Inc.) -- C:\Program Files (x86)\Logitech\Logitech Vid\Vid.exe
PRC - [2009.10.14 13:36:56 | 002,793,304 | ---- | M] () -- C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe
PRC - [2009.10.14 13:34:18 | 000,560,472 | ---- | M] () -- C:\Program Files (x86)\Common Files\LogiShrd\LQCVFX\COCIManager.exe
PRC - [2009.10.07 01:47:22 | 000,125,464 | ---- | M] (Logitech Inc.) -- C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\LVPrS64H.exe
PRC - [2009.05.09 10:55:33 | 000,039,408 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
PRC - [2007.09.11 16:51:14 | 002,510,848 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 2.3\program\soffice.bin
PRC - [2007.09.11 16:51:14 | 002,359,296 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 2.3\program\soffice.exe
PRC - [2007.07.23 13:43:58 | 003,502,080 | ---- | M] (Analog Devices, Inc.) -- C:\Program Files (x86)\Analog Devices\SoundMAX\SoundMAX.exe
PRC - [2007.06.06 07:35:18 | 001,261,568 | ---- | M] (Analog Devices, Inc.) -- C:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe
PRC - [2006.08.07 14:22:28 | 013,025,280 | ---- | M] (ZyXEL Communications Corp.) -- C:\Program Files (x86)\ZyXEL\ZyXEL AG-220 Wireless USB Adapter Utility\ZyXEL.exe


========== Modules (SafeList) ==========

MOD - [2010.12.26 19:05:06 | 000,602,624 | ---- | M] (OldTimer Tools) -- C:\Users\User\Downloads\OTL (1).exe
MOD - [2010.08.31 16:43:52 | 001,686,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3\comctl32.dll


========== Win32 Services (SafeList) ==========

SRV:64bit: - File not found [Auto | Running] -- C:\Windows\SysNative\PnkBstrB.exe -- (PnkBstrB)
SRV:64bit: - File not found [Auto | Running] -- C:\Windows\SysNative\PnkBstrA.exe -- (PnkBstrA)
SRV:64bit: - [2010.06.28 21:57:15 | 000,040,384 | ---- | M] (AVAST Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Web Scanner)
SRV:64bit: - [2010.06.28 21:57:15 | 000,040,384 | ---- | M] (AVAST Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Mail Scanner)
SRV:64bit: - [2010.06.28 21:57:15 | 000,040,384 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus)
SRV:64bit: - [2009.10.07 01:47:10 | 000,191,000 | ---- | M] (Logitech Inc.) [Auto | Running] -- C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe -- (LVPrcS64)
SRV:64bit: - [2008.01.21 03:47:32 | 000,383,544 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2007.10.12 17:03:52 | 000,918,528 | ---- | M] () [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe -- (ForceWare Intelligent Application Manager (IAM))
SRV:64bit: - [2007.10.12 17:03:12 | 000,178,176 | ---- | M] () [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe -- (nSvcIp)
SRV:64bit: - [2007.06.07 00:41:54 | 000,089,088 | ---- | M] (Andrea Electronics Corporation) [Auto | Running] -- C:\Windows\SysNative\AEADISRV.EXE -- (AEADIFilters)
SRV - [2010.12.26 17:44:22 | 000,948,775 | ---- | M] (Crawler.com) [Auto | Running] -- C:\Program Files (x86)\Spyware Terminator\sp_rsser.exe -- (sp_rssrv)
SRV - [2010.11.18 17:44:51 | 000,403,240 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2010.11.16 17:47:56 | 002,435,592 | ---- | M] (Check Point Software Technologies LTD) [Auto | Running] -- C:\Windows\SysWOW64\ZoneLabs\vsmon.exe -- (vsmon)
SRV - [2010.08.24 21:36:44 | 000,002,560 | ---- | M] () [Auto | Running] -- C:\Windows\Runservice.exe -- (LicCtrlService)
SRV - [2010.07.22 18:54:54 | 000,103,736 | ---- | M] () [Auto | Running] -- C:\Windows\SysWOW64\PnkBstrB.exe -- (PnkBstrB)
SRV - [2010.07.22 18:54:47 | 000,066,872 | ---- | M] () [Auto | Running] -- C:\Windows\SysWOW64\PnkBstrA.exe -- (PnkBstrA)
SRV - [2010.03.18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010.01.26 11:41:08 | 000,652,800 | ---- | M] (Nokia) [On_Demand | Stopped] -- C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2009.03.30 05:42:14 | 000,066,368 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2009.01.29 16:54:44 | 000,102,400 | ---- | M] (PacketVideo) [Auto | Stopped] -- C:\Program Files (x86)\Nokia\Nokia Home Media Server\Media Server\TwonkyMedia.exe -- (TwonkyMedia)


========== Driver Services (SafeList) ==========

DRV:64bit: - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vsdatant.win7.sys -- (vsdatant7)
DRV:64bit: - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\nwlnkfwd.sys -- (NwlnkFwd)
DRV:64bit: - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\nwlnkflt.sys -- (NwlnkFlt)
DRV:64bit: - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\ipinip.sys -- (IpInIp)
DRV:64bit: - [2010.07.07 11:26:46 | 000,050,696 | ---- | M] (Windows (R) Win 7 DDK provider) [File_System | Auto | Running] -- C:\Windows\SysNative\DRIVERS\stflt.sys -- (sp_rsdrv2)
DRV:64bit: - [2010.06.29 15:44:52 | 000,834,544 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\sptd.sys -- (sptd)
DRV:64bit: - [2010.06.28 21:33:00 | 000,061,008 | ---- | M] (ALWIL Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV:64bit: - [2010.05.15 16:30:50 | 000,453,720 | ---- | M] (Check Point Software Technologies LTD) [Kernel | System | Running] -- C:\Windows\SysNative\DRIVERS\vsdatant.sys -- (Vsdatant)
DRV:64bit: - [2010.01.21 13:54:26 | 000,018,944 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ccdcmbx64.sys -- (nmwcdx64)
DRV:64bit: - [2009.12.30 10:31:40 | 000,008,704 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\usbser_lowerfltx64j.sys -- (UsbserFilt)
DRV:64bit: - [2009.12.30 10:31:30 | 000,025,088 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ccdcmbox64.sys -- (nmwcdcx64)
DRV:64bit: - [2009.12.30 10:31:30 | 000,008,704 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\usbser_lowerfltx64.sys -- (upperdev)
DRV:64bit: - [2009.10.07 01:45:50 | 000,030,232 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\LVPr2M64.sys -- (LVPr2Mon)
DRV:64bit: - [2009.10.07 01:45:50 | 000,030,232 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\LVPr2M64.sys -- (LVPr2M64)
DRV:64bit: - [2009.10.01 01:51:42 | 000,046,592 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\wpdusb.sys -- (WpdUsb)
DRV:64bit: - [2009.05.21 15:18:29 | 000,033,344 | ---- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\hamachi.sys -- (hamachi)
DRV:64bit: - [2009.04.30 23:56:32 | 000,588,952 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\LV561V64.SYS -- (PID_0928) Logitech QuickCam Express(PID_0928)
DRV:64bit: - [2009.04.11 06:39:37 | 000,032,768 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbser.sys -- (usbser)
DRV:64bit: - [2008.08.28 10:44:42 | 000,025,600 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\pccsmcfdx64.sys -- (pccsmcfd)
DRV:64bit: - [2007.08.15 10:28:54 | 000,433,152 | ---- | M] (Analog Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ADIHdAud.sys -- (ADIHdAudAddService)
DRV:64bit: - [2007.06.29 14:48:06 | 000,039,424 | ---- | M] (AMD, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\AmdLLD64.sys -- (AmdLLD64)
DRV:64bit: - [2007.06.15 08:52:26 | 000,163,736 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\DRIVERS\mv61xx.sys -- (mv61xx)
DRV:64bit: - [2006.10.31 16:23:42 | 000,015,680 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\ASACPI.sys -- (MTsensor)
DRV:64bit: - [2006.09.18 22:36:24 | 000,000,308 | ---- | M] () [File_System | On_Demand | Running] -- C:\Windows\SysNative\Wbem\ntfs.mof -- (Ntfs)
DRV:64bit: - [2006.08.07 12:16:16 | 000,555,264 | ---- | M] (ZyDAS Technology Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\WlanAG64.SYS -- (ZYA22_64)
DRV - [2006.08.07 12:16:16 | 000,555,264 | ---- | M] (ZyDAS Technology Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\WlanAG64.SYS -- (ZYA22_64)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\URLSearchHook: - Reg Error: Key error. File not found
IE - HKLM\..\URLSearchHook: {09ec805c-cb2e-4d53-b0d3-a75a428b81c7} - Reg Error: Key error. File not found
IE - HKLM\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - Reg Error: Key error. File not found
IE - HKLM\..\URLSearchHook: {88c7f2aa-f93f-432c-8f0e-b7d85967a527} - Reg Error: Key error. File not found


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-2880311966-2040180150-986474232-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = [Binary data over 100 bytes]
IE - HKU\S-1-5-21-2880311966-2040180150-986474232-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = www.google.com
IE - HKU\S-1-5-21-2880311966-2040180150-986474232-1000\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKU\S-1-5-21-2880311966-2040180150-986474232-1000\..\URLSearchHook: - Reg Error: Key error. File not found
IE - HKU\S-1-5-21-2880311966-2040180150-986474232-1000\..\URLSearchHook: {51a86bb3-6602-4c85-92a5-130ee4864f13} - Reg Error: Key error. File not found
IE - HKU\S-1-5-21-2880311966-2040180150-986474232-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-2880311966-2040180150-986474232-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========

FF - prefs.js..browser.search.defaultengine: "Ask.com"
FF - prefs.js..browser.search.defaultenginename: "Ask.com"
FF - prefs.js..browser.search.defaultthis.engineName: "Conduit Engine Customized Web Search"
FF - prefs.js..browser.search.defaulturl: "http://search.conduit.com/ResultsExt.as ... earchTerms}"
FF - prefs.js..browser.search.order.1: "Ask.com"
FF - prefs.js..browser.search.param.yahoo-fr: "chr-greentree_ff&type=937811"
FF - prefs.js..browser.search.selectedEngine: "Ask.com"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://search.conduit.com/?ctid=&SearchSource=13"
FF - prefs.js..extensions.enabledItems: {A27F3FEF-1113-4cfb-A032-8E12D7D8EE70}:7.3.2.26
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js..extensions.enabledItems: engine@conduit.com:3.2.3.3
FF - prefs.js..keyword.URL: "http://search.conduit.com/ResultsExt.as ... =CTXXXX&q="
FF - prefs.js..network.proxy.no_proxies_on: "*.local"


FF - HKLM\software\mozilla\Firefox\Extensions\\{A27F3FEF-1113-4cfb-A032-8E12D7D8EE70}: C:\Program Files (x86)\Nokia\Nokia Ovi Suite\Connectors\Bookmarks Connector\FirefoxExtension\ [2010.04.07 17:13:20 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.2\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2010.03.28 15:19:31 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.2\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2010.10.11 19:27:09 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Thunderbird\Extensions\\{CCB7D94B-CA92-4E3F-B79D-ADE0F07ADC74}: C:\Program Files (x86)\Nokia\Nokia Ovi Suite\Connectors\Thunderbird Connector\ThunderbirdExtension\ [2010.04.07 17:13:22 | 000,000,000 | ---D | M]

[2010.03.20 10:35:37 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\Mozilla\Extensions
[2010.12.26 19:04:20 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\f5gxmi0d.default\extensions
[2010.08.20 20:13:52 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\f5gxmi0d.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2010.12.26 18:44:19 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\f5gxmi0d.default\extensions\DTToolbar@toolbarnet.com-trash
[2010.11.19 22:13:35 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\f5gxmi0d.default\extensions\engine@conduit.com
[2010.08.20 20:14:05 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\f5gxmi0d.default\extensions\staged-xpis
[2010.12.26 11:56:08 | 000,002,395 | ---- | M] () -- C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\f5gxmi0d.default\searchplugins\askcom.xml
[2010.11.19 22:13:38 | 000,000,913 | ---- | M] () -- C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\f5gxmi0d.default\searchplugins\conduit.xml
[2010.10.10 16:58:43 | 000,002,059 | ---- | M] () -- C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\f5gxmi0d.default\searchplugins\daemon-search.xml
[2010.12.26 12:53:21 | 000,001,056 | ---- | M] () -- C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\f5gxmi0d.default\searchplugins\icqplugin.xml
[2010.08.20 20:13:34 | 000,001,589 | ---- | M] () -- C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\f5gxmi0d.default\searchplugins\web-search.xml
[2010.12.26 16:36:15 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2010.06.18 19:34:21 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2010.06.18 19:33:56 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll
[2010.10.11 19:26:52 | 000,075,208 | ---- | M] (Foxit Software Company) -- C:\Program Files (x86)\Mozilla Firefox\plugins\npFoxitReaderPlugin.dll
[2007.07.26 13:05:16 | 000,001,329 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\crawlersrch.xml
[2010.01.16 01:50:40 | 000,000,638 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\jyxo-cz.xml
[2010.01.16 01:50:40 | 000,001,687 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\mall-cz.xml
[2010.01.16 01:50:40 | 000,001,367 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\seznam-cz.xml
[2010.01.16 01:50:40 | 000,000,654 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\slunecnice-cz.xml
[2010.01.16 01:50:40 | 000,001,179 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\wikipedia-cz.xml

O1 HOSTS File: ([2010.12.26 14:10:03 | 000,000,098 | ---- | M]) - C:\Windows\SysNative\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2:64bit: - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.6.5612.1312\swg64.dll (Google Inc.)
O2 - BHO: (no name) - {09ec805c-cb2e-4d53-b0d3-a75a428b81c7} - No CLSID value found.
O2 - BHO: (Conduit Engine) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files (x86)\ConduitEngine\ConduitEngine.dll (Conduit Ltd.)
O2 - BHO: (BitComet Helper) - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Programy\bitComent-hlavni\BitComet\tools\BitCometBHO_1.3.3.2.dll (BitComet)
O2 - BHO: (no name) - {88c7f2aa-f93f-432c-8f0e-b7d85967a527} - No CLSID value found.
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.6.5612.1312\swg.dll (Google Inc.)
O3:64bit: - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar64.dll File not found
O3 - HKLM\..\Toolbar: (no name) - {09ec805c-cb2e-4d53-b0d3-a75a428b81c7} - No CLSID value found.
O3 - HKLM\..\Toolbar: (Conduit Engine) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files (x86)\ConduitEngine\ConduitEngine.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (no name) - {88c7f2aa-f93f-432c-8f0e-b7d85967a527} - No CLSID value found.
O3 - HKU\S-1-5-21-2880311966-2040180150-986474232-1000\..\Toolbar\WebBrowser: (no name) - {09EC805C-CB2E-4D53-B0D3-A75A428B81C7} - No CLSID value found.
O3 - HKU\S-1-5-21-2880311966-2040180150-986474232-1000\..\Toolbar\WebBrowser: (Conduit Engine) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files (x86)\ConduitEngine\ConduitEngine.dll (Conduit Ltd.)
O3:64bit: - HKU\S-1-5-21-2880311966-2040180150-986474232-1000\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar64.dll File not found
O4:64bit: - HKLM..\Run: [NvCplDaemon] C:\Windows\SysNative\NvCpl.DLL (NVIDIA Corporation)
O4:64bit: - HKLM..\Run: [NvMediaCenter] C:\Windows\SysNative\NvMcTray.DLL (NVIDIA Corporation)
O4:64bit: - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKLM..\Run: [amd_dc_opt] C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe (AMD)
O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\AvastUI.exe (AVAST Software)
O4 - HKLM..\Run: [LogitechQuickCamRibbon] C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe ()
O4 - HKLM..\Run: [SoundMAX] C:\Program Files (x86)\Analog Devices\SoundMAX\SoundMAX.exe (Analog Devices, Inc.)
O4 - HKLM..\Run: [SoundMAXPnP] C:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe (Analog Devices, Inc.)
O4 - HKLM..\Run: [ZoneAlarm Client] C:\Program Files (x86)\Zone Labs\ZoneAlarm\zlclient.exe (Check Point Software Technologies LTD)
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-19..\Run: [WindowsWelcomeCenter] C:\Windows\SysWow64\oobefldr.dll (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [WindowsWelcomeCenter] C:\Windows\SysWow64\oobefldr.dll (Microsoft Corporation)
O4 - HKU\S-1-5-21-2880311966-2040180150-986474232-1000..\Run: [ccleaner] C:\Program Files (x86)\CCleaner\CCleaner.exe (Piriform Ltd)
O4 - HKU\S-1-5-21-2880311966-2040180150-986474232-1000..\Run: [Logitech Vid] C:\Program Files (x86)\Logitech\Logitech Vid\Vid.exe (Logitech Inc.)
O4 - HKU\S-1-5-21-2880311966-2040180150-986474232-1000..\Run: [SpywareTerminatorUpdate] C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe (Crawler.com)
O4 - HKU\S-1-5-21-2880311966-2040180150-986474232-1000..\Run: [swg] C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
O4 - Startup: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 2.3.lnk = C:\Program Files (x86)\OpenOffice.org 2.3\program\quickstart.exe ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O8:64bit: - Extra context menu item: Stáhnout odkaz s použitím BitCometu - C:\Programy\bitComent-hlavni\BitComet\BitComet.exe (www.BitComet.com)
O8:64bit: - Extra context menu item: Stáhnout všechna videa s použitím BitCometu - C:\Programy\bitComent-hlavni\BitComet\BitComet.exe (www.BitComet.com)
O8:64bit: - Extra context menu item: Stáhnout všechny odkazy s použitím BitCometu - C:\Programy\bitComent-hlavni\BitComet\BitComet.exe (www.BitComet.com)
O8 - Extra context menu item: Stáhnout odkaz s použitím BitCometu - C:\Programy\bitComent-hlavni\BitComet\BitComet.exe (www.BitComet.com)
O8 - Extra context menu item: Stáhnout všechna videa s použitím BitCometu - C:\Programy\bitComent-hlavni\BitComet\BitComet.exe (www.BitComet.com)
O8 - Extra context menu item: Stáhnout všechny odkazy s použitím BitCometu - C:\Programy\bitComent-hlavni\BitComet\BitComet.exe (www.BitComet.com)
O9 - Extra Button: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Program Files (x86)\ICQ7.2\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Program Files (x86)\ICQ7.2\ICQ.exe (ICQ, LLC.)
O9 - Extra Button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - C:\Programy\bitComent-hlavni\BitComet\tools\BitCometBHO_1.3.3.2.dll (BitComet)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O13 - gopher Prefix: missing
O15 - HKU\S-1-5-21-2880311966-2040180150-986474232-1000\..Trusted Domains: kuaiche.com ([software] http in Trusted sites)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/fl ... rashim.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_20)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 212.96.161.6 212.96.161.7
O18:64bit: - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - Reg Error: Key error. File not found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Users\User\AppData\Roaming\Microsoft\Windows Photo Gallery\Tapeta galerie Windows Fotogalerie.jpg
O24 - Desktop BackupWallPaper: C:\Users\User\AppData\Roaming\Microsoft\Windows Photo Gallery\Tapeta galerie Windows Fotogalerie.jpg
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{1c33907c-838d-11df-8fef-0022158bdec1}\Shell - "" = AutoRun
O33 - MountPoints2\{1c33907c-838d-11df-8fef-0022158bdec1}\Shell\AutoRun\command - "" = E:\setup\rsrc\Autorun.exe -- File not found
O33 - MountPoints2\{1c33907c-838d-11df-8fef-0022158bdec1}\Shell\dinstall\command - "" = E:\Directx\dxsetup.exe -- File not found
O33 - MountPoints2\{353a8be5-188f-11de-b04c-0022158bdec1}\Shell - "" = AutoRun
O33 - MountPoints2\{353a8be5-188f-11de-b04c-0022158bdec1}\Shell\AutoRun\command - "" = E:\Launch.exe -- File not found
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 7 Days ==========

[2010.12.26 18:29:18 | 000,058,368 | ---- | C] (Check Point Software Technologies LTD) -- C:\Windows\SysWow64\vsregexp.dll
[2010.12.26 18:28:50 | 000,345,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\netio.sys
[2010.12.26 18:27:58 | 000,104,448 | ---- | C] (Check Point Software Technologies LTD) -- C:\Windows\SysWow64\zlcommdb.dll
[2010.12.26 18:27:58 | 000,069,120 | ---- | C] (Check Point Software Technologies LTD) -- C:\Windows\SysWow64\zlcomm.dll
[2010.12.26 18:27:55 | 000,043,008 | ---- | C] (Check Point Software Technologies LTD) -- C:\Windows\SysWow64\vswmi.dll
[2010.12.26 18:27:53 | 001,238,528 | ---- | C] (Check Point Software Technologies LTD) -- C:\Windows\SysWow64\zpeng25.dll
[2010.12.26 18:27:53 | 000,302,592 | ---- | C] (Check Point Software Technologies LTD) -- C:\Windows\SysWow64\vspubapi.dll
[2010.12.26 18:27:53 | 000,110,080 | ---- | C] (Check Point Software Technologies LTD) -- C:\Windows\SysWow64\vsxml.dll
[2010.12.26 18:27:53 | 000,108,032 | ---- | C] (Check Point Software Technologies LTD) -- C:\Windows\SysWow64\vsmonapi.dll
[2010.12.26 18:27:53 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\ZoneLabs
[2010.12.26 18:27:52 | 000,112,128 | ---- | C] (Check Point Software Technologies LTD) -- C:\Windows\SysWow64\vsdata.dll
[2010.12.26 18:27:39 | 000,453,720 | ---- | C] (Check Point Software Technologies LTD) -- C:\Windows\SysNative\drivers\vsdatant.sys
[2010.12.26 18:27:38 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Zone Labs
[2010.12.26 18:25:55 | 000,000,000 | ---D | C] -- C:\Windows\Internet Logs
[2010.12.26 18:25:55 | 000,000,000 | ---D | C] -- C:\ProgramData\CheckPoint
[2010.12.26 18:25:54 | 000,715,264 | ---- | C] (Check Point Software Technologies LTD) -- C:\Windows\SysWow64\vsutil.dll
[2010.12.26 18:25:54 | 000,228,864 | ---- | C] (Check Point Software Technologies LTD) -- C:\Windows\SysWow64\vsinit.dll
[2010.12.26 17:44:22 | 000,000,000 | ---D | C] -- C:\Users\User\AppData\Roaming\Spyware Terminator
[2010.12.26 17:44:20 | 000,000,000 | ---D | C] -- C:\ProgramData\Spyware Terminator
[2010.12.26 17:44:19 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Spyware Terminator
[2010.12.26 16:02:10 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\CCleaner
[2010.12.26 13:29:23 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\trend micro
[2010.12.26 13:26:30 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2010.12.25 03:05:16 | 000,000,000 | ---D | C] -- C:\ProgramData\jIcEf01804
[2010.12.25 01:43:12 | 000,000,000 | ---D | C] -- C:\ProgramData\WindowsSearch
[2006.12.01 23:37:14 | 000,904,704 | ---- | C] (Microsoft Corporation) -- C:\Program Files (x86)\msdia80.dll
[1 C:\Windows\SysNative\drivers\*.tmp files -> C:\Windows\SysNative\drivers\*.tmp -> ]
[1 C:\Program Files (x86)\*.tmp files -> C:\Program Files (x86)\*.tmp -> ]

========== Files - Modified Within 7 Days ==========

[2010.12.26 18:37:22 | 000,000,434 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Synchronization-{57D97600-8AFE-4A92-BA3C-BAA715308BFB}.job
[2010.12.26 18:35:55 | 000,000,972 | ---- | M] () -- C:\Windows\tasks\Google Software Updater.job
[2010.12.26 18:32:29 | 000,000,785 | -HS- | M] () -- C:\Windows\SysWow64\mmf.sys
[2010.12.26 18:32:14 | 000,003,712 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2010.12.26 18:32:13 | 000,003,712 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2010.12.26 18:32:08 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2010.12.26 18:29:36 | 000,420,800 | ---- | M] () -- C:\Windows\SysNative\drivers\vsconfig.xml
[2010.12.26 18:29:20 | 000,000,901 | ---- | M] () -- C:\Users\User\Desktop\ZoneAlarm Security.lnk
[2010.12.26 17:46:15 | 000,000,961 | ---- | M] () -- C:\Users\Public\Desktop\Spyware Terminator.lnk
[2010.12.26 16:02:10 | 000,000,846 | ---- | M] () -- C:\Users\User\Desktop\CCleaner.lnk
[2010.12.26 15:44:54 | 000,252,008 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[1 C:\Windows\SysNative\drivers\*.tmp files -> C:\Windows\SysNative\drivers\*.tmp -> ]
[1 C:\Program Files (x86)\*.tmp files -> C:\Program Files (x86)\*.tmp -> ]

========== Files Created - No Company Name ==========

[2010.12.26 18:29:20 | 000,000,901 | ---- | C] () -- C:\Users\User\Desktop\ZoneAlarm Security.lnk
[2010.12.26 18:27:52 | 000,420,800 | ---- | C] () -- C:\Windows\SysNative\drivers\vsconfig.xml
[2010.12.26 17:46:15 | 000,000,961 | ---- | C] () -- C:\Users\Public\Desktop\Spyware Terminator.lnk
[2010.12.26 16:02:10 | 000,000,846 | ---- | C] () -- C:\Users\User\Desktop\CCleaner.lnk
[2010.12.26 14:21:32 | 000,000,972 | ---- | C] () -- C:\Windows\tasks\Google Software Updater.job
[2010.12.26 14:21:04 | 000,000,434 | -H-- | C] () -- C:\Windows\tasks\User_Feed_Synchronization-{57D97600-8AFE-4A92-BA3C-BAA715308BFB}.job
[2010.11.03 16:14:07 | 000,361,216 | ---- | C] () -- C:\Users\User\AppData\Local\dd_vcredistMSI336F.txt
[2010.11.03 16:14:07 | 000,017,374 | ---- | C] () -- C:\Users\User\AppData\Local\dd_vcredistUI336F.txt
[2010.08.24 21:36:46 | 000,000,785 | -HS- | C] () -- C:\Windows\SysWow64\mmf.sys
[2010.08.24 21:36:44 | 000,048,640 | ---- | C] () -- C:\Windows\mmfs.dll
[2010.08.22 23:41:46 | 000,021,840 | ---- | C] () -- C:\Windows\SysWow64\SIntfNT.dll
[2010.08.22 23:41:46 | 000,017,212 | ---- | C] () -- C:\Windows\SysWow64\SIntf32.dll
[2010.08.22 23:41:46 | 000,012,067 | ---- | C] () -- C:\Windows\SysWow64\SIntf16.dll
[2010.07.22 18:54:22 | 000,000,300 | ---- | C] () -- C:\Windows\game.ini
[2010.06.29 10:50:06 | 000,000,680 | ---- | C] () -- C:\Users\User\AppData\Local\d3d9caps.dat
[2010.06.29 10:37:11 | 000,000,025 | ---- | C] () -- C:\Windows\libem.INI
[2010.06.29 10:01:00 | 000,397,226 | ---- | C] () -- C:\Users\User\AppData\Local\dd_vcredistMSI52EC.txt
[2010.06.29 10:00:56 | 000,013,944 | ---- | C] () -- C:\Users\User\AppData\Local\dd_vcredistUI52EC.txt
[2010.03.10 20:41:49 | 000,000,316 | ---- | C] () -- C:\Windows\SIERRA.INI
[2010.02.03 18:04:30 | 000,040,960 | ---- | C] () -- C:\Windows\SysWow64\psfind.dll
[2009.09.07 17:46:47 | 000,000,783 | ---- | C] () -- C:\Windows\BALTIE.INI
[2009.08.18 22:56:33 | 000,117,248 | ---- | C] () -- C:\Windows\SysWow64\EhStorAuthn.dll
[2009.08.18 22:55:34 | 000,368,640 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2009.05.15 16:57:33 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2009.05.04 17:39:43 | 000,000,024 | ---- | C] () -- C:\Windows\SysWow64\XLSCX.INI
[2009.05.04 17:39:41 | 000,000,024 | ---- | C] () -- C:\Windows\SW_Win2146X32.DLL
[2009.01.18 00:25:11 | 000,000,092 | ---- | C] () -- C:\Users\User\AppData\Local\fusioncache.dat
[2009.01.18 00:00:31 | 001,643,236 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2008.12.23 16:33:18 | 000,123,392 | ---- | C] () -- C:\Users\User\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2008.12.22 19:41:35 | 000,000,761 | ---- | C] () -- C:\Windows\m3jp2k.ini
[2008.12.22 19:41:35 | 000,000,714 | ---- | C] () -- C:\Windows\m3jpeg.ini
[2008.12.22 19:41:35 | 000,000,702 | ---- | C] () -- C:\Windows\mmtvmj.ini
[2008.12.22 19:41:34 | 000,019,968 | ---- | C] () -- C:\Windows\SysWow64\cpuinf32.dll
[2008.12.22 19:41:33 | 000,152,064 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll
[2008.12.11 10:55:40 | 000,003,972 | ---- | C] () -- C:\Windows\SysWow64\drivers\PciBus.sys
[2008.12.11 09:59:28 | 000,021,136 | ---- | C] () -- C:\Windows\Ascd_log.ini
[2008.12.11 09:59:15 | 000,020,881 | ---- | C] () -- C:\Windows\Ascd_tmp.ini
[2008.12.11 09:40:05 | 000,000,732 | ---- | C] () -- C:\Users\User\AppData\Local\d3d9caps64.dat
[2008.12.11 09:03:34 | 000,008,192 | R-S- | C] () -- C:\Program Files (x86)\BOOTSECT.BAK
[2008.01.21 03:50:05 | 000,060,124 | ---- | C] () -- C:\Windows\SysWow64\tcpmon.ini
[2007.08.01 04:39:28 | 000,012,536 | ---- | C] () -- C:\Windows\SysWow64\drivers\ASUSHWIO.SYS

========== LOP Check ==========

[2009.08.05 22:37:18 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\Acoustica
[2010.11.03 14:42:00 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\BITS
[2010.12.26 11:55:07 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\BitTorrent
[2010.07.01 11:54:00 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
[2009.03.24 17:19:30 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\DAEMON Tools
[2010.06.29 15:50:51 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\DAEMON Tools Lite
[2010.02.03 17:50:11 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\DAEMON Tools Pro
[2010.06.29 10:37:03 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\FlashGet
[2010.06.29 10:37:01 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\FlashGetBHO
[2010.10.11 19:27:13 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\Foxit
[2010.11.26 19:24:50 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\Foxit Software
[2010.11.07 18:46:24 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\GetRightToGo
[2010.11.10 15:40:45 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\ICQ
[2010.03.10 19:45:02 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\Leadertech
[2010.01.21 10:16:18 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\Leawo
[2010.01.15 21:59:58 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\My Battle for Middle-earth Files
[2010.10.11 21:03:38 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\My Battle for Middle-earth(tm) II Files
[2010.09.10 14:40:47 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\Need for Speed World
[2010.04.07 19:04:19 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\Nokia
[2010.03.20 10:28:53 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\Opera
[2010.04.07 19:02:04 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\PC Suite
[2009.08.06 22:46:38 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\Propellerhead Software
[2010.01.25 15:35:31 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\SPORE
[2010.02.05 19:47:28 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\Sports Interactive
[2010.12.26 18:37:35 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\Spyware Terminator
[2010.08.10 23:51:27 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\Unity
[2010.09.11 12:19:12 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\updatetool
[2010.12.26 18:30:50 | 000,032,546 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2010.12.26 18:37:22 | 000,000,434 | -H-- | M] () -- C:\Windows\Tasks\User_Feed_Synchronization-{57D97600-8AFE-4A92-BA3C-BAA715308BFB}.job

========== Purity Check ==========



< End of report >

Re: System Tool - Vir

Napsal: 26 pro 2010 19:14
od Kopy619
Je to "Ask Toolbar" . Jinak jde tam i zadat aby si to pamatoval, ze treba vzdy ano, nebo vzdy ne. Ale mam to etdy nechat a pokazde dovolit podle situace, ano? Vetsinou se to pta ohledne toho noveho AntiSpy - Spyware Terminator a v podstate vzdy ohledne internetu.

Re: System Tool - Vir

Napsal: 26 pro 2010 19:24
od vyosek
:arrow: Muzete nechat zapamovat, zname program to nevadi...

:arrow: Spustte znovu OTL
  • Pokud pouzivate Win Vista ci W7, kliknete na OTL pravym a dejte Run As Administrator ci Spustit jako spravce
  • Do spodniho okenka Vlastni skenovani/opravy vlozte skript nize

  • Kód: Vybrat vše

    :otl
SRV:64bit: - File not found [Auto | Running] -- C:\Windows\SysNative\PnkBstrB.exe -- (PnkBstrB)
SRV:64bit: - File not found [Auto | Running] -- C:\Windows\SysNative\PnkBstrA.exe -- (PnkBstrA)
DRV:64bit: - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vsdatant.win7.sys -- (vsdatant7)
DRV:64bit: - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\nwlnkfwd.sys -- (NwlnkFwd)
DRV:64bit: - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\nwlnkflt.sys -- (NwlnkFlt)
DRV:64bit: - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\ipinip.sys -- (IpInIp)
IE - HKLM\..\URLSearchHook: - Reg Error: Key error. File not found
IE - HKLM\..\URLSearchHook: {09ec805c-cb2e-4d53-b0d3-a75a428b81c7} - Reg Error: Key error. File not found
IE - HKLM\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - Reg Error: Key error. File not found
IE - HKLM\..\URLSearchHook: {88c7f2aa-f93f-432c-8f0e-b7d85967a527} - Reg Error: Key error. File not found
IE - HKU\S-1-5-21-2880311966-2040180150-986474232-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = [Binary data over 100 bytes]
IE - HKU\S-1-5-21-2880311966-2040180150-986474232-1000\..\URLSearchHook: - Reg Error: Key error. File not found
IE - HKU\S-1-5-21-2880311966-2040180150-986474232-1000\..\URLSearchHook: {51a86bb3-6602-4c85-92a5-130ee4864f13} - Reg Error: Key error. File not found
FF - prefs.js..browser.search.defaultengine: "Ask.com"
FF - prefs.js..browser.search.defaultenginename: "Ask.com"
FF - prefs.js..browser.search.defaultthis.engineName: "Conduit Engine Customized Web Search"
FF - prefs.js..browser.search.defaulturl: "http://search.conduit.com/ResultsExt.aspx?ctid=ConduitEngine&SearchSource=3&q={searchTerms}"
FF - prefs.js..browser.search.order.1: "Ask.com"
FF - prefs.js..browser.search.param.yahoo-fr: "chr-greentree_ff&type=937811"
FF - prefs.js..browser.search.selectedEngine: "Ask.com"
FF - prefs.js..keyword.URL: "http://search.conduit.com/ResultsExt.aspx?ctid=CTXXXX&q="
[2010.12.26 18:44:19 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\f5gxmi0d.default\extensions\DTToolbar@toolbarnet.com-trash
[2010.12.26 11:56:08 | 000,002,395 | ---- | M] () -- C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\f5gxmi0d.default\searchplugins\askcom.xml
[2010.10.10 16:58:43 | 000,002,059 | ---- | M] () -- C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\f5gxmi0d.default\searchplugins\daemon-search.xml
[2010.12.26 12:53:21 | 000,001,056 | ---- | M] () -- C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\f5gxmi0d.default\searchplugins\icqplugin.xml
[2010.08.20 20:13:34 | 000,001,589 | ---- | M] () -- C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\f5gxmi0d.default\searchplugins\web-search.xml
O2 - BHO: (no name) - {09ec805c-cb2e-4d53-b0d3-a75a428b81c7} - No CLSID value found.
O2 - BHO: (no name) - {88c7f2aa-f93f-432c-8f0e-b7d85967a527} - No CLSID value found.
O3:64bit: - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar64.dll File not found
O3 - HKLM\..\Toolbar: (no name) - {09ec805c-cb2e-4d53-b0d3-a75a428b81c7} - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - {88c7f2aa-f93f-432c-8f0e-b7d85967a527} - No CLSID value found.
O3 - HKU\S-1-5-21-2880311966-2040180150-986474232-1000\..\Toolbar\WebBrowser: (no name) - {09EC805C-CB2E-4D53-B0D3-A75A428B81C7} - No CLSID value found.
O3:64bit: - HKU\S-1-5-21-2880311966-2040180150-986474232-1000\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar64.dll File not found
O13 - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/fl ... rashim.cab (Reg Error: Key error.)
O33 - MountPoints2\{1c33907c-838d-11df-8fef-0022158bdec1}\Shell - "" = AutoRun
O33 - MountPoints2\{353a8be5-188f-11de-b04c-0022158bdec1}\Shell - "" = AutoRun
[1 C:\Windows\SysNative\drivers\*.tmp files -> C:\Windows\SysNative\drivers\*.tmp -> ]
[1 C:\Program Files (x86)\*.tmp files -> C:\Program Files (x86)\*.tmp -> ]
 
:files
%windir%\system32\*.tmp.dll /s
%windir%\system32\SET*.tmp /s
%windir%\*.tmp /s

:commands
[RESETHOSTS]
[EMPTYTEMP]
[EMPTYFLASH]
  • Nasledne kliknete na Opravit
  • PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem

Re: System Tool - Vir

Napsal: 26 pro 2010 19:34
od Kopy619
All processes killed
========== OTL ==========
Service PnkBstrB stopped successfully!
Service PnkBstrB deleted successfully!
File C:\Windows\SysNative\PnkBstrB.exe not found.
Service PnkBstrA stopped successfully!
Service PnkBstrA deleted successfully!
File C:\Windows\SysNative\PnkBstrA.exe not found.
Service vsdatant7 stopped successfully!
Service vsdatant7 deleted successfully!
File C:\Windows\SysNative\drivers\vsdatant.win7.sys not found.
Service NwlnkFwd stopped successfully!
Service NwlnkFwd deleted successfully!
File C:\Windows\SysNative\DRIVERS\nwlnkfwd.sys not found.
Service NwlnkFlt stopped successfully!
Service NwlnkFlt deleted successfully!
File C:\Windows\SysNative\DRIVERS\nwlnkflt.sys not found.
Service IpInIp stopped successfully!
Service IpInIp deleted successfully!
File C:\Windows\SysNative\DRIVERS\ipinip.sys not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{09ec805c-cb2e-4d53-b0d3-a75a428b81c7}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{855F3B16-6D32-4fe6-8A56-BBB695989046}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{88c7f2aa-f93f-432c-8f0e-b7d85967a527}\ not found.
HKU\S-1-5-21-2880311966-2040180150-986474232-1000\SOFTWARE\Microsoft\Internet Explorer\Main\\Secondary Start Pages| /E : value set successfully!
Registry key HKEY_USERS\S-1-5-21-2880311966-2040180150-986474232-1000\Software\Microsoft\Internet Explorer\URLSearchHooks\ deleted successfully.
Registry key HKEY_USERS\S-1-5-21-2880311966-2040180150-986474232-1000\Software\Microsoft\Internet Explorer\URLSearchHooks not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{51a86bb3-6602-4c85-92a5-130ee4864f13}\ not found.
Prefs.js: "Ask.com" removed from browser.search.defaultengine
Prefs.js: "Ask.com" removed from browser.search.defaultenginename
Prefs.js: "Conduit Engine Customized Web Search" removed from browser.search.defaultthis.engineName
Prefs.js: "http://search.conduit.com/ResultsExt.as ... earchTerms}" removed from browser.search.defaulturl
Prefs.js: "Ask.com" removed from browser.search.order.1
Prefs.js: "chr-greentree_ff&type=937811" removed from browser.search.param.yahoo-fr
Prefs.js: "Ask.com" removed from browser.search.selectedEngine
Prefs.js: "http://search.conduit.com/ResultsExt.as ... =CTXXXX&q=" removed from keyword.URL
C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\f5gxmi0d.default\extensions\DTToolbar@toolbarnet.com-trash\components folder moved successfully.
C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\f5gxmi0d.default\extensions\DTToolbar@toolbarnet.com-trash folder moved successfully.
C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\f5gxmi0d.default\searchplugins\askcom.xml moved successfully.
C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\f5gxmi0d.default\searchplugins\daemon-search.xml moved successfully.
C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\f5gxmi0d.default\searchplugins\icqplugin.xml moved successfully.
C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\f5gxmi0d.default\searchplugins\web-search.xml moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{09ec805c-cb2e-4d53-b0d3-a75a428b81c7}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{09ec805c-cb2e-4d53-b0d3-a75a428b81c7}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{88c7f2aa-f93f-432c-8f0e-b7d85967a527}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{88c7f2aa-f93f-432c-8f0e-b7d85967a527}\ not found.
64bit-Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{32099AAC-C132-4136-9E9A-4E364A424E17} deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{32099AAC-C132-4136-9E9A-4E364A424E17}\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{09ec805c-cb2e-4d53-b0d3-a75a428b81c7} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{09ec805c-cb2e-4d53-b0d3-a75a428b81c7}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{88c7f2aa-f93f-432c-8f0e-b7d85967a527} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{88c7f2aa-f93f-432c-8f0e-b7d85967a527}\ not found.
Registry value HKEY_USERS\S-1-5-21-2880311966-2040180150-986474232-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{09EC805C-CB2E-4D53-B0D3-A75A428B81C7} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{09EC805C-CB2E-4D53-B0D3-A75A428B81C7}\ not found.
64bit-Registry value HKEY_USERS\S-1-5-21-2880311966-2040180150-986474232-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{32099AAC-C132-4136-9E9A-4E364A424E17} deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{32099AAC-C132-4136-9E9A-4E364A424E17}\ not found.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\Prefixes\\gopher|:gopher:// /E : value set successfully!
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\Prefixes\\gopher|:gopher:// /E : value set successfully!
Starting removal of ActiveX control {8FFBE65D-2C9C-4669-84BD-5829DC0B603C}
C:\Windows\Downloaded Program Files\erma.inf moved successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{8FFBE65D-2C9C-4669-84BD-5829DC0B603C}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8FFBE65D-2C9C-4669-84BD-5829DC0B603C}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{8FFBE65D-2C9C-4669-84BD-5829DC0B603C}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8FFBE65D-2C9C-4669-84BD-5829DC0B603C}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{1c33907c-838d-11df-8fef-0022158bdec1}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{1c33907c-838d-11df-8fef-0022158bdec1}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{353a8be5-188f-11de-b04c-0022158bdec1}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{353a8be5-188f-11de-b04c-0022158bdec1}\ not found.
C:\Windows\SysNative\drivers\~GLH0023.TMP deleted successfully.
C:\Program Files (x86)\NV1772196.TMP\system32 deleted successfully.
C:\Program Files (x86)\NV1772196.TMP folder deleted successfully.
========== FILES ==========
File/Folder C:\Windows\system32\*.tmp.dll not found.
File/Folder C:\Windows\system32\SET*.tmp not found.
File move failed. C:\Windows\Temp\ZLT04a2e.TMP scheduled to be moved on reboot.
========== COMMANDS ==========
File move failed. C:\Windows\System32\drivers\etc\Hosts scheduled to be moved on reboot.
HOSTS file reset successfully

[EMPTYTEMP]

User: All Users

User: AppData

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: Public

User: User
->Temp folder emptied: 25763716 bytes
->Temporary Internet Files folder emptied: 5357679 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 16614985 bytes
->Google Chrome cache emptied: 6655864 bytes
->Apple Safari cache emptied: 0 bytes
->Opera cache emptied: 0 bytes
->Flash cache emptied: 498 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 242480 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 33170 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 52,00 mb


[EMPTYFLASH]

User: All Users

User: AppData

User: Default
->Flash cache emptied: 0 bytes

User: Default User
->Flash cache emptied: 0 bytes

User: Public

User: User
->Flash cache emptied: 0 bytes

Total Flash Files Cleaned = 0,00 mb


OTL by OldTimer - Version 3.2.18.0 log created on 12262010_193010

Files\Folders moved on Reboot...
File\Folder C:\Windows\Temp\ZLT04a2e.TMP not found!
File move failed. C:\Windows\System32\drivers\etc\Hosts scheduled to be moved on reboot.
C:\Users\User\AppData\Local\Temp\~DFDA43.tmp moved successfully.
File move failed. C:\Windows\temp\_avast5_\Webshlock.txt scheduled to be moved on reboot.
File move failed. C:\Windows\temp\logishrd\LVPrcInj01.dll scheduled to be moved on reboot.
File move failed. C:\Windows\temp\logishrd\LVPrcInj02.dll scheduled to be moved on reboot.

Registry entries deleted on Reboot...

Re: System Tool - Vir

Napsal: 26 pro 2010 19:36
od vyosek
:arrow: Spustte znovu OTL a kliknete ne CleanUp! - tim po sobe OTL uklidi...

:arrow: Jak se chova nas pacient :???:

Re: System Tool - Vir

Napsal: 26 pro 2010 19:47
od Kopy619
Vse vypada dobre, nikde me zadny toolbar neotravuje ani nemusim nastavovat, ale kdyz se podivam do Ccleaneru tak tam porad jeden je, jde videt jen tam, nidke jinde me v podstate neotravuje. Jmenuje se prave ASK TOOLBAR , mozna to ani neni, ja nevim ale kdyby jste to chtel videt, tak jsem udelal aspon screen. Dal jsem ho pod touhle odpovedi.
Všechny časy jsou v UTC+01:00
Stránka 3 z 6

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz