Dobrý den , mám problém s využitím pc je neustále na 100% .Několikrát se otevře google chrome a schvost .spustit jakýkoliv program trvá dlouho a v int. prohlížeči trvá dlouho načítání . předem děkuji za rady . Tygr84
Logfile of random's system information tool 1.06 (written by random/random)
Run by Administrator at 2014-03-08 19:43:41
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 10 GB (27%) free of 38 GB
Total RAM: 1015 MB (43% free)
HijackThis download failed
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job
C:\WINDOWS\tasks\avast! Emergency Update.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2013-05-08 77424]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2014-01-29 462760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2012-10-30 1227736]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-01-29 171944]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2012-10-30 1227736]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SoundMan"=C:\WINDOWS\SOUNDMAN.EXE [2004-07-27 68096]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2004-09-30 155648]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2004-09-30 126976]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2013-05-08 41056]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576]
"NeroFilterCheck"=C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [2007-03-09 153136]
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2012-10-30 4297136]
"TO2SSM_McciTrayApp"=C:\Program Files\TO2SSM\McciTrayApp.exe [2009-01-16 1473536]
"mobilegeni daemon"=C:\Program Files\Mobogenie\DaemonProcess.exe []
"msdorbvSrv"=C:\WINDOWS\inf\msdorbv.vbe []
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe [2007-03-12 153136]
"NextLive"=C:\Documents and Settings\Administrator\Data aplikací\newnext.me\nengine.dll [2013-11-14 1283584]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2012-11-06 3673728]
"BitTorrent"=C:\Documents and Settings\Administrator\Data aplikací\BitTorrent\BitTorrent.exe [2014-02-21 900696]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxsrvc.dll [2004-09-30 344064]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"E:\hry\Call of Duty\CoDMP.exe"="E:\hry\Call of Duty\CoDMP.exe:*:Enabled:CoDMP"
"E:\hry\MOHAA\MOHAA.exe"="E:\hry\MOHAA\MOHAA.exe:*:Enabled:Medal of Honor Allied Assault"
"C:\WINDOWS\system32\msiexec.exe"="C:\WINDOWS\system32\msiexec.exe:*:Enabled:UpdateManagerSetup"
"C:\Program Files\SweetIM\Communicator\SweetPacksUpdateManager.exe"="C:\Program Files\SweetIM\Communicator\SweetPacksUpdateManager.exe:*:Enabled:SweetPacksUpdateManager"
"C:\Program Files\Activision\Call of Duty 2\CoD2MP_s.exe"="C:\Program Files\Activision\Call of Duty 2\CoD2MP_s.exe:*:Enabled:CoD2MP_s"
"C:\Program Files\Codemasters\Operation Flashpoint\FlashpointResistance.exe"="C:\Program Files\Codemasters\Operation Flashpoint\FlashpointResistance.exe:*:Enabled:Operation Flashpoint"
"C:\Program Files\EA GAMES\Need For Speed Underground\Speed.exe"="C:\Program Files\EA GAMES\Need For Speed Underground\Speed.exe:*:Enabled:Speed"
"C:\Program Files\Microsoft Games\Age of Empires II\empires2.exe"="C:\Program Files\Microsoft Games\Age of Empires II\empires2.exe:*:Enabled:Age of Empires II"
"C:\Documents and Settings\Administrator\Dokumenty\Stažené soubory\Star-Wars-Galactic-Battlegrounds-[PC]-by-Herp-Derp\Star Wars Galactic Battlegrounds [PC] by Herp Derp\Game\Battlegrounds.exe"="C:\Documents and Settings\Administrator\Dokumenty\Stažené soubory\Star-Wars-Galactic-Battlegrounds-[PC]-by-Herp-Derp\Star Wars Galactic Battlegrounds [PC] by Herp Derp\Game\Battlegrounds.exe:*:Enabled:Star Wars Galactic Battlegrounds"
"C:\Program Files\Duke Nukem - Manhattan Project\prism3d.exe"="C:\Program Files\Duke Nukem - Manhattan Project\prism3d.exe:*:Enabled:prism3d"
"C:\Program Files\EA GAMES\Battlefield 1942\BF1942.exe"="C:\Program Files\EA GAMES\Battlefield 1942\BF1942.exe:*:Enabled:BF1942"
"C:\Documents and Settings\Administrator\Dokumenty\Stažené soubory\Call-of-Duty-2-cz\Call of Duty 2 cz\Call of duty 2+CZ+crack+key-by Beny\Call of duty 2\Setup\Data\CoD2MP_s.exe"="C:\Documents and Settings\Administrator\Dokumenty\Stažené soubory\Call-of-Duty-2-cz\Call of Duty 2 cz\Call of duty 2+CZ+crack+key-by Beny\Call of duty 2\Setup\Data\CoD2MP_s.exe:*:Enabled:CoD2MP_s"
"E:\hry\MOHAA\moh_Breakthrough.exe"="E:\hry\MOHAA\moh_Breakthrough.exe:*:Enabled:Medal of Honor Allied Assault(tm) Breakthrough"
"E:\hry\MOHAA\moh_spearhead.exe"="E:\hry\MOHAA\moh_spearhead.exe:*:Enabled:Medal of Honor Allied Assault(tm) Spearhead"
"C:\Games\World_of_Tanks\WoTLauncher.exe"="C:\Games\World_of_Tanks\WoTLauncher.exe:*:Enabled:World of Tanks Launcher"
"C:\Program Files\AVG\AVG2013\avgmfapx.exe"="C:\Program Files\AVG\AVG2013\avgmfapx.exe:*:Enabled:Instalátor AVG"
"C:\Program Files\Quake III Arena\quake3.exe"="C:\Program Files\Quake III Arena\quake3.exe:*:Enabled:quake3"
"C:\Program Files\EA GAMES\MOHAA\MOHAA.exe"="C:\Program Files\EA GAMES\MOHAA\MOHAA.exe:*:Enabled:Medal of Honor Allied Assault"
"C:\Program Files\Daum\PotPlayer\PotPlayerMini.exe"="C:\Program Files\Daum\PotPlayer\PotPlayerMini.exe:*:Enabled:PotPlayer"
"C:\Documents and Settings\Administrator\Data aplikací\BitTorrent\BitTorrent.exe"="C:\Documents and Settings\Administrator\Data aplikací\BitTorrent\BitTorrent.exe:*:Enabled:BitTorrent"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Daum\PotPlayer\PotPlayerMini.exe"="C:\Program Files\Daum\PotPlayer\PotPlayerMini.exe:*:Enabled:PotPlayer"
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{8e69a7c0-7b17-11e3-972e-806d6172696f}]
shell\AutoRun\command - G:\autorun.exe
======List of files/folders created in the last 1 months======
2030-08-29 14:22:31 ----N---- C:\WINDOWS\system32\iyvu9_32.dll
2030-08-29 14:22:31 ----N---- C:\WINDOWS\system32\iacenc.dll
2014-03-08 19:43:44 ----D---- C:\Program Files\trend micro
2014-03-08 19:43:41 ----D---- C:\rsit
2014-02-26 21:28:04 ----A---- C:\WINDOWS\system32\CmdLineExt03.dll
2014-02-26 21:21:10 ----D---- C:\Program Files\KONAMI
2014-02-20 23:22:54 ----D---- C:\Casino
2014-02-14 21:09:31 ----D---- C:\Program Files\MP3 Player Utilities
2014-02-14 21:08:36 ----RA---- C:\WINDOWS\PlaySnd.INI
2014-02-14 21:08:36 ----RA---- C:\WINDOWS\fwupgrade.ini
2014-02-14 21:08:36 ----RA---- C:\WINDOWS\Disktool.INI
2014-02-13 00:02:25 ----HDC---- C:\WINDOWS\$NtUninstallKB2916036$
2014-02-12 22:09:38 ----D---- C:\Documents and Settings\Administrator\Data aplikací\OpenOffice
2014-02-12 21:49:54 ----D---- C:\Program Files\OpenOffice 4
2014-02-10 17:10:32 ----D---- C:\WINDOWS\Sun
======List of files/folders modified in the last 1 months======
2014-03-08 19:43:55 ----D---- C:\Documents and Settings\Administrator\Data aplikací\BitTorrent
2014-03-08 19:43:44 ----RD---- C:\Program Files
2014-03-08 19:43:19 ----D---- C:\WINDOWS\Prefetch
2014-03-08 17:47:28 ----D---- C:\WINDOWS\Temp
2014-03-08 16:44:04 ----D---- C:\Documents and Settings\Administrator\Data aplikací\newnext.me
2014-03-08 16:40:51 ----SHD---- C:\WINDOWS\CSC
2014-03-08 11:16:44 ----A---- C:\WINDOWS\SchedLgU.Txt
2014-03-07 22:53:05 ----D---- C:\WINDOWS
2014-03-07 22:34:40 ----D---- C:\Documents and Settings\Administrator\Data aplikací\Vso
2014-03-07 22:34:40 ----D---- C:\Documents and Settings\Administrator\Data aplikací\DAEMON Tools Lite
2014-03-07 22:29:33 ----D---- C:\WINDOWS\Debug
2014-03-07 22:29:31 ----D---- C:\WINDOWS\Minidump
2014-03-07 10:46:21 ----A---- C:\WINDOWS\NeroDigital.ini
2014-03-07 10:44:30 ----D---- C:\Documents and Settings\Administrator\Data aplikací\vlc
2014-02-26 21:28:04 ----D---- C:\WINDOWS\system32
2014-02-26 21:27:56 ----HD---- C:\Program Files\InstallShield Installation Information
2014-02-26 21:27:36 ----SHD---- C:\WINDOWS\Installer
2014-02-25 00:42:43 ----D---- C:\WINDOWS\system32\CatRoot2
2014-02-21 14:59:44 ----D---- C:\Program Files\BitTorrent
2014-02-21 11:07:48 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2014-02-17 16:05:36 ----D---- C:\WINDOWS\Network Diagnostic
2014-02-15 18:34:42 ----HD---- C:\WINDOWS\inf
2014-02-14 21:09:40 ----SD---- C:\Documents and Settings\Administrator\Data aplikací\Microsoft
2014-02-14 21:09:31 ----D---- C:\WINDOWS\system32\drivers
2014-02-13 10:33:51 ----RSD---- C:\WINDOWS\assembly
2014-02-13 10:33:51 ----D---- C:\WINDOWS\Microsoft.NET
2014-02-13 00:02:28 ----RSHDC---- C:\WINDOWS\system32\dllcache
2014-02-12 23:53:41 ----D---- C:\WINDOWS\WinSxS
2014-02-12 23:53:26 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2014-02-12 23:42:36 ----D---- C:\Program Files\Internet Explorer
2014-02-12 23:42:15 ----D---- C:\WINDOWS\ie8updates
2014-02-12 21:50:53 ----RSD---- C:\WINDOWS\Fonts
2014-02-12 01:49:30 ----D---- C:\WINDOWS\system32\MRT
2014-02-12 01:44:20 ----A---- C:\WINDOWS\system32\MRT.exe
2014-02-11 22:06:40 ----D---- C:\Documents and Settings\All Users\Data aplikací\BlueStacksSetup
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2012-10-30 25256]
R1 AswRdr;aswRdr; C:\WINDOWS\system32\drivers\AswRdr.sys [2012-10-30 35928]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2012-10-30 738504]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2012-10-30 361032]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2012-10-30 54232]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\drivers\aswFsBlk.sys [2012-10-30 21256]
R2 aswMon2;aswMon2; C:\WINDOWS\system32\drivers\aswMon2.sys [2012-10-30 97608]
R3 ALCXSENS;Service for WDM 3D Audio Driver; C:\WINDOWS\system32\drivers\ALCXSENS.SYS [2004-02-24 400384]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2004-08-02 635281]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\ialmnt5.sys [2004-09-30 752093]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-25 12160]
R3 ms_mpu401;Microsoft MPU-401 MIDI UART Driver; C:\WINDOWS\system32\drivers\msmpu401.sys [2001-08-17 2944]
R3 rtl8139;Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver; C:\WINDOWS\system32\DRIVERS\RTL8139.SYS [2008-04-13 20992]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2013-08-09 32384]
R3 usbehci;Ovladač miniportu rozšířeného radiče hostitele Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2009-03-18 30336]
R3 usbhub;Rozbočovač umožnující USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-14 59520]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
S3 aggpl3e5;aggpl3e5; C:\WINDOWS\system32\drivers\aggpl3e5.sys []
S3 an5bmv4v;an5bmv4v; C:\WINDOWS\system32\drivers\an5bmv4v.sys []
S3 hidgame;Microsoft Hid to Joystick Port Enabler; C:\WINDOWS\system32\DRIVERS\hidgame.sys [2001-08-17 8576]
S3 MREMP50;MREMP50 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MREMP50.SYS []
S3 MREMP50a64;MREMP50a64 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MREMP50a64.SYS []
S3 MREMPR5;MREMPR5 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MREMPR5.SYS []
S3 MRENDIS5;MRENDIS5 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MRENDIS5.SYS []
S3 MRESP50;MRESP50 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MRESP50.SYS []
S3 MRESP50a64;MRESP50a64 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MRESP50a64.SYS []
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2013-07-03 14976]
S3 usbstor;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 w810bus;Sony Ericsson W810 Driver driver (WDM); C:\WINDOWS\system32\DRIVERS\w810bus.sys [2006-02-20 58288]
S3 w810mdfl;Sony Ericsson W810 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\w810mdfl.sys [2006-02-20 8336]
S3 w810mdm;Sony Ericsson W810 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\w810mdm.sys [2006-02-20 94064]
S3 w810mgmt;Sony Ericsson W810 USB WMC Device Management Drivers (WDM); C:\WINDOWS\system32\DRIVERS\w810mgmt.sys [2006-02-20 85408]
S3 w810obex;Sony Ericsson W810 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\w810obex.sys [2006-02-20 83344]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2012-10-30 44808]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre7\bin\jqs.exe [2014-01-29 182696]
R2 McciCMService;McciCMService; C:\Program Files\Common Files\Motive\McciCMService.exe [2007-10-15 303104]
R2 StarWindServiceAE;StarWind AE Service; C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [2007-05-28 275968]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2007-03-12 271920]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-06-10 136176]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-02-21 257928]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-06-10 136176]
S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-01-15 774144]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2013-07-20 754856]
S4 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
zamrzlé pc , využití cpu 100% , kontrola logu
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119533
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: zamrzlé pc , využití cpu 100% , kontrola logu
Zdravím!
Spusťte nejprve tuto utilitu:
Spusťte nejprve tuto utilitu:
Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: zamrzlé pc , využití cpu 100% , kontrola logu
jsem pc laik , tak radši vkládám vše.
Po scanu :
# AdwCleaner v3.020 - Report created 08/03/2014 at 20:22:59
# Updated 27/02/2014 by Xplode
# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)
# Username : Administrator - XXX
# Running from : C:\Documents and Settings\Administrator\Dokumenty\Downloads\adwcleaner.exe
# Option : Scan
***** [ Services ] *****
***** [ Files / Folders ] *****
File Found : C:\Documents and Settings\Administrator\Data aplikací\Mozilla\Firefox\Profiles\nct405ky.default\user.js
Folder Found C:\Documents and Settings\Administrator\Data aplikací\newnext.me
Folder Found C:\Documents and Settings\Administrator\Data aplikací\OpenCandy
Folder Found C:\Documents and Settings\Administrator\Data aplikací\registry mechanic
Folder Found C:\Documents and Settings\Administrator\Dokumenty\Mobogenie
Folder Found C:\Documents and Settings\Administrator\Local Settings\Data aplikací\AlawarWrapper
Folder Found C:\Documents and Settings\Administrator\Local Settings\Data aplikací\Conduit
Folder Found C:\Documents and Settings\Administrator\Local Settings\Data aplikací\genienext
Folder Found C:\Documents and Settings\Administrator\Local Settings\Data aplikací\Mobogenie
Folder Found C:\Documents and Settings\Administrator\Nabídka Start\Programy\Mobogenie
Folder Found C:\Documents and Settings\All Users\Data aplikací\AlawarWrapper
Folder Found C:\Documents and Settings\All Users\Data aplikací\AVG Security Toolbar
Folder Found C:\Documents and Settings\All Users\Data aplikací\Premium
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Found : HKCU\Software\AppDataLow\Software\Conduit
Key Found : HKCU\Software\Conduit
Key Found : HKCU\Software\ConduitSearchScopes
Key Found : HKCU\Software\IM
Key Found : HKCU\Software\ImInstaller
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AD22EBAF-0D18-4FC7-90CC-5EA0ABBE9EB8}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{CFF4DB9B-135F-47C0-9269-B4C6572FD61A}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{32099AAC-C132-4136-9E9A-4E364A424E17}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EEE6C35C-6118-11DC-9C72-001320C79847}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{32099AAC-C132-4136-9E9A-4E364A424E17}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35C-6118-11DC-9C72-001320C79847}
Key Found : HKCU\Software\SmartBar
Key Found : HKLM\SOFTWARE\Classes\AppID\{608D3067-77E8-463D-9084-908966806826}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Found : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Found : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Found : HKLM\SOFTWARE\Classes\Toolbar.CT1750559
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Key Found : HKLM\Software\Conduit
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd
Key Found : HKLM\Software\Web Assistant
Value Found : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{32099AAC-C132-4136-9E9A-4E364A424E17}]
Value Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [NextLive]
Value Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [mobilegeni daemon]
Value Found : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [{336D0C35-8A85-403A-B9D2-65C292C39087}]
Value Found : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List [C:\Program Files\SweetIM\Communicator\SweetPacksUpdateManager.exe]
***** [ Browsers ] *****
-\\ Internet Explorer v8.0.6001.18702
Setting Found : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page] - hxxp://search.softonic.com/INF00176/tb_v1?SearchSource=10&cc=&mi=30cc18d70000000000000015f2059df9&toi=16081
Setting Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page] - hxxp://home.sweetim.com/?crg=4.0005002
-\\ Mozilla Firefox v
[ File : C:\Documents and Settings\Administrator\Data aplikací\Mozilla\Firefox\Profiles\nct405ky.default\prefs.js ]
Line Found : user_pref("CT1750559..clientLogIsEnabled", false);
Line Found : user_pref("CT1750559..clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.asmx/ReportDiagnosticsEvent");
Line Found : user_pref("CT1750559..uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/RegisterToolbarUninstallation");
Line Found : user_pref("CT1750559.1000082.isDisplayHidden", "true");
Line Found : user_pref("CT1750559.1000082.isPlayDisplay", "true");
Line Found : user_pref("CT1750559.1000082.state", "{\"state\":\"stopped\",\"text\":\"1.FM Dance\",\"description\":\"1.FM Dance\",\"url\":\"mms://dance.1.fm/energydance128k?MSWMExt=.asf\"}");
Line Found : user_pref("CT1750559.1000234.TWC_TMP_city", "CESKE BUDEJOVICE");
Line Found : user_pref("CT1750559.1000234.TWC_TMP_country", "CZ");
Line Found : user_pref("CT1750559.1000234.TWC_locId", "EZXX0323");
Line Found : user_pref("CT1750559.1000234.TWC_location", "Ceske Budejovice, Czech Republic");
Line Found : user_pref("CT1750559.1000234.TWC_region", "OT");
Line Found : user_pref("CT1750559.1000234.TWC_temp_dis", "c");
Line Found : user_pref("CT1750559.1000234.TWC_wind_dis", "kmh");
Line Found : user_pref("CT1750559.1000234.weatherData", "{\"icon\":\"28.png\",\"temperature\":\"12°C\",\"temperatureClear\":\"12°C\",\"highTemperature\":\"16°C\",\"lowTemperature\":\"7°C\",\"feelsLike\":\"12°[...]
Line Found : user_pref("CT1750559.ALLOW_SHOWING_HIDDEN_TOOLBAR", false);
Line Found : user_pref("CT1750559.AboutPrivacyUrl", "hxxp://www.codefuel.com/privacy/Default.aspx");
Line Found : user_pref("CT1750559.BrowserCompStateIsOpen_129502713039250930", true);
Line Found : user_pref("CT1750559.BrowserCompStateIsOpen_129544988592463877", true);
Line Found : user_pref("CT1750559.BrowserCompStateIsOpen_130040878929610729", true);
Line Found : user_pref("CT1750559.BrowserCompStateIsOpen_130050523948892746", true);
Line Found : user_pref("CT1750559.BrowserCompStateIsOpen_130052166684768527", true);
Line Found : user_pref("CT1750559.CurrentServerDate", "11-1-2014");
Line Found : user_pref("CT1750559.DialogsAlignMode", "LTR");
Line Found : user_pref("CT1750559.DialogsGetterLastCheckTime", "Sat Jan 11 2014 19:00:51 GMT+0100");
Line Found : user_pref("CT1750559.DownloadReferralCookieData", "");
Line Found : user_pref("CT1750559.ENABALE_HISTORY", "{\"dataType\":\"string\",\"data\":\"true\"}");
Line Found : user_pref("CT1750559.ENABLE_RETURN_WEB_SEARCH_ON_THE_PAGE", "{\"dataType\":\"string\",\"data\":\"true\"}");
Line Found : user_pref("CT1750559.FirstServerDate", "7-12-2012");
Line Found : user_pref("CT1750559.FirstTime", "true");
Line Found : user_pref("CT1750559.FirstTimeFF3", "true");
Line Found : user_pref("CT1750559.GroupingServerCheckInterval", 1440);
Line Found : user_pref("CT1750559.GroupingServiceUrl", "hxxp://grouping.services.conduit.com/");
Line Found : user_pref("CT1750559.HasUserGlobalKeys", true);
Line Found : user_pref("CT1750559.Initialize", true);
Line Found : user_pref("CT1750559.InitializeCommonPrefs", true);
Line Found : user_pref("CT1750559.InstallationAndCookieDataSentCount", 3);
Line Found : user_pref("CT1750559.InstallationType", "Unknown");
Line Found : user_pref("CT1750559.InstalledDate", "Fri Dec 07 2012 15:34:02 GMT+0100");
Line Found : user_pref("CT1750559.IsGrouping", false);
Line Found : user_pref("CT1750559.IsInitSetupIni", true);
Line Found : user_pref("CT1750559.IsMulticommunity", false);
Line Found : user_pref("CT1750559.LanguagePackLastCheckTime", "Sat Jan 11 2014 19:00:51 GMT+0100");
Line Found : user_pref("CT1750559.LanguagePackReloadIntervalMM", 1440);
Line Found : user_pref("CT1750559.LanguagePackServiceUrl", "hxxp://translation.users.conduit.com/Translation.ashx");
Line Found : user_pref("CT1750559.LastLogin_3.16.0.100", "Sun Feb 10 2013 15:51:59 GMT+0100");
Line Found : user_pref("CT1750559.LastLogin_3.16.0.3", "Sun Dec 30 2012 18:39:05 GMT+0100");
Line Found : user_pref("CT1750559.LastLogin_3.18.0.7", "Sat Jan 11 2014 19:00:52 GMT+0100");
Line Found : user_pref("CT1750559.LatestVersion", "3.20.0.4");
Line Found : user_pref("CT1750559.Locale", "en-us");
Line Found : user_pref("CT1750559.LoginRevertSettingsEnabled", false);
Line Found : user_pref("CT1750559.MCDetectTooltipHeight", "83");
Line Found : user_pref("CT1750559.MCDetectTooltipUrl", "hxxp://@EB_INSTALL_LINK@/rank/tooltip/?version=1");
Line Found : user_pref("CT1750559.MCDetectTooltipWidth", "295");
Line Found : user_pref("CT1750559.MyStuffEnabledAtInstallation", true);
Line Found : user_pref("CT1750559.RevertSettingsEnabled", true);
Line Found : user_pref("CT1750559.SearchFromAddressBarIsInit", true);
Line Found : user_pref("CT1750559.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT1750559&SearchSource=2&q=");
Line Found : user_pref("CT1750559.SearchInNewTabEnabled", true);
Line Found : user_pref("CT1750559.SearchInNewTabIntervalMM", 1440);
Line Found : user_pref("CT1750559.SearchInNewTabLastCheckTime", "Sat Jan 11 2014 19:00:27 GMT+0100");
Line Found : user_pref("CT1750559.SearchInNewTabServiceUrl", "hxxp://newtab.conduit-hosting.com/newtab/?ctid=EB_TOOLBAR_ID&UM=UM_ID");
Line Found : user_pref("CT1750559.ServiceMapLastCheckTime", "Sat Jan 11 2014 19:00:41 GMT+0100");
Line Found : user_pref("CT1750559.SettingsLastCheckTime", "Sat Jan 11 2014 19:00:26 GMT+0100");
Line Found : user_pref("CT1750559.SettingsLastUpdate", "1389189633");
Line Found : user_pref("CT1750559.ToolbarShrinkedFromSetup", false);
Line Found : user_pref("CT1750559.TrusteLinkUrl", "hxxp://trust.conduit.com/CT1750559");
Line Found : user_pref("CT1750559.TrustedApiDomains", "conduit.com,conduit-hosting.com,conduit-services.com,client.conduit-storage.com,OurToolbar.com,CommunityToolbars.com,ForumToolbar.com,MyBlogToolbar.com,MyCity[...]
Line Found : user_pref("CT1750559.UserID", "UN93902472398643878");
Line Found : user_pref("CT1750559.addressBarTakeOverEnabledInHidden", "true");
Line Found : user_pref("CT1750559.alertChannelId", "31130");
Line Found : user_pref("CT1750559.appButtonDisablenull", "MA==");
Line Found : user_pref("CT1750559.autoDisableScopes", 0);
Line Found : user_pref("CT1750559.browser.search.defaultthis.engineName", true);
Line Found : user_pref("CT1750559.defaultSearch", "true");
Line Found : user_pref("CT1750559.embeddedsData", "[{\"appId\":\"128520273115419467\",\"apiPermissions\":{\"crossDomainAjax\":true,\"getMainFrameTitle\":true,\"getMainFrameUrl\":true,\"getSearchTerm\":true,\"insta[...]
Line Found : user_pref("CT1750559.enableAlerts", "always");
Line Found : user_pref("CT1750559.enableSearchFromAddressBar", "true");
Line Found : user_pref("CT1750559.firstTimeDialogOpened", "true");
Line Found : user_pref("CT1750559.fixPageNotFoundError", "true");
Line Found : user_pref("CT1750559.fixPageNotFoundErrorInHidden", "true");
Line Found : user_pref("CT1750559.fixUrls", true);
Line Found : user_pref("CT1750559.generalConfigFromLogin", "{\"ApiMaxAlerts\":\"12\",\"SocialDomains\":\"social.conduit.com;apps.conduit.com;services.apps.conduit.com\",\"AppsDetectionUrlPattern\":\"hxxp://appdown[...]
Line Found : user_pref("CT1750559.homepageProtectorEnableByLogin", true);
Line Found : user_pref("CT1750559.initDone", true);
Line Found : user_pref("CT1750559.installId", "ct1750559_bs_player.exe");
Line Found : user_pref("CT1750559.installType", "ConduitNSISIntegration");
Line Found : user_pref("CT1750559.isCheckedStartAsHidden", true);
Line Found : user_pref("CT1750559.isEnableAllDialogs", "{\"dataType\":\"string\",\"data\":\"true\"}");
Line Found : user_pref("CT1750559.isFirstTimeToolbarLoading", "false");
Line Found : user_pref("CT1750559.isNewTabEnabled", true);
Line Found : user_pref("CT1750559.isPerformedSmartBarTransition", "true");
Line Found : user_pref("CT1750559.isToolbarShrinked", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Found : user_pref("CT1750559.keyword", true);
Line Found : user_pref("CT1750559.migrateAppsAndComponents", true);
Line Found : user_pref("CT1750559.myStuffEnabled", true);
Line Found : user_pref("CT1750559.myStuffPublihserMinWidth", 400);
Line Found : user_pref("CT1750559.myStuffSearchUrl", "hxxp://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOrigin=29&ctid=EB_TOOLBAR_ID&octid=EB_ORIGINAL_CTID");
Line Found : user_pref("CT1750559.myStuffServiceIntervalMM", 1440);
Line Found : user_pref("CT1750559.myStuffServiceUrl", "hxxp://mystuff.conduit-services.com/MyStuffService.ashx?ComponentId=EB_MY_STUFF_INSTANCE_GUID&lut=EB_MY_STUFF_LUT");
Line Found : user_pref("CT1750559.navigationAliasesJson", "{\"EB_MAIN_FRAME_URL\":\"hxxp%3A%2F%2Fwww.porse.cz%2FBs_player_ke_stazeni_zdarma%2Fdownload.html\",\"EB_MAIN_FRAME_TITLE\":\"Bs%20player%20ke%20sta%C5%BEe[...]
Line Found : user_pref("CT1750559.openThankYouPage", "false");
Line Found : user_pref("CT1750559.openUninstallPage", "false");
Line Found : user_pref("CT1750559.revertSettingsEnabled", true);
Line Found : user_pref("CT1750559.search.searchAppId", "128520273115419467");
Line Found : user_pref("CT1750559.search.searchCount", "0");
Line Found : user_pref("CT1750559.searchInNewTabEnabledInHidden", "true");
Line Found : user_pref("CT1750559.searchProtectorDialogDelayInSec", 10);
Line Found : user_pref("CT1750559.searchProtectorEnableByLogin", true);
Line Found : user_pref("CT1750559.selectToSearchBoxEnabled", "{\"dataType\":\"string\",\"data\":\"true\"}");
Line Found : user_pref("CT1750559.serviceLayer_service_login_isFirstLoginInvoked", "{\"dataType\":\"boolean\",\"data\":\"true\"}");
Line Found : user_pref("CT1750559.serviceLayer_service_login_loginCount", "{\"dataType\":\"number\",\"data\":\"4\"}");
Line Found : user_pref("CT1750559.serviceLayer_service_toolbarGrouping_activeCTID", "{\"dataType\":\"string\",\"data\":\"CT1750559\"}");
Line Found : user_pref("CT1750559.serviceLayer_service_toolbarGrouping_activeDownloadUrl", "{\"dataType\":\"string\",\"data\":\"hxxp://BSPlayer.OurToolbar.com//xpi\"}");
Line Found : user_pref("CT1750559.serviceLayer_service_toolbarGrouping_activeToolbarName", "{\"dataType\":\"string\",\"data\":\"BS Player\"}");
Line Found : user_pref("CT1750559.serviceLayer_service_toolbarGrouping_invoked", "{\"dataType\":\"string\",\"data\":\"true\"}");
Line Found : user_pref("CT1750559.serviceLayer_services_appTrackingFirstTime_lastUpdate", "1350809052417");
Line Found : user_pref("CT1750559.serviceLayer_services_appsMetadata_lastUpdate", "1350809052021");
Line Found : user_pref("CT1750559.serviceLayer_services_gottenAppsContextMenu_lastUpdate", "1350809059931");
Line Found : user_pref("CT1750559.serviceLayer_services_login_10.10.27.6_lastUpdate", "1350818290661");
Line Found : user_pref("CT1750559.serviceLayer_services_login_10.13.1.89_lastUpdate", "1352725023765");
Line Found : user_pref("CT1750559.serviceLayer_services_login_10.13.40.15_lastUpdate", "1354723896919");
Line Found : user_pref("CT1750559.serviceLayer_services_otherAppsContextMenu_lastUpdate", "1350809060113");
Line Found : user_pref("CT1750559.serviceLayer_services_searchAPI_lastUpdate", "1350809046514");
Line Found : user_pref("CT1750559.serviceLayer_services_serviceMap_lastUpdate", "1354723893167");
Line Found : user_pref("CT1750559.serviceLayer_services_toolbarContextMenu_lastUpdate", "1350809059745");
Line Found : user_pref("CT1750559.serviceLayer_services_toolbarSettings_lastUpdate", "1354723894039");
Line Found : user_pref("CT1750559.serviceLayer_services_translation_lastUpdate", "1354723896530");
Line Found : user_pref("CT1750559.settingsINI", true);
Line Found : user_pref("CT1750559.shouldFirstTimeDialog", "false");
Line Found : user_pref("CT1750559.smartbar.CTID", "CT1750559");
Line Found : user_pref("CT1750559.smartbar.Uninstall", "0");
Line Found : user_pref("CT1750559.smartbar.homepage", true);
Line Found : user_pref("CT1750559.smartbar.isHidden", true);
Line Found : user_pref("CT1750559.smartbar.toolbarName", "BS Player ");
Line Found : user_pref("CT1750559.startPage", "userChanged");
Line Found : user_pref("CT1750559.testingCtid", "");
Line Found : user_pref("CT1750559.toolbarAppMetaDataLastCheckTime", "Sat Jan 11 2014 19:00:51 GMT+0100");
Line Found : user_pref("CT1750559.toolbarBornServerTime", "21-10-2012");
Line Found : user_pref("CT1750559.toolbarCurrentServerTime", "5-12-2012");
Line Found : user_pref("CT1750559.twitter_v1.8.0_twitter_app_open_t_f", "ZmFsc2U=");
Line Found : user_pref("CT1750559.usagesFlag", 2);
Line Found : user_pref("CT1750559_Firefox.csv", "[{\"from\":\"Abs Layer\",\"action\":\"loading toolbar\",\"time\":1354727131555,\"isWithState\":\"\",\"timeFromStart\":0,\"timeFromPrev\":0}]");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://Settings.toolbar.search.conduit.com/root/CT1750559/CT1750559", "\"cc83d5f7ca1dc9383ad514bcd0e812423\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-services.com/?ctid=CT1750559", "\"1357730213\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.16.0.100", "\"0343677cfb1cd1:0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.16.0.3", "\"0343677cfb1cd1:0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.18.0.7", "\"9f8d2729abc2ce1:0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/Toolbar/?ownerId=CT1750559", "\"52c3f1538cb4af4ada257fcbc6b15d49\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-services.com/?locale=en-us", "\"799ed4eda873170bfa50e333944da883\"");
Line Found : user_pref("CommunityToolbar.ToolbarsList", "CT1750559");
Line Found : user_pref("CommunityToolbar.ToolbarsList4", "CT1750559");
Line Found : user_pref("CommunityToolbar.globalUserId", "9e4dd21f-5301-482b-a53e-b6ca2ef5a3e9");
Line Found : user_pref("Smartbar.ConduitHomepagesList", "");
Line Found : user_pref("Smartbar.ConduitSearchEngineList", "");
Line Found : user_pref("Smartbar.ConduitSearchUrlList", "");
Line Found : user_pref("Smartbar.SearchFromAddressBarSavedUrl", "hxxp://mystart.incredibar.com/mb139/?loc=IB_DS&a=6R8umjzt38&&i=26&search=");
Line Found : user_pref("Smartbar.keywordURLSelectedCTID", "CT1750559");
Line Found : user_pref("browser.search.defaultenginename", "AVG Secure Search");
Line Found : user_pref("browser.startup.homepage", "hxxp://search.softonic.com/INF00176/tb_v1?SearchSource=13&cc=&mi=30cc18d70000000000000015f2059df9&toi=16081");
Line Found : user_pref("extensions.Softonic.autoRvrt", "false");
Line Found : user_pref("extensions.Softonic.dfltSrch", true);
Line Found : user_pref("extensions.Softonic.dnsErr", true);
Line Found : user_pref("extensions.Softonic.hmpg", true);
Line Found : user_pref("extensions.Softonic.hmpgUrl", "hxxp://search.softonic.com/INF00176/tb_v1?SearchSource=13&cc=&mi=30cc18d70000000000000015f2059df9&toi=16081");
Line Found : user_pref("extensions.Softonic.hpOld0", "hxxp://www.seznam.cz/");
Line Found : user_pref("extensions.Softonic.kw_url", "hxxp://search.softonic.com/INF00176/tb_v1?SearchSource=2&cc=&mi=30cc18d70000000000000015f2059df9&toi=16081&q=");
Line Found : user_pref("extensions.Softonic.newTab", true);
Line Found : user_pref("extensions.Softonic.newTabUrl", "hxxp://search.softonic.com/INF00176/tb_v1/?SearchSource=15&cc=&mi=30cc18d70000000000000015f2059df9&toi=16081");
Line Found : user_pref("extensions.Softonic.rvrt", "false");
Line Found : user_pref("extensions.Softonic.srchPrvdr", "Search the web (Softonic)");
Line Found : user_pref("extensions.incredibar.RadioMyStations", "[{\"id\":\"1069\",\"name\":\"ORS Romántica en espańol\",\"url\":\"hxxp://www.orsradio.com/oldies56k.asx\",\"stre ... d\":\"1213\",\"[...]
Line Found : user_pref("extensions.incredibar.actvtyRptTime", "1362409805070");
Line Found : user_pref("extensions.incredibar.admin", false);
Line Found : user_pref("extensions.incredibar.afd-1a2d3abe806f9951da73a33d41fcfc9c_wid_to", "1; expires=Mon, 04 Mar 2013 18:10:06 GMT");
Line Found : user_pref("extensions.incredibar.aflt", "orgnl");
Line Found : user_pref("extensions.incredibar.afterInstallRpt", "sent");
Line Found : user_pref("extensions.incredibar.cntry", "EU");
Line Found : user_pref("extensions.incredibar.dfltLng", "EN");
Line Found : user_pref("extensions.incredibar.dfltSrch", false);
Line Found : user_pref("extensions.incredibar.dfltlng", "EN");
Line Found : user_pref("extensions.incredibar.dfltsrch", "false");
Line Found : user_pref("extensions.incredibar.did", "10650");
Line Found : user_pref("extensions.incredibar.envrmnt", "production");
Line Found : user_pref("extensions.incredibar.excTlbr", false);
Line Found : user_pref("extensions.incredibar.hdrMd5", "0D813AF966C93DF10AD70DCD76292C47");
Line Found : user_pref("extensions.incredibar.hmpg", false);
Line Found : user_pref("extensions.incredibar.hrdid", "30cc18d70000000000000015f2059df9");
Line Found : user_pref("extensions.incredibar.id", "30cc18d70000000000000015f2059df9");
Line Found : user_pref("extensions.incredibar.installerproductid", "26");
Line Found : user_pref("extensions.incredibar.instlDay", "15489");
Line Found : user_pref("extensions.incredibar.instlRef", "");
Line Found : user_pref("extensions.incredibar.instlday", "15489");
Line Found : user_pref("extensions.incredibar.instlref", "");
Line Found : user_pref("extensions.incredibar.isDcmntCmplt", false);
Line Found : user_pref("extensions.incredibar.isdcmntcmplt", true);
Line Found : user_pref("extensions.incredibar.keywordurl", "");
Line Found : user_pref("extensions.incredibar.lastVrsnTs", "1.5.11.149:56:41");
Line Found : user_pref("extensions.incredibar.mntrvrsn", "1.2.0");
Line Found : user_pref("extensions.incredibar.newTab", false);
Line Found : user_pref("extensions.incredibar.newtab", "false");
Line Found : user_pref("extensions.incredibar.newtaburl", "");
Line Found : user_pref("extensions.incredibar.noFFXTlbr", false);
Line Found : user_pref("extensions.incredibar.ppd", "20%5F5");
Line Found : user_pref("extensions.incredibar.prdct", "incredibar");
Line Found : user_pref("extensions.incredibar.productid", "26");
Line Found : user_pref("extensions.incredibar.prtnrId", "Incredibar");
Line Found : user_pref("extensions.incredibar.prtnrid", "Incredibar");
Line Found : user_pref("extensions.incredibar.sg", "none");
Line Found : user_pref("extensions.incredibar.smplGrp", "none");
Line Found : user_pref("extensions.incredibar.smplgrp", "none");
Line Found : user_pref("extensions.incredibar.srch", "");
Line Found : user_pref("extensions.incredibar.srchprvdr", "");
Line Found : user_pref("extensions.incredibar.tlbrId", "base");
Line Found : user_pref("extensions.incredibar.tlbrSrchUrl", "hxxp://mystart.Incredibar.com/?a=6R8umjzt38&loc=IB_TB&i=26&search=");
Line Found : user_pref("extensions.incredibar.tlbrid", "base");
Line Found : user_pref("extensions.incredibar.tlbrsrchurl", "hxxp://mystart.Incredibar.com/?a=6R8umjzt38&loc=IB_TB&i=26&search=");
Line Found : user_pref("extensions.incredibar.upn2", "6R8umjzt38");
Line Found : user_pref("extensions.incredibar.upn2n", "92824442241623822");
Line Found : user_pref("extensions.incredibar.vrsn", "1.5.11.14");
Line Found : user_pref("extensions.incredibar.vrsnTs", "1.5.11.149:56:41");
Line Found : user_pref("extensions.incredibar.vrsni", "1.5.11.14");
Line Found : user_pref("extensions.incredibar.vrsnts", "1.5.11.149:56:41");
Line Found : user_pref("extensions.incredibar_i.aflt", "orgnl");
Line Found : user_pref("extensions.incredibar_i.dfltLng", "");
Line Found : user_pref("extensions.incredibar_i.did", "10650");
Line Found : user_pref("extensions.incredibar_i.excTlbr", false);
Line Found : user_pref("extensions.incredibar_i.id", "30cc18d70000000000000015f2059df9");
Line Found : user_pref("extensions.incredibar_i.installerproductid", "26");
Line Found : user_pref("extensions.incredibar_i.instlDay", "15489");
Line Found : user_pref("extensions.incredibar_i.instlRef", "");
Line Found : user_pref("extensions.incredibar_i.ms_url_id", "");
Line Found : user_pref("extensions.incredibar_i.newTab", false);
Line Found : user_pref("extensions.incredibar_i.ppd", "20%5F5");
Line Found : user_pref("extensions.incredibar_i.prdct", "incredibar");
Line Found : user_pref("extensions.incredibar_i.productid", "26");
Line Found : user_pref("extensions.incredibar_i.prtnrId", "Incredibar");
Line Found : user_pref("extensions.incredibar_i.smplGrp", "none");
Line Found : user_pref("extensions.incredibar_i.tlbrId", "base");
Line Found : user_pref("extensions.incredibar_i.tlbrSrchUrl", "hxxp://mystart.Incredibar.com/?a=6R8umjzt38&loc=IB_TB&i=26&search=");
Line Found : user_pref("extensions.incredibar_i.upn2", "6R8umjzt38");
Line Found : user_pref("extensions.incredibar_i.upn2n", "92824442241623822");
Line Found : user_pref("extensions.incredibar_i.vrsn", "1.5.11.14");
Line Found : user_pref("extensions.incredibar_i.vrsnTs", "1.5.11.149:56:41");
Line Found : user_pref("extensions.incredibar_i.vrsni", "1.5.11.14");
Line Found : user_pref("smartbar.conduitSearchAddressUrlList", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT1750559&SearchSource=2&q=");
Line Found : user_pref("smartbar.originalSearchAddressUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT1750559&SearchSource=2&q=");
Line Found : user_pref("sweetim.toolbar.previous.browser.search.defaultenginename", "");
Line Found : user_pref("sweetim.toolbar.previous.browser.search.defaulturl", "");
Line Found : user_pref("sweetim.toolbar.previous.browser.search.selectedEngine", "Google");
Line Found : user_pref("sweetim.toolbar.previous.browser.startup.homepage", "hxxp://www.seznam.cz/");
Line Found : user_pref("sweetim.toolbar.urls.homepage", "hxxp://home.sweetim.com/?crg=4.0005002");
Line Found : user_pref("{336D0C35-8A85-403a-B9D2-65C292C39087}.ScriptData_WSG_whiteList", "{\"search.babylon.com\":\"q\",\"search.sweetim.com\":\"q\",\"search.imesh.net\":\"q\",\"www.search-results.com\":\"q\",\"h[...]
Line Found : user_pref("browser.search.selectedEngine", "Search the web (Softonic)");
Line Found : user_pref("browser.search.order.1", "Search the web (Softonic)");
Line Found : user_pref("keyword.URL", "hxxp://search.softonic.com/INF00176/tb_v1?SearchSource=2&cc=&mi=30cc18d70000000000000015f2059df9&toi=16081&q=");
-\\ Google Chrome v33.0.1750.146
[ File : C:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\User Data\Default\preferences ]
Found : homepage
*************************
AdwCleaner[R0].txt - [27526 octets] - [08/03/2014 20:22:59]
########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [27587 octets] ##########
Po cleanu
# AdwCleaner v3.020 - Report created 08/03/2014 at 20:51:48
# Updated 27/02/2014 by Xplode
# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)
# Username : Administrator - XXX
# Running from : C:\Documents and Settings\Administrator\Dokumenty\Downloads\adwcleaner.exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
Folder Deleted : C:\Documents and Settings\All Users\Data aplikací\AVG Security Toolbar
Folder Deleted : C:\Documents and Settings\All Users\Data aplikací\Premium
Folder Deleted : C:\Documents and Settings\All Users\Data aplikací\AlawarWrapper
Folder Deleted : C:\Documents and Settings\Administrator\Local Settings\Data aplikací\Conduit
Folder Deleted : C:\Documents and Settings\Administrator\Local Settings\Data aplikací\genienext
Folder Deleted : C:\Documents and Settings\Administrator\Local Settings\Data aplikací\Mobogenie
Folder Deleted : C:\Documents and Settings\Administrator\Local Settings\Data aplikací\AlawarWrapper
Folder Deleted : C:\Documents and Settings\Administrator\Data aplikací\newnext.me
Folder Deleted : C:\Documents and Settings\Administrator\Data aplikací\OpenCandy
Folder Deleted : C:\Documents and Settings\Administrator\Data aplikací\registry mechanic
Folder Deleted : C:\Documents and Settings\Administrator\Nabídka Start\Programy\Mobogenie
Folder Deleted : C:\Documents and Settings\Administrator\Dokumenty\Mobogenie
File Deleted : C:\Documents and Settings\Administrator\Data aplikací\Mozilla\Firefox\Profiles\nct405ky.default\user.js
***** [ Shortcuts ] *****
***** [ Registry ] *****
Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [{336D0C35-8A85-403A-B9D2-65C292C39087}]
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn
Value Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [NextLive]
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [mobilegeni daemon]
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT1750559
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{608D3067-77E8-463D-9084-908966806826}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{32099AAC-C132-4136-9E9A-4E364A424E17}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35C-6118-11DC-9C72-001320C79847}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{32099AAC-C132-4136-9E9A-4E364A424E17}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EEE6C35C-6118-11DC-9C72-001320C79847}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AD22EBAF-0D18-4FC7-90CC-5EA0ABBE9EB8}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{CFF4DB9B-135F-47C0-9269-B4C6572FD61A}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{32099AAC-C132-4136-9E9A-4E364A424E17}]
Value Deleted : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List [C:\Program Files\SweetIM\Communicator\SweetPacksUpdateManager.exe]
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\ConduitSearchScopes
Key Deleted : HKCU\Software\IM
Key Deleted : HKCU\Software\ImInstaller
Key Deleted : HKCU\Software\SmartBar
Key Deleted : HKCU\Software\AppDataLow\Software\Conduit
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\Software\Web Assistant
***** [ Browsers ] *****
-\\ Internet Explorer v8.0.6001.18702
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
-\\ Mozilla Firefox v
[ File : C:\Documents and Settings\Administrator\Data aplikací\Mozilla\Firefox\Profiles\nct405ky.default\prefs.js ]
Line Deleted : user_pref("CT1750559..clientLogIsEnabled", false);
Line Deleted : user_pref("CT1750559..clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.asmx/ReportDiagnosticsEvent");
Line Deleted : user_pref("CT1750559..uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/RegisterToolbarUninstallation");
Line Deleted : user_pref("CT1750559.1000082.isDisplayHidden", "true");
Line Deleted : user_pref("CT1750559.1000082.isPlayDisplay", "true");
Line Deleted : user_pref("CT1750559.1000082.state", "{\"state\":\"stopped\",\"text\":\"1.FM Dance\",\"description\":\"1.FM Dance\",\"url\":\"mms://dance.1.fm/energydance128k?MSWMExt=.asf\"}");
Line Deleted : user_pref("CT1750559.1000234.TWC_TMP_city", "CESKE BUDEJOVICE");
Line Deleted : user_pref("CT1750559.1000234.TWC_TMP_country", "CZ");
Line Deleted : user_pref("CT1750559.1000234.TWC_locId", "EZXX0323");
Line Deleted : user_pref("CT1750559.1000234.TWC_location", "Ceske Budejovice, Czech Republic");
Line Deleted : user_pref("CT1750559.1000234.TWC_region", "OT");
Line Deleted : user_pref("CT1750559.1000234.TWC_temp_dis", "c");
Line Deleted : user_pref("CT1750559.1000234.TWC_wind_dis", "kmh");
Line Deleted : user_pref("CT1750559.1000234.weatherData", "{\"icon\":\"28.png\",\"temperature\":\"12°C\",\"temperatureClear\":\"12°C\",\"highTemperature\":\"16°C\",\"lowTemperature\":\"7°C\",\"feelsLike\":\"12°[...]
Line Deleted : user_pref("CT1750559.ALLOW_SHOWING_HIDDEN_TOOLBAR", false);
Line Deleted : user_pref("CT1750559.AboutPrivacyUrl", "hxxp://www.codefuel.com/privacy/Default.aspx");
Line Deleted : user_pref("CT1750559.BrowserCompStateIsOpen_129502713039250930", true);
Line Deleted : user_pref("CT1750559.BrowserCompStateIsOpen_129544988592463877", true);
Line Deleted : user_pref("CT1750559.BrowserCompStateIsOpen_130040878929610729", true);
Line Deleted : user_pref("CT1750559.BrowserCompStateIsOpen_130050523948892746", true);
Line Deleted : user_pref("CT1750559.BrowserCompStateIsOpen_130052166684768527", true);
Line Deleted : user_pref("CT1750559.CurrentServerDate", "11-1-2014");
Line Deleted : user_pref("CT1750559.DialogsAlignMode", "LTR");
Line Deleted : user_pref("CT1750559.DialogsGetterLastCheckTime", "Sat Jan 11 2014 19:00:51 GMT+0100");
Line Deleted : user_pref("CT1750559.DownloadReferralCookieData", "");
Line Deleted : user_pref("CT1750559.ENABALE_HISTORY", "{\"dataType\":\"string\",\"data\":\"true\"}");
Line Deleted : user_pref("CT1750559.ENABLE_RETURN_WEB_SEARCH_ON_THE_PAGE", "{\"dataType\":\"string\",\"data\":\"true\"}");
Line Deleted : user_pref("CT1750559.FirstServerDate", "7-12-2012");
Line Deleted : user_pref("CT1750559.FirstTime", "true");
Line Deleted : user_pref("CT1750559.FirstTimeFF3", "true");
Line Deleted : user_pref("CT1750559.GroupingServerCheckInterval", 1440);
Line Deleted : user_pref("CT1750559.GroupingServiceUrl", "hxxp://grouping.services.conduit.com/");
Line Deleted : user_pref("CT1750559.HasUserGlobalKeys", true);
Line Deleted : user_pref("CT1750559.Initialize", true);
Line Deleted : user_pref("CT1750559.InitializeCommonPrefs", true);
Line Deleted : user_pref("CT1750559.InstallationAndCookieDataSentCount", 3);
Line Deleted : user_pref("CT1750559.InstallationType", "Unknown");
Line Deleted : user_pref("CT1750559.InstalledDate", "Fri Dec 07 2012 15:34:02 GMT+0100");
Line Deleted : user_pref("CT1750559.IsGrouping", false);
Line Deleted : user_pref("CT1750559.IsInitSetupIni", true);
Line Deleted : user_pref("CT1750559.IsMulticommunity", false);
Line Deleted : user_pref("CT1750559.LanguagePackLastCheckTime", "Sat Jan 11 2014 19:00:51 GMT+0100");
Line Deleted : user_pref("CT1750559.LanguagePackReloadIntervalMM", 1440);
Line Deleted : user_pref("CT1750559.LanguagePackServiceUrl", "hxxp://translation.users.conduit.com/Translation.ashx");
Line Deleted : user_pref("CT1750559.LastLogin_3.16.0.100", "Sun Feb 10 2013 15:51:59 GMT+0100");
Line Deleted : user_pref("CT1750559.LastLogin_3.16.0.3", "Sun Dec 30 2012 18:39:05 GMT+0100");
Line Deleted : user_pref("CT1750559.LastLogin_3.18.0.7", "Sat Jan 11 2014 19:00:52 GMT+0100");
Line Deleted : user_pref("CT1750559.LatestVersion", "3.20.0.4");
Line Deleted : user_pref("CT1750559.Locale", "en-us");
Line Deleted : user_pref("CT1750559.LoginRevertSettingsEnabled", false);
Line Deleted : user_pref("CT1750559.MCDetectTooltipHeight", "83");
Line Deleted : user_pref("CT1750559.MCDetectTooltipUrl", "hxxp://@EB_INSTALL_LINK@/rank/tooltip/?version=1");
Line Deleted : user_pref("CT1750559.MCDetectTooltipWidth", "295");
Line Deleted : user_pref("CT1750559.MyStuffEnabledAtInstallation", true);
Line Deleted : user_pref("CT1750559.RevertSettingsEnabled", true);
Line Deleted : user_pref("CT1750559.SearchFromAddressBarIsInit", true);
Line Deleted : user_pref("CT1750559.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT1750559&SearchSource=2&q=");
Line Deleted : user_pref("CT1750559.SearchInNewTabEnabled", true);
Line Deleted : user_pref("CT1750559.SearchInNewTabIntervalMM", 1440);
Line Deleted : user_pref("CT1750559.SearchInNewTabLastCheckTime", "Sat Jan 11 2014 19:00:27 GMT+0100");
Line Deleted : user_pref("CT1750559.SearchInNewTabServiceUrl", "hxxp://newtab.conduit-hosting.com/newtab/?ctid=EB_TOOLBAR_ID&UM=UM_ID");
Line Deleted : user_pref("CT1750559.ServiceMapLastCheckTime", "Sat Jan 11 2014 19:00:41 GMT+0100");
Line Deleted : user_pref("CT1750559.SettingsLastCheckTime", "Sat Jan 11 2014 19:00:26 GMT+0100");
Line Deleted : user_pref("CT1750559.SettingsLastUpdate", "1389189633");
Line Deleted : user_pref("CT1750559.ToolbarShrinkedFromSetup", false);
Line Deleted : user_pref("CT1750559.TrusteLinkUrl", "hxxp://trust.conduit.com/CT1750559");
Line Deleted : user_pref("CT1750559.TrustedApiDomains", "conduit.com,conduit-hosting.com,conduit-services.com,client.conduit-storage.com,OurToolbar.com,CommunityToolbars.com,ForumToolbar.com,MyBlogToolbar.com,MyCity[...]
Line Deleted : user_pref("CT1750559.UserID", "UN93902472398643878");
Line Deleted : user_pref("CT1750559.addressBarTakeOverEnabledInHidden", "true");
Line Deleted : user_pref("CT1750559.alertChannelId", "31130");
Line Deleted : user_pref("CT1750559.appButtonDisablenull", "MA==");
Line Deleted : user_pref("CT1750559.autoDisableScopes", 0);
Line Deleted : user_pref("CT1750559.browser.search.defaultthis.engineName", true);
Line Deleted : user_pref("CT1750559.defaultSearch", "true");
Line Deleted : user_pref("CT1750559.embeddedsData", "[{\"appId\":\"128520273115419467\",\"apiPermissions\":{\"crossDomainAjax\":true,\"getMainFrameTitle\":true,\"getMainFrameUrl\":true,\"getSearchTerm\":true,\"insta[...]
Line Deleted : user_pref("CT1750559.enableAlerts", "always");
Line Deleted : user_pref("CT1750559.enableSearchFromAddressBar", "true");
Line Deleted : user_pref("CT1750559.firstTimeDialogOpened", "true");
Line Deleted : user_pref("CT1750559.fixPageNotFoundError", "true");
Line Deleted : user_pref("CT1750559.fixPageNotFoundErrorInHidden", "true");
Line Deleted : user_pref("CT1750559.fixUrls", true);
Line Deleted : user_pref("CT1750559.generalConfigFromLogin", "{\"ApiMaxAlerts\":\"12\",\"SocialDomains\":\"social.conduit.com;apps.conduit.com;services.apps.conduit.com\",\"AppsDetectionUrlPattern\":\"hxxp://appdown[...]
Line Deleted : user_pref("CT1750559.homepageProtectorEnableByLogin", true);
Line Deleted : user_pref("CT1750559.initDone", true);
Line Deleted : user_pref("CT1750559.installId", "ct1750559_bs_player.exe");
Line Deleted : user_pref("CT1750559.installType", "ConduitNSISIntegration");
Line Deleted : user_pref("CT1750559.isCheckedStartAsHidden", true);
Line Deleted : user_pref("CT1750559.isEnableAllDialogs", "{\"dataType\":\"string\",\"data\":\"true\"}");
Line Deleted : user_pref("CT1750559.isFirstTimeToolbarLoading", "false");
Line Deleted : user_pref("CT1750559.isNewTabEnabled", true);
Line Deleted : user_pref("CT1750559.isPerformedSmartBarTransition", "true");
Line Deleted : user_pref("CT1750559.isToolbarShrinked", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT1750559.keyword", true);
Line Deleted : user_pref("CT1750559.migrateAppsAndComponents", true);
Line Deleted : user_pref("CT1750559.myStuffEnabled", true);
Line Deleted : user_pref("CT1750559.myStuffPublihserMinWidth", 400);
Line Deleted : user_pref("CT1750559.myStuffSearchUrl", "hxxp://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOrigin=29&ctid=EB_TOOLBAR_ID&octid=EB_ORIGINAL_CTID");
Line Deleted : user_pref("CT1750559.myStuffServiceIntervalMM", 1440);
Line Deleted : user_pref("CT1750559.myStuffServiceUrl", "hxxp://mystuff.conduit-services.com/MyStuffService.ashx?ComponentId=EB_MY_STUFF_INSTANCE_GUID&lut=EB_MY_STUFF_LUT");
Line Deleted : user_pref("CT1750559.navigationAliasesJson", "{\"EB_MAIN_FRAME_URL\":\"hxxp%3A%2F%2Fwww.porse.cz%2FBs_player_ke_stazeni_zdarma%2Fdownload.html\",\"EB_MAIN_FRAME_TITLE\":\"Bs%20player%20ke%20sta%C5%BEe[...]
Line Deleted : user_pref("CT1750559.openThankYouPage", "false");
Line Deleted : user_pref("CT1750559.openUninstallPage", "false");
Line Deleted : user_pref("CT1750559.revertSettingsEnabled", true);
Line Deleted : user_pref("CT1750559.search.searchAppId", "128520273115419467");
Line Deleted : user_pref("CT1750559.search.searchCount", "0");
Line Deleted : user_pref("CT1750559.searchInNewTabEnabledInHidden", "true");
Line Deleted : user_pref("CT1750559.searchProtectorDialogDelayInSec", 10);
Line Deleted : user_pref("CT1750559.searchProtectorEnableByLogin", true);
Line Deleted : user_pref("CT1750559.selectToSearchBoxEnabled", "{\"dataType\":\"string\",\"data\":\"true\"}");
Line Deleted : user_pref("CT1750559.serviceLayer_service_login_isFirstLoginInvoked", "{\"dataType\":\"boolean\",\"data\":\"true\"}");
Line Deleted : user_pref("CT1750559.serviceLayer_service_login_loginCount", "{\"dataType\":\"number\",\"data\":\"4\"}");
Line Deleted : user_pref("CT1750559.serviceLayer_service_toolbarGrouping_activeCTID", "{\"dataType\":\"string\",\"data\":\"CT1750559\"}");
Line Deleted : user_pref("CT1750559.serviceLayer_service_toolbarGrouping_activeDownloadUrl", "{\"dataType\":\"string\",\"data\":\"hxxp://BSPlayer.OurToolbar.com//xpi\"}");
Line Deleted : user_pref("CT1750559.serviceLayer_service_toolbarGrouping_activeToolbarName", "{\"dataType\":\"string\",\"data\":\"BS Player\"}");
Line Deleted : user_pref("CT1750559.serviceLayer_service_toolbarGrouping_invoked", "{\"dataType\":\"string\",\"data\":\"true\"}");
Line Deleted : user_pref("CT1750559.serviceLayer_services_appTrackingFirstTime_lastUpdate", "1350809052417");
Line Deleted : user_pref("CT1750559.serviceLayer_services_appsMetadata_lastUpdate", "1350809052021");
Line Deleted : user_pref("CT1750559.serviceLayer_services_gottenAppsContextMenu_lastUpdate", "1350809059931");
Line Deleted : user_pref("CT1750559.serviceLayer_services_login_10.10.27.6_lastUpdate", "1350818290661");
Line Deleted : user_pref("CT1750559.serviceLayer_services_login_10.13.1.89_lastUpdate", "1352725023765");
Line Deleted : user_pref("CT1750559.serviceLayer_services_login_10.13.40.15_lastUpdate", "1354723896919");
Line Deleted : user_pref("CT1750559.serviceLayer_services_otherAppsContextMenu_lastUpdate", "1350809060113");
Line Deleted : user_pref("CT1750559.serviceLayer_services_searchAPI_lastUpdate", "1350809046514");
Line Deleted : user_pref("CT1750559.serviceLayer_services_serviceMap_lastUpdate", "1354723893167");
Line Deleted : user_pref("CT1750559.serviceLayer_services_toolbarContextMenu_lastUpdate", "1350809059745");
Line Deleted : user_pref("CT1750559.serviceLayer_services_toolbarSettings_lastUpdate", "1354723894039");
Line Deleted : user_pref("CT1750559.serviceLayer_services_translation_lastUpdate", "1354723896530");
Line Deleted : user_pref("CT1750559.settingsINI", true);
Line Deleted : user_pref("CT1750559.shouldFirstTimeDialog", "false");
Line Deleted : user_pref("CT1750559.smartbar.CTID", "CT1750559");
Line Deleted : user_pref("CT1750559.smartbar.Uninstall", "0");
Line Deleted : user_pref("CT1750559.smartbar.homepage", true);
Line Deleted : user_pref("CT1750559.smartbar.isHidden", true);
Line Deleted : user_pref("CT1750559.smartbar.toolbarName", "BS Player ");
Line Deleted : user_pref("CT1750559.startPage", "userChanged");
Line Deleted : user_pref("CT1750559.testingCtid", "");
Line Deleted : user_pref("CT1750559.toolbarAppMetaDataLastCheckTime", "Sat Jan 11 2014 19:00:51 GMT+0100");
Line Deleted : user_pref("CT1750559.toolbarBornServerTime", "21-10-2012");
Line Deleted : user_pref("CT1750559.toolbarCurrentServerTime", "5-12-2012");
Line Deleted : user_pref("CT1750559.twitter_v1.8.0_twitter_app_open_t_f", "ZmFsc2U=");
Line Deleted : user_pref("CT1750559.usagesFlag", 2);
Line Deleted : user_pref("CT1750559_Firefox.csv", "[{\"from\":\"Abs Layer\",\"action\":\"loading toolbar\",\"time\":1354727131555,\"isWithState\":\"\",\"timeFromStart\":0,\"timeFromPrev\":0}]");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://Settings.toolbar.search.conduit.com/root/CT1750559/CT1750559", "\"cc83d5f7ca1dc9383ad514bcd0e812423\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-services.com/?ctid=CT1750559", "\"1357730213\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.16.0.100", "\"0343677cfb1cd1:0\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.16.0.3", "\"0343677cfb1cd1:0\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.18.0.7", "\"9f8d2729abc2ce1:0\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/Toolbar/?ownerId=CT1750559", "\"52c3f1538cb4af4ada257fcbc6b15d49\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-services.com/?locale=en-us", "\"799ed4eda873170bfa50e333944da883\"");
Line Deleted : user_pref("CommunityToolbar.ToolbarsList", "CT1750559");
Line Deleted : user_pref("CommunityToolbar.ToolbarsList4", "CT1750559");
Line Deleted : user_pref("CommunityToolbar.globalUserId", "9e4dd21f-5301-482b-a53e-b6ca2ef5a3e9");
Line Deleted : user_pref("Smartbar.ConduitHomepagesList", "");
Line Deleted : user_pref("Smartbar.ConduitSearchEngineList", "");
Line Deleted : user_pref("Smartbar.ConduitSearchUrlList", "");
Line Deleted : user_pref("Smartbar.SearchFromAddressBarSavedUrl", "hxxp://mystart.incredibar.com/mb139/?loc=IB_DS&a=6R8umjzt38&&i=26&search=");
Line Deleted : user_pref("Smartbar.keywordURLSelectedCTID", "CT1750559");
Line Deleted : user_pref("browser.search.defaultenginename", "AVG Secure Search");
Line Deleted : user_pref("browser.startup.homepage", "hxxp://search.softonic.com/INF00176/tb_v1?SearchSource=13&cc=&mi=30cc18d70000000000000015f2059df9&toi=16081");
Line Deleted : user_pref("extensions.Softonic.autoRvrt", "false");
Line Deleted : user_pref("extensions.Softonic.dfltSrch", true);
Line Deleted : user_pref("extensions.Softonic.dnsErr", true);
Line Deleted : user_pref("extensions.Softonic.hmpg", true);
Line Deleted : user_pref("extensions.Softonic.hmpgUrl", "hxxp://search.softonic.com/INF00176/tb_v1?SearchSource=13&cc=&mi=30cc18d70000000000000015f2059df9&toi=16081");
Line Deleted : user_pref("extensions.Softonic.hpOld0", "hxxp://www.seznam.cz/");
Line Deleted : user_pref("extensions.Softonic.kw_url", "hxxp://search.softonic.com/INF00176/tb_v1?SearchSource=2&cc=&mi=30cc18d70000000000000015f2059df9&toi=16081&q=");
Line Deleted : user_pref("extensions.Softonic.newTab", true);
Line Deleted : user_pref("extensions.Softonic.newTabUrl", "hxxp://search.softonic.com/INF00176/tb_v1/?SearchSource=15&cc=&mi=30cc18d70000000000000015f2059df9&toi=16081");
Line Deleted : user_pref("extensions.Softonic.rvrt", "false");
Line Deleted : user_pref("extensions.Softonic.srchPrvdr", "Search the web (Softonic)");
Line Deleted : user_pref("extensions.incredibar.RadioMyStations", "[{\"id\":\"1069\",\"name\":\"ORS Romántica en espańol\",\"url\":\"hxxp://www.orsradio.com/oldies56k.asx\",\"stre ... d\":\"1213\",\"[...]
Line Deleted : user_pref("extensions.incredibar.actvtyRptTime", "1362409805070");
Line Deleted : user_pref("extensions.incredibar.admin", false);
Line Deleted : user_pref("extensions.incredibar.afd-1a2d3abe806f9951da73a33d41fcfc9c_wid_to", "1; expires=Mon, 04 Mar 2013 18:10:06 GMT");
Line Deleted : user_pref("extensions.incredibar.aflt", "orgnl");
Line Deleted : user_pref("extensions.incredibar.afterInstallRpt", "sent");
Line Deleted : user_pref("extensions.incredibar.cntry", "EU");
Line Deleted : user_pref("extensions.incredibar.dfltLng", "EN");
Line Deleted : user_pref("extensions.incredibar.dfltSrch", false);
Line Deleted : user_pref("extensions.incredibar.dfltlng", "EN");
Line Deleted : user_pref("extensions.incredibar.dfltsrch", "false");
Line Deleted : user_pref("extensions.incredibar.did", "10650");
Line Deleted : user_pref("extensions.incredibar.envrmnt", "production");
Line Deleted : user_pref("extensions.incredibar.excTlbr", false);
Line Deleted : user_pref("extensions.incredibar.hdrMd5", "0D813AF966C93DF10AD70DCD76292C47");
Line Deleted : user_pref("extensions.incredibar.hmpg", false);
Line Deleted : user_pref("extensions.incredibar.hrdid", "30cc18d70000000000000015f2059df9");
Line Deleted : user_pref("extensions.incredibar.id", "30cc18d70000000000000015f2059df9");
Line Deleted : user_pref("extensions.incredibar.installerproductid", "26");
Line Deleted : user_pref("extensions.incredibar.instlDay", "15489");
Line Deleted : user_pref("extensions.incredibar.instlRef", "");
Line Deleted : user_pref("extensions.incredibar.instlday", "15489");
Line Deleted : user_pref("extensions.incredibar.instlref", "");
Line Deleted : user_pref("extensions.incredibar.isDcmntCmplt", false);
Line Deleted : user_pref("extensions.incredibar.isdcmntcmplt", true);
Line Deleted : user_pref("extensions.incredibar.keywordurl", "");
Line Deleted : user_pref("extensions.incredibar.lastVrsnTs", "1.5.11.149:56:41");
Line Deleted : user_pref("extensions.incredibar.mntrvrsn", "1.2.0");
Line Deleted : user_pref("extensions.incredibar.newTab", false);
Line Deleted : user_pref("extensions.incredibar.newtab", "false");
Line Deleted : user_pref("extensions.incredibar.newtaburl", "");
Line Deleted : user_pref("extensions.incredibar.noFFXTlbr", false);
Line Deleted : user_pref("extensions.incredibar.ppd", "20%5F5");
Line Deleted : user_pref("extensions.incredibar.prdct", "incredibar");
Line Deleted : user_pref("extensions.incredibar.productid", "26");
Line Deleted : user_pref("extensions.incredibar.prtnrId", "Incredibar");
Line Deleted : user_pref("extensions.incredibar.prtnrid", "Incredibar");
Line Deleted : user_pref("extensions.incredibar.sg", "none");
Line Deleted : user_pref("extensions.incredibar.smplGrp", "none");
Line Deleted : user_pref("extensions.incredibar.smplgrp", "none");
Line Deleted : user_pref("extensions.incredibar.srch", "");
Line Deleted : user_pref("extensions.incredibar.srchprvdr", "");
Line Deleted : user_pref("extensions.incredibar.tlbrId", "base");
Line Deleted : user_pref("extensions.incredibar.tlbrSrchUrl", "hxxp://mystart.Incredibar.com/?a=6R8umjzt38&loc=IB_TB&i=26&search=");
Line Deleted : user_pref("extensions.incredibar.tlbrid", "base");
Line Deleted : user_pref("extensions.incredibar.tlbrsrchurl", "hxxp://mystart.Incredibar.com/?a=6R8umjzt38&loc=IB_TB&i=26&search=");
Line Deleted : user_pref("extensions.incredibar.upn2", "6R8umjzt38");
Line Deleted : user_pref("extensions.incredibar.upn2n", "92824442241623822");
Line Deleted : user_pref("extensions.incredibar.vrsn", "1.5.11.14");
Line Deleted : user_pref("extensions.incredibar.vrsnTs", "1.5.11.149:56:41");
Line Deleted : user_pref("extensions.incredibar.vrsni", "1.5.11.14");
Line Deleted : user_pref("extensions.incredibar.vrsnts", "1.5.11.149:56:41");
Line Deleted : user_pref("extensions.incredibar_i.aflt", "orgnl");
Line Deleted : user_pref("extensions.incredibar_i.dfltLng", "");
Line Deleted : user_pref("extensions.incredibar_i.did", "10650");
Line Deleted : user_pref("extensions.incredibar_i.excTlbr", false);
Line Deleted : user_pref("extensions.incredibar_i.id", "30cc18d70000000000000015f2059df9");
Line Deleted : user_pref("extensions.incredibar_i.installerproductid", "26");
Line Deleted : user_pref("extensions.incredibar_i.instlDay", "15489");
Line Deleted : user_pref("extensions.incredibar_i.instlRef", "");
Line Deleted : user_pref("extensions.incredibar_i.ms_url_id", "");
Line Deleted : user_pref("extensions.incredibar_i.newTab", false);
Line Deleted : user_pref("extensions.incredibar_i.ppd", "20%5F5");
Line Deleted : user_pref("extensions.incredibar_i.prdct", "incredibar");
Line Deleted : user_pref("extensions.incredibar_i.productid", "26");
Line Deleted : user_pref("extensions.incredibar_i.prtnrId", "Incredibar");
Line Deleted : user_pref("extensions.incredibar_i.smplGrp", "none");
Line Deleted : user_pref("extensions.incredibar_i.tlbrId", "base");
Line Deleted : user_pref("extensions.incredibar_i.tlbrSrchUrl", "hxxp://mystart.Incredibar.com/?a=6R8umjzt38&loc=IB_TB&i=26&search=");
Line Deleted : user_pref("extensions.incredibar_i.upn2", "6R8umjzt38");
Line Deleted : user_pref("extensions.incredibar_i.upn2n", "92824442241623822");
Line Deleted : user_pref("extensions.incredibar_i.vrsn", "1.5.11.14");
Line Deleted : user_pref("extensions.incredibar_i.vrsnTs", "1.5.11.149:56:41");
Line Deleted : user_pref("extensions.incredibar_i.vrsni", "1.5.11.14");
Line Deleted : user_pref("smartbar.conduitSearchAddressUrlList", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT1750559&SearchSource=2&q=");
Line Deleted : user_pref("smartbar.originalSearchAddressUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT1750559&SearchSource=2&q=");
Line Deleted : user_pref("sweetim.toolbar.previous.browser.search.defaultenginename", "");
Line Deleted : user_pref("sweetim.toolbar.previous.browser.search.defaulturl", "");
Line Deleted : user_pref("sweetim.toolbar.previous.browser.search.selectedEngine", "Google");
Line Deleted : user_pref("sweetim.toolbar.previous.browser.startup.homepage", "hxxp://www.seznam.cz/");
Line Deleted : user_pref("sweetim.toolbar.urls.homepage", "hxxp://home.sweetim.com/?crg=4.0005002");
Line Deleted : user_pref("{336D0C35-8A85-403a-B9D2-65C292C39087}.ScriptData_WSG_whiteList", "{\"search.babylon.com\":\"q\",\"search.sweetim.com\":\"q\",\"search.imesh.net\":\"q\",\"www.search-results.com\":\"q\",\"h[...]
Line Deleted : user_pref("browser.search.selectedEngine", "Search the web (Softonic)");
Line Deleted : user_pref("browser.search.order.1", "Search the web (Softonic)");
Line Deleted : user_pref("keyword.URL", "hxxp://search.softonic.com/INF00176/tb_v1?SearchSource=2&cc=&mi=30cc18d70000000000000015f2059df9&toi=16081&q=");
-\\ Google Chrome v33.0.1750.146
[ File : C:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\User Data\Default\preferences ]
Deleted : homepage
*************************
AdwCleaner[R0].txt - [27668 octets] - [08/03/2014 20:22:59]
AdwCleaner[S0].txt - [28069 octets] - [08/03/2014 20:51:48]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [28130 octets] ##########
Vůbec tomu nerozumím
Po scanu :
# AdwCleaner v3.020 - Report created 08/03/2014 at 20:22:59
# Updated 27/02/2014 by Xplode
# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)
# Username : Administrator - XXX
# Running from : C:\Documents and Settings\Administrator\Dokumenty\Downloads\adwcleaner.exe
# Option : Scan
***** [ Services ] *****
***** [ Files / Folders ] *****
File Found : C:\Documents and Settings\Administrator\Data aplikací\Mozilla\Firefox\Profiles\nct405ky.default\user.js
Folder Found C:\Documents and Settings\Administrator\Data aplikací\newnext.me
Folder Found C:\Documents and Settings\Administrator\Data aplikací\OpenCandy
Folder Found C:\Documents and Settings\Administrator\Data aplikací\registry mechanic
Folder Found C:\Documents and Settings\Administrator\Dokumenty\Mobogenie
Folder Found C:\Documents and Settings\Administrator\Local Settings\Data aplikací\AlawarWrapper
Folder Found C:\Documents and Settings\Administrator\Local Settings\Data aplikací\Conduit
Folder Found C:\Documents and Settings\Administrator\Local Settings\Data aplikací\genienext
Folder Found C:\Documents and Settings\Administrator\Local Settings\Data aplikací\Mobogenie
Folder Found C:\Documents and Settings\Administrator\Nabídka Start\Programy\Mobogenie
Folder Found C:\Documents and Settings\All Users\Data aplikací\AlawarWrapper
Folder Found C:\Documents and Settings\All Users\Data aplikací\AVG Security Toolbar
Folder Found C:\Documents and Settings\All Users\Data aplikací\Premium
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Found : HKCU\Software\AppDataLow\Software\Conduit
Key Found : HKCU\Software\Conduit
Key Found : HKCU\Software\ConduitSearchScopes
Key Found : HKCU\Software\IM
Key Found : HKCU\Software\ImInstaller
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AD22EBAF-0D18-4FC7-90CC-5EA0ABBE9EB8}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{CFF4DB9B-135F-47C0-9269-B4C6572FD61A}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{32099AAC-C132-4136-9E9A-4E364A424E17}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EEE6C35C-6118-11DC-9C72-001320C79847}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{32099AAC-C132-4136-9E9A-4E364A424E17}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35C-6118-11DC-9C72-001320C79847}
Key Found : HKCU\Software\SmartBar
Key Found : HKLM\SOFTWARE\Classes\AppID\{608D3067-77E8-463D-9084-908966806826}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Found : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Found : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Found : HKLM\SOFTWARE\Classes\Toolbar.CT1750559
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Key Found : HKLM\Software\Conduit
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd
Key Found : HKLM\Software\Web Assistant
Value Found : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{32099AAC-C132-4136-9E9A-4E364A424E17}]
Value Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [NextLive]
Value Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [mobilegeni daemon]
Value Found : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [{336D0C35-8A85-403A-B9D2-65C292C39087}]
Value Found : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List [C:\Program Files\SweetIM\Communicator\SweetPacksUpdateManager.exe]
***** [ Browsers ] *****
-\\ Internet Explorer v8.0.6001.18702
Setting Found : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page] - hxxp://search.softonic.com/INF00176/tb_v1?SearchSource=10&cc=&mi=30cc18d70000000000000015f2059df9&toi=16081
Setting Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page] - hxxp://home.sweetim.com/?crg=4.0005002
-\\ Mozilla Firefox v
[ File : C:\Documents and Settings\Administrator\Data aplikací\Mozilla\Firefox\Profiles\nct405ky.default\prefs.js ]
Line Found : user_pref("CT1750559..clientLogIsEnabled", false);
Line Found : user_pref("CT1750559..clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.asmx/ReportDiagnosticsEvent");
Line Found : user_pref("CT1750559..uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/RegisterToolbarUninstallation");
Line Found : user_pref("CT1750559.1000082.isDisplayHidden", "true");
Line Found : user_pref("CT1750559.1000082.isPlayDisplay", "true");
Line Found : user_pref("CT1750559.1000082.state", "{\"state\":\"stopped\",\"text\":\"1.FM Dance\",\"description\":\"1.FM Dance\",\"url\":\"mms://dance.1.fm/energydance128k?MSWMExt=.asf\"}");
Line Found : user_pref("CT1750559.1000234.TWC_TMP_city", "CESKE BUDEJOVICE");
Line Found : user_pref("CT1750559.1000234.TWC_TMP_country", "CZ");
Line Found : user_pref("CT1750559.1000234.TWC_locId", "EZXX0323");
Line Found : user_pref("CT1750559.1000234.TWC_location", "Ceske Budejovice, Czech Republic");
Line Found : user_pref("CT1750559.1000234.TWC_region", "OT");
Line Found : user_pref("CT1750559.1000234.TWC_temp_dis", "c");
Line Found : user_pref("CT1750559.1000234.TWC_wind_dis", "kmh");
Line Found : user_pref("CT1750559.1000234.weatherData", "{\"icon\":\"28.png\",\"temperature\":\"12°C\",\"temperatureClear\":\"12°C\",\"highTemperature\":\"16°C\",\"lowTemperature\":\"7°C\",\"feelsLike\":\"12°[...]
Line Found : user_pref("CT1750559.ALLOW_SHOWING_HIDDEN_TOOLBAR", false);
Line Found : user_pref("CT1750559.AboutPrivacyUrl", "hxxp://www.codefuel.com/privacy/Default.aspx");
Line Found : user_pref("CT1750559.BrowserCompStateIsOpen_129502713039250930", true);
Line Found : user_pref("CT1750559.BrowserCompStateIsOpen_129544988592463877", true);
Line Found : user_pref("CT1750559.BrowserCompStateIsOpen_130040878929610729", true);
Line Found : user_pref("CT1750559.BrowserCompStateIsOpen_130050523948892746", true);
Line Found : user_pref("CT1750559.BrowserCompStateIsOpen_130052166684768527", true);
Line Found : user_pref("CT1750559.CurrentServerDate", "11-1-2014");
Line Found : user_pref("CT1750559.DialogsAlignMode", "LTR");
Line Found : user_pref("CT1750559.DialogsGetterLastCheckTime", "Sat Jan 11 2014 19:00:51 GMT+0100");
Line Found : user_pref("CT1750559.DownloadReferralCookieData", "");
Line Found : user_pref("CT1750559.ENABALE_HISTORY", "{\"dataType\":\"string\",\"data\":\"true\"}");
Line Found : user_pref("CT1750559.ENABLE_RETURN_WEB_SEARCH_ON_THE_PAGE", "{\"dataType\":\"string\",\"data\":\"true\"}");
Line Found : user_pref("CT1750559.FirstServerDate", "7-12-2012");
Line Found : user_pref("CT1750559.FirstTime", "true");
Line Found : user_pref("CT1750559.FirstTimeFF3", "true");
Line Found : user_pref("CT1750559.GroupingServerCheckInterval", 1440);
Line Found : user_pref("CT1750559.GroupingServiceUrl", "hxxp://grouping.services.conduit.com/");
Line Found : user_pref("CT1750559.HasUserGlobalKeys", true);
Line Found : user_pref("CT1750559.Initialize", true);
Line Found : user_pref("CT1750559.InitializeCommonPrefs", true);
Line Found : user_pref("CT1750559.InstallationAndCookieDataSentCount", 3);
Line Found : user_pref("CT1750559.InstallationType", "Unknown");
Line Found : user_pref("CT1750559.InstalledDate", "Fri Dec 07 2012 15:34:02 GMT+0100");
Line Found : user_pref("CT1750559.IsGrouping", false);
Line Found : user_pref("CT1750559.IsInitSetupIni", true);
Line Found : user_pref("CT1750559.IsMulticommunity", false);
Line Found : user_pref("CT1750559.LanguagePackLastCheckTime", "Sat Jan 11 2014 19:00:51 GMT+0100");
Line Found : user_pref("CT1750559.LanguagePackReloadIntervalMM", 1440);
Line Found : user_pref("CT1750559.LanguagePackServiceUrl", "hxxp://translation.users.conduit.com/Translation.ashx");
Line Found : user_pref("CT1750559.LastLogin_3.16.0.100", "Sun Feb 10 2013 15:51:59 GMT+0100");
Line Found : user_pref("CT1750559.LastLogin_3.16.0.3", "Sun Dec 30 2012 18:39:05 GMT+0100");
Line Found : user_pref("CT1750559.LastLogin_3.18.0.7", "Sat Jan 11 2014 19:00:52 GMT+0100");
Line Found : user_pref("CT1750559.LatestVersion", "3.20.0.4");
Line Found : user_pref("CT1750559.Locale", "en-us");
Line Found : user_pref("CT1750559.LoginRevertSettingsEnabled", false);
Line Found : user_pref("CT1750559.MCDetectTooltipHeight", "83");
Line Found : user_pref("CT1750559.MCDetectTooltipUrl", "hxxp://@EB_INSTALL_LINK@/rank/tooltip/?version=1");
Line Found : user_pref("CT1750559.MCDetectTooltipWidth", "295");
Line Found : user_pref("CT1750559.MyStuffEnabledAtInstallation", true);
Line Found : user_pref("CT1750559.RevertSettingsEnabled", true);
Line Found : user_pref("CT1750559.SearchFromAddressBarIsInit", true);
Line Found : user_pref("CT1750559.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT1750559&SearchSource=2&q=");
Line Found : user_pref("CT1750559.SearchInNewTabEnabled", true);
Line Found : user_pref("CT1750559.SearchInNewTabIntervalMM", 1440);
Line Found : user_pref("CT1750559.SearchInNewTabLastCheckTime", "Sat Jan 11 2014 19:00:27 GMT+0100");
Line Found : user_pref("CT1750559.SearchInNewTabServiceUrl", "hxxp://newtab.conduit-hosting.com/newtab/?ctid=EB_TOOLBAR_ID&UM=UM_ID");
Line Found : user_pref("CT1750559.ServiceMapLastCheckTime", "Sat Jan 11 2014 19:00:41 GMT+0100");
Line Found : user_pref("CT1750559.SettingsLastCheckTime", "Sat Jan 11 2014 19:00:26 GMT+0100");
Line Found : user_pref("CT1750559.SettingsLastUpdate", "1389189633");
Line Found : user_pref("CT1750559.ToolbarShrinkedFromSetup", false);
Line Found : user_pref("CT1750559.TrusteLinkUrl", "hxxp://trust.conduit.com/CT1750559");
Line Found : user_pref("CT1750559.TrustedApiDomains", "conduit.com,conduit-hosting.com,conduit-services.com,client.conduit-storage.com,OurToolbar.com,CommunityToolbars.com,ForumToolbar.com,MyBlogToolbar.com,MyCity[...]
Line Found : user_pref("CT1750559.UserID", "UN93902472398643878");
Line Found : user_pref("CT1750559.addressBarTakeOverEnabledInHidden", "true");
Line Found : user_pref("CT1750559.alertChannelId", "31130");
Line Found : user_pref("CT1750559.appButtonDisablenull", "MA==");
Line Found : user_pref("CT1750559.autoDisableScopes", 0);
Line Found : user_pref("CT1750559.browser.search.defaultthis.engineName", true);
Line Found : user_pref("CT1750559.defaultSearch", "true");
Line Found : user_pref("CT1750559.embeddedsData", "[{\"appId\":\"128520273115419467\",\"apiPermissions\":{\"crossDomainAjax\":true,\"getMainFrameTitle\":true,\"getMainFrameUrl\":true,\"getSearchTerm\":true,\"insta[...]
Line Found : user_pref("CT1750559.enableAlerts", "always");
Line Found : user_pref("CT1750559.enableSearchFromAddressBar", "true");
Line Found : user_pref("CT1750559.firstTimeDialogOpened", "true");
Line Found : user_pref("CT1750559.fixPageNotFoundError", "true");
Line Found : user_pref("CT1750559.fixPageNotFoundErrorInHidden", "true");
Line Found : user_pref("CT1750559.fixUrls", true);
Line Found : user_pref("CT1750559.generalConfigFromLogin", "{\"ApiMaxAlerts\":\"12\",\"SocialDomains\":\"social.conduit.com;apps.conduit.com;services.apps.conduit.com\",\"AppsDetectionUrlPattern\":\"hxxp://appdown[...]
Line Found : user_pref("CT1750559.homepageProtectorEnableByLogin", true);
Line Found : user_pref("CT1750559.initDone", true);
Line Found : user_pref("CT1750559.installId", "ct1750559_bs_player.exe");
Line Found : user_pref("CT1750559.installType", "ConduitNSISIntegration");
Line Found : user_pref("CT1750559.isCheckedStartAsHidden", true);
Line Found : user_pref("CT1750559.isEnableAllDialogs", "{\"dataType\":\"string\",\"data\":\"true\"}");
Line Found : user_pref("CT1750559.isFirstTimeToolbarLoading", "false");
Line Found : user_pref("CT1750559.isNewTabEnabled", true);
Line Found : user_pref("CT1750559.isPerformedSmartBarTransition", "true");
Line Found : user_pref("CT1750559.isToolbarShrinked", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Found : user_pref("CT1750559.keyword", true);
Line Found : user_pref("CT1750559.migrateAppsAndComponents", true);
Line Found : user_pref("CT1750559.myStuffEnabled", true);
Line Found : user_pref("CT1750559.myStuffPublihserMinWidth", 400);
Line Found : user_pref("CT1750559.myStuffSearchUrl", "hxxp://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOrigin=29&ctid=EB_TOOLBAR_ID&octid=EB_ORIGINAL_CTID");
Line Found : user_pref("CT1750559.myStuffServiceIntervalMM", 1440);
Line Found : user_pref("CT1750559.myStuffServiceUrl", "hxxp://mystuff.conduit-services.com/MyStuffService.ashx?ComponentId=EB_MY_STUFF_INSTANCE_GUID&lut=EB_MY_STUFF_LUT");
Line Found : user_pref("CT1750559.navigationAliasesJson", "{\"EB_MAIN_FRAME_URL\":\"hxxp%3A%2F%2Fwww.porse.cz%2FBs_player_ke_stazeni_zdarma%2Fdownload.html\",\"EB_MAIN_FRAME_TITLE\":\"Bs%20player%20ke%20sta%C5%BEe[...]
Line Found : user_pref("CT1750559.openThankYouPage", "false");
Line Found : user_pref("CT1750559.openUninstallPage", "false");
Line Found : user_pref("CT1750559.revertSettingsEnabled", true);
Line Found : user_pref("CT1750559.search.searchAppId", "128520273115419467");
Line Found : user_pref("CT1750559.search.searchCount", "0");
Line Found : user_pref("CT1750559.searchInNewTabEnabledInHidden", "true");
Line Found : user_pref("CT1750559.searchProtectorDialogDelayInSec", 10);
Line Found : user_pref("CT1750559.searchProtectorEnableByLogin", true);
Line Found : user_pref("CT1750559.selectToSearchBoxEnabled", "{\"dataType\":\"string\",\"data\":\"true\"}");
Line Found : user_pref("CT1750559.serviceLayer_service_login_isFirstLoginInvoked", "{\"dataType\":\"boolean\",\"data\":\"true\"}");
Line Found : user_pref("CT1750559.serviceLayer_service_login_loginCount", "{\"dataType\":\"number\",\"data\":\"4\"}");
Line Found : user_pref("CT1750559.serviceLayer_service_toolbarGrouping_activeCTID", "{\"dataType\":\"string\",\"data\":\"CT1750559\"}");
Line Found : user_pref("CT1750559.serviceLayer_service_toolbarGrouping_activeDownloadUrl", "{\"dataType\":\"string\",\"data\":\"hxxp://BSPlayer.OurToolbar.com//xpi\"}");
Line Found : user_pref("CT1750559.serviceLayer_service_toolbarGrouping_activeToolbarName", "{\"dataType\":\"string\",\"data\":\"BS Player\"}");
Line Found : user_pref("CT1750559.serviceLayer_service_toolbarGrouping_invoked", "{\"dataType\":\"string\",\"data\":\"true\"}");
Line Found : user_pref("CT1750559.serviceLayer_services_appTrackingFirstTime_lastUpdate", "1350809052417");
Line Found : user_pref("CT1750559.serviceLayer_services_appsMetadata_lastUpdate", "1350809052021");
Line Found : user_pref("CT1750559.serviceLayer_services_gottenAppsContextMenu_lastUpdate", "1350809059931");
Line Found : user_pref("CT1750559.serviceLayer_services_login_10.10.27.6_lastUpdate", "1350818290661");
Line Found : user_pref("CT1750559.serviceLayer_services_login_10.13.1.89_lastUpdate", "1352725023765");
Line Found : user_pref("CT1750559.serviceLayer_services_login_10.13.40.15_lastUpdate", "1354723896919");
Line Found : user_pref("CT1750559.serviceLayer_services_otherAppsContextMenu_lastUpdate", "1350809060113");
Line Found : user_pref("CT1750559.serviceLayer_services_searchAPI_lastUpdate", "1350809046514");
Line Found : user_pref("CT1750559.serviceLayer_services_serviceMap_lastUpdate", "1354723893167");
Line Found : user_pref("CT1750559.serviceLayer_services_toolbarContextMenu_lastUpdate", "1350809059745");
Line Found : user_pref("CT1750559.serviceLayer_services_toolbarSettings_lastUpdate", "1354723894039");
Line Found : user_pref("CT1750559.serviceLayer_services_translation_lastUpdate", "1354723896530");
Line Found : user_pref("CT1750559.settingsINI", true);
Line Found : user_pref("CT1750559.shouldFirstTimeDialog", "false");
Line Found : user_pref("CT1750559.smartbar.CTID", "CT1750559");
Line Found : user_pref("CT1750559.smartbar.Uninstall", "0");
Line Found : user_pref("CT1750559.smartbar.homepage", true);
Line Found : user_pref("CT1750559.smartbar.isHidden", true);
Line Found : user_pref("CT1750559.smartbar.toolbarName", "BS Player ");
Line Found : user_pref("CT1750559.startPage", "userChanged");
Line Found : user_pref("CT1750559.testingCtid", "");
Line Found : user_pref("CT1750559.toolbarAppMetaDataLastCheckTime", "Sat Jan 11 2014 19:00:51 GMT+0100");
Line Found : user_pref("CT1750559.toolbarBornServerTime", "21-10-2012");
Line Found : user_pref("CT1750559.toolbarCurrentServerTime", "5-12-2012");
Line Found : user_pref("CT1750559.twitter_v1.8.0_twitter_app_open_t_f", "ZmFsc2U=");
Line Found : user_pref("CT1750559.usagesFlag", 2);
Line Found : user_pref("CT1750559_Firefox.csv", "[{\"from\":\"Abs Layer\",\"action\":\"loading toolbar\",\"time\":1354727131555,\"isWithState\":\"\",\"timeFromStart\":0,\"timeFromPrev\":0}]");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://Settings.toolbar.search.conduit.com/root/CT1750559/CT1750559", "\"cc83d5f7ca1dc9383ad514bcd0e812423\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-services.com/?ctid=CT1750559", "\"1357730213\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.16.0.100", "\"0343677cfb1cd1:0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.16.0.3", "\"0343677cfb1cd1:0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.18.0.7", "\"9f8d2729abc2ce1:0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/Toolbar/?ownerId=CT1750559", "\"52c3f1538cb4af4ada257fcbc6b15d49\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-services.com/?locale=en-us", "\"799ed4eda873170bfa50e333944da883\"");
Line Found : user_pref("CommunityToolbar.ToolbarsList", "CT1750559");
Line Found : user_pref("CommunityToolbar.ToolbarsList4", "CT1750559");
Line Found : user_pref("CommunityToolbar.globalUserId", "9e4dd21f-5301-482b-a53e-b6ca2ef5a3e9");
Line Found : user_pref("Smartbar.ConduitHomepagesList", "");
Line Found : user_pref("Smartbar.ConduitSearchEngineList", "");
Line Found : user_pref("Smartbar.ConduitSearchUrlList", "");
Line Found : user_pref("Smartbar.SearchFromAddressBarSavedUrl", "hxxp://mystart.incredibar.com/mb139/?loc=IB_DS&a=6R8umjzt38&&i=26&search=");
Line Found : user_pref("Smartbar.keywordURLSelectedCTID", "CT1750559");
Line Found : user_pref("browser.search.defaultenginename", "AVG Secure Search");
Line Found : user_pref("browser.startup.homepage", "hxxp://search.softonic.com/INF00176/tb_v1?SearchSource=13&cc=&mi=30cc18d70000000000000015f2059df9&toi=16081");
Line Found : user_pref("extensions.Softonic.autoRvrt", "false");
Line Found : user_pref("extensions.Softonic.dfltSrch", true);
Line Found : user_pref("extensions.Softonic.dnsErr", true);
Line Found : user_pref("extensions.Softonic.hmpg", true);
Line Found : user_pref("extensions.Softonic.hmpgUrl", "hxxp://search.softonic.com/INF00176/tb_v1?SearchSource=13&cc=&mi=30cc18d70000000000000015f2059df9&toi=16081");
Line Found : user_pref("extensions.Softonic.hpOld0", "hxxp://www.seznam.cz/");
Line Found : user_pref("extensions.Softonic.kw_url", "hxxp://search.softonic.com/INF00176/tb_v1?SearchSource=2&cc=&mi=30cc18d70000000000000015f2059df9&toi=16081&q=");
Line Found : user_pref("extensions.Softonic.newTab", true);
Line Found : user_pref("extensions.Softonic.newTabUrl", "hxxp://search.softonic.com/INF00176/tb_v1/?SearchSource=15&cc=&mi=30cc18d70000000000000015f2059df9&toi=16081");
Line Found : user_pref("extensions.Softonic.rvrt", "false");
Line Found : user_pref("extensions.Softonic.srchPrvdr", "Search the web (Softonic)");
Line Found : user_pref("extensions.incredibar.RadioMyStations", "[{\"id\":\"1069\",\"name\":\"ORS Romántica en espańol\",\"url\":\"hxxp://www.orsradio.com/oldies56k.asx\",\"stre ... d\":\"1213\",\"[...]
Line Found : user_pref("extensions.incredibar.actvtyRptTime", "1362409805070");
Line Found : user_pref("extensions.incredibar.admin", false);
Line Found : user_pref("extensions.incredibar.afd-1a2d3abe806f9951da73a33d41fcfc9c_wid_to", "1; expires=Mon, 04 Mar 2013 18:10:06 GMT");
Line Found : user_pref("extensions.incredibar.aflt", "orgnl");
Line Found : user_pref("extensions.incredibar.afterInstallRpt", "sent");
Line Found : user_pref("extensions.incredibar.cntry", "EU");
Line Found : user_pref("extensions.incredibar.dfltLng", "EN");
Line Found : user_pref("extensions.incredibar.dfltSrch", false);
Line Found : user_pref("extensions.incredibar.dfltlng", "EN");
Line Found : user_pref("extensions.incredibar.dfltsrch", "false");
Line Found : user_pref("extensions.incredibar.did", "10650");
Line Found : user_pref("extensions.incredibar.envrmnt", "production");
Line Found : user_pref("extensions.incredibar.excTlbr", false);
Line Found : user_pref("extensions.incredibar.hdrMd5", "0D813AF966C93DF10AD70DCD76292C47");
Line Found : user_pref("extensions.incredibar.hmpg", false);
Line Found : user_pref("extensions.incredibar.hrdid", "30cc18d70000000000000015f2059df9");
Line Found : user_pref("extensions.incredibar.id", "30cc18d70000000000000015f2059df9");
Line Found : user_pref("extensions.incredibar.installerproductid", "26");
Line Found : user_pref("extensions.incredibar.instlDay", "15489");
Line Found : user_pref("extensions.incredibar.instlRef", "");
Line Found : user_pref("extensions.incredibar.instlday", "15489");
Line Found : user_pref("extensions.incredibar.instlref", "");
Line Found : user_pref("extensions.incredibar.isDcmntCmplt", false);
Line Found : user_pref("extensions.incredibar.isdcmntcmplt", true);
Line Found : user_pref("extensions.incredibar.keywordurl", "");
Line Found : user_pref("extensions.incredibar.lastVrsnTs", "1.5.11.149:56:41");
Line Found : user_pref("extensions.incredibar.mntrvrsn", "1.2.0");
Line Found : user_pref("extensions.incredibar.newTab", false);
Line Found : user_pref("extensions.incredibar.newtab", "false");
Line Found : user_pref("extensions.incredibar.newtaburl", "");
Line Found : user_pref("extensions.incredibar.noFFXTlbr", false);
Line Found : user_pref("extensions.incredibar.ppd", "20%5F5");
Line Found : user_pref("extensions.incredibar.prdct", "incredibar");
Line Found : user_pref("extensions.incredibar.productid", "26");
Line Found : user_pref("extensions.incredibar.prtnrId", "Incredibar");
Line Found : user_pref("extensions.incredibar.prtnrid", "Incredibar");
Line Found : user_pref("extensions.incredibar.sg", "none");
Line Found : user_pref("extensions.incredibar.smplGrp", "none");
Line Found : user_pref("extensions.incredibar.smplgrp", "none");
Line Found : user_pref("extensions.incredibar.srch", "");
Line Found : user_pref("extensions.incredibar.srchprvdr", "");
Line Found : user_pref("extensions.incredibar.tlbrId", "base");
Line Found : user_pref("extensions.incredibar.tlbrSrchUrl", "hxxp://mystart.Incredibar.com/?a=6R8umjzt38&loc=IB_TB&i=26&search=");
Line Found : user_pref("extensions.incredibar.tlbrid", "base");
Line Found : user_pref("extensions.incredibar.tlbrsrchurl", "hxxp://mystart.Incredibar.com/?a=6R8umjzt38&loc=IB_TB&i=26&search=");
Line Found : user_pref("extensions.incredibar.upn2", "6R8umjzt38");
Line Found : user_pref("extensions.incredibar.upn2n", "92824442241623822");
Line Found : user_pref("extensions.incredibar.vrsn", "1.5.11.14");
Line Found : user_pref("extensions.incredibar.vrsnTs", "1.5.11.149:56:41");
Line Found : user_pref("extensions.incredibar.vrsni", "1.5.11.14");
Line Found : user_pref("extensions.incredibar.vrsnts", "1.5.11.149:56:41");
Line Found : user_pref("extensions.incredibar_i.aflt", "orgnl");
Line Found : user_pref("extensions.incredibar_i.dfltLng", "");
Line Found : user_pref("extensions.incredibar_i.did", "10650");
Line Found : user_pref("extensions.incredibar_i.excTlbr", false);
Line Found : user_pref("extensions.incredibar_i.id", "30cc18d70000000000000015f2059df9");
Line Found : user_pref("extensions.incredibar_i.installerproductid", "26");
Line Found : user_pref("extensions.incredibar_i.instlDay", "15489");
Line Found : user_pref("extensions.incredibar_i.instlRef", "");
Line Found : user_pref("extensions.incredibar_i.ms_url_id", "");
Line Found : user_pref("extensions.incredibar_i.newTab", false);
Line Found : user_pref("extensions.incredibar_i.ppd", "20%5F5");
Line Found : user_pref("extensions.incredibar_i.prdct", "incredibar");
Line Found : user_pref("extensions.incredibar_i.productid", "26");
Line Found : user_pref("extensions.incredibar_i.prtnrId", "Incredibar");
Line Found : user_pref("extensions.incredibar_i.smplGrp", "none");
Line Found : user_pref("extensions.incredibar_i.tlbrId", "base");
Line Found : user_pref("extensions.incredibar_i.tlbrSrchUrl", "hxxp://mystart.Incredibar.com/?a=6R8umjzt38&loc=IB_TB&i=26&search=");
Line Found : user_pref("extensions.incredibar_i.upn2", "6R8umjzt38");
Line Found : user_pref("extensions.incredibar_i.upn2n", "92824442241623822");
Line Found : user_pref("extensions.incredibar_i.vrsn", "1.5.11.14");
Line Found : user_pref("extensions.incredibar_i.vrsnTs", "1.5.11.149:56:41");
Line Found : user_pref("extensions.incredibar_i.vrsni", "1.5.11.14");
Line Found : user_pref("smartbar.conduitSearchAddressUrlList", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT1750559&SearchSource=2&q=");
Line Found : user_pref("smartbar.originalSearchAddressUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT1750559&SearchSource=2&q=");
Line Found : user_pref("sweetim.toolbar.previous.browser.search.defaultenginename", "");
Line Found : user_pref("sweetim.toolbar.previous.browser.search.defaulturl", "");
Line Found : user_pref("sweetim.toolbar.previous.browser.search.selectedEngine", "Google");
Line Found : user_pref("sweetim.toolbar.previous.browser.startup.homepage", "hxxp://www.seznam.cz/");
Line Found : user_pref("sweetim.toolbar.urls.homepage", "hxxp://home.sweetim.com/?crg=4.0005002");
Line Found : user_pref("{336D0C35-8A85-403a-B9D2-65C292C39087}.ScriptData_WSG_whiteList", "{\"search.babylon.com\":\"q\",\"search.sweetim.com\":\"q\",\"search.imesh.net\":\"q\",\"www.search-results.com\":\"q\",\"h[...]
Line Found : user_pref("browser.search.selectedEngine", "Search the web (Softonic)");
Line Found : user_pref("browser.search.order.1", "Search the web (Softonic)");
Line Found : user_pref("keyword.URL", "hxxp://search.softonic.com/INF00176/tb_v1?SearchSource=2&cc=&mi=30cc18d70000000000000015f2059df9&toi=16081&q=");
-\\ Google Chrome v33.0.1750.146
[ File : C:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\User Data\Default\preferences ]
Found : homepage
*************************
AdwCleaner[R0].txt - [27526 octets] - [08/03/2014 20:22:59]
########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [27587 octets] ##########
Po cleanu
# AdwCleaner v3.020 - Report created 08/03/2014 at 20:51:48
# Updated 27/02/2014 by Xplode
# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)
# Username : Administrator - XXX
# Running from : C:\Documents and Settings\Administrator\Dokumenty\Downloads\adwcleaner.exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
Folder Deleted : C:\Documents and Settings\All Users\Data aplikací\AVG Security Toolbar
Folder Deleted : C:\Documents and Settings\All Users\Data aplikací\Premium
Folder Deleted : C:\Documents and Settings\All Users\Data aplikací\AlawarWrapper
Folder Deleted : C:\Documents and Settings\Administrator\Local Settings\Data aplikací\Conduit
Folder Deleted : C:\Documents and Settings\Administrator\Local Settings\Data aplikací\genienext
Folder Deleted : C:\Documents and Settings\Administrator\Local Settings\Data aplikací\Mobogenie
Folder Deleted : C:\Documents and Settings\Administrator\Local Settings\Data aplikací\AlawarWrapper
Folder Deleted : C:\Documents and Settings\Administrator\Data aplikací\newnext.me
Folder Deleted : C:\Documents and Settings\Administrator\Data aplikací\OpenCandy
Folder Deleted : C:\Documents and Settings\Administrator\Data aplikací\registry mechanic
Folder Deleted : C:\Documents and Settings\Administrator\Nabídka Start\Programy\Mobogenie
Folder Deleted : C:\Documents and Settings\Administrator\Dokumenty\Mobogenie
File Deleted : C:\Documents and Settings\Administrator\Data aplikací\Mozilla\Firefox\Profiles\nct405ky.default\user.js
***** [ Shortcuts ] *****
***** [ Registry ] *****
Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [{336D0C35-8A85-403A-B9D2-65C292C39087}]
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn
Value Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [NextLive]
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [mobilegeni daemon]
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT1750559
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{608D3067-77E8-463D-9084-908966806826}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{32099AAC-C132-4136-9E9A-4E364A424E17}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35C-6118-11DC-9C72-001320C79847}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{32099AAC-C132-4136-9E9A-4E364A424E17}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EEE6C35C-6118-11DC-9C72-001320C79847}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AD22EBAF-0D18-4FC7-90CC-5EA0ABBE9EB8}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{CFF4DB9B-135F-47C0-9269-B4C6572FD61A}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{32099AAC-C132-4136-9E9A-4E364A424E17}]
Value Deleted : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List [C:\Program Files\SweetIM\Communicator\SweetPacksUpdateManager.exe]
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\ConduitSearchScopes
Key Deleted : HKCU\Software\IM
Key Deleted : HKCU\Software\ImInstaller
Key Deleted : HKCU\Software\SmartBar
Key Deleted : HKCU\Software\AppDataLow\Software\Conduit
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\Software\Web Assistant
***** [ Browsers ] *****
-\\ Internet Explorer v8.0.6001.18702
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
-\\ Mozilla Firefox v
[ File : C:\Documents and Settings\Administrator\Data aplikací\Mozilla\Firefox\Profiles\nct405ky.default\prefs.js ]
Line Deleted : user_pref("CT1750559..clientLogIsEnabled", false);
Line Deleted : user_pref("CT1750559..clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.asmx/ReportDiagnosticsEvent");
Line Deleted : user_pref("CT1750559..uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/RegisterToolbarUninstallation");
Line Deleted : user_pref("CT1750559.1000082.isDisplayHidden", "true");
Line Deleted : user_pref("CT1750559.1000082.isPlayDisplay", "true");
Line Deleted : user_pref("CT1750559.1000082.state", "{\"state\":\"stopped\",\"text\":\"1.FM Dance\",\"description\":\"1.FM Dance\",\"url\":\"mms://dance.1.fm/energydance128k?MSWMExt=.asf\"}");
Line Deleted : user_pref("CT1750559.1000234.TWC_TMP_city", "CESKE BUDEJOVICE");
Line Deleted : user_pref("CT1750559.1000234.TWC_TMP_country", "CZ");
Line Deleted : user_pref("CT1750559.1000234.TWC_locId", "EZXX0323");
Line Deleted : user_pref("CT1750559.1000234.TWC_location", "Ceske Budejovice, Czech Republic");
Line Deleted : user_pref("CT1750559.1000234.TWC_region", "OT");
Line Deleted : user_pref("CT1750559.1000234.TWC_temp_dis", "c");
Line Deleted : user_pref("CT1750559.1000234.TWC_wind_dis", "kmh");
Line Deleted : user_pref("CT1750559.1000234.weatherData", "{\"icon\":\"28.png\",\"temperature\":\"12°C\",\"temperatureClear\":\"12°C\",\"highTemperature\":\"16°C\",\"lowTemperature\":\"7°C\",\"feelsLike\":\"12°[...]
Line Deleted : user_pref("CT1750559.ALLOW_SHOWING_HIDDEN_TOOLBAR", false);
Line Deleted : user_pref("CT1750559.AboutPrivacyUrl", "hxxp://www.codefuel.com/privacy/Default.aspx");
Line Deleted : user_pref("CT1750559.BrowserCompStateIsOpen_129502713039250930", true);
Line Deleted : user_pref("CT1750559.BrowserCompStateIsOpen_129544988592463877", true);
Line Deleted : user_pref("CT1750559.BrowserCompStateIsOpen_130040878929610729", true);
Line Deleted : user_pref("CT1750559.BrowserCompStateIsOpen_130050523948892746", true);
Line Deleted : user_pref("CT1750559.BrowserCompStateIsOpen_130052166684768527", true);
Line Deleted : user_pref("CT1750559.CurrentServerDate", "11-1-2014");
Line Deleted : user_pref("CT1750559.DialogsAlignMode", "LTR");
Line Deleted : user_pref("CT1750559.DialogsGetterLastCheckTime", "Sat Jan 11 2014 19:00:51 GMT+0100");
Line Deleted : user_pref("CT1750559.DownloadReferralCookieData", "");
Line Deleted : user_pref("CT1750559.ENABALE_HISTORY", "{\"dataType\":\"string\",\"data\":\"true\"}");
Line Deleted : user_pref("CT1750559.ENABLE_RETURN_WEB_SEARCH_ON_THE_PAGE", "{\"dataType\":\"string\",\"data\":\"true\"}");
Line Deleted : user_pref("CT1750559.FirstServerDate", "7-12-2012");
Line Deleted : user_pref("CT1750559.FirstTime", "true");
Line Deleted : user_pref("CT1750559.FirstTimeFF3", "true");
Line Deleted : user_pref("CT1750559.GroupingServerCheckInterval", 1440);
Line Deleted : user_pref("CT1750559.GroupingServiceUrl", "hxxp://grouping.services.conduit.com/");
Line Deleted : user_pref("CT1750559.HasUserGlobalKeys", true);
Line Deleted : user_pref("CT1750559.Initialize", true);
Line Deleted : user_pref("CT1750559.InitializeCommonPrefs", true);
Line Deleted : user_pref("CT1750559.InstallationAndCookieDataSentCount", 3);
Line Deleted : user_pref("CT1750559.InstallationType", "Unknown");
Line Deleted : user_pref("CT1750559.InstalledDate", "Fri Dec 07 2012 15:34:02 GMT+0100");
Line Deleted : user_pref("CT1750559.IsGrouping", false);
Line Deleted : user_pref("CT1750559.IsInitSetupIni", true);
Line Deleted : user_pref("CT1750559.IsMulticommunity", false);
Line Deleted : user_pref("CT1750559.LanguagePackLastCheckTime", "Sat Jan 11 2014 19:00:51 GMT+0100");
Line Deleted : user_pref("CT1750559.LanguagePackReloadIntervalMM", 1440);
Line Deleted : user_pref("CT1750559.LanguagePackServiceUrl", "hxxp://translation.users.conduit.com/Translation.ashx");
Line Deleted : user_pref("CT1750559.LastLogin_3.16.0.100", "Sun Feb 10 2013 15:51:59 GMT+0100");
Line Deleted : user_pref("CT1750559.LastLogin_3.16.0.3", "Sun Dec 30 2012 18:39:05 GMT+0100");
Line Deleted : user_pref("CT1750559.LastLogin_3.18.0.7", "Sat Jan 11 2014 19:00:52 GMT+0100");
Line Deleted : user_pref("CT1750559.LatestVersion", "3.20.0.4");
Line Deleted : user_pref("CT1750559.Locale", "en-us");
Line Deleted : user_pref("CT1750559.LoginRevertSettingsEnabled", false);
Line Deleted : user_pref("CT1750559.MCDetectTooltipHeight", "83");
Line Deleted : user_pref("CT1750559.MCDetectTooltipUrl", "hxxp://@EB_INSTALL_LINK@/rank/tooltip/?version=1");
Line Deleted : user_pref("CT1750559.MCDetectTooltipWidth", "295");
Line Deleted : user_pref("CT1750559.MyStuffEnabledAtInstallation", true);
Line Deleted : user_pref("CT1750559.RevertSettingsEnabled", true);
Line Deleted : user_pref("CT1750559.SearchFromAddressBarIsInit", true);
Line Deleted : user_pref("CT1750559.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT1750559&SearchSource=2&q=");
Line Deleted : user_pref("CT1750559.SearchInNewTabEnabled", true);
Line Deleted : user_pref("CT1750559.SearchInNewTabIntervalMM", 1440);
Line Deleted : user_pref("CT1750559.SearchInNewTabLastCheckTime", "Sat Jan 11 2014 19:00:27 GMT+0100");
Line Deleted : user_pref("CT1750559.SearchInNewTabServiceUrl", "hxxp://newtab.conduit-hosting.com/newtab/?ctid=EB_TOOLBAR_ID&UM=UM_ID");
Line Deleted : user_pref("CT1750559.ServiceMapLastCheckTime", "Sat Jan 11 2014 19:00:41 GMT+0100");
Line Deleted : user_pref("CT1750559.SettingsLastCheckTime", "Sat Jan 11 2014 19:00:26 GMT+0100");
Line Deleted : user_pref("CT1750559.SettingsLastUpdate", "1389189633");
Line Deleted : user_pref("CT1750559.ToolbarShrinkedFromSetup", false);
Line Deleted : user_pref("CT1750559.TrusteLinkUrl", "hxxp://trust.conduit.com/CT1750559");
Line Deleted : user_pref("CT1750559.TrustedApiDomains", "conduit.com,conduit-hosting.com,conduit-services.com,client.conduit-storage.com,OurToolbar.com,CommunityToolbars.com,ForumToolbar.com,MyBlogToolbar.com,MyCity[...]
Line Deleted : user_pref("CT1750559.UserID", "UN93902472398643878");
Line Deleted : user_pref("CT1750559.addressBarTakeOverEnabledInHidden", "true");
Line Deleted : user_pref("CT1750559.alertChannelId", "31130");
Line Deleted : user_pref("CT1750559.appButtonDisablenull", "MA==");
Line Deleted : user_pref("CT1750559.autoDisableScopes", 0);
Line Deleted : user_pref("CT1750559.browser.search.defaultthis.engineName", true);
Line Deleted : user_pref("CT1750559.defaultSearch", "true");
Line Deleted : user_pref("CT1750559.embeddedsData", "[{\"appId\":\"128520273115419467\",\"apiPermissions\":{\"crossDomainAjax\":true,\"getMainFrameTitle\":true,\"getMainFrameUrl\":true,\"getSearchTerm\":true,\"insta[...]
Line Deleted : user_pref("CT1750559.enableAlerts", "always");
Line Deleted : user_pref("CT1750559.enableSearchFromAddressBar", "true");
Line Deleted : user_pref("CT1750559.firstTimeDialogOpened", "true");
Line Deleted : user_pref("CT1750559.fixPageNotFoundError", "true");
Line Deleted : user_pref("CT1750559.fixPageNotFoundErrorInHidden", "true");
Line Deleted : user_pref("CT1750559.fixUrls", true);
Line Deleted : user_pref("CT1750559.generalConfigFromLogin", "{\"ApiMaxAlerts\":\"12\",\"SocialDomains\":\"social.conduit.com;apps.conduit.com;services.apps.conduit.com\",\"AppsDetectionUrlPattern\":\"hxxp://appdown[...]
Line Deleted : user_pref("CT1750559.homepageProtectorEnableByLogin", true);
Line Deleted : user_pref("CT1750559.initDone", true);
Line Deleted : user_pref("CT1750559.installId", "ct1750559_bs_player.exe");
Line Deleted : user_pref("CT1750559.installType", "ConduitNSISIntegration");
Line Deleted : user_pref("CT1750559.isCheckedStartAsHidden", true);
Line Deleted : user_pref("CT1750559.isEnableAllDialogs", "{\"dataType\":\"string\",\"data\":\"true\"}");
Line Deleted : user_pref("CT1750559.isFirstTimeToolbarLoading", "false");
Line Deleted : user_pref("CT1750559.isNewTabEnabled", true);
Line Deleted : user_pref("CT1750559.isPerformedSmartBarTransition", "true");
Line Deleted : user_pref("CT1750559.isToolbarShrinked", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT1750559.keyword", true);
Line Deleted : user_pref("CT1750559.migrateAppsAndComponents", true);
Line Deleted : user_pref("CT1750559.myStuffEnabled", true);
Line Deleted : user_pref("CT1750559.myStuffPublihserMinWidth", 400);
Line Deleted : user_pref("CT1750559.myStuffSearchUrl", "hxxp://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOrigin=29&ctid=EB_TOOLBAR_ID&octid=EB_ORIGINAL_CTID");
Line Deleted : user_pref("CT1750559.myStuffServiceIntervalMM", 1440);
Line Deleted : user_pref("CT1750559.myStuffServiceUrl", "hxxp://mystuff.conduit-services.com/MyStuffService.ashx?ComponentId=EB_MY_STUFF_INSTANCE_GUID&lut=EB_MY_STUFF_LUT");
Line Deleted : user_pref("CT1750559.navigationAliasesJson", "{\"EB_MAIN_FRAME_URL\":\"hxxp%3A%2F%2Fwww.porse.cz%2FBs_player_ke_stazeni_zdarma%2Fdownload.html\",\"EB_MAIN_FRAME_TITLE\":\"Bs%20player%20ke%20sta%C5%BEe[...]
Line Deleted : user_pref("CT1750559.openThankYouPage", "false");
Line Deleted : user_pref("CT1750559.openUninstallPage", "false");
Line Deleted : user_pref("CT1750559.revertSettingsEnabled", true);
Line Deleted : user_pref("CT1750559.search.searchAppId", "128520273115419467");
Line Deleted : user_pref("CT1750559.search.searchCount", "0");
Line Deleted : user_pref("CT1750559.searchInNewTabEnabledInHidden", "true");
Line Deleted : user_pref("CT1750559.searchProtectorDialogDelayInSec", 10);
Line Deleted : user_pref("CT1750559.searchProtectorEnableByLogin", true);
Line Deleted : user_pref("CT1750559.selectToSearchBoxEnabled", "{\"dataType\":\"string\",\"data\":\"true\"}");
Line Deleted : user_pref("CT1750559.serviceLayer_service_login_isFirstLoginInvoked", "{\"dataType\":\"boolean\",\"data\":\"true\"}");
Line Deleted : user_pref("CT1750559.serviceLayer_service_login_loginCount", "{\"dataType\":\"number\",\"data\":\"4\"}");
Line Deleted : user_pref("CT1750559.serviceLayer_service_toolbarGrouping_activeCTID", "{\"dataType\":\"string\",\"data\":\"CT1750559\"}");
Line Deleted : user_pref("CT1750559.serviceLayer_service_toolbarGrouping_activeDownloadUrl", "{\"dataType\":\"string\",\"data\":\"hxxp://BSPlayer.OurToolbar.com//xpi\"}");
Line Deleted : user_pref("CT1750559.serviceLayer_service_toolbarGrouping_activeToolbarName", "{\"dataType\":\"string\",\"data\":\"BS Player\"}");
Line Deleted : user_pref("CT1750559.serviceLayer_service_toolbarGrouping_invoked", "{\"dataType\":\"string\",\"data\":\"true\"}");
Line Deleted : user_pref("CT1750559.serviceLayer_services_appTrackingFirstTime_lastUpdate", "1350809052417");
Line Deleted : user_pref("CT1750559.serviceLayer_services_appsMetadata_lastUpdate", "1350809052021");
Line Deleted : user_pref("CT1750559.serviceLayer_services_gottenAppsContextMenu_lastUpdate", "1350809059931");
Line Deleted : user_pref("CT1750559.serviceLayer_services_login_10.10.27.6_lastUpdate", "1350818290661");
Line Deleted : user_pref("CT1750559.serviceLayer_services_login_10.13.1.89_lastUpdate", "1352725023765");
Line Deleted : user_pref("CT1750559.serviceLayer_services_login_10.13.40.15_lastUpdate", "1354723896919");
Line Deleted : user_pref("CT1750559.serviceLayer_services_otherAppsContextMenu_lastUpdate", "1350809060113");
Line Deleted : user_pref("CT1750559.serviceLayer_services_searchAPI_lastUpdate", "1350809046514");
Line Deleted : user_pref("CT1750559.serviceLayer_services_serviceMap_lastUpdate", "1354723893167");
Line Deleted : user_pref("CT1750559.serviceLayer_services_toolbarContextMenu_lastUpdate", "1350809059745");
Line Deleted : user_pref("CT1750559.serviceLayer_services_toolbarSettings_lastUpdate", "1354723894039");
Line Deleted : user_pref("CT1750559.serviceLayer_services_translation_lastUpdate", "1354723896530");
Line Deleted : user_pref("CT1750559.settingsINI", true);
Line Deleted : user_pref("CT1750559.shouldFirstTimeDialog", "false");
Line Deleted : user_pref("CT1750559.smartbar.CTID", "CT1750559");
Line Deleted : user_pref("CT1750559.smartbar.Uninstall", "0");
Line Deleted : user_pref("CT1750559.smartbar.homepage", true);
Line Deleted : user_pref("CT1750559.smartbar.isHidden", true);
Line Deleted : user_pref("CT1750559.smartbar.toolbarName", "BS Player ");
Line Deleted : user_pref("CT1750559.startPage", "userChanged");
Line Deleted : user_pref("CT1750559.testingCtid", "");
Line Deleted : user_pref("CT1750559.toolbarAppMetaDataLastCheckTime", "Sat Jan 11 2014 19:00:51 GMT+0100");
Line Deleted : user_pref("CT1750559.toolbarBornServerTime", "21-10-2012");
Line Deleted : user_pref("CT1750559.toolbarCurrentServerTime", "5-12-2012");
Line Deleted : user_pref("CT1750559.twitter_v1.8.0_twitter_app_open_t_f", "ZmFsc2U=");
Line Deleted : user_pref("CT1750559.usagesFlag", 2);
Line Deleted : user_pref("CT1750559_Firefox.csv", "[{\"from\":\"Abs Layer\",\"action\":\"loading toolbar\",\"time\":1354727131555,\"isWithState\":\"\",\"timeFromStart\":0,\"timeFromPrev\":0}]");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://Settings.toolbar.search.conduit.com/root/CT1750559/CT1750559", "\"cc83d5f7ca1dc9383ad514bcd0e812423\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-services.com/?ctid=CT1750559", "\"1357730213\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.16.0.100", "\"0343677cfb1cd1:0\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.16.0.3", "\"0343677cfb1cd1:0\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.18.0.7", "\"9f8d2729abc2ce1:0\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/Toolbar/?ownerId=CT1750559", "\"52c3f1538cb4af4ada257fcbc6b15d49\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-services.com/?locale=en-us", "\"799ed4eda873170bfa50e333944da883\"");
Line Deleted : user_pref("CommunityToolbar.ToolbarsList", "CT1750559");
Line Deleted : user_pref("CommunityToolbar.ToolbarsList4", "CT1750559");
Line Deleted : user_pref("CommunityToolbar.globalUserId", "9e4dd21f-5301-482b-a53e-b6ca2ef5a3e9");
Line Deleted : user_pref("Smartbar.ConduitHomepagesList", "");
Line Deleted : user_pref("Smartbar.ConduitSearchEngineList", "");
Line Deleted : user_pref("Smartbar.ConduitSearchUrlList", "");
Line Deleted : user_pref("Smartbar.SearchFromAddressBarSavedUrl", "hxxp://mystart.incredibar.com/mb139/?loc=IB_DS&a=6R8umjzt38&&i=26&search=");
Line Deleted : user_pref("Smartbar.keywordURLSelectedCTID", "CT1750559");
Line Deleted : user_pref("browser.search.defaultenginename", "AVG Secure Search");
Line Deleted : user_pref("browser.startup.homepage", "hxxp://search.softonic.com/INF00176/tb_v1?SearchSource=13&cc=&mi=30cc18d70000000000000015f2059df9&toi=16081");
Line Deleted : user_pref("extensions.Softonic.autoRvrt", "false");
Line Deleted : user_pref("extensions.Softonic.dfltSrch", true);
Line Deleted : user_pref("extensions.Softonic.dnsErr", true);
Line Deleted : user_pref("extensions.Softonic.hmpg", true);
Line Deleted : user_pref("extensions.Softonic.hmpgUrl", "hxxp://search.softonic.com/INF00176/tb_v1?SearchSource=13&cc=&mi=30cc18d70000000000000015f2059df9&toi=16081");
Line Deleted : user_pref("extensions.Softonic.hpOld0", "hxxp://www.seznam.cz/");
Line Deleted : user_pref("extensions.Softonic.kw_url", "hxxp://search.softonic.com/INF00176/tb_v1?SearchSource=2&cc=&mi=30cc18d70000000000000015f2059df9&toi=16081&q=");
Line Deleted : user_pref("extensions.Softonic.newTab", true);
Line Deleted : user_pref("extensions.Softonic.newTabUrl", "hxxp://search.softonic.com/INF00176/tb_v1/?SearchSource=15&cc=&mi=30cc18d70000000000000015f2059df9&toi=16081");
Line Deleted : user_pref("extensions.Softonic.rvrt", "false");
Line Deleted : user_pref("extensions.Softonic.srchPrvdr", "Search the web (Softonic)");
Line Deleted : user_pref("extensions.incredibar.RadioMyStations", "[{\"id\":\"1069\",\"name\":\"ORS Romántica en espańol\",\"url\":\"hxxp://www.orsradio.com/oldies56k.asx\",\"stre ... d\":\"1213\",\"[...]
Line Deleted : user_pref("extensions.incredibar.actvtyRptTime", "1362409805070");
Line Deleted : user_pref("extensions.incredibar.admin", false);
Line Deleted : user_pref("extensions.incredibar.afd-1a2d3abe806f9951da73a33d41fcfc9c_wid_to", "1; expires=Mon, 04 Mar 2013 18:10:06 GMT");
Line Deleted : user_pref("extensions.incredibar.aflt", "orgnl");
Line Deleted : user_pref("extensions.incredibar.afterInstallRpt", "sent");
Line Deleted : user_pref("extensions.incredibar.cntry", "EU");
Line Deleted : user_pref("extensions.incredibar.dfltLng", "EN");
Line Deleted : user_pref("extensions.incredibar.dfltSrch", false);
Line Deleted : user_pref("extensions.incredibar.dfltlng", "EN");
Line Deleted : user_pref("extensions.incredibar.dfltsrch", "false");
Line Deleted : user_pref("extensions.incredibar.did", "10650");
Line Deleted : user_pref("extensions.incredibar.envrmnt", "production");
Line Deleted : user_pref("extensions.incredibar.excTlbr", false);
Line Deleted : user_pref("extensions.incredibar.hdrMd5", "0D813AF966C93DF10AD70DCD76292C47");
Line Deleted : user_pref("extensions.incredibar.hmpg", false);
Line Deleted : user_pref("extensions.incredibar.hrdid", "30cc18d70000000000000015f2059df9");
Line Deleted : user_pref("extensions.incredibar.id", "30cc18d70000000000000015f2059df9");
Line Deleted : user_pref("extensions.incredibar.installerproductid", "26");
Line Deleted : user_pref("extensions.incredibar.instlDay", "15489");
Line Deleted : user_pref("extensions.incredibar.instlRef", "");
Line Deleted : user_pref("extensions.incredibar.instlday", "15489");
Line Deleted : user_pref("extensions.incredibar.instlref", "");
Line Deleted : user_pref("extensions.incredibar.isDcmntCmplt", false);
Line Deleted : user_pref("extensions.incredibar.isdcmntcmplt", true);
Line Deleted : user_pref("extensions.incredibar.keywordurl", "");
Line Deleted : user_pref("extensions.incredibar.lastVrsnTs", "1.5.11.149:56:41");
Line Deleted : user_pref("extensions.incredibar.mntrvrsn", "1.2.0");
Line Deleted : user_pref("extensions.incredibar.newTab", false);
Line Deleted : user_pref("extensions.incredibar.newtab", "false");
Line Deleted : user_pref("extensions.incredibar.newtaburl", "");
Line Deleted : user_pref("extensions.incredibar.noFFXTlbr", false);
Line Deleted : user_pref("extensions.incredibar.ppd", "20%5F5");
Line Deleted : user_pref("extensions.incredibar.prdct", "incredibar");
Line Deleted : user_pref("extensions.incredibar.productid", "26");
Line Deleted : user_pref("extensions.incredibar.prtnrId", "Incredibar");
Line Deleted : user_pref("extensions.incredibar.prtnrid", "Incredibar");
Line Deleted : user_pref("extensions.incredibar.sg", "none");
Line Deleted : user_pref("extensions.incredibar.smplGrp", "none");
Line Deleted : user_pref("extensions.incredibar.smplgrp", "none");
Line Deleted : user_pref("extensions.incredibar.srch", "");
Line Deleted : user_pref("extensions.incredibar.srchprvdr", "");
Line Deleted : user_pref("extensions.incredibar.tlbrId", "base");
Line Deleted : user_pref("extensions.incredibar.tlbrSrchUrl", "hxxp://mystart.Incredibar.com/?a=6R8umjzt38&loc=IB_TB&i=26&search=");
Line Deleted : user_pref("extensions.incredibar.tlbrid", "base");
Line Deleted : user_pref("extensions.incredibar.tlbrsrchurl", "hxxp://mystart.Incredibar.com/?a=6R8umjzt38&loc=IB_TB&i=26&search=");
Line Deleted : user_pref("extensions.incredibar.upn2", "6R8umjzt38");
Line Deleted : user_pref("extensions.incredibar.upn2n", "92824442241623822");
Line Deleted : user_pref("extensions.incredibar.vrsn", "1.5.11.14");
Line Deleted : user_pref("extensions.incredibar.vrsnTs", "1.5.11.149:56:41");
Line Deleted : user_pref("extensions.incredibar.vrsni", "1.5.11.14");
Line Deleted : user_pref("extensions.incredibar.vrsnts", "1.5.11.149:56:41");
Line Deleted : user_pref("extensions.incredibar_i.aflt", "orgnl");
Line Deleted : user_pref("extensions.incredibar_i.dfltLng", "");
Line Deleted : user_pref("extensions.incredibar_i.did", "10650");
Line Deleted : user_pref("extensions.incredibar_i.excTlbr", false);
Line Deleted : user_pref("extensions.incredibar_i.id", "30cc18d70000000000000015f2059df9");
Line Deleted : user_pref("extensions.incredibar_i.installerproductid", "26");
Line Deleted : user_pref("extensions.incredibar_i.instlDay", "15489");
Line Deleted : user_pref("extensions.incredibar_i.instlRef", "");
Line Deleted : user_pref("extensions.incredibar_i.ms_url_id", "");
Line Deleted : user_pref("extensions.incredibar_i.newTab", false);
Line Deleted : user_pref("extensions.incredibar_i.ppd", "20%5F5");
Line Deleted : user_pref("extensions.incredibar_i.prdct", "incredibar");
Line Deleted : user_pref("extensions.incredibar_i.productid", "26");
Line Deleted : user_pref("extensions.incredibar_i.prtnrId", "Incredibar");
Line Deleted : user_pref("extensions.incredibar_i.smplGrp", "none");
Line Deleted : user_pref("extensions.incredibar_i.tlbrId", "base");
Line Deleted : user_pref("extensions.incredibar_i.tlbrSrchUrl", "hxxp://mystart.Incredibar.com/?a=6R8umjzt38&loc=IB_TB&i=26&search=");
Line Deleted : user_pref("extensions.incredibar_i.upn2", "6R8umjzt38");
Line Deleted : user_pref("extensions.incredibar_i.upn2n", "92824442241623822");
Line Deleted : user_pref("extensions.incredibar_i.vrsn", "1.5.11.14");
Line Deleted : user_pref("extensions.incredibar_i.vrsnTs", "1.5.11.149:56:41");
Line Deleted : user_pref("extensions.incredibar_i.vrsni", "1.5.11.14");
Line Deleted : user_pref("smartbar.conduitSearchAddressUrlList", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT1750559&SearchSource=2&q=");
Line Deleted : user_pref("smartbar.originalSearchAddressUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT1750559&SearchSource=2&q=");
Line Deleted : user_pref("sweetim.toolbar.previous.browser.search.defaultenginename", "");
Line Deleted : user_pref("sweetim.toolbar.previous.browser.search.defaulturl", "");
Line Deleted : user_pref("sweetim.toolbar.previous.browser.search.selectedEngine", "Google");
Line Deleted : user_pref("sweetim.toolbar.previous.browser.startup.homepage", "hxxp://www.seznam.cz/");
Line Deleted : user_pref("sweetim.toolbar.urls.homepage", "hxxp://home.sweetim.com/?crg=4.0005002");
Line Deleted : user_pref("{336D0C35-8A85-403a-B9D2-65C292C39087}.ScriptData_WSG_whiteList", "{\"search.babylon.com\":\"q\",\"search.sweetim.com\":\"q\",\"search.imesh.net\":\"q\",\"www.search-results.com\":\"q\",\"h[...]
Line Deleted : user_pref("browser.search.selectedEngine", "Search the web (Softonic)");
Line Deleted : user_pref("browser.search.order.1", "Search the web (Softonic)");
Line Deleted : user_pref("keyword.URL", "hxxp://search.softonic.com/INF00176/tb_v1?SearchSource=2&cc=&mi=30cc18d70000000000000015f2059df9&toi=16081&q=");
-\\ Google Chrome v33.0.1750.146
[ File : C:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\User Data\Default\preferences ]
Deleted : homepage
*************************
AdwCleaner[R0].txt - [27668 octets] - [08/03/2014 20:22:59]
AdwCleaner[S0].txt - [28069 octets] - [08/03/2014 20:51:48]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [28130 octets] ##########
Vůbec tomu nerozumím
-
Rudy
- Site Admin
- Příspěvky: 119533
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: zamrzlé pc , využití cpu 100% , kontrola logu
Dejte nový log RSIT.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: zamrzlé pc , využití cpu 100% , kontrola logu
Logfile of random's system information tool 1.06 (written by random/random)
Run by Administrator at 2014-03-08 22:09:43
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 10 GB (26%) free of 38 GB
Total RAM: 1015 MB (44% free)
HijackThis download failed
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job
C:\WINDOWS\tasks\avast! Emergency Update.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2013-05-08 77424]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2014-01-29 462760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2012-10-30 1227736]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-01-29 171944]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2012-10-30 1227736]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SoundMan"=C:\WINDOWS\SOUNDMAN.EXE [2004-07-27 68096]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2004-09-30 155648]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2004-09-30 126976]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2013-05-08 41056]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576]
"NeroFilterCheck"=C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [2007-03-09 153136]
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2012-10-30 4297136]
"TO2SSM_McciTrayApp"=C:\Program Files\TO2SSM\McciTrayApp.exe [2009-01-16 1473536]
"msdorbvSrv"=C:\WINDOWS\inf\msdorbv.vbe []
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe [2007-03-12 153136]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2012-11-06 3673728]
"BitTorrent"=C:\Documents and Settings\Administrator\Data aplikací\BitTorrent\BitTorrent.exe [2014-02-21 900696]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxsrvc.dll [2004-09-30 344064]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"E:\hry\Call of Duty\CoDMP.exe"="E:\hry\Call of Duty\CoDMP.exe:*:Enabled:CoDMP"
"E:\hry\MOHAA\MOHAA.exe"="E:\hry\MOHAA\MOHAA.exe:*:Enabled:Medal of Honor Allied Assault"
"C:\WINDOWS\system32\msiexec.exe"="C:\WINDOWS\system32\msiexec.exe:*:Enabled:UpdateManagerSetup"
"C:\Program Files\Activision\Call of Duty 2\CoD2MP_s.exe"="C:\Program Files\Activision\Call of Duty 2\CoD2MP_s.exe:*:Enabled:CoD2MP_s"
"C:\Program Files\Codemasters\Operation Flashpoint\FlashpointResistance.exe"="C:\Program Files\Codemasters\Operation Flashpoint\FlashpointResistance.exe:*:Enabled:Operation Flashpoint"
"C:\Program Files\EA GAMES\Need For Speed Underground\Speed.exe"="C:\Program Files\EA GAMES\Need For Speed Underground\Speed.exe:*:Enabled:Speed"
"C:\Program Files\Microsoft Games\Age of Empires II\empires2.exe"="C:\Program Files\Microsoft Games\Age of Empires II\empires2.exe:*:Enabled:Age of Empires II"
"C:\Documents and Settings\Administrator\Dokumenty\Stažené soubory\Star-Wars-Galactic-Battlegrounds-[PC]-by-Herp-Derp\Star Wars Galactic Battlegrounds [PC] by Herp Derp\Game\Battlegrounds.exe"="C:\Documents and Settings\Administrator\Dokumenty\Stažené soubory\Star-Wars-Galactic-Battlegrounds-[PC]-by-Herp-Derp\Star Wars Galactic Battlegrounds [PC] by Herp Derp\Game\Battlegrounds.exe:*:Enabled:Star Wars Galactic Battlegrounds"
"C:\Program Files\Duke Nukem - Manhattan Project\prism3d.exe"="C:\Program Files\Duke Nukem - Manhattan Project\prism3d.exe:*:Enabled:prism3d"
"C:\Program Files\EA GAMES\Battlefield 1942\BF1942.exe"="C:\Program Files\EA GAMES\Battlefield 1942\BF1942.exe:*:Enabled:BF1942"
"C:\Documents and Settings\Administrator\Dokumenty\Stažené soubory\Call-of-Duty-2-cz\Call of Duty 2 cz\Call of duty 2+CZ+crack+key-by Beny\Call of duty 2\Setup\Data\CoD2MP_s.exe"="C:\Documents and Settings\Administrator\Dokumenty\Stažené soubory\Call-of-Duty-2-cz\Call of Duty 2 cz\Call of duty 2+CZ+crack+key-by Beny\Call of duty 2\Setup\Data\CoD2MP_s.exe:*:Enabled:CoD2MP_s"
"E:\hry\MOHAA\moh_Breakthrough.exe"="E:\hry\MOHAA\moh_Breakthrough.exe:*:Enabled:Medal of Honor Allied Assault(tm) Breakthrough"
"E:\hry\MOHAA\moh_spearhead.exe"="E:\hry\MOHAA\moh_spearhead.exe:*:Enabled:Medal of Honor Allied Assault(tm) Spearhead"
"C:\Games\World_of_Tanks\WoTLauncher.exe"="C:\Games\World_of_Tanks\WoTLauncher.exe:*:Enabled:World of Tanks Launcher"
"C:\Program Files\AVG\AVG2013\avgmfapx.exe"="C:\Program Files\AVG\AVG2013\avgmfapx.exe:*:Enabled:Instalátor AVG"
"C:\Program Files\Quake III Arena\quake3.exe"="C:\Program Files\Quake III Arena\quake3.exe:*:Enabled:quake3"
"C:\Program Files\EA GAMES\MOHAA\MOHAA.exe"="C:\Program Files\EA GAMES\MOHAA\MOHAA.exe:*:Enabled:Medal of Honor Allied Assault"
"C:\Program Files\Daum\PotPlayer\PotPlayerMini.exe"="C:\Program Files\Daum\PotPlayer\PotPlayerMini.exe:*:Enabled:PotPlayer"
"C:\Documents and Settings\Administrator\Data aplikací\BitTorrent\BitTorrent.exe"="C:\Documents and Settings\Administrator\Data aplikací\BitTorrent\BitTorrent.exe:*:Enabled:BitTorrent"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Daum\PotPlayer\PotPlayerMini.exe"="C:\Program Files\Daum\PotPlayer\PotPlayerMini.exe:*:Enabled:PotPlayer"
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{8e69a7c0-7b17-11e3-972e-806d6172696f}]
shell\AutoRun\command - G:\autorun.exe
======List of files/folders created in the last 1 months======
2030-08-29 14:22:31 ----N---- C:\WINDOWS\system32\iyvu9_32.dll
2030-08-29 14:22:31 ----N---- C:\WINDOWS\system32\iacenc.dll
2014-03-08 20:22:30 ----D---- C:\AdwCleaner
2014-03-08 19:43:44 ----D---- C:\Program Files\trend micro
2014-03-08 19:43:41 ----D---- C:\rsit
2014-02-26 21:28:04 ----A---- C:\WINDOWS\system32\CmdLineExt03.dll
2014-02-26 21:21:10 ----D---- C:\Program Files\KONAMI
2014-02-20 23:22:54 ----D---- C:\Casino
2014-02-14 21:09:31 ----D---- C:\Program Files\MP3 Player Utilities
2014-02-14 21:08:36 ----RA---- C:\WINDOWS\PlaySnd.INI
2014-02-14 21:08:36 ----RA---- C:\WINDOWS\fwupgrade.ini
2014-02-14 21:08:36 ----RA---- C:\WINDOWS\Disktool.INI
2014-02-13 00:02:25 ----HDC---- C:\WINDOWS\$NtUninstallKB2916036$
2014-02-12 22:09:38 ----D---- C:\Documents and Settings\Administrator\Data aplikací\OpenOffice
2014-02-12 21:49:54 ----D---- C:\Program Files\OpenOffice 4
2014-02-10 17:10:32 ----D---- C:\WINDOWS\Sun
======List of files/folders modified in the last 1 months======
2014-03-08 22:09:03 ----D---- C:\WINDOWS\Temp
2014-03-08 22:07:14 ----D---- C:\Documents and Settings\Administrator\Data aplikací\BitTorrent
2014-03-08 21:04:02 ----A---- C:\WINDOWS\SchedLgU.Txt
2014-03-08 19:46:37 ----D---- C:\WINDOWS\Prefetch
2014-03-08 19:43:44 ----RD---- C:\Program Files
2014-03-08 16:40:51 ----SHD---- C:\WINDOWS\CSC
2014-03-07 22:53:05 ----D---- C:\WINDOWS
2014-03-07 22:34:40 ----D---- C:\Documents and Settings\Administrator\Data aplikací\Vso
2014-03-07 22:34:40 ----D---- C:\Documents and Settings\Administrator\Data aplikací\DAEMON Tools Lite
2014-03-07 22:29:33 ----D---- C:\WINDOWS\Debug
2014-03-07 22:29:31 ----D---- C:\WINDOWS\Minidump
2014-03-07 10:46:21 ----A---- C:\WINDOWS\NeroDigital.ini
2014-03-07 10:44:30 ----D---- C:\Documents and Settings\Administrator\Data aplikací\vlc
2014-02-26 21:28:04 ----D---- C:\WINDOWS\system32
2014-02-26 21:27:56 ----HD---- C:\Program Files\InstallShield Installation Information
2014-02-26 21:27:36 ----SHD---- C:\WINDOWS\Installer
2014-02-25 00:42:43 ----D---- C:\WINDOWS\system32\CatRoot2
2014-02-21 14:59:44 ----D---- C:\Program Files\BitTorrent
2014-02-21 11:07:48 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2014-02-17 16:05:36 ----D---- C:\WINDOWS\Network Diagnostic
2014-02-15 18:34:42 ----HD---- C:\WINDOWS\inf
2014-02-14 21:09:40 ----SD---- C:\Documents and Settings\Administrator\Data aplikací\Microsoft
2014-02-14 21:09:31 ----D---- C:\WINDOWS\system32\drivers
2014-02-13 10:33:51 ----RSD---- C:\WINDOWS\assembly
2014-02-13 10:33:51 ----D---- C:\WINDOWS\Microsoft.NET
2014-02-13 00:02:28 ----RSHDC---- C:\WINDOWS\system32\dllcache
2014-02-12 23:53:41 ----D---- C:\WINDOWS\WinSxS
2014-02-12 23:53:26 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2014-02-12 23:42:36 ----D---- C:\Program Files\Internet Explorer
2014-02-12 23:42:15 ----D---- C:\WINDOWS\ie8updates
2014-02-12 21:50:53 ----RSD---- C:\WINDOWS\Fonts
2014-02-12 01:49:30 ----D---- C:\WINDOWS\system32\MRT
2014-02-12 01:44:20 ----A---- C:\WINDOWS\system32\MRT.exe
2014-02-11 22:06:40 ----D---- C:\Documents and Settings\All Users\Data aplikací\BlueStacksSetup
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2012-10-30 25256]
R1 AswRdr;aswRdr; C:\WINDOWS\system32\drivers\AswRdr.sys [2012-10-30 35928]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2012-10-30 738504]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2012-10-30 361032]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2012-10-30 54232]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\drivers\aswFsBlk.sys [2012-10-30 21256]
R2 aswMon2;aswMon2; C:\WINDOWS\system32\drivers\aswMon2.sys [2012-10-30 97608]
R3 ALCXSENS;Service for WDM 3D Audio Driver; C:\WINDOWS\system32\drivers\ALCXSENS.SYS [2004-02-24 400384]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2004-08-02 635281]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\ialmnt5.sys [2004-09-30 752093]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-25 12160]
R3 ms_mpu401;Microsoft MPU-401 MIDI UART Driver; C:\WINDOWS\system32\drivers\msmpu401.sys [2001-08-17 2944]
R3 rtl8139;Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver; C:\WINDOWS\system32\DRIVERS\RTL8139.SYS [2008-04-13 20992]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2013-08-09 32384]
R3 usbehci;Ovladač miniportu rozšířeného radiče hostitele Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2009-03-18 30336]
R3 usbhub;Rozbočovač umožnující USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-14 59520]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
S3 a7wjfnwz;a7wjfnwz; C:\WINDOWS\system32\drivers\a7wjfnwz.sys []
S3 aqyb4q5e;aqyb4q5e; C:\WINDOWS\system32\drivers\aqyb4q5e.sys []
S3 hidgame;Microsoft Hid to Joystick Port Enabler; C:\WINDOWS\system32\DRIVERS\hidgame.sys [2001-08-17 8576]
S3 MREMP50;MREMP50 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MREMP50.SYS []
S3 MREMP50a64;MREMP50a64 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MREMP50a64.SYS []
S3 MREMPR5;MREMPR5 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MREMPR5.SYS []
S3 MRENDIS5;MRENDIS5 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MRENDIS5.SYS []
S3 MRESP50;MRESP50 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MRESP50.SYS []
S3 MRESP50a64;MRESP50a64 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MRESP50a64.SYS []
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2013-07-03 14976]
S3 usbstor;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 w810bus;Sony Ericsson W810 Driver driver (WDM); C:\WINDOWS\system32\DRIVERS\w810bus.sys [2006-02-20 58288]
S3 w810mdfl;Sony Ericsson W810 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\w810mdfl.sys [2006-02-20 8336]
S3 w810mdm;Sony Ericsson W810 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\w810mdm.sys [2006-02-20 94064]
S3 w810mgmt;Sony Ericsson W810 USB WMC Device Management Drivers (WDM); C:\WINDOWS\system32\DRIVERS\w810mgmt.sys [2006-02-20 85408]
S3 w810obex;Sony Ericsson W810 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\w810obex.sys [2006-02-20 83344]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2012-10-30 44808]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre7\bin\jqs.exe [2014-01-29 182696]
R2 McciCMService;McciCMService; C:\Program Files\Common Files\Motive\McciCMService.exe [2007-10-15 303104]
R2 StarWindServiceAE;StarWind AE Service; C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [2007-05-28 275968]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2007-03-12 271920]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-06-10 136176]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-02-21 257928]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-06-10 136176]
S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-01-15 774144]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2013-07-20 754856]
S4 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
-----------------EOF-----------------
Run by Administrator at 2014-03-08 22:09:43
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 10 GB (26%) free of 38 GB
Total RAM: 1015 MB (44% free)
HijackThis download failed
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job
C:\WINDOWS\tasks\avast! Emergency Update.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2013-05-08 77424]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2014-01-29 462760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2012-10-30 1227736]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-01-29 171944]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2012-10-30 1227736]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SoundMan"=C:\WINDOWS\SOUNDMAN.EXE [2004-07-27 68096]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2004-09-30 155648]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2004-09-30 126976]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2013-05-08 41056]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576]
"NeroFilterCheck"=C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [2007-03-09 153136]
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2012-10-30 4297136]
"TO2SSM_McciTrayApp"=C:\Program Files\TO2SSM\McciTrayApp.exe [2009-01-16 1473536]
"msdorbvSrv"=C:\WINDOWS\inf\msdorbv.vbe []
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe [2007-03-12 153136]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2012-11-06 3673728]
"BitTorrent"=C:\Documents and Settings\Administrator\Data aplikací\BitTorrent\BitTorrent.exe [2014-02-21 900696]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxsrvc.dll [2004-09-30 344064]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"E:\hry\Call of Duty\CoDMP.exe"="E:\hry\Call of Duty\CoDMP.exe:*:Enabled:CoDMP"
"E:\hry\MOHAA\MOHAA.exe"="E:\hry\MOHAA\MOHAA.exe:*:Enabled:Medal of Honor Allied Assault"
"C:\WINDOWS\system32\msiexec.exe"="C:\WINDOWS\system32\msiexec.exe:*:Enabled:UpdateManagerSetup"
"C:\Program Files\Activision\Call of Duty 2\CoD2MP_s.exe"="C:\Program Files\Activision\Call of Duty 2\CoD2MP_s.exe:*:Enabled:CoD2MP_s"
"C:\Program Files\Codemasters\Operation Flashpoint\FlashpointResistance.exe"="C:\Program Files\Codemasters\Operation Flashpoint\FlashpointResistance.exe:*:Enabled:Operation Flashpoint"
"C:\Program Files\EA GAMES\Need For Speed Underground\Speed.exe"="C:\Program Files\EA GAMES\Need For Speed Underground\Speed.exe:*:Enabled:Speed"
"C:\Program Files\Microsoft Games\Age of Empires II\empires2.exe"="C:\Program Files\Microsoft Games\Age of Empires II\empires2.exe:*:Enabled:Age of Empires II"
"C:\Documents and Settings\Administrator\Dokumenty\Stažené soubory\Star-Wars-Galactic-Battlegrounds-[PC]-by-Herp-Derp\Star Wars Galactic Battlegrounds [PC] by Herp Derp\Game\Battlegrounds.exe"="C:\Documents and Settings\Administrator\Dokumenty\Stažené soubory\Star-Wars-Galactic-Battlegrounds-[PC]-by-Herp-Derp\Star Wars Galactic Battlegrounds [PC] by Herp Derp\Game\Battlegrounds.exe:*:Enabled:Star Wars Galactic Battlegrounds"
"C:\Program Files\Duke Nukem - Manhattan Project\prism3d.exe"="C:\Program Files\Duke Nukem - Manhattan Project\prism3d.exe:*:Enabled:prism3d"
"C:\Program Files\EA GAMES\Battlefield 1942\BF1942.exe"="C:\Program Files\EA GAMES\Battlefield 1942\BF1942.exe:*:Enabled:BF1942"
"C:\Documents and Settings\Administrator\Dokumenty\Stažené soubory\Call-of-Duty-2-cz\Call of Duty 2 cz\Call of duty 2+CZ+crack+key-by Beny\Call of duty 2\Setup\Data\CoD2MP_s.exe"="C:\Documents and Settings\Administrator\Dokumenty\Stažené soubory\Call-of-Duty-2-cz\Call of Duty 2 cz\Call of duty 2+CZ+crack+key-by Beny\Call of duty 2\Setup\Data\CoD2MP_s.exe:*:Enabled:CoD2MP_s"
"E:\hry\MOHAA\moh_Breakthrough.exe"="E:\hry\MOHAA\moh_Breakthrough.exe:*:Enabled:Medal of Honor Allied Assault(tm) Breakthrough"
"E:\hry\MOHAA\moh_spearhead.exe"="E:\hry\MOHAA\moh_spearhead.exe:*:Enabled:Medal of Honor Allied Assault(tm) Spearhead"
"C:\Games\World_of_Tanks\WoTLauncher.exe"="C:\Games\World_of_Tanks\WoTLauncher.exe:*:Enabled:World of Tanks Launcher"
"C:\Program Files\AVG\AVG2013\avgmfapx.exe"="C:\Program Files\AVG\AVG2013\avgmfapx.exe:*:Enabled:Instalátor AVG"
"C:\Program Files\Quake III Arena\quake3.exe"="C:\Program Files\Quake III Arena\quake3.exe:*:Enabled:quake3"
"C:\Program Files\EA GAMES\MOHAA\MOHAA.exe"="C:\Program Files\EA GAMES\MOHAA\MOHAA.exe:*:Enabled:Medal of Honor Allied Assault"
"C:\Program Files\Daum\PotPlayer\PotPlayerMini.exe"="C:\Program Files\Daum\PotPlayer\PotPlayerMini.exe:*:Enabled:PotPlayer"
"C:\Documents and Settings\Administrator\Data aplikací\BitTorrent\BitTorrent.exe"="C:\Documents and Settings\Administrator\Data aplikací\BitTorrent\BitTorrent.exe:*:Enabled:BitTorrent"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Daum\PotPlayer\PotPlayerMini.exe"="C:\Program Files\Daum\PotPlayer\PotPlayerMini.exe:*:Enabled:PotPlayer"
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{8e69a7c0-7b17-11e3-972e-806d6172696f}]
shell\AutoRun\command - G:\autorun.exe
======List of files/folders created in the last 1 months======
2030-08-29 14:22:31 ----N---- C:\WINDOWS\system32\iyvu9_32.dll
2030-08-29 14:22:31 ----N---- C:\WINDOWS\system32\iacenc.dll
2014-03-08 20:22:30 ----D---- C:\AdwCleaner
2014-03-08 19:43:44 ----D---- C:\Program Files\trend micro
2014-03-08 19:43:41 ----D---- C:\rsit
2014-02-26 21:28:04 ----A---- C:\WINDOWS\system32\CmdLineExt03.dll
2014-02-26 21:21:10 ----D---- C:\Program Files\KONAMI
2014-02-20 23:22:54 ----D---- C:\Casino
2014-02-14 21:09:31 ----D---- C:\Program Files\MP3 Player Utilities
2014-02-14 21:08:36 ----RA---- C:\WINDOWS\PlaySnd.INI
2014-02-14 21:08:36 ----RA---- C:\WINDOWS\fwupgrade.ini
2014-02-14 21:08:36 ----RA---- C:\WINDOWS\Disktool.INI
2014-02-13 00:02:25 ----HDC---- C:\WINDOWS\$NtUninstallKB2916036$
2014-02-12 22:09:38 ----D---- C:\Documents and Settings\Administrator\Data aplikací\OpenOffice
2014-02-12 21:49:54 ----D---- C:\Program Files\OpenOffice 4
2014-02-10 17:10:32 ----D---- C:\WINDOWS\Sun
======List of files/folders modified in the last 1 months======
2014-03-08 22:09:03 ----D---- C:\WINDOWS\Temp
2014-03-08 22:07:14 ----D---- C:\Documents and Settings\Administrator\Data aplikací\BitTorrent
2014-03-08 21:04:02 ----A---- C:\WINDOWS\SchedLgU.Txt
2014-03-08 19:46:37 ----D---- C:\WINDOWS\Prefetch
2014-03-08 19:43:44 ----RD---- C:\Program Files
2014-03-08 16:40:51 ----SHD---- C:\WINDOWS\CSC
2014-03-07 22:53:05 ----D---- C:\WINDOWS
2014-03-07 22:34:40 ----D---- C:\Documents and Settings\Administrator\Data aplikací\Vso
2014-03-07 22:34:40 ----D---- C:\Documents and Settings\Administrator\Data aplikací\DAEMON Tools Lite
2014-03-07 22:29:33 ----D---- C:\WINDOWS\Debug
2014-03-07 22:29:31 ----D---- C:\WINDOWS\Minidump
2014-03-07 10:46:21 ----A---- C:\WINDOWS\NeroDigital.ini
2014-03-07 10:44:30 ----D---- C:\Documents and Settings\Administrator\Data aplikací\vlc
2014-02-26 21:28:04 ----D---- C:\WINDOWS\system32
2014-02-26 21:27:56 ----HD---- C:\Program Files\InstallShield Installation Information
2014-02-26 21:27:36 ----SHD---- C:\WINDOWS\Installer
2014-02-25 00:42:43 ----D---- C:\WINDOWS\system32\CatRoot2
2014-02-21 14:59:44 ----D---- C:\Program Files\BitTorrent
2014-02-21 11:07:48 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2014-02-17 16:05:36 ----D---- C:\WINDOWS\Network Diagnostic
2014-02-15 18:34:42 ----HD---- C:\WINDOWS\inf
2014-02-14 21:09:40 ----SD---- C:\Documents and Settings\Administrator\Data aplikací\Microsoft
2014-02-14 21:09:31 ----D---- C:\WINDOWS\system32\drivers
2014-02-13 10:33:51 ----RSD---- C:\WINDOWS\assembly
2014-02-13 10:33:51 ----D---- C:\WINDOWS\Microsoft.NET
2014-02-13 00:02:28 ----RSHDC---- C:\WINDOWS\system32\dllcache
2014-02-12 23:53:41 ----D---- C:\WINDOWS\WinSxS
2014-02-12 23:53:26 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2014-02-12 23:42:36 ----D---- C:\Program Files\Internet Explorer
2014-02-12 23:42:15 ----D---- C:\WINDOWS\ie8updates
2014-02-12 21:50:53 ----RSD---- C:\WINDOWS\Fonts
2014-02-12 01:49:30 ----D---- C:\WINDOWS\system32\MRT
2014-02-12 01:44:20 ----A---- C:\WINDOWS\system32\MRT.exe
2014-02-11 22:06:40 ----D---- C:\Documents and Settings\All Users\Data aplikací\BlueStacksSetup
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2012-10-30 25256]
R1 AswRdr;aswRdr; C:\WINDOWS\system32\drivers\AswRdr.sys [2012-10-30 35928]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2012-10-30 738504]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2012-10-30 361032]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2012-10-30 54232]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\drivers\aswFsBlk.sys [2012-10-30 21256]
R2 aswMon2;aswMon2; C:\WINDOWS\system32\drivers\aswMon2.sys [2012-10-30 97608]
R3 ALCXSENS;Service for WDM 3D Audio Driver; C:\WINDOWS\system32\drivers\ALCXSENS.SYS [2004-02-24 400384]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2004-08-02 635281]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\ialmnt5.sys [2004-09-30 752093]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-25 12160]
R3 ms_mpu401;Microsoft MPU-401 MIDI UART Driver; C:\WINDOWS\system32\drivers\msmpu401.sys [2001-08-17 2944]
R3 rtl8139;Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver; C:\WINDOWS\system32\DRIVERS\RTL8139.SYS [2008-04-13 20992]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2013-08-09 32384]
R3 usbehci;Ovladač miniportu rozšířeného radiče hostitele Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2009-03-18 30336]
R3 usbhub;Rozbočovač umožnující USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-14 59520]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
S3 a7wjfnwz;a7wjfnwz; C:\WINDOWS\system32\drivers\a7wjfnwz.sys []
S3 aqyb4q5e;aqyb4q5e; C:\WINDOWS\system32\drivers\aqyb4q5e.sys []
S3 hidgame;Microsoft Hid to Joystick Port Enabler; C:\WINDOWS\system32\DRIVERS\hidgame.sys [2001-08-17 8576]
S3 MREMP50;MREMP50 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MREMP50.SYS []
S3 MREMP50a64;MREMP50a64 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MREMP50a64.SYS []
S3 MREMPR5;MREMPR5 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MREMPR5.SYS []
S3 MRENDIS5;MRENDIS5 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MRENDIS5.SYS []
S3 MRESP50;MRESP50 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MRESP50.SYS []
S3 MRESP50a64;MRESP50a64 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MRESP50a64.SYS []
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2013-07-03 14976]
S3 usbstor;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 w810bus;Sony Ericsson W810 Driver driver (WDM); C:\WINDOWS\system32\DRIVERS\w810bus.sys [2006-02-20 58288]
S3 w810mdfl;Sony Ericsson W810 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\w810mdfl.sys [2006-02-20 8336]
S3 w810mdm;Sony Ericsson W810 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\w810mdm.sys [2006-02-20 94064]
S3 w810mgmt;Sony Ericsson W810 USB WMC Device Management Drivers (WDM); C:\WINDOWS\system32\DRIVERS\w810mgmt.sys [2006-02-20 85408]
S3 w810obex;Sony Ericsson W810 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\w810obex.sys [2006-02-20 83344]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2012-10-30 44808]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre7\bin\jqs.exe [2014-01-29 182696]
R2 McciCMService;McciCMService; C:\Program Files\Common Files\Motive\McciCMService.exe [2007-10-15 303104]
R2 StarWindServiceAE;StarWind AE Service; C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [2007-05-28 275968]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2007-03-12 271920]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-06-10 136176]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-02-21 257928]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-06-10 136176]
S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-01-15 774144]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2013-07-20 754856]
S4 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 119533
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: zamrzlé pc , využití cpu 100% , kontrola logu
Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:
a klikněte na >MoveIt!<. Před skenem vypněte antivir a po něm restartujte PC. Dejte nový log RSIT.:files
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\inf\msdorbv.vbe
:reg
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"msdorbvSrv"=-
"SunJavaUpdateSched"=-
[-HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{8e69a7c0-7b17-11e3-972e-806d6172696f}]
:commands
[Purity]
[Emptytemp]
[Emptyflash]
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: zamrzlé pc , využití cpu 100% , kontrola logu
Logfile of random's system information tool 1.06 (written by random/random)
Run by Administrator at 2014-03-08 23:37:52
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 10 GB (26%) free of 38 GB
Total RAM: 1015 MB (66% free)
HijackThis download failed
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job
C:\WINDOWS\tasks\avast! Emergency Update.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2013-05-08 77424]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2014-01-29 462760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2012-10-30 1227736]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-01-29 171944]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2012-10-30 1227736]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SoundMan"=C:\WINDOWS\SOUNDMAN.EXE [2004-07-27 68096]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2004-09-30 155648]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2004-09-30 126976]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2013-05-08 41056]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576]
"NeroFilterCheck"=C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [2007-03-09 153136]
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2012-10-30 4297136]
"TO2SSM_McciTrayApp"=C:\Program Files\TO2SSM\McciTrayApp.exe [2009-01-16 1473536]
"msdorbvSrv"=C:\WINDOWS\inf\msdorbv.vbe []
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe [2007-03-12 153136]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2012-11-06 3673728]
"BitTorrent"=C:\Documents and Settings\Administrator\Data aplikací\BitTorrent\BitTorrent.exe [2014-02-21 900696]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxsrvc.dll [2004-09-30 344064]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"E:\hry\Call of Duty\CoDMP.exe"="E:\hry\Call of Duty\CoDMP.exe:*:Enabled:CoDMP"
"E:\hry\MOHAA\MOHAA.exe"="E:\hry\MOHAA\MOHAA.exe:*:Enabled:Medal of Honor Allied Assault"
"C:\WINDOWS\system32\msiexec.exe"="C:\WINDOWS\system32\msiexec.exe:*:Enabled:UpdateManagerSetup"
"C:\Program Files\Activision\Call of Duty 2\CoD2MP_s.exe"="C:\Program Files\Activision\Call of Duty 2\CoD2MP_s.exe:*:Enabled:CoD2MP_s"
"C:\Program Files\Codemasters\Operation Flashpoint\FlashpointResistance.exe"="C:\Program Files\Codemasters\Operation Flashpoint\FlashpointResistance.exe:*:Enabled:Operation Flashpoint"
"C:\Program Files\EA GAMES\Need For Speed Underground\Speed.exe"="C:\Program Files\EA GAMES\Need For Speed Underground\Speed.exe:*:Enabled:Speed"
"C:\Program Files\Microsoft Games\Age of Empires II\empires2.exe"="C:\Program Files\Microsoft Games\Age of Empires II\empires2.exe:*:Enabled:Age of Empires II"
"C:\Documents and Settings\Administrator\Dokumenty\Stažené soubory\Star-Wars-Galactic-Battlegrounds-[PC]-by-Herp-Derp\Star Wars Galactic Battlegrounds [PC] by Herp Derp\Game\Battlegrounds.exe"="C:\Documents and Settings\Administrator\Dokumenty\Stažené soubory\Star-Wars-Galactic-Battlegrounds-[PC]-by-Herp-Derp\Star Wars Galactic Battlegrounds [PC] by Herp Derp\Game\Battlegrounds.exe:*:Enabled:Star Wars Galactic Battlegrounds"
"C:\Program Files\Duke Nukem - Manhattan Project\prism3d.exe"="C:\Program Files\Duke Nukem - Manhattan Project\prism3d.exe:*:Enabled:prism3d"
"C:\Program Files\EA GAMES\Battlefield 1942\BF1942.exe"="C:\Program Files\EA GAMES\Battlefield 1942\BF1942.exe:*:Enabled:BF1942"
"C:\Documents and Settings\Administrator\Dokumenty\Stažené soubory\Call-of-Duty-2-cz\Call of Duty 2 cz\Call of duty 2+CZ+crack+key-by Beny\Call of duty 2\Setup\Data\CoD2MP_s.exe"="C:\Documents and Settings\Administrator\Dokumenty\Stažené soubory\Call-of-Duty-2-cz\Call of Duty 2 cz\Call of duty 2+CZ+crack+key-by Beny\Call of duty 2\Setup\Data\CoD2MP_s.exe:*:Enabled:CoD2MP_s"
"E:\hry\MOHAA\moh_Breakthrough.exe"="E:\hry\MOHAA\moh_Breakthrough.exe:*:Enabled:Medal of Honor Allied Assault(tm) Breakthrough"
"E:\hry\MOHAA\moh_spearhead.exe"="E:\hry\MOHAA\moh_spearhead.exe:*:Enabled:Medal of Honor Allied Assault(tm) Spearhead"
"C:\Games\World_of_Tanks\WoTLauncher.exe"="C:\Games\World_of_Tanks\WoTLauncher.exe:*:Enabled:World of Tanks Launcher"
"C:\Program Files\AVG\AVG2013\avgmfapx.exe"="C:\Program Files\AVG\AVG2013\avgmfapx.exe:*:Enabled:Instalátor AVG"
"C:\Program Files\Quake III Arena\quake3.exe"="C:\Program Files\Quake III Arena\quake3.exe:*:Enabled:quake3"
"C:\Program Files\EA GAMES\MOHAA\MOHAA.exe"="C:\Program Files\EA GAMES\MOHAA\MOHAA.exe:*:Enabled:Medal of Honor Allied Assault"
"C:\Program Files\Daum\PotPlayer\PotPlayerMini.exe"="C:\Program Files\Daum\PotPlayer\PotPlayerMini.exe:*:Enabled:PotPlayer"
"C:\Documents and Settings\Administrator\Data aplikací\BitTorrent\BitTorrent.exe"="C:\Documents and Settings\Administrator\Data aplikací\BitTorrent\BitTorrent.exe:*:Enabled:BitTorrent"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Daum\PotPlayer\PotPlayerMini.exe"="C:\Program Files\Daum\PotPlayer\PotPlayerMini.exe:*:Enabled:PotPlayer"
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{8e69a7c0-7b17-11e3-972e-806d6172696f}]
shell\AutoRun\command - G:\autorun.exe
======List of files/folders created in the last 1 months======
2030-08-29 14:22:31 ----N---- C:\WINDOWS\system32\iyvu9_32.dll
2030-08-29 14:22:31 ----N---- C:\WINDOWS\system32\iacenc.dll
2014-03-08 22:47:39 ----D---- C:\_OTM
2014-03-08 20:22:30 ----D---- C:\AdwCleaner
2014-03-08 19:43:44 ----D---- C:\Program Files\trend micro
2014-03-08 19:43:41 ----D---- C:\rsit
2014-02-26 21:28:04 ----A---- C:\WINDOWS\system32\CmdLineExt03.dll
2014-02-26 21:21:10 ----D---- C:\Program Files\KONAMI
2014-02-20 23:22:54 ----D---- C:\Casino
2014-02-14 21:09:31 ----D---- C:\Program Files\MP3 Player Utilities
2014-02-14 21:08:36 ----RA---- C:\WINDOWS\PlaySnd.INI
2014-02-14 21:08:36 ----RA---- C:\WINDOWS\fwupgrade.ini
2014-02-14 21:08:36 ----RA---- C:\WINDOWS\Disktool.INI
2014-02-13 00:02:25 ----HDC---- C:\WINDOWS\$NtUninstallKB2916036$
2014-02-12 22:09:38 ----D---- C:\Documents and Settings\Administrator\Data aplikací\OpenOffice
2014-02-12 21:49:54 ----D---- C:\Program Files\OpenOffice 4
2014-02-10 17:10:32 ----D---- C:\WINDOWS\Sun
======List of files/folders modified in the last 1 months======
2014-03-08 23:35:41 ----D---- C:\Documents and Settings\Administrator\Data aplikací\BitTorrent
2014-03-08 23:32:20 ----D---- C:\WINDOWS\Temp
2014-03-08 23:11:21 ----A---- C:\WINDOWS\SchedLgU.Txt
2014-03-08 22:58:00 ----SHD---- C:\WINDOWS\CSC
2014-03-08 19:46:37 ----D---- C:\WINDOWS\Prefetch
2014-03-08 19:43:44 ----RD---- C:\Program Files
2014-03-07 22:53:05 ----D---- C:\WINDOWS
2014-03-07 22:34:40 ----D---- C:\Documents and Settings\Administrator\Data aplikací\Vso
2014-03-07 22:34:40 ----D---- C:\Documents and Settings\Administrator\Data aplikací\DAEMON Tools Lite
2014-03-07 22:29:33 ----D---- C:\WINDOWS\Debug
2014-03-07 22:29:31 ----D---- C:\WINDOWS\Minidump
2014-03-07 10:46:21 ----A---- C:\WINDOWS\NeroDigital.ini
2014-03-07 10:44:30 ----D---- C:\Documents and Settings\Administrator\Data aplikací\vlc
2014-02-26 21:28:04 ----D---- C:\WINDOWS\system32
2014-02-26 21:27:56 ----HD---- C:\Program Files\InstallShield Installation Information
2014-02-26 21:27:36 ----SHD---- C:\WINDOWS\Installer
2014-02-25 00:42:43 ----D---- C:\WINDOWS\system32\CatRoot2
2014-02-21 14:59:44 ----D---- C:\Program Files\BitTorrent
2014-02-21 11:07:48 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2014-02-17 16:05:36 ----D---- C:\WINDOWS\Network Diagnostic
2014-02-15 18:34:42 ----HD---- C:\WINDOWS\inf
2014-02-14 21:09:40 ----SD---- C:\Documents and Settings\Administrator\Data aplikací\Microsoft
2014-02-14 21:09:31 ----D---- C:\WINDOWS\system32\drivers
2014-02-13 10:33:51 ----RSD---- C:\WINDOWS\assembly
2014-02-13 10:33:51 ----D---- C:\WINDOWS\Microsoft.NET
2014-02-13 00:02:28 ----RSHDC---- C:\WINDOWS\system32\dllcache
2014-02-12 23:53:41 ----D---- C:\WINDOWS\WinSxS
2014-02-12 23:53:26 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2014-02-12 23:42:36 ----D---- C:\Program Files\Internet Explorer
2014-02-12 23:42:15 ----D---- C:\WINDOWS\ie8updates
2014-02-12 21:50:53 ----RSD---- C:\WINDOWS\Fonts
2014-02-12 01:49:30 ----D---- C:\WINDOWS\system32\MRT
2014-02-12 01:44:20 ----A---- C:\WINDOWS\system32\MRT.exe
2014-02-11 22:06:40 ----D---- C:\Documents and Settings\All Users\Data aplikací\BlueStacksSetup
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2012-10-30 25256]
R1 AswRdr;aswRdr; C:\WINDOWS\system32\drivers\AswRdr.sys [2012-10-30 35928]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2012-10-30 738504]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2012-10-30 361032]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2012-10-30 54232]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\drivers\aswFsBlk.sys [2012-10-30 21256]
R2 aswMon2;aswMon2; C:\WINDOWS\system32\drivers\aswMon2.sys [2012-10-30 97608]
R3 ALCXSENS;Service for WDM 3D Audio Driver; C:\WINDOWS\system32\drivers\ALCXSENS.SYS [2004-02-24 400384]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2004-08-02 635281]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\ialmnt5.sys [2004-09-30 752093]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-25 12160]
R3 ms_mpu401;Microsoft MPU-401 MIDI UART Driver; C:\WINDOWS\system32\drivers\msmpu401.sys [2001-08-17 2944]
R3 rtl8139;Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver; C:\WINDOWS\system32\DRIVERS\RTL8139.SYS [2008-04-13 20992]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2013-08-09 32384]
R3 usbehci;Ovladač miniportu rozšířeného radiče hostitele Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2009-03-18 30336]
R3 usbhub;Rozbočovač umožnující USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-14 59520]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
S3 a8pxruj3;a8pxruj3; C:\WINDOWS\system32\drivers\a8pxruj3.sys []
S3 ah6d4v62;ah6d4v62; C:\WINDOWS\system32\drivers\ah6d4v62.sys []
S3 hidgame;Microsoft Hid to Joystick Port Enabler; C:\WINDOWS\system32\DRIVERS\hidgame.sys [2001-08-17 8576]
S3 MREMP50;MREMP50 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MREMP50.SYS []
S3 MREMP50a64;MREMP50a64 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MREMP50a64.SYS []
S3 MREMPR5;MREMPR5 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MREMPR5.SYS []
S3 MRENDIS5;MRENDIS5 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MRENDIS5.SYS []
S3 MRESP50;MRESP50 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MRESP50.SYS []
S3 MRESP50a64;MRESP50a64 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MRESP50a64.SYS []
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2013-07-03 14976]
S3 usbstor;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 w810bus;Sony Ericsson W810 Driver driver (WDM); C:\WINDOWS\system32\DRIVERS\w810bus.sys [2006-02-20 58288]
S3 w810mdfl;Sony Ericsson W810 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\w810mdfl.sys [2006-02-20 8336]
S3 w810mdm;Sony Ericsson W810 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\w810mdm.sys [2006-02-20 94064]
S3 w810mgmt;Sony Ericsson W810 USB WMC Device Management Drivers (WDM); C:\WINDOWS\system32\DRIVERS\w810mgmt.sys [2006-02-20 85408]
S3 w810obex;Sony Ericsson W810 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\w810obex.sys [2006-02-20 83344]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2012-10-30 44808]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre7\bin\jqs.exe [2014-01-29 182696]
R2 McciCMService;McciCMService; C:\Program Files\Common Files\Motive\McciCMService.exe [2007-10-15 303104]
R2 StarWindServiceAE;StarWind AE Service; C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [2007-05-28 275968]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2007-03-12 271920]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-06-10 136176]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-02-21 257928]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-06-10 136176]
S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-01-15 774144]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2013-07-20 754856]
S4 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
-----------------EOF-----------------
Run by Administrator at 2014-03-08 23:37:52
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 10 GB (26%) free of 38 GB
Total RAM: 1015 MB (66% free)
HijackThis download failed
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job
C:\WINDOWS\tasks\avast! Emergency Update.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2013-05-08 77424]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2014-01-29 462760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2012-10-30 1227736]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-01-29 171944]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2012-10-30 1227736]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SoundMan"=C:\WINDOWS\SOUNDMAN.EXE [2004-07-27 68096]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2004-09-30 155648]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2004-09-30 126976]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2013-05-08 41056]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576]
"NeroFilterCheck"=C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [2007-03-09 153136]
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2012-10-30 4297136]
"TO2SSM_McciTrayApp"=C:\Program Files\TO2SSM\McciTrayApp.exe [2009-01-16 1473536]
"msdorbvSrv"=C:\WINDOWS\inf\msdorbv.vbe []
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe [2007-03-12 153136]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2012-11-06 3673728]
"BitTorrent"=C:\Documents and Settings\Administrator\Data aplikací\BitTorrent\BitTorrent.exe [2014-02-21 900696]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxsrvc.dll [2004-09-30 344064]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"E:\hry\Call of Duty\CoDMP.exe"="E:\hry\Call of Duty\CoDMP.exe:*:Enabled:CoDMP"
"E:\hry\MOHAA\MOHAA.exe"="E:\hry\MOHAA\MOHAA.exe:*:Enabled:Medal of Honor Allied Assault"
"C:\WINDOWS\system32\msiexec.exe"="C:\WINDOWS\system32\msiexec.exe:*:Enabled:UpdateManagerSetup"
"C:\Program Files\Activision\Call of Duty 2\CoD2MP_s.exe"="C:\Program Files\Activision\Call of Duty 2\CoD2MP_s.exe:*:Enabled:CoD2MP_s"
"C:\Program Files\Codemasters\Operation Flashpoint\FlashpointResistance.exe"="C:\Program Files\Codemasters\Operation Flashpoint\FlashpointResistance.exe:*:Enabled:Operation Flashpoint"
"C:\Program Files\EA GAMES\Need For Speed Underground\Speed.exe"="C:\Program Files\EA GAMES\Need For Speed Underground\Speed.exe:*:Enabled:Speed"
"C:\Program Files\Microsoft Games\Age of Empires II\empires2.exe"="C:\Program Files\Microsoft Games\Age of Empires II\empires2.exe:*:Enabled:Age of Empires II"
"C:\Documents and Settings\Administrator\Dokumenty\Stažené soubory\Star-Wars-Galactic-Battlegrounds-[PC]-by-Herp-Derp\Star Wars Galactic Battlegrounds [PC] by Herp Derp\Game\Battlegrounds.exe"="C:\Documents and Settings\Administrator\Dokumenty\Stažené soubory\Star-Wars-Galactic-Battlegrounds-[PC]-by-Herp-Derp\Star Wars Galactic Battlegrounds [PC] by Herp Derp\Game\Battlegrounds.exe:*:Enabled:Star Wars Galactic Battlegrounds"
"C:\Program Files\Duke Nukem - Manhattan Project\prism3d.exe"="C:\Program Files\Duke Nukem - Manhattan Project\prism3d.exe:*:Enabled:prism3d"
"C:\Program Files\EA GAMES\Battlefield 1942\BF1942.exe"="C:\Program Files\EA GAMES\Battlefield 1942\BF1942.exe:*:Enabled:BF1942"
"C:\Documents and Settings\Administrator\Dokumenty\Stažené soubory\Call-of-Duty-2-cz\Call of Duty 2 cz\Call of duty 2+CZ+crack+key-by Beny\Call of duty 2\Setup\Data\CoD2MP_s.exe"="C:\Documents and Settings\Administrator\Dokumenty\Stažené soubory\Call-of-Duty-2-cz\Call of Duty 2 cz\Call of duty 2+CZ+crack+key-by Beny\Call of duty 2\Setup\Data\CoD2MP_s.exe:*:Enabled:CoD2MP_s"
"E:\hry\MOHAA\moh_Breakthrough.exe"="E:\hry\MOHAA\moh_Breakthrough.exe:*:Enabled:Medal of Honor Allied Assault(tm) Breakthrough"
"E:\hry\MOHAA\moh_spearhead.exe"="E:\hry\MOHAA\moh_spearhead.exe:*:Enabled:Medal of Honor Allied Assault(tm) Spearhead"
"C:\Games\World_of_Tanks\WoTLauncher.exe"="C:\Games\World_of_Tanks\WoTLauncher.exe:*:Enabled:World of Tanks Launcher"
"C:\Program Files\AVG\AVG2013\avgmfapx.exe"="C:\Program Files\AVG\AVG2013\avgmfapx.exe:*:Enabled:Instalátor AVG"
"C:\Program Files\Quake III Arena\quake3.exe"="C:\Program Files\Quake III Arena\quake3.exe:*:Enabled:quake3"
"C:\Program Files\EA GAMES\MOHAA\MOHAA.exe"="C:\Program Files\EA GAMES\MOHAA\MOHAA.exe:*:Enabled:Medal of Honor Allied Assault"
"C:\Program Files\Daum\PotPlayer\PotPlayerMini.exe"="C:\Program Files\Daum\PotPlayer\PotPlayerMini.exe:*:Enabled:PotPlayer"
"C:\Documents and Settings\Administrator\Data aplikací\BitTorrent\BitTorrent.exe"="C:\Documents and Settings\Administrator\Data aplikací\BitTorrent\BitTorrent.exe:*:Enabled:BitTorrent"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Daum\PotPlayer\PotPlayerMini.exe"="C:\Program Files\Daum\PotPlayer\PotPlayerMini.exe:*:Enabled:PotPlayer"
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{8e69a7c0-7b17-11e3-972e-806d6172696f}]
shell\AutoRun\command - G:\autorun.exe
======List of files/folders created in the last 1 months======
2030-08-29 14:22:31 ----N---- C:\WINDOWS\system32\iyvu9_32.dll
2030-08-29 14:22:31 ----N---- C:\WINDOWS\system32\iacenc.dll
2014-03-08 22:47:39 ----D---- C:\_OTM
2014-03-08 20:22:30 ----D---- C:\AdwCleaner
2014-03-08 19:43:44 ----D---- C:\Program Files\trend micro
2014-03-08 19:43:41 ----D---- C:\rsit
2014-02-26 21:28:04 ----A---- C:\WINDOWS\system32\CmdLineExt03.dll
2014-02-26 21:21:10 ----D---- C:\Program Files\KONAMI
2014-02-20 23:22:54 ----D---- C:\Casino
2014-02-14 21:09:31 ----D---- C:\Program Files\MP3 Player Utilities
2014-02-14 21:08:36 ----RA---- C:\WINDOWS\PlaySnd.INI
2014-02-14 21:08:36 ----RA---- C:\WINDOWS\fwupgrade.ini
2014-02-14 21:08:36 ----RA---- C:\WINDOWS\Disktool.INI
2014-02-13 00:02:25 ----HDC---- C:\WINDOWS\$NtUninstallKB2916036$
2014-02-12 22:09:38 ----D---- C:\Documents and Settings\Administrator\Data aplikací\OpenOffice
2014-02-12 21:49:54 ----D---- C:\Program Files\OpenOffice 4
2014-02-10 17:10:32 ----D---- C:\WINDOWS\Sun
======List of files/folders modified in the last 1 months======
2014-03-08 23:35:41 ----D---- C:\Documents and Settings\Administrator\Data aplikací\BitTorrent
2014-03-08 23:32:20 ----D---- C:\WINDOWS\Temp
2014-03-08 23:11:21 ----A---- C:\WINDOWS\SchedLgU.Txt
2014-03-08 22:58:00 ----SHD---- C:\WINDOWS\CSC
2014-03-08 19:46:37 ----D---- C:\WINDOWS\Prefetch
2014-03-08 19:43:44 ----RD---- C:\Program Files
2014-03-07 22:53:05 ----D---- C:\WINDOWS
2014-03-07 22:34:40 ----D---- C:\Documents and Settings\Administrator\Data aplikací\Vso
2014-03-07 22:34:40 ----D---- C:\Documents and Settings\Administrator\Data aplikací\DAEMON Tools Lite
2014-03-07 22:29:33 ----D---- C:\WINDOWS\Debug
2014-03-07 22:29:31 ----D---- C:\WINDOWS\Minidump
2014-03-07 10:46:21 ----A---- C:\WINDOWS\NeroDigital.ini
2014-03-07 10:44:30 ----D---- C:\Documents and Settings\Administrator\Data aplikací\vlc
2014-02-26 21:28:04 ----D---- C:\WINDOWS\system32
2014-02-26 21:27:56 ----HD---- C:\Program Files\InstallShield Installation Information
2014-02-26 21:27:36 ----SHD---- C:\WINDOWS\Installer
2014-02-25 00:42:43 ----D---- C:\WINDOWS\system32\CatRoot2
2014-02-21 14:59:44 ----D---- C:\Program Files\BitTorrent
2014-02-21 11:07:48 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2014-02-17 16:05:36 ----D---- C:\WINDOWS\Network Diagnostic
2014-02-15 18:34:42 ----HD---- C:\WINDOWS\inf
2014-02-14 21:09:40 ----SD---- C:\Documents and Settings\Administrator\Data aplikací\Microsoft
2014-02-14 21:09:31 ----D---- C:\WINDOWS\system32\drivers
2014-02-13 10:33:51 ----RSD---- C:\WINDOWS\assembly
2014-02-13 10:33:51 ----D---- C:\WINDOWS\Microsoft.NET
2014-02-13 00:02:28 ----RSHDC---- C:\WINDOWS\system32\dllcache
2014-02-12 23:53:41 ----D---- C:\WINDOWS\WinSxS
2014-02-12 23:53:26 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2014-02-12 23:42:36 ----D---- C:\Program Files\Internet Explorer
2014-02-12 23:42:15 ----D---- C:\WINDOWS\ie8updates
2014-02-12 21:50:53 ----RSD---- C:\WINDOWS\Fonts
2014-02-12 01:49:30 ----D---- C:\WINDOWS\system32\MRT
2014-02-12 01:44:20 ----A---- C:\WINDOWS\system32\MRT.exe
2014-02-11 22:06:40 ----D---- C:\Documents and Settings\All Users\Data aplikací\BlueStacksSetup
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2012-10-30 25256]
R1 AswRdr;aswRdr; C:\WINDOWS\system32\drivers\AswRdr.sys [2012-10-30 35928]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2012-10-30 738504]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2012-10-30 361032]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2012-10-30 54232]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\drivers\aswFsBlk.sys [2012-10-30 21256]
R2 aswMon2;aswMon2; C:\WINDOWS\system32\drivers\aswMon2.sys [2012-10-30 97608]
R3 ALCXSENS;Service for WDM 3D Audio Driver; C:\WINDOWS\system32\drivers\ALCXSENS.SYS [2004-02-24 400384]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2004-08-02 635281]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\ialmnt5.sys [2004-09-30 752093]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-25 12160]
R3 ms_mpu401;Microsoft MPU-401 MIDI UART Driver; C:\WINDOWS\system32\drivers\msmpu401.sys [2001-08-17 2944]
R3 rtl8139;Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver; C:\WINDOWS\system32\DRIVERS\RTL8139.SYS [2008-04-13 20992]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2013-08-09 32384]
R3 usbehci;Ovladač miniportu rozšířeného radiče hostitele Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2009-03-18 30336]
R3 usbhub;Rozbočovač umožnující USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-14 59520]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
S3 a8pxruj3;a8pxruj3; C:\WINDOWS\system32\drivers\a8pxruj3.sys []
S3 ah6d4v62;ah6d4v62; C:\WINDOWS\system32\drivers\ah6d4v62.sys []
S3 hidgame;Microsoft Hid to Joystick Port Enabler; C:\WINDOWS\system32\DRIVERS\hidgame.sys [2001-08-17 8576]
S3 MREMP50;MREMP50 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MREMP50.SYS []
S3 MREMP50a64;MREMP50a64 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MREMP50a64.SYS []
S3 MREMPR5;MREMPR5 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MREMPR5.SYS []
S3 MRENDIS5;MRENDIS5 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MRENDIS5.SYS []
S3 MRESP50;MRESP50 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MRESP50.SYS []
S3 MRESP50a64;MRESP50a64 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MRESP50a64.SYS []
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2013-07-03 14976]
S3 usbstor;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 w810bus;Sony Ericsson W810 Driver driver (WDM); C:\WINDOWS\system32\DRIVERS\w810bus.sys [2006-02-20 58288]
S3 w810mdfl;Sony Ericsson W810 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\w810mdfl.sys [2006-02-20 8336]
S3 w810mdm;Sony Ericsson W810 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\w810mdm.sys [2006-02-20 94064]
S3 w810mgmt;Sony Ericsson W810 USB WMC Device Management Drivers (WDM); C:\WINDOWS\system32\DRIVERS\w810mgmt.sys [2006-02-20 85408]
S3 w810obex;Sony Ericsson W810 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\w810obex.sys [2006-02-20 83344]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2012-10-30 44808]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre7\bin\jqs.exe [2014-01-29 182696]
R2 McciCMService;McciCMService; C:\Program Files\Common Files\Motive\McciCMService.exe [2007-10-15 303104]
R2 StarWindServiceAE;StarWind AE Service; C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [2007-05-28 275968]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2007-03-12 271920]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-06-10 136176]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-02-21 257928]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-06-10 136176]
S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-01-15 774144]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2013-07-20 754856]
S4 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 119533
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: zamrzlé pc , využití cpu 100% , kontrola logu
Musel jste udělat nějakou chybu, OTM nemazal. Vypnul jste antivir? V pravém okně se zobrazuje průběh akce. Z něj poznáte, zda byla položka smazána. Zkuste zopakovat.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: zamrzlé pc , využití cpu 100% , kontrola logu
jak poznám jestli potřebuji 32bit nebo 64bit rsit ?
-
Rudy
- Site Admin
- Příspěvky: 119533
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: zamrzlé pc , využití cpu 100% , kontrola logu
To nevíte, jaký systém v PC máte? Ve vašem případě 32b.tygr84 píše:jak poznám jestli potřebuji 32bit nebo 64bit rsit ?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: zamrzlé pc , využití cpu 100% , kontrola logu
toto je zpráva OTM:
All processes killed
========== FILES ==========
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job moved successfully.
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job moved successfully.
File/Folder C:\WINDOWS\inf\msdorbv.vbe not found.
========== REGISTRY ==========
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\msdorbvSrv deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched deleted successfully.
Registry key HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{8e69a7c0-7b17-11e3-972e-806d6172696f}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8e69a7c0-7b17-11e3-972e-806d6172696f}\ not found.
========== COMMANDS ==========
[EMPTYTEMP]
User: Administrator
->Temp folder emptied: 598167 bytes
->Temporary Internet Files folder emptied: 1003651 bytes
->Google Chrome cache emptied: 6656575 bytes
->Flash cache emptied: 595 bytes
User: All Users
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
User: LocalService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 402 bytes
User: LocalService.NT AUTHORITY
->Temp folder emptied: 66016 bytes
->Temporary Internet Files folder emptied: 33177 bytes
User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 402 bytes
User: NetworkService.NT AUTHORITY
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33237 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 2351732 bytes
%systemroot%\System32 .tmp files removed: 7539144 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 49320 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 1403624914 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 33170 bytes
RecycleBin emptied: 0 bytes
Total Files Cleaned = 1 356,00 mb
[EMPTYFLASH]
User: Administrator
->Flash cache emptied: 0 bytes
User: All Users
User: Default User
User: LocalService
User: LocalService.NT AUTHORITY
User: NetworkService
User: NetworkService.NT AUTHORITY
Total Flash Files Cleaned = 0,00 mb
OTM by OldTimer - Version 3.1.21.0 log created on 03092014_114624
Files moved on Reboot...
Registry entries deleted on Reboot...
a toto RSIT:
Logfile of random's system information tool 1.06 (written by random/random)
Run by Administrator at 2014-03-09 12:58:58
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 12 GB (32%) free of 38 GB
Total RAM: 1015 MB (49% free)
HijackThis download failed
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job
C:\WINDOWS\tasks\avast! Emergency Update.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2013-05-08 77424]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2014-01-29 462760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2012-10-30 1227736]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-01-29 171944]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2012-10-30 1227736]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SoundMan"=C:\WINDOWS\SOUNDMAN.EXE [2004-07-27 68096]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2004-09-30 155648]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2004-09-30 126976]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2013-05-08 41056]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576]
"NeroFilterCheck"=C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [2007-03-09 153136]
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2012-10-30 4297136]
"TO2SSM_McciTrayApp"=C:\Program Files\TO2SSM\McciTrayApp.exe [2009-01-16 1473536]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe [2007-03-12 153136]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2012-11-06 3673728]
"BitTorrent"=C:\Documents and Settings\Administrator\Data aplikací\BitTorrent\BitTorrent.exe [2014-02-21 900696]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxsrvc.dll [2004-09-30 344064]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"E:\hry\Call of Duty\CoDMP.exe"="E:\hry\Call of Duty\CoDMP.exe:*:Enabled:CoDMP"
"E:\hry\MOHAA\MOHAA.exe"="E:\hry\MOHAA\MOHAA.exe:*:Enabled:Medal of Honor Allied Assault"
"C:\WINDOWS\system32\msiexec.exe"="C:\WINDOWS\system32\msiexec.exe:*:Enabled:UpdateManagerSetup"
"C:\Program Files\Activision\Call of Duty 2\CoD2MP_s.exe"="C:\Program Files\Activision\Call of Duty 2\CoD2MP_s.exe:*:Enabled:CoD2MP_s"
"C:\Program Files\Codemasters\Operation Flashpoint\FlashpointResistance.exe"="C:\Program Files\Codemasters\Operation Flashpoint\FlashpointResistance.exe:*:Enabled:Operation Flashpoint"
"C:\Program Files\EA GAMES\Need For Speed Underground\Speed.exe"="C:\Program Files\EA GAMES\Need For Speed Underground\Speed.exe:*:Enabled:Speed"
"C:\Program Files\Microsoft Games\Age of Empires II\empires2.exe"="C:\Program Files\Microsoft Games\Age of Empires II\empires2.exe:*:Enabled:Age of Empires II"
"C:\Documents and Settings\Administrator\Dokumenty\Stažené soubory\Star-Wars-Galactic-Battlegrounds-[PC]-by-Herp-Derp\Star Wars Galactic Battlegrounds [PC] by Herp Derp\Game\Battlegrounds.exe"="C:\Documents and Settings\Administrator\Dokumenty\Stažené soubory\Star-Wars-Galactic-Battlegrounds-[PC]-by-Herp-Derp\Star Wars Galactic Battlegrounds [PC] by Herp Derp\Game\Battlegrounds.exe:*:Enabled:Star Wars Galactic Battlegrounds"
"C:\Program Files\Duke Nukem - Manhattan Project\prism3d.exe"="C:\Program Files\Duke Nukem - Manhattan Project\prism3d.exe:*:Enabled:prism3d"
"C:\Program Files\EA GAMES\Battlefield 1942\BF1942.exe"="C:\Program Files\EA GAMES\Battlefield 1942\BF1942.exe:*:Enabled:BF1942"
"C:\Documents and Settings\Administrator\Dokumenty\Stažené soubory\Call-of-Duty-2-cz\Call of Duty 2 cz\Call of duty 2+CZ+crack+key-by Beny\Call of duty 2\Setup\Data\CoD2MP_s.exe"="C:\Documents and Settings\Administrator\Dokumenty\Stažené soubory\Call-of-Duty-2-cz\Call of Duty 2 cz\Call of duty 2+CZ+crack+key-by Beny\Call of duty 2\Setup\Data\CoD2MP_s.exe:*:Enabled:CoD2MP_s"
"E:\hry\MOHAA\moh_Breakthrough.exe"="E:\hry\MOHAA\moh_Breakthrough.exe:*:Enabled:Medal of Honor Allied Assault(tm) Breakthrough"
"E:\hry\MOHAA\moh_spearhead.exe"="E:\hry\MOHAA\moh_spearhead.exe:*:Enabled:Medal of Honor Allied Assault(tm) Spearhead"
"C:\Games\World_of_Tanks\WoTLauncher.exe"="C:\Games\World_of_Tanks\WoTLauncher.exe:*:Enabled:World of Tanks Launcher"
"C:\Program Files\AVG\AVG2013\avgmfapx.exe"="C:\Program Files\AVG\AVG2013\avgmfapx.exe:*:Enabled:Instalátor AVG"
"C:\Program Files\Quake III Arena\quake3.exe"="C:\Program Files\Quake III Arena\quake3.exe:*:Enabled:quake3"
"C:\Program Files\EA GAMES\MOHAA\MOHAA.exe"="C:\Program Files\EA GAMES\MOHAA\MOHAA.exe:*:Enabled:Medal of Honor Allied Assault"
"C:\Program Files\Daum\PotPlayer\PotPlayerMini.exe"="C:\Program Files\Daum\PotPlayer\PotPlayerMini.exe:*:Enabled:PotPlayer"
"C:\Documents and Settings\Administrator\Data aplikací\BitTorrent\BitTorrent.exe"="C:\Documents and Settings\Administrator\Data aplikací\BitTorrent\BitTorrent.exe:*:Enabled:BitTorrent"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Daum\PotPlayer\PotPlayerMini.exe"="C:\Program Files\Daum\PotPlayer\PotPlayerMini.exe:*:Enabled:PotPlayer"
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{8e69a7c0-7b17-11e3-972e-806d6172696f}]
shell\AutoRun\command - G:\autorun.exe
======List of files/folders created in the last 1 months======
2030-08-29 14:22:31 ----N---- C:\WINDOWS\system32\iyvu9_32.dll
2030-08-29 14:22:31 ----N---- C:\WINDOWS\system32\iacenc.dll
2014-03-08 22:47:39 ----D---- C:\_OTM
2014-03-08 20:22:30 ----D---- C:\AdwCleaner
2014-03-08 19:43:44 ----D---- C:\Program Files\trend micro
2014-03-08 19:43:41 ----D---- C:\rsit
2014-02-26 21:28:04 ----A---- C:\WINDOWS\system32\CmdLineExt03.dll
2014-02-26 21:21:10 ----D---- C:\Program Files\KONAMI
2014-02-20 23:22:54 ----D---- C:\Casino
2014-02-14 21:09:31 ----D---- C:\Program Files\MP3 Player Utilities
2014-02-14 21:08:36 ----RA---- C:\WINDOWS\PlaySnd.INI
2014-02-14 21:08:36 ----RA---- C:\WINDOWS\fwupgrade.ini
2014-02-14 21:08:36 ----RA---- C:\WINDOWS\Disktool.INI
2014-02-13 00:02:25 ----HDC---- C:\WINDOWS\$NtUninstallKB2916036$
2014-02-12 22:09:38 ----D---- C:\Documents and Settings\Administrator\Data aplikací\OpenOffice
2014-02-12 21:49:54 ----D---- C:\Program Files\OpenOffice 4
2014-02-10 17:10:32 ----D---- C:\WINDOWS\Sun
======List of files/folders modified in the last 1 months======
2014-03-09 12:59:06 ----D---- C:\WINDOWS\Prefetch
2014-03-09 12:57:29 ----D---- C:\Documents and Settings\Administrator\Data aplikací\BitTorrent
2014-03-09 12:10:51 ----D---- C:\WINDOWS\Temp
2014-03-09 11:49:03 ----A---- C:\WINDOWS\SchedLgU.Txt
2014-03-09 11:46:52 ----D---- C:\WINDOWS\system32
2014-03-09 11:46:52 ----D---- C:\WINDOWS
2014-03-09 11:46:30 ----SD---- C:\WINDOWS\Tasks
2014-03-09 11:09:37 ----SHD---- C:\WINDOWS\CSC
2014-03-08 19:43:44 ----RD---- C:\Program Files
2014-03-07 22:34:40 ----D---- C:\Documents and Settings\Administrator\Data aplikací\Vso
2014-03-07 22:34:40 ----D---- C:\Documents and Settings\Administrator\Data aplikací\DAEMON Tools Lite
2014-03-07 22:29:33 ----D---- C:\WINDOWS\Debug
2014-03-07 22:29:31 ----D---- C:\WINDOWS\Minidump
2014-03-07 10:46:21 ----A---- C:\WINDOWS\NeroDigital.ini
2014-03-07 10:44:30 ----D---- C:\Documents and Settings\Administrator\Data aplikací\vlc
2014-02-26 21:27:56 ----HD---- C:\Program Files\InstallShield Installation Information
2014-02-26 21:27:36 ----SHD---- C:\WINDOWS\Installer
2014-02-25 00:42:43 ----D---- C:\WINDOWS\system32\CatRoot2
2014-02-21 14:59:44 ----D---- C:\Program Files\BitTorrent
2014-02-21 11:07:48 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2014-02-17 16:05:36 ----D---- C:\WINDOWS\Network Diagnostic
2014-02-15 18:34:42 ----HD---- C:\WINDOWS\inf
2014-02-14 21:09:40 ----SD---- C:\Documents and Settings\Administrator\Data aplikací\Microsoft
2014-02-14 21:09:31 ----D---- C:\WINDOWS\system32\drivers
2014-02-13 10:33:51 ----RSD---- C:\WINDOWS\assembly
2014-02-13 10:33:51 ----D---- C:\WINDOWS\Microsoft.NET
2014-02-13 00:02:28 ----RSHDC---- C:\WINDOWS\system32\dllcache
2014-02-12 23:53:41 ----D---- C:\WINDOWS\WinSxS
2014-02-12 23:53:26 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2014-02-12 23:42:36 ----D---- C:\Program Files\Internet Explorer
2014-02-12 23:42:15 ----D---- C:\WINDOWS\ie8updates
2014-02-12 21:50:53 ----RSD---- C:\WINDOWS\Fonts
2014-02-12 01:49:30 ----D---- C:\WINDOWS\system32\MRT
2014-02-12 01:44:20 ----A---- C:\WINDOWS\system32\MRT.exe
2014-02-11 22:06:40 ----D---- C:\Documents and Settings\All Users\Data aplikací\BlueStacksSetup
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2012-10-30 25256]
R1 AswRdr;aswRdr; C:\WINDOWS\system32\drivers\AswRdr.sys [2012-10-30 35928]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2012-10-30 738504]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2012-10-30 361032]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2012-10-30 54232]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\drivers\aswFsBlk.sys [2012-10-30 21256]
R2 aswMon2;aswMon2; C:\WINDOWS\system32\drivers\aswMon2.sys [2012-10-30 97608]
R3 ALCXSENS;Service for WDM 3D Audio Driver; C:\WINDOWS\system32\drivers\ALCXSENS.SYS [2004-02-24 400384]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2004-08-02 635281]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\ialmnt5.sys [2004-09-30 752093]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-25 12160]
R3 ms_mpu401;Microsoft MPU-401 MIDI UART Driver; C:\WINDOWS\system32\drivers\msmpu401.sys [2001-08-17 2944]
R3 rtl8139;Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver; C:\WINDOWS\system32\DRIVERS\RTL8139.SYS [2008-04-13 20992]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2013-08-09 32384]
R3 usbehci;Ovladač miniportu rozšířeného radiče hostitele Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2009-03-18 30336]
R3 usbhub;Rozbočovač umožnující USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-14 59520]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
S3 a6w281g9;a6w281g9; C:\WINDOWS\system32\drivers\a6w281g9.sys []
S3 arbcjlai;arbcjlai; C:\WINDOWS\system32\drivers\arbcjlai.sys []
S3 hidgame;Microsoft Hid to Joystick Port Enabler; C:\WINDOWS\system32\DRIVERS\hidgame.sys [2001-08-17 8576]
S3 MREMP50;MREMP50 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MREMP50.SYS []
S3 MREMP50a64;MREMP50a64 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MREMP50a64.SYS []
S3 MREMPR5;MREMPR5 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MREMPR5.SYS []
S3 MRENDIS5;MRENDIS5 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MRENDIS5.SYS []
S3 MRESP50;MRESP50 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MRESP50.SYS []
S3 MRESP50a64;MRESP50a64 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MRESP50a64.SYS []
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2013-07-03 14976]
S3 usbstor;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 w810bus;Sony Ericsson W810 Driver driver (WDM); C:\WINDOWS\system32\DRIVERS\w810bus.sys [2006-02-20 58288]
S3 w810mdfl;Sony Ericsson W810 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\w810mdfl.sys [2006-02-20 8336]
S3 w810mdm;Sony Ericsson W810 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\w810mdm.sys [2006-02-20 94064]
S3 w810mgmt;Sony Ericsson W810 USB WMC Device Management Drivers (WDM); C:\WINDOWS\system32\DRIVERS\w810mgmt.sys [2006-02-20 85408]
S3 w810obex;Sony Ericsson W810 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\w810obex.sys [2006-02-20 83344]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2012-10-30 44808]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre7\bin\jqs.exe [2014-01-29 182696]
R2 McciCMService;McciCMService; C:\Program Files\Common Files\Motive\McciCMService.exe [2007-10-15 303104]
R2 StarWindServiceAE;StarWind AE Service; C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [2007-05-28 275968]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2007-03-12 271920]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-06-10 136176]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-02-21 257928]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-06-10 136176]
S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-01-15 774144]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2013-07-20 754856]
S4 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
-----------------EOF-----------------
All processes killed
========== FILES ==========
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job moved successfully.
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job moved successfully.
File/Folder C:\WINDOWS\inf\msdorbv.vbe not found.
========== REGISTRY ==========
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\msdorbvSrv deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched deleted successfully.
Registry key HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{8e69a7c0-7b17-11e3-972e-806d6172696f}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8e69a7c0-7b17-11e3-972e-806d6172696f}\ not found.
========== COMMANDS ==========
[EMPTYTEMP]
User: Administrator
->Temp folder emptied: 598167 bytes
->Temporary Internet Files folder emptied: 1003651 bytes
->Google Chrome cache emptied: 6656575 bytes
->Flash cache emptied: 595 bytes
User: All Users
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
User: LocalService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 402 bytes
User: LocalService.NT AUTHORITY
->Temp folder emptied: 66016 bytes
->Temporary Internet Files folder emptied: 33177 bytes
User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 402 bytes
User: NetworkService.NT AUTHORITY
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33237 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 2351732 bytes
%systemroot%\System32 .tmp files removed: 7539144 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 49320 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 1403624914 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 33170 bytes
RecycleBin emptied: 0 bytes
Total Files Cleaned = 1 356,00 mb
[EMPTYFLASH]
User: Administrator
->Flash cache emptied: 0 bytes
User: All Users
User: Default User
User: LocalService
User: LocalService.NT AUTHORITY
User: NetworkService
User: NetworkService.NT AUTHORITY
Total Flash Files Cleaned = 0,00 mb
OTM by OldTimer - Version 3.1.21.0 log created on 03092014_114624
Files moved on Reboot...
Registry entries deleted on Reboot...
a toto RSIT:
Logfile of random's system information tool 1.06 (written by random/random)
Run by Administrator at 2014-03-09 12:58:58
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 12 GB (32%) free of 38 GB
Total RAM: 1015 MB (49% free)
HijackThis download failed
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job
C:\WINDOWS\tasks\avast! Emergency Update.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2013-05-08 77424]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2014-01-29 462760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2012-10-30 1227736]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-01-29 171944]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2012-10-30 1227736]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SoundMan"=C:\WINDOWS\SOUNDMAN.EXE [2004-07-27 68096]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2004-09-30 155648]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2004-09-30 126976]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2013-05-08 41056]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576]
"NeroFilterCheck"=C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [2007-03-09 153136]
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2012-10-30 4297136]
"TO2SSM_McciTrayApp"=C:\Program Files\TO2SSM\McciTrayApp.exe [2009-01-16 1473536]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe [2007-03-12 153136]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2012-11-06 3673728]
"BitTorrent"=C:\Documents and Settings\Administrator\Data aplikací\BitTorrent\BitTorrent.exe [2014-02-21 900696]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxsrvc.dll [2004-09-30 344064]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"E:\hry\Call of Duty\CoDMP.exe"="E:\hry\Call of Duty\CoDMP.exe:*:Enabled:CoDMP"
"E:\hry\MOHAA\MOHAA.exe"="E:\hry\MOHAA\MOHAA.exe:*:Enabled:Medal of Honor Allied Assault"
"C:\WINDOWS\system32\msiexec.exe"="C:\WINDOWS\system32\msiexec.exe:*:Enabled:UpdateManagerSetup"
"C:\Program Files\Activision\Call of Duty 2\CoD2MP_s.exe"="C:\Program Files\Activision\Call of Duty 2\CoD2MP_s.exe:*:Enabled:CoD2MP_s"
"C:\Program Files\Codemasters\Operation Flashpoint\FlashpointResistance.exe"="C:\Program Files\Codemasters\Operation Flashpoint\FlashpointResistance.exe:*:Enabled:Operation Flashpoint"
"C:\Program Files\EA GAMES\Need For Speed Underground\Speed.exe"="C:\Program Files\EA GAMES\Need For Speed Underground\Speed.exe:*:Enabled:Speed"
"C:\Program Files\Microsoft Games\Age of Empires II\empires2.exe"="C:\Program Files\Microsoft Games\Age of Empires II\empires2.exe:*:Enabled:Age of Empires II"
"C:\Documents and Settings\Administrator\Dokumenty\Stažené soubory\Star-Wars-Galactic-Battlegrounds-[PC]-by-Herp-Derp\Star Wars Galactic Battlegrounds [PC] by Herp Derp\Game\Battlegrounds.exe"="C:\Documents and Settings\Administrator\Dokumenty\Stažené soubory\Star-Wars-Galactic-Battlegrounds-[PC]-by-Herp-Derp\Star Wars Galactic Battlegrounds [PC] by Herp Derp\Game\Battlegrounds.exe:*:Enabled:Star Wars Galactic Battlegrounds"
"C:\Program Files\Duke Nukem - Manhattan Project\prism3d.exe"="C:\Program Files\Duke Nukem - Manhattan Project\prism3d.exe:*:Enabled:prism3d"
"C:\Program Files\EA GAMES\Battlefield 1942\BF1942.exe"="C:\Program Files\EA GAMES\Battlefield 1942\BF1942.exe:*:Enabled:BF1942"
"C:\Documents and Settings\Administrator\Dokumenty\Stažené soubory\Call-of-Duty-2-cz\Call of Duty 2 cz\Call of duty 2+CZ+crack+key-by Beny\Call of duty 2\Setup\Data\CoD2MP_s.exe"="C:\Documents and Settings\Administrator\Dokumenty\Stažené soubory\Call-of-Duty-2-cz\Call of Duty 2 cz\Call of duty 2+CZ+crack+key-by Beny\Call of duty 2\Setup\Data\CoD2MP_s.exe:*:Enabled:CoD2MP_s"
"E:\hry\MOHAA\moh_Breakthrough.exe"="E:\hry\MOHAA\moh_Breakthrough.exe:*:Enabled:Medal of Honor Allied Assault(tm) Breakthrough"
"E:\hry\MOHAA\moh_spearhead.exe"="E:\hry\MOHAA\moh_spearhead.exe:*:Enabled:Medal of Honor Allied Assault(tm) Spearhead"
"C:\Games\World_of_Tanks\WoTLauncher.exe"="C:\Games\World_of_Tanks\WoTLauncher.exe:*:Enabled:World of Tanks Launcher"
"C:\Program Files\AVG\AVG2013\avgmfapx.exe"="C:\Program Files\AVG\AVG2013\avgmfapx.exe:*:Enabled:Instalátor AVG"
"C:\Program Files\Quake III Arena\quake3.exe"="C:\Program Files\Quake III Arena\quake3.exe:*:Enabled:quake3"
"C:\Program Files\EA GAMES\MOHAA\MOHAA.exe"="C:\Program Files\EA GAMES\MOHAA\MOHAA.exe:*:Enabled:Medal of Honor Allied Assault"
"C:\Program Files\Daum\PotPlayer\PotPlayerMini.exe"="C:\Program Files\Daum\PotPlayer\PotPlayerMini.exe:*:Enabled:PotPlayer"
"C:\Documents and Settings\Administrator\Data aplikací\BitTorrent\BitTorrent.exe"="C:\Documents and Settings\Administrator\Data aplikací\BitTorrent\BitTorrent.exe:*:Enabled:BitTorrent"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Daum\PotPlayer\PotPlayerMini.exe"="C:\Program Files\Daum\PotPlayer\PotPlayerMini.exe:*:Enabled:PotPlayer"
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{8e69a7c0-7b17-11e3-972e-806d6172696f}]
shell\AutoRun\command - G:\autorun.exe
======List of files/folders created in the last 1 months======
2030-08-29 14:22:31 ----N---- C:\WINDOWS\system32\iyvu9_32.dll
2030-08-29 14:22:31 ----N---- C:\WINDOWS\system32\iacenc.dll
2014-03-08 22:47:39 ----D---- C:\_OTM
2014-03-08 20:22:30 ----D---- C:\AdwCleaner
2014-03-08 19:43:44 ----D---- C:\Program Files\trend micro
2014-03-08 19:43:41 ----D---- C:\rsit
2014-02-26 21:28:04 ----A---- C:\WINDOWS\system32\CmdLineExt03.dll
2014-02-26 21:21:10 ----D---- C:\Program Files\KONAMI
2014-02-20 23:22:54 ----D---- C:\Casino
2014-02-14 21:09:31 ----D---- C:\Program Files\MP3 Player Utilities
2014-02-14 21:08:36 ----RA---- C:\WINDOWS\PlaySnd.INI
2014-02-14 21:08:36 ----RA---- C:\WINDOWS\fwupgrade.ini
2014-02-14 21:08:36 ----RA---- C:\WINDOWS\Disktool.INI
2014-02-13 00:02:25 ----HDC---- C:\WINDOWS\$NtUninstallKB2916036$
2014-02-12 22:09:38 ----D---- C:\Documents and Settings\Administrator\Data aplikací\OpenOffice
2014-02-12 21:49:54 ----D---- C:\Program Files\OpenOffice 4
2014-02-10 17:10:32 ----D---- C:\WINDOWS\Sun
======List of files/folders modified in the last 1 months======
2014-03-09 12:59:06 ----D---- C:\WINDOWS\Prefetch
2014-03-09 12:57:29 ----D---- C:\Documents and Settings\Administrator\Data aplikací\BitTorrent
2014-03-09 12:10:51 ----D---- C:\WINDOWS\Temp
2014-03-09 11:49:03 ----A---- C:\WINDOWS\SchedLgU.Txt
2014-03-09 11:46:52 ----D---- C:\WINDOWS\system32
2014-03-09 11:46:52 ----D---- C:\WINDOWS
2014-03-09 11:46:30 ----SD---- C:\WINDOWS\Tasks
2014-03-09 11:09:37 ----SHD---- C:\WINDOWS\CSC
2014-03-08 19:43:44 ----RD---- C:\Program Files
2014-03-07 22:34:40 ----D---- C:\Documents and Settings\Administrator\Data aplikací\Vso
2014-03-07 22:34:40 ----D---- C:\Documents and Settings\Administrator\Data aplikací\DAEMON Tools Lite
2014-03-07 22:29:33 ----D---- C:\WINDOWS\Debug
2014-03-07 22:29:31 ----D---- C:\WINDOWS\Minidump
2014-03-07 10:46:21 ----A---- C:\WINDOWS\NeroDigital.ini
2014-03-07 10:44:30 ----D---- C:\Documents and Settings\Administrator\Data aplikací\vlc
2014-02-26 21:27:56 ----HD---- C:\Program Files\InstallShield Installation Information
2014-02-26 21:27:36 ----SHD---- C:\WINDOWS\Installer
2014-02-25 00:42:43 ----D---- C:\WINDOWS\system32\CatRoot2
2014-02-21 14:59:44 ----D---- C:\Program Files\BitTorrent
2014-02-21 11:07:48 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2014-02-17 16:05:36 ----D---- C:\WINDOWS\Network Diagnostic
2014-02-15 18:34:42 ----HD---- C:\WINDOWS\inf
2014-02-14 21:09:40 ----SD---- C:\Documents and Settings\Administrator\Data aplikací\Microsoft
2014-02-14 21:09:31 ----D---- C:\WINDOWS\system32\drivers
2014-02-13 10:33:51 ----RSD---- C:\WINDOWS\assembly
2014-02-13 10:33:51 ----D---- C:\WINDOWS\Microsoft.NET
2014-02-13 00:02:28 ----RSHDC---- C:\WINDOWS\system32\dllcache
2014-02-12 23:53:41 ----D---- C:\WINDOWS\WinSxS
2014-02-12 23:53:26 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2014-02-12 23:42:36 ----D---- C:\Program Files\Internet Explorer
2014-02-12 23:42:15 ----D---- C:\WINDOWS\ie8updates
2014-02-12 21:50:53 ----RSD---- C:\WINDOWS\Fonts
2014-02-12 01:49:30 ----D---- C:\WINDOWS\system32\MRT
2014-02-12 01:44:20 ----A---- C:\WINDOWS\system32\MRT.exe
2014-02-11 22:06:40 ----D---- C:\Documents and Settings\All Users\Data aplikací\BlueStacksSetup
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2012-10-30 25256]
R1 AswRdr;aswRdr; C:\WINDOWS\system32\drivers\AswRdr.sys [2012-10-30 35928]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2012-10-30 738504]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2012-10-30 361032]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2012-10-30 54232]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\drivers\aswFsBlk.sys [2012-10-30 21256]
R2 aswMon2;aswMon2; C:\WINDOWS\system32\drivers\aswMon2.sys [2012-10-30 97608]
R3 ALCXSENS;Service for WDM 3D Audio Driver; C:\WINDOWS\system32\drivers\ALCXSENS.SYS [2004-02-24 400384]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2004-08-02 635281]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\ialmnt5.sys [2004-09-30 752093]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-25 12160]
R3 ms_mpu401;Microsoft MPU-401 MIDI UART Driver; C:\WINDOWS\system32\drivers\msmpu401.sys [2001-08-17 2944]
R3 rtl8139;Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver; C:\WINDOWS\system32\DRIVERS\RTL8139.SYS [2008-04-13 20992]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2013-08-09 32384]
R3 usbehci;Ovladač miniportu rozšířeného radiče hostitele Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2009-03-18 30336]
R3 usbhub;Rozbočovač umožnující USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-14 59520]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
S3 a6w281g9;a6w281g9; C:\WINDOWS\system32\drivers\a6w281g9.sys []
S3 arbcjlai;arbcjlai; C:\WINDOWS\system32\drivers\arbcjlai.sys []
S3 hidgame;Microsoft Hid to Joystick Port Enabler; C:\WINDOWS\system32\DRIVERS\hidgame.sys [2001-08-17 8576]
S3 MREMP50;MREMP50 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MREMP50.SYS []
S3 MREMP50a64;MREMP50a64 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MREMP50a64.SYS []
S3 MREMPR5;MREMPR5 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MREMPR5.SYS []
S3 MRENDIS5;MRENDIS5 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MRENDIS5.SYS []
S3 MRESP50;MRESP50 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MRESP50.SYS []
S3 MRESP50a64;MRESP50a64 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MRESP50a64.SYS []
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2013-07-03 14976]
S3 usbstor;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 w810bus;Sony Ericsson W810 Driver driver (WDM); C:\WINDOWS\system32\DRIVERS\w810bus.sys [2006-02-20 58288]
S3 w810mdfl;Sony Ericsson W810 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\w810mdfl.sys [2006-02-20 8336]
S3 w810mdm;Sony Ericsson W810 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\w810mdm.sys [2006-02-20 94064]
S3 w810mgmt;Sony Ericsson W810 USB WMC Device Management Drivers (WDM); C:\WINDOWS\system32\DRIVERS\w810mgmt.sys [2006-02-20 85408]
S3 w810obex;Sony Ericsson W810 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\w810obex.sys [2006-02-20 83344]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2012-10-30 44808]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre7\bin\jqs.exe [2014-01-29 182696]
R2 McciCMService;McciCMService; C:\Program Files\Common Files\Motive\McciCMService.exe [2007-10-15 303104]
R2 StarWindServiceAE;StarWind AE Service; C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [2007-05-28 275968]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2007-03-12 271920]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-06-10 136176]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-02-21 257928]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-06-10 136176]
S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-01-15 774144]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2013-07-20 754856]
S4 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 119533
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: zamrzlé pc , využití cpu 100% , kontrola logu
Teď je to v pořádku. Znovu spusťte OTM a klikněte na >CleanUp!<. OTM po sobě uklidí. Nakonec restartujte PC. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: zamrzlé pc , využití cpu 100% , kontrola logu
tak už se to tolik neseká a načtení je o něco rychlejší ale CPU na 100%
-
Rudy
- Site Admin
- Příspěvky: 119533
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: zamrzlé pc , využití cpu 100% , kontrola logu
Na zkoušku vypněte aut. aktualizace a restartujte PC.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: zamrzlé pc , využití cpu 100% , kontrola logu
zkusil jsem to a bohužel bez zlepšení 
Přispějete na provoz fóra?