Prosím o kontrolu logu, nejdou mi online hry Vyřešeno

Místo pro vaše HiJackThis logy a logy z dalších programů…

Moderátoři: Mods_senior, Security team

Zamčeno
123
nováček
Příspěvky: 19
Registrován: srpen 13
Pohlaví: Nespecifikováno
Stav:
Offline

Prosím o kontrolu logu, nejdou mi online hry

Příspěvekod 123 » 01 zář 2013 10:09

Ahojte, mám problém že mi nejdou spustit různé online hry třeba FIFA 12, Battlefield, GTA 4 vzdy to napise unable to connect nebo nelze se pripojit k siti ale ja na internetu jsem a uplně v pohodě jede. Myslím si že by to mohl být nějaký vir nebo mi to možná něco blokuje ale já pořád nevím co zkoušel jsem snad vše.

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 9:56:47, on 1.9.2013
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jqs.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\PnkBstrB.exe
C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\15.5.0\ToolbarUpdater.exe
C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\15.5.0\loggingserver.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
C:\Program Files\Logitech\Gaming Software\LWEMon.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\AVG Secure Search\vprot.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Alwil Software\Avast5\avastUI.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Olympus\ib\olycamdetect.exe
C:\Program Files\Pando Networks\Media Booster\PMB.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
C:\Documents and Settings\user\Dokumenty\Stažené soubory\hijackthis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.bing.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 194.228.16.250:80
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: DeviceVM Url Search Hook - {0063BF63-BFFF-4B8F-9D26-4267DF7F17DD} - C:\WINDOWS\system32\dvmurl.dll
R3 - URLSearchHook: (no name) - - (no file)
R3 - URLSearchHook: (no name) - {0fc39211-b9b3-4a26-ac9b-4bb07b416c63} - (no file)
R3 - URLSearchHook: (no name) - {EEE6C35D-6118-11DC-9C72-001320C79847} - (no file)
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe,userinit.exe
O2 - BHO: english.ilsc - {0fc39211-b9b3-4a26-ac9b-4bb07b416c63} - (no file)
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll
O2 - BHO: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\15.5.0.2\AVG Secure Search_toolbar.dll
O2 - BHO: (no name) - {C93F72A2-2162-4BBA-A07A-F13663C297A6} - (no file)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll
O2 - BHO: Ukazatel S-Rank - {EA837F48-5AD1-443E-AE34-FFE03CBF3099} - C:\Program Files\Seznam.cz\core.3.dll
O3 - Toolbar: (no name) - {0fc39211-b9b3-4a26-ac9b-4bb07b416c63} - (no file)
O3 - Toolbar: (no name) - {5018CFD2-804D-4C99-9F81-25EAEA2769DE} - (no file)
O3 - Toolbar: (no name) - {91397D20-1446-11D4-8AF4-0040CA1127B6} - (no file)
O3 - Toolbar: (no name) - {EEE6C35B-6118-11DC-9C72-001320C79847} - (no file)
O3 - Toolbar: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\15.5.0.2\AVG Secure Search_toolbar.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll
O4 - HKLM\..\Run: [GEST] =
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [MDS_Menu] "C:\Program Files\Olympus\ib\MUITransfer\MUIStartMenu.exe" "C:\Program Files\Olympus\ib" UpdateWithCreateOnce "Software\OLYMPUS\ib\1.0"
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [Start WingMan Profiler] C:\Program Files\Logitech\Gaming Software\LWEMon.exe /noui
O4 - HKLM\..\Run: [DWQueuedReporting] "C:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" -t
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [vProt] "C:\Program Files\AVG Secure Search\vprot.exe"
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [avast] "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [Olympus ib] "C:\Program Files\Olympus\ib\olycamdetect.exe" /Startup
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Steam] "C:\Program Files\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\user\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [Pando Media Booster] C:\Program Files\Pando Networks\Media Booster\PMB.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {784797A8-342D-4072-9486-03C8D0F2F0A1} (Battlefield Heroes Updater) - http://www.battlefieldheroes.com/static ... .145.0.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{0C716796-747C-45A2-9B37-D78B16DD7469}: NameServer = 192.168.0.1,194.228.41.65
O18 - Protocol: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files\Common Files\AVG Secure Search\ViProtocolInstaller\15.5.0\ViProtocol.dll
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Oracle Corporation - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jqs.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\WINDOWS\system32\PnkBstrB.exe
O23 - Service: Skype C2C Service - Skype Technologies S.A. - C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
O23 - Service: vToolbarUpdater15.5.0 - Unknown owner - C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\15.5.0\ToolbarUpdater.exe

--
End of file - 9743 bytes
Nahoru
Reklama
Top
Uživatelský avatar
memphisto
Guru Level 13
Guru Level 13
Příspěvky: 21113
Registrován: září 06
Bydliště: Zlín - České Budějovice
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kontrolu logu, nejdou mi online hry

Příspěvekod memphisto » 01 zář 2013 11:00

Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
-Když používáš Firefox (Mozzila), klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
-Když používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranìní historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit doèasné soubory Windows, vysypat koš atd.

Stáhni si Malwarebytes' Anti-Malware
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Update Malwarebytes' Anti-Malware (Aktualizace Malwarebytes' Anti-Malware) a Launch Malwarebytes' Anti-Malware (Spustit aplikaci Malwarebytes' Anti-Malware), pokud jo tak klikni na tlačítko Finish
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a nech vybranou možnost Perform Quick Scan (Provést rychlý sken) a klikni na tlačítko Scan (Skenovat)
- po probìhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Show Results
- pak zvol možnost Save Logfile a ulož si log na plochu
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(zatím nic nemaž!).
Vlož sem pak obsah toho logu.

Stáhni AdwCleaner
Ulož si ho na svojí plochu
Ukonči všechny programy, okna a prohlížeče
Spusť program poklepáním a klikni na „Search“
Po skenu se objeví log (jinak je uložen systémovem disku jako AdwCleaner[R?].txt), jeho obsah sem celý vlož.
PRAVIDLA PC-HELP.CZ, PRAVIDLA sekce HijackThis, HijackThis návod, Memtest, CCleaner
Logy z programu HijackThis neposílejte prosím přes SZ, ale vkládejte je do patřičné sekce. Děkuji
Nahoru
Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 43293
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kontrolu logu, nejdou mi online hry

Příspěvekod jaro3 » 01 zář 2013 11:04

Odinstaluj:
AVG Secure Search

Zavři ostatní aplikace a prohlížeče, odpoj se od netu a fixni v HJT:
Návod

Kód: Vybrat vše

R3 - URLSearchHook: DeviceVM Url Search Hook - {0063BF63-BFFF-4B8F-9D26-4267DF7F17DD} - C:\WINDOWS\system32\dvmurl.dll
R3 - URLSearchHook: (no name) - - (no file)
R3 - URLSearchHook: (no name) - {0fc39211-b9b3-4a26-ac9b-4bb07b416c63} - (no file)
R3 - URLSearchHook: (no name) - {EEE6C35D-6118-11DC-9C72-001320C79847} - (no file)
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe,userinit.exe
O2 - BHO: english.ilsc - {0fc39211-b9b3-4a26-ac9b-4bb07b416c63} - (no file)
O2 - BHO: (no name) - {C93F72A2-2162-4BBA-A07A-F13663C297A6} - (no file)
O3 - Toolbar: (no name) - {0fc39211-b9b3-4a26-ac9b-4bb07b416c63} - (no file)
O3 - Toolbar: (no name) - {5018CFD2-804D-4C99-9F81-25EAEA2769DE} - (no file)
O3 - Toolbar: (no name) - {91397D20-1446-11D4-8AF4-0040CA1127B6} - (no file)
O3 - Toolbar: (no name) - {EEE6C35B-6118-11DC-9C72-001320C79847} - (no file)
O3 - Toolbar: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\15.5.0.2\AVG Secure Search_toolbar.dll
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [vProt] "C:\Program Files\AVG Secure Search\vprot.exe"
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\user\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe" /c

Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
-Když používáš Firefox (Mozzila), klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
-Když používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected. Poté klikni na Main (hlavní stránku ) a klikni na Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranění historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit dočasné soubory Windows, vysypat koš atd.


Stáhni si TFC
Otevři soubor a zavři všechny ostatní okna, Klikni na Start k zahájení procesu. Program by neměl trvat dlouho.
Poté by se měl PC restartovat, pokud ne , proveď sám.

Stáhni AdwCleaner

Ulož si ho na svojí plochu
Ukonči všechny programy , okna a prohlížeče
Spusť program poklepáním a klikni na „Prohledat-Scan“
Po skenu se objeví log ( jinak je uložen systémovem disku jako AdwCleaner[R?].txt), jeho obsah sem celý vlož.

Stáhni si Malwarebytes' Anti-Malware
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Aktualizace Malwarebytes' Anti-Malware a Spustit aplikaci Malwarebytes' Anti-Malware, pokud jo tak klikni na tlačítko konec
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a nech vybranou možnost Provést rychlý sken a klikni na tlačítko Skenovat
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Zobrazit výsledky
- pak zvol možnost uložit log a ulož si log na plochu
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(zatím nic nemaž!).
Vlož sem pak obsah toho logu.

Pokud budou problémy , spusť v nouz. režimu.

ProxyServer = 194.228.16.250:80
nastavoval sis sám? ten port?
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Nahoru
123
nováček
Příspěvky: 19
Registrován: srpen 13
Pohlaví: Nespecifikováno
Stav:
Offline

Re: Prosím o kontrolu logu, nejdou mi online hry

Příspěvekod 123 » 01 zář 2013 13:03

# AdwCleaner v3.001 - Report created 01/09/2013 at 12:50:23
# Updated 24/08/2013 by Xplode
# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)
# Username : user - USER-9413ED0969
# Running from : C:\Documents and Settings\user\Dokumenty\Stažené soubory\adwcleaner.exe
# Option : Scan

***** [ Services ] *****


***** [ Files / Folders ] *****

File Found : C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\0\user.js
File Found : C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\vpukcm0i.default\searchplugins\askcomsearch.xml
File Found : C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\vpukcm0i.default\searchplugins\daemon-search.xml
File Found : C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\vpukcm0i.default\searchplugins\icqplugin.xml
File Found : C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\vpukcm0i.default\searchplugins\icqplugin-1.xml
File Found : C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\vpukcm0i.default\searchplugins\icqplugin-10.xml
File Found : C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\vpukcm0i.default\searchplugins\icqplugin-2.xml
File Found : C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\vpukcm0i.default\searchplugins\icqplugin-3.xml
File Found : C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\vpukcm0i.default\searchplugins\icqplugin-4.xml
File Found : C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\vpukcm0i.default\searchplugins\icqplugin-5.xml
File Found : C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\vpukcm0i.default\searchplugins\icqplugin-6.xml
File Found : C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\vpukcm0i.default\searchplugins\icqplugin-7.xml
File Found : C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\vpukcm0i.default\searchplugins\icqplugin-8.xml
File Found : C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\vpukcm0i.default\searchplugins\icqplugin-9.xml
File Found : C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\vpukcm0i.default\searchplugins\MyStart Search.xml
File Found : C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\vpukcm0i.default\searchplugins\softonic.xml
File Found : C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\vpukcm0i.default\searchplugins\SweetIm.xml
File Found : C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\vpukcm0i.default\user.js
File Found : C:\Program Files\Mozilla Firefox\searchplugins\avg-secure-search.xml
File Found : C:\Program Files\Mozilla Firefox\searchplugins\Babylon.xml
Folder Found : C:\Documents and Settings\user\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\dlfienamagdnkekbbbocojppncdambda
Folder Found : C:\Documents and Settings\user\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\ejpbbhjlbipncjklfjjaedaieimbmdda
Folder Found : C:\Documents and Settings\user\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\ejpbbhjlbipncjklfjjaedaieimbmdda
Folder Found : C:\Documents and Settings\user\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\iibmmjhgclhlahmjniokmhleigemjpbh
Folder Found : C:\Documents and Settings\user\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\iibmmjhgclhlahmjniokmhleigemjpbh
Folder Found : C:\Documents and Settings\user\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof
Folder Found : C:\Documents and Settings\user\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pacgpkgadgmibnhpdidcnfafllnmeomc
Folder Found : C:\Documents and Settings\user\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pacgpkgadgmibnhpdidcnfafllnmeomc
Folder Found : C:\Program Files\Mozilla Firefox\Extensions\{800B5000-A755-47E1-992B-48A1C1357F07}
Folder Found C:\Documents and Settings\All Users\Data aplikací\Ask
Folder Found C:\Documents and Settings\All Users\Data aplikací\Babylon
Folder Found C:\Documents and Settings\All Users\Data aplikací\ICQ\ICQToolbar
Folder Found C:\Documents and Settings\All Users\Data aplikací\InstallMate
Folder Found C:\Documents and Settings\All Users\Data aplikací\Premium
Folder Found C:\Documents and Settings\All Users\Data aplikací\SweetIM
Folder Found C:\Documents and Settings\All Users\Data aplikací\Tarma Installer
Folder Found C:\Documents and Settings\All Users\Data aplikací\Trymedia
Folder Found C:\Documents and Settings\All Users\Data aplikací\WxDFastUpdater
Folder Found C:\Documents and Settings\user\Data aplikací\Babylon
Folder Found C:\Documents and Settings\user\Data aplikací\BabylonToolbar
Folder Found C:\Documents and Settings\user\Data aplikací\Complitly
Folder Found C:\Documents and Settings\user\Data aplikací\ExpressFiles
Folder Found C:\Documents and Settings\user\Data aplikací\CheckPoint\ZoneAlarm LTD Toolbar
Folder Found C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\vpukcm0i.default\ConduitCommon
Folder Found C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\vpukcm0i.default\Smartbar
Folder Found C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\vpukcm0i.default\SweetPacksToolbarData
Folder Found C:\Documents and Settings\user\Data aplikací\OpenCandy
Folder Found C:\Documents and Settings\user\Data aplikací\PriceGong
Folder Found C:\Documents and Settings\user\Data aplikací\registry mechanic
Folder Found C:\Documents and Settings\user\Data aplikací\Softonic
Folder Found C:\Documents and Settings\user\IECompatCache
Folder Found C:\Documents and Settings\user\Local Settings\Data aplikací\Babylon
Folder Found C:\Documents and Settings\user\Local Settings\Data aplikací\Conduit
Folder Found C:\Documents and Settings\user\Local Settings\Data aplikací\cre
Folder Found C:\Documents and Settings\user\Local Settings\Data aplikací\english.ilsc
Folder Found C:\Documents and Settings\user\Local Settings\Data aplikací\OpenCandy
Folder Found C:\Program Files\BabylonToolbar
Folder Found C:\Program Files\Complitly
Folder Found C:\Program Files\english.ilsc
Folder Found C:\Program Files\ICQ6Toolbar

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Found : HKCU\Software\1ClickDownload
Key Found : HKCU\Software\AppDataLow\Software\Conduit
Key Found : HKCU\Software\BabylonToolbar
Key Found : HKCU\Software\Complitly
Key Found : HKCU\Software\Conduit
Key Found : HKCU\Software\ConduitSearchScopes
Key Found : HKCU\Software\Crossrider
Key Found : HKCU\Software\english.ilsc
Key Found : HKCU\Software\ExpressFiles
Key Found : HKCU\Software\Google\Chrome\Extensions\ejpbbhjlbipncjklfjjaedaieimbmdda
Key Found : HKCU\Software\Google\Chrome\Extensions\ejpbbhjlbipncjklfjjaedaieimbmdda
Key Found : HKCU\Software\Google\Chrome\Extensions\iibmmjhgclhlahmjniokmhleigemjpbh
Key Found : HKCU\Software\Google\Chrome\Extensions\iibmmjhgclhlahmjniokmhleigemjpbh
Key Found : HKCU\Software\Google\Chrome\Extensions\pacgpkgadgmibnhpdidcnfafllnmeomc
Key Found : HKCU\Software\Google\Chrome\Extensions\pacgpkgadgmibnhpdidcnfafllnmeomc
Key Found : HKCU\Software\IGearSettings
Key Found : HKCU\Software\IM
Key Found : HKCU\Software\ImInstaller
Key Found : HKCU\Software\InstallCore
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AD22EBAF-0D18-4FC7-90CC-5EA0ABBE9EB8}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{CFF4DB9B-135F-47C0-9269-B4C6572FD61A}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{32099AAC-C132-4136-9E9A-4E364A424E17}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{336D0C35-8A85-403A-B9D2-65C292C39087}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{5018CFD2-804D-4C99-9F81-25EAEA2769DE}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{E87806B5-E908-45FD-AF5E-957D83E58E68}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EEE6C35B-6118-11DC-9C72-001320C79847}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EEE6C35C-6118-11DC-9C72-001320C79847}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0FC39211-B9B3-4A26-AC9B-4BB07B416C63}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{32099AAC-C132-4136-9E9A-4E364A424E17}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{336D0C35-8A85-403A-B9D2-65C292C39087}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{5018CFD2-804D-4C99-9F81-25EAEA2769DE}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{855F3B16-6D32-4FE6-8A56-BBB695989046}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{CE7DFD67-9280-4A35-86E1-E29F51A355AB}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{E87806B5-E908-45FD-AF5E-957D83E58E68}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35B-6118-11DC-9C72-001320C79847}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35C-6118-11DC-9C72-001320C79847}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35D-6118-11DC-9C72-001320C79847}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}
Key Found : HKCU\Software\PriceGong
Key Found : HKCU\Software\SmartBar
Key Found : HKCU\Software\Softonic
Key Found : HKCU\Software\Web Assistant
Key Found : HKCU\Toolbar
Key Found : HKLM\Software\Babylon
Key Found : HKLM\Software\BabylonToolbar
Key Found : HKLM\SOFTWARE\Classes\AppID\{35C1605E-438B-4D64-AAB1-8885F097A9B1}
Key Found : HKLM\SOFTWARE\Classes\AppID\{5B1881D1-D9C7-46DF-B041-1E593282C7D0}
Key Found : HKLM\SOFTWARE\Classes\AppID\{608D3067-77E8-463D-9084-908966806826}
Key Found : HKLM\SOFTWARE\Classes\AppID\{7ABBFE1C-E485-44AA-8F36-353751B4124D}
Key Found : HKLM\SOFTWARE\Classes\AppID\{B15F118E-AF21-45E8-A809-29FDD7362565}
Key Found : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Key Found : HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}
Key Found : HKLM\SOFTWARE\Classes\b
Key Found : HKLM\SOFTWARE\Classes\bbylnApp.appCore
Key Found : HKLM\SOFTWARE\Classes\bbylnApp.appCore.1
Key Found : HKLM\SOFTWARE\Classes\bbylntlbr.bbylntlbrHlpr
Key Found : HKLM\SOFTWARE\Classes\bbylntlbr.bbylntlbrHlpr.1
Key Found : HKLM\SOFTWARE\Classes\CLSID\{291BCCC1-6890-484A-89D3-318C928DAC1B}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{94496571-6AC5-4836-82D5-D46260C44B17}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{B8276A94-891D-453C-9FF3-715C042A2575}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{BC9FD17D-30F6-4464-9E53-596A90AFF023}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{CE7DFD67-9280-4A35-86E1-E29F51A355AB}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{E46C8196-B634-44A1-AF6E-957C64278AB1}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{FFB9ADCB-8C79-4C29-81D3-74D46A93D370}
Key Found : HKLM\SOFTWARE\Classes\esrv.BabylonESrvc
Key Found : HKLM\SOFTWARE\Classes\esrv.BabylonESrvc.1
Key Found : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Found : HKLM\SOFTWARE\Classes\Interface\{087CDC12-0A11-4D1D-8DCF-44185D7C3496}
Key Found : HKLM\SOFTWARE\Classes\Interface\{088BF3A9-6AE8-47B9-A3FB-26262F236C79}
Key Found : HKLM\SOFTWARE\Classes\Interface\{2AC7B9EB-3881-4EB9-8DEE-0A731A309FDE}
Key Found : HKLM\SOFTWARE\Classes\Interface\{349C0469-ACDD-49DF-9B3E-0D82E7C7DC4D}
Key Found : HKLM\SOFTWARE\Classes\Interface\{41226591-6F7A-4082-B63A-67FE4A0CF7A6}
Key Found : HKLM\SOFTWARE\Classes\Interface\{44C3C1DB-2127-433C-98EC-4C9412B5FC3A}
Key Found : HKLM\SOFTWARE\Classes\Interface\{4D5132DD-BB2B-4249-B5E0-D145A8C982E1}
Key Found : HKLM\SOFTWARE\Classes\Interface\{55D69CD1-6715-4C40-BF05-9519AC4DC6E6}
Key Found : HKLM\SOFTWARE\Classes\Interface\{66C8FD57-54C4-4D4F-BC95-DCCC763B410A}
Key Found : HKLM\SOFTWARE\Classes\Interface\{706D4A4B-184A-4434-B331-296B07493D2D}
Key Found : HKLM\SOFTWARE\Classes\Interface\{717BAE33-7061-4279-8AE5-6C13BC8AF3F9}
Key Found : HKLM\SOFTWARE\Classes\Interface\{84F06F7A-F811-48D7-8B34-3F4145183D8F}
Key Found : HKLM\SOFTWARE\Classes\Interface\{88F6D55F-AA3F-4003-BE69-4AC1998D6492}
Key Found : HKLM\SOFTWARE\Classes\Interface\{8BE10F21-185F-4CA0-B789-9921674C3993}
Key Found : HKLM\SOFTWARE\Classes\Interface\{94C0B25D-3359-4B10-B227-F96A77DB773F}
Key Found : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Found : HKLM\SOFTWARE\Classes\Interface\{A0F66203-1A86-4812-9603-A57E09A4D7A3}
Key Found : HKLM\SOFTWARE\Classes\Interface\{B0B75FBA-7288-4FD3-A9EB-7EE27FA65599}
Key Found : HKLM\SOFTWARE\Classes\Interface\{B173667F-8395-4317-8DD6-45AD1FE00047}
Key Found : HKLM\SOFTWARE\Classes\Interface\{B32672B3-F656-46E0-B584-FE61C0BB6037}
Key Found : HKLM\SOFTWARE\Classes\Interface\{BC39D1B3-4471-41C1-AACA-E097FAF4B7AA}
Key Found : HKLM\SOFTWARE\Classes\Interface\{BFE569F7-646C-4512-969B-9BE3E580D393}
Key Found : HKLM\SOFTWARE\Classes\Interface\{C2434722-5C85-4CA0-BA69-1B67E7AB3D68}
Key Found : HKLM\SOFTWARE\Classes\Interface\{C2996524-2187-441F-A398-CD6CB6B3D020}
Key Found : HKLM\SOFTWARE\Classes\Interface\{DEB85542-1311-4EC6-8A32-5372EB27FC94}
Key Found : HKLM\SOFTWARE\Classes\Interface\{E047E227-5342-4D94-80F7-CFB154BF55BD}
Key Found : HKLM\SOFTWARE\Classes\Interface\{E3F79BE9-24D4-4F4D-8C13-DF2C9899F82E}
Key Found : HKLM\SOFTWARE\Classes\Interface\{E77EEF95-3E83-4BB8-9C0D-4A5163774997}
Key Found : HKLM\SOFTWARE\Classes\Interface\{EEE6C358-6118-11DC-9C72-001320C79847}
Key Found : HKLM\SOFTWARE\Classes\Interface\{EEE6C359-6118-11DC-9C72-001320C79847}
Key Found : HKLM\SOFTWARE\Classes\Interface\{EEE6C35A-6118-11DC-9C72-001320C79847}
Key Found : HKLM\SOFTWARE\Classes\Prod.cap
Key Found : HKLM\SOFTWARE\Classes\Softonic.dskBnd
Key Found : HKLM\SOFTWARE\Classes\Softonic.dskBnd.1
Key Found : HKLM\SOFTWARE\Classes\Softonic.SoftonicHlpr
Key Found : HKLM\SOFTWARE\Classes\Softonic.SoftonicHlpr.1
Key Found : HKLM\SOFTWARE\Classes\SoftonicApp.appCore
Key Found : HKLM\SOFTWARE\Classes\SoftonicApp.appCore.1
Key Found : HKLM\SOFTWARE\Classes\srv.SoftonicSrvc
Key Found : HKLM\SOFTWARE\Classes\srv.SoftonicSrvc.1
Key Found : HKLM\SOFTWARE\Classes\SWEETIE.IEToolbar
Key Found : HKLM\SOFTWARE\Classes\SWEETIE.IEToolbar.1
Key Found : HKLM\SOFTWARE\Classes\sweetim_urlsearchhook.toolbarurlsearchhook
Key Found : HKLM\SOFTWARE\Classes\sweetim_urlsearchhook.toolbarurlsearchhook.1
Key Found : HKLM\SOFTWARE\Classes\Toolbar3.sweetie
Key Found : HKLM\SOFTWARE\Classes\Toolbar3.sweetie.1
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{11D9E165-B8C1-4734-A56C-BC4FCACA966B}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{13ABD093-D46F-40DF-A608-47E162EC799D}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{35C1605E-438B-4D64-AAB1-8885F097A9B1}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{6E8BF012-2C85-4834-B10A-1B31AF173D70}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{B15F118E-AF21-45E8-A809-29FDD7362565}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{EEE6C35E-6118-11DC-9C72-001320C79847}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{EEE6C35F-6118-11DC-9C72-001320C79847}
Key Found : HKLM\Software\Conduit
Key Found : HKLM\Software\english.ilsc
Key Found : HKLM\Software\ExpressFiles
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\dlfienamagdnkekbbbocojppncdambda
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\ejpbbhjlbipncjklfjjaedaieimbmdda
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\ejpbbhjlbipncjklfjjaedaieimbmdda
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\iibmmjhgclhlahmjniokmhleigemjpbh
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\iibmmjhgclhlahmjniokmhleigemjpbh
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\jifflliplgeajjdhmkcfnngfpgbjonjg
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\pacgpkgadgmibnhpdidcnfafllnmeomc
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\pacgpkgadgmibnhpdidcnfafllnmeomc
Key Found : HKLM\Software\ICQ\ICQToolbar
Key Found : HKLM\Software\Iminent
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{03E4CF48-9BA1-4C5E-A665-DA824935B567}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{167CC04F-C762-487D-AEAB-AB3A0B5E6041}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8375D9C8-634F-4ECB-8CF5-C7416BA5D542}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9CF034EA-7B46-48D3-8895-8A14B32AE445}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{EEE6C367-6118-11DC-9C72-001320C79847}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{4FFBB818-B13C-11E0-931D-B2664824019B}_is1
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{CD95D125-2992-4858-B3EF-5F6FB52FBAD6}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\1ClickDownload
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\BabylonToolbar
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\conduitEngine
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\english.ilsc Toolbar
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\ICQToolbar
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\WNLT
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{CE7DFD67-9280-4A35-86E1-E29F51A355AB}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{4FFBB818-B13C-11E0-931D-B2664824019B}_is1
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\BabylonToolbar
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\english.ilsc Toolbar
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ZoneAlarm LTD Toolbar
Key Found : HKLM\SOFTWARE\MozillaPlugins\@checkpoint.com/FFApi
Key Found : HKLM\Software\SimplyGen
Key Found : HKLM\Software\Softonic
Key Found : HKLM\Software\systweak
Key Found : HKLM\Software\Tarma Installer
Key Found : HKLM\Software\Web Assistant
Value Found : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]
Value Found : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{0FC39211-B9B3-4A26-AC9B-4BB07B416C63}]
Value Found : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{32099AAC-C132-4136-9E9A-4E364A424E17}]
Value Found : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}]
Value Found : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{EEE6C35B-6118-11DC-9C72-001320C79847}]
Value Found : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [{336D0C35-8A85-403A-B9D2-65C292C39087}]
Value Found : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List [C:\Program Files\ExpressFiles\expressdl.exe]
Value Found : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List [C:\Program Files\ExpressFiles\ExpressFiles.exe]
Value Found : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List [C:\Program Files\SweetIM\Communicator\SweetPacksUpdateManager.exe]

***** [ Browsers ] *****

-\\ Internet Explorer v8.0.6001.18702

Setting Found : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search] - hxxp://search.icq.com/search/results.php?q={searchTerms}&ch_id=osd
Setting Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURls [Tabs] - hxxp://search.babylon.com/?affid=110819 ... 2215906cd9

-\\ Mozilla Firefox v23.0.1 (cs)

[ File : C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\0\prefs.js ]

Line Found : user_pref("browser.search.defaultenginename", "AVG Secure Search");
Line Found : user_pref("browser.search.selectedEngine", "AVG Secure Search");
Line Found : user_pref("browser.startup.homepage", "hxxp://isearch.avg.com/?cid={75B48487-82A0-4077-A91D-05AFF1F985CE}&mid=419740fecce847d09c08d16b5374852a-ad1491be2ce6c122f6b66faa90e70c2decf7d34c&lang=cs&ds=gm011[...]

[ File : C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\vpukcm0i.default\prefs.js ]

Line Found : user_pref("CT3176921.1000082.isPlayDisplay", "true");
Line Found : user_pref("CT3176921.FirstTime", "true");
Line Found : user_pref("CT3176921.FirstTimeFF3", "true");
Line Found : user_pref("CT3176921.LoginRevertSettingsEnabled", true);
Line Found : user_pref("CT3176921.PG_ENABLE.enc", "dHJ1ZQ==");
Line Found : user_pref("CT3176921.RevertSettingsEnabled", true);
Line Found : user_pref("CT3176921.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3176921&SearchSource=2&CUI=UN40573117502472824&q=");
Line Found : user_pref("CT3176921.TopHitsConfig.enc", "ew0KICAgICJzcHJpdGVVcmwiOiAiaHR0cDovL3N0b3JhZ2UuY29uZHVpdC5jb20vcHMvVG9wSGl0c0dlbmVyaWNBcHAvY29uZmlncy9VUy1VSy1EYW5jZS1Sb2NrLVJhcC9zcHJpdGUucG5nIiwNCiAgICAiaX[...]
Line Found : user_pref("CT3176921.UserID", "UN77961998214384355");
Line Found : user_pref("CT3176921.addressBarTakeOverEnabledInHidden", "true");
Line Found : user_pref("CT3176921.browser.search.defaultthis.engineName", true);
Line Found : user_pref("CT3176921.countryCode", "CZ");
Line Found : user_pref("CT3176921.defaultSearch", "true");
Line Found : user_pref("CT3176921.enableAlerts", "always");
Line Found : user_pref("CT3176921.enableFix404ByUser", "FALSE");
Line Found : user_pref("CT3176921.enableSearchFromAddressBar", "true");
Line Found : user_pref("CT3176921.firstTimeDialogOpened", "true");
Line Found : user_pref("CT3176921.fixPageNotFoundError", "true");
Line Found : user_pref("CT3176921.fixPageNotFoundErrorByUser", "true");
Line Found : user_pref("CT3176921.fixPageNotFoundErrorInHidden", "true");
Line Found : user_pref("CT3176921.fixUrls", true);
Line Found : user_pref("CT3176921.fullUserID", "UN77961998214384355.XX.20130624204910");
Line Found : user_pref("CT3176921.homepageuserchanged", true);
Line Found : user_pref("CT3176921.installId", "stub.exe");
Line Found : user_pref("CT3176921.installType", "conduitnsisintegration");
Line Found : user_pref("CT3176921.isCheckedStartAsHidden", true);
Line Found : user_pref("CT3176921.isFirstTimeToolbarLoading", "false");
Line Found : user_pref("CT3176921.isPerformedSmartBarTransition", "true");
Line Found : user_pref("CT3176921.keyword", true);
Line Found : user_pref("CT3176921.lastVersion", "10.16.70.505");
Line Found : user_pref("CT3176921.mam_gk_appStateReportTime.enc", "MTM2NDEzNjg2NDk3Mw==");
Line Found : user_pref("CT3176921.mam_gk_appState_CouponBuddy.enc", "b24=");
Line Found : user_pref("CT3176921.mam_gk_appState_PriceGong.enc", "b24=");
Line Found : user_pref("CT3176921.mam_gk_appsData.enc", "eyJhcHBzIjpbeyJpZCI6IlByaWNlR29uZyIsInVybCI6Imh0dHA6Ly9wcmljZWdvbmcuY29uZHVpdGFwcHMuY29tL01BTS92MS9odG1sX2NvbXAuaHRtbCIsIm9wdGlvbnNEaWFsb2ciOnsiZGlzcGxheU5h[...]
Line Found : user_pref("CT3176921.mam_gk_appsDefaultEnabled.enc", "bnVsbA==");
Line Found : user_pref("CT3176921.mam_gk_configuration.enc", "eyJjb25maWd1cmF0aW9uIjpbeyJpZCI6IkNvdXBvbkJ1ZGR5IiwiY3JpdGVyaWFzIjpbeyJjcml0ZXJpYUlkIjoiZDBmYjlmMWYtZjUxYS00ZTc1LTkyZWQtMzg3MDkzNzFlMmRjIiwiZG9tYWlucyI[...]
Line Found : user_pref("CT3176921.mam_gk_currentVersion.enc", "MS40LjQuNg==");
Line Found : user_pref("CT3176921.mam_gk_eventsCache.enc", "eyIwYTIyYzU3Mi1hYTk5LTQ0YzktOGVhNi04YzZiMzEyZWJjYjUiOnsidG9waWMiOiJzZW5kVXNhZ2UiLCJkYXRhIjp7ImNhdGVnb3J5IjoiV2VsY29tZSIsImFjdGlvbiI6IlZpZXcifSwidW5pcXVlS[...]
Line Found : user_pref("CT3176921.mam_gk_first_time.enc", "MQ==");
Line Found : user_pref("CT3176921.mam_gk_gadgetOpen.enc", "d2VsY29tZQ==");
Line Found : user_pref("CT3176921.mam_gk_lastLoginTime.enc", "MTM2NDEzNjg2NTExMQ==");
Line Found : user_pref("CT3176921.mam_gk_localization.enc", "eyJnYWRnZXRDb250ZW50UG9saWN5Ijp7IlRleHQiOiJDb250ZW50IFBvbGljeSJ9LCJnYWRnZXREZXNjcmlwdGlvblByaW1hcnkiOnsiVGV4dCI6IlZhbHVlIEFwcHMgZW5yaWNoZXMgeW91ciB3ZWIg[...]
Line Found : user_pref("CT3176921.mam_gk_pgUnloadedOnce.enc", "dHJ1ZQ==");
Line Found : user_pref("CT3176921.mam_gk_settings1.4.4.6.enc", "eyJTdGF0dXMiOiJzdWNjZWVkZWQiLCJEYXRhIjp7ImludGVydmFsIjoyNDAsInN0YW1wIjoiMTgxXzAiLCJpc1Rlc3QiOnRydWUsImlzV2VsY29tZUV4cGVyaWVuY2VFbmFibGVkQnlEZWZhdWx0I[...]
Line Found : user_pref("CT3176921.mam_gk_showCloseButton.enc", "dHJ1ZQ==");
Line Found : user_pref("CT3176921.mam_gk_showWelcomeGadget.enc", "ZmFsc2U=");
Line Found : user_pref("CT3176921.mam_gk_userId.enc", "MWZkYmRhZWUtM2FhZS00ZWYzLTg4OGEtOTcxNjU3N2I0Njcy");
Line Found : user_pref("CT3176921.migrateAppsAndComponents", true);
Line Found : user_pref("CT3176921.openThankYouPage", "false");
Line Found : user_pref("CT3176921.openUninstallPage", "true");
Line Found : user_pref("CT3176921.originalHomepage", "seznam.cz");
Line Found : user_pref("CT3176921.originalSearchAddressUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3176921&SearchSource=2&CUI=UN77961998214384355&UM=&q=");
Line Found : user_pref("CT3176921.revertSettingsEnabled", "false");
Line Found : user_pref("CT3176921.search.searchAppId", "10000002");
Line Found : user_pref("CT3176921.search.searchCount", "0");
Line Found : user_pref("CT3176921.searchInNewTabEnabledByUser", "true");
Line Found : user_pref("CT3176921.searchInNewTabEnabledInHidden", "true");
Line Found : user_pref("CT3176921.searchSuggestEnabledByUser", "true");
Line Found : user_pref("CT3176921.searchUserMode", "false");
Line Found : user_pref("CT3176921.serviceLayer_services_Configuration_lastUpdate", "1377179062889");
Line Found : user_pref("CT3176921.serviceLayer_services_location_lastUpdate", "1372083055752");
Line Found : user_pref("CT3176921.serviceLayer_services_login_10.14.42.7_lastUpdate", "1362415532978");
Line Found : user_pref("CT3176921.serviceLayer_services_login_10.14.65.43_lastUpdate", "1364127917256");
Line Found : user_pref("CT3176921.serviceLayer_services_login_10.15.0.562_lastUpdate", "1365874410130");
Line Found : user_pref("CT3176921.serviceLayer_services_login_10.15.2.523_lastUpdate", "1368119786388");
Line Found : user_pref("CT3176921.serviceLayer_services_login_10.16.1.521_lastUpdate", "1368542608740");
Line Found : user_pref("CT3176921.serviceLayer_services_login_10.16.2.509_lastUpdate", "1372081464638");
Line Found : user_pref("CT3176921.serviceLayer_services_login_10.16.4.519_lastUpdate", "1374656342714");
Line Found : user_pref("CT3176921.serviceLayer_services_login_10.16.70.505_lastUpdate", "1377197011694");
Line Found : user_pref("CT3176921.serviceLayer_services_searchAPI_lastUpdate", "1377179062864");
Line Found : user_pref("CT3176921.serviceLayer_services_serviceMap_lastUpdate", "1377179062675");
Line Found : user_pref("CT3176921.serviceLayer_services_toolbarSettings_lastUpdate", "1377197011592");
Line Found : user_pref("CT3176921.serviceLayer_services_translation_lastUpdate", "1377179063718");
Line Found : user_pref("CT3176921.settingsINI", true);
Line Found : user_pref("CT3176921.shouldFirstTimeDialog", "false");
Line Found : user_pref("CT3176921.showToolbarPermission", "false");
Line Found : user_pref("CT3176921.smartbar.CTID", "CT3176921");
Line Found : user_pref("CT3176921.smartbar.Uninstall", "0");
Line Found : user_pref("CT3176921.smartbar.homepage", true);
Line Found : user_pref("CT3176921.smartbar.isHidden", true);
Line Found : user_pref("CT3176921.smartbar.toolbarName", "express-files ");
Line Found : user_pref("CT3176921.startPage", "true");
Line Found : user_pref("CT3176921.toolbarBornServerTime", "20-2-2013");
Line Found : user_pref("CT3176921.toolbarCurrentServerTime", "22-8-2013");
Line Found : user_pref("CT3176921.toolbarLoginClientTime", "Sun Mar 24 2013 15:54:18 GMT+0100");
Line Found : user_pref("CT3220468.FirstTime", "true");
Line Found : user_pref("CT3220468.FirstTimeFF3", "true");
Line Found : user_pref("CT3220468.UserID", "UN08601262438049362");
Line Found : user_pref("CT3220468.countryCode", "CZ");
Line Found : user_pref("CT3220468.defaultSearch", "FALSE");
Line Found : user_pref("CT3220468.enableFix404ByUser", "FALSE");
Line Found : user_pref("CT3220468.enableSearchFromAddressBar", "FALSE");
Line Found : user_pref("CT3220468.fixPageNotFoundError", "true");
Line Found : user_pref("CT3220468.fixPageNotFoundErrorByUser", "true");
Line Found : user_pref("CT3220468.fixUrls", true);
Line Found : user_pref("CT3220468.fullUserID", "UN08601262438049362.UP.20130703193626");
Line Found : user_pref("CT3220468.homepageuserchanged", true);
Line Found : user_pref("CT3220468.installId", "fft353.tmp.exe");
Line Found : user_pref("CT3220468.installType", "XPE");
Line Found : user_pref("CT3220468.isCheckedStartAsHidden", true);
Line Found : user_pref("CT3220468.isFirstTimeToolbarLoading", "false");
Line Found : user_pref("CT3220468.isPerformedSmartBarTransition", "true");
Line Found : user_pref("CT3220468.lastVersion", "10.16.70.505");
Line Found : user_pref("CT3220468.migrateAppsAndComponents", true);
Line Found : user_pref("CT3220468.openThankYouPage", "true");
Line Found : user_pref("CT3220468.openUninstallPage", "FALSE");
Line Found : user_pref("CT3220468.searchInNewTabEnabledByUser", "true");
Line Found : user_pref("CT3220468.searchSuggestEnabledByUser", "false");
Line Found : user_pref("CT3220468.searchUserMode", "false");
Line Found : user_pref("CT3220468.serviceLayer_services_Configuration_lastUpdate", "1377179064098");
Line Found : user_pref("CT3220468.serviceLayer_services_location_lastUpdate", "1372791577415");
Line Found : user_pref("CT3220468.serviceLayer_services_searchAPI_lastUpdate", "1377179064089");
Line Found : user_pref("CT3220468.serviceLayer_services_serviceMap_lastUpdate", "1377179064041");
Line Found : user_pref("CT3220468.serviceLayer_services_toolbarSettings_lastUpdate", "1377197012240");
Line Found : user_pref("CT3220468.serviceLayer_services_translation_lastUpdate", "1377179064431");
Line Found : user_pref("CT3220468.settingsINI", true);
Line Found : user_pref("CT3220468.shouldFirstTimeDialog", "false");
Line Found : user_pref("CT3220468.showToolbarPermission", "false");
Line Found : user_pref("CT3220468.smartbar.CTID", "CT3220468");
Line Found : user_pref("CT3220468.smartbar.Uninstall", "0");
Line Found : user_pref("CT3220468.smartbar.isHidden", true);
Line Found : user_pref("CT3220468.smartbar.toolbarName", "uTorrentControl_v2 ");
Line Found : user_pref("CT3220468.startPage", "userChanged");
Line Found : user_pref("CT3220468.toolbarBornServerTime", "23-9-2012");
Line Found : user_pref("CT3220468.toolbarCurrentServerTime", "23-9-2012");
Line Found : user_pref("CT3220468.toolbarLoginClientTime", "Fri Mar 15 2013 16:38:16 GMT+0100");
Line Found : user_pref("Smartbar.ConduitHomepagesList", "");
Line Found : user_pref("Smartbar.ConduitSearchEngineList", "express-files Customized Web Search");
Line Found : user_pref("Smartbar.ConduitSearchUrlList", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3176921&SearchSource=2&CUI=UN40573117502472824&q=");
Line Found : user_pref("Smartbar.keywordURLSelectedCTID", "CT3176921");
Line Found : user_pref("extensions.incredibar_i.aflt", "orgnl");
Line Found : user_pref("extensions.incredibar_i.dfltLng", "");
Line Found : user_pref("extensions.incredibar_i.did", "10650");
Line Found : user_pref("extensions.incredibar_i.excTlbr", false);
Line Found : user_pref("extensions.incredibar_i.id", "80511823000000000000002215906cd9");
Line Found : user_pref("extensions.incredibar_i.installerproductid", "26");
Line Found : user_pref("extensions.incredibar_i.instlDay", "15572");
Line Found : user_pref("extensions.incredibar_i.instlRef", "");
Line Found : user_pref("extensions.incredibar_i.ms_url_id", "");
Line Found : user_pref("extensions.incredibar_i.newTab", false);
Line Found : user_pref("extensions.incredibar_i.ppd", "201%5F6");
Line Found : user_pref("extensions.incredibar_i.prdct", "incredibar");
Line Found : user_pref("extensions.incredibar_i.productid", "26");
Line Found : user_pref("extensions.incredibar_i.prtnrId", "Incredibar");
Line Found : user_pref("extensions.incredibar_i.smplGrp", "none");
Line Found : user_pref("extensions.incredibar_i.tlbrId", "base");
Line Found : user_pref("extensions.incredibar_i.tlbrSrchUrl", "hxxp://mystart.Incredibar.com/?a=6OyLBECBnw&loc=IB_TB&i=26&search=");
Line Found : user_pref("extensions.incredibar_i.upn2", "6OyLBECBnw");
Line Found : user_pref("extensions.incredibar_i.upn2n", "92261963561678006");
Line Found : user_pref("extensions.incredibar_i.vrsn", "1.5.11.14");
Line Found : user_pref("extensions.incredibar_i.vrsnTs", "1.5.11.1415:27:29");
Line Found : user_pref("extensions.incredibar_i.vrsni", "1.5.11.14");
Line Found : user_pref("extensions.softonic_i.aflt", "orgnl");
Line Found : user_pref("extensions.softonic_i.dfltSrch", true);
Line Found : user_pref("extensions.softonic_i.dnsErr", true);
Line Found : user_pref("extensions.softonic_i.hardId", "80511823000000000000002215906cd9");
Line Found : user_pref("extensions.softonic_i.hmpg", true);
Line Found : user_pref("extensions.softonic_i.hmpgUrl", "hxxp://search.softonic.com/MON00004/tb_v1?SearchSource=13&cc=");
Line Found : user_pref("extensions.softonic_i.id", "80511823000000000000002215906cd9");
Line Found : user_pref("extensions.softonic_i.instlDay", "15316");
Line Found : user_pref("extensions.softonic_i.instlRef", "MON00004");
Line Found : user_pref("extensions.softonic_i.keyWordUrl", "hxxp://search.softonic.com/MON00004/tb_v1?SearchSource=2&cc=&q=");
Line Found : user_pref("extensions.softonic_i.newTab", true);
Line Found : user_pref("extensions.softonic_i.newTabUrl", "hxxp://search.softonic.com/MON00004/tb_v1?SearchSource=15&cc=");
Line Found : user_pref("extensions.softonic_i.prdct", "softonic");
Line Found : user_pref("extensions.softonic_i.prtnrId", "softonic");
Line Found : user_pref("extensions.softonic_i.smplGrp", "eng7");
Line Found : user_pref("extensions.softonic_i.srchPrvdr", "Search the web (Softonic)");
Line Found : user_pref("extensions.softonic_i.tlbrId", "eng7");
Line Found : user_pref("extensions.softonic_i.tlbrSrchUrl", "hxxp://search.softonic.com/MON00004/tb_v1?SearchSource=1&cc=&q=");
Line Found : user_pref("extensions.softonic_i.vrsn", "1.5.3.20");
Line Found : user_pref("extensions.softonic_i.vrsnTs", "1.5.3.2015:11:43");
Line Found : user_pref("extensions.softonic_i.vrsni", "1.5.3.20");
Line Found : user_pref("smartBar.searchInNewTabOwner", "CT3176921");
Line Found : user_pref("smartbar.addressBarOwnerCTID", "CT3176921");
Line Found : user_pref("smartbar.conduitHomepageList", "hxxp://search.conduit.com/?ctid=CT3176921&SearchSource=13&CUI=UN40573117502472824");
Line Found : user_pref("smartbar.conduitSearchAddressUrlList", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3176921&SearchSource=2&CUI=UN40573117502472824&q=,hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3[...]
Line Found : user_pref("smartbar.defaultSearchOwnerCTID", "CT3176921");
Line Found : user_pref("smartbar.homePageOwnerCTID", "CT3176921");
Line Found : user_pref("smartbar.machineId", "USNVQSKD0AZEGLRE4A0CNDR5DXC");
Line Found : user_pref("smartbar.originalHomepage", "chrome://branding/locale/browserconfig.properties");
Line Found : user_pref("smartbar.originalSearchAddressUrl", "");
Line Found : user_pref("smartbar.originalSearchEngine", false);

-\\ Google Chrome v

[ File : C:\Documents and Settings\user\Local Settings\Data aplikací\Google\Chrome\User Data\Default\preferences ]

Found : homepage
Found : homepage
Found : homepage

*************************

AdwCleaner[R0].txt - [38147 octets] - [01/09/2013 12:50:23]

########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [38208 octets] ##########
Nahoru
123
nováček
Příspěvky: 19
Registrován: srpen 13
Pohlaví: Nespecifikováno
Stav:
Offline

Re: Prosím o kontrolu logu, nejdou mi online hry

Příspěvekod 123 » 01 zář 2013 13:13

Malwarebytes Anti-Malware (Zkušební verze Malwarebytes Anti-Malware.) 1.75.0.1300
www.malwarebytes.org

Verze: v2013.09.01.03

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
user :: USER-9413ED0969 [administrátor]

Ochrana: Povolena

1.9.2013 13:06:41
malware anti log.txt

Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 247789
Uplynulý čas: 4 minut, 28 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 4
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{11111111-1111-1111-1111-110111181125} (PUP.CrossRider.BCA) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{11111111-1111-1111-1111-110111181125} (PUP.CrossRider.BCA) -> Nebyla provedena žádná instrukce.
HKCR\CLSID\MADOWN (Worm.Magania) -> Nebyla provedena žádná instrukce.
HKCU\Software\DC3_FEXEC (Malware.Trace) -> Nebyla provedena žádná instrukce.

Nalezené hodnoty v registru: 2
HKCU\SOFTWARE\SYSTEM|klg (Trojan.Backdoor) -> Data:  -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\SYSTEM|nck (Trojan.Backdoor) -> Data: ú*ŁD˘2tĂÍtú“[g -> Nebyla provedena žádná instrukce.

Nalezené datové položky v registru: 1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL|CheckedValue (PUM.Hijack.System.Hidden) -> Špatný: (0) Dobrý: (1) -> Nebyla provedena žádná instrukce.

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 25
C:\Documents and Settings\All Users\Data aplikací\OptimizerPro1\OptimizerPro1.exe (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\user\Data aplikací\update_tc\update.exe (Backdoor.Bot.AI) -> Nebyla provedena žádná instrukce.
C:\8xcrbho6.exe (Spyware.Password) -> Nebyla provedena žádná instrukce.
C:\9d6resf.exe (Spyware.OnlineGames) -> Nebyla provedena žádná instrukce.
C:\9keibj.exe (Spyware.OnlineGames) -> Nebyla provedena žádná instrukce.
C:\apqpm.exe (Spyware.OnlineGames) -> Nebyla provedena žádná instrukce.
C:\b9v.exe (Spyware.OnlineGames) -> Nebyla provedena žádná instrukce.
C:\bud3mkqr.exe (Spyware.OnlineGames.BRBR) -> Nebyla provedena žádná instrukce.
C:\cbbw88s.exe (Spyware.OnlineGames.BRBR) -> Nebyla provedena žádná instrukce.
C:\dwh.exe (Spyware.OnlineGames.BRBR) -> Nebyla provedena žádná instrukce.
C:\egmjjb.exe (Spyware.OnlineGames.BRBR) -> Nebyla provedena žádná instrukce.
C:\et3ypes.exe (Spyware.OnlineGames.BRBR) -> Nebyla provedena žádná instrukce.
C:\i00dvoym.exe (Spyware.OnlineGames.BRBR) -> Nebyla provedena žádná instrukce.
C:\io3yalc.exe (Spyware.OnlineGames) -> Nebyla provedena žádná instrukce.
C:\jofk1wf.exe (Trojan.GamesThief) -> Nebyla provedena žádná instrukce.
C:\kyme.exe (Spyware.OnlineGames) -> Nebyla provedena žádná instrukce.
C:\l10.exe (Spyware.OnlineGames) -> Nebyla provedena žádná instrukce.
C:\lpl.exe (Spyware.OnlineGames) -> Nebyla provedena žádná instrukce.
C:\o1o.exe (Spyware.OnlineGames) -> Nebyla provedena žádná instrukce.
C:\r3q63rok.exe (Trojan.GamesThief) -> Nebyla provedena žádná instrukce.
C:\yveqsh93.exe (Spyware.OnlineGames.BRBR) -> Nebyla provedena žádná instrukce.
C:\WINDOWS\system32\mgking1.dll (Spyware.OnlineGames.BRBR) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\user\Data aplikací\msnsvconfig.txt (Malware.Trace) -> Nebyla provedena žádná instrukce.
C:\WINDOWS\system32\arking1.dll (Spyware.OnlineGames) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\user\Data aplikací\logs.dat (Bifrose.Trace) -> Nebyla provedena žádná instrukce.

(konec)
Nahoru
Uživatelský avatar
memphisto
Guru Level 13
Guru Level 13
Příspěvky: 21113
Registrován: září 06
Bydliště: Zlín - České Budějovice
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kontrolu logu, nejdou mi online hry

Příspěvekod memphisto » 01 zář 2013 21:35

v adw i mbam nech všechno smazat a dodej logy

¨Stáhni si RogueKiller
32bit.:
http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe
64bit.:
http://www.sur-la-toile.com/RogueKiller ... lerX64.exe
na svojí plochu.
- Zavři všechny ostatní programy a prohlížeče.
- Pro OS Vista a win7 spusť program RogueKiller.exe jako správce , u XP poklepáním.
- počkej až skončí Prescan -vyhledávání škodlivých procesů.
- Zkontroluj , zda máš zaškrtnuto:
Kontrola MBR
Kontrola Faked
Antirootkit
-Potom klikni na „Prohledat“.
- Program skenuje procesy PC. Po proskenování klikni na „Zpráva“celý obsah logu sem zkopíruj.
Pokud je program blokován , zkus ho spustit několikrát. Pokud dále program nepůjde spustit a pracovat, přejmenuj ho na winlogon.exe.

Stáhni si Junkware Removal Tool

na svojí plochu.
Deaktivuj si svůj antivirový program.
Pravým tl. myši klikni na JRT.exe a vyber „spustit jako správce“. Pro pokračování budeš vyzván ke stisknutí jakékoliv klávesy. Na nějakou klikni.
Začne skenování programu. Skenování může trvat dloho , podle množství nákaz. Po ukončení skenu se objeví log (JRT.txt) , který se uloží na ploše.
Zkopíruj sem prosím celý jeho obsah.
PRAVIDLA PC-HELP.CZ, PRAVIDLA sekce HijackThis, HijackThis návod, Memtest, CCleaner
Logy z programu HijackThis neposílejte prosím přes SZ, ale vkládejte je do patřičné sekce. Děkuji
Nahoru
123
nováček
Příspěvky: 19
Registrován: srpen 13
Pohlaví: Nespecifikováno
Stav:
Offline

Re: Prosím o kontrolu logu, nejdou mi online hry

Příspěvekod 123 » 02 zář 2013 12:35

# AdwCleaner v3.001 - Report created 01/09/2013 at 12:56:25
# Updated 24/08/2013 by Xplode
# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)
# Username : user - USER-9413ED0969
# Running from : C:\Documents and Settings\user\Dokumenty\Stažené soubory\adwcleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\Documents and Settings\All Users\Data aplikací\Ask
Folder Deleted : C:\Documents and Settings\All Users\Data aplikací\Babylon
Folder Deleted : C:\Documents and Settings\All Users\Data aplikací\ICQ\ICQToolbar
Folder Deleted : C:\Documents and Settings\All Users\Data aplikací\InstallMate
Folder Deleted : C:\Documents and Settings\All Users\Data aplikací\Premium
Folder Deleted : C:\Documents and Settings\All Users\Data aplikací\SweetIM
Folder Deleted : C:\Documents and Settings\All Users\Data aplikací\Tarma Installer
Folder Deleted : C:\Documents and Settings\All Users\Data aplikací\Trymedia
Folder Deleted : C:\Documents and Settings\All Users\Data aplikací\WxDFastUpdater
Folder Deleted : C:\Program Files\BabylonToolbar
Folder Deleted : C:\Program Files\Complitly
Folder Deleted : C:\Program Files\ICQ6Toolbar
Folder Deleted : C:\Program Files\english.ilsc
Folder Deleted : C:\Documents and Settings\user\IECompatCache
Folder Deleted : C:\Documents and Settings\user\Local Settings\Data aplikací\Babylon
Folder Deleted : C:\Documents and Settings\user\Local Settings\Data aplikací\Conduit
Folder Deleted : C:\Documents and Settings\user\Local Settings\Data aplikací\cre
Folder Deleted : C:\Documents and Settings\user\Local Settings\Data aplikací\OpenCandy
Folder Deleted : C:\Documents and Settings\user\Local Settings\Data aplikací\english.ilsc
Folder Deleted : C:\Documents and Settings\user\Data aplikací\Babylon
Folder Deleted : C:\Documents and Settings\user\Data aplikací\BabylonToolbar
Folder Deleted : C:\Documents and Settings\user\Data aplikací\CheckPoint\ZoneAlarm LTD Toolbar
Folder Deleted : C:\Documents and Settings\user\Data aplikací\Complitly
Folder Deleted : C:\Documents and Settings\user\Data aplikací\ExpressFiles
Folder Deleted : C:\Documents and Settings\user\Data aplikací\OpenCandy
Folder Deleted : C:\Documents and Settings\user\Data aplikací\PriceGong
Folder Deleted : C:\Documents and Settings\user\Data aplikací\registry mechanic
Folder Deleted : C:\Documents and Settings\user\Data aplikací\Softonic
Folder Deleted : C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\vpukcm0i.default\ConduitCommon
Folder Deleted : C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\vpukcm0i.default\Smartbar
Folder Deleted : C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\vpukcm0i.default\SweetPacksToolbarData
Folder Deleted : C:\Program Files\Mozilla Firefox\Extensions\{800B5000-A755-47E1-992B-48A1C1357F07}
[!] Folder Deleted : C:\Documents and Settings\user\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\dlfienamagdnkekbbbocojppncdambda
[!] Folder Deleted : C:\Documents and Settings\user\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof
[!] Folder Deleted : C:\Documents and Settings\user\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\ejpbbhjlbipncjklfjjaedaieimbmdda
[!] Folder Deleted : C:\Documents and Settings\user\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\ejpbbhjlbipncjklfjjaedaieimbmdda
[!] Folder Deleted : C:\Documents and Settings\user\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\iibmmjhgclhlahmjniokmhleigemjpbh
[!] Folder Deleted : C:\Documents and Settings\user\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\iibmmjhgclhlahmjniokmhleigemjpbh
[!] Folder Deleted : C:\Documents and Settings\user\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pacgpkgadgmibnhpdidcnfafllnmeomc
[!] Folder Deleted : C:\Documents and Settings\user\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pacgpkgadgmibnhpdidcnfafllnmeomc
File Deleted : C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\vpukcm0i.default\searchplugins\askcomsearch.xml
File Deleted : C:\Program Files\Mozilla Firefox\searchplugins\avg-secure-search.xml
File Deleted : C:\Program Files\Mozilla Firefox\searchplugins\Babylon.xml
File Deleted : C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\vpukcm0i.default\searchplugins\daemon-search.xml
File Deleted : C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\vpukcm0i.default\searchplugins\icqplugin.xml
File Deleted : C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\vpukcm0i.default\searchplugins\icqplugin-1.xml
File Deleted : C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\vpukcm0i.default\searchplugins\icqplugin-10.xml
File Deleted : C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\vpukcm0i.default\searchplugins\icqplugin-2.xml
File Deleted : C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\vpukcm0i.default\searchplugins\icqplugin-3.xml
File Deleted : C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\vpukcm0i.default\searchplugins\icqplugin-4.xml
File Deleted : C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\vpukcm0i.default\searchplugins\icqplugin-5.xml
File Deleted : C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\vpukcm0i.default\searchplugins\icqplugin-6.xml
File Deleted : C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\vpukcm0i.default\searchplugins\icqplugin-7.xml
File Deleted : C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\vpukcm0i.default\searchplugins\icqplugin-8.xml
File Deleted : C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\vpukcm0i.default\searchplugins\icqplugin-9.xml
File Deleted : C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\vpukcm0i.default\searchplugins\MyStart Search.xml
File Deleted : C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\vpukcm0i.default\searchplugins\softonic.xml
File Deleted : C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\vpukcm0i.default\searchplugins\SweetIm.xml
File Deleted : C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\0\user.js
File Deleted : C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\vpukcm0i.default\user.js

***** [ Shortcuts ] *****


***** [ Registry ] *****

Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [{336D0C35-8A85-403A-B9D2-65C292C39087}]
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\dlfienamagdnkekbbbocojppncdambda
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\jifflliplgeajjdhmkcfnngfpgbjonjg
Key Deleted : HKCU\Software\Google\Chrome\Extensions\ejpbbhjlbipncjklfjjaedaieimbmdda
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\ejpbbhjlbipncjklfjjaedaieimbmdda
Key Deleted : HKCU\Software\Google\Chrome\Extensions\iibmmjhgclhlahmjniokmhleigemjpbh
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\iibmmjhgclhlahmjniokmhleigemjpbh
Key Deleted : HKCU\Software\Google\Chrome\Extensions\pacgpkgadgmibnhpdidcnfafllnmeomc
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\pacgpkgadgmibnhpdidcnfafllnmeomc
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]
Key Deleted : HKCU\Toolbar
Key Deleted : HKLM\SOFTWARE\Classes\b
Key Deleted : HKLM\SOFTWARE\Classes\bbylnApp.appCore
Key Deleted : HKLM\SOFTWARE\Classes\bbylnApp.appCore.1
Key Deleted : HKLM\SOFTWARE\Classes\bbylntlbr.bbylntlbrHlpr
Key Deleted : HKLM\SOFTWARE\Classes\bbylntlbr.bbylntlbrHlpr.1
Key Deleted : HKLM\SOFTWARE\Classes\esrv.BabylonESrvc
Key Deleted : HKLM\SOFTWARE\Classes\esrv.BabylonESrvc.1
Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap
Key Deleted : HKLM\SOFTWARE\Classes\Softonic.dskBnd
Key Deleted : HKLM\SOFTWARE\Classes\Softonic.dskBnd.1
Key Deleted : HKLM\SOFTWARE\Classes\Softonic.SoftonicHlpr
Key Deleted : HKLM\SOFTWARE\Classes\Softonic.SoftonicHlpr.1
Key Deleted : HKLM\SOFTWARE\Classes\SoftonicApp.appCore
Key Deleted : HKLM\SOFTWARE\Classes\SoftonicApp.appCore.1
Key Deleted : HKLM\SOFTWARE\Classes\srv.SoftonicSrvc
Key Deleted : HKLM\SOFTWARE\Classes\srv.SoftonicSrvc.1
Key Deleted : HKLM\SOFTWARE\Classes\SWEETIE.IEToolbar
Key Deleted : HKLM\SOFTWARE\Classes\SWEETIE.IEToolbar.1
Key Deleted : HKLM\SOFTWARE\Classes\sweetim_urlsearchhook.toolbarurlsearchhook
Key Deleted : HKLM\SOFTWARE\Classes\sweetim_urlsearchhook.toolbarurlsearchhook.1
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar3.sweetie
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar3.sweetie.1
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@checkpoint.com/FFApi
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{35C1605E-438B-4D64-AAB1-8885F097A9B1}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{5B1881D1-D9C7-46DF-B041-1E593282C7D0}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{608D3067-77E8-463D-9084-908966806826}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{7ABBFE1C-E485-44AA-8F36-353751B4124D}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{B15F118E-AF21-45E8-A809-29FDD7362565}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{291BCCC1-6890-484A-89D3-318C928DAC1B}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{94496571-6AC5-4836-82D5-D46260C44B17}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B8276A94-891D-453C-9FF3-715C042A2575}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{BC9FD17D-30F6-4464-9E53-596A90AFF023}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E46C8196-B634-44A1-AF6E-957C64278AB1}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FFB9ADCB-8C79-4C29-81D3-74D46A93D370}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CE7DFD67-9280-4A35-86E1-E29F51A355AB}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{087CDC12-0A11-4D1D-8DCF-44185D7C3496}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{088BF3A9-6AE8-47B9-A3FB-26262F236C79}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2AC7B9EB-3881-4EB9-8DEE-0A731A309FDE}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{349C0469-ACDD-49DF-9B3E-0D82E7C7DC4D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{41226591-6F7A-4082-B63A-67FE4A0CF7A6}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{44C3C1DB-2127-433C-98EC-4C9412B5FC3A}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4D5132DD-BB2B-4249-B5E0-D145A8C982E1}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{55D69CD1-6715-4C40-BF05-9519AC4DC6E6}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{66C8FD57-54C4-4D4F-BC95-DCCC763B410A}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{706D4A4B-184A-4434-B331-296B07493D2D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{717BAE33-7061-4279-8AE5-6C13BC8AF3F9}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{84F06F7A-F811-48D7-8B34-3F4145183D8F}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{88F6D55F-AA3F-4003-BE69-4AC1998D6492}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{8BE10F21-185F-4CA0-B789-9921674C3993}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{94C0B25D-3359-4B10-B227-F96A77DB773F}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A0F66203-1A86-4812-9603-A57E09A4D7A3}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B0B75FBA-7288-4FD3-A9EB-7EE27FA65599}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B173667F-8395-4317-8DD6-45AD1FE00047}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B32672B3-F656-46E0-B584-FE61C0BB6037}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{BC39D1B3-4471-41C1-AACA-E097FAF4B7AA}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{BFE569F7-646C-4512-969B-9BE3E580D393}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C2434722-5C85-4CA0-BA69-1B67E7AB3D68}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C2996524-2187-441F-A398-CD6CB6B3D020}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{DEB85542-1311-4EC6-8A32-5372EB27FC94}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E047E227-5342-4D94-80F7-CFB154BF55BD}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E3F79BE9-24D4-4F4D-8C13-DF2C9899F82E}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E77EEF95-3E83-4BB8-9C0D-4A5163774997}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EEE6C358-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EEE6C359-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EEE6C35A-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{11D9E165-B8C1-4734-A56C-BC4FCACA966B}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{13ABD093-D46F-40DF-A608-47E162EC799D}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{35C1605E-438B-4D64-AAB1-8885F097A9B1}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{6E8BF012-2C85-4834-B10A-1B31AF173D70}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{B15F118E-AF21-45E8-A809-29FDD7362565}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{EEE6C35E-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{EEE6C35F-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{32099AAC-C132-4136-9E9A-4E364A424E17}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{336D0C35-8A85-403A-B9D2-65C292C39087}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{5018CFD2-804D-4C99-9F81-25EAEA2769DE}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{855F3B16-6D32-4FE6-8A56-BBB695989046}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{E87806B5-E908-45FD-AF5E-957D83E58E68}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35B-6118-11DC-9C72-001320C79847}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35C-6118-11DC-9C72-001320C79847}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35D-6118-11DC-9C72-001320C79847}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0FC39211-B9B3-4A26-AC9B-4BB07B416C63}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{CE7DFD67-9280-4A35-86E1-E29F51A355AB}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{32099AAC-C132-4136-9E9A-4E364A424E17}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{336D0C35-8A85-403A-B9D2-65C292C39087}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{5018CFD2-804D-4C99-9F81-25EAEA2769DE}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{E87806B5-E908-45FD-AF5E-957D83E58E68}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EEE6C35B-6118-11DC-9C72-001320C79847}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EEE6C35C-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{CE7DFD67-9280-4A35-86E1-E29F51A355AB}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8375D9C8-634F-4ECB-8CF5-C7416BA5D542}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9CF034EA-7B46-48D3-8895-8A14B32AE445}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{EEE6C367-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{03E4CF48-9BA1-4C5E-A665-DA824935B567}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{167CC04F-C762-487D-AEAB-AB3A0B5E6041}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AD22EBAF-0D18-4FC7-90CC-5EA0ABBE9EB8}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{CFF4DB9B-135F-47C0-9269-B4C6572FD61A}
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{32099AAC-C132-4136-9E9A-4E364A424E17}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{EEE6C35B-6118-11DC-9C72-001320C79847}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{0FC39211-B9B3-4A26-AC9B-4BB07B416C63}]
Value Deleted : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List [C:\Program Files\SweetIM\Communicator\SweetPacksUpdateManager.exe]
Value Deleted : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List [C:\Program Files\ExpressFiles\expressdl.exe]
Value Deleted : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List [C:\Program Files\ExpressFiles\ExpressFiles.exe]
Key Deleted : HKCU\Software\1ClickDownload
Key Deleted : HKCU\Software\BabylonToolbar
Key Deleted : HKCU\Software\Complitly
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\ConduitSearchScopes
Key Deleted : HKCU\Software\Crossrider
Key Deleted : HKCU\Software\ExpressFiles
Key Deleted : HKCU\Software\IGearSettings
Key Deleted : HKCU\Software\IM
Key Deleted : HKCU\Software\ImInstaller
Key Deleted : HKCU\Software\InstallCore
Key Deleted : HKCU\Software\PriceGong
Key Deleted : HKCU\Software\SmartBar
Key Deleted : HKCU\Software\Softonic
Key Deleted : HKCU\Software\Web Assistant
Key Deleted : HKCU\Software\english.ilsc
Key Deleted : HKCU\Software\AppDataLow\Software\Conduit
Key Deleted : HKLM\Software\Babylon
Key Deleted : HKLM\Software\BabylonToolbar
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\Software\ExpressFiles
Key Deleted : HKLM\Software\ICQ\ICQToolbar
Key Deleted : HKLM\Software\Iminent
Key Deleted : HKLM\Software\SimplyGen
Key Deleted : HKLM\Software\Softonic
Key Deleted : HKLM\Software\systweak
Key Deleted : HKLM\Software\Tarma Installer
Key Deleted : HKLM\Software\Web Assistant
Key Deleted : HKLM\Software\english.ilsc
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{4FFBB818-B13C-11E0-931D-B2664824019B}_is1
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\BabylonToolbar
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ZoneAlarm LTD Toolbar
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\english.ilsc Toolbar
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{4FFBB818-B13C-11E0-931D-B2664824019B}_is1
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{CD95D125-2992-4858-B3EF-5F6FB52FBAD6}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\1ClickDownload
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\BabylonToolbar
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\conduitEngine
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\ICQToolbar
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\WNLT
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\english.ilsc Toolbar

***** [ Browsers ] *****

-\\ Internet Explorer v8.0.6001.18702

Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURls [Tabs]

-\\ Mozilla Firefox v23.0.1 (cs)

[ File : C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\0\prefs.js ]

Line Deleted : user_pref("browser.search.defaultenginename", "AVG Secure Search");
Line Deleted : user_pref("browser.search.selectedEngine", "AVG Secure Search");
Line Deleted : user_pref("browser.startup.homepage", "hxxp://isearch.avg.com/?cid={75B48487-82A0-4077-A91D-05AFF1F985CE}&mid=419740fecce847d09c08d16b5374852a-ad1491be2ce6c122f6b66faa90e70c2decf7d34c&lang=cs&ds=gm011[...]

[ File : C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\vpukcm0i.default\prefs.js ]

Line Deleted : user_pref("CT3176921.1000082.isPlayDisplay", "true");
Line Deleted : user_pref("CT3176921.FirstTime", "true");
Line Deleted : user_pref("CT3176921.FirstTimeFF3", "true");
Line Deleted : user_pref("CT3176921.LoginRevertSettingsEnabled", true);
Line Deleted : user_pref("CT3176921.PG_ENABLE.enc", "dHJ1ZQ==");
Line Deleted : user_pref("CT3176921.RevertSettingsEnabled", true);
Line Deleted : user_pref("CT3176921.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3176921&SearchSource=2&CUI=UN40573117502472824&q=");
Line Deleted : user_pref("CT3176921.TopHitsConfig.enc", "ew0KICAgICJzcHJpdGVVcmwiOiAiaHR0cDovL3N0b3JhZ2UuY29uZHVpdC5jb20vcHMvVG9wSGl0c0dlbmVyaWNBcHAvY29uZmlncy9VUy1VSy1EYW5jZS1Sb2NrLVJhcC9zcHJpdGUucG5nIiwNCiAgICAiaX[...]
Line Deleted : user_pref("CT3176921.UserID", "UN77961998214384355");
Line Deleted : user_pref("CT3176921.addressBarTakeOverEnabledInHidden", "true");
Line Deleted : user_pref("CT3176921.browser.search.defaultthis.engineName", true);
Line Deleted : user_pref("CT3176921.countryCode", "CZ");
Line Deleted : user_pref("CT3176921.defaultSearch", "true");
Line Deleted : user_pref("CT3176921.enableAlerts", "always");
Line Deleted : user_pref("CT3176921.enableFix404ByUser", "FALSE");
Line Deleted : user_pref("CT3176921.enableSearchFromAddressBar", "true");
Line Deleted : user_pref("CT3176921.firstTimeDialogOpened", "true");
Line Deleted : user_pref("CT3176921.fixPageNotFoundError", "true");
Line Deleted : user_pref("CT3176921.fixPageNotFoundErrorByUser", "true");
Line Deleted : user_pref("CT3176921.fixPageNotFoundErrorInHidden", "true");
Line Deleted : user_pref("CT3176921.fixUrls", true);
Line Deleted : user_pref("CT3176921.fullUserID", "UN77961998214384355.XX.20130624204910");
Line Deleted : user_pref("CT3176921.homepageuserchanged", true);
Line Deleted : user_pref("CT3176921.installId", "stub.exe");
Line Deleted : user_pref("CT3176921.installType", "conduitnsisintegration");
Line Deleted : user_pref("CT3176921.isCheckedStartAsHidden", true);
Line Deleted : user_pref("CT3176921.isFirstTimeToolbarLoading", "false");
Line Deleted : user_pref("CT3176921.isPerformedSmartBarTransition", "true");
Line Deleted : user_pref("CT3176921.keyword", true);
Line Deleted : user_pref("CT3176921.lastVersion", "10.16.70.505");
Line Deleted : user_pref("CT3176921.mam_gk_appStateReportTime.enc", "MTM2NDEzNjg2NDk3Mw==");
Line Deleted : user_pref("CT3176921.mam_gk_appState_CouponBuddy.enc", "b24=");
Line Deleted : user_pref("CT3176921.mam_gk_appState_PriceGong.enc", "b24=");
Line Deleted : user_pref("CT3176921.mam_gk_appsData.enc", "eyJhcHBzIjpbeyJpZCI6IlByaWNlR29uZyIsInVybCI6Imh0dHA6Ly9wcmljZWdvbmcuY29uZHVpdGFwcHMuY29tL01BTS92MS9odG1sX2NvbXAuaHRtbCIsIm9wdGlvbnNEaWFsb2ciOnsiZGlzcGxheU5h[...]
Line Deleted : user_pref("CT3176921.mam_gk_appsDefaultEnabled.enc", "bnVsbA==");
Line Deleted : user_pref("CT3176921.mam_gk_configuration.enc", "eyJjb25maWd1cmF0aW9uIjpbeyJpZCI6IkNvdXBvbkJ1ZGR5IiwiY3JpdGVyaWFzIjpbeyJjcml0ZXJpYUlkIjoiZDBmYjlmMWYtZjUxYS00ZTc1LTkyZWQtMzg3MDkzNzFlMmRjIiwiZG9tYWlucyI[...]
Line Deleted : user_pref("CT3176921.mam_gk_currentVersion.enc", "MS40LjQuNg==");
Line Deleted : user_pref("CT3176921.mam_gk_eventsCache.enc", "eyIwYTIyYzU3Mi1hYTk5LTQ0YzktOGVhNi04YzZiMzEyZWJjYjUiOnsidG9waWMiOiJzZW5kVXNhZ2UiLCJkYXRhIjp7ImNhdGVnb3J5IjoiV2VsY29tZSIsImFjdGlvbiI6IlZpZXcifSwidW5pcXVlS[...]
Line Deleted : user_pref("CT3176921.mam_gk_first_time.enc", "MQ==");
Line Deleted : user_pref("CT3176921.mam_gk_gadgetOpen.enc", "d2VsY29tZQ==");
Line Deleted : user_pref("CT3176921.mam_gk_lastLoginTime.enc", "MTM2NDEzNjg2NTExMQ==");
Line Deleted : user_pref("CT3176921.mam_gk_localization.enc", "eyJnYWRnZXRDb250ZW50UG9saWN5Ijp7IlRleHQiOiJDb250ZW50IFBvbGljeSJ9LCJnYWRnZXREZXNjcmlwdGlvblByaW1hcnkiOnsiVGV4dCI6IlZhbHVlIEFwcHMgZW5yaWNoZXMgeW91ciB3ZWIg[...]
Line Deleted : user_pref("CT3176921.mam_gk_pgUnloadedOnce.enc", "dHJ1ZQ==");
Line Deleted : user_pref("CT3176921.mam_gk_settings1.4.4.6.enc", "eyJTdGF0dXMiOiJzdWNjZWVkZWQiLCJEYXRhIjp7ImludGVydmFsIjoyNDAsInN0YW1wIjoiMTgxXzAiLCJpc1Rlc3QiOnRydWUsImlzV2VsY29tZUV4cGVyaWVuY2VFbmFibGVkQnlEZWZhdWx0I[...]
Line Deleted : user_pref("CT3176921.mam_gk_showCloseButton.enc", "dHJ1ZQ==");
Line Deleted : user_pref("CT3176921.mam_gk_showWelcomeGadget.enc", "ZmFsc2U=");
Line Deleted : user_pref("CT3176921.mam_gk_userId.enc", "MWZkYmRhZWUtM2FhZS00ZWYzLTg4OGEtOTcxNjU3N2I0Njcy");
Line Deleted : user_pref("CT3176921.migrateAppsAndComponents", true);
Line Deleted : user_pref("CT3176921.openThankYouPage", "false");
Line Deleted : user_pref("CT3176921.openUninstallPage", "true");
Line Deleted : user_pref("CT3176921.originalHomepage", "seznam.cz");
Line Deleted : user_pref("CT3176921.originalSearchAddressUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3176921&SearchSource=2&CUI=UN77961998214384355&UM=&q=");
Line Deleted : user_pref("CT3176921.revertSettingsEnabled", "false");
Line Deleted : user_pref("CT3176921.search.searchAppId", "10000002");
Line Deleted : user_pref("CT3176921.search.searchCount", "0");
Line Deleted : user_pref("CT3176921.searchInNewTabEnabledByUser", "true");
Line Deleted : user_pref("CT3176921.searchInNewTabEnabledInHidden", "true");
Line Deleted : user_pref("CT3176921.searchSuggestEnabledByUser", "true");
Line Deleted : user_pref("CT3176921.searchUserMode", "false");
Line Deleted : user_pref("CT3176921.serviceLayer_services_Configuration_lastUpdate", "1377179062889");
Line Deleted : user_pref("CT3176921.serviceLayer_services_location_lastUpdate", "1372083055752");
Line Deleted : user_pref("CT3176921.serviceLayer_services_login_10.14.42.7_lastUpdate", "1362415532978");
Line Deleted : user_pref("CT3176921.serviceLayer_services_login_10.14.65.43_lastUpdate", "1364127917256");
Line Deleted : user_pref("CT3176921.serviceLayer_services_login_10.15.0.562_lastUpdate", "1365874410130");
Line Deleted : user_pref("CT3176921.serviceLayer_services_login_10.15.2.523_lastUpdate", "1368119786388");
Line Deleted : user_pref("CT3176921.serviceLayer_services_login_10.16.1.521_lastUpdate", "1368542608740");
Line Deleted : user_pref("CT3176921.serviceLayer_services_login_10.16.2.509_lastUpdate", "1372081464638");
Line Deleted : user_pref("CT3176921.serviceLayer_services_login_10.16.4.519_lastUpdate", "1374656342714");
Line Deleted : user_pref("CT3176921.serviceLayer_services_login_10.16.70.505_lastUpdate", "1377197011694");
Line Deleted : user_pref("CT3176921.serviceLayer_services_searchAPI_lastUpdate", "1377179062864");
Line Deleted : user_pref("CT3176921.serviceLayer_services_serviceMap_lastUpdate", "1377179062675");
Line Deleted : user_pref("CT3176921.serviceLayer_services_toolbarSettings_lastUpdate", "1377197011592");
Line Deleted : user_pref("CT3176921.serviceLayer_services_translation_lastUpdate", "1377179063718");
Line Deleted : user_pref("CT3176921.settingsINI", true);
Line Deleted : user_pref("CT3176921.shouldFirstTimeDialog", "false");
Line Deleted : user_pref("CT3176921.showToolbarPermission", "false");
Line Deleted : user_pref("CT3176921.smartbar.CTID", "CT3176921");
Line Deleted : user_pref("CT3176921.smartbar.Uninstall", "0");
Line Deleted : user_pref("CT3176921.smartbar.homepage", true);
Line Deleted : user_pref("CT3176921.smartbar.isHidden", true);
Line Deleted : user_pref("CT3176921.smartbar.toolbarName", "express-files ");
Line Deleted : user_pref("CT3176921.startPage", "true");
Line Deleted : user_pref("CT3176921.toolbarBornServerTime", "20-2-2013");
Line Deleted : user_pref("CT3176921.toolbarCurrentServerTime", "22-8-2013");
Line Deleted : user_pref("CT3176921.toolbarLoginClientTime", "Sun Mar 24 2013 15:54:18 GMT+0100");
Line Deleted : user_pref("CT3220468.FirstTime", "true");
Line Deleted : user_pref("CT3220468.FirstTimeFF3", "true");
Line Deleted : user_pref("CT3220468.UserID", "UN08601262438049362");
Line Deleted : user_pref("CT3220468.countryCode", "CZ");
Line Deleted : user_pref("CT3220468.defaultSearch", "FALSE");
Line Deleted : user_pref("CT3220468.enableFix404ByUser", "FALSE");
Line Deleted : user_pref("CT3220468.enableSearchFromAddressBar", "FALSE");
Line Deleted : user_pref("CT3220468.fixPageNotFoundError", "true");
Line Deleted : user_pref("CT3220468.fixPageNotFoundErrorByUser", "true");
Line Deleted : user_pref("CT3220468.fixUrls", true);
Line Deleted : user_pref("CT3220468.fullUserID", "UN08601262438049362.UP.20130703193626");
Line Deleted : user_pref("CT3220468.homepageuserchanged", true);
Line Deleted : user_pref("CT3220468.installId", "fft353.tmp.exe");
Line Deleted : user_pref("CT3220468.installType", "XPE");
Line Deleted : user_pref("CT3220468.isCheckedStartAsHidden", true);
Line Deleted : user_pref("CT3220468.isFirstTimeToolbarLoading", "false");
Line Deleted : user_pref("CT3220468.isPerformedSmartBarTransition", "true");
Line Deleted : user_pref("CT3220468.lastVersion", "10.16.70.505");
Line Deleted : user_pref("CT3220468.migrateAppsAndComponents", true);
Line Deleted : user_pref("CT3220468.openThankYouPage", "true");
Line Deleted : user_pref("CT3220468.openUninstallPage", "FALSE");
Line Deleted : user_pref("CT3220468.searchInNewTabEnabledByUser", "true");
Line Deleted : user_pref("CT3220468.searchSuggestEnabledByUser", "false");
Line Deleted : user_pref("CT3220468.searchUserMode", "false");
Line Deleted : user_pref("CT3220468.serviceLayer_services_Configuration_lastUpdate", "1377179064098");
Line Deleted : user_pref("CT3220468.serviceLayer_services_location_lastUpdate", "1372791577415");
Line Deleted : user_pref("CT3220468.serviceLayer_services_searchAPI_lastUpdate", "1377179064089");
Line Deleted : user_pref("CT3220468.serviceLayer_services_serviceMap_lastUpdate", "1377179064041");
Line Deleted : user_pref("CT3220468.serviceLayer_services_toolbarSettings_lastUpdate", "1377197012240");
Line Deleted : user_pref("CT3220468.serviceLayer_services_translation_lastUpdate", "1377179064431");
Line Deleted : user_pref("CT3220468.settingsINI", true);
Line Deleted : user_pref("CT3220468.shouldFirstTimeDialog", "false");
Line Deleted : user_pref("CT3220468.showToolbarPermission", "false");
Line Deleted : user_pref("CT3220468.smartbar.CTID", "CT3220468");
Line Deleted : user_pref("CT3220468.smartbar.Uninstall", "0");
Line Deleted : user_pref("CT3220468.smartbar.isHidden", true);
Line Deleted : user_pref("CT3220468.smartbar.toolbarName", "uTorrentControl_v2 ");
Line Deleted : user_pref("CT3220468.startPage", "userChanged");
Line Deleted : user_pref("CT3220468.toolbarBornServerTime", "23-9-2012");
Line Deleted : user_pref("CT3220468.toolbarCurrentServerTime", "23-9-2012");
Line Deleted : user_pref("CT3220468.toolbarLoginClientTime", "Fri Mar 15 2013 16:38:16 GMT+0100");
Line Deleted : user_pref("Smartbar.ConduitHomepagesList", "");
Line Deleted : user_pref("Smartbar.ConduitSearchEngineList", "express-files Customized Web Search");
Line Deleted : user_pref("Smartbar.ConduitSearchUrlList", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3176921&SearchSource=2&CUI=UN40573117502472824&q=");
Line Deleted : user_pref("Smartbar.keywordURLSelectedCTID", "CT3176921");
Line Deleted : user_pref("extensions.incredibar_i.aflt", "orgnl");
Line Deleted : user_pref("extensions.incredibar_i.dfltLng", "");
Line Deleted : user_pref("extensions.incredibar_i.did", "10650");
Line Deleted : user_pref("extensions.incredibar_i.excTlbr", false);
Line Deleted : user_pref("extensions.incredibar_i.id", "80511823000000000000002215906cd9");
Line Deleted : user_pref("extensions.incredibar_i.installerproductid", "26");
Line Deleted : user_pref("extensions.incredibar_i.instlDay", "15572");
Line Deleted : user_pref("extensions.incredibar_i.instlRef", "");
Line Deleted : user_pref("extensions.incredibar_i.ms_url_id", "");
Line Deleted : user_pref("extensions.incredibar_i.newTab", false);
Line Deleted : user_pref("extensions.incredibar_i.ppd", "201%5F6");
Line Deleted : user_pref("extensions.incredibar_i.prdct", "incredibar");
Line Deleted : user_pref("extensions.incredibar_i.productid", "26");
Line Deleted : user_pref("extensions.incredibar_i.prtnrId", "Incredibar");
Line Deleted : user_pref("extensions.incredibar_i.smplGrp", "none");
Line Deleted : user_pref("extensions.incredibar_i.tlbrId", "base");
Line Deleted : user_pref("extensions.incredibar_i.tlbrSrchUrl", "hxxp://mystart.Incredibar.com/?a=6OyLBECBnw&loc=IB_TB&i=26&search=");
Line Deleted : user_pref("extensions.incredibar_i.upn2", "6OyLBECBnw");
Line Deleted : user_pref("extensions.incredibar_i.upn2n", "92261963561678006");
Line Deleted : user_pref("extensions.incredibar_i.vrsn", "1.5.11.14");
Line Deleted : user_pref("extensions.incredibar_i.vrsnTs", "1.5.11.1415:27:29");
Line Deleted : user_pref("extensions.incredibar_i.vrsni", "1.5.11.14");
Line Deleted : user_pref("extensions.softonic_i.aflt", "orgnl");
Line Deleted : user_pref("extensions.softonic_i.dfltSrch", true);
Line Deleted : user_pref("extensions.softonic_i.dnsErr", true);
Line Deleted : user_pref("extensions.softonic_i.hardId", "80511823000000000000002215906cd9");
Line Deleted : user_pref("extensions.softonic_i.hmpg", true);
Line Deleted : user_pref("extensions.softonic_i.hmpgUrl", "hxxp://search.softonic.com/MON00004/tb_v1?SearchSource=13&cc=");
Line Deleted : user_pref("extensions.softonic_i.id", "80511823000000000000002215906cd9");
Line Deleted : user_pref("extensions.softonic_i.instlDay", "15316");
Line Deleted : user_pref("extensions.softonic_i.instlRef", "MON00004");
Line Deleted : user_pref("extensions.softonic_i.keyWordUrl", "hxxp://search.softonic.com/MON00004/tb_v1?SearchSource=2&cc=&q=");
Line Deleted : user_pref("extensions.softonic_i.newTab", true);
Line Deleted : user_pref("extensions.softonic_i.newTabUrl", "hxxp://search.softonic.com/MON00004/tb_v1?SearchSource=15&cc=");
Line Deleted : user_pref("extensions.softonic_i.prdct", "softonic");
Line Deleted : user_pref("extensions.softonic_i.prtnrId", "softonic");
Line Deleted : user_pref("extensions.softonic_i.smplGrp", "eng7");
Line Deleted : user_pref("extensions.softonic_i.srchPrvdr", "Search the web (Softonic)");
Line Deleted : user_pref("extensions.softonic_i.tlbrId", "eng7");
Line Deleted : user_pref("extensions.softonic_i.tlbrSrchUrl", "hxxp://search.softonic.com/MON00004/tb_v1?SearchSource=1&cc=&q=");
Line Deleted : user_pref("extensions.softonic_i.vrsn", "1.5.3.20");
Line Deleted : user_pref("extensions.softonic_i.vrsnTs", "1.5.3.2015:11:43");
Line Deleted : user_pref("extensions.softonic_i.vrsni", "1.5.3.20");
Line Deleted : user_pref("smartBar.searchInNewTabOwner", "CT3176921");
Line Deleted : user_pref("smartbar.addressBarOwnerCTID", "CT3176921");
Line Deleted : user_pref("smartbar.conduitHomepageList", "hxxp://search.conduit.com/?ctid=CT3176921&SearchSource=13&CUI=UN40573117502472824");
Line Deleted : user_pref("smartbar.conduitSearchAddressUrlList", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3176921&SearchSource=2&CUI=UN40573117502472824&q=,hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3[...]
Line Deleted : user_pref("smartbar.defaultSearchOwnerCTID", "CT3176921");
Line Deleted : user_pref("smartbar.homePageOwnerCTID", "CT3176921");
Line Deleted : user_pref("smartbar.machineId", "USNVQSKD0AZEGLRE4A0CNDR5DXC");
Line Deleted : user_pref("smartbar.originalHomepage", "chrome://branding/locale/browserconfig.properties");
Line Deleted : user_pref("smartbar.originalSearchAddressUrl", "");
Line Deleted : user_pref("smartbar.originalSearchEngine", false);

-\\ Google Chrome v

[ File : C:\Documents and Settings\user\Local Settings\Data aplikací\Google\Chrome\User Data\Default\preferences ]

Deleted : homepage

*************************

AdwCleaner[R0].txt - [38289 octets] - [01/09/2013 12:50:23]
AdwCleaner[S0].txt - [38439 octets] - [01/09/2013 12:56:25]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [38500 octets] ##########
Nahoru
123
nováček
Příspěvky: 19
Registrován: srpen 13
Pohlaví: Nespecifikováno
Stav:
Offline

Re: Prosím o kontrolu logu, nejdou mi online hry

Příspěvekod 123 » 02 zář 2013 12:55

Malwarebytes Anti-Malware (Zkušební verze Malwarebytes Anti-Malware.) 1.75.0.1300
www.malwarebytes.org

Verze: v2013.09.02.03

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
user :: USER-9413ED0969 [administrátor]

Ochrana: Povolena

2.9.2013 12:50:06
MBAM-log-2013-09-02 (12-54-36).txt

Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 247750
Uplynulý čas: 4 minut, 21 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 2
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{11111111-1111-1111-1111-110111181125} (PUP.CrossRider.BCA) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{11111111-1111-1111-1111-110111181125} (PUP.CrossRider.BCA) -> Nebyla provedena žádná instrukce.

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 0
(Žádné škodlivé položky nebyly zjištěny)

(konec)
Nahoru
123
nováček
Příspěvky: 19
Registrován: srpen 13
Pohlaví: Nespecifikováno
Stav:
Offline

Re: Prosím o kontrolu logu, nejdou mi online hry

Příspěvekod 123 » 02 zář 2013 13:23

RogueKiller V8.6.8 [Sep 2 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.adlice.com/forum/
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://tigzyrk.blogspot.com/

Operační systém : Windows XP (5.1.2600 Service Pack 3) 32 bits version
Spuštěno v : Normální režim
Uživatel : user [Práva správce]
Mód : Kontrola -- Datum : 09/02/2013 12:58:08
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 4 ¤¤¤
[PROXY IE] HKCU\[...]\Internet Settings : ProxyServer (194.228.16.250:80) -> NALEZENO
[DNS] HKLM\[...]\CCSet\[...]\{0C716796-747C-45A2-9B37-D78B16DD7469} : NameServer (192.168.0.1,194.228.41.65) -> NALEZENO
[DNS] HKLM\[...]\CS002\[...]\{0C716796-747C-45A2-9B37-D78B16DD7469} : NameServer (192.168.0.1,194.228.41.65) -> NALEZENO
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NALEZENO

¤¤¤ naplánované úlohy : 6 ¤¤¤
[V1][SUSP PATH] AVG-Secure-Search-Update_JUNE2013_TB_rmv.job : C:\WINDOWS\TEMP\{81E8CA4D-7BE5-464B-83FB-EDD5E84942F0}.exe - --uninstall=1 [x] -> NALEZENO
[V1][SUSP PATH] AVG-Secure-Search-Update_JUNE2013_HP_rmv.job : C:\WINDOWS\TEMP\{66D19373-44A2-4E96-BE2A-07526FFD4A32}.exe - --uninstall=1 [x] -> NALEZENO
[V1][BLPATH] OptimizerProUpdaterRefreshTask.job : C:\Documents and Settings\All Users\Data aplikací\OptimizerPro\ix_updater.exe - /profilepath "C:\Documents and Settings\All Users\Data aplikací\OptimizerPro\profile.ini" [-][-] -> NALEZENO
[V1][BLPATH] OptimizerProUpdaterLogonTask.job : C:\Documents and Settings\All Users\Data aplikací\OptimizerPro\ix_updater.exe - /schedule /profilepath "C:\Documents and Settings\All Users\Data aplikací\OptimizerPro\profile.ini" [-][-] -> NALEZENO
[V1][SUSP PATH] GoogleUpdateTaskUserS-1-5-21-776561741-1500820517-682003330-1004UA.job : C:\Documents and Settings\user\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe - /ua /installsource scheduler [7][x] -> NALEZENO
[V1][SUSP PATH] GoogleUpdateTaskUserS-1-5-21-776561741-1500820517-682003330-1004Core.job : C:\Documents and Settings\user\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe - /c [7] -> NALEZENO

¤¤¤ spuštění položky : 0 ¤¤¤

¤¤¤ Webové prohlížeče : 2 ¤¤¤
[FF][PROXY] vpukcm0i.default : user_pref("network.proxy.hxxp", "192.168.2.90"); -> NALEZENO
[FF][PROXY] vpukcm0i.default : user_pref("network.proxy.type", 1); -> NALEZENO

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač : [NAHRÁNO] ¤¤¤

¤¤¤ Externí včelstvo: ¤¤¤

¤¤¤ Nákaza : ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts


127.0.0.1 localhost


¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: SAMSUNG HD502IJ +++++
--- User ---
[MBR] 4d1885e3003f356f6cb71435390adbcb
[BSP] 364c1ba76dcc4503e0362a6dba885fad : Windows XP MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 61443 Mo
1 - [XXXXXX] EXTEN-LBA (0x0f) [VISIBLE] Offset (sectors): 125837145 | Size: 415485 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Dokončeno : << RKreport[0]_S_09022013_125808.txt >>
Nahoru
123
nováček
Příspěvky: 19
Registrován: srpen 13
Pohlaví: Nespecifikováno
Stav:
Offline

Re: Prosím o kontrolu logu, nejdou mi online hry

Příspěvekod 123 » 02 zář 2013 13:24

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 5.5.7 (09.01.2013:1)
OS: Microsoft Windows XP x86
Ran by user on po 02.09.2013 at 13:11:00,60
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Toolbar.CT1098640
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Toolbar.CT2204415
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Toolbar.CT3072253
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Toolbar.CT3176921
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Toolbar.CT3220468
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{11111111-1111-1111-1111-110111181125}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{11111111-1111-1111-1111-110111181125}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0FE7D24F-550A-4277-886D-7500C127B445}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{3E6AF721-468E-43EC-A865-5330FA2B7452}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{8d74672b-de5d-4292-bb6d-66a00bd496b4}



~~~ Files



~~~ Folders



~~~ FireFox

Emptied folder: C:\Documents and Settings\user\Data aplikacˇ\mozilla\firefox\profiles\vpukcm0i.default\minidumps [16 files]





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on po 02.09.2013 at 13:18:44,64
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Nahoru
Uživatelský avatar
memphisto
Guru Level 13
Guru Level 13
Příspěvky: 21113
Registrován: září 06
Bydliště: Zlín - České Budějovice
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kontrolu logu, nejdou mi online hry

Příspěvekod memphisto » 02 zář 2013 15:51

Spusť RogueKiller ( Pro Windows Vista nebo Windows 7, klepni pravým a vyber "Spustit jako správce", ve Windows XP poklepej ke spuštění).
- Počkej, až Prescan dokončí práci...
- Počkej, dokud status okno zobrazuje "Prohledat "
- Klikni na "Smazat"
- Počkej, dokud Status box zobrazuje "Smazání- Finished "
- Klikni na "Zprávy " a zkopíruj a vlož obsah té zprávy prosím sem. Log je možno nalézt v RKreport [číslo]. txt na ploše.
- Zavři RogueKiller

Vypni rezidentní štít antiviru a antispywaru
Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
Pokud bude po kontrole problém spustit aplikace nebo bude vyskakovat hláška o pokusu použít neplatnou operaci na klíč registru, který je oznaèen pro odstranění, stačí restartovat počítač.
PRAVIDLA PC-HELP.CZ, PRAVIDLA sekce HijackThis, HijackThis návod, Memtest, CCleaner
Logy z programu HijackThis neposílejte prosím přes SZ, ale vkládejte je do patřičné sekce. Děkuji
Nahoru
123
nováček
Příspěvky: 19
Registrován: srpen 13
Pohlaví: Nespecifikováno
Stav:
Offline

Re: Prosím o kontrolu logu, nejdou mi online hry

Příspěvekod 123 » 02 zář 2013 18:26

ComboFix 13-09-02.02 - user 02.09.2013 18:15:45.1.2 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1250.420.1029.18.2047.1205 [GMT 2:00]
Spuštěný z: c:\documents and settings\user\Dokumenty\Sta×enÚ soubory\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
AV: ZoneAlarm Free Firewall Antivirus *Enabled/Updated* {5D467B10-818C-4CAB-9FF7-6893B5B8F3CF}
FW: avast! Antivirus *Disabled* {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\documents and settings\user\Plocha\Internet Explorer.lnk
c:\windows\system32\Cache
c:\windows\system32\Cache\1e994b924e1b5856.fb
c:\windows\system32\Cache\26c630d098e22dd5.fb
c:\windows\system32\Cache\272512937d9e61a4.fb
c:\windows\system32\Cache\287204568329e189.fb
c:\windows\system32\Cache\28bc8f716fd76a47.fb
c:\windows\system32\Cache\2c53092c95605355.fb
c:\windows\system32\Cache\31a0997e9a5b5eb3.fb
c:\windows\system32\Cache\32c84fe32bb74d60.fb
c:\windows\system32\Cache\3917078cb68ec657.fb
c:\windows\system32\Cache\3e591b08c8d2b3c8.fb
c:\windows\system32\Cache\590ba23ce359fd0c.fb
c:\windows\system32\Cache\5b52bdf7d190ff66.fb
c:\windows\system32\Cache\610289e025a3ee9a.fb
c:\windows\system32\Cache\651c5d3cdbfb8bd1.fb
c:\windows\system32\Cache\6c59ac5e7e7a3ad0.fb
c:\windows\system32\Cache\6d03dad1035885d3.fb
c:\windows\system32\Cache\80824ff5793c816c.fb
c:\windows\system32\Cache\95f567698be8a182.fb
c:\windows\system32\Cache\961ba826e42d84d0.fb
c:\windows\system32\Cache\9cc8a771f374eb60.fb
c:\windows\system32\Cache\a8556537add6dfc5.fb
c:\windows\system32\Cache\ad10a52aff5e038d.fb
c:\windows\system32\Cache\c1fa887b03019701.fb
c:\windows\system32\Cache\c26d44c7d9bcc294.fb
c:\windows\system32\Cache\c4d28dca2e7648be.fb
c:\windows\system32\Cache\d201ef9910cd39de.fb
c:\windows\system32\Cache\d2e94710a5708128.fb
c:\windows\system32\Cache\d3c85d0d21e2929b.fb
c:\windows\system32\Cache\d79b9dfe81484ec4.fb
c:\windows\system32\Cache\f625086623dee23b.fb
c:\windows\system32\Cache\f998975c9cc711ee.fb
c:\windows\system32\frapsvid.dll
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2013-08-02 do 2013-09-02 )))))))))))))))))))))))))))))))
.
.
2013-09-02 11:00 . 2013-09-02 11:00 -------- d-----w- c:\windows\ERUNT
2013-09-01 13:45 . 2013-09-01 13:45 138056 ----a-w- c:\windows\system32\drivers\PnkBstrK.sys
2013-09-01 13:45 . 2013-09-01 13:45 189248 ----a-w- c:\windows\system32\PnkBstrB.exe
2013-09-01 13:45 . 2013-09-01 13:45 75136 ----a-w- c:\windows\system32\PnkBstrA.exe
2013-09-01 13:31 . 2013-09-01 13:31 -------- d-----w- c:\program files\EA Games
2013-09-01 11:04 . 2013-09-01 11:04 -------- d-----w- c:\documents and settings\user\Data aplikací\Malwarebytes
2013-09-01 11:04 . 2013-09-01 11:04 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Malwarebytes
2013-09-01 11:04 . 2013-09-01 11:04 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2013-09-01 11:04 . 2013-04-04 12:50 22856 ----a-w- c:\windows\system32\drivers\mbam.sys
2013-09-01 10:50 . 2013-09-01 10:57 -------- dc----w- C:\AdwCleaner
2013-08-29 19:34 . 2006-03-02 12:00 25600 ----a-w- c:\documents and settings\LocalService\Data aplikací\Microsoft\UPnP Device Host\upnphost\udhisapi.dll
2013-08-19 13:26 . 2013-08-19 13:26 692104 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2013-08-19 13:26 . 2013-08-19 13:26 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-09-01 13:45 . 2010-06-24 13:46 138056 -c--a-w- c:\documents and settings\user\Data aplikací\PnkBstrK.sys
2013-09-01 13:45 . 2010-06-24 13:46 189248 ----a-w- c:\windows\system32\PnkBstrB.ex0
2013-07-06 11:35 . 2013-04-13 18:16 175176 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2013-07-06 11:35 . 2012-01-08 12:37 770344 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2013-07-06 11:35 . 2009-05-13 06:34 369584 ----a-w- c:\windows\system32\drivers\aswSP.sys
2013-06-28 19:25 . 2013-06-28 19:25 1700352 ----a-w- c:\windows\system32\gdiplus.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2013-05-09 08:58 121968 ----a-w- c:\program files\Alwil Software\Avast5\ashShell.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"LightScribe Control Panel"="c:\program files\Common Files\LightScribe\LightScribeControlPanel.exe" [2007-12-05 2295072]
"Olympus ib"="c:\program files\Olympus\ib\olycamdetect.exe" [2009-10-30 93376]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2011-11-10 3514176]
"Steam"="c:\program files\Steam\steam.exe" [2013-08-28 1811880]
"Pando Media Booster"="c:\program files\Pando Networks\Media Booster\PMB.exe" [2013-04-01 4288048]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"GEST"="=" [X]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2009-03-17 61440]
"MDS_Menu"="c:\program files\Olympus\ib\MUITransfer\MUIStartMenu.exe" [2009-05-19 222504]
"DWQueuedReporting"="c:\progra~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" [2007-03-13 39264]
"RTHDCPL"="RTHDCPL.EXE" [2007-10-25 16855552]
"avast"="c:\program files\Alwil Software\Avast5\avastUI.exe" [2013-05-09 4858968]
"ISUSPM Startup"="c:\progra~1\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe" [2005-02-17 221184]
"ISUSScheduler"="c:\program files\Common Files\InstallShield\UpdateService\issch.exe" [2005-02-17 81920]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2006-03-02 15360]
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\WINDOWS\\system32\\usmt\\migwiz.exe"=
"c:\\Program Files\\Counter-Strike Source\\hl2.exe"=
"c:\documents and settings\user\P-7-78-8964-9648-3874\winusm.exe"=
"c:\\WINDOWS\\system32\\msiexec.exe"=
"c:\\Program Files\\uTorrent\\uTorrent.exe"=
"c:\\Documents and Settings\\All Users\\Data aplikací\\Electronic Arts\\Need For Speed World\\Data\\nfsw.exe"=
"c:\\WINDOWS\\system32\\javaw.exe"=
"c:\\Program Files\\Steam\\Steam.exe"=
"c:\\Program Files\\Steam\\steamapps\\common\\TrackMania United\\TmForever.exe"=
"c:\\Program Files\\Steam\\steamapps\\common\\TrackMania United\\TmForeverLauncher.exe"=
"c:\\Program Files\\Pando Networks\\Media Booster\\PMB.exe"=
"c:\\Program Files\\Steam\\steamapps\\common\\Half-Life\\hl.exe"=
"c:\\WINDOWS\\system32\\PnkBstrA.exe"=
"c:\\WINDOWS\\system32\\PnkBstrB.exe"=
"c:\\Program Files\\EA Games\\Battlefield Heroes\\BFHeroes.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"59016:TCP"= 59016:TCP:Pando Media Booster
"59016:UDP"= 59016:UDP:Pando Media Booster
"443:TCP"= 443:TCP:War Thunder
"20010:UDP"= 20010:UDP:War Thunder
"3478:UDP"= 3478:UDP:War Thunder
"7850:TCP"= 7850:TCP:War Thunder
"27022:TCP"= 27022:TCP:War Thunder
"6881:TCP"= 6881:TCP:War Thunder
"33333:TCP"= 33333:TCP:War Thunder
"20443:TCP"= 20443:TCP:War Thunder
"8090:TCP"= 8090:TCP:War Thunder
"59047:TCP"= 59047:TCP:Pando Media Booster
"59047:UDP"= 59047:UDP:Pando Media Booster
.
R0 aswRvrt;aswRvrt;c:\windows\system32\drivers\aswRvrt.sys [13.4.2013 20:16 49376]
R0 aswVmm;aswVmm;c:\windows\system32\drivers\aswVmm.sys [13.4.2013 20:16 175176]
R0 sptd;sptd;\SystemRoot\\SystemRoot\System32\Drivers\sptd.sys --> \SystemRoot\\SystemRoot\System32\Drivers\sptd.sys [?]
R1 aswKbd;aswKbd;c:\windows\system32\drivers\aswKbd.sys [21.9.2012 19:39 18544]
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [8.1.2012 14:37 770344]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [13.5.2009 8:34 369584]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [13.5.2009 8:34 29816]
R2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [13.4.2013 20:16 66336]
R2 LANPkt;Realtek LANPkt Protocol Driver;c:\windows\system32\drivers\LANPkt.sys [22.8.2012 9:24 8960]
R2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [1.9.2013 13:04 701512]
R3 AtcL001;NDIS Miniport Driver for Atheros L1 Gigabit Ethernet Controller;c:\windows\system32\drivers\l151x86.sys [22.8.2012 12:15 36864]
R3 AtiHDAudioService;ATI Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdXP3.sys [7.7.2013 14:27 103040]
R3 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\drivers\dtsoftbus01.sys [13.1.2012 16:07 239168]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [1.9.2013 13:04 22856]
S2 Skype C2C Service;Skype C2C Service;c:\documents and settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe [14.8.2013 11:10 3291008]
S3 Diag69xp;Diag69xp;c:\windows\system32\drivers\diag69xp.sys [22.8.2012 9:24 11264]
S3 RTLVLAN;Realtek VLAN Intermediate Driver;c:\windows\system32\drivers\RTLVLAN.SYS [22.8.2012 9:24 16640]
S3 WinRing0_1_2_0;WinRing0_1_2_0;\??\c:\program files\IObit\Game Booster\Driver\WinRing0.sys --> c:\program files\IObit\Game Booster\Driver\WinRing0.sys [?]
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - TRUESIGHT
*Deregistered* - TrueSight
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2007-12-05 10:27 451872 -c--a-w- c:\program files\Common Files\LightScribe\LSRunOnce.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2013-09-02 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-08-19 13:26]
.
2013-09-01 c:\windows\Tasks\At1.job
- c:\program files\HP\HP Deskjet 2050 J510 series\Bin\HPCustPartic.exe [2010-11-16 19:12]
.
2013-08-31 c:\windows\Tasks\At2.job
- c:\program files\HP\HP Deskjet 2050 J510 series\Bin\HPCustPartic.exe [2010-11-16 19:12]
.
2013-09-02 c:\windows\Tasks\At3.job
- c:\program files\HP\HP Deskjet 2050 J510 series\Bin\HPCustPartic.exe [2010-11-16 19:12]
.
2013-09-02 c:\windows\Tasks\At4.job
- c:\program files\HP\HP Deskjet 2050 J510 series\Bin\HPCustPartic.exe [2010-11-16 19:12]
.
2013-09-02 c:\windows\Tasks\avast! Emergency Update.job
- c:\program files\Alwil Software\Avast5\AvastEmUpdate.exe [2012-08-15 08:58]
.
2013-09-01 c:\windows\Tasks\Norton Security Scan for user.job
- c:\progra~1\NORTON~1\NORTON~1\Engine\372~1.10\Nss.exe [2013-04-17 07:37]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.bing.com
uInternet Settings,ProxyOverride = <local>
TCP: DhcpNameServer = 192.168.0.1
FF - ProfilePath - c:\documents and settings\user\Data aplikací\Mozilla\Firefox\Profiles\vpukcm0i.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
FF - prefs.js: keyword.URL - hxxp://www.google.com/search?ie=UTF-8&oe=utf-8&q=
FF - prefs.js: network.proxy.type - 0
FF - ExtSQL: 2013-07-03 13:10; {ea614400-e918-4741-9a97-7a972ff7c30b}; c:\documents and settings\user\Data aplikací\Mozilla\Firefox\Profiles\vpukcm0i.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
FF - ExtSQL: 2013-09-01 12:48; {82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}; c:\program files\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
WebBrowser-{91397D20-1446-11D4-8AF4-0040CA1127B6} - (no file)
HKCU-Run-AdobeBridge - (no file)
AddRemove-Age of Blackpowder: Realm of Revolution - Beta - c:\program files\Mount&Blade\Modules\Uninstal.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2013-09-02 18:22
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-776561741-1500820517-682003330-1004\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*]
"??"=hex:57,d9,d1,f3,45,e8,f4,04,eb,e6,fd,9a,25,ee,b9,44,f0,34,3c,39,8f,76,c0,
80,e1,ae,23,6b,3c,23,3e,a9,6f,85,e4,dc,e8,dd,5b,a5,9f,52,1b,2b,88,4e,b3,ae,\
"??"=hex:a1,5e,47,db,25,65,bb,27,8b,92,55,34,10,3f,d9,49
.
[HKEY_USERS\S-1-5-21-776561741-1500820517-682003330-1004\Software\SecuROM\License information*]
"datasecu"=hex:e4,73,cd,7a,40,c5,30,d0,27,8c,06,b7,65,c0,18,cf,a5,74,19,c0,9a,
1e,9c,2f,88,77,f6,11,c8,61,f8,44,ce,d7,cb,a0,cd,c4,3c,04,1e,7d,9f,ba,d3,5f,\
"rkeysecu"=hex:2f,0f,d5,3e,02,2b,06,63,b1,0b,dd,b6,71,e2,54,98
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'winlogon.exe'(944)
c:\windows\system32\Ati2evxx.dll
c:\windows\system32\atiadlxx.dll
.
Celkový čas: 2013-09-02 18:24:04
ComboFix-quarantined-files.txt 2013-09-02 16:24
.
Před spuštěním: Volných bajtů: 20 438 548 480
Po spuštění: Volných bajtů: 20 449 632 256
.
WindowsXP-KB310994-SP2-Home-BootDisk-CSY.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Home Edition" /noexecute=optin /fastdetect
.
- - End Of File - - E2AA48DAE0C5002BCF1ED81D896E59C3
413FC2A0C716421B3158746D63736515
Nahoru
Zamčeno

Zpět na “HiJackThis”

Kdo je online

Uživatelé prohlížející si toto fórum: Žádní registrovaní uživatelé a 8 hostů