Prosim o kontrolu logu+ Vyřešeno

Místo pro vaše HiJackThis logy a logy z dalších programů…

Moderátoři: Mods_senior, Security team

Zamčeno
tomas_ch
Level 2.5
Level 2.5
Příspěvky: 353
Registrován: srpen 07
Pohlaví: Nespecifikováno
Stav:
Offline

Prosim o kontrolu logu+  Vyřešeno

Příspěvekod tomas_ch » 09 bře 2013 17:34

Zdravim,
prosim o kontrolu logu.
Pocitac je velmi pomaly.
Nelze surfovat na netu, ale funguje mi ping z CMD.

Dekuju




Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:30:31, on 9.3.2013
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v9.00 (9.00.8112.16464)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\ASUS\ASUS Live Update\ALU.exe
C:\Program Files\ASUSTek\ASUSDVD\PDVDServ.exe
C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe
C:\Program Files\ATKOSD2\ATKOSD2.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Windows\RtHDVCpl.exe
C:\Windows\sm56hlpr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\ScanSoft\OmniPageSE4.0\OpWareSE4.exe
C:\Windows\Samsung\PanelMgr\SSMMgr.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\AVG\AVG2013\avgui.exe
C:\Windows\system32\igfxsrvc.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Program Files\McAfee Security Scan\3.0.318\SSScheduler.exe
C:\Users\vercik\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Windows\system32\conime.exe
C:\Program Files\Windows Media Player\wmplayer.exe
C:\totalcmd\TOTALCMD.EXE
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\System32\mobsync.exe
C:\Users\vercik\Desktop\HiJackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (file missing)
R3 - URLSearchHook: SweetIM ToolbarURLSearchHook Class - {EEE6C35D-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll
O1 - Hosts: ::1 localhost
O2 - BHO: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.0.318\McAfeeMSS_IE.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: Pomocná služba pro přihlášení ke službě Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O2 - BHO: SWEETIE - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O3 - Toolbar: SweetIM Toolbar for Internet Explorer - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O3 - Toolbar: ICQToolBar - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (file missing)
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\ASUSTek\ASUSDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [CLMLServer] "C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe"
O4 - HKLM\..\Run: [P2Go_Menu] "C:\Program Files\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\6.0"
O4 - HKLM\..\Run: [ATKOSD2] "C:\Program Files\ATKOSD2\ATKOSD2.exe"
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [Skytel] Skytel.exe
O4 - HKLM\..\Run: [SMSERIAL] sm56hlpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [SSBkgdUpdate] "C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
O4 - HKLM\..\Run: [OpwareSE4] "C:\Program Files\ScanSoft\OmniPageSE4.0\OpwareSE4.exe"
O4 - HKLM\..\Run: [SweetIM] C:\Program Files\SweetIM\Messenger\SweetIM.exe
O4 - HKLM\..\Run: [Samsung PanelMgr] C:\Windows\Samsung\PanelMgr\ssmmgr.exe /autorun
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files\AVG\AVG2013\avgui.exe" /TRAYONLY
O4 - HKCU\..\Run: [cz.seznam.software.autoupdate] "C:\Users\vercik\AppData\Roaming\Seznam.cz\szninstall.exe" -c
O4 - HKCU\..\Run: [cz.seznam.software.szndesktop] "C:\Users\vercik\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O4 - Global Startup: McAfee Security Scan Plus.lnk = C:\Program Files\McAfee Security Scan\3.0.318\SSScheduler.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O20 - AppInit_DLLs: C:\PROGRA~1\GOOGLE\GOOGLE~1\GOEC62~1.DLL
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: ADSM Service (ADSMService) - Unknown owner - C:\Program Files\ASUS\ASUS Data Security Manager\ADSMSrv.exe
O23 - Service: ASLDR Service (ASLDRService) - Unknown owner - C:\Program Files\ATK Hotkey\ASLDRSrv.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - Unknown owner - C:\Program Files\ATKGFNEX\GFNEXSrv.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2013\avgidsagent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2013\avgwdsvc.exe
O23 - Service: Google Desktop Manager 5.9.911.3589 (GoogleDesktopManager-110309-193829) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files\McAfee Security Scan\3.0.318\McCHSvc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: spmgr - Unknown owner - C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe

--
End of file - 9657 bytes
Nahoru
Reklama
Top
Uživatelský avatar
Žbeky
Moderátor
Guru Level 13
Guru Level 13
Příspěvky: 22288
Registrován: květen 08
Bydliště: Vsetín - Pardubice
Pohlaví: Muž
Stav:
Offline

Re: Prosim o kontrolu logu

Příspěvekod Žbeky » 09 bře 2013 18:25

Odinstaluj SUPERAntiSpyware a McAfee

Fixni:

Kód: Vybrat vše

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (file missing)
R3 - URLSearchHook: SweetIM ToolbarURLSearchHook Class - {EEE6C35D-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll
O1 - Hosts: ::1 localhost
O2 - BHO: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.0.318\McAfeeMSS_IE.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: SWEETIE - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O3 - Toolbar: SweetIM Toolbar for Internet Explorer - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O3 - Toolbar: ICQToolBar - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (file missing)
O4 - HKLM\..\Run: [SMSERIAL] sm56hlpr.exe
O4 - HKLM\..\Run: [SSBkgdUpdate] "C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [cz.seznam.software.autoupdate] "C:\Users\vercik\AppData\Roaming\Seznam.cz\szninstall.exe" -c
O4 - HKCU\..\Run: [cz.seznam.software.szndesktop] "C:\Users\vercik\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - Global Startup: McAfee Security Scan Plus.lnk = C:\Program Files\McAfee Security Scan\3.0.318\SSScheduler.exe
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O20 - AppInit_DLLs: C:\PROGRA~1\GOOGLE\GOOGLE~1\GOEC62~1.DLL

Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
- Pokud používáš Firefox, klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
- Pokud používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected.
- Pokud používáš Chrome, nic dalšího nevybírej a dej Empty Selected.
Po vyčištění klikni na Exit k zavření programu.

Stáhni si TFC
Otevři soubor a zavři všechny ostatní okna, Klikni na Start k zahájení procesu. Program by neměl trvat dlouho.
Poté by se měl PC restartovat, pokud ne , proveď sám.

Stáhni si Malwarebytes' Anti-Malware
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Update Malwarebytes' Anti-Malware (Aktualizace Malwarebytes' Anti-Malware) a Launch Malwarebytes' Anti-Malware (Spustit aplikaci Malwarebytes' Anti-Malware), pokud jo tak klikni na tlačítko Finish
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a nech vybranou možnost Perform Quick Scan (Provést rychlý sken) a klikni na tlačítko Scan (Skenovat)
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Show Results
- pak zvol možnost Save Logfile a ulož si log na plochu
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(ZATÍM SÁM NIC NEMAŽ!).
Vlož sem pak obsah toho logu.

Stáhni AdwCleaner
Ulož si ho na svojí plochu
Ukonči všechny programy, okna a prohlížeče
Spusť program poklepáním a klikni na „Search“
Po skenu se objeví log (jinak je uložen systémovem disku jako AdwCleaner[R?].txt), jeho obsah sem celý vlož.
V SZ řeším jen záležitosti týkající se fóra. Na prosby a žádosti o technickou podporu nereaguji. Díky za pochopení.

HiJackThis + návod - HW Monitor - Jak označit příspěvek za vyřešený - Pravidla fóra
Nahoru
tomas_ch
Level 2.5
Level 2.5
Příspěvky: 353
Registrován: srpen 07
Pohlaví: Nespecifikováno
Stav:
Offline

Re: Prosim o kontrolu logu

Příspěvekod tomas_ch » 09 bře 2013 20:10

Malwarebytes Anti-Malware 1.70.0.1100
www.malwarebytes.org

Verze: v2013.03.09.10

Windows Vista Service Pack 2 x86 NTFS
Internet Explorer 9.0.8112.16421
vercik :: VERCIK-ASUS [administrátor]

9.3.2013 19:54:57
mbam-log-2013-03-09 (19-54-57).txt

Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 197765
Uplynulý čas: 10 minut, 27 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 0
(Žádné škodlivé položky nebyly zjištěny)

(konec)





------------------------------------------------------------------------------------------------------------------------------------------------------------------------

# AdwCleaner v2.114 - Logfile created 03/09/2013 at 20:06:45
# Updated 05/03/2013 by Xplode
# Operating system : Windows Vista (TM) Home Basic Service Pack 2 (32 bits)
# User : vercik - VERCIK-ASUS
# Boot Mode : Normal
# Running from : C:\Users\vercik\Desktop\adwcleaner.exe
# Option [Search]


***** [Services] *****


***** [Files / Folders] *****

File Found : C:\Users\vercik\AppData\Roaming\Mozilla\Firefox\Profiles\6p1umv83.default\searchplugins\Askcom.xml
File Found : C:\Users\vercik\AppData\Roaming\Mozilla\Firefox\Profiles\6p1umv83.default\searchplugins\Conduit.xml
File Found : C:\Users\vercik\AppData\Roaming\Mozilla\Firefox\Profiles\6p1umv83.default\searchplugins\icqplugin.xml
File Found : C:\Users\vercik\AppData\Roaming\Mozilla\Firefox\Profiles\6p1umv83.default\searchplugins\icqplugin-1.xml
File Found : C:\Users\vercik\AppData\Roaming\Mozilla\Firefox\Profiles\6p1umv83.default\searchplugins\icqplugin-2.xml
Folder Found : C:\Program Files\Conduit
Folder Found : C:\Program Files\DAEMON Tools Toolbar
Folder Found : C:\Program Files\SweetIM
Folder Found : C:\ProgramData\Ask
Folder Found : C:\ProgramData\ICQ\ICQToolbar
Folder Found : C:\ProgramData\SweetIM
Folder Found : C:\Users\vercik\AppData\Local\Conduit
Folder Found : C:\Users\vercik\AppData\Local\OpenCandy
Folder Found : C:\Users\vercik\AppData\LocalLow\Conduit
Folder Found : C:\Users\vercik\AppData\LocalLow\PriceGong
Folder Found : C:\Users\vercik\AppData\LocalLow\SweetIM
Folder Found : C:\Users\vercik\AppData\Roaming\Mozilla\Firefox\Profiles\6p1umv83.default\Conduit
Folder Found : C:\Users\vercik\AppData\Roaming\Mozilla\Firefox\Profiles\6p1umv83.default\ConduitCommon
Folder Found : C:\Users\vercik\AppData\Roaming\Mozilla\Firefox\Profiles\6p1umv83.default\ConduitEngine
Folder Found : C:\Users\vercik\AppData\Roaming\Mozilla\Firefox\Profiles\6p1umv83.default\CT2786678
Folder Found : C:\Users\vercik\AppData\Roaming\Mozilla\Firefox\Profiles\6p1umv83.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
Folder Found : C:\Users\vercik\AppData\Roaming\Mozilla\Firefox\Profiles\6p1umv83.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
Folder Found : C:\Users\vercik\AppData\Roaming\Mozilla\Firefox\Profiles\6p1umv83.default\extensions\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}
Folder Found : C:\Users\vercik\AppData\Roaming\Mozilla\Firefox\Profiles\6p1umv83.default\extensions\engine@conduit.com
Folder Found : C:\Users\vercik\AppData\Roaming\OpenCandy

***** [Registry] *****

Key Found : HKCU\Software\AppDataLow\Software\Conduit
Key Found : HKCU\Software\AppDataLow\Software\PriceGong
Key Found : HKCU\Software\AppDataLow\Software\SmartBar
Key Found : HKCU\Software\Conduit
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{70D46D94-BF1E-45ED-B567-48701376298E}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AD22EBAF-0D18-4FC7-90CC-5EA0ABBE9EB8}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{79A765E1-C399-405B-85AF-466F52E918B0}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\conduitEngine
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EEE6C35B-6118-11DC-9C72-001320C79847}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EEE6C35C-6118-11DC-9C72-001320C79847}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{00000000-6E41-4FD3-8538-502F5495E5FC}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35B-6118-11DC-9C72-001320C79847}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35C-6118-11DC-9C72-001320C79847}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35D-6118-11DC-9C72-001320C79847}
Key Found : HKLM\SOFTWARE\Classes\AppID\{5D723752-5899-47E8-99B4-62C824EF9E13}
Key Found : HKLM\SOFTWARE\Classes\AppID\ICQ Service.exe
Key Found : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{EEE6C35B-6118-11DC-9C72-001320C79847}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{EEE6C35D-6118-11DC-9C72-001320C79847}
Key Found : HKLM\SOFTWARE\Classes\Conduit.Engine
Key Found : HKLM\SOFTWARE\Classes\ICQToolBar.IEHook
Key Found : HKLM\SOFTWARE\Classes\ICQToolBar.IEHook.1
Key Found : HKLM\SOFTWARE\Classes\Interface\{A439801C-961D-452C-AB42-7848E9CBD289}
Key Found : HKLM\SOFTWARE\Classes\Interface\{EEE6C358-6118-11DC-9C72-001320C79847}
Key Found : HKLM\SOFTWARE\Classes\Interface\{EEE6C359-6118-11DC-9C72-001320C79847}
Key Found : HKLM\SOFTWARE\Classes\Interface\{EEE6C35A-6118-11DC-9C72-001320C79847}
Key Found : HKLM\SOFTWARE\Classes\Interface\{F4EBB1E2-21F3-4786-8CF4-16EC5925867F}
Key Found : HKLM\SOFTWARE\Classes\MediaPlayer.GraphicsUtils
Key Found : HKLM\SOFTWARE\Classes\MediaPlayer.GraphicsUtils.1
Key Found : HKLM\SOFTWARE\Classes\MgMediaPlayer.GifAnimator
Key Found : HKLM\SOFTWARE\Classes\MgMediaPlayer.GifAnimator.1
Key Found : HKLM\SOFTWARE\Classes\SWEETIE.IEToolbar
Key Found : HKLM\SOFTWARE\Classes\SWEETIE.IEToolbar.1
Key Found : HKLM\SOFTWARE\Classes\SWEETIE.SWEETIE
Key Found : HKLM\SOFTWARE\Classes\sweetim_urlsearchhook.toolbarurlsearchhook
Key Found : HKLM\SOFTWARE\Classes\sweetim_urlsearchhook.toolbarurlsearchhook.1
Key Found : HKLM\SOFTWARE\Classes\Toolbar.CT2786678
Key Found : HKLM\SOFTWARE\Classes\Toolbar3.sweetie
Key Found : HKLM\SOFTWARE\Classes\Toolbar3.sweetie.1
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{4D3B167E-5FD8-4276-8FD7-9DF19C1E4D19}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{EEE6C35E-6118-11DC-9C72-001320C79847}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{EEE6C35F-6118-11DC-9C72-001320C79847}
Key Found : HKLM\Software\Conduit
Key Found : HKLM\Software\Dealio
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Explorer Bars\{855F3B16-6D32-4FE6-8A56-BBB695989046}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Key Found : HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SearchSettings
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\02F47BF73B948514FAACADD8CBBDF37D
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\07D5290CDBDAE4242926B8E6CA650501
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\080D9F5E1E95FEE4794CE438E635239E
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\08E33F7B61DEFF24BB9673ED7D467636
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0E3D8A5B48622A445A7DF73FEFF32C3F
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1E264E0A5959A1C46BA9175A878B12EA
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2E6768B6932D112438F047C54D180635
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\34EDDB1BFB3A2D448845F3EFD0F15A43
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\351716A953E21214898904032EAE2E81
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\397C771A7BCAC904697C3EC629ED33ED
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\427EA997C413D1D47907CBFC7B2DB432
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4318DF19719275242801CBE292063A4C
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\45FC115D1FEAEF849A4E1610D6EC8BF0
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\46A5861A389ADB844AF89E31BC9DF0A1
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\49B0E1A6FF50BBE4289E4E23DE6EA0C7
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4CCCAC049F34D0540AAC13011398BEDB
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5C4389D0BFB302C479DE4178BD5D9EBA
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5D2B09BDEF4FE54418E6F3373CDBC7AC
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\61B65D3397A1FBF4CB1571B5E4F6B5B0
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\68E8A05C60DD9254591DBD16C94EDDBF
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\697E782CF574CC34CBB9566440BA12BC
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6AE27A8613CF7EA4782F2886F67295E5
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7CE172051F585E04187BCB97570BFA74
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\86A901BA5265452499DCBF719C378EE3
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\88ABD1CD5C40EC84789A7F6EF86DAC5E
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\980289C22F80A7C4BB9323DC61255E4E
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\98CC8BF5A4A6E6C4ABF7051DDAB8B058
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9A4B7EF3789F871419D9302583B20C15
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A189D17A469616C4688D23E192996267
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A6C53B0F76C44004A8F36716213017DB
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B59F2D8189784CC46A4597F2842480B0
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BD746FB95FB8E5B45BF66BE54D5FD91F
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CCF399FCD6D2D3F46BF02A1378654FC9
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D149C1355C98DE24E82CEFBD996FE06A
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D15DAF33C220F91468A1D7D57C31ACD7
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D3BA76A44C779424889063D5098ED2D6
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D6D0EB9FDBD90C04D92A7E729058F10D
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DB59FDB786388EA4D897F3EE715683AC
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DB8DAD19CFBCC2049A4477183787E8C5
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E1C820A74ED67374BA048B52CB3C3804
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E4748F9A4181FCE46A23C13B517B9420
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EC65F200D112357449C8B1BC3CFA03D0
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F327D0C73C0973644A21E8CC852267A0
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FA96423FE2B98E248A3B23548D1E22D9
Key Found : HKU\S-1-5-21-3024212301-390719609-2198922643-1000\Software\Microsoft\Internet Explorer\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}
Key Found : HKU\S-1-5-21-3024212301-390719609-2198922643-1000\Software\Microsoft\Internet Explorer\SearchScopes\{70D46D94-BF1E-45ED-B567-48701376298E}
Key Found : HKU\S-1-5-21-3024212301-390719609-2198922643-1000\Software\Microsoft\Internet Explorer\SearchScopes\{AD22EBAF-0D18-4FC7-90CC-5EA0ABBE9EB8}
Key Found : HKU\S-1-5-21-3024212301-390719609-2198922643-1000\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Value Found : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{32099AAC-C132-4136-9E9A-4E364A424E17}]
Value Found : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{E67C74F4-A00A-4F2C-9FEC-FD9DC004A67F}]
Value Found : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{EEE6C35B-6118-11DC-9C72-001320C79847}]
Value Found : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{855F3B16-6D32-4FE6-8A56-BBB695989046}]
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{855F3B16-6D32-4FE6-8A56-BBB695989046}]
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{EEE6C35B-6118-11DC-9C72-001320C79847}]

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16464

[HKCU\Software\Microsoft\Internet Explorer\Main - ICQ Search] = hxxp://search.icq.com/search/results.php?q={searchTerms}&ch_id=osd

-\\ Mozilla Firefox v19.0.2 (cs)

File : C:\Users\vercik\AppData\Roaming\Mozilla\Firefox\Profiles\6p1umv83.default\prefs.js

Found : user_pref("CT2786678..clientLogIsEnabled", false);
Found : user_pref("CT2786678..clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.as[...]
Found : user_pref("CT2786678..uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/Re[...]
Found : user_pref("CT2786678.ALLOW_SHOWING_HIDDEN_TOOLBAR", false);
Found : user_pref("CT2786678.AboutPrivacyUrl", "hxxp://www.conduit.com/privacy/Default.aspx");
Found : user_pref("CT2786678.AppTrackingLastCheckTime", "Wed Jul 18 2012 14:06:35 GMT+0200");
Found : user_pref("CT2786678.BrowserCompStateIsOpen_129575151151403741", true);
Found : user_pref("CT2786678.BrowserCompStateIsOpen_129579220236217502", true);
Found : user_pref("CT2786678.BrowserCompStateIsOpen_130067977588633691", true);
Found : user_pref("CT2786678.BrowserCompStateIsOpen_1359634298000", true);
Found : user_pref("CT2786678.CTID", "CT2786678");
Found : user_pref("CT2786678.CommunitiesChangesLastCheckTime", "0");
Found : user_pref("CT2786678.CurrentServerDate", "9-3-2013");
Found : user_pref("CT2786678.DialogsAlignMode", "LTR");
Found : user_pref("CT2786678.DialogsGetterLastCheckTime", "Thu Mar 07 2013 20:27:36 GMT+0100");
Found : user_pref("CT2786678.DownloadReferralCookieData", "");
Found : user_pref("CT2786678.EMailNotifierPollDate", "Sat Mar 09 2013 16:22:32 GMT+0100");
Found : user_pref("CT2786678.FeedLastCount5690698542593514850", 501);
Found : user_pref("CT2786678.FeedPollDate2429156812186649977", "Sat Mar 09 2013 15:57:33 GMT+0100");
Found : user_pref("CT2786678.FeedPollDate2429156813040823546", "Sat Mar 09 2013 15:57:33 GMT+0100");
Found : user_pref("CT2786678.FeedPollDate2429156813130095866", "Sat Mar 09 2013 15:57:32 GMT+0100");
Found : user_pref("CT2786678.FeedPollDate2429156813224203613", "Sat Mar 09 2013 15:57:32 GMT+0100");
Found : user_pref("CT2786678.FeedPollDate2429156813230837251", "Sat Mar 09 2013 15:57:33 GMT+0100");
Found : user_pref("CT2786678.FeedPollDate2429156813454291735", "Sat Mar 09 2013 15:57:33 GMT+0100");
Found : user_pref("CT2786678.FeedPollDate2429156813729834876", "Sat Mar 09 2013 15:57:32 GMT+0100");
Found : user_pref("CT2786678.FeedPollDate2429156813860870021", "Sat Mar 09 2013 15:57:34 GMT+0100");
Found : user_pref("CT2786678.FeedPollDate2429156814264681793", "Sat Mar 09 2013 15:57:33 GMT+0100");
Found : user_pref("CT2786678.FeedPollDate2429156814863075366", "Sat Mar 09 2013 15:57:33 GMT+0100");
Found : user_pref("CT2786678.FeedPollDate2429156815257761081", "Sat Mar 09 2013 15:57:33 GMT+0100");
Found : user_pref("CT2786678.FeedTTL2429156813040823546", 15);
Found : user_pref("CT2786678.FeedTTL2429156813130095866", 10);
Found : user_pref("CT2786678.FeedTTL2429156813454291735", 5);
Found : user_pref("CT2786678.FeedTTL2429156814264681793", 5);
Found : user_pref("CT2786678.FirstServerDate", "2-7-2011");
Found : user_pref("CT2786678.FirstTime", true);
Found : user_pref("CT2786678.FirstTimeFF3", true);
Found : user_pref("CT2786678.FixPageNotFoundErrors", false);
Found : user_pref("CT2786678.GroupingInvalidateCache", false);
Found : user_pref("CT2786678.GroupingLastCheckTime", "0");
Found : user_pref("CT2786678.GroupingLastServerUpdateTime", "0");
Found : user_pref("CT2786678.GroupingServerCheckInterval", 1440);
Found : user_pref("CT2786678.GroupingServiceUrl", "hxxp://grouping.services.conduit.com/");
Found : user_pref("CT2786678.HasUserGlobalKeys", true);
Found : user_pref("CT2786678.HomePageProtectorEnabled", false);
Found : user_pref("CT2786678.Initialize", true);
Found : user_pref("CT2786678.InitializeCommonPrefs", true);
Found : user_pref("CT2786678.InstallationAndCookieDataSentCount", 3);
Found : user_pref("CT2786678.InstallationType", "UnknownIntegration");
Found : user_pref("CT2786678.InstalledDate", "Fri Jul 01 2011 23:14:54 GMT+0200");
Found : user_pref("CT2786678.InvalidateCache", false);
Found : user_pref("CT2786678.IsAlertDBUpdated", true);
Found : user_pref("CT2786678.IsGrouping", false);
Found : user_pref("CT2786678.IsInitSetupIni", true);
Found : user_pref("CT2786678.IsMulticommunity", false);
Found : user_pref("CT2786678.IsOpenThankYouPage", true);
Found : user_pref("CT2786678.IsOpenUninstallPage", false);
Found : user_pref("CT2786678.IsProtectorsInit", true);
Found : user_pref("CT2786678.LanguagePackLastCheckTime", "Sat Mar 09 2013 12:39:39 GMT+0100");
Found : user_pref("CT2786678.LanguagePackReloadIntervalMM", 1440);
Found : user_pref("CT2786678.LanguagePackServiceUrl", "hxxp://translation.users.conduit.com/Translation.ashx[...]
Found : user_pref("CT2786678.LastLogin_3.10.0.1", "Tue Apr 17 2012 21:24:14 GMT+0200");
Found : user_pref("CT2786678.LastLogin_3.12.0.7", "Wed Apr 25 2012 19:06:36 GMT+0200");
Found : user_pref("CT2786678.LastLogin_3.12.2.3", "Wed May 30 2012 18:12:28 GMT+0200");
Found : user_pref("CT2786678.LastLogin_3.13.0.6", "Wed Jul 18 2012 00:00:50 GMT+0200");
Found : user_pref("CT2786678.LastLogin_3.14.1.0", "Mon Aug 27 2012 11:51:17 GMT+0200");
Found : user_pref("CT2786678.LastLogin_3.15.1.0", "Wed Nov 07 2012 16:04:27 GMT+0100");
Found : user_pref("CT2786678.LastLogin_3.16.0.3", "Sat Feb 09 2013 13:30:29 GMT+0100");
Found : user_pref("CT2786678.LastLogin_3.18.0.7", "Sat Mar 09 2013 16:50:11 GMT+0100");
Found : user_pref("CT2786678.LastLogin_3.5.0.12", "Tue Feb 21 2012 07:59:59 GMT+0100");
Found : user_pref("CT2786678.LastLogin_3.9.0.3", "Thu Mar 08 2012 15:21:26 GMT+0100");
Found : user_pref("CT2786678.LatestVersion", "3.18.0.7");
Found : user_pref("CT2786678.Locale", "en");
Found : user_pref("CT2786678.MCDetectTooltipHeight", "83");
Found : user_pref("CT2786678.MCDetectTooltipUrl", "hxxp://@EB_INSTALL_LINK@/rank/tooltip/?version=1");
Found : user_pref("CT2786678.MCDetectTooltipWidth", "295");
Found : user_pref("CT2786678.MyStuffEnabledAtInstallation", true);
Found : user_pref("CT2786678.OriginalFirstVersion", "3.5.0.12");
Found : user_pref("CT2786678.RadioLastCheckTime", "0");
Found : user_pref("CT2786678.RadioLastUpdateIPServer", "0");
Found : user_pref("CT2786678.RadioLastUpdateServer", "0");
Found : user_pref("CT2786678.SHRINK_TOOLBAR", 1);
Found : user_pref("CT2786678.SavedHomepage", "hxxp://www.seznam.cz/");
Found : user_pref("CT2786678.SearchBoxWidth", 150);
Found : user_pref("CT2786678.SearchEngineBeforeUnload", "Conduit Engine Customized Web Search");
Found : user_pref("CT2786678.SearchFromAddressBarIsInit", true);
Found : user_pref("CT2786678.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT278[...]
Found : user_pref("CT2786678.SearchInNewTabEnabled", true);
Found : user_pref("CT2786678.SearchInNewTabIntervalMM", 1440);
Found : user_pref("CT2786678.SearchInNewTabLastCheckTime", "Sat Mar 09 2013 12:39:32 GMT+0100");
Found : user_pref("CT2786678.SearchInNewTabServiceUrl", "hxxp://newtab.conduit-hosting.com/newtab/?ctid=EB_T[...]
Found : user_pref("CT2786678.SearchInNewTabUsageUrl", "hxxp://usage.hosting.toolbar.conduit-services.com/usa[...]
Found : user_pref("CT2786678.SearchInNewTabUserEnabled", false);
Found : user_pref("CT2786678.SearchProtectorEnabled", false);
Found : user_pref("CT2786678.SearchProtectorToolbarDisabled", false);
Found : user_pref("CT2786678.ServiceMapLastCheckTime", "Sat Mar 09 2013 12:39:34 GMT+0100");
Found : user_pref("CT2786678.SettingsLastCheckTime", "Sat Mar 09 2013 15:57:31 GMT+0100");
Found : user_pref("CT2786678.SettingsLastUpdate", "1362836524");
Found : user_pref("CT2786678.ThirdPartyComponentsInterval", 504);
Found : user_pref("CT2786678.ThirdPartyComponentsLastCheck", "Thu Mar 07 2013 20:27:33 GMT+0100");
Found : user_pref("CT2786678.ThirdPartyComponentsLastUpdate", "1331805997");
Found : user_pref("CT2786678.ToolbarShrinkedFromSetup", false);
Found : user_pref("CT2786678.TrusteLinkUrl", "hxxp://trust.conduit.com/CT2786678");
Found : user_pref("CT2786678.TrustedApiDomains", "conduit.com,conduit-hosting.com,conduit-services.com,clien[...]
Found : user_pref("CT2786678.UserID", "UN18796438958165238");
Found : user_pref("CT2786678.ValidationData_Toolbar", 2);
Found : user_pref("CT2786678.WeatherNetwork", "");
Found : user_pref("CT2786678.WeatherPollDate", "Sat Mar 09 2013 15:57:33 GMT+0100");
Found : user_pref("CT2786678.WeatherUnit", "C");
Found : user_pref("CT2786678.alertChannelId", "1178763");
Found : user_pref("CT2786678.backendstorage./9b+7e+x305", "2423");
Found : user_pref("CT2786678.backendstorage./9b+7e,x305", "2423");
Found : user_pref("CT2786678.backendstorage./9b+7e-x305", "2423");
Found : user_pref("CT2786678.backendstorage./9b+7e.x305", "2423");
Found : user_pref("CT2786678.backendstorage./9b+7e/x305", "2423");
Found : user_pref("CT2786678.backendstorage./9b+7e06cg5el8:", "6E6D706F736C6F76776F");
Found : user_pref("CT2786678.backendstorage./9b+7e06cg5el;8i:k", "247E2D2F226A747376757972757C7D75242F4B4947[...]
Found : user_pref("CT2786678.backendstorage./9b+7e0x305", "2423");
Found : user_pref("CT2786678.backendstorage./9b+7e1x305", "2423");
Found : user_pref("CT2786678.backendstorage./9b+7e2x305", "2423");
Found : user_pref("CT2786678.backendstorage./9b+7e3x305", "2423");
Found : user_pref("CT2786678.backendstorage./9b+7e4x305", "2423");
Found : user_pref("CT2786678.backendstorage./9b+7e5x305", "2423");
Found : user_pref("CT2786678.backendstorage./9b+7e6x305", "2423");
Found : user_pref("CT2786678.backendstorage./9b+7e7x305", "2423");
Found : user_pref("CT2786678.backendstorage./9b+7e8x305", "2423");
Found : user_pref("CT2786678.backendstorage./9b+7e9x305", "2423");
Found : user_pref("CT2786678.backendstorage./9b+7e:x305", "2423");
Found : user_pref("CT2786678.backendstorage./9b+7e;x305", "2423");
Found : user_pref("CT2786678.backendstorage./9b+7e<x305", "2423");
Found : user_pref("CT2786678.backendstorage./9b+7e=x305", "2423");
Found : user_pref("CT2786678.backendstorage./9b+7e>x305", "2423");
Found : user_pref("CT2786678.backendstorage./9b+7e?x305", "2423");
Found : user_pref("CT2786678.backendstorage./9b+7e@x305", "2423");
Found : user_pref("CT2786678.backendstorage./9b+7eax305", "2423");
Found : user_pref("CT2786678.backendstorage./9b+7ebe3g=;d9n9=d", "372C2D326975762E3A3C7B3A39434A494841434B26[...]
Found : user_pref("CT2786678.backendstorage./9b+7ebx305", "2423");
Found : user_pref("CT2786678.backendstorage./9b+7ecx305", "2423");
Found : user_pref("CT2786678.backendstorage./9b+7edx305", "2423");
Found : user_pref("CT2786678.backendstorage./9b+7etx305", "2423");
Found : user_pref("CT2786678.backendstorage./9b-0?3g>d", "3C3E686B6A403F6D7A75704979207879497925215225512A54[...]
Found : user_pref("CT2786678.backendstorage./9b-0?3g@6:5;", "");
Found : user_pref("CT2786678.backendstorage./9b-0?3gfa7ef", "2B2E2C3D");
Found : user_pref("CT2786678.backendstorage./9b-3=3eccja=f>", "247E333D2C452F4135276F292A212C393D44307832332[...]
Found : user_pref("CT2786678.backendstorage./9b/>01=9a6k6<im;krie@pdawm", "6E6A68707374757677");
Found : user_pref("CT2786678.backendstorage./9b3=>@44i48?", "372C2D326975763342363341484775213F3E484F4E4D464[...]
Found : user_pref("CT2786678.backendstorage./9b5ba==9cjag", "6A3A3D6F423F6E707A42794676757D76767B227A7A");
Found : user_pref("CT2786678.backendstorage./9b6b11g4c56b>f;p;anr@p", "6E6D6B706B726C756F6F757972");
Found : user_pref("CT2786678.backendstorage./9b9643g3/9e", "6A");
Found : user_pref("CT2786678.backendstorage./9b;45>:bi9i7ie", "2B2E2C3D");
Found : user_pref("CT2786678.backendstorage./9b<:222h64<", "393F352F3E");
Found : user_pref("CT2786678.backendstorage./9b=+03eh8h8j?:", "4443");
Found : user_pref("CT2786678.backendstorage./9b?+e2a52d8", "372C2D326975762E3A3C7B3A39434A494841434B26514649[...]
Found : user_pref("CT2786678.backendstorage./9b?b0d:8aj62<h", "6D");
Found : user_pref("CT2786678.backendstorage./9ba@0<0bi6a7gn:6@l?", "6E6B");
Found : user_pref("CT2786678.backendstorage.cb_experience_000", "33");
Found : user_pref("CT2786678.backendstorage.cb_firstuse0100", "31");
Found : user_pref("CT2786678.backendstorage.cb_user_id_000", "43423638333132353437393934345F46697265666F78")[...]
Found : user_pref("CT2786678.backendstorage.cbcountry_000", "435A");
Found : user_pref("CT2786678.backendstorage.cbcountry_001", "435A");
Found : user_pref("CT2786678.backendstorage.cbfirsttime", "4672692053657020333020323031312032303A34343A34372[...]
Found : user_pref("CT2786678.backendstorage.cbopenmamsettings", "30");
Found : user_pref("CT2786678.backendstorage.facebook_mode", "32");
Found : user_pref("CT2786678.backendstorage.facebook_user_locale", "656E");
Found : user_pref("CT2786678.backendstorage.mam_gk_appsdata", "7B2261707073223A5B7B226964223A225072696365476[...]
Found : user_pref("CT2786678.backendstorage.mam_gk_appsdefaultenabled", "6E756C6C");
Found : user_pref("CT2786678.backendstorage.mam_gk_appstatereporttime", "31333632383239313837323931");
Found : user_pref("CT2786678.backendstorage.mam_gk_configuration", "7B22636F6E66696775726174696F6E223A5B7B22[...]
Found : user_pref("CT2786678.backendstorage.mam_gk_couponbuddy_appstate", "6F6E");
Found : user_pref("CT2786678.backendstorage.mam_gk_currentversion", "312E342E332E32");
Found : user_pref("CT2786678.backendstorage.mam_gk_first_time", "31");
Found : user_pref("CT2786678.backendstorage.mam_gk_lastlogintime", "31333632383239313836393536");
Found : user_pref("CT2786678.backendstorage.mam_gk_localization", "7B22676164676574436F6E74656E74506F6C69637[...]
Found : user_pref("CT2786678.backendstorage.mam_gk_pricegong_appstate", "6F6E");
Found : user_pref("CT2786678.backendstorage.mam_gk_settings1.4.3.1", "7B22537461747573223A227375636365656465[...]
Found : user_pref("CT2786678.backendstorage.mam_gk_settings1.4.3.2", "7B22537461747573223A227375636365656465[...]
Found : user_pref("CT2786678.backendstorage.mam_gk_showclosebutton", "74727565");
Found : user_pref("CT2786678.backendstorage.mam_gk_showwelcomegadget", "66616C7365");
Found : user_pref("CT2786678.backendstorage.mam_gk_userid", "35346239613662312D353166612D346264382D383532652[...]
Found : user_pref("CT2786678.backendstorage.pairingkey", "35423537384135314544344238353546313442323441384132[...]
Found : user_pref("CT2786678.backendstorage.pg_enable", "74727565");
Found : user_pref("CT2786678.backendstorage.scriptsource", "687474703A2F2F3132372E302E302E313A31303030302F67[...]
Found : user_pref("CT2786678.backendstorage.searchappstate", "33");
Found : user_pref("CT2786678.backendstorage.searchapptracking", "31");
Found : user_pref("CT2786678.backendstorage.undefined", "4672692046656220303320323031322031353A31303A3234204[...]
Found : user_pref("CT2786678.backendstorage.url_history", "687474703A2F2F7777772E66616365626F6F6B2E636F6D2F6[...]
Found : user_pref("CT2786678.backendstorage.url_history0001", "687474703A2F2F7777772E66616365626F6F6B2E636F6[...]
Found : user_pref("CT2786678.backendstorage.uttorrents", "7B226275696C64223A32353133302C226C6162656C223A5B5D[...]
Found : user_pref("CT2786678.generalConfigFromLogin", "{\"ApiMaxAlerts\":\"12\",\"SocialDomains\":\"social.c[...]
Found : user_pref("CT2786678.globalFirstTimeInfoLastCheckTime", "Sat Mar 02 2013 15:05:21 GMT+0100");
Found : user_pref("CT2786678.homepageProtectorEnableByLogin", true);
Found : user_pref("CT2786678.initDone", true);
Found : user_pref("CT2786678.isAppTrackingManagerOn", false);
Found : user_pref("CT2786678.myStuffEnabled", true);
Found : user_pref("CT2786678.myStuffPublihserMinWidth", 400);
Found : user_pref("CT2786678.myStuffSearchUrl", "hxxp://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOr[...]
Found : user_pref("CT2786678.myStuffServiceIntervalMM", 1440);
Found : user_pref("CT2786678.myStuffServiceUrl", "hxxp://mystuff.conduit-services.com/MyStuffService.ashx?Co[...]
Found : user_pref("CT2786678.oldAppsList", "129295695672325902,129295695672325903,1000234,129789450454597254[...]
Found : user_pref("CT2786678.revertSettingsEnabled", true);
Found : user_pref("CT2786678.searchProtectorDialogDelayInSec", 10);
Found : user_pref("CT2786678.searchProtectorEnableByLogin", true);
Found : user_pref("CT2786678.testingCtid", "");
Found : user_pref("CT2786678.toolbarAppMetaDataLastCheckTime", "Sat Mar 09 2013 12:39:39 GMT+0100");
Found : user_pref("CT2786678.toolbarContextMenuLastCheckTime", "Thu Mar 07 2013 15:35:56 GMT+0100");
Found : user_pref("CT2786678.usagesFlag", 2);
Found : user_pref("CommunityToolbar.ConduitHomepagesList", "hxxp://search.conduit.com/?ctid=CT2786678&Search[...]
Found : user_pref("CommunityToolbar.ConduitSearchList", " ");
Found : user_pref("CommunityToolbar.ETag.hxxp://Settings.toolbar.search.conduit. ... /CT2786678[...]
Found : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root ... 1174448/CZ", "\"0\"[...]
Found : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root ... /905414/CZ", "\"0\"")[...]
Found : user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-ser ... =CT2786678", [...]
Found : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-serv ... tenApps&lo[...]
Found : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-serv ... erApps&loc[...]
Found : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-serv ... redApps&lo[...]
Found : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-serv ... lbar&local[...]
Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.alert.conduit-ser ... rt/dlg.pkg", "\[...]
Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.engine.conduit-se ... ?ver=3.3.3[...]
Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-s ... g?ver=3.10[...]
Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-s ... g?ver=3.12[...]
Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-s ... g?ver=3.12[...]
Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-s ... g?ver=3.13[...]
Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-s ... g?ver=3.14[...]
Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-s ... g?ver=3.15[...]
Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-s ... g?ver=3.16[...]
Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-s ... g?ver=3.18[...]
Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-s ... kg?ver=3.5.[...]
Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-s ... kg?ver=3.9.[...]
Found : user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/ ... =CT2786678",[...]
Found : user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services ... r=FF&lut=0", "63[...]
Found : user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services ... ut=3/13/20[...]
Found : user_pref("CommunityToolbar.ETag.hxxp://settings.toolbar.conduit-service ... 678&octid=[...]
Found : user_pref("CommunityToolbar.ETag.hxxp://settings.toolbar.search.conduit. ... /CT2786678[...]
Found : user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-serv ... ?locale=en", "\"6ad[...]
Found : user_pref("CommunityToolbar.EngineOwner", "ConduitEngine");
Found : user_pref("CommunityToolbar.EngineOwnerGuid", "engine@conduit.com");
Found : user_pref("CommunityToolbar.EngineOwnerToolbarId", "conduitengine");
Found : user_pref("CommunityToolbar.IsEngineShown", true);
Found : user_pref("CommunityToolbar.IsMyStuffImportedToEngine", true);
Found : user_pref("CommunityToolbar.LatestLibsPath", "file:///C:\\Users\\vercik\\AppData\\Roaming\\Mozilla\\[...]
Found : user_pref("CommunityToolbar.LatestToolbarVersionInstalled", "3.18.0.7");
Found : user_pref("CommunityToolbar.MiniIPageGadgetSize.hxxp://facebook.conduitapps.com/v3.13/gadget.html", [...]
Found : user_pref("CommunityToolbar.OriginalEngineOwner", "ConduitEngine");
Found : user_pref("CommunityToolbar.OriginalEngineOwnerGuid", "engine@conduit.com");
Found : user_pref("CommunityToolbar.OriginalEngineOwnerToolbarId", "conduitengine");
Found : user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "hxxp://search.icq.com/search/afe_results[...]
Found : user_pref("CommunityToolbar.ToolbarsList", "CT2786678,ConduitEngine");
Found : user_pref("CommunityToolbar.ToolbarsList2", "CT2786678,ConduitEngine");
Found : user_pref("CommunityToolbar.ToolbarsList4", "CT2786678");
Found : user_pref("CommunityToolbar.alert.alertDialogsGetterLastCheckTime", "Fri Jul 01 2011 23:14:53 GMT+02[...]
Found : user_pref("CommunityToolbar.alert.alertInfoInterval", 1440);
Found : user_pref("CommunityToolbar.alert.alertInfoLastCheckTime", "Mon Feb 20 2012 20:25:13 GMT+0100");
Found : user_pref("CommunityToolbar.alert.clientsServerUrl", "hxxp://alert.client.conduit.com");
Found : user_pref("CommunityToolbar.alert.locale", "en");
Found : user_pref("CommunityToolbar.alert.loginIntervalMin", 1440);
Found : user_pref("CommunityToolbar.alert.loginLastCheckTime", "Mon Feb 20 2012 20:25:05 GMT+0100");
Found : user_pref("CommunityToolbar.alert.loginLastUpdateTime", "1313487611");
Found : user_pref("CommunityToolbar.alert.messageShowTimeSec", 20);
Found : user_pref("CommunityToolbar.alert.servicesServerUrl", "hxxp://alert.services.conduit.com");
Found : user_pref("CommunityToolbar.alert.showTrayIcon", false);
Found : user_pref("CommunityToolbar.alert.userCloseIntervalMin", 300);
Found : user_pref("CommunityToolbar.alert.userId", "916ea05f-a868-4824-93e1-c13f6a2f05e8");
Found : user_pref("CommunityToolbar.facebook.settingsLastCheckTime", "Sun Apr 15 2012 18:17:59 GMT+0200");
Found : user_pref("CommunityToolbar.globalUserId", "032a5888-864d-46ab-8d79-6023d6fd2b85");
Found : user_pref("CommunityToolbar.isAlertUrlAddedToFeedItemTable", true);
Found : user_pref("CommunityToolbar.isClickActionAddedToFeedItemTable", true);
Found : user_pref("CommunityToolbar.keywordURLSelectedCTID", "ConduitEngine");
Found : user_pref("CommunityToolbar.notifications.alertDialogsGetterLastCheckTime", "Thu Mar 07 2013 20:41:2[...]
Found : user_pref("CommunityToolbar.notifications.alertInfoInterval", 1440);
Found : user_pref("CommunityToolbar.notifications.alertInfoLastCheckTime", "Sat Mar 09 2013 12:39:41 GMT+010[...]
Found : user_pref("CommunityToolbar.notifications.clientsServerUrl", "hxxp://alert.client.conduit.com");
Found : user_pref("CommunityToolbar.notifications.locale", "en");
Found : user_pref("CommunityToolbar.notifications.loginIntervalMin", 1440);
Found : user_pref("CommunityToolbar.notifications.loginLastCheckTime", "Sat Mar 09 2013 12:39:34 GMT+0100");
Found : user_pref("CommunityToolbar.notifications.loginLastUpdateTime", "1313487611");
Found : user_pref("CommunityToolbar.notifications.messageShowTimeSec", 20);
Found : user_pref("CommunityToolbar.notifications.servicesServerUrl", "hxxp://alert.services.conduit.com");
Found : user_pref("CommunityToolbar.notifications.showTrayIcon", false);
Found : user_pref("CommunityToolbar.notifications.userCloseIntervalMin", 300);
Found : user_pref("CommunityToolbar.notifications.userId", "56c108f9-9b0d-422e-b774-713ebd8f5767");
Found : user_pref("ConduitEngine.AppTrackingLastCheckTime", "Mon Feb 20 2012 20:25:17 GMT+0100");
Found : user_pref("ConduitEngine.CTID", "ConduitEngine");
Found : user_pref("ConduitEngine.DialogsGetterLastCheckTime", "Sun Feb 19 2012 10:31:15 GMT+0100");
Found : user_pref("ConduitEngine.FirstServerDate", "07/02/2011 00");
Found : user_pref("ConduitEngine.FirstTime", true);
Found : user_pref("ConduitEngine.FirstTimeFF3", true);
Found : user_pref("ConduitEngine.FixPageNotFoundErrors", false);
Found : user_pref("ConduitEngine.HasUserGlobalKeys", true);
Found : user_pref("ConduitEngine.Initialize", true);
Found : user_pref("ConduitEngine.InitializeCommonPrefs", true);
Found : user_pref("ConduitEngine.InstallationType", "UnknownIntegration");
Found : user_pref("ConduitEngine.InstalledDate", "Fri Jul 01 2011 23:14:56 GMT+0200");
Found : user_pref("ConduitEngine.IsMulticommunity", false);
Found : user_pref("ConduitEngine.IsOpenThankYouPage", false);
Found : user_pref("ConduitEngine.IsOpenUninstallPage", false);
Found : user_pref("ConduitEngine.LanguagePackLastCheckTime", "Mon Feb 20 2012 20:25:09 GMT+0100");
Found : user_pref("ConduitEngine.LastLogin_3.3.3.2", "Tue Feb 21 2012 07:59:54 GMT+0100");
Found : user_pref("ConduitEngine.SavedHomepage", "hxxp://search.conduit.com/?ctid=CT2786678&SearchSource=13"[...]
Found : user_pref("ConduitEngine.SearchFromAddressBarIsInit", true);
Found : user_pref("ConduitEngine.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=C[...]
Found : user_pref("ConduitEngine.SettingsLastCheckTime", "Tue Feb 21 2012 07:59:54 GMT+0100");
Found : user_pref("ConduitEngine.UserID", "UN42183766764687157");
Found : user_pref("ConduitEngine.engineLocale", "cs");
Found : user_pref("ConduitEngine.enngineContextMenuLastCheckTime", "Mon Feb 20 2012 20:25:06 GMT+0100");
Found : user_pref("ConduitEngine.globalFirstTimeInfoLastCheckTime", "Tue Feb 21 2012 07:59:55 GMT+0100");
Found : user_pref("ConduitEngine.initDone", true);
Found : user_pref("ConduitEngine.isAppTrackingManagerOn", true);
Found : user_pref("browser.search.defaultengine", "Ask.com");
Found : user_pref("browser.search.defaultenginename", "Ask.com");
Found : user_pref("browser.search.defaultthis.engineName", "Conduit Engine Customized Web Search");
Found : user_pref("browser.search.defaulturl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=ConduitEngine[...]
Found : user_pref("browser.search.order.1", "Ask.com");
Found : user_pref("icqtoolbar.allowSendURL", false);
Found : user_pref("icqtoolbar.engineVerified", false);
Found : user_pref("icqtoolbar.geolastmodified", 1307719825);
Found : user_pref("icqtoolbar.hiddenElements", "itb_options");
Found : user_pref("icqtoolbar.history", "youtu%20be.com||slep%C3%A1%20mapa%20ameriky||slep%C3%A1%20maa%20ame[...]
Found : user_pref("icqtoolbar.icqgeo", 42);
Found : user_pref("icqtoolbar.installTime", "1288192178");
Found : user_pref("icqtoolbar.installsource", "1");
Found : user_pref("icqtoolbar.newtab_state", "1");
Found : user_pref("icqtoolbar.numberOfSearches", 0);
Found : user_pref("icqtoolbar.previousFFVersion", "3.5.19");
Found : user_pref("icqtoolbar.skip_default_search", "no");
Found : user_pref("icqtoolbar.suggestions", false);
Found : user_pref("icqtoolbar.uniqueID", "128816110012881611001288192178354");
Found : user_pref("icqtoolbar.usageStatstTimestamp", 1307733570);
Found : user_pref("icqtoolbar.version", "1.1.7");
Found : user_pref("icqtoolbar.voucherHideClicks", 0);
Found : user_pref("icqtoolbar.voucherMoreLinkClicks", 0);
Found : user_pref("icqtoolbar.voucherRedeemClicks", 0);
Found : user_pref("icqtoolbar.voucherWasShown", 0);
Found : user_pref("icqtoolbar.xmlEnableSuggestions", false);
Found : user_pref("icqtoolbar.xmlLanguage", "cs");
Found : user_pref("keyword.URL", "hxxp://search.icq.com/search/afe_results.php?ch_id=afex&tb_ver=1.1.7&q=");

-\\ Google Chrome v [Unable to get version]

File : C:\Users\vercik\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[R1].txt - [41392 octets] - [09/03/2013 20:06:45]

########## EOF - C:\AdwCleaner[R1].txt - [41453 octets] ##########
Nahoru
Uživatelský avatar
memphisto
Guru Level 13
Guru Level 13
Příspěvky: 21113
Registrován: září 06
Bydliště: Zlín - České Budějovice
Pohlaví: Muž
Stav:
Offline

Re: Prosim o kontrolu logu

Příspěvekod memphisto » 09 bře 2013 20:13

V AdwCleaner dej vše smazat a opět log.

Stáhni si TDSSKiller

Na svojí plochu. Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller.2.2.7.1._(datum)_log.txt , vlož sem prosím celý obsah logu.

Vypni rezidentní štít antiviru a antispywaru
Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
Pokud bude po kontrole problém spustit aplikace nebo bude vyskakovat hláška o pokusu použít neplatnou operaci na klíč registru, který je oznaèen pro odstranění, stačí restartovat počítač.
PRAVIDLA PC-HELP.CZ, PRAVIDLA sekce HijackThis, HijackThis návod, Memtest, CCleaner
Logy z programu HijackThis neposílejte prosím přes SZ, ale vkládejte je do patřičné sekce. Děkuji
Nahoru
tomas_ch
Level 2.5
Level 2.5
Příspěvky: 353
Registrován: srpen 07
Pohlaví: Nespecifikováno
Stav:
Offline

Re: Prosim o kontrolu logu

Příspěvekod tomas_ch » 09 bře 2013 20:28

# AdwCleaner v2.114 - Logfile created 03/09/2013 at 20:21:19
# Updated 05/03/2013 by Xplode
# Operating system : Windows Vista (TM) Home Basic Service Pack 2 (32 bits)
# User : vercik - VERCIK-ASUS
# Boot Mode : Normal
# Running from : C:\Users\vercik\Desktop\adwcleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

File Deleted : C:\Users\vercik\AppData\Roaming\Mozilla\Firefox\Profiles\6p1umv83.default\searchplugins\Askcom.xml
File Deleted : C:\Users\vercik\AppData\Roaming\Mozilla\Firefox\Profiles\6p1umv83.default\searchplugins\Conduit.xml
File Deleted : C:\Users\vercik\AppData\Roaming\Mozilla\Firefox\Profiles\6p1umv83.default\searchplugins\icqplugin.xml
File Deleted : C:\Users\vercik\AppData\Roaming\Mozilla\Firefox\Profiles\6p1umv83.default\searchplugins\icqplugin-1.xml
File Deleted : C:\Users\vercik\AppData\Roaming\Mozilla\Firefox\Profiles\6p1umv83.default\searchplugins\icqplugin-2.xml
Folder Deleted : C:\Program Files\Conduit
Folder Deleted : C:\Program Files\DAEMON Tools Toolbar
Folder Deleted : C:\Program Files\SweetIM
Folder Deleted : C:\ProgramData\Ask
Folder Deleted : C:\ProgramData\ICQ\ICQToolbar
Folder Deleted : C:\ProgramData\SweetIM
Folder Deleted : C:\Users\vercik\AppData\Local\Conduit
Folder Deleted : C:\Users\vercik\AppData\Local\OpenCandy
Folder Deleted : C:\Users\vercik\AppData\LocalLow\Conduit
Folder Deleted : C:\Users\vercik\AppData\LocalLow\PriceGong
Folder Deleted : C:\Users\vercik\AppData\LocalLow\SweetIM
Folder Deleted : C:\Users\vercik\AppData\Roaming\Mozilla\Firefox\Profiles\6p1umv83.default\Conduit
Folder Deleted : C:\Users\vercik\AppData\Roaming\Mozilla\Firefox\Profiles\6p1umv83.default\ConduitCommon
Folder Deleted : C:\Users\vercik\AppData\Roaming\Mozilla\Firefox\Profiles\6p1umv83.default\ConduitEngine
Folder Deleted : C:\Users\vercik\AppData\Roaming\Mozilla\Firefox\Profiles\6p1umv83.default\CT2786678
Folder Deleted : C:\Users\vercik\AppData\Roaming\Mozilla\Firefox\Profiles\6p1umv83.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
Folder Deleted : C:\Users\vercik\AppData\Roaming\Mozilla\Firefox\Profiles\6p1umv83.default\extensions\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}
Folder Deleted : C:\Users\vercik\AppData\Roaming\Mozilla\Firefox\Profiles\6p1umv83.default\extensions\engine@conduit.com
Folder Deleted : C:\Users\vercik\AppData\Roaming\OpenCandy

***** [Registry] *****

Key Deleted : HKCU\Software\AppDataLow\Software\Conduit
Key Deleted : HKCU\Software\AppDataLow\Software\PriceGong
Key Deleted : HKCU\Software\AppDataLow\Software\SmartBar
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{70D46D94-BF1E-45ED-B567-48701376298E}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AD22EBAF-0D18-4FC7-90CC-5EA0ABBE9EB8}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{79A765E1-C399-405B-85AF-466F52E918B0}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\conduitEngine
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EEE6C35B-6118-11DC-9C72-001320C79847}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EEE6C35C-6118-11DC-9C72-001320C79847}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{00000000-6E41-4FD3-8538-502F5495E5FC}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35B-6118-11DC-9C72-001320C79847}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35C-6118-11DC-9C72-001320C79847}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35D-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{5D723752-5899-47E8-99B4-62C824EF9E13}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\ICQ Service.exe
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{EEE6C35B-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{EEE6C35D-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Classes\Conduit.Engine
Key Deleted : HKLM\SOFTWARE\Classes\ICQToolBar.IEHook
Key Deleted : HKLM\SOFTWARE\Classes\ICQToolBar.IEHook.1
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A439801C-961D-452C-AB42-7848E9CBD289}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EEE6C358-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EEE6C359-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EEE6C35A-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{F4EBB1E2-21F3-4786-8CF4-16EC5925867F}
Key Deleted : HKLM\SOFTWARE\Classes\MediaPlayer.GraphicsUtils
Key Deleted : HKLM\SOFTWARE\Classes\MediaPlayer.GraphicsUtils.1
Key Deleted : HKLM\SOFTWARE\Classes\MgMediaPlayer.GifAnimator
Key Deleted : HKLM\SOFTWARE\Classes\MgMediaPlayer.GifAnimator.1
Key Deleted : HKLM\SOFTWARE\Classes\SWEETIE.IEToolbar
Key Deleted : HKLM\SOFTWARE\Classes\SWEETIE.IEToolbar.1
Key Deleted : HKLM\SOFTWARE\Classes\SWEETIE.SWEETIE
Key Deleted : HKLM\SOFTWARE\Classes\sweetim_urlsearchhook.toolbarurlsearchhook
Key Deleted : HKLM\SOFTWARE\Classes\sweetim_urlsearchhook.toolbarurlsearchhook.1
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT2786678
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar3.sweetie
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar3.sweetie.1
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{4D3B167E-5FD8-4276-8FD7-9DF19C1E4D19}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{EEE6C35E-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{EEE6C35F-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\Software\Dealio
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Explorer Bars\{855F3B16-6D32-4FE6-8A56-BBB695989046}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Key Deleted : HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SearchSettings
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\02F47BF73B948514FAACADD8CBBDF37D
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\07D5290CDBDAE4242926B8E6CA650501
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\080D9F5E1E95FEE4794CE438E635239E
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\08E33F7B61DEFF24BB9673ED7D467636
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0E3D8A5B48622A445A7DF73FEFF32C3F
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1E264E0A5959A1C46BA9175A878B12EA
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2E6768B6932D112438F047C54D180635
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\34EDDB1BFB3A2D448845F3EFD0F15A43
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\351716A953E21214898904032EAE2E81
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\397C771A7BCAC904697C3EC629ED33ED
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\427EA997C413D1D47907CBFC7B2DB432
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4318DF19719275242801CBE292063A4C
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\45FC115D1FEAEF849A4E1610D6EC8BF0
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\46A5861A389ADB844AF89E31BC9DF0A1
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\49B0E1A6FF50BBE4289E4E23DE6EA0C7
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4CCCAC049F34D0540AAC13011398BEDB
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5C4389D0BFB302C479DE4178BD5D9EBA
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5D2B09BDEF4FE54418E6F3373CDBC7AC
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\61B65D3397A1FBF4CB1571B5E4F6B5B0
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\68E8A05C60DD9254591DBD16C94EDDBF
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\697E782CF574CC34CBB9566440BA12BC
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6AE27A8613CF7EA4782F2886F67295E5
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7CE172051F585E04187BCB97570BFA74
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\86A901BA5265452499DCBF719C378EE3
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\88ABD1CD5C40EC84789A7F6EF86DAC5E
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\980289C22F80A7C4BB9323DC61255E4E
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\98CC8BF5A4A6E6C4ABF7051DDAB8B058
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9A4B7EF3789F871419D9302583B20C15
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A189D17A469616C4688D23E192996267
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A6C53B0F76C44004A8F36716213017DB
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B59F2D8189784CC46A4597F2842480B0
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BD746FB95FB8E5B45BF66BE54D5FD91F
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CCF399FCD6D2D3F46BF02A1378654FC9
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D149C1355C98DE24E82CEFBD996FE06A
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D15DAF33C220F91468A1D7D57C31ACD7
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D3BA76A44C779424889063D5098ED2D6
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D6D0EB9FDBD90C04D92A7E729058F10D
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DB59FDB786388EA4D897F3EE715683AC
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DB8DAD19CFBCC2049A4477183787E8C5
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E1C820A74ED67374BA048B52CB3C3804
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E4748F9A4181FCE46A23C13B517B9420
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EC65F200D112357449C8B1BC3CFA03D0
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F327D0C73C0973644A21E8CC852267A0
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FA96423FE2B98E248A3B23548D1E22D9
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{32099AAC-C132-4136-9E9A-4E364A424E17}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{E67C74F4-A00A-4F2C-9FEC-FD9DC004A67F}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{EEE6C35B-6118-11DC-9C72-001320C79847}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{855F3B16-6D32-4FE6-8A56-BBB695989046}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{855F3B16-6D32-4FE6-8A56-BBB695989046}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{EEE6C35B-6118-11DC-9C72-001320C79847}]

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16464

Replaced : [HKCU\Software\Microsoft\Internet Explorer\Main - ICQ Search] = hxxp://search.icq.com/search/results.php?q={searchTerms}&ch_id=osd --> hxxp://www.google.com

-\\ Mozilla Firefox v19.0.2 (cs)

File : C:\Users\vercik\AppData\Roaming\Mozilla\Firefox\Profiles\6p1umv83.default\prefs.js

Deleted : user_pref("CT2786678..clientLogIsEnabled", false);
Deleted : user_pref("CT2786678..clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.as[...]
Deleted : user_pref("CT2786678..uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/Re[...]
Deleted : user_pref("CT2786678.ALLOW_SHOWING_HIDDEN_TOOLBAR", false);
Deleted : user_pref("CT2786678.AboutPrivacyUrl", "hxxp://www.conduit.com/privacy/Default.aspx");
Deleted : user_pref("CT2786678.AppTrackingLastCheckTime", "Wed Jul 18 2012 14:06:35 GMT+0200");
Deleted : user_pref("CT2786678.BrowserCompStateIsOpen_129575151151403741", true);
Deleted : user_pref("CT2786678.BrowserCompStateIsOpen_129579220236217502", true);
Deleted : user_pref("CT2786678.BrowserCompStateIsOpen_130067977588633691", true);
Deleted : user_pref("CT2786678.BrowserCompStateIsOpen_1359634298000", true);
Deleted : user_pref("CT2786678.CTID", "CT2786678");
Deleted : user_pref("CT2786678.CommunitiesChangesLastCheckTime", "0");
Deleted : user_pref("CT2786678.CurrentServerDate", "9-3-2013");
Deleted : user_pref("CT2786678.DialogsAlignMode", "LTR");
Deleted : user_pref("CT2786678.DialogsGetterLastCheckTime", "Thu Mar 07 2013 20:27:36 GMT+0100");
Deleted : user_pref("CT2786678.DownloadReferralCookieData", "");
Deleted : user_pref("CT2786678.EMailNotifierPollDate", "Sat Mar 09 2013 16:22:32 GMT+0100");
Deleted : user_pref("CT2786678.FeedLastCount5690698542593514850", 501);
Deleted : user_pref("CT2786678.FeedPollDate2429156812186649977", "Sat Mar 09 2013 15:57:33 GMT+0100");
Deleted : user_pref("CT2786678.FeedPollDate2429156813040823546", "Sat Mar 09 2013 15:57:33 GMT+0100");
Deleted : user_pref("CT2786678.FeedPollDate2429156813130095866", "Sat Mar 09 2013 15:57:32 GMT+0100");
Deleted : user_pref("CT2786678.FeedPollDate2429156813224203613", "Sat Mar 09 2013 15:57:32 GMT+0100");
Deleted : user_pref("CT2786678.FeedPollDate2429156813230837251", "Sat Mar 09 2013 15:57:33 GMT+0100");
Deleted : user_pref("CT2786678.FeedPollDate2429156813454291735", "Sat Mar 09 2013 15:57:33 GMT+0100");
Deleted : user_pref("CT2786678.FeedPollDate2429156813729834876", "Sat Mar 09 2013 15:57:32 GMT+0100");
Deleted : user_pref("CT2786678.FeedPollDate2429156813860870021", "Sat Mar 09 2013 15:57:34 GMT+0100");
Deleted : user_pref("CT2786678.FeedPollDate2429156814264681793", "Sat Mar 09 2013 15:57:33 GMT+0100");
Deleted : user_pref("CT2786678.FeedPollDate2429156814863075366", "Sat Mar 09 2013 15:57:33 GMT+0100");
Deleted : user_pref("CT2786678.FeedPollDate2429156815257761081", "Sat Mar 09 2013 15:57:33 GMT+0100");
Deleted : user_pref("CT2786678.FeedTTL2429156813040823546", 15);
Deleted : user_pref("CT2786678.FeedTTL2429156813130095866", 10);
Deleted : user_pref("CT2786678.FeedTTL2429156813454291735", 5);
Deleted : user_pref("CT2786678.FeedTTL2429156814264681793", 5);
Deleted : user_pref("CT2786678.FirstServerDate", "2-7-2011");
Deleted : user_pref("CT2786678.FirstTime", true);
Deleted : user_pref("CT2786678.FirstTimeFF3", true);
Deleted : user_pref("CT2786678.FixPageNotFoundErrors", false);
Deleted : user_pref("CT2786678.GroupingInvalidateCache", false);
Deleted : user_pref("CT2786678.GroupingLastCheckTime", "0");
Deleted : user_pref("CT2786678.GroupingLastServerUpdateTime", "0");
Deleted : user_pref("CT2786678.GroupingServerCheckInterval", 1440);
Deleted : user_pref("CT2786678.GroupingServiceUrl", "hxxp://grouping.services.conduit.com/");
Deleted : user_pref("CT2786678.HasUserGlobalKeys", true);
Deleted : user_pref("CT2786678.HomePageProtectorEnabled", false);
Deleted : user_pref("CT2786678.Initialize", true);
Deleted : user_pref("CT2786678.InitializeCommonPrefs", true);
Deleted : user_pref("CT2786678.InstallationAndCookieDataSentCount", 3);
Deleted : user_pref("CT2786678.InstallationType", "UnknownIntegration");
Deleted : user_pref("CT2786678.InstalledDate", "Fri Jul 01 2011 23:14:54 GMT+0200");
Deleted : user_pref("CT2786678.InvalidateCache", false);
Deleted : user_pref("CT2786678.IsAlertDBUpdated", true);
Deleted : user_pref("CT2786678.IsGrouping", false);
Deleted : user_pref("CT2786678.IsInitSetupIni", true);
Deleted : user_pref("CT2786678.IsMulticommunity", false);
Deleted : user_pref("CT2786678.IsOpenThankYouPage", true);
Deleted : user_pref("CT2786678.IsOpenUninstallPage", false);
Deleted : user_pref("CT2786678.IsProtectorsInit", true);
Deleted : user_pref("CT2786678.LanguagePackLastCheckTime", "Sat Mar 09 2013 12:39:39 GMT+0100");
Deleted : user_pref("CT2786678.LanguagePackReloadIntervalMM", 1440);
Deleted : user_pref("CT2786678.LanguagePackServiceUrl", "hxxp://translation.users.conduit.com/Translation.ashx[...]
Deleted : user_pref("CT2786678.LastLogin_3.10.0.1", "Tue Apr 17 2012 21:24:14 GMT+0200");
Deleted : user_pref("CT2786678.LastLogin_3.12.0.7", "Wed Apr 25 2012 19:06:36 GMT+0200");
Deleted : user_pref("CT2786678.LastLogin_3.12.2.3", "Wed May 30 2012 18:12:28 GMT+0200");
Deleted : user_pref("CT2786678.LastLogin_3.13.0.6", "Wed Jul 18 2012 00:00:50 GMT+0200");
Deleted : user_pref("CT2786678.LastLogin_3.14.1.0", "Mon Aug 27 2012 11:51:17 GMT+0200");
Deleted : user_pref("CT2786678.LastLogin_3.15.1.0", "Wed Nov 07 2012 16:04:27 GMT+0100");
Deleted : user_pref("CT2786678.LastLogin_3.16.0.3", "Sat Feb 09 2013 13:30:29 GMT+0100");
Deleted : user_pref("CT2786678.LastLogin_3.18.0.7", "Sat Mar 09 2013 16:50:11 GMT+0100");
Deleted : user_pref("CT2786678.LastLogin_3.5.0.12", "Tue Feb 21 2012 07:59:59 GMT+0100");
Deleted : user_pref("CT2786678.LastLogin_3.9.0.3", "Thu Mar 08 2012 15:21:26 GMT+0100");
Deleted : user_pref("CT2786678.LatestVersion", "3.18.0.7");
Deleted : user_pref("CT2786678.Locale", "en");
Deleted : user_pref("CT2786678.MCDetectTooltipHeight", "83");
Deleted : user_pref("CT2786678.MCDetectTooltipUrl", "hxxp://@EB_INSTALL_LINK@/rank/tooltip/?version=1");
Deleted : user_pref("CT2786678.MCDetectTooltipWidth", "295");
Deleted : user_pref("CT2786678.MyStuffEnabledAtInstallation", true);
Deleted : user_pref("CT2786678.OriginalFirstVersion", "3.5.0.12");
Deleted : user_pref("CT2786678.RadioLastCheckTime", "0");
Deleted : user_pref("CT2786678.RadioLastUpdateIPServer", "0");
Deleted : user_pref("CT2786678.RadioLastUpdateServer", "0");
Deleted : user_pref("CT2786678.SHRINK_TOOLBAR", 1);
Deleted : user_pref("CT2786678.SavedHomepage", "hxxp://www.seznam.cz/");
Deleted : user_pref("CT2786678.SearchBoxWidth", 150);
Deleted : user_pref("CT2786678.SearchEngineBeforeUnload", "Conduit Engine Customized Web Search");
Deleted : user_pref("CT2786678.SearchFromAddressBarIsInit", true);
Deleted : user_pref("CT2786678.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT278[...]
Deleted : user_pref("CT2786678.SearchInNewTabEnabled", true);
Deleted : user_pref("CT2786678.SearchInNewTabIntervalMM", 1440);
Deleted : user_pref("CT2786678.SearchInNewTabLastCheckTime", "Sat Mar 09 2013 12:39:32 GMT+0100");
Deleted : user_pref("CT2786678.SearchInNewTabServiceUrl", "hxxp://newtab.conduit-hosting.com/newtab/?ctid=EB_T[...]
Deleted : user_pref("CT2786678.SearchInNewTabUsageUrl", "hxxp://usage.hosting.toolbar.conduit-services.com/usa[...]
Deleted : user_pref("CT2786678.SearchInNewTabUserEnabled", false);
Deleted : user_pref("CT2786678.SearchProtectorEnabled", false);
Deleted : user_pref("CT2786678.SearchProtectorToolbarDisabled", false);
Deleted : user_pref("CT2786678.ServiceMapLastCheckTime", "Sat Mar 09 2013 12:39:34 GMT+0100");
Deleted : user_pref("CT2786678.SettingsLastCheckTime", "Sat Mar 09 2013 20:08:36 GMT+0100");
Deleted : user_pref("CT2786678.SettingsLastUpdate", "1362836524");
Deleted : user_pref("CT2786678.ThirdPartyComponentsInterval", 504);
Deleted : user_pref("CT2786678.ThirdPartyComponentsLastCheck", "Thu Mar 07 2013 20:27:33 GMT+0100");
Deleted : user_pref("CT2786678.ThirdPartyComponentsLastUpdate", "1331805997");
Deleted : user_pref("CT2786678.ToolbarShrinkedFromSetup", false);
Deleted : user_pref("CT2786678.TrusteLinkUrl", "hxxp://trust.conduit.com/CT2786678");
Deleted : user_pref("CT2786678.TrustedApiDomains", "conduit.com,conduit-hosting.com,conduit-services.com,clien[...]
Deleted : user_pref("CT2786678.UserID", "UN18796438958165238");
Deleted : user_pref("CT2786678.ValidationData_Toolbar", 2);
Deleted : user_pref("CT2786678.WeatherNetwork", "");
Deleted : user_pref("CT2786678.WeatherPollDate", "Sat Mar 09 2013 15:57:33 GMT+0100");
Deleted : user_pref("CT2786678.WeatherUnit", "C");
Deleted : user_pref("CT2786678.alertChannelId", "1178763");
Deleted : user_pref("CT2786678.backendstorage./9b+7e+x305", "2423");
Deleted : user_pref("CT2786678.backendstorage./9b+7e,x305", "2423");
Deleted : user_pref("CT2786678.backendstorage./9b+7e-x305", "2423");
Deleted : user_pref("CT2786678.backendstorage./9b+7e.x305", "2423");
Deleted : user_pref("CT2786678.backendstorage./9b+7e/x305", "2423");
Deleted : user_pref("CT2786678.backendstorage./9b+7e06cg5el8:", "6E6D706F736C6F76776F");
Deleted : user_pref("CT2786678.backendstorage./9b+7e06cg5el;8i:k", "247E2D2F226A747376757972757C7D75242F4B4947[...]
Deleted : user_pref("CT2786678.backendstorage./9b+7e0x305", "2423");
Deleted : user_pref("CT2786678.backendstorage./9b+7e1x305", "2423");
Deleted : user_pref("CT2786678.backendstorage./9b+7e2x305", "2423");
Deleted : user_pref("CT2786678.backendstorage./9b+7e3x305", "2423");
Deleted : user_pref("CT2786678.backendstorage./9b+7e4x305", "2423");
Deleted : user_pref("CT2786678.backendstorage./9b+7e5x305", "2423");
Deleted : user_pref("CT2786678.backendstorage./9b+7e6x305", "2423");
Deleted : user_pref("CT2786678.backendstorage./9b+7e7x305", "2423");
Deleted : user_pref("CT2786678.backendstorage./9b+7e8x305", "2423");
Deleted : user_pref("CT2786678.backendstorage./9b+7e9x305", "2423");
Deleted : user_pref("CT2786678.backendstorage./9b+7e:x305", "2423");
Deleted : user_pref("CT2786678.backendstorage./9b+7e;x305", "2423");
Deleted : user_pref("CT2786678.backendstorage./9b+7e<x305", "2423");
Deleted : user_pref("CT2786678.backendstorage./9b+7e=x305", "2423");
Deleted : user_pref("CT2786678.backendstorage./9b+7e>x305", "2423");
Deleted : user_pref("CT2786678.backendstorage./9b+7e?x305", "2423");
Deleted : user_pref("CT2786678.backendstorage./9b+7e@x305", "2423");
Deleted : user_pref("CT2786678.backendstorage./9b+7eax305", "2423");
Deleted : user_pref("CT2786678.backendstorage./9b+7ebe3g=;d9n9=d", "372C2D326975762E3A3C7B3A39434A494841434B26[...]
Deleted : user_pref("CT2786678.backendstorage./9b+7ebx305", "2423");
Deleted : user_pref("CT2786678.backendstorage./9b+7ecx305", "2423");
Deleted : user_pref("CT2786678.backendstorage./9b+7edx305", "2423");
Deleted : user_pref("CT2786678.backendstorage./9b+7etx305", "2423");
Deleted : user_pref("CT2786678.backendstorage./9b-0?3g>d", "3C3E686B6A403F6D7A75704979207879497925215225512A54[...]
Deleted : user_pref("CT2786678.backendstorage./9b-0?3g@6:5;", "");
Deleted : user_pref("CT2786678.backendstorage./9b-0?3gfa7ef", "2B2E2C3D");
Deleted : user_pref("CT2786678.backendstorage./9b-3=3eccja=f>", "247E333D2C452F4135276F292A212C393D44307832332[...]
Deleted : user_pref("CT2786678.backendstorage./9b/>01=9a6k6<im;krie@pdawm", "6E6A68707374757677");
Deleted : user_pref("CT2786678.backendstorage./9b3=>@44i48?", "372C2D326975763342363341484775213F3E484F4E4D464[...]
Deleted : user_pref("CT2786678.backendstorage./9b5ba==9cjag", "6A3A3D6F423F6E707A42794676757D76767B227A7A");
Deleted : user_pref("CT2786678.backendstorage./9b6b11g4c56b>f;p;anr@p", "6E6D6B706B726C756F6F757972");
Deleted : user_pref("CT2786678.backendstorage./9b9643g3/9e", "6A");
Deleted : user_pref("CT2786678.backendstorage./9b;45>:bi9i7ie", "2B2E2C3D");
Deleted : user_pref("CT2786678.backendstorage./9b<:222h64<", "393F352F3E");
Deleted : user_pref("CT2786678.backendstorage./9b=+03eh8h8j?:", "4443");
Deleted : user_pref("CT2786678.backendstorage./9b?+e2a52d8", "372C2D326975762E3A3C7B3A39434A494841434B26514649[...]
Deleted : user_pref("CT2786678.backendstorage./9b?b0d:8aj62<h", "6D");
Deleted : user_pref("CT2786678.backendstorage./9ba@0<0bi6a7gn:6@l?", "6E6B");
Deleted : user_pref("CT2786678.backendstorage.cb_experience_000", "33");
Deleted : user_pref("CT2786678.backendstorage.cb_firstuse0100", "31");
Deleted : user_pref("CT2786678.backendstorage.cb_user_id_000", "43423638333132353437393934345F46697265666F78")[...]
Deleted : user_pref("CT2786678.backendstorage.cbcountry_000", "435A");
Deleted : user_pref("CT2786678.backendstorage.cbcountry_001", "435A");
Deleted : user_pref("CT2786678.backendstorage.cbfirsttime", "4672692053657020333020323031312032303A34343A34372[...]
Deleted : user_pref("CT2786678.backendstorage.cbopenmamsettings", "30");
Deleted : user_pref("CT2786678.backendstorage.facebook_mode", "32");
Deleted : user_pref("CT2786678.backendstorage.facebook_user_locale", "656E");
Deleted : user_pref("CT2786678.backendstorage.mam_gk_appsdata", "7B2261707073223A5B7B226964223A225072696365476[...]
Deleted : user_pref("CT2786678.backendstorage.mam_gk_appsdefaultenabled", "6E756C6C");
Deleted : user_pref("CT2786678.backendstorage.mam_gk_appstatereporttime", "31333632383239313837323931");
Deleted : user_pref("CT2786678.backendstorage.mam_gk_configuration", "7B22636F6E66696775726174696F6E223A5B7B22[...]
Deleted : user_pref("CT2786678.backendstorage.mam_gk_couponbuddy_appstate", "6F6E");
Deleted : user_pref("CT2786678.backendstorage.mam_gk_currentversion", "312E342E332E32");
Deleted : user_pref("CT2786678.backendstorage.mam_gk_first_time", "31");
Deleted : user_pref("CT2786678.backendstorage.mam_gk_lastlogintime", "31333632383239313836393536");
Deleted : user_pref("CT2786678.backendstorage.mam_gk_localization", "7B22676164676574436F6E74656E74506F6C69637[...]
Deleted : user_pref("CT2786678.backendstorage.mam_gk_pricegong_appstate", "6F6E");
Deleted : user_pref("CT2786678.backendstorage.mam_gk_settings1.4.3.1", "7B22537461747573223A227375636365656465[...]
Deleted : user_pref("CT2786678.backendstorage.mam_gk_settings1.4.3.2", "7B22537461747573223A227375636365656465[...]
Deleted : user_pref("CT2786678.backendstorage.mam_gk_showclosebutton", "74727565");
Deleted : user_pref("CT2786678.backendstorage.mam_gk_showwelcomegadget", "66616C7365");
Deleted : user_pref("CT2786678.backendstorage.mam_gk_userid", "35346239613662312D353166612D346264382D383532652[...]
Deleted : user_pref("CT2786678.backendstorage.pairingkey", "35423537384135314544344238353546313442323441384132[...]
Deleted : user_pref("CT2786678.backendstorage.pg_enable", "74727565");
Deleted : user_pref("CT2786678.backendstorage.scriptsource", "687474703A2F2F3132372E302E302E313A31303030302F67[...]
Deleted : user_pref("CT2786678.backendstorage.searchappstate", "33");
Deleted : user_pref("CT2786678.backendstorage.searchapptracking", "31");
Deleted : user_pref("CT2786678.backendstorage.undefined", "4672692046656220303320323031322031353A31303A3234204[...]
Deleted : user_pref("CT2786678.backendstorage.url_history", "687474703A2F2F7777772E66616365626F6F6B2E636F6D2F6[...]
Deleted : user_pref("CT2786678.backendstorage.url_history0001", "687474703A2F2F7777772E66616365626F6F6B2E636F6[...]
Deleted : user_pref("CT2786678.backendstorage.uttorrents", "7B226275696C64223A32353133302C226C6162656C223A5B5D[...]
Deleted : user_pref("CT2786678.generalConfigFromLogin", "{\"ApiMaxAlerts\":\"12\",\"SocialDomains\":\"social.c[...]
Deleted : user_pref("CT2786678.globalFirstTimeInfoLastCheckTime", "Sat Mar 02 2013 15:05:21 GMT+0100");
Deleted : user_pref("CT2786678.homepageProtectorEnableByLogin", true);
Deleted : user_pref("CT2786678.initDone", true);
Deleted : user_pref("CT2786678.isAppTrackingManagerOn", false);
Deleted : user_pref("CT2786678.myStuffEnabled", true);
Deleted : user_pref("CT2786678.myStuffPublihserMinWidth", 400);
Deleted : user_pref("CT2786678.myStuffSearchUrl", "hxxp://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOr[...]
Deleted : user_pref("CT2786678.myStuffServiceIntervalMM", 1440);
Deleted : user_pref("CT2786678.myStuffServiceUrl", "hxxp://mystuff.conduit-services.com/MyStuffService.ashx?Co[...]
Deleted : user_pref("CT2786678.oldAppsList", "129295695672325902,129295695672325903,1000234,129789450454597254[...]
Deleted : user_pref("CT2786678.revertSettingsEnabled", true);
Deleted : user_pref("CT2786678.searchProtectorDialogDelayInSec", 10);
Deleted : user_pref("CT2786678.searchProtectorEnableByLogin", true);
Deleted : user_pref("CT2786678.testingCtid", "");
Deleted : user_pref("CT2786678.toolbarAppMetaDataLastCheckTime", "Sat Mar 09 2013 12:39:39 GMT+0100");
Deleted : user_pref("CT2786678.toolbarContextMenuLastCheckTime", "Thu Mar 07 2013 15:35:56 GMT+0100");
Deleted : user_pref("CT2786678.usagesFlag", 2);
Deleted : user_pref("CommunityToolbar.ConduitHomepagesList", "hxxp://search.conduit.com/?ctid=CT2786678&Search[...]
Deleted : user_pref("CommunityToolbar.ConduitSearchList", " ");
Deleted : user_pref("CommunityToolbar.ETag.hxxp://Settings.toolbar.search.conduit. ... /CT2786678[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root ... 1174448/CZ", "\"0\"[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root ... /905414/CZ", "\"0\"")[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-ser ... =CT2786678", [...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-serv ... tenApps&lo[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-serv ... erApps&loc[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-serv ... redApps&lo[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-serv ... lbar&local[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.alert.conduit-ser ... rt/dlg.pkg", "\[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.engine.conduit-se ... ?ver=3.3.3[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-s ... g?ver=3.10[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-s ... g?ver=3.12[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-s ... g?ver=3.12[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-s ... g?ver=3.13[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-s ... g?ver=3.14[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-s ... g?ver=3.15[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-s ... g?ver=3.16[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-s ... g?ver=3.18[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-s ... kg?ver=3.5.[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-s ... kg?ver=3.9.[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/ ... =CT2786678",[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services ... r=FF&lut=0", "63[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services ... ut=3/13/20[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://settings.toolbar.conduit-service ... 678&octid=[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://settings.toolbar.search.conduit. ... /CT2786678[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-serv ... ?locale=en", "\"6ad[...]
Deleted : user_pref("CommunityToolbar.EngineOwner", "ConduitEngine");
Deleted : user_pref("CommunityToolbar.EngineOwnerGuid", "engine@conduit.com");
Deleted : user_pref("CommunityToolbar.EngineOwnerToolbarId", "conduitengine");
Deleted : user_pref("CommunityToolbar.IsEngineShown", true);
Deleted : user_pref("CommunityToolbar.IsMyStuffImportedToEngine", true);
Deleted : user_pref("CommunityToolbar.LatestLibsPath", "file:///C:\\Users\\vercik\\AppData\\Roaming\\Mozilla\\[...]
Deleted : user_pref("CommunityToolbar.LatestToolbarVersionInstalled", "3.18.0.7");
Deleted : user_pref("CommunityToolbar.MiniIPageGadgetSize.hxxp://facebook.conduitapps.com/v3.13/gadget.html", [...]
Deleted : user_pref("CommunityToolbar.OriginalEngineOwner", "ConduitEngine");
Deleted : user_pref("CommunityToolbar.OriginalEngineOwnerGuid", "engine@conduit.com");
Deleted : user_pref("CommunityToolbar.OriginalEngineOwnerToolbarId", "conduitengine");
Deleted : user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "hxxp://search.icq.com/search/afe_results[...]
Deleted : user_pref("CommunityToolbar.ToolbarsList", "CT2786678,ConduitEngine");
Deleted : user_pref("CommunityToolbar.ToolbarsList2", "CT2786678,ConduitEngine");
Deleted : user_pref("CommunityToolbar.ToolbarsList4", "CT2786678");
Deleted : user_pref("CommunityToolbar.alert.alertDialogsGetterLastCheckTime", "Fri Jul 01 2011 23:14:53 GMT+02[...]
Deleted : user_pref("CommunityToolbar.alert.alertInfoInterval", 1440);
Deleted : user_pref("CommunityToolbar.alert.alertInfoLastCheckTime", "Mon Feb 20 2012 20:25:13 GMT+0100");
Deleted : user_pref("CommunityToolbar.alert.clientsServerUrl", "hxxp://alert.client.conduit.com");
Deleted : user_pref("CommunityToolbar.alert.locale", "en");
Deleted : user_pref("CommunityToolbar.alert.loginIntervalMin", 1440);
Deleted : user_pref("CommunityToolbar.alert.loginLastCheckTime", "Mon Feb 20 2012 20:25:05 GMT+0100");
Deleted : user_pref("CommunityToolbar.alert.loginLastUpdateTime", "1313487611");
Deleted : user_pref("CommunityToolbar.alert.messageShowTimeSec", 20);
Deleted : user_pref("CommunityToolbar.alert.servicesServerUrl", "hxxp://alert.services.conduit.com");
Deleted : user_pref("CommunityToolbar.alert.showTrayIcon", false);
Deleted : user_pref("CommunityToolbar.alert.userCloseIntervalMin", 300);
Deleted : user_pref("CommunityToolbar.alert.userId", "916ea05f-a868-4824-93e1-c13f6a2f05e8");
Deleted : user_pref("CommunityToolbar.facebook.settingsLastCheckTime", "Sun Apr 15 2012 18:17:59 GMT+0200");
Deleted : user_pref("CommunityToolbar.globalUserId", "032a5888-864d-46ab-8d79-6023d6fd2b85");
Deleted : user_pref("CommunityToolbar.isAlertUrlAddedToFeedItemTable", true);
Deleted : user_pref("CommunityToolbar.isClickActionAddedToFeedItemTable", true);
Deleted : user_pref("CommunityToolbar.keywordURLSelectedCTID", "ConduitEngine");
Deleted : user_pref("CommunityToolbar.notifications.alertDialogsGetterLastCheckTime", "Thu Mar 07 2013 20:41:2[...]
Deleted : user_pref("CommunityToolbar.notifications.alertInfoInterval", 1440);
Deleted : user_pref("CommunityToolbar.notifications.alertInfoLastCheckTime", "Sat Mar 09 2013 12:39:41 GMT+010[...]
Deleted : user_pref("CommunityToolbar.notifications.clientsServerUrl", "hxxp://alert.client.conduit.com");
Deleted : user_pref("CommunityToolbar.notifications.locale", "en");
Deleted : user_pref("CommunityToolbar.notifications.loginIntervalMin", 1440);
Deleted : user_pref("CommunityToolbar.notifications.loginLastCheckTime", "Sat Mar 09 2013 12:39:34 GMT+0100");
Deleted : user_pref("CommunityToolbar.notifications.loginLastUpdateTime", "1313487611");
Deleted : user_pref("CommunityToolbar.notifications.messageShowTimeSec", 20);
Deleted : user_pref("CommunityToolbar.notifications.servicesServerUrl", "hxxp://alert.services.conduit.com");
Deleted : user_pref("CommunityToolbar.notifications.showTrayIcon", false);
Deleted : user_pref("CommunityToolbar.notifications.userCloseIntervalMin", 300);
Deleted : user_pref("CommunityToolbar.notifications.userId", "56c108f9-9b0d-422e-b774-713ebd8f5767");
Deleted : user_pref("ConduitEngine.AppTrackingLastCheckTime", "Mon Feb 20 2012 20:25:17 GMT+0100");
Deleted : user_pref("ConduitEngine.CTID", "ConduitEngine");
Deleted : user_pref("ConduitEngine.DialogsGetterLastCheckTime", "Sun Feb 19 2012 10:31:15 GMT+0100");
Deleted : user_pref("ConduitEngine.FirstServerDate", "07/02/2011 00");
Deleted : user_pref("ConduitEngine.FirstTime", true);
Deleted : user_pref("ConduitEngine.FirstTimeFF3", true);
Deleted : user_pref("ConduitEngine.FixPageNotFoundErrors", false);
Deleted : user_pref("ConduitEngine.HasUserGlobalKeys", true);
Deleted : user_pref("ConduitEngine.Initialize", true);
Deleted : user_pref("ConduitEngine.InitializeCommonPrefs", true);
Deleted : user_pref("ConduitEngine.InstallationType", "UnknownIntegration");
Deleted : user_pref("ConduitEngine.InstalledDate", "Fri Jul 01 2011 23:14:56 GMT+0200");
Deleted : user_pref("ConduitEngine.IsMulticommunity", false);
Deleted : user_pref("ConduitEngine.IsOpenThankYouPage", false);
Deleted : user_pref("ConduitEngine.IsOpenUninstallPage", false);
Deleted : user_pref("ConduitEngine.LanguagePackLastCheckTime", "Mon Feb 20 2012 20:25:09 GMT+0100");
Deleted : user_pref("ConduitEngine.LastLogin_3.3.3.2", "Tue Feb 21 2012 07:59:54 GMT+0100");
Deleted : user_pref("ConduitEngine.SavedHomepage", "hxxp://search.conduit.com/?ctid=CT2786678&SearchSource=13"[...]
Deleted : user_pref("ConduitEngine.SearchFromAddressBarIsInit", true);
Deleted : user_pref("ConduitEngine.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=C[...]
Deleted : user_pref("ConduitEngine.SettingsLastCheckTime", "Tue Feb 21 2012 07:59:54 GMT+0100");
Deleted : user_pref("ConduitEngine.UserID", "UN42183766764687157");
Deleted : user_pref("ConduitEngine.engineLocale", "cs");
Deleted : user_pref("ConduitEngine.enngineContextMenuLastCheckTime", "Mon Feb 20 2012 20:25:06 GMT+0100");
Deleted : user_pref("ConduitEngine.globalFirstTimeInfoLastCheckTime", "Tue Feb 21 2012 07:59:55 GMT+0100");
Deleted : user_pref("ConduitEngine.initDone", true);
Deleted : user_pref("ConduitEngine.isAppTrackingManagerOn", true);
Deleted : user_pref("browser.search.defaultengine", "Ask.com");
Deleted : user_pref("browser.search.defaultenginename", "Ask.com");
Deleted : user_pref("browser.search.defaultthis.engineName", "Conduit Engine Customized Web Search");
Deleted : user_pref("browser.search.defaulturl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=ConduitEngine[...]
Deleted : user_pref("browser.search.order.1", "Ask.com");
Deleted : user_pref("icqtoolbar.allowSendURL", false);
Deleted : user_pref("icqtoolbar.engineVerified", false);
Deleted : user_pref("icqtoolbar.geolastmodified", 1307719825);
Deleted : user_pref("icqtoolbar.hiddenElements", "itb_options");
Deleted : user_pref("icqtoolbar.history", "youtu%20be.com||slep%C3%A1%20mapa%20ameriky||slep%C3%A1%20maa%20ame[...]
Deleted : user_pref("icqtoolbar.icqgeo", 42);
Deleted : user_pref("icqtoolbar.installTime", "1288192178");
Deleted : user_pref("icqtoolbar.installsource", "1");
Deleted : user_pref("icqtoolbar.newtab_state", "1");
Deleted : user_pref("icqtoolbar.numberOfSearches", 0);
Deleted : user_pref("icqtoolbar.previousFFVersion", "3.5.19");
Deleted : user_pref("icqtoolbar.skip_default_search", "no");
Deleted : user_pref("icqtoolbar.suggestions", false);
Deleted : user_pref("icqtoolbar.uniqueID", "128816110012881611001288192178354");
Deleted : user_pref("icqtoolbar.usageStatstTimestamp", 1307733570);
Deleted : user_pref("icqtoolbar.version", "1.1.7");
Deleted : user_pref("icqtoolbar.voucherHideClicks", 0);
Deleted : user_pref("icqtoolbar.voucherMoreLinkClicks", 0);
Deleted : user_pref("icqtoolbar.voucherRedeemClicks", 0);
Deleted : user_pref("icqtoolbar.voucherWasShown", 0);
Deleted : user_pref("icqtoolbar.xmlEnableSuggestions", false);
Deleted : user_pref("icqtoolbar.xmlLanguage", "cs");
Deleted : user_pref("keyword.URL", "hxxp://search.icq.com/search/afe_results.php?ch_id=afex&tb_ver=1.1.7&q=");

-\\ Google Chrome v [Unable to get version]

File : C:\Users\vercik\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[R1].txt - [41523 octets] - [09/03/2013 20:06:45]
AdwCleaner[R2].txt - [41584 octets] - [09/03/2013 20:20:31]
AdwCleaner[S1].txt - [41717 octets] - [09/03/2013 20:21:19]

########## EOF - C:\AdwCleaner[S1].txt - [41778 octets] ##########
Nahoru
tomas_ch
Level 2.5
Level 2.5
Příspěvky: 353
Registrován: srpen 07
Pohlaví: Nespecifikováno
Stav:
Offline

Re: Prosim o kontrolu logu

Příspěvekod tomas_ch » 09 bře 2013 20:41

Zajimava vec:
pokud stahnu na plochu TDSSKiller a ComboFix,
tak se normalne stahne, ale ihned zmizi z plochy, jako bych nic nestahnul.
Zkousel jsem to asi 10x. :-(
Nahoru
tomas_ch
Level 2.5
Level 2.5
Příspěvky: 353
Registrován: srpen 07
Pohlaví: Nespecifikováno
Stav:
Offline

Re: Prosim o kontrolu logu

Příspěvekod tomas_ch » 09 bře 2013 21:37

21:28:49.0762 2812 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
21:28:50.0417 2812 ============================================================
21:28:50.0417 2812 Current date / time: 2013/03/09 21:28:50.0417
21:28:50.0417 2812 SystemInfo:
21:28:50.0417 2812
21:28:50.0417 2812 OS Version: 6.0.6002 ServicePack: 2.0
21:28:50.0417 2812 Product type: Workstation
21:28:50.0417 2812 ComputerName: VERCIK-ASUS
21:28:50.0417 2812 UserName: vercik
21:28:50.0417 2812 Windows directory: C:\Windows
21:28:50.0417 2812 System windows directory: C:\Windows
21:28:50.0417 2812 Processor architecture: Intel x86
21:28:50.0417 2812 Number of processors: 2
21:28:50.0417 2812 Page size: 0x1000
21:28:50.0417 2812 Boot type: Normal boot
21:28:50.0417 2812 ============================================================
21:28:51.0291 2812 Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
21:28:51.0322 2812 ============================================================
21:28:51.0322 2812 \Device\Harddisk0\DR0:
21:28:51.0322 2812 MBR partitions:
21:28:51.0322 2812 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1388B3B, BlocksNum 0x950A600
21:28:51.0338 2812 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0xA89317A, BlocksNum 0x8185947
21:28:51.0338 2812 ============================================================
21:28:51.0385 2812 C: <-> \Device\Harddisk0\DR0\Partition1
21:28:51.0416 2812 D: <-> \Device\Harddisk0\DR0\Partition2
21:28:51.0416 2812 ============================================================
21:28:51.0416 2812 Initialize success
21:28:51.0416 2812 ============================================================
21:29:41.0991 2540 ============================================================
21:29:41.0991 2540 Scan started
21:29:41.0991 2540 Mode: Manual;
21:29:41.0991 2540 ============================================================
21:29:42.0428 2540 ================ Scan system memory ========================
21:29:42.0428 2540 System memory - ok
21:29:42.0428 2540 ================ Scan services =============================
21:29:42.0646 2540 [ 82B296AE1892FE3DBEE00C9CF92F8AC7 ] ACPI C:\Windows\system32\drivers\acpi.sys
21:29:42.0662 2540 ACPI - ok
21:29:42.0771 2540 [ 3927397AC60D943DAF8808AFFED582B7 ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
21:29:42.0771 2540 AdobeARMservice - ok
21:29:42.0865 2540 [ 9942DC4CC265CDA00486504444EF521D ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
21:29:42.0865 2540 AdobeFlashPlayerUpdateSvc - ok
21:29:42.0974 2540 [ 04F0FCAC69C7C71A3AC4EB97FAFC8303 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
21:29:42.0989 2540 adp94xx - ok
21:29:43.0036 2540 [ 60505E0041F7751BDBB80F88BF45C2CE ] adpahci C:\Windows\system32\drivers\adpahci.sys
21:29:43.0052 2540 adpahci - ok
21:29:43.0114 2540 [ 8A42779B02AEC986EAB64ECFC98F8BD7 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
21:29:43.0114 2540 adpu160m - ok
21:29:43.0145 2540 [ 241C9E37F8CE45EF51C3DE27515CA4E5 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
21:29:43.0145 2540 adpu320 - ok
21:29:43.0239 2540 [ 609A6F49B6AF0F25837F8A0EDDDB0745 ] ADSMService C:\Program Files\ASUS\ASUS Data Security Manager\ADSMSrv.exe
21:29:43.0255 2540 ADSMService - ok
21:29:43.0286 2540 [ 9D1FDA9E086BA64E3C93C9DE32461BCF ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
21:29:43.0301 2540 AeLookupSvc - ok
21:29:43.0379 2540 [ 3911B972B55FEA0478476B2E777B29FA ] AFD C:\Windows\system32\drivers\afd.sys
21:29:43.0379 2540 AFD - ok
21:29:43.0442 2540 [ 13F9E33747E6B41A3FF305C37DB0D360 ] agp440 C:\Windows\system32\drivers\agp440.sys
21:29:43.0457 2540 agp440 - ok
21:29:43.0489 2540 [ AE1FDF7BF7BB6C6A70F67699D880592A ] aic78xx C:\Windows\system32\drivers\djsvs.sys
21:29:43.0489 2540 aic78xx - ok
21:29:43.0535 2540 [ A1545B731579895D8CC44FC0481C1192 ] ALG C:\Windows\System32\alg.exe
21:29:43.0551 2540 ALG - ok
21:29:43.0567 2540 [ 9EAEF5FC9B8E351AFA7E78A6FAE91F91 ] aliide C:\Windows\system32\drivers\aliide.sys
21:29:43.0582 2540 aliide - ok
21:29:43.0598 2540 [ C47344BC706E5F0B9DCE369516661578 ] amdagp C:\Windows\system32\drivers\amdagp.sys
21:29:43.0613 2540 amdagp - ok
21:29:43.0645 2540 [ 9B78A39A4C173FDBC1321E0DD659B34C ] amdide C:\Windows\system32\drivers\amdide.sys
21:29:43.0645 2540 amdide - ok
21:29:43.0676 2540 [ 18F29B49AD23ECEE3D2A826C725C8D48 ] AmdK7 C:\Windows\system32\drivers\amdk7.sys
21:29:43.0676 2540 AmdK7 - ok
21:29:43.0707 2540 [ 93AE7F7DD54AB986A6F1A1B37BE7442D ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
21:29:43.0707 2540 AmdK8 - ok
21:29:43.0769 2540 [ C6D704C7F0434DC791AAC37CAC4B6E14 ] Appinfo C:\Windows\System32\appinfo.dll
21:29:43.0769 2540 Appinfo - ok
21:29:43.0816 2540 [ 5D2888182FB46632511ACEE92FDAD522 ] arc C:\Windows\system32\drivers\arc.sys
21:29:43.0816 2540 arc - ok
21:29:43.0863 2540 [ 5E2A321BD7C8B3624E41FDEC3E244945 ] arcsas C:\Windows\system32\drivers\arcsas.sys
21:29:43.0863 2540 arcsas - ok
21:29:43.0941 2540 [ 4385E371C25C94C804E9D3152BD9E1F7 ] AsDsm C:\Windows\system32\drivers\AsDsm.sys
21:29:43.0941 2540 AsDsm - ok
21:29:44.0019 2540 [ 5A055A4777CBBC8845DD598CB2EEBF69 ] ASLDRService C:\Program Files\ATK Hotkey\ASLDRSrv.exe
21:29:44.0035 2540 ASLDRService - ok
21:29:44.0050 2540 [ 7B4D08D2017AC06689D422E06C43F0AA ] ASMMAP C:\Program Files\ATKGFNEX\ASMMAP.sys
21:29:44.0050 2540 ASMMAP - ok
21:29:44.0113 2540 [ 53B202ABEE6455406254444303E87BE1 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
21:29:44.0113 2540 AsyncMac - ok
21:29:44.0144 2540 [ 1F05B78AB91C9075565A9D8A4B880BC4 ] atapi C:\Windows\system32\drivers\atapi.sys
21:29:44.0159 2540 atapi - ok
21:29:44.0253 2540 [ 44362605F5FFF00C9B7696B47680A8C5 ] athr C:\Windows\system32\DRIVERS\athr.sys
21:29:44.0284 2540 athr - ok
21:29:44.0331 2540 [ 7C157574A181B19B9DCF5F339E25337E ] ATKGFNEXSrv C:\Program Files\ATKGFNEX\GFNEXSrv.exe
21:29:44.0331 2540 ATKGFNEXSrv - ok
21:29:44.0425 2540 [ 68E2A1A0407A66CF50DA0300852424AB ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
21:29:44.0440 2540 AudioEndpointBuilder - ok
21:29:44.0471 2540 [ 68E2A1A0407A66CF50DA0300852424AB ] Audiosrv C:\Windows\System32\Audiosrv.dll
21:29:44.0487 2540 Audiosrv - ok
21:29:44.0549 2540 [ 59629EDD214C35A01E2527AC3B8A7FB3 ] Axtmvflt C:\Windows\system32\DRIVERS\Axtmvflt.sys
21:29:44.0549 2540 Axtmvflt - ok
21:29:44.0612 2540 [ 37E23B1756ECA768656097F72C0B458D ] Axtmvmdm C:\Windows\system32\DRIVERS\Axtmvmdm.sys
21:29:44.0612 2540 Axtmvmdm - ok
21:29:44.0659 2540 [ 2C7170BE24EACC0B432EB1832FEE0DDC ] Axtmvprt C:\Windows\system32\Drivers\Axtmvprt.sys
21:29:44.0659 2540 Axtmvprt - ok
21:29:44.0752 2540 [ 67E506B75BD5326A3EC7B70BD014DFB6 ] Beep C:\Windows\system32\drivers\Beep.sys
21:29:44.0752 2540 Beep - ok
21:29:44.0830 2540 [ C789AF0F724FDA5852FB9A7D3A432381 ] BFE C:\Windows\System32\bfe.dll
21:29:44.0846 2540 BFE - ok
21:29:44.0924 2540 [ 93952506C6D67330367F7E7934B6A02F ] BITS C:\Windows\System32\qmgr.dll
21:29:45.0095 2540 BITS - ok
21:29:45.0205 2540 [ D4DF28447741FD3D953526E33A617397 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
21:29:45.0205 2540 blbdrive - ok
21:29:45.0251 2540 [ 35F376253F687BDE63976CCB3F2108CA ] bowser C:\Windows\system32\DRIVERS\bowser.sys
21:29:45.0251 2540 bowser - ok
21:29:45.0298 2540 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
21:29:45.0298 2540 BrFiltLo - ok
21:29:45.0329 2540 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
21:29:45.0329 2540 BrFiltUp - ok
21:29:45.0376 2540 [ A3629A0C4226F9E9C72FAAEEBC3AD33C ] Browser C:\Windows\System32\browser.dll
21:29:45.0392 2540 Browser - ok
21:29:45.0423 2540 [ B304E75CFF293029EDDF094246747113 ] Brserid C:\Windows\system32\drivers\brserid.sys
21:29:45.0423 2540 Brserid - ok
21:29:45.0454 2540 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
21:29:45.0454 2540 BrSerWdm - ok
21:29:45.0485 2540 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
21:29:45.0485 2540 BrUsbMdm - ok
21:29:45.0517 2540 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
21:29:45.0517 2540 BrUsbSer - ok
21:29:45.0563 2540 [ AD07C1EC6665B8B35741AB91200C6B68 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
21:29:45.0563 2540 BTHMODEM - ok
21:29:45.0626 2540 [ 7ADD03E75BEB9E6DD102C3081D29840A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
21:29:45.0626 2540 cdfs - ok
21:29:45.0673 2540 [ 6B4BFFB9BECD728097024276430DB314 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
21:29:45.0673 2540 cdrom - ok
21:29:45.0719 2540 [ 312EC3E37A0A1F2006534913E37B4423 ] CertPropSvc C:\Windows\System32\certprop.dll
21:29:45.0735 2540 CertPropSvc - ok
21:29:45.0766 2540 [ E5D4133F37219DBCFE102BC61072589D ] circlass C:\Windows\system32\drivers\circlass.sys
21:29:45.0766 2540 circlass - ok
21:29:45.0813 2540 [ D7659D3B5B92C31E84E53C1431F35132 ] CLFS C:\Windows\system32\CLFS.sys
21:29:45.0844 2540 CLFS - ok
21:29:45.0922 2540 [ 8EE772032E2FE80A924F3B8DD5082194 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:29:45.0985 2540 clr_optimization_v2.0.50727_32 - ok
21:29:46.0063 2540 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
21:29:46.0063 2540 clr_optimization_v4.0.30319_32 - ok
21:29:46.0156 2540 [ 99AFC3795B58CC478FBBBCDC658FCB56 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
21:29:46.0156 2540 CmBatt - ok
21:29:46.0187 2540 [ 0CA25E686A4928484E9FDABD168AB629 ] cmdide C:\Windows\system32\drivers\cmdide.sys
21:29:46.0203 2540 cmdide - ok
21:29:46.0234 2540 [ 6AFEF0B60FA25DE07C0968983EE4F60A ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
21:29:46.0234 2540 Compbatt - ok
21:29:46.0250 2540 COMSysApp - ok
21:29:46.0265 2540 [ 741E9DFF4F42D2D8477D0FC1DC0DF871 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
21:29:46.0281 2540 crcdisk - ok
21:29:46.0312 2540 [ 1F07BECDCA750766A96CDA811BA86410 ] Crusoe C:\Windows\system32\drivers\crusoe.sys
21:29:46.0328 2540 Crusoe - ok
21:29:46.0390 2540 [ F1E8C34892336D33EDDCDFE44E474F64 ] CryptSvc C:\Windows\system32\cryptsvc.dll
21:29:46.0421 2540 CryptSvc - ok
21:29:46.0499 2540 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] DcomLaunch C:\Windows\system32\rpcss.dll
21:29:46.0655 2540 DcomLaunch - ok
21:29:46.0702 2540 [ 622C41A07CA7E6DD91770F50D532CB6C ] DfsC C:\Windows\system32\Drivers\dfsc.sys
21:29:46.0718 2540 DfsC - ok
21:29:46.0827 2540 [ 2CC3DCFB533A1035B13DCAB6160AB38B ] DFSR C:\Windows\system32\DFSR.exe
21:29:46.0921 2540 DFSR - ok
21:29:46.0952 2540 DgiVecp - ok
21:29:47.0030 2540 [ 9028559C132146FB75EB7ACF384B086A ] Dhcp C:\Windows\System32\dhcpcsvc.dll
21:29:47.0077 2540 Dhcp - ok
21:29:47.0186 2540 [ 5D4AEFC3386920236A548271F8F1AF6A ] disk C:\Windows\system32\drivers\disk.sys
21:29:47.0186 2540 disk - ok
21:29:47.0248 2540 [ 57D762F6F5974AF0DA2BE88A3349BAAA ] Dnscache C:\Windows\System32\dnsrslvr.dll
21:29:47.0295 2540 Dnscache - ok
21:29:47.0342 2540 [ 324FD74686B1EF5E7C19A8AF49E748F6 ] dot3svc C:\Windows\System32\dot3svc.dll
21:29:47.0404 2540 dot3svc - ok
21:29:47.0467 2540 [ A622E888F8AA2F6B49E9BC466F0E5DEF ] DPS C:\Windows\system32\dps.dll
21:29:47.0513 2540 DPS - ok
21:29:47.0560 2540 [ 97FEF831AB90BEE128C9AF390E243F80 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
21:29:47.0576 2540 drmkaud - ok
21:29:47.0623 2540 [ C68AC676B0EF30CFBB1080ADCE49EB1F ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
21:29:47.0654 2540 DXGKrnl - ok
21:29:47.0716 2540 [ 5425F74AC0C1DBD96A1E04F17D63F94C ] E1G60 C:\Windows\system32\DRIVERS\E1G60I32.sys
21:29:47.0732 2540 E1G60 - ok
21:29:47.0779 2540 [ C0B95E40D85CD807D614E264248A45B9 ] EapHost C:\Windows\System32\eapsvc.dll
21:29:47.0841 2540 EapHost - ok
21:29:47.0888 2540 [ 7F64EA048DCFAC7ACF8B4D7B4E6FE371 ] Ecache C:\Windows\system32\drivers\ecache.sys
21:29:47.0903 2540 Ecache - ok
21:29:47.0950 2540 [ 23B62471681A124889978F6295B3F4C6 ] elxstor C:\Windows\system32\drivers\elxstor.sys
21:29:47.0966 2540 elxstor - ok
21:29:48.0044 2540 [ 4E6B23DFC917EA39306B529B773950F4 ] EMDMgmt C:\Windows\system32\emdmgmt.dll
21:29:48.0106 2540 EMDMgmt - ok
21:29:48.0153 2540 [ 3DB974F3935483555D7148663F726C61 ] ErrDev C:\Windows\system32\drivers\errdev.sys
21:29:48.0169 2540 ErrDev - ok
21:29:48.0231 2540 [ 67058C46504BC12D821F38CF99B7B28F ] EventSystem C:\Windows\system32\es.dll
21:29:48.0293 2540 EventSystem - ok
21:29:48.0371 2540 [ 22B408651F9123527BCEE54B4F6C5CAE ] exfat C:\Windows\system32\drivers\exfat.sys
21:29:48.0387 2540 exfat - ok
21:29:48.0434 2540 [ 1E9B9A70D332103C52995E957DC09EF8 ] fastfat C:\Windows\system32\drivers\fastfat.sys
21:29:48.0434 2540 fastfat - ok
21:29:48.0481 2540 [ AFE1E8B9782A0DD7FB46BBD88E43F89A ] fdc C:\Windows\system32\DRIVERS\fdc.sys
21:29:48.0496 2540 fdc - ok
21:29:48.0527 2540 [ 6629B5F0E98151F4AFDD87567EA32BA3 ] fdPHost C:\Windows\system32\fdPHost.dll
21:29:48.0590 2540 fdPHost - ok
21:29:48.0605 2540 [ 89ED56DCE8E47AF40892778A5BD31FD2 ] FDResPub C:\Windows\system32\fdrespub.dll
21:29:48.0668 2540 FDResPub - ok
21:29:48.0715 2540 [ A8C0139A884861E3AAE9CFE73B208A9F ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
21:29:48.0715 2540 FileInfo - ok
21:29:48.0746 2540 [ 0AE429A696AECBC5970E3CF2C62635AE ] Filetrace C:\Windows\system32\drivers\filetrace.sys
21:29:48.0761 2540 Filetrace - ok
21:29:48.0777 2540 [ 85B7CF99D532820495D68D747FDA9EBD ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
21:29:48.0793 2540 flpydisk - ok
21:29:48.0824 2540 [ 01334F9EA68E6877C4EF05D3EA8ABB05 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
21:29:48.0839 2540 FltMgr - ok
21:29:48.0964 2540 [ 8CE364388C8ECA59B14B539179276D44 ] FontCache C:\Windows\system32\FntCache.dll
21:29:49.0042 2540 FontCache - ok
21:29:49.0136 2540 [ C7FBDD1ED42F82BFA35167A5C9803EA3 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
21:29:49.0136 2540 FontCache3.0.0.0 - ok
21:29:49.0183 2540 [ B972A66758577E0BFD1DE0F91AAA27B5 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
21:29:49.0183 2540 Fs_Rec - ok
21:29:49.0229 2540 [ 34582A6E6573D54A07ECE5FE24A126B5 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
21:29:49.0229 2540 gagp30kx - ok
21:29:49.0323 2540 [ 31B40F40E09513ADDC460F6A297AD474 ] ghaio C:\Program Files\ASUS\NB Probe\SPM\ghaio.sys
21:29:49.0323 2540 ghaio - ok
21:29:49.0417 2540 [ F0187E45268E86AAAA932CBD9087BEA8 ] GoogleDesktopManager-110309-193829 C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
21:29:49.0432 2540 GoogleDesktopManager-110309-193829 - ok
21:29:49.0479 2540 [ CD5D0AEEE35DFD4E986A5AA1500A6E66 ] gpsvc C:\Windows\System32\gpsvc.dll
21:29:49.0557 2540 gpsvc - ok
21:29:49.0619 2540 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
21:29:49.0635 2540 gupdate - ok
21:29:49.0651 2540 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
21:29:49.0666 2540 gupdatem - ok
21:29:49.0729 2540 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
21:29:49.0729 2540 gusvc - ok
21:29:49.0791 2540 [ CB04C744BE0A61B1D648FAED182C3B59 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
21:29:49.0807 2540 HdAudAddService - ok
21:29:49.0869 2540 [ 062452B7FFD68C8C042A6261FE8DFF4A ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
21:29:49.0885 2540 HDAudBus - ok
21:29:49.0916 2540 [ 1338520E78D90154ED6BE8F84DE5FCEB ] HidBth C:\Windows\system32\drivers\hidbth.sys
21:29:49.0931 2540 HidBth - ok
21:29:49.0963 2540 [ FF3160C3A2445128C5A6D9B076DA519E ] HidIr C:\Windows\system32\drivers\hidir.sys
21:29:49.0978 2540 HidIr - ok
21:29:50.0009 2540 [ 84067081F3318162797385E11A8F0582 ] hidserv C:\Windows\system32\hidserv.dll
21:29:50.0072 2540 hidserv - ok
21:29:50.0119 2540 [ CCA4B519B17E23A00B826C55716809CC ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
21:29:50.0119 2540 HidUsb - ok
21:29:50.0165 2540 [ D8AD255B37DA92434C26E4876DB7D418 ] hkmsvc C:\Windows\system32\kmsvc.dll
21:29:50.0259 2540 hkmsvc - ok
21:29:50.0290 2540 [ 16EE7B23A009E00D835CDB79574A91A6 ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
21:29:50.0306 2540 HpCISSs - ok
21:29:50.0368 2540 [ 0EEECA26C8D4BDE2A4664DB058A81937 ] HTTP C:\Windows\system32\drivers\HTTP.sys
21:29:50.0384 2540 HTTP - ok
21:29:50.0431 2540 [ C6B032D69650985468160FC9937CF5B4 ] i2omp C:\Windows\system32\drivers\i2omp.sys
21:29:50.0431 2540 i2omp - ok
21:29:50.0477 2540 [ 22D56C8184586B7A1F6FA60BE5F5A2BD ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
21:29:50.0493 2540 i8042prt - ok
21:29:50.0540 2540 [ E5A0034847537EAEE3C00349D5C34C5F ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
21:29:50.0555 2540 iaStor - ok
21:29:50.0587 2540 [ 54155EA1B0DF185878E0FC9EC3AC3A14 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
21:29:50.0602 2540 iaStorV - ok
21:29:50.0680 2540 [ 98477B08E61945F974ED9FDC4CB6BDAB ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
21:29:50.0711 2540 idsvc - ok
21:29:50.0852 2540 [ 9378D57E2B96C0A185D844770AD49948 ] igfx C:\Windows\system32\DRIVERS\igdkmd32.sys
21:29:50.0899 2540 igfx - ok
21:29:50.0930 2540 [ 2D077BF86E843F901D8DB709C95B49A5 ] iirsp C:\Windows\system32\drivers\iirsp.sys
21:29:50.0930 2540 iirsp - ok
21:29:51.0008 2540 [ 9908D8A397B76CD8D31D0D383C5773C9 ] IKEEXT C:\Windows\System32\ikeext.dll
21:29:51.0086 2540 IKEEXT - ok
21:29:51.0211 2540 [ 4E38A2883DF3BA382A59132B3E7D709E ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
21:29:51.0289 2540 IntcAzAudAddService - ok
21:29:51.0367 2540 [ 83AA759F3189E6370C30DE5DC5590718 ] intelide C:\Windows\system32\drivers\intelide.sys
21:29:51.0367 2540 intelide - ok
21:29:51.0429 2540 [ 224191001E78C89DFA78924C3EA595FF ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
21:29:51.0445 2540 intelppm - ok
21:29:51.0476 2540 [ 9AC218C6E6105477484C6FDBE7D409A4 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
21:29:51.0554 2540 IPBusEnum - ok
21:29:51.0585 2540 [ 62C265C38769B864CB25B4BCF62DF6C3 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
21:29:51.0585 2540 IpFilterDriver - ok
21:29:51.0647 2540 [ 1998BD97F950680BB55F55A7244679C2 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
21:29:51.0725 2540 iphlpsvc - ok
21:29:51.0741 2540 IpInIp - ok
21:29:51.0803 2540 [ B25AAF203552B7B3491139D582B39AD1 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
21:29:51.0803 2540 IPMIDRV - ok
21:29:51.0835 2540 [ 8793643A67B42CEC66490B2A0CF92D68 ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
21:29:51.0850 2540 IPNAT - ok
21:29:51.0881 2540 [ 109C0DFB82C3632FBD11949B73AEEAC9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
21:29:51.0881 2540 IRENUM - ok
21:29:51.0928 2540 [ 6C70698A3E5C4376C6AB5C7C17FB0614 ] isapnp C:\Windows\system32\drivers\isapnp.sys
21:29:51.0944 2540 isapnp - ok
21:29:51.0975 2540 [ 232FA340531D940AAC623B121A595034 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
21:29:51.0991 2540 iScsiPrt - ok
21:29:52.0022 2540 [ BCED60D16156E428F8DF8CF27B0DF150 ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
21:29:52.0037 2540 iteatapi - ok
21:29:52.0084 2540 [ 06FA654504A498C30ADCA8BEC4E87E7E ] iteraid C:\Windows\system32\drivers\iteraid.sys
21:29:52.0100 2540 iteraid - ok
21:29:52.0131 2540 [ 37605E0A8CF00CBBA538E753E4344C6E ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
21:29:52.0131 2540 kbdclass - ok
21:29:52.0178 2540 [ 18247836959BA67E3511B62846B9C2E0 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
21:29:52.0193 2540 kbdhid - ok
21:29:52.0240 2540 [ CC2A86D7BBF14977340DCA61BBCBA771 ] kbfiltr C:\Windows\system32\DRIVERS\kbfiltr.sys
21:29:52.0240 2540 kbfiltr - ok
21:29:52.0287 2540 [ A3E186B4B935905B829219502557314E ] KeyIso C:\Windows\system32\lsass.exe
21:29:52.0381 2540 KeyIso - ok
21:29:52.0443 2540 [ 4A1445EFA932A3BAF5BDB02D7131EE20 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
21:29:52.0459 2540 KSecDD - ok
21:29:52.0521 2540 [ 8078F8F8F7A79E2E6B494523A828C585 ] KtmRm C:\Windows\system32\msdtckrm.dll
21:29:52.0630 2540 KtmRm - ok
21:29:52.0677 2540 [ 1BF5EEBFD518DD7298434D8C862F825D ] LanmanServer C:\Windows\system32\srvsvc.dll
21:29:52.0849 2540 LanmanServer - ok
21:29:53.0020 2540 [ 1DB69705B695B987082C8BAEC0C6B34F ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
21:29:53.0223 2540 LanmanWorkstation - ok
21:29:53.0317 2540 [ ABF90FC5A127F481219B873C1B8DFC1C ] LightScribeService C:\Program Files\Common Files\LightScribe\LSSrvc.exe
21:29:53.0317 2540 LightScribeService - ok
21:29:53.0363 2540 [ D1C5883087A0C3F1344D9D55A44901F6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
21:29:53.0363 2540 lltdio - ok
21:29:53.0426 2540 [ 2D5A428872F1442631D0959A34ABFF63 ] lltdsvc C:\Windows\System32\lltdsvc.dll
21:29:53.0519 2540 lltdsvc - ok
21:29:53.0551 2540 [ 35D40113E4A5B961B6CE5C5857702518 ] lmhosts C:\Windows\System32\lmhsvc.dll
21:29:53.0644 2540 lmhosts - ok
21:29:53.0691 2540 [ C7E15E82879BF3235B559563D4185365 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
21:29:53.0691 2540 LSI_FC - ok
21:29:53.0722 2540 [ EE01EBAE8C9BF0FA072E0FF68718920A ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
21:29:53.0738 2540 LSI_SAS - ok
21:29:53.0769 2540 [ 912A04696E9CA30146A62AFA1463DD5C ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
21:29:53.0785 2540 LSI_SCSI - ok
21:29:53.0816 2540 [ 8F5C7426567798E62A3B3614965D62CC ] luafv C:\Windows\system32\drivers\luafv.sys
21:29:53.0816 2540 luafv - ok
21:29:53.0878 2540 [ 0001CE609D66632FA17B84705F658879 ] megasas C:\Windows\system32\drivers\megasas.sys
21:29:53.0894 2540 megasas - ok
21:29:53.0941 2540 [ C252F32CD9A49DBFC25ECF26EBD51A99 ] MegaSR C:\Windows\system32\drivers\megasr.sys
21:29:53.0956 2540 MegaSR - ok
21:29:53.0987 2540 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] MMCSS C:\Windows\system32\mmcss.dll
21:29:54.0081 2540 MMCSS - ok
21:29:54.0112 2540 [ E13B5EA0F51BA5B1512EC671393D09BA ] Modem C:\Windows\system32\drivers\modem.sys
21:29:54.0128 2540 Modem - ok
21:29:54.0175 2540 [ 0A9BB33B56E294F686ABB7C1E4E2D8A8 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
21:29:54.0190 2540 monitor - ok
21:29:54.0237 2540 [ 5BF6A1326A335C5298477754A506D263 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
21:29:54.0253 2540 mouclass - ok
21:29:54.0268 2540 [ 93B8D4869E12CFBE663915502900876F ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
21:29:54.0284 2540 mouhid - ok
21:29:54.0315 2540 [ BDAFC88AA6B92F7842416EA6A48E1600 ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
21:29:54.0315 2540 MountMgr - ok
21:29:54.0409 2540 [ 8A7C8F4C713E70D73946833D76B77035 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
21:29:54.0409 2540 MozillaMaintenance - ok
21:29:54.0471 2540 [ 511D011289755DD9F9A7579FB0B064E6 ] mpio C:\Windows\system32\drivers\mpio.sys
21:29:54.0471 2540 mpio - ok
21:29:54.0502 2540 [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
21:29:54.0518 2540 mpsdrv - ok
21:29:54.0565 2540 [ 5DE62C6E9108F14F6794060A9BDECAEC ] MpsSvc C:\Windows\system32\mpssvc.dll
21:29:54.0674 2540 MpsSvc - ok
21:29:54.0705 2540 [ 4FBBB70D30FD20EC51F80061703B001E ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
21:29:54.0721 2540 Mraid35x - ok
21:29:54.0767 2540 [ 82CEA0395524AACFEB58BA1448E8325C ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
21:29:54.0783 2540 MRxDAV - ok
21:29:54.0814 2540 [ 1E94971C4B446AB2290DEB71D01CF0C2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
21:29:54.0830 2540 mrxsmb - ok
21:29:54.0877 2540 [ 4FCCB34D793B116423209C0F8B7A3B03 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
21:29:54.0892 2540 mrxsmb10 - ok
21:29:54.0908 2540 [ C3CB1B40AD4A0124D617A1199B0B9D7C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
21:29:54.0939 2540 mrxsmb20 - ok
21:29:54.0986 2540 [ 28023E86F17001F7CD9B15A5BC9AE07D ] msahci C:\Windows\system32\drivers\msahci.sys
21:29:54.0986 2540 msahci - ok
21:29:55.0017 2540 [ 4468B0F385A86ECDDAF8D3CA662EC0E7 ] msdsm C:\Windows\system32\drivers\msdsm.sys
21:29:55.0033 2540 msdsm - ok
21:29:55.0079 2540 [ FD7520CC3A80C5FC8C48852BB24C6DED ] MSDTC C:\Windows\System32\msdtc.exe
21:29:55.0189 2540 MSDTC - ok
21:29:55.0220 2540 [ A9927F4A46B816C92F461ACB90CF8515 ] Msfs C:\Windows\system32\drivers\Msfs.sys
21:29:55.0235 2540 Msfs - ok
21:29:55.0282 2540 [ 0F400E306F385C56317357D6DEA56F62 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
21:29:55.0298 2540 msisadrv - ok
21:29:55.0329 2540 [ 85466C0757A23D9A9AECDC0755203CB2 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
21:29:55.0423 2540 MSiSCSI - ok
21:29:55.0423 2540 msiserver - ok
21:29:55.0469 2540 [ D8C63D34D9C9E56C059E24EC7185CC07 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
21:29:55.0485 2540 MSKSSRV - ok
21:29:55.0501 2540 [ 1D373C90D62DDB641D50E55B9E78D65E ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
21:29:55.0532 2540 MSPCLOCK - ok
21:29:55.0547 2540 [ B572DA05BF4E098D4BBA3A4734FB505B ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
21:29:55.0547 2540 MSPQM - ok
21:29:55.0594 2540 [ B49456D70555DE905C311BCDA6EC6ADB ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
21:29:55.0610 2540 MsRPC - ok
21:29:55.0641 2540 [ E384487CB84BE41D09711C30CA79646C ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
21:29:55.0657 2540 mssmbios - ok
21:29:55.0672 2540 [ 7199C1EEC1E4993CAF96B8C0A26BD58A ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
21:29:55.0688 2540 MSTEE - ok
21:29:55.0750 2540 [ 97AFFA9D95FFE20EEE6229BC6BE166CF ] MTsensor C:\Windows\system32\DRIVERS\ATKACPI.sys
21:29:55.0750 2540 MTsensor - ok
21:29:55.0766 2540 [ 6A57B5733D4CB702C8EA4542E836B96C ] Mup C:\Windows\system32\Drivers\mup.sys
21:29:55.0781 2540 Mup - ok
21:29:55.0828 2540 [ E4EAF0C5C1B41B5C83386CF212CA9584 ] napagent C:\Windows\system32\qagentRT.dll
21:29:55.0984 2540 napagent - ok
21:29:56.0031 2540 [ 85C44FDFF9CF7E72A40DCB7EC06A4416 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
21:29:56.0047 2540 NativeWifiP - ok
21:29:56.0125 2540 [ 1357274D1883F68300AEADD15D7BBB42 ] NDIS C:\Windows\system32\drivers\ndis.sys
21:29:56.0140 2540 NDIS - ok
21:29:56.0171 2540 [ 0E186E90404980569FB449BA7519AE61 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
21:29:56.0187 2540 NdisTapi - ok
21:29:56.0218 2540 [ D6973AA34C4D5D76C0430B181C3CD389 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
21:29:56.0234 2540 Ndisuio - ok
21:29:56.0281 2540 [ 818F648618AE34F729FDB47EC68345C3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
21:29:56.0296 2540 NdisWan - ok
21:29:56.0327 2540 [ 71DAB552B41936358F3B541AE5997FB3 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
21:29:56.0343 2540 NDProxy - ok
21:29:56.0359 2540 [ BCD093A5A6777CF626434568DC7DBA78 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
21:29:56.0374 2540 NetBIOS - ok
21:29:56.0421 2540 [ ECD64230A59CBD93C85F1CD1CAB9F3F6 ] netbt C:\Windows\system32\DRIVERS\netbt.sys
21:29:56.0437 2540 netbt - ok
21:29:56.0468 2540 [ A3E186B4B935905B829219502557314E ] Netlogon C:\Windows\system32\lsass.exe
21:29:56.0561 2540 Netlogon - ok
21:29:56.0608 2540 [ C8052711DAECC48B982434C5116CA401 ] Netman C:\Windows\System32\netman.dll
21:29:56.0733 2540 Netman - ok
21:29:56.0764 2540 [ 2EF3BBE22E5A5ACD1428EE387A0D0172 ] netprofm C:\Windows\System32\netprofm.dll
21:29:56.0889 2540 netprofm - ok
21:29:56.0998 2540 [ D6C4E4A39A36029AC0813D476FBD0248 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
21:29:56.0998 2540 NetTcpPortSharing - ok
21:29:57.0045 2540 [ 2E7FB731D4790A1BC6270ACCEFACB36E ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
21:29:57.0061 2540 nfrd960 - ok
21:29:57.0123 2540 [ 2997B15415F9BBE05B5A4C1C85E0C6A2 ] NlaSvc C:\Windows\System32\nlasvc.dll
21:29:57.0248 2540 NlaSvc - ok
21:29:57.0279 2540 [ D36F239D7CCE1931598E8FB90A0DBC26 ] Npfs C:\Windows\system32\drivers\Npfs.sys
21:29:57.0279 2540 Npfs - ok
21:29:57.0326 2540 [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD ] nsi C:\Windows\system32\nsisvc.dll
21:29:57.0451 2540 nsi - ok
21:29:57.0466 2540 [ 609773E344A97410CE4EBF74A8914FCF ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
21:29:57.0482 2540 nsiproxy - ok
21:29:57.0560 2540 [ 6A4A98CEE84CF9E99564510DDA4BAA47 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
21:29:57.0607 2540 Ntfs - ok
21:29:57.0638 2540 [ E875C093AEC0C978A90F30C9E0DFBB72 ] ntrigdigi C:\Windows\system32\drivers\ntrigdigi.sys
21:29:57.0653 2540 ntrigdigi - ok
21:29:57.0685 2540 [ C5DBBCDA07D780BDA9B685DF333BB41E ] Null C:\Windows\system32\drivers\Null.sys
21:29:57.0685 2540 Null - ok
21:29:57.0716 2540 [ 2EDF9E7751554B42CBB60116DE727101 ] nvraid C:\Windows\system32\drivers\nvraid.sys
21:29:57.0731 2540 nvraid - ok
21:29:57.0763 2540 [ ABED0C09758D1D97DB0042DBB2688177 ] nvstor C:\Windows\system32\drivers\nvstor.sys
21:29:57.0778 2540 nvstor - ok
21:29:57.0809 2540 [ 18BBDF913916B71BD54575BDB6EEAC0B ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
21:29:57.0825 2540 nv_agp - ok
21:29:57.0856 2540 NwlnkFlt - ok
21:29:57.0856 2540 NwlnkFwd - ok
21:29:57.0965 2540 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
21:29:58.0028 2540 odserv - ok
21:29:58.0090 2540 [ 790E27C3DB53410B40FF9EF2FD10A1D9 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
21:29:58.0106 2540 ohci1394 - ok
21:29:58.0153 2540 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:29:58.0168 2540 ose - ok
21:29:58.0246 2540 [ 0C8E8E61AD1EB0B250B846712C917506 ] p2pimsvc C:\Windows\system32\p2psvc.dll
21:29:58.0402 2540 p2pimsvc - ok
21:29:58.0433 2540 [ 0C8E8E61AD1EB0B250B846712C917506 ] p2psvc C:\Windows\system32\p2psvc.dll
21:29:58.0589 2540 p2psvc - ok
21:29:58.0636 2540 [ 0FA9B5055484649D63C303FE404E5F4D ] Parport C:\Windows\system32\drivers\parport.sys
21:29:58.0652 2540 Parport - ok
21:29:58.0683 2540 [ B9C2B89F08670E159F7181891E449CD9 ] partmgr C:\Windows\system32\drivers\partmgr.sys
21:29:58.0699 2540 partmgr - ok
21:29:58.0730 2540 [ 4F9A6A8A31413180D0FCB279AD5D8112 ] Parvdm C:\Windows\system32\drivers\parvdm.sys
21:29:58.0745 2540 Parvdm - ok
21:29:58.0777 2540 [ C6276AD11F4BB49B58AA1ED88537F14A ] PcaSvc C:\Windows\System32\pcasvc.dll
21:29:58.0917 2540 PcaSvc - ok
21:29:58.0964 2540 [ 941DC1D19E7E8620F40BBC206981EFDB ] pci C:\Windows\system32\drivers\pci.sys
21:29:58.0979 2540 pci - ok
21:29:59.0011 2540 [ FC175F5DDAB666D7F4D17449A547626F ] pciide C:\Windows\system32\drivers\pciide.sys
21:29:59.0026 2540 pciide - ok
21:29:59.0073 2540 [ 3BB2244F343B610C29C98035504C9B75 ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
21:29:59.0089 2540 pcmcia - ok
21:29:59.0167 2540 [ 6349F6ED9C623B44B52EA3C63C831A92 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
21:29:59.0213 2540 PEAUTH - ok
21:29:59.0338 2540 [ B1689DF169143F57053F795390C99DB3 ] pla C:\Windows\system32\pla.dll
21:29:59.0525 2540 pla - ok
21:29:59.0588 2540 [ C5E7F8A996EC0A82D508FD9064A5569E ] PlugPlay C:\Windows\system32\umpnpmgr.dll
21:29:59.0759 2540 PlugPlay - ok
21:29:59.0884 2540 [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
21:30:00.0040 2540 PNRPAutoReg - ok
21:30:00.0071 2540 [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPsvc C:\Windows\system32\p2psvc.dll
21:30:00.0227 2540 PNRPsvc - ok
21:30:00.0290 2540 [ D0494460421A03CD5225CCA0059AA146 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
21:30:00.0368 2540 PolicyAgent - ok
21:30:00.0430 2540 [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
21:30:00.0446 2540 PptpMiniport - ok
21:30:00.0477 2540 [ 2027293619DD0F047C584CF2E7DF4FFD ] Processor C:\Windows\system32\drivers\processr.sys
21:30:00.0493 2540 Processor - ok
21:30:00.0539 2540 [ 0508FAA222D28835310B7BFCA7A77346 ] ProfSvc C:\Windows\system32\profsvc.dll
21:30:00.0680 2540 ProfSvc - ok
21:30:00.0758 2540 [ A3E186B4B935905B829219502557314E ] ProtectedStorage C:\Windows\system32\lsass.exe
21:30:00.0867 2540 ProtectedStorage - ok
21:30:00.0898 2540 [ 99514FAA8DF93D34B5589187DB3AA0BA ] PSched C:\Windows\system32\DRIVERS\pacer.sys
21:30:00.0914 2540 PSched - ok
21:30:00.0929 2540 [ 49452BFCEC22F36A7A9B9C2181BC3042 ] PxHelp20 C:\Windows\system32\Drivers\PxHelp20.sys
21:30:00.0945 2540 PxHelp20 - ok
21:30:01.0039 2540 [ 0A6DB55AFB7820C99AA1F3A1D270F4F6 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
21:30:01.0085 2540 ql2300 - ok
21:30:01.0117 2540 [ 81A7E5C076E59995D54BC1ED3A16E60B ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
21:30:01.0132 2540 ql40xx - ok
21:30:01.0179 2540 [ E9ECAE663F47E6CB43962D18AB18890F ] QWAVE C:\Windows\system32\qwave.dll
21:30:01.0319 2540 QWAVE - ok
21:30:01.0351 2540 [ 9F5E0E1926014D17486901C88ECA2DB7 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
21:30:01.0366 2540 QWAVEdrv - ok
21:30:01.0397 2540 [ 147D7F9C556D259924351FEB0DE606C3 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
21:30:01.0413 2540 RasAcd - ok
21:30:01.0444 2540 [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F ] RasAuto C:\Windows\System32\rasauto.dll
21:30:01.0600 2540 RasAuto - ok
21:30:01.0678 2540 [ A214ADBAF4CB47DD2728859EF31F26B0 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
21:30:01.0694 2540 Rasl2tp - ok
21:30:01.0756 2540 [ 75D47445D70CA6F9F894B032FBC64FCF ] RasMan C:\Windows\System32\rasmans.dll
21:30:01.0912 2540 RasMan - ok
21:30:01.0975 2540 [ 509A98DD18AF4375E1FC40BC175F1DEF ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
21:30:01.0990 2540 RasPppoe - ok
21:30:02.0021 2540 [ 2005F4A1E05FA09389AC85840F0A9E4D ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
21:30:02.0037 2540 RasSstp - ok
21:30:02.0084 2540 [ B14C9D5B9ADD2F84F70570BBBFAA7935 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
21:30:02.0115 2540 rdbss - ok
21:30:02.0162 2540 [ 89E59BE9A564262A3FB6C4F4F1CD9899 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
21:30:02.0177 2540 RDPCDD - ok
21:30:02.0209 2540 [ FBC0BACD9C3D7F6956853F64A66E252D ] rdpdr C:\Windows\system32\drivers\rdpdr.sys
21:30:02.0224 2540 rdpdr - ok
21:30:02.0240 2540 [ 9D91FE5286F748862ECFFA05F8A0710C ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
21:30:02.0255 2540 RDPENCDD - ok
21:30:02.0318 2540 [ C127EBD5AFAB31524662C48DFCEB773A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
21:30:02.0333 2540 RDPWD - ok
21:30:02.0380 2540 [ BCDD6B4804D06B1F7EBF29E53A57ECE9 ] RemoteAccess C:\Windows\System32\mprdim.dll
21:30:02.0489 2540 RemoteAccess - ok
21:30:02.0536 2540 [ 9E6894EA18DAFF37B63E1005F83AE4AB ] RemoteRegistry C:\Windows\system32\regsvc.dll
21:30:02.0692 2540 RemoteRegistry - ok
21:30:02.0801 2540 [ 06A49B7BDC36CFBF97DD90804F833369 ] RichVideo C:\Program Files\CyberLink\Shared Files\RichVideo.exe
21:30:02.0817 2540 RichVideo - ok
21:30:02.0864 2540 [ C35CA13D3627EBD9DD12A23CE781BC3D ] rimmptsk C:\Windows\system32\DRIVERS\rimmptsk.sys
21:30:02.0879 2540 rimmptsk - ok
21:30:02.0926 2540 [ C398BCA91216755B098679A8DA8A2300 ] rimsptsk C:\Windows\system32\DRIVERS\rimsptsk.sys
21:30:02.0942 2540 rimsptsk - ok
21:30:02.0973 2540 [ 5123F83CBC4349D065534EEB6BBDC42B ] RpcLocator C:\Windows\system32\locator.exe
21:30:03.0082 2540 RpcLocator - ok
21:30:03.0113 2540 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] RpcSs C:\Windows\system32\rpcss.dll
21:30:03.0285 2540 RpcSs - ok
21:30:03.0316 2540 [ 9C508F4074A39E8B4B31D27198146FAD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
21:30:03.0332 2540 rspndr - ok
21:30:03.0379 2540 [ 5C5612756B380BCEDBF566A780FF9AFE ] RTL8023xp C:\Windows\system32\DRIVERS\Rtnicxp.sys
21:30:03.0394 2540 RTL8023xp - ok
21:30:03.0410 2540 [ A3E186B4B935905B829219502557314E ] SamSs C:\Windows\system32\lsass.exe
21:30:03.0519 2540 SamSs - ok
21:30:03.0581 2540 [ 3CE8F073A557E172B330109436984E30 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
21:30:03.0597 2540 sbp2port - ok
21:30:03.0675 2540 [ 77B7A11A0C3D78D3386398FBBEA1B632 ] SCardSvr C:\Windows\System32\SCardSvr.dll
21:30:03.0831 2540 SCardSvr - ok
21:30:03.0893 2540 [ 1A58069DB21D05EB2AB58EE5753EBE8D ] Schedule C:\Windows\system32\schedsvc.dll
21:30:04.0065 2540 Schedule - ok
21:30:04.0096 2540 [ 312EC3E37A0A1F2006534913E37B4423 ] SCPolicySvc C:\Windows\System32\certprop.dll
21:30:04.0112 2540 SCPolicySvc - ok
21:30:04.0174 2540 [ 8F36B54688C31EED4580129040C6A3D3 ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys
21:30:04.0190 2540 sdbus - ok
21:30:04.0221 2540 [ 716313D9F6B0529D03F726D5AAF6F191 ] SDRSVC C:\Windows\System32\SDRSVC.dll
21:30:04.0393 2540 SDRSVC - ok
21:30:04.0424 2540 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
21:30:04.0439 2540 secdrv - ok
21:30:04.0455 2540 [ FD5199D4D8A521005E4B5EE7FE00FA9B ] seclogon C:\Windows\system32\seclogon.dll
21:30:04.0627 2540 seclogon - ok
21:30:04.0658 2540 [ A9BBAB5759771E523F55563D6CBE140F ] SENS C:\Windows\System32\sens.dll
21:30:04.0829 2540 SENS - ok
21:30:04.0876 2540 [ CE9EC966638EF0B10B864DDEDF62A099 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
21:30:04.0892 2540 Serenum - ok
21:30:04.0923 2540 [ 6D663022DB3E7058907784AE14B69898 ] Serial C:\Windows\system32\DRIVERS\serial.sys
21:30:04.0939 2540 Serial - ok
21:30:04.0970 2540 [ 8AF3D28A879BF75DB53A0EE7A4289624 ] sermouse C:\Windows\system32\drivers\sermouse.sys
21:30:04.0985 2540 sermouse - ok
21:30:05.0048 2540 [ D2193326F729B163125610DBF3E17D57 ] SessionEnv C:\Windows\system32\sessenv.dll
21:30:05.0219 2540 SessionEnv - ok
21:30:05.0266 2540 [ 3EFA810BDCA87F6ECC24F9832243FE86 ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
21:30:05.0282 2540 sffdisk - ok
21:30:05.0313 2540 [ E95D451F7EA3E583AEC75F3B3EE42DC5 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
21:30:05.0329 2540 sffp_mmc - ok
21:30:05.0391 2540 [ 9F66A46C55D6F1CCABC79BB7AFCCC545 ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
21:30:05.0391 2540 sffp_sd - ok
21:30:05.0422 2540 [ C33BFBD6E9E41FCD9FFEF9729E9FAED6 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
21:30:05.0438 2540 sfloppy - ok
21:30:05.0485 2540 [ E1499BD0FF76B1B2FBBF1AF339D91165 ] SharedAccess C:\Windows\System32\ipnathlp.dll
21:30:05.0578 2540 SharedAccess - ok
21:30:05.0609 2540 [ C7230FBEE14437716701C15BE02C27B8 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
21:30:05.0781 2540 ShellHWDetection - ok
21:30:05.0875 2540 [ 1D76624A09A054F682D746B924E2DBC3 ] sisagp C:\Windows\system32\drivers\sisagp.sys
21:30:05.0890 2540 sisagp - ok
21:30:05.0921 2540 [ 43CB7AA756C7DB280D01DA9B676CFDE2 ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
21:30:05.0937 2540 SiSRaid2 - ok
21:30:05.0968 2540 [ A99C6C8B0BAA970D8AA59DDC50B57F94 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
21:30:05.0984 2540 SiSRaid4 - ok
21:30:06.0155 2540 [ 862BB4CBC05D80C5B45BE430E5EF872F ] slsvc C:\Windows\system32\SLsvc.exe
21:30:06.0374 2540 slsvc - ok
21:30:06.0421 2540 [ 6EDC422215CD78AA8A9CDE6B30ABBD35 ] SLUINotify C:\Windows\system32\SLUINotify.dll
21:30:06.0592 2540 SLUINotify - ok
21:30:06.0670 2540 [ 7B75299A4D201D6A6533603D6914AB04 ] Smb C:\Windows\system32\DRIVERS\smb.sys
21:30:06.0686 2540 Smb - ok
21:30:06.0748 2540 [ 34D634366FC57524F5932EAEC40E4FCB ] smserial C:\Windows\system32\DRIVERS\smserial.sys
21:30:06.0795 2540 smserial - ok
21:30:06.0842 2540 [ 2A146A055B4401C16EE62D18B8E2A032 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
21:30:07.0013 2540 SNMPTRAP - ok
21:30:07.0076 2540 [ 7AEBDEEF071FE28B0EEF2CDD69102BFF ] spldr C:\Windows\system32\drivers\spldr.sys
21:30:07.0091 2540 spldr - ok
21:30:07.0154 2540 [ 739DB668DBD812285ECC553E64A5E212 ] spmgr C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe
21:30:07.0169 2540 spmgr - ok
21:30:07.0216 2540 [ 8554097E5136C3BF9F69FE578A1B35F4 ] Spooler C:\Windows\System32\spoolsv.exe
21:30:07.0388 2540 Spooler - ok
21:30:07.0466 2540 [ CDDDEC541BC3C96F91ECB48759673505 ] sptd C:\Windows\system32\Drivers\sptd.sys
21:30:07.0481 2540 Suspicious file (NoAccess): C:\Windows\system32\Drivers\sptd.sys. md5: CDDDEC541BC3C96F91ECB48759673505
21:30:07.0497 2540 sptd ( LockedFile.Multi.Generic ) - warning
21:30:07.0497 2540 sptd - detected LockedFile.Multi.Generic (1)
21:30:07.0559 2540 [ 41987F9FC0E61ADF54F581E15029AD91 ] srv C:\Windows\system32\DRIVERS\srv.sys
21:30:07.0575 2540 srv - ok
21:30:07.0622 2540 [ FF33AFF99564B1AA534F58868CBE41EF ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
21:30:07.0637 2540 srv2 - ok
21:30:07.0669 2540 [ 7605C0E1D01A08F3ECD743F38B834A44 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
21:30:07.0684 2540 srvnet - ok
21:30:07.0715 2540 [ 03D50B37234967433A5EA5BA72BC0B62 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
21:30:07.0887 2540 SSDPSRV - ok
21:30:07.0965 2540 [ EF3458337D7341A05169CEFC73709264 ] SSPORT C:\Windows\system32\Drivers\SSPORT.sys
21:30:07.0981 2540 SSPORT - ok
21:30:08.0043 2540 [ 6F1A32E7B7B30F004D9A20AFADB14944 ] SstpSvc C:\Windows\system32\sstpsvc.dll
21:30:08.0215 2540 SstpSvc - ok
21:30:08.0277 2540 [ 5DE7D67E49B88F5F07F3E53C4B92A352 ] stisvc C:\Windows\System32\wiaservc.dll
21:30:08.0480 2540 stisvc - ok
21:30:08.0558 2540 [ 7BA58ECF0C0A9A69D44B3DCA62BECF56 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
21:30:08.0573 2540 swenum - ok
21:30:08.0620 2540 [ F21FD248040681CCA1FB6C9A03AAA93D ] swprv C:\Windows\System32\swprv.dll
21:30:08.0807 2540 swprv - ok
21:30:08.0854 2540 [ 192AA3AC01DF071B541094F251DEED10 ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
21:30:08.0870 2540 Symc8xx - ok
21:30:08.0901 2540 [ 8C8EB8C76736EBAF3B13B633B2E64125 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
21:30:08.0917 2540 Sym_hi - ok
21:30:08.0948 2540 [ 8072AF52B5FD103BBBA387A1E49F62CB ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
21:30:08.0963 2540 Sym_u3 - ok
21:30:09.0010 2540 [ 55F6E55CC2430CA8713387106FA79817 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
21:30:09.0026 2540 SynTP - ok
21:30:09.0088 2540 [ 9A51B04E9886AA4EE90093586B0BA88D ] SysMain C:\Windows\system32\sysmain.dll
21:30:09.0275 2540 SysMain - ok
21:30:09.0369 2540 [ 2DCA225EAE15F42C0933E998EE0231C3 ] TabletInputService C:\Windows\System32\TabSvc.dll
21:30:09.0541 2540 TabletInputService - ok
21:30:09.0587 2540 [ D7673E4B38CE21EE54C59EEEB65E2483 ] TapiSrv C:\Windows\System32\tapisrv.dll
21:30:09.0775 2540 TapiSrv - ok
21:30:09.0853 2540 [ CB05822CD9CC6C688168E113C603DBE7 ] TBS C:\Windows\System32\tbssvc.dll
21:30:10.0024 2540 TBS - ok
21:30:10.0102 2540 [ 74E2D020C47BB2B2FCCBA29A518A7EB4 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
21:30:10.0149 2540 Tcpip - ok
21:30:10.0196 2540 [ 74E2D020C47BB2B2FCCBA29A518A7EB4 ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
21:30:10.0227 2540 Tcpip6 - ok
21:30:10.0258 2540 [ 608C345A255D82A6289C2D468EB41FD7 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
21:30:10.0274 2540 tcpipreg - ok
21:30:10.0321 2540 [ 5DCF5E267BE67A1AE926F2DF77FBCC56 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
21:30:10.0336 2540 TDPIPE - ok
21:30:10.0367 2540 [ 389C63E32B3CEFED425B61ED92D3F021 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
21:30:10.0383 2540 TDTCP - ok
21:30:10.0414 2540 [ 76B06EB8A01FC8624D699E7045303E54 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
21:30:10.0430 2540 tdx - ok
21:30:10.0461 2540 [ 3CAD38910468EAB9A6479E2F01DB43C7 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
21:30:10.0477 2540 TermDD - ok
21:30:10.0539 2540 [ BB95DA09BEF6E7A131BFF3BA5032090D ] TermService C:\Windows\System32\termsrv.dll
21:30:10.0726 2540 TermService - ok
21:30:10.0773 2540 [ C7230FBEE14437716701C15BE02C27B8 ] Themes C:\Windows\system32\shsvcs.dll
21:30:10.0929 2540 Themes - ok
21:30:10.0960 2540 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] THREADORDER C:\Windows\system32\mmcss.dll
21:30:11.0069 2540 THREADORDER - ok
21:30:11.0101 2540 [ EC74E77D0EB004BD3A809B5F8FB8C2CE ] TrkWks C:\Windows\System32\trkwks.dll
21:30:11.0288 2540 TrkWks - ok
21:30:11.0381 2540 [ 97D9D6A04E3AD9B6C626B9931DB78DBA ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
21:30:11.0413 2540 TrustedInstaller - ok
21:30:11.0459 2540 [ DCF0F056A2E4F52287264F5AB29CF206 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
21:30:11.0475 2540 tssecsrv - ok
21:30:11.0522 2540 [ CAECC0120AC49E3D2F758B9169872D38 ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
21:30:11.0537 2540 tunmp - ok
21:30:11.0600 2540 [ 300DB877AC094FEAB0BE7688C3454A9C ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
21:30:11.0615 2540 tunnel - ok
21:30:11.0647 2540 [ 7D33C4DB2CE363C8518D2DFCF533941F ] uagp35 C:\Windows\system32\drivers\uagp35.sys
21:30:11.0662 2540 uagp35 - ok
21:30:11.0709 2540 [ D9728AF68C4C7693CB100B8441CBDEC6 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
21:30:11.0725 2540 udfs - ok
21:30:11.0787 2540 [ ECEF404F62863755951E09C802C94AD5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
21:30:11.0959 2540 UI0Detect - ok
21:30:12.0068 2540 [ B0ACFDC9E4AF279E9116C03E014B2B27 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
21:30:12.0083 2540 uliagpkx - ok
21:30:12.0115 2540 [ 9224BB254F591DE4CA8D572A5F0D635C ] uliahci C:\Windows\system32\drivers\uliahci.sys
21:30:12.0146 2540 uliahci - ok
21:30:12.0177 2540 [ 8514D0E5CD0534467C5FC61BE94A569F ] UlSata C:\Windows\system32\drivers\ulsata.sys
21:30:12.0193 2540 UlSata - ok
21:30:12.0224 2540 [ 38C3C6E62B157A6BC46594FADA45C62B ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
21:30:12.0239 2540 ulsata2 - ok
21:30:12.0271 2540 [ 32CFF9F809AE9AED85464492BF3E32D2 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
21:30:12.0286 2540 umbus - ok
21:30:12.0317 2540 [ 68308183F4AE0BE7BF8ECD07CB297999 ] upnphost C:\Windows\System32\upnphost.dll
21:30:12.0505 2540 upnphost - ok
21:30:12.0567 2540 [ 153722A7C13F39F2D622A6865A9F0E5F ] usbbus C:\Windows\system32\DRIVERS\lgusbbus.sys
21:30:12.0567 2540 usbbus - ok
21:30:12.0629 2540 [ CAF811AE4C147FFCD5B51750C7F09142 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
21:30:12.0645 2540 usbccgp - ok
21:30:12.0661 2540 [ E9476E6C486E76BC4898074768FB7131 ] usbcir C:\Windows\system32\drivers\usbcir.sys
21:30:12.0692 2540 usbcir - ok
21:30:12.0739 2540 [ 76F4A87B58CF94D0FA3A8DD8A94AE27E ] UsbDiag C:\Windows\system32\DRIVERS\lgusbdiag.sys
21:30:12.0754 2540 UsbDiag - ok
21:30:12.0785 2540 [ 79E96C23A97CE7B8F14D310DA2DB0C9B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
21:30:12.0801 2540 usbehci - ok
21:30:12.0848 2540 [ 4673BBCB006AF60E7ABDDBE7A130BA42 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
21:30:12.0863 2540 usbhub - ok
21:30:12.0910 2540 [ 8D74ED44788D93133FFE4F116331FE35 ] USBModem C:\Windows\system32\DRIVERS\lgusbmodem.sys
21:30:12.0910 2540 USBModem - ok
21:30:12.0957 2540 [ 38DBC7DD6CC5A72011F187425384388B ] usbohci C:\Windows\system32\drivers\usbohci.sys
21:30:12.0973 2540 usbohci - ok
21:30:13.0019 2540 [ E75C4B5269091D15A2E7DC0B6D35F2F5 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
21:30:13.0035 2540 usbprint - ok
21:30:13.0082 2540 [ A508C9BD8724980512136B039BBA65E9 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
21:30:13.0097 2540 usbscan - ok
21:30:13.0144 2540 [ BE3DA31C191BC222D9AD503C5224F2AD ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
21:30:13.0160 2540 USBSTOR - ok
21:30:13.0175 2540 [ 814D653EFC4D48BE3B04A307ECEFF56F ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
21:30:13.0207 2540 usbuhci - ok
21:30:13.0238 2540 [ E67998E8F14CB0627A769F6530BCB352 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
21:30:13.0253 2540 usbvideo - ok
21:30:13.0285 2540 [ 1509E705F3AC1D474C92454A5C2DD81F ] UxSms C:\Windows\System32\uxsms.dll
21:30:13.0456 2540 UxSms - ok
21:30:13.0519 2540 [ CD88D1B7776DC17A119049742EC07EB4 ] vds C:\Windows\System32\vds.exe
21:30:13.0721 2540 vds - ok
21:30:13.0768 2540 [ 87B06E1F30B749A114F74622D013F8D4 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
21:30:13.0784 2540 vga - ok
21:30:13.0799 2540 [ 2E93AC0A1D8C79D019DB6C51F036636C ] VgaSave C:\Windows\System32\drivers\vga.sys
21:30:13.0831 2540 VgaSave - ok
21:30:13.0862 2540 [ 5D7159DEF58A800D5781BA3A879627BC ] viaagp C:\Windows\system32\drivers\viaagp.sys
21:30:13.0877 2540 viaagp - ok
21:30:13.0893 2540 [ C4F3A691B5BAD343E6249BD8C2D45DEE ] ViaC7 C:\Windows\system32\drivers\viac7.sys
21:30:13.0924 2540 ViaC7 - ok
21:30:13.0940 2540 [ AADF5587A4063F52C2C3FED7887426FC ] viaide C:\Windows\system32\drivers\viaide.sys
21:30:13.0955 2540 viaide - ok
21:30:13.0987 2540 [ 69503668AC66C77C6CD7AF86FBDF8C43 ] volmgr C:\Windows\system32\drivers\volmgr.sys
21:30:14.0002 2540 volmgr - ok
21:30:14.0065 2540 [ 23E41B834759917BFD6B9A0D625D0C28 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
21:30:14.0080 2540 volmgrx - ok
21:30:14.0143 2540 [ 786DB5771F05EF300390399F626BF30A ] volsnap C:\Windows\system32\drivers\volsnap.sys
21:30:14.0158 2540 volsnap - ok
21:30:14.0221 2540 [ 587253E09325E6BF226B299774B728A9 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
21:30:14.0236 2540 vsmraid - ok
21:30:14.0299 2540 [ DB3D19F850C6EB32BDCB9BC0836ACDDB ] VSS C:\Windows\system32\vssvc.exe
21:30:14.0517 2540 VSS - ok
21:30:14.0579 2540 [ F79E34B3D14FD8BE26A8C4BAB19028B3 ] vwmfbus C:\Windows\system32\DRIVERS\vwmfbus.sys
21:30:14.0595 2540 vwmfbus - ok
21:30:14.0626 2540 [ D3A2CA672674C188795696246C37F0A5 ] vwmfdiag C:\Windows\system32\DRIVERS\vwmfdiag.sys
21:30:14.0657 2540 vwmfdiag - ok
21:30:14.0704 2540 [ 20235AC0832F4FEC190EBC867811A708 ] vwmfmdfl C:\Windows\system32\DRIVERS\vwmfmdfl.sys
21:30:14.0720 2540 vwmfmdfl - ok
21:30:14.0751 2540 [ 4EC7D1B13C0A211830A58360D690C8CE ] vwmfmdm C:\Windows\system32\DRIVERS\vwmfmdm.sys
21:30:14.0767 2540 vwmfmdm - ok
21:30:14.0798 2540 [ CD7979263117667B9DCBC4403BAED9FE ] vwmfserd C:\Windows\system32\DRIVERS\vwmfserd.sys
21:30:14.0829 2540 vwmfserd - ok
21:30:14.0860 2540 [ 96EA68B9EB310A69C25EBB0282B2B9DE ] W32Time C:\Windows\system32\w32time.dll
21:30:15.0063 2540 W32Time - ok
21:30:15.0157 2540 [ 48DFEE8F1AF7C8235D4E626F0C4FE031 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
21:30:15.0172 2540 WacomPen - ok
21:30:15.0219 2540 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
21:30:15.0235 2540 Wanarp - ok
21:30:15.0250 2540 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
21:30:15.0266 2540 Wanarpv6 - ok
21:30:15.0297 2540 [ A3CD60FD826381B49F03832590E069AF ] wcncsvc C:\Windows\System32\wcncsvc.dll
21:30:15.0500 2540 wcncsvc - ok
21:30:15.0547 2540 [ 11BCB7AFCDD7AADACB5746F544D3A9C7 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
21:30:15.0734 2540 WcsPlugInService - ok
21:30:15.0765 2540 [ 78FE9542363F297B18C027B2D7E7C07F ] Wd C:\Windows\system32\drivers\wd.sys
21:30:15.0781 2540 Wd - ok
21:30:15.0827 2540 [ A840213F1ACDCC175B4D1D5AAEAC0D7A ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
21:30:15.0859 2540 Wdf01000 - ok
21:30:15.0890 2540 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiServiceHost C:\Windows\system32\wdi.dll
21:30:16.0077 2540 WdiServiceHost - ok
21:30:16.0093 2540 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiSystemHost C:\Windows\system32\wdi.dll
21:30:16.0280 2540 WdiSystemHost - ok
21:30:16.0342 2540 [ 04C37D8107320312FBAE09926103D5E2 ] WebClient C:\Windows\System32\webclnt.dll
21:30:16.0529 2540 WebClient - ok
21:30:16.0576 2540 [ AE3736E7E8892241C23E4EBBB7453B60 ] Wecsvc C:\Windows\system32\wecsvc.dll
21:30:16.0779 2540 Wecsvc - ok
21:30:16.0841 2540 [ 670FF720071ED741206D69BD995EA453 ] wercplsupport C:\Windows\System32\wercplsupport.dll
21:30:17.0029 2540 wercplsupport - ok
21:30:17.0091 2540 [ 32B88481D3B326DA6DEB07B1D03481E7 ] WerSvc C:\Windows\System32\WerSvc.dll
21:30:17.0278 2540 WerSvc - ok
21:30:17.0387 2540 [ 4575AA12561C5648483403541D0D7F2B ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
21:30:17.0403 2540 WinDefend - ok
21:30:17.0419 2540 WinHttpAutoProxySvc - ok
21:30:17.0481 2540 [ 6B2A1D0E80110E3D04E6863C6E62FD8A ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
21:30:17.0653 2540 Winmgmt - ok
21:30:17.0746 2540 [ 7CFE68BDC065E55AA5E8421607037511 ] WinRM C:\Windows\system32\WsmSvc.dll
21:30:17.0980 2540 WinRM - ok
21:30:18.0074 2540 [ C008405E4FEEB069E30DA1D823910234 ] Wlansvc C:\Windows\System32\wlansvc.dll
21:30:18.0277 2540 Wlansvc - ok
21:30:18.0448 2540 [ 5144AE67D60EC653F97DDF3FEED29E77 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
21:30:18.0479 2540 wlidsvc - ok
21:30:18.0526 2540 [ 2E7255D172DF0B8283CDFB7B433B864E ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
21:30:18.0542 2540 WmiAcpi - ok
21:30:18.0604 2540 [ 43BE3875207DCB62A85C8C49970B66CC ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
21:30:18.0620 2540 wmiApSrv - ok
21:30:18.0713 2540 [ 3978704576A121A9204F8CC49A301A9B ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
21:30:18.0745 2540 WMPNetworkSvc - ok
21:30:18.0776 2540 [ CFC5A04558F5070CEE3E3A7809F3FF52 ] WPCSvc C:\Windows\System32\wpcsvc.dll
21:30:18.0979 2540 WPCSvc - ok
21:30:19.0057 2540 [ 801FBDB89D472B3C467EB112A0FC9246 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
21:30:19.0244 2540 WPDBusEnum - ok
21:30:19.0369 2540 [ DE9D36F91A4DF3D911626643DEBF11EA ] WpdUsb C:\Windows\system32\DRIVERS\wpdusb.sys
21:30:19.0384 2540 WpdUsb - ok
21:30:19.0493 2540 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
21:30:19.0540 2540 WPFFontCache_v0400 - ok
21:30:19.0571 2540 [ E3A3CB253C0EC2494D4A61F5E43A389C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
21:30:19.0587 2540 ws2ifsl - ok
21:30:19.0634 2540 [ 1CA6C40261DDC0425987980D0CD2AAAB ] wscsvc C:\Windows\System32\wscsvc.dll
21:30:19.0837 2540 wscsvc - ok
21:30:19.0852 2540 WSearch - ok
21:30:19.0993 2540 [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv C:\Windows\system32\wuaueng.dll
21:30:20.0258 2540 wuauserv - ok
21:30:20.0320 2540 [ 06E6F32C8D0A3F66D956F57B43A2E070 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
21:30:20.0336 2540 WudfPf - ok
21:30:20.0383 2540 [ 867C301E8B790040AE9CF6486E8041DF ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
21:30:20.0414 2540 WUDFRd - ok
21:30:20.0445 2540 [ FE47B7BC8EA320C2D9B5E5BF6E303765 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
21:30:20.0648 2540 wudfsvc - ok
21:30:20.0773 2540 [ 7D1F3B131D503EF43EE594B5A2B9B427 ] yukonwlh C:\Windows\system32\DRIVERS\yk60x86.sys
21:30:20.0788 2540 yukonwlh - ok
21:30:20.0835 2540 ================ Scan global ===============================
21:30:20.0882 2540 [ F31EEBC1A1C81FD04005489CC3DCDFE7 ] C:\Windows\system32\basesrv.dll
21:30:20.0944 2540 [ D2293B069E4B63DC17B2F08D45E71124 ] C:\Windows\system32\winsrv.dll
21:30:21.0178 2540 [ D2293B069E4B63DC17B2F08D45E71124 ] C:\Windows\system32\winsrv.dll
21:30:21.0428 2540 [ D4E6D91C1349B7BFB3599A6ADA56851B ] C:\Windows\system32\services.exe
21:30:21.0599 2540 [Global] - ok
21:30:21.0599 2540 ================ Scan MBR ==================================
21:30:21.0615 2540 [ 64B1E91C5C6C2157642651010728F90F ] \Device\Harddisk0\DR0
21:30:21.0927 2540 \Device\Harddisk0\DR0 - ok
21:30:21.0927 2540 ================ Scan VBR ==================================
21:30:21.0943 2540 [ 0BD04C52FDAF22800ECC8898E9F834CE ] \Device\Harddisk0\DR0\Partition1
21:30:21.0943 2540 \Device\Harddisk0\DR0\Partition1 - ok
21:30:21.0974 2540 [ BF49A0C0529436B9C978DD931AA19C04 ] \Device\Harddisk0\DR0\Partition2
21:30:21.0974 2540 \Device\Harddisk0\DR0\Partition2 - ok
21:30:21.0974 2540 ============================================================
21:30:21.0989 2540 Scan finished
21:30:21.0989 2540 ============================================================
21:30:22.0099 2712 Detected object count: 1
21:30:22.0099 2712 Actual detected object count: 1
21:31:14.0140 2712 sptd ( LockedFile.Multi.Generic ) - skipped by user
21:31:14.0140 2712 sptd ( LockedFile.Multi.Generic ) - User select action: Skip
21:31:55.0558 1276 Deinitialize success
Nahoru
tomas_ch
Level 2.5
Level 2.5
Příspěvky: 353
Registrován: srpen 07
Pohlaví: Nespecifikováno
Stav:
Offline

Re: Prosim o kontrolu logu

Příspěvekod tomas_ch » 09 bře 2013 23:06

ComboFix 13-03-09.01 - vercik 09.03.2013 22:19:46.2.2 - x86
Microsoft® Windows Vista™ Home Basic 6.0.6002.2.1250.420.1029.18.2038.1033 [GMT 1:00]
Spuštěný z: c:\users\vercik\Desktop\ComboFix.exe
AV: AVG Anti-Virus Free *Disabled/Updated* {0C939084-9E57-CBDB-EA61-0B0C7F62AF82}
SP: AVG Anti-Virus Free *Disabled/Updated* {B7F27160-B86D-C455-D0D1-307E04E5E53F}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\pkunzip.pif
c:\windows\pkzip.pif
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2013-02-09 do 2013-03-09 )))))))))))))))))))))))))))))))
.
.
2013-03-09 21:48 . 2013-03-09 21:49 -------- d-----w- c:\users\vercik\AppData\Local\temp
2013-03-09 21:48 . 2013-03-09 21:48 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-03-09 17:57 . 2013-03-09 17:57 -------- d-----w- c:\program files\CCleaner
2013-03-09 15:50 . 2013-03-09 15:50 -------- d-----w- c:\users\vercik\AppData\Roaming\Malwarebytes
2013-03-09 15:50 . 2013-03-09 15:50 -------- d-----w- c:\programdata\Malwarebytes
2013-03-09 15:50 . 2013-03-09 15:50 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2013-03-09 15:50 . 2012-12-14 15:49 21104 ----a-w- c:\windows\system32\drivers\mbam.sys
2013-02-22 16:18 . 2013-02-22 16:18 -------- d-----w- c:\users\Default\AppData\Roaming\TuneUp Software
2013-02-22 15:20 . 2013-02-22 15:20 -------- d-----w- c:\users\vercik\AppData\Roaming\TuneUp Software
2013-02-22 15:16 . 2013-03-09 20:07 -------- d-----w- c:\programdata\MFAData
2013-02-22 15:16 . 2013-03-09 20:06 -------- d-----w- c:\users\vercik\AppData\Local\Avg2013
2013-02-22 15:16 . 2013-02-22 15:16 -------- d--h--w- c:\programdata\Common Files
2013-02-22 15:16 . 2013-02-22 15:16 -------- d-----w- c:\users\vercik\AppData\Local\MFAData
2013-02-22 15:15 . 2013-02-22 15:16 -------- d-----w- c:\programdata\AVG8UPG
2013-02-22 12:01 . 2013-02-08 00:45 6954968 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{6C935A6D-DA4E-498D-8D6B-EA4AADAD9EA4}\mpengine.dll
2013-02-14 14:23 . 2013-01-08 22:01 768000 ----a-w- c:\program files\Common Files\Microsoft Shared\vgx\VGX.dll
2013-02-13 12:00 . 2013-01-04 01:38 2048512 ----a-w- c:\windows\system32\win32k.sys
2013-02-13 12:00 . 2012-11-08 03:48 1314816 ----a-w- c:\windows\system32\quartz.dll
2013-02-13 12:00 . 2013-01-04 11:28 905576 ----a-w- c:\windows\system32\drivers\tcpip.sys
2013-02-13 11:56 . 2013-01-05 05:26 3550072 ----a-w- c:\windows\system32\ntoskrnl.exe
2013-02-13 11:56 . 2013-01-05 05:26 3602808 ----a-w- c:\windows\system32\ntkrnlpa.exe
2013-02-08 18:04 . 2013-02-08 18:04 -------- d-----w- c:\programdata\RELOADED
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-03-09 21:00 . 2008-10-28 10:46 45056 ----a-w- c:\windows\system32\acovcnt.exe
2013-02-28 19:58 . 2012-04-08 17:52 691568 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2013-02-28 19:58 . 2012-03-10 12:26 71024 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2013-02-04 18:01 . 2013-02-04 18:01 161792 ----a-w- c:\windows\system32\msls31.dll
2013-02-04 18:01 . 2013-02-04 18:01 74752 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe
2013-02-04 18:01 . 2013-02-04 18:01 86528 ----a-w- c:\windows\system32\iesysprep.dll
2013-02-04 18:01 . 2013-02-04 18:01 76800 ----a-w- c:\windows\system32\SetIEInstalledDate.exe
2013-02-04 18:01 . 2013-02-04 18:01 48640 ----a-w- c:\windows\system32\mshtmler.dll
2013-02-04 18:01 . 2013-02-04 18:01 63488 ----a-w- c:\windows\system32\tdc.ocx
2013-02-04 18:01 . 2013-02-04 18:01 367104 ----a-w- c:\windows\system32\html.iec
2013-02-04 18:01 . 2013-02-04 18:01 74752 ----a-w- c:\windows\system32\iesetup.dll
2013-02-04 18:01 . 2013-02-04 18:01 23552 ----a-w- c:\windows\system32\licmgr10.dll
2013-02-04 18:01 . 2013-02-04 18:01 152064 ----a-w- c:\windows\system32\wextract.exe
2013-02-04 18:01 . 2013-02-04 18:01 150528 ----a-w- c:\windows\system32\iexpress.exe
2013-02-04 18:00 . 2013-02-04 18:00 11776 ----a-w- c:\windows\system32\mshta.exe
2013-02-04 18:00 . 2013-02-04 18:00 101888 ----a-w- c:\windows\system32\admparse.dll
2013-02-04 18:00 . 2013-02-04 18:00 35840 ----a-w- c:\windows\system32\imgutil.dll
2013-02-04 18:00 . 2013-02-04 18:00 110592 ----a-w- c:\windows\system32\IEAdvpack.dll
2013-01-17 00:28 . 2009-10-02 18:08 232336 ------w- c:\windows\system32\MpSigStub.exe
2012-12-16 13:12 . 2012-12-22 02:00 34304 ----a-w- c:\windows\system32\atmlib.dll
2012-12-16 10:50 . 2012-12-22 02:00 293376 ----a-w- c:\windows\system32\atmfd.dll
2013-03-08 14:13 . 2013-03-08 14:13 263064 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ADSMOverlayIcon1]
@="{A8D448F4-0431-45AC-9F5E-E1B434AB2249}"
[HKEY_CLASSES_ROOT\CLSID\{A8D448F4-0431-45AC-9F5E-E1B434AB2249}]
2007-06-02 00:08 143360 ----a-w- c:\program files\ASUS\ASUS Data Security Manager\OverlayIconShlExt1.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RemoteControl"="c:\program files\ASUSTek\ASUSDVD\PDVDServ.exe" [2008-04-03 87336]
"CLMLServer"="c:\program files\CyberLink\Power2Go\CLMLSvc.exe" [2008-07-19 104936]
"P2Go_Menu"="c:\program files\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" [2008-06-14 210216]
"ATKOSD2"="c:\program files\ATKOSD2\ATKOSD2.exe" [2007-10-18 7737344]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2008-02-22 141848]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2008-02-22 166424]
"Persistence"="c:\windows\system32\igfxpers.exe" [2008-02-22 133656]
"RtHDVCpl"="RtHDVCpl.exe" [2007-10-31 4702208]
"Skytel"="Skytel.exe" [2007-10-11 1826816]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2007-12-06 1029416]
"OpwareSE4"="c:\program files\ScanSoft\OmniPageSE4.0\OpwareSE4.exe" [2006-10-11 75304]
"Samsung PanelMgr"="c:\windows\Samsung\PanelMgr\ssmmgr.exe" [2010-10-28 618496]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]
@="Service"
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
2012-12-03 07:35 946352 ----a-w- c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
2008-12-29 10:40 687560 ----a-w- c:\program files\DAEMON Tools Lite\daemon.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Desktop Search]
2009-12-13 08:43 30192 ----a-w- c:\program files\Google\Google Desktop Search\GoogleDesktop.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LanguageShortcut]
2008-02-22 18:19 62760 ----a-w- c:\program files\ASUSTek\ASUSDVD\Language\Language.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
"DisableMonitoring"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - WS2IFSL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceNoNetwork REG_MULTI_SZ PLA DPS BFE mpssvc
LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2008-06-09 17:14 451872 ----a-w- c:\program files\Common Files\LightScribe\LSRunOnce.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2013-03-09 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-08 19:58]
.
2013-03-09 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-11-03 14:59]
.
2013-03-09 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-11-03 14:59]
.
2013-03-09 c:\windows\Tasks\User_Feed_Synchronization-{308C1B8A-0EFD-474F-8A6B-6F01DD370226}.job
- c:\windows\system32\msfeedssync.exe [2013-02-04 18:00]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.seznam.cz/
mStart Page = hxxp://www.google.com/ig/redirectdomain ... &bmod=ASUS
uSearchURL,(Default) = hxxp://www.google.com/search/?q=%s
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 10.0.0.138
FF - ProfilePath - c:\users\vercik\AppData\Roaming\Mozilla\Firefox\Profiles\6p1umv83.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
FF - ExtSQL: 2013-03-09 18:36; {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}; c:\users\vercik\AppData\Roaming\Mozilla\Firefox\Profiles\6p1umv83.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF - ExtSQL: !HIDDEN! 2009-09-02 13:13; {20a82645-c095-46ed-80e3-08825760534b}; c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
.
.
------- Asociace souborů -------
.
.txt=bftxtfile
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
HKCU-Run-VW100 Connection Manager - (no file)
ShellExecuteHooks-{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - c:\program files\SUPERAntiSpyware\SASSEH.DLL
SafeBoot-WudfPf
SafeBoot-WudfRd
MSConfigStartUp-Adobe Reader Speed Launcher - c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe
MSConfigStartUp-EA Core - c:\program files\Electronic Arts\EADM\Core.exe
AddRemove-LANGMaster 4.0 Beginner - c:\program files\LANGMaster\DeIsL1.isu
AddRemove-Network Play System (Patching) - c:\program files\Electronic Arts\Network Play System\NPSPatch.isu
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2013-03-09 22:48
Windows 6.0.6002 Service Pack 2 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
.
C:\ADSM_PData_0150
.
sken byl úspešně dokončen
skryté soubory: 1
.
**************************************************************************
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
"MSCurrentCountry"=dword:0000002e
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0004\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000001
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0005\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0006\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
Celkový čas: 2013-03-09 22:54:03
ComboFix-quarantined-files.txt 2013-03-09 21:54
.
Před spuštěním: Volných bajtů: 23 440 908 288
Po spuštění: Volných bajtů: 23 249 518 592
.
- - End Of File - - 4B16E1C6DF83D749C65A51786817555D
Nahoru
tomas_ch
Level 2.5
Level 2.5
Příspěvky: 353
Registrován: srpen 07
Pohlaví: Nespecifikováno
Stav:
Offline

Re: Prosim o kontrolu logu

Příspěvekod tomas_ch » 10 bře 2013 09:49

Jakmile neco stahnu z netu, tak to hodi tuto hlasku:
"TENTO PROGRAM OBSAHOVAL VIRUS A BYL ODSTRANEN" - ted jsem chtel stahnout nove AVG FREE 2013 primo z webu Grisoftu.
Mam printscreen,ale nevim,jak se nahravaji obrazky do fora.

Diky
Nahoru
Uživatelský avatar
memphisto
Guru Level 13
Guru Level 13
Příspěvky: 21113
Registrován: září 06
Bydliště: Zlín - České Budějovice
Pohlaví: Muž
Stav:
Offline

Re: Prosim o kontrolu logu

Příspěvekod memphisto » 10 bře 2013 11:13

Otevři si Poznámkový blok (Start -> Spustit... a napiš do okna Notepad a dej Ok.
Zkopíruj do něj následující celý text označený zeleně:
Poznámka: Nepoužij k označení skriptu funkci VYBRAT VŠE

Kód: Vybrat vše

KillAll::

Registry::
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
"DisableMonitoring"=dword:00000000
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000000
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000000
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]

File::
c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
c:\windows\Tasks\GoogleUpdateTaskMachineUA.job

RegLock::
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
"MSCurrentCountry"=dword:0000002e
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0004\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000001
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0005\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0006\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.

Zvol možnost Soubor -> Uložit jako... a nastav tyto parametry:
Název souboru: zde napiš: CFScript.txt
Uložit jako typ: tak tam vyber Všechny soubory
Ulož soubor na plochu.
Ukonči všechna aktivní okna.

Uchop myší vytvořený skript CFScript.txt, přemísti ho nad stažený program ComboFix.exe a když se oba soubory překryjí, skript upus.
- Automaticky se spustí ComboFix
- Vlož sem log, který vyběhne v závěru čistícího procesu
PRAVIDLA PC-HELP.CZ, PRAVIDLA sekce HijackThis, HijackThis návod, Memtest, CCleaner
Logy z programu HijackThis neposílejte prosím přes SZ, ale vkládejte je do patřičné sekce. Děkuji
Nahoru
tomas_ch
Level 2.5
Level 2.5
Příspěvky: 353
Registrován: srpen 07
Pohlaví: Nespecifikováno
Stav:
Offline

Re: Prosim o kontrolu logu

Příspěvekod tomas_ch » 10 bře 2013 16:03

ComboFix 13-03-10.02 - vercik 10.03.2013 11:38:47.3.2 - x86
Microsoft® Windows Vista™ Home Basic 6.0.6002.2.1250.420.1029.18.2038.1003 [GMT 1:00]
Spuštěný z: c:\users\vercik\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\users\vercik\Desktop\CFScript.txt
AV: AVG Anti-Virus Free *Disabled/Updated* {0C939084-9E57-CBDB-EA61-0B0C7F62AF82}
SP: AVG Anti-Virus Free *Disabled/Updated* {B7F27160-B86D-C455-D0D1-307E04E5E53F}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
FILE ::
"c:\windows\Tasks\GoogleUpdateTaskMachineCore.job"
"c:\windows\Tasks\GoogleUpdateTaskMachineUA.job"
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2013-02-10 do 2013-03-10 )))))))))))))))))))))))))))))))
.
.
2013-03-10 14:38 . 2013-03-10 14:38 6429 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\temp\wlidui_WLIDSVC\UICORE.JS
2013-03-10 14:38 . 2013-03-10 14:38 63115 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\temp\wlidui_WLIDSVC\USERTILE.JS
2013-03-10 14:38 . 2013-03-10 14:38 4599 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\temp\wlidui_WLIDSVC\UIRESOURCE.JS
2013-03-10 14:38 . 2013-03-10 14:38 9310 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\temp\wlidui_WLIDSVC\TEXTBOX.JS
2013-03-10 14:38 . 2013-03-10 14:38 8646 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\temp\wlidui_WLIDSVC\TILEBOX.JS
2013-03-10 14:38 . 2013-03-10 14:38 8613 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\temp\wlidui_WLIDSVC\SAVEDUSER.JS
2013-03-10 14:38 . 2013-03-10 14:38 5927 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\temp\wlidui_WLIDSVC\TEXT.JS
2013-03-10 14:38 . 2013-03-10 14:38 1651 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\temp\wlidui_WLIDSVC\QUERYSTRING.JS
2013-03-10 14:38 . 2013-03-10 14:38 6910 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\temp\wlidui_WLIDSVC\NEWUSERCOMM.JS
2013-03-10 14:38 . 2013-03-10 14:38 18541 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\temp\wlidui_WLIDSVC\LOCALIZATION.JS
2013-03-10 14:38 . 2013-03-10 14:38 8288 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\temp\wlidui_WLIDSVC\IMAGE.JS
2013-03-10 14:38 . 2013-03-10 14:38 6208 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\temp\wlidui_WLIDSVC\LINK.JS
2013-03-10 14:37 . 2013-03-10 14:37 51852 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\temp\wlidui_WLIDSVC\EXTERNALWRAPPER.JS
2013-03-10 14:37 . 2013-03-10 14:37 20719 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\temp\wlidui_WLIDSVC\DIVWRAPPER.JS
2013-03-10 14:37 . 2013-03-10 14:37 23327 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\temp\wlidui_WLIDSVC\COMBOBOX.JS
2013-03-10 14:37 . 2013-03-10 14:37 7271 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\temp\wlidui_WLIDSVC\CHECKBOX.JS
2013-03-10 14:37 . 2013-03-10 14:37 8782 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\temp\wlidui_WLIDSVC\BUTTON.JS
2013-03-10 10:52 . 2013-03-10 14:40 -------- d-----w- c:\users\vercik\AppData\Local\temp
2013-03-09 17:57 . 2013-03-09 17:57 -------- d-----w- c:\program files\CCleaner
2013-03-09 15:50 . 2013-03-09 15:50 -------- d-----w- c:\users\vercik\AppData\Roaming\Malwarebytes
2013-03-09 15:50 . 2013-03-09 15:50 -------- d-----w- c:\programdata\Malwarebytes
2013-03-09 15:50 . 2013-03-09 15:50 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2013-03-09 15:50 . 2012-12-14 15:49 21104 ----a-w- c:\windows\system32\drivers\mbam.sys
2013-02-22 16:18 . 2013-02-22 16:18 -------- d-----w- c:\users\Default\AppData\Roaming\TuneUp Software
2013-02-22 15:20 . 2013-02-22 15:20 -------- d-----w- c:\users\vercik\AppData\Roaming\TuneUp Software
2013-02-22 15:16 . 2013-03-09 20:07 -------- d-----w- c:\programdata\MFAData
2013-02-22 15:16 . 2013-03-09 20:06 -------- d-----w- c:\users\vercik\AppData\Local\Avg2013
2013-02-22 15:16 . 2013-02-22 15:16 -------- d--h--w- c:\programdata\Common Files
2013-02-22 15:16 . 2013-02-22 15:16 -------- d-----w- c:\users\vercik\AppData\Local\MFAData
2013-02-22 15:15 . 2013-02-22 15:16 -------- d-----w- c:\programdata\AVG8UPG
2013-02-22 12:01 . 2013-02-08 00:45 6954968 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{6C935A6D-DA4E-498D-8D6B-EA4AADAD9EA4}\mpengine.dll
2013-02-14 14:23 . 2013-01-08 22:01 768000 ----a-w- c:\program files\Common Files\Microsoft Shared\vgx\VGX.dll
2013-02-13 12:00 . 2013-01-04 01:38 2048512 ----a-w- c:\windows\system32\win32k.sys
2013-02-13 12:00 . 2012-11-08 03:48 1314816 ----a-w- c:\windows\system32\quartz.dll
2013-02-13 12:00 . 2013-01-04 11:28 905576 ----a-w- c:\windows\system32\drivers\tcpip.sys
2013-02-13 11:56 . 2013-01-05 05:26 3550072 ----a-w- c:\windows\system32\ntoskrnl.exe
2013-02-13 11:56 . 2013-01-05 05:26 3602808 ----a-w- c:\windows\system32\ntkrnlpa.exe
2013-02-08 18:04 . 2013-02-08 18:04 -------- d-----w- c:\programdata\RELOADED
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-03-10 10:54 . 2008-10-28 10:46 45056 ----a-w- c:\windows\system32\acovcnt.exe
2013-02-28 19:58 . 2012-04-08 17:52 691568 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2013-02-28 19:58 . 2012-03-10 12:26 71024 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2013-02-04 18:01 . 2013-02-04 18:01 161792 ----a-w- c:\windows\system32\msls31.dll
2013-02-04 18:01 . 2013-02-04 18:01 74752 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe
2013-02-04 18:01 . 2013-02-04 18:01 86528 ----a-w- c:\windows\system32\iesysprep.dll
2013-02-04 18:01 . 2013-02-04 18:01 76800 ----a-w- c:\windows\system32\SetIEInstalledDate.exe
2013-02-04 18:01 . 2013-02-04 18:01 48640 ----a-w- c:\windows\system32\mshtmler.dll
2013-02-04 18:01 . 2013-02-04 18:01 63488 ----a-w- c:\windows\system32\tdc.ocx
2013-02-04 18:01 . 2013-02-04 18:01 367104 ----a-w- c:\windows\system32\html.iec
2013-02-04 18:01 . 2013-02-04 18:01 74752 ----a-w- c:\windows\system32\iesetup.dll
2013-02-04 18:01 . 2013-02-04 18:01 23552 ----a-w- c:\windows\system32\licmgr10.dll
2013-02-04 18:01 . 2013-02-04 18:01 152064 ----a-w- c:\windows\system32\wextract.exe
2013-02-04 18:01 . 2013-02-04 18:01 150528 ----a-w- c:\windows\system32\iexpress.exe
2013-02-04 18:00 . 2013-02-04 18:00 11776 ----a-w- c:\windows\system32\mshta.exe
2013-02-04 18:00 . 2013-02-04 18:00 101888 ----a-w- c:\windows\system32\admparse.dll
2013-02-04 18:00 . 2013-02-04 18:00 35840 ----a-w- c:\windows\system32\imgutil.dll
2013-02-04 18:00 . 2013-02-04 18:00 110592 ----a-w- c:\windows\system32\IEAdvpack.dll
2013-01-17 00:28 . 2009-10-02 18:08 232336 ------w- c:\windows\system32\MpSigStub.exe
2012-12-16 13:12 . 2012-12-22 02:00 34304 ----a-w- c:\windows\system32\atmlib.dll
2012-12-16 10:50 . 2012-12-22 02:00 293376 ----a-w- c:\windows\system32\atmfd.dll
2013-03-08 14:13 . 2013-03-08 14:13 263064 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ADSMOverlayIcon1]
@="{A8D448F4-0431-45AC-9F5E-E1B434AB2249}"
[HKEY_CLASSES_ROOT\CLSID\{A8D448F4-0431-45AC-9F5E-E1B434AB2249}]
2007-06-02 00:08 143360 ----a-w- c:\program files\ASUS\ASUS Data Security Manager\OverlayIconShlExt1.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RemoteControl"="c:\program files\ASUSTek\ASUSDVD\PDVDServ.exe" [2008-04-03 87336]
"CLMLServer"="c:\program files\CyberLink\Power2Go\CLMLSvc.exe" [2008-07-19 104936]
"P2Go_Menu"="c:\program files\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" [2008-06-14 210216]
"ATKOSD2"="c:\program files\ATKOSD2\ATKOSD2.exe" [2007-10-18 7737344]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2008-02-22 141848]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2008-02-22 166424]
"Persistence"="c:\windows\system32\igfxpers.exe" [2008-02-22 133656]
"RtHDVCpl"="RtHDVCpl.exe" [2007-10-31 4702208]
"Skytel"="Skytel.exe" [2007-10-11 1826816]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2007-12-06 1029416]
"OpwareSE4"="c:\program files\ScanSoft\OmniPageSE4.0\OpwareSE4.exe" [2006-10-11 75304]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf]
@="Driver"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd]
@="Driver"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]
@="Service"
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
2012-12-03 07:35 946352 ----a-w- c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
2008-12-29 10:40 687560 ----a-w- c:\program files\DAEMON Tools Lite\daemon.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Desktop Search]
2009-12-13 08:43 30192 ----a-w- c:\program files\Google\Google Desktop Search\GoogleDesktop.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LanguageShortcut]
2008-02-22 18:19 62760 ----a-w- c:\program files\ASUSTek\ASUSDVD\Language\Language.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Samsung PanelMgr]
2010-10-28 10:14 618496 ----a-w- c:\windows\Samsung\PanelMgr\SSMMgr.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceNoNetwork REG_MULTI_SZ PLA DPS BFE mpssvc
LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2008-06-09 17:14 451872 ----a-w- c:\program files\Common Files\LightScribe\LSRunOnce.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2013-03-10 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-08 19:58]
.
2013-03-10 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-11-03 14:59]
.
2013-03-10 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-11-03 14:59]
.
2013-03-10 c:\windows\Tasks\User_Feed_Synchronization-{308C1B8A-0EFD-474F-8A6B-6F01DD370226}.job
- c:\windows\system32\msfeedssync.exe [2013-02-04 18:00]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.seznam.cz/
mStart Page = hxxp://www.google.com/ig/redirectdomain ... &bmod=ASUS
uSearchURL,(Default) = hxxp://www.google.com/search/?q=%s
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 10.0.0.138
FF - ProfilePath - c:\users\vercik\AppData\Roaming\Mozilla\Firefox\Profiles\6p1umv83.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
FF - ExtSQL: 2013-03-09 18:36; {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}; c:\users\vercik\AppData\Roaming\Mozilla\Firefox\Profiles\6p1umv83.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF - ExtSQL: !HIDDEN! 2009-09-02 13:13; {20a82645-c095-46ed-80e3-08825760534b}; c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2013-03-10 15:41
Windows 6.0.6002 Service Pack 2 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'Explorer.exe'(2532)
c:\program files\ASUS\ASUS Data Security Manager\OverlayIconShlExt.dll
c:\program files\ASUS\ASUS Data Security Manager\OverlayIconShlExt1.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files\ASUS\ASUS Data Security Manager\ADSMSrv.exe
c:\program files\ATK Hotkey\ASLDRSrv.exe
c:\program files\ATKGFNEX\GFNEXSrv.exe
c:\program files\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\program files\Common Files\LightScribe\LSSrvc.exe
c:\program files\CyberLink\Shared Files\RichVideo.exe
c:\program files\ASUS\NB Probe\SPM\spmgr.exe
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
c:\windows\servicing\TrustedInstaller.exe
c:\program files\ATK Hotkey\Hcontrol.exe
c:\program files\ATK Hotkey\MsgTranAgt.exe
c:\program files\Wireless Console 2\wcourier.exe
c:\program files\P4G\BatteryLife.exe
c:\program files\ASUS\Splendid\ACMON.exe
c:\windows\system32\conime.exe
c:\program files\ATK Hotkey\ATKOSD.exe
c:\program files\ATK Hotkey\KBFiltr.exe
c:\program files\ATK Hotkey\WDC.exe
c:\windows\System32\ACEngSvr.exe
.
**************************************************************************
.
Celkový čas: 2013-03-10 15:47:49 - počítač byl restartován
ComboFix-quarantined-files.txt 2013-03-10 14:47
ComboFix2.txt 2013-03-09 21:54
.
Před spuštěním: Volných bajtů: 21 568 929 792
Po spuštění: Volných bajtů: 21 531 480 064
.
- - End Of File - - C07141371A34CA0B361A8060881C28BD
Nahoru
Uživatelský avatar
Žbeky
Moderátor
Guru Level 13
Guru Level 13
Příspěvky: 22288
Registrován: květen 08
Bydliště: Vsetín - Pardubice
Pohlaví: Muž
Stav:
Offline

Re: Prosim o kontrolu logu

Příspěvekod Žbeky » 10 bře 2013 20:48

ComboFix se odinstaluje takto:
Start-Spustit a zadej ComboFix /Uninstall

vyčisti systém CCleanerem

Stáhni si OTC na plochu, spusť jej a klikni na Clean up!

+ Nový log z HJT

Jak se chová PC?
V SZ řeším jen záležitosti týkající se fóra. Na prosby a žádosti o technickou podporu nereaguji. Díky za pochopení.

HiJackThis + návod - HW Monitor - Jak označit příspěvek za vyřešený - Pravidla fóra
Nahoru
Zamčeno

Zpět na “HiJackThis”

Kdo je online

Uživatelé prohlížející si toto fórum: Žádní registrovaní uživatelé a 103 hostů