PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\options\images\scroller.png, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\options\images\sprite-ok-button.png, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\options\images\truste.gif, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\options\images\x.png, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\options\js\html5SupportIe.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\options\js\options.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\options\js\resources\html5shiv.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\options\js\resources\jquery.jscrollpane.min.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\options\js\resources\jquery.mousewheel.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\sp\js\searchProtectorManager.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\sp\spbd\bubble.css, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\sp\spbd\bubble.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\sp\spbd\main.html, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\sp\spbd\images\information.png, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\sp\spbd\images\x-default-LTR.png, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\sp\spbd\images\x-default-RTL.png, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\sp\spbd\images\x-mouseover-LTR.png, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\sp\spbd\images\x-mouseover-RTL.png, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\sp\spsd\main.html, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\sp\spsd\SearchProtector.css, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\sp\spsd\settings.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\sp\spsd\images\ok-button.png, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\sp\spsd\images\separation-line.png, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\sp\spsd\images\warning.png, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\ui\menus.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\ui\popups.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\ui\dlg\DialogsAPI.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\ui\dlg\excanvas.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\ui\dlg\generalDialogStyle.css, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\ui\dlg\PIE.htc, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\ui\dlg\settings.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\ui\dlg\ftd\main.html, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\ui\dlg\ftd\ToolbarFirstTimeDialog.css, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\ui\dlg\ftd\ToolbarFirstTimeDialog.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\ui\dlg\ftd\images\app-store-icon.png, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\ui\dlg\ftd\images\arrow.png, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\ui\dlg\ftd\images\dialog_tip_left.png, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\ui\dlg\ftd\images\dialog_tip_right.png, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\ui\dlg\ftd\images\divider.png, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\ui\dlg\ftd\images\emailNotifier.gif, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\ui\dlg\ftd\images\facebook.png, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\ui\dlg\ftd\images\radio.GIF, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\ui\dlg\ftd\images\Thumbs.db, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\ui\dlg\ftd\images\truste_welcome.GIF, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\ui\dlg\ftd\images\weather.GIF, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\ui\dlg\restart\main.html, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\ui\dlg\restart\restartDialog.css, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\ui\dlg\restart\restartDialog.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\ui\dlg\restart\images\2.0--spec--kicker.png, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\ui\dlg\restart\images\content-pattern.png, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\ui\dlg\restart\images\content-sep.png, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\ui\dlg\restart\images\OK-Button-Default.png, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\ui\dlg\restart\images\OK-Button-MouseOver.png, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\ui\dlg\restart\images\OK-Button-OnClick.png, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\ui\dlg\restart\images\x.png, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\ui\gadgetFrame\gf.html, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\ui\gadgetFrame\lgf.html, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\ui\gf\gf.html, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\ui\gf\lgf.html, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\ui\gf\css\gf.css, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\ui\gf\css\gf_ie.css, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\ui\gf\img\ie_back.gif, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\ui\gf\img\loader.gif, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\ui\gf\img\resize.gif, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\ui\gf\img\sprites.png, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\ui\gf\js\gf.view.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\ui\gf\js\lgf.view.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\ui\menu\popup.html, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\ui\menu\css\menu.css, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\ui\menu\img\arrow-down-strong.png, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\ui\menu\img\arrow-down.png, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\ui\menu\img\arrow-left-strong.png, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\ui\menu\img\arrow-left.png, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\ui\menu\img\arrow-right-strong.png, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\ui\menu\img\arrow-right.png, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\ui\menu\img\arrows.png, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\ui\menu\js\jquery.ellipsis.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\ui\menu\js\jquery.scrollTo-1.4.2-min.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\ui\menu\js\menu.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\ui\menu\js\renderHandler.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\ui\menu\js\scrollers.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\ui\menu\js\showHandler.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\browserAppApi.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\APPLICATION_BUTTON\bgpage.html, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\APPLICATION_BUTTON\Js\bgpage.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\APPLICATION_BUTTON\resources\defaultEngineImage.gif, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\EMAIL_NOTIFIER\bgPage.html, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\EMAIL_NOTIFIER\popup.html, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\EMAIL_NOTIFIER\css\en.css, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\EMAIL_NOTIFIER\css\en_rtl.css, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\EMAIL_NOTIFIER\css\jquery.jscrollpane.css, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\EMAIL_NOTIFIER\js\AccountManager.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\EMAIL_NOTIFIER\js\bgPage.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\EMAIL_NOTIFIER\js\EN.model.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\EMAIL_NOTIFIER\js\IMAPExecuter.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\EMAIL_NOTIFIER\js\Inboxer.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\EMAIL_NOTIFIER\js\Invoker.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\EMAIL_NOTIFIER\js\MailDecoder.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\EMAIL_NOTIFIER\js\MailMerger.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\EMAIL_NOTIFIER\js\POP3Executer.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\EMAIL_NOTIFIER\js\Popup.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\EMAIL_NOTIFIER\js\providerHelper.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\EMAIL_NOTIFIER\js\Providers.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\EMAIL_NOTIFIER\js\SettingsManager.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\EMAIL_NOTIFIER\js\Timer.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\EMAIL_NOTIFIER\js\Translation.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\EMAIL_NOTIFIER\js\Utils.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\HIGHLIGHTER\bgpage.html, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\HIGHLIGHTER\embedded.html, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\HIGHLIGHTER\popup.html, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\HIGHLIGHTER\css\embedded.css, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\HIGHLIGHTER\css\popup.css, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\HIGHLIGHTER\css\reset.css, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\HIGHLIGHTER\js\bgpage.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\HIGHLIGHTER\js\embedded.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\HIGHLIGHTER\js\higlighter_script.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\HIGHLIGHTER\js\popup.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\MULTI_RSS\bgpage.html, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\MULTI_RSS\popup.html, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\MULTI_RSS\css\popup.css, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\MULTI_RSS\img\arrows.png, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\MULTI_RSS\img\badges.png, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\MULTI_RSS\img\icons.png, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\MULTI_RSS\js\bgpage.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\MULTI_RSS\js\popup.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\MULTI_RSS\js\resources\webAppUtils.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\NOTIFICATION\bgpage.html, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\NOTIFICATION\embedded.html, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\NOTIFICATION\NotificationPopup.html, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\NOTIFICATION\Settings.html, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\NOTIFICATION\css\gadget.css, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\NOTIFICATION\css\general.css, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\NOTIFICATION\css\Main.css, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\NOTIFICATION\css\newMain.css, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\NOTIFICATION\css\settings.css, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\NOTIFICATION\css\ui.stepper.css, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\NOTIFICATION\images\closeIcon.png, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\NOTIFICATION\images\downArrow.png, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\NOTIFICATION\images\settingsIcon.png, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\NOTIFICATION\images\upArrow.png, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\NOTIFICATION\images\dark\close.png, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\NOTIFICATION\images\dark\Next.png, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\NOTIFICATION\images\dark\Next_hover.png, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\NOTIFICATION\images\dark\powered-by.png, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\NOTIFICATION\images\dark\Prev.png, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\NOTIFICATION\images\dark\Prev_hover.png, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\NOTIFICATION\images\dark\settings.png, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\NOTIFICATION\images\light\close.png, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\NOTIFICATION\images\light\Next.png, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\NOTIFICATION\images\light\Next_hover.png, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\NOTIFICATION\images\light\powered-by.png, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\NOTIFICATION\images\light\Prev.png, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\NOTIFICATION\images\light\Prev_hover.png, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\NOTIFICATION\images\light\settings.png, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\NOTIFICATION\js\AppName.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\NOTIFICATION\js\bgpage.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\NOTIFICATION\js\bgpageEarly.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\NOTIFICATION\js\commons.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\NOTIFICATION\js\jquery.ezmark.min.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\NOTIFICATION\js\notification.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\NOTIFICATION\js\NotificationSettings.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\NOTIFICATION\js\notificationUIManger.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\NOTIFICATION\js\Settings.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\NOTIFICATION\js\stepper.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\NOTIFICATION\js\ToolbarAndAppsSettings.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\Optimizer\bgpage.html, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\Optimizer\js\bgpage.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\PRICE_GONG\bgpage.html, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\PRICE_GONG\bgpage.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\PRICE_GONG\pg_offers.html, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\PRICE_GONG\pg_offers.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\PRICE_GONG\agreement\agree.html, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\PRICE_GONG\agreement\agree.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\PRICE_GONG\agreement\Close.png, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\PRICE_GONG\agreement\Image.png, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\PRICE_GONG\agreement\Logo.png, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\PRICE_GONG\agreement\OK_Btn.png, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\PRICE_GONG\agreement\Topbg.png, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\PRICE_GONG\css\gadget.css, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\PRICE_GONG\css\ie7styles.css, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\PRICE_GONG\css\iestyle.css, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\PRICE_GONG\css\custom-theme\jquery-ui-1.8.10.custom.css, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\PRICE_GONG\images\icon.png, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\RADIO_PLAYER\bgpage.html, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\RADIO_PLAYER\embedded.html, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\RADIO_PLAYER\popup2.html, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\RADIO_PLAYER\css\gadget.css, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\RADIO_PLAYER\css\jquery.jscrollpane.css, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\RADIO_PLAYER\css\reset.css, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\RADIO_PLAYER\css\stations.css, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\RADIO_PLAYER\css\custom-theme\jquery-ui-1.8.10.custom.css, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\RADIO_PLAYER\js\bgpage.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\RADIO_PLAYER\js\bgpageEarly.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\RADIO_PLAYER\js\embedded.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\RADIO_PLAYER\js\embeddedEarly.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\RADIO_PLAYER\js\localization.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\RADIO_PLAYER\js\player.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\RADIO_PLAYER\js\popup.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\RADIO_PLAYER\js\resources\BrowserDetect.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\RADIO_PLAYER\js\resources\jquery-ui-1.8.10.custom.min.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\RADIO_PLAYER\js\resources\jquery.jscrollpane.min.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\RADIO_PLAYER\js\resources\jquery.scrollTo-1.4.2-min.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\RADIO_PLAYER\js\resources\radioCommon.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\RADIO_PLAYER\js\resources\system.js, , [3c61d2c66426191da4f13632ad592fd1],
Preventivní kontrola logu
Re: Preventivní kontrola logu
OS Win 10 Home
Základní deska MSI H110M PRO-VD,
2jádrový procesor Intel Core i3-6098P (3.6GHz, HyperThreading), 8GB operační paměti DDR4 2133 MHz TEAM Elite,
Pevný disk 1TB Seagate Barracuda,
Grafická karta NVIDIA GeForce GTX 750 Ti 2GB GDDR5,
DVD±RW mechanika LG,
Zdroj CHIEFTEC GPB-350S, 350 W
Skříň AIO Virtuo TAB04 Champagne
Základní deska MSI H110M PRO-VD,
2jádrový procesor Intel Core i3-6098P (3.6GHz, HyperThreading), 8GB operační paměti DDR4 2133 MHz TEAM Elite,
Pevný disk 1TB Seagate Barracuda,
Grafická karta NVIDIA GeForce GTX 750 Ti 2GB GDDR5,
DVD±RW mechanika LG,
Zdroj CHIEFTEC GPB-350S, 350 W
Skříň AIO Virtuo TAB04 Champagne
Re: Preventivní kontrola logu
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\RADIO_PLAYER\js\resources\utils.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\SEARCH\bgpage.html, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\SEARCH\embedded.html, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\SEARCH\information.popup.html, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\SEARCH\buildSettings\SearchApp_Ant.xml, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\SEARCH\Css\information.popup.css, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\SEARCH\js\bgpage.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\SEARCH\js\common.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\SEARCH\js\contentManager.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\SEARCH\js\historyProvider.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\SEARCH\js\information.popup.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\SEARCH\js\layoutManager.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\SEARCH\js\searchListener.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\SEARCH\js\selectionListener.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\SEARCH\js\suggestProvider.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\SEARCH\resources\history--x-default.png, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\SEARCH\resources\history--x-mouseover.png, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\SEARCH\resources\menu.icon.apps.png, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\SEARCH\view\script\view.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\SEARCH\view\style\default.css, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\SEARCH\view\style\rsx\dd-arrow.png, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\SEARCH\view\style\rsx\ie8.png, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\TWITTER\bgpage.html, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\TWITTER\popup.css, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\TWITTER\popup.html, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\TWITTER\img\icons.png, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\TWITTER\img\inbox.png, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\TWITTER\img\scroll_down.png, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\TWITTER\img\scroll_up.png, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\TWITTER\js\bgpage.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\TWITTER\js\localization.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\TWITTER\js\popup.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\WEATHER\bgpage.html, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\WEATHER\popup.html, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\WEATHER\css\gadget.css, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\WEATHER\css\ie7styles.css, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\WEATHER\css\iestyle.css, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\WEATHER\js\bgpage.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\WEATHER\js\common.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\WEATHER\js\date-functions.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\WEATHER\js\gadget.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\WEATHER\js\jquery.autocomplete.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\WEATHER\js\jquery.textshadow.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\WEATHER\js\logic.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\WEATHER\js\main.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\WEATHER\js\xPath.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\core\corelibs.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\core\framework.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\core\utils.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\lib\al.view.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\lib\al.viewPerformanceLog.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\lib\background.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\lib\ie_fix.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\lib\jquery.min.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\lib\jquery.mousewheel.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\lib\jquery.text-overflow.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\lib\jquery.tmpl.min.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\lib\jquery.xml2json.custom.min.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\lib\jquery.xml2json.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\lib\json2.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\lib\json2.min.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\lib\script2injectEmbedded.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\lib\script2injectPopup.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\lib\sdk.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\lib\jquery.alerts\jquery.alerts.css, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\lib\jquery.alerts\jquery.alerts.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\lib\jquery.alerts\images\help.gif, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\lib\jquery.alerts\images\important.gif, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\lib\jquery.alerts\images\info.gif, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\lib\jquery.alerts\images\title.gif, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\lib\jquery.jscrollpane\jquery.jscrollpane.css, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\lib\jquery.jscrollpane\jquery.jscrollpane.min.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\sl\serviceLayer.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\test\toolbar\backstage.html, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\test\toolbar\frontstage.html, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\test\toolbar\navigationTests.html, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\test\toolbar\popup.html, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\test\toolbar\js\framework.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\test\toolbar\lib\jquery-1.4.1.min.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\test\toolbar\lib\jquery-1.5.min.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\test\toolbar\lib\jquery-1.6.2.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\test\toolbar\lib\json2.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\test\toolbar\lib\LAB.min.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\test\toolbar\lib\log4javascript.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\test\toolbar\lib\log4javascriptStub4Release.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\components\autoCompleteManager.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\components\mam\mamModule.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\ctypes\FirefoxCtype.dll, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\defaults\preferences\defaults.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\lib\log4conduit.jsm, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\lib\log4moz.jsm, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\META-INF\manifest.mf, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\META-INF\zigbert.rsa, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\META-INF\zigbert.sf, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\modules\BackStage.jsm, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\modules\Commons.jsm, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\modules\FrontStage.jsm, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Plugins\np-mswmp.dll, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Plugins\npFirefoxPlugin.dll, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.Delta.A, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\prefs.js, Dobré: (), Špatné: (user_pref("browser.newtab.url", "http://www.delta-homes.com/newtab/?type=nt&ts=1419426674&from=wpm12233&uid=HitachiXHTS545032B9A300_100823PBPC03FDCUZ40LX");), ,[d6c7bade0a809f97b25d1b51ce381ce4]
PUP.Optional.Ask.A, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\prefs.js, Dobré: (), Špatné: (user_pref("keyword.URL", "http://dts.search.ask.com/sr?src=ffb&gct=ds&appid=103&systemid=473&v=a15005-147&apn_dtid=BND101&apn_ptnrs=AG1&apn_uid=4250723312114904&o=APN10640&q=");), ,[eeaf2177e5a52d093f30bcb07e88cd33]
PUP.Optional.Babylon.A, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\prefs.js, Dobré: (), Špatné: (user_pref("extensions.BabylonToolbar.aflt", "babclient");), ,[7d2041574c3eb3833c58a2ca33d3ce32]
PUP.Optional.Babylon.A, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\prefs.js, Dobré: (), Špatné: (ces
/* Do not edit this file.
*
* If you ma), ,[0994475198f239fd207424480bfb47b9]
PUP.Optional.Babylon.A, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\prefs.js, Dobré: (), Špatné: (references
/* Do not edit this file.
*
* If yo), ,[9eff61374d3deb4b9301beaecc3a857b]
PUP.Optional.Babylon.A, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\prefs.js, Dobré: (), Špatné: (erences
/* Do not edit this file.
*
* If you make changes to this file ), ,[dac39ff9058573c34450fd6fc5412ad6]
PUP.Optional.Babylon.A, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\prefs.js, Dobré: (), Špatné: ( this file.
*
* If you make changes to this file whil), ,[108d890f5c2e0f270c8891db1de9dd23]
PUP.Optional.Babylon.A, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\prefs.js, Dobré: (), Špatné: (ces
/* Do not edit this file.
*
* If you make ch), ,[afee1286b1d964d2692b7def47bf0df3]
PUP.Optional.Babylon.A, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\prefs.js, Dobré: (), Špatné: (ences
/* Do not edit this file.
*
* If you make changes to this file while the application is running,
* the changes will be overwritten when the applicati), ,[8c116c2cf39778beff958ae251b5f907]
PUP.Optional.Babylon.A, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\prefs.js, Dobré: (), Špatné: (
* the changes will be overwritten when the appl), ,[e8b5435591f9f541c9cbcf9d0402b64a]
PUP.Optional.Babylon.A, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\prefs.js, Dobré: (), Špatné: (references
/* Do not edit this file.
*
* If you make changes to ), ,[1885722656341e18e4b076f664a215eb]
PUP.Optional.Babylon.A, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\prefs.js, Dobré: (), Špatné: (ot edit this file.
*
* If you make changes to this file), ,[960790082169ac8ae5af86e658aecb35]
PUP.Optional.Babylon.A, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\prefs.js, Dobré: (), Špatné: (s
/* Do not edit this file.
*
* If you make c), ,[0b929cfcfe8c5cda058f80ec798d2cd4]
PUP.Optional.Babylon.A, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\prefs.js, Dobré: (), Špatné: (ferences
/* Do not edit this file.
*
* If you make changes to this file while the appli), ,[cfce1e7a93f746f097fdabc1d3337e82]
PUP.Optional.Babylon.A, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\prefs.js, Dobré: (), Špatné: (
* If you make changes to this file while the application is r), ,[e1bccdcb4446d462fb99f577ff0709f7]
PUP.Optional.Babylon.A, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\prefs.js, Dobré: (), Špatné: (
/* Do not edit this file.
*
* If you make changes to this ), ,[8a1304947a1096a05c386507d234bc44]
PUP.Optional.Babylon.A, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\prefs.js, Dobré: (), Špatné: (
/* Do not edit this file.
*
* If you make ch), ,[8a13cdcb99f169cd2e6605678f77d32d]
PUP.Optional.Babylon.A, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\prefs.js, Dobré: (), Špatné: (Preferences
/* Do not edit this file.
*
* If), ,[9d00e1b74b3f4aecabe996d6b15519e7]
PUP.Optional.Babylon.A, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\prefs.js, Dobré: (), Špatné: (eferences
/* Do not edit this file.
*
* If you make), ,[504d7f19c6c4f145efa53d2f9c6a20e0]
PUP.Optional.Babylon.A, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\prefs.js, Dobré: (), Špatné: (es
/* Do not edit this file.
*
* If you make cha), ,[4558f8a0a3e7b97d098b93d9c046af51]
PUP.Optional.Babylon.A, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\prefs.js, Dobré: (), Špatné: (ences
/* Do not edit this file.
*
* If you make), ,[2d70c3d5058588ae91030468df27ef11]
PUP.Optional.Babylon.A, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\prefs.js, Dobré: (), Špatné: (rences
/* Do not edit this file.
*
* If you make changes to this file ), ,[77267622f99177bfc5cf70fcb15510f0]
PUP.Optional.Babylon.A, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\prefs.js, Dobré: (), Špatné: (t this file.
*
* If you make changes to this file ), ,[108dd2c6662461d58113c3a90bfb3ac6]
PUP.Optional.Babylon.A, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\prefs.js, Dobré: (), Špatné: (rences
/* Do not edit this file.
*
* If you make c), ,[eab3cdcb3e4c9b9b880c6606778f619f]
PUP.Optional.Babylon.A, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\prefs.js, Dobré: (), Špatné: (ces
/* Do not edit this file.
*
* If you make changes to thi), ,[841991077b0f96a0801475f759ad5ca4]
PUP.Optional.Conduit.A, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\prefs.js, Dobré: (), Špatné: (user_pref("CT2463487.SearchFromAddressBarUrl", "http://search.conduit.com/ResultsExt.aspx?ctid=CT2463487&SearchSource=2&CUI=SB_CUI&q=");), ,[cad30692f39757df3bb16507b15511ef]
PUP.Optional.Conduit.A, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\prefs.js, Dobré: (), Špatné: (user_pref("CT2463487.CT2463487.lastNewTabSettings", "{\"isEnabled\":true,\"newTabUrl\":\"http://search.conduit.com/?ctid=CT2463487&octid=CT2463487&SearchSource=15&CUI=SB_CUI&SSPV=EB_SSPV&Lay=1&UM=UM_ID\"}");), ,[0d90b8e02a608babea10cd9fb6500bf5]
PUP.Optional.Ask.A, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\searchplugins\Ask.xml, , [aeef4d4bdab059dd6557d395b74fef11],
PUP.Optional.Babylon.A, C:\Users\maminka\AppData\Roaming\Mozilla\Firefox\Profiles\s2eioa1u.default\prefs.js, Dobré: (), Špatné: (user_pref("extensions.BabylonToolbar.prtkDS", 0);), ,[039a3a5e6b1fba7cb7dd68049e68d32d]
PUP.Optional.Babylon.A, C:\Users\maminka\AppData\Roaming\Mozilla\Firefox\Profiles\s2eioa1u.default\prefs.js, Dobré: (), Špatné: (Preferences
/* Do not edit this file.
*
* If), ,[e8b5197f6b1f47eff3a181eb5aacfa06]
Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)
(end)
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\SEARCH\bgpage.html, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\SEARCH\embedded.html, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\SEARCH\information.popup.html, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\SEARCH\buildSettings\SearchApp_Ant.xml, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\SEARCH\Css\information.popup.css, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\SEARCH\js\bgpage.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\SEARCH\js\common.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\SEARCH\js\contentManager.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\SEARCH\js\historyProvider.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\SEARCH\js\information.popup.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\SEARCH\js\layoutManager.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\SEARCH\js\searchListener.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\SEARCH\js\selectionListener.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\SEARCH\js\suggestProvider.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\SEARCH\resources\history--x-default.png, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\SEARCH\resources\history--x-mouseover.png, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\SEARCH\resources\menu.icon.apps.png, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\SEARCH\view\script\view.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\SEARCH\view\style\default.css, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\SEARCH\view\style\rsx\dd-arrow.png, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\SEARCH\view\style\rsx\ie8.png, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\TWITTER\bgpage.html, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\TWITTER\popup.css, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\TWITTER\popup.html, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\TWITTER\img\icons.png, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\TWITTER\img\inbox.png, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\TWITTER\img\scroll_down.png, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\TWITTER\img\scroll_up.png, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\TWITTER\js\bgpage.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\TWITTER\js\localization.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\TWITTER\js\popup.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\WEATHER\bgpage.html, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\WEATHER\popup.html, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\WEATHER\css\gadget.css, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\WEATHER\css\ie7styles.css, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\WEATHER\css\iestyle.css, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\WEATHER\js\bgpage.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\WEATHER\js\common.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\WEATHER\js\date-functions.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\WEATHER\js\gadget.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\WEATHER\js\jquery.autocomplete.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\WEATHER\js\jquery.textshadow.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\WEATHER\js\logic.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\WEATHER\js\main.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\al\wa\WEATHER\js\xPath.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\core\corelibs.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\core\framework.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\core\utils.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\lib\al.view.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\lib\al.viewPerformanceLog.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\lib\background.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\lib\ie_fix.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\lib\jquery.min.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\lib\jquery.mousewheel.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\lib\jquery.text-overflow.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\lib\jquery.tmpl.min.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\lib\jquery.xml2json.custom.min.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\lib\jquery.xml2json.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\lib\json2.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\lib\json2.min.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\lib\script2injectEmbedded.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\lib\script2injectPopup.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\lib\sdk.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\lib\jquery.alerts\jquery.alerts.css, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\lib\jquery.alerts\jquery.alerts.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\lib\jquery.alerts\images\help.gif, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\lib\jquery.alerts\images\important.gif, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\lib\jquery.alerts\images\info.gif, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\lib\jquery.alerts\images\title.gif, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\lib\jquery.jscrollpane\jquery.jscrollpane.css, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\lib\jquery.jscrollpane\jquery.jscrollpane.min.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\tb\sl\serviceLayer.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\test\toolbar\backstage.html, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\test\toolbar\frontstage.html, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\test\toolbar\navigationTests.html, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\test\toolbar\popup.html, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\test\toolbar\js\framework.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\test\toolbar\lib\jquery-1.4.1.min.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\test\toolbar\lib\jquery-1.5.min.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\test\toolbar\lib\jquery-1.6.2.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\test\toolbar\lib\json2.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\test\toolbar\lib\LAB.min.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\test\toolbar\lib\log4javascript.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Chrome\CT2463487\content\test\toolbar\lib\log4javascriptStub4Release.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\components\autoCompleteManager.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\components\mam\mamModule.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\ctypes\FirefoxCtype.dll, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\defaults\preferences\defaults.js, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\lib\log4conduit.jsm, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\lib\log4moz.jsm, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\META-INF\manifest.mf, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\META-INF\zigbert.rsa, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\META-INF\zigbert.sf, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\modules\BackStage.jsm, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\modules\Commons.jsm, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\modules\FrontStage.jsm, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Plugins\np-mswmp.dll, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.ConduitTB.Gen, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}\Plugins\npFirefoxPlugin.dll, , [3c61d2c66426191da4f13632ad592fd1],
PUP.Optional.Delta.A, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\prefs.js, Dobré: (), Špatné: (user_pref("browser.newtab.url", "http://www.delta-homes.com/newtab/?type=nt&ts=1419426674&from=wpm12233&uid=HitachiXHTS545032B9A300_100823PBPC03FDCUZ40LX");), ,[d6c7bade0a809f97b25d1b51ce381ce4]
PUP.Optional.Ask.A, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\prefs.js, Dobré: (), Špatné: (user_pref("keyword.URL", "http://dts.search.ask.com/sr?src=ffb&gct=ds&appid=103&systemid=473&v=a15005-147&apn_dtid=BND101&apn_ptnrs=AG1&apn_uid=4250723312114904&o=APN10640&q=");), ,[eeaf2177e5a52d093f30bcb07e88cd33]
PUP.Optional.Babylon.A, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\prefs.js, Dobré: (), Špatné: (user_pref("extensions.BabylonToolbar.aflt", "babclient");), ,[7d2041574c3eb3833c58a2ca33d3ce32]
PUP.Optional.Babylon.A, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\prefs.js, Dobré: (), Špatné: (ces
/* Do not edit this file.
*
* If you ma), ,[0994475198f239fd207424480bfb47b9]
PUP.Optional.Babylon.A, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\prefs.js, Dobré: (), Špatné: (references
/* Do not edit this file.
*
* If yo), ,[9eff61374d3deb4b9301beaecc3a857b]
PUP.Optional.Babylon.A, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\prefs.js, Dobré: (), Špatné: (erences
/* Do not edit this file.
*
* If you make changes to this file ), ,[dac39ff9058573c34450fd6fc5412ad6]
PUP.Optional.Babylon.A, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\prefs.js, Dobré: (), Špatné: ( this file.
*
* If you make changes to this file whil), ,[108d890f5c2e0f270c8891db1de9dd23]
PUP.Optional.Babylon.A, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\prefs.js, Dobré: (), Špatné: (ces
/* Do not edit this file.
*
* If you make ch), ,[afee1286b1d964d2692b7def47bf0df3]
PUP.Optional.Babylon.A, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\prefs.js, Dobré: (), Špatné: (ences
/* Do not edit this file.
*
* If you make changes to this file while the application is running,
* the changes will be overwritten when the applicati), ,[8c116c2cf39778beff958ae251b5f907]
PUP.Optional.Babylon.A, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\prefs.js, Dobré: (), Špatné: (
* the changes will be overwritten when the appl), ,[e8b5435591f9f541c9cbcf9d0402b64a]
PUP.Optional.Babylon.A, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\prefs.js, Dobré: (), Špatné: (references
/* Do not edit this file.
*
* If you make changes to ), ,[1885722656341e18e4b076f664a215eb]
PUP.Optional.Babylon.A, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\prefs.js, Dobré: (), Špatné: (ot edit this file.
*
* If you make changes to this file), ,[960790082169ac8ae5af86e658aecb35]
PUP.Optional.Babylon.A, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\prefs.js, Dobré: (), Špatné: (s
/* Do not edit this file.
*
* If you make c), ,[0b929cfcfe8c5cda058f80ec798d2cd4]
PUP.Optional.Babylon.A, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\prefs.js, Dobré: (), Špatné: (ferences
/* Do not edit this file.
*
* If you make changes to this file while the appli), ,[cfce1e7a93f746f097fdabc1d3337e82]
PUP.Optional.Babylon.A, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\prefs.js, Dobré: (), Špatné: (
* If you make changes to this file while the application is r), ,[e1bccdcb4446d462fb99f577ff0709f7]
PUP.Optional.Babylon.A, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\prefs.js, Dobré: (), Špatné: (
/* Do not edit this file.
*
* If you make changes to this ), ,[8a1304947a1096a05c386507d234bc44]
PUP.Optional.Babylon.A, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\prefs.js, Dobré: (), Špatné: (
/* Do not edit this file.
*
* If you make ch), ,[8a13cdcb99f169cd2e6605678f77d32d]
PUP.Optional.Babylon.A, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\prefs.js, Dobré: (), Špatné: (Preferences
/* Do not edit this file.
*
* If), ,[9d00e1b74b3f4aecabe996d6b15519e7]
PUP.Optional.Babylon.A, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\prefs.js, Dobré: (), Špatné: (eferences
/* Do not edit this file.
*
* If you make), ,[504d7f19c6c4f145efa53d2f9c6a20e0]
PUP.Optional.Babylon.A, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\prefs.js, Dobré: (), Špatné: (es
/* Do not edit this file.
*
* If you make cha), ,[4558f8a0a3e7b97d098b93d9c046af51]
PUP.Optional.Babylon.A, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\prefs.js, Dobré: (), Špatné: (ences
/* Do not edit this file.
*
* If you make), ,[2d70c3d5058588ae91030468df27ef11]
PUP.Optional.Babylon.A, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\prefs.js, Dobré: (), Špatné: (rences
/* Do not edit this file.
*
* If you make changes to this file ), ,[77267622f99177bfc5cf70fcb15510f0]
PUP.Optional.Babylon.A, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\prefs.js, Dobré: (), Špatné: (t this file.
*
* If you make changes to this file ), ,[108dd2c6662461d58113c3a90bfb3ac6]
PUP.Optional.Babylon.A, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\prefs.js, Dobré: (), Špatné: (rences
/* Do not edit this file.
*
* If you make c), ,[eab3cdcb3e4c9b9b880c6606778f619f]
PUP.Optional.Babylon.A, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\prefs.js, Dobré: (), Špatné: (ces
/* Do not edit this file.
*
* If you make changes to thi), ,[841991077b0f96a0801475f759ad5ca4]
PUP.Optional.Conduit.A, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\prefs.js, Dobré: (), Špatné: (user_pref("CT2463487.SearchFromAddressBarUrl", "http://search.conduit.com/ResultsExt.aspx?ctid=CT2463487&SearchSource=2&CUI=SB_CUI&q=");), ,[cad30692f39757df3bb16507b15511ef]
PUP.Optional.Conduit.A, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\prefs.js, Dobré: (), Špatné: (user_pref("CT2463487.CT2463487.lastNewTabSettings", "{\"isEnabled\":true,\"newTabUrl\":\"http://search.conduit.com/?ctid=CT2463487&octid=CT2463487&SearchSource=15&CUI=SB_CUI&SSPV=EB_SSPV&Lay=1&UM=UM_ID\"}");), ,[0d90b8e02a608babea10cd9fb6500bf5]
PUP.Optional.Ask.A, C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\searchplugins\Ask.xml, , [aeef4d4bdab059dd6557d395b74fef11],
PUP.Optional.Babylon.A, C:\Users\maminka\AppData\Roaming\Mozilla\Firefox\Profiles\s2eioa1u.default\prefs.js, Dobré: (), Špatné: (user_pref("extensions.BabylonToolbar.prtkDS", 0);), ,[039a3a5e6b1fba7cb7dd68049e68d32d]
PUP.Optional.Babylon.A, C:\Users\maminka\AppData\Roaming\Mozilla\Firefox\Profiles\s2eioa1u.default\prefs.js, Dobré: (), Špatné: (Preferences
/* Do not edit this file.
*
* If), ,[e8b5197f6b1f47eff3a181eb5aacfa06]
Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)
(end)
OS Win 10 Home
Základní deska MSI H110M PRO-VD,
2jádrový procesor Intel Core i3-6098P (3.6GHz, HyperThreading), 8GB operační paměti DDR4 2133 MHz TEAM Elite,
Pevný disk 1TB Seagate Barracuda,
Grafická karta NVIDIA GeForce GTX 750 Ti 2GB GDDR5,
DVD±RW mechanika LG,
Zdroj CHIEFTEC GPB-350S, 350 W
Skříň AIO Virtuo TAB04 Champagne
Základní deska MSI H110M PRO-VD,
2jádrový procesor Intel Core i3-6098P (3.6GHz, HyperThreading), 8GB operační paměti DDR4 2133 MHz TEAM Elite,
Pevný disk 1TB Seagate Barracuda,
Grafická karta NVIDIA GeForce GTX 750 Ti 2GB GDDR5,
DVD±RW mechanika LG,
Zdroj CHIEFTEC GPB-350S, 350 W
Skříň AIO Virtuo TAB04 Champagne
-
Orcus
- člen Security týmu
-
Elite Level 10.5
- Příspěvky: 10645
- Registrován: duben 10
- Bydliště: Okolo rostou 3 růže =o)
- Pohlaví:
- Stav:
Offline
Re: Preventivní kontrola logu
Hezký.....
- Spusť znovu MbAM a dej Skenovat nyní
- Po proběhnutí programu se ti objeví hláška tak klikni na „Vše do karantény(smazat vybrané)“ a na „Exportovat záznam“ a vyber „textový soubor“ , soubor nějak pojmenuj a někam ho ulož. Zkopíruj se celý obsah toho logu.
====================================================
Spusť znovu AdwCleaner (u Windows Vista či Windows7, klikni na AdwCleaner pravým a vyber „Spustit jako správce“
Klikni na „ Smazat“
Program provede opravu, po automatickém restartu neukáže log (C:\AdwCleaner [S?].txt) , jeho obsah sem celý vlož.
====================================================
Stáhni si Junkware Removal Tool by Thisisu
na svojí plochu.
Deaktivuj si svůj antivirový program. Pravým tl. myši klikni na JRT.exe a vyber „spustit jako správce“. Pro pokračování budeš vyzván ke stisknutí jakékoliv klávesy. Na nějakou klikni.
Začne skenování programu. Skenování může trvat dloho , podle množství nákaz. Po ukončení skenu se objeví log (JRT.txt) , který se uloží na ploše.
Zkopíruj sem prosím celý jeho obsah.
====================================================
Stáhni si RogueKiller
32bit.:
http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe
64bit.:
http://www.sur-la-toile.com/RogueKiller ... lerX64.exe
na svojí plochu.
- Zavři všechny ostatní programy a prohlížeče.
- Pro OS Vista a win7 spusť program RogueKiller.exe jako správce , u XP poklepáním.
- počkej až skončí Prescan -vyhledávání škodlivých procesů.
- Zkontroluj , zda máš zaškrtnuto:
Kontrola MBR
Kontrola Faked
Antirootkit
-Potom klikni na „Prohledat“.
- Program skenuje procesy PC. Po proskenování klikni na „Zpráva“celý obsah logu sem zkopíruj.
Pokud je program blokován , zkus ho spustit několikrát. Pokud dále program nepůjde spustit a pracovat, přejmenuj ho na winlogon.exe.
- Spusť znovu MbAM a dej Skenovat nyní
- Po proběhnutí programu se ti objeví hláška tak klikni na „Vše do karantény(smazat vybrané)“ a na „Exportovat záznam“ a vyber „textový soubor“ , soubor nějak pojmenuj a někam ho ulož. Zkopíruj se celý obsah toho logu.
====================================================
Spusť znovu AdwCleaner (u Windows Vista či Windows7, klikni na AdwCleaner pravým a vyber „Spustit jako správce“
Klikni na „ Smazat“
Program provede opravu, po automatickém restartu neukáže log (C:\AdwCleaner [S?].txt) , jeho obsah sem celý vlož.
====================================================
Stáhni si Junkware Removal Tool by Thisisu
na svojí plochu.
Deaktivuj si svůj antivirový program. Pravým tl. myši klikni na JRT.exe a vyber „spustit jako správce“. Pro pokračování budeš vyzván ke stisknutí jakékoliv klávesy. Na nějakou klikni.
Začne skenování programu. Skenování může trvat dloho , podle množství nákaz. Po ukončení skenu se objeví log (JRT.txt) , který se uloží na ploše.
Zkopíruj sem prosím celý jeho obsah.
====================================================
Stáhni si RogueKiller
32bit.:
http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe
64bit.:
http://www.sur-la-toile.com/RogueKiller ... lerX64.exe
na svojí plochu.
- Zavři všechny ostatní programy a prohlížeče.
- Pro OS Vista a win7 spusť program RogueKiller.exe jako správce , u XP poklepáním.
- počkej až skončí Prescan -vyhledávání škodlivých procesů.
- Zkontroluj , zda máš zaškrtnuto:
Kontrola MBR
Kontrola Faked
Antirootkit
-Potom klikni na „Prohledat“.
- Program skenuje procesy PC. Po proskenování klikni na „Zpráva“celý obsah logu sem zkopíruj.
Pokud je program blokován , zkus ho spustit několikrát. Pokud dále program nepůjde spustit a pracovat, přejmenuj ho na winlogon.exe.
Láska hřeje, ale uhlí je uhlí. 
Log z HJT vkládejte do HJT sekce. Je-li moc dlouhý, rozděl jej do více zpráv.
Pár rad k bezpečnosti PC.
Po dobu mé nepřítomnosti mě zastupuje memphisto, jaro3 a Diallix
Pokud budete spokojeni , můžete podpořit naše fórum.
Log z HJT vkládejte do HJT sekce. Je-li moc dlouhý, rozděl jej do více zpráv.
Pár rad k bezpečnosti PC.
Po dobu mé nepřítomnosti mě zastupuje memphisto, jaro3 a Diallix
Pokud budete spokojeni , můžete podpořit naše fórum.
Re: Preventivní kontrola logu
Malwarebytes Anti-Malware
www.malwarebytes.org
Datum skenování: 27.5.2015
Čas skenování: 22:10:43
Protokol: Malwarebytes Anti-Malware.txt
Správce: Ano
Verze: 2.01.6.1022
Databáze malwaru: v2015.05.27.04
Databáze rootkitů: v2015.05.24.01
Licence: Bezplatná verze
Ochrana proti malwaru: Vypnuto
Ochrana proti škodlivým webovým stránkám: Vypnuto
Ochrana programu: Vypnuto
OS: Windows 7 Service Pack 1
CPU: x64
Souborový systém: NTFS
Uživatel: Elik
Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 424698
Uplynulý čas: 36 min, 4 sek
Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto
Procesy: 0
(Nenalezeny žádné škodlivé položky)
Moduly: 0
(Nenalezeny žádné škodlivé položky)
Klíče registru: 0
(Nenalezeny žádné škodlivé položky)
Hodnoty registru: 0
(Nenalezeny žádné škodlivé položky)
Data registru: 0
(Nenalezeny žádné škodlivé položky)
Složky: 0
(Nenalezeny žádné škodlivé položky)
Soubory: 0
(Nenalezeny žádné škodlivé položky)
Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)
(end)
www.malwarebytes.org
Datum skenování: 27.5.2015
Čas skenování: 22:10:43
Protokol: Malwarebytes Anti-Malware.txt
Správce: Ano
Verze: 2.01.6.1022
Databáze malwaru: v2015.05.27.04
Databáze rootkitů: v2015.05.24.01
Licence: Bezplatná verze
Ochrana proti malwaru: Vypnuto
Ochrana proti škodlivým webovým stránkám: Vypnuto
Ochrana programu: Vypnuto
OS: Windows 7 Service Pack 1
CPU: x64
Souborový systém: NTFS
Uživatel: Elik
Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 424698
Uplynulý čas: 36 min, 4 sek
Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto
Procesy: 0
(Nenalezeny žádné škodlivé položky)
Moduly: 0
(Nenalezeny žádné škodlivé položky)
Klíče registru: 0
(Nenalezeny žádné škodlivé položky)
Hodnoty registru: 0
(Nenalezeny žádné škodlivé položky)
Data registru: 0
(Nenalezeny žádné škodlivé položky)
Složky: 0
(Nenalezeny žádné škodlivé položky)
Soubory: 0
(Nenalezeny žádné škodlivé položky)
Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)
(end)
OS Win 10 Home
Základní deska MSI H110M PRO-VD,
2jádrový procesor Intel Core i3-6098P (3.6GHz, HyperThreading), 8GB operační paměti DDR4 2133 MHz TEAM Elite,
Pevný disk 1TB Seagate Barracuda,
Grafická karta NVIDIA GeForce GTX 750 Ti 2GB GDDR5,
DVD±RW mechanika LG,
Zdroj CHIEFTEC GPB-350S, 350 W
Skříň AIO Virtuo TAB04 Champagne
Základní deska MSI H110M PRO-VD,
2jádrový procesor Intel Core i3-6098P (3.6GHz, HyperThreading), 8GB operační paměti DDR4 2133 MHz TEAM Elite,
Pevný disk 1TB Seagate Barracuda,
Grafická karta NVIDIA GeForce GTX 750 Ti 2GB GDDR5,
DVD±RW mechanika LG,
Zdroj CHIEFTEC GPB-350S, 350 W
Skříň AIO Virtuo TAB04 Champagne
Re: Preventivní kontrola logu
# AdwCleaner v4.205 - Log vytvořen 27/05/2015 v 22:52:14
# Aktualizováno 21/05/2015 by Xplode
# Databáze : 2015-05-25.3 [Server]
# Operační system : Windows 7 Home Premium Service Pack 1 (x64)
# Uživatelské jméno : Elik - ACER
# Spuštěno z : C:\Users\Elik\Desktop\adwcleaner_4.205.exe
# Nastavení : Čištění
***** [ Služby ] *****
[#] Služba Smazáno : IePluginServices
[#] Služba Smazáno : iSafeKrnl
[#] Služba Smazáno : iSafeKrnlBoot
[#] Služba Smazáno : iSafeKrnlKit
[#] Služba Smazáno : iSafeKrnlMon
[#] Služba Smazáno : iSafeKrnlR3
[#] Služba Smazáno : iSafeNetFilter
[#] Služba Smazáno : iSafeService
[#] Služba Smazáno : Partner Service
[#] Služba Smazáno : SafetyNutManager
[#] Služba Smazáno : TBSrv
[#] Služba Smazáno : winzipersvc
[#] Služba Smazáno : F06DEFF2-5B9C-490D-910F-35D3A91196222
***** [ Soubory / Složky ] *****
Složka Smazáno : C:\ProgramData\Ask
Složka Smazáno : C:\ProgramData\Babylon
[#] Složka Smazáno : C:\ProgramData\BitGuard
[#] Složka Smazáno : C:\ProgramData\Browser Manager
[#] Složka Smazáno : C:\ProgramData\BrowserProtect
Složka Smazáno : C:\ProgramData\IePluginServices
Složka Smazáno : C:\ProgramData\Partner
Složka Smazáno : C:\ProgramData\SoftSafe
Složka Smazáno : C:\ProgramData\StarApp
Složka Smazáno : C:\ProgramData\Tbccint
Složka Smazáno : C:\ProgramData\WinterSoft
Složka Smazáno : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZipper
Složka Smazáno : C:\Program Files (x86)\AppsHat Mobile Apps
Složka Smazáno : C:\Program Files (x86)\Delta
Složka Smazáno : C:\Program Files (x86)\DownLite
Složka Smazáno : C:\Program Files (x86)\GadgetBox
[!] Složka Smazáno : C:\Program Files (x86)\Movies App
Složka Smazáno : C:\Program Files (x86)\Movies Toolbar
Složka Smazáno : C:\Program Files (x86)\SimpleSpeedy
Složka Smazáno : C:\Program Files (x86)\SmartTweak
Složka Smazáno : C:\Program Files (x86)\Tbccint
Složka Smazáno : C:\Program Files (x86)\WinZipper
[!] Složka Smazáno : C:\Program Files (x86)\Elex-tech
Složka Smazáno : C:\Users\Elik\AppData\Local\Tbccint
Složka Smazáno : C:\Users\Elik\AppData\LocalLow\Delta
Složka Smazáno : C:\Users\Elik\AppData\LocalLow\Tbccint
Složka Smazáno : C:\Users\Elik\AppData\Roaming\Babylon
Složka Smazáno : C:\Users\Elik\AppData\Roaming\DownLite
Složka Smazáno : C:\Users\Elik\AppData\Roaming\eCyber
Složka Smazáno : C:\Users\Elik\AppData\Roaming\Movies Toolbar
Složka Smazáno : C:\Users\Elik\AppData\Roaming\PerformerSoft
Složka Smazáno : C:\Users\Elik\AppData\Roaming\Systweak
Složka Smazáno : C:\Users\Elik\AppData\Roaming\WinZipper
Složka Smazáno : C:\Users\Elik\AppData\Roaming\Elex-tech
Složka Smazáno : C:\Users\Elik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SmartTweak Software
Složka Smazáno : C:\Users\maminka\AppData\Roaming\Systweak
Složka Smazáno : C:\Users\maminka\AppData\Roaming\Elex-tech
Složka Smazáno : C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
Složka Smazáno : C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\Extensions\detgdp@gmail.com
Složka Smazáno : C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\Extensions\5129d795c3ca2@5129d795c3cdc.com
Složka Smazáno : C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\Extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}
Soubor Smazáno : C:\END
Soubor Smazáno : C:\Windows\System32\log\iSafeKrnlCall.log
Soubor Smazáno : C:\Windows\System32\roboot64.exe
Soubor Smazáno : C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\invalidprefs.js
Soubor Smazáno : C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\searchplugins\Askcom.xml
Soubor Smazáno : C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\searchplugins\GadgetBox.xml
***** [ Naplánované úlohy ] *****
***** [ Zástupci ] *****
Zástupce Vyléčeno : C:\Users\Elik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
Zástupce Vyléčeno : C:\Users\Elik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk
Zástupce Vyléčeno : C:\Users\Elik\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
***** [ Registry ] *****
Klíč Smazáno : HKLM\SOFTWARE\Google\Chrome\Extensions\aaaaojmikegpiepcfdkkjaplodkpfmlo
Klíč Smazáno : HKCU\Software\Classes\pokki
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\escort.DLL
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\escortApp.DLL
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\escortEng.DLL
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\escorTlbr.DLL
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\esrv.EXE
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\kt_bho_dll.dll
Klíč Smazáno : HKLM\SOFTWARE\Classes\kt_bho.KettleBho
Klíč Smazáno : HKLM\SOFTWARE\Classes\kt_bho.KettleBho.1
Klíč Smazáno : HKLM\SOFTWARE\Classes\Prod.cap
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bitguard.exe
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bprotect.exe
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsemngr.exe
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserdefender.exe
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsermngr.exe
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserprotect.exe
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bundlesweetimsetup.exe
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\cltmngsvc.exe
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\delta babylon.exe
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\delta tb.exe
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\delta2.exe
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\deltainstaller.exe
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\deltasetup.exe
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\deltatb.exe
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\deltatb_2501-c733154b.exe
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\iminentsetup.exe
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\sweetimsetup.exe
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\tbdelta.exetoolbar783881609.exe
Hodnota Smazáno : HKLM\SYSTEM\ControlSet001\Control\Session Manager\AppCertDlls [x64]
Hodnota Smazáno : HKLM\SYSTEM\ControlSet001\Control\Session Manager\AppCertDlls [x86]
Hodnota Smazáno : HKLM\SYSTEM\ControlSet002\Control\Session Manager\AppCertDlls [x64]
Hodnota Smazáno : HKLM\SYSTEM\ControlSet002\Control\Session Manager\AppCertDlls [x86]
Klíč Smazáno : HKCU\Software\Mozilla\Extends
Klíč Smazáno : HKLM\SOFTWARE\Classes\Directory\shellex\ContextMenuHandlers\WinZipper
Klíč Smazáno : HKLM\SOFTWARE\Classes\Folder\shellex\ContextMenuHandlers\WinZipper
Klíč Smazáno : HKLM\SOFTWARE\Classes\lnkfile\shellex\ContextMenuHandlers\WinZipper
Klíč Smazáno : HKLM\SOFTWARE\Classes\SDP
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SP_57da8c42
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SP_ccfde35c
Klíč Smazáno : HKLM\SOFTWARE\Classes\Toolbar.CT3329621
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\{28A88B70-D874-4F73-BBBA-9B2B222FB7D6}
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\{39CB8175-E224-4446-8746-00566302DF8D}
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{AF175732-0D59-716D-F757-9F1492D808D9}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{3A1209A4-8568-40F0-9B5E-4A06A2A06417}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{459DD0F7-0D55-D3DC-67BC-E6BE37E9D762}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{86676E13-D6D8-4652-9FCF-F2047F1FB000}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{3A1209A4-8568-40F0-9B5E-4A06A2A06417}
Hodnota Smazáno : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Klíč Smazáno : [x64] HKLM\SOFTWARE\Classes\CLSID\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
Klíč Smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{52db1893-8a90-4192-aede-08e00b8f8473}
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{C0306961-4A0B-4C8C-B26E-1C1C9C35DB3A}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{52db1893-8a90-4192-aede-08e00b8f8473}
Klíč Smazáno : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{52db1893-8a90-4192-aede-08e00b8f8473}
Klíč Smazáno : HKCU\Software\APN DTX
Klíč Smazáno : HKCU\Software\Conduit
Klíč Smazáno : HKCU\Software\Delta
Klíč Smazáno : HKCU\Software\powerpack
Klíč Smazáno : HKCU\Software\SafetyNut
Klíč Smazáno : HKCU\Software\smarttweak
Klíč Smazáno : HKCU\Software\Softonic
Klíč Smazáno : HKCU\Software\systweak
Klíč Smazáno : HKCU\Software\Tbccint
Klíč Smazáno : HKCU\Software\V9
Klíč Smazáno : HKCU\Software\DownLite
Klíč Smazáno : HKCU\Software\AppDataLow\Toolbar
Klíč Smazáno : HKCU\Software\AppDataLow\Software\Tbccint
Klíč Smazáno : HKCU\Software\AppDataLow\Software\TbccintSearchScopes
Klíč Smazáno : HKLM\SOFTWARE\Conduit
Klíč Smazáno : HKLM\SOFTWARE\Delta
Klíč Smazáno : HKLM\SOFTWARE\hdcode
Klíč Smazáno : HKLM\SOFTWARE\SafetyNut
Klíč Smazáno : HKLM\SOFTWARE\SP Global
Klíč Smazáno : HKLM\SOFTWARE\SProtector
Klíč Smazáno : HKLM\SOFTWARE\V9
Klíč Smazáno : HKLM\SOFTWARE\winzipersvc
Klíč Smazáno : HKLM\SOFTWARE\Elex-tech
Klíč Smazáno : HKU\.DEFAULT\Software\SafetyNut
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\bi_uninstaller
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\winzipper
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{EE171732-BEB4-4576-887D-CB62727F01CA}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\DownLite
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bpsvc.exe
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsersafeguard.exe
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dprotectsvc.exe
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\protectedsearch.exe
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\rjatydimofu.exe
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchinstaller.exe
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotection.exe
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotector.exe
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchsettings.exe
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchsettings64.exe
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\snapdo.exe
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst32.exe
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst64.exe
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\umbrella.exe
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\utiljumpflip.exe
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\websteroids.exe
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\websteroidsservice.exe
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\ask.com
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\istart.webssearches.com
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\trovi.com
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\webssearches.com
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\www.search.ask.com
***** [ Prohlížeče ] *****
-\\ Internet Explorer v11.0.9600.17801
-\\ Mozilla Firefox v38.0.1 (x86 cs)
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CT2463487..clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.asmx/ReportDiagnosticsEvent");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CT2463487..uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/RegisterToolbarUninstallation");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CT2463487.AboutPrivacyUrl", "hxxp://www.conduit.com/privacy/Default.aspx");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CT2463487.GroupingServiceUrl", "hxxp://grouping.services.conduit.com/");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CT2463487.LanguagePackServiceUrl", "hxxp://translation.users.conduit.com/Translation.ashx");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CT2463487.SearchCaption", "Brothersoft Customized Web Search");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CT2463487.SearchInNewTabServiceUrl", "hxxp://newtab.conduit-hosting.com/newtab/?ctid=EB_TOOLBAR_ID&UM=UM_ID");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CT2463487.SearchInNewTabURLFromSearchAPI", "hxxp://search.conduit.com/?ctid=CT2463487&octid=CT2463487&SearchSource=15&CUI=SB_CUI&SSPV=EB_SSPV&Lay=1&UM=UM_ID");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CT2463487.TBHomePageUrl", "hxxp://search.conduit.com/?ctid=CT2463487&SearchSource=13");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CT2463487.TrustedApiDomains", "conduit.com,conduit-hosting.com,conduit-services.com,client.conduit-storage.com,OurToolbar.com,CommunityToolbars.com,ForumToolbar.com,MyBlogToolbar.com,MyCity[...]
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CT2463487.generalConfigFromLogin", "{\"ApiMaxAlerts\":\"12\",\"SocialDomains\":\"social.conduit.com;apps.conduit.com;services.apps.conduit.com\",\"AppsDetectionUrlPattern\":\"hxxp://appdown[...]
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CT2463487.isPerformedSmartBarTransition", "true");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CT2463487.myStuffSearchUrl", "hxxp://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOrigin=29&ctid=EB_TOOLBAR_ID&octid=EB_ORIGINAL_CTID");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CT2463487.myStuffServiceUrl", "hxxp://mystuff.conduit-services.com/MyStuffService.ashx?ComponentId=EB_MY_STUFF_INSTANCE_GUID&lut=EB_MY_STUFF_LUT");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CT2463487.originalSearchAddressUrl", "hxxp://search.icq.com/search/afe_results.php?ch_id=afex&tb_ver=1.5.3&q=");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CT2463487.smartbar.CTID", "CT2463487");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CT2463487.smartbar.Uninstall", "0");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CT2463487.smartbar.homepage", true);
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CT2463487.smartbar.toolbarName", "Brothersoft ");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.ConduitHomepagesList", "hxxp://search.conduit.com/?ctid=CT2463487&SearchSource=13,hxxp://search.conduit.com/?ctid=CT2463487&SearchSource=13,hxxp://search.conduit.com/?ctid=[...]
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.ConduitSearchList", "Brothersoft Customized Web Search,Brothersoft Customized Web Search,Brothersoft Customized Web Search,Brothersoft Customized Web Search,Brothersoft Cus[...]
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.ETag.hxxp://Settings.toolbar.search.conduit. ... /CT2463487", "\"a98fac9c016d626112ff61c3810acf443\"");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-ser ... =CT2463487", "\"1365959693\"");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-s ... r=3.18.0.7", "\"0343677cfb1cd1:0\"");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-s ... r=3.19.0.3", "\"23c5489aa686ce1:16c0\"");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-s ... r=3.20.0.4", "\"dfe74040abc2ce1:0\"");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/ ... =CT2463487", "\"52c3f1538cb4af4ada257fcbc6b15d49\"");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-serv ... ?locale=en", "\"968402cf2834e7ec0f38a19f0e9a9eb0\"");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.EngineOwner", "ConduitEngine");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.EngineOwnerGuid", "engine@conduit.com");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.EngineOwnerToolbarId", "conduitengine");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "hxxp://search.icq.com/search/afe_results.php?ch_id=afex&tb_ver=1.5.3&q=");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.ToolbarsList", "CT2463487");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.ToolbarsList2", "CT2463487");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.ToolbarsList4", "CT2463487");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.alert.alertDialogsGetterLastCheckTime", "Thu Mar 24 2011 12:25:34 GMT+0100");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.alert.alertInfoInterval", 1440);
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.alert.alertInfoLastCheckTime", "Tue Jul 19 2011 15:06:52 GMT+0200");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.alert.clientsServerUrl", "hxxp://alert.client.conduit.com");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.alert.locale", "en");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.alert.loginIntervalMin", 1440);
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.alert.loginLastCheckTime", "Sun Jul 24 2011 12:59:16 GMT+0200");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.alert.loginLastUpdateTime", "1305622559");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.alert.messageShowTimeSec", 20);
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.alert.servicesServerUrl", "hxxp://alert.services.conduit.com");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.alert.showTrayIcon", false);
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.alert.userCloseIntervalMin", 300);
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.alert.userId", "59cf36eb-0496-40b8-bad7-b109d257f652");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.globalUserId", "5b4b0f44-449a-4aee-a24f-1d4285a78b8e");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.keywordURLSelectedCTID", "CT2463487");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.originalHomepage", "hxxps://www.facebook.com/hxxp://www.youtube.com/?gl=CZ&hl=cshxxp://ask.fm/hxxp://www.seznam.cz/hxxps://www.google.cz/");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.originalSearchEngine", "ICQ Search");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("Smartbar.ConduitHomepagesList", "hxxp://search.conduit.com/?CUI=UN68532356781233955&ctid=CT2463487&SearchSource=13");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("Smartbar.ConduitSearchEngineList", "");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("Smartbar.ConduitSearchUrlList", "hxxp://search.gboxapp.com/?pid=388&src=ff2&r=2013/10/30&hid=15685716294175845535&lg=EN&cc=CZ&q=");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("Smartbar.SearchFromAddressBarSavedUrl", "hxxp://search.icq.com/search/afe_results.php?ch_id=afex&tb_ver=1.5.3&q=");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("Smartbar.TBHomepagesList", "hxxp://search.conduit.com/?CUI=UN68532356781233955&ctid=CT2463487&SearchSource=13");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("Smartbar.TBSearchEngineList", "");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("Smartbar.TBSearchUrlList", "hxxp://search.gboxapp.com/?pid=388&src=ff2&r=2013/10/30&hid=15685716294175845535&lg=EN&cc=CZ&q=");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("Smartbar.keywordURLSelectedCTID", "CT2463487");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("aol_toolbar.default.homepage.check", false);
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("aol_toolbar.default.search.check", false);
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("avg.install.userHPSettings", "hxxp://www.delta-search.com/?affID=119398&tt=190313_wo2&babsrc=HP_ss&mntrId=158E4C0F6E0DAC92");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("avg.install.userSPSettings", "Delta Search");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("avg.toolbar.buttons_icon", ",,chrome://avg/skin/safesurf.png,chrome://avg/skin/safesurf.png,chrome://avg/skin/safesearch.png,chrome://avg/skin/avglinks.png,chrome://avg/skin/avglinks.png,")[...]
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("avg.toolbar.websearchlink", "hxxp://un.yhs.search.yahoo.com/avg/search?fr=yhs-avg");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("browser.search.defaultengine", "Ask.com");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("browser.search.defaultthis.engineName", "Brothersoft Customized Web Search");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("browser.search.defaulturl", "hxxp://search.gboxapp.com/?pid=388&src=ff2&r=2013/10/30&hid=15685716294175845535&lg=EN&cc=CZ&q=");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("extensions.507d6adaabb6a.scode", "(function(){try{var url=(window.self.location.href + document.cookie);if(url.indexOf(\"acebook\")>-1url.indexOf(\"warnalert11.com\")>-1url.indexOf(\"su[...]
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("extensions.BabylonToolbar.bbDpng", 10);
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("extensions.BabylonToolbar.dfltLng", "en");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("extensions.BabylonToolbar.id", "158ef4800000000000004c0f6e0dac92");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("extensions.BabylonToolbar.instlDay", "15258");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("extensions.BabylonToolbar.instlRef", "std");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("extensions.BabylonToolbar.keyWordUrl", "hxxp://search.babylon.com/?babsrc=SP_&q={searchTerms}&mntrId=158ef4800000000000004c0f6e0dac92&tlver=1.4.35.10&");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("extensions.BabylonToolbar.lastDP", 10);
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("extensions.BabylonToolbar.lastVrsnTs", "1.4.35.1017:54:02");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("extensions.BabylonToolbar.mntrFFxVrsn", "23.0");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("extensions.BabylonToolbar.newTab", true);
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("extensions.BabylonToolbar.newTabUrl", "hxxp://search.babylon.com/?babsrc=NT_FFUP");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("extensions.BabylonToolbar.prdct", "BabylonToolbar");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("extensions.BabylonToolbar.propectorlck", 114691896);
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("extensions.BabylonToolbar.prtkDS", 0);
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("extensions.BabylonToolbar.prtkHmpg", 0);
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("extensions.BabylonToolbar.prtnrId", "babylon");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("extensions.BabylonToolbar.ptch_0717", true);
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("extensions.BabylonToolbar.smplGrp", "azb");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("extensions.BabylonToolbar.srchPrvdr", "Search the web (Babylon)");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("extensions.BabylonToolbar.tlbrId", "base");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("extensions.BabylonToolbar.vrsn", "1.4.35.10");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("extensions.BabylonToolbar.vrsnTs", "1.4.35.1017:54:02");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("extensions.engine@conduit.com.install-event-fired", true);
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("extensions.ffxtlbr@babylon.com.install-event-fired", true);
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("extensions.kango.storage.m2_k1", "1");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("extensions.kango.storage.m2_k2", "0");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("extensions.kango.storage.m2_k3", "1391029388500");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("extensions.kango.storage.m2_k4", "0");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("extensions.kango.storage.m2_k5", "1391029445757");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("extensions.kango.storage.minibar.config", "{\"name\":\"Apps Hat\",\"description\":\"Apps Hat\",\"button\":{\"tooltip\":\"Visit AppsHat.com\",\"icon\":\"hxxp://www.bigspeedpro.com/button/%af[...]
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("extensions.kango.storage.nero_options", "\"{\\\"m1\\\":{\\\"ads\\\":{\\\"n1\\\":{\\\"url\\\":\\\"//ulayout.com/nero/hatter/google_post_results_728x90.html?aff_slug=appshat\\\",\\\"width\\\"[...]
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("extensions.kango.storage.ui.button.iconCache", "\"data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAABMAAAATCAYAAAByUDbMAAADlElEQVQ4jb3S3U9adxwG8F/BuooQAQscXj0cOIC8nANUPYjoHDClvqAoZ04gpqsZKmrUV[...]
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("extensions.privitize.tlbrSrchUrl", "hxxp://searchou.com/?id=f64cb7bd0000000000004c0f6e0dac92&affilt=5&q=");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("extensions.toolbar@ask.com.install-event-fired", true);
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("extensions.xpiState", "{\"app-profile\":{\"507d6adaabac8@507d6adaabaff.com\":{\"d\":\"C:\\\\Users\\\\Elik\\\\AppData\\\\Roaming\\\\Mozilla\\\\Firefox\\\\Profiles\\\\f1bvjtel.default\\\\exte[...]
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("extensions.{e8de9422-3b2c-4243-bf6f-235da84d8ef8}.install-event-fired", true);
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("extentions.y2layers.defaultEnableAppsList", "twittube,buzzdock,YontooNewOffers");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("extentions.y2layers.installId", "cb812c94-8b45-4a93-9889-a40d58d0e423");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.engineVerified", true);
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.firstTbRun", false);
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.geolastmodified", 1375784776);
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.history", "%C5%A1ipka%20vpravo%20alt%C5%A1ipka%20vpravo%C5%A1ipka%20vlevoobr%C3%A1zky%20u%20vide%C3%ADco%20je%20to%20snapshotsnapshot%20u%20vide%C3%ADmicrosoft%20offi[...]
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.icqgeo", 42);
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.installTime", "1364407602");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.newtab_most_visited_state", "1");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.newtab_recently_closed_state", "1");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.numberOfSearches", 0);
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.previousFFVersion", "23.0");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.skip_default_search", "no");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.uninstStatSent", true);
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.uniqueID", "136431460913644075151364407602387");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.usageStatstTimestamp", 1376083348);
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.voucherHideClicks", 0);
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.voucherMoreLinkClicks", 0);
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.voucherRedeemClicks", 0);
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.voucherWasShown", 0);
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("plugin.state.npconduitfirefoxplugin", 2);
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("smartbar.addressBarOwnerCTID", "CT2463487");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("smartbar.conduitHomepageList", "hxxp://search.conduit.com/?ctid=CT2463487&SearchSource=13,hxxp://search.conduit.com/?ctid=CT2463487&SearchSource=13,hxxp://search.conduit.com/?ctid=CT2463487[...]
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("smartbar.conduitSearchAddressUrlList", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2463487&SearchSource=2&CUI=SB_CUI&q=,hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2463487&Search[...]
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("smartbar.defaultSearchOwnerCTID", "CT2463487");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("smartbar.homePageOwnerCTID", "CT2463487");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("smartbar.homepageList", "hxxp://search.conduit.com/?ctid=CT2463487&SearchSource=13,hxxp://search.conduit.com/?ctid=CT2463487&SearchSource=13,hxxp://search.conduit.com/?ctid=CT2463487&Search[...]
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("smartbar.machineId", "C9H+4W1UE+YW4MHUU08G29UUIWIJRLJCC8A3JK8TSV9JH6KTAJAHJNHNAT5U3CC2TDRXV2RRBJGYKVU8QP29HG");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("smartbar.searchAddressUrlList", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2463487&SearchSource=2&CUI=SB_CUI&q=,hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2463487&SearchSource=[...]
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("sweetim.toolbar.dialogs.0.url", "hxxp://www.sweetim.com/simffbar/options_remote_ff.asp?lang=$locale_id;&toolbar_version=$ITEM_VERSION;&crg=$cargo;");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("sweetim.toolbar.dialogs.2.url", "hxxp://www.sweetim.com/simffbar/simcdadialog.asp");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("sweetim.toolbar.dnscatch.domain-blacklist", ".*.sweetim.com/.*.*.facebook.com/.*.*.google.com/.*.*.google.co.in/.*.*.google.com.br/.*.*.google.es/.*.*.youtube.com/.*.*.yahoo.com/.*.[...]
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("sweetim.toolbar.rc.url", "hxxp://www.sweetim.com/simffbar/rc.html?toolbar_version=$ITEM_VERSION;&crg=$cargo;");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("sweetim.toolbar.scripts.0.url", "hxxp://sc.sweetim.com/apps/in/fb/infb.js");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("sweetim.toolbar.scripts.1.url", "hxxps://sc.sweetim.com/apps/in/fb/infb.js");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("sweetim.toolbar.scripts.2.domain-blacklist", ".*.google..*.*.bing..*.*.live..*.*.msn..*.*.yahoo..*.*.youtube.com.*.*ask.com.*.*.sweetim.com.*");
[s2eioa1u.default\prefs.js] - Řádek Smazáno : user_pref("aol_toolbar.default.homepage.check", false);
[s2eioa1u.default\prefs.js] - Řádek Smazáno : user_pref("aol_toolbar.default.search.check", false);
[s2eioa1u.default\prefs.js] - Řádek Smazáno : user_pref("browser.search.defaultengine", "Ask.com");
[s2eioa1u.default\prefs.js] - Řádek Smazáno : user_pref("extensions.BabylonToolbar.prtkHmpg", 0);
[s2eioa1u.default\prefs.js] - Řádek Smazáno : user_pref("extensions.asktb.ff-original-keyword-url", "");
-\\ Google Chrome v
*************************
AdwCleaner[R0].txt - [53910 bytů] - [27/05/2015 09:32:31]
AdwCleaner[R1].txt - [38778 bytů] - [27/05/2015 22:50:13]
AdwCleaner[S0].txt - [35117 bytů] - [27/05/2015 22:52:14]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [35176 bytů] ##########
# Aktualizováno 21/05/2015 by Xplode
# Databáze : 2015-05-25.3 [Server]
# Operační system : Windows 7 Home Premium Service Pack 1 (x64)
# Uživatelské jméno : Elik - ACER
# Spuštěno z : C:\Users\Elik\Desktop\adwcleaner_4.205.exe
# Nastavení : Čištění
***** [ Služby ] *****
[#] Služba Smazáno : IePluginServices
[#] Služba Smazáno : iSafeKrnl
[#] Služba Smazáno : iSafeKrnlBoot
[#] Služba Smazáno : iSafeKrnlKit
[#] Služba Smazáno : iSafeKrnlMon
[#] Služba Smazáno : iSafeKrnlR3
[#] Služba Smazáno : iSafeNetFilter
[#] Služba Smazáno : iSafeService
[#] Služba Smazáno : Partner Service
[#] Služba Smazáno : SafetyNutManager
[#] Služba Smazáno : TBSrv
[#] Služba Smazáno : winzipersvc
[#] Služba Smazáno : F06DEFF2-5B9C-490D-910F-35D3A91196222
***** [ Soubory / Složky ] *****
Složka Smazáno : C:\ProgramData\Ask
Složka Smazáno : C:\ProgramData\Babylon
[#] Složka Smazáno : C:\ProgramData\BitGuard
[#] Složka Smazáno : C:\ProgramData\Browser Manager
[#] Složka Smazáno : C:\ProgramData\BrowserProtect
Složka Smazáno : C:\ProgramData\IePluginServices
Složka Smazáno : C:\ProgramData\Partner
Složka Smazáno : C:\ProgramData\SoftSafe
Složka Smazáno : C:\ProgramData\StarApp
Složka Smazáno : C:\ProgramData\Tbccint
Složka Smazáno : C:\ProgramData\WinterSoft
Složka Smazáno : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZipper
Složka Smazáno : C:\Program Files (x86)\AppsHat Mobile Apps
Složka Smazáno : C:\Program Files (x86)\Delta
Složka Smazáno : C:\Program Files (x86)\DownLite
Složka Smazáno : C:\Program Files (x86)\GadgetBox
[!] Složka Smazáno : C:\Program Files (x86)\Movies App
Složka Smazáno : C:\Program Files (x86)\Movies Toolbar
Složka Smazáno : C:\Program Files (x86)\SimpleSpeedy
Složka Smazáno : C:\Program Files (x86)\SmartTweak
Složka Smazáno : C:\Program Files (x86)\Tbccint
Složka Smazáno : C:\Program Files (x86)\WinZipper
[!] Složka Smazáno : C:\Program Files (x86)\Elex-tech
Složka Smazáno : C:\Users\Elik\AppData\Local\Tbccint
Složka Smazáno : C:\Users\Elik\AppData\LocalLow\Delta
Složka Smazáno : C:\Users\Elik\AppData\LocalLow\Tbccint
Složka Smazáno : C:\Users\Elik\AppData\Roaming\Babylon
Složka Smazáno : C:\Users\Elik\AppData\Roaming\DownLite
Složka Smazáno : C:\Users\Elik\AppData\Roaming\eCyber
Složka Smazáno : C:\Users\Elik\AppData\Roaming\Movies Toolbar
Složka Smazáno : C:\Users\Elik\AppData\Roaming\PerformerSoft
Složka Smazáno : C:\Users\Elik\AppData\Roaming\Systweak
Složka Smazáno : C:\Users\Elik\AppData\Roaming\WinZipper
Složka Smazáno : C:\Users\Elik\AppData\Roaming\Elex-tech
Složka Smazáno : C:\Users\Elik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SmartTweak Software
Složka Smazáno : C:\Users\maminka\AppData\Roaming\Systweak
Složka Smazáno : C:\Users\maminka\AppData\Roaming\Elex-tech
Složka Smazáno : C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
Složka Smazáno : C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\Extensions\detgdp@gmail.com
Složka Smazáno : C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\Extensions\5129d795c3ca2@5129d795c3cdc.com
Složka Smazáno : C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\Extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}
Soubor Smazáno : C:\END
Soubor Smazáno : C:\Windows\System32\log\iSafeKrnlCall.log
Soubor Smazáno : C:\Windows\System32\roboot64.exe
Soubor Smazáno : C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\invalidprefs.js
Soubor Smazáno : C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\searchplugins\Askcom.xml
Soubor Smazáno : C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\searchplugins\GadgetBox.xml
***** [ Naplánované úlohy ] *****
***** [ Zástupci ] *****
Zástupce Vyléčeno : C:\Users\Elik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
Zástupce Vyléčeno : C:\Users\Elik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk
Zástupce Vyléčeno : C:\Users\Elik\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
***** [ Registry ] *****
Klíč Smazáno : HKLM\SOFTWARE\Google\Chrome\Extensions\aaaaojmikegpiepcfdkkjaplodkpfmlo
Klíč Smazáno : HKCU\Software\Classes\pokki
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\escort.DLL
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\escortApp.DLL
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\escortEng.DLL
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\escorTlbr.DLL
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\esrv.EXE
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\kt_bho_dll.dll
Klíč Smazáno : HKLM\SOFTWARE\Classes\kt_bho.KettleBho
Klíč Smazáno : HKLM\SOFTWARE\Classes\kt_bho.KettleBho.1
Klíč Smazáno : HKLM\SOFTWARE\Classes\Prod.cap
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bitguard.exe
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bprotect.exe
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsemngr.exe
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserdefender.exe
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsermngr.exe
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserprotect.exe
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bundlesweetimsetup.exe
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\cltmngsvc.exe
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\delta babylon.exe
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\delta tb.exe
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\delta2.exe
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\deltainstaller.exe
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\deltasetup.exe
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\deltatb.exe
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\deltatb_2501-c733154b.exe
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\iminentsetup.exe
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\sweetimsetup.exe
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\tbdelta.exetoolbar783881609.exe
Hodnota Smazáno : HKLM\SYSTEM\ControlSet001\Control\Session Manager\AppCertDlls [x64]
Hodnota Smazáno : HKLM\SYSTEM\ControlSet001\Control\Session Manager\AppCertDlls [x86]
Hodnota Smazáno : HKLM\SYSTEM\ControlSet002\Control\Session Manager\AppCertDlls [x64]
Hodnota Smazáno : HKLM\SYSTEM\ControlSet002\Control\Session Manager\AppCertDlls [x86]
Klíč Smazáno : HKCU\Software\Mozilla\Extends
Klíč Smazáno : HKLM\SOFTWARE\Classes\Directory\shellex\ContextMenuHandlers\WinZipper
Klíč Smazáno : HKLM\SOFTWARE\Classes\Folder\shellex\ContextMenuHandlers\WinZipper
Klíč Smazáno : HKLM\SOFTWARE\Classes\lnkfile\shellex\ContextMenuHandlers\WinZipper
Klíč Smazáno : HKLM\SOFTWARE\Classes\SDP
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SP_57da8c42
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SP_ccfde35c
Klíč Smazáno : HKLM\SOFTWARE\Classes\Toolbar.CT3329621
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\{28A88B70-D874-4F73-BBBA-9B2B222FB7D6}
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\{39CB8175-E224-4446-8746-00566302DF8D}
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{AF175732-0D59-716D-F757-9F1492D808D9}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{3A1209A4-8568-40F0-9B5E-4A06A2A06417}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{459DD0F7-0D55-D3DC-67BC-E6BE37E9D762}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{86676E13-D6D8-4652-9FCF-F2047F1FB000}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{3A1209A4-8568-40F0-9B5E-4A06A2A06417}
Hodnota Smazáno : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Klíč Smazáno : [x64] HKLM\SOFTWARE\Classes\CLSID\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
Klíč Smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{52db1893-8a90-4192-aede-08e00b8f8473}
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{C0306961-4A0B-4C8C-B26E-1C1C9C35DB3A}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{52db1893-8a90-4192-aede-08e00b8f8473}
Klíč Smazáno : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{52db1893-8a90-4192-aede-08e00b8f8473}
Klíč Smazáno : HKCU\Software\APN DTX
Klíč Smazáno : HKCU\Software\Conduit
Klíč Smazáno : HKCU\Software\Delta
Klíč Smazáno : HKCU\Software\powerpack
Klíč Smazáno : HKCU\Software\SafetyNut
Klíč Smazáno : HKCU\Software\smarttweak
Klíč Smazáno : HKCU\Software\Softonic
Klíč Smazáno : HKCU\Software\systweak
Klíč Smazáno : HKCU\Software\Tbccint
Klíč Smazáno : HKCU\Software\V9
Klíč Smazáno : HKCU\Software\DownLite
Klíč Smazáno : HKCU\Software\AppDataLow\Toolbar
Klíč Smazáno : HKCU\Software\AppDataLow\Software\Tbccint
Klíč Smazáno : HKCU\Software\AppDataLow\Software\TbccintSearchScopes
Klíč Smazáno : HKLM\SOFTWARE\Conduit
Klíč Smazáno : HKLM\SOFTWARE\Delta
Klíč Smazáno : HKLM\SOFTWARE\hdcode
Klíč Smazáno : HKLM\SOFTWARE\SafetyNut
Klíč Smazáno : HKLM\SOFTWARE\SP Global
Klíč Smazáno : HKLM\SOFTWARE\SProtector
Klíč Smazáno : HKLM\SOFTWARE\V9
Klíč Smazáno : HKLM\SOFTWARE\winzipersvc
Klíč Smazáno : HKLM\SOFTWARE\Elex-tech
Klíč Smazáno : HKU\.DEFAULT\Software\SafetyNut
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\bi_uninstaller
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\winzipper
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{EE171732-BEB4-4576-887D-CB62727F01CA}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\DownLite
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bpsvc.exe
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsersafeguard.exe
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dprotectsvc.exe
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\protectedsearch.exe
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\rjatydimofu.exe
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchinstaller.exe
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotection.exe
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotector.exe
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchsettings.exe
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchsettings64.exe
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\snapdo.exe
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst32.exe
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst64.exe
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\umbrella.exe
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\utiljumpflip.exe
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\websteroids.exe
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\websteroidsservice.exe
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\ask.com
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\istart.webssearches.com
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\trovi.com
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\webssearches.com
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\www.search.ask.com
***** [ Prohlížeče ] *****
-\\ Internet Explorer v11.0.9600.17801
-\\ Mozilla Firefox v38.0.1 (x86 cs)
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CT2463487..clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.asmx/ReportDiagnosticsEvent");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CT2463487..uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/RegisterToolbarUninstallation");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CT2463487.AboutPrivacyUrl", "hxxp://www.conduit.com/privacy/Default.aspx");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CT2463487.GroupingServiceUrl", "hxxp://grouping.services.conduit.com/");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CT2463487.LanguagePackServiceUrl", "hxxp://translation.users.conduit.com/Translation.ashx");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CT2463487.SearchCaption", "Brothersoft Customized Web Search");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CT2463487.SearchInNewTabServiceUrl", "hxxp://newtab.conduit-hosting.com/newtab/?ctid=EB_TOOLBAR_ID&UM=UM_ID");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CT2463487.SearchInNewTabURLFromSearchAPI", "hxxp://search.conduit.com/?ctid=CT2463487&octid=CT2463487&SearchSource=15&CUI=SB_CUI&SSPV=EB_SSPV&Lay=1&UM=UM_ID");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CT2463487.TBHomePageUrl", "hxxp://search.conduit.com/?ctid=CT2463487&SearchSource=13");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CT2463487.TrustedApiDomains", "conduit.com,conduit-hosting.com,conduit-services.com,client.conduit-storage.com,OurToolbar.com,CommunityToolbars.com,ForumToolbar.com,MyBlogToolbar.com,MyCity[...]
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CT2463487.generalConfigFromLogin", "{\"ApiMaxAlerts\":\"12\",\"SocialDomains\":\"social.conduit.com;apps.conduit.com;services.apps.conduit.com\",\"AppsDetectionUrlPattern\":\"hxxp://appdown[...]
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CT2463487.isPerformedSmartBarTransition", "true");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CT2463487.myStuffSearchUrl", "hxxp://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOrigin=29&ctid=EB_TOOLBAR_ID&octid=EB_ORIGINAL_CTID");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CT2463487.myStuffServiceUrl", "hxxp://mystuff.conduit-services.com/MyStuffService.ashx?ComponentId=EB_MY_STUFF_INSTANCE_GUID&lut=EB_MY_STUFF_LUT");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CT2463487.originalSearchAddressUrl", "hxxp://search.icq.com/search/afe_results.php?ch_id=afex&tb_ver=1.5.3&q=");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CT2463487.smartbar.CTID", "CT2463487");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CT2463487.smartbar.Uninstall", "0");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CT2463487.smartbar.homepage", true);
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CT2463487.smartbar.toolbarName", "Brothersoft ");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.ConduitHomepagesList", "hxxp://search.conduit.com/?ctid=CT2463487&SearchSource=13,hxxp://search.conduit.com/?ctid=CT2463487&SearchSource=13,hxxp://search.conduit.com/?ctid=[...]
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.ConduitSearchList", "Brothersoft Customized Web Search,Brothersoft Customized Web Search,Brothersoft Customized Web Search,Brothersoft Customized Web Search,Brothersoft Cus[...]
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.ETag.hxxp://Settings.toolbar.search.conduit. ... /CT2463487", "\"a98fac9c016d626112ff61c3810acf443\"");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-ser ... =CT2463487", "\"1365959693\"");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-s ... r=3.18.0.7", "\"0343677cfb1cd1:0\"");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-s ... r=3.19.0.3", "\"23c5489aa686ce1:16c0\"");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-s ... r=3.20.0.4", "\"dfe74040abc2ce1:0\"");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/ ... =CT2463487", "\"52c3f1538cb4af4ada257fcbc6b15d49\"");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-serv ... ?locale=en", "\"968402cf2834e7ec0f38a19f0e9a9eb0\"");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.EngineOwner", "ConduitEngine");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.EngineOwnerGuid", "engine@conduit.com");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.EngineOwnerToolbarId", "conduitengine");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "hxxp://search.icq.com/search/afe_results.php?ch_id=afex&tb_ver=1.5.3&q=");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.ToolbarsList", "CT2463487");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.ToolbarsList2", "CT2463487");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.ToolbarsList4", "CT2463487");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.alert.alertDialogsGetterLastCheckTime", "Thu Mar 24 2011 12:25:34 GMT+0100");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.alert.alertInfoInterval", 1440);
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.alert.alertInfoLastCheckTime", "Tue Jul 19 2011 15:06:52 GMT+0200");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.alert.clientsServerUrl", "hxxp://alert.client.conduit.com");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.alert.locale", "en");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.alert.loginIntervalMin", 1440);
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.alert.loginLastCheckTime", "Sun Jul 24 2011 12:59:16 GMT+0200");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.alert.loginLastUpdateTime", "1305622559");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.alert.messageShowTimeSec", 20);
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.alert.servicesServerUrl", "hxxp://alert.services.conduit.com");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.alert.showTrayIcon", false);
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.alert.userCloseIntervalMin", 300);
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.alert.userId", "59cf36eb-0496-40b8-bad7-b109d257f652");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.globalUserId", "5b4b0f44-449a-4aee-a24f-1d4285a78b8e");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.keywordURLSelectedCTID", "CT2463487");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.originalHomepage", "hxxps://www.facebook.com/hxxp://www.youtube.com/?gl=CZ&hl=cshxxp://ask.fm/hxxp://www.seznam.cz/hxxps://www.google.cz/");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.originalSearchEngine", "ICQ Search");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("Smartbar.ConduitHomepagesList", "hxxp://search.conduit.com/?CUI=UN68532356781233955&ctid=CT2463487&SearchSource=13");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("Smartbar.ConduitSearchEngineList", "");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("Smartbar.ConduitSearchUrlList", "hxxp://search.gboxapp.com/?pid=388&src=ff2&r=2013/10/30&hid=15685716294175845535&lg=EN&cc=CZ&q=");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("Smartbar.SearchFromAddressBarSavedUrl", "hxxp://search.icq.com/search/afe_results.php?ch_id=afex&tb_ver=1.5.3&q=");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("Smartbar.TBHomepagesList", "hxxp://search.conduit.com/?CUI=UN68532356781233955&ctid=CT2463487&SearchSource=13");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("Smartbar.TBSearchEngineList", "");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("Smartbar.TBSearchUrlList", "hxxp://search.gboxapp.com/?pid=388&src=ff2&r=2013/10/30&hid=15685716294175845535&lg=EN&cc=CZ&q=");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("Smartbar.keywordURLSelectedCTID", "CT2463487");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("aol_toolbar.default.homepage.check", false);
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("aol_toolbar.default.search.check", false);
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("avg.install.userHPSettings", "hxxp://www.delta-search.com/?affID=119398&tt=190313_wo2&babsrc=HP_ss&mntrId=158E4C0F6E0DAC92");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("avg.install.userSPSettings", "Delta Search");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("avg.toolbar.buttons_icon", ",,chrome://avg/skin/safesurf.png,chrome://avg/skin/safesurf.png,chrome://avg/skin/safesearch.png,chrome://avg/skin/avglinks.png,chrome://avg/skin/avglinks.png,")[...]
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("avg.toolbar.websearchlink", "hxxp://un.yhs.search.yahoo.com/avg/search?fr=yhs-avg");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("browser.search.defaultengine", "Ask.com");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("browser.search.defaultthis.engineName", "Brothersoft Customized Web Search");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("browser.search.defaulturl", "hxxp://search.gboxapp.com/?pid=388&src=ff2&r=2013/10/30&hid=15685716294175845535&lg=EN&cc=CZ&q=");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("extensions.507d6adaabb6a.scode", "(function(){try{var url=(window.self.location.href + document.cookie);if(url.indexOf(\"acebook\")>-1url.indexOf(\"warnalert11.com\")>-1url.indexOf(\"su[...]
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("extensions.BabylonToolbar.bbDpng", 10);
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("extensions.BabylonToolbar.dfltLng", "en");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("extensions.BabylonToolbar.id", "158ef4800000000000004c0f6e0dac92");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("extensions.BabylonToolbar.instlDay", "15258");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("extensions.BabylonToolbar.instlRef", "std");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("extensions.BabylonToolbar.keyWordUrl", "hxxp://search.babylon.com/?babsrc=SP_&q={searchTerms}&mntrId=158ef4800000000000004c0f6e0dac92&tlver=1.4.35.10&");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("extensions.BabylonToolbar.lastDP", 10);
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("extensions.BabylonToolbar.lastVrsnTs", "1.4.35.1017:54:02");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("extensions.BabylonToolbar.mntrFFxVrsn", "23.0");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("extensions.BabylonToolbar.newTab", true);
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("extensions.BabylonToolbar.newTabUrl", "hxxp://search.babylon.com/?babsrc=NT_FFUP");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("extensions.BabylonToolbar.prdct", "BabylonToolbar");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("extensions.BabylonToolbar.propectorlck", 114691896);
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("extensions.BabylonToolbar.prtkDS", 0);
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("extensions.BabylonToolbar.prtkHmpg", 0);
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("extensions.BabylonToolbar.prtnrId", "babylon");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("extensions.BabylonToolbar.ptch_0717", true);
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("extensions.BabylonToolbar.smplGrp", "azb");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("extensions.BabylonToolbar.srchPrvdr", "Search the web (Babylon)");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("extensions.BabylonToolbar.tlbrId", "base");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("extensions.BabylonToolbar.vrsn", "1.4.35.10");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("extensions.BabylonToolbar.vrsnTs", "1.4.35.1017:54:02");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("extensions.engine@conduit.com.install-event-fired", true);
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("extensions.ffxtlbr@babylon.com.install-event-fired", true);
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("extensions.kango.storage.m2_k1", "1");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("extensions.kango.storage.m2_k2", "0");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("extensions.kango.storage.m2_k3", "1391029388500");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("extensions.kango.storage.m2_k4", "0");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("extensions.kango.storage.m2_k5", "1391029445757");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("extensions.kango.storage.minibar.config", "{\"name\":\"Apps Hat\",\"description\":\"Apps Hat\",\"button\":{\"tooltip\":\"Visit AppsHat.com\",\"icon\":\"hxxp://www.bigspeedpro.com/button/%af[...]
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("extensions.kango.storage.nero_options", "\"{\\\"m1\\\":{\\\"ads\\\":{\\\"n1\\\":{\\\"url\\\":\\\"//ulayout.com/nero/hatter/google_post_results_728x90.html?aff_slug=appshat\\\",\\\"width\\\"[...]
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("extensions.kango.storage.ui.button.iconCache", "\"data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAABMAAAATCAYAAAByUDbMAAADlElEQVQ4jb3S3U9adxwG8F/BuooQAQscXj0cOIC8nANUPYjoHDClvqAoZ04gpqsZKmrUV[...]
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("extensions.privitize.tlbrSrchUrl", "hxxp://searchou.com/?id=f64cb7bd0000000000004c0f6e0dac92&affilt=5&q=");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("extensions.toolbar@ask.com.install-event-fired", true);
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("extensions.xpiState", "{\"app-profile\":{\"507d6adaabac8@507d6adaabaff.com\":{\"d\":\"C:\\\\Users\\\\Elik\\\\AppData\\\\Roaming\\\\Mozilla\\\\Firefox\\\\Profiles\\\\f1bvjtel.default\\\\exte[...]
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("extensions.{e8de9422-3b2c-4243-bf6f-235da84d8ef8}.install-event-fired", true);
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("extentions.y2layers.defaultEnableAppsList", "twittube,buzzdock,YontooNewOffers");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("extentions.y2layers.installId", "cb812c94-8b45-4a93-9889-a40d58d0e423");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.engineVerified", true);
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.firstTbRun", false);
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.geolastmodified", 1375784776);
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.history", "%C5%A1ipka%20vpravo%20alt%C5%A1ipka%20vpravo%C5%A1ipka%20vlevoobr%C3%A1zky%20u%20vide%C3%ADco%20je%20to%20snapshotsnapshot%20u%20vide%C3%ADmicrosoft%20offi[...]
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.icqgeo", 42);
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.installTime", "1364407602");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.newtab_most_visited_state", "1");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.newtab_recently_closed_state", "1");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.numberOfSearches", 0);
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.previousFFVersion", "23.0");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.skip_default_search", "no");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.uninstStatSent", true);
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.uniqueID", "136431460913644075151364407602387");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.usageStatstTimestamp", 1376083348);
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.voucherHideClicks", 0);
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.voucherMoreLinkClicks", 0);
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.voucherRedeemClicks", 0);
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.voucherWasShown", 0);
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("plugin.state.npconduitfirefoxplugin", 2);
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("smartbar.addressBarOwnerCTID", "CT2463487");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("smartbar.conduitHomepageList", "hxxp://search.conduit.com/?ctid=CT2463487&SearchSource=13,hxxp://search.conduit.com/?ctid=CT2463487&SearchSource=13,hxxp://search.conduit.com/?ctid=CT2463487[...]
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("smartbar.conduitSearchAddressUrlList", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2463487&SearchSource=2&CUI=SB_CUI&q=,hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2463487&Search[...]
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("smartbar.defaultSearchOwnerCTID", "CT2463487");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("smartbar.homePageOwnerCTID", "CT2463487");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("smartbar.homepageList", "hxxp://search.conduit.com/?ctid=CT2463487&SearchSource=13,hxxp://search.conduit.com/?ctid=CT2463487&SearchSource=13,hxxp://search.conduit.com/?ctid=CT2463487&Search[...]
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("smartbar.machineId", "C9H+4W1UE+YW4MHUU08G29UUIWIJRLJCC8A3JK8TSV9JH6KTAJAHJNHNAT5U3CC2TDRXV2RRBJGYKVU8QP29HG");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("smartbar.searchAddressUrlList", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2463487&SearchSource=2&CUI=SB_CUI&q=,hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2463487&SearchSource=[...]
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("sweetim.toolbar.dialogs.0.url", "hxxp://www.sweetim.com/simffbar/options_remote_ff.asp?lang=$locale_id;&toolbar_version=$ITEM_VERSION;&crg=$cargo;");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("sweetim.toolbar.dialogs.2.url", "hxxp://www.sweetim.com/simffbar/simcdadialog.asp");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("sweetim.toolbar.dnscatch.domain-blacklist", ".*.sweetim.com/.*.*.facebook.com/.*.*.google.com/.*.*.google.co.in/.*.*.google.com.br/.*.*.google.es/.*.*.youtube.com/.*.*.yahoo.com/.*.[...]
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("sweetim.toolbar.rc.url", "hxxp://www.sweetim.com/simffbar/rc.html?toolbar_version=$ITEM_VERSION;&crg=$cargo;");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("sweetim.toolbar.scripts.0.url", "hxxp://sc.sweetim.com/apps/in/fb/infb.js");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("sweetim.toolbar.scripts.1.url", "hxxps://sc.sweetim.com/apps/in/fb/infb.js");
[f1bvjtel.default\prefs.js] - Řádek Smazáno : user_pref("sweetim.toolbar.scripts.2.domain-blacklist", ".*.google..*.*.bing..*.*.live..*.*.msn..*.*.yahoo..*.*.youtube.com.*.*ask.com.*.*.sweetim.com.*");
[s2eioa1u.default\prefs.js] - Řádek Smazáno : user_pref("aol_toolbar.default.homepage.check", false);
[s2eioa1u.default\prefs.js] - Řádek Smazáno : user_pref("aol_toolbar.default.search.check", false);
[s2eioa1u.default\prefs.js] - Řádek Smazáno : user_pref("browser.search.defaultengine", "Ask.com");
[s2eioa1u.default\prefs.js] - Řádek Smazáno : user_pref("extensions.BabylonToolbar.prtkHmpg", 0);
[s2eioa1u.default\prefs.js] - Řádek Smazáno : user_pref("extensions.asktb.ff-original-keyword-url", "");
-\\ Google Chrome v
*************************
AdwCleaner[R0].txt - [53910 bytů] - [27/05/2015 09:32:31]
AdwCleaner[R1].txt - [38778 bytů] - [27/05/2015 22:50:13]
AdwCleaner[S0].txt - [35117 bytů] - [27/05/2015 22:52:14]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [35176 bytů] ##########
OS Win 10 Home
Základní deska MSI H110M PRO-VD,
2jádrový procesor Intel Core i3-6098P (3.6GHz, HyperThreading), 8GB operační paměti DDR4 2133 MHz TEAM Elite,
Pevný disk 1TB Seagate Barracuda,
Grafická karta NVIDIA GeForce GTX 750 Ti 2GB GDDR5,
DVD±RW mechanika LG,
Zdroj CHIEFTEC GPB-350S, 350 W
Skříň AIO Virtuo TAB04 Champagne
Základní deska MSI H110M PRO-VD,
2jádrový procesor Intel Core i3-6098P (3.6GHz, HyperThreading), 8GB operační paměti DDR4 2133 MHz TEAM Elite,
Pevný disk 1TB Seagate Barracuda,
Grafická karta NVIDIA GeForce GTX 750 Ti 2GB GDDR5,
DVD±RW mechanika LG,
Zdroj CHIEFTEC GPB-350S, 350 W
Skříň AIO Virtuo TAB04 Champagne
Re: Preventivní kontrola logu
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.8.1 (05.27.2015:1)
OS: Windows 7 Home Premium x64
Ran by Elik on st 27.05.2015 at 23:02:12,11
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
~~~ Tasks
~~~ Registry Values
~~~ Registry Keys
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
~~~ Files
Successfully deleted: [File] C:\Windows\wininit.ini
~~~ Folders
Successfully deleted: [Folder] C:\Windows\syswow64\ai_recyclebin
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on st 27.05.2015 at 23:06:15,93
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.8.1 (05.27.2015:1)
OS: Windows 7 Home Premium x64
Ran by Elik on st 27.05.2015 at 23:02:12,11
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
~~~ Tasks
~~~ Registry Values
~~~ Registry Keys
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
~~~ Files
Successfully deleted: [File] C:\Windows\wininit.ini
~~~ Folders
Successfully deleted: [Folder] C:\Windows\syswow64\ai_recyclebin
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on st 27.05.2015 at 23:06:15,93
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
OS Win 10 Home
Základní deska MSI H110M PRO-VD,
2jádrový procesor Intel Core i3-6098P (3.6GHz, HyperThreading), 8GB operační paměti DDR4 2133 MHz TEAM Elite,
Pevný disk 1TB Seagate Barracuda,
Grafická karta NVIDIA GeForce GTX 750 Ti 2GB GDDR5,
DVD±RW mechanika LG,
Zdroj CHIEFTEC GPB-350S, 350 W
Skříň AIO Virtuo TAB04 Champagne
Základní deska MSI H110M PRO-VD,
2jádrový procesor Intel Core i3-6098P (3.6GHz, HyperThreading), 8GB operační paměti DDR4 2133 MHz TEAM Elite,
Pevný disk 1TB Seagate Barracuda,
Grafická karta NVIDIA GeForce GTX 750 Ti 2GB GDDR5,
DVD±RW mechanika LG,
Zdroj CHIEFTEC GPB-350S, 350 W
Skříň AIO Virtuo TAB04 Champagne
Re: Preventivní kontrola logu
RogueKiller V10.7.0.0 (x64) [May 25 2015] by Adlice Software
mail : http://www.adlice.com/contact/
Feedback : http://forum.adlice.com
Webová stránka : http://www.adlice.com/softwares/roguekiller/
Blog : http://www.adlice.com
Operační systém : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno : Normální režim
Uživatel : Elik [Práva správce]
Started from : C:\Users\Elik\Desktop\RogueKillerX64.exe
Mód : Prohledat -- Datum : 05/27/2015 23:16:02
¤¤¤ Procesy : 0 ¤¤¤
¤¤¤ Registry : 22 ¤¤¤
[PUM.Orphan] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad | WebCheck : {E6FB5E20-DE35-11CF-9C87-00AA005127ED} -> Nalezeno
[PUM.Orphan] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad | WebCheck : {E6FB5E20-DE35-11CF-9C87-00AA005127ED} -> Nalezeno
[PUM.Orphan] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> Nalezeno
[PUM.Orphan] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> Nalezeno
[PUM.Orphan] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6} -> Nalezeno
[PUM.Orphan] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9} -> Nalezeno
[PUM.Orphan] (X64) HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar | {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} : -> Nalezeno
[PUM.Orphan] (X64) HKEY_USERS\S-1-5-21-1237170793-86538594-3374620920-1001\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser | {2318C2B1-4965-11D4-9B18-009027A5CD4F} : -> Nalezeno
[PUM.Orphan] (X64) HKEY_USERS\S-1-5-21-1237170793-86538594-3374620920-1001\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser | {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} : -> Nalezeno
[PUM.Orphan] (X86) HKEY_USERS\S-1-5-21-1237170793-86538594-3374620920-1001\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser | {2318C2B1-4965-11D4-9B18-009027A5CD4F} : -> Nalezeno
[PUM.Orphan] (X86) HKEY_USERS\S-1-5-21-1237170793-86538594-3374620920-1001\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser | {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} : -> Nalezeno
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters | DhcpNameServer : 10.157.0.1 4.2.2.1 [(Private Address) (XX)][-] -> Nalezeno
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters | DhcpNameServer : 10.157.0.1 4.2.2.1 [(Private Address) (XX)][-] -> Nalezeno
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{A3FC305E-27AB-4D47-96E3-C5C9375B40E3} | DhcpNameServer : 10.157.0.1 4.2.2.1 [(Private Address) (XX)][-] -> Nalezeno
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{A3FC305E-27AB-4D47-96E3-C5C9375B40E3} | DhcpNameServer : 10.157.0.1 4.2.2.1 [(Private Address) (XX)][-] -> Nalezeno
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters\Interfaces\{A3FC305E-27AB-4D47-96E3-C5C9375B40E3} | DhcpNameServer : 10.157.0.1 4.2.2.1 [(Private Address) (XX)][-] -> Nalezeno
[PUM.Policies] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System | ConsentPromptBehaviorAdmin : 0 -> Nalezeno
[PUM.Policies] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System | ConsentPromptBehaviorAdmin : 0 -> Nalezeno
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> Nalezeno
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> Nalezeno
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> Nalezeno
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> Nalezeno
¤¤¤ Úlohy : 1 ¤¤¤
[Suspicious.Path] \Microsoft\Windows\Media Center\PeriodicScanRetry -- %windir%\ehome\MCUpdate.exe (-pscn 0) -> Nalezeno
¤¤¤ Soubory : 1 ¤¤¤
[Suspicious.Path][Soubor] GameRanger.lnk -- C:\Users\Elik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\GameRanger.lnk [LNK@] C:\Users\Elik\AppData\Roaming\GAMERA~1\GAMERA~2\GAMERA~1.EXE /autostart -> Nalezeno
¤¤¤ Soubor HOSTS : 0 ¤¤¤
¤¤¤ Antirootkit : 0 (Driver: Nahrán) ¤¤¤
¤¤¤ Webové prohlížeče : 0 ¤¤¤
¤¤¤ Kontrola MBR : ¤¤¤
+++++ PhysicalDrive0: Hitachi HTS545032B9A300 +++++
--- User ---
[MBR] b94f19f6ebc7aacd471f7d829954f561
[BSP] 16d5ffb3174e0b815ece5a71209b1488 : Windows Vista/7/8 MBR Code
Partition table:
0 - [XXXXXX] ACER (0x27) [VISIBLE] Offset (sectors): 2048 | Size: 13312 MB
1 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 27265024 | Size: 100 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
2 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 27469824 | Size: 62158 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
3 - [XXXXXX] EXTEN-LBA (0xf) [VISIBLE] Offset (sectors): 154770210 | Size: 229671 MB
User = LL1 ... OK
User = LL2 ... OK
mail : http://www.adlice.com/contact/
Feedback : http://forum.adlice.com
Webová stránka : http://www.adlice.com/softwares/roguekiller/
Blog : http://www.adlice.com
Operační systém : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno : Normální režim
Uživatel : Elik [Práva správce]
Started from : C:\Users\Elik\Desktop\RogueKillerX64.exe
Mód : Prohledat -- Datum : 05/27/2015 23:16:02
¤¤¤ Procesy : 0 ¤¤¤
¤¤¤ Registry : 22 ¤¤¤
[PUM.Orphan] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad | WebCheck : {E6FB5E20-DE35-11CF-9C87-00AA005127ED} -> Nalezeno
[PUM.Orphan] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad | WebCheck : {E6FB5E20-DE35-11CF-9C87-00AA005127ED} -> Nalezeno
[PUM.Orphan] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> Nalezeno
[PUM.Orphan] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> Nalezeno
[PUM.Orphan] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6} -> Nalezeno
[PUM.Orphan] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9} -> Nalezeno
[PUM.Orphan] (X64) HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar | {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} : -> Nalezeno
[PUM.Orphan] (X64) HKEY_USERS\S-1-5-21-1237170793-86538594-3374620920-1001\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser | {2318C2B1-4965-11D4-9B18-009027A5CD4F} : -> Nalezeno
[PUM.Orphan] (X64) HKEY_USERS\S-1-5-21-1237170793-86538594-3374620920-1001\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser | {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} : -> Nalezeno
[PUM.Orphan] (X86) HKEY_USERS\S-1-5-21-1237170793-86538594-3374620920-1001\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser | {2318C2B1-4965-11D4-9B18-009027A5CD4F} : -> Nalezeno
[PUM.Orphan] (X86) HKEY_USERS\S-1-5-21-1237170793-86538594-3374620920-1001\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser | {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} : -> Nalezeno
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters | DhcpNameServer : 10.157.0.1 4.2.2.1 [(Private Address) (XX)][-] -> Nalezeno
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters | DhcpNameServer : 10.157.0.1 4.2.2.1 [(Private Address) (XX)][-] -> Nalezeno
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{A3FC305E-27AB-4D47-96E3-C5C9375B40E3} | DhcpNameServer : 10.157.0.1 4.2.2.1 [(Private Address) (XX)][-] -> Nalezeno
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{A3FC305E-27AB-4D47-96E3-C5C9375B40E3} | DhcpNameServer : 10.157.0.1 4.2.2.1 [(Private Address) (XX)][-] -> Nalezeno
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters\Interfaces\{A3FC305E-27AB-4D47-96E3-C5C9375B40E3} | DhcpNameServer : 10.157.0.1 4.2.2.1 [(Private Address) (XX)][-] -> Nalezeno
[PUM.Policies] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System | ConsentPromptBehaviorAdmin : 0 -> Nalezeno
[PUM.Policies] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System | ConsentPromptBehaviorAdmin : 0 -> Nalezeno
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> Nalezeno
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> Nalezeno
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> Nalezeno
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> Nalezeno
¤¤¤ Úlohy : 1 ¤¤¤
[Suspicious.Path] \Microsoft\Windows\Media Center\PeriodicScanRetry -- %windir%\ehome\MCUpdate.exe (-pscn 0) -> Nalezeno
¤¤¤ Soubory : 1 ¤¤¤
[Suspicious.Path][Soubor] GameRanger.lnk -- C:\Users\Elik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\GameRanger.lnk [LNK@] C:\Users\Elik\AppData\Roaming\GAMERA~1\GAMERA~2\GAMERA~1.EXE /autostart -> Nalezeno
¤¤¤ Soubor HOSTS : 0 ¤¤¤
¤¤¤ Antirootkit : 0 (Driver: Nahrán) ¤¤¤
¤¤¤ Webové prohlížeče : 0 ¤¤¤
¤¤¤ Kontrola MBR : ¤¤¤
+++++ PhysicalDrive0: Hitachi HTS545032B9A300 +++++
--- User ---
[MBR] b94f19f6ebc7aacd471f7d829954f561
[BSP] 16d5ffb3174e0b815ece5a71209b1488 : Windows Vista/7/8 MBR Code
Partition table:
0 - [XXXXXX] ACER (0x27) [VISIBLE] Offset (sectors): 2048 | Size: 13312 MB
1 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 27265024 | Size: 100 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
2 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 27469824 | Size: 62158 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
3 - [XXXXXX] EXTEN-LBA (0xf) [VISIBLE] Offset (sectors): 154770210 | Size: 229671 MB
User = LL1 ... OK
User = LL2 ... OK
OS Win 10 Home
Základní deska MSI H110M PRO-VD,
2jádrový procesor Intel Core i3-6098P (3.6GHz, HyperThreading), 8GB operační paměti DDR4 2133 MHz TEAM Elite,
Pevný disk 1TB Seagate Barracuda,
Grafická karta NVIDIA GeForce GTX 750 Ti 2GB GDDR5,
DVD±RW mechanika LG,
Zdroj CHIEFTEC GPB-350S, 350 W
Skříň AIO Virtuo TAB04 Champagne
Základní deska MSI H110M PRO-VD,
2jádrový procesor Intel Core i3-6098P (3.6GHz, HyperThreading), 8GB operační paměti DDR4 2133 MHz TEAM Elite,
Pevný disk 1TB Seagate Barracuda,
Grafická karta NVIDIA GeForce GTX 750 Ti 2GB GDDR5,
DVD±RW mechanika LG,
Zdroj CHIEFTEC GPB-350S, 350 W
Skříň AIO Virtuo TAB04 Champagne
-
jaro3
- člen Security týmu
-
Guru Level 15
- Příspěvky: 43298
- Registrován: červen 07
- Bydliště: Jižní Čechy
- Pohlaví:
- Stav:
Offline
Re: Preventivní kontrola logu
Zavři všechny programy a prohlížeče. Deaktivuj antivir a firewall.
Prosím, odpoj všechny USB (kromě myši s klávesnice) nebo externí disky z počítače před spuštěním tohoto programu.
Spusť znovu RogueKiller ( Pro Windows Vista nebo Windows 7, klepni pravým a vyber "Spustit jako správce", ve Windows XP poklepej ke spuštění).
- Počkej, až Prescan dokončí práci...
- Pak klikni na "Prohledat " ,po jeho skončení:
- V záložkách (Registry , Tasks , Web Browser apod.) vše zatrhni (dej zatržítka)
(musíš dát myší zatržítko do toho čtverečku vlevo od registru ap.)
- Klikni na "Smazat"
- Počkej, dokud Status box nezobrazí " Mazání dokončeno "
- Klikni na "Zpráva " a zkopíruj a vlož obsah té zprávy prosím sem. Log je možno nalézt v RKreport [číslo]. txt na ploše.
- Zavři RogueKiller
Vypni antivir i firewall.
Stáhni
Zoek.exe
a uloz si ho na plochu.
Zavři všechny ostatní programy , okna i prohlížeče.
Spusť Zoek.exe ( u win vista , win7, 8 klikni na něj pravým a vyber : „Spustit jako správce“
- pozor , náběh programu může trvat déle.
Do okna programu vlož skript níže:
klikni na Run Script
Program provede sken , opravu, sken i oprava může trvat i více minut ,je třeba posečkat do konce. Do okna neklikej!
Program nabídne restart , potvrď .
Po restartu se může nějaký čas ukázat pouze černá plocha , to je normální. Je třeba počkat až se vytvoří log. Ten si můžeš uložit třeba do dokumentů , jinak se sám ukládá do:
C:\zoek-results.log
Zkopíruj sem celý obsah toho logu.
Vypni rez. ochranu u antiviru a antispywaru,příp. firewall..
Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
Pokud budou problémy , spusť ho v nouz. režimu.
Upozornění : Může se stát, že po aplikaci Combofixu a restartu počítače, Windows nenaběhnou , nebo nenajede plocha , budou problémy s připojením, pak znovu restartuj počítač, pokud to nepomůže , po restartu mačkej klávesu F8 a pak zvol poslední známou funkční konfiguraci. , či použij bod obnovy.
Prosím, odpoj všechny USB (kromě myši s klávesnice) nebo externí disky z počítače před spuštěním tohoto programu.
Spusť znovu RogueKiller ( Pro Windows Vista nebo Windows 7, klepni pravým a vyber "Spustit jako správce", ve Windows XP poklepej ke spuštění).
- Počkej, až Prescan dokončí práci...
- Pak klikni na "Prohledat " ,po jeho skončení:
- V záložkách (Registry , Tasks , Web Browser apod.) vše zatrhni (dej zatržítka)
(musíš dát myší zatržítko do toho čtverečku vlevo od registru ap.)
- Klikni na "Smazat"
- Počkej, dokud Status box nezobrazí " Mazání dokončeno "
- Klikni na "Zpráva " a zkopíruj a vlož obsah té zprávy prosím sem. Log je možno nalézt v RKreport [číslo]. txt na ploše.
- Zavři RogueKiller
Vypni antivir i firewall.
Stáhni
Zoek.exe
a uloz si ho na plochu.
Zavři všechny ostatní programy , okna i prohlížeče.
Spusť Zoek.exe ( u win vista , win7, 8 klikni na něj pravým a vyber : „Spustit jako správce“
- pozor , náběh programu může trvat déle.
Do okna programu vlož skript níže:
Kód: Vybrat vše
autoclean;
emptyclsid;
iedefaults;
FFdefaults;
CHRdefaults;
emptyalltemp;
resethosts; klikni na Run Script
Program provede sken , opravu, sken i oprava může trvat i více minut ,je třeba posečkat do konce. Do okna neklikej!
Program nabídne restart , potvrď .
Po restartu se může nějaký čas ukázat pouze černá plocha , to je normální. Je třeba počkat až se vytvoří log. Ten si můžeš uložit třeba do dokumentů , jinak se sám ukládá do:
C:\zoek-results.log
Zkopíruj sem celý obsah toho logu.
Vypni rez. ochranu u antiviru a antispywaru,příp. firewall..
Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
Pokud budou problémy , spusť ho v nouz. režimu.
Upozornění : Může se stát, že po aplikaci Combofixu a restartu počítače, Windows nenaběhnou , nebo nenajede plocha , budou problémy s připojením, pak znovu restartuj počítač, pokud to nepomůže , po restartu mačkej klávesu F8 a pak zvol poslední známou funkční konfiguraci. , či použij bod obnovy.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Re: Preventivní kontrola logu
RogueKiller V10.7.0.0 (x64) [May 25 2015] by Adlice Software
mail : http://www.adlice.com/contact/
Feedback : http://forum.adlice.com
Webová stránka : http://www.adlice.com/softwares/roguekiller/
Blog : http://www.adlice.com
Operační systém : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno : Normální režim
Uživatel : Elik [Práva správce]
Started from : C:\Users\Elik\Desktop\RogueKillerX64.exe
Mód : Smazat -- Datum : 05/28/2015 10:33:44
¤¤¤ Procesy : 0 ¤¤¤
¤¤¤ Registry : 23 ¤¤¤
[PUM.Orphan] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad | WebCheck : {E6FB5E20-DE35-11CF-9C87-00AA005127ED} -> ERROR [0]
[PUM.Orphan] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad | WebCheck : {E6FB5E20-DE35-11CF-9C87-00AA005127ED} -> ERROR [0]
[PUM.Orphan] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> ERROR [2]
[PUM.Orphan] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> ERROR [2]
[PUM.Orphan] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6} -> ERROR [2]
[PUM.Orphan] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9} -> ERROR [2]
[PUM.Orphan] (X64) HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar | {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} : -> ERROR [0]
[PUM.Orphan] (X64) HKEY_USERS\S-1-5-21-1237170793-86538594-3374620920-1001\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser | {2318C2B1-4965-11D4-9B18-009027A5CD4F} : -> ERROR [0]
[PUM.Orphan] (X64) HKEY_USERS\S-1-5-21-1237170793-86538594-3374620920-1001\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser | {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} : -> ERROR [0]
[PUM.Orphan] (X86) HKEY_USERS\S-1-5-21-1237170793-86538594-3374620920-1001\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser | {2318C2B1-4965-11D4-9B18-009027A5CD4F} : -> ERROR [2]
[PUM.Orphan] (X86) HKEY_USERS\S-1-5-21-1237170793-86538594-3374620920-1001\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser | {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} : -> ERROR [2]
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters | DhcpNameServer : [(Private Address) (XX)][-] -> Nahrazeno ()
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters | DhcpNameServer : [(Private Address) (XX)][-] -> Nahrazeno ()
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters | DhcpNameServer : [(Private Address) (XX)][-] -> Nahrazeno ()
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{A3FC305E-27AB-4D47-96E3-C5C9375B40E3} | DhcpNameServer : [(Private Address) (XX)][-] -> Nahrazeno ()
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{A3FC305E-27AB-4D47-96E3-C5C9375B40E3} | DhcpNameServer : [(Private Address) (XX)][-] -> Nahrazeno ()
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters\Interfaces\{A3FC305E-27AB-4D47-96E3-C5C9375B40E3} | DhcpNameServer : [(Private Address) (XX)][-] -> Nahrazeno ()
[PUM.Policies] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System | ConsentPromptBehaviorAdmin : 2 -> Nahrazeno (2)
[PUM.Policies] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System | ConsentPromptBehaviorAdmin : 2 -> Nahrazeno (2)
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 0 -> Nahrazeno (0)
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 0 -> Nahrazeno (0)
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 0 -> Nahrazeno (0)
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 0 -> Nahrazeno (0)
¤¤¤ Úlohy : 1 ¤¤¤
[Suspicious.Path] \Microsoft\Windows\Media Center\PeriodicScanRetry -- %windir%\ehome\MCUpdate.exe (-pscn 0) -> ERROR [0]
¤¤¤ Soubory : 1 ¤¤¤
[Suspicious.Path][Soubor] GameRanger.lnk -- C:\Users\Elik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\GameRanger.lnk [LNK@] C:\Users\Elik\AppData\Roaming\GAMERA~1\GAMERA~2\GAMERA~1.EXE /autostart -> Odstraněno při restartu [2]
¤¤¤ Soubor HOSTS : 0 ¤¤¤
¤¤¤ Antirootkit : 0 (Driver: Nahrán) ¤¤¤
¤¤¤ Webové prohlížeče : 10 ¤¤¤
[FIREFX:Addon] f1bvjtel.default : Forecastfox Weather [{0538E3E3-7E9B-4d49-8831-A227C80A7AD3}] -> Smazáno
[FIREFX:Addon] f1bvjtel.default : Adblock Plus [{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}] -> Smazáno
[FIREFX:Addon] f1bvjtel.default : Extended Copy Menu (fix version) [extended.copy.menu@fix.version] -> Smazáno
[FIREFX:Addon] f1bvjtel.default : SearchPreview [{EF522540-89F5-46b9-B6FE-1829E2B572C6}] -> Smazáno
[FIREFX:Addon] f1bvjtel.default : Blur [donottrackplus@abine.com] -> Smazáno
[FIREFX:Addon] f1bvjtel.default : Flashblock [{3d7eb24f-2740-49df-8937-200b1cc08f8a}] -> Smazáno
[FIREFX:Addon] f1bvjtel.default : Search By Image (by Google) [{ce7e73df-6a44-4028-8079-5927a588c948}] -> Smazáno
[FIREFX:Addon] f1bvjtel.default : Mozilla Firefox hotfix [firefox-hotfix@mozilla.org] -> Smazáno
[FIREFX:Addon] f1bvjtel.default : Noia 4 Theme Manager [Noia4Options@ArisT2] -> Smazáno
[FIREFX:Addon] f1bvjtel.default : Avast Online Security [wrc@avast.com] -> Smazáno
¤¤¤ Kontrola MBR : ¤¤¤
+++++ PhysicalDrive0: Hitachi HTS545032B9A300 +++++
--- User ---
[MBR] b94f19f6ebc7aacd471f7d829954f561
[BSP] 16d5ffb3174e0b815ece5a71209b1488 : Windows Vista/7/8 MBR Code
Partition table:
0 - [XXXXXX] ACER (0x27) [VISIBLE] Offset (sectors): 2048 | Size: 13312 MB
1 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 27265024 | Size: 100 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
2 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 27469824 | Size: 62158 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
3 - [XXXXXX] EXTEN-LBA (0xf) [VISIBLE] Offset (sectors): 154770210 | Size: 229671 MB
User = LL1 ... OK
User = LL2 ... OK
============================================
RKreport_SCN_05272015_231602.log - RKreport_SCN_05282015_103050.log - RKreport_DEL_05282015_103310.log
mail : http://www.adlice.com/contact/
Feedback : http://forum.adlice.com
Webová stránka : http://www.adlice.com/softwares/roguekiller/
Blog : http://www.adlice.com
Operační systém : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno : Normální režim
Uživatel : Elik [Práva správce]
Started from : C:\Users\Elik\Desktop\RogueKillerX64.exe
Mód : Smazat -- Datum : 05/28/2015 10:33:44
¤¤¤ Procesy : 0 ¤¤¤
¤¤¤ Registry : 23 ¤¤¤
[PUM.Orphan] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad | WebCheck : {E6FB5E20-DE35-11CF-9C87-00AA005127ED} -> ERROR [0]
[PUM.Orphan] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad | WebCheck : {E6FB5E20-DE35-11CF-9C87-00AA005127ED} -> ERROR [0]
[PUM.Orphan] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> ERROR [2]
[PUM.Orphan] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> ERROR [2]
[PUM.Orphan] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6} -> ERROR [2]
[PUM.Orphan] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9} -> ERROR [2]
[PUM.Orphan] (X64) HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar | {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} : -> ERROR [0]
[PUM.Orphan] (X64) HKEY_USERS\S-1-5-21-1237170793-86538594-3374620920-1001\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser | {2318C2B1-4965-11D4-9B18-009027A5CD4F} : -> ERROR [0]
[PUM.Orphan] (X64) HKEY_USERS\S-1-5-21-1237170793-86538594-3374620920-1001\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser | {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} : -> ERROR [0]
[PUM.Orphan] (X86) HKEY_USERS\S-1-5-21-1237170793-86538594-3374620920-1001\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser | {2318C2B1-4965-11D4-9B18-009027A5CD4F} : -> ERROR [2]
[PUM.Orphan] (X86) HKEY_USERS\S-1-5-21-1237170793-86538594-3374620920-1001\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser | {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} : -> ERROR [2]
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters | DhcpNameServer : [(Private Address) (XX)][-] -> Nahrazeno ()
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters | DhcpNameServer : [(Private Address) (XX)][-] -> Nahrazeno ()
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters | DhcpNameServer : [(Private Address) (XX)][-] -> Nahrazeno ()
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{A3FC305E-27AB-4D47-96E3-C5C9375B40E3} | DhcpNameServer : [(Private Address) (XX)][-] -> Nahrazeno ()
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{A3FC305E-27AB-4D47-96E3-C5C9375B40E3} | DhcpNameServer : [(Private Address) (XX)][-] -> Nahrazeno ()
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters\Interfaces\{A3FC305E-27AB-4D47-96E3-C5C9375B40E3} | DhcpNameServer : [(Private Address) (XX)][-] -> Nahrazeno ()
[PUM.Policies] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System | ConsentPromptBehaviorAdmin : 2 -> Nahrazeno (2)
[PUM.Policies] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System | ConsentPromptBehaviorAdmin : 2 -> Nahrazeno (2)
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 0 -> Nahrazeno (0)
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 0 -> Nahrazeno (0)
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 0 -> Nahrazeno (0)
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 0 -> Nahrazeno (0)
¤¤¤ Úlohy : 1 ¤¤¤
[Suspicious.Path] \Microsoft\Windows\Media Center\PeriodicScanRetry -- %windir%\ehome\MCUpdate.exe (-pscn 0) -> ERROR [0]
¤¤¤ Soubory : 1 ¤¤¤
[Suspicious.Path][Soubor] GameRanger.lnk -- C:\Users\Elik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\GameRanger.lnk [LNK@] C:\Users\Elik\AppData\Roaming\GAMERA~1\GAMERA~2\GAMERA~1.EXE /autostart -> Odstraněno při restartu [2]
¤¤¤ Soubor HOSTS : 0 ¤¤¤
¤¤¤ Antirootkit : 0 (Driver: Nahrán) ¤¤¤
¤¤¤ Webové prohlížeče : 10 ¤¤¤
[FIREFX:Addon] f1bvjtel.default : Forecastfox Weather [{0538E3E3-7E9B-4d49-8831-A227C80A7AD3}] -> Smazáno
[FIREFX:Addon] f1bvjtel.default : Adblock Plus [{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}] -> Smazáno
[FIREFX:Addon] f1bvjtel.default : Extended Copy Menu (fix version) [extended.copy.menu@fix.version] -> Smazáno
[FIREFX:Addon] f1bvjtel.default : SearchPreview [{EF522540-89F5-46b9-B6FE-1829E2B572C6}] -> Smazáno
[FIREFX:Addon] f1bvjtel.default : Blur [donottrackplus@abine.com] -> Smazáno
[FIREFX:Addon] f1bvjtel.default : Flashblock [{3d7eb24f-2740-49df-8937-200b1cc08f8a}] -> Smazáno
[FIREFX:Addon] f1bvjtel.default : Search By Image (by Google) [{ce7e73df-6a44-4028-8079-5927a588c948}] -> Smazáno
[FIREFX:Addon] f1bvjtel.default : Mozilla Firefox hotfix [firefox-hotfix@mozilla.org] -> Smazáno
[FIREFX:Addon] f1bvjtel.default : Noia 4 Theme Manager [Noia4Options@ArisT2] -> Smazáno
[FIREFX:Addon] f1bvjtel.default : Avast Online Security [wrc@avast.com] -> Smazáno
¤¤¤ Kontrola MBR : ¤¤¤
+++++ PhysicalDrive0: Hitachi HTS545032B9A300 +++++
--- User ---
[MBR] b94f19f6ebc7aacd471f7d829954f561
[BSP] 16d5ffb3174e0b815ece5a71209b1488 : Windows Vista/7/8 MBR Code
Partition table:
0 - [XXXXXX] ACER (0x27) [VISIBLE] Offset (sectors): 2048 | Size: 13312 MB
1 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 27265024 | Size: 100 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
2 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 27469824 | Size: 62158 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
3 - [XXXXXX] EXTEN-LBA (0xf) [VISIBLE] Offset (sectors): 154770210 | Size: 229671 MB
User = LL1 ... OK
User = LL2 ... OK
============================================
RKreport_SCN_05272015_231602.log - RKreport_SCN_05282015_103050.log - RKreport_DEL_05282015_103310.log
OS Win 10 Home
Základní deska MSI H110M PRO-VD,
2jádrový procesor Intel Core i3-6098P (3.6GHz, HyperThreading), 8GB operační paměti DDR4 2133 MHz TEAM Elite,
Pevný disk 1TB Seagate Barracuda,
Grafická karta NVIDIA GeForce GTX 750 Ti 2GB GDDR5,
DVD±RW mechanika LG,
Zdroj CHIEFTEC GPB-350S, 350 W
Skříň AIO Virtuo TAB04 Champagne
Základní deska MSI H110M PRO-VD,
2jádrový procesor Intel Core i3-6098P (3.6GHz, HyperThreading), 8GB operační paměti DDR4 2133 MHz TEAM Elite,
Pevný disk 1TB Seagate Barracuda,
Grafická karta NVIDIA GeForce GTX 750 Ti 2GB GDDR5,
DVD±RW mechanika LG,
Zdroj CHIEFTEC GPB-350S, 350 W
Skříň AIO Virtuo TAB04 Champagne
Re: Preventivní kontrola logu
Zoek.exe v5.0.0.0 Updated 04-May-2015
Tool run by Elik on źt 28.05.2015 at 10:36:04,21.
Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Elik\Desktop\zoek.exe [Scan all users] [Script inserted]
==== System Restore Info ======================
28.5.2015 10:37:53 Zoek.exe System Restore Point Created Successfully.
==== Reset Hosts File ======================
# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host
# localhost name resolution is handled within DNS itself.
127.0.0.1 localhost
::1 localhost
==== Empty Folders Check ======================
C:\PROGRA~2\MSXML 4.0 deleted successfully
C:\PROGRA~2\NTI deleted successfully
C:\PROGRA~2\COMMON~1\Symantec Shared deleted successfully
C:\Program Files\Google deleted successfully
C:\PROGRA~3\Canon IJ Network Tool deleted successfully
C:\PROGRA~3\{CED89F1A-945F-46EC-B23C-5EAF6D2DB12A} deleted successfully
C:\Users\Elik\AppData\Roaming\Might & Magic Heroes VI deleted successfully
C:\Users\Elik\AppData\Roaming\TP deleted successfully
C:\Users\Elik\AppData\Local\WMTools Downloaded Files deleted successfully
C:\Users\maminka\AppData\Local\WMTools Downloaded Files deleted successfully
==== Deleting CLSID Registry Keys ======================
HKEY_USERS\S-1-5-21-1237170793-86538594-3374620920-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{59F4AACF-F306-412B-942B-3A24F1EACA1D} deleted successfully
HKEY_USERS\S-1-5-21-1237170793-86538594-3374620920-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B0D51A81-E574-4D1A-A097-FEC79C2107E8} deleted successfully
==== Deleting CLSID Registry Values ======================
HKEY_USERS\S-1-5-21-1237170793-86538594-3374620920-1001\Software\Microsoft\Internet Explorer\Approved Extensions\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4} deleted successfully
HKEY_USERS\S-1-5-21-1237170793-86538594-3374620920-1001\Software\Microsoft\Internet Explorer\Approved Extensions\{1ACB5ABE-4890-4747-952C-F13BDB93FB75} deleted successfully
HKEY_USERS\S-1-5-21-1237170793-86538594-3374620920-1001\Software\Microsoft\Internet Explorer\Approved Extensions\{318A227B-5E9F-45BD-8999-7F8F10CA4CF5} deleted successfully
HKEY_USERS\S-1-5-21-1237170793-86538594-3374620920-1001\Software\Microsoft\Internet Explorer\Approved Extensions\{C1AF5FA5-852C-4C90-812E-A7F75E011D87} deleted successfully
HKEY_USERS\S-1-5-21-1237170793-86538594-3374620920-1001\Software\Microsoft\Internet Explorer\Approved Extensions\{338A754C-B46E-4BF2-8AC8-23DE36862AD3} deleted successfully
==== Deleting Services ======================
==== FireFox Fix ======================
Deleted from C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\prefs.js:
Added to C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");
Deleted from C:\Users\maminka\AppData\Roaming\Mozilla\Firefox\Profiles\s2eioa1u.default\prefs.js:
user_pref("browser.startup.homepage", "http://www.seznam.cz/");
user_pref("sweetim.toolbar.previous.browser.startup.homepage", "");
user_pref("browser.search.selectedEngine", "V9");
user_pref("browser.search.order.1", "V9");
user_pref("sweetim.toolbar.previous.keyword.URL", "");
user_pref("browser.search.useDBForOrder", true);
Added to C:\Users\maminka\AppData\Roaming\Mozilla\Firefox\Profiles\s2eioa1u.default\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");
ProfilePath: C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default
user.js not found
---- FireFox user.js and prefs.js backups ----
prefs_28.05.2015_1108_.backup
ProfilePath: C:\Users\maminka\AppData\Roaming\Mozilla\Firefox\Profiles\s2eioa1u.default
user.js not found
---- Lines Sweet removed from prefs.js ----
user_pref("sweetim.toolbar.scripts.1.domain-blacklist", "");
user_pref("sweetim.toolbar.searchguard.enable", "");
user_pref("sweetim.toolbar.searchguard.UserRejectedGuard_DS", "");
user_pref("sweetim.toolbar.searchguard.UserRejectedGuard_HP", "");
---- FireFox user.js and prefs.js backups ----
prefs_28.05.2015_1108_.backup
==== Deleting Files \ Folders ======================
C:\PROGRA~2\NTI not found
C:\PROGRA~3\{CED89F1A-945F-46EC-B23C-5EAF6D2DB12A} not found
C:\PROGRA~2\Windows Live SkyDrive deleted
C:\PROGRA~2\COMMON~1\DVDVideoSoft\bin deleted
C:\extensions deleted
C:\Users\Elik\AppData\Roaming\OpenCandy deleted
C:\PROGRA~3\InstallMate deleted
C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\Invalidprefs.js deleted
C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\ICQToolbarData deleted
C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\CT2463487 deleted
C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\CT3329621 deleted
C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\conduit deleted
C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\ConduitEngine deleted
C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\smartbar deleted
==== Firefox Start and Search pages ======================
ProfilePath: C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");
ProfilePath: C:\Users\maminka\AppData\Roaming\Mozilla\Firefox\Profiles\s2eioa1u.default
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");
==== Firefox Extensions Registry ======================
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"wrc@avast.com"="p:\AVAST Software\Avast\WebRep\FF" [27.05.2015 14:13]
==== Firefox Extensions ======================
ProfilePath: C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default
- Undetermined - %ProfilePath%\extensions\installed-extensions.txt
- Undetermined - %ProfilePath%\extensions\blockfall
- esk slovnk pro kontrolu pravopisu - %ProfilePath%\extensions\cs@dictionaries.addons.mozilla.org
- Undetermined - %ProfilePath%\extensions\tabbin
- Undetermined - %ProfilePath%\extensions\temp
- Unread Tabs - %ProfilePath%\extensions\{f57f9be0-5281-11d9-9669-0800200c9a664}
- Noia 4 - %ProfilePath%\extensions\{faf13420-5e24-11e0-80e3-0800200c9a66}.xpi
ProfilePath: C:\Users\maminka\AppData\Roaming\Mozilla\Firefox\Profiles\s2eioa1u.default
- Widevine Media Optimizer - %ProfilePath%\extensions\{2d3fbcf7-be69-4433-8858-c621a8d0e58d}
==== Firefox Plugins ======================
Profilepath: C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default
4DA979E6A3269922A16D4653AEF26D7F - P:\Adobe\Reader 9.0\Reader\browser\nppdf32.dll - Adobe Acrobat
ADC539F67D3198679F480974EE203678 - C:\Windows\SysWOW64\npDeployJava1.dll - Java Deployment Toolkit 7.0.210.11
9AE02005247DA91AB1743F5208DBEF76 - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_169.dll - Shockwave Flash
09B4E13D25623D879D35286E2D29FF13 - C:\Users\Elik\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll - Unity Player
15E298B5EC5B89C5994A59863969D9FF - C:\Windows\SysWOW64\npmproxy.dll - Microsoft® Windows® Operating System
==== Fake Chromium Profiles Check ======================
Fake profile C:\Users\Elik\AppData\Local\Google\Chrome deleted
==== Chromium Look ======================
HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
gomekmidlodglbbmalcneegieacbdmki - p:\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[27.05.2015 14:13]
==== Set IE to Default ======================
Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Old Start Page"="http://www.google.com"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="res://ieframe.dll/tabswelcome.htm"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="res://ieframe.dll/tabswelcome.htm"
New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Old Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="about:newtab"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="about:newtab"
==== All HKCU SearchScopes ======================
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"
{67A2568C-7A0A-4EED-AECC-B5405DE63B64} Google Url="http://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACAW_csCZ530"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7"
{71EFE927-0EFB-4D07-9748-67EEC812220A} (www.google.com) Google Url="https://www.google.com/search?q={searchTerms}"
==== Reset Google Chrome ======================
Nothing found to reset
==== Deleting Registry Keys ======================
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\jumpflip deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\volaro deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\vonteera deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{19A64D61-7C6B-3E0F-657C-D40CDA9A2F7F} deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{240E9323-1A73-6707-AF0B-6F5854436C52} deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{2CBFCAC3-0BE0-7A9F-67F4-01246286DD3B} deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{AF0F8BD9-FAFE-5FE0-6B6B-733D0D1E1765} deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{B3F90DD7-7D2D-888A-4FC9-440A2DF691ED} deleted successfully
==== Empty IE Cache ======================
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Elik\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\6F597LX0 will be deleted at reboot
C:\Users\Elik\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\8YMX0A05 will be deleted at reboot
C:\Users\Elik\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\SNQCDKJZ will be deleted at reboot
==== Empty FireFox Cache ======================
C:\Users\Elik\AppData\Local\Mozilla\Firefox\Profiles\f1bvjtel.default\cache2 emptied successfully
C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\forecastfox\cache emptied successfully
==== Empty Chrome Cache ======================
No Chrome Cache found
==== Empty All Flash Cache ======================
Flash Cache Emptied Successfully
==== Empty All Java Cache ======================
Java Cache cleared successfully
==== C:\zoek_backup content ======================
C:\zoek_backup (files=390 folders=77 57858164 bytes)
==== Empty Temp Folders ======================
C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Elik\AppData\Local\Temp will be emptied at reboot
C:\Users\maminka\AppData\Local\Temp emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot
==== After Reboot ======================
==== Empty Temp Folders ======================
C:\Windows\Temp successfully emptied
C:\Users\Elik\AppData\Local\Temp successfully emptied
==== Empty Recycle Bin ======================
C:\$RECYCLE.BIN successfully emptied
==== Deleting Files / Folders ======================
"C:\Users\Elik\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\6F597LX0" not found
"C:\Users\Elik\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\8YMX0A05" not found
"C:\Users\Elik\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\SNQCDKJZ" not found
==== EOF on źt 28.05.2015 at 11:19:12,34 ======================
Tool run by Elik on źt 28.05.2015 at 10:36:04,21.
Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Elik\Desktop\zoek.exe [Scan all users] [Script inserted]
==== System Restore Info ======================
28.5.2015 10:37:53 Zoek.exe System Restore Point Created Successfully.
==== Reset Hosts File ======================
# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host
# localhost name resolution is handled within DNS itself.
127.0.0.1 localhost
::1 localhost
==== Empty Folders Check ======================
C:\PROGRA~2\MSXML 4.0 deleted successfully
C:\PROGRA~2\NTI deleted successfully
C:\PROGRA~2\COMMON~1\Symantec Shared deleted successfully
C:\Program Files\Google deleted successfully
C:\PROGRA~3\Canon IJ Network Tool deleted successfully
C:\PROGRA~3\{CED89F1A-945F-46EC-B23C-5EAF6D2DB12A} deleted successfully
C:\Users\Elik\AppData\Roaming\Might & Magic Heroes VI deleted successfully
C:\Users\Elik\AppData\Roaming\TP deleted successfully
C:\Users\Elik\AppData\Local\WMTools Downloaded Files deleted successfully
C:\Users\maminka\AppData\Local\WMTools Downloaded Files deleted successfully
==== Deleting CLSID Registry Keys ======================
HKEY_USERS\S-1-5-21-1237170793-86538594-3374620920-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{59F4AACF-F306-412B-942B-3A24F1EACA1D} deleted successfully
HKEY_USERS\S-1-5-21-1237170793-86538594-3374620920-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B0D51A81-E574-4D1A-A097-FEC79C2107E8} deleted successfully
==== Deleting CLSID Registry Values ======================
HKEY_USERS\S-1-5-21-1237170793-86538594-3374620920-1001\Software\Microsoft\Internet Explorer\Approved Extensions\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4} deleted successfully
HKEY_USERS\S-1-5-21-1237170793-86538594-3374620920-1001\Software\Microsoft\Internet Explorer\Approved Extensions\{1ACB5ABE-4890-4747-952C-F13BDB93FB75} deleted successfully
HKEY_USERS\S-1-5-21-1237170793-86538594-3374620920-1001\Software\Microsoft\Internet Explorer\Approved Extensions\{318A227B-5E9F-45BD-8999-7F8F10CA4CF5} deleted successfully
HKEY_USERS\S-1-5-21-1237170793-86538594-3374620920-1001\Software\Microsoft\Internet Explorer\Approved Extensions\{C1AF5FA5-852C-4C90-812E-A7F75E011D87} deleted successfully
HKEY_USERS\S-1-5-21-1237170793-86538594-3374620920-1001\Software\Microsoft\Internet Explorer\Approved Extensions\{338A754C-B46E-4BF2-8AC8-23DE36862AD3} deleted successfully
==== Deleting Services ======================
==== FireFox Fix ======================
Deleted from C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\prefs.js:
Added to C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");
Deleted from C:\Users\maminka\AppData\Roaming\Mozilla\Firefox\Profiles\s2eioa1u.default\prefs.js:
user_pref("browser.startup.homepage", "http://www.seznam.cz/");
user_pref("sweetim.toolbar.previous.browser.startup.homepage", "");
user_pref("browser.search.selectedEngine", "V9");
user_pref("browser.search.order.1", "V9");
user_pref("sweetim.toolbar.previous.keyword.URL", "");
user_pref("browser.search.useDBForOrder", true);
Added to C:\Users\maminka\AppData\Roaming\Mozilla\Firefox\Profiles\s2eioa1u.default\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");
ProfilePath: C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default
user.js not found
---- FireFox user.js and prefs.js backups ----
prefs_28.05.2015_1108_.backup
ProfilePath: C:\Users\maminka\AppData\Roaming\Mozilla\Firefox\Profiles\s2eioa1u.default
user.js not found
---- Lines Sweet removed from prefs.js ----
user_pref("sweetim.toolbar.scripts.1.domain-blacklist", "");
user_pref("sweetim.toolbar.searchguard.enable", "");
user_pref("sweetim.toolbar.searchguard.UserRejectedGuard_DS", "");
user_pref("sweetim.toolbar.searchguard.UserRejectedGuard_HP", "");
---- FireFox user.js and prefs.js backups ----
prefs_28.05.2015_1108_.backup
==== Deleting Files \ Folders ======================
C:\PROGRA~2\NTI not found
C:\PROGRA~3\{CED89F1A-945F-46EC-B23C-5EAF6D2DB12A} not found
C:\PROGRA~2\Windows Live SkyDrive deleted
C:\PROGRA~2\COMMON~1\DVDVideoSoft\bin deleted
C:\extensions deleted
C:\Users\Elik\AppData\Roaming\OpenCandy deleted
C:\PROGRA~3\InstallMate deleted
C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\Invalidprefs.js deleted
C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\ICQToolbarData deleted
C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\CT2463487 deleted
C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\CT3329621 deleted
C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\conduit deleted
C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\ConduitEngine deleted
C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\smartbar deleted
==== Firefox Start and Search pages ======================
ProfilePath: C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");
ProfilePath: C:\Users\maminka\AppData\Roaming\Mozilla\Firefox\Profiles\s2eioa1u.default
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");
==== Firefox Extensions Registry ======================
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"wrc@avast.com"="p:\AVAST Software\Avast\WebRep\FF" [27.05.2015 14:13]
==== Firefox Extensions ======================
ProfilePath: C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default
- Undetermined - %ProfilePath%\extensions\installed-extensions.txt
- Undetermined - %ProfilePath%\extensions\blockfall
- esk slovnk pro kontrolu pravopisu - %ProfilePath%\extensions\cs@dictionaries.addons.mozilla.org
- Undetermined - %ProfilePath%\extensions\tabbin
- Undetermined - %ProfilePath%\extensions\temp
- Unread Tabs - %ProfilePath%\extensions\{f57f9be0-5281-11d9-9669-0800200c9a664}
- Noia 4 - %ProfilePath%\extensions\{faf13420-5e24-11e0-80e3-0800200c9a66}.xpi
ProfilePath: C:\Users\maminka\AppData\Roaming\Mozilla\Firefox\Profiles\s2eioa1u.default
- Widevine Media Optimizer - %ProfilePath%\extensions\{2d3fbcf7-be69-4433-8858-c621a8d0e58d}
==== Firefox Plugins ======================
Profilepath: C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default
4DA979E6A3269922A16D4653AEF26D7F - P:\Adobe\Reader 9.0\Reader\browser\nppdf32.dll - Adobe Acrobat
ADC539F67D3198679F480974EE203678 - C:\Windows\SysWOW64\npDeployJava1.dll - Java Deployment Toolkit 7.0.210.11
9AE02005247DA91AB1743F5208DBEF76 - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_169.dll - Shockwave Flash
09B4E13D25623D879D35286E2D29FF13 - C:\Users\Elik\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll - Unity Player
15E298B5EC5B89C5994A59863969D9FF - C:\Windows\SysWOW64\npmproxy.dll - Microsoft® Windows® Operating System
==== Fake Chromium Profiles Check ======================
Fake profile C:\Users\Elik\AppData\Local\Google\Chrome deleted
==== Chromium Look ======================
HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
gomekmidlodglbbmalcneegieacbdmki - p:\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[27.05.2015 14:13]
==== Set IE to Default ======================
Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Old Start Page"="http://www.google.com"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="res://ieframe.dll/tabswelcome.htm"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="res://ieframe.dll/tabswelcome.htm"
New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Old Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="about:newtab"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="about:newtab"
==== All HKCU SearchScopes ======================
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"
{67A2568C-7A0A-4EED-AECC-B5405DE63B64} Google Url="http://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACAW_csCZ530"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7"
{71EFE927-0EFB-4D07-9748-67EEC812220A} (www.google.com) Google Url="https://www.google.com/search?q={searchTerms}"
==== Reset Google Chrome ======================
Nothing found to reset
==== Deleting Registry Keys ======================
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\jumpflip deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\volaro deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\vonteera deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{19A64D61-7C6B-3E0F-657C-D40CDA9A2F7F} deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{240E9323-1A73-6707-AF0B-6F5854436C52} deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{2CBFCAC3-0BE0-7A9F-67F4-01246286DD3B} deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{AF0F8BD9-FAFE-5FE0-6B6B-733D0D1E1765} deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{B3F90DD7-7D2D-888A-4FC9-440A2DF691ED} deleted successfully
==== Empty IE Cache ======================
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Elik\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\6F597LX0 will be deleted at reboot
C:\Users\Elik\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\8YMX0A05 will be deleted at reboot
C:\Users\Elik\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\SNQCDKJZ will be deleted at reboot
==== Empty FireFox Cache ======================
C:\Users\Elik\AppData\Local\Mozilla\Firefox\Profiles\f1bvjtel.default\cache2 emptied successfully
C:\Users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\forecastfox\cache emptied successfully
==== Empty Chrome Cache ======================
No Chrome Cache found
==== Empty All Flash Cache ======================
Flash Cache Emptied Successfully
==== Empty All Java Cache ======================
Java Cache cleared successfully
==== C:\zoek_backup content ======================
C:\zoek_backup (files=390 folders=77 57858164 bytes)
==== Empty Temp Folders ======================
C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Elik\AppData\Local\Temp will be emptied at reboot
C:\Users\maminka\AppData\Local\Temp emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot
==== After Reboot ======================
==== Empty Temp Folders ======================
C:\Windows\Temp successfully emptied
C:\Users\Elik\AppData\Local\Temp successfully emptied
==== Empty Recycle Bin ======================
C:\$RECYCLE.BIN successfully emptied
==== Deleting Files / Folders ======================
"C:\Users\Elik\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\6F597LX0" not found
"C:\Users\Elik\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\8YMX0A05" not found
"C:\Users\Elik\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\SNQCDKJZ" not found
==== EOF on źt 28.05.2015 at 11:19:12,34 ======================
OS Win 10 Home
Základní deska MSI H110M PRO-VD,
2jádrový procesor Intel Core i3-6098P (3.6GHz, HyperThreading), 8GB operační paměti DDR4 2133 MHz TEAM Elite,
Pevný disk 1TB Seagate Barracuda,
Grafická karta NVIDIA GeForce GTX 750 Ti 2GB GDDR5,
DVD±RW mechanika LG,
Zdroj CHIEFTEC GPB-350S, 350 W
Skříň AIO Virtuo TAB04 Champagne
Základní deska MSI H110M PRO-VD,
2jádrový procesor Intel Core i3-6098P (3.6GHz, HyperThreading), 8GB operační paměti DDR4 2133 MHz TEAM Elite,
Pevný disk 1TB Seagate Barracuda,
Grafická karta NVIDIA GeForce GTX 750 Ti 2GB GDDR5,
DVD±RW mechanika LG,
Zdroj CHIEFTEC GPB-350S, 350 W
Skříň AIO Virtuo TAB04 Champagne
Re: Preventivní kontrola logu
ComboFix 15-05-25.01 - Elik 28.05.2015 11:28:23.1.4 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.3959.1212 [GMT 1:00]
Spuštěný z: c:\users\Elik\Desktop\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}
SP: avast! Antivirus *Disabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\SysWow64\X86
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2015-04-28 do 2015-05-28 )))))))))))))))))))))))))))))))
.
.
2015-05-28 10:38 . 2015-05-28 10:38 -------- d-----w- c:\users\maminka\AppData\Local\temp
2015-05-28 10:38 . 2015-05-28 10:38 -------- d-----w- c:\users\Default\AppData\Local\temp
2015-05-28 10:17 . 2015-05-28 09:35 24064 ----a-w- c:\windows\zoek-delete.exe
2015-05-28 10:17 . 2015-05-28 10:38 -------- d-----w- c:\users\Elik\AppData\Local\Temp
2015-05-28 09:35 . 2015-05-28 10:09 -------- d-----w- C:\zoek_backup
2015-05-28 08:09 . 2014-11-18 13:46 2502240 ----a-w- c:\windows\SysWow64\BootMan.exe
2015-05-28 08:09 . 2014-11-18 13:46 3384928 ----a-w- c:\windows\system32\BootMan.exe
2015-05-28 08:09 . 2014-11-18 13:46 21088 ----a-w- c:\windows\SysWow64\EuEpmGdi.dll
2015-05-28 08:09 . 2014-11-18 13:46 17504 ----a-w- c:\windows\system32\EuEpmGdi.dll
2015-05-28 08:09 . 2014-11-18 13:39 18528 ----a-w- c:\windows\system32\epmntdrv.sys
2015-05-28 08:09 . 2014-11-18 13:39 10848 ----a-w- c:\windows\system32\EuGdiDrv.sys
2015-05-28 08:09 . 2014-11-18 13:38 101984 ----a-w- c:\windows\system32\setupempdrvx64.exe
2015-05-28 08:09 . 2014-11-18 13:39 14944 ----a-w- c:\windows\SysWow64\epmntdrv.sys
2015-05-28 08:09 . 2014-11-18 13:39 10208 ----a-w- c:\windows\SysWow64\EuGdiDrv.sys
2015-05-28 08:09 . 2014-11-18 13:38 88160 ----a-w- c:\windows\SysWow64\setupempdrv03.exe
2015-05-28 08:09 . 2015-05-28 08:09 -------- d-----w- C:\EaseUS
2015-05-27 22:09 . 2015-05-28 09:25 37624 ----a-w- c:\windows\system32\drivers\TrueSight.sys
2015-05-27 22:09 . 2015-05-27 22:16 -------- d-----w- c:\programdata\RogueKiller
2015-05-27 22:02 . 2015-05-27 22:02 -------- d-----w- C:\RegBackup
2015-05-27 13:14 . 2015-05-27 13:14 -------- d-----w- c:\program files\avast software
2015-05-27 13:13 . 2015-05-27 13:13 364472 ----a-w- c:\windows\system32\aswBoot.exe
2015-05-27 13:13 . 2015-05-27 13:13 43112 ----a-w- c:\windows\avastSS.scr
2015-05-27 09:38 . 2015-05-27 21:10 136408 ----a-w- c:\windows\system32\drivers\MBAMSwissArmy.sys
2015-05-27 09:38 . 2015-05-27 09:38 -------- d-----w- c:\program files (x86)\Malwarebytes Anti-Malware
2015-05-27 09:38 . 2015-04-14 08:37 63704 ----a-w- c:\windows\system32\drivers\mwac.sys
2015-05-27 09:38 . 2015-04-14 08:37 107736 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys
2015-05-27 09:38 . 2015-04-14 08:37 25816 ----a-w- c:\windows\system32\drivers\mbam.sys
2015-05-27 08:37 . 2015-05-27 08:37 -------- d-----w- c:\programdata\Malwarebytes
2015-05-27 08:32 . 2015-05-27 21:53 -------- d-----w- C:\AdwCleaner
2015-05-27 08:29 . 2015-05-27 08:29 -------- d-----w- c:\users\Elik\AppData\Local\CrashDumps
2015-05-27 07:36 . 2015-05-27 07:36 -------- d-----w- c:\users\Elik\AppData\Local\PhotoGenie
2015-05-27 05:22 . 2015-05-27 05:22 -------- d-----w- C:\Pro)
2015-05-13 19:59 . 2015-05-01 13:17 124112 ----a-w- c:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-05-13 19:59 . 2015-05-01 13:16 102608 ----a-w- c:\windows\SysWow64\PresentationCFFRasterizerNative_v0300.dll
2015-05-13 11:01 . 2015-04-22 02:28 293072 ----a-w- c:\program files\Internet Explorer\sqmapi.dll
2015-05-13 11:00 . 2015-04-20 03:17 1647104 ----a-w- c:\windows\system32\DWrite.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2015-05-27 13:13 . 2014-10-03 14:33 137288 ----a-w- c:\windows\system32\drivers\aswStm.sys
2015-05-27 13:13 . 2013-07-22 19:41 442264 ----a-w- c:\windows\system32\drivers\aswSP.sys
2015-05-27 13:13 . 2013-07-22 19:41 272248 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2015-05-27 13:13 . 2013-07-22 19:41 65736 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
2015-05-27 13:13 . 2014-10-03 14:33 29168 ----a-w- c:\windows\system32\drivers\aswHwid.sys
2015-05-27 13:13 . 2013-07-22 19:41 93528 ----a-w- c:\windows\system32\drivers\aswRdr2.sys
2015-05-27 13:13 . 2013-07-22 19:41 89944 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2015-05-27 13:13 . 2013-07-22 19:41 1047320 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2015-05-13 21:19 . 2014-03-22 06:43 140425016 ----a-w- c:\windows\system32\MRT.exe
2015-05-05 01:29 . 2015-05-13 11:02 342016 ----a-w- c:\windows\system32\schannel.dll
2015-05-05 01:12 . 2015-05-13 11:02 248832 ----a-w- c:\windows\SysWow64\schannel.dll
2015-04-27 19:23 . 2015-05-13 11:01 113664 ----a-w- c:\windows\system32\sechost.dll
2015-04-27 19:05 . 2015-05-13 11:01 92160 ----a-w- c:\windows\SysWow64\sechost.dll
2015-04-27 19:04 . 2015-05-13 11:01 44032 ----a-w- c:\windows\apppatch\acwow64.dll
2015-04-15 16:58 . 2013-04-07 13:54 778416 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2015-04-15 16:58 . 2013-04-07 13:54 142512 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2015-03-25 03:24 . 2015-04-15 10:19 3298816 ----a-w- c:\windows\system32\wucltux.dll
2015-03-25 03:24 . 2015-04-15 10:19 98304 ----a-w- c:\windows\system32\wudriver.dll
2015-03-25 03:24 . 2015-04-15 10:19 37376 ----a-w- c:\windows\system32\wups2.dll
2015-03-25 03:24 . 2015-04-15 10:19 35328 ----a-w- c:\windows\system32\wups.dll
2015-03-25 03:24 . 2015-04-15 10:19 2553856 ----a-w- c:\windows\system32\wuaueng.dll
2015-03-25 03:24 . 2015-04-15 10:19 191488 ----a-w- c:\windows\system32\wuwebv.dll
2015-03-25 03:24 . 2015-04-15 10:19 696320 ----a-w- c:\windows\system32\wuapi.dll
2015-03-25 03:24 . 2015-04-15 10:19 60416 ----a-w- c:\windows\system32\WinSetupUI.dll
2015-03-25 03:23 . 2015-04-15 10:19 12288 ----a-w- c:\windows\system32\wu.upgrade.ps.dll
2015-03-25 03:23 . 2015-04-15 10:19 36864 ----a-w- c:\windows\system32\wuapp.exe
2015-03-25 03:23 . 2015-04-15 10:19 135168 ----a-w- c:\windows\system32\wuauclt.exe
2015-03-25 03:00 . 2015-04-15 10:19 92672 ----a-w- c:\windows\SysWow64\wudriver.dll
2015-03-25 03:00 . 2015-04-15 10:19 29696 ----a-w- c:\windows\SysWow64\wups.dll
2015-03-25 03:00 . 2015-04-15 10:19 173056 ----a-w- c:\windows\SysWow64\wuwebv.dll
2015-03-25 03:00 . 2015-04-15 10:19 566784 ----a-w- c:\windows\SysWow64\wuapi.dll
2015-03-25 03:00 . 2015-04-15 10:19 33792 ----a-w- c:\windows\SysWow64\wuapp.exe
2015-03-23 03:25 . 2015-04-15 10:19 726528 ----a-w- c:\windows\system32\generaltel.dll
2015-03-23 03:25 . 2015-04-15 10:19 769536 ----a-w- c:\windows\system32\invagent.dll
2015-03-23 03:24 . 2015-04-15 10:19 419840 ----a-w- c:\windows\system32\devinv.dll
2015-03-23 03:24 . 2015-04-15 10:19 957952 ----a-w- c:\windows\system32\appraiser.dll
2015-03-23 03:24 . 2015-04-15 10:19 30720 ----a-w- c:\windows\system32\acmigration.dll
2015-03-23 03:24 . 2015-04-15 10:19 192000 ----a-w- c:\windows\system32\aepic.dll
2015-03-23 03:24 . 2015-04-15 10:19 227328 ----a-w- c:\windows\system32\aepdu.dll
2015-03-23 03:17 . 2015-04-15 10:19 1111552 ----a-w- c:\windows\system32\aeinv.dll
2015-03-10 03:25 . 2015-04-15 10:19 1882624 ----a-w- c:\windows\system32\msxml3.dll
2015-03-10 03:21 . 2015-04-15 10:19 2048 ----a-w- c:\windows\system32\msxml3r.dll
2015-03-10 03:08 . 2015-04-15 10:19 1237504 ----a-w- c:\windows\SysWow64\msxml3.dll
2015-03-10 03:05 . 2015-04-15 10:19 2048 ----a-w- c:\windows\SysWow64\msxml3r.dll
2015-03-05 05:12 . 2015-04-15 10:19 404480 ----a-w- c:\windows\system32\gdi32.dll
2015-03-05 04:05 . 2015-04-15 10:19 311808 ----a-w- c:\windows\SysWow64\gdi32.dll
2015-03-04 04:55 . 2015-04-15 10:17 367552 ----a-w- c:\windows\system32\clfs.sys
2015-03-04 04:41 . 2015-04-15 10:17 79360 ----a-w- c:\windows\system32\clfsw32.dll
2015-03-04 04:41 . 2015-05-13 11:00 309248 ----a-w- c:\windows\apppatch\AppPatch64\AcGenral.dll
2015-03-04 04:41 . 2015-05-13 11:00 103424 ----a-w- c:\windows\apppatch\AppPatch64\acspecfc.dll
2015-03-04 04:10 . 2015-04-15 10:17 58880 ----a-w- c:\windows\SysWow64\clfsw32.dll
2015-03-04 04:10 . 2015-05-13 11:00 470528 ----a-w- c:\windows\apppatch\AcSpecfc.dll
2015-03-04 04:10 . 2015-05-13 11:00 2178560 ----a-w- c:\windows\apppatch\AcGenral.dll
2015-03-04 04:06 . 2015-05-13 11:00 2560 ----a-w- c:\windows\apppatch\AcRes.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro1 (ErrorConflict)]
@="{8BA85C75-763B-4103-94EB-9470F12FE0F7}"
[HKEY_CLASSES_ROOT\CLSID\{8BA85C75-763B-4103-94EB-9470F12FE0F7}]
2015-04-14 16:11 1729752 ----a-w- p:\micros~1\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro2 (SyncInProgress)]
@="{CD55129A-B1A1-438E-A425-CEBC7DC684EE}"
[HKEY_CLASSES_ROOT\CLSID\{CD55129A-B1A1-438E-A425-CEBC7DC684EE}]
2015-04-14 16:11 1729752 ----a-w- p:\micros~1\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro3 (InSync)]
@="{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}"
[HKEY_CLASSES_ROOT\CLSID\{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}]
2015-04-14 16:11 1729752 ----a-w- p:\micros~1\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\egisPSDP]
@="{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}"
[HKEY_CLASSES_ROOT\CLSID\{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}]
2010-05-27 02:40 120176 ----a-w- c:\program files (x86)\EgisTec MyWinLocker\x86\PSDProtect.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="p:\daemon tools lite\DTLite.exe" [2014-03-04 3696912]
"Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2015-02-26 31344744]
"Sony PC Companion"="c:\program files (x86)\Sony\Sony PC Companion\PCCompanion.exe" [2015-04-10 455392]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"LManager"="c:\program files (x86)\Launch Manager\LManager.exe" [2010-06-22 968272]
"AvastUI.exe"="p:\avast software\Avast\AvastUI.exe" [2015-05-27 5515496]
"EaseUS EPM tray"="c:\easeus\EaseUS Partition Master 10.2\bin\EpmNews.exe" [2014-11-18 2089056]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
"SoftwareSASGeneration"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-]
"Adobe Reader Speed Launcher"="p:\adobe\Reader 9.0\Reader\Reader_sl.exe"
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe"
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
"LogMeIn Hamachi Ui"="p:\hamachi\hamachi-2-ui.exe" --auto-start
"IJNetworkScannerSelectorEX"=c:\program files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe /FORCE
"CanonQuickMenu"=c:\program files (x86)\Canon\Quick Menu\CNQMMAIN.EXE /logon
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"BackupManagerTray"="c:\program files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe" -h -k
"EgisUpdate"="c:\program files (x86)\EgisTec IPS\EgisUpdate.exe" -d
"IAStorIcon"=c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
"EgisTecPMMUpdate"="c:\program files (x86)\EgisTec IPS\PmmUpdate.exe"
"SuiteTray"="c:\program files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe"
.
R2 aswStm;aswStm;c:\windows\system32\drivers\aswStm.sys;c:\windows\SYSNATIVE\drivers\aswStm.sys [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes Anti-Malware\mbamservice.exe;c:\program files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R3 EagleX64;EagleX64;c:\windows\system32\drivers\EagleX64.sys;c:\windows\SYSNATIVE\drivers\EagleX64.sys [x]
R3 epmntdrv;epmntdrv;c:\windows\system32\epmntdrv.sys;c:\windows\SYSNATIVE\epmntdrv.sys [x]
R3 EuGdiDrv;EuGdiDrv;c:\windows\system32\EuGdiDrv.sys;c:\windows\SYSNATIVE\EuGdiDrv.sys [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0;c:\windows\system32\DRIVERS\k57nd60a.sys;c:\windows\SYSNATIVE\DRIVERS\k57nd60a.sys [x]
R3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\MBAMSwissArmy.sys;c:\windows\SYSNATIVE\drivers\MBAMSwissArmy.sys [x]
R3 MBAMWebAccessControl;MBAMWebAccessControl;c:\windows\system32\drivers\mwac.sys;c:\windows\SYSNATIVE\drivers\mwac.sys [x]
R3 pwdrvio;pwdrvio;c:\windows\system32\pwdrvio.sys;c:\windows\SYSNATIVE\pwdrvio.sys [x]
R3 pwdspio;pwdspio;c:\windows\system32\pwdspio.sys;c:\windows\SYSNATIVE\pwdspio.sys [x]
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\System32\Drivers\RtsUStor.sys;c:\windows\SYSNATIVE\Drivers\RtsUStor.sys [x]
R3 Sony PC Companion;Sony PC Companion;c:\program files (x86)\Sony\Sony PC Companion\PCCService.exe;c:\program files (x86)\Sony\Sony PC Companion\PCCService.exe [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R3 WSDScan;Podpora skenování WSD přes UMB;c:\windows\system32\DRIVERS\WSDScan.sys;c:\windows\SYSNATIVE\DRIVERS\WSDScan.sys [x]
R4 MWLService;MyWinLocker Service;c:\program files (x86)\EgisTec MyWinLocker\x86\MWLService.exe;c:\program files (x86)\EgisTec MyWinLocker\x86\MWLService.exe [x]
R4 NTI IScheduleSvc;NTI IScheduleSvc;c:\program files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe;c:\program files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe [x]
S0 aswRvrt;avast! Revert; [x]
S0 aswVmm;avast! VM Monitor; [x]
S1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys;c:\windows\SYSNATIVE\drivers\aswSnx.sys [x]
S1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys;c:\windows\SYSNATIVE\drivers\aswSP.sys [x]
S1 mwlPSDFilter;mwlPSDFilter;c:\windows\system32\DRIVERS\mwlPSDFilter.sys;c:\windows\SYSNATIVE\DRIVERS\mwlPSDFilter.sys [x]
S1 mwlPSDNServ;mwlPSDNServ;c:\windows\system32\DRIVERS\mwlPSDNServ.sys;c:\windows\SYSNATIVE\DRIVERS\mwlPSDNServ.sys [x]
S1 mwlPSDVDisk;mwlPSDVDisk;c:\windows\system32\DRIVERS\mwlPSDVDisk.sys;c:\windows\SYSNATIVE\DRIVERS\mwlPSDVDisk.sys [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 aswHwid;avast! HardwareID;c:\windows\system32\drivers\aswHwid.sys;c:\windows\SYSNATIVE\drivers\aswHwid.sys [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys;c:\windows\SYSNATIVE\drivers\aswMonFlt.sys [x]
S2 DiagTrack;Diagnostics Tracking Service;c:\windows\System32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
S2 DsiWMIService;Dritek WMI Service;c:\program files (x86)\Launch Manager\dsiwmis.exe;c:\program files (x86)\Launch Manager\dsiwmis.exe [x]
S2 ePowerSvc;Acer ePower Service;c:\program files\Acer\Acer ePower Management\ePowerSvc.exe;c:\program files\Acer\Acer ePower Management\ePowerSvc.exe [x]
S2 GREGService;GREGService;c:\program files (x86)\Acer\Registration\GREGsvc.exe;c:\program files (x86)\Acer\Registration\GREGsvc.exe [x]
S2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;p:\hamachi\hamachi-2.exe;p:\hamachi\hamachi-2.exe [x]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [x]
S2 UNS;Intel(R) Management & Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [x]
S2 Updater Service;Updater Service;c:\program files\Acer\Acer Updater\UpdaterService.exe;c:\program files\Acer\Acer Updater\UpdaterService.exe [x]
S3 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys;c:\windows\SYSNATIVE\DRIVERS\dtsoftbus01.sys [x]
S3 HECIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys;c:\windows\SYSNATIVE\DRIVERS\HECIx64.sys [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]
.
.
Obsah adresáře 'Naplánované úlohy'
.
2015-05-28 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-04-07 16:58]
.
2013-04-07 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-04-07 13:11]
.
2013-04-07 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-04-07 13:11]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro1 (ErrorConflict)]
@="{8BA85C75-763B-4103-94EB-9470F12FE0F7}"
[HKEY_CLASSES_ROOT\CLSID\{8BA85C75-763B-4103-94EB-9470F12FE0F7}]
2015-04-14 16:19 2334936 ----a-w- c:\progra~1\MICROS~2\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro2 (SyncInProgress)]
@="{CD55129A-B1A1-438E-A425-CEBC7DC684EE}"
[HKEY_CLASSES_ROOT\CLSID\{CD55129A-B1A1-438E-A425-CEBC7DC684EE}]
2015-04-14 16:19 2334936 ----a-w- c:\progra~1\MICROS~2\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro3 (InSync)]
@="{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}"
[HKEY_CLASSES_ROOT\CLSID\{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}]
2015-04-14 16:19 2334936 ----a-w- c:\progra~1\MICROS~2\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2015-05-27 13:13 722400 ----a-w- p:\avast software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\egisPSDP]
@="{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}"
[HKEY_CLASSES_ROOT\CLSID\{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}]
2010-05-27 02:42 137584 ----a-w- c:\program files (x86)\EgisTec MyWinLocker\x64\PSDProtect.dll
.
------- Doplňkový sken -------
.
uStart Page = www.google.com
uLocal Page = c:\windows\system32\blank.htm
uDefault_Search_URL = www.google.com
mDefault_Search_URL = www.google.com
mDefault_Page_URL = www.google.com
mStart Page = www.google.com
mLocal Page = c:\windows\SysWOW64\blank.htm
mSearch Page = www.google.com
IE: E&xportovat do aplikace Microsoft Excel - p:\micros~1\Office14\EXCEL.EXE/3000
IE: E&xportovat do Microsoft Excelu - p:\micros~1\Office15\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - p:\micros~1\Office14\ONBttnIE.dll/105
IE: Od&eslat do OneNotu - p:\micros~1\Office15\ONBttnIE.dll/105
IE: WikiKomentáře Google... - c:\program files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_96D6FF0C6D236BF8.dll/cmsidewiki.html
IE: {{612F6E5C-B314-4bab-93D1-D266AAFBE700} - p:\tudou downloader\TudouDownloader(xmlbar).exe
Filter: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - c:\program files (x86)\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL
FF - ProfilePath - c:\users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\
FF - prefs.js: browser.startup.homepage - about:home
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Toolbar-Locked - (no file)
Toolbar-10 - (no file)
Wow6432Node-HKLM-Run-4StoryPrePatch - e:\game\GameforgeLive\Games\CZE_ces\4Story\PrePatch.exe
Wow6432Node-HKU-Default-RunOnce-SPReview - c:\windows\System32\SPReview\SPReview.exe
HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start
Toolbar-Locked - (no file)
Toolbar-10 - (no file)
HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe
AddRemove-{90140000-0015-0405-0000-0000000FF1CE}_Office14.SingleImage_{DAB3EE22-FB0E-401F-9418-E9F0B08AEB39} - c:\program files (x86)\Common Files\Microsoft Shared\OFFICE14\Oarpmany.exe
AddRemove-{90140000-0019-0405-0000-0000000FF1CE}_Office14.SingleImage_{DAB3EE22-FB0E-401F-9418-E9F0B08AEB39} - c:\program files (x86)\Common Files\Microsoft Shared\OFFICE14\Oarpmany.exe
AddRemove-{90140000-001F-0405-0000-0000000FF1CE}_Office14.SingleImage_{A71E3AD4-5545-4D59-9F11-75F363563C6A} - c:\program files (x86)\Common Files\Microsoft Shared\OFFICE14\Oarpmany.exe
AddRemove-{90140000-001F-041B-0000-0000000FF1CE}_Office14.SingleImage_{0C337AF5-E6A7-4B6B-8F8E-08F9C6F956B4} - c:\program files (x86)\Common Files\Microsoft Shared\OFFICE14\Oarpmany.exe
AddRemove-{90140000-002A-0405-1000-0000000FF1CE}_Office14.SingleImage_{7F5CE17A-23B9-4EED-B017-A7EF4547476C} - c:\program files (x86)\Common Files\Microsoft Shared\OFFICE14\Oarpmany.exe
AddRemove-{90140000-002C-0405-0000-0000000FF1CE}_Office14.SingleImage_{EA82267F-4AAB-46BA-AD6A-9EBB544D0EF7} - c:\program files (x86)\Common Files\Microsoft Shared\OFFICE14\Oarpmany.exe
AddRemove-{9C98989A-3A15-42DA-A3B9-D20331437D67}}_is1 - e:\game\GameforgeLive\unins000.exe
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-1237170793-86538594-3374620920-1001\Software\Microsoft\Internet Explorer\Approved Extensions]
@Denied: (2) (LocalSystem)
"{18DF081C-E8AD-4283-A596-FA578C2EBDC3}"=hex:51,66,7a,6c,4c,1d,3b,1b,0c,17,cf,
02,9d,ba,eb,0f,be,94,bb,17,84,6b,fd,dc
"{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}"=hex:51,66,7a,6c,4c,1d,3b,1b,ab,88,04,
6c,c0,84,44,0b,ad,e9,95,9a,f9,9c,6d,5c
"{9030D464-4C02-4ABF-8ECC-5164760863C6}"=hex:51,66,7a,6c,4c,1d,3b,1b,74,cb,20,
8a,32,1e,d7,07,95,ce,10,24,7e,4d,23,d9
"{DBC80044-A445-435B-BC74-9C25C1C588A9}"=hex:51,66,7a,6c,4c,1d,3b,1b,54,1f,d8,
c1,75,f6,33,0e,a7,76,dd,65,c9,80,c8,b6
"{8E5E2654-AD2D-48BF-AC2D-D17F00898D06}"=hex:51,66,7a,6c,4c,1d,3b,1b,44,39,4e,
94,1d,ff,d7,05,b7,2f,90,3f,08,cc,cd,19
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_17_0_0_169_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_17_0_0_169_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_17_0_0_169_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_17_0_0_169_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_17_0_0_169.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.17"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_17_0_0_169.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_17_0_0_169.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_17_0_0_169.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2015-05-28 11:43:46
ComboFix-quarantined-files.txt 2015-05-28 10:43
.
Před spuštěním: 6 409 908 224
Po spuštění: 6 252 011 520
.
- - End Of File - - 6A82E5D19BBD42B4F7F8355490E3BBF9
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.3959.1212 [GMT 1:00]
Spuštěný z: c:\users\Elik\Desktop\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}
SP: avast! Antivirus *Disabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\SysWow64\X86
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2015-04-28 do 2015-05-28 )))))))))))))))))))))))))))))))
.
.
2015-05-28 10:38 . 2015-05-28 10:38 -------- d-----w- c:\users\maminka\AppData\Local\temp
2015-05-28 10:38 . 2015-05-28 10:38 -------- d-----w- c:\users\Default\AppData\Local\temp
2015-05-28 10:17 . 2015-05-28 09:35 24064 ----a-w- c:\windows\zoek-delete.exe
2015-05-28 10:17 . 2015-05-28 10:38 -------- d-----w- c:\users\Elik\AppData\Local\Temp
2015-05-28 09:35 . 2015-05-28 10:09 -------- d-----w- C:\zoek_backup
2015-05-28 08:09 . 2014-11-18 13:46 2502240 ----a-w- c:\windows\SysWow64\BootMan.exe
2015-05-28 08:09 . 2014-11-18 13:46 3384928 ----a-w- c:\windows\system32\BootMan.exe
2015-05-28 08:09 . 2014-11-18 13:46 21088 ----a-w- c:\windows\SysWow64\EuEpmGdi.dll
2015-05-28 08:09 . 2014-11-18 13:46 17504 ----a-w- c:\windows\system32\EuEpmGdi.dll
2015-05-28 08:09 . 2014-11-18 13:39 18528 ----a-w- c:\windows\system32\epmntdrv.sys
2015-05-28 08:09 . 2014-11-18 13:39 10848 ----a-w- c:\windows\system32\EuGdiDrv.sys
2015-05-28 08:09 . 2014-11-18 13:38 101984 ----a-w- c:\windows\system32\setupempdrvx64.exe
2015-05-28 08:09 . 2014-11-18 13:39 14944 ----a-w- c:\windows\SysWow64\epmntdrv.sys
2015-05-28 08:09 . 2014-11-18 13:39 10208 ----a-w- c:\windows\SysWow64\EuGdiDrv.sys
2015-05-28 08:09 . 2014-11-18 13:38 88160 ----a-w- c:\windows\SysWow64\setupempdrv03.exe
2015-05-28 08:09 . 2015-05-28 08:09 -------- d-----w- C:\EaseUS
2015-05-27 22:09 . 2015-05-28 09:25 37624 ----a-w- c:\windows\system32\drivers\TrueSight.sys
2015-05-27 22:09 . 2015-05-27 22:16 -------- d-----w- c:\programdata\RogueKiller
2015-05-27 22:02 . 2015-05-27 22:02 -------- d-----w- C:\RegBackup
2015-05-27 13:14 . 2015-05-27 13:14 -------- d-----w- c:\program files\avast software
2015-05-27 13:13 . 2015-05-27 13:13 364472 ----a-w- c:\windows\system32\aswBoot.exe
2015-05-27 13:13 . 2015-05-27 13:13 43112 ----a-w- c:\windows\avastSS.scr
2015-05-27 09:38 . 2015-05-27 21:10 136408 ----a-w- c:\windows\system32\drivers\MBAMSwissArmy.sys
2015-05-27 09:38 . 2015-05-27 09:38 -------- d-----w- c:\program files (x86)\Malwarebytes Anti-Malware
2015-05-27 09:38 . 2015-04-14 08:37 63704 ----a-w- c:\windows\system32\drivers\mwac.sys
2015-05-27 09:38 . 2015-04-14 08:37 107736 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys
2015-05-27 09:38 . 2015-04-14 08:37 25816 ----a-w- c:\windows\system32\drivers\mbam.sys
2015-05-27 08:37 . 2015-05-27 08:37 -------- d-----w- c:\programdata\Malwarebytes
2015-05-27 08:32 . 2015-05-27 21:53 -------- d-----w- C:\AdwCleaner
2015-05-27 08:29 . 2015-05-27 08:29 -------- d-----w- c:\users\Elik\AppData\Local\CrashDumps
2015-05-27 07:36 . 2015-05-27 07:36 -------- d-----w- c:\users\Elik\AppData\Local\PhotoGenie
2015-05-27 05:22 . 2015-05-27 05:22 -------- d-----w- C:\Pro)
2015-05-13 19:59 . 2015-05-01 13:17 124112 ----a-w- c:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-05-13 19:59 . 2015-05-01 13:16 102608 ----a-w- c:\windows\SysWow64\PresentationCFFRasterizerNative_v0300.dll
2015-05-13 11:01 . 2015-04-22 02:28 293072 ----a-w- c:\program files\Internet Explorer\sqmapi.dll
2015-05-13 11:00 . 2015-04-20 03:17 1647104 ----a-w- c:\windows\system32\DWrite.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2015-05-27 13:13 . 2014-10-03 14:33 137288 ----a-w- c:\windows\system32\drivers\aswStm.sys
2015-05-27 13:13 . 2013-07-22 19:41 442264 ----a-w- c:\windows\system32\drivers\aswSP.sys
2015-05-27 13:13 . 2013-07-22 19:41 272248 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2015-05-27 13:13 . 2013-07-22 19:41 65736 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
2015-05-27 13:13 . 2014-10-03 14:33 29168 ----a-w- c:\windows\system32\drivers\aswHwid.sys
2015-05-27 13:13 . 2013-07-22 19:41 93528 ----a-w- c:\windows\system32\drivers\aswRdr2.sys
2015-05-27 13:13 . 2013-07-22 19:41 89944 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2015-05-27 13:13 . 2013-07-22 19:41 1047320 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2015-05-13 21:19 . 2014-03-22 06:43 140425016 ----a-w- c:\windows\system32\MRT.exe
2015-05-05 01:29 . 2015-05-13 11:02 342016 ----a-w- c:\windows\system32\schannel.dll
2015-05-05 01:12 . 2015-05-13 11:02 248832 ----a-w- c:\windows\SysWow64\schannel.dll
2015-04-27 19:23 . 2015-05-13 11:01 113664 ----a-w- c:\windows\system32\sechost.dll
2015-04-27 19:05 . 2015-05-13 11:01 92160 ----a-w- c:\windows\SysWow64\sechost.dll
2015-04-27 19:04 . 2015-05-13 11:01 44032 ----a-w- c:\windows\apppatch\acwow64.dll
2015-04-15 16:58 . 2013-04-07 13:54 778416 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2015-04-15 16:58 . 2013-04-07 13:54 142512 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2015-03-25 03:24 . 2015-04-15 10:19 3298816 ----a-w- c:\windows\system32\wucltux.dll
2015-03-25 03:24 . 2015-04-15 10:19 98304 ----a-w- c:\windows\system32\wudriver.dll
2015-03-25 03:24 . 2015-04-15 10:19 37376 ----a-w- c:\windows\system32\wups2.dll
2015-03-25 03:24 . 2015-04-15 10:19 35328 ----a-w- c:\windows\system32\wups.dll
2015-03-25 03:24 . 2015-04-15 10:19 2553856 ----a-w- c:\windows\system32\wuaueng.dll
2015-03-25 03:24 . 2015-04-15 10:19 191488 ----a-w- c:\windows\system32\wuwebv.dll
2015-03-25 03:24 . 2015-04-15 10:19 696320 ----a-w- c:\windows\system32\wuapi.dll
2015-03-25 03:24 . 2015-04-15 10:19 60416 ----a-w- c:\windows\system32\WinSetupUI.dll
2015-03-25 03:23 . 2015-04-15 10:19 12288 ----a-w- c:\windows\system32\wu.upgrade.ps.dll
2015-03-25 03:23 . 2015-04-15 10:19 36864 ----a-w- c:\windows\system32\wuapp.exe
2015-03-25 03:23 . 2015-04-15 10:19 135168 ----a-w- c:\windows\system32\wuauclt.exe
2015-03-25 03:00 . 2015-04-15 10:19 92672 ----a-w- c:\windows\SysWow64\wudriver.dll
2015-03-25 03:00 . 2015-04-15 10:19 29696 ----a-w- c:\windows\SysWow64\wups.dll
2015-03-25 03:00 . 2015-04-15 10:19 173056 ----a-w- c:\windows\SysWow64\wuwebv.dll
2015-03-25 03:00 . 2015-04-15 10:19 566784 ----a-w- c:\windows\SysWow64\wuapi.dll
2015-03-25 03:00 . 2015-04-15 10:19 33792 ----a-w- c:\windows\SysWow64\wuapp.exe
2015-03-23 03:25 . 2015-04-15 10:19 726528 ----a-w- c:\windows\system32\generaltel.dll
2015-03-23 03:25 . 2015-04-15 10:19 769536 ----a-w- c:\windows\system32\invagent.dll
2015-03-23 03:24 . 2015-04-15 10:19 419840 ----a-w- c:\windows\system32\devinv.dll
2015-03-23 03:24 . 2015-04-15 10:19 957952 ----a-w- c:\windows\system32\appraiser.dll
2015-03-23 03:24 . 2015-04-15 10:19 30720 ----a-w- c:\windows\system32\acmigration.dll
2015-03-23 03:24 . 2015-04-15 10:19 192000 ----a-w- c:\windows\system32\aepic.dll
2015-03-23 03:24 . 2015-04-15 10:19 227328 ----a-w- c:\windows\system32\aepdu.dll
2015-03-23 03:17 . 2015-04-15 10:19 1111552 ----a-w- c:\windows\system32\aeinv.dll
2015-03-10 03:25 . 2015-04-15 10:19 1882624 ----a-w- c:\windows\system32\msxml3.dll
2015-03-10 03:21 . 2015-04-15 10:19 2048 ----a-w- c:\windows\system32\msxml3r.dll
2015-03-10 03:08 . 2015-04-15 10:19 1237504 ----a-w- c:\windows\SysWow64\msxml3.dll
2015-03-10 03:05 . 2015-04-15 10:19 2048 ----a-w- c:\windows\SysWow64\msxml3r.dll
2015-03-05 05:12 . 2015-04-15 10:19 404480 ----a-w- c:\windows\system32\gdi32.dll
2015-03-05 04:05 . 2015-04-15 10:19 311808 ----a-w- c:\windows\SysWow64\gdi32.dll
2015-03-04 04:55 . 2015-04-15 10:17 367552 ----a-w- c:\windows\system32\clfs.sys
2015-03-04 04:41 . 2015-04-15 10:17 79360 ----a-w- c:\windows\system32\clfsw32.dll
2015-03-04 04:41 . 2015-05-13 11:00 309248 ----a-w- c:\windows\apppatch\AppPatch64\AcGenral.dll
2015-03-04 04:41 . 2015-05-13 11:00 103424 ----a-w- c:\windows\apppatch\AppPatch64\acspecfc.dll
2015-03-04 04:10 . 2015-04-15 10:17 58880 ----a-w- c:\windows\SysWow64\clfsw32.dll
2015-03-04 04:10 . 2015-05-13 11:00 470528 ----a-w- c:\windows\apppatch\AcSpecfc.dll
2015-03-04 04:10 . 2015-05-13 11:00 2178560 ----a-w- c:\windows\apppatch\AcGenral.dll
2015-03-04 04:06 . 2015-05-13 11:00 2560 ----a-w- c:\windows\apppatch\AcRes.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro1 (ErrorConflict)]
@="{8BA85C75-763B-4103-94EB-9470F12FE0F7}"
[HKEY_CLASSES_ROOT\CLSID\{8BA85C75-763B-4103-94EB-9470F12FE0F7}]
2015-04-14 16:11 1729752 ----a-w- p:\micros~1\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro2 (SyncInProgress)]
@="{CD55129A-B1A1-438E-A425-CEBC7DC684EE}"
[HKEY_CLASSES_ROOT\CLSID\{CD55129A-B1A1-438E-A425-CEBC7DC684EE}]
2015-04-14 16:11 1729752 ----a-w- p:\micros~1\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro3 (InSync)]
@="{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}"
[HKEY_CLASSES_ROOT\CLSID\{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}]
2015-04-14 16:11 1729752 ----a-w- p:\micros~1\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\egisPSDP]
@="{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}"
[HKEY_CLASSES_ROOT\CLSID\{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}]
2010-05-27 02:40 120176 ----a-w- c:\program files (x86)\EgisTec MyWinLocker\x86\PSDProtect.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="p:\daemon tools lite\DTLite.exe" [2014-03-04 3696912]
"Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2015-02-26 31344744]
"Sony PC Companion"="c:\program files (x86)\Sony\Sony PC Companion\PCCompanion.exe" [2015-04-10 455392]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"LManager"="c:\program files (x86)\Launch Manager\LManager.exe" [2010-06-22 968272]
"AvastUI.exe"="p:\avast software\Avast\AvastUI.exe" [2015-05-27 5515496]
"EaseUS EPM tray"="c:\easeus\EaseUS Partition Master 10.2\bin\EpmNews.exe" [2014-11-18 2089056]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
"SoftwareSASGeneration"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-]
"Adobe Reader Speed Launcher"="p:\adobe\Reader 9.0\Reader\Reader_sl.exe"
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe"
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
"LogMeIn Hamachi Ui"="p:\hamachi\hamachi-2-ui.exe" --auto-start
"IJNetworkScannerSelectorEX"=c:\program files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe /FORCE
"CanonQuickMenu"=c:\program files (x86)\Canon\Quick Menu\CNQMMAIN.EXE /logon
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"BackupManagerTray"="c:\program files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe" -h -k
"EgisUpdate"="c:\program files (x86)\EgisTec IPS\EgisUpdate.exe" -d
"IAStorIcon"=c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
"EgisTecPMMUpdate"="c:\program files (x86)\EgisTec IPS\PmmUpdate.exe"
"SuiteTray"="c:\program files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe"
.
R2 aswStm;aswStm;c:\windows\system32\drivers\aswStm.sys;c:\windows\SYSNATIVE\drivers\aswStm.sys [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes Anti-Malware\mbamservice.exe;c:\program files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R3 EagleX64;EagleX64;c:\windows\system32\drivers\EagleX64.sys;c:\windows\SYSNATIVE\drivers\EagleX64.sys [x]
R3 epmntdrv;epmntdrv;c:\windows\system32\epmntdrv.sys;c:\windows\SYSNATIVE\epmntdrv.sys [x]
R3 EuGdiDrv;EuGdiDrv;c:\windows\system32\EuGdiDrv.sys;c:\windows\SYSNATIVE\EuGdiDrv.sys [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0;c:\windows\system32\DRIVERS\k57nd60a.sys;c:\windows\SYSNATIVE\DRIVERS\k57nd60a.sys [x]
R3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\MBAMSwissArmy.sys;c:\windows\SYSNATIVE\drivers\MBAMSwissArmy.sys [x]
R3 MBAMWebAccessControl;MBAMWebAccessControl;c:\windows\system32\drivers\mwac.sys;c:\windows\SYSNATIVE\drivers\mwac.sys [x]
R3 pwdrvio;pwdrvio;c:\windows\system32\pwdrvio.sys;c:\windows\SYSNATIVE\pwdrvio.sys [x]
R3 pwdspio;pwdspio;c:\windows\system32\pwdspio.sys;c:\windows\SYSNATIVE\pwdspio.sys [x]
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\System32\Drivers\RtsUStor.sys;c:\windows\SYSNATIVE\Drivers\RtsUStor.sys [x]
R3 Sony PC Companion;Sony PC Companion;c:\program files (x86)\Sony\Sony PC Companion\PCCService.exe;c:\program files (x86)\Sony\Sony PC Companion\PCCService.exe [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R3 WSDScan;Podpora skenování WSD přes UMB;c:\windows\system32\DRIVERS\WSDScan.sys;c:\windows\SYSNATIVE\DRIVERS\WSDScan.sys [x]
R4 MWLService;MyWinLocker Service;c:\program files (x86)\EgisTec MyWinLocker\x86\MWLService.exe;c:\program files (x86)\EgisTec MyWinLocker\x86\MWLService.exe [x]
R4 NTI IScheduleSvc;NTI IScheduleSvc;c:\program files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe;c:\program files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe [x]
S0 aswRvrt;avast! Revert; [x]
S0 aswVmm;avast! VM Monitor; [x]
S1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys;c:\windows\SYSNATIVE\drivers\aswSnx.sys [x]
S1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys;c:\windows\SYSNATIVE\drivers\aswSP.sys [x]
S1 mwlPSDFilter;mwlPSDFilter;c:\windows\system32\DRIVERS\mwlPSDFilter.sys;c:\windows\SYSNATIVE\DRIVERS\mwlPSDFilter.sys [x]
S1 mwlPSDNServ;mwlPSDNServ;c:\windows\system32\DRIVERS\mwlPSDNServ.sys;c:\windows\SYSNATIVE\DRIVERS\mwlPSDNServ.sys [x]
S1 mwlPSDVDisk;mwlPSDVDisk;c:\windows\system32\DRIVERS\mwlPSDVDisk.sys;c:\windows\SYSNATIVE\DRIVERS\mwlPSDVDisk.sys [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 aswHwid;avast! HardwareID;c:\windows\system32\drivers\aswHwid.sys;c:\windows\SYSNATIVE\drivers\aswHwid.sys [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys;c:\windows\SYSNATIVE\drivers\aswMonFlt.sys [x]
S2 DiagTrack;Diagnostics Tracking Service;c:\windows\System32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
S2 DsiWMIService;Dritek WMI Service;c:\program files (x86)\Launch Manager\dsiwmis.exe;c:\program files (x86)\Launch Manager\dsiwmis.exe [x]
S2 ePowerSvc;Acer ePower Service;c:\program files\Acer\Acer ePower Management\ePowerSvc.exe;c:\program files\Acer\Acer ePower Management\ePowerSvc.exe [x]
S2 GREGService;GREGService;c:\program files (x86)\Acer\Registration\GREGsvc.exe;c:\program files (x86)\Acer\Registration\GREGsvc.exe [x]
S2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;p:\hamachi\hamachi-2.exe;p:\hamachi\hamachi-2.exe [x]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [x]
S2 UNS;Intel(R) Management & Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [x]
S2 Updater Service;Updater Service;c:\program files\Acer\Acer Updater\UpdaterService.exe;c:\program files\Acer\Acer Updater\UpdaterService.exe [x]
S3 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys;c:\windows\SYSNATIVE\DRIVERS\dtsoftbus01.sys [x]
S3 HECIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys;c:\windows\SYSNATIVE\DRIVERS\HECIx64.sys [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]
.
.
Obsah adresáře 'Naplánované úlohy'
.
2015-05-28 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-04-07 16:58]
.
2013-04-07 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-04-07 13:11]
.
2013-04-07 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-04-07 13:11]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro1 (ErrorConflict)]
@="{8BA85C75-763B-4103-94EB-9470F12FE0F7}"
[HKEY_CLASSES_ROOT\CLSID\{8BA85C75-763B-4103-94EB-9470F12FE0F7}]
2015-04-14 16:19 2334936 ----a-w- c:\progra~1\MICROS~2\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro2 (SyncInProgress)]
@="{CD55129A-B1A1-438E-A425-CEBC7DC684EE}"
[HKEY_CLASSES_ROOT\CLSID\{CD55129A-B1A1-438E-A425-CEBC7DC684EE}]
2015-04-14 16:19 2334936 ----a-w- c:\progra~1\MICROS~2\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro3 (InSync)]
@="{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}"
[HKEY_CLASSES_ROOT\CLSID\{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}]
2015-04-14 16:19 2334936 ----a-w- c:\progra~1\MICROS~2\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2015-05-27 13:13 722400 ----a-w- p:\avast software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\egisPSDP]
@="{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}"
[HKEY_CLASSES_ROOT\CLSID\{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}]
2010-05-27 02:42 137584 ----a-w- c:\program files (x86)\EgisTec MyWinLocker\x64\PSDProtect.dll
.
------- Doplňkový sken -------
.
uStart Page = www.google.com
uLocal Page = c:\windows\system32\blank.htm
uDefault_Search_URL = www.google.com
mDefault_Search_URL = www.google.com
mDefault_Page_URL = www.google.com
mStart Page = www.google.com
mLocal Page = c:\windows\SysWOW64\blank.htm
mSearch Page = www.google.com
IE: E&xportovat do aplikace Microsoft Excel - p:\micros~1\Office14\EXCEL.EXE/3000
IE: E&xportovat do Microsoft Excelu - p:\micros~1\Office15\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - p:\micros~1\Office14\ONBttnIE.dll/105
IE: Od&eslat do OneNotu - p:\micros~1\Office15\ONBttnIE.dll/105
IE: WikiKomentáře Google... - c:\program files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_96D6FF0C6D236BF8.dll/cmsidewiki.html
IE: {{612F6E5C-B314-4bab-93D1-D266AAFBE700} - p:\tudou downloader\TudouDownloader(xmlbar).exe
Filter: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - c:\program files (x86)\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL
FF - ProfilePath - c:\users\Elik\AppData\Roaming\Mozilla\Firefox\Profiles\f1bvjtel.default\
FF - prefs.js: browser.startup.homepage - about:home
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Toolbar-Locked - (no file)
Toolbar-10 - (no file)
Wow6432Node-HKLM-Run-4StoryPrePatch - e:\game\GameforgeLive\Games\CZE_ces\4Story\PrePatch.exe
Wow6432Node-HKU-Default-RunOnce-SPReview - c:\windows\System32\SPReview\SPReview.exe
HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start
Toolbar-Locked - (no file)
Toolbar-10 - (no file)
HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe
AddRemove-{90140000-0015-0405-0000-0000000FF1CE}_Office14.SingleImage_{DAB3EE22-FB0E-401F-9418-E9F0B08AEB39} - c:\program files (x86)\Common Files\Microsoft Shared\OFFICE14\Oarpmany.exe
AddRemove-{90140000-0019-0405-0000-0000000FF1CE}_Office14.SingleImage_{DAB3EE22-FB0E-401F-9418-E9F0B08AEB39} - c:\program files (x86)\Common Files\Microsoft Shared\OFFICE14\Oarpmany.exe
AddRemove-{90140000-001F-0405-0000-0000000FF1CE}_Office14.SingleImage_{A71E3AD4-5545-4D59-9F11-75F363563C6A} - c:\program files (x86)\Common Files\Microsoft Shared\OFFICE14\Oarpmany.exe
AddRemove-{90140000-001F-041B-0000-0000000FF1CE}_Office14.SingleImage_{0C337AF5-E6A7-4B6B-8F8E-08F9C6F956B4} - c:\program files (x86)\Common Files\Microsoft Shared\OFFICE14\Oarpmany.exe
AddRemove-{90140000-002A-0405-1000-0000000FF1CE}_Office14.SingleImage_{7F5CE17A-23B9-4EED-B017-A7EF4547476C} - c:\program files (x86)\Common Files\Microsoft Shared\OFFICE14\Oarpmany.exe
AddRemove-{90140000-002C-0405-0000-0000000FF1CE}_Office14.SingleImage_{EA82267F-4AAB-46BA-AD6A-9EBB544D0EF7} - c:\program files (x86)\Common Files\Microsoft Shared\OFFICE14\Oarpmany.exe
AddRemove-{9C98989A-3A15-42DA-A3B9-D20331437D67}}_is1 - e:\game\GameforgeLive\unins000.exe
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-1237170793-86538594-3374620920-1001\Software\Microsoft\Internet Explorer\Approved Extensions]
@Denied: (2) (LocalSystem)
"{18DF081C-E8AD-4283-A596-FA578C2EBDC3}"=hex:51,66,7a,6c,4c,1d,3b,1b,0c,17,cf,
02,9d,ba,eb,0f,be,94,bb,17,84,6b,fd,dc
"{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}"=hex:51,66,7a,6c,4c,1d,3b,1b,ab,88,04,
6c,c0,84,44,0b,ad,e9,95,9a,f9,9c,6d,5c
"{9030D464-4C02-4ABF-8ECC-5164760863C6}"=hex:51,66,7a,6c,4c,1d,3b,1b,74,cb,20,
8a,32,1e,d7,07,95,ce,10,24,7e,4d,23,d9
"{DBC80044-A445-435B-BC74-9C25C1C588A9}"=hex:51,66,7a,6c,4c,1d,3b,1b,54,1f,d8,
c1,75,f6,33,0e,a7,76,dd,65,c9,80,c8,b6
"{8E5E2654-AD2D-48BF-AC2D-D17F00898D06}"=hex:51,66,7a,6c,4c,1d,3b,1b,44,39,4e,
94,1d,ff,d7,05,b7,2f,90,3f,08,cc,cd,19
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_17_0_0_169_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_17_0_0_169_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_17_0_0_169_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_17_0_0_169_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_17_0_0_169.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.17"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_17_0_0_169.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_17_0_0_169.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_17_0_0_169.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2015-05-28 11:43:46
ComboFix-quarantined-files.txt 2015-05-28 10:43
.
Před spuštěním: 6 409 908 224
Po spuštění: 6 252 011 520
.
- - End Of File - - 6A82E5D19BBD42B4F7F8355490E3BBF9
OS Win 10 Home
Základní deska MSI H110M PRO-VD,
2jádrový procesor Intel Core i3-6098P (3.6GHz, HyperThreading), 8GB operační paměti DDR4 2133 MHz TEAM Elite,
Pevný disk 1TB Seagate Barracuda,
Grafická karta NVIDIA GeForce GTX 750 Ti 2GB GDDR5,
DVD±RW mechanika LG,
Zdroj CHIEFTEC GPB-350S, 350 W
Skříň AIO Virtuo TAB04 Champagne
Základní deska MSI H110M PRO-VD,
2jádrový procesor Intel Core i3-6098P (3.6GHz, HyperThreading), 8GB operační paměti DDR4 2133 MHz TEAM Elite,
Pevný disk 1TB Seagate Barracuda,
Grafická karta NVIDIA GeForce GTX 750 Ti 2GB GDDR5,
DVD±RW mechanika LG,
Zdroj CHIEFTEC GPB-350S, 350 W
Skříň AIO Virtuo TAB04 Champagne
-
jerabina
- člen Security týmu
-
Level 6
- Příspěvky: 3647
- Registrován: březen 13
- Bydliště: Litoměřice
- Pohlaví:
- Stav:
Offline
Re: Preventivní kontrola logu
Odinstaluj Tudou downloader
Vypni rez. ochranu u antiviru a antispywaru,příp. firewall..
Otevři si Poznámkový blok (Start -> Spustit... a napiš do okna Notepad a dej Ok.
Zkopíruj do něj následující celý text označený zeleně:
Zvol možnost Soubor -> Uložit jako... a nastav tyto parametry:
Název souboru: zde napiš: CFScript.txt
Uložit jako typ: tak tam vyber Všechny soubory
Ulož soubor na plochu.
Ukonči všechna aktivní okna.
Uchop myší vytvořený skript CFScript.txt, přemísti ho nad stažený program ComboFix.exe a když se oba soubory překryjí, skript upusť:
- Automaticky se spustí ComboFix
- Vlož sem log, který vyběhne v závěru čistícího procesu
Na Virustotal otestuj tento soubor a odkaz na výsledek analýzy mi sem prosím vlož:
c:\windows\system32\setupempdrvx64.exe
Vypni rez. ochranu u antiviru a antispywaru,příp. firewall..
Otevři si Poznámkový blok (Start -> Spustit... a napiš do okna Notepad a dej Ok.
Zkopíruj do něj následující celý text označený zeleně:
Kód: Vybrat vše
ClearJavaCache::
KillAll::
Folder::
c:\program files (x86)\Skype\Updater
c:\program files (x86)\Google\Update
c:\programdata\RogueKiller
p:\tudou downloader
File::
c:\windows\Tasks\Adobe Flash Player Updater.job
c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
Driver::
SkypeUpdate
Registry::
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=-
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-]
"SunJavaUpdateSched"=-
"Adobe ARM"=-
"EgisUpdate"=-
DDS::
IE: {{612F6E5C-B314-4bab-93D1-D266AAFBE700} - p:\tudou downloader\TudouDownloader(xmlbar).exe
RegLock::
[HKEY_USERS\S-1-5-21-1237170793-86538594-3374620920-1001\Software\Microsoft\Internet Explorer\Approved Extensions]
@Denied: (2) (LocalSystem)
"{18DF081C-E8AD-4283-A596-FA578C2EBDC3}"=hex:51,66,7a,6c,4c,1d,3b,1b,0c,17,cf,
02,9d,ba,eb,0f,be,94,bb,17,84,6b,fd,dc
"{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}"=hex:51,66,7a,6c,4c,1d,3b,1b,ab,88,04,
6c,c0,84,44,0b,ad,e9,95,9a,f9,9c,6d,5c
"{9030D464-4C02-4ABF-8ECC-5164760863C6}"=hex:51,66,7a,6c,4c,1d,3b,1b,74,cb,20,
8a,32,1e,d7,07,95,ce,10,24,7e,4d,23,d9
"{DBC80044-A445-435B-BC74-9C25C1C588A9}"=hex:51,66,7a,6c,4c,1d,3b,1b,54,1f,d8,
c1,75,f6,33,0e,a7,76,dd,65,c9,80,c8,b6
"{8E5E2654-AD2D-48BF-AC2D-D17F00898D06}"=hex:51,66,7a,6c,4c,1d,3b,1b,44,39,4e,
94,1d,ff,d7,05,b7,2f,90,3f,08,cc,cd,19
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_17_0_0_169_ActiveX.exe,-101"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_17_0_0_169_ActiveX.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_17_0_0_169_ActiveX.exe,-101"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_17_0_0_169_ActiveX.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_17_0_0_169.ocx"
"ThreadingModel"="Apartment"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.17"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_17_0_0_169.ocx, 1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_17_0_0_169.ocx"
"ThreadingModel"="Apartment"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_17_0_0_169.ocx, 1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)Zvol možnost Soubor -> Uložit jako... a nastav tyto parametry:
Název souboru: zde napiš: CFScript.txt
Uložit jako typ: tak tam vyber Všechny soubory
Ulož soubor na plochu.
Ukonči všechna aktivní okna.
Uchop myší vytvořený skript CFScript.txt, přemísti ho nad stažený program ComboFix.exe a když se oba soubory překryjí, skript upusť:
- Automaticky se spustí ComboFix
- Vlož sem log, který vyběhne v závěru čistícího procesu
Na Virustotal otestuj tento soubor a odkaz na výsledek analýzy mi sem prosím vlož:
c:\windows\system32\setupempdrvx64.exe
Když nevíš jak dál, přichází na řadu prostudovat manuál!
HJT návod
Pokud neodpovídám do vašich témat v sekci HJT když jsem online, tak je to jen proto, že jsem na mobilu kde je studování logů a psaní skriptů nemožné. Neberte to tedy prosím jako ignoraci.
HJT návod
Pokud neodpovídám do vašich témat v sekci HJT když jsem online, tak je to jen proto, že jsem na mobilu kde je studování logů a psaní skriptů nemožné. Neberte to tedy prosím jako ignoraci.
Kdo je online
Uživatelé prohlížející si toto fórum: Žádní registrovaní uživatelé a 76 hostů