Dobrý večer, chcel by som Vás poprosiť o kontrolu PC. Našiel našiel som si minerd.exe, ale odstránil som ho len jednoducho kde bol umiestnený. Myslím si, že to určite nestačilo. Prosím pomôžte mi prezrieť PC či je v poriadku.
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:09:36, on 11. 1. 2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16750)
Boot mode: Normal
Running processes:
C:\Users\Achilleas\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Launch Manager\LManager.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Users\Achilleas\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Launch Manager\LMworker.exe
C:\Users\Achilleas\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Achilleas\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Achilleas\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Achilleas\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Achilleas\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Achilleas\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Achilleas\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Achilleas\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Achilleas\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.emachines.com/rdr.aspx? ... 5r4612r362
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://start.icq.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files (x86)\ICQ6Toolbar\ICQToolBar.dll
R3 - URLSearchHook: (no name) - - (no file)
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - (no file)
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Pomocník pri prihlasovaní v konte Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: DVDVideoSoft.WebPageAdjuster - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll
O3 - Toolbar: ICQToolBar - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Program Files (x86)\ICQ6Toolbar\ICQToolBar.dll
O3 - Toolbar: avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKCU\..\Run: [Google Update] "C:\Users\Achilleas\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [CPUM] C:\Users\Public\Public\run.vbs
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: Append Link Target to Existing PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Append to Existing PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert Link Target to Adobe PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Convert to Adobe PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\freeytmp3downloader.htm
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: ICQ7.5 - {7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - C:\Program Files (x86)\ICQ7.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.5 - {7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - C:\Program Files (x86)\ICQ7.5\ICQ.exe
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O9 - Extra button: Free YouTube Download - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll
O9 - Extra 'Tools' menuitem: Free YouTube Download - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {C345E174-3E87-4F41-A01C-B066A90A49B4} - http://trial.trymicrosoftoffice.com/tri ... /wrc32.ocx
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/pub/s ... wflash.cab
O18 - Protocol: linkscanner - (no CLSID) - (no file)
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O20 - AppInit_DLLs: c:\progra~3\bitguard\261694~1.246\{c16c1~1\bitguard.dll
O23 - Service: ABBYY FineReader 9.0 Sprint Licensing Service (ABBYY.Licensing.FineReader.Sprint.9.0) - ABBYY - C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: avast! Firewall - AVAST Software - C:\Program Files\AVAST Software\Avast\afwServ.exe
O23 - Service: BitGuard - Unknown owner - C:\ProgramData\BitGuard\2.6.1694.246\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BitGuard.exe (file missing)
O23 - Service: Dritek WMI Service (DsiWMIService) - Dritek System Inc. - C:\Program Files (x86)\Launch Manager\dsiwmis.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Acer ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\eMachines\eMachines Power Management\ePowerSvc.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: GREGService - Acer Incorporated - C:\Program Files (x86)\eMachines\Registration\GREGsvc.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: ICQ Service - Unknown owner - C:\Program Files (x86)\ICQ6Toolbar\ICQ Service.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: NTI Backup Now 5 Backup Service (NTIBackupSvc) - NewTech InfoSystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
O23 - Service: NTI Backup Now 5 Scheduler Service (NTISchedulerSvc) - NewTech Infosystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: StarWind AE Service (StarWindServiceAE) - StarWind Software - C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Updater Service - Acer Group - C:\Program Files\eMachines\eMachines Updater\UpdaterService.exe
O23 - Service: Antivirus 2010 (userinit) - Unknown owner - \\.\globalrootC:\Windows\system32\us?rinit.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 13722 bytes
Kontrola Log - minerd.exe Vyřešeno
-
arathorn11
- nováček
- Příspěvky: 19
- Registrován: leden 14
- Pohlaví:
- Stav:
Offline
-
Damned
- Tvůrce článků
-
Master Level 9
- Příspěvky: 8353
- Registrován: prosinec 06
- Bydliště: Rokycany
- Pohlaví:
- Stav:
Offline
- Kontakt:
Re: Kontrola Log - minerd.exe
Vypni si avast! webRep.
Spusť HJT (HijackThis), vypni prohlížeče, odpoj se od internetu a fixni (spustit HJT, "Do a system scan only", zatrhnout políčko před hodnotou, zmáčknout "Fix checked" a poté "Ano"):
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.emachines.com/rdr.aspx? ... 5r4612r362
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://start.icq.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files (x86)\ICQ6Toolbar\ICQToolBar.dll
R3 - URLSearchHook: (no name) - - (no file)
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - (no file)
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Pomocník pri prihlasovaní v konte Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: DVDVideoSoft.WebPageAdjuster - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll
O3 - Toolbar: ICQToolBar - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Program Files (x86)\ICQ6Toolbar\ICQToolBar.dll
O4 - HKLM\..\Run: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe
O4 - HKCU\..\Run: [Google Update] "C:\Users\Achilleas\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [CPUM] C:\Users\Public\Public\run.vbs
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O9 - Extra 'Tools' menuitem: Free YouTube Download - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll
O16 - DPF: {C345E174-3E87-4F41-A01C-B066A90A49B4} - http://trial.trymicrosoftoffice.com/tri ... /wrc32.ocx
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/pub/s ... wflash.cab
O18 - Protocol: linkscanner - (no CLSID) - (no file)
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O20 - AppInit_DLLs: c:\progra~3\bitguard\261694~1.246\{c16c1~1\bitguard.dll
********************************************************************************************************************************************************************************
Stáhni si AdwCleaner
Ulož si ho na svojí plochu
Ukonči všechny programy, okna a prohlížeče
Spusť program poklepáním a klikni na „Search“ (jako Správce).
Po skenu se objeví log (jinak je uložen systémovem disku jako AdwCleaner[R?].txt), jeho obsah sem celý vlož.
Spusť HJT (HijackThis), vypni prohlížeče, odpoj se od internetu a fixni (spustit HJT, "Do a system scan only", zatrhnout políčko před hodnotou, zmáčknout "Fix checked" a poté "Ano"):
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.emachines.com/rdr.aspx? ... 5r4612r362
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://start.icq.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files (x86)\ICQ6Toolbar\ICQToolBar.dll
R3 - URLSearchHook: (no name) - - (no file)
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - (no file)
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Pomocník pri prihlasovaní v konte Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: DVDVideoSoft.WebPageAdjuster - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll
O3 - Toolbar: ICQToolBar - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Program Files (x86)\ICQ6Toolbar\ICQToolBar.dll
O4 - HKLM\..\Run: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe
O4 - HKCU\..\Run: [Google Update] "C:\Users\Achilleas\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [CPUM] C:\Users\Public\Public\run.vbs
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O9 - Extra 'Tools' menuitem: Free YouTube Download - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll
O16 - DPF: {C345E174-3E87-4F41-A01C-B066A90A49B4} - http://trial.trymicrosoftoffice.com/tri ... /wrc32.ocx
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/pub/s ... wflash.cab
O18 - Protocol: linkscanner - (no CLSID) - (no file)
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O20 - AppInit_DLLs: c:\progra~3\bitguard\261694~1.246\{c16c1~1\bitguard.dll
********************************************************************************************************************************************************************************
Stáhni si AdwCleaner
Ulož si ho na svojí plochu
Ukonči všechny programy, okna a prohlížeče
Spusť program poklepáním a klikni na „Search“ (jako Správce).
Po skenu se objeví log (jinak je uložen systémovem disku jako AdwCleaner[R?].txt), jeho obsah sem celý vlož.
Nic není nemožné, proto tam, kde jsme s rozumem v koncích, neváháme použít kladivo.
Chceš-li vědět, co je nového, podívej se do starých knih.
Damnedovy češtiny - překlady programů pro údržbu PC
HiJackThis 2+návod FCleaner+čeština Wise Registry Cleaner
Chceš-li vědět, co je nového, podívej se do starých knih.
Damnedovy češtiny - překlady programů pro údržbu PC
HiJackThis 2+návod FCleaner+čeština Wise Registry Cleaner
-
arathorn11
- nováček
- Příspěvky: 19
- Registrován: leden 14
- Pohlaví:
- Stav:
Offline
Re: Kontrola Log - minerd.exe
# AdwCleaner v3.016 - Report created 11/01/2014 at 20:15:33
# Updated 23/12/2013 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Achilleas - ACHILLEAS-PC
# Running from : C:\Users\Achilleas\Desktop\Downloads\adwcleaner.exe
# Option : Scan
***** [ Services ] *****
Service Found : BitGuard
Service Found : ICQ Service
***** [ Files / Folders ] *****
File Found : C:\Users\ACHILL~1\AppData\Local\Temp\Uninstall.exe
File Found : C:\Users\Achilleas\AppData\Local\Google\Chrome\User Data\Default\bProtector Web Data
File Found : C:\Users\Achilleas\AppData\Local\Google\Chrome\User Data\Default\bprotectorpreferences
File Found : C:\Users\Achilleas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.delta-search.com_0.localstorage-journal
File Found : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\bProtector_extensions.rdf
File Found : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\bprotector_extensions.sqlite
File Found : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\bprotector_prefs.js
File Found : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\searchplugins\Conduit.xml
File Found : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\searchplugins\delta.xml
File Found : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\searchplugins\icqplugin.xml
File Found : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\searchplugins\icqplugin-1.xml
File Found : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\searchplugins\icqplugin-10.xml
File Found : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\searchplugins\icqplugin-11.xml
File Found : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\searchplugins\icqplugin-12.xml
File Found : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\searchplugins\icqplugin-13.xml
File Found : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\searchplugins\icqplugin-14.xml
File Found : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\searchplugins\icqplugin-2.xml
File Found : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\searchplugins\icqplugin-3.xml
File Found : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\searchplugins\icqplugin-4.xml
File Found : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\searchplugins\icqplugin-5.xml
File Found : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\searchplugins\icqplugin-6.xml
File Found : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\searchplugins\icqplugin-7.xml
File Found : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\searchplugins\icqplugin-8.xml
File Found : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\searchplugins\icqplugin-9.xml
File Found : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\user.js
File Found : C:\Windows\System32\Tasks\BitGuard
Folder Found : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\Extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
Folder Found : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\Extensions\{800B5000-A755-47E1-992B-48A1C1357F07}
Folder Found : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\Extensions\{872b5b88-9db5-4310-bdd0-ac189557e5f5}
Folder Found : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\Extensions\{872b5b88-9db5-4310-bdd0-ac189557e5f5}
Folder Found : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\Extensions\{872b5b88-9db5-4310-bdd0-ac189557e5f5}
Folder Found : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\Extensions\{ACAA314B-EEBA-48E4-AD47-84E31C44796C}
Folder Found : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\Extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}
Folder Found : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\Extensions\50fbe849735c6@50fbe849735ff.com
Folder Found : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\Extensions\el-GR@dictionaries.addons.mozilla.org
Folder Found : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\Extensions\engine@conduit.com
Folder Found : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\Extensions\engine@conduit.com
Folder Found C:\Program Files (x86)\1ClickDownload
Folder Found C:\Program Files (x86)\ICQ6Toolbar
Folder Found C:\ProgramData\Babylon
Folder Found C:\ProgramData\BitGuard
Folder Found C:\ProgramData\boost_interprocess
Folder Found C:\ProgramData\clsoft ltd
Folder Found C:\ProgramData\ICQ\ICQToolbar
Folder Found C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SaveAs
Folder Found C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SaveAs
Folder Found C:\ProgramData\Partner
Folder Found C:\ProgramData\SaveAs
Folder Found C:\ProgramData\SaveAs
Folder Found C:\ProgramData\Tarma Installer
Folder Found C:\Users\Achilleas\AppData\Local\eSupport.com
Folder Found C:\Users\Achilleas\AppData\LocalLow\Delta
Folder Found C:\Users\Achilleas\AppData\Roaming\Babylon
Folder Found C:\Users\Achilleas\AppData\Roaming\dvdvideosoftiehelpers
Folder Found C:\Users\Achilleas\AppData\Roaming\file scout
Folder Found C:\Users\Achilleas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BitGuard
Folder Found C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\Conduit
Folder Found C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\ConduitEngine
Folder Found C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\CT2269050
Folder Found C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\ICQToolbarData
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Found : HKCU\Software\1ClickDownload
Key Found : HKCU\Software\AppDataLow\SProtector
Key Found : HKCU\Software\BabSolution
Key Found : HKCU\Software\Conduit
Key Found : HKCU\Software\DataMngr
Key Found : HKCU\Software\f28bddbc3bbd49
Key Found : HKCU\Software\filescout
Key Found : HKCU\Software\ICQ\ICQToolbar
Key Found : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\ICQ\ICQToolBar
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{82E1477C-B154-48D3-9891-33D83C26BCD3}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{855F3B16-6D32-4FE6-8A56-BBB695989046}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{855F3B16-6D32-4FE6-8A56-BBB695989046}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Found : HKCU\Software\Softonic
Key Found : [x64] HKCU\Software\1ClickDownload
Key Found : [x64] HKCU\Software\BabSolution
Key Found : [x64] HKCU\Software\Conduit
Key Found : [x64] HKCU\Software\DataMngr
Key Found : [x64] HKCU\Software\filescout
Key Found : [x64] HKCU\Software\ICQ\ICQToolbar
Key Found : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Key Found : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}
Key Found : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Found : [x64] HKCU\Software\Softonic
Key Found : HKLM\Software\Babylon
Key Found : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323}
Key Found : HKLM\SOFTWARE\Classes\AppID\{5D723752-5899-47E8-99B4-62C824EF9E13}
Key Found : HKLM\SOFTWARE\Classes\AppID\{608D3067-77E8-463D-9084-908966806826}
Key Found : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}
Key Found : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Key Found : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Key Found : HKLM\SOFTWARE\Classes\AppID\ICQ Service.exe
Key Found : HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE
Key Found : HKLM\SOFTWARE\Classes\Applications\ilividsetup.exe
Key Found : HKLM\SOFTWARE\Classes\CLSID\{007EFBDF-8A5D-4930-97CC-A4B437CBA777}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{855F3B16-6D32-4FE6-8A56-BBB695989046}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Found : HKLM\SOFTWARE\Classes\ICQToolBar.IEHook
Key Found : HKLM\SOFTWARE\Classes\ICQToolBar.IEHook.1
Key Found : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Found : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Found : HKLM\SOFTWARE\Classes\Prod.cap
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{07CAC314-E962-4F78-89AB-DD002F2490EE}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{13ABD093-D46F-40DF-A608-47E162EC799D}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Key Found : HKLM\Software\Conduit
Key Found : HKLM\Software\DataMngr
Key Found : HKLM\SOFTWARE\f28bddbc3bbd49
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\jbpkiefagocgkmemidfngdkamloieekf
Key Found : HKLM\Software\ICQ\ICQToolbar
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Explorer Bars\{855F3B16-6D32-4FE6-8A56-BBB695989046}
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\AskInstallChecker-1_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\AskInstallChecker-1_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasapi32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasmancs
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_dvdfab_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_dvdfab_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{15D2D75C-9CB2-4EFD-BAD7-B9B4CB4BC693}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ICQToolbar
Key Found : HKLM\Software\SProtector
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Key Found : [x64] HKLM\SOFTWARE\Tarma Installer
Value Found : HKCU\Software\Microsoft\Internet Explorer\Main [bprotector start page]
Value Found : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]
Value Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes [bProtectorDefaultScope]
Value Found : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}]
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs [bProtectTabs]
Value Found : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [50fbe849735c6@50fbe849735ff.com]
***** [ Browsers ] *****
-\\ Internet Explorer v10.0.9200.16750
Setting Found : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search] - hxxp://search.icq.com/search/results.php?q={searchTerms}&ch_id=osd
-\\ Mozilla Firefox v
[ File : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\prefs.js ]
Line Found : user_pref("CT2269050..clientLogIsEnabled", true);
Line Found : user_pref("CT2269050..clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.asmx/ReportDiagnosticsEvent");
Line Found : user_pref("CT2269050..uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/RegisterToolbarUninstallation");
Line Found : user_pref("CT2269050.ALLOW_SHOWING_HIDDEN_TOOLBAR", false);
Line Found : user_pref("CT2269050.AboutPrivacyUrl", "hxxp://www.conduit.com/privacy/Default.aspx");
Line Found : user_pref("CT2269050.BrowserCompStateIsOpen_129681780741097243", true);
Line Found : user_pref("CT2269050.BrowserCompStateIsOpen_129881141106886992", true);
Line Found : user_pref("CT2269050.CTID", "CT2269050");
Line Found : user_pref("CT2269050.CurrentServerDate", "3-11-2012");
Line Found : user_pref("CT2269050.DialogsAlignMode", "LTR");
Line Found : user_pref("CT2269050.DialogsGetterLastCheckTime", "Sat Nov 03 2012 14:12:37 GMT+0100");
Line Found : user_pref("CT2269050.DownloadReferralCookieData", "");
Line Found : user_pref("CT2269050.EMailNotifierPollDate", "Sat Feb 26 2011 13:19:48 GMT+0100");
Line Found : user_pref("CT2269050.FirstServerDate", "26-2-2011");
Line Found : user_pref("CT2269050.FirstTime", true);
Line Found : user_pref("CT2269050.FirstTimeFF3", true);
Line Found : user_pref("CT2269050.FirstTimeSettingsDone", true);
Line Found : user_pref("CT2269050.FixPageNotFoundErrors", true);
Line Found : user_pref("CT2269050.GroupingServerCheckInterval", 1440);
Line Found : user_pref("CT2269050.GroupingServiceUrl", "hxxp://grouping.services.conduit.com/");
Line Found : user_pref("CT2269050.HasUserGlobalKeys", true);
Line Found : user_pref("CT2269050.Initialize", true);
Line Found : user_pref("CT2269050.InitializeCommonPrefs", true);
Line Found : user_pref("CT2269050.InstallationAndCookieDataSentCount", 3);
Line Found : user_pref("CT2269050.InstallationType", "UnknownIntegration");
Line Found : user_pref("CT2269050.InstalledDate", "Sat Feb 26 2011 13:19:48 GMT+0100");
Line Found : user_pref("CT2269050.InvalidateCache", false);
Line Found : user_pref("CT2269050.IsGrouping", false);
Line Found : user_pref("CT2269050.IsMulticommunity", false);
Line Found : user_pref("CT2269050.IsOpenThankYouPage", false);
Line Found : user_pref("CT2269050.IsOpenUninstallPage", false);
Line Found : user_pref("CT2269050.LanguagePackLastCheckTime", "Sat Nov 03 2012 14:12:37 GMT+0100");
Line Found : user_pref("CT2269050.LanguagePackReloadIntervalMM", 1440);
Line Found : user_pref("CT2269050.LanguagePackServiceUrl", "hxxp://translation.users.conduit.com/Translation.ashx");
Line Found : user_pref("CT2269050.LastLogin_2.7.0.14", "Sat Feb 26 2011 13:20:29 GMT+0100");
Line Found : user_pref("CT2269050.LastLogin_3.14.1.0", "Mon Sep 10 2012 10:29:17 GMT+0200");
Line Found : user_pref("CT2269050.LastLogin_3.15.1.0", "Sat Nov 03 2012 14:12:30 GMT+0100");
Line Found : user_pref("CT2269050.LatestVersion", "3.15.1.0");
Line Found : user_pref("CT2269050.Locale", "en");
Line Found : user_pref("CT2269050.LoginCache", 4);
Line Found : user_pref("CT2269050.MCDetectTooltipHeight", "83");
Line Found : user_pref("CT2269050.MCDetectTooltipUrl", "hxxp://@EB_INSTALL_LINK@/rank/tooltip/?version=1");
Line Found : user_pref("CT2269050.MCDetectTooltipWidth", "295");
Line Found : user_pref("CT2269050.MyStuffEnabledAtInstallation", true);
Line Found : user_pref("CT2269050.RadioIsPodcast", false);
Line Found : user_pref("CT2269050.RadioLastCheckTime", "Sat Feb 26 2011 13:19:52 GMT+0100");
Line Found : user_pref("CT2269050.RadioLastUpdateIPServer", "3");
Line Found : user_pref("CT2269050.RadioLastUpdateServer", "129132338014870000");
Line Found : user_pref("CT2269050.RadioMediaID", "12473383");
Line Found : user_pref("CT2269050.RadioMediaType", "Media Player");
Line Found : user_pref("CT2269050.RadioMenuSelectedID", "EBRadioMenu_CT226905012473383");
Line Found : user_pref("CT2269050.RadioStationName", "Hotmix%20108");
Line Found : user_pref("CT2269050.RadioStationURL", "hxxp://67.202.67.18:8082");
Line Found : user_pref("CT2269050.SavedHomepage", "hxxp://www.google.sk/");
Line Found : user_pref("CT2269050.SearchEngine", "Search||hxxp://search.conduit.com/Results.aspx?q=UCM_SEARCH_TERM&ctid=CT2269050&octid=EB_ORIGINAL_CTID&SearchSource=1");
Line Found : user_pref("CT2269050.SearchFromAddressBarIsInit", true);
Line Found : user_pref("CT2269050.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2269050&q=");
Line Found : user_pref("CT2269050.SearchInNewTabEnabled", true);
Line Found : user_pref("CT2269050.SearchInNewTabIntervalMM", 1440);
Line Found : user_pref("CT2269050.SearchInNewTabLastCheckTime", "Sat Nov 03 2012 14:12:25 GMT+0100");
Line Found : user_pref("CT2269050.SearchInNewTabServiceUrl", "hxxp://newtab.conduit-hosting.com/newtab/?ctid=EB_TOOLBAR_ID");
Line Found : user_pref("CT2269050.SearchInNewTabUsageUrl", "hxxp://Usage.Hosting.conduit-services.com/UsageService.asmx/UsersRequests?ctid=EB_TOOLBAR_ID");
Line Found : user_pref("CT2269050.ServiceMapLastCheckTime", "Sat Nov 03 2012 14:12:20 GMT+0100");
Line Found : user_pref("CT2269050.SettingsCheckIntervalMin", 120);
Line Found : user_pref("CT2269050.SettingsLastCheckTime", "Sat Nov 03 2012 14:12:17 GMT+0100");
Line Found : user_pref("CT2269050.SettingsLastUpdate", "1351258177");
Line Found : user_pref("CT2269050.ThirdPartyComponentsInterval", 504);
Line Found : user_pref("CT2269050.ThirdPartyComponentsLastCheck", "Sat Feb 26 2011 13:19:46 GMT+0100");
Line Found : user_pref("CT2269050.ThirdPartyComponentsLastUpdate", "1246790578");
Line Found : user_pref("CT2269050.ToolbarShrinkedFromSetup", false);
Line Found : user_pref("CT2269050.TrusteLinkUrl", "hxxp://trust.conduit.com/CT2269050");
Line Found : user_pref("CT2269050.TrustedApiDomains", "conduit.com,conduit-hosting.com,conduit-services.com,client.conduit-storage.com,OurToolbar.com,CommunityToolbars.com,ForumToolbar.com,MyBlogToolbar.com,MyCity[...]
Line Found : user_pref("CT2269050.UserID", "UN33919146042207456");
Line Found : user_pref("CT2269050.WeatherPollDate", "Sat Feb 26 2011 13:20:41 GMT+0100");
Line Found : user_pref("CT2269050.WeatherUnit", "C");
Line Found : user_pref("CT2269050.alertChannelId", "666138");
Line Found : user_pref("CT2269050.clientLogIsEnabled", true);
Line Found : user_pref("CT2269050.clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.asmx/ReportDiagnosticsEvent");
Line Found : user_pref("CT2269050.generalConfigFromLogin", "{\"ApiMaxAlerts\":\"12\",\"SocialDomains\":\"social.conduit.com;apps.conduit.com;services.apps.conduit.com\",\"AppsDetectionUrlPattern\":\"hxxp://appdown[...]
Line Found : user_pref("CT2269050.homepageProtectorEnableByLogin", true);
Line Found : user_pref("CT2269050.initDone", true);
Line Found : user_pref("CT2269050.myStuffEnabled", true);
Line Found : user_pref("CT2269050.myStuffPublihserMinWidth", 400);
Line Found : user_pref("CT2269050.myStuffSearchUrl", "hxxp://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOrigin=29&ctid=EB_TOOLBAR_ID&octid=EB_ORIGINAL_CTID");
Line Found : user_pref("CT2269050.myStuffServiceIntervalMM", 1440);
Line Found : user_pref("CT2269050.myStuffServiceUrl", "hxxp://mystuff.conduit-services.com/MyStuffService.ashx?ComponentId=EB_MY_STUFF_INSTANCE_GUID&lut=EB_MY_STUFF_LUT");
Line Found : user_pref("CT2269050.revertSettingsEnabled", true);
Line Found : user_pref("CT2269050.searchProtectorDialogDelayInSec", 10);
Line Found : user_pref("CT2269050.searchProtectorEnableByLogin", true);
Line Found : user_pref("CT2269050.testingCtid", "");
Line Found : user_pref("CT2269050.toolbarAppMetaDataLastCheckTime", "Sat Nov 03 2012 14:12:37 GMT+0100");
Line Found : user_pref("CT2269050.uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/RegisterToolbarUninstallation");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://Settings.toolbar.search.conduit. ... /CT2269050", "\"8b21bd5c4b32b0c462ab74e200c6202c3\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root ... /661999/SK", "\"0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root ... /905414/SK", "\"0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-ser ... =CT2269050", "\"1343640511\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.alert.conduit-ser ... rt/dlg.pkg", "\"803651ba7facb1:0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.engine.conduit-se ... er=3.3.3.2", "\"807dc126dd28cc1:0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-s ... r=3.14.1.0", "\"0e0a4327275cd1:0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-s ... r=3.15.1.0", "\"0343677cfb1cd1:0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/ ... =CT2269050", "\"f1c77625c0e9bd1c80a2fd6901845fa9\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services ... r=FF&lut=0", "634339976460000000");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services ... =2/22/2011 6:54:06 PM", "634356118310000000");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services ... =3/13/2011 11:17:11 AM", "634356118310000000");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-serv ... ?locale=en", "\"df6544b56d98f460c88583ff34efa914\"");
Line Found : user_pref("CommunityToolbar.EngineOwner", "ConduitEngine");
Line Found : user_pref("CommunityToolbar.EngineOwnerGuid", "engine@conduit.com");
Line Found : user_pref("CommunityToolbar.EngineOwnerToolbarId", "conduitengine");
Line Found : user_pref("CommunityToolbar.IsEngineShown", true);
Line Found : user_pref("CommunityToolbar.IsMyStuffImportedToEngine", true);
Line Found : user_pref("CommunityToolbar.OriginalEngineOwner", "ConduitEngine");
Line Found : user_pref("CommunityToolbar.OriginalEngineOwnerGuid", "engine@conduit.com");
Line Found : user_pref("CommunityToolbar.OriginalEngineOwnerToolbarId", "conduitengine");
Line Found : user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "chrome://browser-region/locale/region.properties");
Line Found : user_pref("CommunityToolbar.ToolbarsList", "CT2269050,ConduitEngine");
Line Found : user_pref("CommunityToolbar.ToolbarsList2", "CT2269050");
Line Found : user_pref("CommunityToolbar.alert.alertDialogsGetterLastCheckTime", "Thu Jun 09 2011 22:13:08 GMT+0200");
Line Found : user_pref("CommunityToolbar.alert.alertEnabled", false);
Line Found : user_pref("CommunityToolbar.alert.alertInfoInterval", 60);
Line Found : user_pref("CommunityToolbar.alert.alertInfoLastCheckTime", "Mon Feb 28 2011 00:15:32 GMT+0100");
Line Found : user_pref("CommunityToolbar.alert.clientsServerUrl", "hxxp://alert.client.conduit.com");
Line Found : user_pref("CommunityToolbar.alert.locale", "en");
Line Found : user_pref("CommunityToolbar.alert.loginIntervalMin", 1440);
Line Found : user_pref("CommunityToolbar.alert.loginLastCheckTime", "Sun Jun 26 2011 09:35:58 GMT+0200");
Line Found : user_pref("CommunityToolbar.alert.loginLastUpdateTime", "1305622559");
Line Found : user_pref("CommunityToolbar.alert.messageShowTimeSec", 20);
Line Found : user_pref("CommunityToolbar.alert.servicesServerUrl", "hxxp://alert.services.conduit.com");
Line Found : user_pref("CommunityToolbar.alert.showTrayIcon", false);
Line Found : user_pref("CommunityToolbar.alert.userCloseIntervalMin", 300);
Line Found : user_pref("CommunityToolbar.alert.userId", "{46d5257d-740c-4bc7-84bc-d3952bec8e08}");
Line Found : user_pref("CommunityToolbar.globalUserId", "28202155-01f3-4522-8f0c-93a15765237b");
Line Found : user_pref("CommunityToolbar.isAlertUrlAddedToFeedItemTable", true);
Line Found : user_pref("CommunityToolbar.isClickActionAddedToFeedItemTable", true);
Line Found : user_pref("CommunityToolbar.keywordURLSelectedCTID", "CT2269050");
Line Found : user_pref("ConduitEngine.AppTrackingLastCheckTime", "Mon May 16 2011 19:52:15 GMT+0200");
Line Found : user_pref("ConduitEngine.CTID", "ConduitEngine");
Line Found : user_pref("ConduitEngine.DialogsGetterLastCheckTime", "Sun Jun 26 2011 09:35:59 GMT+0200");
Line Found : user_pref("ConduitEngine.FirstServerDate", "02/27/2011 17");
Line Found : user_pref("ConduitEngine.FirstTime", true);
Line Found : user_pref("ConduitEngine.FirstTimeFF3", true);
Line Found : user_pref("ConduitEngine.HasUserGlobalKeys", true);
Line Found : user_pref("ConduitEngine.Initialize", true);
Line Found : user_pref("ConduitEngine.InitializeCommonPrefs", true);
Line Found : user_pref("ConduitEngine.InstalledDate", "Sun Feb 27 2011 15:29:16 GMT+0100");
Line Found : user_pref("ConduitEngine.IsMulticommunity", false);
Line Found : user_pref("ConduitEngine.IsOpenThankYouPage", false);
Line Found : user_pref("ConduitEngine.IsOpenUninstallPage", true);
Line Found : user_pref("ConduitEngine.LanguagePackLastCheckTime", "Sun Jun 26 2011 09:35:59 GMT+0200");
Line Found : user_pref("ConduitEngine.LastLogin_3.2.5.2", "Mon Feb 28 2011 00:15:49 GMT+0100");
Line Found : user_pref("ConduitEngine.LastLogin_3.3.3.2", "Sun Jun 26 2011 09:35:59 GMT+0200");
Line Found : user_pref("ConduitEngine.SearchFromAddressBarIsInit", true);
Line Found : user_pref("ConduitEngine.SettingsLastCheckTime", "Sun Jun 26 2011 09:35:59 GMT+0200");
Line Found : user_pref("ConduitEngine.UserID", "UN46258643870642135");
Line Found : user_pref("ConduitEngine.componentAlertEnabled", false);
Line Found : user_pref("ConduitEngine.engineLocale", "sk");
Line Found : user_pref("ConduitEngine.enngineContextMenuLastCheckTime", "Sun Jun 26 2011 09:35:58 GMT+0200");
Line Found : user_pref("ConduitEngine.globalFirstTimeInfoLastCheckTime", "Sun Jun 26 2011 09:35:59 GMT+0200");
Line Found : user_pref("ConduitEngine.initDone", true);
Line Found : user_pref("ConduitEngine.isAppTrackingManagerOn", true);
Line Found : user_pref("ConduitEngine.isDetectionEnabled", false);
Line Found : user_pref("ConduitEngine.usageEnabled", false);
Line Found : user_pref("ConduitEngine.usagesFlag", 2);
Line Found : user_pref("browser.search.defaulturl", "hxxp://search.icq.com/search/afe_results.php?ch_id=afex&tb_ver=1.3.1&q=");
Line Found : user_pref("extensions.enabledItems", "engine@conduit.com:3.2.5.2,{872b5b88-9db5-4310-bdd0-ac189557e5f5}:3.2.5.2,wrc@avast.com:20110101,toolbar@ask.com:3.11.3.15590,{972ce4c6-7e08-4474-a285-3208198ce6f[...]
Line Found : user_pref("extensions.wrc.SearchRules.ask.com.style", ".WRCN {display:none} #yui-main .tsrc_vnru .title + .WRCN, #yui-main #teoma-results .title + .WRCN {display:inline !important; background: url(\"I[...]
Line Found : user_pref("extensions.wrc.SearchRules.ask.com.url", "^hxxp(s)?\\:\\/\\/(.+\\.)?ask\\.com\\/.*");
Line Found : user_pref("extensions.wrc.SearchRules.rambler.ru.style", ".WRCN {display:none} .search-results .title + .WRCN {display:inline !important; background: url(\"IMAGE\") right no-repeat}");
Line Found : user_pref("icqtoolbar.allowSendURL", false);
Line Found : user_pref("icqtoolbar.defSearchChange", true);
Line Found : user_pref("icqtoolbar.engineVerified", false);
Line Found : user_pref("icqtoolbar.firstTbRun", false);
Line Found : user_pref("icqtoolbar.geolastmodified", 1351948328);
Line Found : user_pref("icqtoolbar.history", "hotel%20beladice||natural%20hairy%20teen||freevideo||pindaros||kypselos||alexis%20bledel||gilmore%20girls||facebook||kleisthenes||google||hxxps%3A%2F%2Fsupport.skype.c[...]
Line Found : user_pref("icqtoolbar.hpChange", true);
Line Found : user_pref("icqtoolbar.icqgeo", 4201);
Line Found : user_pref("icqtoolbar.installTime", "1347265723");
Line Found : user_pref("icqtoolbar.installsource", "1");
Line Found : user_pref("icqtoolbar.newtab_most_visited_state", "1");
Line Found : user_pref("icqtoolbar.newtab_recently_closed_state", "1");
Line Found : user_pref("icqtoolbar.newtab_state", "0");
Line Found : user_pref("icqtoolbar.numberOfSearches", 0);
Line Found : user_pref("icqtoolbar.previousFFVersion", "9.0.1");
Line Found : user_pref("icqtoolbar.skip_default_search", "no");
Line Found : user_pref("icqtoolbar.uniqueID", "130228375613022836361302284864051");
Line Found : user_pref("icqtoolbar.usageStatstTimestamp", 1351948340);
Line Found : user_pref("icqtoolbar.userEngineApproved", true);
Line Found : user_pref("icqtoolbar.userHpApproved", true);
Line Found : user_pref("icqtoolbar.version", "1.5.3");
Line Found : user_pref("icqtoolbar.voucherHideClicks", 0);
Line Found : user_pref("icqtoolbar.voucherMoreLinkClicks", 0);
Line Found : user_pref("icqtoolbar.voucherRedeemClicks", 0);
Line Found : user_pref("icqtoolbar.voucherWasShown", 0);
Line Found : user_pref("icqtoolbar.xmlEnableHomePageDsGuard", false);
Line Found : user_pref("icqtoolbar.xmlLanguage", "sk");
-\\ Google Chrome v
[ File : C:\Users\Achilleas\AppData\Local\Google\Chrome\User Data\Default\preferences ]
*************************
AdwCleaner[R0].txt - [31632 octets] - [11/01/2014 20:09:04]
AdwCleaner[R1].txt - [31483 octets] - [11/01/2014 20:15:33]
########## EOF - C:\AdwCleaner\AdwCleaner[R1].txt - [31544 octets] ##########
# Updated 23/12/2013 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Achilleas - ACHILLEAS-PC
# Running from : C:\Users\Achilleas\Desktop\Downloads\adwcleaner.exe
# Option : Scan
***** [ Services ] *****
Service Found : BitGuard
Service Found : ICQ Service
***** [ Files / Folders ] *****
File Found : C:\Users\ACHILL~1\AppData\Local\Temp\Uninstall.exe
File Found : C:\Users\Achilleas\AppData\Local\Google\Chrome\User Data\Default\bProtector Web Data
File Found : C:\Users\Achilleas\AppData\Local\Google\Chrome\User Data\Default\bprotectorpreferences
File Found : C:\Users\Achilleas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.delta-search.com_0.localstorage-journal
File Found : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\bProtector_extensions.rdf
File Found : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\bprotector_extensions.sqlite
File Found : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\bprotector_prefs.js
File Found : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\searchplugins\Conduit.xml
File Found : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\searchplugins\delta.xml
File Found : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\searchplugins\icqplugin.xml
File Found : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\searchplugins\icqplugin-1.xml
File Found : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\searchplugins\icqplugin-10.xml
File Found : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\searchplugins\icqplugin-11.xml
File Found : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\searchplugins\icqplugin-12.xml
File Found : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\searchplugins\icqplugin-13.xml
File Found : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\searchplugins\icqplugin-14.xml
File Found : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\searchplugins\icqplugin-2.xml
File Found : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\searchplugins\icqplugin-3.xml
File Found : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\searchplugins\icqplugin-4.xml
File Found : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\searchplugins\icqplugin-5.xml
File Found : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\searchplugins\icqplugin-6.xml
File Found : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\searchplugins\icqplugin-7.xml
File Found : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\searchplugins\icqplugin-8.xml
File Found : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\searchplugins\icqplugin-9.xml
File Found : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\user.js
File Found : C:\Windows\System32\Tasks\BitGuard
Folder Found : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\Extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
Folder Found : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\Extensions\{800B5000-A755-47E1-992B-48A1C1357F07}
Folder Found : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\Extensions\{872b5b88-9db5-4310-bdd0-ac189557e5f5}
Folder Found : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\Extensions\{872b5b88-9db5-4310-bdd0-ac189557e5f5}
Folder Found : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\Extensions\{872b5b88-9db5-4310-bdd0-ac189557e5f5}
Folder Found : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\Extensions\{ACAA314B-EEBA-48E4-AD47-84E31C44796C}
Folder Found : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\Extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}
Folder Found : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\Extensions\50fbe849735c6@50fbe849735ff.com
Folder Found : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\Extensions\el-GR@dictionaries.addons.mozilla.org
Folder Found : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\Extensions\engine@conduit.com
Folder Found : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\Extensions\engine@conduit.com
Folder Found C:\Program Files (x86)\1ClickDownload
Folder Found C:\Program Files (x86)\ICQ6Toolbar
Folder Found C:\ProgramData\Babylon
Folder Found C:\ProgramData\BitGuard
Folder Found C:\ProgramData\boost_interprocess
Folder Found C:\ProgramData\clsoft ltd
Folder Found C:\ProgramData\ICQ\ICQToolbar
Folder Found C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SaveAs
Folder Found C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SaveAs
Folder Found C:\ProgramData\Partner
Folder Found C:\ProgramData\SaveAs
Folder Found C:\ProgramData\SaveAs
Folder Found C:\ProgramData\Tarma Installer
Folder Found C:\Users\Achilleas\AppData\Local\eSupport.com
Folder Found C:\Users\Achilleas\AppData\LocalLow\Delta
Folder Found C:\Users\Achilleas\AppData\Roaming\Babylon
Folder Found C:\Users\Achilleas\AppData\Roaming\dvdvideosoftiehelpers
Folder Found C:\Users\Achilleas\AppData\Roaming\file scout
Folder Found C:\Users\Achilleas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BitGuard
Folder Found C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\Conduit
Folder Found C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\ConduitEngine
Folder Found C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\CT2269050
Folder Found C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\ICQToolbarData
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Found : HKCU\Software\1ClickDownload
Key Found : HKCU\Software\AppDataLow\SProtector
Key Found : HKCU\Software\BabSolution
Key Found : HKCU\Software\Conduit
Key Found : HKCU\Software\DataMngr
Key Found : HKCU\Software\f28bddbc3bbd49
Key Found : HKCU\Software\filescout
Key Found : HKCU\Software\ICQ\ICQToolbar
Key Found : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\ICQ\ICQToolBar
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{82E1477C-B154-48D3-9891-33D83C26BCD3}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{855F3B16-6D32-4FE6-8A56-BBB695989046}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{855F3B16-6D32-4FE6-8A56-BBB695989046}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Found : HKCU\Software\Softonic
Key Found : [x64] HKCU\Software\1ClickDownload
Key Found : [x64] HKCU\Software\BabSolution
Key Found : [x64] HKCU\Software\Conduit
Key Found : [x64] HKCU\Software\DataMngr
Key Found : [x64] HKCU\Software\filescout
Key Found : [x64] HKCU\Software\ICQ\ICQToolbar
Key Found : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Key Found : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}
Key Found : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Found : [x64] HKCU\Software\Softonic
Key Found : HKLM\Software\Babylon
Key Found : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323}
Key Found : HKLM\SOFTWARE\Classes\AppID\{5D723752-5899-47E8-99B4-62C824EF9E13}
Key Found : HKLM\SOFTWARE\Classes\AppID\{608D3067-77E8-463D-9084-908966806826}
Key Found : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}
Key Found : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Key Found : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Key Found : HKLM\SOFTWARE\Classes\AppID\ICQ Service.exe
Key Found : HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE
Key Found : HKLM\SOFTWARE\Classes\Applications\ilividsetup.exe
Key Found : HKLM\SOFTWARE\Classes\CLSID\{007EFBDF-8A5D-4930-97CC-A4B437CBA777}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{855F3B16-6D32-4FE6-8A56-BBB695989046}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Found : HKLM\SOFTWARE\Classes\ICQToolBar.IEHook
Key Found : HKLM\SOFTWARE\Classes\ICQToolBar.IEHook.1
Key Found : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Found : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Found : HKLM\SOFTWARE\Classes\Prod.cap
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{07CAC314-E962-4F78-89AB-DD002F2490EE}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{13ABD093-D46F-40DF-A608-47E162EC799D}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Key Found : HKLM\Software\Conduit
Key Found : HKLM\Software\DataMngr
Key Found : HKLM\SOFTWARE\f28bddbc3bbd49
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\jbpkiefagocgkmemidfngdkamloieekf
Key Found : HKLM\Software\ICQ\ICQToolbar
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Explorer Bars\{855F3B16-6D32-4FE6-8A56-BBB695989046}
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\AskInstallChecker-1_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\AskInstallChecker-1_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasapi32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasmancs
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_dvdfab_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_dvdfab_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{15D2D75C-9CB2-4EFD-BAD7-B9B4CB4BC693}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ICQToolbar
Key Found : HKLM\Software\SProtector
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Key Found : [x64] HKLM\SOFTWARE\Tarma Installer
Value Found : HKCU\Software\Microsoft\Internet Explorer\Main [bprotector start page]
Value Found : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]
Value Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes [bProtectorDefaultScope]
Value Found : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}]
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs [bProtectTabs]
Value Found : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [50fbe849735c6@50fbe849735ff.com]
***** [ Browsers ] *****
-\\ Internet Explorer v10.0.9200.16750
Setting Found : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search] - hxxp://search.icq.com/search/results.php?q={searchTerms}&ch_id=osd
-\\ Mozilla Firefox v
[ File : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\prefs.js ]
Line Found : user_pref("CT2269050..clientLogIsEnabled", true);
Line Found : user_pref("CT2269050..clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.asmx/ReportDiagnosticsEvent");
Line Found : user_pref("CT2269050..uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/RegisterToolbarUninstallation");
Line Found : user_pref("CT2269050.ALLOW_SHOWING_HIDDEN_TOOLBAR", false);
Line Found : user_pref("CT2269050.AboutPrivacyUrl", "hxxp://www.conduit.com/privacy/Default.aspx");
Line Found : user_pref("CT2269050.BrowserCompStateIsOpen_129681780741097243", true);
Line Found : user_pref("CT2269050.BrowserCompStateIsOpen_129881141106886992", true);
Line Found : user_pref("CT2269050.CTID", "CT2269050");
Line Found : user_pref("CT2269050.CurrentServerDate", "3-11-2012");
Line Found : user_pref("CT2269050.DialogsAlignMode", "LTR");
Line Found : user_pref("CT2269050.DialogsGetterLastCheckTime", "Sat Nov 03 2012 14:12:37 GMT+0100");
Line Found : user_pref("CT2269050.DownloadReferralCookieData", "");
Line Found : user_pref("CT2269050.EMailNotifierPollDate", "Sat Feb 26 2011 13:19:48 GMT+0100");
Line Found : user_pref("CT2269050.FirstServerDate", "26-2-2011");
Line Found : user_pref("CT2269050.FirstTime", true);
Line Found : user_pref("CT2269050.FirstTimeFF3", true);
Line Found : user_pref("CT2269050.FirstTimeSettingsDone", true);
Line Found : user_pref("CT2269050.FixPageNotFoundErrors", true);
Line Found : user_pref("CT2269050.GroupingServerCheckInterval", 1440);
Line Found : user_pref("CT2269050.GroupingServiceUrl", "hxxp://grouping.services.conduit.com/");
Line Found : user_pref("CT2269050.HasUserGlobalKeys", true);
Line Found : user_pref("CT2269050.Initialize", true);
Line Found : user_pref("CT2269050.InitializeCommonPrefs", true);
Line Found : user_pref("CT2269050.InstallationAndCookieDataSentCount", 3);
Line Found : user_pref("CT2269050.InstallationType", "UnknownIntegration");
Line Found : user_pref("CT2269050.InstalledDate", "Sat Feb 26 2011 13:19:48 GMT+0100");
Line Found : user_pref("CT2269050.InvalidateCache", false);
Line Found : user_pref("CT2269050.IsGrouping", false);
Line Found : user_pref("CT2269050.IsMulticommunity", false);
Line Found : user_pref("CT2269050.IsOpenThankYouPage", false);
Line Found : user_pref("CT2269050.IsOpenUninstallPage", false);
Line Found : user_pref("CT2269050.LanguagePackLastCheckTime", "Sat Nov 03 2012 14:12:37 GMT+0100");
Line Found : user_pref("CT2269050.LanguagePackReloadIntervalMM", 1440);
Line Found : user_pref("CT2269050.LanguagePackServiceUrl", "hxxp://translation.users.conduit.com/Translation.ashx");
Line Found : user_pref("CT2269050.LastLogin_2.7.0.14", "Sat Feb 26 2011 13:20:29 GMT+0100");
Line Found : user_pref("CT2269050.LastLogin_3.14.1.0", "Mon Sep 10 2012 10:29:17 GMT+0200");
Line Found : user_pref("CT2269050.LastLogin_3.15.1.0", "Sat Nov 03 2012 14:12:30 GMT+0100");
Line Found : user_pref("CT2269050.LatestVersion", "3.15.1.0");
Line Found : user_pref("CT2269050.Locale", "en");
Line Found : user_pref("CT2269050.LoginCache", 4);
Line Found : user_pref("CT2269050.MCDetectTooltipHeight", "83");
Line Found : user_pref("CT2269050.MCDetectTooltipUrl", "hxxp://@EB_INSTALL_LINK@/rank/tooltip/?version=1");
Line Found : user_pref("CT2269050.MCDetectTooltipWidth", "295");
Line Found : user_pref("CT2269050.MyStuffEnabledAtInstallation", true);
Line Found : user_pref("CT2269050.RadioIsPodcast", false);
Line Found : user_pref("CT2269050.RadioLastCheckTime", "Sat Feb 26 2011 13:19:52 GMT+0100");
Line Found : user_pref("CT2269050.RadioLastUpdateIPServer", "3");
Line Found : user_pref("CT2269050.RadioLastUpdateServer", "129132338014870000");
Line Found : user_pref("CT2269050.RadioMediaID", "12473383");
Line Found : user_pref("CT2269050.RadioMediaType", "Media Player");
Line Found : user_pref("CT2269050.RadioMenuSelectedID", "EBRadioMenu_CT226905012473383");
Line Found : user_pref("CT2269050.RadioStationName", "Hotmix%20108");
Line Found : user_pref("CT2269050.RadioStationURL", "hxxp://67.202.67.18:8082");
Line Found : user_pref("CT2269050.SavedHomepage", "hxxp://www.google.sk/");
Line Found : user_pref("CT2269050.SearchEngine", "Search||hxxp://search.conduit.com/Results.aspx?q=UCM_SEARCH_TERM&ctid=CT2269050&octid=EB_ORIGINAL_CTID&SearchSource=1");
Line Found : user_pref("CT2269050.SearchFromAddressBarIsInit", true);
Line Found : user_pref("CT2269050.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2269050&q=");
Line Found : user_pref("CT2269050.SearchInNewTabEnabled", true);
Line Found : user_pref("CT2269050.SearchInNewTabIntervalMM", 1440);
Line Found : user_pref("CT2269050.SearchInNewTabLastCheckTime", "Sat Nov 03 2012 14:12:25 GMT+0100");
Line Found : user_pref("CT2269050.SearchInNewTabServiceUrl", "hxxp://newtab.conduit-hosting.com/newtab/?ctid=EB_TOOLBAR_ID");
Line Found : user_pref("CT2269050.SearchInNewTabUsageUrl", "hxxp://Usage.Hosting.conduit-services.com/UsageService.asmx/UsersRequests?ctid=EB_TOOLBAR_ID");
Line Found : user_pref("CT2269050.ServiceMapLastCheckTime", "Sat Nov 03 2012 14:12:20 GMT+0100");
Line Found : user_pref("CT2269050.SettingsCheckIntervalMin", 120);
Line Found : user_pref("CT2269050.SettingsLastCheckTime", "Sat Nov 03 2012 14:12:17 GMT+0100");
Line Found : user_pref("CT2269050.SettingsLastUpdate", "1351258177");
Line Found : user_pref("CT2269050.ThirdPartyComponentsInterval", 504);
Line Found : user_pref("CT2269050.ThirdPartyComponentsLastCheck", "Sat Feb 26 2011 13:19:46 GMT+0100");
Line Found : user_pref("CT2269050.ThirdPartyComponentsLastUpdate", "1246790578");
Line Found : user_pref("CT2269050.ToolbarShrinkedFromSetup", false);
Line Found : user_pref("CT2269050.TrusteLinkUrl", "hxxp://trust.conduit.com/CT2269050");
Line Found : user_pref("CT2269050.TrustedApiDomains", "conduit.com,conduit-hosting.com,conduit-services.com,client.conduit-storage.com,OurToolbar.com,CommunityToolbars.com,ForumToolbar.com,MyBlogToolbar.com,MyCity[...]
Line Found : user_pref("CT2269050.UserID", "UN33919146042207456");
Line Found : user_pref("CT2269050.WeatherPollDate", "Sat Feb 26 2011 13:20:41 GMT+0100");
Line Found : user_pref("CT2269050.WeatherUnit", "C");
Line Found : user_pref("CT2269050.alertChannelId", "666138");
Line Found : user_pref("CT2269050.clientLogIsEnabled", true);
Line Found : user_pref("CT2269050.clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.asmx/ReportDiagnosticsEvent");
Line Found : user_pref("CT2269050.generalConfigFromLogin", "{\"ApiMaxAlerts\":\"12\",\"SocialDomains\":\"social.conduit.com;apps.conduit.com;services.apps.conduit.com\",\"AppsDetectionUrlPattern\":\"hxxp://appdown[...]
Line Found : user_pref("CT2269050.homepageProtectorEnableByLogin", true);
Line Found : user_pref("CT2269050.initDone", true);
Line Found : user_pref("CT2269050.myStuffEnabled", true);
Line Found : user_pref("CT2269050.myStuffPublihserMinWidth", 400);
Line Found : user_pref("CT2269050.myStuffSearchUrl", "hxxp://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOrigin=29&ctid=EB_TOOLBAR_ID&octid=EB_ORIGINAL_CTID");
Line Found : user_pref("CT2269050.myStuffServiceIntervalMM", 1440);
Line Found : user_pref("CT2269050.myStuffServiceUrl", "hxxp://mystuff.conduit-services.com/MyStuffService.ashx?ComponentId=EB_MY_STUFF_INSTANCE_GUID&lut=EB_MY_STUFF_LUT");
Line Found : user_pref("CT2269050.revertSettingsEnabled", true);
Line Found : user_pref("CT2269050.searchProtectorDialogDelayInSec", 10);
Line Found : user_pref("CT2269050.searchProtectorEnableByLogin", true);
Line Found : user_pref("CT2269050.testingCtid", "");
Line Found : user_pref("CT2269050.toolbarAppMetaDataLastCheckTime", "Sat Nov 03 2012 14:12:37 GMT+0100");
Line Found : user_pref("CT2269050.uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/RegisterToolbarUninstallation");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://Settings.toolbar.search.conduit. ... /CT2269050", "\"8b21bd5c4b32b0c462ab74e200c6202c3\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root ... /661999/SK", "\"0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root ... /905414/SK", "\"0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-ser ... =CT2269050", "\"1343640511\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.alert.conduit-ser ... rt/dlg.pkg", "\"803651ba7facb1:0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.engine.conduit-se ... er=3.3.3.2", "\"807dc126dd28cc1:0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-s ... r=3.14.1.0", "\"0e0a4327275cd1:0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-s ... r=3.15.1.0", "\"0343677cfb1cd1:0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/ ... =CT2269050", "\"f1c77625c0e9bd1c80a2fd6901845fa9\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services ... r=FF&lut=0", "634339976460000000");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services ... =2/22/2011 6:54:06 PM", "634356118310000000");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services ... =3/13/2011 11:17:11 AM", "634356118310000000");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-serv ... ?locale=en", "\"df6544b56d98f460c88583ff34efa914\"");
Line Found : user_pref("CommunityToolbar.EngineOwner", "ConduitEngine");
Line Found : user_pref("CommunityToolbar.EngineOwnerGuid", "engine@conduit.com");
Line Found : user_pref("CommunityToolbar.EngineOwnerToolbarId", "conduitengine");
Line Found : user_pref("CommunityToolbar.IsEngineShown", true);
Line Found : user_pref("CommunityToolbar.IsMyStuffImportedToEngine", true);
Line Found : user_pref("CommunityToolbar.OriginalEngineOwner", "ConduitEngine");
Line Found : user_pref("CommunityToolbar.OriginalEngineOwnerGuid", "engine@conduit.com");
Line Found : user_pref("CommunityToolbar.OriginalEngineOwnerToolbarId", "conduitengine");
Line Found : user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "chrome://browser-region/locale/region.properties");
Line Found : user_pref("CommunityToolbar.ToolbarsList", "CT2269050,ConduitEngine");
Line Found : user_pref("CommunityToolbar.ToolbarsList2", "CT2269050");
Line Found : user_pref("CommunityToolbar.alert.alertDialogsGetterLastCheckTime", "Thu Jun 09 2011 22:13:08 GMT+0200");
Line Found : user_pref("CommunityToolbar.alert.alertEnabled", false);
Line Found : user_pref("CommunityToolbar.alert.alertInfoInterval", 60);
Line Found : user_pref("CommunityToolbar.alert.alertInfoLastCheckTime", "Mon Feb 28 2011 00:15:32 GMT+0100");
Line Found : user_pref("CommunityToolbar.alert.clientsServerUrl", "hxxp://alert.client.conduit.com");
Line Found : user_pref("CommunityToolbar.alert.locale", "en");
Line Found : user_pref("CommunityToolbar.alert.loginIntervalMin", 1440);
Line Found : user_pref("CommunityToolbar.alert.loginLastCheckTime", "Sun Jun 26 2011 09:35:58 GMT+0200");
Line Found : user_pref("CommunityToolbar.alert.loginLastUpdateTime", "1305622559");
Line Found : user_pref("CommunityToolbar.alert.messageShowTimeSec", 20);
Line Found : user_pref("CommunityToolbar.alert.servicesServerUrl", "hxxp://alert.services.conduit.com");
Line Found : user_pref("CommunityToolbar.alert.showTrayIcon", false);
Line Found : user_pref("CommunityToolbar.alert.userCloseIntervalMin", 300);
Line Found : user_pref("CommunityToolbar.alert.userId", "{46d5257d-740c-4bc7-84bc-d3952bec8e08}");
Line Found : user_pref("CommunityToolbar.globalUserId", "28202155-01f3-4522-8f0c-93a15765237b");
Line Found : user_pref("CommunityToolbar.isAlertUrlAddedToFeedItemTable", true);
Line Found : user_pref("CommunityToolbar.isClickActionAddedToFeedItemTable", true);
Line Found : user_pref("CommunityToolbar.keywordURLSelectedCTID", "CT2269050");
Line Found : user_pref("ConduitEngine.AppTrackingLastCheckTime", "Mon May 16 2011 19:52:15 GMT+0200");
Line Found : user_pref("ConduitEngine.CTID", "ConduitEngine");
Line Found : user_pref("ConduitEngine.DialogsGetterLastCheckTime", "Sun Jun 26 2011 09:35:59 GMT+0200");
Line Found : user_pref("ConduitEngine.FirstServerDate", "02/27/2011 17");
Line Found : user_pref("ConduitEngine.FirstTime", true);
Line Found : user_pref("ConduitEngine.FirstTimeFF3", true);
Line Found : user_pref("ConduitEngine.HasUserGlobalKeys", true);
Line Found : user_pref("ConduitEngine.Initialize", true);
Line Found : user_pref("ConduitEngine.InitializeCommonPrefs", true);
Line Found : user_pref("ConduitEngine.InstalledDate", "Sun Feb 27 2011 15:29:16 GMT+0100");
Line Found : user_pref("ConduitEngine.IsMulticommunity", false);
Line Found : user_pref("ConduitEngine.IsOpenThankYouPage", false);
Line Found : user_pref("ConduitEngine.IsOpenUninstallPage", true);
Line Found : user_pref("ConduitEngine.LanguagePackLastCheckTime", "Sun Jun 26 2011 09:35:59 GMT+0200");
Line Found : user_pref("ConduitEngine.LastLogin_3.2.5.2", "Mon Feb 28 2011 00:15:49 GMT+0100");
Line Found : user_pref("ConduitEngine.LastLogin_3.3.3.2", "Sun Jun 26 2011 09:35:59 GMT+0200");
Line Found : user_pref("ConduitEngine.SearchFromAddressBarIsInit", true);
Line Found : user_pref("ConduitEngine.SettingsLastCheckTime", "Sun Jun 26 2011 09:35:59 GMT+0200");
Line Found : user_pref("ConduitEngine.UserID", "UN46258643870642135");
Line Found : user_pref("ConduitEngine.componentAlertEnabled", false);
Line Found : user_pref("ConduitEngine.engineLocale", "sk");
Line Found : user_pref("ConduitEngine.enngineContextMenuLastCheckTime", "Sun Jun 26 2011 09:35:58 GMT+0200");
Line Found : user_pref("ConduitEngine.globalFirstTimeInfoLastCheckTime", "Sun Jun 26 2011 09:35:59 GMT+0200");
Line Found : user_pref("ConduitEngine.initDone", true);
Line Found : user_pref("ConduitEngine.isAppTrackingManagerOn", true);
Line Found : user_pref("ConduitEngine.isDetectionEnabled", false);
Line Found : user_pref("ConduitEngine.usageEnabled", false);
Line Found : user_pref("ConduitEngine.usagesFlag", 2);
Line Found : user_pref("browser.search.defaulturl", "hxxp://search.icq.com/search/afe_results.php?ch_id=afex&tb_ver=1.3.1&q=");
Line Found : user_pref("extensions.enabledItems", "engine@conduit.com:3.2.5.2,{872b5b88-9db5-4310-bdd0-ac189557e5f5}:3.2.5.2,wrc@avast.com:20110101,toolbar@ask.com:3.11.3.15590,{972ce4c6-7e08-4474-a285-3208198ce6f[...]
Line Found : user_pref("extensions.wrc.SearchRules.ask.com.style", ".WRCN {display:none} #yui-main .tsrc_vnru .title + .WRCN, #yui-main #teoma-results .title + .WRCN {display:inline !important; background: url(\"I[...]
Line Found : user_pref("extensions.wrc.SearchRules.ask.com.url", "^hxxp(s)?\\:\\/\\/(.+\\.)?ask\\.com\\/.*");
Line Found : user_pref("extensions.wrc.SearchRules.rambler.ru.style", ".WRCN {display:none} .search-results .title + .WRCN {display:inline !important; background: url(\"IMAGE\") right no-repeat}");
Line Found : user_pref("icqtoolbar.allowSendURL", false);
Line Found : user_pref("icqtoolbar.defSearchChange", true);
Line Found : user_pref("icqtoolbar.engineVerified", false);
Line Found : user_pref("icqtoolbar.firstTbRun", false);
Line Found : user_pref("icqtoolbar.geolastmodified", 1351948328);
Line Found : user_pref("icqtoolbar.history", "hotel%20beladice||natural%20hairy%20teen||freevideo||pindaros||kypselos||alexis%20bledel||gilmore%20girls||facebook||kleisthenes||google||hxxps%3A%2F%2Fsupport.skype.c[...]
Line Found : user_pref("icqtoolbar.hpChange", true);
Line Found : user_pref("icqtoolbar.icqgeo", 4201);
Line Found : user_pref("icqtoolbar.installTime", "1347265723");
Line Found : user_pref("icqtoolbar.installsource", "1");
Line Found : user_pref("icqtoolbar.newtab_most_visited_state", "1");
Line Found : user_pref("icqtoolbar.newtab_recently_closed_state", "1");
Line Found : user_pref("icqtoolbar.newtab_state", "0");
Line Found : user_pref("icqtoolbar.numberOfSearches", 0);
Line Found : user_pref("icqtoolbar.previousFFVersion", "9.0.1");
Line Found : user_pref("icqtoolbar.skip_default_search", "no");
Line Found : user_pref("icqtoolbar.uniqueID", "130228375613022836361302284864051");
Line Found : user_pref("icqtoolbar.usageStatstTimestamp", 1351948340);
Line Found : user_pref("icqtoolbar.userEngineApproved", true);
Line Found : user_pref("icqtoolbar.userHpApproved", true);
Line Found : user_pref("icqtoolbar.version", "1.5.3");
Line Found : user_pref("icqtoolbar.voucherHideClicks", 0);
Line Found : user_pref("icqtoolbar.voucherMoreLinkClicks", 0);
Line Found : user_pref("icqtoolbar.voucherRedeemClicks", 0);
Line Found : user_pref("icqtoolbar.voucherWasShown", 0);
Line Found : user_pref("icqtoolbar.xmlEnableHomePageDsGuard", false);
Line Found : user_pref("icqtoolbar.xmlLanguage", "sk");
-\\ Google Chrome v
[ File : C:\Users\Achilleas\AppData\Local\Google\Chrome\User Data\Default\preferences ]
*************************
AdwCleaner[R0].txt - [31632 octets] - [11/01/2014 20:09:04]
AdwCleaner[R1].txt - [31483 octets] - [11/01/2014 20:15:33]
########## EOF - C:\AdwCleaner\AdwCleaner[R1].txt - [31544 octets] ##########
-
Damned
- Tvůrce článků
-
Master Level 9
- Příspěvky: 8353
- Registrován: prosinec 06
- Bydliště: Rokycany
- Pohlaví:
- Stav:
Offline
- Kontakt:
Re: Kontrola Log - minerd.exe
Spusť znovu AdwCleaner (u Windows Vista či Windows7, klikni na AdwCleaner pravým a vyber „Spustit jako správce“).
Klikni na „ Delete“.
Program provede opravu, po automatickém restartu se ukáže log (C:\AdwCleaner [S?].txt) , jeho obsah sem celý vlož.
********************************************************************************************************************************************************************************
Stáhni si Junkware Removal Tool na Plochu.
Deaktivuj si svůj antivirový program.
Pravým tlačítkem myši klikni na JRT.exe a vyber „Spustit jako správce“. Pro pokračování budeš vyzván ke stisknutí jakékoliv klávesy. Na nějakou klikni.
Začne skenování programu. Skenování může trvat dloho , podle množství nákaz. Po ukončení skenu se objeví log (JRT.txt) , který se uloží na ploše.
Zkopíruj sem pak celý jeho obsah
Klikni na „ Delete“.
Program provede opravu, po automatickém restartu se ukáže log (C:\AdwCleaner [S?].txt) , jeho obsah sem celý vlož.
********************************************************************************************************************************************************************************
Stáhni si Junkware Removal Tool na Plochu.
Deaktivuj si svůj antivirový program.
Pravým tlačítkem myši klikni na JRT.exe a vyber „Spustit jako správce“. Pro pokračování budeš vyzván ke stisknutí jakékoliv klávesy. Na nějakou klikni.
Začne skenování programu. Skenování může trvat dloho , podle množství nákaz. Po ukončení skenu se objeví log (JRT.txt) , který se uloží na ploše.
Zkopíruj sem pak celý jeho obsah
Nic není nemožné, proto tam, kde jsme s rozumem v koncích, neváháme použít kladivo.
Chceš-li vědět, co je nového, podívej se do starých knih.
Damnedovy češtiny - překlady programů pro údržbu PC
HiJackThis 2+návod FCleaner+čeština Wise Registry Cleaner
Chceš-li vědět, co je nového, podívej se do starých knih.
Damnedovy češtiny - překlady programů pro údržbu PC
HiJackThis 2+návod FCleaner+čeština Wise Registry Cleaner
-
arathorn11
- nováček
- Příspěvky: 19
- Registrován: leden 14
- Pohlaví:
- Stav:
Offline
Re: Kontrola Log - minerd.exe
# AdwCleaner v3.016 - Report created 11/01/2014 at 20:29:18
# Updated 23/12/2013 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Achilleas - ACHILLEAS-PC
# Running from : C:\Users\Achilleas\Desktop\Downloads\adwcleaner.exe
# Option : Clean
***** [ Services ] *****
[#] Service Deleted : BitGuard
Service Deleted : ICQ Service
***** [ Files / Folders ] *****
Folder Deleted : C:\ProgramData\Babylon
Folder Deleted : C:\ProgramData\BitGuard
Folder Deleted : C:\ProgramData\boost_interprocess
Folder Deleted : C:\ProgramData\clsoft ltd
Folder Deleted : C:\ProgramData\ICQ\ICQToolbar
Folder Deleted : C:\ProgramData\Partner
Folder Deleted : C:\ProgramData\SaveAs
Folder Deleted : C:\ProgramData\Tarma Installer
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SaveAs
Folder Deleted : C:\Program Files (x86)\1ClickDownload
Folder Deleted : C:\Program Files (x86)\ICQ6Toolbar
Folder Deleted : C:\Users\Achilleas\AppData\Local\eSupport.com
Folder Deleted : C:\Users\Achilleas\AppData\LocalLow\Delta
Folder Deleted : C:\Users\Achilleas\AppData\Roaming\Babylon
Folder Deleted : C:\Users\Achilleas\AppData\Roaming\dvdvideosoftiehelpers
Folder Deleted : C:\Users\Achilleas\AppData\Roaming\file scout
Folder Deleted : C:\Users\Achilleas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BitGuard
Folder Deleted : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\Conduit
Folder Deleted : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\ConduitEngine
Folder Deleted : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\ICQToolbarData
Folder Deleted : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\CT2269050
Folder Deleted : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\Extensions\{800B5000-A755-47E1-992B-48A1C1357F07}
Folder Deleted : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\Extensions\{872b5b88-9db5-4310-bdd0-ac189557e5f5}
Folder Deleted : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\Extensions\{ACAA314B-EEBA-48E4-AD47-84E31C44796C}
Folder Deleted : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\Extensions\engine@conduit.com
Folder Deleted : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\Extensions\50fbe849735c6@50fbe849735ff.com
Folder Deleted : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\Extensions\el-GR@dictionaries.addons.mozilla.org
File Deleted : C:\Users\ACHILL~1\AppData\Local\Temp\Uninstall.exe
File Deleted : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\bProtector_extensions.rdf
File Deleted : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\bprotector_extensions.sqlite
File Deleted : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\bprotector_prefs.js
File Deleted : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\searchplugins\Conduit.xml
File Deleted : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\searchplugins\delta.xml
File Deleted : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\searchplugins\icqplugin.xml
File Deleted : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\searchplugins\icqplugin-1.xml
File Deleted : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\searchplugins\icqplugin-10.xml
File Deleted : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\searchplugins\icqplugin-11.xml
File Deleted : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\searchplugins\icqplugin-12.xml
File Deleted : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\searchplugins\icqplugin-13.xml
File Deleted : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\searchplugins\icqplugin-14.xml
File Deleted : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\searchplugins\icqplugin-2.xml
File Deleted : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\searchplugins\icqplugin-3.xml
File Deleted : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\searchplugins\icqplugin-4.xml
File Deleted : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\searchplugins\icqplugin-5.xml
File Deleted : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\searchplugins\icqplugin-6.xml
File Deleted : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\searchplugins\icqplugin-7.xml
File Deleted : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\searchplugins\icqplugin-8.xml
File Deleted : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\searchplugins\icqplugin-9.xml
File Deleted : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\user.js
File Deleted : C:\Users\Achilleas\AppData\Local\Google\Chrome\User Data\Default\bProtector Web Data
File Deleted : C:\Users\Achilleas\AppData\Local\Google\Chrome\User Data\Default\bprotectorpreferences
File Deleted : C:\Users\Achilleas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.delta-search.com_0.localstorage-journal
File Deleted : C:\Windows\System32\Tasks\BitGuard
***** [ Shortcuts ] *****
***** [ Registry ] *****
Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [50fbe849735c6@50fbe849735ff.com]
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\jbpkiefagocgkmemidfngdkamloieekf
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\ICQ\ICQToolBar
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Main [bprotector start page]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes [bProtectorDefaultScope]
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\ICQ Service.exe
Key Deleted : HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE
Key Deleted : HKLM\SOFTWARE\Classes\Applications\ilividsetup.exe
Key Deleted : HKLM\SOFTWARE\Classes\ICQToolBar.IEHook
Key Deleted : HKLM\SOFTWARE\Classes\ICQToolBar.IEHook.1
Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs [bProtectTabs]
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\AskInstallChecker-1_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\AskInstallChecker-1_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasapi32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasmancs
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASMANCS
Key Deleted : HKCU\Software\f28bddbc3bbd49
Key Deleted : HKLM\SOFTWARE\f28bddbc3bbd49
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_dvdfab_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_dvdfab_RASMANCS
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{5D723752-5899-47E8-99B4-62C824EF9E13}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{608D3067-77E8-463D-9084-908966806826}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{007EFBDF-8A5D-4930-97CC-A4B437CBA777}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{855F3B16-6D32-4FE6-8A56-BBB695989046}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{07CAC314-E962-4F78-89AB-DD002F2490EE}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{13ABD093-D46F-40DF-A608-47E162EC799D}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{855F3B16-6D32-4FE6-8A56-BBB695989046}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{82E1477C-B154-48D3-9891-33D83C26BCD3}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{855F3B16-6D32-4FE6-8A56-BBB695989046}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Explorer Bars\{855F3B16-6D32-4FE6-8A56-BBB695989046}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}]
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Key Deleted : HKCU\Software\1ClickDownload
Key Deleted : HKCU\Software\BabSolution
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\DataMngr
Key Deleted : HKCU\Software\filescout
Key Deleted : HKCU\Software\ICQ\ICQToolbar
Key Deleted : HKCU\Software\Softonic
Key Deleted : HKCU\Software\AppDataLow\SProtector
Key Deleted : HKLM\Software\Babylon
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\Software\DataMngr
Key Deleted : HKLM\Software\ICQ\ICQToolbar
Key Deleted : HKLM\Software\SProtector
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{15D2D75C-9CB2-4EFD-BAD7-B9B4CB4BC693}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ICQToolbar
Key Deleted : [x64] HKLM\SOFTWARE\Tarma Installer
***** [ Browsers ] *****
-\\ Internet Explorer v10.0.9200.16750
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]
-\\ Mozilla Firefox v
[ File : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\prefs.js ]
Line Deleted : user_pref("CT2269050..clientLogIsEnabled", true);
Line Deleted : user_pref("CT2269050..clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.asmx/ReportDiagnosticsEvent");
Line Deleted : user_pref("CT2269050..uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/RegisterToolbarUninstallation");
Line Deleted : user_pref("CT2269050.ALLOW_SHOWING_HIDDEN_TOOLBAR", false);
Line Deleted : user_pref("CT2269050.AboutPrivacyUrl", "hxxp://www.conduit.com/privacy/Default.aspx");
Line Deleted : user_pref("CT2269050.BrowserCompStateIsOpen_129681780741097243", true);
Line Deleted : user_pref("CT2269050.BrowserCompStateIsOpen_129881141106886992", true);
Line Deleted : user_pref("CT2269050.CTID", "CT2269050");
Line Deleted : user_pref("CT2269050.CurrentServerDate", "3-11-2012");
Line Deleted : user_pref("CT2269050.DialogsAlignMode", "LTR");
Line Deleted : user_pref("CT2269050.DialogsGetterLastCheckTime", "Sat Nov 03 2012 14:12:37 GMT+0100");
Line Deleted : user_pref("CT2269050.DownloadReferralCookieData", "");
Line Deleted : user_pref("CT2269050.EMailNotifierPollDate", "Sat Feb 26 2011 13:19:48 GMT+0100");
Line Deleted : user_pref("CT2269050.FirstServerDate", "26-2-2011");
Line Deleted : user_pref("CT2269050.FirstTime", true);
Line Deleted : user_pref("CT2269050.FirstTimeFF3", true);
Line Deleted : user_pref("CT2269050.FirstTimeSettingsDone", true);
Line Deleted : user_pref("CT2269050.FixPageNotFoundErrors", true);
Line Deleted : user_pref("CT2269050.GroupingServerCheckInterval", 1440);
Line Deleted : user_pref("CT2269050.GroupingServiceUrl", "hxxp://grouping.services.conduit.com/");
Line Deleted : user_pref("CT2269050.HasUserGlobalKeys", true);
Line Deleted : user_pref("CT2269050.Initialize", true);
Line Deleted : user_pref("CT2269050.InitializeCommonPrefs", true);
Line Deleted : user_pref("CT2269050.InstallationAndCookieDataSentCount", 3);
Line Deleted : user_pref("CT2269050.InstallationType", "UnknownIntegration");
Line Deleted : user_pref("CT2269050.InstalledDate", "Sat Feb 26 2011 13:19:48 GMT+0100");
Line Deleted : user_pref("CT2269050.InvalidateCache", false);
Line Deleted : user_pref("CT2269050.IsGrouping", false);
Line Deleted : user_pref("CT2269050.IsMulticommunity", false);
Line Deleted : user_pref("CT2269050.IsOpenThankYouPage", false);
Line Deleted : user_pref("CT2269050.IsOpenUninstallPage", false);
Line Deleted : user_pref("CT2269050.LanguagePackLastCheckTime", "Sat Nov 03 2012 14:12:37 GMT+0100");
Line Deleted : user_pref("CT2269050.LanguagePackReloadIntervalMM", 1440);
Line Deleted : user_pref("CT2269050.LanguagePackServiceUrl", "hxxp://translation.users.conduit.com/Translation.ashx");
Line Deleted : user_pref("CT2269050.LastLogin_2.7.0.14", "Sat Feb 26 2011 13:20:29 GMT+0100");
Line Deleted : user_pref("CT2269050.LastLogin_3.14.1.0", "Mon Sep 10 2012 10:29:17 GMT+0200");
Line Deleted : user_pref("CT2269050.LastLogin_3.15.1.0", "Sat Nov 03 2012 14:12:30 GMT+0100");
Line Deleted : user_pref("CT2269050.LatestVersion", "3.15.1.0");
Line Deleted : user_pref("CT2269050.Locale", "en");
Line Deleted : user_pref("CT2269050.LoginCache", 4);
Line Deleted : user_pref("CT2269050.MCDetectTooltipHeight", "83");
Line Deleted : user_pref("CT2269050.MCDetectTooltipUrl", "hxxp://@EB_INSTALL_LINK@/rank/tooltip/?version=1");
Line Deleted : user_pref("CT2269050.MCDetectTooltipWidth", "295");
Line Deleted : user_pref("CT2269050.MyStuffEnabledAtInstallation", true);
Line Deleted : user_pref("CT2269050.RadioIsPodcast", false);
Line Deleted : user_pref("CT2269050.RadioLastCheckTime", "Sat Feb 26 2011 13:19:52 GMT+0100");
Line Deleted : user_pref("CT2269050.RadioLastUpdateIPServer", "3");
Line Deleted : user_pref("CT2269050.RadioLastUpdateServer", "129132338014870000");
Line Deleted : user_pref("CT2269050.RadioMediaID", "12473383");
Line Deleted : user_pref("CT2269050.RadioMediaType", "Media Player");
Line Deleted : user_pref("CT2269050.RadioMenuSelectedID", "EBRadioMenu_CT226905012473383");
Line Deleted : user_pref("CT2269050.RadioStationName", "Hotmix%20108");
Line Deleted : user_pref("CT2269050.RadioStationURL", "hxxp://67.202.67.18:8082");
Line Deleted : user_pref("CT2269050.SavedHomepage", "hxxp://www.google.sk/");
Line Deleted : user_pref("CT2269050.SearchEngine", "Search||hxxp://search.conduit.com/Results.aspx?q=UCM_SEARCH_TERM&ctid=CT2269050&octid=EB_ORIGINAL_CTID&SearchSource=1");
Line Deleted : user_pref("CT2269050.SearchFromAddressBarIsInit", true);
Line Deleted : user_pref("CT2269050.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2269050&q=");
Line Deleted : user_pref("CT2269050.SearchInNewTabEnabled", true);
Line Deleted : user_pref("CT2269050.SearchInNewTabIntervalMM", 1440);
Line Deleted : user_pref("CT2269050.SearchInNewTabLastCheckTime", "Sat Nov 03 2012 14:12:25 GMT+0100");
Line Deleted : user_pref("CT2269050.SearchInNewTabServiceUrl", "hxxp://newtab.conduit-hosting.com/newtab/?ctid=EB_TOOLBAR_ID");
Line Deleted : user_pref("CT2269050.SearchInNewTabUsageUrl", "hxxp://Usage.Hosting.conduit-services.com/UsageService.asmx/UsersRequests?ctid=EB_TOOLBAR_ID");
Line Deleted : user_pref("CT2269050.ServiceMapLastCheckTime", "Sat Nov 03 2012 14:12:20 GMT+0100");
Line Deleted : user_pref("CT2269050.SettingsCheckIntervalMin", 120);
Line Deleted : user_pref("CT2269050.SettingsLastCheckTime", "Sat Nov 03 2012 14:12:17 GMT+0100");
Line Deleted : user_pref("CT2269050.SettingsLastUpdate", "1351258177");
Line Deleted : user_pref("CT2269050.ThirdPartyComponentsInterval", 504);
Line Deleted : user_pref("CT2269050.ThirdPartyComponentsLastCheck", "Sat Feb 26 2011 13:19:46 GMT+0100");
Line Deleted : user_pref("CT2269050.ThirdPartyComponentsLastUpdate", "1246790578");
Line Deleted : user_pref("CT2269050.ToolbarShrinkedFromSetup", false);
Line Deleted : user_pref("CT2269050.TrusteLinkUrl", "hxxp://trust.conduit.com/CT2269050");
Line Deleted : user_pref("CT2269050.TrustedApiDomains", "conduit.com,conduit-hosting.com,conduit-services.com,client.conduit-storage.com,OurToolbar.com,CommunityToolbars.com,ForumToolbar.com,MyBlogToolbar.com,MyCity[...]
Line Deleted : user_pref("CT2269050.UserID", "UN33919146042207456");
Line Deleted : user_pref("CT2269050.WeatherPollDate", "Sat Feb 26 2011 13:20:41 GMT+0100");
Line Deleted : user_pref("CT2269050.WeatherUnit", "C");
Line Deleted : user_pref("CT2269050.alertChannelId", "666138");
Line Deleted : user_pref("CT2269050.clientLogIsEnabled", true);
Line Deleted : user_pref("CT2269050.clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.asmx/ReportDiagnosticsEvent");
Line Deleted : user_pref("CT2269050.generalConfigFromLogin", "{\"ApiMaxAlerts\":\"12\",\"SocialDomains\":\"social.conduit.com;apps.conduit.com;services.apps.conduit.com\",\"AppsDetectionUrlPattern\":\"hxxp://appdown[...]
Line Deleted : user_pref("CT2269050.homepageProtectorEnableByLogin", true);
Line Deleted : user_pref("CT2269050.initDone", true);
Line Deleted : user_pref("CT2269050.myStuffEnabled", true);
Line Deleted : user_pref("CT2269050.myStuffPublihserMinWidth", 400);
Line Deleted : user_pref("CT2269050.myStuffSearchUrl", "hxxp://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOrigin=29&ctid=EB_TOOLBAR_ID&octid=EB_ORIGINAL_CTID");
Line Deleted : user_pref("CT2269050.myStuffServiceIntervalMM", 1440);
Line Deleted : user_pref("CT2269050.myStuffServiceUrl", "hxxp://mystuff.conduit-services.com/MyStuffService.ashx?ComponentId=EB_MY_STUFF_INSTANCE_GUID&lut=EB_MY_STUFF_LUT");
Line Deleted : user_pref("CT2269050.revertSettingsEnabled", true);
Line Deleted : user_pref("CT2269050.searchProtectorDialogDelayInSec", 10);
Line Deleted : user_pref("CT2269050.searchProtectorEnableByLogin", true);
Line Deleted : user_pref("CT2269050.testingCtid", "");
Line Deleted : user_pref("CT2269050.toolbarAppMetaDataLastCheckTime", "Sat Nov 03 2012 14:12:37 GMT+0100");
Line Deleted : user_pref("CT2269050.uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/RegisterToolbarUninstallation");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://Settings.toolbar.search.conduit. ... /CT2269050", "\"8b21bd5c4b32b0c462ab74e200c6202c3\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root ... /661999/SK", "\"0\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root ... /905414/SK", "\"0\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-ser ... =CT2269050", "\"1343640511\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.alert.conduit-ser ... rt/dlg.pkg", "\"803651ba7facb1:0\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.engine.conduit-se ... er=3.3.3.2", "\"807dc126dd28cc1:0\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-s ... r=3.14.1.0", "\"0e0a4327275cd1:0\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-s ... r=3.15.1.0", "\"0343677cfb1cd1:0\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/ ... =CT2269050", "\"f1c77625c0e9bd1c80a2fd6901845fa9\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services ... r=FF&lut=0", "634339976460000000");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services ... =2/22/2011 6:54:06 PM", "634356118310000000");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services ... =3/13/2011 11:17:11 AM", "634356118310000000");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-serv ... ?locale=en", "\"df6544b56d98f460c88583ff34efa914\"");
Line Deleted : user_pref("CommunityToolbar.EngineOwner", "ConduitEngine");
Line Deleted : user_pref("CommunityToolbar.EngineOwnerGuid", "engine@conduit.com");
Line Deleted : user_pref("CommunityToolbar.EngineOwnerToolbarId", "conduitengine");
Line Deleted : user_pref("CommunityToolbar.IsEngineShown", true);
Line Deleted : user_pref("CommunityToolbar.IsMyStuffImportedToEngine", true);
Line Deleted : user_pref("CommunityToolbar.OriginalEngineOwner", "ConduitEngine");
Line Deleted : user_pref("CommunityToolbar.OriginalEngineOwnerGuid", "engine@conduit.com");
Line Deleted : user_pref("CommunityToolbar.OriginalEngineOwnerToolbarId", "conduitengine");
Line Deleted : user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "chrome://browser-region/locale/region.properties");
Line Deleted : user_pref("CommunityToolbar.ToolbarsList", "CT2269050,ConduitEngine");
Line Deleted : user_pref("CommunityToolbar.ToolbarsList2", "CT2269050");
Line Deleted : user_pref("CommunityToolbar.alert.alertDialogsGetterLastCheckTime", "Thu Jun 09 2011 22:13:08 GMT+0200");
Line Deleted : user_pref("CommunityToolbar.alert.alertEnabled", false);
Line Deleted : user_pref("CommunityToolbar.alert.alertInfoInterval", 60);
Line Deleted : user_pref("CommunityToolbar.alert.alertInfoLastCheckTime", "Mon Feb 28 2011 00:15:32 GMT+0100");
Line Deleted : user_pref("CommunityToolbar.alert.clientsServerUrl", "hxxp://alert.client.conduit.com");
Line Deleted : user_pref("CommunityToolbar.alert.locale", "en");
Line Deleted : user_pref("CommunityToolbar.alert.loginIntervalMin", 1440);
Line Deleted : user_pref("CommunityToolbar.alert.loginLastCheckTime", "Sun Jun 26 2011 09:35:58 GMT+0200");
Line Deleted : user_pref("CommunityToolbar.alert.loginLastUpdateTime", "1305622559");
Line Deleted : user_pref("CommunityToolbar.alert.messageShowTimeSec", 20);
Line Deleted : user_pref("CommunityToolbar.alert.servicesServerUrl", "hxxp://alert.services.conduit.com");
Line Deleted : user_pref("CommunityToolbar.alert.showTrayIcon", false);
Line Deleted : user_pref("CommunityToolbar.alert.userCloseIntervalMin", 300);
Line Deleted : user_pref("CommunityToolbar.alert.userId", "{46d5257d-740c-4bc7-84bc-d3952bec8e08}");
Line Deleted : user_pref("CommunityToolbar.globalUserId", "28202155-01f3-4522-8f0c-93a15765237b");
Line Deleted : user_pref("CommunityToolbar.isAlertUrlAddedToFeedItemTable", true);
Line Deleted : user_pref("CommunityToolbar.isClickActionAddedToFeedItemTable", true);
Line Deleted : user_pref("CommunityToolbar.keywordURLSelectedCTID", "CT2269050");
Line Deleted : user_pref("ConduitEngine.AppTrackingLastCheckTime", "Mon May 16 2011 19:52:15 GMT+0200");
Line Deleted : user_pref("ConduitEngine.CTID", "ConduitEngine");
Line Deleted : user_pref("ConduitEngine.DialogsGetterLastCheckTime", "Sun Jun 26 2011 09:35:59 GMT+0200");
Line Deleted : user_pref("ConduitEngine.FirstServerDate", "02/27/2011 17");
Line Deleted : user_pref("ConduitEngine.FirstTime", true);
Line Deleted : user_pref("ConduitEngine.FirstTimeFF3", true);
Line Deleted : user_pref("ConduitEngine.HasUserGlobalKeys", true);
Line Deleted : user_pref("ConduitEngine.Initialize", true);
Line Deleted : user_pref("ConduitEngine.InitializeCommonPrefs", true);
Line Deleted : user_pref("ConduitEngine.InstalledDate", "Sun Feb 27 2011 15:29:16 GMT+0100");
Line Deleted : user_pref("ConduitEngine.IsMulticommunity", false);
Line Deleted : user_pref("ConduitEngine.IsOpenThankYouPage", false);
Line Deleted : user_pref("ConduitEngine.IsOpenUninstallPage", true);
Line Deleted : user_pref("ConduitEngine.LanguagePackLastCheckTime", "Sun Jun 26 2011 09:35:59 GMT+0200");
Line Deleted : user_pref("ConduitEngine.LastLogin_3.2.5.2", "Mon Feb 28 2011 00:15:49 GMT+0100");
Line Deleted : user_pref("ConduitEngine.LastLogin_3.3.3.2", "Sun Jun 26 2011 09:35:59 GMT+0200");
Line Deleted : user_pref("ConduitEngine.SearchFromAddressBarIsInit", true);
Line Deleted : user_pref("ConduitEngine.SettingsLastCheckTime", "Sun Jun 26 2011 09:35:59 GMT+0200");
Line Deleted : user_pref("ConduitEngine.UserID", "UN46258643870642135");
Line Deleted : user_pref("ConduitEngine.componentAlertEnabled", false);
Line Deleted : user_pref("ConduitEngine.engineLocale", "sk");
Line Deleted : user_pref("ConduitEngine.enngineContextMenuLastCheckTime", "Sun Jun 26 2011 09:35:58 GMT+0200");
Line Deleted : user_pref("ConduitEngine.globalFirstTimeInfoLastCheckTime", "Sun Jun 26 2011 09:35:59 GMT+0200");
Line Deleted : user_pref("ConduitEngine.initDone", true);
Line Deleted : user_pref("ConduitEngine.isAppTrackingManagerOn", true);
Line Deleted : user_pref("ConduitEngine.isDetectionEnabled", false);
Line Deleted : user_pref("ConduitEngine.usageEnabled", false);
Line Deleted : user_pref("ConduitEngine.usagesFlag", 2);
Line Deleted : user_pref("browser.search.defaulturl", "hxxp://search.icq.com/search/afe_results.php?ch_id=afex&tb_ver=1.3.1&q=");
Line Deleted : user_pref("extensions.enabledItems", "engine@conduit.com:3.2.5.2,{872b5b88-9db5-4310-bdd0-ac189557e5f5}:3.2.5.2,wrc@avast.com:20110101,toolbar@ask.com:3.11.3.15590,{972ce4c6-7e08-4474-a285-3208198ce6f[...]
Line Deleted : user_pref("extensions.wrc.SearchRules.ask.com.style", ".WRCN {display:none} #yui-main .tsrc_vnru .title + .WRCN, #yui-main #teoma-results .title + .WRCN {display:inline !important; background: url(\"I[...]
Line Deleted : user_pref("extensions.wrc.SearchRules.ask.com.url", "^hxxp(s)?\\:\\/\\/(.+\\.)?ask\\.com\\/.*");
Line Deleted : user_pref("extensions.wrc.SearchRules.rambler.ru.style", ".WRCN {display:none} .search-results .title + .WRCN {display:inline !important; background: url(\"IMAGE\") right no-repeat}");
Line Deleted : user_pref("icqtoolbar.allowSendURL", false);
Line Deleted : user_pref("icqtoolbar.defSearchChange", true);
Line Deleted : user_pref("icqtoolbar.engineVerified", false);
Line Deleted : user_pref("icqtoolbar.firstTbRun", false);
Line Deleted : user_pref("icqtoolbar.geolastmodified", 1351948328);
Line Deleted : user_pref("icqtoolbar.history", "hotel%20beladice||natural%20hairy%20teen||freevideo||pindaros||kypselos||alexis%20bledel||gilmore%20girls||facebook||kleisthenes||google||hxxps%3A%2F%2Fsupport.skype.c[...]
Line Deleted : user_pref("icqtoolbar.hpChange", true);
Line Deleted : user_pref("icqtoolbar.icqgeo", 4201);
Line Deleted : user_pref("icqtoolbar.installTime", "1347265723");
Line Deleted : user_pref("icqtoolbar.installsource", "1");
Line Deleted : user_pref("icqtoolbar.newtab_most_visited_state", "1");
Line Deleted : user_pref("icqtoolbar.newtab_recently_closed_state", "1");
Line Deleted : user_pref("icqtoolbar.newtab_state", "0");
Line Deleted : user_pref("icqtoolbar.numberOfSearches", 0);
Line Deleted : user_pref("icqtoolbar.previousFFVersion", "9.0.1");
Line Deleted : user_pref("icqtoolbar.skip_default_search", "no");
Line Deleted : user_pref("icqtoolbar.uniqueID", "130228375613022836361302284864051");
Line Deleted : user_pref("icqtoolbar.usageStatstTimestamp", 1351948340);
Line Deleted : user_pref("icqtoolbar.userEngineApproved", true);
Line Deleted : user_pref("icqtoolbar.userHpApproved", true);
Line Deleted : user_pref("icqtoolbar.version", "1.5.3");
Line Deleted : user_pref("icqtoolbar.voucherHideClicks", 0);
Line Deleted : user_pref("icqtoolbar.voucherMoreLinkClicks", 0);
Line Deleted : user_pref("icqtoolbar.voucherRedeemClicks", 0);
Line Deleted : user_pref("icqtoolbar.voucherWasShown", 0);
Line Deleted : user_pref("icqtoolbar.xmlEnableHomePageDsGuard", false);
Line Deleted : user_pref("icqtoolbar.xmlLanguage", "sk");
-\\ Google Chrome v
[ File : C:\Users\Achilleas\AppData\Local\Google\Chrome\User Data\Default\preferences ]
*************************
AdwCleaner[R0].txt - [31632 octets] - [11/01/2014 20:09:04]
AdwCleaner[R1].txt - [31693 octets] - [11/01/2014 20:15:33]
AdwCleaner[S0].txt - [30698 octets] - [11/01/2014 20:29:18]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [30759 octets] ##########
# Updated 23/12/2013 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Achilleas - ACHILLEAS-PC
# Running from : C:\Users\Achilleas\Desktop\Downloads\adwcleaner.exe
# Option : Clean
***** [ Services ] *****
[#] Service Deleted : BitGuard
Service Deleted : ICQ Service
***** [ Files / Folders ] *****
Folder Deleted : C:\ProgramData\Babylon
Folder Deleted : C:\ProgramData\BitGuard
Folder Deleted : C:\ProgramData\boost_interprocess
Folder Deleted : C:\ProgramData\clsoft ltd
Folder Deleted : C:\ProgramData\ICQ\ICQToolbar
Folder Deleted : C:\ProgramData\Partner
Folder Deleted : C:\ProgramData\SaveAs
Folder Deleted : C:\ProgramData\Tarma Installer
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SaveAs
Folder Deleted : C:\Program Files (x86)\1ClickDownload
Folder Deleted : C:\Program Files (x86)\ICQ6Toolbar
Folder Deleted : C:\Users\Achilleas\AppData\Local\eSupport.com
Folder Deleted : C:\Users\Achilleas\AppData\LocalLow\Delta
Folder Deleted : C:\Users\Achilleas\AppData\Roaming\Babylon
Folder Deleted : C:\Users\Achilleas\AppData\Roaming\dvdvideosoftiehelpers
Folder Deleted : C:\Users\Achilleas\AppData\Roaming\file scout
Folder Deleted : C:\Users\Achilleas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BitGuard
Folder Deleted : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\Conduit
Folder Deleted : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\ConduitEngine
Folder Deleted : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\ICQToolbarData
Folder Deleted : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\CT2269050
Folder Deleted : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\Extensions\{800B5000-A755-47E1-992B-48A1C1357F07}
Folder Deleted : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\Extensions\{872b5b88-9db5-4310-bdd0-ac189557e5f5}
Folder Deleted : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\Extensions\{ACAA314B-EEBA-48E4-AD47-84E31C44796C}
Folder Deleted : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\Extensions\engine@conduit.com
Folder Deleted : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\Extensions\50fbe849735c6@50fbe849735ff.com
Folder Deleted : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\Extensions\el-GR@dictionaries.addons.mozilla.org
File Deleted : C:\Users\ACHILL~1\AppData\Local\Temp\Uninstall.exe
File Deleted : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\bProtector_extensions.rdf
File Deleted : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\bprotector_extensions.sqlite
File Deleted : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\bprotector_prefs.js
File Deleted : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\searchplugins\Conduit.xml
File Deleted : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\searchplugins\delta.xml
File Deleted : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\searchplugins\icqplugin.xml
File Deleted : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\searchplugins\icqplugin-1.xml
File Deleted : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\searchplugins\icqplugin-10.xml
File Deleted : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\searchplugins\icqplugin-11.xml
File Deleted : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\searchplugins\icqplugin-12.xml
File Deleted : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\searchplugins\icqplugin-13.xml
File Deleted : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\searchplugins\icqplugin-14.xml
File Deleted : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\searchplugins\icqplugin-2.xml
File Deleted : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\searchplugins\icqplugin-3.xml
File Deleted : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\searchplugins\icqplugin-4.xml
File Deleted : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\searchplugins\icqplugin-5.xml
File Deleted : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\searchplugins\icqplugin-6.xml
File Deleted : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\searchplugins\icqplugin-7.xml
File Deleted : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\searchplugins\icqplugin-8.xml
File Deleted : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\searchplugins\icqplugin-9.xml
File Deleted : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\user.js
File Deleted : C:\Users\Achilleas\AppData\Local\Google\Chrome\User Data\Default\bProtector Web Data
File Deleted : C:\Users\Achilleas\AppData\Local\Google\Chrome\User Data\Default\bprotectorpreferences
File Deleted : C:\Users\Achilleas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.delta-search.com_0.localstorage-journal
File Deleted : C:\Windows\System32\Tasks\BitGuard
***** [ Shortcuts ] *****
***** [ Registry ] *****
Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [50fbe849735c6@50fbe849735ff.com]
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\jbpkiefagocgkmemidfngdkamloieekf
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\ICQ\ICQToolBar
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Main [bprotector start page]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes [bProtectorDefaultScope]
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\ICQ Service.exe
Key Deleted : HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE
Key Deleted : HKLM\SOFTWARE\Classes\Applications\ilividsetup.exe
Key Deleted : HKLM\SOFTWARE\Classes\ICQToolBar.IEHook
Key Deleted : HKLM\SOFTWARE\Classes\ICQToolBar.IEHook.1
Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs [bProtectTabs]
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\AskInstallChecker-1_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\AskInstallChecker-1_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasapi32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasmancs
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASMANCS
Key Deleted : HKCU\Software\f28bddbc3bbd49
Key Deleted : HKLM\SOFTWARE\f28bddbc3bbd49
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_dvdfab_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_dvdfab_RASMANCS
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{5D723752-5899-47E8-99B4-62C824EF9E13}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{608D3067-77E8-463D-9084-908966806826}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{007EFBDF-8A5D-4930-97CC-A4B437CBA777}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{855F3B16-6D32-4FE6-8A56-BBB695989046}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{07CAC314-E962-4F78-89AB-DD002F2490EE}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{13ABD093-D46F-40DF-A608-47E162EC799D}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{855F3B16-6D32-4FE6-8A56-BBB695989046}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{82E1477C-B154-48D3-9891-33D83C26BCD3}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{855F3B16-6D32-4FE6-8A56-BBB695989046}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Explorer Bars\{855F3B16-6D32-4FE6-8A56-BBB695989046}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}]
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Key Deleted : HKCU\Software\1ClickDownload
Key Deleted : HKCU\Software\BabSolution
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\DataMngr
Key Deleted : HKCU\Software\filescout
Key Deleted : HKCU\Software\ICQ\ICQToolbar
Key Deleted : HKCU\Software\Softonic
Key Deleted : HKCU\Software\AppDataLow\SProtector
Key Deleted : HKLM\Software\Babylon
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\Software\DataMngr
Key Deleted : HKLM\Software\ICQ\ICQToolbar
Key Deleted : HKLM\Software\SProtector
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{15D2D75C-9CB2-4EFD-BAD7-B9B4CB4BC693}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ICQToolbar
Key Deleted : [x64] HKLM\SOFTWARE\Tarma Installer
***** [ Browsers ] *****
-\\ Internet Explorer v10.0.9200.16750
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]
-\\ Mozilla Firefox v
[ File : C:\Users\Achilleas\AppData\Roaming\Mozilla\Firefox\Profiles\ugqmmks6.default\prefs.js ]
Line Deleted : user_pref("CT2269050..clientLogIsEnabled", true);
Line Deleted : user_pref("CT2269050..clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.asmx/ReportDiagnosticsEvent");
Line Deleted : user_pref("CT2269050..uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/RegisterToolbarUninstallation");
Line Deleted : user_pref("CT2269050.ALLOW_SHOWING_HIDDEN_TOOLBAR", false);
Line Deleted : user_pref("CT2269050.AboutPrivacyUrl", "hxxp://www.conduit.com/privacy/Default.aspx");
Line Deleted : user_pref("CT2269050.BrowserCompStateIsOpen_129681780741097243", true);
Line Deleted : user_pref("CT2269050.BrowserCompStateIsOpen_129881141106886992", true);
Line Deleted : user_pref("CT2269050.CTID", "CT2269050");
Line Deleted : user_pref("CT2269050.CurrentServerDate", "3-11-2012");
Line Deleted : user_pref("CT2269050.DialogsAlignMode", "LTR");
Line Deleted : user_pref("CT2269050.DialogsGetterLastCheckTime", "Sat Nov 03 2012 14:12:37 GMT+0100");
Line Deleted : user_pref("CT2269050.DownloadReferralCookieData", "");
Line Deleted : user_pref("CT2269050.EMailNotifierPollDate", "Sat Feb 26 2011 13:19:48 GMT+0100");
Line Deleted : user_pref("CT2269050.FirstServerDate", "26-2-2011");
Line Deleted : user_pref("CT2269050.FirstTime", true);
Line Deleted : user_pref("CT2269050.FirstTimeFF3", true);
Line Deleted : user_pref("CT2269050.FirstTimeSettingsDone", true);
Line Deleted : user_pref("CT2269050.FixPageNotFoundErrors", true);
Line Deleted : user_pref("CT2269050.GroupingServerCheckInterval", 1440);
Line Deleted : user_pref("CT2269050.GroupingServiceUrl", "hxxp://grouping.services.conduit.com/");
Line Deleted : user_pref("CT2269050.HasUserGlobalKeys", true);
Line Deleted : user_pref("CT2269050.Initialize", true);
Line Deleted : user_pref("CT2269050.InitializeCommonPrefs", true);
Line Deleted : user_pref("CT2269050.InstallationAndCookieDataSentCount", 3);
Line Deleted : user_pref("CT2269050.InstallationType", "UnknownIntegration");
Line Deleted : user_pref("CT2269050.InstalledDate", "Sat Feb 26 2011 13:19:48 GMT+0100");
Line Deleted : user_pref("CT2269050.InvalidateCache", false);
Line Deleted : user_pref("CT2269050.IsGrouping", false);
Line Deleted : user_pref("CT2269050.IsMulticommunity", false);
Line Deleted : user_pref("CT2269050.IsOpenThankYouPage", false);
Line Deleted : user_pref("CT2269050.IsOpenUninstallPage", false);
Line Deleted : user_pref("CT2269050.LanguagePackLastCheckTime", "Sat Nov 03 2012 14:12:37 GMT+0100");
Line Deleted : user_pref("CT2269050.LanguagePackReloadIntervalMM", 1440);
Line Deleted : user_pref("CT2269050.LanguagePackServiceUrl", "hxxp://translation.users.conduit.com/Translation.ashx");
Line Deleted : user_pref("CT2269050.LastLogin_2.7.0.14", "Sat Feb 26 2011 13:20:29 GMT+0100");
Line Deleted : user_pref("CT2269050.LastLogin_3.14.1.0", "Mon Sep 10 2012 10:29:17 GMT+0200");
Line Deleted : user_pref("CT2269050.LastLogin_3.15.1.0", "Sat Nov 03 2012 14:12:30 GMT+0100");
Line Deleted : user_pref("CT2269050.LatestVersion", "3.15.1.0");
Line Deleted : user_pref("CT2269050.Locale", "en");
Line Deleted : user_pref("CT2269050.LoginCache", 4);
Line Deleted : user_pref("CT2269050.MCDetectTooltipHeight", "83");
Line Deleted : user_pref("CT2269050.MCDetectTooltipUrl", "hxxp://@EB_INSTALL_LINK@/rank/tooltip/?version=1");
Line Deleted : user_pref("CT2269050.MCDetectTooltipWidth", "295");
Line Deleted : user_pref("CT2269050.MyStuffEnabledAtInstallation", true);
Line Deleted : user_pref("CT2269050.RadioIsPodcast", false);
Line Deleted : user_pref("CT2269050.RadioLastCheckTime", "Sat Feb 26 2011 13:19:52 GMT+0100");
Line Deleted : user_pref("CT2269050.RadioLastUpdateIPServer", "3");
Line Deleted : user_pref("CT2269050.RadioLastUpdateServer", "129132338014870000");
Line Deleted : user_pref("CT2269050.RadioMediaID", "12473383");
Line Deleted : user_pref("CT2269050.RadioMediaType", "Media Player");
Line Deleted : user_pref("CT2269050.RadioMenuSelectedID", "EBRadioMenu_CT226905012473383");
Line Deleted : user_pref("CT2269050.RadioStationName", "Hotmix%20108");
Line Deleted : user_pref("CT2269050.RadioStationURL", "hxxp://67.202.67.18:8082");
Line Deleted : user_pref("CT2269050.SavedHomepage", "hxxp://www.google.sk/");
Line Deleted : user_pref("CT2269050.SearchEngine", "Search||hxxp://search.conduit.com/Results.aspx?q=UCM_SEARCH_TERM&ctid=CT2269050&octid=EB_ORIGINAL_CTID&SearchSource=1");
Line Deleted : user_pref("CT2269050.SearchFromAddressBarIsInit", true);
Line Deleted : user_pref("CT2269050.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2269050&q=");
Line Deleted : user_pref("CT2269050.SearchInNewTabEnabled", true);
Line Deleted : user_pref("CT2269050.SearchInNewTabIntervalMM", 1440);
Line Deleted : user_pref("CT2269050.SearchInNewTabLastCheckTime", "Sat Nov 03 2012 14:12:25 GMT+0100");
Line Deleted : user_pref("CT2269050.SearchInNewTabServiceUrl", "hxxp://newtab.conduit-hosting.com/newtab/?ctid=EB_TOOLBAR_ID");
Line Deleted : user_pref("CT2269050.SearchInNewTabUsageUrl", "hxxp://Usage.Hosting.conduit-services.com/UsageService.asmx/UsersRequests?ctid=EB_TOOLBAR_ID");
Line Deleted : user_pref("CT2269050.ServiceMapLastCheckTime", "Sat Nov 03 2012 14:12:20 GMT+0100");
Line Deleted : user_pref("CT2269050.SettingsCheckIntervalMin", 120);
Line Deleted : user_pref("CT2269050.SettingsLastCheckTime", "Sat Nov 03 2012 14:12:17 GMT+0100");
Line Deleted : user_pref("CT2269050.SettingsLastUpdate", "1351258177");
Line Deleted : user_pref("CT2269050.ThirdPartyComponentsInterval", 504);
Line Deleted : user_pref("CT2269050.ThirdPartyComponentsLastCheck", "Sat Feb 26 2011 13:19:46 GMT+0100");
Line Deleted : user_pref("CT2269050.ThirdPartyComponentsLastUpdate", "1246790578");
Line Deleted : user_pref("CT2269050.ToolbarShrinkedFromSetup", false);
Line Deleted : user_pref("CT2269050.TrusteLinkUrl", "hxxp://trust.conduit.com/CT2269050");
Line Deleted : user_pref("CT2269050.TrustedApiDomains", "conduit.com,conduit-hosting.com,conduit-services.com,client.conduit-storage.com,OurToolbar.com,CommunityToolbars.com,ForumToolbar.com,MyBlogToolbar.com,MyCity[...]
Line Deleted : user_pref("CT2269050.UserID", "UN33919146042207456");
Line Deleted : user_pref("CT2269050.WeatherPollDate", "Sat Feb 26 2011 13:20:41 GMT+0100");
Line Deleted : user_pref("CT2269050.WeatherUnit", "C");
Line Deleted : user_pref("CT2269050.alertChannelId", "666138");
Line Deleted : user_pref("CT2269050.clientLogIsEnabled", true);
Line Deleted : user_pref("CT2269050.clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.asmx/ReportDiagnosticsEvent");
Line Deleted : user_pref("CT2269050.generalConfigFromLogin", "{\"ApiMaxAlerts\":\"12\",\"SocialDomains\":\"social.conduit.com;apps.conduit.com;services.apps.conduit.com\",\"AppsDetectionUrlPattern\":\"hxxp://appdown[...]
Line Deleted : user_pref("CT2269050.homepageProtectorEnableByLogin", true);
Line Deleted : user_pref("CT2269050.initDone", true);
Line Deleted : user_pref("CT2269050.myStuffEnabled", true);
Line Deleted : user_pref("CT2269050.myStuffPublihserMinWidth", 400);
Line Deleted : user_pref("CT2269050.myStuffSearchUrl", "hxxp://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOrigin=29&ctid=EB_TOOLBAR_ID&octid=EB_ORIGINAL_CTID");
Line Deleted : user_pref("CT2269050.myStuffServiceIntervalMM", 1440);
Line Deleted : user_pref("CT2269050.myStuffServiceUrl", "hxxp://mystuff.conduit-services.com/MyStuffService.ashx?ComponentId=EB_MY_STUFF_INSTANCE_GUID&lut=EB_MY_STUFF_LUT");
Line Deleted : user_pref("CT2269050.revertSettingsEnabled", true);
Line Deleted : user_pref("CT2269050.searchProtectorDialogDelayInSec", 10);
Line Deleted : user_pref("CT2269050.searchProtectorEnableByLogin", true);
Line Deleted : user_pref("CT2269050.testingCtid", "");
Line Deleted : user_pref("CT2269050.toolbarAppMetaDataLastCheckTime", "Sat Nov 03 2012 14:12:37 GMT+0100");
Line Deleted : user_pref("CT2269050.uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/RegisterToolbarUninstallation");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://Settings.toolbar.search.conduit. ... /CT2269050", "\"8b21bd5c4b32b0c462ab74e200c6202c3\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root ... /661999/SK", "\"0\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root ... /905414/SK", "\"0\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-ser ... =CT2269050", "\"1343640511\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.alert.conduit-ser ... rt/dlg.pkg", "\"803651ba7facb1:0\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.engine.conduit-se ... er=3.3.3.2", "\"807dc126dd28cc1:0\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-s ... r=3.14.1.0", "\"0e0a4327275cd1:0\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-s ... r=3.15.1.0", "\"0343677cfb1cd1:0\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/ ... =CT2269050", "\"f1c77625c0e9bd1c80a2fd6901845fa9\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services ... r=FF&lut=0", "634339976460000000");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services ... =2/22/2011 6:54:06 PM", "634356118310000000");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services ... =3/13/2011 11:17:11 AM", "634356118310000000");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-serv ... ?locale=en", "\"df6544b56d98f460c88583ff34efa914\"");
Line Deleted : user_pref("CommunityToolbar.EngineOwner", "ConduitEngine");
Line Deleted : user_pref("CommunityToolbar.EngineOwnerGuid", "engine@conduit.com");
Line Deleted : user_pref("CommunityToolbar.EngineOwnerToolbarId", "conduitengine");
Line Deleted : user_pref("CommunityToolbar.IsEngineShown", true);
Line Deleted : user_pref("CommunityToolbar.IsMyStuffImportedToEngine", true);
Line Deleted : user_pref("CommunityToolbar.OriginalEngineOwner", "ConduitEngine");
Line Deleted : user_pref("CommunityToolbar.OriginalEngineOwnerGuid", "engine@conduit.com");
Line Deleted : user_pref("CommunityToolbar.OriginalEngineOwnerToolbarId", "conduitengine");
Line Deleted : user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "chrome://browser-region/locale/region.properties");
Line Deleted : user_pref("CommunityToolbar.ToolbarsList", "CT2269050,ConduitEngine");
Line Deleted : user_pref("CommunityToolbar.ToolbarsList2", "CT2269050");
Line Deleted : user_pref("CommunityToolbar.alert.alertDialogsGetterLastCheckTime", "Thu Jun 09 2011 22:13:08 GMT+0200");
Line Deleted : user_pref("CommunityToolbar.alert.alertEnabled", false);
Line Deleted : user_pref("CommunityToolbar.alert.alertInfoInterval", 60);
Line Deleted : user_pref("CommunityToolbar.alert.alertInfoLastCheckTime", "Mon Feb 28 2011 00:15:32 GMT+0100");
Line Deleted : user_pref("CommunityToolbar.alert.clientsServerUrl", "hxxp://alert.client.conduit.com");
Line Deleted : user_pref("CommunityToolbar.alert.locale", "en");
Line Deleted : user_pref("CommunityToolbar.alert.loginIntervalMin", 1440);
Line Deleted : user_pref("CommunityToolbar.alert.loginLastCheckTime", "Sun Jun 26 2011 09:35:58 GMT+0200");
Line Deleted : user_pref("CommunityToolbar.alert.loginLastUpdateTime", "1305622559");
Line Deleted : user_pref("CommunityToolbar.alert.messageShowTimeSec", 20);
Line Deleted : user_pref("CommunityToolbar.alert.servicesServerUrl", "hxxp://alert.services.conduit.com");
Line Deleted : user_pref("CommunityToolbar.alert.showTrayIcon", false);
Line Deleted : user_pref("CommunityToolbar.alert.userCloseIntervalMin", 300);
Line Deleted : user_pref("CommunityToolbar.alert.userId", "{46d5257d-740c-4bc7-84bc-d3952bec8e08}");
Line Deleted : user_pref("CommunityToolbar.globalUserId", "28202155-01f3-4522-8f0c-93a15765237b");
Line Deleted : user_pref("CommunityToolbar.isAlertUrlAddedToFeedItemTable", true);
Line Deleted : user_pref("CommunityToolbar.isClickActionAddedToFeedItemTable", true);
Line Deleted : user_pref("CommunityToolbar.keywordURLSelectedCTID", "CT2269050");
Line Deleted : user_pref("ConduitEngine.AppTrackingLastCheckTime", "Mon May 16 2011 19:52:15 GMT+0200");
Line Deleted : user_pref("ConduitEngine.CTID", "ConduitEngine");
Line Deleted : user_pref("ConduitEngine.DialogsGetterLastCheckTime", "Sun Jun 26 2011 09:35:59 GMT+0200");
Line Deleted : user_pref("ConduitEngine.FirstServerDate", "02/27/2011 17");
Line Deleted : user_pref("ConduitEngine.FirstTime", true);
Line Deleted : user_pref("ConduitEngine.FirstTimeFF3", true);
Line Deleted : user_pref("ConduitEngine.HasUserGlobalKeys", true);
Line Deleted : user_pref("ConduitEngine.Initialize", true);
Line Deleted : user_pref("ConduitEngine.InitializeCommonPrefs", true);
Line Deleted : user_pref("ConduitEngine.InstalledDate", "Sun Feb 27 2011 15:29:16 GMT+0100");
Line Deleted : user_pref("ConduitEngine.IsMulticommunity", false);
Line Deleted : user_pref("ConduitEngine.IsOpenThankYouPage", false);
Line Deleted : user_pref("ConduitEngine.IsOpenUninstallPage", true);
Line Deleted : user_pref("ConduitEngine.LanguagePackLastCheckTime", "Sun Jun 26 2011 09:35:59 GMT+0200");
Line Deleted : user_pref("ConduitEngine.LastLogin_3.2.5.2", "Mon Feb 28 2011 00:15:49 GMT+0100");
Line Deleted : user_pref("ConduitEngine.LastLogin_3.3.3.2", "Sun Jun 26 2011 09:35:59 GMT+0200");
Line Deleted : user_pref("ConduitEngine.SearchFromAddressBarIsInit", true);
Line Deleted : user_pref("ConduitEngine.SettingsLastCheckTime", "Sun Jun 26 2011 09:35:59 GMT+0200");
Line Deleted : user_pref("ConduitEngine.UserID", "UN46258643870642135");
Line Deleted : user_pref("ConduitEngine.componentAlertEnabled", false);
Line Deleted : user_pref("ConduitEngine.engineLocale", "sk");
Line Deleted : user_pref("ConduitEngine.enngineContextMenuLastCheckTime", "Sun Jun 26 2011 09:35:58 GMT+0200");
Line Deleted : user_pref("ConduitEngine.globalFirstTimeInfoLastCheckTime", "Sun Jun 26 2011 09:35:59 GMT+0200");
Line Deleted : user_pref("ConduitEngine.initDone", true);
Line Deleted : user_pref("ConduitEngine.isAppTrackingManagerOn", true);
Line Deleted : user_pref("ConduitEngine.isDetectionEnabled", false);
Line Deleted : user_pref("ConduitEngine.usageEnabled", false);
Line Deleted : user_pref("ConduitEngine.usagesFlag", 2);
Line Deleted : user_pref("browser.search.defaulturl", "hxxp://search.icq.com/search/afe_results.php?ch_id=afex&tb_ver=1.3.1&q=");
Line Deleted : user_pref("extensions.enabledItems", "engine@conduit.com:3.2.5.2,{872b5b88-9db5-4310-bdd0-ac189557e5f5}:3.2.5.2,wrc@avast.com:20110101,toolbar@ask.com:3.11.3.15590,{972ce4c6-7e08-4474-a285-3208198ce6f[...]
Line Deleted : user_pref("extensions.wrc.SearchRules.ask.com.style", ".WRCN {display:none} #yui-main .tsrc_vnru .title + .WRCN, #yui-main #teoma-results .title + .WRCN {display:inline !important; background: url(\"I[...]
Line Deleted : user_pref("extensions.wrc.SearchRules.ask.com.url", "^hxxp(s)?\\:\\/\\/(.+\\.)?ask\\.com\\/.*");
Line Deleted : user_pref("extensions.wrc.SearchRules.rambler.ru.style", ".WRCN {display:none} .search-results .title + .WRCN {display:inline !important; background: url(\"IMAGE\") right no-repeat}");
Line Deleted : user_pref("icqtoolbar.allowSendURL", false);
Line Deleted : user_pref("icqtoolbar.defSearchChange", true);
Line Deleted : user_pref("icqtoolbar.engineVerified", false);
Line Deleted : user_pref("icqtoolbar.firstTbRun", false);
Line Deleted : user_pref("icqtoolbar.geolastmodified", 1351948328);
Line Deleted : user_pref("icqtoolbar.history", "hotel%20beladice||natural%20hairy%20teen||freevideo||pindaros||kypselos||alexis%20bledel||gilmore%20girls||facebook||kleisthenes||google||hxxps%3A%2F%2Fsupport.skype.c[...]
Line Deleted : user_pref("icqtoolbar.hpChange", true);
Line Deleted : user_pref("icqtoolbar.icqgeo", 4201);
Line Deleted : user_pref("icqtoolbar.installTime", "1347265723");
Line Deleted : user_pref("icqtoolbar.installsource", "1");
Line Deleted : user_pref("icqtoolbar.newtab_most_visited_state", "1");
Line Deleted : user_pref("icqtoolbar.newtab_recently_closed_state", "1");
Line Deleted : user_pref("icqtoolbar.newtab_state", "0");
Line Deleted : user_pref("icqtoolbar.numberOfSearches", 0);
Line Deleted : user_pref("icqtoolbar.previousFFVersion", "9.0.1");
Line Deleted : user_pref("icqtoolbar.skip_default_search", "no");
Line Deleted : user_pref("icqtoolbar.uniqueID", "130228375613022836361302284864051");
Line Deleted : user_pref("icqtoolbar.usageStatstTimestamp", 1351948340);
Line Deleted : user_pref("icqtoolbar.userEngineApproved", true);
Line Deleted : user_pref("icqtoolbar.userHpApproved", true);
Line Deleted : user_pref("icqtoolbar.version", "1.5.3");
Line Deleted : user_pref("icqtoolbar.voucherHideClicks", 0);
Line Deleted : user_pref("icqtoolbar.voucherMoreLinkClicks", 0);
Line Deleted : user_pref("icqtoolbar.voucherRedeemClicks", 0);
Line Deleted : user_pref("icqtoolbar.voucherWasShown", 0);
Line Deleted : user_pref("icqtoolbar.xmlEnableHomePageDsGuard", false);
Line Deleted : user_pref("icqtoolbar.xmlLanguage", "sk");
-\\ Google Chrome v
[ File : C:\Users\Achilleas\AppData\Local\Google\Chrome\User Data\Default\preferences ]
*************************
AdwCleaner[R0].txt - [31632 octets] - [11/01/2014 20:09:04]
AdwCleaner[R1].txt - [31693 octets] - [11/01/2014 20:15:33]
AdwCleaner[S0].txt - [30698 octets] - [11/01/2014 20:29:18]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [30759 octets] ##########
-
Damned
- Tvůrce článků
-
Master Level 9
- Příspěvky: 8353
- Registrován: prosinec 06
- Bydliště: Rokycany
- Pohlaví:
- Stav:
Offline
- Kontakt:
Re: Kontrola Log - minerd.exe
Fajn, ještě JunkRemovalTool
Nic není nemožné, proto tam, kde jsme s rozumem v koncích, neváháme použít kladivo.
Chceš-li vědět, co je nového, podívej se do starých knih.
Damnedovy češtiny - překlady programů pro údržbu PC
HiJackThis 2+návod FCleaner+čeština Wise Registry Cleaner
Chceš-li vědět, co je nového, podívej se do starých knih.
Damnedovy češtiny - překlady programů pro údržbu PC
HiJackThis 2+návod FCleaner+čeština Wise Registry Cleaner
-
arathorn11
- nováček
- Příspěvky: 19
- Registrován: leden 14
- Pohlaví:
- Stav:
Offline
Re: Kontrola Log - minerd.exe
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.0 (01.07.2014:1)
OS: Windows 7 Home Premium x64
Ran by Achilleas on so 11. 01. 2014 at 20:36:19,90
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
~~~ Registry Values
~~~ Registry Keys
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-2084938411-882540061-459291870-1000\Software\sweetim
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\sweetim
~~~ Files
~~~ Folders
Successfully deleted: [Empty Folder] C:\Users\Achilleas\appdata\local\{1519628E-5F9C-4AAE-A086-FFE45157B4DD}
Successfully deleted: [Empty Folder] C:\Users\Achilleas\appdata\local\{3A078A15-93F3-4696-9CD6-94BF33BEEE34}
Successfully deleted: [Empty Folder] C:\Users\Achilleas\appdata\local\{4CA5A64C-0C72-4B88-81A3-04D320415190}
Successfully deleted: [Empty Folder] C:\Users\Achilleas\appdata\local\{6A82D448-5975-437C-B886-C252F57296F7}
Successfully deleted: [Empty Folder] C:\Users\Achilleas\appdata\local\{9881D360-7FFC-412C-B9A2-52AE50D761FC}
Successfully deleted: [Empty Folder] C:\Users\Achilleas\appdata\local\{A838BFF7-3099-44AD-934F-45B3D7535653}
Successfully deleted: [Empty Folder] C:\Users\Achilleas\appdata\local\{AEF7773F-5DE3-4A12-92B1-72BCACC18151}
Successfully deleted: [Empty Folder] C:\Users\Achilleas\appdata\local\{C5187057-4572-468A-BE70-0A04BED5DA38}
Successfully deleted: [Empty Folder] C:\Users\Achilleas\appdata\local\{D6C2E52B-A845-45BE-B29B-492C0F871A57}
Successfully deleted: [Empty Folder] C:\Users\Achilleas\appdata\local\{E0257E22-3DB1-43E1-AE35-FA74348C16B6}
Successfully deleted: [Empty Folder] C:\Users\Achilleas\appdata\local\{EE07FEB4-D59C-40ED-9AAF-7E93DC38BA3F}
Successfully deleted: [Empty Folder] C:\Users\Achilleas\appdata\local\{EF01B941-C21C-4885-BCB4-62980B2A6777}
Successfully deleted: [Empty Folder] C:\Users\Achilleas\appdata\local\{FBFC2386-915A-435A-BA2E-0A6A0871694A}
~~~ Event Viewer Logs were cleared
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on so 11. 01. 2014 at 20:47:28,10
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.0 (01.07.2014:1)
OS: Windows 7 Home Premium x64
Ran by Achilleas on so 11. 01. 2014 at 20:36:19,90
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
~~~ Registry Values
~~~ Registry Keys
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-2084938411-882540061-459291870-1000\Software\sweetim
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\sweetim
~~~ Files
~~~ Folders
Successfully deleted: [Empty Folder] C:\Users\Achilleas\appdata\local\{1519628E-5F9C-4AAE-A086-FFE45157B4DD}
Successfully deleted: [Empty Folder] C:\Users\Achilleas\appdata\local\{3A078A15-93F3-4696-9CD6-94BF33BEEE34}
Successfully deleted: [Empty Folder] C:\Users\Achilleas\appdata\local\{4CA5A64C-0C72-4B88-81A3-04D320415190}
Successfully deleted: [Empty Folder] C:\Users\Achilleas\appdata\local\{6A82D448-5975-437C-B886-C252F57296F7}
Successfully deleted: [Empty Folder] C:\Users\Achilleas\appdata\local\{9881D360-7FFC-412C-B9A2-52AE50D761FC}
Successfully deleted: [Empty Folder] C:\Users\Achilleas\appdata\local\{A838BFF7-3099-44AD-934F-45B3D7535653}
Successfully deleted: [Empty Folder] C:\Users\Achilleas\appdata\local\{AEF7773F-5DE3-4A12-92B1-72BCACC18151}
Successfully deleted: [Empty Folder] C:\Users\Achilleas\appdata\local\{C5187057-4572-468A-BE70-0A04BED5DA38}
Successfully deleted: [Empty Folder] C:\Users\Achilleas\appdata\local\{D6C2E52B-A845-45BE-B29B-492C0F871A57}
Successfully deleted: [Empty Folder] C:\Users\Achilleas\appdata\local\{E0257E22-3DB1-43E1-AE35-FA74348C16B6}
Successfully deleted: [Empty Folder] C:\Users\Achilleas\appdata\local\{EE07FEB4-D59C-40ED-9AAF-7E93DC38BA3F}
Successfully deleted: [Empty Folder] C:\Users\Achilleas\appdata\local\{EF01B941-C21C-4885-BCB4-62980B2A6777}
Successfully deleted: [Empty Folder] C:\Users\Achilleas\appdata\local\{FBFC2386-915A-435A-BA2E-0A6A0871694A}
~~~ Event Viewer Logs were cleared
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on so 11. 01. 2014 at 20:47:28,10
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
-
Damned
- Tvůrce článků
-
Master Level 9
- Příspěvky: 8353
- Registrován: prosinec 06
- Bydliště: Rokycany
- Pohlaví:
- Stav:
Offline
- Kontakt:
Re: Kontrola Log - minerd.exe
Stáhni si DelFix a uloži si ho na Plochu.
Poklepáním na ikonu spusť nástroj Delfix.exe
( Ve Windows Vista, Windows 7 a 8, musíš spustit soubor pravým tlačítkem myši -> Spustit jako správce).
V hlavním menu, zkontroluj tyto možnosti - Odstranění dezinfekce nástrojů (Remove desinfection tools) – Vyčistit body obnovy (Purge System Restore)
Poté klikněte na tlačítko Spustit (Run) a nech nástroj dělat svoji práci
Poté se zpráva se otevře (DelFix.txt). Vlož celý obsah zprávy sem.Jinak je zpráva zde:
v C: \ DelFix.txt
********************************************************************************************************************************************************************************
Stáhni si Malwarebytes' Anti-Malware
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti: Aktualizace Malwarebytes' Anti-Malware a Spustit aplikaci Malwarebytes' Anti-Malware, pokud jo tak klikni na tlačítko Konec.
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje a poté kliknutím na OK spusť program
- nech vybranou možnost Rychlá kontrola a klikni na tlačítko Prohledat
Bude-li nalezen problém:
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Zobrazit výsledky
- pak zvol možnost Uložit protokol a ulož si log na Plochu
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
- výsledný log mi sem zkopíruj
(zatím nic nemaž!).
Nebude-li nalezen problém:
- Klikni na tlačítko "OK" a sděl mi to
Poklepáním na ikonu spusť nástroj Delfix.exe
( Ve Windows Vista, Windows 7 a 8, musíš spustit soubor pravým tlačítkem myši -> Spustit jako správce).
V hlavním menu, zkontroluj tyto možnosti - Odstranění dezinfekce nástrojů (Remove desinfection tools) – Vyčistit body obnovy (Purge System Restore)
Poté klikněte na tlačítko Spustit (Run) a nech nástroj dělat svoji práci
Poté se zpráva se otevře (DelFix.txt). Vlož celý obsah zprávy sem.Jinak je zpráva zde:
v C: \ DelFix.txt
********************************************************************************************************************************************************************************
Stáhni si Malwarebytes' Anti-Malware
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti: Aktualizace Malwarebytes' Anti-Malware a Spustit aplikaci Malwarebytes' Anti-Malware, pokud jo tak klikni na tlačítko Konec.
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje a poté kliknutím na OK spusť program
- nech vybranou možnost Rychlá kontrola a klikni na tlačítko Prohledat
Bude-li nalezen problém:
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Zobrazit výsledky
- pak zvol možnost Uložit protokol a ulož si log na Plochu
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
- výsledný log mi sem zkopíruj
(zatím nic nemaž!).
Nebude-li nalezen problém:
- Klikni na tlačítko "OK" a sděl mi to
Nic není nemožné, proto tam, kde jsme s rozumem v koncích, neváháme použít kladivo.
Chceš-li vědět, co je nového, podívej se do starých knih.
Damnedovy češtiny - překlady programů pro údržbu PC
HiJackThis 2+návod FCleaner+čeština Wise Registry Cleaner
Chceš-li vědět, co je nového, podívej se do starých knih.
Damnedovy češtiny - překlady programů pro údržbu PC
HiJackThis 2+návod FCleaner+čeština Wise Registry Cleaner
-
arathorn11
- nováček
- Příspěvky: 19
- Registrován: leden 14
- Pohlaví:
- Stav:
Offline
Re: Kontrola Log - minerd.exe
# DelFix v10.6 - Logfile created 11/01/2014 at 20:54:51
# Updated 11/11/2013 by Xplode
# Username : Achilleas - ACHILLEAS-PC
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
~ Removing disinfection tools ...
Deleted : C:\AdwCleaner
Deleted : C:\Program Files (x86)\Trend Micro\Hijackthis
Deleted : C:\Users\Achilleas\Desktop\JRT.txt
Deleted : C:\Users\Achilleas\Desktop\HiJackThis.lnk
Deleted : C:\Users\Achilleas\Desktop\hijackthis.log
Deleted : HKLM\SOFTWARE\AdwCleaner
Deleted : HKLM\SOFTWARE\TrendMicro\Hijackthis
~ Cleaning system restore ...
Deleted : RP #408 [Removed AVG 2013 | 01/10/2014 14:07:17]
Deleted : RP #409 [Windows Update | 01/10/2014 19:01:18]
Deleted : RP #410 [Installed SpyHunter | 01/11/2014 14:12:40]
Deleted : RP #411 [Removed SpyHunter | 01/11/2014 15:05:24]
Deleted : RP #412 [avast! antivirus system restore point | 01/11/2014 15:11:35]
Deleted : RP #413 [Inštalácia balíka ovládačov zariadenia: Avast Sieťová služba | 01/11/2014 15:17:54]
Deleted : RP #414 [Installed HiJackThis | 01/11/2014 16:28:57]
New restore point created !
########## - EOF - ##########
# Updated 11/11/2013 by Xplode
# Username : Achilleas - ACHILLEAS-PC
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
~ Removing disinfection tools ...
Deleted : C:\AdwCleaner
Deleted : C:\Program Files (x86)\Trend Micro\Hijackthis
Deleted : C:\Users\Achilleas\Desktop\JRT.txt
Deleted : C:\Users\Achilleas\Desktop\HiJackThis.lnk
Deleted : C:\Users\Achilleas\Desktop\hijackthis.log
Deleted : HKLM\SOFTWARE\AdwCleaner
Deleted : HKLM\SOFTWARE\TrendMicro\Hijackthis
~ Cleaning system restore ...
Deleted : RP #408 [Removed AVG 2013 | 01/10/2014 14:07:17]
Deleted : RP #409 [Windows Update | 01/10/2014 19:01:18]
Deleted : RP #410 [Installed SpyHunter | 01/11/2014 14:12:40]
Deleted : RP #411 [Removed SpyHunter | 01/11/2014 15:05:24]
Deleted : RP #412 [avast! antivirus system restore point | 01/11/2014 15:11:35]
Deleted : RP #413 [Inštalácia balíka ovládačov zariadenia: Avast Sieťová služba | 01/11/2014 15:17:54]
Deleted : RP #414 [Installed HiJackThis | 01/11/2014 16:28:57]
New restore point created !
########## - EOF - ##########
-
arathorn11
- nováček
- Příspěvky: 19
- Registrován: leden 14
- Pohlaví:
- Stav:
Offline
Re: Kontrola Log - minerd.exe
Malwarebytes Anti-Malware (Skúšobná verzia) 1.75.0.1300
www.malwarebytes.org
Verzia databázy: v2014.01.11.06
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16750
Achilleas :: ACHILLEAS-PC [administrátor]
Ochrana: Zapnuté
11. 1. 2014 21:02:38
MBAM-log-2014-01-11 (21-09-51).txt
Typ kontroly: Rýchla kontrola
Možnosti kontroly zapnuté: Pamäť | Po spustení | Registre | Systémové súbory | Heuristika/Extra | Heuristika/Shuriken | PUP | PUM
Možnosti kontroly vypnuté: P2P
Objektov kontrolovaných: 216087
Uplynutý čas: 6 min, 49 sek
Detegované služby pamäte: 0
(Škodlivé položky neboli zistené)
Detegované moduly pamäte: 0
(Škodlivé položky neboli zistené)
Detegované registračné kľúče: 1
HKLM\SYSTEM\CurrentControlSet\Services\userinit (Trojan.Agent) -> Žiadna úloha nevykonaná.
Detegované registračné hodnoty: 0
(Škodlivé položky neboli zistené)
Detegované položky registračných dát: 0
(Škodlivé položky neboli zistené)
Detegované priečinky: 1
C:\Users\Public\Public (Trojan.BitcoinMiner) -> Žiadna úloha nevykonaná.
Detegované súbory: 10
C:\Users\Public\Public\mining_proxy.exe (PUP.Proxy.BCM) -> Žiadna úloha nevykonaná.
C:\Windows\inf\ntvdm.inf (Malware.Trace) -> Žiadna úloha nevykonaná.
C:\Users\Public\Public\run.vbs (Trojan.BitcoinMiner) -> Žiadna úloha nevykonaná.
C:\Users\Public\Public\game.bat (Trojan.BitcoinMiner) -> Žiadna úloha nevykonaná.
C:\Users\Public\Public\game.vbs (Trojan.BitcoinMiner) -> Žiadna úloha nevykonaná.
C:\Users\Public\Public\libcurl.dll (Trojan.BitcoinMiner) -> Žiadna úloha nevykonaná.
C:\Users\Public\Public\mining_proxy.exe (Trojan.BitcoinMiner) -> Žiadna úloha nevykonaná.
C:\Users\Public\Public\pthreadGC2.dll (Trojan.BitcoinMiner) -> Žiadna úloha nevykonaná.
C:\Users\Public\Public\run.bat (Trojan.BitcoinMiner) -> Žiadna úloha nevykonaná.
C:\Users\Public\Public\zlib1.dll (Trojan.BitcoinMiner) -> Žiadna úloha nevykonaná.
(koniec)
www.malwarebytes.org
Verzia databázy: v2014.01.11.06
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16750
Achilleas :: ACHILLEAS-PC [administrátor]
Ochrana: Zapnuté
11. 1. 2014 21:02:38
MBAM-log-2014-01-11 (21-09-51).txt
Typ kontroly: Rýchla kontrola
Možnosti kontroly zapnuté: Pamäť | Po spustení | Registre | Systémové súbory | Heuristika/Extra | Heuristika/Shuriken | PUP | PUM
Možnosti kontroly vypnuté: P2P
Objektov kontrolovaných: 216087
Uplynutý čas: 6 min, 49 sek
Detegované služby pamäte: 0
(Škodlivé položky neboli zistené)
Detegované moduly pamäte: 0
(Škodlivé položky neboli zistené)
Detegované registračné kľúče: 1
HKLM\SYSTEM\CurrentControlSet\Services\userinit (Trojan.Agent) -> Žiadna úloha nevykonaná.
Detegované registračné hodnoty: 0
(Škodlivé položky neboli zistené)
Detegované položky registračných dát: 0
(Škodlivé položky neboli zistené)
Detegované priečinky: 1
C:\Users\Public\Public (Trojan.BitcoinMiner) -> Žiadna úloha nevykonaná.
Detegované súbory: 10
C:\Users\Public\Public\mining_proxy.exe (PUP.Proxy.BCM) -> Žiadna úloha nevykonaná.
C:\Windows\inf\ntvdm.inf (Malware.Trace) -> Žiadna úloha nevykonaná.
C:\Users\Public\Public\run.vbs (Trojan.BitcoinMiner) -> Žiadna úloha nevykonaná.
C:\Users\Public\Public\game.bat (Trojan.BitcoinMiner) -> Žiadna úloha nevykonaná.
C:\Users\Public\Public\game.vbs (Trojan.BitcoinMiner) -> Žiadna úloha nevykonaná.
C:\Users\Public\Public\libcurl.dll (Trojan.BitcoinMiner) -> Žiadna úloha nevykonaná.
C:\Users\Public\Public\mining_proxy.exe (Trojan.BitcoinMiner) -> Žiadna úloha nevykonaná.
C:\Users\Public\Public\pthreadGC2.dll (Trojan.BitcoinMiner) -> Žiadna úloha nevykonaná.
C:\Users\Public\Public\run.bat (Trojan.BitcoinMiner) -> Žiadna úloha nevykonaná.
C:\Users\Public\Public\zlib1.dll (Trojan.BitcoinMiner) -> Žiadna úloha nevykonaná.
(koniec)
-
Damned
- Tvůrce článků
-
Master Level 9
- Příspěvky: 8353
- Registrován: prosinec 06
- Bydliště: Rokycany
- Pohlaví:
- Stav:
Offline
- Kontakt:
Re: Kontrola Log - minerd.exe
Spusť znovu MbAM a dej Skenovat
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Zobrazit výsledky
- ujistit se že máš zatrhnuté všechny vypsané nálezy a klikni na tlačítko Odstranit označené
- když skončí odstraňování tak se ti zobrazí log, tak ho sem dej.
- pak zvol v programu OK a pak program ukonči přes Konec
*******************************************************************************************************************************************************************************
Vypni rezidentní štít antiviru.
Stáhni si ComboFix (by sUBs) nebo ComboFix (subs) a ulož si ho na Plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Zobrazit výsledky
- ujistit se že máš zatrhnuté všechny vypsané nálezy a klikni na tlačítko Odstranit označené
- když skončí odstraňování tak se ti zobrazí log, tak ho sem dej.
- pak zvol v programu OK a pak program ukonči přes Konec
*******************************************************************************************************************************************************************************
Vypni rezidentní štít antiviru.
Stáhni si ComboFix (by sUBs) nebo ComboFix (subs) a ulož si ho na Plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
Nic není nemožné, proto tam, kde jsme s rozumem v koncích, neváháme použít kladivo.
Chceš-li vědět, co je nového, podívej se do starých knih.
Damnedovy češtiny - překlady programů pro údržbu PC
HiJackThis 2+návod FCleaner+čeština Wise Registry Cleaner
Chceš-li vědět, co je nového, podívej se do starých knih.
Damnedovy češtiny - překlady programů pro údržbu PC
HiJackThis 2+návod FCleaner+čeština Wise Registry Cleaner
-
arathorn11
- nováček
- Příspěvky: 19
- Registrován: leden 14
- Pohlaví:
- Stav:
Offline
Re: Kontrola Log - minerd.exe
Malwarebytes Anti-Malware (Skúšobná verzia) 1.75.0.1300
www.malwarebytes.org
Verzia databázy: v2014.01.11.06
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16750
Achilleas :: ACHILLEAS-PC [administrátor]
Ochrana: Zapnuté
11. 1. 2014 21:22:11
mbam-log-2014-01-11 (21-22-11).txt
Typ kontroly: Rýchla kontrola
Možnosti kontroly zapnuté: Pamäť | Po spustení | Registre | Systémové súbory | Heuristika/Extra | Heuristika/Shuriken | PUP | PUM
Možnosti kontroly vypnuté: P2P
Objektov kontrolovaných: 216486
Uplynutý čas: 5 min, 56 sek
Detegované služby pamäte: 0
(Škodlivé položky neboli zistené)
Detegované moduly pamäte: 0
(Škodlivé položky neboli zistené)
Detegované registračné kľúče: 1
HKLM\SYSTEM\CurrentControlSet\Services\userinit (Trojan.Agent) -> Pridanie do karantény a zmazanie úspešné.
Detegované registračné hodnoty: 0
(Škodlivé položky neboli zistené)
Detegované položky registračných dát: 0
(Škodlivé položky neboli zistené)
Detegované priečinky: 1
C:\Users\Public\Public (Trojan.BitcoinMiner) -> Pridanie do karantény a zmazanie úspešné.
Detegované súbory: 10
C:\Users\Public\Public\mining_proxy.exe (PUP.Proxy.BCM) -> Pridanie do karantény a zmazanie úspešné.
C:\Windows\inf\ntvdm.inf (Malware.Trace) -> Pridanie do karantény a zmazanie úspešné.
C:\Users\Public\Public\run.vbs (Trojan.BitcoinMiner) -> Pridanie do karantény a zmazanie úspešné.
C:\Users\Public\Public\game.bat (Trojan.BitcoinMiner) -> Pridanie do karantény a zmazanie úspešné.
C:\Users\Public\Public\game.vbs (Trojan.BitcoinMiner) -> Pridanie do karantény a zmazanie úspešné.
C:\Users\Public\Public\libcurl.dll (Trojan.BitcoinMiner) -> Pridanie do karantény a zmazanie úspešné.
C:\Users\Public\Public\mining_proxy.exe (Trojan.BitcoinMiner) -> Pridanie do karantény a zmazanie úspešné.
C:\Users\Public\Public\pthreadGC2.dll (Trojan.BitcoinMiner) -> Pridanie do karantény a zmazanie úspešné.
C:\Users\Public\Public\run.bat (Trojan.BitcoinMiner) -> Pridanie do karantény a zmazanie úspešné.
C:\Users\Public\Public\zlib1.dll (Trojan.BitcoinMiner) -> Pridanie do karantény a zmazanie úspešné.
(koniec)
www.malwarebytes.org
Verzia databázy: v2014.01.11.06
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16750
Achilleas :: ACHILLEAS-PC [administrátor]
Ochrana: Zapnuté
11. 1. 2014 21:22:11
mbam-log-2014-01-11 (21-22-11).txt
Typ kontroly: Rýchla kontrola
Možnosti kontroly zapnuté: Pamäť | Po spustení | Registre | Systémové súbory | Heuristika/Extra | Heuristika/Shuriken | PUP | PUM
Možnosti kontroly vypnuté: P2P
Objektov kontrolovaných: 216486
Uplynutý čas: 5 min, 56 sek
Detegované služby pamäte: 0
(Škodlivé položky neboli zistené)
Detegované moduly pamäte: 0
(Škodlivé položky neboli zistené)
Detegované registračné kľúče: 1
HKLM\SYSTEM\CurrentControlSet\Services\userinit (Trojan.Agent) -> Pridanie do karantény a zmazanie úspešné.
Detegované registračné hodnoty: 0
(Škodlivé položky neboli zistené)
Detegované položky registračných dát: 0
(Škodlivé položky neboli zistené)
Detegované priečinky: 1
C:\Users\Public\Public (Trojan.BitcoinMiner) -> Pridanie do karantény a zmazanie úspešné.
Detegované súbory: 10
C:\Users\Public\Public\mining_proxy.exe (PUP.Proxy.BCM) -> Pridanie do karantény a zmazanie úspešné.
C:\Windows\inf\ntvdm.inf (Malware.Trace) -> Pridanie do karantény a zmazanie úspešné.
C:\Users\Public\Public\run.vbs (Trojan.BitcoinMiner) -> Pridanie do karantény a zmazanie úspešné.
C:\Users\Public\Public\game.bat (Trojan.BitcoinMiner) -> Pridanie do karantény a zmazanie úspešné.
C:\Users\Public\Public\game.vbs (Trojan.BitcoinMiner) -> Pridanie do karantény a zmazanie úspešné.
C:\Users\Public\Public\libcurl.dll (Trojan.BitcoinMiner) -> Pridanie do karantény a zmazanie úspešné.
C:\Users\Public\Public\mining_proxy.exe (Trojan.BitcoinMiner) -> Pridanie do karantény a zmazanie úspešné.
C:\Users\Public\Public\pthreadGC2.dll (Trojan.BitcoinMiner) -> Pridanie do karantény a zmazanie úspešné.
C:\Users\Public\Public\run.bat (Trojan.BitcoinMiner) -> Pridanie do karantény a zmazanie úspešné.
C:\Users\Public\Public\zlib1.dll (Trojan.BitcoinMiner) -> Pridanie do karantény a zmazanie úspešné.
(koniec)
Kdo je online
Uživatelé prohlížející si toto fórum: Žádní registrovaní uživatelé a 104 hostů