Nejde spustit Firewall Windows, ani nainstalovat žádný antivirový program. Před dokončením instalace to napíše chyba, nebo " je potřeba opravit BFE " Vždy jsem používal Free a když jsem se rozhodl použít rozšířený placený tak nastal tento problém. Teď už nejde nainstalovat ani ten Free
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:55:32, on 20.5.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17801)
FIREFOX: 27.0.1 (cs)
Boot mode: Normal
Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\AVG\AVG PC TuneUp\TuneUpUtilitiesApp32.exe
P:\Mozilla Firefox\firefox.exe
P:\Internet Download Manager\IDMan.exe
P:\Internet Download Manager\IEMonitor.exe
T:\Stáhnuté videa z YouTube\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://istart.webssearches.com/?type=hp ... J9CZ907716
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.mystart.com/?pr=vmn&id=mysta ... 4&src=5224
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://istart.webssearches.com/?type=hp ... J9CZ907716
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://istart.webssearches.com/web/?typ ... Z907716&q={searchTerms}
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://istart.webssearches.com/web/?typ ... Z907716&q={searchTerms}
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://istart.webssearches.com/?type=hp ... J9CZ907716
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = https=127.0.0.1:61080
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - P:\Internet Download Manager\IDMIECC.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Skype for Business Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - P:\Microsoft Office\Office15\OCHelper.dll
O2 - BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - (no file)
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - P:\MICROS~1\Office15\URLREDIR.DLL
O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - P:\MICROS~1\Office15\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
O4 - HKLM\..\Run: [CanonQuickMenu] C:\Program Files\Canon\Quick Menu\CNQMMAIN.EXE /logon
O4 - HKLM\..\Run: [IJNetworkScannerSelectorEX] C:\Program Files\Canon\IJ Network Scanner Selector EX\CNMNSST.exe /FORCE
O4 - HKLM\..\Run: [AvastUI.exe] "p:\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKCU\..\Run: [DAEMON Tools Lite] "P:\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [TornTv Downloader] C:\Users\Tomik\AppData\Roaming\TornTV.com\Torntv Downloader.exe /c=startup
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: TornTvDownloader.lnk = Tomik\AppData\Roaming\TornTV.com\Torntv Downloader.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://P:\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do Microsoft Excelu - res://P:\MICROS~1\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://P:\MICROS~1\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Od&eslat do OneNotu - res://P:\MICROS~1\Office15\ONBttnIE.dll/105
O8 - Extra context menu item: Stáhnout s IDM - P:\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: Stáhnout s IDM všechny odkazy - P:\Internet Download Manager\IEGetAll.htm
O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do OneNotu - {2670000A-7350-4f3c-8081-5663EE0C6C49} - P:\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do OneNotu - {2670000A-7350-4f3c-8081-5663EE0C6C49} - P:\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra button: Volání kliknutím v Lyncu - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - P:\Microsoft Office\Office15\OCHelper.dll
O9 - Extra 'Tools' menuitem: Volání kliknutím v Lyncu - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - P:\Microsoft Office\Office15\OCHelper.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - P:\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - P:\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{B9BFA938-F223-47FE-BB36-DFD77A6288D8}: NameServer = 10.157.0.1,4.2.2.1
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - P:\Microsoft Office\Office15\MSOSB.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - Unknown owner - p:\AVAST Software\Avast\AvastSvc.exe (file missing)
O23 - Service: Avast Firewall (avast! Firewall) - Unknown owner - p:\AVAST Software\Avast\afwServ.exe (file missing)
O23 - Service: AvastVBox COM Service (AvastVBoxSvc) - Unknown owner - p:\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe (file missing)
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - T:\Hamachi\hamachi-2.exe
O23 - Service: IePlugin Services (IePluginServices) - Unknown owner - C:\ProgramData\IePluginServices\PluginService.exe (file missing)
O23 - Service: MaintainerSvc4.29.2173613 - Unknown owner - C:\ProgramData\685d26dc-c30a-434b-bda2-3004e8743669\maintainer.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: AVG PC TuneUp Service (TuneUp.UtilitiesSvc) - AVG Technologies - C:\Program Files\AVG\AVG PC TuneUp\TuneUpUtilitiesService32.exe
--
End of file - 9382 bytes
Kontrola logu-není BFE Vyřešeno
Kontrola logu-není BFE
OS Win 10 Home
Základní deska MSI H110M PRO-VD,
2jádrový procesor Intel Core i3-6098P (3.6GHz, HyperThreading), 8GB operační paměti DDR4 2133 MHz TEAM Elite,
Pevný disk 1TB Seagate Barracuda,
Grafická karta NVIDIA GeForce GTX 750 Ti 2GB GDDR5,
DVD±RW mechanika LG,
Zdroj CHIEFTEC GPB-350S, 350 W
Skříň AIO Virtuo TAB04 Champagne
Základní deska MSI H110M PRO-VD,
2jádrový procesor Intel Core i3-6098P (3.6GHz, HyperThreading), 8GB operační paměti DDR4 2133 MHz TEAM Elite,
Pevný disk 1TB Seagate Barracuda,
Grafická karta NVIDIA GeForce GTX 750 Ti 2GB GDDR5,
DVD±RW mechanika LG,
Zdroj CHIEFTEC GPB-350S, 350 W
Skříň AIO Virtuo TAB04 Champagne
-
jerabina
- člen Security týmu
-
Level 6
- Příspěvky: 3647
- Registrován: březen 13
- Bydliště: Litoměřice
- Pohlaví:
- Stav:
Offline
Re: Kontrola logu-není BFE
Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
-Když používáš Firefox (Mozzila), klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
-Když používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected. Poté klikni na Main (hlavní stránku ) a klikni na Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranění historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit dočasné soubory Windows, vysypat koš atd.
- Pokud používáš jen Google Chrome , tak ATF nemusíš použít.
===================================================
Stáhni si TFC
Otevři soubor a zavři všechny ostatní okna, Klikni na Start k zahájení procesu. Program by neměl trvat dlouho.
Poté by se měl PC restartovat, pokud ne , proveď sám.
===================================================
Stáhni AdwCleaner (by Xplode)
Ulož si ho na svojí plochu
Ukonči všechny programy , okna a prohlížeče
Spusť program poklepáním a klikni na „Prohledat-Scan“
Po skenu se objeví log ( jinak je uložen systémovem disku jako AdwCleaner[R?].txt), jeho obsah sem celý vlož.
===================================================
Stáhni si Malwarebytes' Anti-Malware
- Při instalaci odeber zatržítko u „Povolit bezplatnou zkušební verzi Malwarebytes' Anti-Malware Premium“
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Aktualizace Malwarebytes' Anti-Malware a Spustit aplikaci Malwarebytes' Anti-Malware, pokud jo tak klikni na tlačítko konec
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a klikni na Skenovat nyní a
- po proběhnutí programu se ti objeví hláška vpravo dole tak klikni na Kopírovat do schránky a a vlož sem celý log.
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(zatím nic nemaž!).
Pokud budou problémy , spusť v nouz. režimu.
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
-Když používáš Firefox (Mozzila), klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
-Když používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected. Poté klikni na Main (hlavní stránku ) a klikni na Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranění historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit dočasné soubory Windows, vysypat koš atd.
- Pokud používáš jen Google Chrome , tak ATF nemusíš použít.
===================================================
Stáhni si TFC
Otevři soubor a zavři všechny ostatní okna, Klikni na Start k zahájení procesu. Program by neměl trvat dlouho.
Poté by se měl PC restartovat, pokud ne , proveď sám.
===================================================
Stáhni AdwCleaner (by Xplode)
Ulož si ho na svojí plochu
Ukonči všechny programy , okna a prohlížeče
Spusť program poklepáním a klikni na „Prohledat-Scan“
Po skenu se objeví log ( jinak je uložen systémovem disku jako AdwCleaner[R?].txt), jeho obsah sem celý vlož.
===================================================
Stáhni si Malwarebytes' Anti-Malware
- Při instalaci odeber zatržítko u „Povolit bezplatnou zkušební verzi Malwarebytes' Anti-Malware Premium“
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Aktualizace Malwarebytes' Anti-Malware a Spustit aplikaci Malwarebytes' Anti-Malware, pokud jo tak klikni na tlačítko konec
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a klikni na Skenovat nyní a
- po proběhnutí programu se ti objeví hláška vpravo dole tak klikni na Kopírovat do schránky a a vlož sem celý log.
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(zatím nic nemaž!).
Pokud budou problémy , spusť v nouz. režimu.
Když nevíš jak dál, přichází na řadu prostudovat manuál!
HJT návod
Pokud neodpovídám do vašich témat v sekci HJT když jsem online, tak je to jen proto, že jsem na mobilu kde je studování logů a psaní skriptů nemožné. Neberte to tedy prosím jako ignoraci.
HJT návod
Pokud neodpovídám do vašich témat v sekci HJT když jsem online, tak je to jen proto, že jsem na mobilu kde je studování logů a psaní skriptů nemožné. Neberte to tedy prosím jako ignoraci.
Re: Kontrola logu-není BFE
Tady jsem nevěděl jestli jsem měl dát vyčistit to co to našlo.
Nic jsem nemazal.
# AdwCleaner v4.204 - Log vytvořen 20/05/2015 v 18:38:53
# Aktualizováno 12/05/2015 by Xplode
# Databáze : 2015-05-20.1 [Server]
# Operační system : Windows 7 Home Premium Service Pack 1 (x86)
# Uživatelské jméno : Tomik - DOMÁCÍ
# Spuštěno z : C:\Users\Tomik\Desktop\AdwCleaner.exe
# Nastavení : Sken
***** [ Služby ] *****
Služba Nalezeno : IePluginServices
Služba Nalezeno : MaintainerSvc4.29.2173613
***** [ Soubory / Složky ] *****
Složka Nalezeno : C:\Program Files\Advanced System Protector
Složka Nalezeno : C:\Program Files\Common Files\Spigot
Složka Nalezeno : C:\Program Files\globalUpdate
Složka Nalezeno : C:\Program Files\GreenTree Applications
Složka Nalezeno : C:\Program Files\RelevantKnowledge
Složka Nalezeno : C:\Program Files\SupTab
Složka Nalezeno : C:\Program Files\Systweak Support Dock
Složka Nalezeno : C:\Program Files\TheTorntv V10
Složka Nalezeno : C:\ProgramData\Anti-phishing Domain Advisor
Složka Nalezeno : C:\ProgramData\Babylon
Složka Nalezeno : C:\ProgramData\blekko toolbars
Složka Nalezeno : C:\ProgramData\DSearchLink
Složka Nalezeno : C:\ProgramData\IePluginServices
Složka Nalezeno : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FlvPlayer
Složka Nalezeno : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RelevantKnowledge
Složka Nalezeno : C:\ProgramData\ParetoLogic
Složka Nalezeno : C:\ProgramData\WindowsMangerProtect
Složka Nalezeno : C:\Users\Tomik\AppData\Local\blekkotb_031
Složka Nalezeno : C:\Users\Tomik\AppData\Local\FilesFrog Update Checker
Složka Nalezeno : C:\Users\Tomik\AppData\Local\globalUpdate
Složka Nalezeno : C:\Users\Tomik\AppData\Local\onlysearch
Složka Nalezeno : C:\Users\Tomik\AppData\Local\PackageAware
Složka Nalezeno : C:\Users\Tomik\AppData\LocalLow\Mail.Ru
Složka Nalezeno : C:\Users\Tomik\AppData\Roaming\337Games
Složka Nalezeno : C:\Users\Tomik\AppData\Roaming\Babylon
Složka Nalezeno : C:\Users\Tomik\AppData\Roaming\DriverCure
Složka Nalezeno : C:\Users\Tomik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TornTV.com
Složka Nalezeno : C:\Users\Tomik\AppData\Roaming\OpenCandy
Složka Nalezeno : C:\Users\Tomik\AppData\Roaming\ParetoLogic
Složka Nalezeno : C:\Users\Tomik\AppData\Roaming\RHEng
Složka Nalezeno : C:\Users\Tomik\AppData\Roaming\Systweak
Složka Nalezeno : C:\Users\Tomik\AppData\Roaming\TornTV.com
Soubor Nalezeno : C:\Program Files\Mozilla Firefox\searchplugins\Babylon.xml
Soubor Nalezeno : C:\Program Files\Mozilla Firefox\searchplugins\search.xml
Soubor Nalezeno : C:\Users\Tomik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TornTvDownloader.lnk
Soubor Nalezeno : C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\bprotector_extensions.sqlite
Soubor Nalezeno : C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\bprotector_prefs.js
Soubor Nalezeno : C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\invalidprefs.js
Soubor Nalezeno : C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\searchplugins\Babylon.xml
Soubor Nalezeno : C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\searchplugins\BrowserProtect.xml
Soubor Nalezeno : C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\user.js
Soubor Nalezeno : C:\Windows\Reimage.ini
***** [ Naplánované úlohy ] *****
Úloha Nalezeno : Update Service YourFileDownloader
***** [ Zástupci ] *****
***** [ Registry ] *****
Data Nalezeno : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings [ProxyServer] - hxxps=127.0.0.1:61080
Data Nalezeno : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command [(Default)] - C:\Program Files\Internet Explorer\iexplore.exe hxxp://istart.webssearches.com/?type=sc ... J9CZ907716
Hodnota Nalezeno : HKCU\Software\Microsoft\Internet Explorer\Main [bprotector start page]
Hodnota Nalezeno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes [bProtectorDefaultScope]
Hodnota Nalezeno : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Hodnota Nalezeno : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings [DefaultConnectionSettings]
Hodnota Nalezeno : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings [SavedLegacySettings]
Hodnota Nalezeno : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [Torntv Downloader]
Hodnota Nalezeno : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [faststartff@gmail.com]
Klíč Nalezeno : HKCU\Software\1ClickDownload
Klíč Nalezeno : HKCU\Software\597d6d1e23bea41
Klíč Nalezeno : HKCU\Software\8dc890a86b929eaa732f56c0b3d1613d
Klíč Nalezeno : HKCU\Software\APN PIP
Klíč Nalezeno : HKCU\Software\AppDataLow\Software\Crossrider
Klíč Nalezeno : HKCU\Software\AppDataLow\Software\TheTorntv V10
Klíč Nalezeno : HKCU\Software\BI
Klíč Nalezeno : HKCU\Software\Classes\iLivid.torrent
Klíč Nalezeno : HKCU\Software\Classes\keepmysearch
Klíč Nalezeno : HKCU\Software\Conduit
Klíč Nalezeno : HKCU\Software\DataMngr
Klíč Nalezeno : HKCU\Software\DataMngr_Toolbar
Klíč Nalezeno : HKCU\Software\distromatic
Klíč Nalezeno : HKCU\Software\GlobalUpdate
Klíč Nalezeno : HKCU\Software\IGearSettings
Klíč Nalezeno : HKCU\Software\ilivid
Klíč Nalezeno : HKCU\Software\InstalledBrowserExtensions
Klíč Nalezeno : HKCU\Software\MICROSOFT\INTERNET EXPLORER\DOMSTORAGE\superfish.com
Klíč Nalezeno : HKCU\Software\Microsoft\Internet Explorer\DOMStorage\www.superfish.com
Klíč Nalezeno : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\delta-search.com
Klíč Nalezeno : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\only-search.com
Klíč Nalezeno : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\superfish.com
Klíč Nalezeno : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\www.delta-search.com
Klíč Nalezeno : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\www.only-search.com
Klíč Nalezeno : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\www.superfish.com
Klíč Nalezeno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
Klíč Nalezeno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Klíč Nalezeno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{3BD44F0E-0596-4008-AEE0-45D47E3A8F0E}
Klíč Nalezeno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{E88E0043-C9D4-4e33-8555-FEE4F5B63060}
Klíč Nalezeno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{F8FCB57C-BA12-466A-9182-478323D591F8}
Klíč Nalezeno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings
Klíč Nalezeno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D3D233D5-9F6D-436C-B6C7-E63F77503B30}
Klíč Nalezeno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D7E97865-918F-41E4-9CD0-25AB1C574CE8}
Klíč Nalezeno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{10ECCE17-29B5-4880-A8F5-EAD298611484}
Klíč Nalezeno : HKCU\Software\Mozilla\Extends
Klíč Nalezeno : HKCU\Software\ParetoLogic
Klíč Nalezeno : HKCU\Software\Reimage
Klíč Nalezeno : HKCU\Software\Softonic
Klíč Nalezeno : HKCU\Software\Somoto
Klíč Nalezeno : HKCU\Software\SupHpUISoft
Klíč Nalezeno : HKCU\Software\systweak
Klíč Nalezeno : HKCU\Software\TornTv Downloader
Klíč Nalezeno : HKCU\Software\YahooPartnerToolbar
Klíč Nalezeno : HKLM\SOFTWARE\597d6d1e23bea41
Klíč Nalezeno : HKLM\SOFTWARE\Babylon
Klíč Nalezeno : HKLM\SOFTWARE\Classes\AppID\{28FF42B8-A0DA-4BE5-9B81-E26DD59B350A}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\AppID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\AppID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\AppID\{C007DADD-132A-624C-088E-59EE6CF0711F}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\AppID\REI_AxControl.DLL
Klíč Nalezeno : HKLM\SOFTWARE\Classes\Applications\ilividsetupv1.exe
Klíč Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{10ECCE17-29B5-4880-A8F5-EAD298611484}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220622332211}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{3B5702BA-7F4C-4D1A-B026-1E9A01D43978}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{459DD0F7-0D55-D3DC-67BC-E6BE37E9D762}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{7E49F793-B3CD-4BF7-8419-B34B8BD30E61}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{801B440B-1EE3-49B0-B05D-2AB076D4E8CB}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass.1
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc.1.0
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService.1.0
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc.1.0
Klíč Nalezeno : HKLM\SOFTWARE\Classes\iLivid.torrent
Klíč Nalezeno : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550655335511}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660666336611}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\Interface\{917CAAE9-DD47-4025-936E-1414F07DF5B8}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\Interface\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\Interface\{BD51A48E-EB5F-4454-8774-EF962DF64546}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\Prod.cap
Klíč Nalezeno : HKLM\SOFTWARE\Classes\REI_AxControl.ReiEngine
Klíč Nalezeno : HKLM\SOFTWARE\Classes\REI_AxControl.ReiEngine.1
Klíč Nalezeno : HKLM\SOFTWARE\Classes\TypeLib\{968EDCE0-C10A-47BB-B3B6-FDF09F2A417D}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\TypeLib\{FA6468D2-FAA4-4951-A53B-2A5CF9CC0A36}
Klíč Nalezeno : HKLM\SOFTWARE\DataMngr
Klíč Nalezeno : HKLM\SOFTWARE\FlvPlayer
Klíč Nalezeno : HKLM\SOFTWARE\GlobalUpdate
Klíč Nalezeno : HKLM\SOFTWARE\InstalledBrowserExtensions
Klíč Nalezeno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Klíč Nalezeno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
Klíč Nalezeno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{62155D33-3CE2-401E-8967-5A270628A3D5}
Klíč Nalezeno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Klíč Nalezeno : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Klíč Nalezeno : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{E88E0043-C9D4-4e33-8555-FEE4F5B63060}
Klíč Nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Klíč Nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{A1B48071-416D-474E-A13B-BE5456E7FC31}
Klíč Nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Klíč Nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{CCB24E92-62C4-4C53-95D2-65F9EED476BC}
Klíč Nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D3D233D5-9F6D-436C-B6C7-E63F77503B30}
Klíč Nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D7E97865-918F-41E4-9CD0-25AB1C574CE8}
Klíč Nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\00E944CB89111313EAF35A0553F547F9
Klíč Nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\53F55AF3F4049ED3FA6EA6F88E414E24
Klíč Nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\68E4BF4B11615E03C97732FD581AB607
Klíč Nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8CE3DDAB2D152683FBCEB4866BCD2B0F
Klíč Nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AF6CE16AFEA5C9A39B766468A8B35C21
Klíč Nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FB1E44269B58F433A8C8E671E37CFDCF
Klíč Nalezeno : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=10
Klíč Nalezeno : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=4
Klíč Nalezeno : HKLM\SOFTWARE\ParetoLogic
Klíč Nalezeno : HKLM\SOFTWARE\PIP
Klíč Nalezeno : HKLM\SOFTWARE\Reimage
Klíč Nalezeno : HKLM\SOFTWARE\SiteSee
Klíč Nalezeno : HKLM\SOFTWARE\Speedchecker Limited
Klíč Nalezeno : HKLM\SOFTWARE\SupDp
Klíč Nalezeno : HKLM\SOFTWARE\SupTab
Klíč Nalezeno : HKLM\SOFTWARE\supWindowsMangerProtect
Klíč Nalezeno : HKLM\SOFTWARE\supWPM
Klíč Nalezeno : HKLM\SOFTWARE\systweak
Klíč Nalezeno : HKLM\SOFTWARE\webssearchesSoftware
Klíč Nalezeno : HKLM\SOFTWARE\YourFileDownloader
Klíč Nalezeno : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\IePluginServices
Klíč Nalezeno : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WindowsMangerProtect
Klíč Nalezeno : HKU\.DEFAULT\Software\TornTv Downloader
***** [ Prohlížeče ] *****
-\\ Internet Explorer v11.0.9600.17801
Nastavení Nalezeno : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page] - hxxp://www.mystart.com/?pr=vmn&id=mysta ... 4&src=5224
Nastavení Nalezeno : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Page_URL] - hxxp://istart.webssearches.com/?type=hp ... J9CZ907716
Nastavení Nalezeno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL] - hxxp://istart.webssearches.com/web/?typ ... Z907716&q={searchTerms}
Nastavení Nalezeno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL] - hxxp://istart.webssearches.com/?type=hp ... J9CZ907716
Nastavení Nalezeno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page] - hxxp://istart.webssearches.com/?type=hp ... J9CZ907716
Nastavení Nalezeno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page] - hxxp://istart.webssearches.com/web/?typ ... Z907716&q={searchTerms}
-\\ Mozilla Firefox v27.0.1 (cs)
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("CT2463487.SearchFromAddressBarUrl", "hxxp://trovi.com/ResultsExt.aspx?ctid=CT2463487&SearchSource=2&CUI=UN40503431461772443&UM=4&q=");
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("CT2463487.lastNewTabSettings", "{\"isEnabled\":true,\"newTabUrl\":\"hxxp://search.conduit.com/?gd=&ctid=CT2463487&octid=CT2463487&ISID=ISID_ID&SearchSource=15&CUI=UN40503431461772443&Lay=1&[...]
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("CT2463487.smartbar.CTID", "CT2463487");
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("CT2463487.smartbar.Uninstall", "0");
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("CT2463487.smartbar.homepage", true);
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("CT2463487.smartbar.toolbarName", "Brothersoft ");
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("CommunityToolbar.ConduitHomepagesList", "hxxp://search.conduit.com/?ctid=CT2463487&SearchSource=13,hxxp://search.conduit.com/?ctid=CT2463487&SearchSource=13,hxxp://search.conduit.com/?ctid=[...]
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("CommunityToolbar.ConduitSearchList", "Brothersoft Customized Web Search,Brothersoft Customized Web Search,Brothersoft Customized Web Search,Brothersoft Customized Web Search,Brothersoft Cus[...]
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("CommunityToolbar.ETag.hxxp://Settings.toolbar.search.conduit. ... /CT2463487", "\"c2cea7de4295f8f991a741c5cb625fc43\"");
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-ser ... =CT2463487", "\"1365959693\"");
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-s ... r=3.18.0.7", "\"0343677cfb1cd1:0\"");
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-s ... r=3.19.0.3", "\"23c5489aa686ce1:0\"");
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-s ... r=3.20.0.4", "\"dfe74040abc2ce1:0\"");
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/ ... =CT2463487", "\"52c3f1538cb4af4ada257fcbc6b15d49\"");
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-serv ... ?locale=en", "\"968402cf2834e7ec0f38a19f0e9a9eb0\"");
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "");
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("CommunityToolbar.ToolbarsList", "CT2463487");
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("CommunityToolbar.ToolbarsList2", "CT2463487");
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("CommunityToolbar.ToolbarsList4", "CT2463487");
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("CommunityToolbar.globalUserId", "13438a39-3c01-4f16-873a-18d514e3b386");
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("CommunityToolbar.keywordURLSelectedCTID", "CT2463487");
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("CommunityToolbar.originalHomepage", "hxxp://search.conduit.com/?ctid=CT2463487&SearchSource=13");
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("CommunityToolbar.originalSearchEngine", "Brothersoft Customized Web Search");
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("Smartbar.ConduitHomepagesList", "hxxp://trovi.com/?ctid=CT2463487&SearchSource=13&CUI=UN40503431461772443");
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("Smartbar.ConduitSearchEngineList", "");
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("Smartbar.ConduitSearchUrlList", "");
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("Smartbar.SearchFromAddressBarSavedUrl", "");
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("Smartbar.TBHomepagesList", "hxxp://trovi.com/?ctid=CT2463487&SearchSource=13&CUI=UN40503431461772443");
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("Smartbar.TBSearchEngineList", "");
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("Smartbar.TBSearchUrlList", "");
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("Smartbar.keywordURLSelectedCTID", "CT2463487");
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("avg.install.userHPSettings", "hxxp://www.delta-search.com/?affID=119816&tt=040413_9114&babsrc=HP_ss&mntrId=218820CF309BD999");
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("avg.install.userSPSettings", "Delta Search");
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("browser.search.defaultthis.engineName", "Brothersoft Customized Web Search");
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("browser.search.defaulturl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2463487&SearchSource=3&q={searchTerms}");
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("browser.search.selectedEngine", "Search The Web");
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("keyword.URL", "hxxp://trovi.com/ResultsExt.aspx?ctid=CT2463487&SearchSource=2&CUI=UN40503431461772443&UM=4&q=");
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("plugin.state.npconduitfirefoxplugin", 2);
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("smartbar.addressBarOwnerCTID", "CT2463487");
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("smartbar.conduitHomepageList", "hxxp://trovi.com/?ctid=CT2463487&SearchSource=13&CUI=UN40503431461772443");
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("smartbar.conduitSearchAddressUrlList", "hxxp://trovi.com/ResultsExt.aspx?ctid=CT2463487&SearchSource=2&CUI=UN40503431461772443&UM=4&q=");
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("smartbar.defaultSearchOwnerCTID", "CT2463487");
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("smartbar.homePageOwnerCTID", "CT2463487");
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("smartbar.homepageList", "hxxp://trovi.com/?ctid=CT2463487&SearchSource=13&CUI=UN40503431461772443");
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("smartbar.machineId", "YFBQO9YMBT0MC+KYXPCGNPA4B8ESPUWCJ6JZV5IB2RNRKWDXV66ZSCKC5ECM6IFVKREKILTLGPRKXIAE9D/67A");
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("smartbar.searchAddressUrlList", "hxxp://trovi.com/ResultsExt.aspx?ctid=CT2463487&SearchSource=2&CUI=UN40503431461772443&UM=4&q=");
*************************
AdwCleaner[R0].txt - [22707 bytů] - [20/05/2015 18:38:53]
########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [22766 bytů] ##########
Nic jsem nemazal.
# AdwCleaner v4.204 - Log vytvořen 20/05/2015 v 18:38:53
# Aktualizováno 12/05/2015 by Xplode
# Databáze : 2015-05-20.1 [Server]
# Operační system : Windows 7 Home Premium Service Pack 1 (x86)
# Uživatelské jméno : Tomik - DOMÁCÍ
# Spuštěno z : C:\Users\Tomik\Desktop\AdwCleaner.exe
# Nastavení : Sken
***** [ Služby ] *****
Služba Nalezeno : IePluginServices
Služba Nalezeno : MaintainerSvc4.29.2173613
***** [ Soubory / Složky ] *****
Složka Nalezeno : C:\Program Files\Advanced System Protector
Složka Nalezeno : C:\Program Files\Common Files\Spigot
Složka Nalezeno : C:\Program Files\globalUpdate
Složka Nalezeno : C:\Program Files\GreenTree Applications
Složka Nalezeno : C:\Program Files\RelevantKnowledge
Složka Nalezeno : C:\Program Files\SupTab
Složka Nalezeno : C:\Program Files\Systweak Support Dock
Složka Nalezeno : C:\Program Files\TheTorntv V10
Složka Nalezeno : C:\ProgramData\Anti-phishing Domain Advisor
Složka Nalezeno : C:\ProgramData\Babylon
Složka Nalezeno : C:\ProgramData\blekko toolbars
Složka Nalezeno : C:\ProgramData\DSearchLink
Složka Nalezeno : C:\ProgramData\IePluginServices
Složka Nalezeno : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FlvPlayer
Složka Nalezeno : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RelevantKnowledge
Složka Nalezeno : C:\ProgramData\ParetoLogic
Složka Nalezeno : C:\ProgramData\WindowsMangerProtect
Složka Nalezeno : C:\Users\Tomik\AppData\Local\blekkotb_031
Složka Nalezeno : C:\Users\Tomik\AppData\Local\FilesFrog Update Checker
Složka Nalezeno : C:\Users\Tomik\AppData\Local\globalUpdate
Složka Nalezeno : C:\Users\Tomik\AppData\Local\onlysearch
Složka Nalezeno : C:\Users\Tomik\AppData\Local\PackageAware
Složka Nalezeno : C:\Users\Tomik\AppData\LocalLow\Mail.Ru
Složka Nalezeno : C:\Users\Tomik\AppData\Roaming\337Games
Složka Nalezeno : C:\Users\Tomik\AppData\Roaming\Babylon
Složka Nalezeno : C:\Users\Tomik\AppData\Roaming\DriverCure
Složka Nalezeno : C:\Users\Tomik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TornTV.com
Složka Nalezeno : C:\Users\Tomik\AppData\Roaming\OpenCandy
Složka Nalezeno : C:\Users\Tomik\AppData\Roaming\ParetoLogic
Složka Nalezeno : C:\Users\Tomik\AppData\Roaming\RHEng
Složka Nalezeno : C:\Users\Tomik\AppData\Roaming\Systweak
Složka Nalezeno : C:\Users\Tomik\AppData\Roaming\TornTV.com
Soubor Nalezeno : C:\Program Files\Mozilla Firefox\searchplugins\Babylon.xml
Soubor Nalezeno : C:\Program Files\Mozilla Firefox\searchplugins\search.xml
Soubor Nalezeno : C:\Users\Tomik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TornTvDownloader.lnk
Soubor Nalezeno : C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\bprotector_extensions.sqlite
Soubor Nalezeno : C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\bprotector_prefs.js
Soubor Nalezeno : C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\invalidprefs.js
Soubor Nalezeno : C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\searchplugins\Babylon.xml
Soubor Nalezeno : C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\searchplugins\BrowserProtect.xml
Soubor Nalezeno : C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\user.js
Soubor Nalezeno : C:\Windows\Reimage.ini
***** [ Naplánované úlohy ] *****
Úloha Nalezeno : Update Service YourFileDownloader
***** [ Zástupci ] *****
***** [ Registry ] *****
Data Nalezeno : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings [ProxyServer] - hxxps=127.0.0.1:61080
Data Nalezeno : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command [(Default)] - C:\Program Files\Internet Explorer\iexplore.exe hxxp://istart.webssearches.com/?type=sc ... J9CZ907716
Hodnota Nalezeno : HKCU\Software\Microsoft\Internet Explorer\Main [bprotector start page]
Hodnota Nalezeno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes [bProtectorDefaultScope]
Hodnota Nalezeno : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Hodnota Nalezeno : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings [DefaultConnectionSettings]
Hodnota Nalezeno : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings [SavedLegacySettings]
Hodnota Nalezeno : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [Torntv Downloader]
Hodnota Nalezeno : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [faststartff@gmail.com]
Klíč Nalezeno : HKCU\Software\1ClickDownload
Klíč Nalezeno : HKCU\Software\597d6d1e23bea41
Klíč Nalezeno : HKCU\Software\8dc890a86b929eaa732f56c0b3d1613d
Klíč Nalezeno : HKCU\Software\APN PIP
Klíč Nalezeno : HKCU\Software\AppDataLow\Software\Crossrider
Klíč Nalezeno : HKCU\Software\AppDataLow\Software\TheTorntv V10
Klíč Nalezeno : HKCU\Software\BI
Klíč Nalezeno : HKCU\Software\Classes\iLivid.torrent
Klíč Nalezeno : HKCU\Software\Classes\keepmysearch
Klíč Nalezeno : HKCU\Software\Conduit
Klíč Nalezeno : HKCU\Software\DataMngr
Klíč Nalezeno : HKCU\Software\DataMngr_Toolbar
Klíč Nalezeno : HKCU\Software\distromatic
Klíč Nalezeno : HKCU\Software\GlobalUpdate
Klíč Nalezeno : HKCU\Software\IGearSettings
Klíč Nalezeno : HKCU\Software\ilivid
Klíč Nalezeno : HKCU\Software\InstalledBrowserExtensions
Klíč Nalezeno : HKCU\Software\MICROSOFT\INTERNET EXPLORER\DOMSTORAGE\superfish.com
Klíč Nalezeno : HKCU\Software\Microsoft\Internet Explorer\DOMStorage\www.superfish.com
Klíč Nalezeno : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\delta-search.com
Klíč Nalezeno : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\only-search.com
Klíč Nalezeno : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\superfish.com
Klíč Nalezeno : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\www.delta-search.com
Klíč Nalezeno : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\www.only-search.com
Klíč Nalezeno : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\www.superfish.com
Klíč Nalezeno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
Klíč Nalezeno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Klíč Nalezeno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{3BD44F0E-0596-4008-AEE0-45D47E3A8F0E}
Klíč Nalezeno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{E88E0043-C9D4-4e33-8555-FEE4F5B63060}
Klíč Nalezeno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{F8FCB57C-BA12-466A-9182-478323D591F8}
Klíč Nalezeno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings
Klíč Nalezeno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D3D233D5-9F6D-436C-B6C7-E63F77503B30}
Klíč Nalezeno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D7E97865-918F-41E4-9CD0-25AB1C574CE8}
Klíč Nalezeno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{10ECCE17-29B5-4880-A8F5-EAD298611484}
Klíč Nalezeno : HKCU\Software\Mozilla\Extends
Klíč Nalezeno : HKCU\Software\ParetoLogic
Klíč Nalezeno : HKCU\Software\Reimage
Klíč Nalezeno : HKCU\Software\Softonic
Klíč Nalezeno : HKCU\Software\Somoto
Klíč Nalezeno : HKCU\Software\SupHpUISoft
Klíč Nalezeno : HKCU\Software\systweak
Klíč Nalezeno : HKCU\Software\TornTv Downloader
Klíč Nalezeno : HKCU\Software\YahooPartnerToolbar
Klíč Nalezeno : HKLM\SOFTWARE\597d6d1e23bea41
Klíč Nalezeno : HKLM\SOFTWARE\Babylon
Klíč Nalezeno : HKLM\SOFTWARE\Classes\AppID\{28FF42B8-A0DA-4BE5-9B81-E26DD59B350A}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\AppID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\AppID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\AppID\{C007DADD-132A-624C-088E-59EE6CF0711F}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\AppID\REI_AxControl.DLL
Klíč Nalezeno : HKLM\SOFTWARE\Classes\Applications\ilividsetupv1.exe
Klíč Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{10ECCE17-29B5-4880-A8F5-EAD298611484}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220622332211}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{3B5702BA-7F4C-4D1A-B026-1E9A01D43978}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{459DD0F7-0D55-D3DC-67BC-E6BE37E9D762}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{7E49F793-B3CD-4BF7-8419-B34B8BD30E61}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{801B440B-1EE3-49B0-B05D-2AB076D4E8CB}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass.1
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc.1.0
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService.1.0
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc.1.0
Klíč Nalezeno : HKLM\SOFTWARE\Classes\iLivid.torrent
Klíč Nalezeno : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550655335511}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660666336611}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\Interface\{917CAAE9-DD47-4025-936E-1414F07DF5B8}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\Interface\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\Interface\{BD51A48E-EB5F-4454-8774-EF962DF64546}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\Prod.cap
Klíč Nalezeno : HKLM\SOFTWARE\Classes\REI_AxControl.ReiEngine
Klíč Nalezeno : HKLM\SOFTWARE\Classes\REI_AxControl.ReiEngine.1
Klíč Nalezeno : HKLM\SOFTWARE\Classes\TypeLib\{968EDCE0-C10A-47BB-B3B6-FDF09F2A417D}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\TypeLib\{FA6468D2-FAA4-4951-A53B-2A5CF9CC0A36}
Klíč Nalezeno : HKLM\SOFTWARE\DataMngr
Klíč Nalezeno : HKLM\SOFTWARE\FlvPlayer
Klíč Nalezeno : HKLM\SOFTWARE\GlobalUpdate
Klíč Nalezeno : HKLM\SOFTWARE\InstalledBrowserExtensions
Klíč Nalezeno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Klíč Nalezeno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
Klíč Nalezeno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{62155D33-3CE2-401E-8967-5A270628A3D5}
Klíč Nalezeno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Klíč Nalezeno : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Klíč Nalezeno : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{E88E0043-C9D4-4e33-8555-FEE4F5B63060}
Klíč Nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Klíč Nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{A1B48071-416D-474E-A13B-BE5456E7FC31}
Klíč Nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Klíč Nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{CCB24E92-62C4-4C53-95D2-65F9EED476BC}
Klíč Nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D3D233D5-9F6D-436C-B6C7-E63F77503B30}
Klíč Nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D7E97865-918F-41E4-9CD0-25AB1C574CE8}
Klíč Nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\00E944CB89111313EAF35A0553F547F9
Klíč Nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\53F55AF3F4049ED3FA6EA6F88E414E24
Klíč Nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\68E4BF4B11615E03C97732FD581AB607
Klíč Nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8CE3DDAB2D152683FBCEB4866BCD2B0F
Klíč Nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AF6CE16AFEA5C9A39B766468A8B35C21
Klíč Nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FB1E44269B58F433A8C8E671E37CFDCF
Klíč Nalezeno : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=10
Klíč Nalezeno : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=4
Klíč Nalezeno : HKLM\SOFTWARE\ParetoLogic
Klíč Nalezeno : HKLM\SOFTWARE\PIP
Klíč Nalezeno : HKLM\SOFTWARE\Reimage
Klíč Nalezeno : HKLM\SOFTWARE\SiteSee
Klíč Nalezeno : HKLM\SOFTWARE\Speedchecker Limited
Klíč Nalezeno : HKLM\SOFTWARE\SupDp
Klíč Nalezeno : HKLM\SOFTWARE\SupTab
Klíč Nalezeno : HKLM\SOFTWARE\supWindowsMangerProtect
Klíč Nalezeno : HKLM\SOFTWARE\supWPM
Klíč Nalezeno : HKLM\SOFTWARE\systweak
Klíč Nalezeno : HKLM\SOFTWARE\webssearchesSoftware
Klíč Nalezeno : HKLM\SOFTWARE\YourFileDownloader
Klíč Nalezeno : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\IePluginServices
Klíč Nalezeno : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WindowsMangerProtect
Klíč Nalezeno : HKU\.DEFAULT\Software\TornTv Downloader
***** [ Prohlížeče ] *****
-\\ Internet Explorer v11.0.9600.17801
Nastavení Nalezeno : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page] - hxxp://www.mystart.com/?pr=vmn&id=mysta ... 4&src=5224
Nastavení Nalezeno : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Page_URL] - hxxp://istart.webssearches.com/?type=hp ... J9CZ907716
Nastavení Nalezeno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL] - hxxp://istart.webssearches.com/web/?typ ... Z907716&q={searchTerms}
Nastavení Nalezeno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL] - hxxp://istart.webssearches.com/?type=hp ... J9CZ907716
Nastavení Nalezeno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page] - hxxp://istart.webssearches.com/?type=hp ... J9CZ907716
Nastavení Nalezeno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page] - hxxp://istart.webssearches.com/web/?typ ... Z907716&q={searchTerms}
-\\ Mozilla Firefox v27.0.1 (cs)
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("CT2463487.SearchFromAddressBarUrl", "hxxp://trovi.com/ResultsExt.aspx?ctid=CT2463487&SearchSource=2&CUI=UN40503431461772443&UM=4&q=");
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("CT2463487.lastNewTabSettings", "{\"isEnabled\":true,\"newTabUrl\":\"hxxp://search.conduit.com/?gd=&ctid=CT2463487&octid=CT2463487&ISID=ISID_ID&SearchSource=15&CUI=UN40503431461772443&Lay=1&[...]
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("CT2463487.smartbar.CTID", "CT2463487");
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("CT2463487.smartbar.Uninstall", "0");
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("CT2463487.smartbar.homepage", true);
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("CT2463487.smartbar.toolbarName", "Brothersoft ");
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("CommunityToolbar.ConduitHomepagesList", "hxxp://search.conduit.com/?ctid=CT2463487&SearchSource=13,hxxp://search.conduit.com/?ctid=CT2463487&SearchSource=13,hxxp://search.conduit.com/?ctid=[...]
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("CommunityToolbar.ConduitSearchList", "Brothersoft Customized Web Search,Brothersoft Customized Web Search,Brothersoft Customized Web Search,Brothersoft Customized Web Search,Brothersoft Cus[...]
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("CommunityToolbar.ETag.hxxp://Settings.toolbar.search.conduit. ... /CT2463487", "\"c2cea7de4295f8f991a741c5cb625fc43\"");
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-ser ... =CT2463487", "\"1365959693\"");
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-s ... r=3.18.0.7", "\"0343677cfb1cd1:0\"");
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-s ... r=3.19.0.3", "\"23c5489aa686ce1:0\"");
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-s ... r=3.20.0.4", "\"dfe74040abc2ce1:0\"");
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/ ... =CT2463487", "\"52c3f1538cb4af4ada257fcbc6b15d49\"");
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-serv ... ?locale=en", "\"968402cf2834e7ec0f38a19f0e9a9eb0\"");
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "");
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("CommunityToolbar.ToolbarsList", "CT2463487");
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("CommunityToolbar.ToolbarsList2", "CT2463487");
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("CommunityToolbar.ToolbarsList4", "CT2463487");
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("CommunityToolbar.globalUserId", "13438a39-3c01-4f16-873a-18d514e3b386");
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("CommunityToolbar.keywordURLSelectedCTID", "CT2463487");
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("CommunityToolbar.originalHomepage", "hxxp://search.conduit.com/?ctid=CT2463487&SearchSource=13");
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("CommunityToolbar.originalSearchEngine", "Brothersoft Customized Web Search");
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("Smartbar.ConduitHomepagesList", "hxxp://trovi.com/?ctid=CT2463487&SearchSource=13&CUI=UN40503431461772443");
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("Smartbar.ConduitSearchEngineList", "");
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("Smartbar.ConduitSearchUrlList", "");
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("Smartbar.SearchFromAddressBarSavedUrl", "");
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("Smartbar.TBHomepagesList", "hxxp://trovi.com/?ctid=CT2463487&SearchSource=13&CUI=UN40503431461772443");
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("Smartbar.TBSearchEngineList", "");
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("Smartbar.TBSearchUrlList", "");
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("Smartbar.keywordURLSelectedCTID", "CT2463487");
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("avg.install.userHPSettings", "hxxp://www.delta-search.com/?affID=119816&tt=040413_9114&babsrc=HP_ss&mntrId=218820CF309BD999");
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("avg.install.userSPSettings", "Delta Search");
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("browser.search.defaultthis.engineName", "Brothersoft Customized Web Search");
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("browser.search.defaulturl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2463487&SearchSource=3&q={searchTerms}");
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("browser.search.selectedEngine", "Search The Web");
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("keyword.URL", "hxxp://trovi.com/ResultsExt.aspx?ctid=CT2463487&SearchSource=2&CUI=UN40503431461772443&UM=4&q=");
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("plugin.state.npconduitfirefoxplugin", 2);
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("smartbar.addressBarOwnerCTID", "CT2463487");
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("smartbar.conduitHomepageList", "hxxp://trovi.com/?ctid=CT2463487&SearchSource=13&CUI=UN40503431461772443");
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("smartbar.conduitSearchAddressUrlList", "hxxp://trovi.com/ResultsExt.aspx?ctid=CT2463487&SearchSource=2&CUI=UN40503431461772443&UM=4&q=");
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("smartbar.defaultSearchOwnerCTID", "CT2463487");
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("smartbar.homePageOwnerCTID", "CT2463487");
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("smartbar.homepageList", "hxxp://trovi.com/?ctid=CT2463487&SearchSource=13&CUI=UN40503431461772443");
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("smartbar.machineId", "YFBQO9YMBT0MC+KYXPCGNPA4B8ESPUWCJ6JZV5IB2RNRKWDXV66ZSCKC5ECM6IFVKREKILTLGPRKXIAE9D/67A");
[d5xqvmuk.default] - Řádek Nalezeno : user_pref("smartbar.searchAddressUrlList", "hxxp://trovi.com/ResultsExt.aspx?ctid=CT2463487&SearchSource=2&CUI=UN40503431461772443&UM=4&q=");
*************************
AdwCleaner[R0].txt - [22707 bytů] - [20/05/2015 18:38:53]
########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [22766 bytů] ##########
OS Win 10 Home
Základní deska MSI H110M PRO-VD,
2jádrový procesor Intel Core i3-6098P (3.6GHz, HyperThreading), 8GB operační paměti DDR4 2133 MHz TEAM Elite,
Pevný disk 1TB Seagate Barracuda,
Grafická karta NVIDIA GeForce GTX 750 Ti 2GB GDDR5,
DVD±RW mechanika LG,
Zdroj CHIEFTEC GPB-350S, 350 W
Skříň AIO Virtuo TAB04 Champagne
Základní deska MSI H110M PRO-VD,
2jádrový procesor Intel Core i3-6098P (3.6GHz, HyperThreading), 8GB operační paměti DDR4 2133 MHz TEAM Elite,
Pevný disk 1TB Seagate Barracuda,
Grafická karta NVIDIA GeForce GTX 750 Ti 2GB GDDR5,
DVD±RW mechanika LG,
Zdroj CHIEFTEC GPB-350S, 350 W
Skříň AIO Virtuo TAB04 Champagne
Re: Kontrola logu-není BFE
Malwarebytes Anti-Malware
www.malwarebytes.org
Datum skenování: 20.5.2015
Čas skenování: 19:00:32
Protokol:
Správce: Ano
Verze: 2.01.6.1022
Databáze malwaru: v2015.05.20.04
Databáze rootkitů: v2015.05.16.01
Licence: Bezplatná verze
Ochrana proti malwaru: Vypnuto
Ochrana proti škodlivým webovým stránkám: Vypnuto
Ochrana programu: Vypnuto
OS: Windows 7 Service Pack 1
CPU: x86
Souborový systém: NTFS
Uživatel: Tomik
Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 316642
Uplynulý čas: 21 min, 22 sek
Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto
Procesy: 0
(Nenalezeny žádné škodlivé položky)
Moduly: 0
(Nenalezeny žádné škodlivé položky)
Klíče registru: 69
PUP.Optional.Delta.A, HKLM\SOFTWARE\CLASSES\APPID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}, , [fce89bfac0ca999d536adbb6887b3fc1],
PUP.Optional.Babylon.A, HKU\S-1-5-18\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}, , [b72d880d7a108caa4e128ecaef14d52b],
PUP.Optional.Babylon.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}, , [b72d880d7a108caa4e128ecaef14d52b],
PUP.Optional.MySearchTB.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{62155D33-3CE2-401E-8967-5A270628A3D5}, , [8262cdc8becc3df9512ba0f6996a2bd5],
PUP.Optional.VMNToolBar.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{CCB24E92-62C4-4C53-95D2-65F9EED476BC}, , [f3f19cf92565a096004fc0d304ff21df],
PUP.Optional.InboxToolBar.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{D3D233D5-9F6D-436C-B6C7-E63F77503B30}, , [70744e479eecdc5a34cb0f4963a024dc],
PUP.Optional.InboxToolBar.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{D7E97865-918F-41E4-9CD0-25AB1C574CE8}, , [ca1af99c256578be0df08a08ad56867a],
PUP.Optional.DataMangr.A, HKLM\SOFTWARE\DataMngr, , [0dd7aee795f5d462e8f128e6bd47629e],
PUP.Optional.SpeedChecker.A, HKLM\SOFTWARE\Speedchecker Limited, , [d50fb7def1999d9900a101ecef147d83],
PUP.Optional.WPM.A, HKLM\SOFTWARE\supWindowsMangerProtect, , [bd27eaabc7c32f0704e6c9939a6bef11],
PUP.Optional.SupTab.A, HKLM\SOFTWARE\supWPM, , [7b690c898bff45f17cab18e6cb38916f],
PUP.Optional.WebsSearches.A, HKLM\SOFTWARE\webssearchesSoftware, , [c71d3a5b17730432e4686bb1d92bf50b],
PUP.Optional.GlobalUpdate.A, HKLM\SOFTWARE\CLASSES\globalUpdate.OneClickProcessLauncherMachine, , [5d87bed74a405cda1d00f07d80854db3],
PUP.Optional.GlobalUpdate.A, HKLM\SOFTWARE\CLASSES\globalUpdateUpdate.CoCreateAsync, , [ebf984111b6fdf5774aa224b4fb66c94],
PUP.Optional.GlobalUpdate.A, HKLM\SOFTWARE\CLASSES\globalUpdateUpdate.CoreClass, , [e5ff158048421d1945d9d895a362a858],
PUP.Optional.GlobalUpdate.A, HKLM\SOFTWARE\CLASSES\globalUpdateUpdate.CoreClass.1, , [5b89177eb4d6ad89b26c6effc14405fb],
PUP.Optional.GlobalUpdate.A, HKLM\SOFTWARE\CLASSES\globalUpdateUpdate.CoreMachineClass, , [42a25f36a8e22a0c24fa2b4250b50df3],
PUP.Optional.GlobalUpdate.A, HKLM\SOFTWARE\CLASSES\globalUpdateUpdate.CredentialDialogMachine, , [8262bfd67515a78fdd4183ea798ce917],
PUP.Optional.GlobalUpdate.A, HKLM\SOFTWARE\CLASSES\globalUpdateUpdate.OnDemandCOMClassMachine, , [25bf96ff0c7e54e2fb231d507095ac54],
PUP.Optional.GlobalUpdate.A, HKLM\SOFTWARE\CLASSES\globalUpdateUpdate.OnDemandCOMClassMachineFallback, , [e6fee6afd0baab8be43ace9f91741de3],
PUP.Optional.GlobalUpdate.A, HKLM\SOFTWARE\CLASSES\globalUpdateUpdate.OnDemandCOMClassSvc, , [ad3712837c0ea393849a492413f2e020],
PUP.Optional.GlobalUpdate.A, HKLM\SOFTWARE\CLASSES\globalUpdateUpdate.OnDemandCOMClassSvc.1.0, , [12d22075e3a747ef17073f2e4cb9ce32],
PUP.Optional.GlobalUpdate.A, HKLM\SOFTWARE\CLASSES\globalUpdateUpdate.ProcessLauncher, , [d70d75206129f640b46abab390750ff1],
PUP.Optional.GlobalUpdate.A, HKLM\SOFTWARE\CLASSES\globalUpdateUpdate.Update3COMClassService, , [fee6d4c1fe8cab8b0717dd9072931fe1],
PUP.Optional.GlobalUpdate.A, HKLM\SOFTWARE\CLASSES\globalUpdateUpdate.Update3COMClassService.1.0, , [6183880db2d896a0c05e84e9887d5aa6],
PUP.Optional.GlobalUpdate.A, HKLM\SOFTWARE\CLASSES\globalUpdateUpdate.Update3WebMachine, , [d60eff966327fa3cae70d7967f867b85],
PUP.Optional.GlobalUpdate.A, HKLM\SOFTWARE\CLASSES\globalUpdateUpdate.Update3WebMachineFallback, , [8d57cec70f7bb680150929448184bf41],
PUP.Optional.GlobalUpdate.A, HKLM\SOFTWARE\CLASSES\globalUpdateUpdate.Update3WebSvc, , [e6fe8e07eb9f7fb7db4374f9a461956b],
PUP.Optional.GlobalUpdate.A, HKLM\SOFTWARE\CLASSES\globalUpdateUpdate.Update3WebSvc.1.0, , [6c78a4f191f9ef47d846422bd332fb05],
PUP.Optional.GlobalUpdate.C, HKLM\SOFTWARE\GLOBALUPDATE\UPDATE\Clients, , [a53f5b3a612982b4d755c5ae6a9bf808],
PUP.Optional.GlobalUpdate.T, HKLM\SOFTWARE\GLOBALUPDATE\UPDATE, , [8f552b6a3a50c571e27bf51025dfb14f],
PUP.Optional.SettingsProtector.A, HKLM\SOFTWARE\GOOGLE\CHROME\EXTENSIONS\pgafcinpmmpklohkojmllohdhomoefph, , [895b00957e0ce0566afa46a7e51ee31d],
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\INSTALLEDBROWSEREXTENSIONS\3874, , [52928510a4e686b081e6829ac63e54ac],
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{504CDD53-6D0D-4AB4-86D5-96231F486FB7}, , [489c5c39325895a137f193df0df88a76],
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{95A42A7A-B40B-4589-84B2-96D090A19FB7}, , [9d4703926426320445e4b2c055b0ca36],
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{E5D36EBE-9825-494F-8418-4A191E80F468}, , [29bb4055bcce73c32109aec4fb0ad52b],
PUP.Optional.StartSearch.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{E88E0043-C9D4-4E33-8555-FEE4F5B63060}, , [9d47c0d58ffb7abcf60ca2d10ff64db3],
PUP.Optional.GlobalUpdate.A, HKLM\SOFTWARE\MOZILLAPLUGINS\@staging.google.com/globalUpdate Update;version=10, , [bd27801506847cbaa6d028370cf97d83],
PUP.Optional.GlobalUpdate.A, HKLM\SOFTWARE\MOZILLAPLUGINS\@staging.google.com/globalUpdate Update;version=4, , [4a9afb9aaedc1e187601550ab94c9070],
PUP.Optional.SupTab.A, HKLM\SOFTWARE\SUPDP, , [33b1623342480531bc42ee0fd2310bf5],
PUP.Optional.SupTab.A, HKLM\SOFTWARE\SUPTAB, , [ebf996ffe0aac670e54140be3dc6f808],
PUP.Optional.IEPluginServices.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\EVENTLOG\APPLICATION\IePluginServices, , [598b9bfa7d0d072fc177f9fb6c9726da],
PUP.Optional.WindowsMangerProtect.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\EVENTLOG\APPLICATION\WindowsMangerProtect, , [d70d583d5a309a9c43f66c8846bde31d],
PUP.Optional.TornTV.A, HKU\S-1-5-18\SOFTWARE\TornTv Downloader, , [7a6a23728cfe66d0a781747da3605da3],
PUP.Optional.1ClickDownload.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\1ClickDownload, , [8e562273d1b9be7880b10f3025e0f20e],
PUP.Optional.DataMngr.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\DataMngr, , [875df3a23b4f3cfa942de15c14f16b95],
PUP.Optional.DataMngr.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\DataMngr_Toolbar, , [7c68752029612d095d639ba2fd08f60a],
PUP.Optional.Somoto.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\Somoto, , [39ab1580830779bd3358b44610f36799],
PUP.Optional.WebSearches.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\SupHpUISoft, , [4e96a2f31d6d211500ac8b745ea51ce4],
PUP.Optional.TornTV.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\TornTv Downloader, , [60848b0a7218f244ac7c7d74778c857b],
PUP.Optional.CrossRider.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\APPDATALOW\SOFTWARE\Crossrider, , [11d3395ccbbfc86eb24063eee1249769],
PUP.Optional.TornTV.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\APPDATALOW\SOFTWARE\TheTorntv V10, , [667e7124444643f3b9348a6caf549c64],
PUP.Optional.FilesFrog.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\BI, , [578d2f66840660d63910cd76dd28629e],
PUP.Optional.Conduit.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\CONDUIT\FF, , [14d08114f1990a2c0f3954ef1aeb1be5],
PUP.Optional.ValueApps.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\CONDUIT\ValueApps, , [8c5898fd59317db9810cfa2e877dd030],
PUP.Optional.AlexaTB.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\DISTROMATIC\Toolbars, , [7371f5a013771323202eb292c144c739],
PUP.Optional.GlobalUpdate.C, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\GLOBALUPDATE\UPDATE\PROXY, , [1cc8494c3c4e1a1c014f3d9fbe45ca36],
PUP.Optional.CrossRider.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\INSTALLEDBROWSEREXTENSIONS\3874, , [f2f220758bff0d295859df1b10f3c53b],
PUP.Optional.CrossRider.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\INSTALLEDBROWSEREXTENSIONS\esc, , [af35c6cf44460a2cfa8fdc124bb8be42],
PUP.Optional.CrossRider.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{504CDD53-6D0D-4AB4-86D5-96231F486FB7}, , [8b5953421f6b0e28fe27561cd530c13f],
PUP.Optional.CrossRider.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{95A42A7A-B40B-4589-84B2-96D090A19FB7}, , [72722e67d2b8270f2bfbabc7f90cf709],
PUP.Optional.CrossRider.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{E5D36EBE-9825-494F-8418-4A191E80F468}, , [b72d1085800a9b9b9b8cb9b9c4419c64],
PUP.Optional.Spigot.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{3B7C733A-516A-44D2-A6D0-69014DC38D95}, , [faea92034a40d95dcf1528b3d42f0bf5],
PUP.Optional.Spigot.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{DC66E8F9-0A81-4325-884B-7D562A63DFBD}, , [a44003920783c0760dd734a77a8953ad],
PUP.Optional.StartSearch.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{E88E0043-C9D4-4E33-8555-FEE4F5B63060}, , [34b08a0bf09a7fb7c43d5d1624e18080],
PUP.Optional.BProtector.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\bProtectSettings, , [9f45771e1476171f11f4172a6d98af51],
PUP.Optional.FastStart.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\MOZILLA\EXTENDS, , [f0f42b6a6327ac8acdbb69927f84d927],
PUP.Optional.Somoto.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\SOMOTO\SDP, , [17cda7ee7d0de353d7a8c0828382728e],
PUP.Optional.KeepMySearch.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000_Classes\keepmysearch, , [a2421b7afb8f0c2a33df8f60b84be818],
Hodnoty registru: 24
PUP.Optional.GlobalUpdate.T, HKLM\SOFTWARE\GLOBALUPDATE\UPDATE|path, C:\Program Files\globalUpdate\Update\GoogleUpdate.exe, , [8f552b6a3a50c571e27bf51025dfb14f]
PUP.Optional.GlobalUpdate.C, HKLM\SOFTWARE\GLOBALUPDATE\UPDATEDEV|AuCheckPeriodMs, 21600000, , [b92bcfc6325878be5962f7e4d92ab44c]
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{504cdd53-6d0d-4ab4-86d5-96231f486fb7}|AppName, TheTorntv V10-bg.exe, , [489c5c39325895a137f193df0df88a76]
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{95a42a7a-b40b-4589-84b2-96d090a19fb7}|AppName, TheTorntv V10-buttonutil.exe, , [9d4703926426320445e4b2c055b0ca36]
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{e5d36ebe-9825-494f-8418-4a191e80f468}|AppName, TheTorntv V10-codedownloader.exe, , [29bb4055bcce73c32109aec4fb0ad52b]
PUP.Optional.StartSearch.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{E88E0043-C9D4-4e33-8555-FEE4F5B63060}|URL, http://startsear.ch/?aff=1&src=sp&cf=99 ... d801d84&q={searchTerms}, , [9d47c0d58ffb7abcf60ca2d10ff64db3]
PUP.Optional.FastStart.A, HKLM\SOFTWARE\MOZILLA\FIREFOX\EXTENSIONS|faststartff@gmail.com, C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\extensions\faststartff@gmail.com, , [489c8213c5c59a9cad6583d9b3520ef2]
PUP.Optional.SupTab.A, HKLM\SOFTWARE\SUPDP|dir, C:\Program Files\SupTab, , [33b1623342480531bc42ee0fd2310bf5]
PUP.Optional.SupTab.A, HKLM\SOFTWARE\SUPTAB|ptid, exp, , [ebf996ffe0aac670e54140be3dc6f808]
PUP.Optional.FilesFrog.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\BI|ui_path_filesfrog, HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\FilesFrog Update Checker, , [578d2f66840660d63910cd76dd28629e]
PUP.Optional.GlobalUpdate.C, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\GLOBALUPDATE\UPDATE\PROXY|source, IE, , [1cc8494c3c4e1a1c014f3d9fbe45ca36]
PUP.Optional.CrossRider.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{504cdd53-6d0d-4ab4-86d5-96231f486fb7}|AppName, TheTorntv V10-bg.exe, , [8b5953421f6b0e28fe27561cd530c13f]
PUP.Optional.CrossRider.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{95a42a7a-b40b-4589-84b2-96d090a19fb7}|AppName, TheTorntv V10-buttonutil.exe, , [72722e67d2b8270f2bfbabc7f90cf709]
PUP.Optional.CrossRider.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{e5d36ebe-9825-494f-8418-4a191e80f468}|AppName, TheTorntv V10-codedownloader.exe, , [b72d1085800a9b9b9b8cb9b9c4419c64]
PUP.BProtector, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|bProtector Start Page, http://www.delta-search.com/?affID=1198 ... CF309BD999, , [dc08fd98107a64d28c3647f693725fa1]
PUP.BProtector, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES|bProtectorDefaultScope, {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}, , [855fade82565c274aa19fa432cd9b44c]
PUP.Optional.Babylon.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}|FaviconURL, search.babylon.com/favicon.ico, , [4d97a5f0a7e3b086cea1660540c5857b]
PUP.Optional.Spigot.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{3B7C733A-516A-44D2-A6D0-69014DC38D95}|URL, http://search.yahoo.com/search?fr=chr-g ... erp2tst&p={searchTerms}, , [faea92034a40d95dcf1528b3d42f0bf5]
PUP.Optional.Spigot.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{3B7C733A-516A-44D2-A6D0-69014DC38D95}|OSDFileURL, file:///C:/Program%20Files/Common%20Files/Spigot/Search%20Settings/yahoo_ie.xml, , [09db12837812fb3bd322650dba4b857b]
PUP.Optional.Spigot.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{DC66E8F9-0A81-4325-884B-7D562A63DFBD}|URL, https://search.yahoo.com/search?fr=chr- ... =501549&p={searchTerms}, , [a44003920783c0760dd734a77a8953ad]
PUP.Optional.StartSearch.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{E88E0043-C9D4-4e33-8555-FEE4F5B63060}|URL, http://startsear.ch/?aff=1&src=sp&cf=99 ... d801d84&q={searchTerms}, , [34b08a0bf09a7fb7c43d5d1624e18080]
PUP.Optional.TornTV.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|TornTv Downloader, C:\Users\Tomik\AppData\Roaming\TornTV.com\Torntv Downloader.exe /c=startup , , [25bfa4f1692168ce9f8af5fcf3108e72]
PUP.Optional.FastStart.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\MOZILLA\EXTENDS|appid, faststartff@gmail.com, , [f0f42b6a6327ac8acdbb69927f84d927]
PUP.Optional.Somoto.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\SOMOTO\SDP|affid, network_marimedia_1, , [17cda7ee7d0de353d7a8c0828382728e]
Data registru: 9
PUP.Optional.WebsSearches.A, HKLM\SOFTWARE\CLIENTS\STARTMENUINTERNET\IEXPLORE.EXE\SHELL\OPEN\COMMAND, C:\Program Files\Internet Explorer\iexplore.exe http://istart.webssearches.com/?type=sc ... J9CZ907716, Dobré: (iexplore.exe), Špatné: (C:\Program Files\Internet Explorer\iexplore.exe http://istart.webssearches.com/?type=sc ... J9CZ907716),,[ad375b3a4a4043f3a8410c0d56b0ac54]
PUP.Optional.WebsSearches, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Search_URL, http://istart.webssearches.com/web/?typ ... Z907716&q={searchTerms}, Dobré: (www.google.com), Špatné: (http://istart.webssearches.com/web/?typ ... Z907716&q={searchTerms}),,[6183d9bc95f52d095d7eab6c30d6d12f]
PUP.Optional.WebsSearches, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Page_URL, http://istart.webssearches.com/?type=hp ... J9CZ907716, Dobré: (www.google.com), Špatné: (http://istart.webssearches.com/?type=hp ... J9CZ907716),,[f2f27c19cac0ed49edee04134eb8cf31]
PUP.Optional.WebsSearches, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, http://istart.webssearches.com/?type=hp ... J9CZ907716, Dobré: (www.google.com), Špatné: (http://istart.webssearches.com/?type=hp ... J9CZ907716),,[7c68e8ad701a6ec8e6f53add00067b85]
PUP.Optional.WebsSearches, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Search Page, http://istart.webssearches.com/web/?typ ... Z907716&q={searchTerms}, Dobré: (www.google.com), Špatné: (http://istart.webssearches.com/web/?typ ... Z907716&q={searchTerms}),,[d50fe2b35733e84e26b50b0cde28be42]
PUP.Optional.Qone8, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES|DefaultScope, {33BB0A4E-99AF-4226-BDF6-49120163DE86}, Dobré: ({0633EE93-D776-472f-A0FF-E1416B8B2E3A}), Špatné: ({33BB0A4E-99AF-4226-BDF6-49120163DE86}),,[6b7973225a30e94da5e781a2010549b7]
PUP.Optional.VMNToolBar.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, http://www.mystart.com/?pr=vmn&id=mysta ... 4&src=5224, Dobré: (www.google.com), Špatné: (http://www.mystart.com/?pr=vmn&id=mysta ... 4&src=5224),,[faea395cf199d462d588e73ce71f8779]
PUP.Optional.WebsSearches, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Page_URL, http://istart.webssearches.com/?type=hp ... J9CZ907716, Dobré: (www.google.com), Špatné: (http://istart.webssearches.com/?type=hp ... J9CZ907716),,[b232009541491026c51723f434d220e0]
PUP.Optional.StartPage, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|bProtector Start Page, http://www.delta-search.com/?affID=1198 ... CF309BD999, Dobré: (www.google.com), Špatné: (http://www.delta-search.com/?affID=1198 ... CF309BD999),,[bd277025f4961d19e04437ec53b3817f]
Složky: 13
PUP.Optional.OpenCandy, C:\Users\Tomik\AppData\Roaming\OpenCandy, , [cc18c8cde7a358debf0713939b68b54b],
PUP.Optional.OpenCandy, C:\Users\Tomik\AppData\Roaming\OpenCandy\1C5F0E3509174B3982FC43E9924D5462, , [cc18c8cde7a358debf0713939b68b54b],
PUP.Optional.OpenCandy, C:\Users\Tomik\AppData\Roaming\OpenCandy\OpenCandy_1C5F0E3509174B3982FC43E9924D5462, , [cc18c8cde7a358debf0713939b68b54b],
PUP.Optional.FilesFrog.A, C:\Users\Tomik\AppData\Local\FilesFrog Update Checker, , [bf2572235d2d4ee8f718c8df41c2ef11],
PUP.Optional.AmazonTB.A, C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\jetpack\abb@amazon.com, , [c91b3c59ff8b69cd5d25901b42c19b65],
PUP.Optional.AmazonTB.A, C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\jetpack\abb@amazon.com\simple-storage, , [c91b3c59ff8b69cd5d25901b42c19b65],
PUP.Optional.OnlySearch, C:\Users\Tomik\AppData\Local\onlysearch, , [bc28920371197cba50e93e83d62dcc34],
PUP.Optional.OnlySearch, C:\Users\Tomik\AppData\Local\onlysearch\onlysearch, , [bc28920371197cba50e93e83d62dcc34],
PUP.Optional.OnlySearch, C:\Users\Tomik\AppData\Local\onlysearch\onlysearch\1.3.12.9, , [bc28920371197cba50e93e83d62dcc34],
PUP.Optional.TornTV.A, C:\Users\Tomik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TornTV.com, , [26bec4d1b1d9ee48aa58f7cd679ce41c],
PUP.Optional.MaintainerSvc.A, C:\ProgramData\685d26dc-c30a-434b-bda2-3004e8743669, , [e301e5b00486ea4c6de195338e751ae6],
PUP.Optional.TornTV.A, C:\Users\Tomik\AppData\Roaming\TornTV.com, , [6d778d08890180b69e65e4ed9a697b85],
PUP.Optional.TornTV.A, C:\Users\Tomik\AppData\Roaming\TornTV.com\Torrents, , [6d778d08890180b69e65e4ed9a697b85],
Soubory: 30
PUP.Optional.BProtector.A, C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\bProtector_extensions.sqlite, , [7f657223abdf3600915c27b2de251ae6],
PUP.Optional.BProtector.A, C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\bprotector_prefs.js, , [11d365300d7d8caa31bc37a27d86c53b],
PUP.Optional.ICQPlugin.A, C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\searchplugins\icqplugin-6.xml, , [fee6e4b1d3b73afc80d1e6fde81bb947],
PUP.Optional.ICQPlugin.A, C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\searchplugins\icqplugin-7.xml, , [5193bcd994f6c2745001dd0638cbb14f],
PUP.Optional.ICQPlugin.A, C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\searchplugins\icqplugin-8.xml, , [b1339cf96b1f1f1785cce102699a30d0],
PUP.Optional.ICQPlugin.A, C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\searchplugins\icqplugin.xml, , [8460d9bccdbdc571074a3ba8e023c739],
PUP.Optional.TornTV.A, C:\Users\Tomik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TornTvDownloader.lnk, , [e004ddb84f3b072f382923d7679c8a76],
PUP.Optional.BrowserProtect.A, C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\searchplugins\BrowserProtect.xml, , [598bc6cf6c1e1d1936197990030152ae],
PUP.Optional.Babylon.A, C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\searchplugins\babylon.xml, , [9b4991044842b680ecda20fdf50fbe42],
PUP.Optional.Babylon.A, C:\Program Files\Mozilla Firefox\searchplugins\babylon.xml, , [6b79a3f26426aa8c029bbc66a163d42c],
PUP.Optional.YourFileDownloader, C:\Windows\System32\Tasks\Update Service YourFileDownloader, , [eafa375e69213303f81d421f5ea7b54b],
PUP.Optional.TornTV.A, C:\Users\Tomik\AppData\Roaming\TornTV.com\Torntv Downloader.exe, , [25bfa4f1692168ce9f8af5fcf3108e72],
PUP.Optional.AmazonTB.A, C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\jetpack\abb@amazon.com\simple-storage\store.json, , [c91b3c59ff8b69cd5d25901b42c19b65],
PUP.Optional.OnlySearch, C:\Users\Tomik\AppData\Local\onlysearch\onlysearch\1.3.12.9\app.ini, , [bc28920371197cba50e93e83d62dcc34],
PUP.Optional.TornTV.A, C:\Users\Tomik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TornTV.com\Torntv Downloader.lnk, , [26bec4d1b1d9ee48aa58f7cd679ce41c],
PUP.Optional.TornTV.A, C:\Users\Tomik\AppData\Roaming\TornTV.com\CMUtils.dll, , [6d778d08890180b69e65e4ed9a697b85],
PUP.Optional.TornTV.A, C:\Users\Tomik\AppData\Roaming\TornTV.com\config.dat, , [6d778d08890180b69e65e4ed9a697b85],
PUP.Optional.TornTV.A, C:\Users\Tomik\AppData\Roaming\TornTV.com\fastresume.data, , [6d778d08890180b69e65e4ed9a697b85],
PUP.Optional.TornTV.A, C:\Users\Tomik\AppData\Roaming\TornTV.com\Interop.IWshRuntimeLibrary.dll, , [6d778d08890180b69e65e4ed9a697b85],
PUP.Optional.TornTV.A, C:\Users\Tomik\AppData\Roaming\TornTV.com\MonoTorrent.Dht.dll, , [6d778d08890180b69e65e4ed9a697b85],
PUP.Optional.TornTV.A, C:\Users\Tomik\AppData\Roaming\TornTV.com\MonoTorrent.dll, , [6d778d08890180b69e65e4ed9a697b85],
PUP.Optional.TornTV.A, C:\Users\Tomik\AppData\Roaming\TornTV.com\nodes.dht, , [6d778d08890180b69e65e4ed9a697b85],
PUP.Optional.TornTV.A, C:\Users\Tomik\AppData\Roaming\TornTV.com\TornTV Downloader.exe.config, , [6d778d08890180b69e65e4ed9a697b85],
PUP.Optional.TornTV.A, C:\Users\Tomik\AppData\Roaming\TornTV.com\TornTvDownloader.lnk, , [6d778d08890180b69e65e4ed9a697b85],
PUP.Optional.TornTV.A, C:\Users\Tomik\AppData\Roaming\TornTV.com\TornTVSvc.exe, , [6d778d08890180b69e65e4ed9a697b85],
PUP.Optional.TornTV.A, C:\Users\Tomik\AppData\Roaming\TornTV.com\TornTvUpdater.exe, , [6d778d08890180b69e65e4ed9a697b85],
PUP.Optional.MyStartTB.A, C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\prefs.js, Dobré: (), Špatné: (user_pref("browser.search.selectedEngine", "Search The Web");), ,[549082133a509d99d67f025fe81e8a76]
PUP.Optional.Trovi.A, C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\prefs.js, Dobré: (), Špatné: (user_pref("keyword.URL", "http://trovi.com/ResultsExt.aspx?ctid=CT2463487&SearchSource=2&CUI=UN40503431461772443&UM=4&q=");), ,[c61e603596f42412581c5a0a52b410f0]
PUP.Optional.Conduit.A, C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\prefs.js, Dobré: (), Špatné: (user_pref("browser.search.defaulturl", "http://search.conduit.com/ResultsExt.aspx?ctid=CT2463487&SearchSource=3&q={searchTerms}");), ,[3fa5266fc1c93ff71f014124b0568080]
PUP.Optional.Conduit.A, C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\prefs.js, Dobré: (), Špatné: (user_pref("CT2463487.lastNewTabSettings", "{\"isEnabled\":true,\"newTabUrl\":\"http://search.conduit.com/?gd=&ctid=CT2463487&octid=CT2463487&ISID=ISID_ID&SearchSource=15&CUI=UN40503431461772443&Lay=1&UM=4\"}");), ,[08dcdbbac8c2b97da48b8cd949bdb749]
Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)
(end)
www.malwarebytes.org
Datum skenování: 20.5.2015
Čas skenování: 19:00:32
Protokol:
Správce: Ano
Verze: 2.01.6.1022
Databáze malwaru: v2015.05.20.04
Databáze rootkitů: v2015.05.16.01
Licence: Bezplatná verze
Ochrana proti malwaru: Vypnuto
Ochrana proti škodlivým webovým stránkám: Vypnuto
Ochrana programu: Vypnuto
OS: Windows 7 Service Pack 1
CPU: x86
Souborový systém: NTFS
Uživatel: Tomik
Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 316642
Uplynulý čas: 21 min, 22 sek
Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto
Procesy: 0
(Nenalezeny žádné škodlivé položky)
Moduly: 0
(Nenalezeny žádné škodlivé položky)
Klíče registru: 69
PUP.Optional.Delta.A, HKLM\SOFTWARE\CLASSES\APPID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}, , [fce89bfac0ca999d536adbb6887b3fc1],
PUP.Optional.Babylon.A, HKU\S-1-5-18\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}, , [b72d880d7a108caa4e128ecaef14d52b],
PUP.Optional.Babylon.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}, , [b72d880d7a108caa4e128ecaef14d52b],
PUP.Optional.MySearchTB.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{62155D33-3CE2-401E-8967-5A270628A3D5}, , [8262cdc8becc3df9512ba0f6996a2bd5],
PUP.Optional.VMNToolBar.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{CCB24E92-62C4-4C53-95D2-65F9EED476BC}, , [f3f19cf92565a096004fc0d304ff21df],
PUP.Optional.InboxToolBar.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{D3D233D5-9F6D-436C-B6C7-E63F77503B30}, , [70744e479eecdc5a34cb0f4963a024dc],
PUP.Optional.InboxToolBar.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{D7E97865-918F-41E4-9CD0-25AB1C574CE8}, , [ca1af99c256578be0df08a08ad56867a],
PUP.Optional.DataMangr.A, HKLM\SOFTWARE\DataMngr, , [0dd7aee795f5d462e8f128e6bd47629e],
PUP.Optional.SpeedChecker.A, HKLM\SOFTWARE\Speedchecker Limited, , [d50fb7def1999d9900a101ecef147d83],
PUP.Optional.WPM.A, HKLM\SOFTWARE\supWindowsMangerProtect, , [bd27eaabc7c32f0704e6c9939a6bef11],
PUP.Optional.SupTab.A, HKLM\SOFTWARE\supWPM, , [7b690c898bff45f17cab18e6cb38916f],
PUP.Optional.WebsSearches.A, HKLM\SOFTWARE\webssearchesSoftware, , [c71d3a5b17730432e4686bb1d92bf50b],
PUP.Optional.GlobalUpdate.A, HKLM\SOFTWARE\CLASSES\globalUpdate.OneClickProcessLauncherMachine, , [5d87bed74a405cda1d00f07d80854db3],
PUP.Optional.GlobalUpdate.A, HKLM\SOFTWARE\CLASSES\globalUpdateUpdate.CoCreateAsync, , [ebf984111b6fdf5774aa224b4fb66c94],
PUP.Optional.GlobalUpdate.A, HKLM\SOFTWARE\CLASSES\globalUpdateUpdate.CoreClass, , [e5ff158048421d1945d9d895a362a858],
PUP.Optional.GlobalUpdate.A, HKLM\SOFTWARE\CLASSES\globalUpdateUpdate.CoreClass.1, , [5b89177eb4d6ad89b26c6effc14405fb],
PUP.Optional.GlobalUpdate.A, HKLM\SOFTWARE\CLASSES\globalUpdateUpdate.CoreMachineClass, , [42a25f36a8e22a0c24fa2b4250b50df3],
PUP.Optional.GlobalUpdate.A, HKLM\SOFTWARE\CLASSES\globalUpdateUpdate.CredentialDialogMachine, , [8262bfd67515a78fdd4183ea798ce917],
PUP.Optional.GlobalUpdate.A, HKLM\SOFTWARE\CLASSES\globalUpdateUpdate.OnDemandCOMClassMachine, , [25bf96ff0c7e54e2fb231d507095ac54],
PUP.Optional.GlobalUpdate.A, HKLM\SOFTWARE\CLASSES\globalUpdateUpdate.OnDemandCOMClassMachineFallback, , [e6fee6afd0baab8be43ace9f91741de3],
PUP.Optional.GlobalUpdate.A, HKLM\SOFTWARE\CLASSES\globalUpdateUpdate.OnDemandCOMClassSvc, , [ad3712837c0ea393849a492413f2e020],
PUP.Optional.GlobalUpdate.A, HKLM\SOFTWARE\CLASSES\globalUpdateUpdate.OnDemandCOMClassSvc.1.0, , [12d22075e3a747ef17073f2e4cb9ce32],
PUP.Optional.GlobalUpdate.A, HKLM\SOFTWARE\CLASSES\globalUpdateUpdate.ProcessLauncher, , [d70d75206129f640b46abab390750ff1],
PUP.Optional.GlobalUpdate.A, HKLM\SOFTWARE\CLASSES\globalUpdateUpdate.Update3COMClassService, , [fee6d4c1fe8cab8b0717dd9072931fe1],
PUP.Optional.GlobalUpdate.A, HKLM\SOFTWARE\CLASSES\globalUpdateUpdate.Update3COMClassService.1.0, , [6183880db2d896a0c05e84e9887d5aa6],
PUP.Optional.GlobalUpdate.A, HKLM\SOFTWARE\CLASSES\globalUpdateUpdate.Update3WebMachine, , [d60eff966327fa3cae70d7967f867b85],
PUP.Optional.GlobalUpdate.A, HKLM\SOFTWARE\CLASSES\globalUpdateUpdate.Update3WebMachineFallback, , [8d57cec70f7bb680150929448184bf41],
PUP.Optional.GlobalUpdate.A, HKLM\SOFTWARE\CLASSES\globalUpdateUpdate.Update3WebSvc, , [e6fe8e07eb9f7fb7db4374f9a461956b],
PUP.Optional.GlobalUpdate.A, HKLM\SOFTWARE\CLASSES\globalUpdateUpdate.Update3WebSvc.1.0, , [6c78a4f191f9ef47d846422bd332fb05],
PUP.Optional.GlobalUpdate.C, HKLM\SOFTWARE\GLOBALUPDATE\UPDATE\Clients, , [a53f5b3a612982b4d755c5ae6a9bf808],
PUP.Optional.GlobalUpdate.T, HKLM\SOFTWARE\GLOBALUPDATE\UPDATE, , [8f552b6a3a50c571e27bf51025dfb14f],
PUP.Optional.SettingsProtector.A, HKLM\SOFTWARE\GOOGLE\CHROME\EXTENSIONS\pgafcinpmmpklohkojmllohdhomoefph, , [895b00957e0ce0566afa46a7e51ee31d],
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\INSTALLEDBROWSEREXTENSIONS\3874, , [52928510a4e686b081e6829ac63e54ac],
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{504CDD53-6D0D-4AB4-86D5-96231F486FB7}, , [489c5c39325895a137f193df0df88a76],
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{95A42A7A-B40B-4589-84B2-96D090A19FB7}, , [9d4703926426320445e4b2c055b0ca36],
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{E5D36EBE-9825-494F-8418-4A191E80F468}, , [29bb4055bcce73c32109aec4fb0ad52b],
PUP.Optional.StartSearch.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{E88E0043-C9D4-4E33-8555-FEE4F5B63060}, , [9d47c0d58ffb7abcf60ca2d10ff64db3],
PUP.Optional.GlobalUpdate.A, HKLM\SOFTWARE\MOZILLAPLUGINS\@staging.google.com/globalUpdate Update;version=10, , [bd27801506847cbaa6d028370cf97d83],
PUP.Optional.GlobalUpdate.A, HKLM\SOFTWARE\MOZILLAPLUGINS\@staging.google.com/globalUpdate Update;version=4, , [4a9afb9aaedc1e187601550ab94c9070],
PUP.Optional.SupTab.A, HKLM\SOFTWARE\SUPDP, , [33b1623342480531bc42ee0fd2310bf5],
PUP.Optional.SupTab.A, HKLM\SOFTWARE\SUPTAB, , [ebf996ffe0aac670e54140be3dc6f808],
PUP.Optional.IEPluginServices.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\EVENTLOG\APPLICATION\IePluginServices, , [598b9bfa7d0d072fc177f9fb6c9726da],
PUP.Optional.WindowsMangerProtect.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\EVENTLOG\APPLICATION\WindowsMangerProtect, , [d70d583d5a309a9c43f66c8846bde31d],
PUP.Optional.TornTV.A, HKU\S-1-5-18\SOFTWARE\TornTv Downloader, , [7a6a23728cfe66d0a781747da3605da3],
PUP.Optional.1ClickDownload.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\1ClickDownload, , [8e562273d1b9be7880b10f3025e0f20e],
PUP.Optional.DataMngr.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\DataMngr, , [875df3a23b4f3cfa942de15c14f16b95],
PUP.Optional.DataMngr.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\DataMngr_Toolbar, , [7c68752029612d095d639ba2fd08f60a],
PUP.Optional.Somoto.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\Somoto, , [39ab1580830779bd3358b44610f36799],
PUP.Optional.WebSearches.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\SupHpUISoft, , [4e96a2f31d6d211500ac8b745ea51ce4],
PUP.Optional.TornTV.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\TornTv Downloader, , [60848b0a7218f244ac7c7d74778c857b],
PUP.Optional.CrossRider.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\APPDATALOW\SOFTWARE\Crossrider, , [11d3395ccbbfc86eb24063eee1249769],
PUP.Optional.TornTV.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\APPDATALOW\SOFTWARE\TheTorntv V10, , [667e7124444643f3b9348a6caf549c64],
PUP.Optional.FilesFrog.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\BI, , [578d2f66840660d63910cd76dd28629e],
PUP.Optional.Conduit.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\CONDUIT\FF, , [14d08114f1990a2c0f3954ef1aeb1be5],
PUP.Optional.ValueApps.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\CONDUIT\ValueApps, , [8c5898fd59317db9810cfa2e877dd030],
PUP.Optional.AlexaTB.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\DISTROMATIC\Toolbars, , [7371f5a013771323202eb292c144c739],
PUP.Optional.GlobalUpdate.C, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\GLOBALUPDATE\UPDATE\PROXY, , [1cc8494c3c4e1a1c014f3d9fbe45ca36],
PUP.Optional.CrossRider.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\INSTALLEDBROWSEREXTENSIONS\3874, , [f2f220758bff0d295859df1b10f3c53b],
PUP.Optional.CrossRider.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\INSTALLEDBROWSEREXTENSIONS\esc, , [af35c6cf44460a2cfa8fdc124bb8be42],
PUP.Optional.CrossRider.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{504CDD53-6D0D-4AB4-86D5-96231F486FB7}, , [8b5953421f6b0e28fe27561cd530c13f],
PUP.Optional.CrossRider.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{95A42A7A-B40B-4589-84B2-96D090A19FB7}, , [72722e67d2b8270f2bfbabc7f90cf709],
PUP.Optional.CrossRider.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{E5D36EBE-9825-494F-8418-4A191E80F468}, , [b72d1085800a9b9b9b8cb9b9c4419c64],
PUP.Optional.Spigot.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{3B7C733A-516A-44D2-A6D0-69014DC38D95}, , [faea92034a40d95dcf1528b3d42f0bf5],
PUP.Optional.Spigot.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{DC66E8F9-0A81-4325-884B-7D562A63DFBD}, , [a44003920783c0760dd734a77a8953ad],
PUP.Optional.StartSearch.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{E88E0043-C9D4-4E33-8555-FEE4F5B63060}, , [34b08a0bf09a7fb7c43d5d1624e18080],
PUP.Optional.BProtector.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\bProtectSettings, , [9f45771e1476171f11f4172a6d98af51],
PUP.Optional.FastStart.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\MOZILLA\EXTENDS, , [f0f42b6a6327ac8acdbb69927f84d927],
PUP.Optional.Somoto.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\SOMOTO\SDP, , [17cda7ee7d0de353d7a8c0828382728e],
PUP.Optional.KeepMySearch.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000_Classes\keepmysearch, , [a2421b7afb8f0c2a33df8f60b84be818],
Hodnoty registru: 24
PUP.Optional.GlobalUpdate.T, HKLM\SOFTWARE\GLOBALUPDATE\UPDATE|path, C:\Program Files\globalUpdate\Update\GoogleUpdate.exe, , [8f552b6a3a50c571e27bf51025dfb14f]
PUP.Optional.GlobalUpdate.C, HKLM\SOFTWARE\GLOBALUPDATE\UPDATEDEV|AuCheckPeriodMs, 21600000, , [b92bcfc6325878be5962f7e4d92ab44c]
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{504cdd53-6d0d-4ab4-86d5-96231f486fb7}|AppName, TheTorntv V10-bg.exe, , [489c5c39325895a137f193df0df88a76]
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{95a42a7a-b40b-4589-84b2-96d090a19fb7}|AppName, TheTorntv V10-buttonutil.exe, , [9d4703926426320445e4b2c055b0ca36]
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{e5d36ebe-9825-494f-8418-4a191e80f468}|AppName, TheTorntv V10-codedownloader.exe, , [29bb4055bcce73c32109aec4fb0ad52b]
PUP.Optional.StartSearch.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{E88E0043-C9D4-4e33-8555-FEE4F5B63060}|URL, http://startsear.ch/?aff=1&src=sp&cf=99 ... d801d84&q={searchTerms}, , [9d47c0d58ffb7abcf60ca2d10ff64db3]
PUP.Optional.FastStart.A, HKLM\SOFTWARE\MOZILLA\FIREFOX\EXTENSIONS|faststartff@gmail.com, C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\extensions\faststartff@gmail.com, , [489c8213c5c59a9cad6583d9b3520ef2]
PUP.Optional.SupTab.A, HKLM\SOFTWARE\SUPDP|dir, C:\Program Files\SupTab, , [33b1623342480531bc42ee0fd2310bf5]
PUP.Optional.SupTab.A, HKLM\SOFTWARE\SUPTAB|ptid, exp, , [ebf996ffe0aac670e54140be3dc6f808]
PUP.Optional.FilesFrog.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\BI|ui_path_filesfrog, HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\FilesFrog Update Checker, , [578d2f66840660d63910cd76dd28629e]
PUP.Optional.GlobalUpdate.C, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\GLOBALUPDATE\UPDATE\PROXY|source, IE, , [1cc8494c3c4e1a1c014f3d9fbe45ca36]
PUP.Optional.CrossRider.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{504cdd53-6d0d-4ab4-86d5-96231f486fb7}|AppName, TheTorntv V10-bg.exe, , [8b5953421f6b0e28fe27561cd530c13f]
PUP.Optional.CrossRider.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{95a42a7a-b40b-4589-84b2-96d090a19fb7}|AppName, TheTorntv V10-buttonutil.exe, , [72722e67d2b8270f2bfbabc7f90cf709]
PUP.Optional.CrossRider.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{e5d36ebe-9825-494f-8418-4a191e80f468}|AppName, TheTorntv V10-codedownloader.exe, , [b72d1085800a9b9b9b8cb9b9c4419c64]
PUP.BProtector, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|bProtector Start Page, http://www.delta-search.com/?affID=1198 ... CF309BD999, , [dc08fd98107a64d28c3647f693725fa1]
PUP.BProtector, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES|bProtectorDefaultScope, {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}, , [855fade82565c274aa19fa432cd9b44c]
PUP.Optional.Babylon.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}|FaviconURL, search.babylon.com/favicon.ico, , [4d97a5f0a7e3b086cea1660540c5857b]
PUP.Optional.Spigot.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{3B7C733A-516A-44D2-A6D0-69014DC38D95}|URL, http://search.yahoo.com/search?fr=chr-g ... erp2tst&p={searchTerms}, , [faea92034a40d95dcf1528b3d42f0bf5]
PUP.Optional.Spigot.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{3B7C733A-516A-44D2-A6D0-69014DC38D95}|OSDFileURL, file:///C:/Program%20Files/Common%20Files/Spigot/Search%20Settings/yahoo_ie.xml, , [09db12837812fb3bd322650dba4b857b]
PUP.Optional.Spigot.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{DC66E8F9-0A81-4325-884B-7D562A63DFBD}|URL, https://search.yahoo.com/search?fr=chr- ... =501549&p={searchTerms}, , [a44003920783c0760dd734a77a8953ad]
PUP.Optional.StartSearch.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{E88E0043-C9D4-4e33-8555-FEE4F5B63060}|URL, http://startsear.ch/?aff=1&src=sp&cf=99 ... d801d84&q={searchTerms}, , [34b08a0bf09a7fb7c43d5d1624e18080]
PUP.Optional.TornTV.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|TornTv Downloader, C:\Users\Tomik\AppData\Roaming\TornTV.com\Torntv Downloader.exe /c=startup , , [25bfa4f1692168ce9f8af5fcf3108e72]
PUP.Optional.FastStart.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\MOZILLA\EXTENDS|appid, faststartff@gmail.com, , [f0f42b6a6327ac8acdbb69927f84d927]
PUP.Optional.Somoto.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\SOMOTO\SDP|affid, network_marimedia_1, , [17cda7ee7d0de353d7a8c0828382728e]
Data registru: 9
PUP.Optional.WebsSearches.A, HKLM\SOFTWARE\CLIENTS\STARTMENUINTERNET\IEXPLORE.EXE\SHELL\OPEN\COMMAND, C:\Program Files\Internet Explorer\iexplore.exe http://istart.webssearches.com/?type=sc ... J9CZ907716, Dobré: (iexplore.exe), Špatné: (C:\Program Files\Internet Explorer\iexplore.exe http://istart.webssearches.com/?type=sc ... J9CZ907716),,[ad375b3a4a4043f3a8410c0d56b0ac54]
PUP.Optional.WebsSearches, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Search_URL, http://istart.webssearches.com/web/?typ ... Z907716&q={searchTerms}, Dobré: (www.google.com), Špatné: (http://istart.webssearches.com/web/?typ ... Z907716&q={searchTerms}),,[6183d9bc95f52d095d7eab6c30d6d12f]
PUP.Optional.WebsSearches, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Page_URL, http://istart.webssearches.com/?type=hp ... J9CZ907716, Dobré: (www.google.com), Špatné: (http://istart.webssearches.com/?type=hp ... J9CZ907716),,[f2f27c19cac0ed49edee04134eb8cf31]
PUP.Optional.WebsSearches, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, http://istart.webssearches.com/?type=hp ... J9CZ907716, Dobré: (www.google.com), Špatné: (http://istart.webssearches.com/?type=hp ... J9CZ907716),,[7c68e8ad701a6ec8e6f53add00067b85]
PUP.Optional.WebsSearches, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Search Page, http://istart.webssearches.com/web/?typ ... Z907716&q={searchTerms}, Dobré: (www.google.com), Špatné: (http://istart.webssearches.com/web/?typ ... Z907716&q={searchTerms}),,[d50fe2b35733e84e26b50b0cde28be42]
PUP.Optional.Qone8, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES|DefaultScope, {33BB0A4E-99AF-4226-BDF6-49120163DE86}, Dobré: ({0633EE93-D776-472f-A0FF-E1416B8B2E3A}), Špatné: ({33BB0A4E-99AF-4226-BDF6-49120163DE86}),,[6b7973225a30e94da5e781a2010549b7]
PUP.Optional.VMNToolBar.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, http://www.mystart.com/?pr=vmn&id=mysta ... 4&src=5224, Dobré: (www.google.com), Špatné: (http://www.mystart.com/?pr=vmn&id=mysta ... 4&src=5224),,[faea395cf199d462d588e73ce71f8779]
PUP.Optional.WebsSearches, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Page_URL, http://istart.webssearches.com/?type=hp ... J9CZ907716, Dobré: (www.google.com), Špatné: (http://istart.webssearches.com/?type=hp ... J9CZ907716),,[b232009541491026c51723f434d220e0]
PUP.Optional.StartPage, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|bProtector Start Page, http://www.delta-search.com/?affID=1198 ... CF309BD999, Dobré: (www.google.com), Špatné: (http://www.delta-search.com/?affID=1198 ... CF309BD999),,[bd277025f4961d19e04437ec53b3817f]
Složky: 13
PUP.Optional.OpenCandy, C:\Users\Tomik\AppData\Roaming\OpenCandy, , [cc18c8cde7a358debf0713939b68b54b],
PUP.Optional.OpenCandy, C:\Users\Tomik\AppData\Roaming\OpenCandy\1C5F0E3509174B3982FC43E9924D5462, , [cc18c8cde7a358debf0713939b68b54b],
PUP.Optional.OpenCandy, C:\Users\Tomik\AppData\Roaming\OpenCandy\OpenCandy_1C5F0E3509174B3982FC43E9924D5462, , [cc18c8cde7a358debf0713939b68b54b],
PUP.Optional.FilesFrog.A, C:\Users\Tomik\AppData\Local\FilesFrog Update Checker, , [bf2572235d2d4ee8f718c8df41c2ef11],
PUP.Optional.AmazonTB.A, C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\jetpack\abb@amazon.com, , [c91b3c59ff8b69cd5d25901b42c19b65],
PUP.Optional.AmazonTB.A, C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\jetpack\abb@amazon.com\simple-storage, , [c91b3c59ff8b69cd5d25901b42c19b65],
PUP.Optional.OnlySearch, C:\Users\Tomik\AppData\Local\onlysearch, , [bc28920371197cba50e93e83d62dcc34],
PUP.Optional.OnlySearch, C:\Users\Tomik\AppData\Local\onlysearch\onlysearch, , [bc28920371197cba50e93e83d62dcc34],
PUP.Optional.OnlySearch, C:\Users\Tomik\AppData\Local\onlysearch\onlysearch\1.3.12.9, , [bc28920371197cba50e93e83d62dcc34],
PUP.Optional.TornTV.A, C:\Users\Tomik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TornTV.com, , [26bec4d1b1d9ee48aa58f7cd679ce41c],
PUP.Optional.MaintainerSvc.A, C:\ProgramData\685d26dc-c30a-434b-bda2-3004e8743669, , [e301e5b00486ea4c6de195338e751ae6],
PUP.Optional.TornTV.A, C:\Users\Tomik\AppData\Roaming\TornTV.com, , [6d778d08890180b69e65e4ed9a697b85],
PUP.Optional.TornTV.A, C:\Users\Tomik\AppData\Roaming\TornTV.com\Torrents, , [6d778d08890180b69e65e4ed9a697b85],
Soubory: 30
PUP.Optional.BProtector.A, C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\bProtector_extensions.sqlite, , [7f657223abdf3600915c27b2de251ae6],
PUP.Optional.BProtector.A, C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\bprotector_prefs.js, , [11d365300d7d8caa31bc37a27d86c53b],
PUP.Optional.ICQPlugin.A, C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\searchplugins\icqplugin-6.xml, , [fee6e4b1d3b73afc80d1e6fde81bb947],
PUP.Optional.ICQPlugin.A, C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\searchplugins\icqplugin-7.xml, , [5193bcd994f6c2745001dd0638cbb14f],
PUP.Optional.ICQPlugin.A, C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\searchplugins\icqplugin-8.xml, , [b1339cf96b1f1f1785cce102699a30d0],
PUP.Optional.ICQPlugin.A, C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\searchplugins\icqplugin.xml, , [8460d9bccdbdc571074a3ba8e023c739],
PUP.Optional.TornTV.A, C:\Users\Tomik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TornTvDownloader.lnk, , [e004ddb84f3b072f382923d7679c8a76],
PUP.Optional.BrowserProtect.A, C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\searchplugins\BrowserProtect.xml, , [598bc6cf6c1e1d1936197990030152ae],
PUP.Optional.Babylon.A, C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\searchplugins\babylon.xml, , [9b4991044842b680ecda20fdf50fbe42],
PUP.Optional.Babylon.A, C:\Program Files\Mozilla Firefox\searchplugins\babylon.xml, , [6b79a3f26426aa8c029bbc66a163d42c],
PUP.Optional.YourFileDownloader, C:\Windows\System32\Tasks\Update Service YourFileDownloader, , [eafa375e69213303f81d421f5ea7b54b],
PUP.Optional.TornTV.A, C:\Users\Tomik\AppData\Roaming\TornTV.com\Torntv Downloader.exe, , [25bfa4f1692168ce9f8af5fcf3108e72],
PUP.Optional.AmazonTB.A, C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\jetpack\abb@amazon.com\simple-storage\store.json, , [c91b3c59ff8b69cd5d25901b42c19b65],
PUP.Optional.OnlySearch, C:\Users\Tomik\AppData\Local\onlysearch\onlysearch\1.3.12.9\app.ini, , [bc28920371197cba50e93e83d62dcc34],
PUP.Optional.TornTV.A, C:\Users\Tomik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TornTV.com\Torntv Downloader.lnk, , [26bec4d1b1d9ee48aa58f7cd679ce41c],
PUP.Optional.TornTV.A, C:\Users\Tomik\AppData\Roaming\TornTV.com\CMUtils.dll, , [6d778d08890180b69e65e4ed9a697b85],
PUP.Optional.TornTV.A, C:\Users\Tomik\AppData\Roaming\TornTV.com\config.dat, , [6d778d08890180b69e65e4ed9a697b85],
PUP.Optional.TornTV.A, C:\Users\Tomik\AppData\Roaming\TornTV.com\fastresume.data, , [6d778d08890180b69e65e4ed9a697b85],
PUP.Optional.TornTV.A, C:\Users\Tomik\AppData\Roaming\TornTV.com\Interop.IWshRuntimeLibrary.dll, , [6d778d08890180b69e65e4ed9a697b85],
PUP.Optional.TornTV.A, C:\Users\Tomik\AppData\Roaming\TornTV.com\MonoTorrent.Dht.dll, , [6d778d08890180b69e65e4ed9a697b85],
PUP.Optional.TornTV.A, C:\Users\Tomik\AppData\Roaming\TornTV.com\MonoTorrent.dll, , [6d778d08890180b69e65e4ed9a697b85],
PUP.Optional.TornTV.A, C:\Users\Tomik\AppData\Roaming\TornTV.com\nodes.dht, , [6d778d08890180b69e65e4ed9a697b85],
PUP.Optional.TornTV.A, C:\Users\Tomik\AppData\Roaming\TornTV.com\TornTV Downloader.exe.config, , [6d778d08890180b69e65e4ed9a697b85],
PUP.Optional.TornTV.A, C:\Users\Tomik\AppData\Roaming\TornTV.com\TornTvDownloader.lnk, , [6d778d08890180b69e65e4ed9a697b85],
PUP.Optional.TornTV.A, C:\Users\Tomik\AppData\Roaming\TornTV.com\TornTVSvc.exe, , [6d778d08890180b69e65e4ed9a697b85],
PUP.Optional.TornTV.A, C:\Users\Tomik\AppData\Roaming\TornTV.com\TornTvUpdater.exe, , [6d778d08890180b69e65e4ed9a697b85],
PUP.Optional.MyStartTB.A, C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\prefs.js, Dobré: (), Špatné: (user_pref("browser.search.selectedEngine", "Search The Web");), ,[549082133a509d99d67f025fe81e8a76]
PUP.Optional.Trovi.A, C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\prefs.js, Dobré: (), Špatné: (user_pref("keyword.URL", "http://trovi.com/ResultsExt.aspx?ctid=CT2463487&SearchSource=2&CUI=UN40503431461772443&UM=4&q=");), ,[c61e603596f42412581c5a0a52b410f0]
PUP.Optional.Conduit.A, C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\prefs.js, Dobré: (), Špatné: (user_pref("browser.search.defaulturl", "http://search.conduit.com/ResultsExt.aspx?ctid=CT2463487&SearchSource=3&q={searchTerms}");), ,[3fa5266fc1c93ff71f014124b0568080]
PUP.Optional.Conduit.A, C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\prefs.js, Dobré: (), Špatné: (user_pref("CT2463487.lastNewTabSettings", "{\"isEnabled\":true,\"newTabUrl\":\"http://search.conduit.com/?gd=&ctid=CT2463487&octid=CT2463487&ISID=ISID_ID&SearchSource=15&CUI=UN40503431461772443&Lay=1&UM=4\"}");), ,[08dcdbbac8c2b97da48b8cd949bdb749]
Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)
(end)
OS Win 10 Home
Základní deska MSI H110M PRO-VD,
2jádrový procesor Intel Core i3-6098P (3.6GHz, HyperThreading), 8GB operační paměti DDR4 2133 MHz TEAM Elite,
Pevný disk 1TB Seagate Barracuda,
Grafická karta NVIDIA GeForce GTX 750 Ti 2GB GDDR5,
DVD±RW mechanika LG,
Zdroj CHIEFTEC GPB-350S, 350 W
Skříň AIO Virtuo TAB04 Champagne
Základní deska MSI H110M PRO-VD,
2jádrový procesor Intel Core i3-6098P (3.6GHz, HyperThreading), 8GB operační paměti DDR4 2133 MHz TEAM Elite,
Pevný disk 1TB Seagate Barracuda,
Grafická karta NVIDIA GeForce GTX 750 Ti 2GB GDDR5,
DVD±RW mechanika LG,
Zdroj CHIEFTEC GPB-350S, 350 W
Skříň AIO Virtuo TAB04 Champagne
-
jerabina
- člen Security týmu
-
Level 6
- Příspěvky: 3647
- Registrován: březen 13
- Bydliště: Litoměřice
- Pohlaví:
- Stav:
Offline
Re: Kontrola logu-není BFE
Spusť znovu AdwCleaner (u Windows Vista či Windows7, klikni na AdwCleaner pravým a vyber „Spustit jako správce“
klikni na „Prohledat-Scan“, po prohledání klikni na „ Vymazat-Clean“
Program provede opravu, po automatickém restartu neukáže log (C:\AdwCleaner [S?].txt) , jeho obsah sem celý vlož.
Spusť znovu MbAM a dej Skenovat nyní
- po proběhnutí programu se ti objeví hláška tak klikni na „Vše do karantény(smazat vybrané)“ a na „Exportovat záznam“ a vyber „textový soubor“ , soubor nějak pojmenuj a někam ho ulož. Zkopíruj se celý obsah toho logu.
Stáhni si Junkware Removal Tool by Thisisu
na svojí plochu.
Deaktivuj si svůj antivirový program. Pravým tl. myši klikni na JRT.exe a vyber „spustit jako správce“. Pro pokračování budeš vyzván ke stisknutí jakékoliv klávesy. Na nějakou klikni.
Začne skenování programu. Skenování může trvat dloho , podle množství nákaz. Po ukončení skenu se objeví log (JRT.txt) , který se uloží na ploše.
Zkopíruj sem prosím celý jeho obsah.
Stáhni si RogueKiller
32bit.:
http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe
64bit.:
http://www.sur-la-toile.com/RogueKiller ... lerX64.exe
na svojí plochu.
- Zavři všechny ostatní programy a prohlížeče.
- Pro OS Vista a win7 spusť program RogueKiller.exe jako správce , u XP poklepáním.
- počkej až skončí Prescan -vyhledávání škodlivých procesů.
-Potom klikni na „Prohledat“.
- Program skenuje procesy PC. Po proskenování klikni na „Zpráva“celý obsah logu sem zkopíruj.
Pokud je program blokován , zkus ho spustit několikrát. Pokud dále program nepůjde spustit a pracovat, přejmenuj ho na winlogon.exe.
klikni na „Prohledat-Scan“, po prohledání klikni na „ Vymazat-Clean“
Program provede opravu, po automatickém restartu neukáže log (C:\AdwCleaner [S?].txt) , jeho obsah sem celý vlož.
Spusť znovu MbAM a dej Skenovat nyní
- po proběhnutí programu se ti objeví hláška tak klikni na „Vše do karantény(smazat vybrané)“ a na „Exportovat záznam“ a vyber „textový soubor“ , soubor nějak pojmenuj a někam ho ulož. Zkopíruj se celý obsah toho logu.
Stáhni si Junkware Removal Tool by Thisisu
na svojí plochu.
Deaktivuj si svůj antivirový program. Pravým tl. myši klikni na JRT.exe a vyber „spustit jako správce“. Pro pokračování budeš vyzván ke stisknutí jakékoliv klávesy. Na nějakou klikni.
Začne skenování programu. Skenování může trvat dloho , podle množství nákaz. Po ukončení skenu se objeví log (JRT.txt) , který se uloží na ploše.
Zkopíruj sem prosím celý jeho obsah.
Stáhni si RogueKiller
32bit.:
http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe
64bit.:
http://www.sur-la-toile.com/RogueKiller ... lerX64.exe
na svojí plochu.
- Zavři všechny ostatní programy a prohlížeče.
- Pro OS Vista a win7 spusť program RogueKiller.exe jako správce , u XP poklepáním.
- počkej až skončí Prescan -vyhledávání škodlivých procesů.
-Potom klikni na „Prohledat“.
- Program skenuje procesy PC. Po proskenování klikni na „Zpráva“celý obsah logu sem zkopíruj.
Pokud je program blokován , zkus ho spustit několikrát. Pokud dále program nepůjde spustit a pracovat, přejmenuj ho na winlogon.exe.
Když nevíš jak dál, přichází na řadu prostudovat manuál!
HJT návod
Pokud neodpovídám do vašich témat v sekci HJT když jsem online, tak je to jen proto, že jsem na mobilu kde je studování logů a psaní skriptů nemožné. Neberte to tedy prosím jako ignoraci.
HJT návod
Pokud neodpovídám do vašich témat v sekci HJT když jsem online, tak je to jen proto, že jsem na mobilu kde je studování logů a psaní skriptů nemožné. Neberte to tedy prosím jako ignoraci.
Re: Kontrola logu-není BFE
# AdwCleaner v4.204 - Log vytvořen 20/05/2015 v 20:27:21
# Aktualizováno 12/05/2015 by Xplode
# Databáze : 2015-05-20.1 [Server]
# Operační system : Windows 7 Home Premium Service Pack 1 (x86)
# Uživatelské jméno : Tomik - DOMÁCÍ
# Spuštěno z : C:\Users\Tomik\Desktop\AdwCleaner.exe
# Nastavení : Čištění
***** [ Služby ] *****
***** [ Soubory / Složky ] *****
Složka Smazáno : C:\Users\Tomik\AppData\Local\blekkotb_031
Složka Smazáno : C:\Users\Tomik\AppData\Local\FilesFrog Update Checker
Složka Smazáno : C:\Users\Tomik\AppData\Local\globalUpdate
Složka Smazáno : C:\Users\Tomik\AppData\Local\onlysearch
Složka Smazáno : C:\Users\Tomik\AppData\Local\PackageAware
Složka Smazáno : C:\Users\Tomik\AppData\LocalLow\Mail.Ru
Složka Smazáno : C:\Users\Tomik\AppData\Roaming\337Games
Složka Smazáno : C:\Users\Tomik\AppData\Roaming\Babylon
Složka Smazáno : C:\Users\Tomik\AppData\Roaming\DriverCure
Složka Smazáno : C:\Users\Tomik\AppData\Roaming\OpenCandy
Složka Smazáno : C:\Users\Tomik\AppData\Roaming\ParetoLogic
Složka Smazáno : C:\Users\Tomik\AppData\Roaming\Systweak
Složka Smazáno : C:\Users\Tomik\AppData\Roaming\TornTV.com
Složka Smazáno : C:\Users\Tomik\AppData\Roaming\RHEng
Složka Smazáno : C:\Users\Tomik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TornTV.com
Soubor Smazáno : C:\Windows\Reimage.ini
Soubor Smazáno : C:\Users\Tomik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TornTvDownloader.lnk
Soubor Smazáno : C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\bprotector_extensions.sqlite
Soubor Smazáno : C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\bprotector_prefs.js
Soubor Smazáno : C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\invalidprefs.js
Soubor Smazáno : C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\searchplugins\Babylon.xml
Soubor Smazáno : C:\Program Files\Mozilla Firefox\searchplugins\Babylon.xml
Soubor Smazáno : C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\searchplugins\BrowserProtect.xml
Soubor Smazáno : C:\Program Files\Mozilla Firefox\searchplugins\search.xml
Soubor Smazáno : C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\user.js
***** [ Naplánované úlohy ] *****
Úloha Smazáno : Update Service YourFileDownloader
***** [ Zástupci ] *****
***** [ Registry ] *****
Hodnota Smazáno : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [faststartff@gmail.com]
Klíč Smazáno : HKCU\Software\Classes\iLivid.torrent
Klíč Smazáno : HKCU\Software\MICROSOFT\INTERNET EXPLORER\DOMSTORAGE\superfish.com
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\DOMStorage\www.superfish.com
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\superfish.com
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\www.superfish.com
Hodnota Smazáno : HKCU\Software\Microsoft\Internet Explorer\Main [bprotector start page]
Hodnota Smazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes [bProtectorDefaultScope]
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings
Hodnota Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [Torntv Downloader]
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Applications\ilividsetupv1.exe
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass.1
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc.1.0
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService.1.0
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc.1.0
Klíč Smazáno : HKLM\SOFTWARE\Classes\iLivid.torrent
Klíč Smazáno : HKLM\SOFTWARE\Classes\Prod.cap
Klíč Smazáno : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=10
Klíč Smazáno : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=4
Klíč Smazáno : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\IePluginServices
Klíč Smazáno : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WindowsMangerProtect
Klíč Smazáno : HKCU\Software\Classes\keepmysearch
Klíč Smazáno : HKCU\Software\Mozilla\Extends
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\REI_AxControl.DLL
Klíč Smazáno : HKLM\SOFTWARE\Classes\REI_AxControl.ReiEngine.1
Klíč Smazáno : HKLM\SOFTWARE\Classes\REI_AxControl.ReiEngine
Klíč Smazáno : HKCU\Software\597d6d1e23bea41
Klíč Smazáno : HKCU\Software\8dc890a86b929eaa732f56c0b3d1613d
Klíč Smazáno : HKLM\SOFTWARE\597d6d1e23bea41
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\{C007DADD-132A-624C-088E-59EE6CF0711F}
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\{28FF42B8-A0DA-4BE5-9B81-E26DD59B350A}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{3B5702BA-7F4C-4D1A-B026-1E9A01D43978}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{7E49F793-B3CD-4BF7-8419-B34B8BD30E61}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{459DD0F7-0D55-D3DC-67BC-E6BE37E9D762}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{10ECCE17-29B5-4880-A8F5-EAD298611484}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{801B440B-1EE3-49B0-B05D-2AB076D4E8CB}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220622332211}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{917CAAE9-DD47-4025-936E-1414F07DF5B8}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{BD51A48E-EB5F-4454-8774-EF962DF64546}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550655335511}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660666336611}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{968EDCE0-C10A-47BB-B3B6-FDF09F2A417D}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{FA6468D2-FAA4-4951-A53B-2A5CF9CC0A36}
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{10ECCE17-29B5-4880-A8F5-EAD298611484}
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D3D233D5-9F6D-436C-B6C7-E63F77503B30}
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D7E97865-918F-41E4-9CD0-25AB1C574CE8}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{A1B48071-416D-474E-A13B-BE5456E7FC31}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{CCB24E92-62C4-4C53-95D2-65F9EED476BC}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D3D233D5-9F6D-436C-B6C7-E63F77503B30}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D7E97865-918F-41E4-9CD0-25AB1C574CE8}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{62155D33-3CE2-401E-8967-5A270628A3D5}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Hodnota Smazáno : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Data Obnoveno : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{3BD44F0E-0596-4008-AEE0-45D47E3A8F0E}
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{E88E0043-C9D4-4e33-8555-FEE4F5B63060}
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{F8FCB57C-BA12-466A-9182-478323D591F8}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{E88E0043-C9D4-4e33-8555-FEE4F5B63060}
Klíč Smazáno : HKCU\Software\1ClickDownload
Klíč Smazáno : HKCU\Software\APN PIP
Klíč Smazáno : HKCU\Software\BI
Klíč Smazáno : HKCU\Software\Conduit
Klíč Smazáno : HKCU\Software\DataMngr
[#] Klíč Smazáno : HKCU\Software\DataMngr_Toolbar
Klíč Smazáno : HKCU\Software\distromatic
Klíč Smazáno : HKCU\Software\GlobalUpdate
Klíč Smazáno : HKCU\Software\IGearSettings
Klíč Smazáno : HKCU\Software\ilivid
Klíč Smazáno : HKCU\Software\InstalledBrowserExtensions
Klíč Smazáno : HKCU\Software\ParetoLogic
Klíč Smazáno : HKCU\Software\Softonic
Klíč Smazáno : HKCU\Software\Somoto
Klíč Smazáno : HKCU\Software\SupHpUISoft
Klíč Smazáno : HKCU\Software\systweak
Klíč Smazáno : HKCU\Software\YahooPartnerToolbar
Klíč Smazáno : HKCU\Software\Reimage
Klíč Smazáno : HKCU\Software\TornTv Downloader
Klíč Smazáno : HKCU\Software\AppDataLow\Software\Crossrider
Klíč Smazáno : HKCU\Software\AppDataLow\Software\TheTorntv V10
Klíč Smazáno : HKLM\SOFTWARE\Babylon
Klíč Smazáno : HKLM\SOFTWARE\DataMngr
Klíč Smazáno : HKLM\SOFTWARE\FlvPlayer
Klíč Smazáno : HKLM\SOFTWARE\GlobalUpdate
Klíč Smazáno : HKLM\SOFTWARE\InstalledBrowserExtensions
Klíč Smazáno : HKLM\SOFTWARE\ParetoLogic
Klíč Smazáno : HKLM\SOFTWARE\PIP
Klíč Smazáno : HKLM\SOFTWARE\Speedchecker Limited
Klíč Smazáno : HKLM\SOFTWARE\SupDp
Klíč Smazáno : HKLM\SOFTWARE\SupTab
Klíč Smazáno : HKLM\SOFTWARE\supWindowsMangerProtect
Klíč Smazáno : HKLM\SOFTWARE\supWPM
Klíč Smazáno : HKLM\SOFTWARE\systweak
Klíč Smazáno : HKLM\SOFTWARE\webssearchesSoftware
Klíč Smazáno : HKLM\SOFTWARE\YourFileDownloader
Klíč Smazáno : HKLM\SOFTWARE\Reimage
Klíč Smazáno : HKLM\SOFTWARE\SiteSee
Klíč Smazáno : HKU\.DEFAULT\Software\TornTv Downloader
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\00E944CB89111313EAF35A0553F547F9
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\53F55AF3F4049ED3FA6EA6F88E414E24
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\68E4BF4B11615E03C97732FD581AB607
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8CE3DDAB2D152683FBCEB4866BCD2B0F
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AF6CE16AFEA5C9A39B766468A8B35C21
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FB1E44269B58F433A8C8E671E37CFDCF
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\delta-search.com
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\only-search.com
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\www.delta-search.com
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\www.only-search.com
Data Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings [ProxyServer] - hxxps=127.0.0.1:61080
***** [ Prohlížeče ] *****
-\\ Internet Explorer v11.0.9600.17801
Nastavení Obnoveno : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]
Nastavení Obnoveno : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Page_URL]
Nastavení Obnoveno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
Nastavení Obnoveno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
Nastavení Obnoveno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
Nastavení Obnoveno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]
-\\ Mozilla Firefox v27.0.1 (cs)
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("CT2463487.SearchFromAddressBarUrl", "hxxp://trovi.com/ResultsExt.aspx?ctid=CT2463487&SearchSource=2&CUI=UN40503431461772443&UM=4&q=");
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("CT2463487.lastNewTabSettings", "{\"isEnabled\":true,\"newTabUrl\":\"hxxp://search.conduit.com/?gd=&ctid=CT2463487&octid=CT2463487&ISID=ISID_ID&SearchSource=15&CUI=UN40503431461772443&Lay=1&[...]
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("CT2463487.smartbar.CTID", "CT2463487");
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("CT2463487.smartbar.Uninstall", "0");
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("CT2463487.smartbar.homepage", true);
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("CT2463487.smartbar.toolbarName", "Brothersoft ");
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.ConduitHomepagesList", "hxxp://search.conduit.com/?ctid=CT2463487&SearchSource=13,hxxp://search.conduit.com/?ctid=CT2463487&SearchSource=13,hxxp://search.conduit.com/?ctid=[...]
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.ConduitSearchList", "Brothersoft Customized Web Search,Brothersoft Customized Web Search,Brothersoft Customized Web Search,Brothersoft Customized Web Search,Brothersoft Cus[...]
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.ETag.hxxp://Settings.toolbar.search.conduit. ... /CT2463487", "\"c2cea7de4295f8f991a741c5cb625fc43\"");
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-ser ... =CT2463487", "\"1365959693\"");
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-s ... r=3.18.0.7", "\"0343677cfb1cd1:0\"");
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-s ... r=3.19.0.3", "\"23c5489aa686ce1:0\"");
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-s ... r=3.20.0.4", "\"dfe74040abc2ce1:0\"");
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/ ... =CT2463487", "\"52c3f1538cb4af4ada257fcbc6b15d49\"");
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-serv ... ?locale=en", "\"968402cf2834e7ec0f38a19f0e9a9eb0\"");
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "");
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.ToolbarsList", "CT2463487");
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.ToolbarsList2", "CT2463487");
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.ToolbarsList4", "CT2463487");
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.globalUserId", "13438a39-3c01-4f16-873a-18d514e3b386");
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.keywordURLSelectedCTID", "CT2463487");
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.originalHomepage", "hxxp://search.conduit.com/?ctid=CT2463487&SearchSource=13");
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.originalSearchEngine", "Brothersoft Customized Web Search");
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("Smartbar.ConduitHomepagesList", "hxxp://trovi.com/?ctid=CT2463487&SearchSource=13&CUI=UN40503431461772443");
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("Smartbar.ConduitSearchEngineList", "");
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("Smartbar.ConduitSearchUrlList", "");
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("Smartbar.SearchFromAddressBarSavedUrl", "");
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("Smartbar.TBHomepagesList", "hxxp://trovi.com/?ctid=CT2463487&SearchSource=13&CUI=UN40503431461772443");
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("Smartbar.TBSearchEngineList", "");
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("Smartbar.TBSearchUrlList", "");
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("Smartbar.keywordURLSelectedCTID", "CT2463487");
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("avg.install.userHPSettings", "hxxp://www.delta-search.com/?affID=119816&tt=040413_9114&babsrc=HP_ss&mntrId=218820CF309BD999");
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("avg.install.userSPSettings", "Delta Search");
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("browser.search.defaultthis.engineName", "Brothersoft Customized Web Search");
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("browser.search.defaulturl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2463487&SearchSource=3&q={searchTerms}");
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("browser.search.selectedEngine", "Search The Web");
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("keyword.URL", "hxxp://trovi.com/ResultsExt.aspx?ctid=CT2463487&SearchSource=2&CUI=UN40503431461772443&UM=4&q=");
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("plugin.state.npconduitfirefoxplugin", 2);
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("smartbar.addressBarOwnerCTID", "CT2463487");
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("smartbar.conduitHomepageList", "hxxp://trovi.com/?ctid=CT2463487&SearchSource=13&CUI=UN40503431461772443");
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("smartbar.conduitSearchAddressUrlList", "hxxp://trovi.com/ResultsExt.aspx?ctid=CT2463487&SearchSource=2&CUI=UN40503431461772443&UM=4&q=");
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("smartbar.defaultSearchOwnerCTID", "CT2463487");
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("smartbar.homePageOwnerCTID", "CT2463487");
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("smartbar.homepageList", "hxxp://trovi.com/?ctid=CT2463487&SearchSource=13&CUI=UN40503431461772443");
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("smartbar.machineId", "YFBQO9YMBT0MC+KYXPCGNPA4B8ESPUWCJ6JZV5IB2RNRKWDXV66ZSCKC5ECM6IFVKREKILTLGPRKXIAE9D/67A");
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("smartbar.searchAddressUrlList", "hxxp://trovi.com/ResultsExt.aspx?ctid=CT2463487&SearchSource=2&CUI=UN40503431461772443&UM=4&q=");
*************************
AdwCleaner[R0].txt - [22845 bytů] - [20/05/2015 18:38:53]
AdwCleaner[R1].txt - [21925 bytů] - [20/05/2015 20:22:18]
AdwCleaner[S0].txt - [1405 bytů] - [20/05/2015 18:51:16]
AdwCleaner[S1].txt - [20978 bytů] - [20/05/2015 20:27:21]
########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [21037 bytů] ##########
# Aktualizováno 12/05/2015 by Xplode
# Databáze : 2015-05-20.1 [Server]
# Operační system : Windows 7 Home Premium Service Pack 1 (x86)
# Uživatelské jméno : Tomik - DOMÁCÍ
# Spuštěno z : C:\Users\Tomik\Desktop\AdwCleaner.exe
# Nastavení : Čištění
***** [ Služby ] *****
***** [ Soubory / Složky ] *****
Složka Smazáno : C:\Users\Tomik\AppData\Local\blekkotb_031
Složka Smazáno : C:\Users\Tomik\AppData\Local\FilesFrog Update Checker
Složka Smazáno : C:\Users\Tomik\AppData\Local\globalUpdate
Složka Smazáno : C:\Users\Tomik\AppData\Local\onlysearch
Složka Smazáno : C:\Users\Tomik\AppData\Local\PackageAware
Složka Smazáno : C:\Users\Tomik\AppData\LocalLow\Mail.Ru
Složka Smazáno : C:\Users\Tomik\AppData\Roaming\337Games
Složka Smazáno : C:\Users\Tomik\AppData\Roaming\Babylon
Složka Smazáno : C:\Users\Tomik\AppData\Roaming\DriverCure
Složka Smazáno : C:\Users\Tomik\AppData\Roaming\OpenCandy
Složka Smazáno : C:\Users\Tomik\AppData\Roaming\ParetoLogic
Složka Smazáno : C:\Users\Tomik\AppData\Roaming\Systweak
Složka Smazáno : C:\Users\Tomik\AppData\Roaming\TornTV.com
Složka Smazáno : C:\Users\Tomik\AppData\Roaming\RHEng
Složka Smazáno : C:\Users\Tomik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TornTV.com
Soubor Smazáno : C:\Windows\Reimage.ini
Soubor Smazáno : C:\Users\Tomik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TornTvDownloader.lnk
Soubor Smazáno : C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\bprotector_extensions.sqlite
Soubor Smazáno : C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\bprotector_prefs.js
Soubor Smazáno : C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\invalidprefs.js
Soubor Smazáno : C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\searchplugins\Babylon.xml
Soubor Smazáno : C:\Program Files\Mozilla Firefox\searchplugins\Babylon.xml
Soubor Smazáno : C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\searchplugins\BrowserProtect.xml
Soubor Smazáno : C:\Program Files\Mozilla Firefox\searchplugins\search.xml
Soubor Smazáno : C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\user.js
***** [ Naplánované úlohy ] *****
Úloha Smazáno : Update Service YourFileDownloader
***** [ Zástupci ] *****
***** [ Registry ] *****
Hodnota Smazáno : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [faststartff@gmail.com]
Klíč Smazáno : HKCU\Software\Classes\iLivid.torrent
Klíč Smazáno : HKCU\Software\MICROSOFT\INTERNET EXPLORER\DOMSTORAGE\superfish.com
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\DOMStorage\www.superfish.com
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\superfish.com
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\www.superfish.com
Hodnota Smazáno : HKCU\Software\Microsoft\Internet Explorer\Main [bprotector start page]
Hodnota Smazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes [bProtectorDefaultScope]
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings
Hodnota Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [Torntv Downloader]
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Applications\ilividsetupv1.exe
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass.1
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc.1.0
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService.1.0
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc.1.0
Klíč Smazáno : HKLM\SOFTWARE\Classes\iLivid.torrent
Klíč Smazáno : HKLM\SOFTWARE\Classes\Prod.cap
Klíč Smazáno : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=10
Klíč Smazáno : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=4
Klíč Smazáno : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\IePluginServices
Klíč Smazáno : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WindowsMangerProtect
Klíč Smazáno : HKCU\Software\Classes\keepmysearch
Klíč Smazáno : HKCU\Software\Mozilla\Extends
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\REI_AxControl.DLL
Klíč Smazáno : HKLM\SOFTWARE\Classes\REI_AxControl.ReiEngine.1
Klíč Smazáno : HKLM\SOFTWARE\Classes\REI_AxControl.ReiEngine
Klíč Smazáno : HKCU\Software\597d6d1e23bea41
Klíč Smazáno : HKCU\Software\8dc890a86b929eaa732f56c0b3d1613d
Klíč Smazáno : HKLM\SOFTWARE\597d6d1e23bea41
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\{C007DADD-132A-624C-088E-59EE6CF0711F}
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\{28FF42B8-A0DA-4BE5-9B81-E26DD59B350A}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{3B5702BA-7F4C-4D1A-B026-1E9A01D43978}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{7E49F793-B3CD-4BF7-8419-B34B8BD30E61}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{459DD0F7-0D55-D3DC-67BC-E6BE37E9D762}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{10ECCE17-29B5-4880-A8F5-EAD298611484}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{801B440B-1EE3-49B0-B05D-2AB076D4E8CB}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220622332211}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{917CAAE9-DD47-4025-936E-1414F07DF5B8}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{BD51A48E-EB5F-4454-8774-EF962DF64546}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550655335511}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660666336611}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{968EDCE0-C10A-47BB-B3B6-FDF09F2A417D}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{FA6468D2-FAA4-4951-A53B-2A5CF9CC0A36}
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{10ECCE17-29B5-4880-A8F5-EAD298611484}
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D3D233D5-9F6D-436C-B6C7-E63F77503B30}
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D7E97865-918F-41E4-9CD0-25AB1C574CE8}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{A1B48071-416D-474E-A13B-BE5456E7FC31}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{CCB24E92-62C4-4C53-95D2-65F9EED476BC}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D3D233D5-9F6D-436C-B6C7-E63F77503B30}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D7E97865-918F-41E4-9CD0-25AB1C574CE8}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{62155D33-3CE2-401E-8967-5A270628A3D5}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Hodnota Smazáno : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Data Obnoveno : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{3BD44F0E-0596-4008-AEE0-45D47E3A8F0E}
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{E88E0043-C9D4-4e33-8555-FEE4F5B63060}
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{F8FCB57C-BA12-466A-9182-478323D591F8}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{E88E0043-C9D4-4e33-8555-FEE4F5B63060}
Klíč Smazáno : HKCU\Software\1ClickDownload
Klíč Smazáno : HKCU\Software\APN PIP
Klíč Smazáno : HKCU\Software\BI
Klíč Smazáno : HKCU\Software\Conduit
Klíč Smazáno : HKCU\Software\DataMngr
[#] Klíč Smazáno : HKCU\Software\DataMngr_Toolbar
Klíč Smazáno : HKCU\Software\distromatic
Klíč Smazáno : HKCU\Software\GlobalUpdate
Klíč Smazáno : HKCU\Software\IGearSettings
Klíč Smazáno : HKCU\Software\ilivid
Klíč Smazáno : HKCU\Software\InstalledBrowserExtensions
Klíč Smazáno : HKCU\Software\ParetoLogic
Klíč Smazáno : HKCU\Software\Softonic
Klíč Smazáno : HKCU\Software\Somoto
Klíč Smazáno : HKCU\Software\SupHpUISoft
Klíč Smazáno : HKCU\Software\systweak
Klíč Smazáno : HKCU\Software\YahooPartnerToolbar
Klíč Smazáno : HKCU\Software\Reimage
Klíč Smazáno : HKCU\Software\TornTv Downloader
Klíč Smazáno : HKCU\Software\AppDataLow\Software\Crossrider
Klíč Smazáno : HKCU\Software\AppDataLow\Software\TheTorntv V10
Klíč Smazáno : HKLM\SOFTWARE\Babylon
Klíč Smazáno : HKLM\SOFTWARE\DataMngr
Klíč Smazáno : HKLM\SOFTWARE\FlvPlayer
Klíč Smazáno : HKLM\SOFTWARE\GlobalUpdate
Klíč Smazáno : HKLM\SOFTWARE\InstalledBrowserExtensions
Klíč Smazáno : HKLM\SOFTWARE\ParetoLogic
Klíč Smazáno : HKLM\SOFTWARE\PIP
Klíč Smazáno : HKLM\SOFTWARE\Speedchecker Limited
Klíč Smazáno : HKLM\SOFTWARE\SupDp
Klíč Smazáno : HKLM\SOFTWARE\SupTab
Klíč Smazáno : HKLM\SOFTWARE\supWindowsMangerProtect
Klíč Smazáno : HKLM\SOFTWARE\supWPM
Klíč Smazáno : HKLM\SOFTWARE\systweak
Klíč Smazáno : HKLM\SOFTWARE\webssearchesSoftware
Klíč Smazáno : HKLM\SOFTWARE\YourFileDownloader
Klíč Smazáno : HKLM\SOFTWARE\Reimage
Klíč Smazáno : HKLM\SOFTWARE\SiteSee
Klíč Smazáno : HKU\.DEFAULT\Software\TornTv Downloader
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\00E944CB89111313EAF35A0553F547F9
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\53F55AF3F4049ED3FA6EA6F88E414E24
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\68E4BF4B11615E03C97732FD581AB607
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8CE3DDAB2D152683FBCEB4866BCD2B0F
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AF6CE16AFEA5C9A39B766468A8B35C21
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FB1E44269B58F433A8C8E671E37CFDCF
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\delta-search.com
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\only-search.com
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\www.delta-search.com
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\www.only-search.com
Data Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings [ProxyServer] - hxxps=127.0.0.1:61080
***** [ Prohlížeče ] *****
-\\ Internet Explorer v11.0.9600.17801
Nastavení Obnoveno : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]
Nastavení Obnoveno : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Page_URL]
Nastavení Obnoveno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
Nastavení Obnoveno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
Nastavení Obnoveno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
Nastavení Obnoveno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]
-\\ Mozilla Firefox v27.0.1 (cs)
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("CT2463487.SearchFromAddressBarUrl", "hxxp://trovi.com/ResultsExt.aspx?ctid=CT2463487&SearchSource=2&CUI=UN40503431461772443&UM=4&q=");
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("CT2463487.lastNewTabSettings", "{\"isEnabled\":true,\"newTabUrl\":\"hxxp://search.conduit.com/?gd=&ctid=CT2463487&octid=CT2463487&ISID=ISID_ID&SearchSource=15&CUI=UN40503431461772443&Lay=1&[...]
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("CT2463487.smartbar.CTID", "CT2463487");
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("CT2463487.smartbar.Uninstall", "0");
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("CT2463487.smartbar.homepage", true);
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("CT2463487.smartbar.toolbarName", "Brothersoft ");
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.ConduitHomepagesList", "hxxp://search.conduit.com/?ctid=CT2463487&SearchSource=13,hxxp://search.conduit.com/?ctid=CT2463487&SearchSource=13,hxxp://search.conduit.com/?ctid=[...]
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.ConduitSearchList", "Brothersoft Customized Web Search,Brothersoft Customized Web Search,Brothersoft Customized Web Search,Brothersoft Customized Web Search,Brothersoft Cus[...]
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.ETag.hxxp://Settings.toolbar.search.conduit. ... /CT2463487", "\"c2cea7de4295f8f991a741c5cb625fc43\"");
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-ser ... =CT2463487", "\"1365959693\"");
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-s ... r=3.18.0.7", "\"0343677cfb1cd1:0\"");
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-s ... r=3.19.0.3", "\"23c5489aa686ce1:0\"");
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-s ... r=3.20.0.4", "\"dfe74040abc2ce1:0\"");
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/ ... =CT2463487", "\"52c3f1538cb4af4ada257fcbc6b15d49\"");
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-serv ... ?locale=en", "\"968402cf2834e7ec0f38a19f0e9a9eb0\"");
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "");
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.ToolbarsList", "CT2463487");
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.ToolbarsList2", "CT2463487");
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.ToolbarsList4", "CT2463487");
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.globalUserId", "13438a39-3c01-4f16-873a-18d514e3b386");
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.keywordURLSelectedCTID", "CT2463487");
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.originalHomepage", "hxxp://search.conduit.com/?ctid=CT2463487&SearchSource=13");
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.originalSearchEngine", "Brothersoft Customized Web Search");
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("Smartbar.ConduitHomepagesList", "hxxp://trovi.com/?ctid=CT2463487&SearchSource=13&CUI=UN40503431461772443");
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("Smartbar.ConduitSearchEngineList", "");
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("Smartbar.ConduitSearchUrlList", "");
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("Smartbar.SearchFromAddressBarSavedUrl", "");
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("Smartbar.TBHomepagesList", "hxxp://trovi.com/?ctid=CT2463487&SearchSource=13&CUI=UN40503431461772443");
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("Smartbar.TBSearchEngineList", "");
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("Smartbar.TBSearchUrlList", "");
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("Smartbar.keywordURLSelectedCTID", "CT2463487");
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("avg.install.userHPSettings", "hxxp://www.delta-search.com/?affID=119816&tt=040413_9114&babsrc=HP_ss&mntrId=218820CF309BD999");
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("avg.install.userSPSettings", "Delta Search");
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("browser.search.defaultthis.engineName", "Brothersoft Customized Web Search");
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("browser.search.defaulturl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2463487&SearchSource=3&q={searchTerms}");
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("browser.search.selectedEngine", "Search The Web");
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("keyword.URL", "hxxp://trovi.com/ResultsExt.aspx?ctid=CT2463487&SearchSource=2&CUI=UN40503431461772443&UM=4&q=");
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("plugin.state.npconduitfirefoxplugin", 2);
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("smartbar.addressBarOwnerCTID", "CT2463487");
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("smartbar.conduitHomepageList", "hxxp://trovi.com/?ctid=CT2463487&SearchSource=13&CUI=UN40503431461772443");
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("smartbar.conduitSearchAddressUrlList", "hxxp://trovi.com/ResultsExt.aspx?ctid=CT2463487&SearchSource=2&CUI=UN40503431461772443&UM=4&q=");
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("smartbar.defaultSearchOwnerCTID", "CT2463487");
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("smartbar.homePageOwnerCTID", "CT2463487");
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("smartbar.homepageList", "hxxp://trovi.com/?ctid=CT2463487&SearchSource=13&CUI=UN40503431461772443");
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("smartbar.machineId", "YFBQO9YMBT0MC+KYXPCGNPA4B8ESPUWCJ6JZV5IB2RNRKWDXV66ZSCKC5ECM6IFVKREKILTLGPRKXIAE9D/67A");
[d5xqvmuk.default\prefs.js] - Řádek Smazáno : user_pref("smartbar.searchAddressUrlList", "hxxp://trovi.com/ResultsExt.aspx?ctid=CT2463487&SearchSource=2&CUI=UN40503431461772443&UM=4&q=");
*************************
AdwCleaner[R0].txt - [22845 bytů] - [20/05/2015 18:38:53]
AdwCleaner[R1].txt - [21925 bytů] - [20/05/2015 20:22:18]
AdwCleaner[S0].txt - [1405 bytů] - [20/05/2015 18:51:16]
AdwCleaner[S1].txt - [20978 bytů] - [20/05/2015 20:27:21]
########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [21037 bytů] ##########
OS Win 10 Home
Základní deska MSI H110M PRO-VD,
2jádrový procesor Intel Core i3-6098P (3.6GHz, HyperThreading), 8GB operační paměti DDR4 2133 MHz TEAM Elite,
Pevný disk 1TB Seagate Barracuda,
Grafická karta NVIDIA GeForce GTX 750 Ti 2GB GDDR5,
DVD±RW mechanika LG,
Zdroj CHIEFTEC GPB-350S, 350 W
Skříň AIO Virtuo TAB04 Champagne
Základní deska MSI H110M PRO-VD,
2jádrový procesor Intel Core i3-6098P (3.6GHz, HyperThreading), 8GB operační paměti DDR4 2133 MHz TEAM Elite,
Pevný disk 1TB Seagate Barracuda,
Grafická karta NVIDIA GeForce GTX 750 Ti 2GB GDDR5,
DVD±RW mechanika LG,
Zdroj CHIEFTEC GPB-350S, 350 W
Skříň AIO Virtuo TAB04 Champagne
Re: Kontrola logu-není BFE
Malwarebytes Anti-Malware
www.malwarebytes.org
Datum skenování: 20.5.2015
Čas skenování: 20:32:54
Protokol:
Správce: Ano
Verze: 2.01.6.1022
Databáze malwaru: v2015.05.20.04
Databáze rootkitů: v2015.05.16.01
Licence: Bezplatná verze
Ochrana proti malwaru: Vypnuto
Ochrana proti škodlivým webovým stránkám: Vypnuto
Ochrana programu: Vypnuto
OS: Windows 7 Service Pack 1
CPU: x86
Souborový systém: NTFS
Uživatel: Tomik
Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 315676
Uplynulý čas: 21 min, 4 sek
Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto
Procesy: 0
(Nenalezeny žádné škodlivé položky)
Moduly: 0
(Nenalezeny žádné škodlivé položky)
Klíče registru: 10
PUP.Optional.Babylon.A, HKU\S-1-5-18\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}, Do karantény, [41a3fe9705851b1be27e7adefa09926e],
PUP.Optional.SettingsProtector.A, HKLM\SOFTWARE\GOOGLE\CHROME\EXTENSIONS\pgafcinpmmpklohkojmllohdhomoefph, Do karantény, [598bc8cd4b3fbf771f45896463a001ff],
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{504CDD53-6D0D-4AB4-86D5-96231F486FB7}, Do karantény, [ba2aeaab26645cda01273e3482837c84],
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{95A42A7A-B40B-4589-84B2-96D090A19FB7}, Do karantény, [1aca8a0b1476d264d851541ed62f7888],
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{E5D36EBE-9825-494F-8418-4A191E80F468}, Do karantény, [21c3b8dde5a5ee48101a2949788d9868],
PUP.Optional.CrossRider.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{504CDD53-6D0D-4AB4-86D5-96231F486FB7}, Do karantény, [e7fdbcd9c8c2fe38ec39165c25e02fd1],
PUP.Optional.CrossRider.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{95A42A7A-B40B-4589-84B2-96D090A19FB7}, Do karantény, [81633f56cac0f640df473f3350b5837d],
PUP.Optional.CrossRider.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{E5D36EBE-9825-494F-8418-4A191E80F468}, Do karantény, [677d81147f0b4de9d94e74feae57659b],
PUP.Optional.Spigot.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{3B7C733A-516A-44D2-A6D0-69014DC38D95}, Do karantény, [5094b0e5d9b1a39371732caf0ef58d73],
PUP.Optional.Spigot.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{DC66E8F9-0A81-4325-884B-7D562A63DFBD}, Do karantény, [15cf2c695c2e7abcba2ac5162bd81de3],
Hodnoty registru: 9
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{504cdd53-6d0d-4ab4-86d5-96231f486fb7}|AppName, TheTorntv V10-bg.exe, Do karantény, [ba2aeaab26645cda01273e3482837c84]
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{95a42a7a-b40b-4589-84b2-96d090a19fb7}|AppName, TheTorntv V10-buttonutil.exe, Do karantény, [1aca8a0b1476d264d851541ed62f7888]
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{e5d36ebe-9825-494f-8418-4a191e80f468}|AppName, TheTorntv V10-codedownloader.exe, Do karantény, [21c3b8dde5a5ee48101a2949788d9868]
PUP.Optional.CrossRider.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{504cdd53-6d0d-4ab4-86d5-96231f486fb7}|AppName, TheTorntv V10-bg.exe, Do karantény, [e7fdbcd9c8c2fe38ec39165c25e02fd1]
PUP.Optional.CrossRider.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{95a42a7a-b40b-4589-84b2-96d090a19fb7}|AppName, TheTorntv V10-buttonutil.exe, Do karantény, [81633f56cac0f640df473f3350b5837d]
PUP.Optional.CrossRider.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{e5d36ebe-9825-494f-8418-4a191e80f468}|AppName, TheTorntv V10-codedownloader.exe, Do karantény, [677d81147f0b4de9d94e74feae57659b]
PUP.Optional.Spigot.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{3B7C733A-516A-44D2-A6D0-69014DC38D95}|URL, http://search.yahoo.com/search?fr=chr-g ... erp2tst&p={searchTerms}, Do karantény, [5094b0e5d9b1a39371732caf0ef58d73]
PUP.Optional.Spigot.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{3B7C733A-516A-44D2-A6D0-69014DC38D95}|OSDFileURL, file:///C:/Program%20Files/Common%20Files/Spigot/Search%20Settings/yahoo_ie.xml, Do karantény, [8c585d38fb8ff541ac496a0859acea16]
PUP.Optional.Spigot.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{DC66E8F9-0A81-4325-884B-7D562A63DFBD}|URL, https://search.yahoo.com/search?fr=chr- ... =501549&p={searchTerms}, Do karantény, [15cf2c695c2e7abcba2ac5162bd81de3]
Data registru: 0
(Nenalezeny žádné škodlivé položky)
Složky: 3
PUP.Optional.AmazonTB.A, C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\jetpack\abb@amazon.com, Do karantény, [a83c9bfa048657df6e149714f31034cc],
PUP.Optional.AmazonTB.A, C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\jetpack\abb@amazon.com\simple-storage, Do karantény, [a83c9bfa048657df6e149714f31034cc],
PUP.Optional.MaintainerSvc.A, C:\ProgramData\685d26dc-c30a-434b-bda2-3004e8743669, Do karantény, [34b06f266a2072c4cb839e2a7291d22e],
Soubory: 5
PUP.Optional.ICQPlugin.A, C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\searchplugins\icqplugin-6.xml, Do karantény, [fee6f79e4c3ee452d9783fa409fae020],
PUP.Optional.ICQPlugin.A, C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\searchplugins\icqplugin-7.xml, Do karantény, [5d87365f0981181e1b36ebf83dc61ee2],
PUP.Optional.ICQPlugin.A, C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\searchplugins\icqplugin-8.xml, Do karantény, [e5ff860fb8d2171fea674b9817ec847c],
PUP.Optional.ICQPlugin.A, C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\searchplugins\icqplugin.xml, Do karantény, [855f8114d1b952e4e56c0ad9dd267789],
PUP.Optional.AmazonTB.A, C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\jetpack\abb@amazon.com\simple-storage\store.json, Do karantény, [a83c9bfa048657df6e149714f31034cc],
Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)
(end)
www.malwarebytes.org
Datum skenování: 20.5.2015
Čas skenování: 20:32:54
Protokol:
Správce: Ano
Verze: 2.01.6.1022
Databáze malwaru: v2015.05.20.04
Databáze rootkitů: v2015.05.16.01
Licence: Bezplatná verze
Ochrana proti malwaru: Vypnuto
Ochrana proti škodlivým webovým stránkám: Vypnuto
Ochrana programu: Vypnuto
OS: Windows 7 Service Pack 1
CPU: x86
Souborový systém: NTFS
Uživatel: Tomik
Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 315676
Uplynulý čas: 21 min, 4 sek
Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto
Procesy: 0
(Nenalezeny žádné škodlivé položky)
Moduly: 0
(Nenalezeny žádné škodlivé položky)
Klíče registru: 10
PUP.Optional.Babylon.A, HKU\S-1-5-18\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}, Do karantény, [41a3fe9705851b1be27e7adefa09926e],
PUP.Optional.SettingsProtector.A, HKLM\SOFTWARE\GOOGLE\CHROME\EXTENSIONS\pgafcinpmmpklohkojmllohdhomoefph, Do karantény, [598bc8cd4b3fbf771f45896463a001ff],
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{504CDD53-6D0D-4AB4-86D5-96231F486FB7}, Do karantény, [ba2aeaab26645cda01273e3482837c84],
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{95A42A7A-B40B-4589-84B2-96D090A19FB7}, Do karantény, [1aca8a0b1476d264d851541ed62f7888],
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{E5D36EBE-9825-494F-8418-4A191E80F468}, Do karantény, [21c3b8dde5a5ee48101a2949788d9868],
PUP.Optional.CrossRider.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{504CDD53-6D0D-4AB4-86D5-96231F486FB7}, Do karantény, [e7fdbcd9c8c2fe38ec39165c25e02fd1],
PUP.Optional.CrossRider.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{95A42A7A-B40B-4589-84B2-96D090A19FB7}, Do karantény, [81633f56cac0f640df473f3350b5837d],
PUP.Optional.CrossRider.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{E5D36EBE-9825-494F-8418-4A191E80F468}, Do karantény, [677d81147f0b4de9d94e74feae57659b],
PUP.Optional.Spigot.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{3B7C733A-516A-44D2-A6D0-69014DC38D95}, Do karantény, [5094b0e5d9b1a39371732caf0ef58d73],
PUP.Optional.Spigot.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{DC66E8F9-0A81-4325-884B-7D562A63DFBD}, Do karantény, [15cf2c695c2e7abcba2ac5162bd81de3],
Hodnoty registru: 9
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{504cdd53-6d0d-4ab4-86d5-96231f486fb7}|AppName, TheTorntv V10-bg.exe, Do karantény, [ba2aeaab26645cda01273e3482837c84]
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{95a42a7a-b40b-4589-84b2-96d090a19fb7}|AppName, TheTorntv V10-buttonutil.exe, Do karantény, [1aca8a0b1476d264d851541ed62f7888]
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{e5d36ebe-9825-494f-8418-4a191e80f468}|AppName, TheTorntv V10-codedownloader.exe, Do karantény, [21c3b8dde5a5ee48101a2949788d9868]
PUP.Optional.CrossRider.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{504cdd53-6d0d-4ab4-86d5-96231f486fb7}|AppName, TheTorntv V10-bg.exe, Do karantény, [e7fdbcd9c8c2fe38ec39165c25e02fd1]
PUP.Optional.CrossRider.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{95a42a7a-b40b-4589-84b2-96d090a19fb7}|AppName, TheTorntv V10-buttonutil.exe, Do karantény, [81633f56cac0f640df473f3350b5837d]
PUP.Optional.CrossRider.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{e5d36ebe-9825-494f-8418-4a191e80f468}|AppName, TheTorntv V10-codedownloader.exe, Do karantény, [677d81147f0b4de9d94e74feae57659b]
PUP.Optional.Spigot.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{3B7C733A-516A-44D2-A6D0-69014DC38D95}|URL, http://search.yahoo.com/search?fr=chr-g ... erp2tst&p={searchTerms}, Do karantény, [5094b0e5d9b1a39371732caf0ef58d73]
PUP.Optional.Spigot.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{3B7C733A-516A-44D2-A6D0-69014DC38D95}|OSDFileURL, file:///C:/Program%20Files/Common%20Files/Spigot/Search%20Settings/yahoo_ie.xml, Do karantény, [8c585d38fb8ff541ac496a0859acea16]
PUP.Optional.Spigot.A, HKU\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{DC66E8F9-0A81-4325-884B-7D562A63DFBD}|URL, https://search.yahoo.com/search?fr=chr- ... =501549&p={searchTerms}, Do karantény, [15cf2c695c2e7abcba2ac5162bd81de3]
Data registru: 0
(Nenalezeny žádné škodlivé položky)
Složky: 3
PUP.Optional.AmazonTB.A, C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\jetpack\abb@amazon.com, Do karantény, [a83c9bfa048657df6e149714f31034cc],
PUP.Optional.AmazonTB.A, C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\jetpack\abb@amazon.com\simple-storage, Do karantény, [a83c9bfa048657df6e149714f31034cc],
PUP.Optional.MaintainerSvc.A, C:\ProgramData\685d26dc-c30a-434b-bda2-3004e8743669, Do karantény, [34b06f266a2072c4cb839e2a7291d22e],
Soubory: 5
PUP.Optional.ICQPlugin.A, C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\searchplugins\icqplugin-6.xml, Do karantény, [fee6f79e4c3ee452d9783fa409fae020],
PUP.Optional.ICQPlugin.A, C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\searchplugins\icqplugin-7.xml, Do karantény, [5d87365f0981181e1b36ebf83dc61ee2],
PUP.Optional.ICQPlugin.A, C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\searchplugins\icqplugin-8.xml, Do karantény, [e5ff860fb8d2171fea674b9817ec847c],
PUP.Optional.ICQPlugin.A, C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\searchplugins\icqplugin.xml, Do karantény, [855f8114d1b952e4e56c0ad9dd267789],
PUP.Optional.AmazonTB.A, C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\jetpack\abb@amazon.com\simple-storage\store.json, Do karantény, [a83c9bfa048657df6e149714f31034cc],
Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)
(end)
OS Win 10 Home
Základní deska MSI H110M PRO-VD,
2jádrový procesor Intel Core i3-6098P (3.6GHz, HyperThreading), 8GB operační paměti DDR4 2133 MHz TEAM Elite,
Pevný disk 1TB Seagate Barracuda,
Grafická karta NVIDIA GeForce GTX 750 Ti 2GB GDDR5,
DVD±RW mechanika LG,
Zdroj CHIEFTEC GPB-350S, 350 W
Skříň AIO Virtuo TAB04 Champagne
Základní deska MSI H110M PRO-VD,
2jádrový procesor Intel Core i3-6098P (3.6GHz, HyperThreading), 8GB operační paměti DDR4 2133 MHz TEAM Elite,
Pevný disk 1TB Seagate Barracuda,
Grafická karta NVIDIA GeForce GTX 750 Ti 2GB GDDR5,
DVD±RW mechanika LG,
Zdroj CHIEFTEC GPB-350S, 350 W
Skříň AIO Virtuo TAB04 Champagne
Re: Kontrola logu-není BFE
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.7.5 (05.20.2015:1)
OS: Windows 7 Home Premium x86
Ran by Tomik on st 20.05.2015 at 20:58:08,41
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
~~~ Tasks
~~~ Registry Values
~~~ Registry Keys
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{0055C089-8582-441B-A0BF-17B458C2A3A8}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\Browser Helper Objects\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Eventlog\Application\Update Techgile
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Eventlog\Application\Update webporpoise
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Eventlog\Application\Util Techgile
~~~ Files
~~~ Folders
Successfully deleted: [Empty Folder] C:\Users\Tomik\appdata\local\{0634CD12-811F-42B3-9C24-E43E6D202F3B}
Successfully deleted: [Empty Folder] C:\Users\Tomik\appdata\local\{1270A887-315C-4AEA-AD45-68FE7287C1C4}
Successfully deleted: [Empty Folder] C:\Users\Tomik\appdata\local\{1EC8F501-F1D4-499E-9998-D27C804DD9BE}
Successfully deleted: [Empty Folder] C:\Users\Tomik\appdata\local\{22A422DE-DDB5-4A89-93DB-7417E3E193EF}
Successfully deleted: [Empty Folder] C:\Users\Tomik\appdata\local\{2C67AEC0-E861-411D-BC83-A66F7FF52BCD}
Successfully deleted: [Empty Folder] C:\Users\Tomik\appdata\local\{3614D780-E5CA-4FCC-9BBE-94060784137A}
Successfully deleted: [Empty Folder] C:\Users\Tomik\appdata\local\{40A435D8-AD32-436C-A3F3-56B37923AD19}
Successfully deleted: [Empty Folder] C:\Users\Tomik\appdata\local\{5156E0E2-EC38-413C-941D-399EE445B952}
Successfully deleted: [Empty Folder] C:\Users\Tomik\appdata\local\{6FE0253E-0536-4453-BA3A-5B228DF9EBF1}
Successfully deleted: [Empty Folder] C:\Users\Tomik\appdata\local\{7F83E39E-C9F1-405C-8E64-61602FA1CAB2}
Successfully deleted: [Empty Folder] C:\Users\Tomik\appdata\local\{80F01E88-2DCB-4D1A-8823-80506A3214AA}
Successfully deleted: [Empty Folder] C:\Users\Tomik\appdata\local\{9EB4ECA3-CD32-4BF2-AF96-8643119C217A}
Successfully deleted: [Empty Folder] C:\Users\Tomik\appdata\local\{A3219884-9351-49C1-B99F-7D721C657AE2}
Successfully deleted: [Empty Folder] C:\Users\Tomik\appdata\local\{B60B8EBE-9823-452F-A2FE-86664E1A7460}
Successfully deleted: [Empty Folder] C:\Users\Tomik\appdata\local\{B74ABC6F-6525-4CBB-8BC0-BFFDDCDCB8E1}
Successfully deleted: [Empty Folder] C:\Users\Tomik\appdata\local\{B7702728-0E6A-4063-A8A8-E33E993CE3E1}
Successfully deleted: [Empty Folder] C:\Users\Tomik\appdata\local\{C5E64106-C26C-476F-9B3A-E40EC596DC3C}
Successfully deleted: [Empty Folder] C:\Users\Tomik\appdata\local\{C7987D8D-D4A1-4551-86EA-FF0FE71ECFA3}
Successfully deleted: [Empty Folder] C:\Users\Tomik\appdata\local\{E72FD53F-2871-4886-8EF9-F8219F775F7B}
Successfully deleted: [Empty Folder] C:\Users\Tomik\appdata\local\{FBAC2B00-C6A3-4104-A949-1CA10C8AD854}
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on st 20.05.2015 at 21:03:15,32
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.7.5 (05.20.2015:1)
OS: Windows 7 Home Premium x86
Ran by Tomik on st 20.05.2015 at 20:58:08,41
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
~~~ Tasks
~~~ Registry Values
~~~ Registry Keys
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{0055C089-8582-441B-A0BF-17B458C2A3A8}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\Browser Helper Objects\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Eventlog\Application\Update Techgile
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Eventlog\Application\Update webporpoise
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Eventlog\Application\Util Techgile
~~~ Files
~~~ Folders
Successfully deleted: [Empty Folder] C:\Users\Tomik\appdata\local\{0634CD12-811F-42B3-9C24-E43E6D202F3B}
Successfully deleted: [Empty Folder] C:\Users\Tomik\appdata\local\{1270A887-315C-4AEA-AD45-68FE7287C1C4}
Successfully deleted: [Empty Folder] C:\Users\Tomik\appdata\local\{1EC8F501-F1D4-499E-9998-D27C804DD9BE}
Successfully deleted: [Empty Folder] C:\Users\Tomik\appdata\local\{22A422DE-DDB5-4A89-93DB-7417E3E193EF}
Successfully deleted: [Empty Folder] C:\Users\Tomik\appdata\local\{2C67AEC0-E861-411D-BC83-A66F7FF52BCD}
Successfully deleted: [Empty Folder] C:\Users\Tomik\appdata\local\{3614D780-E5CA-4FCC-9BBE-94060784137A}
Successfully deleted: [Empty Folder] C:\Users\Tomik\appdata\local\{40A435D8-AD32-436C-A3F3-56B37923AD19}
Successfully deleted: [Empty Folder] C:\Users\Tomik\appdata\local\{5156E0E2-EC38-413C-941D-399EE445B952}
Successfully deleted: [Empty Folder] C:\Users\Tomik\appdata\local\{6FE0253E-0536-4453-BA3A-5B228DF9EBF1}
Successfully deleted: [Empty Folder] C:\Users\Tomik\appdata\local\{7F83E39E-C9F1-405C-8E64-61602FA1CAB2}
Successfully deleted: [Empty Folder] C:\Users\Tomik\appdata\local\{80F01E88-2DCB-4D1A-8823-80506A3214AA}
Successfully deleted: [Empty Folder] C:\Users\Tomik\appdata\local\{9EB4ECA3-CD32-4BF2-AF96-8643119C217A}
Successfully deleted: [Empty Folder] C:\Users\Tomik\appdata\local\{A3219884-9351-49C1-B99F-7D721C657AE2}
Successfully deleted: [Empty Folder] C:\Users\Tomik\appdata\local\{B60B8EBE-9823-452F-A2FE-86664E1A7460}
Successfully deleted: [Empty Folder] C:\Users\Tomik\appdata\local\{B74ABC6F-6525-4CBB-8BC0-BFFDDCDCB8E1}
Successfully deleted: [Empty Folder] C:\Users\Tomik\appdata\local\{B7702728-0E6A-4063-A8A8-E33E993CE3E1}
Successfully deleted: [Empty Folder] C:\Users\Tomik\appdata\local\{C5E64106-C26C-476F-9B3A-E40EC596DC3C}
Successfully deleted: [Empty Folder] C:\Users\Tomik\appdata\local\{C7987D8D-D4A1-4551-86EA-FF0FE71ECFA3}
Successfully deleted: [Empty Folder] C:\Users\Tomik\appdata\local\{E72FD53F-2871-4886-8EF9-F8219F775F7B}
Successfully deleted: [Empty Folder] C:\Users\Tomik\appdata\local\{FBAC2B00-C6A3-4104-A949-1CA10C8AD854}
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on st 20.05.2015 at 21:03:15,32
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
OS Win 10 Home
Základní deska MSI H110M PRO-VD,
2jádrový procesor Intel Core i3-6098P (3.6GHz, HyperThreading), 8GB operační paměti DDR4 2133 MHz TEAM Elite,
Pevný disk 1TB Seagate Barracuda,
Grafická karta NVIDIA GeForce GTX 750 Ti 2GB GDDR5,
DVD±RW mechanika LG,
Zdroj CHIEFTEC GPB-350S, 350 W
Skříň AIO Virtuo TAB04 Champagne
Základní deska MSI H110M PRO-VD,
2jádrový procesor Intel Core i3-6098P (3.6GHz, HyperThreading), 8GB operační paměti DDR4 2133 MHz TEAM Elite,
Pevný disk 1TB Seagate Barracuda,
Grafická karta NVIDIA GeForce GTX 750 Ti 2GB GDDR5,
DVD±RW mechanika LG,
Zdroj CHIEFTEC GPB-350S, 350 W
Skříň AIO Virtuo TAB04 Champagne
Re: Kontrola logu-není BFE
RogueKiller V10.6.5.0 [May 20 2015] by Adlice Software
mail : http://www.adlice.com/contact/
Feedback : http://forum.adlice.com
Webová stránka : http://www.adlice.com/softwares/roguekiller/
Blog : http://www.adlice.com
Operační systém : Windows 7 (6.1.7601 Service Pack 1) 32 bits version
Spuštěno : Normální režim
Uživatel : Tomik [Práva správce]
Started from : T:\Stáhnuté videa z YouTube\RogueKiller.exe
Mód : Prohledat -- Datum : 05/20/2015 21:21:24
¤¤¤ Procesy : 0 ¤¤¤
¤¤¤ Registry : 17 ¤¤¤
[PUM.Orphan] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad | WebCheck : {E6FB5E20-DE35-11CF-9C87-00AA005127ED} -> Nalezeno
[PUM.Orphan] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00avast | (default) : {472083B0-C522-11CF-8763-00608CC02F24} -> Nalezeno
[PUM.Orphan] HKEY_USERS\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser | {21FA44EF-376D-4D53-9B0F-8A89D3229068} : -> Nalezeno
[PUM.Orphan] HKEY_USERS\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser | {09900DE8-1DCA-443F-9243-26FF581438AF} : -> Nalezeno
[Hidden.From.SCM] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\.afd (\?) -> Nalezeno
[PUM.Dns] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters | DhcpNameServer : 10.157.0.1 4.2.2.1 [(Private Address) (XX)][-] -> Nalezeno
[PUM.Dns] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters | DhcpNameServer : 10.157.0.1 4.2.2.1 [(Private Address) (XX)][-] -> Nalezeno
[PUM.Dns] HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters | DhcpNameServer : 10.157.0.1 4.2.2.1 [(Private Address) (XX)][-] -> Nalezeno
[PUM.Dns] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{22238426-BADF-4F4A-A897-CDAF3C9F540D} | DhcpNameServer : 10.157.0.1 4.2.2.1 [(Private Address) (XX)][-] -> Nalezeno
[PUM.Dns] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{B9BFA938-F223-47FE-BB36-DFD77A6288D8} | NameServer : 10.157.0.1,4.2.2.1 [(Private Address) (XX)][-] -> Nalezeno
[PUM.Dns] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{22238426-BADF-4F4A-A897-CDAF3C9F540D} | DhcpNameServer : 10.157.0.1 4.2.2.1 [(Private Address) (XX)][-] -> Nalezeno
[PUM.Dns] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{B9BFA938-F223-47FE-BB36-DFD77A6288D8} | NameServer : 10.157.0.1,4.2.2.1 [(Private Address) (XX)][-] -> Nalezeno
[PUM.Dns] HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters\Interfaces\{22238426-BADF-4F4A-A897-CDAF3C9F540D} | DhcpNameServer : 10.157.0.1 4.2.2.1 [(Private Address) (XX)][-] -> Nalezeno
[PUM.Dns] HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters\Interfaces\{B9BFA938-F223-47FE-BB36-DFD77A6288D8} | NameServer : 10.157.0.1,4.2.2.1 [(Private Address) (XX)][-] -> Nalezeno
[PUM.Policies] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System | ConsentPromptBehaviorAdmin : 0 -> Nalezeno
[PUM.DesktopIcons] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> Nalezeno
[PUM.DesktopIcons] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> Nalezeno
¤¤¤ Úlohy : 2 ¤¤¤
[Suspicious.Path] UZNYUL.job -- C:\Users\Tomik\AppData\Roaming\UZNYUL.exe (/infocmdline=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) -> Nalezeno
[Suspicious.Path] WTPQZFD.job -- C:\Users\Tomik\AppData\Roaming\WTPQZFD.exe (/infocmdline=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) -> Nalezeno
¤¤¤ Soubory : 2 ¤¤¤
[ZeroAccess][Junction] $NtUninstallKB16362$ -- C:\Windows\$NtUninstallKB16362$ [JUNCTION@ 0] >> ERROR 5 -> Nalezeno
[ZeroAccess][Junction] $NtUninstallKB49173$ -- C:\Windows\$NtUninstallKB49173$ [JUNCTION@ 0] >> ERROR 5 -> Nalezeno
¤¤¤ Soubor HOSTS : 0 ¤¤¤
¤¤¤ Antirootkit : 0 (Driver: Nahrán) ¤¤¤
¤¤¤ Webové prohlížeče : 1 ¤¤¤
[PUM.HomePage][FIREFX:Config] d5xqvmuk.default : user_pref("browser.startup.homepage", "about:superstart"); -> Nalezeno
¤¤¤ Kontrola MBR : ¤¤¤
+++++ PhysicalDrive0: SAMSUNG HD502HJ ATA Device +++++
--- User ---
[MBR] c6359e67398400267ed5a1099b598c93
[BSP] af844db52f3e2dc8bbcfaea2697c61fe : Windows Vista/7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 101 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
1 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 208896 | Size: 61969 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
2 - [XXXXXX] EXTEN-LBA (0xf) [VISIBLE] Offset (sectors): 127122345 | Size: 414865 MB
User = LL1 ... OK
User = LL2 ... OK
mail : http://www.adlice.com/contact/
Feedback : http://forum.adlice.com
Webová stránka : http://www.adlice.com/softwares/roguekiller/
Blog : http://www.adlice.com
Operační systém : Windows 7 (6.1.7601 Service Pack 1) 32 bits version
Spuštěno : Normální režim
Uživatel : Tomik [Práva správce]
Started from : T:\Stáhnuté videa z YouTube\RogueKiller.exe
Mód : Prohledat -- Datum : 05/20/2015 21:21:24
¤¤¤ Procesy : 0 ¤¤¤
¤¤¤ Registry : 17 ¤¤¤
[PUM.Orphan] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad | WebCheck : {E6FB5E20-DE35-11CF-9C87-00AA005127ED} -> Nalezeno
[PUM.Orphan] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00avast | (default) : {472083B0-C522-11CF-8763-00608CC02F24} -> Nalezeno
[PUM.Orphan] HKEY_USERS\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser | {21FA44EF-376D-4D53-9B0F-8A89D3229068} : -> Nalezeno
[PUM.Orphan] HKEY_USERS\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser | {09900DE8-1DCA-443F-9243-26FF581438AF} : -> Nalezeno
[Hidden.From.SCM] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\.afd (\?) -> Nalezeno
[PUM.Dns] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters | DhcpNameServer : 10.157.0.1 4.2.2.1 [(Private Address) (XX)][-] -> Nalezeno
[PUM.Dns] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters | DhcpNameServer : 10.157.0.1 4.2.2.1 [(Private Address) (XX)][-] -> Nalezeno
[PUM.Dns] HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters | DhcpNameServer : 10.157.0.1 4.2.2.1 [(Private Address) (XX)][-] -> Nalezeno
[PUM.Dns] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{22238426-BADF-4F4A-A897-CDAF3C9F540D} | DhcpNameServer : 10.157.0.1 4.2.2.1 [(Private Address) (XX)][-] -> Nalezeno
[PUM.Dns] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{B9BFA938-F223-47FE-BB36-DFD77A6288D8} | NameServer : 10.157.0.1,4.2.2.1 [(Private Address) (XX)][-] -> Nalezeno
[PUM.Dns] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{22238426-BADF-4F4A-A897-CDAF3C9F540D} | DhcpNameServer : 10.157.0.1 4.2.2.1 [(Private Address) (XX)][-] -> Nalezeno
[PUM.Dns] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{B9BFA938-F223-47FE-BB36-DFD77A6288D8} | NameServer : 10.157.0.1,4.2.2.1 [(Private Address) (XX)][-] -> Nalezeno
[PUM.Dns] HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters\Interfaces\{22238426-BADF-4F4A-A897-CDAF3C9F540D} | DhcpNameServer : 10.157.0.1 4.2.2.1 [(Private Address) (XX)][-] -> Nalezeno
[PUM.Dns] HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters\Interfaces\{B9BFA938-F223-47FE-BB36-DFD77A6288D8} | NameServer : 10.157.0.1,4.2.2.1 [(Private Address) (XX)][-] -> Nalezeno
[PUM.Policies] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System | ConsentPromptBehaviorAdmin : 0 -> Nalezeno
[PUM.DesktopIcons] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> Nalezeno
[PUM.DesktopIcons] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> Nalezeno
¤¤¤ Úlohy : 2 ¤¤¤
[Suspicious.Path] UZNYUL.job -- C:\Users\Tomik\AppData\Roaming\UZNYUL.exe (/infocmdline=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) -> Nalezeno
[Suspicious.Path] WTPQZFD.job -- C:\Users\Tomik\AppData\Roaming\WTPQZFD.exe (/infocmdline=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) -> Nalezeno
¤¤¤ Soubory : 2 ¤¤¤
[ZeroAccess][Junction] $NtUninstallKB16362$ -- C:\Windows\$NtUninstallKB16362$ [JUNCTION@ 0] >> ERROR 5 -> Nalezeno
[ZeroAccess][Junction] $NtUninstallKB49173$ -- C:\Windows\$NtUninstallKB49173$ [JUNCTION@ 0] >> ERROR 5 -> Nalezeno
¤¤¤ Soubor HOSTS : 0 ¤¤¤
¤¤¤ Antirootkit : 0 (Driver: Nahrán) ¤¤¤
¤¤¤ Webové prohlížeče : 1 ¤¤¤
[PUM.HomePage][FIREFX:Config] d5xqvmuk.default : user_pref("browser.startup.homepage", "about:superstart"); -> Nalezeno
¤¤¤ Kontrola MBR : ¤¤¤
+++++ PhysicalDrive0: SAMSUNG HD502HJ ATA Device +++++
--- User ---
[MBR] c6359e67398400267ed5a1099b598c93
[BSP] af844db52f3e2dc8bbcfaea2697c61fe : Windows Vista/7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 101 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
1 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 208896 | Size: 61969 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
2 - [XXXXXX] EXTEN-LBA (0xf) [VISIBLE] Offset (sectors): 127122345 | Size: 414865 MB
User = LL1 ... OK
User = LL2 ... OK
OS Win 10 Home
Základní deska MSI H110M PRO-VD,
2jádrový procesor Intel Core i3-6098P (3.6GHz, HyperThreading), 8GB operační paměti DDR4 2133 MHz TEAM Elite,
Pevný disk 1TB Seagate Barracuda,
Grafická karta NVIDIA GeForce GTX 750 Ti 2GB GDDR5,
DVD±RW mechanika LG,
Zdroj CHIEFTEC GPB-350S, 350 W
Skříň AIO Virtuo TAB04 Champagne
Základní deska MSI H110M PRO-VD,
2jádrový procesor Intel Core i3-6098P (3.6GHz, HyperThreading), 8GB operační paměti DDR4 2133 MHz TEAM Elite,
Pevný disk 1TB Seagate Barracuda,
Grafická karta NVIDIA GeForce GTX 750 Ti 2GB GDDR5,
DVD±RW mechanika LG,
Zdroj CHIEFTEC GPB-350S, 350 W
Skříň AIO Virtuo TAB04 Champagne
-
jaro3
- člen Security týmu
-
Guru Level 15
- Příspěvky: 43298
- Registrován: červen 07
- Bydliště: Jižní Čechy
- Pohlaví:
- Stav:
Offline
Re: Kontrola logu-není BFE
Zavři všechny programy a prohlížeče. Deaktivuj antivir a firewall.
Prosím, odpoj všechny USB (kromě myši s klávesnice) nebo externí disky z počítače před spuštěním tohoto programu.
Spusť znovu RogueKiller ( Pro Windows Vista nebo Windows 7, klepni pravým a vyber "Spustit jako správce", ve Windows XP poklepej ke spuštění).
- Počkej, až Prescan dokončí práci...
- Pak klikni na "Prohledat " ,po jeho skončení:
- V záložkách (Registry , Tasks , Web Browser apod.) vše zatrhni (dej zatržítka)
(musíš dát myší zatržítko do toho čtverečku vlevo od registru ap.)
- Klikni na "Smazat"
- Počkej, dokud Status box nezobrazí " Mazání dokončeno "
- Klikni na "Zpráva " a zkopíruj a vlož obsah té zprávy prosím sem. Log je možno nalézt v RKreport [číslo]. txt na ploše.
- Zavři RogueKiller
Vypni antivir i firewall.
Stáhni
Zoek.exe
a uloz si ho na plochu.
Zavři všechny ostatní programy , okna i prohlížeče.
Spusť Zoek.exe ( u win vista , win7, 8 klikni na něj pravým a vyber : „Spustit jako správce“
- pozor , náběh programu může trvat déle.
Do okna programu vlož skript níže:
klikni na Run Script
Program provede sken , opravu, sken i oprava může trvat i více minut ,je třeba posečkat do konce. Do okna neklikej!
Program nabídne restart , potvrď .
Po restartu se může nějaký čas ukázat pouze černá plocha , to je normální. Je třeba počkat až se vytvoří log. Ten si můžeš uložit třeba do dokumentů , jinak se sám ukládá do:
C:\zoek-results.log
Zkopíruj sem celý obsah toho logu.
Vlož nový log z HJT + informuj o problémech.
Prosím, odpoj všechny USB (kromě myši s klávesnice) nebo externí disky z počítače před spuštěním tohoto programu.
Spusť znovu RogueKiller ( Pro Windows Vista nebo Windows 7, klepni pravým a vyber "Spustit jako správce", ve Windows XP poklepej ke spuštění).
- Počkej, až Prescan dokončí práci...
- Pak klikni na "Prohledat " ,po jeho skončení:
- V záložkách (Registry , Tasks , Web Browser apod.) vše zatrhni (dej zatržítka)
(musíš dát myší zatržítko do toho čtverečku vlevo od registru ap.)
- Klikni na "Smazat"
- Počkej, dokud Status box nezobrazí " Mazání dokončeno "
- Klikni na "Zpráva " a zkopíruj a vlož obsah té zprávy prosím sem. Log je možno nalézt v RKreport [číslo]. txt na ploše.
- Zavři RogueKiller
Vypni antivir i firewall.
Stáhni
Zoek.exe
a uloz si ho na plochu.
Zavři všechny ostatní programy , okna i prohlížeče.
Spusť Zoek.exe ( u win vista , win7, 8 klikni na něj pravým a vyber : „Spustit jako správce“
- pozor , náběh programu může trvat déle.
Do okna programu vlož skript níže:
Kód: Vybrat vše
autoclean;
emptyclsid;
iedefaults;
FFdefaults;
CHRdefaults;
emptyalltemp;
resethosts; klikni na Run Script
Program provede sken , opravu, sken i oprava může trvat i více minut ,je třeba posečkat do konce. Do okna neklikej!
Program nabídne restart , potvrď .
Po restartu se může nějaký čas ukázat pouze černá plocha , to je normální. Je třeba počkat až se vytvoří log. Ten si můžeš uložit třeba do dokumentů , jinak se sám ukládá do:
C:\zoek-results.log
Zkopíruj sem celý obsah toho logu.
Vlož nový log z HJT + informuj o problémech.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Re: Kontrola logu-není BFE
RogueKiller V10.6.5.0 [May 20 2015] by Adlice Software
mail : http://www.adlice.com/contact/
Feedback : http://forum.adlice.com
Webová stránka : http://www.adlice.com/softwares/roguekiller/
Blog : http://www.adlice.com
Operační systém : Windows 7 (6.1.7601 Service Pack 1) 32 bits version
Spuštěno : Normální režim
Uživatel : Tomik [Práva správce]
Started from : C:\Users\Tomik\Desktop\RogueKiller.exe
Mód : Smazat -- Datum : 05/21/2015 10:17:23
¤¤¤ Procesy : 0 ¤¤¤
¤¤¤ Registry : 17 ¤¤¤
[PUM.Orphan] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad | WebCheck : {E6FB5E20-DE35-11CF-9C87-00AA005127ED} -> Smazáno
[PUM.Orphan] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00avast | (default) : {472083B0-C522-11CF-8763-00608CC02F24} -> Smazáno
[PUM.Orphan] HKEY_USERS\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser | {21FA44EF-376D-4D53-9B0F-8A89D3229068} : -> Smazáno
[PUM.Orphan] HKEY_USERS\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser | {09900DE8-1DCA-443F-9243-26FF581438AF} : -> Smazáno
[Hidden.From.SCM] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\.afd (\?) -> Smazáno
[PUM.Dns] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters | DhcpNameServer : 10.157.0.1 4.2.2.1 [(Private Address) (XX)][-] -> Nahrazeno ()
[PUM.Dns] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters | DhcpNameServer : 10.157.0.1 4.2.2.1 [(Private Address) (XX)][-] -> Nahrazeno ()
[PUM.Dns] HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters | DhcpNameServer : 10.157.0.1 4.2.2.1 [(Private Address) (XX)][-] -> Nahrazeno ()
[PUM.Dns] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{22238426-BADF-4F4A-A897-CDAF3C9F540D} | DhcpNameServer : 10.157.0.1 4.2.2.1 [(Private Address) (XX)][-] -> Nahrazeno ()
[PUM.Dns] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{B9BFA938-F223-47FE-BB36-DFD77A6288D8} | NameServer : 10.157.0.1,4.2.2.1 [(Private Address) (XX)][-] -> Nahrazeno ()
[PUM.Dns] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{22238426-BADF-4F4A-A897-CDAF3C9F540D} | DhcpNameServer : 10.157.0.1 4.2.2.1 [(Private Address) (XX)][-] -> Nahrazeno ()
[PUM.Dns] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{B9BFA938-F223-47FE-BB36-DFD77A6288D8} | NameServer : 10.157.0.1,4.2.2.1 [(Private Address) (XX)][-] -> Nahrazeno ()
[PUM.Dns] HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters\Interfaces\{22238426-BADF-4F4A-A897-CDAF3C9F540D} | DhcpNameServer : 10.157.0.1 4.2.2.1 [(Private Address) (XX)][-] -> Nahrazeno ()
[PUM.Dns] HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters\Interfaces\{B9BFA938-F223-47FE-BB36-DFD77A6288D8} | NameServer : 10.157.0.1,4.2.2.1 [(Private Address) (XX)][-] -> Nahrazeno ()
[PUM.Policies] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System | ConsentPromptBehaviorAdmin : 0 -> Nahrazeno (2)
[PUM.DesktopIcons] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> Nahrazeno (0)
[PUM.DesktopIcons] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> Nahrazeno (0)
¤¤¤ Úlohy : 2 ¤¤¤
[Suspicious.Path] UZNYUL.job -- C:\Users\Tomik\AppData\Roaming\UZNYUL.exe (/infocmdline=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) -> Smazáno
[Suspicious.Path] WTPQZFD.job -- C:\Users\Tomik\AppData\Roaming\WTPQZFD.exe (/infocmdline=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) -> Smazáno
¤¤¤ Soubory : 2 ¤¤¤
[ZeroAccess][Junction] $NtUninstallKB16362$ -- C:\Windows\$NtUninstallKB16362$ [JUNCTION@ a000000c] >> \systemroot\system32\config -> Junction Smazáno
[ZeroAccess][Soubor] 3903170309 -- C:\Windows\$NtUninstallKB16362$\3903170309 -> Smazáno
[ZeroAccess][Soubor] @ -- C:\Windows\$NtUninstallKB16362$\869141540\@ -> Smazáno
[ZeroAccess][Soubor] Desktop.ini -- C:\Windows\$NtUninstallKB16362$\869141540\Desktop.ini -> Smazáno
[ZeroAccess][Soubor] xadqgnnk -- C:\Windows\$NtUninstallKB16362$\869141540\L\xadqgnnk -> Smazáno
[ZeroAccess][Složka] L -- C:\Windows\$NtUninstallKB16362$\869141540\L -> Smazáno
[ZeroAccess][Soubor] 00000004.@ -- C:\Windows\$NtUninstallKB16362$\869141540\U\00000004.@ -> Smazáno
[ZeroAccess][Soubor] 00000008.@ -- C:\Windows\$NtUninstallKB16362$\869141540\U\00000008.@ -> Smazáno
[ZeroAccess][Soubor] 000000cb.@ -- C:\Windows\$NtUninstallKB16362$\869141540\U\000000cb.@ -> Smazáno
[ZeroAccess][Soubor] 80000000.@ -- C:\Windows\$NtUninstallKB16362$\869141540\U\80000000.@ -> Smazáno
[ZeroAccess][Soubor] 80000032.@ -- C:\Windows\$NtUninstallKB16362$\869141540\U\80000032.@ -> Smazáno
[ZeroAccess][Složka] U -- C:\Windows\$NtUninstallKB16362$\869141540\U -> Smazáno
[ZeroAccess][Složka] 869141540 -- C:\Windows\$NtUninstallKB16362$\869141540 -> Smazáno
[ZeroAccess][Složka] $NtUninstallKB16362$ -- C:\Windows\$NtUninstallKB16362$ -> Smazáno
[ZeroAccess][Junction] $NtUninstallKB49173$ -- C:\Windows\$NtUninstallKB49173$ [JUNCTION@ a000000c] >> \systemroot\system32\config -> Junction Smazáno
[ZeroAccess][Soubor] 1271171030 -- C:\Windows\$NtUninstallKB49173$\1271171030 -> Smazáno
[ZeroAccess][Složka] L -- C:\Windows\$NtUninstallKB49173$\869141540\L -> Smazáno
[ZeroAccess][Složka] U -- C:\Windows\$NtUninstallKB49173$\869141540\U -> Smazáno
[ZeroAccess][Složka] 869141540 -- C:\Windows\$NtUninstallKB49173$\869141540 -> Smazáno
[ZeroAccess][Složka] $NtUninstallKB49173$ -- C:\Windows\$NtUninstallKB49173$ -> Smazáno
¤¤¤ Soubor HOSTS : 0 ¤¤¤
¤¤¤ Antirootkit : 0 (Driver: Nahrán) ¤¤¤
¤¤¤ Webové prohlížeče : 22 ¤¤¤
[FIREFX:Addon] d5xqvmuk.default : Download Statusbar [{D4DD63FA-01E4-46a7-B6B1-EDAB7D6AD389}] -> Smazáno
[FIREFX:Addon] d5xqvmuk.default : DictionarySearch (Official Version) [{a0faa0a4-f1a7-4098-9a74-21efc3a92372}] -> Smazáno
[FIREFX:Addon] d5xqvmuk.default : Image Zoom [{1A2D0EC4-75F5-4c91-89C4-3656F6E44B68}] -> Smazáno
[FIREFX:Addon] d5xqvmuk.default : Image Toolbar [{A4732521-77D9-447E-A557-B279AC923F06}] -> Smazáno
[FIREFX:Addon] d5xqvmuk.default : Adblock Plus [{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}] -> Smazáno
[FIREFX:Addon] d5xqvmuk.default : Check4Change [check4change-owner@mozdev.org] -> Smazáno
[FIREFX:Addon] d5xqvmuk.default : FootieFox [{9fb7d178-155a-4318-9173-1a8eaaea7fe4}] -> Smazáno
[FIREFX:Addon] d5xqvmuk.default : Flagfox [{1018e4d6-728f-4b20-ad56-37578a4de76b}] -> Smazáno
[FIREFX:Addon] d5xqvmuk.default : Pearl Crescent Page Saver Basic screenshot tool [{c151d79e-e61b-4a90-a887-5a46d38fba99}] -> Smazáno
[FIREFX:Addon] d5xqvmuk.default : Extended Copy Menu (fix version) [extended.copy.menu@fix.version] -> Smazáno
[FIREFX:Addon] d5xqvmuk.default : Super Start [superstart@enjoyfreeware.org] -> Smazáno
[FIREFX:Addon] d5xqvmuk.default : Forecastfox Weather [{0538E3E3-7E9B-4d49-8831-A227C80A7AD3}] -> Smazáno
[FIREFX:Addon] d5xqvmuk.default : IE View [{6e84150a-d526-41f1-a480-a67d3fed910d}] -> Smazáno
[FIREFX:Addon] d5xqvmuk.default : SearchPreview [{EF522540-89F5-46b9-B6FE-1829E2B572C6}] -> Smazáno
[FIREFX:Addon] d5xqvmuk.default : CSHelper [{d91a2be6-3b56-4dfb-97f5-5e48fe3ed473}] -> Smazáno
[FIREFX:Addon] d5xqvmuk.default : S3.Google Translator [s3google@translator] -> Smazáno
[FIREFX:Addon] d5xqvmuk.default : WOT - Bezpečné Surfování [{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}] -> Smazáno
[FIREFX:Addon] d5xqvmuk.default : RoboForm Lite [xpirftoolbar@roboform.com] -> Smazáno
[FIREFX:Addon] d5xqvmuk.default : Noia 4 Theme Manager [Noia4Options@ArisT2] -> Smazáno
[FIREFX:Addon] d5xqvmuk.default : Widevine Media Optimizer [{2d3fbcf7-be69-4433-8858-c621a8d0e58d}] -> Smazáno
[FIREFX:Addon] d5xqvmuk.default : IDM CC [mozilla_cc@internetdownloadmanager.com] -> Smazáno
[PUM.HomePage][FIREFX:Config] d5xqvmuk.default : user_pref("browser.startup.homepage", "about:superstart"); -> Nahrazeno (about:home)
¤¤¤ Kontrola MBR : ¤¤¤
+++++ PhysicalDrive0: SAMSUNG HD502HJ ATA Device +++++
--- User ---
[MBR] c6359e67398400267ed5a1099b598c93
[BSP] af844db52f3e2dc8bbcfaea2697c61fe : Windows Vista/7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 101 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
1 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 208896 | Size: 61969 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
2 - [XXXXXX] EXTEN-LBA (0xf) [VISIBLE] Offset (sectors): 127122345 | Size: 414865 MB
User = LL1 ... OK
User = LL2 ... OK
============================================
RKreport_SCN_05202015_212124.log - RKreport_SCN_05212015_101246.log
mail : http://www.adlice.com/contact/
Feedback : http://forum.adlice.com
Webová stránka : http://www.adlice.com/softwares/roguekiller/
Blog : http://www.adlice.com
Operační systém : Windows 7 (6.1.7601 Service Pack 1) 32 bits version
Spuštěno : Normální režim
Uživatel : Tomik [Práva správce]
Started from : C:\Users\Tomik\Desktop\RogueKiller.exe
Mód : Smazat -- Datum : 05/21/2015 10:17:23
¤¤¤ Procesy : 0 ¤¤¤
¤¤¤ Registry : 17 ¤¤¤
[PUM.Orphan] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad | WebCheck : {E6FB5E20-DE35-11CF-9C87-00AA005127ED} -> Smazáno
[PUM.Orphan] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00avast | (default) : {472083B0-C522-11CF-8763-00608CC02F24} -> Smazáno
[PUM.Orphan] HKEY_USERS\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser | {21FA44EF-376D-4D53-9B0F-8A89D3229068} : -> Smazáno
[PUM.Orphan] HKEY_USERS\S-1-5-21-3838077319-2819224973-1163748220-1000\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser | {09900DE8-1DCA-443F-9243-26FF581438AF} : -> Smazáno
[Hidden.From.SCM] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\.afd (\?) -> Smazáno
[PUM.Dns] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters | DhcpNameServer : 10.157.0.1 4.2.2.1 [(Private Address) (XX)][-] -> Nahrazeno ()
[PUM.Dns] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters | DhcpNameServer : 10.157.0.1 4.2.2.1 [(Private Address) (XX)][-] -> Nahrazeno ()
[PUM.Dns] HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters | DhcpNameServer : 10.157.0.1 4.2.2.1 [(Private Address) (XX)][-] -> Nahrazeno ()
[PUM.Dns] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{22238426-BADF-4F4A-A897-CDAF3C9F540D} | DhcpNameServer : 10.157.0.1 4.2.2.1 [(Private Address) (XX)][-] -> Nahrazeno ()
[PUM.Dns] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{B9BFA938-F223-47FE-BB36-DFD77A6288D8} | NameServer : 10.157.0.1,4.2.2.1 [(Private Address) (XX)][-] -> Nahrazeno ()
[PUM.Dns] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{22238426-BADF-4F4A-A897-CDAF3C9F540D} | DhcpNameServer : 10.157.0.1 4.2.2.1 [(Private Address) (XX)][-] -> Nahrazeno ()
[PUM.Dns] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{B9BFA938-F223-47FE-BB36-DFD77A6288D8} | NameServer : 10.157.0.1,4.2.2.1 [(Private Address) (XX)][-] -> Nahrazeno ()
[PUM.Dns] HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters\Interfaces\{22238426-BADF-4F4A-A897-CDAF3C9F540D} | DhcpNameServer : 10.157.0.1 4.2.2.1 [(Private Address) (XX)][-] -> Nahrazeno ()
[PUM.Dns] HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters\Interfaces\{B9BFA938-F223-47FE-BB36-DFD77A6288D8} | NameServer : 10.157.0.1,4.2.2.1 [(Private Address) (XX)][-] -> Nahrazeno ()
[PUM.Policies] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System | ConsentPromptBehaviorAdmin : 0 -> Nahrazeno (2)
[PUM.DesktopIcons] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> Nahrazeno (0)
[PUM.DesktopIcons] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> Nahrazeno (0)
¤¤¤ Úlohy : 2 ¤¤¤
[Suspicious.Path] UZNYUL.job -- C:\Users\Tomik\AppData\Roaming\UZNYUL.exe (/infocmdline=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) -> Smazáno
[Suspicious.Path] WTPQZFD.job -- C:\Users\Tomik\AppData\Roaming\WTPQZFD.exe (/infocmdline=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) -> Smazáno
¤¤¤ Soubory : 2 ¤¤¤
[ZeroAccess][Junction] $NtUninstallKB16362$ -- C:\Windows\$NtUninstallKB16362$ [JUNCTION@ a000000c] >> \systemroot\system32\config -> Junction Smazáno
[ZeroAccess][Soubor] 3903170309 -- C:\Windows\$NtUninstallKB16362$\3903170309 -> Smazáno
[ZeroAccess][Soubor] @ -- C:\Windows\$NtUninstallKB16362$\869141540\@ -> Smazáno
[ZeroAccess][Soubor] Desktop.ini -- C:\Windows\$NtUninstallKB16362$\869141540\Desktop.ini -> Smazáno
[ZeroAccess][Soubor] xadqgnnk -- C:\Windows\$NtUninstallKB16362$\869141540\L\xadqgnnk -> Smazáno
[ZeroAccess][Složka] L -- C:\Windows\$NtUninstallKB16362$\869141540\L -> Smazáno
[ZeroAccess][Soubor] 00000004.@ -- C:\Windows\$NtUninstallKB16362$\869141540\U\00000004.@ -> Smazáno
[ZeroAccess][Soubor] 00000008.@ -- C:\Windows\$NtUninstallKB16362$\869141540\U\00000008.@ -> Smazáno
[ZeroAccess][Soubor] 000000cb.@ -- C:\Windows\$NtUninstallKB16362$\869141540\U\000000cb.@ -> Smazáno
[ZeroAccess][Soubor] 80000000.@ -- C:\Windows\$NtUninstallKB16362$\869141540\U\80000000.@ -> Smazáno
[ZeroAccess][Soubor] 80000032.@ -- C:\Windows\$NtUninstallKB16362$\869141540\U\80000032.@ -> Smazáno
[ZeroAccess][Složka] U -- C:\Windows\$NtUninstallKB16362$\869141540\U -> Smazáno
[ZeroAccess][Složka] 869141540 -- C:\Windows\$NtUninstallKB16362$\869141540 -> Smazáno
[ZeroAccess][Složka] $NtUninstallKB16362$ -- C:\Windows\$NtUninstallKB16362$ -> Smazáno
[ZeroAccess][Junction] $NtUninstallKB49173$ -- C:\Windows\$NtUninstallKB49173$ [JUNCTION@ a000000c] >> \systemroot\system32\config -> Junction Smazáno
[ZeroAccess][Soubor] 1271171030 -- C:\Windows\$NtUninstallKB49173$\1271171030 -> Smazáno
[ZeroAccess][Složka] L -- C:\Windows\$NtUninstallKB49173$\869141540\L -> Smazáno
[ZeroAccess][Složka] U -- C:\Windows\$NtUninstallKB49173$\869141540\U -> Smazáno
[ZeroAccess][Složka] 869141540 -- C:\Windows\$NtUninstallKB49173$\869141540 -> Smazáno
[ZeroAccess][Složka] $NtUninstallKB49173$ -- C:\Windows\$NtUninstallKB49173$ -> Smazáno
¤¤¤ Soubor HOSTS : 0 ¤¤¤
¤¤¤ Antirootkit : 0 (Driver: Nahrán) ¤¤¤
¤¤¤ Webové prohlížeče : 22 ¤¤¤
[FIREFX:Addon] d5xqvmuk.default : Download Statusbar [{D4DD63FA-01E4-46a7-B6B1-EDAB7D6AD389}] -> Smazáno
[FIREFX:Addon] d5xqvmuk.default : DictionarySearch (Official Version) [{a0faa0a4-f1a7-4098-9a74-21efc3a92372}] -> Smazáno
[FIREFX:Addon] d5xqvmuk.default : Image Zoom [{1A2D0EC4-75F5-4c91-89C4-3656F6E44B68}] -> Smazáno
[FIREFX:Addon] d5xqvmuk.default : Image Toolbar [{A4732521-77D9-447E-A557-B279AC923F06}] -> Smazáno
[FIREFX:Addon] d5xqvmuk.default : Adblock Plus [{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}] -> Smazáno
[FIREFX:Addon] d5xqvmuk.default : Check4Change [check4change-owner@mozdev.org] -> Smazáno
[FIREFX:Addon] d5xqvmuk.default : FootieFox [{9fb7d178-155a-4318-9173-1a8eaaea7fe4}] -> Smazáno
[FIREFX:Addon] d5xqvmuk.default : Flagfox [{1018e4d6-728f-4b20-ad56-37578a4de76b}] -> Smazáno
[FIREFX:Addon] d5xqvmuk.default : Pearl Crescent Page Saver Basic screenshot tool [{c151d79e-e61b-4a90-a887-5a46d38fba99}] -> Smazáno
[FIREFX:Addon] d5xqvmuk.default : Extended Copy Menu (fix version) [extended.copy.menu@fix.version] -> Smazáno
[FIREFX:Addon] d5xqvmuk.default : Super Start [superstart@enjoyfreeware.org] -> Smazáno
[FIREFX:Addon] d5xqvmuk.default : Forecastfox Weather [{0538E3E3-7E9B-4d49-8831-A227C80A7AD3}] -> Smazáno
[FIREFX:Addon] d5xqvmuk.default : IE View [{6e84150a-d526-41f1-a480-a67d3fed910d}] -> Smazáno
[FIREFX:Addon] d5xqvmuk.default : SearchPreview [{EF522540-89F5-46b9-B6FE-1829E2B572C6}] -> Smazáno
[FIREFX:Addon] d5xqvmuk.default : CSHelper [{d91a2be6-3b56-4dfb-97f5-5e48fe3ed473}] -> Smazáno
[FIREFX:Addon] d5xqvmuk.default : S3.Google Translator [s3google@translator] -> Smazáno
[FIREFX:Addon] d5xqvmuk.default : WOT - Bezpečné Surfování [{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}] -> Smazáno
[FIREFX:Addon] d5xqvmuk.default : RoboForm Lite [xpirftoolbar@roboform.com] -> Smazáno
[FIREFX:Addon] d5xqvmuk.default : Noia 4 Theme Manager [Noia4Options@ArisT2] -> Smazáno
[FIREFX:Addon] d5xqvmuk.default : Widevine Media Optimizer [{2d3fbcf7-be69-4433-8858-c621a8d0e58d}] -> Smazáno
[FIREFX:Addon] d5xqvmuk.default : IDM CC [mozilla_cc@internetdownloadmanager.com] -> Smazáno
[PUM.HomePage][FIREFX:Config] d5xqvmuk.default : user_pref("browser.startup.homepage", "about:superstart"); -> Nahrazeno (about:home)
¤¤¤ Kontrola MBR : ¤¤¤
+++++ PhysicalDrive0: SAMSUNG HD502HJ ATA Device +++++
--- User ---
[MBR] c6359e67398400267ed5a1099b598c93
[BSP] af844db52f3e2dc8bbcfaea2697c61fe : Windows Vista/7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 101 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
1 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 208896 | Size: 61969 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
2 - [XXXXXX] EXTEN-LBA (0xf) [VISIBLE] Offset (sectors): 127122345 | Size: 414865 MB
User = LL1 ... OK
User = LL2 ... OK
============================================
RKreport_SCN_05202015_212124.log - RKreport_SCN_05212015_101246.log
OS Win 10 Home
Základní deska MSI H110M PRO-VD,
2jádrový procesor Intel Core i3-6098P (3.6GHz, HyperThreading), 8GB operační paměti DDR4 2133 MHz TEAM Elite,
Pevný disk 1TB Seagate Barracuda,
Grafická karta NVIDIA GeForce GTX 750 Ti 2GB GDDR5,
DVD±RW mechanika LG,
Zdroj CHIEFTEC GPB-350S, 350 W
Skříň AIO Virtuo TAB04 Champagne
Základní deska MSI H110M PRO-VD,
2jádrový procesor Intel Core i3-6098P (3.6GHz, HyperThreading), 8GB operační paměti DDR4 2133 MHz TEAM Elite,
Pevný disk 1TB Seagate Barracuda,
Grafická karta NVIDIA GeForce GTX 750 Ti 2GB GDDR5,
DVD±RW mechanika LG,
Zdroj CHIEFTEC GPB-350S, 350 W
Skříň AIO Virtuo TAB04 Champagne
Re: Kontrola logu-není BFE
Zoek.exe v5.0.0.0 Updated 04-May-2015
Tool run by Tomik on źt 21.05.2015 at 10:27:18,59.
Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x86
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Tomik\Desktop\zoek.exe [Scan all users] [Script inserted]
==== System Restore Info ======================
21.5.2015 10:29:06 Zoek.exe System Restore Point Created Successfully.
==== Reset Hosts File ======================
# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host
# localhost name resolution is handled within DNS itself.
127.0.0.1 localhost
::1 localhost
==== Empty Folders Check ======================
C:\Program Files\ASUS deleted successfully
C:\Program Files\Elaborate Bytes deleted successfully
C:\Program Files\Freemake deleted successfully
C:\Program Files\MSXML 4.0 deleted successfully
C:\Program Files\webporpoise deleted successfully
C:\Program Files\Common Files\Nero deleted successfully
C:\PROGRA~2\Canon IJ Network Tool deleted successfully
C:\PROGRA~2\firebird deleted successfully
C:\Users\Tomik\AppData\Roaming\BandExtend deleted successfully
C:\Users\Tomik\AppData\Roaming\DisneyInteractiveStudios deleted successfully
C:\Users\Tomik\AppData\Roaming\TP deleted successfully
C:\Users\Tomik\AppData\Roaming\Vso deleted successfully
C:\Users\Tomik\AppData\Roaming\Windows Live Writer deleted successfully
C:\Users\Tomik\AppData\Roaming\Xilisoft deleted successfully
C:\Users\Tomik\AppData\Local\WMTools Downloaded Files deleted successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\CrashDumps deleted successfully
==== Deleting CLSID Registry Keys ======================
HKEY_USERS\S-1-5-21-3838077319-2819224973-1163748220-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BD6ECB00-7C4A-4F97-B425-44117F2A7AAE} deleted successfully
HKEY_USERS\S-1-5-21-3838077319-2819224973-1163748220-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{630A931A-5B0D-4EC9-B42B-FA7CDABB0DE7} deleted successfully
HKEY_USERS\S-1-5-21-3838077319-2819224973-1163748220-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{64854A59-64D8-4CFE-9DCD-6D8BB229E16} deleted successfully
HKEY_USERS\S-1-5-21-3838077319-2819224973-1163748220-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{809CBD35-66FD-46A0-9637-D44EEE1E4937} deleted successfully
HKEY_USERS\S-1-5-21-3838077319-2819224973-1163748220-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C42CE16B-E685-4E92-84F7-55BA208B4DDF} deleted successfully
HKEY_USERS\S-1-5-21-3838077319-2819224973-1163748220-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{FE49E1D0-88FD-48DA-95F8-1353E8AF250} deleted successfully
==== Deleting CLSID Registry Values ======================
==== Deleting Services ======================
==== FireFox Fix ======================
Deleted from C:\Users\Tomik\AppData\Roaming\Comodo\IceDragon\Profiles\f16fgqoa.default\prefs.js:
user_pref("browser.startup.homepage", "http://us.yahoo.com?fr=fp-comodo");
user_pref("browser.search.defaultenginename", "Yahoo");
user_pref("keyword.URL", "");
Added to C:\Users\Tomik\AppData\Roaming\Comodo\IceDragon\Profiles\f16fgqoa.default\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");
Deleted from C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\prefs.js:
user_pref("browser.search.order.1", "Amazon ");
user_pref("browser.search.useDBForOrder", true);
Added to C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");
ProfilePath: C:\Users\Tomik\AppData\Roaming\Comodo\IceDragon\Profiles\f16fgqoa.default
user.js not found
---- FireFox user.js and prefs.js backups ----
prefs_21.05.2015_1059_.backup
ProfilePath: C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default
user.js not found
---- Lines CT2463487 removed from prefs.js ----
user_pref("CT2463487.addressBarTakeOverEnabledInHidden", "true");
user_pref("CT2463487.appOptions", "{}");
user_pref("CT2463487.browser.search.defaultthis.engineName", true);
user_pref("CT2463487.countryCode", "CZ");
user_pref("CT2463487.CT2463487ads1.enc", "JTdCJTIyYWRzJTIyJTNBJTVCJTdCJTIyYWlkJTIyJTNBJTIyMTUwODgwJTIyJTJDJTIydGl0bGUlMjIlM0ElMjJTcGVlZCUyMFVwJTIwWW91
user_pref("CT2463487.CT2463487current_term.enc", "");
user_pref("CT2463487.CT2463487sdate.enc", "MjA=");
user_pref("CT2463487.ENABALE_HISTORY", "{\"dataType\":\"string\",\"data\":\"true\"}");
user_pref("CT2463487.FirstTime", "true");
user_pref("CT2463487.firstTimeDialogOpened", "true");
user_pref("CT2463487.FirstTimeFF3", "true");
user_pref("CT2463487.fixPageNotFoundErrorByUser", "TRUE");
user_pref("CT2463487.fixPageNotFoundErrorInHidden", "true");
user_pref("CT2463487.fullUserID", "UN40503431461772443.UP.202502081936");
user_pref("CT2463487.installType", "Unknown");
user_pref("CT2463487.isEnableAllDialogs", "{\"dataType\":\"string\",\"data\":\"true\"}");
user_pref("CT2463487.isFirstTimeToolbarLoading", "false");
user_pref("CT2463487.isCheckedStartAsHidden", true);
user_pref("CT2463487.isToolbarShrinked", "{\"dataType\":\"string\",\"data\":\"false\"}");
user_pref("CT2463487.isWelcomPage", "{\"dataType\":\"boolean\",\"data\":\"true\"}");
user_pref("CT2463487.keyword", true);
user_pref("CT2463487.lastVersion", "10.35.0.503");
user_pref("CT2463487.mam_gk_installer_preapproved.enc", "VFJVRQ==");
user_pref("CT2463487.navigationAliasesJson", "{\"EB_SEARCH_TERM\":\"\",\"EB_MAIN_FRAME_URL\":\"http%3A%2F%2Fwww.risingcities.com%2F%3Faction%3Dinterna
user_pref("CT2463487.originalHomepage", "about:superstart");
user_pref("CT2463487.originalSearchAddressUrl", false);
user_pref("CT2463487.originalSearchEngine", "Google");
user_pref("CT2463487.originalSearchEngineName", "Google");
user_pref("CT2463487.performedDomainChangesMigration", "true");
user_pref("CT2463487.RestartDialogFirstTime", "false");
user_pref("CT2463487.RestartDialogShouldDisplay", "false");
user_pref("CT2463487.searchFromAddressBarEnabledByUser", "true");
user_pref("CT2463487.searchInNewTabEnabledByUser", "true");
user_pref("CT2463487.searchInNewTabEnabledInHidden", "true");
user_pref("CT2463487.searchSuggestEnabledByUser", "True");
user_pref("CT2463487.searchUninstallUserMode", "4");
user_pref("CT2463487.searchUserMode", "4");
user_pref("CT2463487.selectToSearchBoxEnabled", "{\"dataType\":\"string\",\"data\":\"true\"}");
user_pref("CT2463487.serviceLayer_service_login_isFirstLoginInvoked", "{\"dataType\":\"boolean\",\"data\":\"true\"}");
user_pref("CT2463487.serviceLayer_service_login_loginCount", "{\"dataType\":\"number\",\"data\":\"4\"}");
user_pref("CT2463487.serviceLayer_service_toolbarGrouping_activeCTID", "{\"dataType\":\"string\",\"data\":\"CT2463487\"}");
user_pref("CT2463487.serviceLayer_service_toolbarGrouping_activeDownloadUrl", "{\"dataType\":\"string\",\"data\":\"http://Brothersoft.OurToolbar.com//
user_pref("CT2463487.serviceLayer_service_toolbarGrouping_activeToolbarName", "{\"dataType\":\"string\",\"data\":\"Brothersoft \"}");
user_pref("CT2463487.serviceLayer_service_toolbarGrouping_invoked", "{\"dataType\":\"string\",\"data\":\"true\"}");
user_pref("CT2463487.serviceLayer_service_usage_toolbarUsageCount", "{\"dataType\":\"number\",\"data\":\"2\"}");
user_pref("CT2463487.serviceLayer_services_appsMetadata_lastUpdate", "1416402734779");
user_pref("CT2463487.serviceLayer_services_appTrackingFirstTime_lastUpdate", "1416402735298");
user_pref("CT2463487.serviceLayer_services_Configuration_lastUpdate", "1416402732594");
user_pref("CT2463487.serviceLayer_services_gottenAppsContextMenu_lastUpdate", "1416402734815");
user_pref("CT2463487.serviceLayer_services_login_10.23.0.822_lastUpdate", "1416462021855");
user_pref("CT2463487.serviceLayer_services_login_10.35.0.503_lastUpdate", "1416483886515");
user_pref("CT2463487.serviceLayer_services_otherAppsContextMenu_lastUpdate", "1416402735168");
user_pref("CT2463487.serviceLayer_services_searchAPI_lastUpdate", "1416402734999");
user_pref("CT2463487.serviceLayer_services_serviceMap_lastUpdate", "1416402732460");
user_pref("CT2463487.serviceLayer_services_setupAPI_lastUpdate", "1416402733851");
user_pref("CT2463487.serviceLayer_services_toolbarContextMenu_lastUpdate", "1416402735055");
user_pref("CT2463487.serviceLayer_services_toolbarSettings_lastUpdate", "1416483886098");
user_pref("CT2463487.serviceLayer_services_translation_lastUpdate", "1416402735680");
user_pref("CT2463487.settingsINI", true);
user_pref("CT2463487.showToolbarPermission", "false");
user_pref("CT2463487.toolbarBornServerTime", "19-11-2014");
user_pref("CT2463487.toolbarCurrentServerTime", "20-11-2014");
user_pref("CT2463487.toolbarInstallDate", "19-11-2014 14:12:13");
user_pref("CT2463487.toolbarLoginClientTime", "Wed Nov 19 2014 14:12:13 GMT+0100");
user_pref("CT2463487.UserID", "UN40503431461772443");
user_pref("CT2463487_Firefox.csv", "[{\"from\":\"Abs Layer\",\"action\":\"loading toolbar\",\"time\":1416483866457,\"isWithState\":\"\",\"timeFromStar
---- FireFox user.js and prefs.js backups ----
prefs_21.05.2015_1059_.backup
==== Deleting Files \ Folders ======================
C:\Program Files\ASUS not found
C:\Program Files\Elaborate Bytes not found
C:\Program Files\Freemake not found
C:\Program Files\webporpoise not found
C:\Users\Tomik\AppData\Roaming\calibre deleted
C:\found.000 deleted
C:\Windows\system32\config\systemprofile\AppData\LocalLow\Application Updater deleted
C:\Windows\system32\config\systemprofile\Searches deleted
C:\Windows\system32\GroupPolicy\Machine deleted
C:\Windows\system32\GroupPolicy\gpt.ini deleted
C:\Windows\System32\searchplugins deleted
C:\Windows\System32\Extensions deleted
C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\Invalidprefs.js deleted
C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\.autoreg deleted
C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\ICQToolbarData deleted
C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\jetpack deleted
C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\CT2463487 deleted
C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\conduit deleted
C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\conduitCommon deleted
C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\ConduitEngine deleted
C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\smartbar deleted
==== Firefox Start and Search pages ======================
ProfilePath: C:\Users\Tomik\AppData\Roaming\Comodo\IceDragon\Profiles\f16fgqoa.default
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");
ProfilePath: C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");
==== Firefox Extensions Registry ======================
[HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions]
"mozilla_cc@internetdownloadmanager.com"="C:\Users\Tomik\AppData\Roaming\IDM\idmmzcc5" [07.04.2015 10:52]
==== Firefox Extensions ======================
ProfilePath: C:\Users\Tomik\AppData\Roaming\Comodo\IceDragon\Profiles\f16fgqoa.default
- Undetermined - P:\Comodo\IceDragon\browser\extensions\DnD@comodo.com
- <Description abouturn:mozilla:install-manifest em:idlangpack@firefox.mozilla.org COMODO IceDragon Language Pack em:version26.0.0 em:type8 em:creatorcomodo.com> - %ProfilePath%\extensions\langpack@firefox.mozilla.org.xpi
ProfilePath: C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default
- Undetermined - %ProfilePath%\extensions\installed-extensions.txt
- Undetermined - %ProfilePath%\extensions\blockfall
- esk slovnk pro kontrolu pravopisu - %ProfilePath%\extensions\cs@dictionaries.addons.mozilla.org
- Undetermined - %ProfilePath%\extensions\tabbin
- Undetermined - %ProfilePath%\extensions\temp
- Unread Tabs - %ProfilePath%\extensions\{f57f9be0-5281-11d9-9669-0800200c9a664}
- BBB Bear Blue Baby - %ProfilePath%\extensions\bearbluebaby@loic.com.xpi
- Ecology - %ProfilePath%\extensions\ecolo@loic.com.xpi
- Penguin - %ProfilePath%\extensions\penguin@loic.com.xpi
- Noia Fox - %ProfilePath%\extensions\{7b90e860-5d61-11e0-80e3-0800200c9a66}.xpi
- Noia 4 - %ProfilePath%\extensions\{faf13420-5e24-11e0-80e3-0800200c9a66}.xpi
==== Firefox Plugins ======================
Profilepath: C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default
8355BD2CD6CD108FB1318AA3D1085CA0 - C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll - Adobe Acrobat
F0E80E561C3F715DB01ACCC97B72463A - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll - Photo Gallery
073A22FDCDAFD513DAD0D972BD2DF76E - C:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll - Silverlight Plug-In
9291708CCD967887AF94BE708B43D64D - C:\Program Files\Mozilla Firefox\plugins\npMeetingJoinPluginOC.dll - Microsoft Office 2013
CA808688B28D12B368F9A511FC5E3697 - C:\Program Files\Java\jre1.8.0_45\bin\plugin2\npjp2.dll - Java(TM) Platform SE 8 U45
B28862688B70415A3C0C5DCC8B242388 - C:\Program Files\Java\jre1.8.0_45\bin\dtplugin\npdeployJava1.dll - Java Deployment Toolkit 8.0.450.15
3239619A441E23A20EC923DF92FF2D70 - C:\Program Files\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll - CANON iMAGE GATEWAY Album Plugin Utility for IJ
2E661988463BCFA1B95D4DAAB9B0B6FA - C:\Windows\system32\Macromed\Flash\NPSWF32_17_0_0_188.dll - Shockwave Flash
77EAC1CDDCAF28C69F7BFB6E04CDE110 - C:\Users\Tomik\AppData\Roaming\Mozilla\plugins\npvsharetvplg.dll - StartSearch Video plug-in
A878453A1714870EAADA83E6434BDB77 - C:\Users\Tomik\AppData\Roaming\Mozilla\plugins\npdeployJava1.dll - Java Deployment Toolkit 6.0.310.5
E0AD06BE7DBEC6EF843711E97080549A - C:\Users\Tomik\AppData\Roaming\Mozilla\plugins\nppdf32.dll - Adobe Acrobat
6D23BB87BCF88731959BF79082D442E6 - C:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrlui.dll - Microsoft® Silverlight
==== Chromium Look ======================
HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
gomekmidlodglbbmalcneegieacbdmki - p:\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[]
ngpampappnmepgilojfohadhhmbhlaek - P:\Internet Download Manager\IDMGCExt.crx[18.04.2015 03:06]
==== Set IE to Default ======================
Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"
"Default_Page_URL"="http://www.google.com"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://www.google.com"
"Default_Page_URL"="http://www.google.com"
"Start Page"="http://www.google.com"
"Search Page"="http://www.google.com"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="res://ieframe.dll/tabswelcome.htm"
New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Start Page"="http://www.google.com"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="about:newtab"
==== All HKCU SearchScopes ======================
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"
{DBFD4708-D2A8-467E-8A34-A4D42AC47B81} mail.ru: ????? ? ????????? Url="http://go.mail.ru/search?q={searchTerms}&utf8in=1&fr=ietb"
==== Reset Google Chrome ======================
Nothing found to reset
==== Deleting Registry Keys ======================
HKEY_LOCAL_MACHINE\Software\Policies\Google deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\gomekmidlodglbbmalcneegieacbdmki deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EA Core deleted successfully
==== Empty IE Cache ======================
C:\Users\Tomik\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Tomik\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
==== Empty FireFox Cache ======================
C:\Users\Tomik\AppData\Local\Mozilla\Firefox\Profiles\d5xqvmuk.default\cache2 emptied successfully
C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\forecastfox\cache emptied successfully
==== Empty Chrome Cache ======================
No Chrome User Data found
==== Empty All Flash Cache ======================
Flash Cache Emptied Successfully
==== Empty All Java Cache ======================
Java Cache cleared successfully
==== C:\zoek_backup content ======================
C:\zoek_backup (files=162 folders=63 6828434 bytes)
==== Empty Temp Folders ======================
C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Tomik\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot
==== After Reboot ======================
==== Empty Temp Folders ======================
C:\Windows\Temp successfully emptied
C:\Users\Tomik\AppData\Local\Temp successfully emptied
==== Empty Recycle Bin ======================
C:\$RECYCLE.BIN successfully emptied
==== EOF on źt 21.05.2015 at 11:07:00,54 ======================
Tool run by Tomik on źt 21.05.2015 at 10:27:18,59.
Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x86
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Tomik\Desktop\zoek.exe [Scan all users] [Script inserted]
==== System Restore Info ======================
21.5.2015 10:29:06 Zoek.exe System Restore Point Created Successfully.
==== Reset Hosts File ======================
# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host
# localhost name resolution is handled within DNS itself.
127.0.0.1 localhost
::1 localhost
==== Empty Folders Check ======================
C:\Program Files\ASUS deleted successfully
C:\Program Files\Elaborate Bytes deleted successfully
C:\Program Files\Freemake deleted successfully
C:\Program Files\MSXML 4.0 deleted successfully
C:\Program Files\webporpoise deleted successfully
C:\Program Files\Common Files\Nero deleted successfully
C:\PROGRA~2\Canon IJ Network Tool deleted successfully
C:\PROGRA~2\firebird deleted successfully
C:\Users\Tomik\AppData\Roaming\BandExtend deleted successfully
C:\Users\Tomik\AppData\Roaming\DisneyInteractiveStudios deleted successfully
C:\Users\Tomik\AppData\Roaming\TP deleted successfully
C:\Users\Tomik\AppData\Roaming\Vso deleted successfully
C:\Users\Tomik\AppData\Roaming\Windows Live Writer deleted successfully
C:\Users\Tomik\AppData\Roaming\Xilisoft deleted successfully
C:\Users\Tomik\AppData\Local\WMTools Downloaded Files deleted successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\CrashDumps deleted successfully
==== Deleting CLSID Registry Keys ======================
HKEY_USERS\S-1-5-21-3838077319-2819224973-1163748220-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BD6ECB00-7C4A-4F97-B425-44117F2A7AAE} deleted successfully
HKEY_USERS\S-1-5-21-3838077319-2819224973-1163748220-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{630A931A-5B0D-4EC9-B42B-FA7CDABB0DE7} deleted successfully
HKEY_USERS\S-1-5-21-3838077319-2819224973-1163748220-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{64854A59-64D8-4CFE-9DCD-6D8BB229E16} deleted successfully
HKEY_USERS\S-1-5-21-3838077319-2819224973-1163748220-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{809CBD35-66FD-46A0-9637-D44EEE1E4937} deleted successfully
HKEY_USERS\S-1-5-21-3838077319-2819224973-1163748220-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C42CE16B-E685-4E92-84F7-55BA208B4DDF} deleted successfully
HKEY_USERS\S-1-5-21-3838077319-2819224973-1163748220-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{FE49E1D0-88FD-48DA-95F8-1353E8AF250} deleted successfully
==== Deleting CLSID Registry Values ======================
==== Deleting Services ======================
==== FireFox Fix ======================
Deleted from C:\Users\Tomik\AppData\Roaming\Comodo\IceDragon\Profiles\f16fgqoa.default\prefs.js:
user_pref("browser.startup.homepage", "http://us.yahoo.com?fr=fp-comodo");
user_pref("browser.search.defaultenginename", "Yahoo");
user_pref("keyword.URL", "");
Added to C:\Users\Tomik\AppData\Roaming\Comodo\IceDragon\Profiles\f16fgqoa.default\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");
Deleted from C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\prefs.js:
user_pref("browser.search.order.1", "Amazon ");
user_pref("browser.search.useDBForOrder", true);
Added to C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");
ProfilePath: C:\Users\Tomik\AppData\Roaming\Comodo\IceDragon\Profiles\f16fgqoa.default
user.js not found
---- FireFox user.js and prefs.js backups ----
prefs_21.05.2015_1059_.backup
ProfilePath: C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default
user.js not found
---- Lines CT2463487 removed from prefs.js ----
user_pref("CT2463487.addressBarTakeOverEnabledInHidden", "true");
user_pref("CT2463487.appOptions", "{}");
user_pref("CT2463487.browser.search.defaultthis.engineName", true);
user_pref("CT2463487.countryCode", "CZ");
user_pref("CT2463487.CT2463487ads1.enc", "JTdCJTIyYWRzJTIyJTNBJTVCJTdCJTIyYWlkJTIyJTNBJTIyMTUwODgwJTIyJTJDJTIydGl0bGUlMjIlM0ElMjJTcGVlZCUyMFVwJTIwWW91
user_pref("CT2463487.CT2463487current_term.enc", "");
user_pref("CT2463487.CT2463487sdate.enc", "MjA=");
user_pref("CT2463487.ENABALE_HISTORY", "{\"dataType\":\"string\",\"data\":\"true\"}");
user_pref("CT2463487.FirstTime", "true");
user_pref("CT2463487.firstTimeDialogOpened", "true");
user_pref("CT2463487.FirstTimeFF3", "true");
user_pref("CT2463487.fixPageNotFoundErrorByUser", "TRUE");
user_pref("CT2463487.fixPageNotFoundErrorInHidden", "true");
user_pref("CT2463487.fullUserID", "UN40503431461772443.UP.202502081936");
user_pref("CT2463487.installType", "Unknown");
user_pref("CT2463487.isEnableAllDialogs", "{\"dataType\":\"string\",\"data\":\"true\"}");
user_pref("CT2463487.isFirstTimeToolbarLoading", "false");
user_pref("CT2463487.isCheckedStartAsHidden", true);
user_pref("CT2463487.isToolbarShrinked", "{\"dataType\":\"string\",\"data\":\"false\"}");
user_pref("CT2463487.isWelcomPage", "{\"dataType\":\"boolean\",\"data\":\"true\"}");
user_pref("CT2463487.keyword", true);
user_pref("CT2463487.lastVersion", "10.35.0.503");
user_pref("CT2463487.mam_gk_installer_preapproved.enc", "VFJVRQ==");
user_pref("CT2463487.navigationAliasesJson", "{\"EB_SEARCH_TERM\":\"\",\"EB_MAIN_FRAME_URL\":\"http%3A%2F%2Fwww.risingcities.com%2F%3Faction%3Dinterna
user_pref("CT2463487.originalHomepage", "about:superstart");
user_pref("CT2463487.originalSearchAddressUrl", false);
user_pref("CT2463487.originalSearchEngine", "Google");
user_pref("CT2463487.originalSearchEngineName", "Google");
user_pref("CT2463487.performedDomainChangesMigration", "true");
user_pref("CT2463487.RestartDialogFirstTime", "false");
user_pref("CT2463487.RestartDialogShouldDisplay", "false");
user_pref("CT2463487.searchFromAddressBarEnabledByUser", "true");
user_pref("CT2463487.searchInNewTabEnabledByUser", "true");
user_pref("CT2463487.searchInNewTabEnabledInHidden", "true");
user_pref("CT2463487.searchSuggestEnabledByUser", "True");
user_pref("CT2463487.searchUninstallUserMode", "4");
user_pref("CT2463487.searchUserMode", "4");
user_pref("CT2463487.selectToSearchBoxEnabled", "{\"dataType\":\"string\",\"data\":\"true\"}");
user_pref("CT2463487.serviceLayer_service_login_isFirstLoginInvoked", "{\"dataType\":\"boolean\",\"data\":\"true\"}");
user_pref("CT2463487.serviceLayer_service_login_loginCount", "{\"dataType\":\"number\",\"data\":\"4\"}");
user_pref("CT2463487.serviceLayer_service_toolbarGrouping_activeCTID", "{\"dataType\":\"string\",\"data\":\"CT2463487\"}");
user_pref("CT2463487.serviceLayer_service_toolbarGrouping_activeDownloadUrl", "{\"dataType\":\"string\",\"data\":\"http://Brothersoft.OurToolbar.com//
user_pref("CT2463487.serviceLayer_service_toolbarGrouping_activeToolbarName", "{\"dataType\":\"string\",\"data\":\"Brothersoft \"}");
user_pref("CT2463487.serviceLayer_service_toolbarGrouping_invoked", "{\"dataType\":\"string\",\"data\":\"true\"}");
user_pref("CT2463487.serviceLayer_service_usage_toolbarUsageCount", "{\"dataType\":\"number\",\"data\":\"2\"}");
user_pref("CT2463487.serviceLayer_services_appsMetadata_lastUpdate", "1416402734779");
user_pref("CT2463487.serviceLayer_services_appTrackingFirstTime_lastUpdate", "1416402735298");
user_pref("CT2463487.serviceLayer_services_Configuration_lastUpdate", "1416402732594");
user_pref("CT2463487.serviceLayer_services_gottenAppsContextMenu_lastUpdate", "1416402734815");
user_pref("CT2463487.serviceLayer_services_login_10.23.0.822_lastUpdate", "1416462021855");
user_pref("CT2463487.serviceLayer_services_login_10.35.0.503_lastUpdate", "1416483886515");
user_pref("CT2463487.serviceLayer_services_otherAppsContextMenu_lastUpdate", "1416402735168");
user_pref("CT2463487.serviceLayer_services_searchAPI_lastUpdate", "1416402734999");
user_pref("CT2463487.serviceLayer_services_serviceMap_lastUpdate", "1416402732460");
user_pref("CT2463487.serviceLayer_services_setupAPI_lastUpdate", "1416402733851");
user_pref("CT2463487.serviceLayer_services_toolbarContextMenu_lastUpdate", "1416402735055");
user_pref("CT2463487.serviceLayer_services_toolbarSettings_lastUpdate", "1416483886098");
user_pref("CT2463487.serviceLayer_services_translation_lastUpdate", "1416402735680");
user_pref("CT2463487.settingsINI", true);
user_pref("CT2463487.showToolbarPermission", "false");
user_pref("CT2463487.toolbarBornServerTime", "19-11-2014");
user_pref("CT2463487.toolbarCurrentServerTime", "20-11-2014");
user_pref("CT2463487.toolbarInstallDate", "19-11-2014 14:12:13");
user_pref("CT2463487.toolbarLoginClientTime", "Wed Nov 19 2014 14:12:13 GMT+0100");
user_pref("CT2463487.UserID", "UN40503431461772443");
user_pref("CT2463487_Firefox.csv", "[{\"from\":\"Abs Layer\",\"action\":\"loading toolbar\",\"time\":1416483866457,\"isWithState\":\"\",\"timeFromStar
---- FireFox user.js and prefs.js backups ----
prefs_21.05.2015_1059_.backup
==== Deleting Files \ Folders ======================
C:\Program Files\ASUS not found
C:\Program Files\Elaborate Bytes not found
C:\Program Files\Freemake not found
C:\Program Files\webporpoise not found
C:\Users\Tomik\AppData\Roaming\calibre deleted
C:\found.000 deleted
C:\Windows\system32\config\systemprofile\AppData\LocalLow\Application Updater deleted
C:\Windows\system32\config\systemprofile\Searches deleted
C:\Windows\system32\GroupPolicy\Machine deleted
C:\Windows\system32\GroupPolicy\gpt.ini deleted
C:\Windows\System32\searchplugins deleted
C:\Windows\System32\Extensions deleted
C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\Invalidprefs.js deleted
C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\.autoreg deleted
C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\ICQToolbarData deleted
C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\jetpack deleted
C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\CT2463487 deleted
C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\conduit deleted
C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\conduitCommon deleted
C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\ConduitEngine deleted
C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\smartbar deleted
==== Firefox Start and Search pages ======================
ProfilePath: C:\Users\Tomik\AppData\Roaming\Comodo\IceDragon\Profiles\f16fgqoa.default
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");
ProfilePath: C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");
==== Firefox Extensions Registry ======================
[HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions]
"mozilla_cc@internetdownloadmanager.com"="C:\Users\Tomik\AppData\Roaming\IDM\idmmzcc5" [07.04.2015 10:52]
==== Firefox Extensions ======================
ProfilePath: C:\Users\Tomik\AppData\Roaming\Comodo\IceDragon\Profiles\f16fgqoa.default
- Undetermined - P:\Comodo\IceDragon\browser\extensions\DnD@comodo.com
- <Description abouturn:mozilla:install-manifest em:idlangpack@firefox.mozilla.org COMODO IceDragon Language Pack em:version26.0.0 em:type8 em:creatorcomodo.com> - %ProfilePath%\extensions\langpack@firefox.mozilla.org.xpi
ProfilePath: C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default
- Undetermined - %ProfilePath%\extensions\installed-extensions.txt
- Undetermined - %ProfilePath%\extensions\blockfall
- esk slovnk pro kontrolu pravopisu - %ProfilePath%\extensions\cs@dictionaries.addons.mozilla.org
- Undetermined - %ProfilePath%\extensions\tabbin
- Undetermined - %ProfilePath%\extensions\temp
- Unread Tabs - %ProfilePath%\extensions\{f57f9be0-5281-11d9-9669-0800200c9a664}
- BBB Bear Blue Baby - %ProfilePath%\extensions\bearbluebaby@loic.com.xpi
- Ecology - %ProfilePath%\extensions\ecolo@loic.com.xpi
- Penguin - %ProfilePath%\extensions\penguin@loic.com.xpi
- Noia Fox - %ProfilePath%\extensions\{7b90e860-5d61-11e0-80e3-0800200c9a66}.xpi
- Noia 4 - %ProfilePath%\extensions\{faf13420-5e24-11e0-80e3-0800200c9a66}.xpi
==== Firefox Plugins ======================
Profilepath: C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default
8355BD2CD6CD108FB1318AA3D1085CA0 - C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll - Adobe Acrobat
F0E80E561C3F715DB01ACCC97B72463A - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll - Photo Gallery
073A22FDCDAFD513DAD0D972BD2DF76E - C:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll - Silverlight Plug-In
9291708CCD967887AF94BE708B43D64D - C:\Program Files\Mozilla Firefox\plugins\npMeetingJoinPluginOC.dll - Microsoft Office 2013
CA808688B28D12B368F9A511FC5E3697 - C:\Program Files\Java\jre1.8.0_45\bin\plugin2\npjp2.dll - Java(TM) Platform SE 8 U45
B28862688B70415A3C0C5DCC8B242388 - C:\Program Files\Java\jre1.8.0_45\bin\dtplugin\npdeployJava1.dll - Java Deployment Toolkit 8.0.450.15
3239619A441E23A20EC923DF92FF2D70 - C:\Program Files\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll - CANON iMAGE GATEWAY Album Plugin Utility for IJ
2E661988463BCFA1B95D4DAAB9B0B6FA - C:\Windows\system32\Macromed\Flash\NPSWF32_17_0_0_188.dll - Shockwave Flash
77EAC1CDDCAF28C69F7BFB6E04CDE110 - C:\Users\Tomik\AppData\Roaming\Mozilla\plugins\npvsharetvplg.dll - StartSearch Video plug-in
A878453A1714870EAADA83E6434BDB77 - C:\Users\Tomik\AppData\Roaming\Mozilla\plugins\npdeployJava1.dll - Java Deployment Toolkit 6.0.310.5
E0AD06BE7DBEC6EF843711E97080549A - C:\Users\Tomik\AppData\Roaming\Mozilla\plugins\nppdf32.dll - Adobe Acrobat
6D23BB87BCF88731959BF79082D442E6 - C:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrlui.dll - Microsoft® Silverlight
==== Chromium Look ======================
HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
gomekmidlodglbbmalcneegieacbdmki - p:\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[]
ngpampappnmepgilojfohadhhmbhlaek - P:\Internet Download Manager\IDMGCExt.crx[18.04.2015 03:06]
==== Set IE to Default ======================
Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"
"Default_Page_URL"="http://www.google.com"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://www.google.com"
"Default_Page_URL"="http://www.google.com"
"Start Page"="http://www.google.com"
"Search Page"="http://www.google.com"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="res://ieframe.dll/tabswelcome.htm"
New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Start Page"="http://www.google.com"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="about:newtab"
==== All HKCU SearchScopes ======================
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"
{DBFD4708-D2A8-467E-8A34-A4D42AC47B81} mail.ru: ????? ? ????????? Url="http://go.mail.ru/search?q={searchTerms}&utf8in=1&fr=ietb"
==== Reset Google Chrome ======================
Nothing found to reset
==== Deleting Registry Keys ======================
HKEY_LOCAL_MACHINE\Software\Policies\Google deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\gomekmidlodglbbmalcneegieacbdmki deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EA Core deleted successfully
==== Empty IE Cache ======================
C:\Users\Tomik\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Tomik\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
==== Empty FireFox Cache ======================
C:\Users\Tomik\AppData\Local\Mozilla\Firefox\Profiles\d5xqvmuk.default\cache2 emptied successfully
C:\Users\Tomik\AppData\Roaming\Mozilla\Firefox\Profiles\d5xqvmuk.default\forecastfox\cache emptied successfully
==== Empty Chrome Cache ======================
No Chrome User Data found
==== Empty All Flash Cache ======================
Flash Cache Emptied Successfully
==== Empty All Java Cache ======================
Java Cache cleared successfully
==== C:\zoek_backup content ======================
C:\zoek_backup (files=162 folders=63 6828434 bytes)
==== Empty Temp Folders ======================
C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Tomik\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot
==== After Reboot ======================
==== Empty Temp Folders ======================
C:\Windows\Temp successfully emptied
C:\Users\Tomik\AppData\Local\Temp successfully emptied
==== Empty Recycle Bin ======================
C:\$RECYCLE.BIN successfully emptied
==== EOF on źt 21.05.2015 at 11:07:00,54 ======================
OS Win 10 Home
Základní deska MSI H110M PRO-VD,
2jádrový procesor Intel Core i3-6098P (3.6GHz, HyperThreading), 8GB operační paměti DDR4 2133 MHz TEAM Elite,
Pevný disk 1TB Seagate Barracuda,
Grafická karta NVIDIA GeForce GTX 750 Ti 2GB GDDR5,
DVD±RW mechanika LG,
Zdroj CHIEFTEC GPB-350S, 350 W
Skříň AIO Virtuo TAB04 Champagne
Základní deska MSI H110M PRO-VD,
2jádrový procesor Intel Core i3-6098P (3.6GHz, HyperThreading), 8GB operační paměti DDR4 2133 MHz TEAM Elite,
Pevný disk 1TB Seagate Barracuda,
Grafická karta NVIDIA GeForce GTX 750 Ti 2GB GDDR5,
DVD±RW mechanika LG,
Zdroj CHIEFTEC GPB-350S, 350 W
Skříň AIO Virtuo TAB04 Champagne
Kdo je online
Uživatelé prohlížející si toto fórum: Žádní registrovaní uživatelé a 77 hostů