Kontrola Logu, vir, LNK:Jenxcus-D (trj)

Místo pro vaše HiJackThis logy a logy z dalších programů…

Moderátoři: Mods_senior, Security team

Odpovědět
Prdla
nováček
Příspěvky: 5
Registrován: prosinec 15
Pohlaví: Nespecifikováno
Stav:
Offline

Kontrola Logu, vir, LNK:Jenxcus-D (trj)

Příspěvekod Prdla » 03 pro 2015 20:19

Výsledky z Malwarebytes:

Malwarebytes Anti-Malware
www.malwarebytes.org

Datum skenování: 3.12.2015
Čas skenování: 19:10:36
Protokol:
Správce: Ano

Verze: 2.2.0.1024
Databáze malwaru: v2015.12.03.04
Databáze rootkitů: v2015.11.26.01
Licence: Bezplatná verze
Ochrana proti malwaru: Vypnuto
Ochrana proti škodlivým webovým stránkám: Vypnuto
Ochrana programu: Vypnuto

OS: Windows Vista Service Pack 1
CPU: x86
Souborový systém: NTFS
Uživatel: mischellin

Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 335712
Uplynulý čas: 19 min, 41 sek

Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto

Procesy: 0
(Nenalezeny žádné škodlivé položky)

Moduly: 0
(Nenalezeny žádné škodlivé položky)

Klíče registru: 10
PUP.Optional.ICQToolbar, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\EXPLORER BARS\{855F3B16-6D32-4FE6-8A56-BBB695989046}, , [1b95fca43a5173c3ad42b7901ae838c8],
PUP.Optional.ICQToolbar, HKLM\SOFTWARE\CLASSES\ICQToolBar.IEHook, , [1b95fca43a5173c3ad42b7901ae838c8],
PUP.Optional.ICQToolbar, HKLM\SOFTWARE\CLASSES\ICQToolBar.IEHook.1, , [1b95fca43a5173c3ad42b7901ae838c8],
Trojan.Agent.VBS, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\WindowsUpda2ta, , [d9d7a5fb5c2f310563d1e5105ba8857b],
PUP.Optional.ICQ, HKU\S-1-5-21-2641356257-1747832960-887335905-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{6552C7DD-90A4-4387-B795-F8F96747DE19}, , [e0d0128ecbc05ed85963eaa4d42f758b],
PUP.Optional.ICQToolbar, HKLM\SOFTWARE\CLASSES\TYPELIB\{E81CEA7E-B101-4729-A30D-E098CA059F07}, , [59579f01d2b98bab1fe4d9a87989629e],
PUP.Optional.ICQToolbar, HKLM\SOFTWARE\CLASSES\TYPELIB\{E716F183-5AD7-11DC-9670-00508DC0D496}, , [59579f01d2b98bab1fe4d9a87989629e],
PUP.Optional.ICQToolbar, HKLM\SOFTWARE\CLASSES\INTERFACE\{86D309C0-67B7-4017-841C-AD59709A0AF5}, , [59579f01d2b98bab1fe4d9a87989629e],
PUP.Optional.ICQToolbar, HKLM\SOFTWARE\CLASSES\INTERFACE\{E716F184-5AD7-11DC-9670-00508DC0D496}, , [59579f01d2b98bab1fe4d9a87989629e],
PUP.Optional.ICQToolbar, HKLM\SOFTWARE\CLASSES\INTERFACE\{EB4CB194-6081-4ACC-9B7C-8C37B7C473D2}, , [59579f01d2b98bab1fe4d9a87989629e],

Hodnoty registru: 6
PUP.Optional.ICQToolbar, HKU\S-1-5-21-2641356257-1747832960-887335905-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\URLSEARCHHOOKS|{855F3B16-6D32-4FE6-8A56-BBB695989046}, , [1b95fca43a5173c3ad42b7901ae838c8],
PUP.Optional.ICQToolbar, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\TOOLBAR|{855F3B16-6D32-4FE6-8A56-BBB695989046}, ICQToolBar, , [1b95fca43a5173c3ad42b7901ae838c8]
PUP.Optional.ICQToolbar, HKU\S-1-5-21-2641356257-1747832960-887335905-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\URLSEARCHHOOKS\{855F3B16-6D32-4fe6-8A56-BBB695989046}, , [258b0d938cff3cfa08e70c3b3dc57d83],
PUP.Optional.ICQToolbar, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\TOOLBAR\{855F3B16-6D32-4fe6-8A56-BBB695989046}, , [c2ee445c53382a0cbe311037758d3cc4],
PUP.Optional.ICQ, HKU\S-1-5-21-2641356257-1747832960-887335905-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{6552C7DD-90A4-4387-B795-F8F96747DE19}|URL, http://search.icq.com/search/results.php?q={searchTerms}&ch_id=osd, , [e0d0128ecbc05ed85963eaa4d42f758b]
PUP.Optional.ICQ, HKU\S-1-5-21-2641356257-1747832960-887335905-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{6552C7DD-90A4-4387-B795-F8F96747DE19}|FaviconURL, http://c.icq.com/favicon.ico, , [28883769484365d1ad0ff59963a0d828]

Data registru: 0
(Nenalezeny žádné škodlivé položky)

Složky: 37
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar, , [b000eab63457f5416998671ae81a13ed],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\TempU, , [b000eab63457f5416998671ae81a13ed],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML, , [b000eab63457f5416998671ae81a13ed],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\BG, , [b000eab63457f5416998671ae81a13ed],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\CZ, , [b000eab63457f5416998671ae81a13ed],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\DE, , [b000eab63457f5416998671ae81a13ed],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\EN, , [b000eab63457f5416998671ae81a13ed],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\ES, , [b000eab63457f5416998671ae81a13ed],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\FR, , [b000eab63457f5416998671ae81a13ed],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\HE, , [b000eab63457f5416998671ae81a13ed],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\IT, , [b000eab63457f5416998671ae81a13ed],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\RU, , [b000eab63457f5416998671ae81a13ed],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\SK, , [b000eab63457f5416998671ae81a13ed],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\TR, , [b000eab63457f5416998671ae81a13ed],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\img, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\bg, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\cs, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\de, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\en-US, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\es, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\fr, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\he, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\it, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\ru, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\sk, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\tr, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\skin, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\components, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\defaults, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\defaults\preferences, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\META-INF, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\search_engine, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Program Files\ICQ6Toolbar, , [59579f01d2b98bab1fe4d9a87989629e],

Soubory: 216
PUP.Optional.ICQPlugin, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\searchplugins\icqplugin-1.xml, , [9a166e32b4d78aacccf24a4407fc649c],
PUP.Optional.ICQPlugin, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\searchplugins\icqplugin.xml, , [3779643c1f6c75c1932b2a649a69f010],
Trojan.Agent.VBS, C:\Users\mischellin\AppData\Roaming\Microsoft\crack serial keygen Office 2007.vbs, , [416f237d8803c4727cb5c035d92a13ed],
Trojan.Agent.VBS, C:\Windows\System32\Tasks\WindowsUpda2ta, , [baf6c5db4f3c191de84a9e57c63d669a],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\TempU\ICQToolbarUpdate.cab, , [b000eab63457f5416998671ae81a13ed],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\Configuration.xml, , [b000eab63457f5416998671ae81a13ed],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\OptionDlg.xml, , [b000eab63457f5416998671ae81a13ed],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\RegionalSettings.xml, , [b000eab63457f5416998671ae81a13ed],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\UserInterface.xml, , [b000eab63457f5416998671ae81a13ed],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\voucher.xml, , [b000eab63457f5416998671ae81a13ed],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\BG\Configuration.xml, , [b000eab63457f5416998671ae81a13ed],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\BG\OptionDlg.xml, , [b000eab63457f5416998671ae81a13ed],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\BG\RegionalSettings.xml, , [b000eab63457f5416998671ae81a13ed],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\BG\UserInterface.xml, , [b000eab63457f5416998671ae81a13ed],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\CZ\Configuration.xml, , [b000eab63457f5416998671ae81a13ed],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\CZ\OptionDlg.xml, , [b000eab63457f5416998671ae81a13ed],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\CZ\RegionalSettings.xml, , [b000eab63457f5416998671ae81a13ed],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\CZ\UserInterface.xml, , [b000eab63457f5416998671ae81a13ed],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\DE\Configuration.xml, , [b000eab63457f5416998671ae81a13ed],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\DE\OptionDlg.xml, , [b000eab63457f5416998671ae81a13ed],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\DE\RegionalSettings.xml, , [b000eab63457f5416998671ae81a13ed],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\DE\UserInterface.xml, , [b000eab63457f5416998671ae81a13ed],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\EN\Configuration.xml, , [b000eab63457f5416998671ae81a13ed],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\EN\OptionDlg.xml, , [b000eab63457f5416998671ae81a13ed],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\EN\RegionalSettings.xml, , [b000eab63457f5416998671ae81a13ed],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\EN\UserInterface.xml, , [b000eab63457f5416998671ae81a13ed],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\ES\Configuration.xml, , [b000eab63457f5416998671ae81a13ed],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\ES\OptionDlg.xml, , [b000eab63457f5416998671ae81a13ed],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\ES\RegionalSettings.xml, , [b000eab63457f5416998671ae81a13ed],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\ES\UserInterface.xml, , [b000eab63457f5416998671ae81a13ed],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\FR\Configuration.xml, , [b000eab63457f5416998671ae81a13ed],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\FR\OptionDlg.xml, , [b000eab63457f5416998671ae81a13ed],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\FR\RegionalSettings.xml, , [b000eab63457f5416998671ae81a13ed],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\FR\UserInterface.xml, , [b000eab63457f5416998671ae81a13ed],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\HE\Configuration.xml, , [b000eab63457f5416998671ae81a13ed],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\HE\OptionDlg.xml, , [b000eab63457f5416998671ae81a13ed],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\HE\RegionalSettings.xml, , [b000eab63457f5416998671ae81a13ed],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\HE\UserInterface.xml, , [b000eab63457f5416998671ae81a13ed],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\IT\Configuration.xml, , [b000eab63457f5416998671ae81a13ed],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\IT\OptionDlg.xml, , [b000eab63457f5416998671ae81a13ed],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\IT\RegionalSettings.xml, , [b000eab63457f5416998671ae81a13ed],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\IT\UserInterface.xml, , [b000eab63457f5416998671ae81a13ed],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\RU\Configuration.xml, , [b000eab63457f5416998671ae81a13ed],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\RU\OptionDlg.xml, , [b000eab63457f5416998671ae81a13ed],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\RU\RegionalSettings.xml, , [b000eab63457f5416998671ae81a13ed],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\RU\UserInterface.xml, , [b000eab63457f5416998671ae81a13ed],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\SK\Configuration.xml, , [b000eab63457f5416998671ae81a13ed],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\SK\OptionDlg.xml, , [b000eab63457f5416998671ae81a13ed],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\SK\RegionalSettings.xml, , [b000eab63457f5416998671ae81a13ed],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\SK\UserInterface.xml, , [b000eab63457f5416998671ae81a13ed],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\TR\Configuration.xml, , [b000eab63457f5416998671ae81a13ed],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\TR\OptionDlg.xml, , [b000eab63457f5416998671ae81a13ed],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\TR\RegionalSettings.xml, , [b000eab63457f5416998671ae81a13ed],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\TR\UserInterface.xml, , [b000eab63457f5416998671ae81a13ed],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome.manifest, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\install.rdf, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\about.dtd, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\about.xul, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\autocomplete.xml, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\dating.js, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\exitobserver.js, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\fb-smiles-replace-thread.js, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\fb-smiles.js, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\globals.js, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\heureka.js, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\highlight.js, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\hpprotect.js, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\hpprotect.xul, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\icqtabs.css, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\icqtabs.js, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\icqtabs_ltr.css, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\icqtabs_rtl.css, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\icqtoolbar.js, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\icqtoolbar.xul, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\jcarousel.css, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\jquery-1.4.2.min.js, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\jquery-1.4.4.min.js, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\jquery.jcarousel.min.js, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\jquery.lionbars.0.3.min.js, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\localfileupdate.js, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\menu-button.xml, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\newTab.html, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\newtab.js, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\options.js, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\options.xul, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\parsegamesxml.js, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\parsemenuxml.js, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\peoplesearch.js, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\peoplesearch.xul, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\ppc.js, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\prefutils.js, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\search.js, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\splitter.xml, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\statistics.js, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\tabcontext.js, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\utilities.js, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\voucher.js, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\zoom.js, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\img\paging_left.png, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\img\arrow-selected.png, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\img\arrow_ltr.png, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\img\arrow_rtl.png, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\img\bgLarge.gif, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\img\bgSmall.gif, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\img\buttonBlue.gif, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\img\buttonGreen.gif, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\img\fb-sample-big.png, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\img\fb-settings.png, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\img\icq_logo.png, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\img\paging_right.png, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\img\recent_bg_strip.jpg, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\img\recent_shadow_ltr.png, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\img\recent_shadow_rtl.png, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\img\rs_del.png, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\img\searchLogo.gif, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\img\search_bg_button.jpg, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\img\search_bg_button.png, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\img\search_bg_strip.jpg, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\img\sites_bg_strip.jpg, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\img\tooltip-arrow.png, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\img\tooltip-close.png, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\bg\hpprotect.dtd, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\bg\icq_locale.dtd, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\bg\itb.properties, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\bg\itb_options.dtd, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\bg\options.properties, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\cs\hpprotect.dtd, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\cs\icq_locale.dtd, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\cs\itb.properties, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\cs\itb_options.dtd, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\cs\options.properties, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\de\hpprotect.dtd, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\de\icq_locale.dtd, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\de\itb.properties, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\de\itb_options.dtd, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\de\options.properties, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\en-US\hpprotect.dtd, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\en-US\icq_locale.dtd, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\en-US\itb.properties, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\en-US\itb_options.dtd, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\en-US\options.properties, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\es\hpprotect.dtd, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\es\icq_locale.dtd, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\es\itb.properties, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\es\itb_options.dtd, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\es\options.properties, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\fr\hpprotect.dtd, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\fr\icq_locale.dtd, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\fr\itb.properties, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\fr\itb_options.dtd, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\fr\options.properties, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\he\hpprotect.dtd, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\he\icq_locale.dtd, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\he\itb.properties, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\he\itb_options.dtd, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\he\options.properties, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\it\hpprotect.dtd, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\it\icq_locale.dtd, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\it\itb.properties, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\it\itb_options.dtd, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\it\options.properties, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\ru\hpprotect.dtd, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\ru\icq_locale.dtd, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\ru\itb.properties, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\ru\itb_options.dtd, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\ru\options.properties, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\sk\hpprotect.dtd, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\sk\icq_locale.dtd, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\sk\itb.properties, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\sk\itb_options.dtd, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\sk\options.properties, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\tr\hpprotect.dtd, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\tr\icq_locale.dtd, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\tr\itb.properties, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\tr\itb_options.dtd, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\tr\options.properties, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\skin\about.css, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\skin\abt.png, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\skin\ain.png, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\skin\ang.png, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\skin\default.css, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\skin\dis.png, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\skin\down_arrow.jpg, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\skin\down_arrow.png, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\skin\dropmarker.css, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\skin\fbsmileslogo.png, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\skin\hide.png, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\skin\icons.png, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\skin\logo_small.gif, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\skin\more_vouchers_r.png, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\skin\more_vouchers_y.png, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\skin\options.css, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\skin\peoplesearch.css, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\skin\voucher_bg.png, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\skin\voucher_bg_y.png, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\components\ITB_History.js, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\defaults\preferences\prefs.js, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\defaults\preferences\user.js, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\META-INF\manifest.mf, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\META-INF\zigbert.rsa, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\META-INF\zigbert.sf, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\search_engine\icqplugin.gif, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\search_engine\icqplugin.src, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\search_engine\icqplugin.xml, , [bbf559475536d066a9593e4321e1fa06],
PUP.Optional.ICQToolbar, C:\Program Files\ICQ6Toolbar\config.xml, , [59579f01d2b98bab1fe4d9a87989629e],
PUP.Optional.ICQToolbar, C:\Program Files\ICQ6Toolbar\Icons.bmp, , [59579f01d2b98bab1fe4d9a87989629e],
PUP.Optional.ICQToolbar, C:\Program Files\ICQ6Toolbar\ICQ Service.exe, , [59579f01d2b98bab1fe4d9a87989629e],
PUP.Optional.ICQToolbar, C:\Program Files\ICQ6Toolbar\icq6Toolbar.ico, , [59579f01d2b98bab1fe4d9a87989629e],
PUP.Optional.ICQToolbar, C:\Program Files\ICQ6Toolbar\ICQToolBar.dll, , [59579f01d2b98bab1fe4d9a87989629e],
PUP.Optional.ICQToolbar, C:\Program Files\ICQ6Toolbar\logo_small.gif, , [59579f01d2b98bab1fe4d9a87989629e],
PUP.Optional.ICQToolbar, C:\Program Files\ICQ6Toolbar\ServiceStarter.exe, , [59579f01d2b98bab1fe4d9a87989629e],
PUP.Optional.ICQToolbar, C:\Program Files\ICQ6Toolbar\short.wav, , [59579f01d2b98bab1fe4d9a87989629e],
PUP.Optional.ICQToolbar, C:\Program Files\ICQ6Toolbar\Version.txt, , [59579f01d2b98bab1fe4d9a87989629e],
PUP.Optional.ICQToolbar, C:\Program Files\ICQ6Toolbar\VersionNew.txt, , [59579f01d2b98bab1fe4d9a87989629e],
PUP.Optional.ICQToolbar, C:\Program Files\ICQ6Toolbar\voucher.bmp, , [59579f01d2b98bab1fe4d9a87989629e],
PUP.Optional.ICQToolbar, C:\Program Files\ICQ6Toolbar\voucher2.bmp, , [59579f01d2b98bab1fe4d9a87989629e],

Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)


(end)



Výsledky z AdwCleaner:

# AdwCleaner v5.023 - Logfile created 03/12/2015 at 18:59:23
# Updated 30/11/2015 by Xplode
# Database : 2015-11-30.1 [Server]
# Operating system : Windows Vista (TM) Home Premium Service Pack 1 (x86)
# Username : mischellin - MISCHELLIN-PC
# Running from : C:\Users\mischellin\Desktop\adwcleaner_5.023.exe
# Option : Scan
# Support : http://toolslib.net/forum

***** [ Services ] *****

Service Found : Guard.Mail.ru
Service Found : sp_rsdrv2

***** [ Folders ] *****

Folder Found : C:\Program Files\ICQ6Toolbar
Folder Found : C:\Program Files\Guard-ICQ
Folder Found : C:\ProgramData\ICQ\ICQToolbar
Folder Found : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MP4 Player
Folder Found : C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\ICQToolbarData
Folder Found : C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\Extensions\{800B5000-A755-47E1-992B-48A1C1357F07}

***** [ Files ] *****

File Found : C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\searchplugins\icqplugin-1.xml
File Found : C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\searchplugins\icqplugin.xml

***** [ DLL ] *****


***** [ Shortcuts ] *****


***** [ Scheduled tasks ] *****


***** [ Registry ] *****

Key Found : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\ICQ\ICQToolBar
Value Found : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]
Key Found : HKLM\SOFTWARE\Classes\AppID\ICQ Service.exe
Key Found : HKLM\SOFTWARE\Classes\ICQToolBar.IEHook
Key Found : HKLM\SOFTWARE\Classes\ICQToolBar.IEHook.1
Key Found : HKLM\SOFTWARE\Classes\protector_dll.protectorbho
Key Found : HKLM\SOFTWARE\Classes\protector_dll.protectorbho.1
Value Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [Guard.Mail.ru.gui]
Key Found : HKLM\SOFTWARE\Classes\AppID\{5D723752-5899-47E8-99B4-62C824EF9E13}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{6E993643-8FBC-44FE-BC85-D318495C4D96}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{E716F183-5AD7-11DC-9670-00508DC0D496}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{14CD42DD-ABCD-3586-DCAB-40E3693E3737}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Explorer Bars\{855F3B16-6D32-4FE6-8A56-BBB695989046}
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{855F3B16-6D32-4FE6-8A56-BBB695989046}]
Value Found : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{855F3B16-6D32-4FE6-8A56-BBB695989046}]
Key Found : HKCU\Software\ICQ\ICQToolbar
Key Found : HKLM\SOFTWARE\ICQ\ICQToolbar
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\ICQToolbar
Data Found : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page] - hxxp://start.icq.com/
Data Found : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search] - hxxp://search.icq.com/search/results.php?q={searchTerms}&ch_id=osd
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}

***** [ Web browsers ] *****

[C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\prefs.js] [Preference] Found : user_pref("icqtoolbar.allowSendURL", false);
[C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\prefs.js] [Preference] Found : user_pref("icqtoolbar.engineVerified", false);
[C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\prefs.js] [Preference] Found : user_pref("icqtoolbar.firstTbRun", false);
[C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\prefs.js] [Preference] Found : user_pref("icqtoolbar.geolastmodified", 1441729978);
[C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\prefs.js] [Preference] Found : user_pref("icqtoolbar.history", "podravka%20e%20shop||reality%20gregor||sez||oa||seznam.cz||psac%C3%AD%20stroj%20kuf%C5%99%C3%ADkov%C3%BD||psac%C3%AD%20stoj||psaci%20stroj||psac%C3%AD%20stroje||staro%[...]
[C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\prefs.js] [Preference] Found : user_pref("icqtoolbar.icqgeo", 42);
[C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\prefs.js] [Preference] Found : user_pref("icqtoolbar.installTime", "1351871451");
[C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\prefs.js] [Preference] Found : user_pref("icqtoolbar.installsource", "1");
[C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\prefs.js] [Preference] Found : user_pref("icqtoolbar.newtab_most_visited_state", "1");
[C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\prefs.js] [Preference] Found : user_pref("icqtoolbar.newtab_recently_closed_state", "1");
[C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\prefs.js] [Preference] Found : user_pref("icqtoolbar.newtab_state", "1");
[C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\prefs.js] [Preference] Found : user_pref("icqtoolbar.numberOfSearches", 0);
[C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\prefs.js] [Preference] Found : user_pref("icqtoolbar.previousFFVersion", "3.6.13");
[C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\prefs.js] [Preference] Found : user_pref("icqtoolbar.skip_default_search", "no");
[C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\prefs.js] [Preference] Found : user_pref("icqtoolbar.suggestions", false);
[C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\prefs.js] [Preference] Found : user_pref("icqtoolbar.uniqueID", "128845134012884513401288560546350");
[C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\prefs.js] [Preference] Found : user_pref("icqtoolbar.usageStatstTimestamp", 1442325025);
[C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\prefs.js] [Preference] Found : user_pref("icqtoolbar.version", "1.5.1");
[C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\prefs.js] [Preference] Found : user_pref("icqtoolbar.voucherHideClicks", 0);
[C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\prefs.js] [Preference] Found : user_pref("icqtoolbar.voucherMoreLinkClicks", 0);
[C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\prefs.js] [Preference] Found : user_pref("icqtoolbar.voucherRedeemClicks", 0);
[C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\prefs.js] [Preference] Found : user_pref("icqtoolbar.voucherWasShown", 0);
[C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\prefs.js] [Preference] Found : user_pref("icqtoolbar.xmlEnableSuggestions", false);
[C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\prefs.js] [Preference] Found : user_pref("icqtoolbar.xmlLanguage", "cs");

########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [7583 bytes] ##########





Prosím o radu, co s tím. Hlavní problém je při kopírování na flashdisk, po zkopírovaní se vše změní na .ink a Avast hlásí trojana. Zde jsem uvedl logy dle návodů. Prosím o další postup, a omlouvám se jestli zakládám zbytečně topic(nováček).
Nahoru
Reklama
Top
Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 43298
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž
Stav:
Offline

Re: Kontrola Logu, vir, LNK:Jenxcus-D (trj)

Příspěvekod jaro3 » 04 pro 2015 10:46

Vlož log z HJT:
viewtopic.php?f=70&t=5119

Spusť znovu AdwCleaner (u Windows Vista či Windows7, klikni na AdwCleaner pravým a vyber „Spustit jako správce
klikni na „Prohledat-Scan“, po prohledání klikni na „ Cleaning (Vymazat)

Program provede opravu, po automatickém restartu neukáže log (C:\AdwCleaner [C?].txt) , jeho obsah sem celý vlož.

Stáhni si Junkware Removal Tool by Thisisu
http://www.bleepingcomputer.com/downloa ... oval-tool/
na svojí plochu.

Deaktivuj si svůj antivirový program. Pravým tl. myši klikni na JRT.exe a vyber „spustit jako správce“. Pro pokračování budeš vyzván ke stisknutí jakékoliv klávesy. Na nějakou klikni.
Začne skenování programu. Skenování může trvat dloho , podle množství nákaz. Po ukončení skenu se objeví log (JRT.txt) , který se uloží na ploše.
Zkopíruj sem prosím celý jeho obsah.

. spusť znovu Malwarebytes' Anti-Malware a dej Skenovat nyní
- po proběhnutí programu se ti objeví hláška tak klikni na „Vše do karantény(smazat vybrané)“ a na „Exportovat záznam“ a vyber „textový soubor“ , soubor nějak pojmenuj a někam ho ulož. Zkopíruj se celý obsah toho logu.

OS: Windows Vista Service Pack 1---- doinstaluj si SP2!

Stáhni si RogueKiller by Adlice Software
32bit.:
http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe
64bit.:
http://www.sur-la-toile.com/RogueKiller ... lerX64.exe
na svojí plochu.
- Zavři všechny ostatní programy a prohlížeče.
- Pro OS Vista a win7 spusť program RogueKiller.exe jako správce , u XP poklepáním.
- počkej až skončí Prescan -vyhledávání škodlivých procesů.
-Potom klikni na „Prohledat“.
- Program skenuje procesy PC. Po proskenování klikni na „Zpráva“ , v okně na pak na „Open TXT“ a celý obsah logu sem zkopíruj.
Pokud je program blokován , zkus ho spustit několikrát. Pokud dále program nepůjde spustit a pracovat, přejmenuj ho na winlogon.exe.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Nahoru
Prdla
nováček
Příspěvky: 5
Registrován: prosinec 15
Pohlaví: Nespecifikováno
Stav:
Offline

Re: Kontrola Logu, vir, LNK:Jenxcus-D (trj)

Příspěvekod Prdla » 06 pro 2015 18:49

# AdwCleaner v5.023 - Logfile created 06/12/2015 at 18:27:28
# Updated 30/11/2015 by Xplode
# Database : 2015-12-03.1 [Server]
# Operating system : Windows Vista (TM) Home Premium Service Pack 1 (x86)
# Username : mischellin - MISCHELLIN-PC
# Running from : C:\Users\mischellin\Desktop\adwcleaner_5.023.exe
# Option : Cleaning
# Support : http://toolslib.net/forum

***** [ Services ] *****

[-] Service Deleted : Guard.Mail.ru
[-] Service Deleted : sp_rsdrv2

***** [ Folders ] *****

[-] Folder Deleted : C:\Program Files\ICQ6Toolbar
[-] Folder Deleted : C:\Program Files\Guard-ICQ
[-] Folder Deleted : C:\ProgramData\ICQ\ICQToolbar
[-] Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MP4 Player
[-] Folder Deleted : C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\ICQToolbarData
[-] Folder Deleted : C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\Extensions\{800B5000-A755-47E1-992B-48A1C1357F07}

***** [ Files ] *****

[-] File Deleted : C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\searchplugins\icqplugin-1.xml
[-] File Deleted : C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\searchplugins\icqplugin.xml

***** [ DLLs ] *****


***** [ Shortcuts ] *****


***** [ Scheduled tasks ] *****


***** [ Registry ] *****

[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\ICQ\ICQToolBar
[-] Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\ICQ Service.exe
[-] Key Deleted : HKLM\SOFTWARE\Classes\ICQToolBar.IEHook
[-] Key Deleted : HKLM\SOFTWARE\Classes\ICQToolBar.IEHook.1
[-] Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.protectorbho
[-] Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.protectorbho.1
[-] Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [Guard.Mail.ru.gui]
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\{5D723752-5899-47E8-99B4-62C824EF9E13}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6E993643-8FBC-44FE-BC85-D318495C4D96}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{E716F183-5AD7-11DC-9670-00508DC0D496}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{14CD42DD-ABCD-3586-DCAB-40E3693E3737}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Explorer Bars\{855F3B16-6D32-4FE6-8A56-BBB695989046}
[-] Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{855F3B16-6D32-4FE6-8A56-BBB695989046}]
[-] Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{855F3B16-6D32-4FE6-8A56-BBB695989046}]
[-] Key Deleted : HKCU\Software\ICQ\ICQToolbar
[-] Key Deleted : HKLM\SOFTWARE\ICQ\ICQToolbar
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\ICQToolbar
[-] Data Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]
[!] Data Not Restored : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}

***** [ Web browsers ] *****

[-] [C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\prefs.js] [Preference] Deleted : user_pref("icqtoolbar.allowSendURL", false);
[-] [C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\prefs.js] [Preference] Deleted : user_pref("icqtoolbar.engineVerified", false);
[-] [C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\prefs.js] [Preference] Deleted : user_pref("icqtoolbar.firstTbRun", false);
[-] [C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\prefs.js] [Preference] Deleted : user_pref("icqtoolbar.geolastmodified", 1441729978);
[-] [C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\prefs.js] [Preference] Deleted : user_pref("icqtoolbar.history", "podravka%20e%20shopreality%20gregorsezoaseznam.czpsac%C3%AD%20stroj%20kuf%C5%99%C3%ADkov%C3%BDpsac%C3%AD%20stojpsaci%20strojpsac%C3%AD%20strojestaro%[...]
[-] [C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\prefs.js] [Preference] Deleted : user_pref("icqtoolbar.icqgeo", 42);
[-] [C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\prefs.js] [Preference] Deleted : user_pref("icqtoolbar.installTime", "1351871451");
[-] [C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\prefs.js] [Preference] Deleted : user_pref("icqtoolbar.installsource", "1");
[-] [C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\prefs.js] [Preference] Deleted : user_pref("icqtoolbar.newtab_most_visited_state", "1");
[-] [C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\prefs.js] [Preference] Deleted : user_pref("icqtoolbar.newtab_recently_closed_state", "1");
[-] [C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\prefs.js] [Preference] Deleted : user_pref("icqtoolbar.newtab_state", "1");
[-] [C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\prefs.js] [Preference] Deleted : user_pref("icqtoolbar.numberOfSearches", 0);
[-] [C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\prefs.js] [Preference] Deleted : user_pref("icqtoolbar.previousFFVersion", "3.6.13");
[-] [C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\prefs.js] [Preference] Deleted : user_pref("icqtoolbar.skip_default_search", "no");
[-] [C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\prefs.js] [Preference] Deleted : user_pref("icqtoolbar.suggestions", false);
[-] [C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\prefs.js] [Preference] Deleted : user_pref("icqtoolbar.uniqueID", "128845134012884513401288560546350");
[-] [C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\prefs.js] [Preference] Deleted : user_pref("icqtoolbar.usageStatstTimestamp", 1442325025);
[-] [C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\prefs.js] [Preference] Deleted : user_pref("icqtoolbar.version", "1.5.1");
[-] [C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\prefs.js] [Preference] Deleted : user_pref("icqtoolbar.voucherHideClicks", 0);
[-] [C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\prefs.js] [Preference] Deleted : user_pref("icqtoolbar.voucherMoreLinkClicks", 0);
[-] [C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\prefs.js] [Preference] Deleted : user_pref("icqtoolbar.voucherRedeemClicks", 0);
[-] [C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\prefs.js] [Preference] Deleted : user_pref("icqtoolbar.voucherWasShown", 0);
[-] [C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\prefs.js] [Preference] Deleted : user_pref("icqtoolbar.xmlEnableSuggestions", false);
[-] [C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\prefs.js] [Preference] Deleted : user_pref("icqtoolbar.xmlLanguage", "cs");

*************************

:: "Tracing" keys removed
:: Winsock settings cleared

########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [7924 bytes] ##########
Nahoru
Prdla
nováček
Příspěvky: 5
Registrován: prosinec 15
Pohlaví: Nespecifikováno
Stav:
Offline

Re: Kontrola Logu, vir, LNK:Jenxcus-D (trj)

Příspěvekod Prdla » 06 pro 2015 18:58

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.0.1 (11.24.2015)
Operating System: Windows Vista (TM) Home Premium x86
Ran by mischellin (Administrator) on ne 06.12.2015 at 18:52:21,48
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




File System: 2

Successfully deleted: C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}10272012210454 (Folder)
Successfully deleted: C:\Windows\wininit.ini (File)

Deleted the following from C:\Users\mischellin\AppData\Roaming\Mozilla\Firefox\Profiles\fz0h97ag.default\prefs.js
user_pref(browser.search.defaulturl, hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}&);
user_pref(keyword.URL, hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}&);



Registry: 4

Successfully deleted: HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{9E35E959-D723-4B5F-9207-2A94F8AB9068} (Registry Value)
Successfully deleted: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{82A76710-4F98-4957-92BE-99648A4E2475} (Registry Key)
Successfully deleted: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9e35e959-d723-4b5f-9207-2a94f8ab9068} (Registry Key)
Successfully deleted: HKLM\Software\Microsoft\Internet Explorer\Toolbar\\{9E35E959-D723-4B5F-9207-2A94F8AB9068} (Registry Value)




~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on ne 06.12.2015 at 18:55:56,67
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Nahoru
Prdla
nováček
Příspěvky: 5
Registrován: prosinec 15
Pohlaví: Nespecifikováno
Stav:
Offline

Re: Kontrola Logu, vir, LNK:Jenxcus-D (trj)

Příspěvekod Prdla » 06 pro 2015 19:20

Malwarebytes Anti-Malware
www.malwarebytes.org

Datum skenování: 6.12.2015
Čas skenování: 19:00:04
Protokol: malware.txt
Správce: Ano

Verze: 2.2.0.1024
Databáze malwaru: v2015.12.06.05
Databáze rootkitů: v2015.11.26.01
Licence: Bezplatná verze
Ochrana proti malwaru: Vypnuto
Ochrana proti škodlivým webovým stránkám: Vypnuto
Ochrana programu: Vypnuto

OS: Windows Vista Service Pack 1
CPU: x86
Souborový systém: NTFS
Uživatel: mischellin

Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 335147
Uplynulý čas: 17 min, 51 sek

Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto

Procesy: 0
(Nenalezeny žádné škodlivé položky)

Moduly: 0
(Nenalezeny žádné škodlivé položky)

Klíče registru: 1
Trojan.Agent.VBS, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\WindowsUpda2ta, Smazat při restartu, [02dbe4bdd8b3fd392d9e24d4b2513fc1],

Hodnoty registru: 0
(Nenalezeny žádné škodlivé položky)

Data registru: 0
(Nenalezeny žádné škodlivé položky)

Složky: 0
(Nenalezeny žádné škodlivé položky)

Soubory: 2
Trojan.Agent.VBS, C:\Users\mischellin\AppData\Roaming\Microsoft\crack serial keygen Office 2007.vbs, Do karantény, [4895445dbecd4de924a433c5f80b728e],
Trojan.Agent.VBS, C:\Windows\System32\Tasks\WindowsUpda2ta, Do karantény, [06d7960b56353006e5e485730bf829d7],

Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)


(end)
Nahoru
Prdla
nováček
Příspěvky: 5
Registrován: prosinec 15
Pohlaví: Nespecifikováno
Stav:
Offline

Re: Kontrola Logu, vir, LNK:Jenxcus-D (trj)

Příspěvekod Prdla » 06 pro 2015 19:46

RogueKiller V11.0.0.0 [Nov 27 2015] (Free) by Adlice Software
mail : http://www.adlice.com/contact/
Feedback : http://forum.adlice.com
Webová stránka : http://www.adlice.com/software/roguekiller/
Blog : http://www.adlice.com

Operační systém : Windows Vista (6.0.6001 Service Pack 1) 32 bits version
Spuštěno : Normální režim
Uživatel : mischellin [Práva správce]
Started from : C:\Users\mischellin\Desktop\RogueKiller.exe
Mód : Prohledat Přerušeno -- Datum : 12/06/2015 19:45:15

¤¤¤ Procesy : 0 ¤¤¤

¤¤¤ Registry : 3 ¤¤¤
[PUP] HKEY_LOCAL_MACHINE\Software\Mail.Ru -> Nalezeno
[Hidden.From.SCM] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\bkkg (System32\drivers\duvl.sys) -> Nalezeno
[PUM.HomePage] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main | Start Page : http://en.us.acer.yahoo.com -> Nalezeno

¤¤¤ Úlohy : 0 ¤¤¤

¤¤¤ Soubory : 1 ¤¤¤
[PUP][Složka] C:\ProgramData\{174892B1-CBE7-44F5-86FF-AB555EFD73A3} -> Nalezeno

¤¤¤ Soubor HOSTS : 2 ¤¤¤
[C:\Windows\System32\drivers\etc\hosts] 127.0.0.1 localhost
[C:\Windows\System32\drivers\etc\hosts] ::1 localhost

¤¤¤ Antirootkit : 0 (Driver: Nahrán) ¤¤¤

¤¤¤ Webové prohlížeče : 0 ¤¤¤

¤¤¤ Kontrola MBR : ¤¤¤
+++++ PhysicalDrive0: WDC WD3200BEVT-22ZCT0 ATA Device +++++
--- User ---
[MBR] f6d2a26e25d3228cd527f7b5492aeb25
[BSP] d533dda0b37ac45cfebb556f748ef9c0 : Acer|VT.Unknown MBR Code
Partition table:
0 - [XXXXXX] ACER (0x27) [VISIBLE] Offset (sectors): 2048 | Size: 10000 MB
1 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 20482048 | Size: 147630 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
2 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 322828288 | Size: 147613 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
User = LL1 ... OK
User = LL2 ... OK
Nahoru
Uživatelský avatar
Orcus
člen Security týmu
Elite Level 10.5
Elite Level 10.5
Příspěvky: 10645
Registrován: duben 10
Bydliště: Okolo rostou 3 růže =o)
Pohlaví: Muž
Stav:
Offline

Re: Kontrola Logu, vir, LNK:Jenxcus-D (trj)

Příspěvekod Orcus » 06 pro 2015 20:49

Zavři všechny programy a prohlížeče. Deaktivuj antivir a firewall.
Prosím, odpoj všechny USB nebo externí disky z počítače před spuštěním tohoto programu.
Spusť RogueKiller ( Pro Windows Vista nebo Windows 7, klepni pravým a vyber "Spustit jako správce", ve Windows XP poklepej ke spuštění).
- Počkej, až Prescan dokončí práci...
- Počkej, dokud status okno zobrazuje "Prohledat "
- V záložkách (Registry , Tasks , Web Browser apod.) vše zatrhni (dej zatržítka).
- Klikni na "Smazat"
- Počkej, dokud Status box zobrazuje " Mazání dokončeno "
- Klikni na "Zpráva" a zkopíruj a vlož obsah té zprávy prosím sem. Log je možno nalézt v RKreport [číslo]. txt na ploše.
- Zavři RogueKiller

====================================================

Stáhni
Zoek.exe

a ulož si ho na plochu.
Zavři všechny ostatní programy, okna i prohlížeče.
Spusť Zoek.exe ( u win vista , win7, 8 klikni na něj pravým a vyber : „Spustit jako správce“
- pozor, náběh programu může trvat déle.

Do okna programu vlož skript níže:

Kód: Vybrat vše

autoclean;
emptyclsid;
iedefaults;
FFdefaults;
CHRdefaults;
emptyalltemp;
resethosts;


Klikni na Run Script
Program provede sken, opravu, sken i oprava může trvat i více minut, je třeba posečkat do konce. Do okna neklikej!
Program nabídne restart , potvrď .

Po restartu se může nějaký čas ukázat pouze černá plocha , to je normální. Je třeba počkat až se vytvoří log. Ten si můžeš uložit třeba do dokumentů, jinak se sám ukládá do:
C:\zoek-results.log
Zkopíruj sem celý obsah toho logu.

====================================================

Vypni rezidentní štít antiviru a antispywaru
Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
Pokud bude po kontrole problém spustit aplikace nebo bude vyskakovat hláška o pokusu použít neplatnou operaci na klíč registru, který je označen pro odstranění, stačí restartovat počítač.

Pokud budou problémy , spusť v nouz. režimu.
Láska hřeje, ale uhlí je uhlí. :fire:


Log z HJT vkládejte do HJT sekce. Je-li moc dlouhý, rozděl jej do více zpráv.

Pár rad k bezpečnosti PC.

Po dobu mé nepřítomnosti mě zastupuje memphisto, jaro3 a Diallix

Pokud budete spokojeni , můžete podpořit naše fórum.
Nahoru
Odpovědět

Zpět na “HiJackThis”

Kdo je online

Uživatelé prohlížející si toto fórum: Žádní registrovaní uživatelé a 60 hostů