Kontrola logu Vyřešeno

[Wellar]

Zdravím prosím o zkontrolování logu
C:\PROGRA~3\Wincert\WIN64C~1.DLL
C:\PROGRA~2\SEARCH~1\Datamngr\x64\datamngr.dll
C:\PROGRA~2\SEARCH~1\Datamngr\x64\IEBHO.dll

[Reklama]

[divine]

Musíš podle tohoto návodu : viewtopic.php?t=5119

[Wellar]

Ok do 1 hodiny dodám ted nestíhám.

[Wellar]

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 13:55:16, on 8.4.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16521)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
c:\program files (x86)\common files\installshield\updateservice\isuspm.exe
C:\PROGRA~2\COMMON~1\INSTAL~1\UPDATE~1\agent.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe
C:\Windows\SysWOW64\DllHost.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.searchnu.com/406
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - (no file)
R3 - URLSearchHook: (no name) - {08d6b0b4-c132-470d-a8e2-aa2e9c3851c9} - (no file)
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Web Assistant Helper - {336D0C35-8A85-403a-B9D2-65C292C39087} - C:\Program Files\Web Assistant\Extension32.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Pomocná služba pro přihlášení ke službě Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: DataMngr - {C1ED9DA0-AFD0-4b90-AC6A-D3874F591014} - C:\PROGRA~2\SEARCH~1\Datamngr\BROWSE~1.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [amd_dc_opt] C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [ISUSScheduler] "c:\program files (x86)\common files\installshield\updateservice\issch.exe" -start
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [DATAMNGR] C:\PROGRA~2\SEARCH~1\Datamngr\DATAMN~1.EXE
O4 - HKCU\..\Run: [ISUSPM Startup] c:\PROGRA~2\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe -startup
O4 - HKCU\..\Run: [LightScribe Control Panel] c:\program files (x86)\common files\lightscribe\lightscribecontrolpanel.exe -hidden
O4 - HKCU\..\Run: [SmartRAM] "C:\Program Files (x86)\IObit\Advanced SystemCare 6\Suo10_SmartRAM.exe" /m
O4 - HKCU\..\Run: [BitTorrent] "C:\Program Files (x86)\BitTorrent\BitTorrent.exe" /MINIMIZED
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [BatteryCare] C:\Program Files (x86)\BatteryCare\BatteryCare.exe
O4 - HKUS\S-1-5-18\..\Run: [Advanced SystemCare 6] "C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCTray.exe" /AutoStart (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [FlashPlayerUpdate] C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_4_402_287_ActiveX.exe -update activex (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [Advanced SystemCare 6] "C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCTray.exe" /AutoStart (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [FlashPlayerUpdate] C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_4_402_287_ActiveX.exe -update activex (User 'Default user')
O4 - Global Startup: NCdownloader.lnk = C:\Program Files (x86)\Solibo Ltd\NCdownloader\NCdownloader.exe
O8 - Extra context menu item: Search the Web - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\menuext.html
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: ICQ7M - {781B39EC-2E18-41FC-9B00-B84E4FFCA85F} - C:\Program Files (x86)\ICQ7M\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7M - {781B39EC-2E18-41FC-9B00-B84E4FFCA85F} - C:\Program Files (x86)\ICQ7M\ICQ.exe
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: *.clonewarsadventures.com
O15 - Trusted Zone: *.freerealms.com
O15 - Trusted Zone: *.soe.com
O15 - Trusted Zone: *.sony.com
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O20 - AppInit_DLLs: c:\progra~3\wincert\win32c~1.dll c:\progra~2\search~1\datamngr\datamngr.dll c:\progra~2\search~1\datamngr\iebho.dll c:\progra~2\browse~1\sprote~1.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Advanced SystemCare Service 6 (AdvancedSystemCareService6) - IObit - C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCService.exe
O23 - Service: Andrea RT Filters Service (AERTFilters) - Andrea Electronics Corporation - C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Easybits Services for Windows (ezSharedSvc) - EasyBits Software AS - C:\Windows\System32\ezSharedSvcHost.exe
O23 - Service: GameConsoleService - WildTangent, Inc. - C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe
O23 - Service: Guard.Mail.ru - Unknown owner - C:\Program Files (x86)\Guard-ICQ\GuardICQ.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: Hi-Rez Studios Authenticate and Update Service (HiPatchService) - Hi-Rez Studios - C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
O23 - Service: HP Health Check Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: HP Wireless Assistant Service - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
O23 - Service: hpqwmiex - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: HPWMISVC - Unknown owner - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Nalpeiron Licensing Service (nlsX86cc) - Nalpeiron Ltd. - C:\Windows\system32\NlsSrv32.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: RtVOsdService Installer (RtVOsdService) - Realtek Semiconductor Corp. - C:\Program Files\Realtek\RtVOsd\RtVOsdService.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype C2C Service - Skype Technologies S.A. - C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: TeamViewer 7 (TeamViewer7) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
O23 - Service: TunngleService - Tunngle.net GmbH - C:\Program Files (x86)\Tunngle\TnglCtrl.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: Web Assistant Updater - Unknown owner - C:\Program Files\Web Assistant\ExtensionUpdaterService.exe
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 13675 bytes
Snad jsem to udělal dobře :)

[Wellar]

Koukne se na to někdo?

[Žbeky]

Vidíš snad, že by dostal kdokoliv jiný odpověď?...

Fixni:

Kód: Vybrat vše

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.searchnu.com/406
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - (no file)
R3 - URLSearchHook: (no name) - {08d6b0b4-c132-470d-a8e2-aa2e9c3851c9} - (no file)
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: DataMngr - {C1ED9DA0-AFD0-4b90-AC6A-D3874F591014} - C:\PROGRA~2\SEARCH~1\Datamngr\BROWSE~1.DLL
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [ISUSScheduler] "c:\program files (x86)\common files\installshield\updateservice\issch.exe" -start
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [DATAMNGR] C:\PROGRA~2\SEARCH~1\Datamngr\DATAMN~1.EXE
O4 - HKCU\..\Run: [ISUSPM Startup] c:\PROGRA~2\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe -startup
O4 - HKCU\..\Run: [SmartRAM] "C:\Program Files (x86)\IObit\Advanced SystemCare 6\Suo10_SmartRAM.exe" /m
O4 - HKUS\S-1-5-18\..\Run: [Advanced SystemCare 6] "C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCTray.exe" /AutoStart (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [FlashPlayerUpdate] C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_4_402_287_ActiveX.exe -update activex (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [Advanced SystemCare 6] "C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCTray.exe" /AutoStart (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [FlashPlayerUpdate] C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_4_402_287_ActiveX.exe -update activex (User 'Default user')
O15 - Trusted Zone: *.clonewarsadventures.com
O15 - Trusted Zone: *.freerealms.com
O15 - Trusted Zone: *.soe.com
O15 - Trusted Zone: *.sony.com
O20 - AppInit_DLLs: c:\progra~3\wincert\win32c~1.dll c:\progra~2\search~1\datamngr\datamngr.dll c:\progra~2\search~1\datamngr\iebho.dll c:\progra~2\browse~1\sprote~1.dll

Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
- Pokud používáš Firefox, klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
- Pokud používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected.
- Pokud používáš Chrome, nic dalšího nevybírej a dej Empty Selected.
Po vyčištění klikni na Exit k zavření programu.

Stáhni si TFC
Otevři soubor a zavři všechny ostatní okna, Klikni na Start k zahájení procesu. Program by neměl trvat dlouho.
Poté by se měl PC restartovat, pokud ne , proveď sám.

Stáhni si Malwarebytes' Anti-Malware
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Update Malwarebytes' Anti-Malware (Aktualizace Malwarebytes' Anti-Malware) a Launch Malwarebytes' Anti-Malware (Spustit aplikaci Malwarebytes' Anti-Malware), pokud jo tak klikni na tlačítko Finish
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a nech vybranou možnost Perform Quick Scan (Provést rychlý sken) a klikni na tlačítko Scan (Skenovat)
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Show Results
- pak zvol možnost Save Logfile a ulož si log na plochu
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(ZATÍM SÁM NIC NEMAŽ!).
Vlož sem pak obsah toho logu.

Stáhni AdwCleaner
Ulož si ho na svojí plochu
Ukonči všechny programy, okna a prohlížeče
Spusť program poklepáním a klikni na „Search“
Po skenu se objeví log (jinak je uložen systémovem disku jako AdwCleaner[R?].txt), jeho obsah sem celý vlož.

[Wellar]

Ok až přilezu ze školy dodám. :)

[Wellar]

Tohle je z adwCleaner # AdwCleaner v2.200 - Log vytvooen 09/04/2013 v 14:36:05
# Aktualizováno 02/04/2013 Xplode
# Operaení systém : Windows 7 Home Premium Service Pack 1 (64 bits)
# Uživatel : makro - HP
# Spuštin systém : Normální
# Spuštino z : C:\Users\makro\Downloads\adwcleaner.exe
# Volba [Prohledat]


***** [Služby] *****

Nalezeno : Web Assistant Updater

***** [Soubory / Složky] *****

Složka Nalezeno : C:\Program Files (x86)\BrowseToSave
Složka Nalezeno : C:\Program Files (x86)\Conduit
Složka Nalezeno : C:\Program Files (x86)\Free Offers from Freeze.com
Složka Nalezeno : C:\Program Files (x86)\search results toolbar
Složka Nalezeno : C:\Program Files\Web Assistant
Složka Nalezeno : C:\ProgramData\Babylon
Složka Nalezeno : C:\ProgramData\boost_interprocess
Složka Nalezeno : C:\ProgramData\Browser Manager
Složka Nalezeno : C:\ProgramData\InstallMate
Složka Nalezeno : C:\ProgramData\Premium
Složka Nalezeno : C:\ProgramData\SoftSafe
Složka Nalezeno : C:\Users\makro\AppData\Local\OpenCandy
Složka Nalezeno : C:\Users\makro\AppData\Local\PutLockerDownloader
Složka Nalezeno : C:\Users\makro\AppData\LocalLow\Conduit
Složka Nalezeno : C:\Users\makro\AppData\LocalLow\PriceGong
Složka Nalezeno : C:\Users\makro\AppData\LocalLow\searchresultstb
Složka Nalezeno : C:\Users\makro\AppData\LocalLow\Toolbar4
Složka Nalezeno : C:\Users\makro\AppData\Roaming\Babylon
Složka Nalezeno : C:\Users\makro\AppData\Roaming\Mozilla\Firefox\Profiles\8swwoeym.default\ConduitCommon
Složka Nalezeno : C:\Users\makro\AppData\Roaming\Mozilla\Firefox\Profiles\8swwoeym.default\CT2786678
Složka Nalezeno : C:\Users\makro\AppData\Roaming\Mozilla\Firefox\Profiles\8swwoeym.default\CT3031607
Složka Nalezeno : C:\Users\makro\AppData\Roaming\Mozilla\Firefox\Profiles\8swwoeym.default\extensions\{08d6b0b4-c132-470d-a8e2-aa2e9c3851c9}
Složka Nalezeno : C:\Users\makro\AppData\Roaming\Mozilla\Firefox\Profiles\8swwoeym.default\extensions\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}
Složka Nalezeno : C:\Users\makro\AppData\Roaming\Mozilla\Firefox\Profiles\8swwoeym.default\extensions\{C9B68337-E93A-44EA-94DC-CB300EC06444}
Složka Nalezeno : C:\Users\makro\AppData\Roaming\Mozilla\Firefox\Profiles\8swwoeym.default\extensions\engine@conduit.com
Složka Nalezeno : C:\Users\makro\AppData\Roaming\Mozilla\Firefox\Profiles\8swwoeym.default\SweetIMToolbarData
Složka Nalezeno : C:\Users\makro\AppData\Roaming\NCdownloader
Složka Nalezeno : C:\Users\makro\AppData\Roaming\OpenCandy
Soubor Nalezeno : C:\user.js
Soubor Nalezeno : C:\Users\makro\AppData\Roaming\Mozilla\Firefox\Profiles\8swwoeym.default\searchplugins\Conduit.xml
Soubor Nalezeno : C:\Users\makro\AppData\Roaming\Mozilla\Firefox\Profiles\8swwoeym.default\searchplugins\MyStart Search.xml
Soubor Nalezeno : C:\Users\makro\AppData\Roaming\Mozilla\Firefox\Profiles\8swwoeym.default\searchplugins\SweetIm.xml
Soubor Nalezeno : C:\Users\makro\Uninstall.exe

***** [Registry] *****

Data Nalezeno : [x64] HKLM\..\Windows [AppInit_DLLs] = C:\PROGRA~2\SEARCH~1\Datamngr\x64\datamngr.dll
Data Nalezeno : [x64] HKLM\..\Windows [AppInit_DLLs] = C:\PROGRA~2\SEARCH~1\Datamngr\x64\IEBHO.dll
Data Nalezeno : HKLM\..\Windows [AppInit_DLLs] = c:\progra~2\browse~1\sprote~1.dll
Data Nalezeno : HKLM\..\Windows [AppInit_DLLs] = c:\progra~2\search~1\datamngr\datamngr.dll
Data Nalezeno : HKLM\..\Windows [AppInit_DLLs] = c:\progra~2\search~1\datamngr\iebho.dll
Hodnota Nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [DataMngr]
Hodnota Nalezeno : HKLM\SOFTWARE\Mozilla\Firefox\extensions [{336D0C35-8A85-403a-B9D2-65C292C39087}]
Hodnota Nalezeno : HKLM\SOFTWARE\Mozilla\Firefox\extensions [{336D0C35-8A85-403a-B9D2-65C292C39087}]
Hodnota Nalezeno : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [10]
Hodnota Nalezeno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [10]
Klíe Nalezeno : HKCU\Software\1ClickDownload
Klíe Nalezeno : HKCU\Software\APN PIP
Klíe Nalezeno : HKCU\Software\AppDataLow\Software\Conduit
Klíe Nalezeno : HKCU\Software\AppDataLow\Software\PriceGong
Klíe Nalezeno : HKCU\Software\AppDataLow\SProtector
Klíe Nalezeno : HKCU\Software\BabylonToolbar
Klíe Nalezeno : HKCU\Software\DataMngr
Klíe Nalezeno : HKCU\Software\DataMngr_Toolbar
Klíe Nalezeno : HKCU\Software\ilivid
Klíe Nalezeno : HKCU\Software\IM
Klíe Nalezeno : HKCU\Software\ImInstaller
Klíe Nalezeno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{336D0C35-8A85-403A-B9D2-65C292C39087}
Klíe Nalezeno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C1ED9DA0-AFD0-4B90-AC6A-D3874F591014}
Klíe Nalezeno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{336D0C35-8A85-403A-B9D2-65C292C39087}
Klíe Nalezeno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C1ED9DA0-AFD0-4B90-AC6A-D3874F591014}
Klíe Nalezeno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
Klíe Nalezeno : HKCU\Software\Softonic
Klíe Nalezeno : HKCU\Software\StartSearch
Klíe Nalezeno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Klíe Nalezeno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{96BD48DD-741B-41AE-AC4A-AFF96BA00F7E}
Klíe Nalezeno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
Klíe Nalezeno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Klíe Nalezeno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{CFF4DB9B-135F-47C0-9269-B4C6572FD61A}
Klíe Nalezeno : HKLM\Software\Babylon
Klíe Nalezeno : HKLM\Software\BabylonToolbar
Klíe Nalezeno : HKLM\SOFTWARE\Classes\AppID\{608D3067-77E8-463D-9084-908966806826}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\AppID\{B302A1BD-0157-49FA-90F1-4E94F22C7B4B}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\AppID\{D97A8234-F2A2-4AD4-91D5-FECDB2C553AF}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\AppID\BrowserConnection.dll
Klíe Nalezeno : HKLM\SOFTWARE\Classes\AppID\Extension.DLL
Klíe Nalezeno : HKLM\SOFTWARE\Classes\Applications\ilividsetup.exe
Klíe Nalezeno : HKLM\SOFTWARE\Classes\BrowserConnection.Loader
Klíe Nalezeno : HKLM\SOFTWARE\Classes\BrowserConnection.Loader.1
Klíe Nalezeno : HKLM\SOFTWARE\Classes\Extension.ExtensionHelperObject
Klíe Nalezeno : HKLM\SOFTWARE\Classes\Extension.ExtensionHelperObject.1
Klíe Nalezeno : HKLM\SOFTWARE\Classes\iLividIEHelper.DNSGuard
Klíe Nalezeno : HKLM\SOFTWARE\Classes\iLividIEHelper.DNSGuard.1
Klíe Nalezeno : HKLM\SOFTWARE\Classes\Prod.cap
Klíe Nalezeno : HKLM\SOFTWARE\Classes\TypeLib\{1D5A4199-956E-49BC-B89F-6A35C57C0D13}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\TypeLib\{1FDC0B61-91AC-4157-9B27-CAD9A09AB67E}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\TypeLib\{75E8DA27-44AF-40AE-927C-F2EEC99D65B1}
Klíe Nalezeno : HKLM\Software\Conduit
Klíe Nalezeno : HKLM\Software\DataMngr
Klíe Nalezeno : HKLM\Software\iLividSRTB
Klíe Nalezeno : HKLM\Software\Iminent
Klíe Nalezeno : HKLM\SOFTWARE\Microsoft\Tracing\BundleSweetIMSetup_RASAPI32
Klíe Nalezeno : HKLM\SOFTWARE\Microsoft\Tracing\BundleSweetIMSetup_RASMANCS
Klíe Nalezeno : HKLM\SOFTWARE\Microsoft\Tracing\iLividMediaBar_RASAPI32
Klíe Nalezeno : HKLM\SOFTWARE\Microsoft\Tracing\iLividMediaBar_RASMANCS
Klíe Nalezeno : HKLM\SOFTWARE\Microsoft\Tracing\iLividSetup_RASAPI32
Klíe Nalezeno : HKLM\SOFTWARE\Microsoft\Tracing\iLividSetup_RASMANCS
Klíe Nalezeno : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASAPI32
Klíe Nalezeno : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASMANCS
Klíe Nalezeno : HKLM\SOFTWARE\Microsoft\Tracing\incredibar_installer_RASAPI32
Klíe Nalezeno : HKLM\SOFTWARE\Microsoft\Tracing\incredibar_installer_RASMANCS
Klíe Nalezeno : HKLM\SOFTWARE\Microsoft\Tracing\IncredibarToolbar_RASAPI32
Klíe Nalezeno : HKLM\SOFTWARE\Microsoft\Tracing\IncredibarToolbar_RASMANCS
Klíe Nalezeno : HKLM\SOFTWARE\Microsoft\Tracing\SweetIM_RASAPI32
Klíe Nalezeno : HKLM\SOFTWARE\Microsoft\Tracing\SweetIM_RASMANCS
Klíe Nalezeno : HKLM\Software\PIP
Klíe Nalezeno : HKLM\Software\SP Global
Klíe Nalezeno : HKLM\Software\SProtector
Klíe Nalezeno : HKLM\Software\Web Assistant
Klíe Nalezeno : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{336D0C35-8A85-403A-B9D2-65C292C39087}
Klíe Nalezeno : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Klíe Nalezeno : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{9FF9AE6F-4553-41A7-B645-B0E88850EABF}
Klíe Nalezeno : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{C1ED9DA0-AFD0-4B90-AC6A-D3874F591014}
Klíe Nalezeno : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{CE4DB5A3-58E6-41F1-8761-47238DF4F468}
Klíe Nalezeno : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{A36867C6-302D-49FC-9D8E-1EB037B5F1AB}
Klíe Nalezeno : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd
Klíe Nalezeno : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{377E5D4D-77E5-476A-8716-7E70A9272DA0}
Klíe Nalezeno : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
Klíe Nalezeno : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68B81CCD-A80C-4060-8947-5AE69ED01199}
Klíe Nalezeno : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6B969FB-6D33-48D2-9061-8BBD4899EB08}
Klíe Nalezeno : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
Klíe Nalezeno : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Klíe Nalezeno : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{336D0C35-8A85-403A-B9D2-65C292C39087}
Klíe Nalezeno : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C1ED9DA0-AFD0-4B90-AC6A-D3874F591014}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{336D0C35-8A85-403A-B9D2-65C292C39087}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{9FF9AE6F-4553-41A7-B645-B0E88850EABF}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{C1ED9DA0-AFD0-4B90-AC6A-D3874F591014}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{CE4DB5A3-58E6-41F1-8761-47238DF4F468}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\Interface\{2A42D13C-D427-4787-821B-CF6973855778}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\Interface\{3D8478AA-7B88-48A9-8BCB-B85D594411EC}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\Interface\{4D8ED2B3-DC62-43EC-ABA3-5B74F046B1BE}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\Interface\{95B6A271-FEB4-4160-B0FF-44394C21C8DC}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\Interface\{A36867C6-302D-49FC-9D8E-1EB037B5F1AB}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\Interface\{E67D5BC7-7129-493E-9281-F47BDAFACE4F}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\Interface\{EEE6C358-6118-11DC-9C72-001320C79847}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\Interface\{EEE6C359-6118-11DC-9C72-001320C79847}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\Interface\{EEE6C35A-6118-11DC-9C72-001320C79847}
Klíe Nalezeno : HKLM\SOFTWARE\DataMngr
Klíe Nalezeno : HKLM\SOFTWARE\Google\Chrome\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd
Klíe Nalezeno : HKLM\SOFTWARE\Google\Chrome\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd
Klíe Nalezeno : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
Klíe Nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{336D0C35-8A85-403A-B9D2-65C292C39087}
Klíe Nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C1ED9DA0-AFD0-4B90-AC6A-D3874F591014}
Klíe Nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{336D0C35-8A85-403a-B9D2-65C292C39087}_is1
Klíe Nalezeno : HKLM\SOFTWARE\Web Assistant
Klíe Nalezeno : HKU\S-1-5-21-1772999931-3250346356-2470139438-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Klíe Nalezeno : HKU\S-1-5-21-1772999931-3250346356-2470139438-1000\Software\Microsoft\Internet Explorer\SearchScopes\{96BD48DD-741B-41AE-AC4A-AFF96BA00F7E}
Klíe Nalezeno : HKU\S-1-5-21-1772999931-3250346356-2470139438-1000\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
Klíe Nalezeno : HKU\S-1-5-21-1772999931-3250346356-2470139438-1000\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Klíe Nalezeno : HKU\S-1-5-21-1772999931-3250346356-2470139438-1000\Software\Microsoft\Internet Explorer\SearchScopes\{CFF4DB9B-135F-47C0-9269-B4C6572FD61A}

***** [Internetové prohlížeee] *****

-\\ Internet Explorer v10.0.9200.16521

[OK] Registry jsou eisté.

-\\ Mozilla Firefox v [Nemohu získat verzi]

Soubor : C:\Users\makro\AppData\Roaming\Mozilla\Firefox\Profiles\8swwoeym.default\prefs.js

Nalezeno : user_pref("CT2786678..clientLogIsEnabled", true);
Nalezeno : user_pref("CT2786678..clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.as[...]
Nalezeno : user_pref("CT2786678..uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/Re[...]
Nalezeno : user_pref("CT2786678.AboutPrivacyUrl", "hxxp://www.conduit.com/privacy/Default.aspx");
Nalezeno : user_pref("CT2786678.AppTrackingLastCheckTime", "Thu Aug 11 2011 08:21:32 GMT+0200");
Nalezeno : user_pref("CT2786678.BrowserCompStateIsOpen_129575151151403741", true);
Nalezeno : user_pref("CT2786678.CTID", "CT2786678");
Nalezeno : user_pref("CT2786678.CurrentServerDate", "11-8-2011");
Nalezeno : user_pref("CT2786678.DialogsAlignMode", "LTR");
Nalezeno : user_pref("CT2786678.DialogsGetterLastCheckTime", "Wed Aug 10 2011 08:37:55 GMT+0200");
Nalezeno : user_pref("CT2786678.DownloadReferralCookieData", "");
Nalezeno : user_pref("CT2786678.EMailNotifierPollDate", "Tue Jul 26 2011 08:32:44 GMT+0200");
Nalezeno : user_pref("CT2786678.FeedLastCount5690698542593514850", 215);
Nalezeno : user_pref("CT2786678.FeedPollDate2429156812186649977", "Tue Jul 26 2011 08:27:30 GMT+0200");
Nalezeno : user_pref("CT2786678.FeedPollDate2429156813040823546", "Tue Jul 26 2011 08:27:30 GMT+0200");
Nalezeno : user_pref("CT2786678.FeedPollDate2429156813130095866", "Tue Jul 26 2011 08:27:30 GMT+0200");
Nalezeno : user_pref("CT2786678.FeedPollDate2429156813224203613", "Tue Jul 26 2011 08:27:30 GMT+0200");
Nalezeno : user_pref("CT2786678.FeedPollDate2429156813230837251", "Tue Jul 26 2011 08:27:30 GMT+0200");
Nalezeno : user_pref("CT2786678.FeedPollDate2429156813454291735", "Tue Jul 26 2011 08:27:30 GMT+0200");
Nalezeno : user_pref("CT2786678.FeedPollDate2429156813729834876", "Tue Jul 26 2011 08:27:30 GMT+0200");
Nalezeno : user_pref("CT2786678.FeedPollDate2429156813860870021", "Tue Jul 26 2011 08:27:30 GMT+0200");
Nalezeno : user_pref("CT2786678.FeedPollDate2429156814264681793", "Tue Jul 26 2011 08:27:30 GMT+0200");
Nalezeno : user_pref("CT2786678.FeedPollDate2429156814863075366", "Tue Jul 26 2011 08:27:30 GMT+0200");
Nalezeno : user_pref("CT2786678.FeedPollDate2429156815257761081", "Tue Jul 26 2011 08:27:30 GMT+0200");
Nalezeno : user_pref("CT2786678.FeedTTL2429156813040823546", 15);
Nalezeno : user_pref("CT2786678.FeedTTL2429156813130095866", 10);
Nalezeno : user_pref("CT2786678.FeedTTL2429156813454291735", 5);
Nalezeno : user_pref("CT2786678.FeedTTL2429156814264681793", 5);
Nalezeno : user_pref("CT2786678.FirstServerDate", "25-7-2011");
Nalezeno : user_pref("CT2786678.FirstTime", true);
Nalezeno : user_pref("CT2786678.FirstTimeFF3", true);
Nalezeno : user_pref("CT2786678.FixPageNotFoundErrors", false);
Nalezeno : user_pref("CT2786678.GroupingServerCheckInterval", 1440);
Nalezeno : user_pref("CT2786678.GroupingServiceUrl", "hxxp://grouping.services.conduit.com/");
Nalezeno : user_pref("CT2786678.HasUserGlobalKeys", true);
Nalezeno : user_pref("CT2786678.HomePageProtectorEnabled", false);
Nalezeno : user_pref("CT2786678.Initialize", true);
Nalezeno : user_pref("CT2786678.InitializeCommonPrefs", true);
Nalezeno : user_pref("CT2786678.InstallationAndCookieDataSentCount", 3);
Nalezeno : user_pref("CT2786678.InstallationType", "UnknownIntegration");
Nalezeno : user_pref("CT2786678.InstalledDate", "Mon Jul 25 2011 20:23:46 GMT+0200");
Nalezeno : user_pref("CT2786678.IsAlertDBUpdated", true);
Nalezeno : user_pref("CT2786678.IsGrouping", false);
Nalezeno : user_pref("CT2786678.IsInitSetupIni", true);
Nalezeno : user_pref("CT2786678.IsMulticommunity", false);
Nalezeno : user_pref("CT2786678.IsOpenThankYouPage", true);
Nalezeno : user_pref("CT2786678.IsOpenUninstallPage", false);
Nalezeno : user_pref("CT2786678.IsProtectorsInit", true);
Nalezeno : user_pref("CT2786678.LanguagePackLastCheckTime", "Thu Aug 11 2011 08:21:22 GMT+0200");
Nalezeno : user_pref("CT2786678.LanguagePackReloadIntervalMM", 1440);
Nalezeno : user_pref("CT2786678.LanguagePackServiceUrl", "hxxp://translation.users.conduit.com/Translation.ashx[...]
Nalezeno : user_pref("CT2786678.LastLogin_3.5.0.12", "Thu Aug 11 2011 17:56:12 GMT+0200");
Nalezeno : user_pref("CT2786678.LatestVersion", "3.3.3.2");
Nalezeno : user_pref("CT2786678.Locale", "en");
Nalezeno : user_pref("CT2786678.MCDetectTooltipHeight", "83");
Nalezeno : user_pref("CT2786678.MCDetectTooltipShow", false);
Nalezeno : user_pref("CT2786678.MCDetectTooltipUrl", "hxxp://@EB_INSTALL_LINK@/rank/tooltip/?version=1");
Nalezeno : user_pref("CT2786678.MCDetectTooltipWidth", "295");
Nalezeno : user_pref("CT2786678.MyStuffEnabledAtInstallation", true);
Nalezeno : user_pref("CT2786678.OriginalFirstVersion", "3.5.0.12");
Nalezeno : user_pref("CT2786678.RadioShrinked", "shrinked");
Nalezeno : user_pref("CT2786678.RadioShrinkedFromSetup", true);
Nalezeno : user_pref("CT2786678.SHRINK_TOOLBAR", 0);
Nalezeno : user_pref("CT2786678.SavedHomepage", "chrome://branding/locale/browserconfig.properties");
Nalezeno : user_pref("CT2786678.SearchEngineBeforeUnload", "SFT_eng7 Customized Web Search");
Nalezeno : user_pref("CT2786678.SearchFromAddressBarIsInit", true);
Nalezeno : user_pref("CT2786678.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT278[...]
Nalezeno : user_pref("CT2786678.SearchInNewTabEnabled", true);
Nalezeno : user_pref("CT2786678.SearchInNewTabIntervalMM", 1440);
Nalezeno : user_pref("CT2786678.SearchInNewTabLastCheckTime", "Thu Aug 11 2011 08:21:21 GMT+0200");
Nalezeno : user_pref("CT2786678.SearchInNewTabServiceUrl", "hxxp://newtab.conduit-hosting.com/newtab/?ctid=EB_T[...]
Nalezeno : user_pref("CT2786678.SearchInNewTabUsageUrl", "hxxp://Usage.Hosting.conduit-services.com/UsageServic[...]
Nalezeno : user_pref("CT2786678.SearchInNewTabUserEnabled", false);
Nalezeno : user_pref("CT2786678.SearchProtectorEnabled", false);
Nalezeno : user_pref("CT2786678.SearchProtectorToolbarDisabled", false);
Nalezeno : user_pref("CT2786678.ServiceMapLastCheckTime", "Thu Aug 11 2011 08:21:21 GMT+0200");
Nalezeno : user_pref("CT2786678.SettingsLastCheckTime", "Thu Aug 11 2011 17:56:11 GMT+0200");
Nalezeno : user_pref("CT2786678.SettingsLastUpdate", "1313041587");
Nalezeno : user_pref("CT2786678.ThirdPartyComponentsInterval", 504);
Nalezeno : user_pref("CT2786678.ThirdPartyComponentsLastCheck", "Mon Jul 25 2011 20:23:30 GMT+0200");
Nalezeno : user_pref("CT2786678.ThirdPartyComponentsLastUpdate", "1246786978");
Nalezeno : user_pref("CT2786678.ToolbarShrinkedFromSetup", true);
Nalezeno : user_pref("CT2786678.TrusteLinkUrl", "hxxp://trust.conduit.com/CT2786678");
Nalezeno : user_pref("CT2786678.TrustedApiDomains", "conduit.com,conduit-hosting.com,conduit-services.com,clien[...]
Nalezeno : user_pref("CT2786678.UserID", "UN69613930910747881");
Nalezeno : user_pref("CT2786678.ValidationData_Toolbar", 2);
Nalezeno : user_pref("CT2786678.WeatherNetwork", "");
Nalezeno : user_pref("CT2786678.WeatherPollDate", "Tue Jul 26 2011 08:27:30 GMT+0200");
Nalezeno : user_pref("CT2786678.WeatherUnit", "C");
Nalezeno : user_pref("CT2786678.alertChannelId", "1178763");
Nalezeno : user_pref("CT2786678.approveUntrustedApps", false);
Nalezeno : user_pref("CT2786678.backendstorage./9b+7e+x305", "2423");
Nalezeno : user_pref("CT2786678.backendstorage./9b+7e,x305", "2423");
Nalezeno : user_pref("CT2786678.backendstorage./9b+7e-x305", "2423");
Nalezeno : user_pref("CT2786678.backendstorage./9b+7e.x305", "2423");
Nalezeno : user_pref("CT2786678.backendstorage./9b+7e/x305", "2423");
Nalezeno : user_pref("CT2786678.backendstorage./9b+7e06cg5el8:", "6E6D706F736F6C767273");
Nalezeno : user_pref("CT2786678.backendstorage./9b+7e06cg5el;8i:k", "247E2D2F226A747376757975727C7879242F4B4947[...]
Nalezeno : user_pref("CT2786678.backendstorage./9b+7e0x305", "2423");
Nalezeno : user_pref("CT2786678.backendstorage./9b+7e1x305", "2423");
Nalezeno : user_pref("CT2786678.backendstorage./9b+7e2x305", "2423");
Nalezeno : user_pref("CT2786678.backendstorage./9b+7e3x305", "2423");
Nalezeno : user_pref("CT2786678.backendstorage./9b+7e4x305", "2423");
Nalezeno : user_pref("CT2786678.backendstorage./9b+7e5x305", "2423");
Nalezeno : user_pref("CT2786678.backendstorage./9b+7e6x305", "2423");
Nalezeno : user_pref("CT2786678.backendstorage./9b+7e7x305", "2423");
Nalezeno : user_pref("CT2786678.backendstorage./9b+7e8x305", "2423");
Nalezeno : user_pref("CT2786678.backendstorage./9b+7e9x305", "2423");
Nalezeno : user_pref("CT2786678.backendstorage./9b+7e:x305", "2423");
Nalezeno : user_pref("CT2786678.backendstorage./9b+7e;x305", "2423");
Nalezeno : user_pref("CT2786678.backendstorage./9b+7e<x305", "2423");
Nalezeno : user_pref("CT2786678.backendstorage./9b+7e=x305", "2423");
Nalezeno : user_pref("CT2786678.backendstorage./9b+7e>x305", "2423");
Nalezeno : user_pref("CT2786678.backendstorage./9b+7e?x305", "2423");
Nalezeno : user_pref("CT2786678.backendstorage./9b+7e@x305", "2423");
Nalezeno : user_pref("CT2786678.backendstorage./9b+7eax305", "2423");
Nalezeno : user_pref("CT2786678.backendstorage./9b+7ebe3g=;d9n9=d", "372C2D326975762E3A3C7B3A39434A494841434B26[...]
Nalezeno : user_pref("CT2786678.backendstorage./9b+7ebx305", "2423");
Nalezeno : user_pref("CT2786678.backendstorage./9b+7ecx305", "2423");
Nalezeno : user_pref("CT2786678.backendstorage./9b+7edx305", "2423");
Nalezeno : user_pref("CT2786678.backendstorage./9b+7etx305", "2423");
Nalezeno : user_pref("CT2786678.backendstorage./9b-0?3g>d", "6F6D3C3C3D6F40447A7448444820787B7977257E7E4F202A51[...]
Nalezeno : user_pref("CT2786678.backendstorage./9b-0?3g@6:5;", "");
Nalezeno : user_pref("CT2786678.backendstorage./9b-3=3eccja=f>", "247E333D2C452F4135276F297B7E7D21202F26313E424[...]
Nalezeno : user_pref("CT2786678.backendstorage./9b/>01=9a6k6<im;krie@pdawm", "6E6A68707374757677");
Nalezeno : user_pref("CT2786678.backendstorage./9b3=>@44i48?", "372C2D326975763342363341484778213F3E484F4E4D464[...]
Nalezeno : user_pref("CT2786678.backendstorage./9b5ba==9cjag", "663D6D7270713F407A7475747B48777A4A7B20204F");
Nalezeno : user_pref("CT2786678.backendstorage./9b6b11g4c56b>f;p;anr@p", "6E6D706F736F6C767478737179");
Nalezeno : user_pref("CT2786678.backendstorage./9b9643g3/9e", "6A");
Nalezeno : user_pref("CT2786678.backendstorage./9b<:222h64<", "393F352F3E");
Nalezeno : user_pref("CT2786678.backendstorage./9b=+03eh8h8j?:", "4443");
Nalezeno : user_pref("CT2786678.backendstorage./9b?+e2a52d8", "372C2D326975762E3A3C7B3A39434A494841434B26514649[...]
Nalezeno : user_pref("CT2786678.backendstorage./9b?b0d:8aj62<h", "6D");
Nalezeno : user_pref("CT2786678.backendstorage./9ba@0<0bi6a7gn:6@l?", "6E6B");
Nalezeno : user_pref("CT2786678.backendstorage.url_history", "687474703A2F2F7777772E676F6F676C652E637A2F61636C6[...]
Nalezeno : user_pref("CT2786678.backendstorage.url_history_time", "31333131363631363939303137");
Nalezeno : user_pref("CT2786678.components.1000034", false);
Nalezeno : user_pref("CT2786678.components.1000234", false);
Nalezeno : user_pref("CT2786678.components.129295698017012804", false);
Nalezeno : user_pref("CT2786678.components.129309485163350924", false);
Nalezeno : user_pref("CT2786678.components.129309489763975460", false);
Nalezeno : user_pref("CT2786678.components.129315411424256896", false);
Nalezeno : user_pref("CT2786678.components.129513460540910967", false);
Nalezeno : user_pref("CT2786678.components.129526967958500204", false);
Nalezeno : user_pref("CT2786678.components.5690698542593514850", false);
Nalezeno : user_pref("CT2786678.generalConfigFromLogin", "{\"ApiMaxAlerts\":\"12\",\"SocialDomains\":\"social.c[...]
Nalezeno : user_pref("CT2786678.globalFirstTimeInfoLastCheckTime", "Thu Aug 11 2011 17:56:12 GMT+0200");
Nalezeno : user_pref("CT2786678.homepageProtectorEnableByLogin", true);
Nalezeno : user_pref("CT2786678.initDone", true);
Nalezeno : user_pref("CT2786678.isAppTrackingManagerOn", true);
Nalezeno : user_pref("CT2786678.isFirstRadioInstallation", false);
Nalezeno : user_pref("CT2786678.myStuffEnabled", true);
Nalezeno : user_pref("CT2786678.myStuffPublihserMinWidth", 400);
Nalezeno : user_pref("CT2786678.myStuffSearchUrl", "hxxp://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOr[...]
Nalezeno : user_pref("CT2786678.myStuffServiceIntervalMM", 1440);
Nalezeno : user_pref("CT2786678.myStuffServiceUrl", "hxxp://mystuff.conduit-services.com/MyStuffService.ashx?Co[...]
Nalezeno : user_pref("CT2786678.oldAppsList", "129295695672325902,129295695672325903,111,1000234,12929569801701[...]
Nalezeno : user_pref("CT2786678.searchProtectorDialogDelayInSec", 10);
Nalezeno : user_pref("CT2786678.searchProtectorEnableByLogin", true);
Nalezeno : user_pref("CT2786678.testingCtid", "");
Nalezeno : user_pref("CT2786678.toolbarAppMetaDataLastCheckTime", "Thu Aug 11 2011 08:21:22 GMT+0200");
Nalezeno : user_pref("CT2786678.toolbarContextMenuLastCheckTime", "Tue Aug 09 2011 07:36:15 GMT+0200");
Nalezeno : user_pref("CT2786678.usagesFlag", 2);
Nalezeno : user_pref("CT3031607..clientLogIsEnabled", true);
Nalezeno : user_pref("CT3031607..clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.as[...]
Nalezeno : user_pref("CT3031607..uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/Re[...]
Nalezeno : user_pref("CT3031607.AboutPrivacyUrl", "hxxp://www.conduit.com/privacy/Default.aspx");
Nalezeno : user_pref("CT3031607.BrowserCompStateIsOpen_129524509878872275", true);
Nalezeno : user_pref("CT3031607.CTID", "CT3031607");
Nalezeno : user_pref("CT3031607.CommunitiesChangesLastCheckTime", "0");
Nalezeno : user_pref("CT3031607.CurrentServerDate", "11-8-2011");
Nalezeno : user_pref("CT3031607.DialogsAlignMode", "LTR");
Nalezeno : user_pref("CT3031607.DialogsGetterLastCheckTime", "Thu Aug 11 2011 19:43:26 GMT+0200");
Nalezeno : user_pref("CT3031607.DownloadReferralCookieData", "");
Nalezeno : user_pref("CT3031607.EMailNotifierPollDate", "Thu Aug 11 2011 19:43:25 GMT+0200");
Nalezeno : user_pref("CT3031607.FirstServerDate", "11-8-2011");
Nalezeno : user_pref("CT3031607.FirstTime", true);
Nalezeno : user_pref("CT3031607.FirstTimeFF3", true);
Nalezeno : user_pref("CT3031607.FixPageNotFoundErrors", false);
Nalezeno : user_pref("CT3031607.GroupingInvalidateCache", false);
Nalezeno : user_pref("CT3031607.GroupingLastCheckTime", "0");
Nalezeno : user_pref("CT3031607.GroupingLastServerUpdateTime", "0");
Nalezeno : user_pref("CT3031607.GroupingServerCheckInterval", 1440);
Nalezeno : user_pref("CT3031607.GroupingServiceUrl", "hxxp://grouping.services.conduit.com/");
Nalezeno : user_pref("CT3031607.HasUserGlobalKeys", true);
Nalezeno : user_pref("CT3031607.Initialize", true);
Nalezeno : user_pref("CT3031607.InitializeCommonPrefs", true);
Nalezeno : user_pref("CT3031607.InstallationAndCookieDataSentCount", 1);
Nalezeno : user_pref("CT3031607.InstallationId", "CT3031607_SFT_eng7.exe");
Nalezeno : user_pref("CT3031607.InstallationType", "ConduitIntegration");
Nalezeno : user_pref("CT3031607.InstalledDate", "Thu Aug 11 2011 19:43:25 GMT+0200");
Nalezeno : user_pref("CT3031607.InvalidateCache", false);
Nalezeno : user_pref("CT3031607.IsAlertDBUpdated", true);
Nalezeno : user_pref("CT3031607.IsGrouping", false);
Nalezeno : user_pref("CT3031607.IsInitSetupIni", true);
Nalezeno : user_pref("CT3031607.IsMulticommunity", false);
Nalezeno : user_pref("CT3031607.IsOpenThankYouPage", false);
Nalezeno : user_pref("CT3031607.IsOpenUninstallPage", true);
Nalezeno : user_pref("CT3031607.LanguagePackLastCheckTime", "Thu Aug 11 2011 19:43:27 GMT+0200");
Nalezeno : user_pref("CT3031607.LanguagePackReloadIntervalMM", 1440);
Nalezeno : user_pref("CT3031607.LanguagePackServiceUrl", "hxxp://translation.users.conduit.com/Translation.ashx[...]
Nalezeno : user_pref("CT3031607.LastLogin_3.6.0.10", "Thu Aug 11 2011 19:43:26 GMT+0200");
Nalezeno : user_pref("CT3031607.LatestVersion", "3.5.1.1");
Nalezeno : user_pref("CT3031607.Locale", "en");
Nalezeno : user_pref("CT3031607.MCDetectTooltipHeight", "83");
Nalezeno : user_pref("CT3031607.MCDetectTooltipShow", false);
Nalezeno : user_pref("CT3031607.MCDetectTooltipUrl", "hxxp://@EB_INSTALL_LINK@/rank/tooltip/?version=1");
Nalezeno : user_pref("CT3031607.MCDetectTooltipWidth", "295");
Nalezeno : user_pref("CT3031607.MyStuffEnabledAtInstallation", true);
Nalezeno : user_pref("CT3031607.OriginalFirstVersion", "3.6.0.10");
Nalezeno : user_pref("CT3031607.RadioIsPodcast", false);
Nalezeno : user_pref("CT3031607.RadioLastCheckTime", "Thu Aug 11 2011 19:46:55 GMT+0200");
Nalezeno : user_pref("CT3031607.RadioLastUpdateIPServer", "3");
Nalezeno : user_pref("CT3031607.RadioLastUpdateServer", "129524557143500000");
Nalezeno : user_pref("CT3031607.RadioMediaID", "21889800");
Nalezeno : user_pref("CT3031607.RadioMediaType", "Media Player");
Nalezeno : user_pref("CT3031607.RadioMenuSelectedID", "EBRadioMenu_CT303160721889800");
Nalezeno : user_pref("CT3031607.RadioShrinkedFromSetup", false);
Nalezeno : user_pref("CT3031607.RadioStationName", "California%20Rock%20-%20Rock");
Nalezeno : user_pref("CT3031607.RadioStationURL", "hxxp://www.feedlive.net/california.asx");
Nalezeno : user_pref("CT3031607.SHRINK_TOOLBAR", 1);
Nalezeno : user_pref("CT3031607.SavedHomepage", "hxxp://search.conduit.com/?ctid=CT2786678&SearchSource=13");
Nalezeno : user_pref("CT3031607.SearchFromAddressBarIsInit", true);
Nalezeno : user_pref("CT3031607.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT303[...]
Nalezeno : user_pref("CT3031607.SearchInNewTabEnabled", true);
Nalezeno : user_pref("CT3031607.SearchInNewTabIntervalMM", 1440);
Nalezeno : user_pref("CT3031607.SearchInNewTabLastCheckTime", "Thu Aug 11 2011 19:43:26 GMT+0200");
Nalezeno : user_pref("CT3031607.SearchInNewTabServiceUrl", "hxxp://newtab.conduit-hosting.com/newtab/?ctid=EB_T[...]
Nalezeno : user_pref("CT3031607.SearchInNewTabUsageUrl", "hxxp://Usage.Hosting.conduit-services.com/UsageServic[...]
Nalezeno : user_pref("CT3031607.ServiceMapLastCheckTime", "Thu Aug 11 2011 19:43:25 GMT+0200");
Nalezeno : user_pref("CT3031607.SettingsLastCheckTime", "Thu Aug 11 2011 19:46:55 GMT+0200");
Nalezeno : user_pref("CT3031607.SettingsLastUpdate", "1313017367");
Nalezeno : user_pref("CT3031607.ThirdPartyComponentsInterval", 504);
Nalezeno : user_pref("CT3031607.ThirdPartyComponentsLastCheck", "Thu Aug 11 2011 19:43:25 GMT+0200");
Nalezeno : user_pref("CT3031607.ThirdPartyComponentsLastUpdate", "1312887586");
Nalezeno : user_pref("CT3031607.ToolbarShrinkedFromSetup", false);
Nalezeno : user_pref("CT3031607.TrusteLinkUrl", "hxxp://trust.conduit.com/CT3031607");
Nalezeno : user_pref("CT3031607.TrustedApiDomains", "conduit.com,conduit-hosting.com,conduit-services.com,clien[...]
Nalezeno : user_pref("CT3031607.UserID", "UN29004294329264213");
Nalezeno : user_pref("CT3031607.ValidationData_Toolbar", 0);
Nalezeno : user_pref("CT3031607.alertChannelId", "1423186");
Nalezeno : user_pref("CT3031607.approveUntrustedApps", false);
Nalezeno : user_pref("CT3031607.components.129524450094515146", false);
Nalezeno : user_pref("CT3031607.components.129524450332752173", false);
Nalezeno : user_pref("CT3031607.components.129524509878872275", false);
Nalezeno : user_pref("CT3031607.components.129524510190414247", false);
Nalezeno : user_pref("CT3031607.components.129524513008329960", false);
Nalezeno : user_pref("CT3031607.components.129524513362106645", false);
Nalezeno : user_pref("CT3031607.components.129524513380649608", false);
Nalezeno : user_pref("CT3031607.components.129524513646404813", false);
Nalezeno : user_pref("CT3031607.components.129524513672164994", false);
Nalezeno : user_pref("CT3031607.components.129574556201361886", false);
Nalezeno : user_pref("CT3031607.components.129574556213383833", false);
Nalezeno : user_pref("CT3031607.components.129574556260543848", false);
Nalezeno : user_pref("CT3031607.generalConfigFromLogin", "{\"ApiMaxAlerts\":\"12\",\"SocialDomains\":\"social.c[...]
Nalezeno : user_pref("CT3031607.globalFirstTimeInfoLastCheckTime", "Thu Aug 11 2011 19:43:26 GMT+0200");
Nalezeno : user_pref("CT3031607.homepageProtectorEnableByLogin", true);
Nalezeno : user_pref("CT3031607.initDone", true);
Nalezeno : user_pref("CT3031607.isAppTrackingManagerOn", true);
Nalezeno : user_pref("CT3031607.isFirstRadioInstallation", false);
Nalezeno : user_pref("CT3031607.myStuffEnabled", true);
Nalezeno : user_pref("CT3031607.myStuffPublihserMinWidth", 400);
Nalezeno : user_pref("CT3031607.myStuffSearchUrl", "hxxp://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOr[...]
Nalezeno : user_pref("CT3031607.myStuffServiceIntervalMM", 1440);
Nalezeno : user_pref("CT3031607.myStuffServiceUrl", "hxxp://mystuff.conduit-services.com/MyStuffService.ashx?Co[...]
Nalezeno : user_pref("CT3031607.searchProtectorDialogDelayInSec", 10);
Nalezeno : user_pref("CT3031607.searchProtectorEnableByLogin", true);
Nalezeno : user_pref("CT3031607.testingCtid", "");
Nalezeno : user_pref("CT3031607.toolbarAppMetaDataLastCheckTime", "Thu Aug 11 2011 19:43:25 GMT+0200");
Nalezeno : user_pref("CT3031607.toolbarContextMenuLastCheckTime", "Thu Aug 11 2011 19:43:27 GMT+0200");
Nalezeno : user_pref("CT3031607.usagesFlag", 2);
Nalezeno : user_pref("CommunityToolbar.ConduitHomepagesList", "hxxp://search.conduit.com/?ctid=CT2786678&Search[...]
Nalezeno : user_pref("CommunityToolbar.ConduitSearchList", " ,SFT_eng7 Customized Web Search");
Nalezeno : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root ... 1174448/CZ", "\"0\"[...]
Nalezeno : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root ... 1418841/CZ", "\"0\"[...]
Nalezeno : user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-ser ... =CT2786678", [...]
Nalezeno : user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-ser ... =CT3031607", [...]
Nalezeno : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-serv ... tenApps&lo[...]
Nalezeno : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-serv ... erApps&loc[...]
Nalezeno : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-serv ... redApps&lo[...]
Nalezeno : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-serv ... lbar&local[...]
Nalezeno : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.alert.conduit-ser ... rt/dlg.pkg", "\[...]
Nalezeno : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-s ... kg?ver=3.5.[...]
Nalezeno : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-s ... kg?ver=3.6.[...]
Nalezeno : user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/ ... =CT2786678",[...]
Nalezeno : user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/ ... =CT3031607",[...]
Nalezeno : user_pref("CommunityToolbar.ETag.hxxp://settings.toolbar.conduit-service ... 678&octid=[...]
Nalezeno : user_pref("CommunityToolbar.ETag.hxxp://settings.toolbar.conduit-service ... 607&octid=[...]
Nalezeno : user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/R ... z/idel.gif", "[...]
Nalezeno : user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/R ... nimize.gif[...]
Nalezeno : user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/R ... z/play.gif", "[...]
Nalezeno : user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/R ... z/stop.gif", "[...]
Nalezeno : user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/R ... uz/vol.gif", "\[...]
Nalezeno : user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-serv ... ?locale=en", "\"634[...]
Nalezeno : user_pref("CommunityToolbar.LatestLibsPath", "file:///C:\\Users\\makro\\AppData\\Roaming\\Mozilla\\F[...]
Nalezeno : user_pref("CommunityToolbar.LatestToolbarVersionInstalled", "3.6.0.10");
Nalezeno : user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "");
Nalezeno : user_pref("CommunityToolbar.ToolbarsList", "CT2786678,CT3031607");
Nalezeno : user_pref("CommunityToolbar.ToolbarsList2", "CT2786678,CT3031607");
Nalezeno : user_pref("CommunityToolbar.ToolbarsList4", "CT2786678,CT3031607");
Nalezeno : user_pref("CommunityToolbar.facebook.settingsLastCheckTime", "Mon Jul 25 2011 20:23:50 GMT+0200");
Nalezeno : user_pref("CommunityToolbar.globalUserId", "f7995801-9654-4240-8257-7d44572c204d");
Nalezeno : user_pref("CommunityToolbar.isAlertUrlAddedToFeedItemTable", true);
Nalezeno : user_pref("CommunityToolbar.isClickActionAddedToFeedItemTable", true);
Nalezeno : user_pref("CommunityToolbar.keywordURLSelectedCTID", "CT3031607");
Nalezeno : user_pref("CommunityToolbar.notifications.alertDialogsGetterLastCheckTime", "Tue Aug 09 2011 07:36:1[...]
Nalezeno : user_pref("CommunityToolbar.notifications.alertInfoInterval", 60);
Nalezeno : user_pref("CommunityToolbar.notifications.alertInfoLastCheckTime", "Thu Aug 11 2011 19:46:55 GMT+020[...]
Nalezeno : user_pref("CommunityToolbar.notifications.clientsServerUrl", "hxxp://alert.client.conduit.com");
Nalezeno : user_pref("CommunityToolbar.notifications.locale", "en");
Nalezeno : user_pref("CommunityToolbar.notifications.loginIntervalMin", 1440);
Nalezeno : user_pref("CommunityToolbar.notifications.loginLastCheckTime", "Thu Aug 11 2011 08:21:21 GMT+0200");
Nalezeno : user_pref("CommunityToolbar.notifications.loginLastUpdateTime", "1305622559");
Nalezeno : user_pref("CommunityToolbar.notifications.messageShowTimeSec", 20);
Nalezeno : user_pref("CommunityToolbar.notifications.servicesServerUrl", "hxxp://alert.services.conduit.com");
Nalezeno : user_pref("CommunityToolbar.notifications.showTrayIcon", false);
Nalezeno : user_pref("CommunityToolbar.notifications.userCloseIntervalMin", 300);
Nalezeno : user_pref("CommunityToolbar.notifications.userId", "3af5988c-ef94-4074-8fea-66a65bcc5890");
Nalezeno : user_pref("browser.search.defaultenginename", "MyStart Search");
Nalezeno : user_pref("browser.search.defaultthis.engineName", "SFT_eng7 Customized Web Search");
Nalezeno : user_pref("browser.search.defaulturl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3031607&Sea[...]
Nalezeno : user_pref("browser.search.selectedEngine", "MyStart Search");
Nalezeno : user_pref("browser.startup.homepage", "hxxp://mystart.incredibar.com/mb174?a=6PQKeBueWz&i=26");
Nalezeno : user_pref("extensions.BabylonToolbar.admin", false);
Nalezeno : user_pref("extensions.BabylonToolbar.aflt", "babsst");
Nalezeno : user_pref("extensions.BabylonToolbar.dfltLng", "en");
Nalezeno : user_pref("extensions.BabylonToolbar.excTlbr", false);
Nalezeno : user_pref("extensions.BabylonToolbar.id", "243d75f400000000000070f395b1b0d3");
Nalezeno : user_pref("extensions.BabylonToolbar.instlDay", "15548");
Nalezeno : user_pref("extensions.BabylonToolbar.instlRef", "sst");
Nalezeno : user_pref("extensions.BabylonToolbar.prdct", "BabylonToolbar");
Nalezeno : user_pref("extensions.BabylonToolbar.prtnrId", "babylon");
Nalezeno : user_pref("extensions.BabylonToolbar.tlbrId", "base");
Nalezeno : user_pref("extensions.BabylonToolbar.tlbrSrchUrl", "hxxp://www.google.com/search?babsrc=TB_ggl&q=");
Nalezeno : user_pref("extensions.BabylonToolbar.vrsn", "1.5.29.1");
Nalezeno : user_pref("extensions.BabylonToolbar.vrsni", "1.5.29.1");
Nalezeno : user_pref("extensions.BabylonToolbar_i.babExt", "");
Nalezeno : user_pref("extensions.BabylonToolbar_i.babTrack", "affID=111881&tt=3012_3");
Nalezeno : user_pref("extensions.BabylonToolbar_i.smplGrp", "none");
Nalezeno : user_pref("extensions.BabylonToolbar_i.srcExt", "ss");
Nalezeno : user_pref("extensions.BabylonToolbar_i.vrsnTs", "1.5.29.116:07:54");
Nalezeno : user_pref("extensions.incredibar_i.aflt", "orgnl");
Nalezeno : user_pref("extensions.incredibar_i.dfltLng", "");
Nalezeno : user_pref("extensions.incredibar_i.did", "10671");
Nalezeno : user_pref("extensions.incredibar_i.excTlbr", false);
Nalezeno : user_pref("extensions.incredibar_i.id", "243d75f400000000000070f395b1b0d3");
Nalezeno : user_pref("extensions.incredibar_i.installerproductid", "26");
Nalezeno : user_pref("extensions.incredibar_i.instlDay", "15603");
Nalezeno : user_pref("extensions.incredibar_i.instlRef", "");
Nalezeno : user_pref("extensions.incredibar_i.ms_url_id", "");
Nalezeno : user_pref("extensions.incredibar_i.newTab", false);
Nalezeno : user_pref("extensions.incredibar_i.ppd", "77777208");
Nalezeno : user_pref("extensions.incredibar_i.prdct", "incredibar");
Nalezeno : user_pref("extensions.incredibar_i.productid", "26");
Nalezeno : user_pref("extensions.incredibar_i.prtnrId", "Incredibar");
Nalezeno : user_pref("extensions.incredibar_i.smplGrp", "none");
Nalezeno : user_pref("extensions.incredibar_i.tlbrId", "base");
Nalezeno : user_pref("extensions.incredibar_i.tlbrSrchUrl", "hxxp://mystart.Incredibar.com/?a=6PQKeBueWz&loc=IB[...]
Nalezeno : user_pref("extensions.incredibar_i.upn2", "6PQKeBueWz");
Nalezeno : user_pref("extensions.incredibar_i.upn2n", "92543614812562055");
Nalezeno : user_pref("extensions.incredibar_i.vrsn", "1.5.11.14");
Nalezeno : user_pref("extensions.incredibar_i.vrsnTs", "1.5.11.1418:36:19");
Nalezeno : user_pref("extensions.incredibar_i.vrsni", "1.5.11.14");
Nalezeno : user_pref("keyword.URL", "hxxp://mystart.incredibar.com/mb174/?loc=IB_DS&a=6PQKeBueWz&&i=26&search="[...]
Nalezeno : user_pref("sweetim.toolbar.highlight.colors", "#FFFF00,#00FFE4,#5AFF00,#0087FF,#FFCC00,#FF00F0");
Nalezeno : user_pref("sweetim.toolbar.logger.ConsoleHandler.MinReportLevel", "7");
Nalezeno : user_pref("sweetim.toolbar.logger.FileHandler.FileName", "ff-toolbar.log");
Nalezeno : user_pref("sweetim.toolbar.logger.FileHandler.MaxFileSize", "200000");
Nalezeno : user_pref("sweetim.toolbar.logger.FileHandler.MinReportLevel", "7");
Nalezeno : user_pref("sweetim.toolbar.mode.debug", "false");
Nalezeno : user_pref("sweetim.toolbar.previous.keyword.URL", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT[...]
Nalezeno : user_pref("sweetim.toolbar.search.external", "<?xml version=\"1.0\"?><TOOLBAR><EXTERNAL_SEARCH engin[...]
Nalezeno : user_pref("sweetim.toolbar.search.history.capacity", "10");
Nalezeno : user_pref("sweetim.toolbar.searchguard.enable", "true");
Nalezeno : user_pref("sweetim.toolbar.simapp_id", "{CC2E74D5-0642-11E1-AD4B-70F395D3B71B}");
Nalezeno : user_pref("browser.newtab.url", "hxxp://mystart.incredibar.com/mb174?a=6PQKeBueWz&loc=FF_NT");

-\\ Google Chrome v26.0.1410.43

Soubor : C:\Users\makro\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] Soubor je eistý.

*************************

AdwCleaner[R1].txt - [44042 octets] - [09/04/2013 14:36:05]

########## EOF - C:\AdwCleaner[R1].txt - [44103 octets] ##########

A ten malwarebytes mi píše toto. Run-time error "0" pak dám OK a vyskočí Run-time error"440" automation error

[jaro3]

Spusť znovu AdwCleaner (u Windows Vista či Windows7, klikni na AdwCleaner pravým a vyber „Spustit jako správce“
Klikni na „ Delete“
Program provede opravu, po automatickém restartu neukáže log (C:\AdwCleaner [S?].txt) , jeho obsah sem celý vlož.


Co Malwarebytes' Anti-Malware?

Stáhni si RogueKiller
32bit.:
http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe
64bit.:
http://www.sur-la-toile.com/RogueKiller ... lerX64.exe
na svojí plochu.
- Zavři všechny ostatní programy a prohlížeče.
- Pro OS Vista a win7 spusť program RogueKiller.exe jako správce , u XP poklepáním.
- počkej až skončí Prescan -vyhledávání škodlivých procesů.
- Zkontroluj , zda máš zaškrtnuto:
Kontrola MBR
Kontrola Faked
Antirootkit
-Potom klikni na „Prohledat“.
- Program skenuje procesy PC. Po proskenování klikni na „Zpráva“celý obsah logu sem zkopíruj.
Pokud je program blokován , zkus ho spustit několikrát. Pokud dále program nepůjde spustit a pracovat, přejmenuj ho na winlogon.exe.

[Wellar]

A ten malwarebytes mi píše toto. Run-time error "0" pak dám OK a vyskočí Run-time error"440" automation error

RogueKiller V8.5.4 _x64_ [Mar 18 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.geekstogo.com/forum/files/fi ... guekiller/
Webové stránky : http://tigzy.geekstogo.com/roguekiller.php
: http://tigzyrk.blogspot.com/

Operační systém : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno v : Normální režim
Uživatel : makro [Práva správce]
Mód : Kontrola -- Datum : 04/09/2013 20:17:29
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 7 ¤¤¤
[TASK][SUSP PATH] {14264F1B-85D9-41AB-B342-671295FCC8C7} : C:\Users\makro\Desktop\Nová složka\samp-server.exe [x] -> NALEZENO
[TASK][SUSP PATH] {8550C08D-87FA-4D97-8903-481ED26B7A0C} : C:\Users\makro\Desktop\Nová složka\samp-server.exe [x] -> NALEZENO
[TASK][SUSP PATH] {F8468215-2968-47BA-94E3-59613861EB9A} : C:\Users\makro\Desktop\Nová složka\samp-server.exe [x] -> NALEZENO
[HJ] HKLM\[...]\System : ConsentPromptBehaviorAdmin (0) -> NALEZENO
[HJ] HKLM\[...]\Wow6432Node\System : ConsentPromptBehaviorAdmin (0) -> NALEZENO
[HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NALEZENO
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NALEZENO

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač : [NENAHRÁNO] ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> C:\Windows\system32\drivers\etc\hosts



¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: WDC WD50 00BEVT-60A0RT0 SATA Disk Device +++++
--- User ---
[MBR] e53766b047c40806e4a691e0b8ae16e1
[BSP] dca0a32981a381ad7203c4c66460b380 : Windows Vista/7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 199 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 409600 | Size: 459903 Mo
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 942290944 | Size: 16733 Mo
3 - [XXXXXX] FAT32-LBA (0x0c) [VISIBLE] Offset (sectors): 976560128 | Size: 103 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Dokončeno : << RKreport[1]_S_04092013_02d2017.txt >>
RKreport[1]_S_04092013_02d2017.txt

[memphisto]

Spusť RogueKiller ( Pro Windows Vista nebo Windows 7, klepni pravým a vyber "Spustit jako správce", ve Windows XP poklepej ke spuštění).
- Počkej, až Prescan dokončí práci...
- Počkej, dokud status okno zobrazuje "Prohledat "

- Klikni na "Smazat"
- Počkej, dokud Status box zobrazuje "Smazání- Finished "
- Klikni na "Zprávy " a zkopíruj a vlož obsah té zprávy prosím sem. Log je možno nalézt v RKreport [číslo]. txt na ploše.
- Zavři RogueKiller

[Wellar]

RogueKiller V8.5.4 _x64_ [Mar 18 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.geekstogo.com/forum/files/fi ... guekiller/
Webové stránky : http://tigzy.geekstogo.com/roguekiller.php
: http://tigzyrk.blogspot.com/

Operační systém : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno v : Normální režim
Uživatel : makro [Práva správce]
Mód : Odebrat -- Datum : 04/10/2013 06:53:58
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 0 ¤¤¤

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač : [NENAHRÁNO] ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> C:\Windows\system32\drivers\etc\hosts



¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: WDC WD50 00BEVT-60A0RT0 SATA Disk Device +++++
--- User ---
[MBR] e53766b047c40806e4a691e0b8ae16e1
[BSP] dca0a32981a381ad7203c4c66460b380 : Windows Vista/7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 199 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 409600 | Size: 459903 Mo
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 942290944 | Size: 16733 Mo
3 - [XXXXXX] FAT32-LBA (0x0c) [VISIBLE] Offset (sectors): 976560128 | Size: 103 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Dokončeno : << RKreport[5]_D_04102013_02d0653.txt >>
RKreport[1]_S_04092013_02d2017.txt ; RKreport[2]_S_04102013_02d0649.txt ; RKreport[3]_D_04102013_02d0651.txt ; RKreport[4]_D_04102013_02d0652.txt ; RKreport[5]_D_04102013_02d0653.txt