VIRY.CZ

Prosím o kontrolu logu, dikes

Logfile of random's system information tool 1.10 (written by random/random)
Run by Admin at 2015-04-19 19:21:37
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 155 GB (33%) free of 477 GB
Total RAM: 2044 MB (31% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:21:44, on 19.4.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16537)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Users\Admin\AppData\Roaming\uTorrent\uTorrent.exe
C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin
C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCU.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_17_0_0_169.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_17_0_0_169.exe
C:\Program Files\trend micro\Admin.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.mystartsearch.com/?type=hp&t ... J90Z884224
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.mystartsearch.com/web/?type= ... earchTerms}
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.mystartsearch.com/web/?type= ... earchTerms}
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.mystartsearch.com/?type=hp&t ... J90Z884224
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.mystartsearch.com/web/?type= ... earchTerms}
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.mystartsearch.com/web/?type= ... earchTerms}
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.mystartsearch.com/?type=hp&t ... J90Z884224
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: SearchHook Class - {BC86E1AB-EDA5-4059-938F-CE307B0C6F0A} - C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\AddressBarSearch.dll
R3 - URLSearchHook: (no name) - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - (no file)
R3 - URLSearchHook: (no name) - {687578b9-7132-4a7a-80e4-30ee31099e03} - (no file)
F2 - REG:system.ini: UserInit=userinit.exe
O4 - HKLM\..\Run: [BCU] "C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCU.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [iTV] C:\Program Files (x86)\iTV\iTV.exe
O4 - HKCU\..\Run: [ISUSPM Startup] C:\PROGRA~2\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe -startup
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [uTorrent] "C:\Users\Admin\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: Download Fifty Shades of Grey 2015 HC HDRip XviD AC3-EVO Torrent - KickassTorrents.lnk = C:\ProgramData\{593b2e17-7b8c-8c9a-593b-b2e177b8b85d}\Download Fifty Shades of Grey 2015 HC HDRip XviD AC3-EVO Torrent - KickassTorrents.exe
O4 - Startup: OpenOffice.org 3.2.lnk = C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~2\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Translate this web page with Babylon - res://C:\Program Files (x86)\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll/ActionTU.htm
O8 - Extra context menu item: Translate with Babylon - res://C:\Program Files (x86)\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll/Action.htm
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~2\OFFICE11\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA} (Java Runtime Environment 1.6.0) -
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AppleChargerSrv - Unknown owner - C:\Windows\system32\AppleChargerSrv.exe (file missing)
O23 - Service: Browser Configuration Utility Service (BCUService) - DeviceVM, Inc. - C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCUService.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 9959 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Windows\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\Windows\system32\svchost.exe -k RPCSS
"c:\Program Files\Microsoft Security Client\MsMpEng.exe"
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs

C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Windows\system32\rundll32.exe" "c:\Program Files (x86)\TurboSys\TurboSys.dll",serv
"C:\Windows\system32\rundll32.exe" "c:\Program Files (x86)\TurboSys\TurboSys.dll",serv
"taskhost.exe"
taskeng.exe {1242E720-0878-4A76-8FFF-FB24FA4422C8}
taskeng.exe {720DC7A4-7B45-4EA4-90D8-D17167566703}
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
"C:\Users\Admin\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED
"C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe" -quickstart
"C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe" "-quickstart" "-env:OOO_CWD=2C:\\Program Files (x86)\\OpenOffice.org 3\\program"
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCU.exe"
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCUService.exe"
"C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
WLIDSvcM.exe 2880
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-e21c6b4f-595a-4bc9-b837-c0ea8c9b4e14 -SystemEventPortName:HostProcess-569e2f84-ec61-40ee-893f-cb7af63a87bb -IoCancelEventPortName:HostProcess-4e364aaa-df91-4ba7-8c49-f1f0a0e00510 -NonStateChangingEventPortName:HostProcess-719d446a-2713-4a7d-9881-f71b6f5165b0 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:430c06ae-509c-4f9d-bb94-a50da5b1f70e -DeviceGroupId:WpdFsGroup
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe" --channel=3844.1c6fe010.281595082 "C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_169.dll" -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" E7CF176E110C211B 3844 "\\.\pipe\gecko-crash-server-pipe.3844" plugin
"C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_17_0_0_169.exe" --proxy-stub-channel=Flash3800.6CC1BE28.23941 --host-broker-channel=Flash3800.6CC1BE28.11622 --host-pid=3800 --host-npapi-version=28 --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_169.dll"
"C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_17_0_0_169.exe" --channel=3952.0040F68C.1525742700 --proxy-stub-channel=Flash3800.6CC1BE28.23941 --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_169.dll" --host-npapi-version=28 --type=renderer
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\sppsvc.exe
"C:\Windows\system32\SearchFilterHost.exe" 0 516 520 528 65536 524
"C:\Users\Admin\Desktop\RSITx64.exe"

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

=========Mozilla firefox=========

ProfilePath - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\sdqeomst.default

prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "www.seznam.cz"
prefs.js - "extensions.enabledItems" - "{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}:6.0.16, {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23, bkmrksync@nokia.com:1.0.0.736, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.16"
prefs.js - "keyword.URL" - "http://search.babylon.com/?affID=112555 ... 9d6685e&q="

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 17.0.0.169 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_169.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@google.com/npPicasa3,version=3.0.0]
"Description"=Picasa3 plugin
"Path"=C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.71.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.71.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@veetle.com/veetleCorePlugin,version=0.9.19]
"Description"=Veetle TV Core
"Path"=C:\Program Files (x86)\Veetle\plugins\npVeetle.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@veetle.com/veetlePlayerPlugin,version=0.9.18]
"Description"=Veetle TV Player
"Path"=C:\Program Files (x86)\Veetle\Player\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 17.0.0.169 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_17_0_0_169.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll

C:\Program Files (x86)\Mozilla Firefox\extensions\
{AB2CE124-6272-4b12-94A9-7303C7397BD1}
{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA}

C:\Program Files (x86)\Mozilla Firefox\components\
nsIQTScriptablePlugin.xpt

C:\Program Files (x86)\Mozilla Firefox\plugins\
NPOFFICE.DLL
nppdf32.dll
npqtplugin.dll
npqtplugin2.dll
npqtplugin3.dll
npqtplugin4.dll
npqtplugin5.dll
npqtplugin6.dll
npqtplugin7.dll
QuickTimePlugin.class

C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\sdqeomst.default\extensions\
1SIu@D18w.edu
ffxtlbr@babylon.com
FUX@Z1xX.com
kpyadhpqbzaqdwiknsk@aneshoqfmzymtbd.org
Mwj@yd.net
plugin2@gameplaylabs.com
SCJ@U.org
searchengine@gmail.com
{687578b9-7132-4a7a-80e4-30ee31099e03}

C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\sdqeomst.default\searchplugins\
askcom.xml
WebSearch.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2010-07-28 11101800]
"MSC"=c:\Program Files\Microsoft Security Client\msseces.exe [2015-01-30 1332296]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1475584]
"iTV"=C:\Program Files (x86)\iTV\iTV.exe []
"ISUSPM Startup"=C:\PROGRA~2\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe [2005-02-17 221184]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2013-01-08 18705664]
"uTorrent"=C:\Users\Admin\AppData\Roaming\uTorrent\uTorrent.exe [2015-03-26 1442384]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"BCU"=C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCU.exe [2009-10-15 375000]
"QuickTime Task"=C:\Program Files (x86)\QuickTime\QTTask.exe [2012-04-18 421888]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2014-09-26 271744]

C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Download Fifty Shades of Grey 2015 HC HDRip XviD AC3-EVO Torrent - KickassTorrents.lnk - C:\ProgramData\{593b2e17-7b8c-8c9a-593b-b2e177b8b85d}\Download Fifty Shades of Grey 2015 HC HDRip XviD AC3-EVO Torrent - KickassTorrents.exe
OpenOffice.org 3.2.lnk - C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=" "

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.FFDS"=ff_vfw.dll
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-04-19 19:21:37 ----D---- C:\rsit
2015-04-19 19:21:37 ----D---- C:\Program Files\trend micro
2015-04-16 17:01:19 ----A---- C:\Program Files (x86)\prefs.js
2015-04-12 09:27:45 ----D---- C:\Program Files (x86)\Mozilla Firefox
2015-04-06 16:43:12 ----D---- C:\Program Files (x86)\StatFoobar
2015-04-06 16:41:47 ----D---- C:\ProgramData\nickpfcigmlmpcghgelnchlmcpkaoeeb
2015-04-06 16:40:51 ----D---- C:\ProgramData\{29c872c0-6887-044a-29c8-872c0688cb01}
2015-04-05 12:25:06 ----D---- C:\Program Files (x86)\Scroll Marker
2015-04-05 12:24:43 ----A---- C:\Windows\system32\drivers\nqycsmme.sys
2015-04-05 12:24:24 ----D---- C:\Program Files (x86)\SSaveREExtEnsiaon
2015-04-05 12:23:51 ----D---- C:\Program Files (x86)\SaaveNewaAuPpz
2015-04-03 16:50:30 ----D---- C:\ProgramData\NoMore Ads
2015-03-29 15:10:39 ----D---- C:\Program Files (x86)\TurboSys
2015-03-29 15:09:56 ----D---- C:\Program Files (x86)\Calculator
2015-03-29 15:09:34 ----D---- C:\Program Files (x86)\youtubeadblocker
2015-03-29 15:08:47 ----D---- C:\ProgramData\2629953255554636141
2015-03-29 15:08:46 ----D---- C:\Program Files (x86)\SALePlus
2015-03-29 15:08:30 ----D---- C:\ProgramData\idlilolhkecdkaahdgnlmhmannicmged
2015-03-29 15:07:43 ----D---- C:\ProgramData\{593b2e17-7b8c-8c9a-593b-b2e177b8b85d}

======List of files/folders modified in the last 1 month======

2015-04-19 19:21:44 ----D---- C:\Windows\Prefetch
2015-04-19 19:21:37 ----RD---- C:\Program Files
2015-04-19 19:20:13 ----D---- C:\Users\Admin\AppData\Roaming\uTorrent
2015-04-19 19:20:04 ----SD---- C:\Users\Admin\AppData\Roaming\Microsoft
2015-04-19 19:17:51 ----D---- C:\ProgramData\NVIDIA
2015-04-19 19:09:06 ----D---- C:\Windows\Temp
2015-04-19 12:22:41 ----D---- C:\Windows\System32
2015-04-19 12:22:41 ----D---- C:\Windows\inf
2015-04-19 12:22:41 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-04-17 17:18:33 ----D---- C:\Windows\Minidump
2015-04-17 17:18:27 ----D---- C:\Windows
2015-04-16 17:01:19 ----RD---- C:\Program Files (x86)
2015-04-15 16:44:51 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2015-04-14 21:51:31 ----D---- C:\Windows\SysWOW64
2015-04-14 17:36:40 ----D---- C:\Windows\system32\config
2015-04-14 17:24:04 ----SHD---- C:\System Volume Information
2015-04-12 12:05:08 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2015-04-12 08:58:27 ----D---- C:\Windows\Tasks
2015-04-12 08:58:27 ----D---- C:\Windows\system32\wfp
2015-04-12 08:58:27 ----D---- C:\Windows\system32\wbem
2015-04-12 08:58:27 ----D---- C:\Windows\system32\Tasks
2015-04-12 08:58:27 ----D---- C:\Windows\system32\DriverStore
2015-04-12 08:58:27 ----D---- C:\Windows\system32\drivers
2015-04-12 08:58:27 ----D---- C:\Windows\system32\catroot2
2015-04-12 08:58:26 ----D---- C:\Windows\AppCompat
2015-04-12 08:58:23 ----D---- C:\Windows\registration
2015-04-12 08:58:15 ----HD---- C:\ProgramData
2015-04-12 08:55:59 ----D---- C:\Windows\system32\LogFiles

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 AtiPcie;AMD PCI Express (3GIO) Filter; C:\Windows\system32\DRIVERS\AtiPcie.sys [2009-05-05 16440]
R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2014-11-15 274696]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R1 AppleCharger;AppleCharger; C:\Windows\system32\DRIVERS\AppleCharger.sys [2010-04-27 21544]
R2 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2014-11-15 124560]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2010-07-28 2445672]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2012-07-03 189288]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2010-03-22 347680]
R3 usbfilter;AMD USB Filter Driver; C:\Windows\system32\DRIVERS\usbfilter.sys [2009-12-22 38456]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 gdrv;gdrv; \??\C:\Windows\gdrv.sys []
S3 ggflt;SEMC USB Flash Driver Filter; C:\Windows\system32\DRIVERS\ggflt.sys [2012-01-27 13352]
S3 ggsemc;SEMC USB Flash Driver; C:\Windows\system32\DRIVERS\ggsemc.sys [2012-01-27 27176]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfdx64.sys []
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2010-11-20 32768]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-12-19 81088]
R2 BCUService;Browser Configuration Utility Service; C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCUService.exe [2009-10-15 223464]
R2 MDM;Machine Debug Manager; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-20 322120]
R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\MsMpEng.exe [2015-01-30 23784]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2013-01-18 884512]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2013-01-18 383264]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2009-08-18 2291568]
S2 165c96fd;TurboSys; C:\Windows\syswow64\rundll32.exe [2009-07-14 44544]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-24 107912]
S2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-12-03 1259880]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-01-08 161536]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-04-15 268464]
S3 AppleChargerSrv;AppleChargerSrv; C:\Windows\system32\AppleChargerSrv.exe [2010-04-06 31272]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-24 107912]
S3 gusvc;Google Updater Service; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2010-06-11 136120]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2015-04-12 148080]
S3 NisSrv;@c:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; c:\Program Files\Microsoft Security Client\NisSrv.exe [2015-01-30 366512]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2010-12-09 1255736]

-----------------EOF-----------------

Zdravím!
Spusťte tuto utilitu:

Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.

# AdwCleaner v4.201 - Log vytvořen 19/04/2015 v 21:55:22
# Aktualizováno 08/04/2015 by Xplode
# Databáze : 2015-04-19.4 [Server]
# Operační system : Windows 7 Home Premium Service Pack 1 (x64)
# Uživatelské jméno : Admin - ADMIN-PC
# Spuštěno z : C:\Users\Admin\Desktop\adwcleaner_4.201.exe
# Nastavení : Čištění

***** [ Služby ] *****

[#] Služba Smazáno : BCUService
[#] Služba Smazáno : 165c96fd

***** [ Soubory / Složky ] *****

Složka Smazáno : C:\ProgramData\Babylon
Složka Smazáno : C:\ProgramData\Uniblue
Složka Smazáno : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zrychleni Pocitace
Složka Smazáno : C:\Program Files (x86)\Babylon
Složka Smazáno : C:\Program Files (x86)\Conduit
Složka Smazáno : C:\Program Files (x86)\DeviceVM
Složka Smazáno : C:\Program Files (x86)\SaaveNewaAuPpz
Složka Smazáno : C:\Program Files (x86)\SALePlus
Složka Smazáno : C:\Program Files (x86)\SSaveREExtEnsiaon
Složka Smazáno : C:\Program Files (x86)\youtubeadblocker
Složka Smazáno : C:\Program Files\Zrychleni Pocitace
Složka Smazáno : C:\Users\Admin\AppData\Local\apn
Složka Smazáno : C:\Users\Admin\AppData\Local\Conduit
Složka Smazáno : C:\Users\Admin\AppData\Local\GamePlayLabs Plugin
Složka Smazáno : C:\Users\Admin\AppData\Local\OpenCandy
Složka Smazáno : C:\Users\Admin\AppData\LocalLow\AskToolbar
Složka Smazáno : C:\Users\Admin\AppData\LocalLow\Conduit
Složka Smazáno : C:\Users\Admin\AppData\Roaming\Babylon
Složka Smazáno : C:\Users\Admin\AppData\Roaming\OpenCandy
Složka Smazáno : C:\Users\Admin\AppData\Roaming\YourFileDownloader
Složka Smazáno : C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\sdqeomst.default\Extensions\ffxtlbr@babylon.com
[!] Složka Smazáno : C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\sdqeomst.default\Extensions\fhdp@fhdp.tv.xpi
Složka Smazáno : C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\sdqeomst.default\Extensions\searchengine@gmail.com
Složka Smazáno : C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\sdqeomst.default\Extensions\1SIu@D18w.edu
Složka Smazáno : C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\sdqeomst.default\Extensions\FUX@Z1xX.com
Složka Smazáno : C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\sdqeomst.default\Extensions\Mwj@yd.net
Složka Smazáno : C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\sdqeomst.default\Extensions\SCJ@U.org
Složka Smazáno : C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\sdqeomst.default\Extensions\{687578b9-7132-4a7a-80e4-30ee31099e03}
Složka Smazáno : C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\kkfggacklibaabdomphfdpcodjgihgon
Složka Smazáno : C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ocphobfcfafpclibolpjdafgaffkaoci
Složka Smazáno : C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pacgpkgadgmibnhpdidcnfafllnmeomc
Soubor Smazáno : C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ocphobfcfafpclibolpjdafgaffkaoci_0.localstorage
Soubor Smazáno : C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\sdqeomst.default\searchplugins\Askcom.xml
Soubor Smazáno : C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\sdqeomst.default\searchplugins\WebSearch.xml

***** [ Naplánované úlohy ] *****

Úloha Smazáno : Your File Updater

***** [ Zástupci ] *****

***** [ Registry ] *****

Hodnota Smazáno : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [searchengine@gmail.com]
Klíč Smazáno : HKLM\SOFTWARE\Google\Chrome\Extensions\kkfggacklibaabdomphfdpcodjgihgon
Klíč Smazáno : HKLM\SOFTWARE\Google\Chrome\Extensions\ocphobfcfafpclibolpjdafgaffkaoci
Klíč Smazáno : HKCU\Software\Google\Chrome\Extensions\pacgpkgadgmibnhpdidcnfafllnmeomc
Klíč Smazáno : HKLM\SOFTWARE\Google\Chrome\Extensions\pacgpkgadgmibnhpdidcnfafllnmeomc
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\MenuExt\Translate this web page with Babylon
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\MenuExt\Translate with Babylon
Klíč Smazáno : HKLM\SOFTWARE\Classes\AddressBarSearch.SearchHook
Klíč Smazáno : HKLM\SOFTWARE\Classes\AddressBarSearch.SearchHook.1
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\BabylonHelper.EXE
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\BHO.DLL
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\escort.DLL
Klíč Smazáno : HKLM\SOFTWARE\Classes\BabyDict
Klíč Smazáno : HKLM\SOFTWARE\Classes\BabyGloss
Klíč Smazáno : HKLM\SOFTWARE\Classes\BabyOptFile
Klíč Smazáno : HKLM\SOFTWARE\Classes\bbylntlbr.bbylntlbrHlpr
Klíč Smazáno : HKLM\SOFTWARE\Classes\bbylntlbr.bbylntlbrHlpr.1
Klíč Smazáno : HKLM\SOFTWARE\Classes\Conduit.Engine
Klíč Smazáno : HKLM\SOFTWARE\Classes\driverscanner
Klíč Smazáno : HKLM\SOFTWARE\Classes\Prod.cap
Hodnota Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [BCU]
Klíč Smazáno : HKCU\Software\Mozilla\Extends
Klíč Smazáno : HKLM\SOFTWARE\e55add5b-febf-2be6-5195-8ff83711ce5a
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}{165c96fd}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Toolbar.CT2294690
Klíč Smazáno : HKLM\SOFTWARE\Classes\Toolbar.CT2786678
Klíč Smazáno : HKLM\SOFTWARE\Classes\Toolbar.CT3072253
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\{6536801B-F50C-449B-9476-093DFD3789E3}
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\{65C994A2-C65A-4A20-BA92-AADAFC0DCE49}
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\{C007DADD-132A-624C-088E-59EE6CF0711F}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{2EECD738-5844-4A99-B4B6-146BF802613B}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{E46C8196-B634-44A1-AF6E-957C64278AB1}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{8E7AD93B-3E87-423D-947F-A321FA7E31C4}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{77AA6435-2488-4A94-9FE5-49519DD2ED9B}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{10F67E56-58A9-4A52-A48A-A28A75FF9FBB}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{318C7F13-3498-459E-BF35-12865E6D005C}
Hodnota Smazáno : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Hodnota Smazáno : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{687578B9-7132-4A7A-80E4-30EE31099E03}]
Hodnota Smazáno : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}]
Klíč Smazáno : [x64] HKLM\SOFTWARE\Classes\CLSID\{64B00DAC-870D-4E6A-8D34-3A6E3E427A30}
Klíč Smazáno : [x64] HKLM\SOFTWARE\Classes\Interface\{8E7AD93B-3E87-423D-947F-A321FA7E31C4}
Klíč Smazáno : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Klíč Smazáno : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40B7-AC73-056A5EBA4A7E}
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}
Klíč Smazáno : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Klíč Smazáno : HKCU\Software\1ClickDownload
Klíč Smazáno : HKCU\Software\APN PIP
Klíč Smazáno : HKCU\Software\Babylon
Klíč Smazáno : HKCU\Software\Conduit
Klíč Smazáno : HKCU\Software\DeviceVM
Klíč Smazáno : HKCU\Software\GamePlayLabs
Klíč Smazáno : HKCU\Software\HomeTab
Klíč Smazáno : HKCU\Software\simplytech
Klíč Smazáno : HKCU\Software\Softonic
Klíč Smazáno : HKCU\Software\Speedchecker Limited
Klíč Smazáno : HKCU\Software\YahooPartnerToolbar
Klíč Smazáno : HKCU\Software\YourFileDownloader
Klíč Smazáno : HKCU\Software\TNT2
Klíč Smazáno : HKCU\Software\WajIntEnhance
Klíč Smazáno : HKCU\Software\SearchProtectWS
Klíč Smazáno : HKCU\Software\Local AppWizard-Generated Applications
Klíč Smazáno : HKCU\Software\AppDataLow\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}
Klíč Smazáno : HKCU\Software\AppDataLow\Software\ConduitSearchScopes
Klíč Smazáno : HKLM\SOFTWARE\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
Klíč Smazáno : HKLM\SOFTWARE\AskPartnerNetwork
Klíč Smazáno : HKLM\SOFTWARE\Babylon
Klíč Smazáno : HKLM\SOFTWARE\BabylonToolbar
Klíč Smazáno : HKLM\SOFTWARE\Conduit
Klíč Smazáno : HKLM\SOFTWARE\DeviceVM
Klíč Smazáno : HKLM\SOFTWARE\Iminent
Klíč Smazáno : HKLM\SOFTWARE\PIP
Klíč Smazáno : HKLM\SOFTWARE\SearchProtect
Klíč Smazáno : HKLM\SOFTWARE\Uniblue
Klíč Smazáno : HKLM\SOFTWARE\YourFileDownloader
Klíč Smazáno : HKLM\SOFTWARE\mystartsearchSoftware
Klíč Smazáno : HKLM\SOFTWARE\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}
Klíč Smazáno : HKLM\SOFTWARE\{12A61307-94CD-4F8E-94BC-918E511FAA81}
Klíč Smazáno : HKLM\SOFTWARE\WajIntEnhance
Klíč Smazáno : HKLM\SOFTWARE\SpeedBit
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\IMBoosterARP
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\IminentToolbar
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\WajIntEnhance
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Vosteran.com
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{4820778D-AB0D-6D18-C316-52A6A0E1D507}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\1ClickDownload
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\IMBoosterARP
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\IminentToolbar
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{37476589-E48E-439E-A706-56189E2ED4C4}_is1
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WajIntEnhance
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Vosteran.com
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{AD11DADE-C597-45D9-D8C5-1D2EB0B89613}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{B696F285-F54E-2524-58B1-E06A70ABE6BE}

***** [ Prohlížeče ] *****

-\\ Internet Explorer v10.0.9200.16537

Nastavení Obnoveno : HKCU\Software\Microsoft\Internet Explorer\Main [Search Page]
Nastavení Obnoveno : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Search_URL]
Nastavení Obnoveno : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Page_URL]
Nastavení Obnoveno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
Nastavení Obnoveno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
Nastavení Obnoveno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
Nastavení Obnoveno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]
Nastavení Obnoveno : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
Nastavení Obnoveno : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
Nastavení Obnoveno : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
Nastavení Obnoveno : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]

-\\ Mozilla Firefox v37.0.1 (x86 cs)

[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("CT3072253..clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.asmx/ReportDiagnosticsEvent");
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("CT3072253..uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/RegisterToolbarUninstallation");
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("CT3072253.AboutPrivacyUrl", "hxxp://www.conduit.com/privacy/Default.aspx");
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("CT3072253.CT3072253.lastNewTabSettings", "{\"isEnabled\":false,\"newTabUrl\":\"hxxp://search.conduit.com/?ctid=CT3072253&octid=CT3072253&SearchSource=15&CUI=SB_CUI&SSPV=EB_SSPV&Lay=1&UM=UM_[...]
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("CT3072253.GroupingServiceUrl", "hxxp://grouping.services.conduit.com/");
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("CT3072253.LanguagePackServiceUrl", "hxxp://translation.users.conduit.com/Translation.ashx");
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("CT3072253.SearchCaption", "uTorrentControl2 Customized Web Search");
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("CT3072253.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3072253&SearchSource=2&q=");
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("CT3072253.SearchInNewTabServiceUrl", "hxxp://newtab.conduit-hosting.com/newtab/?ctid=EB_TOOLBAR_ID&UM=UM_ID");
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("CT3072253.SearchInNewTabURLFromSearchAPI", "hxxp://search.conduit.com/?ctid=CT3072253&octid=CT3072253&SearchSource=15&CUI=SB_CUI&SSPV=EB_SSPV&Lay=1&UM=UM_ID");
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("CT3072253.TBHomePageUrl", "hxxp://search.conduit.com/?ctid=CT3072253&SearchSource=13");
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("CT3072253.TrustedApiDomains", "conduit.com,conduit-hosting.com,conduit-services.com,client.conduit-storage.com,OurToolbar.com,CommunityToolbars.com,ForumToolbar.com,MyBlogToolbar.com,MyCity[...]
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("CT3072253.generalConfigFromLogin", "{\"ApiMaxAlerts\":\"12\",\"SocialDomains\":\"social.conduit.com;apps.conduit.com;services.apps.conduit.com\",\"AppsDetectionUrlPattern\":\"hxxp://appdown[...]
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("CT3072253.isPerformedSmartBarTransition", "true");
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("CT3072253.lastNewTabSettings", "{\"isEnabled\":false,\"newTabUrl\":\"hxxp://search.conduit.com/?ctid=CT3072253&octid=CT3072253&SearchSource=15&CUI=UN67668652647298882&SSPV=&Lay=1&UM=\"}");
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("CT3072253.myStuffSearchUrl", "hxxp://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOrigin=29&ctid=EB_TOOLBAR_ID&octid=EB_ORIGINAL_CTID");
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("CT3072253.myStuffServiceUrl", "hxxp://mystuff.conduit-services.com/MyStuffService.ashx?ComponentId=EB_MY_STUFF_INSTANCE_GUID&lut=EB_MY_STUFF_LUT");
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("CT3072253.originalSearchAddressUrl", "hxxp://search.babylon.com/?babsrc=SP_&q={searchTerms}&mntrId=70be2e130000000000006cf049d6685e&tlver=1.4.35.10&&babsrc=SP_FFUP");
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("CT3072253.smartbar.CTID", "CT3072253");
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("CT3072253.smartbar.Uninstall", "0");
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("CT3072253.smartbar.toolbarName", "uTorrentControl2 ");
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.ETag.hxxp://Settings.toolbar.search.conduit.com/root/CT3072253/CT3072253", "\"1602f3caa785c108c3cc12e4d4609b4d3\"");
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-services.com/?ctid=CT3072253", "\"1362324308\"");
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=GottenApps&locale=en", "m4Df43NZ+9lr21ZNdyYrjA==");
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=OtherApps&locale=en", "B8Px/Te74hi98N2hb9yOAQ==");
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=SharedApps&locale=en", "bM8wQLfFAEKgVLVF/G5zig==");
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=Toolbar&locale=en", "9zRvKErdMb8hJOq85ft5Vg==");
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.alert.conduit-services.com/alert/dlg.pkg", "\"8076e3ce381dcd1:0\"");
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.12.0.8", "\"4ead38b3e6bcd1:0\"");
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.12.2.3", "\"4ead38b3e6bcd1:0\"");
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.13.0.6", "\"0d648794549cd1:0\"");
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.14.1.0", "\"0e0a4327275cd1:0\"");
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.15.1.0", "\"0343677cfb1cd1:0\"");
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.16.0.3", "\"0343677cfb1cd1:0\"");
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.18.0.7", "\"0343677cfb1cd1:0\"");
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.19.0.3", "\"97e416bb586ce1:0\"");
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.20.0.4", "\"9f8d2729abc2ce1:0\"");
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/Toolbar/?ownerId=CT3072253", "\"07766f5592f76b152ec9246ce6a0b574\"");
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-services.com/?locale=en", "\"968402cf2834e7ec0f38a19f0e9a9eb0\"");
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.LatestLibsPath", "file:///C:\\Users\\Admin\\AppData\\Roaming\\Mozilla\\Firefox\\Profiles\\sdqeomst.default\\conduitCommon\\modules\\3.12.2.3");
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.LatestToolbarVersionInstalled", "3.12.2.3");
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "hxxp://search.babylon.com/?babsrc=SP_&q={searchTerms}&mntrId=70be2e130000000000006cf049d6685e&tlver=1.4.35.10&&babsrc=SP_FFUP");
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.ToolbarsList", "CT3072253");
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.ToolbarsList2", "CT3072253");
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.ToolbarsList4", "CT3072253");
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.globalUserId", "cdb409de-d688-40d0-a23f-f30162ea3bdd");
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.isAlertUrlAddedToFeedItemTable", true);
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.isClickActionAddedToFeedItemTable", true);
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.notifications.alertDialogsGetterLastCheckTime", "Sun May 06 2012 11:04:40 GMT+0200");
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.notifications.alertEnabled", false);
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.notifications.clientsServerUrl", "hxxp://alert.client.conduit.com");
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.notifications.locale", "en");
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.notifications.loginIntervalMin", 1440);
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.notifications.loginLastCheckTime", "Mon May 07 2012 17:44:44 GMT+0200");
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.notifications.loginLastUpdateTime", "1313487611");
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.notifications.messageShowTimeSec", 20);
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.notifications.servicesServerUrl", "hxxp://alert.services.conduit.com");
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.notifications.showTrayIcon", false);
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.notifications.userCloseIntervalMin", 300);
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.notifications.userId", "52182b2b-d299-43c2-8126-a26fefeccf02");
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.originalHomepage", "hxxp://www.seznam.cz/");
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.originalSearchEngine", "Google");
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("Smartbar.SearchFromAddressBarSavedUrl", "hxxp://search.babylon.com/?babsrc=SP_&q={searchTerms}&mntrId=70be2e130000000000006cf049d6685e&tlver=1.4.35.10&&babsrc=SP_FFUP");
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("browser.babylon.HPOnNewTab", "search.babylon.com");
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("browser.newtab.url", "hxxp://search.babylon.com/?affID=112555&tt=3112_3&babsrc=NT_ss&mntrId=70be2e130000000000006cf049d6685e");
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("browser.search.order.1", "Search the web (Babylon)");
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("browser.search.searchengine.alias", "mystartsearch");
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("browser.search.searchengine.iconURL", "hxxp://www.mystartsearch.com/favicon.ico");
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("browser.search.searchengine.name", "mystartsearch");
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("browser.search.searchengine.url", "hxxp://www.mystartsearch.com/web/?type=ds&ts=1 ... earchTerms}");
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("extensions.BabylonToolbar.admin", false);
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("extensions.BabylonToolbar.aflt", "orgnl");
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("extensions.BabylonToolbar.bbDpng", 16);
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("extensions.BabylonToolbar.cntry", "CZ");
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("extensions.BabylonToolbar.dfltSrch", false);
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("extensions.BabylonToolbar.excTlbr", false);
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("extensions.BabylonToolbar.hdrMd5", "A8342B582932947917A92B3C4D87425F");
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("extensions.BabylonToolbar.hmpg", false);
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("extensions.BabylonToolbar.instlDay", "15263");
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("extensions.BabylonToolbar.keyWordUrl", "hxxp://search.babylon.com/?babsrc=SP_&q={searchTerms}&mntrId=70be2e130000000000006cf049d6685e&tlver=1.4.35.10&");
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("extensions.BabylonToolbar.lastActv", "13");
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("extensions.BabylonToolbar.lastDP", 16);
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("extensions.BabylonToolbar.lastVrsnTs", "");
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("extensions.BabylonToolbar.mntrFFxVrsn", "37.0");
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("extensions.BabylonToolbar.newTab", true);
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("extensions.BabylonToolbar.newTabUrl", "hxxp://search.babylon.com/?babsrc=NT_FFUP");
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("extensions.BabylonToolbar.noFFXTlbr", false);
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("extensions.BabylonToolbar.propectorlck", 167754326);
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("extensions.BabylonToolbar.prtkDS", 0);
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("extensions.BabylonToolbar.prtkHmpg", 0);
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("extensions.BabylonToolbar.prtnrId", "babylon");
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("extensions.BabylonToolbar.ptch_0717", true);
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("extensions.BabylonToolbar.smplGrp", "tzb");
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("extensions.BabylonToolbar.vrsn", "1.4.35.10");
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("extensions.BabylonToolbar.vrsnTs", "1.4.35.1010:09:12");
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("extensions.BabylonToolbar_i.newTab", true);
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("extensions.BabylonToolbar_i.newTabUrl", "hxxp://search.babylon.com/?affID=112555&tt=3112_3&babsrc=NT_ss&mntrId=70be2e130000000000006cf049d6685e");
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("extensions.enabledAddons", "ffxtlbr%40babylon.com:1.2.0,plugin2%40gameplaylabs.com:2.0,plugin%40apture.com:2.0.0,puzzle%40internauta1024a.pl:0.6.0,%7BE10A6337-382E-4FE6-96DE-936ADC34DD04%7D[...]
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("extensions.plugin2@gameplaylabs.com.fr", "1301138005");
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("extensions.plugin2@gameplaylabs.com.ranonce", true);
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("extensions.plugin2@gameplaylabs.com.rule_/", "1301138010");
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("extensions.plugin2@gameplaylabs.com.rule_dealsplugin.com/", "1301138010");
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("extensions.plugin2@gameplaylabs.com.rule_facebook.com", "1301138010");
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("extensions.plugin2@gameplaylabs.com.rule_hxxp", "1301138010");
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("extensions.plugin2@gameplaylabs.com.rule_iqquizgame.com/", "1301138010");
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("extensions.plugin2@gameplaylabs.com.rule_play-ga.me/", "1301138010");
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("extensions.plugin2@gameplaylabs.com.rule_revealmycrush.com/", "1301138010");
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("extensions.plugin2@gameplaylabs.com.rule_unlock-this.com/browserplugin", "1301138010");
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("extensions.plugin2@gameplaylabs.com.rule_unlock-this.com/plugin", "1301138010");
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("extensions.xpiState", "{\"app-profile\":{\"1SIu@D18w.edu\":{\"d\":\"C:\\\\Users\\\\Admin\\\\AppData\\\\Roaming\\\\Mozilla\\\\Firefox\\\\Profiles\\\\sdqeomst.default\\\\extensions\\\\1SIu@D1[...]
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("keyword.URL", "hxxp://search.babylon.com/?affID=112555&tt=3112_3&babsrc=KW_ss&mntrId=70be2e130000000000006cf049d6685e&q=");
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("smartbar.conduitSearchAddressUrlList", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3072253&SearchSource=2&q=");
[sdqeomst.default\prefs.js] - Řádek Smazáno : user_pref("smartbar.machineId", "ZRUIUGBI+I2GWHM9QE6BY7HGQZLIQE5ENYD2XH5AJ88DPSPU8MCZIPLI9SG+TOR9MJA2KOEC2FHYHMHYYMK4UW");

-\\ Google Chrome v42.0.2311.90

[C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Smazáno [Search Provider] : hxxp://search.babylon.com/?q={searchTerms}&babsrc=SP_def&AF=18505
[C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Smazáno [Search Provider] : hxxp://websearch.coolsearches.info/?l=1&q={searchTerms}&pid=21095&r=2015/04/06&hid=7094957863599634057&lg=EN&cc=CZ&unqvl=85
[C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences] - Smazáno [Homepage] : hxxp://websearch.coolsearches.info/?pid=21095&r=2015/04/06&hid=7094957863599634057&lg=EN&cc=CZ&unqvl=85

*************************

AdwCleaner[R0].txt - [31009 bytů] - [19/04/2015 21:54:05]
AdwCleaner[S0].txt - [28922 bytů] - [19/04/2015 21:55:22]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [28981 bytů] ##########

Dejte nový log RSIT.

VIRY.CZ

vyskakující okna, prosím o kontrolu

vyskakující okna, prosím o kontrolu

Re: vyskakující okna, prosím o kontrolu

Re: vyskakující okna, prosím o kontrolu

Re: vyskakující okna, prosím o kontrolu