prosim o kntrolu logu moc dekuji :)

[vento192]

Logfile of random's system information tool 1.09 (written by random/random)
Run by Anička at 2012-12-25 18:24:54
Microsoft® Windows Vista™ Business Service Pack 2
System drive C: has 22 GB (14%) free of 153 GB
Total RAM: 2039 MB (37% free)


======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3200825367-1654856761-2187400013-1000Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3200825367-1654856761-2187400013-1000UA.job
C:\Windows\tasks\Norton Security Scan for Anička.job
C:\Windows\tasks\Updater.job
C:\Windows\tasks\User_Feed_Synchronization-{22F063E7-62C6-4D9A-BC26-75EC6E434F51}.job
C:\Windows\tasks\Úklid 1 kliknutím.job

=========Mozilla firefox=========

ProfilePath - C:\Users\Anička\AppData\Roaming\Mozilla\Firefox\Profiles\e0thmcks.default

prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "http://search.conduit.com/?ctid=CT27766 ... hSource=13"
prefs.js - "extensions.enabledItems" - "{64e8cc5b-20db-4212-8320-178fc5ae71f7}:1.0, {800b5000-a755-47e1-992b-48a1c1357f07}:1.1.7, {20a82645-c095-46ed-80e3-08825760534b}:1.2.1, {2224E955-00E9-4613-A844-CE69FCCAAE91}:3.4.0.4340, {EEE6C361-6118-11DC-9C72-001320C79847}:1.0.0.10, {872b5b88-9db5-4310-bdd0-ac189557e5f5}:2.7.2.0, {ACAA314B-EEBA-48e4-AD47-84E31C44796C}:1.0.1, {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24, toolbar@ask.com:3.14.1.100010, {82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}:5.8.0.8855, fdm_ffext@freedownloadmanager.org:1.3.4, {6C8B07BF-0F6D-4EA4-B96F-FF1CCBAAE553}:1.3.7, {51a86bb3-6602-4c85-92a5-130ee4864f13}:3.8.1.0, {23fcfd51-4958-4f00-80a3-ae97e717ed8b}:2.1.2.145, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.8"
prefs.js - "keyword.URL" - "http://search.sweetim.com/search.asp?src=2&q="

"{20a82645-c095-46ed-80e3-08825760534b}"=c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"{872A1C39-DF0B-4c8b-AD84-12BA24A3B781}"=C:\Program Files\DoubleD\GamingHarbor Toolbar\4.1.2.19770\FFToolbar
"{2224E955-00E9-4613-A844-CE69FCCAAE91}"=C:\Program Files\Internet Saving Optimizer\3.4.0.4340\FF
"{0BA0192D-94A5-45e3-B2B8-3EC5A1A0B5EC}"=C:\Program Files\Media Access Startup\1.3.0.790\FF
"smartwebprinting@hp.com"=C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn2


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.5.502.135 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_11_5_502_135.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\Windows\system32\Adobe\Director\np32dsw.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Apple.com/iTunes,version=]
"Description"=iTunes Detector Plug-in
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Apple.com/iTunes,version=1.0]
"Description"=
"Path"=C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@google.com/npPicasa3,version=3.0.0]
"Description"=Picasa3 plugin
"Path"=C:\Program Files\Google\Picasa3\npPicasa3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeLive,version=1.5]
"Description"=Office Live Update v1.5
"Path"=C:\Program Files\Microsoft\Office Live\npOLW.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll

C:\Program Files\Mozilla Firefox\extensions\
{800b5000-a755-47e1-992b-48a1c1357f07}
{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
{972ce4c6-7e08-4474-a285-3208198ce6fd}
{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}

C:\Program Files\Mozilla Firefox\components\
browser.xpt
browserdirprovider.dll
brwsrcmp.dll
coFFPlgn.dll
components.list
compreg.dat
FeedConverter.js
FeedProcessor.js
FeedWriter.js
fuelApplication.js
GPSDGeolocationProvider.js
jsconsole-clhandler.js
NetworkGeolocationProvider.js
nsAddonRepository.js
nsBadCertHandler.js
nsBlocklistService.js
nsBrowserContentHandler.js
nsBrowserGlue.js
nsContentDispatchChooser.js
nsContentPrefService.js
nsDefaultCLH.js
nsDownloadManagerUI.js
nsExtensionManager.js
nsFormAutoComplete.js
nsHandlerService.js
nsHelperAppDlg.js
nsINIProcessor.js
nsLivemarkService.js
nsLoginInfo.js
nsLoginManager.js
nsLoginManagerPrompter.js
nsMicrosummaryService.js
nsPlacesAutoComplete.js
nsPlacesDBFlush.js
nsPlacesTransactionsService.js
nsPrivateBrowsingService.js
nsProxyAutoConfig.js
nsSafebrowsingApplication.js
nsSearchService.js
nsSearchSuggestions.js
nsSessionStartup.js
nsSessionStore.js
nsSetDefaultBrowser.js
nsSidebar.js
nsTaggingService.js
nsTryToClose.js
nsUpdateService.js
nsUpdateServiceStub.js
nsUpdateTimerManager.js
nsUrlClassifierLib.js
nsUrlClassifierListManager.js
nsURLFormatter.js
nsWebHandlerApp.js
pluginGlue.js
storage-Legacy.js
storage-mozStorage.js
txEXSLTRegExFunctions.js
WebContentConverter.js
xpti.dat

C:\Program Files\Mozilla Firefox\plugins\
npdeployJava1.dll
NPMyWebS.dll
npnul32.dll
nppdf32.dll

C:\Program Files\Mozilla Firefox\searchplugins\
google.xml
jyxo-cz.xml
mall-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml

C:\Users\Anička\AppData\Roaming\Mozilla\Firefox\Profiles\e0thmcks.default\extensions\
{20a82645-c095-46ed-80e3-08825760534b}
{51a86bb3-6602-4c85-92a5-130ee4864f13}
{64e8cc5b-20db-4212-8320-178fc5ae71f7}
{6C8B07BF-0F6D-4EA4-B96F-FF1CCBAAE553}
{800b5000-a755-47e1-992b-48a1c1357f07}
{872b5b88-9db5-4310-bdd0-ac189557e5f5}
{ACAA314B-EEBA-48e4-AD47-84E31C44796C}
{EEE6C361-6118-11DC-9C72-001320C79847}
{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}

C:\Users\Anička\AppData\Roaming\Mozilla\Firefox\Profiles\e0thmcks.default\searchplugins\
askcom.xml
conduit.xml
icqplugin-1.xml
icqplugin-10.xml
icqplugin-11.xml
icqplugin-12.xml
icqplugin-13.xml
icqplugin-14.xml
icqplugin-15.xml
icqplugin-2.xml
icqplugin-3.xml
icqplugin-4.xml
icqplugin-5.xml
icqplugin-6.xml
icqplugin-7.xml
icqplugin-8.xml
icqplugin-9.xml
icqplugin.xml
sweetim.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{00A6FAF1-072E-44cf-8957-5838F569A31D}]
MyWebSearch Search Assistant BHO - C:\Program Files\MyWebSearch\SrchAstt\6.bin\MWSSRCAS.DLL [2011-01-27 61440]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{00F5B5BA-E3C2-4b70-BF51-42A557914FAD}]
CashBackAssistant - C:\Program Files\Nice Prosper\CashBackAssistant\CashBackAssistantIE.dll [2008-12-22 835584]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{055FD26D-3A88-4e15-963D-DC8493744B1D}]
XTTBPos00 Class

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{07B18EA1-A523-4961-B6BB-170DE4475CCA}]
mwsBar BHO - C:\Program Files\MyWebSearch\bar\6.bin\MWSBAR.DLL [2011-01-27 434271]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-09-22 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{25B8D58C-B0CB-46b0-BA64-05B3804E4E86}]
Media Access Startup

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{35B8D58C-B0CB-46b0-BA64-05B3804E4E86}]
NP Helper Class

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3E532CE8-C6D9-4A10-8ACE-4348C96E8B6A}]
FastestTubeBHO Class - C:\Program Files\FastestTube\2.1.5\WombatBHO.dll [2012-10-01 185344]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocná služba pro přihlášení ke službě Windows Live ID - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18 403840]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2012-12-13 4527888]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C988A1BF-D300-4A4C-9A63-AFDF23671052}]
C:\Windows\system32\tuvULDTL.dll [2008-10-28 33280]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{CC59E0F9-7E43-44FA-9FAA-8377850BF205}]
FDMIECookiesBHO Class - C:\Program Files\Free Download Manager\iefdm2.dll [2008-12-30 98304]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{CDBFB47B-58A8-4111-BF95-06178DCE326D}]
System Search Dispatcher

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856}]
HP Smart BHO Class - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2008-10-16 505136]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{07B18EA9-A523-4961-B6BB-170DE4475CCA} - My Web Search - C:\Program Files\MyWebSearch\bar\6.bin\MWSBAR.DLL [2011-01-27 434271]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-19 1008184]
"tsnp325"=C:\Windows\tsnp325.exe [2007-04-21 270336]
"LogitechCommunicationsManager"=C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe [2007-10-25 563984]
"LogitechQuickCamRibbon"=C:\Program Files\Logitech\QuickCam\Quickcam.exe [2007-10-25 2178832]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"QuickTimeTask"=C:\Program Files\Applications\wcs.exe []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2012-07-13 17418928]
"WMPNSCFG"=C:\Program Files\Windows Media Player\WMPNSCFG.exe [2008-01-19 202240]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2008-02-11 204800]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{C988A1BF-D300-4A4C-9A63-AFDF23671052}"=C:\Windows\system32\tuvULDTL.dll [2008-10-28 33280]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"DisableTaskMgr"=0
"EnableUIADesktopToggle"=0
"EnableLUA"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoFolderOptions"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"BindDirectlyToPropertySetStorage"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo8"=VfWWDM32.dll
"msacm.lhacm"=lhacm.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux3"=wdmaud.drv
"msacm.ac3filter"=ac3filter.acm
"vidc.xvid"=xvidvfw.dll
"vidc.ffds"=ff_vfw.dll
"vidc.vp60"=vp6vfw.dll
"vidc.vp61"=vp6vfw.dll
"vidc.vp62"=vp6vfw.dll
"vidc.hfyu"=huffyuv.dll
"msacm.at3"=atrac3.acm
"msacm.divxa32"=DivXa32.acm
"msacm.lameacm"=LameACM.acm
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux4"=wdmaud.drv
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"aux5"=wdmaud.drv
"wave6"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer6"=wdmaud.drv
"aux6"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2012-12-25 18:11:05 ----D---- C:\Program Files\trend micro
2012-12-25 18:11:04 ----D---- C:\rsit
2012-12-24 12:22:33 ----D---- C:\ProgramData\Logishrd
2012-12-24 12:22:16 ----D---- C:\Program Files\Common Files\LogiShrd
2012-12-24 12:22:14 ----D---- C:\ProgramData\Logitech
2012-12-24 12:22:13 ----D---- C:\Program Files\Logitech
2012-12-16 03:08:53 ----A---- C:\Windows\system32\mshtmled.dll
2012-12-16 03:08:52 ----A---- C:\Windows\system32\vbscript.dll
2012-12-16 03:08:52 ----A---- C:\Windows\system32\ieui.dll
2012-12-16 03:08:51 ----A---- C:\Windows\system32\msfeeds.dll
2012-12-16 03:08:51 ----A---- C:\Windows\system32\jsproxy.dll
2012-12-16 03:08:51 ----A---- C:\Windows\system32\ieUnatt.exe
2012-12-16 03:08:50 ----A---- C:\Windows\system32\wininet.dll
2012-12-16 03:08:50 ----A---- C:\Windows\system32\jscript.dll
2012-12-16 03:08:49 ----A---- C:\Windows\system32\url.dll
2012-12-16 03:08:49 ----A---- C:\Windows\system32\jscript9.dll
2012-12-16 03:08:48 ----A---- C:\Windows\system32\iertutil.dll
2012-12-16 03:08:47 ----A---- C:\Windows\system32\urlmon.dll
2012-12-16 03:08:46 ----A---- C:\Windows\system32\ieframe.dll
2012-12-16 03:08:43 ----A---- C:\Windows\system32\mshtml.dll
2012-12-16 03:04:07 ----A---- C:\Windows\system32\Wdfres.dll
2012-12-16 03:04:01 ----A---- C:\Windows\system32\winusb.dll
2012-12-16 03:04:01 ----A---- C:\Windows\system32\drivers\WUDFRd.sys
2012-12-16 03:04:01 ----A---- C:\Windows\system32\drivers\WUDFPf.sys
2012-12-16 03:04:00 ----A---- C:\Windows\system32\WUDFSvc.dll
2012-12-16 03:04:00 ----A---- C:\Windows\system32\WUDFPlatform.dll
2012-12-16 03:03:59 ----A---- C:\Windows\system32\drivers\WdfLdr.sys
2012-12-16 03:03:59 ----A---- C:\Windows\system32\drivers\Wdf01000.sys
2012-12-16 03:03:57 ----A---- C:\Windows\system32\WUDFx.dll
2012-12-16 03:03:57 ----A---- C:\Windows\system32\WUDFHost.exe
2012-12-16 03:03:57 ----A---- C:\Windows\system32\WUDFCoinstaller.dll
2012-12-12 18:40:18 ----A---- C:\Windows\system32\win32k.sys
2012-12-12 18:40:17 ----A---- C:\Windows\system32\dpnet.dll
2012-12-12 18:40:16 ----A---- C:\Windows\system32\dpnsvr.exe
2012-12-12 18:40:15 ----A---- C:\Windows\system32\drivers\volsnap.sys
2012-12-12 18:40:13 ----A---- C:\Windows\system32\kernel32.dll
2012-12-12 18:40:09 ----A---- C:\Windows\system32\atmlib.dll
2012-12-12 18:40:09 ----A---- C:\Windows\system32\atmfd.dll
2012-12-12 18:40:06 ----A---- C:\Windows\system32\tzres.dll

======List of files/folders modified in the last 1 month======

2012-12-25 18:23:21 ----D---- C:\Users\Anička\AppData\Roaming\Skype
2012-12-25 18:22:32 ----D---- C:\Windows\Prefetch
2012-12-25 18:11:05 ----RD---- C:\Program Files
2012-12-25 18:10:45 ----D---- C:\Windows\Temp
2012-12-25 18:01:44 ----D---- C:\Windows\system32\catroot
2012-12-25 17:59:25 ----SHD---- C:\Windows\Installer
2012-12-25 17:59:19 ----HD---- C:\Config.Msi
2012-12-25 17:23:58 ----D---- C:\Windows
2012-12-24 12:28:15 ----D---- C:\Windows\inf
2012-12-24 12:24:58 ----SHD---- C:\System Volume Information
2012-12-24 12:22:33 ----HD---- C:\ProgramData
2012-12-24 12:22:27 ----D---- C:\Windows\system32\drivers
2012-12-24 12:22:16 ----D---- C:\Program Files\Common Files
2012-12-23 11:24:34 ----D---- C:\Windows\system32\catroot2
2012-12-20 21:06:36 ----D---- C:\Windows\System32
2012-12-20 21:06:36 ----A---- C:\Windows\system32\PerfStringBackup.INI
2012-12-19 12:04:22 ----D---- C:\ProgramData\Skype
2012-12-18 15:18:05 ----D---- C:\Program Files\Common Files\Symantec Shared
2012-12-17 22:04:15 ----D---- C:\Windows\Debug
2012-12-16 03:48:04 ----D---- C:\Windows\rescache
2012-12-16 03:28:36 ----D---- C:\Windows\system32\migration
2012-12-16 03:28:36 ----D---- C:\Program Files\Internet Explorer
2012-12-16 03:28:35 ----D---- C:\Windows\system32\wbem
2012-12-16 03:28:35 ----D---- C:\Windows\system32\drivers\cs-CZ
2012-12-16 03:28:35 ----D---- C:\Windows\system32\cs-CZ
2012-12-16 03:10:58 ----A---- C:\Windows\win.ini
2012-12-16 03:09:36 ----D---- C:\Windows\winsxs
2012-12-16 03:01:33 ----A---- C:\Windows\system32\mrt.exe
2012-12-11 19:51:08 ----A---- C:\Windows\system32\FlashPlayerApp.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2012-08-30 193552]
R1 MpKsl1e3d5e37;MpKsl1e3d5e37; \??\c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{AC9D2260-6454-42BA-90E2-8EB72B171060}\MpKsl1e3d5e37.sys [2012-12-25 29904]
R2 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2012-08-30 99272]
R3 AgereSoftModem;Agere Systems Soft Modem; C:\Windows\system32\DRIVERS\AGRSM.sys [2006-11-02 983552]
R3 EMSCR;EMSCR; C:\Windows\system32\DRIVERS\EMS7SK.sys [2007-01-31 67584]
R3 ESDCR;ESDCR; C:\Windows\system32\DRIVERS\ESD7SK.sys [2007-01-31 46592]
R3 ESMCR;ESMCR; C:\Windows\system32\DRIVERS\ESM7SK.sys [2007-01-31 61952]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\System32\Drivers\GEARAspiWDM.sys [2009-05-18 26600]
R3 HdAudAddService;Ovladač funkce Microsoft 1.1 UAA pro službu zvuku High Definition Audio; C:\Windows\system32\drivers\HdAudio.sys [2009-04-11 236544]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd32.sys [2008-02-11 2302976]
R3 LVPr2Mon;Logitech LVPr2Mon Driver; C:\Windows\system32\DRIVERS\LVPr2Mon.sys [2007-10-11 25624]
R3 MSPCLOCK;Server proxy hodin datových proudů Microsoft; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-19 5888]
R3 MSPQM;Server proxy správce kvality datových proudů Microsoft; C:\Windows\system32\drivers\MSPQM.sys [2008-01-19 5504]
R3 NETw4v32;Ovladač adaptéru Intel(R) Wireless WiFi Link pro systém Windows Vista 32 Bit; C:\Windows\system32\DRIVERS\NETw4v32.sys [2007-09-26 2251776]
R3 RTL8169;Realtek 8169 NT Driver; C:\Windows\system32\DRIVERS\Rtlh86.sys [2006-11-02 44544]
R3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2009-04-11 89088]
R3 TcUsb;TC USB Kernel Driver; C:\Windows\System32\Drivers\tcusb.sys [2007-03-28 46992]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesDriver32.sys [2010-11-29 10064]
R3 usbaudio;Ovladač zvuků USB (WDM); C:\Windows\system32\drivers\usbaudio.sys [2009-04-11 73216]
R3 usbvideo;Zobrazovací zařízení USB (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2008-01-19 134016]
R3 VCSVADHWSer;Avnex Virtual Audio Device (WDM); C:\Windows\system32\DRIVERS\vcsvad.sys [2008-12-26 17792]
R3 WudfPf;@%SystemRoot%\system32\drivers\Wudfpf.sys,-1000; C:\Windows\system32\drivers\WudfPf.sys [2012-07-26 66560]
S2 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys []
S2 WCMVCAM;WebcamMax, WDM Video Capture; C:\Windows\system32\DRIVERS\wcmvcam.sys [2011-06-23 1068216]
S3 drmkaud;Dekodér zvuků DRM jádra společnosti Microsoft; C:\Windows\system32\drivers\drmkaud.sys [2008-01-19 5632]
S3 k750bus;Sony Ericsson 750 driver (WDM); C:\Windows\system32\DRIVERS\k750bus.sys [2005-02-11 55216]
S3 k750mdfl;Sony Ericsson 750 USB WMC Modem Filter; C:\Windows\system32\DRIVERS\k750mdfl.sys [2005-07-07 6576]
S3 k750mdm;Sony Ericsson 750 USB WMC Modem Drivers; C:\Windows\system32\DRIVERS\k750mdm.sys [2005-07-07 89872]
S3 LVcKap;Logitech AEC Driver; C:\Windows\system32\DRIVERS\LVcKap.sys [2007-10-19 2109976]
S3 LVMVDrv;Logitech Machine Vision Engine Loader; C:\Windows\system32\DRIVERS\LVMVDrv.sys [2007-10-11 2142488]
S3 MSKSSRV;Server proxy služby datových proudů Microsoft; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-19 8192]
S3 MSTEE;Konvertor jímka-jímka typu T datových proudů Microsoft; C:\Windows\system32\drivers\MSTEE.sys [2008-01-19 6016]
S3 Netaapl;Apple Mobile Device Ethernet Service; C:\Windows\system32\DRIVERS\netaapl.sys [2011-08-02 18432]
S3 s3017bus;Sony Ericsson Device 3017 driver (WDM); C:\Windows\system32\DRIVERS\s3017bus.sys [2007-12-10 83880]
S3 s3017mdfl;Sony Ericsson Device 3017 USB WMC Modem Filter; C:\Windows\system32\DRIVERS\s3017mdfl.sys [2007-12-10 15016]
S3 s3017mdm;Sony Ericsson Device 3017 USB WMC Modem Driver; C:\Windows\system32\DRIVERS\s3017mdm.sys [2007-12-10 110632]
S3 s3017mgmt;Sony Ericsson Device 3017 USB WMC Device Management Drivers (WDM); C:\Windows\system32\DRIVERS\s3017mgmt.sys [2007-12-10 104616]
S3 s3017nd5;Sony Ericsson Device 3017 USB Ethernet Emulation SEMC3017 (NDIS); C:\Windows\system32\DRIVERS\s3017nd5.sys [2007-12-10 25512]
S3 s3017obex;Sony Ericsson Device 3017 USB WMC OBEX Interface; C:\Windows\system32\DRIVERS\s3017obex.sys [2007-12-10 100648]
S3 s3017unic;Sony Ericsson Device 3017 USB Ethernet Emulation SEMC3017 (WDM); C:\Windows\system32\DRIVERS\s3017unic.sys [2007-12-10 110120]
S3 SNP325;USB PC Camera (SNPSTD325); C:\Windows\system32\DRIVERS\snp325.sys [2007-07-24 10394624]
S3 StillCam;Ovladač digitálního fotoaparátu pro sériový port; C:\Windows\system32\DRIVERS\serscan.sys [2008-01-19 9216]
S3 SymIMMP;SymIMMP; C:\Windows\system32\DRIVERS\SymIM.sys []
S3 USBAAPL;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl.sys [2011-08-02 42496]
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2009-10-01 40448]
S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2012-07-26 155136]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2011-10-24 55144]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 390504]
R2 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2008-01-19 21504]
R2 hpqddsvc;Služba HP CUE DeviceDiscovery; C:\Windows\system32\svchost.exe [2008-01-19 21504]
R2 HPSLPSVC;HP Network Devices Support; C:\Windows\system32\svchost.exe [2008-01-19 21504]
R2 LVCOMSer;LVCOMSer; C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe [2007-10-19 186904]
R2 LVPrcSrv;Process Monitor; C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe [2007-10-19 141848]
R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\MsMpEng.exe [2012-09-12 20472]
R2 MyWebSearchService;My Web Search Service; C:\PROGRA~1\MYWEBS~1\bar\6.bin\mwssvc.exe [2011-01-27 28762]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2008-01-19 21504]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2008-01-19 21504]
R2 Skype C2C Service;Skype C2C Service; C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2012-12-13 3290896]
R2 UxTuneUp;@%SystemRoot%\System32\uxtuneup.dll,-4096; C:\Windows\System32\svchost.exe [2008-01-19 21504]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2009-08-18 1529728]
R3 hpqcxs08;hpqcxs08; C:\Windows\system32\svchost.exe [2008-01-19 21504]
R3 NisSrv;@c:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; c:\Program Files\Microsoft Security Client\NisSrv.exe [2012-09-12 287824]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-04-04 135664]
S2 LVSrvLauncher;LVSrvLauncher; C:\Program Files\Common Files\LogiShrd\SrvLnch\SrvLnch.exe [2007-10-19 141848]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2012-07-13 160944]
S2 TuneUp.UtilitiesSvc;TuneUp Utilities Service; C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe [2011-12-08 1527104]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-12-11 250808]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-04-04 135664]
S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2010-04-04 182768]
S3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2011-12-08 821608]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 WPFFontCache_v0400;@c:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe,-100; C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]

-----------------EOF-----------------

[Roli]

Zdravím, použij Mbam z mého podpisu a dej mi sem z něj log, předem nic nemazat !!!

[vento192]

Malwarebytes Anti-Malware 1.65.1.1000
www.malwarebytes.org

Verze databáze: v2012.12.26.11

Windows Vista Service Pack 2 x86 NTFS
Internet Explorer 9.0.8112.16421
Anička :: ANA-PC [administrátor]

26.12.2012 19:26:16
mbam-log-2012-12-26 (19-42-24).txt

Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 226106
Uplynulý čas: 9 minut, 40 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 1
C:\Program Files\MyWebSearch\SrchAstt\6.bin\MWSSRCAS.DLL (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.

Nalezené klíče v registru: 182
HKLM\SYSTEM\CurrentControlSet\Services\MyWebSearchService (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCR\CLSID\{00A6FAF1-072E-44cf-8957-5838F569A31D} (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{00A6FAF1-072E-44CF-8957-5838F569A31D} (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{00A6FAF1-072E-44CF-8957-5838F569A31D} (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{00A6FAF1-072E-44CF-8957-5838F569A31D} (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCR\CLSID\{00F5B5BA-E3C2-4b70-BF51-42A557914FAD} (Adware.CashBackAssistant) -> Žádná instrukce nebyla provedena.
HKCR\TypeLib\{D1AAD553-DC21-471f-88E0-F58BE109038D} (Adware.CashBackAssistant) -> Žádná instrukce nebyla provedena.
HKCR\Interface\{6998957E-00F9-4DAC-BBB1-C0CA721376C1} (Adware.CashBackAssistant) -> Žádná instrukce nebyla provedena.
HKCR\ExplorerBar.CashBackAssistant.1 (Adware.CashBackAssistant) -> Žádná instrukce nebyla provedena.
HKCR\ExplorerBar.CashBackAssistant (Adware.CashBackAssistant) -> Žádná instrukce nebyla provedena.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{00F5B5BA-E3C2-4B70-BF51-42A557914FAD} (Adware.CashBackAssistant) -> Žádná instrukce nebyla provedena.
HKCU\SOFTWARE\Microsoft\Explorer\Bars\{00F5B5BA-E3C2-4B70-BF51-42A557914FAD} (Adware.CashBackAssistant) -> Žádná instrukce nebyla provedena.
HKCU\SOFTWARE\Microsoft\Internet Explorer\Explorer Bars\{00F5B5BA-E3C2-4B70-BF51-42A557914FAD} (Adware.CashBackAssistant) -> Žádná instrukce nebyla provedena.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{00F5B5BA-E3C2-4B70-BF51-42A557914FAD} (Adware.CashBackAssistant) -> Žádná instrukce nebyla provedena.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{00F5B5BA-E3C2-4B70-BF51-42A557914FAD} (Adware.CashBackAssistant) -> Žádná instrukce nebyla provedena.
HKCR\CLSID\{07B18EA1-A523-4961-B6BB-170DE4475CCA} (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{07B18EA1-A523-4961-B6BB-170DE4475CCA} (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{07B18EA1-A523-4961-B6BB-170DE4475CCA} (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{07B18EA1-A523-4961-B6BB-170DE4475CCA} (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCR\TypeLib\{07B18EA0-A523-4961-B6BB-170DE4475CCA} (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCR\Interface\{07B18EAA-A523-4961-B6BB-170DE4475CCA} (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MyWebSearch bar Uninstall (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCR\AppID\{57ABA38E-6535-48F3-99FD-EFDC62137C78} (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
HKCR\CLSID\{00A6FAF6-072E-44cf-8957-5838F569A31D} (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{00A6FAF6-072E-44CF-8957-5838F569A31D} (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCR\CLSID\{07B18EA9-A523-4961-B6BB-170DE4475CCA} (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{07B18EA9-A523-4961-B6BB-170DE4475CCA} (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{07B18EA9-A523-4961-B6BB-170DE4475CCA} (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCR\CLSID\{07B18EAB-A523-4961-B6BB-170DE4475CCA} (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCR\MyWebSearchToolBar.SettingsPlugin.1 (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCR\MyWebSearchToolBar.SettingsPlugin (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{07B18EAB-A523-4961-B6BB-170DE4475CCA} (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{07B18EAB-A523-4961-B6BB-170DE4475CCA} (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{07B18EAB-A523-4961-B6BB-170DE4475CCA} (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCR\CLSID\{0F8ECF4F-3646-4C3A-8881-8E138FFCAF70} (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCR\TypeLib\{8CA01F0E-987C-49C3-B852-2F1AC4A7094C} (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCR\Interface\{1093995A-BA37-41D2-836E-091067C4AD17} (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCR\FunWebProducts.IECookiesManager.1 (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCR\FunWebProducts.IECookiesManager (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCR\CLSID\{147A976F-EEE1-4377-8EA7-4716E4CDD239} (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCR\CLSID\{1E0DE227-5CE4-4ea3-AB0C-8B03E1AA76BC} (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCR\CLSID\{25560540-9571-4D7B-9389-0F166788785A} (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCR\TypeLib\{C8CECDE3-1AE1-4C4A-AD82-6D5B00212144} (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCR\Interface\{17DE5E5E-BFE3-4E83-8E1F-8755795359EC} (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCR\FunWebProducts.DataControl.1 (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCR\FunWebProducts.DataControl (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{25560540-9571-4D7B-9389-0F166788785A} (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCR\CLSID\{25B8D58C-B0CB-46b0-BA64-05B3804E4E86} (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
HKCR\ExplorerBar.FunExplorer.1 (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
HKCR\ExplorerBar.FunExplorer (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{25B8D58C-B0CB-46B0-BA64-05B3804E4E86} (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{25B8D58C-B0CB-46B0-BA64-05B3804E4E86} (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{25B8D58C-B0CB-46B0-BA64-05B3804E4E86} (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
HKCR\CLSID\{35B8D58C-B0CB-46b0-BA64-05B3804E4E86} (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{35B8D58C-B0CB-46B0-BA64-05B3804E4E86} (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{35B8D58C-B0CB-46B0-BA64-05B3804E4E86} (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{35B8D58C-B0CB-46B0-BA64-05B3804E4E86} (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
HKCR\CLSID\{3DC201FB-E9C9-499C-A11F-23C360D7C3F8} (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCR\TypeLib\{E47CAEE0-DEEA-464A-9326-3F2801535A4D} (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCR\Interface\{3E1656ED-F60E-4597-B6AA-B6A58E171495} (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCR\FunWebProducts.HTMLMenu.2 (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCR\FunWebProducts.HTMLMenu (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{3DC201FB-E9C9-499C-A11F-23C360D7C3F8} (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{3DC201FB-E9C9-499C-A11F-23C360D7C3F8} (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCR\CLSID\{3E720452-B472-4954-B7AA-33069EB53906} (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCR\TypeLib\{3E720450-B472-4954-B7AA-33069EB53906} (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCR\Interface\{3E720451-B472-4954-B7AA-33069EB53906} (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCR\MyWebSearch.HTMLPanel.1 (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCR\MyWebSearch.HTMLPanel (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{3E720452-B472-4954-B7AA-33069EB53906} (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCR\CLSID\{53CED2D0-5E9A-4761-9005-648404E6F7E5} (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCR\MyWebSearchToolBar.ToolbarPlugin.1 (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCR\MyWebSearchToolBar.ToolbarPlugin (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCR\CLSID\{63D0ED2C-B45B-4458-8B3B-60C69BBBD83C} (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCR\TypeLib\{8E6F1830-9607-4440-8530-13BE7C4B1D14} (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCR\Interface\{63D0ED2B-B45B-4458-8B3B-60C69BBBD83C} (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCR\FunWebProducts.PopSwatterSettingsControl.1 (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCR\FunWebProducts.PopSwatterSettingsControl (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{63D0ED2C-B45B-4458-8B3B-60C69BBBD83C} (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCR\CLSID\{7473D292-B7BB-4f24-AE82-7E2CE94BB6A9} (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCR\TypeLib\{7473D290-B7BB-4F24-AE82-7E2CE94BB6A9} (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCR\Interface\{7473D291-B7BB-4F24-AE82-7E2CE94BB6A9} (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCR\CLSID\{7473D294-B7BB-4f24-AE82-7E2CE94BB6A9} (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCR\MyWebSearch.PseudoTransparentPlugin.1 (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCR\MyWebSearch.PseudoTransparentPlugin (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7473D294-B7BB-4F24-AE82-7E2CE94BB6A9} (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCR\CLSID\{7473D296-B7BB-4f24-AE82-7E2CE94BB6A9} (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCR\CLSID\{84DA4FDF-A1CF-4195-8688-3E961F505983} (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCR\CLSID\{8E6F1832-9607-4440-8530-13BE7C4B1D14} (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCR\FunWebProducts.PopSwatterBarButton.1 (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCR\FunWebProducts.PopSwatterBarButton (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCR\CLSID\{938AA51A-996C-4884-98CE-80DD16A5C9DA} (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCR\TypeLib\{29D67D3C-509A-4544-903F-C8C1B8236554} (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCR\Interface\{2E3537FC-CF2F-4F56-AF54-5A6A3DD375CC} (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCR\CLSID\{98D9753D-D73B-42D5-8C85-4469CDA897AB} (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCR\FunWebProducts.HTMLMenu.1 (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{98D9753D-D73B-42D5-8C85-4469CDA897AB} (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCR\CLSID\{9FF05104-B030-46FC-94B8-81276E4E27DF} (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCR\ScreenSaverControl.ScreenSaverInstaller.1 (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCR\ScreenSaverControl.ScreenSaverInstaller (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{9FF05104-B030-46FC-94B8-81276E4E27DF} (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{9FF05104-B030-46FC-94B8-81276E4E27DF} (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCR\CLSID\{A9571378-68A1-443d-B082-284F960C6D17} (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCR\CLSID\{ADB01E81-3C79-4272-A0F1-7B2BE7A782DC} (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCR\MyWebSearch.OutlookAddin.1 (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCR\MyWebSearch.OutlookAddin (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCR\CLSID\{B813095C-81C0-4E40-AA14-67520372B987} (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCR\FunWebProducts.KillerObjManager.1 (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCR\FunWebProducts.KillerObjManager (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCR\CLSID\{C9D7BE3E-141A-4C85-8CD6-32461F3DF2C7} (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCR\FunWebProducts.HistoryKillerScheduler.1 (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCR\FunWebProducts.HistoryKillerScheduler (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCR\CLSID\{CDBFB47B-58A8-4111-BF95-06178DCE326D} (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
HKCR\ExplorerBar.FunRedirector.1 (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
HKCR\ExplorerBar.FunRedirector (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{CDBFB47B-58A8-4111-BF95-06178DCE326D} (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{CDBFB47B-58A8-4111-BF95-06178DCE326D} (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{CDBFB47B-58A8-4111-BF95-06178DCE326D} (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
HKCR\CLSID\{CFF4CE82-3AA2-451F-9B77-7165605FB835} (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCR\FunWebProducts.HistorySwatterControlBar.1 (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCR\FunWebProducts.HistorySwatterControlBar (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCR\CLSID\{D9FFFB27-D62A-4D64-8CEC-1FF006528805} (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCR\TypeLib\{0D26BC71-A633-4E71-AD31-EADC3A1B6A3A} (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCR\Interface\{E342AF55-B78A-4CD0-A2BB-DA7F52D9D25E} (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCR\CLSID\{E79DFBCA-5697-4fbd-94E5-5B2A9C7C1612} (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCR\TypeLib\{E79DFBC0-5697-4FBD-94E5-5B2A9C7C1612} (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCR\Interface\{72EE7F04-15BD-4845-A005-D6711144D86A} (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCR\MyWebSearch.ChatSessionPlugin.1 (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCR\MyWebSearch.ChatSessionPlugin (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{E79DFBCA-5697-4FBD-94E5-5B2A9C7C1612} (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCR\Typelib\{D518921A-4A03-425E-9873-B9A71756821E} (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCR\Interface\{CF54BE1C-9359-4395-8533-1657CF209CFE} (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCR\Typelib\{F42228FB-E84E-479E-B922-FBBD096E792C} (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCR\Interface\{6E74766C-4D93-4CC0-96D1-47B8E07FF9CA} (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{56256A51-B582-467e-B8D4-7786EDA79AE0} (Trojan.Vundo) -> Žádná instrukce nebyla provedena.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{56256A51-B582-467e-B8D4-7786EDA79AE0} (Trojan.Vundo) -> Žádná instrukce nebyla provedena.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{1E0DE227-5CE4-4EA3-AB0C-8B03E1AA76BC} (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{59C7FC09-1C83-4648-B3E6-003D2BBC7481} (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68AF847F-6E91-45dd-9B68-D6A12C30E5D7} (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9170B96C-28D4-4626-8358-27E6CAEEF907} (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D1A71FA0-FF48-48dd-9B6D-7A13A3E42127} (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{DDB1968E-EAD6-40fd-8DAE-FF14757F60C7} (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F138D901-86F0-4383-99B6-9CDD406036DA} (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\GamingHarbor Toolbar (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
HKCR\multimediaControls.chl (Trojan.Zlob) -> Žádná instrukce nebyla provedena.
HKCR\AppID\AIMActiveXDLL.DLL (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
HKCU\{5617ECA9-488D-4BA2-8562-9710B9AB78D2} (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
HKCU\SOFTWARE\Internet Saving Optimizer (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
HKCU\SOFTWARE\Media Access Startup (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
HKCU\SOFTWARE\MyWebSearch (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCU\SOFTWARE\Microsoft\Office\Outlook\Addins\OEActiveXDLL.DesktopOEAddin1 (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
HKCU\Software\AppDataLow\Software\MyWebSearch (PUP.MyWebsearch) -> Žádná instrukce nebyla provedena.
HKLM\SOFTWARE\FocusInteractive (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKLM\SOFTWARE\Fun Web Products (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKLM\SOFTWARE\Internet Saving Optimizer (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
HKLM\SOFTWARE\Media Access Startup (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
HKLM\SOFTWARE\MyWebSearch (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\RunDll32Policy\f3ScrCtr.dll (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKLM\SOFTWARE\Microsoft\Multimedia\WMPlayer\Schemes\f3pss (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKLM\SOFTWARE\Microsoft\Office\Outlook\Addins\MyWebSearch.OutlookAddin (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKLM\SOFTWARE\Microsoft\Office\Word\Addins\MyWebSearch.OutlookAddin (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{16B6279B-9FF5-41fb-8BF9-404324F5DD1F}}_is1 (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{1FB52AB3-5987-45a2-85E0-F3EC30DDDC29}}_is1 (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{C5096216-7703-409E-B85A-8A6EE7395128}}_is1 (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{00A6FAF1-072E-44cf-8957-5838F569A31D} (Trojan.BHO) -> Žádná instrukce nebyla provedena.
HKCR\CLSID\{00A6FAF1-072E-44cf-8957-5838F569A31D} (Trojan.BHO) -> Žádná instrukce nebyla provedena.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{00A6FAF1-072E-44CF-8957-5838F569A31D} (Trojan.BHO) -> Žádná instrukce nebyla provedena.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{00A6FAF1-072E-44CF-8957-5838F569A31D} (Trojan.BHO) -> Žádná instrukce nebyla provedena.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{055FD26D-3A88-4e15-963D-DC8493744B1D} (Trojan.BHO) -> Žádná instrukce nebyla provedena.
HKCR\CLSID\{055FD26D-3A88-4e15-963D-DC8493744B1D} (Trojan.BHO) -> Žádná instrukce nebyla provedena.
HKCR\ToolBand.XTTBPos00.1 (Trojan.BHO) -> Žádná instrukce nebyla provedena.
HKCR\ToolBand.XTTBPos00 (Trojan.BHO) -> Žádná instrukce nebyla provedena.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{055FD26D-3A88-4E15-963D-DC8493744B1D} (Trojan.BHO) -> Žádná instrukce nebyla provedena.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{055FD26D-3A88-4E15-963D-DC8493744B1D} (Trojan.BHO) -> Žádná instrukce nebyla provedena.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{07B18EA1-A523-4961-B6BB-170DE4475CCA} (Trojan.BHO) -> Žádná instrukce nebyla provedena.
HKCR\CLSID\{07B18EA1-A523-4961-B6BB-170DE4475CCA} (Trojan.BHO) -> Žádná instrukce nebyla provedena.
HKCR\TypeLib\{07B18EA0-A523-4961-B6BB-170DE4475CCA} (Trojan.BHO) -> Žádná instrukce nebyla provedena.
HKCR\Interface\{07B18EAA-A523-4961-B6BB-170DE4475CCA} (Trojan.BHO) -> Žádná instrukce nebyla provedena.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MyWebSearch bar Uninstall (Trojan.BHO) -> Žádná instrukce nebyla provedena.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{07B18EA1-A523-4961-B6BB-170DE4475CCA} (Trojan.BHO) -> Žádná instrukce nebyla provedena.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{07B18EA1-A523-4961-B6BB-170DE4475CCA} (Trojan.BHO) -> Žádná instrukce nebyla provedena.

Nalezené hodnoty v registru: 15
HKCU\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks|{00A6FAF6-072E-44CF-8957-5838F569A31D} (PUP.MyWebSearch) -> Data: -> Žádná instrukce nebyla provedena.
HKCU\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser|{07B18EA9-A523-4961-B6BB-170DE4475CCA} (PUP.MyWebSearch) -> Data: ©Ž±#ĄaI¶»
äG\Ę -> Žádná instrukce nebyla provedena.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar|{07B18EA9-A523-4961-B6BB-170DE4475CCA} (PUP.MyWebSearch) -> Data: -> Žádná instrukce nebyla provedena.
HKCU\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser\{07B18EA9-A523-4961-B6BB-170DE4475CCA} (PUP.MyWebSearch) -> Data: -> Žádná instrukce nebyla provedena.
HKCU\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\{00A6FAF6-072E-44cf-8957-5838F569A31D} (PUP.MyWebSearch) -> Data: -> Žádná instrukce nebyla provedena.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{07B18EA9-A523-4961-B6BB-170DE4475CCA} (PUP.MyWebSearch) -> Data: -> Žádná instrukce nebyla provedena.
HKLM\SOFTWARE\Mozilla\Firefox\Extensions\{872A1C39-DF0B-4c8b-AD84-12BA24A3B781} (Adware.DoubleD) -> Data: -> Žádná instrukce nebyla provedena.
HKLM\SOFTWARE\Mozilla\Firefox\Extensions|{872A1C39-DF0B-4c8b-AD84-12BA24A3B781} (Adware.DoubleD) -> Data: C:\Program Files\DoubleD\GamingHarbor Toolbar\4.1.2.19770\FFToolbar -> Žádná instrukce nebyla provedena.
HKLM\SOFTWARE\Mozilla\Firefox\Extensions\{2224E955-00E9-4613-A844-CE69FCCAAE91} (Adware.DoubleD) -> Data: -> Žádná instrukce nebyla provedena.
HKLM\SOFTWARE\Mozilla\Firefox\Extensions|{2224E955-00E9-4613-A844-CE69FCCAAE91} (Adware.DoubleD) -> Data: C:\Program Files\Internet Saving Optimizer\3.4.0.4340\FF -> Žádná instrukce nebyla provedena.
HKLM\SOFTWARE\Mozilla\Firefox\Extensions\{0BA0192D-94A5-45e3-B2B8-3EC5A1A0B5EC} (Adware.DoubleD) -> Data: -> Žádná instrukce nebyla provedena.
HKLM\SOFTWARE\Mozilla\Firefox\Extensions|{0BA0192D-94A5-45e3-B2B8-3EC5A1A0B5EC} (Adware.DoubleD) -> Data: C:\Program Files\Media Access Startup\1.3.0.790\FF -> Žádná instrukce nebyla provedena.
HKCU\SOFTWARE\Microsoft\Internet Explorer\MenuExt\&Search| (Adware.Hotbar) -> Data: http://edits.mywebsearch.com/toolbaredi ... p=ZCfox000 -> Žádná instrukce nebyla provedena.
HKLM\SOFTWARE\Microsoft\Windows Media\WMSDK\Sources|f3PopularScreensavers (PUP.MyWebSearch) -> Data: C:\Program Files\MyWebSearch\bar\6.bin\F3SCRCTR.DLL -> Žádná instrukce nebyla provedena.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent\Post Platform|FunWebProducts (PUP.MyWebSearch) -> Data: -> Žádná instrukce nebyla provedena.

Nalezené datové položky v registru: 1
HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{3A28894B-5429-46E9-B197-6A9ADB54E33F}|NameServer (Trojan.DNSChanger) -> Špatný: (85.255.116.38,85.255.112.207) Dobrý: () -> Žádná instrukce nebyla provedena.

Nalezené složky: 46
C:\Program Files\FunWebProducts (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files\FunWebProducts\ScreenSaver (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files\FunWebProducts\ScreenSaver\Images (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files\Internet Saving Optimizer (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
C:\Program Files\Internet Saving Optimizer\3.0.0.3540 (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
C:\Program Files\Internet Saving Optimizer\3.0.0.3540\Data (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
C:\Program Files\Internet Saving Optimizer\3.0.0.3540\FF (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
C:\Program Files\Internet Saving Optimizer\3.0.0.3540\FF\chrome (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
C:\Program Files\Internet Saving Optimizer\3.0.0.3540\FF\chrome\content (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
C:\Program Files\Internet Saving Optimizer\3.0.0.3540\FF\components (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
C:\Program Files\Internet Saving Optimizer\3.4.0.4340 (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
C:\Program Files\Internet Saving Optimizer\3.4.0.4340\Data (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
C:\Program Files\Internet Saving Optimizer\3.4.0.4340\FF (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
C:\Program Files\Internet Saving Optimizer\3.4.0.4340\FF\chrome (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
C:\Program Files\Internet Saving Optimizer\3.4.0.4340\FF\chrome\content (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
C:\Program Files\Internet Saving Optimizer\3.4.0.4340\FF\components (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
C:\Program Files\Media Access Startup (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
C:\Program Files\Media Access Startup\1.0.0.610 (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
C:\Program Files\Media Access Startup\1.0.0.610\Data (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
C:\Program Files\Media Access Startup\1.0.0.610\FF (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
C:\Program Files\Media Access Startup\1.0.0.610\FF\chrome (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
C:\Program Files\Media Access Startup\1.0.0.610\FF\chrome\content (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
C:\Program Files\Media Access Startup\1.0.0.610\FF\components (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
C:\Program Files\Media Access Startup\1.3.0.790 (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
C:\Program Files\Media Access Startup\1.3.0.790\Data (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
C:\Program Files\Media Access Startup\1.3.0.790\FF (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
C:\Program Files\Media Access Startup\1.3.0.790\FF\chrome (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
C:\Program Files\Media Access Startup\1.3.0.790\FF\chrome\content (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
C:\Program Files\Media Access Startup\1.3.0.790\FF\components (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
C:\Program Files\MyWebSearch (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files\MyWebSearch\bar (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files\MyWebSearch\bar\5.bin (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files\MyWebSearch\bar\6.bin (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files\MyWebSearch\bar\Avatar (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files\MyWebSearch\bar\Game (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files\MyWebSearch\bar\History (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files\MyWebSearch\bar\icons (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files\MyWebSearch\bar\Message (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files\MyWebSearch\bar\Notifier (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files\MyWebSearch\bar\Settings (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files\MyWebSearch\SrchAstt (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files\MyWebSearch\SrchAstt\5.bin (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files\MyWebSearch\SrchAstt\6.bin (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files\System Search Dispatcher (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
C:\Program Files\System Search Dispatcher\1.2.0.750 (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
C:\Program Files\System Search Dispatcher\1.2.0.750\Data (Adware.DoubleD) -> Žádná instrukce nebyla provedena.

Nalezené soubory: 127
C:\Program Files\MyWebSearch\bar\6.bin\MWSSVC.EXE (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files\MyWebSearch\SrchAstt\6.bin\MWSSRCAS.DLL (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files\Nice Prosper\CashBackAssistant\CashBackAssistantIE.dll (Adware.CashBackAssistant) -> Žádná instrukce nebyla provedena.
C:\Program Files\MyWebSearch\bar\6.bin\MWSBAR.DLL (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files\MyWebSearch\bar\6.bin\F3HISTSW.DLL (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files\MyWebSearch\bar\6.bin\F3DTACTL.DLL (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files\MyWebSearch\bar\6.bin\F3HTMLMU.DLL (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files\MyWebSearch\bar\6.bin\M3HTML.DLL (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files\MyWebSearch\bar\6.bin\F3POPSWT.DLL (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files\MyWebSearch\bar\6.bin\M3SKIN.DLL (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files\MyWebSearch\bar\6.bin\F3CJPEG.DLL (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files\MyWebSearch\bar\6.bin\F3SCRCTR.DLL (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files\MyWebSearch\bar\6.bin\M3OUTLCN.DLL (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files\MyWebSearch\bar\6.bin\F3HTTPCT.DLL (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files\MyWebSearch\bar\6.bin\M3MSG.DLL (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files\MyWebSearch\bar\6.bin\F3REPROX.DLL (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files\MyWebSearch\bar\6.bin\MWSOEPLG.DLL (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\ProgramData\{51FC4C90-DF10-4D41-963E-DB3050C1267C}\Setup.exe (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
C:\Program Files\Internet Explorer\msimg32.dll (PUP.FunWebProducts) -> Žádná instrukce nebyla provedena.
C:\Program Files\Mozilla Firefox\plugins\NPMyWebS.dll (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Windows\System32\f3PSSavr.scr (PUP.FunWebProducts) -> Žádná instrukce nebyla provedena.
C:\Windows\System32\f3PSSavr.scr (Trojan.Agent) -> Žádná instrukce nebyla provedena.
C:\Windows\System32\mcrh.tmp (Malware.Trace) -> Žádná instrukce nebyla provedena.
C:\Program Files\Internet Saving Optimizer\3.0.0.3540\NPCommon.dll (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
C:\Program Files\Internet Saving Optimizer\3.0.0.3540\NPIEAddOn.dll (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
C:\Program Files\Internet Saving Optimizer\3.0.0.3540\unins000.dat (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
C:\Program Files\Internet Saving Optimizer\3.0.0.3540\unins000.exe (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
C:\Program Files\Internet Saving Optimizer\3.0.0.3540\Data\config.md (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
C:\Program Files\Internet Saving Optimizer\3.0.0.3540\FF\chrome.manifest (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
C:\Program Files\Internet Saving Optimizer\3.0.0.3540\FF\install.rdf (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
C:\Program Files\Internet Saving Optimizer\3.0.0.3540\FF\chrome\NPAddOn.jar (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
C:\Program Files\Internet Saving Optimizer\3.0.0.3540\FF\chrome\content\NPAddOn.js (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
C:\Program Files\Internet Saving Optimizer\3.0.0.3540\FF\chrome\content\NPAddOn.xul (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
C:\Program Files\Internet Saving Optimizer\3.0.0.3540\FF\components\NPFFAddOn.dll (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
C:\Program Files\Internet Saving Optimizer\3.0.0.3540\FF\components\NPFFAddOn.xpt (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
C:\Program Files\Internet Saving Optimizer\3.0.0.3540\FF\components\NPFFHelperComponent.js (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
C:\Program Files\Internet Saving Optimizer\3.4.0.4340\unins000.dat (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
C:\Program Files\Internet Saving Optimizer\3.4.0.4340\unins000.exe (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
C:\Program Files\Internet Saving Optimizer\3.4.0.4340\Data\config.md (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
C:\Program Files\Internet Saving Optimizer\3.4.0.4340\FF\chrome.manifest (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
C:\Program Files\Internet Saving Optimizer\3.4.0.4340\FF\install.rdf (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
C:\Program Files\Internet Saving Optimizer\3.4.0.4340\FF\chrome\NPAddOn.jar (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
C:\Program Files\Internet Saving Optimizer\3.4.0.4340\FF\chrome\content\NPAddOn.js (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
C:\Program Files\Internet Saving Optimizer\3.4.0.4340\FF\chrome\content\NPAddOn.xul (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
C:\Program Files\Internet Saving Optimizer\3.4.0.4340\FF\components\NPFFAddOn.xpt (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
C:\Program Files\Internet Saving Optimizer\3.4.0.4340\FF\components\NPFFHelperComponent.js (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
C:\Program Files\Media Access Startup\1.0.0.610\unins000.dat (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
C:\Program Files\Media Access Startup\1.0.0.610\unins000.exe (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
C:\Program Files\Media Access Startup\1.0.0.610\Data\config.md (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
C:\Program Files\Media Access Startup\1.0.0.610\FF\chrome.manifest (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
C:\Program Files\Media Access Startup\1.0.0.610\FF\install.rdf (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
C:\Program Files\Media Access Startup\1.0.0.610\FF\chrome\HPAddOn.jar (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
C:\Program Files\Media Access Startup\1.0.0.610\FF\chrome\content\HPAddOn.js (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
C:\Program Files\Media Access Startup\1.0.0.610\FF\chrome\content\HPAddOn.xul (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
C:\Program Files\Media Access Startup\1.0.0.610\FF\components\HPFFAddOn.xpt (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
C:\Program Files\Media Access Startup\1.0.0.610\FF\components\HPFFHelperComponent.js (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
C:\Program Files\Media Access Startup\1.3.0.790\HPCommon.dll (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
C:\Program Files\Media Access Startup\1.3.0.790\unins000.dat (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
C:\Program Files\Media Access Startup\1.3.0.790\unins000.exe (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
C:\Program Files\Media Access Startup\1.3.0.790\Data\config.md (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
C:\Program Files\Media Access Startup\1.3.0.790\FF\chrome.manifest (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
C:\Program Files\Media Access Startup\1.3.0.790\FF\install.rdf (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
C:\Program Files\Media Access Startup\1.3.0.790\FF\chrome\HPAddOn.jar (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
C:\Program Files\Media Access Startup\1.3.0.790\FF\chrome\content\HPAddOn.js (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
C:\Program Files\Media Access Startup\1.3.0.790\FF\chrome\content\HPAddOn.xul (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
C:\Program Files\Media Access Startup\1.3.0.790\FF\components\HPFFAddOn.xpt (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
C:\Program Files\Media Access Startup\1.3.0.790\FF\components\HPFFHelperComponent.js (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
C:\Program Files\MyWebSearch\bar\5.bin\F3HTMLMU.DLL (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files\MyWebSearch\bar\5.bin\M3PLUGIN.DLL (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files\MyWebSearch\bar\5.bin\MWSBAR.DLL (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files\MyWebSearch\bar\5.bin\MWSOEMON.EXE (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files\MyWebSearch\bar\5.bin\MWSOESTB.DLL (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files\MyWebSearch\bar\6.bin\M3FFXTBR.JAR (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files\MyWebSearch\bar\6.bin\F3BKGERR.JPG (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files\MyWebSearch\bar\6.bin\F3IMSTUB.DLL (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files\MyWebSearch\bar\6.bin\F3PSSAVR.SCR (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files\MyWebSearch\bar\6.bin\F3RESTUB.DLL (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files\MyWebSearch\bar\6.bin\F3SCHMON.EXE (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files\MyWebSearch\bar\6.bin\F3SPACER.WMV (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files\MyWebSearch\bar\6.bin\F3WALLPP.DAT (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files\MyWebSearch\bar\6.bin\F3WPHOOK.DLL (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files\MyWebSearch\bar\6.bin\FWPBUDDY.PNG (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files\MyWebSearch\bar\6.bin\M3FFXTBR.MANIFEST (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files\MyWebSearch\bar\6.bin\M3HIGHIN.EXE (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files\MyWebSearch\bar\6.bin\M3IDLE.DLL (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files\MyWebSearch\bar\6.bin\M3IMPIPE.EXE (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files\MyWebSearch\bar\6.bin\M3MEDINT.EXE (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files\MyWebSearch\bar\6.bin\M3NTSTBR.JAR (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files\MyWebSearch\bar\6.bin\M3NTSTBR.MANIFEST (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files\MyWebSearch\bar\6.bin\M3PLUGIN.DLL (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files\MyWebSearch\bar\6.bin\M3SKPLAY.EXE (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files\MyWebSearch\bar\6.bin\M3SLSRCH.EXE (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files\MyWebSearch\bar\6.bin\M3SRCHMN.EXE (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files\MyWebSearch\bar\6.bin\MWSOEMON.EXE (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files\MyWebSearch\bar\6.bin\MWSOESTB.DLL (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files\MyWebSearch\bar\6.bin\NPMYWEBS.DLL (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files\MyWebSearch\bar\Avatar\COMMON.F3S (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files\MyWebSearch\bar\Game\CHECKERS.F3S (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files\MyWebSearch\bar\Game\CHESS.F3S (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files\MyWebSearch\bar\Game\REVERSI.F3S (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files\MyWebSearch\bar\icons\CM.ICO (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files\MyWebSearch\bar\icons\MFC.ICO (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files\MyWebSearch\bar\icons\PSS.ICO (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files\MyWebSearch\bar\icons\SMILEY.ICO (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files\MyWebSearch\bar\icons\WB.ICO (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files\MyWebSearch\bar\icons\ZWINKY.ICO (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files\MyWebSearch\bar\Message\COMMON.F3S (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files\MyWebSearch\bar\Notifier\COMMON.F3S (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files\MyWebSearch\bar\Notifier\DOG.F3S (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files\MyWebSearch\bar\Notifier\FISH.F3S (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files\MyWebSearch\bar\Notifier\KUNGFU.F3S (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files\MyWebSearch\bar\Notifier\LIFEGARD.F3S (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files\MyWebSearch\bar\Notifier\MAID.F3S (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files\MyWebSearch\bar\Notifier\MAILBOX.F3S (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files\MyWebSearch\bar\Notifier\OPERA.F3S (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files\MyWebSearch\bar\Notifier\ROBOT.F3S (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files\MyWebSearch\bar\Notifier\SEDUCT.F3S (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files\MyWebSearch\bar\Notifier\SURFER.F3S (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files\MyWebSearch\bar\Settings\s_pid.dat (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files\MyWebSearch\SrchAstt\5.bin\MWSSRCAS.DLL (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files\System Search Dispatcher\1.2.0.750\unins000.dat (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
C:\Program Files\System Search Dispatcher\1.2.0.750\unins000.exe (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
C:\Program Files\System Search Dispatcher\1.2.0.750\Data\eacore.mx (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
C:\Program Files\System Search Dispatcher\1.2.0.750\Data\URLDynamic.mx (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
C:\Program Files\System Search Dispatcher\1.2.0.750\Data\URLStatic.mx (Adware.DoubleD) -> Žádná instrukce nebyla provedena.
C:\Program Files\MyWebSearch\SrchAstt\6.bin\MWSSRCAS.DLL (Trojan.BHO) -> Žádná instrukce nebyla provedena.
C:\Program Files\MyWebSearch\bar\6.bin\MWSBAR.DLL (Trojan.BHO) -> Žádná instrukce nebyla provedena.

(konec)

[Roli]

Vše co Mbam našel nech smazat.

Pak mi sem dej aktuální log z Rsit.

[vento192]

Logfile of random's system information tool 1.09 (written by random/random)
Run by Anička at 2012-12-27 22:51:26
Microsoft® Windows Vista™ Business Service Pack 2
System drive C: has 31 GB (20%) free of 153 GB
Total RAM: 2039 MB (40% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:51:43, on 27.12.2012
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v9.00 (9.00.8112.16457)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe
C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe
C:\Users\Anička\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Anička\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Anička\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Anička\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Anička\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Anička\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files\iTunes\iTunes.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceHelper.exe
C:\Program Files\Common Files\Apple\Apple Application Support\distnoted.exe
C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe
C:\Users\Anička\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Anička\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Anička\AppData\Local\Google\Chrome\Application\chrome.exe
C:\PROGRA~1\NORTON~2\Engine\361~1.11\Nss.exe
C:\Windows\system32\conime.exe
C:\Users\Anička\Documents\RSIT (1).exe
C:\Program Files\trend micro\Anička.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://start.icq.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.sweetim.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - - (no file)
R3 - URLSearchHook: (no name) - {EEE6C35D-6118-11DC-9C72-001320C79847} - (no file)
R3 - URLSearchHook: (no name) - {51a86bb3-6602-4c85-92a5-130ee4864f13} - (no file)
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Pomocná služba pro přihlášení ke službě Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: (no name) - {C988A1BF-D300-4A4C-9A63-AFDF23671052} - C:\Windows\system32\tuvULDTL.dll
O2 - BHO: FDMIECookiesBHO Class - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files\Free Download Manager\iefdm2.dll
O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKLM\..\Policies\Explorer\Run: [QuickTimeTask] C:\Program Files\Applications\wcs.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~1\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Stáhnout Free Download Managerem - file://C:\Program Files\Free Download Manager\dllink.htm
O8 - Extra context menu item: Stáhnout video Free Download Managerem - file://C:\Program Files\Free Download Manager\dlfvideo.htm
O8 - Extra context menu item: Stáhnout vybrané Free Download Managerem - file://C:\Program Files\Free Download Manager\dlselected.htm
O8 - Extra context menu item: Stáhnout vše Free Download Managerem - file://C:\Program Files\Free Download Manager\dlall.htm
O8 - Extra context menu item: WikiKomentáře Google... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_D183CA64F05FDD98.dll/cmsidewiki.html
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~1\OFFICE11\REFIEBAR.DLL
O9 - Extra button: HP Chytrý výběr - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Skype C2C Service - Skype Technologies S.A. - C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe

--
End of file - 7375 bytes

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3200825367-1654856761-2187400013-1000Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3200825367-1654856761-2187400013-1000UA.job
C:\Windows\tasks\Norton Security Scan for Anička.job
C:\Windows\tasks\Updater.job
C:\Windows\tasks\User_Feed_Synchronization-{22F063E7-62C6-4D9A-BC26-75EC6E434F51}.job

=========Mozilla firefox=========

ProfilePath - C:\Users\Anička\AppData\Roaming\Mozilla\Firefox\Profiles\e0thmcks.default

prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "http://search.conduit.com/?ctid=CT27766 ... hSource=13"
prefs.js - "extensions.enabledItems" - "{64e8cc5b-20db-4212-8320-178fc5ae71f7}:1.0, {800b5000-a755-47e1-992b-48a1c1357f07}:1.1.7, {20a82645-c095-46ed-80e3-08825760534b}:1.2.1, {2224E955-00E9-4613-A844-CE69FCCAAE91}:3.4.0.4340, {EEE6C361-6118-11DC-9C72-001320C79847}:1.0.0.10, {872b5b88-9db5-4310-bdd0-ac189557e5f5}:2.7.2.0, {ACAA314B-EEBA-48e4-AD47-84E31C44796C}:1.0.1, {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24, toolbar@ask.com:3.14.1.100010, {82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}:5.8.0.8855, fdm_ffext@freedownloadmanager.org:1.3.4, {6C8B07BF-0F6D-4EA4-B96F-FF1CCBAAE553}:1.3.7, {51a86bb3-6602-4c85-92a5-130ee4864f13}:3.8.1.0, {23fcfd51-4958-4f00-80a3-ae97e717ed8b}:2.1.2.145, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.8"
prefs.js - "keyword.URL" - "http://search.sweetim.com/search.asp?src=2&q="

"{20a82645-c095-46ed-80e3-08825760534b}"=c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"smartwebprinting@hp.com"=C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn2


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.5.502.135 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_11_5_502_135.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\Windows\system32\Adobe\Director\np32dsw.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Apple.com/iTunes,version=]
"Description"=iTunes Detector Plug-in
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Apple.com/iTunes,version=1.0]
"Description"=
"Path"=C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@google.com/npPicasa3,version=3.0.0]
"Description"=Picasa3 plugin
"Path"=C:\Program Files\Google\Picasa3\npPicasa3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeLive,version=1.5]
"Description"=Office Live Update v1.5
"Path"=C:\Program Files\Microsoft\Office Live\npOLW.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll

C:\Program Files\Mozilla Firefox\extensions\
{800b5000-a755-47e1-992b-48a1c1357f07}
{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
{972ce4c6-7e08-4474-a285-3208198ce6fd}
{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}

C:\Program Files\Mozilla Firefox\components\
browser.xpt
browserdirprovider.dll
brwsrcmp.dll
coFFPlgn.dll
components.list
compreg.dat
FeedConverter.js
FeedProcessor.js
FeedWriter.js
fuelApplication.js
GPSDGeolocationProvider.js
jsconsole-clhandler.js
NetworkGeolocationProvider.js
nsAddonRepository.js
nsBadCertHandler.js
nsBlocklistService.js
nsBrowserContentHandler.js
nsBrowserGlue.js
nsContentDispatchChooser.js
nsContentPrefService.js
nsDefaultCLH.js
nsDownloadManagerUI.js
nsExtensionManager.js
nsFormAutoComplete.js
nsHandlerService.js
nsHelperAppDlg.js
nsINIProcessor.js
nsLivemarkService.js
nsLoginInfo.js
nsLoginManager.js
nsLoginManagerPrompter.js
nsMicrosummaryService.js
nsPlacesAutoComplete.js
nsPlacesDBFlush.js
nsPlacesTransactionsService.js
nsPrivateBrowsingService.js
nsProxyAutoConfig.js
nsSafebrowsingApplication.js
nsSearchService.js
nsSearchSuggestions.js
nsSessionStartup.js
nsSessionStore.js
nsSetDefaultBrowser.js
nsSidebar.js
nsTaggingService.js
nsTryToClose.js
nsUpdateService.js
nsUpdateServiceStub.js
nsUpdateTimerManager.js
nsUrlClassifierLib.js
nsUrlClassifierListManager.js
nsURLFormatter.js
nsWebHandlerApp.js
pluginGlue.js
storage-Legacy.js
storage-mozStorage.js
txEXSLTRegExFunctions.js
WebContentConverter.js
xpti.dat

C:\Program Files\Mozilla Firefox\plugins\
npdeployJava1.dll
npnul32.dll
nppdf32.dll

C:\Program Files\Mozilla Firefox\searchplugins\
google.xml
jyxo-cz.xml
mall-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml

C:\Users\Anička\AppData\Roaming\Mozilla\Firefox\Profiles\e0thmcks.default\extensions\
{20a82645-c095-46ed-80e3-08825760534b}
{51a86bb3-6602-4c85-92a5-130ee4864f13}
{64e8cc5b-20db-4212-8320-178fc5ae71f7}
{800b5000-a755-47e1-992b-48a1c1357f07}
{872b5b88-9db5-4310-bdd0-ac189557e5f5}
{ACAA314B-EEBA-48e4-AD47-84E31C44796C}
{EEE6C361-6118-11DC-9C72-001320C79847}
{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}

C:\Users\Anička\AppData\Roaming\Mozilla\Firefox\Profiles\e0thmcks.default\searchplugins\
askcom.xml
conduit.xml
icqplugin-1.xml
icqplugin-10.xml
icqplugin-11.xml
icqplugin-12.xml
icqplugin-13.xml
icqplugin-14.xml
icqplugin-15.xml
icqplugin-2.xml
icqplugin-3.xml
icqplugin-4.xml
icqplugin-5.xml
icqplugin-6.xml
icqplugin-7.xml
icqplugin-8.xml
icqplugin-9.xml
icqplugin.xml
sweetim.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-09-22 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocná služba pro přihlášení ke službě Windows Live ID - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18 403840]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2012-12-13 4527888]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C988A1BF-D300-4A4C-9A63-AFDF23671052}]
C:\Windows\system32\tuvULDTL.dll [2008-10-28 33280]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{CC59E0F9-7E43-44FA-9FAA-8377850BF205}]
FDMIECookiesBHO Class - C:\Program Files\Free Download Manager\iefdm2.dll [2008-12-30 98304]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856}]
HP Smart BHO Class - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2008-10-16 505136]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-19 1008184]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"QuickTimeTask"=C:\Program Files\Applications\wcs.exe []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2012-07-13 17418928]
"WMPNSCFG"=C:\Program Files\Windows Media Player\WMPNSCFG.exe [2008-01-19 202240]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2008-02-11 204800]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{C988A1BF-D300-4A4C-9A63-AFDF23671052}"=C:\Windows\system32\tuvULDTL.dll [2008-10-28 33280]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"DisableTaskMgr"=0
"EnableUIADesktopToggle"=0
"EnableLUA"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoFolderOptions"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"BindDirectlyToPropertySetStorage"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo8"=VfWWDM32.dll
"msacm.lhacm"=lhacm.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux3"=wdmaud.drv
"msacm.ac3filter"=ac3filter.acm
"vidc.xvid"=xvidvfw.dll
"vidc.ffds"=ff_vfw.dll
"vidc.vp60"=vp6vfw.dll
"vidc.vp61"=vp6vfw.dll
"vidc.vp62"=vp6vfw.dll
"vidc.hfyu"=huffyuv.dll
"msacm.at3"=atrac3.acm
"msacm.divxa32"=DivXa32.acm
"msacm.lameacm"=LameACM.acm
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux4"=wdmaud.drv
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"aux5"=wdmaud.drv
"wave6"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer6"=wdmaud.drv
"aux6"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2012-12-26 20:28:11 ----A---- C:\Windows\system32\atmfd.dll
2012-12-26 20:28:10 ----A---- C:\Windows\system32\atmlib.dll
2012-12-26 20:20:56 ----D---- C:\Users\Anička\AppData\Roaming\InstallShield
2012-12-26 19:25:19 ----D---- C:\Users\Anička\AppData\Roaming\Malwarebytes
2012-12-26 19:24:57 ----D---- C:\ProgramData\Malwarebytes
2012-12-25 18:11:05 ----D---- C:\Program Files\trend micro
2012-12-25 18:11:04 ----D---- C:\rsit
2012-12-24 12:22:33 ----D---- C:\ProgramData\Logishrd
2012-12-24 12:22:14 ----D---- C:\ProgramData\Logitech
2012-12-16 03:08:53 ----A---- C:\Windows\system32\mshtmled.dll
2012-12-16 03:08:52 ----A---- C:\Windows\system32\vbscript.dll
2012-12-16 03:08:52 ----A---- C:\Windows\system32\ieui.dll
2012-12-16 03:08:51 ----A---- C:\Windows\system32\msfeeds.dll
2012-12-16 03:08:51 ----A---- C:\Windows\system32\jsproxy.dll
2012-12-16 03:08:51 ----A---- C:\Windows\system32\ieUnatt.exe
2012-12-16 03:08:50 ----A---- C:\Windows\system32\wininet.dll
2012-12-16 03:08:50 ----A---- C:\Windows\system32\jscript.dll
2012-12-16 03:08:49 ----A---- C:\Windows\system32\url.dll
2012-12-16 03:08:49 ----A---- C:\Windows\system32\jscript9.dll
2012-12-16 03:08:48 ----A---- C:\Windows\system32\iertutil.dll
2012-12-16 03:08:47 ----A---- C:\Windows\system32\urlmon.dll
2012-12-16 03:08:46 ----A---- C:\Windows\system32\ieframe.dll
2012-12-16 03:08:43 ----A---- C:\Windows\system32\mshtml.dll
2012-12-16 03:04:07 ----A---- C:\Windows\system32\Wdfres.dll
2012-12-16 03:04:01 ----A---- C:\Windows\system32\winusb.dll
2012-12-16 03:04:01 ----A---- C:\Windows\system32\drivers\WUDFRd.sys
2012-12-16 03:04:01 ----A---- C:\Windows\system32\drivers\WUDFPf.sys
2012-12-16 03:04:00 ----A---- C:\Windows\system32\WUDFSvc.dll
2012-12-16 03:04:00 ----A---- C:\Windows\system32\WUDFPlatform.dll
2012-12-16 03:03:59 ----A---- C:\Windows\system32\drivers\WdfLdr.sys
2012-12-16 03:03:59 ----A---- C:\Windows\system32\drivers\Wdf01000.sys
2012-12-16 03:03:57 ----A---- C:\Windows\system32\WUDFx.dll
2012-12-16 03:03:57 ----A---- C:\Windows\system32\WUDFHost.exe
2012-12-16 03:03:57 ----A---- C:\Windows\system32\WUDFCoinstaller.dll
2012-12-12 18:40:18 ----A---- C:\Windows\system32\win32k.sys
2012-12-12 18:40:17 ----A---- C:\Windows\system32\dpnet.dll
2012-12-12 18:40:16 ----A---- C:\Windows\system32\dpnsvr.exe
2012-12-12 18:40:15 ----A---- C:\Windows\system32\drivers\volsnap.sys
2012-12-12 18:40:13 ----A---- C:\Windows\system32\kernel32.dll
2012-12-12 18:40:06 ----A---- C:\Windows\system32\tzres.dll

======List of files/folders modified in the last 1 month======

2012-12-27 22:51:40 ----D---- C:\Windows\Prefetch
2012-12-27 22:51:28 ----D---- C:\Windows\Temp
2012-12-27 22:45:15 ----D---- C:\Users\Anička\AppData\Roaming\Skype
2012-12-27 19:04:15 ----SHD---- C:\System Volume Information
2012-12-27 18:55:27 ----D---- C:\Program Files\Common Files\Symantec Shared
2012-12-26 20:53:59 ----D---- C:\Windows\winsxs
2012-12-26 20:36:08 ----SHD---- C:\Windows\Installer
2012-12-26 20:36:08 ----HD---- C:\Config.Msi
2012-12-26 20:33:46 ----D---- C:\Windows\system32\catroot
2012-12-26 20:31:14 ----D---- C:\Windows\System32
2012-12-26 20:31:14 ----D---- C:\Windows
2012-12-26 20:21:21 ----HD---- C:\Program Files\InstallShield Installation Information
2012-12-26 20:21:21 ----A---- C:\Windows\win.ini
2012-12-26 20:21:19 ----D---- C:\Windows\inf
2012-12-26 20:21:15 ----D---- C:\Windows\twain_32
2012-12-26 20:21:15 ----D---- C:\Windows\system32\drivers
2012-12-26 20:21:15 ----D---- C:\Program Files\Common Files
2012-12-26 20:19:50 ----RD---- C:\Program Files
2012-12-26 19:59:10 ----A---- C:\Windows\system32\PerfStringBackup.INI
2012-12-26 19:47:17 ----D---- C:\Windows\system
2012-12-26 19:44:34 ----D---- C:\Program Files\Internet Explorer
2012-12-26 19:24:57 ----HD---- C:\ProgramData
2012-12-25 18:38:45 ----D---- C:\Windows\system32\catroot2
2012-12-25 18:36:06 ----D---- C:\Program Files\FastestTube
2012-12-19 12:04:22 ----D---- C:\ProgramData\Skype
2012-12-17 22:04:15 ----D---- C:\Windows\Debug
2012-12-16 03:48:04 ----D---- C:\Windows\rescache
2012-12-16 03:28:36 ----D---- C:\Windows\system32\migration
2012-12-16 03:28:35 ----D---- C:\Windows\system32\wbem
2012-12-16 03:28:35 ----D---- C:\Windows\system32\drivers\cs-CZ
2012-12-16 03:28:35 ----D---- C:\Windows\system32\cs-CZ
2012-12-16 03:01:33 ----A---- C:\Windows\system32\mrt.exe
2012-12-11 19:51:08 ----A---- C:\Windows\system32\FlashPlayerApp.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2012-08-30 193552]
R1 MpKsle3be0e44;MpKsle3be0e44; \??\c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{52A159D7-1EFE-4ED1-AEFC-F0C4C16E5182}\MpKsle3be0e44.sys [2012-12-26 29904]
R2 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2012-08-30 99272]
R3 AgereSoftModem;Agere Systems Soft Modem; C:\Windows\system32\DRIVERS\AGRSM.sys [2006-11-02 983552]
R3 EMSCR;EMSCR; C:\Windows\system32\DRIVERS\EMS7SK.sys [2007-01-31 67584]
R3 ESDCR;ESDCR; C:\Windows\system32\DRIVERS\ESD7SK.sys [2007-01-31 46592]
R3 ESMCR;ESMCR; C:\Windows\system32\DRIVERS\ESM7SK.sys [2007-01-31 61952]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\System32\Drivers\GEARAspiWDM.sys [2009-05-18 26600]
R3 HdAudAddService;Ovladač funkce Microsoft 1.1 UAA pro službu zvuku High Definition Audio; C:\Windows\system32\drivers\HdAudio.sys [2009-04-11 236544]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd32.sys [2008-02-11 2302976]
R3 MSPCLOCK;Server proxy hodin datových proudů Microsoft; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-19 5888]
R3 MSPQM;Server proxy správce kvality datových proudů Microsoft; C:\Windows\system32\drivers\MSPQM.sys [2008-01-19 5504]
R3 NETw4v32;Ovladač adaptéru Intel(R) Wireless WiFi Link pro systém Windows Vista 32 Bit; C:\Windows\system32\DRIVERS\NETw4v32.sys [2007-09-26 2251776]
R3 RTL8169;Realtek 8169 NT Driver; C:\Windows\system32\DRIVERS\Rtlh86.sys [2006-11-02 44544]
R3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2009-04-11 89088]
R3 TcUsb;TC USB Kernel Driver; C:\Windows\System32\Drivers\tcusb.sys [2007-03-28 46992]
R3 usbaudio;Ovladač zvuků USB (WDM); C:\Windows\system32\drivers\usbaudio.sys [2009-04-11 73216]
R3 usbvideo;Zobrazovací zařízení USB (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2008-01-19 134016]
R3 VCSVADHWSer;Avnex Virtual Audio Device (WDM); C:\Windows\system32\DRIVERS\vcsvad.sys [2008-12-26 17792]
R3 WudfPf;@%SystemRoot%\system32\drivers\Wudfpf.sys,-1000; C:\Windows\system32\drivers\WudfPf.sys [2012-07-26 66560]
S2 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys []
S2 WCMVCAM;WebcamMax, WDM Video Capture; C:\Windows\system32\DRIVERS\wcmvcam.sys [2011-06-23 1068216]
S3 drmkaud;Dekodér zvuků DRM jádra společnosti Microsoft; C:\Windows\system32\drivers\drmkaud.sys [2008-01-19 5632]
S3 EraserUtilDrv11220;EraserUtilDrv11220; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilDrv11220.sys [2012-12-27 106656]
S3 k750bus;Sony Ericsson 750 driver (WDM); C:\Windows\system32\DRIVERS\k750bus.sys [2005-02-11 55216]
S3 k750mdfl;Sony Ericsson 750 USB WMC Modem Filter; C:\Windows\system32\DRIVERS\k750mdfl.sys [2005-07-07 6576]
S3 k750mdm;Sony Ericsson 750 USB WMC Modem Drivers; C:\Windows\system32\DRIVERS\k750mdm.sys [2005-07-07 89872]
S3 MSKSSRV;Server proxy služby datových proudů Microsoft; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-19 8192]
S3 MSTEE;Konvertor jímka-jímka typu T datových proudů Microsoft; C:\Windows\system32\drivers\MSTEE.sys [2008-01-19 6016]
S3 Netaapl;Apple Mobile Device Ethernet Service; C:\Windows\system32\DRIVERS\netaapl.sys [2011-08-02 18432]
S3 s3017bus;Sony Ericsson Device 3017 driver (WDM); C:\Windows\system32\DRIVERS\s3017bus.sys [2007-12-10 83880]
S3 s3017mdfl;Sony Ericsson Device 3017 USB WMC Modem Filter; C:\Windows\system32\DRIVERS\s3017mdfl.sys [2007-12-10 15016]
S3 s3017mdm;Sony Ericsson Device 3017 USB WMC Modem Driver; C:\Windows\system32\DRIVERS\s3017mdm.sys [2007-12-10 110632]
S3 s3017mgmt;Sony Ericsson Device 3017 USB WMC Device Management Drivers (WDM); C:\Windows\system32\DRIVERS\s3017mgmt.sys [2007-12-10 104616]
S3 s3017nd5;Sony Ericsson Device 3017 USB Ethernet Emulation SEMC3017 (NDIS); C:\Windows\system32\DRIVERS\s3017nd5.sys [2007-12-10 25512]
S3 s3017obex;Sony Ericsson Device 3017 USB WMC OBEX Interface; C:\Windows\system32\DRIVERS\s3017obex.sys [2007-12-10 100648]
S3 s3017unic;Sony Ericsson Device 3017 USB Ethernet Emulation SEMC3017 (WDM); C:\Windows\system32\DRIVERS\s3017unic.sys [2007-12-10 110120]
S3 SNP325;USB PC Camera (SNPSTD325); C:\Windows\system32\DRIVERS\snp325.sys []
S3 StillCam;Ovladač digitálního fotoaparátu pro sériový port; C:\Windows\system32\DRIVERS\serscan.sys [2008-01-19 9216]
S3 SymIMMP;SymIMMP; C:\Windows\system32\DRIVERS\SymIM.sys []
S3 USBAAPL;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl.sys [2011-08-02 42496]
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2009-10-01 40448]
S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2012-07-26 155136]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2011-10-24 55144]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 390504]
R2 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2008-01-19 21504]
R2 hpqddsvc;Služba HP CUE DeviceDiscovery; C:\Windows\system32\svchost.exe [2008-01-19 21504]
R2 HPSLPSVC;HP Network Devices Support; C:\Windows\system32\svchost.exe [2008-01-19 21504]
R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\MsMpEng.exe [2012-09-12 20472]
R2 Skype C2C Service;Skype C2C Service; C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2012-12-13 3290896]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2009-08-18 1529728]
R3 hpqcxs08;hpqcxs08; C:\Windows\system32\svchost.exe [2008-01-19 21504]
R3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2011-12-08 821608]
R3 NisSrv;@c:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; c:\Program Files\Microsoft Security Client\NisSrv.exe [2012-09-12 287824]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-04-04 135664]
S2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2008-01-19 21504]
S2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2008-01-19 21504]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2012-07-13 160944]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-12-11 250808]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-04-04 135664]
S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2010-04-04 182768]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 WPFFontCache_v0400;@c:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe,-100; C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]

-----------------EOF-----------------

[Roli]

Tohle fixni v HJT :

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://start.icq.com/
R3 - URLSearchHook: (no name) - - (no file)
R3 - URLSearchHook: (no name) - {EEE6C35D-6118-11DC-9C72-001320C79847} - (no file)
R3 - URLSearchHook: (no name) - {51a86bb3-6602-4c85-92a5-130ee4864f13} - (no file)
O2 - BHO: (no name) - {C988A1BF-D300-4A4C-9A63-AFDF23671052} - C:\Windows\system32\tuvULDTL.dll
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKLM\..\Policies\Explorer\Run: [QuickTimeTask] C:\Program Files\Applications\wcs.exe

HJT najdeš zde :

C:\Program Files\trend micro\Anička.exe

Fix znamená že spustíš HJT jako admin

v okně které se ti otevře klikneš na Do a system scan only

v dalším okně najdeš řádky které jsem ti vypsal,

vedle nich je čtvereček do kterého uděláš zatržítko,

pak klikneš na Fix checked které je vlevo dole,

program se ti zeptá zda opravdu ANO s tím samozřejmě souhlasíš a je hotovo.


Přes Start >> Všechny programy >> Příslušenství >> Spustit >> napiš - services.msc >> Enter. Najdi službu :

Služba Google Update (gupdate)

Služba Google Update (gupdatem)

Google Software Updater (gusvc)

klikni na ni pravým myšítkem, zvol vlastnosti, na další kartě nejprve službu zastav tlačítkem Zastavit a u položky Typ spouštění zvol Zakázáno.


Smaž nepotřebné soubory

pomocí CCleaneru

návod :

Čistič - tady vyčistíš PC od nepotřebných souborů a vysypeš Koš

Registry - tady vyčistíš registry (před použitím doporučuji udělat jejich zálohu kterou CCleaner nabízí)

čištění registru je třeba několikrát zopakovat !

Nástroje - tady lze odinstalovat programy, upravit co se spustí po Startu systému a obnovit systém


Stáhni a spusť OTMoveIt

do levého okna aplikace pod Paste Instructions for Items to be Moved zkopíruj tento text:

Kód: Vybrat vše

:processes
explorer.exe       

:files 
C:\*.tmp
C:\WINDOWS\System32\*.tmp
C:\WINDOWS\*.tmp
C:\Users\Anička\AppData\Roaming\Mozilla\Firefox\Profiles\e0thmcks.default\searchplugins\*.xml
C:\Windows\system32\DRIVERS\eamonm.sys

:services
eamonm

:commands
[purity]
[emptytemp]
[start explorer]

klikni na MoveIt! a v pravém zeleném okně aplikace se Ti objeví info o provedene akci, obsah okna zkopíruj sem,

pokud aplikace bude požadovat restart, klikni na YES

v tom případě sem chci zkopírovat obsah logu uloženého na C:\_OTMoveIt\MovedFiles\

[vento192]

All processes killed
========== PROCESSES ==========
No active process named explorer.exe was found!
========== FILES ==========
File/Folder C:\*.tmp not found.
File/Folder C:\WINDOWS\System32\*.tmp not found.
File/Folder C:\WINDOWS\*.tmp not found.
C:\Users\Anička\AppData\Roaming\Mozilla\Firefox\Profiles\e0thmcks.default\searchplugins\askcom.xml moved successfully.
C:\Users\Anička\AppData\Roaming\Mozilla\Firefox\Profiles\e0thmcks.default\searchplugins\conduit.xml moved successfully.
C:\Users\Anička\AppData\Roaming\Mozilla\Firefox\Profiles\e0thmcks.default\searchplugins\icqplugin-1.xml moved successfully.
C:\Users\Anička\AppData\Roaming\Mozilla\Firefox\Profiles\e0thmcks.default\searchplugins\icqplugin-10.xml moved successfully.
C:\Users\Anička\AppData\Roaming\Mozilla\Firefox\Profiles\e0thmcks.default\searchplugins\icqplugin-11.xml moved successfully.
C:\Users\Anička\AppData\Roaming\Mozilla\Firefox\Profiles\e0thmcks.default\searchplugins\icqplugin-12.xml moved successfully.
C:\Users\Anička\AppData\Roaming\Mozilla\Firefox\Profiles\e0thmcks.default\searchplugins\icqplugin-13.xml moved successfully.
C:\Users\Anička\AppData\Roaming\Mozilla\Firefox\Profiles\e0thmcks.default\searchplugins\icqplugin-14.xml moved successfully.
C:\Users\Anička\AppData\Roaming\Mozilla\Firefox\Profiles\e0thmcks.default\searchplugins\icqplugin-15.xml moved successfully.
C:\Users\Anička\AppData\Roaming\Mozilla\Firefox\Profiles\e0thmcks.default\searchplugins\icqplugin-2.xml moved successfully.
C:\Users\Anička\AppData\Roaming\Mozilla\Firefox\Profiles\e0thmcks.default\searchplugins\icqplugin-3.xml moved successfully.
C:\Users\Anička\AppData\Roaming\Mozilla\Firefox\Profiles\e0thmcks.default\searchplugins\icqplugin-4.xml moved successfully.
C:\Users\Anička\AppData\Roaming\Mozilla\Firefox\Profiles\e0thmcks.default\searchplugins\icqplugin-5.xml moved successfully.
C:\Users\Anička\AppData\Roaming\Mozilla\Firefox\Profiles\e0thmcks.default\searchplugins\icqplugin-6.xml moved successfully.
C:\Users\Anička\AppData\Roaming\Mozilla\Firefox\Profiles\e0thmcks.default\searchplugins\icqplugin-7.xml moved successfully.
C:\Users\Anička\AppData\Roaming\Mozilla\Firefox\Profiles\e0thmcks.default\searchplugins\icqplugin-8.xml moved successfully.
C:\Users\Anička\AppData\Roaming\Mozilla\Firefox\Profiles\e0thmcks.default\searchplugins\icqplugin-9.xml moved successfully.
C:\Users\Anička\AppData\Roaming\Mozilla\Firefox\Profiles\e0thmcks.default\searchplugins\icqplugin.xml moved successfully.
C:\Users\Anička\AppData\Roaming\Mozilla\Firefox\Profiles\e0thmcks.default\searchplugins\sweetim.xml moved successfully.
File/Folder C:\Windows\system32\DRIVERS\eamonm.sys not found.
========== SERVICES/DRIVERS ==========
Service eamonm stopped successfully!
Service eamonm deleted successfully!
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Anièka

User: Anička
->Temp folder emptied: 1008684 bytes
->Temporary Internet Files folder emptied: 111519 bytes
->Java cache emptied: 11630 bytes
->FireFox cache emptied: 54942388 bytes
->Google Chrome cache emptied: 271605574 bytes
->Flash cache emptied: 47819 bytes

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Public

User: Tatka
->Temp folder emptied: 5266644 bytes
->Temporary Internet Files folder emptied: 15841538 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 52542539 bytes
->Flash cache emptied: 820 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 40189 bytes
%systemroot%\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 21838654 bytes
%systemroot%\system32\config\systemprofile\AppData\LocalLow\Sun\Java\Deployment folder emptied: 741 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 404,00 mb


OTM by OldTimer - Version 3.1.21.0 log created on 12282012_112936

Files moved on Reboot...
File C:\Users\Anička\AppData\Local\Temp\etilqs_tQ76M4DIDEmihSGsSqow not found!
File C:\Users\Anička\AppData\Local\Temp\etilqs_tQ76M4DIDEmihSGsSqow-journal not found!

Registry entries deleted on Reboot...

[Roli]

Znovu spusť OTMoveIt a nahoře v aplikaci klini na CleanUP!

tímto po sobě uklidí.


Stáhni a ulož na plochu ComboFix,

spusť aplikaci jako Administrátor a povol instalaci Konzole pro zotavení - Recovery Console.

Poté se zobrazí okno s licenčními podmínkami které potvrdíš kliknutím na ANO,

pak ještě jednou klik na ANO a už to jede.

Celá akce trvá okolo 10 minut ale může i déle, během skenu se nepokoušej spouštět nic jiného.

Při skenovaní může být PC i restartováno nelekat se.

Upozornění: po dobu skenu vypni rezidentní štít Antiviru a AntiSpy programu,

protože Combofix se pokouší napadené soubory smazat a tyto programy mu můžou bránit.

Po dokončení skenu nebo následném restartu aplikace vytvoří log, uložený na C:/Combofix.txt

(při opakovaném použití jsou logy číslovány Combofix2.txt atd.), jeho obsah zkopíruj sem.


V případě nejasností je ZDE obrázkový návod.