Preventivka

Zpráva

MiranDAA · #1 Příspěvek od **MiranDAA** » 24 říj 2014 19:55

Preventivka babiččina PC:

Logfile of random's system information tool 1.10 (written by random/random)
Run by HP_Administrator at 2014-10-24 20:53:52
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 52 GB (37%) free of 143 GB
Total RAM: 1014 MB (42% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:54:20, on 24.10.2014
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\IObit\Driver Booster\AutoUpdate.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\system32\svchost.exe
C:\windows\system\hpsysdrv.exe
C:\Program Files\Alwil Software\Avast5\AvastUI.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\SlySoft\AnyDVD\AnyDVDtray.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\Documents and Settings\HP_Administrator\Local Settings\Data aplikací\Google\Update\1.3.24.15\GoogleCrashHandler.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\Program Files\CCleaner\CCleaner.exe
C:\WINDOWS\system32\msiexec.exe
C:\Documents and Settings\HP_Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\HP_Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\HP_Administrator\Dokumenty\Downloads\RSIT.exe
C:\Program Files\trend micro\HP_Administrator.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,First Home Page = http://g.msn.com/1ewenusDefaultPack/UP97_FRPage
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll
O2 - BHO: Pomocník pro přihlášení ke službě Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [UpdatePRCShortCut] "C:\Windows\SMINST\MUITransfer\MUIStartMenu.exe" "C:\Windows\SMINST" UpdateWithCreateOnce "Software\CyberLink\PowerRecover"
O4 - HKLM\..\Run: [Reminder] C:\WINDOWS\SMINST\Reminder.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\Alwil Software\Avast5\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [MSConfig] C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\HP_Administrator\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=http://ie.redirect.hp.com/svs/rdr?TYPE= ... pf=desktop
O15 - Trusted Zone: http://*.mcafee.com (HKLM)
O15 - Trusted Zone: http://betavscan.mcafeeasap.com (HKLM)
O15 - Trusted Zone: http://vs.mcafeeasap.com (HKLM)
O15 - Trusted Zone: http://www.mcafeeasap.com (HKLM)
O15 - ESC Trusted Zone: http://*.mcafee.com (HKLM)
O15 - ESC Trusted Zone: http://betavscan.mcafeeasap.com (HKLM)
O15 - ESC Trusted Zone: http://vs.mcafeeasap.com (HKLM)
O15 - ESC Trusted Zone: http://www.mcafeeasap.com (HKLM)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/pub/s ... wflash.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: McciCMService - Motive Communications, Inc. - C:\Program Files\Common Files\Motive\McciCMService.exe

--
End of file - 8038 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\ASC4_PerformanceMonitor.job - C:\Program Files\IObit\Advanced SystemCare 4\PMonitor.exe
C:\WINDOWS\tasks\avast! Emergency Update.job - C:\Program Files\Alwil Software\Avast5\AvastEmUpdate.exe
C:\WINDOWS\tasks\Driver Booster Scan.job - C:\Program Files\IObit\Driver Booster\Scheduler.exe /scan
C:\WINDOWS\tasks\Driver Booster Update.job - C:\Program Files\IObit\Driver Booster\AutoUpdate.exe /auto
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-983854137-2692184862-674017586-1007Core1cc2737f8ffb476.job - C:\Documents and Settings\HP_Administrator\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-983854137-2692184862-674017586-1007UA.job - C:\Documents and Settings\HP_Administrator\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job - C:\WINDOWS\system32\xp_eos.exe
C:\WINDOWS\tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job - C:\WINDOWS\system32\xp_eos.exe -c

=========Mozilla firefox=========

ProfilePath - C:\Documents and Settings\HP_Administrator\Data aplikací\Mozilla\Firefox\Profiles\2ku2ulir.default

prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"
prefs.js - "keyword.URL" - "http://www.bing.com/search?FORM=UP97DF&PC=UP97&q="

"{20a82645-c095-46ed-80e3-08825760534b}"=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"jqs@sun.com"=C:\Program Files\Java\jre6\lib\deploy\jqs\ff
"wrc@avast.com"=C:\Program Files\Alwil Software\Avast5\WebRep\FF

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 15.0.0.152 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32_15_0_0_152.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@google.com/npPicasa3,version=3.0.0]
"Description"=Picasa3 plugin
"Path"=C:\Program Files\Google\Picasa3\npPicasa3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.25.5\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.25.5\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll

C:\Program Files\Mozilla Firefox\extensions\
{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}

C:\Documents and Settings\HP_Administrator\Data aplikací\Mozilla\Firefox\Profiles\2ku2ulir.default\searchplugins\
bingp.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll [2014-07-16 457712]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocník pro přihlášení ke službě Windows Live - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2013-10-09 4502400]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-07-21 42272]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2011-07-21 79648]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"hpsysdrv"=c:\windows\system\hpsysdrv.exe [1998-05-07 52736]
"UpdatePRCShortCut"=C:\Windows\SMINST\MUITransfer\MUIStartMenu.exe [2009-02-25 218408]
"Reminder"=C:\WINDOWS\SMINST\Reminder.exe [2010-05-03 1959208]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21 959904]
"AvastUI.exe"=C:\Program Files\Alwil Software\Avast5\AvastUI.exe [2014-08-01 4085896]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2010-04-27 19523616]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2014-08-05 134656]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2009-11-16 173592]
"Persistence"=C:\WINDOWS\system32\igfxpers.exe [2009-11-16 141336]
"MSConfig"=C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe [2008-04-14 171008]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"Google Update"=C:\Documents and Settings\HP_Administrator\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe [2010-12-25 136176]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2014-05-08 21444224]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner.exe [2014-09-26 4811032]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Advanced SystemCare 7]
C:\Program Files\IObit\Advanced SystemCare 7\ASCTray.exe [2014-04-21 2295584]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Advanced SystemCare Ultimate]
C:\Program Files\IObit\Advanced SystemCare Ultimate 7\ASCTray.exe /Auto []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AnyDVD]
C:\Program Files\SlySoft\AnyDVD\AnyDVDtray.exe [2008-04-22 1739712]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files\DAEMON Tools Lite\DTLite.exe [2012-02-13 3481408]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
C:\Documents and Settings\HP_Administrator\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe [2010-12-25 136176]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LanguageShortcut]
C:\Program Files\CyberLink\PowerDVD\Language\Language.exe [2006-05-18 49152]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl]
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe [2005-12-07 30208]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
C:\Program Files\Skype\Phone\Skype.exe [2014-05-08 21444224]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files\Common Files\Java\Java Update\jusched.exe [2011-04-08 254696]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TO2SSM_McciTrayApp]
C:\Program Files\TO2SSM\McciTrayApp.exe [2008-08-15 1473536]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]
C:\Program Files\uTorrent\uTorrent.exe [2012-07-21 1022352]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"WMPNetworkSvc"=3
"RichVideo"=2
"ose"=3
"odserv"=3
"NAUpdate"=2
"Microsoft Office Groove Audit Service"=3
"gusvc"=3
"gupdatem"=3
"gupdate"=2
"LightScribeService"=3
"MozillaMaintenance"=3
"LiveUpdateSvc"=2
"JavaQuickStarterService"=2
"SkypeUpdate"=2
"Skype C2C Service"=3

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2009-11-11 205312]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2009-01-30 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE"="C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\Documents and Settings\HP_Administrator\Dokumenty\Aplikace\Hry\Blobby Volley\volley.exe"="C:\Documents and Settings\HP_Administrator\Dokumenty\Aplikace\Hry\Blobby Volley\volley.exe:*:Disabled:volley"
"C:\Program Files\ICQ7.5\ICQ.exe"="C:\Program Files\ICQ7.5\ICQ.exe:*:Enabled:ICQ7.5"
"C:\Program Files\uTorrent\uTorrent.exe"="C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\Valve\hl.exe"="C:\Program Files\Valve\hl.exe:*:Enabled:Half-Life Launcher"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Documents and Settings\HP_Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe"="C:\Documents and Settings\HP_Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe:*:Enabled:Google Chrome"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\McAfee\Managed VirusScan\Agent\myAgtSvc.exe"="C:\Program Files\McAfee\Managed VirusScan\Agent\myAgtSvc.exe:*:Enabled:Managed Services Agent"
"C:\Program Files\ICQ7.5\ICQ.exe"="C:\Program Files\ICQ7.5\ICQ.exe:*:Enabled:ICQ7.5"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"VIDC.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"VIDC.YVYU"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"VIDC.XVID"=xvidvfw.dll
"VIDC.LAGS"=lagarith.dll
"VIDC.FFDS"=ff_vfw.dll
"VIDC.X264"=x264vfw.dll
"msacm.ac3acm"=ac3acm.acm
"msacm.l3codecp"=l3codecp.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======List of files/folders created in the last 1 month======

2014-10-24 20:53:52 ----D---- C:\rsit
2014-10-24 20:53:52 ----D---- C:\Program Files\trend micro
2014-10-24 20:52:21 ----D---- C:\Program Files\Defraggler
2014-10-24 20:45:14 ----D---- C:\Program Files\CCleaner
2014-10-23 10:07:27 ----A---- C:\WINDOWS\system32\drivers\bdfsfltr.sys
2014-10-23 10:06:58 ----D---- C:\Documents and Settings\All Users\Data aplikací\{D76294E6-03B8-4971-AF2E-3F846161A690}
2014-10-23 10:06:57 ----D---- C:\Documents and Settings\All Users\Data aplikací\{E1ED556E-3EA0-4F44-8BE7-CC5FB0F4B424}
2014-09-29 18:18:53 ----N---- C:\WINDOWS\SchedLgU.Txt
2014-09-26 11:50:17 ----D---- C:\Program Files\Mozilla Firefox

======List of files/folders modified in the last 1 month======

2014-10-24 20:53:52 ----D---- C:\Program Files
2014-10-24 20:49:55 ----SHD---- C:\WINDOWS\Installer
2014-10-24 20:47:55 ----D---- C:\WINDOWS
2014-10-24 20:47:15 ----D---- C:\WINDOWS\Debug
2014-10-24 20:47:11 ----D---- C:\WINDOWS\Temp
2014-10-24 20:42:34 ----D---- C:\Documents and Settings\HP_Administrator\Data aplikací\go
2014-10-24 20:41:03 ----D---- C:\Documents and Settings\HP_Administrator\Data aplikací\Dropbox
2014-10-24 20:38:59 ----SD---- C:\WINDOWS\Tasks
2014-10-24 20:38:45 ----D---- C:\WINDOWS\system32\drivers
2014-10-24 20:36:15 ----RASH---- C:\boot.ini
2014-10-24 20:36:15 ----A---- C:\WINDOWS\win.ini
2014-10-24 20:36:15 ----A---- C:\WINDOWS\system.ini
2014-10-24 20:35:17 ----D---- C:\Documents and Settings\HP_Administrator\Data aplikací\Skype
2014-10-24 19:51:49 ----RSHDC---- C:\WINDOWS\system32\dllcache
2014-10-24 19:42:52 ----D---- C:\WINDOWS\system32\CatRoot2
2014-10-23 10:07:22 ----D---- C:\Documents and Settings\HP_Administrator\Data aplikací\IObit
2014-10-23 10:07:07 ----D---- C:\WINDOWS\Prefetch
2014-10-23 10:06:23 ----D---- C:\Program Files\IObit
2014-10-23 09:57:31 ----D---- C:\WINDOWS\system32\config
2014-10-15 09:03:30 ----D---- C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
2014-10-15 08:57:19 ----D---- C:\WINDOWS\system32\MRT
2014-10-15 08:57:19 ----D---- C:\WINDOWS\system32
2014-10-15 08:43:02 ----A---- C:\WINDOWS\system32\MRT.exe
2014-09-29 18:20:08 ----D---- C:\WINDOWS\SoftwareDistribution
2014-09-29 18:18:39 ----N---- C:\WINDOWS\SFA9A562C.tmp
2014-09-27 08:25:43 ----D---- C:\Documents and Settings\HP_Administrator\Data aplikací\vlc
2014-09-26 17:26:29 ----D---- C:\Program Files\Mozilla Maintenance Service

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2014-07-16 49944]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2014-07-16 192352]
R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2009-04-28 44944]
R0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2012-03-11 473656]
R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2014-07-16 55112]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2014-07-16 779536]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2014-07-16 414520]
R1 aswTdi;aswTdi; C:\WINDOWS\system32\drivers\aswTdi.sys [2014-07-16 57800]
R1 ElbyCDIO;ElbyCDIO Driver; C:\WINDOWS\System32\Drivers\ElbyCDIO.sys [2007-08-07 25160]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2014-07-16 24184]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2014-07-16 67824]
R2 bdfsfltr;bdfsfltr; \??\C:\WINDOWS\system32\Drivers\bdfsfltr.sys []
R3 AnyDVD;AnyDVD; C:\WINDOWS\System32\Drivers\AnyDVD.sys [2008-03-19 97600]
R3 FtStor;FT USB Stroage Driver; C:\WINDOWS\system32\drivers\FtStor.SYS [2010-04-12 31232]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-14 144384]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\igxpmp32.sys [2014-08-05 1754912]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2014-08-05 5630168]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2008-04-14 12160]
R3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys [2014-08-05 419160]
R3 usbaudio;Ovladač zvukové karty USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2013-07-17 60160]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2013-08-09 32384]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
R3 usbvideo;Zobrazovací zařízení USB (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2013-07-17 123008]
S3 alq7ymga;alq7ymga; C:\WINDOWS\system32\drivers\alq7ymga.sys []
S3 Ambfilt;Ambfilt; C:\WINDOWS\system32\drivers\Ambfilt.sys [2014-08-05 1691480]
S3 AmUStor;AM USB Stroage Driver; C:\WINDOWS\system32\drivers\AmUStor.SYS [2009-11-30 29184]
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-14 17024]
S3 Monfilt;Monfilt; C:\WINDOWS\system32\drivers\Monfilt.sys [2014-08-05 1395800]
S3 MREMP50;MREMP50 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MREMP50.SYS []
S3 MREMP50a64;MREMP50a64 NDIS Protocol Driver; C:\WINDOWS\system32\drivers\MREMP50a64.sys []
S3 MREMPR5;MREMPR5 NDIS Protocol Driver; C:\WINDOWS\system32\drivers\MREMPR5.sys []
S3 MRENDIS5;MRENDIS5 NDIS Protocol Driver; C:\WINDOWS\system32\drivers\MRENDIS5.sys []
S3 MRESP50;MRESP50 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MRESP50.SYS []
S3 MRESP50a64;MRESP50a64 NDIS Protocol Driver; C:\WINDOWS\system32\drivers\MRESP50a64.sys []
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-14 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-14 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-14 10880]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-14 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-14 15232]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2013-07-03 14976]
S3 usbstor;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2009-01-30 38528]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-14 19200]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2014-07-16 50344]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-09-24 267440]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 McciCMService;McciCMService; C:\Program Files\Common Files\Motive\McciCMService.exe [2007-10-15 303104]
S3 WinRM;Windows Remote Management (WS-Management); C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2014-10-19 107912]
S4 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2014-10-19 107912]
S4 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2010-06-11 136120]
S4 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2011-05-04 153376]
S4 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2010-01-22 73728]
S4 LiveUpdateSvc;LiveUpdate; C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe [2014-05-04 2152736]
S4 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S4 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2014-09-26 114288]
S4 NAUpdate;@C:\Program Files\Nero\Update\NASvc.exe,-200; C:\Program Files\Nero\Update\NASvc.exe [2010-05-04 503080]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
S4 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S4 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S4 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files\CyberLink\Shared Files\RichVideo.exe [2005-08-08 167936]
S4 Skype C2C Service;Skype C2C Service; C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2012-07-05 3048136]
S4 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2013-10-23 172192]
S4 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2009-02-04 913920]

-----------------EOF-----------------

#2 Příspěvek od **altrok** » 24 říj 2014 20:08

Dobry vecer

V ramci cisteni Vam budou vyprazdneny docasne adresare (vcetne Kose).

Stahnete a ulozte na plochu AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/,

ukoncete vsechny programy,
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem),
kliknete na Scan, pote na Clean,
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\AdwCleaner [Sx].txt), jehoz obsah mi zkopirujte do pristi odpovedi.

MiranDAA · #3 Příspěvek od **MiranDAA** » 25 říj 2014 09:48

Hotovo, jen se divím, že se mě neujal moderátor

# AdwCleaner v4.001 - Report created 25/10/2014 at 10:43:07
# DB v
# Updated 20/10/2014 by Xplode
# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)
# Username : HP_Administrator - KUNCOVI
# Running from : C:\Documents and Settings\HP_Administrator\Dokumenty\Downloads\adwcleaner_4.001.exe
# Option : Clean

***** [ Services ] *****

***** [ Files / Folders ] *****

Folder Deleted : C:\Documents and Settings\All Users\Data aplikací\ICQ\ICQToolbar
Folder Deleted : C:\Program Files\ICQ6Toolbar
Folder Deleted : C:\Program Files\Common Files\Spigot
File Deleted : C:\Documents and Settings\HP_Administrator\Data aplikací\Mozilla\Firefox\Profiles\2ku2ulir.default\searchplugins\bingp.xml
File Deleted : C:\Documents and Settings\HP_Administrator\Data aplikací\Mozilla\Firefox\Profiles\2ku2ulir.default\user.js

***** [ Scheduled Tasks ] *****

***** [ Shortcuts ] *****

***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\mhkaekfpcppmmioggniknbnbdbcigpkk
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\ICQ\ICQToolBar
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{03EB0E9C-7A91-4381-A220-9B52B641CDB1}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{32099AAC-C132-4136-9E9A-4E364A424E17}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{855F3B16-6D32-4FE6-8A56-BBB695989046}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{03EB0E9C-7A91-4381-A220-9B52B641CDB1}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{32099AAC-C132-4136-9E9A-4E364A424E17}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{855F3B16-6D32-4FE6-8A56-BBB695989046}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AD22EBAF-0D18-4FC7-90CC-5EA0ABBE9EB8}
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{32099AAC-C132-4136-9E9A-4E364A424E17}]
Key Deleted : HKCU\Software\dt soft\daemon tools toolbar
Key Deleted : HKCU\Software\YahooPartnerToolbar
Key Deleted : HKCU\Software\AppDataLow\Software\Search Settings
Key Deleted : HKLM\SOFTWARE\ICQ\ICQToolbar

***** [ Browsers ] *****

-\\ Internet Explorer v8.0.6001.18702

Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]

-\\ Mozilla Firefox v32.0.3 (x86 cs)

-\\ Google Chrome v

*************************

AdwCleaner[R0].txt - [2992 octets] - [25/10/2014 10:37:46]
AdwCleaner[S0].txt - [2814 octets] - [25/10/2014 10:43:07]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [2874 octets] ##########

#4 Příspěvek od **altrok** » 25 říj 2014 10:27

Nemusite se niceho bat... jako absolvent skolky, diky ktere si zdejsi tym vychovava nove radce a pomocniky, jsem pod neustalym dohledem svych lektoru a dalsich moderatoru

viz http://forum.viry.cz/viewtopic.php?f=12&t=43122

Pokud nepouzivate, odinstalujte

Skype Click to Call
vsechny produkty od IObit
Javu - pokud ji pouzivate (dnes je nutna snad jen pri prihlaseni do nektereho z internetoveho bankovnictvi), odinstalujte ji a na java.com/verify stahnete novou

Spustte jako spravce C:\Program Files\trend micro\HP_Administrator.exe

kliknete na Do a system scan only
zatrhnete (udelejte fajfku) nasledujici polozky
- O15 - Trusted Zone: http://*.mcafee.com (HKLM)
  O15 - Trusted Zone: http://betavscan.mcafeeasap.com (HKLM)
  O15 - Trusted Zone: http://vs.mcafeeasap.com (HKLM)
  O15 - Trusted Zone: http://www.mcafeeasap.com (HKLM)
  O15 - ESC Trusted Zone: http://*.mcafee.com (HKLM)
  O15 - ESC Trusted Zone: http://betavscan.mcafeeasap.com (HKLM)
  O15 - ESC Trusted Zone: http://vs.mcafeeasap.com (HKLM)
  O15 - ESC Trusted Zone: http://www.mcafeeasap.com (HKLM)
kliknete na Fix checked

Ulozte na plochu zoek.exe http://hijackthis.nl/smeenk/zoek.htm
spustte jako spravce
do velkeho okna zkopirujte script uvedeny nize
kliknete na Run script
po restartu na Vas vyskoci log (pripadne jej najdete v C:\zoek-results.log) - vlozte mi jej do pristi odpovedi
Kód: Vybrat vše
```
autoclean;
emptyclsid;
iedefaults;
FFdefaults;
CHRdefaults;
emptyalltemp;
resethosts;
```

informujte me prosim o provedenych krocich a pripadnych problemech

#5 Příspěvek od **vyosek** » 25 říj 2014 12:10

Zdravim

Omlouvam se kolegovi za vstup

MiranDAA píše:Hotovo, jen se divím, že se mě neujal moderátor

Nebojte, jak psal kolega altrok vyse - je absolventem nasi male skolky pro budouci radce (info http://forum.viry.cz/viewtopic.php?f=12&t=116819) a my si jej hlidame. Nedovolime cizim\neoverenym uzivatelum poskytovat zde rady a pomoc v oblasti haveti a reseni logu.

Jen pro info http://forum.viry.cz/viewtopic.php?f=12&t=43122

iwigirl píše: Nováček - kdo jsem?
Chci také pomáhat na fóru, proto jsem se přihlásil do Kurzu pro nováčky, který jsem úspěšně přežil a absolvoval. Nyní už také radím, dohled nade mnou mají učitelé z kurzu - vyosek, cernohous a riffman

Preji pekny vikend a uspesne doreseni s kolegou

MiranDAA · #6 Příspěvek od **MiranDAA** » 25 říj 2014 19:32

Hotovo, sken trval přes půl hodiny, koukám, že to taky vymazalo hodně bordelu, to jsem rád

LOG:

Zoek.exe v5.0.0.0 Updated 24-10-2014
Tool run by HP_Administrator on so 25.10.2014 at 19:52:48,46.
Microsoft Windows XP Home Edition 5.1.2600 Service Pack 3 x86
Running in: Normal Mode Internet Access Detected
Launched: C:\Documents and Settings\HP_Administrator\Dokumenty\Downloads\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

25.10.2014 19:54:42 Zoek.exe System Restore Point Created Succesfully.

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

127.0.0.1 localhost

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-983854137-2692184862-674017586-1007\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{21FA44EF-376D-4D53-9B0F-8A89D3229068} deleted successfully
HKEY_USERS\S-1-5-21-983854137-2692184862-674017586-1007\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{21FA44EF-376D-4D53-9B0F-8A89D3229068} deleted successfully

==== Deleting CLSID Registry Values ======================

HKEY_USERS\S-1-5-21-983854137-2692184862-674017586-1007\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{21FA44EF-376D-4D53-9B0F-8A89D3229068} deleted successfully

==== Deleting Services ======================

==== Deleting Files \ Folders ======================

C:\DOCUME~1\ALLUSE~1\DATAAP~1\{CED89F1A-945F-46EC-B23C-5EAF6D2DB12A} deleted
C:\Program Files\GUM6F.tmp deleted
C:\Program Files\ComPlus Applications deleted
C:\Program Files\Microsoft Office Suite Activation Assistant deleted
C:\DOCUME~1\ALLUSE~1\DATAAP~1\ICQ deleted
C:\DOCUME~1\ALLUSE~1\DATAAP~1\ProductData deleted
C:\WINDOWS\system32\GroupPolicy\Adm deleted
C:\WINDOWS\System32\SET10.tmp deleted
C:\WINDOWS\System32\SET100.tmp deleted
C:\WINDOWS\System32\SET101.tmp deleted
C:\WINDOWS\System32\SET102.tmp deleted
C:\WINDOWS\System32\SET103.tmp deleted
C:\WINDOWS\System32\SET104.tmp deleted
C:\WINDOWS\System32\SET105.tmp deleted
C:\WINDOWS\System32\SET106.tmp deleted
C:\WINDOWS\System32\SET107.tmp deleted
C:\WINDOWS\System32\SET108.tmp deleted
C:\WINDOWS\System32\SET109.tmp deleted
C:\WINDOWS\System32\SET10A.tmp deleted
C:\WINDOWS\System32\SET10B.tmp deleted
C:\WINDOWS\System32\SET10C.tmp deleted
C:\WINDOWS\System32\SET10D.tmp deleted
C:\WINDOWS\System32\SET10F.tmp deleted
C:\WINDOWS\System32\SET11.tmp deleted
C:\WINDOWS\System32\SET12.tmp deleted
C:\WINDOWS\System32\SET13.tmp deleted
C:\WINDOWS\System32\SET14.tmp deleted
C:\WINDOWS\System32\SET15.tmp deleted
C:\WINDOWS\System32\SET16.tmp deleted
C:\WINDOWS\System32\SET17.tmp deleted
C:\WINDOWS\System32\SET18.tmp deleted
C:\WINDOWS\System32\SET18C.tmp deleted
C:\WINDOWS\System32\SET18E.tmp deleted
C:\WINDOWS\System32\SET19.tmp deleted
C:\WINDOWS\System32\SET190.tmp deleted
C:\WINDOWS\System32\SET192.tmp deleted
C:\WINDOWS\System32\SET19C.tmp deleted
C:\WINDOWS\System32\SET19E.tmp deleted
C:\WINDOWS\System32\SET1A.tmp deleted
C:\WINDOWS\System32\SET1A0.tmp deleted
C:\WINDOWS\System32\SET1A8.tmp deleted
C:\WINDOWS\System32\SET1AE.tmp deleted
C:\WINDOWS\System32\SET1B.tmp deleted
C:\WINDOWS\System32\SET1B2.tmp deleted
C:\WINDOWS\System32\SET1C.tmp deleted
C:\WINDOWS\System32\SET1D.tmp deleted
C:\WINDOWS\System32\SET1E.tmp deleted
C:\WINDOWS\System32\SET1E2.tmp deleted
C:\WINDOWS\System32\SET1F.tmp deleted
C:\WINDOWS\System32\SET1F3.tmp deleted
C:\WINDOWS\System32\SET1F4.tmp deleted
C:\WINDOWS\System32\SET1F5.tmp deleted
C:\WINDOWS\System32\SET1F6.tmp deleted
C:\WINDOWS\System32\SET1FB.tmp deleted
C:\WINDOWS\System32\SET1FC.tmp deleted
C:\WINDOWS\System32\SET1FD.tmp deleted
C:\WINDOWS\System32\SET20.tmp deleted
C:\WINDOWS\System32\SET201.tmp deleted
C:\WINDOWS\System32\SET204.tmp deleted
C:\WINDOWS\System32\SET206.tmp deleted
C:\WINDOWS\System32\SET21.tmp deleted
C:\WINDOWS\System32\SET21E.tmp deleted
C:\WINDOWS\System32\SET22.tmp deleted
C:\WINDOWS\System32\SET23.tmp deleted
C:\WINDOWS\System32\SET24.tmp deleted
C:\WINDOWS\System32\SET25.tmp deleted
C:\WINDOWS\System32\SET26.tmp deleted
C:\WINDOWS\System32\SET27.tmp deleted
C:\WINDOWS\System32\SET28.tmp deleted
C:\WINDOWS\System32\SET29.tmp deleted
C:\WINDOWS\System32\SET2A.tmp deleted
C:\WINDOWS\System32\SET2B.tmp deleted
C:\WINDOWS\System32\SET2C.tmp deleted
C:\WINDOWS\System32\SET2D.tmp deleted
C:\WINDOWS\System32\SET2E.tmp deleted
C:\WINDOWS\System32\SET2F.tmp deleted
C:\WINDOWS\System32\SET30.tmp deleted
C:\WINDOWS\System32\SET31.tmp deleted
C:\WINDOWS\System32\SET32.tmp deleted
C:\WINDOWS\System32\SET33.tmp deleted
C:\WINDOWS\System32\SET34.tmp deleted
C:\WINDOWS\System32\SET35.tmp deleted
C:\WINDOWS\System32\SET36.tmp deleted
C:\WINDOWS\System32\SET37.tmp deleted
C:\WINDOWS\System32\SET38.tmp deleted
C:\WINDOWS\System32\SET39.tmp deleted
C:\WINDOWS\System32\SET3A.tmp deleted
C:\WINDOWS\System32\SET3B.tmp deleted
C:\WINDOWS\System32\SET3C.tmp deleted
C:\WINDOWS\System32\SET3D.tmp deleted
C:\WINDOWS\System32\SET3E.tmp deleted
C:\WINDOWS\System32\SET3F.tmp deleted
C:\WINDOWS\System32\SET40.tmp deleted
C:\WINDOWS\System32\SET41.tmp deleted
C:\WINDOWS\System32\SET42.tmp deleted
C:\WINDOWS\System32\SET43.tmp deleted
C:\WINDOWS\System32\SET44.tmp deleted
C:\WINDOWS\System32\SET45.tmp deleted
C:\WINDOWS\System32\SET46.tmp deleted
C:\WINDOWS\System32\SET47.tmp deleted
C:\WINDOWS\System32\SET48.tmp deleted
C:\WINDOWS\System32\SET49.tmp deleted
C:\WINDOWS\System32\SET4A.tmp deleted
C:\WINDOWS\System32\SET4B.tmp deleted
C:\WINDOWS\System32\SET4C.tmp deleted
C:\WINDOWS\System32\SET4D.tmp deleted
C:\WINDOWS\System32\SET4E.tmp deleted
C:\WINDOWS\System32\SET4F.tmp deleted
C:\WINDOWS\System32\SET50.tmp deleted
C:\WINDOWS\System32\SET51.tmp deleted
C:\WINDOWS\System32\SET52.tmp deleted
C:\WINDOWS\System32\SET53.tmp deleted
C:\WINDOWS\System32\SET54.tmp deleted
C:\WINDOWS\System32\SET55.tmp deleted
C:\WINDOWS\System32\SET56.tmp deleted
C:\WINDOWS\System32\SET57.tmp deleted
C:\WINDOWS\System32\SET58.tmp deleted
C:\WINDOWS\System32\SET59.tmp deleted
C:\WINDOWS\System32\SET5A.tmp deleted
C:\WINDOWS\System32\SET5B.tmp deleted
C:\WINDOWS\System32\SET5C.tmp deleted
C:\WINDOWS\System32\SET5D.tmp deleted
C:\WINDOWS\System32\SET5E.tmp deleted
C:\WINDOWS\System32\SET5F.tmp deleted
C:\WINDOWS\System32\SET60.tmp deleted
C:\WINDOWS\System32\SET61.tmp deleted
C:\WINDOWS\System32\SET62.tmp deleted
C:\WINDOWS\System32\SET63.tmp deleted
C:\WINDOWS\System32\SET64.tmp deleted
C:\WINDOWS\System32\SET65.tmp deleted
C:\WINDOWS\System32\SET66.tmp deleted
C:\WINDOWS\System32\SET67.tmp deleted
C:\WINDOWS\System32\SET68.tmp deleted
C:\WINDOWS\System32\SET69.tmp deleted
C:\WINDOWS\System32\SET6A.tmp deleted
C:\WINDOWS\System32\SET6B.tmp deleted
C:\WINDOWS\System32\SET6C.tmp deleted
C:\WINDOWS\System32\SET6D.tmp deleted
C:\WINDOWS\System32\SET6E.tmp deleted
C:\WINDOWS\System32\SET6F.tmp deleted
C:\WINDOWS\System32\SET70.tmp deleted
C:\WINDOWS\System32\SET71.tmp deleted
C:\WINDOWS\System32\SET72.tmp deleted
C:\WINDOWS\System32\SET73.tmp deleted
C:\WINDOWS\System32\SET74.tmp deleted
C:\WINDOWS\System32\SET75.tmp deleted
C:\WINDOWS\System32\SET76.tmp deleted
C:\WINDOWS\System32\SET77.tmp deleted
C:\WINDOWS\System32\SET78.tmp deleted
C:\WINDOWS\System32\SET79.tmp deleted
C:\WINDOWS\System32\SET7A.tmp deleted
C:\WINDOWS\System32\SET7B.tmp deleted
C:\WINDOWS\System32\SET7C.tmp deleted
C:\WINDOWS\System32\SET7D.tmp deleted
C:\WINDOWS\System32\SET7E.tmp deleted
C:\WINDOWS\System32\SET7F.tmp deleted
C:\WINDOWS\System32\SET80.tmp deleted
C:\WINDOWS\System32\SET81.tmp deleted
C:\WINDOWS\System32\SET82.tmp deleted
C:\WINDOWS\System32\SET83.tmp deleted
C:\WINDOWS\System32\SET84.tmp deleted
C:\WINDOWS\System32\SET85.tmp deleted
C:\WINDOWS\System32\SET86.tmp deleted
C:\WINDOWS\System32\SET87.tmp deleted
C:\WINDOWS\System32\SET88.tmp deleted
C:\WINDOWS\System32\SET89.tmp deleted
C:\WINDOWS\System32\SET8A.tmp deleted
C:\WINDOWS\System32\SET8B.tmp deleted
C:\WINDOWS\System32\SET8C.tmp deleted
C:\WINDOWS\System32\SET8D.tmp deleted
C:\WINDOWS\System32\SET8E.tmp deleted
C:\WINDOWS\System32\SET8F.tmp deleted
C:\WINDOWS\System32\SET90.tmp deleted
C:\WINDOWS\System32\SET91.tmp deleted
C:\WINDOWS\System32\SET92.tmp deleted
C:\WINDOWS\System32\SET93.tmp deleted
C:\WINDOWS\System32\SET94.tmp deleted
C:\WINDOWS\System32\SET95.tmp deleted
C:\WINDOWS\System32\SET96.tmp deleted
C:\WINDOWS\System32\SET97.tmp deleted
C:\WINDOWS\System32\SET98.tmp deleted
C:\WINDOWS\System32\SET99.tmp deleted
C:\WINDOWS\System32\SET9A.tmp deleted
C:\WINDOWS\System32\SET9B.tmp deleted
C:\WINDOWS\System32\SET9C.tmp deleted
C:\WINDOWS\System32\SET9D.tmp deleted
C:\WINDOWS\System32\SET9E.tmp deleted
C:\WINDOWS\System32\SET9F.tmp deleted
C:\WINDOWS\System32\SETA0.tmp deleted
C:\WINDOWS\System32\SETA1.tmp deleted
C:\WINDOWS\System32\SETA2.tmp deleted
C:\WINDOWS\System32\SETA3.tmp deleted
C:\WINDOWS\System32\SETA4.tmp deleted
C:\WINDOWS\System32\SETA5.tmp deleted
C:\WINDOWS\System32\SETA6.tmp deleted
C:\WINDOWS\System32\SETA7.tmp deleted
C:\WINDOWS\System32\SETA8.tmp deleted
C:\WINDOWS\System32\SETA9.tmp deleted
C:\WINDOWS\System32\SETAA.tmp deleted
C:\WINDOWS\System32\SETAB.tmp deleted
C:\WINDOWS\System32\SETAC.tmp deleted
C:\WINDOWS\System32\SETAD.tmp deleted
C:\WINDOWS\System32\SETAE.tmp deleted
C:\WINDOWS\System32\SETAF.tmp deleted
C:\WINDOWS\System32\SETB.tmp deleted
C:\WINDOWS\System32\SETB0.tmp deleted
C:\WINDOWS\System32\SETB1.tmp deleted
C:\WINDOWS\System32\SETB2.tmp deleted
C:\WINDOWS\System32\SETB3.tmp deleted
C:\WINDOWS\System32\SETB4.tmp deleted
C:\WINDOWS\System32\SETB5.tmp deleted
C:\WINDOWS\System32\SETB6.tmp deleted
C:\WINDOWS\System32\SETB7.tmp deleted
C:\WINDOWS\System32\SETB8.tmp deleted
C:\WINDOWS\System32\SETB9.tmp deleted
C:\WINDOWS\System32\SETBA.tmp deleted
C:\WINDOWS\System32\SETBB.tmp deleted
C:\WINDOWS\System32\SETBC.tmp deleted
C:\WINDOWS\System32\SETBD.tmp deleted
C:\WINDOWS\System32\SETBE.tmp deleted
C:\WINDOWS\System32\SETBF.tmp deleted
C:\WINDOWS\System32\SETC.tmp deleted
C:\WINDOWS\System32\SETC0.tmp deleted
C:\WINDOWS\System32\SETC1.tmp deleted
C:\WINDOWS\System32\SETC2.tmp deleted
C:\WINDOWS\System32\SETC3.tmp deleted
C:\WINDOWS\System32\SETC4.tmp deleted
C:\WINDOWS\System32\SETC5.tmp deleted
C:\WINDOWS\System32\SETC6.tmp deleted
C:\WINDOWS\System32\SETC7.tmp deleted
C:\WINDOWS\System32\SETC8.tmp deleted
C:\WINDOWS\System32\SETC9.tmp deleted
C:\WINDOWS\System32\SETCA.tmp deleted
C:\WINDOWS\System32\SETCB.tmp deleted
C:\WINDOWS\System32\SETCC.tmp deleted
C:\WINDOWS\System32\SETCD.tmp deleted
C:\WINDOWS\System32\SETCE.tmp deleted
C:\WINDOWS\System32\SETCF.tmp deleted
C:\WINDOWS\System32\SETD.tmp deleted
C:\WINDOWS\System32\SETD0.tmp deleted
C:\WINDOWS\System32\SETD1.tmp deleted
C:\WINDOWS\System32\SETD2.tmp deleted
C:\WINDOWS\System32\SETD3.tmp deleted
C:\WINDOWS\System32\SETD4.tmp deleted
C:\WINDOWS\System32\SETD5.tmp deleted
C:\WINDOWS\System32\SETD6.tmp deleted
C:\WINDOWS\System32\SETD7.tmp deleted
C:\WINDOWS\System32\SETD8.tmp deleted
C:\WINDOWS\System32\SETD9.tmp deleted
C:\WINDOWS\System32\SETDA.tmp deleted
C:\WINDOWS\System32\SETDB.tmp deleted
C:\WINDOWS\System32\SETDC.tmp deleted
C:\WINDOWS\System32\SETDD.tmp deleted
C:\WINDOWS\System32\SETDE.tmp deleted
C:\WINDOWS\System32\SETDF.tmp deleted
C:\WINDOWS\System32\SETE.tmp deleted
C:\WINDOWS\System32\SETE0.tmp deleted
C:\WINDOWS\System32\SETE1.tmp deleted
C:\WINDOWS\System32\SETE2.tmp deleted
C:\WINDOWS\System32\SETE3.tmp deleted
C:\WINDOWS\System32\SETE4.tmp deleted
C:\WINDOWS\System32\SETE5.tmp deleted
C:\WINDOWS\System32\SETE6.tmp deleted
C:\WINDOWS\System32\SETE7.tmp deleted
C:\WINDOWS\System32\SETE8.tmp deleted
C:\WINDOWS\System32\SETE9.tmp deleted
C:\WINDOWS\System32\SETEA.tmp deleted
C:\WINDOWS\System32\SETEB.tmp deleted
C:\WINDOWS\System32\SETEC.tmp deleted
C:\WINDOWS\System32\SETED.tmp deleted
C:\WINDOWS\System32\SETEE.tmp deleted
C:\WINDOWS\System32\SETEF.tmp deleted
C:\WINDOWS\System32\SETF.tmp deleted
C:\WINDOWS\System32\SETF0.tmp deleted
C:\WINDOWS\System32\SETF1.tmp deleted
C:\WINDOWS\System32\SETF2.tmp deleted
C:\WINDOWS\System32\SETF3.tmp deleted
C:\WINDOWS\System32\SETF4.tmp deleted
C:\WINDOWS\System32\SETF5.tmp deleted
C:\WINDOWS\System32\SETF6.tmp deleted
C:\WINDOWS\System32\SETF7.tmp deleted
C:\WINDOWS\System32\SETF8.tmp deleted
C:\WINDOWS\System32\SETF9.tmp deleted
C:\WINDOWS\System32\SETFA.tmp deleted
C:\WINDOWS\System32\SETFB.tmp deleted
C:\WINDOWS\System32\SETFC.tmp deleted
C:\WINDOWS\System32\SETFD.tmp deleted
C:\WINDOWS\System32\SETFE.tmp deleted
C:\WINDOWS\System32\SETFF.tmp deleted
"C:\WINDOWS\SFA9A562C.tmp" not deleted
"C:\Program Files\Java\jre7\bin\jqs.exe" deleted
"C:\Program Files\Java\jre7\bin\msvcr100.dll" deleted
"C:\Program Files\Java" not deleted
"C:\Program Files\Java\jre7" not deleted
"C:\Program Files\Java\jre7\bin" not deleted

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]
"wrc@avast.com"="C:\Program Files\Alwil Software\Avast5\WebRep\FF" [16.07.2014 20:20]

==== Chromium Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
gomekmidlodglbbmalcneegieacbdmki - C:\Program Files\Alwil Software\Avast5\WebRep\Chrome\aswWebRepChrome.crx[16.07.2014 20:20]
lifbcibllhkdhoafpjfnlhfpfgnpldfl - C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx[09.10.2013 11:59]

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.msn.com/?pc=UP97&ocid=UP97DHP"
"Search Page"="http://www.google.com"
"Search Bar"="http://www.google.com/ie"
"ICQ Search"="http://www.google.com"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="C:\\Documents and Settings\\All Users\\Data aplikacˇ\\ICQ\\ICQNewTab\\newTab.html"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search]
"SearchAssistant"="http://www.google.com/ie"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
No DefaultScope Set For HKCU

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Bar"="http://go.microsoft.com/fwlink/?LinkId=54896"
"ICQ Search"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Start Page"="http://www.msn.com/?pc=UP97&ocid=UP97DHP"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl]
"(Default)"="http://search.msn.com/results.asp?q=%s"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="res://ieframe.dll/tabswelcome.htm"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search]
"SearchAssistant"="http://ie.search.msn.com/{SUB_RFC1766}/ ... chasst.htm"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTer ... ORM=IE8SRC"
{2D06F725-AF0E-420F-85D7-480B3D533E28} Bing Url="http://www.bing.com/search?FORM=UP97DF& ... -SearchBox"
{9D5A509F-8834-49BF-9908-37B6A2FA997E} Google Url="http://www.google.com/search?q={searchT ... f8&oe=utf8"

==== Reset Google Chrome ======================

Nothing found to reset

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-983854137-2692184862-674017586-1007\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DBC80044-A445-435b-BC74-9C25C1C588A9} deleted successfully
HKEY_USERS\S-1-5-21-983854137-2692184862-674017586-1007\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{DBC80044-A445-435b-BC74-9C25C1C588A9} deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{DBC80044-A445-435b-BC74-9C25C1C588A9} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9} deleted successfully

==== Deleting CLSID Registry Values ======================

==== Deleting Registry Keys ======================

HKEY_CURRENT_USER\Software\Policies\Google deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Advanced SystemCare Ultimate deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent deleted successfully

==== Empty IE Cache ======================

C:\Documents and Settings\Default User\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\LocalService\Local Settings\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
C:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
C:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\HP_Administrator\Local Settings\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
C:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

No Chrome User Data found

==== Empty All Flash Cache ======================

No Flash Cache Found

==== Empty All Java Cache ======================

No Java Cache Found

==== C:\zoek_backup content ======================

C:\zoek_backup (files=2103 folders=124 315679240 bytes)

==== Empty Temp Folders ======================

C:\WINDOWS\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\WINDOWS\Temp successfully emptied
C:\DOCUME~1\HP_ADM~1\LOCALS~1\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\RECYCLER successfully emptied

==== Deleting Files / Folders ======================

"C:\WINDOWS\SFA9A562C.tmp" not deleted
"C:\Documents and Settings\HP_Administrator\Local Settings\Temporary Internet Files\Content.IE5\index.dat" not deleted
"C:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5\index.dat" not deleted
"C:\Program Files\Java" not found

==== EOF on so 25.10.2014 at 20:28:04,31 ======================

#7 Příspěvek od **altrok** » 25 říj 2014 19:55

Dejte novy log RSIT.

MiranDAA · #8 Příspěvek od **MiranDAA** » 26 říj 2014 18:10

Logfile of random's system information tool 1.10 (written by random/random)
Run by HP_Administrator at 2014-10-26 18:09:19
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 48 GB (33%) free of 143 GB
Total RAM: 1014 MB (40% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:09:33, on 26.10.2014
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\IObit\Driver Booster\AutoUpdate.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\system32\svchost.exe
C:\windows\system\hpsysdrv.exe
C:\Program Files\Alwil Software\Avast5\AvastUI.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\Documents and Settings\HP_Administrator\Local Settings\Data aplikací\Google\Update\1.3.25.5\GoogleCrashHandler.exe
C:\Program Files\CCleaner\CCleaner.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\WINDOWS\system32\ntvdm.exe
C:\Documents and Settings\HP_Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\HP_Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\HP_Administrator\Dokumenty\Downloads\RSIT (1).exe
C:\Program Files\trend micro\HP_Administrator.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,First Home Page = http://g.msn.com/1ewenusDefaultPack/UP97_FRPage
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll
O2 - BHO: Pomocník pro přihlášení ke službě Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [UpdatePRCShortCut] "C:\Windows\SMINST\MUITransfer\MUIStartMenu.exe" "C:\Windows\SMINST" UpdateWithCreateOnce "Software\CyberLink\PowerRecover"
O4 - HKLM\..\Run: [Reminder] C:\WINDOWS\SMINST\Reminder.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\Alwil Software\Avast5\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\HP_Administrator\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=http://ie.redirect.hp.com/svs/rdr?TYPE= ... pf=desktop
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/pub/s ... wflash.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Unknown owner - C:\Program Files\Java\jre7\bin\jqs.exe (file missing)
O23 - Service: McciCMService - Motive Communications, Inc. - C:\Program Files\Common Files\Motive\McciCMService.exe

--
End of file - 7713 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\ASC4_PerformanceMonitor.job - C:\Program Files\IObit\Advanced SystemCare 4\PMonitor.exe
C:\WINDOWS\tasks\avast! Emergency Update.job - C:\Program Files\Alwil Software\Avast5\AvastEmUpdate.exe
C:\WINDOWS\tasks\Driver Booster Scan.job - C:\Program Files\IObit\Driver Booster\Scheduler.exe /scan
C:\WINDOWS\tasks\Driver Booster Update.job - C:\Program Files\IObit\Driver Booster\AutoUpdate.exe /auto
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-983854137-2692184862-674017586-1007Core1cc2737f8ffb476.job - C:\Documents and Settings\HP_Administrator\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-983854137-2692184862-674017586-1007UA.job - C:\Documents and Settings\HP_Administrator\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job - C:\WINDOWS\system32\xp_eos.exe
C:\WINDOWS\tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job - C:\WINDOWS\system32\xp_eos.exe -c

=========Mozilla firefox=========

ProfilePath - C:\Documents and Settings\HP_Administrator\Data aplikací\Mozilla\Firefox\Profiles\2ku2ulir.default

prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"
prefs.js - "keyword.URL" - "http://www.bing.com/search?FORM=UP97DF&PC=UP97&q="

"{20a82645-c095-46ed-80e3-08825760534b}"=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"wrc@avast.com"=C:\Program Files\Alwil Software\Avast5\WebRep\FF

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 15.0.0.152 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32_15_0_0_152.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@google.com/npPicasa3,version=3.0.0]
"Description"=Picasa3 plugin
"Path"=C:\Program Files\Google\Picasa3\npPicasa3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.71.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.71.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.25.5\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.25.5\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll

C:\Program Files\Mozilla Firefox\extensions\
{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll [2014-07-16 457712]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocník pro přihlášení ke službě Windows Live - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2013-10-09 4502400]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"hpsysdrv"=c:\windows\system\hpsysdrv.exe [1998-05-07 52736]
"UpdatePRCShortCut"=C:\Windows\SMINST\MUITransfer\MUIStartMenu.exe [2009-02-25 218408]
"Reminder"=C:\WINDOWS\SMINST\Reminder.exe [2010-05-03 1959208]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21 959904]
"AvastUI.exe"=C:\Program Files\Alwil Software\Avast5\AvastUI.exe [2014-08-01 4085896]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2010-04-27 19523616]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2014-08-05 134656]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2009-11-16 173592]
"Persistence"=C:\WINDOWS\system32\igfxpers.exe [2009-11-16 141336]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2014-09-26 271744]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"Google Update"=C:\Documents and Settings\HP_Administrator\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe [2014-10-26 107912]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2014-05-08 21444224]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner.exe [2014-09-26 4811032]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Advanced SystemCare 7]
C:\Program Files\IObit\Advanced SystemCare 7\ASCTray.exe [2014-04-21 2295584]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AnyDVD]
C:\Program Files\SlySoft\AnyDVD\AnyDVDtray.exe [2008-04-22 1739712]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files\DAEMON Tools Lite\DTLite.exe [2012-02-13 3481408]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
C:\Documents and Settings\HP_Administrator\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe [2014-10-26 107912]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LanguageShortcut]
C:\Program Files\CyberLink\PowerDVD\Language\Language.exe [2006-05-18 49152]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl]
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe [2005-12-07 30208]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
C:\Program Files\Skype\Phone\Skype.exe [2014-05-08 21444224]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files\Common Files\Java\Java Update\jusched.exe [2014-09-26 271744]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TO2SSM_McciTrayApp]
C:\Program Files\TO2SSM\McciTrayApp.exe [2008-08-15 1473536]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]
C:\Program Files\uTorrent\uTorrent.exe [2012-07-21 1022352]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"WMPNetworkSvc"=3
"RichVideo"=2
"ose"=3
"odserv"=3
"NAUpdate"=2
"Microsoft Office Groove Audit Service"=3
"gusvc"=3
"gupdatem"=3
"gupdate"=2
"LightScribeService"=3
"MozillaMaintenance"=3
"LiveUpdateSvc"=2
"JavaQuickStarterService"=2
"SkypeUpdate"=2
"Skype C2C Service"=3

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2009-11-11 205312]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2009-01-30 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE"="C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\Documents and Settings\HP_Administrator\Dokumenty\Aplikace\Hry\Blobby Volley\volley.exe"="C:\Documents and Settings\HP_Administrator\Dokumenty\Aplikace\Hry\Blobby Volley\volley.exe:*:Disabled:volley"
"C:\Program Files\ICQ7.5\ICQ.exe"="C:\Program Files\ICQ7.5\ICQ.exe:*:Enabled:ICQ7.5"
"C:\Program Files\uTorrent\uTorrent.exe"="C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\Valve\hl.exe"="C:\Program Files\Valve\hl.exe:*:Enabled:Half-Life Launcher"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Documents and Settings\HP_Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe"="C:\Documents and Settings\HP_Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe:*:Enabled:Google Chrome"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\McAfee\Managed VirusScan\Agent\myAgtSvc.exe"="C:\Program Files\McAfee\Managed VirusScan\Agent\myAgtSvc.exe:*:Enabled:Managed Services Agent"
"C:\Program Files\ICQ7.5\ICQ.exe"="C:\Program Files\ICQ7.5\ICQ.exe:*:Enabled:ICQ7.5"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"VIDC.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"VIDC.YVYU"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"VIDC.XVID"=xvidvfw.dll
"VIDC.LAGS"=lagarith.dll
"VIDC.FFDS"=ff_vfw.dll
"VIDC.X264"=x264vfw.dll
"msacm.ac3acm"=ac3acm.acm
"msacm.l3codecp"=l3codecp.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======List of files/folders created in the last 1 month======

2014-10-25 19:25:35 ----A---- C:\WINDOWS\zoek-delete.exe
2014-10-25 19:25:34 ----D---- C:\WINDOWS\Temp
2014-10-25 18:52:29 ----D---- C:\zoek_backup
2014-10-25 18:49:05 ----D---- C:\Program Files\Common Files\Java
2014-10-25 18:48:38 ----A---- C:\WINDOWS\system32\javaws.exe
2014-10-25 18:48:05 ----A---- C:\WINDOWS\system32\WindowsAccessBridge.dll
2014-10-25 18:48:05 ----A---- C:\WINDOWS\system32\javaw.exe
2014-10-25 18:48:05 ----A---- C:\WINDOWS\system32\java.exe
2014-10-25 18:46:11 ----D---- C:\Documents and Settings\HP_Administrator\Data aplikací\Oracle
2014-10-25 09:37:44 ----D---- C:\AdwCleaner
2014-10-24 19:53:52 ----D---- C:\rsit
2014-10-24 19:53:52 ----D---- C:\Program Files\trend micro
2014-10-24 19:52:21 ----D---- C:\Program Files\Defraggler
2014-10-24 19:45:14 ----D---- C:\Program Files\CCleaner
2014-10-23 09:07:27 ----A---- C:\WINDOWS\system32\drivers\bdfsfltr.sys
2014-10-23 09:06:58 ----D---- C:\Documents and Settings\All Users\Data aplikací\{D76294E6-03B8-4971-AF2E-3F846161A690}
2014-10-23 09:06:57 ----D---- C:\Documents and Settings\All Users\Data aplikací\{E1ED556E-3EA0-4F44-8BE7-CC5FB0F4B424}
2014-09-29 17:18:53 ----A---- C:\WINDOWS\SchedLgU.Txt

======List of files/folders modified in the last 1 month======

2014-10-26 18:09:27 ----D---- C:\WINDOWS\Prefetch
2014-10-26 17:19:05 ----D---- C:\Documents and Settings\HP_Administrator\Data aplikací\Media Player Classic
2014-10-26 17:16:09 ----D---- C:\Documents and Settings\HP_Administrator\Data aplikací\Skype
2014-10-26 08:45:58 ----D---- C:\Program Files
2014-10-26 08:45:50 ----SD---- C:\WINDOWS\Tasks
2014-10-26 08:00:13 ----D---- C:\WINDOWS\system32
2014-10-26 08:00:10 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2014-10-25 19:27:29 ----SH---- C:\WINDOWS\SFA9A562C.tmp
2014-10-25 19:27:29 ----D---- C:\WINDOWS
2014-10-25 19:15:51 ----D---- C:\WINDOWS\system32\GroupPolicy
2014-10-25 18:55:15 ----D---- C:\WINDOWS\system32\drivers\etc
2014-10-25 18:50:10 ----D---- C:\Program Files\Windows Media Connect 2
2014-10-25 18:50:09 ----D---- C:\Program Files\Valve
2014-10-25 18:50:08 ----D---- C:\Program Files\Messenger
2014-10-25 18:50:06 ----D---- C:\Program Files\Dream Aquarium
2014-10-25 18:50:06 ----D---- C:\Program Files\ACDSee32
2014-10-25 18:50:06 ----D---- C:\Program Files\5star Gomoku
2014-10-25 18:49:54 ----D---- C:\5e74431317ada8abe21747d1dc608c
2014-10-25 18:49:07 ----SHD---- C:\WINDOWS\Installer
2014-10-25 18:49:05 ----D---- C:\Program Files\Common Files
2014-10-24 19:47:15 ----D---- C:\WINDOWS\Debug
2014-10-24 19:42:34 ----D---- C:\Documents and Settings\HP_Administrator\Data aplikací\go
2014-10-24 19:38:45 ----D---- C:\WINDOWS\system32\drivers
2014-10-24 19:36:15 ----RASH---- C:\boot.ini
2014-10-24 19:36:15 ----A---- C:\WINDOWS\win.ini
2014-10-24 19:36:15 ----A---- C:\WINDOWS\system.ini
2014-10-24 18:51:49 ----RSHDC---- C:\WINDOWS\system32\dllcache
2014-10-24 18:42:52 ----D---- C:\WINDOWS\system32\CatRoot2
2014-10-23 09:07:22 ----D---- C:\Documents and Settings\HP_Administrator\Data aplikací\IObit
2014-10-23 09:06:23 ----D---- C:\Program Files\IObit
2014-10-23 08:57:31 ----D---- C:\WINDOWS\system32\config
2014-10-15 08:03:30 ----D---- C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
2014-10-15 07:57:19 ----D---- C:\WINDOWS\system32\MRT
2014-10-15 07:43:02 ----A---- C:\WINDOWS\system32\MRT.exe
2014-09-29 17:20:08 ----D---- C:\WINDOWS\SoftwareDistribution
2014-09-27 07:25:43 ----D---- C:\Documents and Settings\HP_Administrator\Data aplikací\vlc

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2014-07-16 49944]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2014-07-16 192352]
R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2009-04-28 44944]
R0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2012-03-11 473656]
R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2014-07-16 55112]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2014-07-16 779536]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2014-07-16 414520]
R1 aswTdi;aswTdi; C:\WINDOWS\system32\drivers\aswTdi.sys [2014-07-16 57800]
R1 ElbyCDIO;ElbyCDIO Driver; C:\WINDOWS\System32\Drivers\ElbyCDIO.sys [2007-08-07 25160]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2014-07-16 24184]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2014-07-16 67824]
R2 bdfsfltr;bdfsfltr; \??\C:\WINDOWS\system32\Drivers\bdfsfltr.sys []
R3 AnyDVD;AnyDVD; C:\WINDOWS\System32\Drivers\AnyDVD.sys [2008-03-19 97600]
R3 FtStor;FT USB Stroage Driver; C:\WINDOWS\system32\drivers\FtStor.SYS [2010-04-12 31232]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-14 144384]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\igxpmp32.sys [2014-08-05 1754912]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2014-08-05 5630168]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2008-04-14 12160]
R3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys [2014-08-05 419160]
R3 usbaudio;Ovladač zvukové karty USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2013-07-17 60160]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2013-08-09 32384]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
R3 usbvideo;Zobrazovací zařízení USB (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2013-07-17 123008]
S3 ai83k32y;ai83k32y; C:\WINDOWS\system32\drivers\ai83k32y.sys []
S3 Ambfilt;Ambfilt; C:\WINDOWS\system32\drivers\Ambfilt.sys [2014-08-05 1691480]
S3 AmUStor;AM USB Stroage Driver; C:\WINDOWS\system32\drivers\AmUStor.SYS [2009-11-30 29184]
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-14 17024]
S3 Monfilt;Monfilt; C:\WINDOWS\system32\drivers\Monfilt.sys [2014-08-05 1395800]
S3 MREMP50;MREMP50 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MREMP50.SYS []
S3 MREMP50a64;MREMP50a64 NDIS Protocol Driver; C:\WINDOWS\system32\drivers\MREMP50a64.sys []
S3 MREMPR5;MREMPR5 NDIS Protocol Driver; C:\WINDOWS\system32\drivers\MREMPR5.sys []
S3 MRENDIS5;MRENDIS5 NDIS Protocol Driver; C:\WINDOWS\system32\drivers\MRENDIS5.sys []
S3 MRESP50;MRESP50 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MRESP50.SYS []
S3 MRESP50a64;MRESP50a64 NDIS Protocol Driver; C:\WINDOWS\system32\drivers\MRESP50a64.sys []
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-14 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-14 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-14 10880]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-14 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-14 15232]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2013-07-03 14976]
S3 usbstor;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2009-01-30 38528]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-14 19200]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2014-07-16 50344]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre7\bin\jqs.exe -service -config C:\Program Files\Java\jre7\lib\deploy\jqs\jqs.conf []
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-09-24 267440]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 McciCMService;McciCMService; C:\Program Files\Common Files\Motive\McciCMService.exe [2007-10-15 303104]
S3 WinRM;Windows Remote Management (WS-Management); C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2014-10-19 107912]
S4 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2014-10-19 107912]
S4 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2010-06-11 136120]
S4 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2010-01-22 73728]
S4 LiveUpdateSvc;LiveUpdate; C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe [2014-05-04 2152736]
S4 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S4 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2014-09-26 114288]
S4 NAUpdate;@C:\Program Files\Nero\Update\NASvc.exe,-200; C:\Program Files\Nero\Update\NASvc.exe [2010-05-04 503080]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
S4 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S4 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S4 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files\CyberLink\Shared Files\RichVideo.exe [2005-08-08 167936]
S4 Skype C2C Service;Skype C2C Service; C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2012-07-05 3048136]
S4 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2013-10-23 172192]
S4 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2009-02-04 913920]

-----------------EOF-----------------

#9 Příspěvek od **altrok** » 26 říj 2014 18:52

Ulozte na plochu OTM - http://oldtimer.geekstogo.com/OTM.exe,
ukoncete vsechny programy,
spustte pod uctem s administratorskym opravnenim (spravce)
obsah bileho pole zkopirujte do leveho okna OTM a kliknete na MoveIt!
po restartu vlozte log, ktery bude v C:\_OTM\MovedFiles\mmddyyyy_hhmmss.log

Kód: Vybrat vše

:commands
[Purity]
[EmptyTemp]
[EmptyFlash]
[EmptyJava]
[CreateRestorePoint]

:services
JavaQuickStarterService
AdobeFlashPlayerUpdateSvc
gupdate
gupdatem
gusvc
LiveUpdateSvc
Skype C2C Service
SkypeUpdate

:files
%windir%\system32\*.tmp.dll /s
%windir%\system32\SET*.tmp /s
%windir%\*.tmp /s
C:\Windows\zoek-delete.exe
C:\zoek-results.log
C:\zoek_backup
%userpforile%\Plocha\zoek.exe
C:\WINDOWS\tasks\ASC4_PerformanceMonitor.job
C:\WINDOWS\tasks\Driver Booster Scan.job
C:\WINDOWS\tasks\Driver Booster Update.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-983854137-2692184862-674017586-1007Core1cc2737f8ffb476.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-983854137-2692184862-674017586-1007UA.job
C:\WINDOWS\tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job
C:\WINDOWS\tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job 
C:\Program Files\trend micro
C:\Documents and Settings\HP_Administrator\Data aplikací\IObit
C:\Program Files\IObit
C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars
C:\Program Files\Skype\Toolbars
C:\Program Files\McAfee

:reg
[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=-
[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=-
[HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=-
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=-
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\skype-ie-addon-data]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"UpdatePRCShortCut"=-
"Adobe ARM"=-
"SunJavaUpdateSched"=-
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Google Update"=-
"CCleaner Monitoring"=-
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Advanced SystemCare 7]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"C:\Program Files\McAfee\Managed VirusScan\Agent\myAgtSvc.exe"=-

MiranDAA · #10 Příspěvek od **MiranDAA** » 27 říj 2014 09:13

All processes killed
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 67 bytes

User: HP_Administrator
->Temp folder emptied: 733976 bytes
->Temporary Internet Files folder emptied: 172243 bytes
->Java cache emptied: 307724 bytes
->FireFox cache emptied: 74013258 bytes
->Google Chrome cache emptied: 41794267 bytes
->Flash cache emptied: 740 bytes

User: LocalService
->Temp folder emptied: 32913 bytes
->Temporary Internet Files folder emptied: 67 bytes

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 2504 bytes
%systemroot%\System32\dllcache .tmp files removed: 84779520 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 42 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 750817900 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 67 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 909,00 mb

[EMPTYFLASH]

User: All Users

User: Default User

User: HP_Administrator
->Flash cache emptied: 0 bytes

User: LocalService

User: NetworkService

Total Flash Files Cleaned = 0,00 mb

[EMPTYJAVA]

User: All Users

User: Default User

User: HP_Administrator
->Java cache emptied: 0 bytes

User: LocalService

User: NetworkService

Total Java Files Cleaned = 0,00 mb

Restore point Set: OTM Restore Point
========== SERVICES/DRIVERS ==========
Service JavaQuickStarterService stopped successfully!
Service JavaQuickStarterService deleted successfully!
Service AdobeFlashPlayerUpdateSvc stopped successfully!
Service AdobeFlashPlayerUpdateSvc deleted successfully!
Service gupdate stopped successfully!
Service gupdate deleted successfully!
Service gupdatem stopped successfully!
Service gupdatem deleted successfully!
Service gusvc stopped successfully!
Service gusvc deleted successfully!
Service LiveUpdateSvc stopped successfully!
Service LiveUpdateSvc deleted successfully!
Service Skype C2C Service stopped successfully!
Service Skype C2C Service deleted successfully!
Service SkypeUpdate stopped successfully!
Service SkypeUpdate deleted successfully!
========== FILES ==========
File/Folder C:\WINDOWS\system32\*.tmp.dll not found.
C:\WINDOWS\system32\cs-cz\SET10E.tmp moved successfully.
C:\WINDOWS\system32\cs-cz\SET10F.tmp moved successfully.
C:\WINDOWS\system32\cs-cz\SET30.tmp moved successfully.
C:\WINDOWS\system32\cs-cz\SET31.tmp moved successfully.
C:\WINDOWS\system32\cs-cz\SET55.tmp moved successfully.
C:\WINDOWS\system32\cs-cz\SET56.tmp moved successfully.
C:\WINDOWS\system32\cs-cz\SET7A.tmp moved successfully.
C:\WINDOWS\system32\cs-cz\SET7B.tmp moved successfully.
C:\WINDOWS\system32\cs-cz\SET9F.tmp moved successfully.
C:\WINDOWS\system32\cs-cz\SETA0.tmp moved successfully.
C:\WINDOWS\system32\cs-cz\SETC9.tmp moved successfully.
C:\WINDOWS\system32\cs-cz\SETCA.tmp moved successfully.
C:\WINDOWS\system32\cs-cz\SETE9.tmp moved successfully.
C:\WINDOWS\system32\cs-cz\SETEA.tmp moved successfully.
File move failed. C:\WINDOWS\SFA9A562C.tmp scheduled to be moved on reboot.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP123.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP12C.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP130.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP132.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP18A.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP1B0.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP1B1.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP1CC.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP1DB.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP21.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP220.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP229.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP26.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP261.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP280.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP2AA.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP2BF.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP2D.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP2E3.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP2F.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP3.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP305.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP34.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP35A.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP374.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP39C.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP3A.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP3A4.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP3B6.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP3DD.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP3F.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP446.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP456.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP47.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP48.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP49.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP4A.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP4BE.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP4E.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP59.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP63.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP657.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP6F3.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP7F.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP83.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAPA8.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAPB0.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAPBA.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAPBC.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAPCB.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAPD.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAPD6.tmp folder moved successfully.
C:\WINDOWS\Help\SET10.tmp moved successfully.
C:\WINDOWS\Help\SET11.tmp moved successfully.
C:\WINDOWS\Help\SET12.tmp moved successfully.
C:\WINDOWS\Help\SET13.tmp moved successfully.
C:\WINDOWS\Help\SET23.tmp moved successfully.
C:\WINDOWS\Help\SET24.tmp moved successfully.
C:\WINDOWS\Help\SET25.tmp moved successfully.
C:\WINDOWS\Help\SET8.tmp moved successfully.
C:\WINDOWS\Help\SET9.tmp moved successfully.
C:\WINDOWS\Help\SETA.tmp moved successfully.
C:\WINDOWS\Help\SETA1.tmp moved successfully.
C:\WINDOWS\Help\SETA2.tmp moved successfully.
C:\WINDOWS\Help\SETA3.tmp moved successfully.
C:\WINDOWS\Help\SETB.tmp moved successfully.
C:\WINDOWS\Help\SETC.tmp moved successfully.
C:\WINDOWS\Help\SETD.tmp moved successfully.
C:\WINDOWS\Help\SETD3.tmp moved successfully.
C:\WINDOWS\Help\SETD4.tmp moved successfully.
C:\WINDOWS\Help\SETD5.tmp moved successfully.
C:\WINDOWS\Help\SETE.tmp moved successfully.
C:\WINDOWS\Help\SETF.tmp moved successfully.
C:\WINDOWS\Installer\MSI71F.tmp moved successfully.
C:\Windows\zoek-delete.exe moved successfully.
C:\zoek-results.log moved successfully.
C:\zoek_backup\C_WINDOWS_system32_GroupPolicy_Adm folder moved successfully.
C:\zoek_backup\C_Program Files_Microsoft Office Suite Activation Assistant\images\vi folder moved successfully.
C:\zoek_backup\C_Program Files_Microsoft Office Suite Activation Assistant\images\tr folder moved successfully.
C:\zoek_backup\C_Program Files_Microsoft Office Suite Activation Assistant\images\th folder moved successfully.
C:\zoek_backup\C_Program Files_Microsoft Office Suite Activation Assistant\images\sv folder moved successfully.
C:\zoek_backup\C_Program Files_Microsoft Office Suite Activation Assistant\images\sl folder moved successfully.
C:\zoek_backup\C_Program Files_Microsoft Office Suite Activation Assistant\images\sk folder moved successfully.
C:\zoek_backup\C_Program Files_Microsoft Office Suite Activation Assistant\images\ru folder moved successfully.
C:\zoek_backup\C_Program Files_Microsoft Office Suite Activation Assistant\images\ro folder moved successfully.
C:\zoek_backup\C_Program Files_Microsoft Office Suite Activation Assistant\images\pt-br folder moved successfully.
C:\zoek_backup\C_Program Files_Microsoft Office Suite Activation Assistant\images\pt folder moved successfully.
C:\zoek_backup\C_Program Files_Microsoft Office Suite Activation Assistant\images\pl folder moved successfully.
C:\zoek_backup\C_Program Files_Microsoft Office Suite Activation Assistant\images\no folder moved successfully.
C:\zoek_backup\C_Program Files_Microsoft Office Suite Activation Assistant\images\nl folder moved successfully.
C:\zoek_backup\C_Program Files_Microsoft Office Suite Activation Assistant\images\ms folder moved successfully.
C:\zoek_backup\C_Program Files_Microsoft Office Suite Activation Assistant\images\mk folder moved successfully.
C:\zoek_backup\C_Program Files_Microsoft Office Suite Activation Assistant\images\lv folder moved successfully.
C:\zoek_backup\C_Program Files_Microsoft Office Suite Activation Assistant\images\lt folder moved successfully.
C:\zoek_backup\C_Program Files_Microsoft Office Suite Activation Assistant\images\ko folder moved successfully.
C:\zoek_backup\C_Program Files_Microsoft Office Suite Activation Assistant\images\ja folder moved successfully.
C:\zoek_backup\C_Program Files_Microsoft Office Suite Activation Assistant\images\it folder moved successfully.
C:\zoek_backup\C_Program Files_Microsoft Office Suite Activation Assistant\images\id folder moved successfully.
C:\zoek_backup\C_Program Files_Microsoft Office Suite Activation Assistant\images\hu folder moved successfully.
C:\zoek_backup\C_Program Files_Microsoft Office Suite Activation Assistant\images\hr folder moved successfully.
C:\zoek_backup\C_Program Files_Microsoft Office Suite Activation Assistant\images\hi folder moved successfully.
C:\zoek_backup\C_Program Files_Microsoft Office Suite Activation Assistant\images\he folder moved successfully.
C:\zoek_backup\C_Program Files_Microsoft Office Suite Activation Assistant\images\fr folder moved successfully.
C:\zoek_backup\C_Program Files_Microsoft Office Suite Activation Assistant\images\fil folder moved successfully.
C:\zoek_backup\C_Program Files_Microsoft Office Suite Activation Assistant\images\fi folder moved successfully.
C:\zoek_backup\C_Program Files_Microsoft Office Suite Activation Assistant\images\et folder moved successfully.
C:\zoek_backup\C_Program Files_Microsoft Office Suite Activation Assistant\images\es folder moved successfully.
C:\zoek_backup\C_Program Files_Microsoft Office Suite Activation Assistant\images\en-us folder moved successfully.
C:\zoek_backup\C_Program Files_Microsoft Office Suite Activation Assistant\images\en-gb folder moved successfully.
C:\zoek_backup\C_Program Files_Microsoft Office Suite Activation Assistant\images\el folder moved successfully.
C:\zoek_backup\C_Program Files_Microsoft Office Suite Activation Assistant\images\de folder moved successfully.
C:\zoek_backup\C_Program Files_Microsoft Office Suite Activation Assistant\images\da folder moved successfully.
C:\zoek_backup\C_Program Files_Microsoft Office Suite Activation Assistant\images\cs folder moved successfully.
C:\zoek_backup\C_Program Files_Microsoft Office Suite Activation Assistant\images\cht folder moved successfully.
C:\zoek_backup\C_Program Files_Microsoft Office Suite Activation Assistant\images\chs folder moved successfully.
C:\zoek_backup\C_Program Files_Microsoft Office Suite Activation Assistant\images\bg folder moved successfully.
C:\zoek_backup\C_Program Files_Microsoft Office Suite Activation Assistant\images\ar folder moved successfully.
C:\zoek_backup\C_Program Files_Microsoft Office Suite Activation Assistant\images folder moved successfully.
C:\zoek_backup\C_Program Files_Microsoft Office Suite Activation Assistant\icon folder moved successfully.
C:\zoek_backup\C_Program Files_Microsoft Office Suite Activation Assistant folder moved successfully.
C:\zoek_backup\C_Program Files_Java\jre7\lib\zi\SystemV folder moved successfully.
C:\zoek_backup\C_Program Files_Java\jre7\lib\zi\Pacific folder moved successfully.
C:\zoek_backup\C_Program Files_Java\jre7\lib\zi\Indian folder moved successfully.
C:\zoek_backup\C_Program Files_Java\jre7\lib\zi\Europe folder moved successfully.
C:\zoek_backup\C_Program Files_Java\jre7\lib\zi\Etc folder moved successfully.
C:\zoek_backup\C_Program Files_Java\jre7\lib\zi\Australia folder moved successfully.
C:\zoek_backup\C_Program Files_Java\jre7\lib\zi\Atlantic folder moved successfully.
C:\zoek_backup\C_Program Files_Java\jre7\lib\zi\Asia folder moved successfully.
C:\zoek_backup\C_Program Files_Java\jre7\lib\zi\Antarctica folder moved successfully.
C:\zoek_backup\C_Program Files_Java\jre7\lib\zi\America\North_Dakota folder moved successfully.
C:\zoek_backup\C_Program Files_Java\jre7\lib\zi\America\Kentucky folder moved successfully.
C:\zoek_backup\C_Program Files_Java\jre7\lib\zi\America\Indiana folder moved successfully.
C:\zoek_backup\C_Program Files_Java\jre7\lib\zi\America\Argentina folder moved successfully.
C:\zoek_backup\C_Program Files_Java\jre7\lib\zi\America folder moved successfully.
C:\zoek_backup\C_Program Files_Java\jre7\lib\zi\Africa folder moved successfully.
C:\zoek_backup\C_Program Files_Java\jre7\lib\zi folder moved successfully.
C:\zoek_backup\C_Program Files_Java\jre7\lib\security folder moved successfully.
C:\zoek_backup\C_Program Files_Java\jre7\lib\management folder moved successfully.
C:\zoek_backup\C_Program Files_Java\jre7\lib\jfr folder moved successfully.
C:\zoek_backup\C_Program Files_Java\jre7\lib\images\cursors folder moved successfully.
C:\zoek_backup\C_Program Files_Java\jre7\lib\images folder moved successfully.
C:\zoek_backup\C_Program Files_Java\jre7\lib\i386 folder moved successfully.
C:\zoek_backup\C_Program Files_Java\jre7\lib\fonts folder moved successfully.
C:\zoek_backup\C_Program Files_Java\jre7\lib\ext folder moved successfully.
C:\zoek_backup\C_Program Files_Java\jre7\lib\deploy\jqs folder moved successfully.
C:\zoek_backup\C_Program Files_Java\jre7\lib\deploy folder moved successfully.
C:\zoek_backup\C_Program Files_Java\jre7\lib\cmm folder moved successfully.
C:\zoek_backup\C_Program Files_Java\jre7\lib\applet folder moved successfully.
C:\zoek_backup\C_Program Files_Java\jre7\lib folder moved successfully.
C:\zoek_backup\C_Program Files_Java\jre7\bin\plugin2 folder moved successfully.
C:\zoek_backup\C_Program Files_Java\jre7\bin\dtplugin folder moved successfully.
C:\zoek_backup\C_Program Files_Java\jre7\bin\client folder moved successfully.
C:\zoek_backup\C_Program Files_Java\jre7\bin folder moved successfully.
C:\zoek_backup\C_Program Files_Java\jre7 folder moved successfully.
C:\zoek_backup\C_Program Files_Java\jre6\lib\zi\SystemV folder moved successfully.
C:\zoek_backup\C_Program Files_Java\jre6\lib\zi\Pacific folder moved successfully.
C:\zoek_backup\C_Program Files_Java\jre6\lib\zi\Indian folder moved successfully.
C:\zoek_backup\C_Program Files_Java\jre6\lib\zi\Europe folder moved successfully.
C:\zoek_backup\C_Program Files_Java\jre6\lib\zi\Etc folder moved successfully.
C:\zoek_backup\C_Program Files_Java\jre6\lib\zi\Australia folder moved successfully.
C:\zoek_backup\C_Program Files_Java\jre6\lib\zi\Atlantic folder moved successfully.
C:\zoek_backup\C_Program Files_Java\jre6\lib\zi\Asia folder moved successfully.
C:\zoek_backup\C_Program Files_Java\jre6\lib\zi\Antarctica folder moved successfully.
C:\zoek_backup\C_Program Files_Java\jre6\lib\zi\America\North_Dakota folder moved successfully.
C:\zoek_backup\C_Program Files_Java\jre6\lib\zi\America\Kentucky folder moved successfully.
C:\zoek_backup\C_Program Files_Java\jre6\lib\zi\America\Indiana folder moved successfully.
C:\zoek_backup\C_Program Files_Java\jre6\lib\zi\America\Argentina folder moved successfully.
C:\zoek_backup\C_Program Files_Java\jre6\lib\zi\America folder moved successfully.
C:\zoek_backup\C_Program Files_Java\jre6\lib\zi\Africa folder moved successfully.
C:\zoek_backup\C_Program Files_Java\jre6\lib\zi folder moved successfully.
C:\zoek_backup\C_Program Files_Java\jre6\lib\servicetag folder moved successfully.
C:\zoek_backup\C_Program Files_Java\jre6\lib\security folder moved successfully.
C:\zoek_backup\C_Program Files_Java\jre6\lib\management folder moved successfully.
C:\zoek_backup\C_Program Files_Java\jre6\lib\images\cursors folder moved successfully.
C:\zoek_backup\C_Program Files_Java\jre6\lib\images folder moved successfully.
C:\zoek_backup\C_Program Files_Java\jre6\lib\im folder moved successfully.
C:\zoek_backup\C_Program Files_Java\jre6\lib\i386 folder moved successfully.
C:\zoek_backup\C_Program Files_Java\jre6\lib\fonts folder moved successfully.
C:\zoek_backup\C_Program Files_Java\jre6\lib\ext folder moved successfully.
C:\zoek_backup\C_Program Files_Java\jre6\lib\deploy\jqs\ie folder moved successfully.
C:\zoek_backup\C_Program Files_Java\jre6\lib\deploy\jqs\ff\chrome\content folder moved successfully.
C:\zoek_backup\C_Program Files_Java\jre6\lib\deploy\jqs\ff\chrome folder moved successfully.
C:\zoek_backup\C_Program Files_Java\jre6\lib\deploy\jqs\ff folder moved successfully.
C:\zoek_backup\C_Program Files_Java\jre6\lib\deploy\jqs folder moved successfully.
C:\zoek_backup\C_Program Files_Java\jre6\lib\deploy folder moved successfully.
C:\zoek_backup\C_Program Files_Java\jre6\lib\cmm folder moved successfully.
C:\zoek_backup\C_Program Files_Java\jre6\lib\audio folder moved successfully.
C:\zoek_backup\C_Program Files_Java\jre6\lib\applet folder moved successfully.
C:\zoek_backup\C_Program Files_Java\jre6\lib folder moved successfully.
C:\zoek_backup\C_Program Files_Java\jre6\bin\new_plugin folder moved successfully.
C:\zoek_backup\C_Program Files_Java\jre6\bin\client folder moved successfully.
C:\zoek_backup\C_Program Files_Java\jre6\bin folder moved successfully.
C:\zoek_backup\C_Program Files_Java\jre6 folder moved successfully.
C:\zoek_backup\C_Program Files_Java folder moved successfully.
C:\zoek_backup\C_Program Files_ComPlus Applications folder moved successfully.
C:\zoek_backup\C_DOCUME~1_ALLUSE~1_DATAAP~1_{CED89F1A-945F-46EC-B23C-5EAF6D2DB12A} folder moved successfully.
C:\zoek_backup\C_DOCUME~1_ALLUSE~1_DATAAP~1_ProductData folder moved successfully.
C:\zoek_backup\C_DOCUME~1_ALLUSE~1_DATAAP~1_ICQ\ICQNewTab\img folder moved successfully.
C:\zoek_backup\C_DOCUME~1_ALLUSE~1_DATAAP~1_ICQ\ICQNewTab folder moved successfully.
C:\zoek_backup\C_DOCUME~1_ALLUSE~1_DATAAP~1_ICQ folder moved successfully.
C:\zoek_backup folder moved successfully.
Invalid Environment Variable: userpforile
C:\WINDOWS\tasks\ASC4_PerformanceMonitor.job moved successfully.
C:\WINDOWS\tasks\Driver Booster Scan.job moved successfully.
C:\WINDOWS\tasks\Driver Booster Update.job moved successfully.
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job moved successfully.
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job moved successfully.
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-983854137-2692184862-674017586-1007Core1cc2737f8ffb476.job moved successfully.
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-983854137-2692184862-674017586-1007UA.job moved successfully.
C:\WINDOWS\tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job moved successfully.
C:\WINDOWS\tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job moved successfully.
C:\Program Files\trend micro\backups folder moved successfully.
C:\Program Files\trend micro folder moved successfully.
C:\Documents and Settings\HP_Administrator\Data aplikací\IObit\Smart Defrag 2 folder moved successfully.
C:\Documents and Settings\HP_Administrator\Data aplikací\IObit\IObit Uninstaller\Log folder moved successfully.
C:\Documents and Settings\HP_Administrator\Data aplikací\IObit\IObit Uninstaller folder moved successfully.
C:\Documents and Settings\HP_Administrator\Data aplikací\IObit\IObit Malware Fighter folder moved successfully.
C:\Documents and Settings\HP_Administrator\Data aplikací\IObit\Driver Booster\Logs folder moved successfully.
C:\Documents and Settings\HP_Administrator\Data aplikací\IObit\Driver Booster folder moved successfully.
C:\Documents and Settings\HP_Administrator\Data aplikací\IObit\Advanced SystemCare V7\ProgramDeactivator folder moved successfully.
C:\Documents and Settings\HP_Administrator\Data aplikací\IObit\Advanced SystemCare V7\Log folder moved successfully.
C:\Documents and Settings\HP_Administrator\Data aplikací\IObit\Advanced SystemCare V7\Internet Booster folder moved successfully.
C:\Documents and Settings\HP_Administrator\Data aplikací\IObit\Advanced SystemCare V7\Homepage Protection folder moved successfully.
C:\Documents and Settings\HP_Administrator\Data aplikací\IObit\Advanced SystemCare V7\Boottime folder moved successfully.
C:\Documents and Settings\HP_Administrator\Data aplikací\IObit\Advanced SystemCare V7\Backup folder moved successfully.
C:\Documents and Settings\HP_Administrator\Data aplikací\IObit\Advanced SystemCare V7 folder moved successfully.
C:\Documents and Settings\HP_Administrator\Data aplikací\IObit\Advanced SystemCare V6\Log folder moved successfully.
C:\Documents and Settings\HP_Administrator\Data aplikací\IObit\Advanced SystemCare V6\Internet Booster folder moved successfully.
C:\Documents and Settings\HP_Administrator\Data aplikací\IObit\Advanced SystemCare V6\Boottime folder moved successfully.
C:\Documents and Settings\HP_Administrator\Data aplikací\IObit\Advanced SystemCare V6\Backup folder moved successfully.
C:\Documents and Settings\HP_Administrator\Data aplikací\IObit\Advanced SystemCare V6 folder moved successfully.
C:\Documents and Settings\HP_Administrator\Data aplikací\IObit\Advanced SystemCare V5\Toolbox folder moved successfully.
C:\Documents and Settings\HP_Administrator\Data aplikací\IObit\Advanced SystemCare V5\temp folder moved successfully.
C:\Documents and Settings\HP_Administrator\Data aplikací\IObit\Advanced SystemCare V5\Startup Manager folder moved successfully.
C:\Documents and Settings\HP_Administrator\Data aplikací\IObit\Advanced SystemCare V5\Smart RAM folder moved successfully.
C:\Documents and Settings\HP_Administrator\Data aplikací\IObit\Advanced SystemCare V5\PMonitor folder moved successfully.
C:\Documents and Settings\HP_Administrator\Data aplikací\IObit\Advanced SystemCare V5\Log folder moved successfully.
C:\Documents and Settings\HP_Administrator\Data aplikací\IObit\Advanced SystemCare V5\Internet Booster folder moved successfully.
C:\Documents and Settings\HP_Administrator\Data aplikací\IObit\Advanced SystemCare V5\Boottime folder moved successfully.
C:\Documents and Settings\HP_Administrator\Data aplikací\IObit\Advanced SystemCare V5\Backup folder moved successfully.
C:\Documents and Settings\HP_Administrator\Data aplikací\IObit\Advanced SystemCare V5 folder moved successfully.
C:\Documents and Settings\HP_Administrator\Data aplikací\IObit\Advanced SystemCare V4\PMonitor folder moved successfully.
C:\Documents and Settings\HP_Administrator\Data aplikací\IObit\Advanced SystemCare V4\Log folder moved successfully.
C:\Documents and Settings\HP_Administrator\Data aplikací\IObit\Advanced SystemCare V4\Backup folder moved successfully.
C:\Documents and Settings\HP_Administrator\Data aplikací\IObit\Advanced SystemCare V4 folder moved successfully.
C:\Documents and Settings\HP_Administrator\Data aplikací\IObit folder moved successfully.
C:\Program Files\IObit\Surfing Protection\Update folder moved successfully.
C:\Program Files\IObit\Surfing Protection\Database folder moved successfully.
C:\Program Files\IObit\Surfing Protection\BrowerProtect folder moved successfully.
C:\Program Files\IObit\Surfing Protection folder moved successfully.
C:\Program Files\IObit\LiveUpdate\update\Surfing Protection\Database folder moved successfully.
C:\Program Files\IObit\LiveUpdate\update\Surfing Protection folder moved successfully.
C:\Program Files\IObit\LiveUpdate\update folder moved successfully.
C:\Program Files\IObit\LiveUpdate\Language folder moved successfully.
C:\Program Files\IObit\LiveUpdate folder moved successfully.
C:\Program Files\IObit\IObit Uninstaller folder moved successfully.
C:\Program Files\IObit\IObit Malware Fighter\Quarantine Zone folder moved successfully.
C:\Program Files\IObit\IObit Malware Fighter\log\scan folder moved successfully.
C:\Program Files\IObit\IObit Malware Fighter\log\realtime folder moved successfully.
C:\Program Files\IObit\IObit Malware Fighter\log folder moved successfully.
C:\Program Files\IObit\IObit Malware Fighter folder moved successfully.
C:\Program Files\IObit\Driver Booster\Update\LocalData folder moved successfully.
C:\Program Files\IObit\Driver Booster\Update\Database\Update folder moved successfully.
C:\Program Files\IObit\Driver Booster\Update\Database folder moved successfully.
C:\Program Files\IObit\Driver Booster\Update folder moved successfully.
C:\Program Files\IObit\Driver Booster\Skin folder moved successfully.
C:\Program Files\IObit\Driver Booster\LocalData folder moved successfully.
C:\Program Files\IObit\Driver Booster\LatestNews folder moved successfully.
C:\Program Files\IObit\Driver Booster\Language folder moved successfully.
C:\Program Files\IObit\Driver Booster\Images folder moved successfully.
C:\Program Files\IObit\Driver Booster\Freeware folder moved successfully.
C:\Program Files\IObit\Driver Booster\DrvInstall folder moved successfully.
C:\Program Files\IObit\Driver Booster\DpInst\x86 folder moved successfully.
C:\Program Files\IObit\Driver Booster\DpInst\x64 folder moved successfully.
C:\Program Files\IObit\Driver Booster\DpInst folder moved successfully.
C:\Program Files\IObit\Driver Booster\Download folder moved successfully.
C:\Program Files\IObit\Driver Booster\Database\Update folder moved successfully.
C:\Program Files\IObit\Driver Booster\Database\Backup folder moved successfully.
C:\Program Files\IObit\Driver Booster\Database folder moved successfully.
C:\Program Files\IObit\Driver Booster\Backups folder moved successfully.
C:\Program Files\IObit\Driver Booster folder moved successfully.
C:\Program Files\IObit\Advanced SystemCare Ultimate 7\Update folder moved successfully.
C:\Program Files\IObit\Advanced SystemCare Ultimate 7\Database folder moved successfully.
C:\Program Files\IObit\Advanced SystemCare Ultimate 7\Antivirus\Scan folder moved successfully.
C:\Program Files\IObit\Advanced SystemCare Ultimate 7\Antivirus\Plugins folder moved successfully.
C:\Program Files\IObit\Advanced SystemCare Ultimate 7\Antivirus\BackupRec folder moved successfully.
C:\Program Files\IObit\Advanced SystemCare Ultimate 7\Antivirus folder moved successfully.
C:\Program Files\IObit\Advanced SystemCare Ultimate 7 folder moved successfully.
C:\Program Files\IObit\Advanced SystemCare 7\Update folder moved successfully.
C:\Program Files\IObit\Advanced SystemCare 7\Toolbox_Language folder moved successfully.
C:\Program Files\IObit\Advanced SystemCare 7\Toolbox_Download folder moved successfully.
C:\Program Files\IObit\Advanced SystemCare 7\Temp folder moved successfully.
C:\Program Files\IObit\Advanced SystemCare 7\skin folder moved successfully.
C:\Program Files\IObit\Advanced SystemCare 7\SecurityHole_Backup folder moved successfully.
C:\Program Files\IObit\Advanced SystemCare 7\LinkImages folder moved successfully.
C:\Program Files\IObit\Advanced SystemCare 7\LatestNews folder moved successfully.
C:\Program Files\IObit\Advanced SystemCare 7\Language folder moved successfully.
C:\Program Files\IObit\Advanced SystemCare 7\Images folder moved successfully.
C:\Program Files\IObit\Advanced SystemCare 7\drivers\wxp_x86 folder moved successfully.
C:\Program Files\IObit\Advanced SystemCare 7\drivers\wxp_amd64 folder moved successfully.
C:\Program Files\IObit\Advanced SystemCare 7\drivers\wnet_x86 folder moved successfully.
C:\Program Files\IObit\Advanced SystemCare 7\drivers\wnet_amd64 folder moved successfully.
C:\Program Files\IObit\Advanced SystemCare 7\drivers\wlh_x86 folder moved successfully.
C:\Program Files\IObit\Advanced SystemCare 7\drivers\wlh_amd64 folder moved successfully.
C:\Program Files\IObit\Advanced SystemCare 7\drivers\win7_x86 folder moved successfully.
C:\Program Files\IObit\Advanced SystemCare 7\drivers\win7_amd64 folder moved successfully.
C:\Program Files\IObit\Advanced SystemCare 7\drivers folder moved successfully.
C:\Program Files\IObit\Advanced SystemCare 7\Database folder moved successfully.
C:\Program Files\IObit\Advanced SystemCare 7\BootTimeLog folder moved successfully.
C:\Program Files\IObit\Advanced SystemCare 7\Boottime\BootTimeData folder moved successfully.
C:\Program Files\IObit\Advanced SystemCare 7\Boottime\Backup folder moved successfully.
C:\Program Files\IObit\Advanced SystemCare 7\Boottime folder moved successfully.
C:\Program Files\IObit\Advanced SystemCare 7\Backup folder moved successfully.
C:\Program Files\IObit\Advanced SystemCare 7\ASCServiceLog folder moved successfully.
C:\Program Files\IObit\Advanced SystemCare 7 folder moved successfully.
C:\Program Files\IObit\Advanced SystemCare 6\Update folder moved successfully.
C:\Program Files\IObit\Advanced SystemCare 6\Toolbar folder moved successfully.
C:\Program Files\IObit\Advanced SystemCare 6\SecurityHole_Backup folder moved successfully.
C:\Program Files\IObit\Advanced SystemCare 6\LatestNews folder moved successfully.
C:\Program Files\IObit\Advanced SystemCare 6\BrowerProtect\images folder moved successfully.
C:\Program Files\IObit\Advanced SystemCare 6\BrowerProtect folder moved successfully.
C:\Program Files\IObit\Advanced SystemCare 6\BootTimeLog folder moved successfully.
C:\Program Files\IObit\Advanced SystemCare 6\ASCServiceLog folder moved successfully.
C:\Program Files\IObit\Advanced SystemCare 6 folder moved successfully.
C:\Program Files\IObit folder moved successfully.
C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service folder moved successfully.
C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars folder moved successfully.
C:\Program Files\Skype\Toolbars\Skype for Chromium folder moved successfully.
C:\Program Files\Skype\Toolbars\Shared folder moved successfully.
C:\Program Files\Skype\Toolbars\Internet Explorer folder moved successfully.
C:\Program Files\Skype\Toolbars folder moved successfully.
File/Folder C:\Program Files\McAfee not found.
========== REGISTRY ==========
Registry value HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run\\CTFMON.EXE deleted successfully.
Registry value HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run\\CTFMON.EXE deleted successfully.
Registry value HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Run\\CTFMON.EXE deleted successfully.
Registry value HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run\\CTFMON.EXE not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\skype-ie-addon-data\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\UpdatePRCShortCut deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\Adobe ARM deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\Google Update deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\CCleaner Monitoring deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Advanced SystemCare 7\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list\\C:\Program Files\McAfee\Managed VirusScan\Agent\myAgtSvc.exe deleted successfully.

OTM by OldTimer - Version 3.1.21.0 log created on 10272014_083545

Files moved on Reboot...
File move failed. C:\WINDOWS\SFA9A562C.tmp scheduled to be moved on reboot.
File move failed. C:\WINDOWS\temp\_avast_\AvastLock.txt scheduled to be moved on reboot.

Registry entries deleted on Reboot...

#11 Příspěvek od **altrok** » 27 říj 2014 09:57

Vyborne, jak se PC chova ted?

MiranDAA · #12 Příspěvek od **MiranDAA** » 27 říj 2014 12:21

Je výrazně rychlejší.

#13 Příspěvek od **altrok** » 27 říj 2014 12:24

Takze jeste uklidime.

Stahnete a spustte DelFix - https://toolslib.net/downloads/viewdownload/2-delfix/
Oznacte jen moznost "Remove disinfection tools"
kliknete na Run

A pokud nejsou dotazy ci jine problemy, je to ode mne vse.

MiranDAA · #14 Příspěvek od **MiranDAA** » 28 říj 2014 18:54

Provedeno, děkuji za veškerou pomoc a přeji hodně štěstí tady na fóru!

#15 Příspěvek od **altrok** » 28 říj 2014 19:03

Dekuji za prani!

Nemate zac, rad jsem pomohl

Mejte se

VIRY.CZ

Preventivka

Preventivka

Re: Preventivka

Re: Preventivka

Re: Preventivka

Re: Preventivka

Re: Preventivka

Re: Preventivka

Re: Preventivka

Re: Preventivka

Re: Preventivka

Re: Preventivka

Re: Preventivka

Re: Preventivka

Re: Preventivka

Re: Preventivka