Facebook vir?

[vyosek]

Restart a primo do nouzoveho rezimu a tam jej spustte

[Shirokko]

Úspěch, restart, nouzový režim proběhl, tady je log;

ComboFix 12-01-17.01 - PC 17.01.2012 15:35:34.2.1 - x86 NETWORK
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.2047.1759 [GMT 1:00]
Spuštěný z: c:\documents and settings\PC\Dokumenty\Stažené soubory\ComboFix.exe
Použité ovládací přepínače :: C:\CFScript.txt
AV: F-Secure Profi Antivirus 9.01 *Disabled/Updated* {E7512ED5-4245-4B4D-AF3A-382D3F313F15}
FW: F-Secure Profi Antivirus 9.01 *Enabled* {D4747503-0346-49EB-9262-997542F79BF4}
.
FILE ::
"c:\program files\free-downloads.net\prxtbfre0.dll"
"c:\windows\Tasks\AppleSoftwareUpdate.job"
"c:\windows\Tasks\GoogleUpdateTaskMachineCore.job"
"c:\windows\Tasks\GoogleUpdateTaskMachineUA.job"
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
C:\$AVG
c:\$avg\$VAULT\V_00000001.fil
c:\$avg\$VAULT\vvfolder.idx
c:\program files\AVG
c:\program files\AVG\AVG2012\3rd_party\licenses\ace.txt
c:\program files\AVG\AVG2012\3rd_party\licenses\arabica.txt
c:\program files\AVG\AVG2012\3rd_party\licenses\boost.txt
c:\program files\AVG\AVG2012\3rd_party\licenses\bsdiff.txt
c:\program files\AVG\AVG2012\3rd_party\licenses\bzip.txt
c:\program files\AVG\AVG2012\3rd_party\licenses\carp.html
c:\program files\AVG\AVG2012\3rd_party\licenses\cryptopp.txt
c:\program files\AVG\AVG2012\3rd_party\licenses\curl.txt
c:\program files\AVG\AVG2012\3rd_party\licenses\dazukofs.txt
c:\program files\AVG\AVG2012\3rd_party\licenses\expat.txt
c:\program files\AVG\AVG2012\3rd_party\licenses\imagemagick.txt
c:\program files\AVG\AVG2012\3rd_party\licenses\infozip.txt
c:\program files\AVG\AVG2012\3rd_party\licenses\lua.txt
c:\program files\AVG\AVG2012\3rd_party\licenses\md4_md5_license.txt
c:\program files\AVG\AVG2012\3rd_party\licenses\milter.txt
c:\program files\AVG\AVG2012\3rd_party\licenses\minizip.txt
c:\program files\AVG\AVG2012\3rd_party\licenses\openssl_license.html
c:\program files\AVG\AVG2012\3rd_party\licenses\sasl.txt
c:\program files\AVG\AVG2012\3rd_party\licenses\tinyxml.txt
c:\program files\AVG\AVG2012\3rd_party\licenses\unrar.txt
c:\program files\AVG\AVG2012\3rd_party\licenses\untar.txt
c:\program files\AVG\AVG2012\3rd_party\licenses\xalan_xerces.txt
c:\program files\AVG\AVG2012\3rd_party\licenses\zlib.txt
c:\program files\AVG\AVG2012\3rd_party\readme.txt
c:\program files\AVG\AVG2012\avg.snu
c:\program files\AVG\AVG2012\avg_cz.chm
c:\program files\AVG\AVG2012\avg_cz.lng
c:\program files\AVG\AVG2012\avg_us.chm
c:\program files\AVG\AVG2012\avg_us.lng
c:\program files\AVG\AVG2012\avgabout.dll
c:\program files\AVG\AVG2012\avgameh.dll
c:\program files\AVG\AVG2012\avgamnot.dll
c:\program files\AVG\AVG2012\avgamx.dll
c:\program files\AVG\AVG2012\avgapix.dll
c:\program files\AVG\AVG2012\avgapps.dll
c:\program files\AVG\AVG2012\avgar_cz.chm
c:\program files\AVG\AVG2012\avgar_us.chm
c:\program files\AVG\AVG2012\avgatend.stp
c:\program files\AVG\AVG2012\avgatupd.stp
c:\program files\AVG\AVG2012\avgcclix.dll
c:\program files\AVG\AVG2012\avgcertx.dll
c:\program files\AVG\AVG2012\avgcfgex.exe
c:\program files\AVG\AVG2012\avgcfgx.dll
c:\program files\AVG\AVG2012\avgclitx.dll
c:\program files\AVG\AVG2012\avgcmgr.exe
c:\program files\AVG\AVG2012\avgcorex.dll
c:\program files\AVG\AVG2012\avgcremx.exe
c:\program files\AVG\AVG2012\avgcslx.dll
c:\program files\AVG\AVG2012\avgcsrvx.exe
c:\program files\AVG\AVG2012\avgdecider.dll
c:\program files\AVG\AVG2012\avgdg_cz.chm
c:\program files\AVG\AVG2012\avgdg_us.chm
c:\program files\AVG\AVG2012\avgdiagex.exe
c:\program files\AVG\AVG2012\avgdumpx.exe
c:\program files\AVG\AVG2012\avgemcx.exe
c:\program files\AVG\AVG2012\avgf_cz.chm
c:\program files\AVG\AVG2012\avgf_us.chm
c:\program files\AVG\AVG2012\avgfree_cz.mht
c:\program files\AVG\AVG2012\avgfree_us.mht
c:\program files\AVG\AVG2012\avgchclx.dll
c:\program files\AVG\AVG2012\avgchjwx.dll
c:\program files\AVG\AVG2012\avgidp_cz.chm
c:\program files\AVG\AVG2012\avgidp_us.chm
c:\program files\AVG\AVG2012\avgidpmx.dll
c:\program files\AVG\AVG2012\avgidpsdkx.dll
c:\program files\AVG\AVG2012\AVGIDSAgent.exe
c:\program files\AVG\AVG2012\avglngx.dll
c:\program files\AVG\AVG2012\avglogx.dll
c:\program files\AVG\AVG2012\avgls_cz.chm
c:\program files\AVG\AVG2012\avgls_us.chm
c:\program files\AVG\AVG2012\avglscanx.exe
c:\program files\AVG\AVG2012\avgmfapx.exe
c:\program files\AVG\AVG2012\avgmfarx.dll
c:\program files\AVG\AVG2012\avgmtrapx.dll
c:\program files\AVG\AVG2012\avgmvflx.dll
c:\program files\AVG\AVG2012\avgmwdef_cz.mht
c:\program files\AVG\AVG2012\avgmwdef_us.mht
c:\program files\AVG\AVG2012\avgnsx.exe
c:\program files\AVG\AVG2012\avgntdumpx.exe
c:\program files\AVG\AVG2012\avgntopensslx.dll
c:\program files\AVG\AVG2012\avgntsqlitex.dll
c:\program files\AVG\AVG2012\avgopensslx.dll
c:\program files\AVG\AVG2012\avgoutlookx.dll
c:\program files\AVG\AVG2012\avgpostinstx.dll
c:\program files\AVG\AVG2012\avgpp.dll
c:\program files\AVG\AVG2012\avgresf.dll
c:\program files\AVG\AVG2012\avgrktx.dll
c:\program files\AVG\AVG2012\avgrsx.exe.to_delete
c:\program files\AVG\AVG2012\avgsals_cz.mht
c:\program files\AVG\AVG2012\avgsals_us.mht
c:\program files\AVG\AVG2012\avgsbfree_cz.mht
c:\program files\AVG\AVG2012\avgsbfree_us.mht
c:\program files\AVG\AVG2012\avgscanx.dll
c:\program files\AVG\AVG2012\avgscanx.exe
c:\program files\AVG\AVG2012\avgse.dll
c:\program files\AVG\AVG2012\avgsched.dll
c:\program files\AVG\AVG2012\avgsrmax.exe
c:\program files\AVG\AVG2012\avgsrmx.dll
c:\program files\AVG\AVG2012\avgssie.dll
c:\program files\AVG\AVG2012\avgsysx.dll
c:\program files\AVG\AVG2012\AVGTBInstall.exe
c:\program files\AVG\AVG2012\avgtrial_cz.mht
c:\program files\AVG\AVG2012\avgtrial_us.mht
c:\program files\AVG\AVG2012\avgui.exe
c:\program files\AVG\AVG2012\avguiadv.dll
c:\program files\AVG\AVG2012\avguires.dll
c:\program files\AVG\AVG2012\avgupd.sig
c:\program files\AVG\AVG2012\avgupdx.dll
c:\program files\AVG\AVG2012\avgutilx.dll
c:\program files\AVG\AVG2012\avgvvx.dll
c:\program files\AVG\AVG2012\avgwd.dll
c:\program files\AVG\AVG2012\avgwdsvc.exe
c:\program files\AVG\AVG2012\avgwdwsc.dll
c:\program files\AVG\AVG2012\avgwebui.dll
c:\program files\AVG\AVG2012\avgwsc.exe
c:\program files\AVG\AVG2012\avgxpl.dll
c:\program files\AVG\AVG2012\awacs\dav\component\content.dat
c:\program files\AVG\AVG2012\awacs\dav\component\image.bmp
c:\program files\AVG\AVG2012\awacs\dav\sign.bin
c:\program files\AVG\AVG2012\awacs\fas\component\content.dat
c:\program files\AVG\AVG2012\awacs\fas\component\image.bmp
c:\program files\AVG\AVG2012\awacs\fas\sign.bin
c:\program files\AVG\AVG2012\awacs\obx\component\content.dat
c:\program files\AVG\AVG2012\awacs\obx\component\image.bmp
c:\program files\AVG\AVG2012\awacs\obx\sign.bin
c:\program files\AVG\AVG2012\awacs\pct\component\content.dat
c:\program files\AVG\AVG2012\awacs\pct\component\image.bmp
c:\program files\AVG\AVG2012\awacs\pct\sign.bin
c:\program files\AVG\AVG2012\awacs\rules.cat
c:\program files\AVG\AVG2012\awacs\rules.js
c:\program files\AVG\AVG2012\awacs\speedtest\component\content.dat
c:\program files\AVG\AVG2012\awacs\speedtest\component\speedtest.bmp
c:\program files\AVG\AVG2012\awacs\speedtest\sign.bin
c:\program files\AVG\AVG2012\axioo.dll
c:\program files\AVG\AVG2012\cf.dat
c:\program files\AVG\AVG2012\compat.ini
c:\program files\AVG\AVG2012\contacts_cz.html
c:\program files\AVG\AVG2012\contacts_us.html
c:\program files\AVG\AVG2012\dfncfg.dat
c:\program files\AVG\AVG2012\Drivers\avgld.cat
c:\program files\AVG\AVG2012\Drivers\avgld.inf
c:\program files\AVG\AVG2012\Drivers\avgldx64.sys
c:\program files\AVG\AVG2012\Drivers\avgldx86.sys
c:\program files\AVG\AVG2012\Drivers\avgmf.cat
c:\program files\AVG\AVG2012\Drivers\avgmf.inf
c:\program files\AVG\AVG2012\Drivers\avgmfx64.sys
c:\program files\AVG\AVG2012\Drivers\avgmfx86.sys
c:\program files\AVG\AVG2012\Drivers\avgrk.cat
c:\program files\AVG\AVG2012\Drivers\avgrk.inf
c:\program files\AVG\AVG2012\Drivers\avgrkx64.sys
c:\program files\AVG\AVG2012\Drivers\avgrkx86.sys
c:\program files\AVG\AVG2012\Drivers\avgtdi.cat
c:\program files\AVG\AVG2012\Drivers\avgtdi.inf
c:\program files\AVG\AVG2012\Drivers\avgtdia.sys
c:\program files\AVG\AVG2012\Drivers\avgtdix.sys
c:\program files\AVG\AVG2012\Drivers\ErHrXpx86\AVGIDSEH.cat
c:\program files\AVG\AVG2012\Drivers\ErHrXpx86\AVGIDSEH.inf
c:\program files\AVG\AVG2012\Drivers\ErHrXpx86\AVGIDSEH.sys
c:\program files\AVG\AVG2012\Drivers\platform_XP\UniversalDD.sys
c:\program files\AVG\AVG2012\Drivers\XP\AVGIDSDriver.cat
c:\program files\AVG\AVG2012\Drivers\XP\AVGIDSDriver.inf
c:\program files\AVG\AVG2012\Drivers\XP\AVGIDSDriver.sys
c:\program files\AVG\AVG2012\Drivers\XP\AVGIDSFilter.cat
c:\program files\AVG\AVG2012\Drivers\XP\AVGIDSFilter.inf
c:\program files\AVG\AVG2012\Drivers\XP\AVGIDSFilter.sys
c:\program files\AVG\AVG2012\Drivers\XP\AVGIDSShim.cat
c:\program files\AVG\AVG2012\Drivers\XP\AVGIDSShim.inf
c:\program files\AVG\AVG2012\Drivers\XP\AVGIDSShim.sys
c:\program files\AVG\AVG2012\Firefox\Chrome\searchshield.jar
c:\program files\AVG\AVG2012\Firefox4\Components\avgssff4.dll
c:\program files\AVG\AVG2012\Firefox4\Components\avgssff5.dll
c:\program files\AVG\AVG2012\Firefox4\Components\avgssff6.dll
c:\program files\AVG\AVG2012\Firefox4\Components\avgssff7.dll
c:\program files\AVG\AVG2012\Firefox4\Components\avgssff8.dll
c:\program files\AVG\AVG2012\Firefox4\Components\avgssff9.dll
c:\program files\AVG\AVG2012\Firefox4\Components\ISearchShield4.xpt
c:\program files\AVG\AVG2012\Firefox4\chrome.manifest
c:\program files\AVG\AVG2012\Firefox4\Chrome\searchshield.jar
c:\program files\AVG\AVG2012\Firefox4\install.rdf
c:\program files\AVG\AVG2012\fixcfg.exe
c:\program files\AVG\AVG2012\HtmLayout.dll
c:\program files\AVG\AVG2012\Chrome\safesearch.crx
c:\program files\AVG\AVG2012\Icons\alert_mask.png
c:\program files\AVG\AVG2012\Icons\background_middle_gray.gif
c:\program files\AVG\AVG2012\Icons\background_middle_green.gif
c:\program files\AVG\AVG2012\Icons\background_middle_orange.gif
c:\program files\AVG\AVG2012\Icons\background_middle_red.gif
c:\program files\AVG\AVG2012\Icons\background_middle_yellow.gif
c:\program files\AVG\AVG2012\Icons\background_top_gray.gif
c:\program files\AVG\AVG2012\Icons\background_top_green.gif
c:\program files\AVG\AVG2012\Icons\background_top_orange.gif
c:\program files\AVG\AVG2012\Icons\background_top_red.gif
c:\program files\AVG\AVG2012\Icons\background_top_yellow.gif
c:\program files\AVG\AVG2012\Icons\block-doc.gif
c:\program files\AVG\AVG2012\Icons\blocked.gif
c:\program files\AVG\AVG2012\Icons\blocked12.png
c:\program files\AVG\AVG2012\Icons\border_bottom_gray.gif
c:\program files\AVG\AVG2012\Icons\border_bottom_green.gif
c:\program files\AVG\AVG2012\Icons\border_bottom_orange.gif
c:\program files\AVG\AVG2012\Icons\border_bottom_red.gif
c:\program files\AVG\AVG2012\Icons\border_bottom_yellow.gif
c:\program files\AVG\AVG2012\Icons\border_top_gray.gif
c:\program files\AVG\AVG2012\Icons\border_top_green.gif
c:\program files\AVG\AVG2012\Icons\border_top_orange.gif
c:\program files\AVG\AVG2012\Icons\border_top_red.gif
c:\program files\AVG\AVG2012\Icons\border_top_yellow.gif
c:\program files\AVG\AVG2012\Icons\box_bottom_red.gif
c:\program files\AVG\AVG2012\Icons\box_top_red.gif
c:\program files\AVG\AVG2012\Icons\caution.gif
c:\program files\AVG\AVG2012\Icons\caution12.png
c:\program files\AVG\AVG2012\Icons\click_here_gray.gif
c:\program files\AVG\AVG2012\Icons\click_here_green.gif
c:\program files\AVG\AVG2012\Icons\click_here_orange.gif
c:\program files\AVG\AVG2012\Icons\click_here_red.gif
c:\program files\AVG\AVG2012\Icons\click_here_yellow.gif
c:\program files\AVG\AVG2012\Icons\clock.gif
c:\program files\AVG\AVG2012\Icons\clock12.png
c:\program files\AVG\AVG2012\Icons\close.gif
c:\program files\AVG\AVG2012\Icons\green_inline_border_bl.png
c:\program files\AVG\AVG2012\Icons\green_inline_border_br.png
c:\program files\AVG\AVG2012\Icons\green_inline_border_r.png
c:\program files\AVG\AVG2012\Icons\green_inline_border_tl.png
c:\program files\AVG\AVG2012\Icons\green_inline_border_tr.png
c:\program files\AVG\AVG2012\Icons\icons_blocked.gif
c:\program files\AVG\AVG2012\Icons\icons_caution.gif
c:\program files\AVG\AVG2012\Icons\icons_close.gif
c:\program files\AVG\AVG2012\Icons\icons_safe.gif
c:\program files\AVG\AVG2012\Icons\icons_unknown.gif
c:\program files\AVG\AVG2012\Icons\icons_warning.gif
c:\program files\AVG\AVG2012\Icons\LS_Logo_Results.gif
c:\program files\AVG\AVG2012\Icons\orange_inline_border_bl.png
c:\program files\AVG\AVG2012\Icons\orange_inline_border_br.png
c:\program files\AVG\AVG2012\Icons\orange_inline_border_r.png
c:\program files\AVG\AVG2012\Icons\orange_inline_border_tl.png
c:\program files\AVG\AVG2012\Icons\orange_inline_border_tr.png
c:\program files\AVG\AVG2012\Icons\product_logo.png
c:\program files\AVG\AVG2012\Icons\red_inline_border_bl.png
c:\program files\AVG\AVG2012\Icons\red_inline_border_br.png
c:\program files\AVG\AVG2012\Icons\red_inline_border_r.png
c:\program files\AVG\AVG2012\Icons\red_inline_border_tl.png
c:\program files\AVG\AVG2012\Icons\red_inline_border_tr.png
c:\program files\AVG\AVG2012\Icons\safe.gif
c:\program files\AVG\AVG2012\Icons\safe12.png
c:\program files\AVG\AVG2012\Icons\toolbar_en.bmp
c:\program files\AVG\AVG2012\Icons\unknown.gif
c:\program files\AVG\AVG2012\Icons\vrsn-secured-lsfo.gif
c:\program files\AVG\AVG2012\Icons\warning.gif
c:\program files\AVG\AVG2012\Icons\warning12.png
c:\program files\AVG\AVG2012\Icons\yellow_inline_border_bl.png
c:\program files\AVG\AVG2012\Icons\yellow_inline_border_br.png
c:\program files\AVG\AVG2012\Icons\yellow_inline_border_r.png
c:\program files\AVG\AVG2012\Icons\yellow_inline_border_tl.png
c:\program files\AVG\AVG2012\Icons\yellow_inline_border_tr.png
c:\program files\AVG\AVG2012\js.dat
c:\program files\AVG\AVG2012\license_cz.htm
c:\program files\AVG\AVG2012\license_us.htm
c:\program files\AVG\AVG2012\mfacz.lns
c:\program files\AVG\AVG2012\mfaus.lns
c:\program files\AVG\AVG2012\mfaverx.txt
c:\program files\AVG\AVG2012\mwbsr_e_free_cz.mht
c:\program files\AVG\AVG2012\mwbsr_e_free_us.mht
c:\program files\AVG\AVG2012\mwbsr_f_free_cz.mht
c:\program files\AVG\AVG2012\mwbsr_f_free_us.mht
c:\program files\AVG\AVG2012\Notification\background.png
c:\program files\AVG\AVG2012\Notification\button.gif
c:\program files\AVG\AVG2012\Notification\BuyFull_cz.htm
c:\program files\AVG\AVG2012\Notification\BuyFull_da.htm
c:\program files\AVG\AVG2012\Notification\BuyFull_es.htm
c:\program files\AVG\AVG2012\Notification\BuyFull_fr.htm
c:\program files\AVG\AVG2012\Notification\BuyFull_ge.htm
c:\program files\AVG\AVG2012\Notification\BuyFull_hu.htm
c:\program files\AVG\AVG2012\Notification\BuyFull_id.htm
c:\program files\AVG\AVG2012\Notification\BuyFull_in.htm
c:\program files\AVG\AVG2012\Notification\BuyFull_it.htm
c:\program files\AVG\AVG2012\Notification\BuyFull_jp.htm
c:\program files\AVG\AVG2012\Notification\BuyFull_ko.htm
c:\program files\AVG\AVG2012\Notification\BuyFull_ms.htm
c:\program files\AVG\AVG2012\Notification\BuyFull_nl.htm
c:\program files\AVG\AVG2012\Notification\BuyFull_pb.htm
c:\program files\AVG\AVG2012\Notification\BuyFull_pl.htm
c:\program files\AVG\AVG2012\Notification\BuyFull_pt.htm
c:\program files\AVG\AVG2012\Notification\BuyFull_ru.htm
c:\program files\AVG\AVG2012\Notification\BuyFull_sc.htm
c:\program files\AVG\AVG2012\Notification\BuyFull_sk.htm
c:\program files\AVG\AVG2012\Notification\BuyFull_sp.htm
c:\program files\AVG\AVG2012\Notification\BuyFull_tr.htm
c:\program files\AVG\AVG2012\Notification\BuyFull_us.htm
c:\program files\AVG\AVG2012\Notification\BuyFull_zh.htm
c:\program files\AVG\AVG2012\Notification\BuyFull_zt.htm
c:\program files\AVG\AVG2012\Notification\style.css
c:\program files\AVG\AVG2012\Notification\title-bg.png
c:\program files\AVG\AVG2012\PCTuneup\AxBrowsers.dll
c:\program files\AVG\AVG2012\PCTuneup\DiskCleanerHelper.dll
c:\program files\AVG\AVG2012\PCTuneup\DiskDefragHelper.dll
c:\program files\AVG\AVG2012\PCTuneup\helper.dll
c:\program files\AVG\AVG2012\PCTuneup\localizer.dll
c:\program files\AVG\AVG2012\PCTuneup\MicroScanner.exe
c:\program files\AVG\AVG2012\PCTuneup\MicroScannerElevation.dll
c:\program files\AVG\AVG2012\PCTuneup\PerlRegExp.bpl
c:\program files\AVG\AVG2012\PCTuneup\RegistryCleanerHelper.dll
c:\program files\AVG\AVG2012\PCTuneup\RescueCenterHelper.dll
c:\program files\AVG\AVG2012\PCTuneup\rtl120.bpl
c:\program files\AVG\AVG2012\PCTuneup\vcl120.bpl
c:\program files\AVG\AVG2012\ph.dat
c:\program files\AVG\AVG2012\sb.dat
c:\program files\AVG\AVG2012\sb.dat.xcd
c:\program files\AVG\AVG2012\sb2.dat
c:\program files\AVG\AVG2012\sc.dat
c:\program files\AVG\AVG2012\sc.dat.xcd
c:\program files\AVG\AVG2012\sounds\scan_finish_threat_found.wav
c:\program files\AVG\AVG2012\sounds\scan_os_alert.wav
c:\program files\AVG\AVG2012\sounds\scan_rs_alert.wav
c:\program files\AVG\AVG2012\sounds\update_end_fail.wav
c:\program files\AVG\AVG2012\updatecomps.bak
c:\windows\fspscprereqmsiinst.log
c:\windows\Tasks\AppleSoftwareUpdate.job
c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_GUPDATE
-------\Service_gupdate
-------\Service_gupdatem
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-12-17 do 2012-01-17 )))))))))))))))))))))))))))))))
.
.
2012-01-16 19:34 . 2012-01-16 19:34 -------- d-----w- c:\program files\Common Files\Java
2012-01-16 18:37 . 2012-01-16 18:37 -------- d-----w- c:\documents and settings\NetworkService\Local Settings\Data aplikací\F-Secure
2012-01-16 18:37 . 2012-01-16 18:44 42672 ----a-w- c:\windows\system32\drivers\fsbts.sys
2012-01-16 18:36 . 2012-01-16 19:00 82120 ----a-w- c:\windows\system32\drivers\fsdfw.sys
2012-01-16 18:35 . 2012-01-16 19:03 -------- d-----w- c:\program files\F-Secure
2012-01-16 18:34 . 2012-01-16 18:34 -------- d--h--w- c:\windows\system32\GroupPolicy
2012-01-16 18:32 . 2012-01-16 18:32 -------- d-----w- c:\documents and settings\All Users\Data aplikací\fssg
2012-01-16 18:24 . 2012-01-16 18:36 -------- d-----w- c:\documents and settings\All Users\Data aplikací\f-secure
2012-01-16 18:22 . 2010-10-19 20:51 222080 ------w- c:\windows\system32\MpSigStub.exe
2012-01-16 14:34 . 2012-01-16 14:50 -------- d-----w- c:\program files\trend micro
2012-01-16 14:34 . 2012-01-16 14:50 -------- d-----w- C:\rsit
2012-01-16 11:30 . 2012-01-16 15:27 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Spybot - Search & Destroy
2012-01-11 09:43 . 2012-01-11 09:43 -------- d-----w- c:\documents and settings\PC\Data aplikací\AVG2012
2012-01-11 09:26 . 2012-01-11 09:45 -------- d-----w- c:\documents and settings\All Users\Data aplikací\AVG2012
2012-01-11 09:20 . 2012-01-11 09:20 -------- d--h--w- c:\documents and settings\All Users\Data aplikací\Common Files
2012-01-11 09:19 . 2012-01-16 15:33 -------- d-----w- c:\documents and settings\All Users\Data aplikací\MFAData
2012-01-03 13:10 . 2012-01-03 13:10 182672 ----a-w- c:\program files\Mozilla Firefox\plugins\nppdf32.dll
2012-01-03 13:10 . 2012-01-03 13:10 182672 ----a-w- c:\program files\Internet Explorer\PLUGINS\nppdf32.dll
2011-12-25 12:34 . 2010-09-18 06:53 953856 -c----w- c:\windows\system32\dllcache\mfc40u.dll
2011-12-25 12:34 . 2010-08-23 16:12 617472 -c----w- c:\windows\system32\dllcache\comctl32.dll
2011-12-25 12:33 . 2010-11-02 15:17 40960 -c----w- c:\windows\system32\dllcache\ndproxy.sys
2011-12-25 12:28 . 2011-06-24 14:10 139656 -c----w- c:\windows\system32\dllcache\rdpwd.sys
2011-12-25 12:28 . 2011-04-21 13:37 105472 -c----w- c:\windows\system32\dllcache\mup.sys
2011-12-25 12:26 . 2011-07-08 14:02 10496 -c----w- c:\windows\system32\dllcache\ndistapi.sys
2011-12-25 12:23 . 2010-10-11 14:59 45568 -c----w- c:\windows\system32\dllcache\wab.exe
2011-12-24 09:45 . 2004-08-17 13:49 221184 ----a-w- c:\windows\system32\wmpns.dll
2011-12-24 09:21 . 2011-12-24 09:21 -------- d-----w- c:\windows\system32\cs
2011-12-24 09:21 . 2011-12-24 09:21 -------- d-----w- c:\windows\system32\bits
2011-12-24 09:21 . 2011-12-24 09:21 -------- d-----w- c:\windows\l2schemas
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-11-25 21:57 . 2004-08-17 13:49 293376 ----a-w- c:\windows\system32\winsrv.dll
2011-11-23 14:40 . 2004-08-17 13:44 1859584 ----a-w- c:\windows\system32\win32k.sys
2011-11-23 13:57 . 2011-11-23 13:57 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-11-20 06:12 . 2004-08-17 13:49 60416 ----a-w- c:\windows\system32\packager.exe
2011-11-10 04:54 . 2011-07-25 17:51 472808 ----a-w- c:\windows\system32\deployJava1.dll
2011-11-10 02:27 . 2011-07-25 17:51 73728 ----a-w- c:\windows\system32\javacpl.cpl
2011-11-04 19:13 . 2004-08-17 13:49 1469440 ------w- c:\windows\system32\inetcpl.cpl
2011-11-04 19:13 . 2004-08-17 13:49 916992 ----a-w- c:\windows\system32\wininet.dll
2011-11-04 19:13 . 2004-08-17 13:49 43520 ----a-w- c:\windows\system32\licmgr10.dll
2011-11-04 11:23 . 2004-08-17 13:44 385024 ----a-w- c:\windows\system32\html.iec
2011-11-03 15:29 . 2004-08-17 13:49 386560 ----a-w- c:\windows\system32\qdvd.dll
2011-11-03 15:29 . 2004-08-17 13:49 1294848 ----a-w- c:\windows\system32\quartz.dll
2011-11-01 16:07 . 2004-08-17 13:49 1288192 ----a-w- c:\windows\system32\ole32.dll
2011-10-28 05:32 . 2004-08-17 13:49 33280 ----a-w- c:\windows\system32\csrsrv.dll
2011-10-26 10:50 . 2004-08-17 15:45 2071552 ----a-w- c:\windows\system32\ntkrnlpa.exe
2011-10-26 10:50 . 2004-08-17 13:45 2194944 ----a-w- c:\windows\system32\ntoskrnl.exe
2009-05-01 21:02 . 2009-05-01 21:02 1044480 ----a-w- c:\program files\mozilla firefox\plugins\libdivx.dll
2009-05-01 21:02 . 2009-05-01 21:02 200704 ----a-w- c:\program files\mozilla firefox\plugins\ssldivx.dll
2011-12-21 07:39 . 2012-01-16 19:32 121816 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
((((((((((((((((((((((((((((( SnapShot@2012-01-16_18.10.05 )))))))))))))))))))))))))))))))))))))))))
.
+ 2012-01-17 14:46 . 2012-01-17 14:46 16384 c:\windows\temp\Perflib_Perfdata_4fc.dat
+ 2012-01-17 14:46 . 2012-01-17 14:46 16384 c:\windows\temp\Perflib_Perfdata_104.dat
+ 2001-10-25 12:00 . 2012-01-16 18:36 91030 c:\windows\system32\perfc009.dat
+ 2009-03-10 21:18 . 2009-03-10 21:18 969608 c:\windows\system32\WgaTray.exe
+ 2009-03-10 21:18 . 2009-03-10 21:18 265096 c:\windows\system32\WgaLogon.dll
+ 2001-10-25 12:00 . 2012-01-16 18:36 493778 c:\windows\system32\perfh009.dat
+ 2001-10-25 12:00 . 2012-01-16 18:36 493008 c:\windows\system32\perfh005.dat
+ 2001-10-25 12:00 . 2012-01-16 18:36 103624 c:\windows\system32\perfc005.dat
- 2011-07-25 17:51 . 2011-07-25 17:51 157472 c:\windows\system32\javaws.exe
+ 2012-01-16 19:33 . 2011-11-10 04:54 157472 c:\windows\system32\javaws.exe
+ 2012-01-16 19:33 . 2011-11-10 04:54 149280 c:\windows\system32\javaw.exe
+ 2012-01-16 19:33 . 2011-11-10 04:54 149280 c:\windows\system32\java.exe
+ 2011-02-10 20:02 . 2012-01-17 14:46 224834 c:\windows\system32\inetsrv\MetaBase.bin
+ 2009-03-10 21:18 . 2009-03-10 21:18 969608 c:\windows\system32\dllcache\WgaTray.exe
+ 2009-03-10 21:18 . 2009-03-10 21:18 265096 c:\windows\system32\dllcache\wgaLogon.dll
+ 2012-01-16 18:35 . 2012-01-16 18:35 135680 c:\windows\Installer\a496b7.msi
+ 2012-01-16 18:18 . 2012-01-16 18:18 301056 c:\windows\Installer\96a89f.msi
+ 2012-01-16 19:34 . 2012-01-16 19:34 203776 c:\windows\Installer\6b7df.msi
+ 2008-03-20 16:06 . 2009-03-10 21:18 1482112 c:\windows\system32\LegitCheckControl.dll
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"iPlusAgent2"="c:\program files\iriver\iriver plus 2\iAgent2.exe" [2006-01-12 241664]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SetRefresh"="c:\program files\COMPAQ\SetRefresh\\SetRefresh.exe" [2003-11-20 525824]
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2008-10-25 31072]
"CanonMyPrinter"="c:\program files\Canon\MyPrinter\BJMyPrt.exe" [2010-03-25 2516296]
"F-Secure Manager"="c:\program files\F-Secure\Common\FSM32.EXE" [2009-08-05 199264]
"F-Secure TNB"="c:\program files\F-Secure\FSGUI\TNBUtil.exe" [2009-08-05 2349664]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2011-06-09 254696]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\
Adobe Acrobat Speed Launcher.lnk - c:\windows\Installer\{AC76BA86-1033-0000-7760-000000000002}\SC_Acrobat.exe [2011-2-16 25214]
Adobe Gamma.lnk - c:\program files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [2005-3-16 113664]
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0c:\progra~1\AVG\AVG2012\avgrsx.exe /sync /restart
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Adobe\\Adobe Version Cue CS2\\bin\\VersionCueCS2.exe"=
"c:\\Program Files\\Skype\\Plugin Manager\\skypePM.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"=
"c:\\Program Files\\iTunes\\iTunes.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"c:\\Program Files\\Google\\Google Earth\\client\\googleearth.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
.
R0 fsbts;fsbts;c:\windows\system32\drivers\fsbts.sys [16.1.2012 19:37 42672]
R0 FSFW;F-Secure Firewall Driver;c:\windows\system32\drivers\fsdfw.sys [16.1.2012 19:36 82120]
R0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [15.6.2011 7:07 436792]
R1 F-Secure HIPS;F-Secure HIPS Driver;c:\program files\F-Secure\HIPS\drivers\fshs.sys [16.1.2012 19:36 68064]
R3 F-Secure Gatekeeper;F-Secure Gatekeeper;c:\program files\F-Secure\Anti-Virus\minifilter\fsgk.sys [16.1.2012 19:35 148632]
R3 FSORSPClient;F-Secure ORSP Client;c:\program files\F-Secure\ORSP Client\fsorsp.exe [16.1.2012 19:36 61088]
S3 N100;Compaq Ethernet or Fast Ethernet NIC Driver;c:\windows\system32\drivers\n100325.sys [13.2.2011 10:42 129024]
S3 N1000;Compaq Gigabit NIC Driver;c:\windows\system32\drivers\n1000nt5.sys [13.2.2011 10:44 52767]
.
Obsah adresáře 'Naplánované úlohy'
.
2012-01-16 c:\windows\Tasks\Scheduled scanning task.job
- c:\progra~1\F-Secure\ANTI-V~1\fsav.exe [2012-01-16 15:56]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.google.cz/
IE: Convert link target to Adobe PDF - c:\program files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Convert link target to existing PDF - c:\program files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert selected links to Adobe PDF - c:\program files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Convert selected links to existing PDF - c:\program files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Convert selection to Adobe PDF - c:\program files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Convert selection to existing PDF - c:\program files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert to Adobe PDF - c:\program files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Convert to existing PDF - c:\program files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
LSP: c:\program files\F-Secure\FSPS\program\FSLSP.DLL
TCP: DhcpNameServer = 10.0.0.138
FF - ProfilePath - c:\documents and settings\PC\Data aplikací\Mozilla\Firefox\Profiles\qsayvj9z.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.google.cz/
FF - prefs.js: network.proxy.type - 0
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2012-01-17 15:46
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'winlogon.exe'(676)
c:\program files\F-Secure\FWES\Program\fsdc32.dll
.
- - - - - - - > 'lsass.exe'(732)
c:\program files\F-Secure\FSPS\program\FSLSP.DLL
c:\program files\F-Secure\FWES\Program\fsdc32.dll
.
- - - - - - - > 'explorer.exe'(1980)
c:\windows\system32\webcheck.dll
c:\windows\system32\msls31.dll
c:\program files\F-Secure\FWES\Program\fsdc32.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
- - - - - - - > 'csrss.exe'(652)
c:\program files\F-Secure\FWES\Program\fsdc32.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files\Adobe\Adobe Version Cue CS2\bin\VersionCueCS2.exe
c:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\program files\F-Secure\Anti-Virus\fsgk32st.exe
c:\program files\F-Secure\Common\FSMA32.EXE
c:\program files\F-Secure\Anti-Virus\FSGK32.EXE
c:\windows\system32\inetsrv\inetinfo.exe
c:\program files\F-Secure\Common\FSHDLL32.EXE
c:\program files\Java\jre6\bin\jqs.exe
c:\windows\system32\tcpsvcs.exe
c:\windows\System32\snmp.exe
c:\program files\Adobe\Adobe Version Cue CS2\data\database\bin\mysqld-nt.exe
c:\program files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
c:\program files\Adobe\Adobe Acrobat 7.0\Acrobat\acrobat_sl.exe
c:\program files\F-Secure\FWES\Program\fsdfwd.exe
c:\program files\F-Secure\Anti-Virus\fssm32.exe
c:\windows\system32\wscntfy.exe
c:\program files\F-Secure\Anti-Virus\fsav32.exe
.
**************************************************************************
.
Celkový čas: 2012-01-17 15:51:35 - počítač byl restartován
ComboFix-quarantined-files.txt 2012-01-17 14:51
ComboFix2.txt 2012-01-16 18:14
.
Před spuštěním: Volných bajtů: 88 724 983 808
Po spuštění: Volných bajtů: 86 754 099 200
.
- - End Of File - - 250EC28D1FAC00979191E9569399069A

[vyosek]

Stahnete OTM (viz muj podpis)

• Pokud pouzivate Win Vista ci W7, kliknete na OTM pravym a dejte Run As Administrator ci Spustit jako spravce
• Do leveho okna Paste Instructions for Items to be Moved (pod zlutou caru) vlozte obsah, ktery mate nize

• Kód: Vybrat vše

  :reg
  [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
  "SunJavaUpdateSched"=-
  [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
  "CTFMON.EXE"=-
  
  :files
  c:\documents and settings\All Users\Data aplikací\Spybot - Search & Destroy
  c:\documents and settings\PC\Data aplikací\AVG2012
  c:\documents and settings\All Users\Data aplikací
  c:\AVG2012
  c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\Adobe Acrobat Speed Launcher.lnk
  c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\Adobe Gamma.lnk
  %windir%\system32\*.tmp.dll /s
  %windir%\system32\SET*.tmp /s
  %windir%\*.tmp
  
  :commands
  [RESETHOSTS]
  [EMPTYTEMP]
  [EMPTYFLASH]

• Kliknete na cervene tlacitko MoveIt!
• Budete vyzvani na restart, dejte Yes, log pote najdete C:\_OTM\MovedFiles, obsah sem vlozte

[Shirokko]

Při otevírání OTM se mohu přihlásit jako uživatel PC, tam není problém, pokud se mám přihlásit jako administrátor, tak to chce heslo, které nevim, myslím že ho nemám. Když nechám políčko volné, stejně mě to dál nepustí. Mam se tedy přihlásit jako uživatel? Diky

[vyosek]

Ano, prihlaste se jako uzivatel

[Shirokko]

Scan proběhl v pořádku, na konci chybové hlášení, C:/WINDOWS/system32/drivers/etc/Hosts .

Jediná varianta pak je tlačítko OK, to jsem dal, dál se neděje nic, výzva k restartu žádná.

Celou akci jsem udělal 2krát... ? Díky.





jestli pomůže, tady je obsah políčka RESULTS - zelená čára









All processes killed
========== REGISTRY ==========
Registry delete failed. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched scheduled to be deleted on reboot.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Registry delete failed. HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run\\CTFMON.EXE scheduled to be deleted on reboot.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
========== FILES ==========
File/Folder c:\documents and settings\All Users\Data aplikací\Spybot - Search & Destroy not found.
File/Folder c:\documents and settings\PC\Data aplikací\AVG2012 not found.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Folder move failed. c:\documents and settings\All Users\Data aplikací\{429CAD59-35B1-4DBC-BB6D-1DB246563521} scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Windows Genuine Advantage\data scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Windows Genuine Advantage scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Sun\Java\Java Update scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Sun\Java scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Sun scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Skype\{E633D396-5188-4E9D-8F6B-BFB8BF3467E8} scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Skype\{5335DADB-34BA-4AE8-A519-648D78498846} scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Skype\Apps\skypehome\i\production scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Skype\Apps\skypehome\i\languages scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Skype\Apps\skypehome\i\images\fancybox scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Skype\Apps\skypehome\i\images\buttons scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Skype\Apps\skypehome\i\images\avatarview scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Skype\Apps\skypehome\i\images scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Skype\Apps\skypehome\i scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Skype\Apps\skypehome scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Skype\Apps\pcj\i\js\languages scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Skype\Apps\pcj\i\js scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Skype\Apps\pcj\i\images\promotions scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Skype\Apps\pcj\i\images\buttons scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Skype\Apps\pcj\i\images\backgrounds scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Skype\Apps\pcj\i\images scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Skype\Apps\pcj\i\css scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Skype\Apps\pcj\i scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Skype\Apps\pcj\assets\promotions scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Skype\Apps\pcj\assets scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Skype\Apps\pcj scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Skype\Apps scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Skype scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\regid.1986-12.com.adobe scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Premium\Setup scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Premium scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Motive scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Microsoft Help scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Microsoft\WPD scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Microsoft\WLSetup\Logs scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Microsoft\WLSetup\CabLogs scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Microsoft\WLSetup scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Microsoft\Windows NT\MSFax\SentItems scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Microsoft\Windows NT\MSFax\Queue scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Microsoft\Windows NT\MSFax\Inbox scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Microsoft\Windows NT\MSFax\Common Coverpages scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Microsoft\Windows NT\MSFax\ActivityLog scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Microsoft\Windows NT\MSFax scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Microsoft\Windows NT scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Microsoft\User Account Pictures\Default Pictures scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Microsoft\User Account Pictures scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Microsoft\OFFICE\Groove scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Microsoft\OFFICE scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Microsoft\Network\Downloader scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Microsoft\Network\Connections\Pbk scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Microsoft\Network\Connections\Cm scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Microsoft\Network\Connections scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Microsoft\Network scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Microsoft\MSDN\8.0 scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Microsoft\MSDN scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Microsoft\MSDAIPP scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Microsoft\Microsoft Security Client\Support scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Microsoft\Microsoft Security Client scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Microsoft\Media Player scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Microsoft\Media Index scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Microsoft\IdentityCRL\production scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Microsoft\IdentityCRL scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Microsoft\HTML Help scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Microsoft\Crypto\RSA\S-1-5-18 scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Microsoft\Crypto\RSA\MachineKeys scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Microsoft\Crypto\RSA scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Microsoft\Crypto\DSS\MachineKeys scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Microsoft\Crypto\DSS scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Microsoft\Crypto scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Microsoft scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\MFAData\SelfUpd scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\MFAData\pack scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\MFAData\mkt\res scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\MFAData\mkt\dtc\res scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\MFAData\mkt\dtc\cz scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\MFAData\mkt\dtc scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\MFAData\mkt\cz scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\MFAData\mkt scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\MFAData\logs scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\MFAData scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\McNeel\Rhinoceros scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\McNeel scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\McAfee\MCLOGS\SecurityScanner\McUICnt scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\McAfee\MCLOGS\SecurityScanner scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\McAfee\MCLOGS\PartnerCustom\SSScheduler scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\McAfee\MCLOGS\PartnerCustom\McUICnt scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\McAfee\MCLOGS\PartnerCustom\McCHSvc scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\McAfee\MCLOGS\PartnerCustom scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\McAfee\MCLOGS\McUICnt\McUICnt scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\McAfee\MCLOGS\McUICnt scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\McAfee\MCLOGS\Common\McCHSvc scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\McAfee\MCLOGS\Common scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\McAfee\MCLOGS scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\McAfee scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\InstallShield\UpdateService scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\InstallShield scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\InstallMate\{28918B30-265A-B8F3-2935-FC367EEFDAB9}\B8C969946DC200AC scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\InstallMate\{28918B30-265A-B8F3-2935-FC367EEFDAB9} scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\InstallMate scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\fssg scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\f-secure\setup scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\f-secure\Quarantine\Repository scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\f-secure\Quarantine scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\f-secure\logs\ORSP Client scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\f-secure\logs\HIPS scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\f-secure\logs\fstnb scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\f-secure\logs\FSMA scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\f-secure\logs\FSFW scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\f-secure\logs\FSAV\Users scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\f-secure\logs\FSAV scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\f-secure\logs\DAAS2 scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\f-secure\logs\custom scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\f-secure\logs scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\f-secure\Daas2\revocation scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\f-secure\Daas2\keys scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\f-secure\Daas2\cert scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\f-secure\Daas2\acl scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\f-secure\Daas2 scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\f-secure scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\DonationCoder\DcUpdater\RedirectFiles scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\DonationCoder\DcUpdater scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\DonationCoder scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Common Files scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\AVG2012\SetupBackup scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\AVG2012\fet scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\AVG2012\Chjw\f25491c554918ccb scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\AVG2012\Chjw scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\AVG2012\Cfg scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\AVG2012 scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\ASGvis\Licensing scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\ASGvis scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Apple Computer\iTunes scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Apple Computer\Installer Cache\QuickTime 7.69.80.9 scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Apple Computer\Installer Cache\iTunes 10.1.2.17 scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Apple Computer\Installer Cache scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Apple Computer scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Apple\Lockdown scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Apple\Installer Cache\AppleApplicationSupport 1.4.1 scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Apple\Installer Cache\Apple Software Update 2.1.2.120 scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Apple\Installer Cache\Apple Mobile Device Support 3.3.1.3 scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Apple\Installer Cache scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Apple scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Alwil Software scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Adobe\Updater\Plugins scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Adobe\Updater scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Adobe\SLStore scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Adobe\Setup\{AC76BA86-7AD7-1029-7B44-AA0000000001} scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Adobe\Setup scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Adobe\InDesign\Version 4.0\Scripting Support\4.0 scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Adobe\InDesign\Version 4.0\Scripting Support scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Adobe\InDesign\Version 4.0 scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Adobe\InDesign scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Adobe\Extension Manager CS5.5 scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Adobe\Extension Manager CS5 scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Adobe\ARM\Reader_10.1.2 scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Adobe\ARM\Reader_10.1.1 scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Adobe\ARM scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Adobe\AIR\Updater scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Adobe\AIR scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Adobe\Acrobat\7.0\Replicate\Security scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Adobe\Acrobat\7.0\Replicate scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Adobe\Acrobat\7.0\ARM scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Adobe\Acrobat\7.0 scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Adobe\Acrobat\10.0\Replicate\Security scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Adobe\Acrobat\10.0\Replicate scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Adobe\Acrobat\10.0 scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Adobe\Acrobat scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Adobe\AAMUpdater\1.0 scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Adobe\AAMUpdater scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací\Adobe scheduled to be moved on reboot.
Folder move failed. c:\documents and settings\All Users\Data aplikací scheduled to be moved on reboot.
File/Folder c:\AVG2012 not found.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
File move failed. c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\Adobe Acrobat Speed Launcher.lnk scheduled to be moved on reboot.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
File move failed. c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\Adobe Gamma.lnk scheduled to be moved on reboot.
File/Folder C:\WINDOWS\system32\*.tmp.dll not found.
File/Folder C:\WINDOWS\system32\SET*.tmp not found.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
Unable to create HKLM\Software\OldTimer Tools\OTM key.
File move failed. C:\WINDOWS\002914_.tmp scheduled to be moved on reboot.
File move failed. C:\WINDOWS\SET1A.tmp scheduled to be moved on reboot.
File move failed. C:\WINDOWS\SET1D.tmp scheduled to be moved on reboot.
File move failed. C:\WINDOWS\SET29.tmp scheduled to be moved on reboot.
File move failed. C:\WINDOWS\SET3.tmp scheduled to be moved on reboot.
File move failed. C:\WINDOWS\SET4.tmp scheduled to be moved on reboot.
File move failed. C:\WINDOWS\SET8.tmp scheduled to be moved on reboot.
========== COMMANDS ==========
Unable to create HKLM\Software\OldTimer Tools\OTM key.
File move failed. C:\WINDOWS\System32\drivers\etc\Hosts scheduled to be moved on reboot.

[vyosek]

Poprosim o novy log z RSIT a napiste co PC

[Shirokko]

PC pracuje jak má, prvotní problém - vyskakování oken s Facebook aplikacemi - je pryč, myslim že je vše je v pořádku.

aktuální RSIT log je zde.

Logfile of random's system information tool 1.09 (written by random/random)
Run by PC at 2012-01-17 17:56:55
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 83 GB (54%) free of 153 GB
Total RAM: 2047 MB (59% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:57:01, on 17.1.2012
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Adobe\Adobe Version Cue CS2\bin\VersionCueCS2.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\F-Secure\Anti-Virus\fsgk32st.exe
C:\Program Files\F-Secure\Common\FSMA32.EXE
C:\Program Files\F-Secure\Anti-Virus\FSGK32.EXE
C:\WINDOWS\system32\inetsrv\inetinfo.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\F-Secure\Common\FSHDLL32.EXE
C:\WINDOWS\system32\tcpsvcs.exe
C:\WINDOWS\System32\snmp.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Adobe\Adobe Version Cue CS2\data\database\bin\mysqld-nt.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\Canon\MyPrinter\BJMyPrt.exe
C:\Program Files\F-Secure\Common\FSM32.EXE
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\iriver\iriver plus 2\iAgent2.exe
C:\Program Files\F-Secure\Anti-Virus\fssm32.exe
C:\Program Files\F-Secure\FWES\Program\fsdfwd.exe
C:\Program Files\F-Secure\Anti-Virus\fsav32.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Documents and Settings\PC\Plocha\OTM.exe
C:\Documents and Settings\PC\Plocha\RSIT(1).exe
C:\Program Files\trend micro\PC.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: Podpora odkazu pro Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - (no file)
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Pomocník pro přihlášení ke službě Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: AcroIEToolbarHelper Class - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll
O4 - HKLM\..\Run: [SetRefresh] C:\Program Files\COMPAQ\SetRefresh\\SetRefresh.exe
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon
O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files\F-Secure\Common\FSM32.EXE" /splash
O4 - HKLM\..\Run: [F-Secure TNB] "C:\Program Files\F-Secure\FSGUI\TNBUtil.exe" /CHECKALL /WAITFORSW
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [Adobe Version Cue CS2] C:\Program Files\Adobe\Adobe Version Cue CS2\ControlPanel\VersionCueCS2Tray.exe
O4 - HKCU\..\Run: [iPlusAgent2] "C:\Program Files\iriver\iriver plus 2\iAgent2.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Adobe Acrobat Speed Launcher.lnk = ?
O4 - Global Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O8 - Extra context menu item: Convert link target to Adobe PDF - res://C:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert link target to existing PDF - res://C:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert selected links to Adobe PDF - res://C:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Convert selected links to existing PDF - res://C:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Convert selection to Adobe PDF - res://C:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert selection to existing PDF - res://C:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert to Adobe PDF - res://C:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert to existing PDF - res://C:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Adobe Version Cue CS2 - Adobe Systems Incorporated - C:\Program Files\Adobe\Adobe Version Cue CS2\bin\VersionCueCS2.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: FSGKHS (F-Secure Gatekeeper Handler Starter) - Unknown owner - C:\Program Files\F-Secure\Anti-Virus\fsgk32st.exe
O23 - Service: F-Secure Anti-Virus Firewall Daemon (FSDFWD) - F-Secure Corporation - C:\Program Files\F-Secure\FWES\Program\fsdfwd.exe
O23 - Service: F-Secure Management Agent (FSMA) - F-Secure Corporation - C:\Program Files\F-Secure\Common\FSMA32.EXE
O23 - Service: F-Secure ORSP Client (FSORSPClient) - F-Secure Corporation - C:\Program Files\F-Secure\ORSP Client\fsorsp.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - StarWind Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O24 - Desktop Component 0: (no name) - file:///C:/DOCUME~1/PC/LOCALS~1/Temp/msohtmlclip1/01/clip_image002.jpg

--
End of file - 9888 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\Scheduled scanning task.job

=========Mozilla firefox=========

ProfilePath - C:\Documents and Settings\PC\Data aplikací\Mozilla\Firefox\Profiles\qsayvj9z.default

prefs.js - "browser.startup.homepage" - "http://www.google.cz/"

"{20a82645-c095-46ed-80e3-08825760534b}"=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"{1E73965B-8B48-48be-9C8D-68B920ABC1C4}"=C:\Program Files\AVG\AVG2012\Firefox4\
"jqs@sun.com"=C:\Program Files\Java\jre6\lib\deploy\jqs\ff


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10.1 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Apple.com/iTunes,version=]
"Description"=iTunes Detector Plug-in
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Apple.com/iTunes,version=1.0]
"Description"=
"Path"=C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@canon.com/EPPEX]
"Description"=Canon Easy-PhotoPrint EX
"Path"=C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0]
"Description"=DivX Web Player
"Path"=C:\Program Files\DivX\DivX Web Player\npdivx32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\4.0.60831.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll

C:\Program Files\Mozilla Firefox\extensions\
{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
{972ce4c6-7e08-4474-a285-3208198ce6fd}
{AB2CE124-6272-4b12-94A9-7303C7397BD1}
{CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA}

C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll
nsIQTScriptablePlugin.xpt

C:\Program Files\Mozilla Firefox\plugins\
libdivx.dll
npdeployJava1.dll
npdivx32.dll
npdivx32.xpt
NPOFF12.DLL
nppdf32.dll
npqtplugin.dll
npqtplugin2.dll
npqtplugin3.dll
npqtplugin4.dll
npqtplugin5.dll
npqtplugin6.dll
npqtplugin7.dll
QuickTimePlugin.class
ssldivx.dll

C:\Program Files\Mozilla Firefox\searchplugins\
avg-secure-search.xml
google.xml
heureka-cz.xml
jyxo-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Podpora odkazu pro Adobe PDF Reader - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2012-01-03 64928]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-01-03 63912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-12 2217848]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre6\bin\ssv.dll [2011-11-10 325408]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocník pro přihlášení ke službě Windows Live - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]
AcroIEToolbarHelper Class - C:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll [2004-12-14 225280]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Plug-In - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2011-04-15 1164680]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-11-10 42272]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2011-11-10 79648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe PDF - C:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll [2004-12-14 225280]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SetRefresh"=C:\Program Files\COMPAQ\SetRefresh\\SetRefresh.exe [2003-11-20 525824]
"GrooveMonitor"=C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2008-10-25 31072]
"CanonMyPrinter"=C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2010-03-25 2516296]
"F-Secure Manager"=C:\Program Files\F-Secure\Common\FSM32.EXE [2009-08-05 199264]
"F-Secure TNB"=C:\Program Files\F-Secure\FSGUI\TNBUtil.exe [2009-08-05 2349664]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2011-06-09 254696]
"Adobe Version Cue CS2"=C:\Program Files\Adobe\Adobe Version Cue CS2\ControlPanel\VersionCueCS2Tray.exe [2005-04-04 856064]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"iPlusAgent2"=C:\Program Files\iriver\iriver plus 2\iAgent2.exe [2006-01-12 241664]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]

C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
Adobe Acrobat Speed Launcher.lnk - C:\WINDOWS\Installer\{AC76BA86-1033-0000-7760-000000000002}\SC_Acrobat.exe
Adobe Gamma.lnk - C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265096]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-12 2217848]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=323
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Adobe\Adobe Version Cue CS2\bin\VersionCueCS2.exe"="C:\Program Files\Adobe\Adobe Version Cue CS2\bin\VersionCueCS2.exe:*:Enabled:Adobe Version Cue CS2"
"C:\Program Files\Skype\Plugin Manager\skypePM.exe"="C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"
"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE"="C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\Program Files\iTunes\iTunes.exe"="C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\Google\Google Earth\client\googleearth.exe"="C:\Program Files\Google\Google Earth\client\googleearth.exe:*:Enabled:Google Earth"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"vidc.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv

======List of files/folders created in the last 1 month======

2012-01-17 17:03:37 ----D---- C:\_OTM
2012-01-17 15:51:36 ----A---- C:\ComboFix.txt
2012-01-17 15:45:58 ----ASH---- C:\hiberfil.sys
2012-01-17 15:44:23 ----D---- C:\WINDOWS\temp
2012-01-17 15:29:21 ----D---- C:\WINDOWS\CSC
2012-01-17 15:29:13 ----A---- C:\WINDOWS\ntbtlog.txt
2012-01-17 13:46:17 ----A---- C:\Zástupce - ComboFix.lnk
2012-01-16 20:34:06 ----D---- C:\Program Files\Common Files\Java
2012-01-16 20:33:28 ----A---- C:\WINDOWS\system32\javaws.exe
2012-01-16 20:33:28 ----A---- C:\WINDOWS\system32\javaw.exe
2012-01-16 20:33:28 ----A---- C:\WINDOWS\system32\java.exe
2012-01-16 19:37:07 ----A---- C:\WINDOWS\system32\drivers\fsbts.sys
2012-01-16 19:36:45 ----A---- C:\WINDOWS\system32\drivers\fsdfw.sys
2012-01-16 19:35:54 ----D---- C:\Program Files\F-Secure
2012-01-16 19:34:25 ----HD---- C:\WINDOWS\system32\GroupPolicy
2012-01-16 19:32:49 ----D---- C:\Documents and Settings\All Users\Data aplikací\fssg
2012-01-16 19:24:46 ----D---- C:\Documents and Settings\All Users\Data aplikací\f-secure
2012-01-16 19:22:50 ----N---- C:\WINDOWS\system32\MpSigStub.exe
2012-01-16 18:32:30 ----A---- C:\Boot.bak
2012-01-16 18:32:21 ----RASHD---- C:\cmdcons
2012-01-16 18:30:09 ----A---- C:\WINDOWS\zip.exe
2012-01-16 18:30:09 ----A---- C:\WINDOWS\SWXCACLS.exe
2012-01-16 18:30:09 ----A---- C:\WINDOWS\SWSC.exe
2012-01-16 18:30:09 ----A---- C:\WINDOWS\SWREG.exe
2012-01-16 18:30:09 ----A---- C:\WINDOWS\sed.exe
2012-01-16 18:30:09 ----A---- C:\WINDOWS\PEV.exe
2012-01-16 18:30:09 ----A---- C:\WINDOWS\NIRCMD.exe
2012-01-16 18:30:09 ----A---- C:\WINDOWS\MBR.exe
2012-01-16 18:30:09 ----A---- C:\WINDOWS\grep.exe
2012-01-16 18:30:00 ----D---- C:\WINDOWS\ERDNT
2012-01-16 18:26:20 ----D---- C:\Qoobox
2012-01-16 15:34:33 ----D---- C:\Program Files\trend micro
2012-01-16 15:34:32 ----D---- C:\rsit
2012-01-11 17:54:05 ----HDC---- C:\WINDOWS\$NtUninstallKB2646524$
2012-01-11 17:53:44 ----HDC---- C:\WINDOWS\$NtUninstallKB2631813$
2012-01-11 17:49:40 ----HDC---- C:\WINDOWS\$NtUninstallKB2598479$
2012-01-11 17:44:59 ----HDC---- C:\WINDOWS\$NtUninstallKB2603381$
2012-01-11 17:43:47 ----HDC---- C:\WINDOWS\$NtUninstallKB2584146$
2012-01-11 10:43:46 ----D---- C:\Documents and Settings\PC\Data aplikací\AVG2012
2012-01-11 10:26:25 ----D---- C:\Documents and Settings\All Users\Data aplikací\AVG2012
2012-01-11 10:20:09 ----HD---- C:\Documents and Settings\All Users\Data aplikací\Common Files
2012-01-11 10:19:45 ----D---- C:\Documents and Settings\All Users\Data aplikací\MFAData
2011-12-25 14:29:24 ----HDC---- C:\WINDOWS\$NtUninstallKB2124261$
2011-12-25 14:26:16 ----HDC---- C:\WINDOWS\$NtUninstallKB2387149$
2011-12-25 14:26:07 ----HDC---- C:\WINDOWS\$NtUninstallKB2479943$
2011-12-25 14:25:59 ----HDC---- C:\WINDOWS\$NtUninstallKB2567680$
2011-12-25 14:25:50 ----HDC---- C:\WINDOWS\$NtUninstallKB2564958$
2011-12-25 14:25:45 ----HDC---- C:\WINDOWS\$NtUninstallKB2478971$
2011-12-25 14:25:38 ----HDC---- C:\WINDOWS\$NtUninstallKB2544893-v2$
2011-12-25 14:25:31 ----HDC---- C:\WINDOWS\$NtUninstallKB2491683$
2011-12-25 14:25:23 ----HDC---- C:\WINDOWS\$NtUninstallKB2345886$
2011-12-25 14:22:08 ----HDC---- C:\WINDOWS\$NtUninstallKB2536276-v2$
2011-12-25 14:22:02 ----HDC---- C:\WINDOWS\$NtUninstallKB2296011$
2011-12-25 14:21:55 ----HDC---- C:\WINDOWS\$NtUninstallKB2115168$
2011-12-25 14:21:48 ----HDC---- C:\WINDOWS\$NtUninstallKB975558_WM8$
2011-12-25 14:21:28 ----HDC---- C:\WINDOWS\$NtUninstallKB2378111_WM9$
2011-12-25 14:21:19 ----HDC---- C:\WINDOWS\$NtUninstallKB951978$
2011-12-25 14:21:11 ----HDC---- C:\WINDOWS\$NtUninstallKB2443105$
2011-12-25 14:21:04 ----HDC---- C:\WINDOWS\$NtUninstallKB2639417$
2011-12-25 14:20:56 ----HDC---- C:\WINDOWS\$NtUninstallKB2481109$
2011-12-25 14:20:49 ----HDC---- C:\WINDOWS\$NtUninstallKB2485663$
2011-12-25 14:20:42 ----HDC---- C:\WINDOWS\$NtUninstallKB2440591$
2011-12-25 14:20:35 ----HDC---- C:\WINDOWS\$NtUninstallKB982132$
2011-12-25 14:20:29 ----HDC---- C:\WINDOWS\$NtUninstallKB2507938$
2011-12-25 14:20:21 ----HDC---- C:\WINDOWS\$NtUninstallKB956744$
2011-12-25 14:20:14 ----HDC---- C:\WINDOWS\$NtUninstallKB2476490$
2011-12-25 14:20:08 ----HDC---- C:\WINDOWS\$NtUninstallKB2347290$
2011-12-25 14:19:58 ----HDC---- C:\WINDOWS\$NtUninstallKB2641690$
2011-12-25 14:19:48 ----HDC---- C:\WINDOWS\$NtUninstallKB2483185$
2011-12-25 14:19:39 ----HDC---- C:\WINDOWS\$NtUninstallKB2079403$
2011-12-25 14:19:32 ----HDC---- C:\WINDOWS\$NtUninstallKB2624667$
2011-12-25 14:18:25 ----HDC---- C:\WINDOWS\$NtUninstallKB979687$
2011-12-25 14:18:18 ----HDC---- C:\WINDOWS\$NtUninstallKB2592799$
2011-12-25 14:18:10 ----HDC---- C:\WINDOWS\$NtUninstallKB2570222$
2011-12-25 14:18:02 ----HDC---- C:\WINDOWS\$NtUninstallKB2535512$
2011-12-25 14:17:54 ----HDC---- C:\WINDOWS\$NtUninstallKB2412687$
2011-12-25 14:14:45 ----HDC---- C:\WINDOWS\$NtUninstallKB2570947$
2011-12-25 14:14:39 ----HDC---- C:\WINDOWS\$NtUninstallKB980436$
2011-12-25 14:14:33 ----HDC---- C:\WINDOWS\$NtUninstallKB2290570$
2011-12-25 14:14:27 ----HDC---- C:\WINDOWS\$NtUninstallKB981322$
2011-12-25 14:14:20 ----HDC---- C:\WINDOWS\$NtUninstallKB2507618$
2011-12-25 14:14:11 ----HDC---- C:\WINDOWS\$NtUninstallKB2419632$
2011-12-25 14:14:05 ----HDC---- C:\WINDOWS\$NtUninstallKB2508429$
2011-12-25 14:13:56 ----HDC---- C:\WINDOWS\$NtUninstallKB971029$
2011-12-25 14:13:49 ----HDC---- C:\WINDOWS\$NtUninstallKB2506212$
2011-12-25 14:13:42 ----HDC---- C:\WINDOWS\$NtUninstallKB2633952$
2011-12-25 14:13:38 ----HDC---- C:\WINDOWS\$NtUninstallKB2619339$
2011-12-25 14:13:31 ----HDC---- C:\WINDOWS\$NtUninstallKB981997$
2011-12-25 14:13:25 ----HDC---- C:\WINDOWS\$NtUninstallKB2618451$
2011-12-25 14:12:21 ----HDC---- C:\WINDOWS\$NtUninstallKB2509553$
2011-12-25 14:12:08 ----HDC---- C:\WINDOWS\$NtUninstallKB982665$
2011-12-25 14:12:03 ----HDC---- C:\WINDOWS\$NtUninstallKB2541763$
2011-12-25 14:11:50 ----HDC---- C:\WINDOWS\$NtUninstallKB2478960$
2011-12-25 14:11:42 ----HDC---- C:\WINDOWS\$NtUninstallKB2393802$
2011-12-25 14:11:35 ----HDC---- C:\WINDOWS\$NtUninstallKB2620712$
2011-12-25 14:11:29 ----HDC---- C:\WINDOWS\$NtUninstallKB2566454$
2011-12-25 14:11:21 ----HDC---- C:\WINDOWS\$NtUninstallKB2633171$
2011-12-25 14:11:14 ----HDC---- C:\WINDOWS\$NtUninstallKB2423089$
2011-12-25 14:11:05 ----HDC---- C:\WINDOWS\$NtUninstallKB2360937$
2011-12-24 10:45:59 ----A---- C:\WINDOWS\system32\wmpns.dll
2011-12-24 10:44:12 ----D---- C:\WINDOWS\Prefetch
2011-12-24 10:35:24 ----HDC---- C:\WINDOWS\$NtUninstallKB980232$
2011-12-24 10:35:16 ----HDC---- C:\WINDOWS\$NtUninstallKB980218$
2011-12-24 10:35:03 ----HDC---- C:\WINDOWS\$NtUninstallKB979683$
2011-12-24 10:34:54 ----HDC---- C:\WINDOWS\$NtUninstallKB979559$
2011-12-24 10:34:46 ----HDC---- C:\WINDOWS\$NtUninstallKB979482$
2011-12-24 10:34:37 ----HDC---- C:\WINDOWS\$NtUninstallKB979309$
2011-12-24 10:34:28 ----HDC---- C:\WINDOWS\$NtUninstallKB978706$
2011-12-24 10:34:21 ----HDC---- C:\WINDOWS\$NtUninstallKB978601$
2011-12-24 10:34:13 ----HDC---- C:\WINDOWS\$NtUninstallKB978542$
2011-12-24 10:34:04 ----HDC---- C:\WINDOWS\$NtUninstallKB978338$
2011-12-24 10:33:54 ----HDC---- C:\WINDOWS\$NtUninstallKB978037$
2011-12-24 10:33:45 ----HDC---- C:\WINDOWS\$NtUninstallKB977914$
2011-12-24 10:33:34 ----HDC---- C:\WINDOWS\$NtUninstallKB976323$
2011-12-24 10:33:23 ----HDC---- C:\WINDOWS\$NtUninstallKB975713$
2011-12-24 10:33:14 ----HDC---- C:\WINDOWS\$NtUninstallKB975562$
2011-12-24 10:33:05 ----HDC---- C:\WINDOWS\$NtUninstallKB975561$
2011-12-24 10:32:56 ----HDC---- C:\WINDOWS\$NtUninstallKB975560$
2011-12-24 10:32:46 ----HDC---- C:\WINDOWS\$NtUninstallKB975467$
2011-12-24 10:32:38 ----HDC---- C:\WINDOWS\$NtUninstallKB975025$
2011-12-24 10:32:29 ----HDC---- C:\WINDOWS\$NtUninstallKB974571$
2011-12-24 10:32:21 ----HDC---- C:\WINDOWS\$NtUninstallKB974392$
2011-12-24 10:32:12 ----HDC---- C:\WINDOWS\$NtUninstallKB974318$
2011-12-24 10:32:04 ----HDC---- C:\WINDOWS\$NtUninstallKB974112$
2011-12-24 10:31:55 ----HDC---- C:\WINDOWS\$NtUninstallKB973869$
2011-12-24 10:31:46 ----HDC---- C:\WINDOWS\$NtUninstallKB973815$
2011-12-24 10:31:38 ----HDC---- C:\WINDOWS\$NtUninstallKB973687$
2011-12-24 10:31:26 ----HDC---- C:\WINDOWS\$NtUninstallKB973507$
2011-12-24 10:31:18 ----HDC---- C:\WINDOWS\$NtUninstallKB972270$
2011-12-24 10:31:08 ----HDC---- C:\WINDOWS\$NtUninstallKB971737$
2011-12-24 10:30:57 ----HDC---- C:\WINDOWS\$NtUninstallKB971657$
2011-12-24 10:30:49 ----HDC---- C:\WINDOWS\$NtUninstallKB971468$
2011-12-24 10:30:40 ----HDC---- C:\WINDOWS\$NtUninstallKB970483$
2011-12-24 10:30:32 ----HDC---- C:\WINDOWS\$NtUninstallKB970430$
2011-12-24 10:30:23 ----HDC---- C:\WINDOWS\$NtUninstallKB970238$
2011-12-24 10:30:14 ----HDC---- C:\WINDOWS\$NtUninstallKB969059$
2011-12-24 10:30:04 ----HDC---- C:\WINDOWS\$NtUninstallKB968389$
2011-12-24 10:29:55 ----HDC---- C:\WINDOWS\$NtUninstallKB967715$
2011-12-24 10:29:47 ----HDC---- C:\WINDOWS\$NtUninstallKB961501$
2011-12-24 10:29:32 ----HDC---- C:\WINDOWS\$NtUninstallKB961118$
2011-12-24 10:29:24 ----HDC---- C:\WINDOWS\$NtUninstallKB960859$
2011-12-24 10:29:16 ----HDC---- C:\WINDOWS\$NtUninstallKB960803$
2011-12-24 10:29:08 ----HDC---- C:\WINDOWS\$NtUninstallKB960225$
2011-12-24 10:28:59 ----HDC---- C:\WINDOWS\$NtUninstallKB959426$
2011-12-24 10:28:51 ----HDC---- C:\WINDOWS\$NtUninstallKB958644$
2011-12-24 10:28:43 ----HDC---- C:\WINDOWS\$NtUninstallKB956844$
2011-12-24 10:28:35 ----HDC---- C:\WINDOWS\$NtUninstallKB956803$
2011-12-24 10:28:27 ----HDC---- C:\WINDOWS\$NtUninstallKB956802$
2011-12-24 10:28:15 ----HDC---- C:\WINDOWS\$NtUninstallKB956572$
2011-12-24 10:28:05 ----HDC---- C:\WINDOWS\$NtUninstallKB955759$
2011-12-24 10:27:56 ----HDC---- C:\WINDOWS\$NtUninstallKB973687_1$
2011-12-24 10:27:49 ----HDC---- C:\WINDOWS\$NtUninstallKB955069$
2011-12-24 10:27:41 ----HDC---- C:\WINDOWS\$NtUninstallKB953155$
2011-12-24 10:27:33 ----HDC---- C:\WINDOWS\$NtUninstallKB952954$
2011-12-24 10:27:25 ----HDC---- C:\WINDOWS\$NtUninstallKB952287$
2011-12-24 10:27:16 ----HDC---- C:\WINDOWS\$NtUninstallKB952004$
2011-12-24 10:27:07 ----HDC---- C:\WINDOWS\$NtUninstallKB951748$
2011-12-24 10:26:57 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2$
2011-12-24 10:26:50 ----HDC---- C:\WINDOWS\$NtUninstallKB950974$
2011-12-24 10:26:40 ----HDC---- C:\WINDOWS\$NtUninstallKB950762$
2011-12-24 10:26:27 ----HDC---- C:\WINDOWS\$NtUninstallKB946648$
2011-12-24 10:26:12 ----HDC---- C:\WINDOWS\$NtUninstallKB923561$
2011-12-24 10:25:56 ----HDC---- C:\WINDOWS\$NtUninstallKB2229593$
2011-12-24 10:21:41 ----D---- C:\WINDOWS\system32\cs
2011-12-24 10:21:41 ----D---- C:\WINDOWS\system32\bits
2011-12-24 10:21:41 ----D---- C:\WINDOWS\l2schemas
2011-12-24 10:16:28 ----D---- C:\WINDOWS\network diagnostic
2011-12-24 10:13:58 ----D---- C:\WINDOWS\system32\ReinstallBackups
2011-12-24 10:10:07 ----HDC---- C:\WINDOWS\$NtServicePackUninstall$

======List of files/folders modified in the last 1 month======

2012-01-17 17:03:44 ----SD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft
2012-01-17 17:03:42 ----D---- C:\Documents and Settings\All Users\Data aplikací\Skype
2012-01-17 16:57:15 ----D---- C:\WINDOWS\system32\inetsrv
2012-01-17 16:51:47 ----A---- C:\WINDOWS\SchedLgU.Txt
2012-01-17 15:51:40 ----D---- C:\WINDOWS\system32\drivers
2012-01-17 15:46:42 ----D---- C:\WINDOWS
2012-01-17 15:46:42 ----A---- C:\WINDOWS\system.ini
2012-01-17 15:46:09 ----D---- C:\WINDOWS\system32\drivers\etc
2012-01-17 15:44:52 ----D---- C:\WINDOWS\system32\config
2012-01-17 15:43:58 ----SD---- C:\WINDOWS\Tasks
2012-01-17 15:41:03 ----D---- C:\WINDOWS\system32
2012-01-17 15:41:03 ----D---- C:\WINDOWS\AppPatch
2012-01-17 15:41:00 ----D---- C:\Program Files\Common Files
2012-01-17 15:34:54 ----D---- C:\WINDOWS\system32\CatRoot2
2012-01-16 20:34:47 ----D---- C:\Documents and Settings\PC\Data aplikací\Mozilla
2012-01-16 20:34:07 ----SHD---- C:\WINDOWS\Installer
2012-01-16 20:33:19 ----D---- C:\Program Files\Java
2012-01-16 20:32:53 ----D---- C:\Program Files\Mozilla Firefox
2012-01-16 20:30:42 ----RD---- C:\Program Files
2012-01-16 19:50:47 ----D---- C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
2012-01-16 19:50:41 ----RSD---- C:\WINDOWS\assembly
2012-01-16 19:47:29 ----D---- C:\Program Files\Microsoft Office
2012-01-16 19:47:21 ----A---- C:\WINDOWS\win.ini
2012-01-16 19:43:41 ----RSHDC---- C:\WINDOWS\system32\dllcache
2012-01-16 19:42:48 ----HD---- C:\WINDOWS\inf
2012-01-16 19:36:48 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2012-01-16 18:32:30 ----RASH---- C:\boot.ini
2012-01-12 04:22:30 ----D---- C:\WINDOWS\Microsoft.NET
2012-01-11 17:53:50 ----A---- C:\WINDOWS\imsins.BAK
2012-01-11 17:50:07 ----A---- C:\WINDOWS\system32\MRT.exe
2012-01-11 17:48:12 ----D---- C:\WINDOWS\WinSxS
2012-01-11 17:44:58 ----HD---- C:\WINDOWS\$hf_mig$
2011-12-25 14:19:04 ----D---- C:\Program Files\Internet Explorer
2011-12-25 14:14:18 ----A---- C:\WINDOWS\iis6.BAK
2011-12-25 14:13:33 ----D---- C:\Program Files\Movie Maker
2011-12-25 14:11:16 ----D---- C:\Program Files\Outlook Express
2011-12-24 10:46:27 ----A---- C:\WINDOWS\OEWABLog.txt
2011-12-24 10:44:17 ----A---- C:\WINDOWS\setuplog.txt
2011-12-24 10:43:48 ----D---- C:\WINDOWS\system32\Setup
2011-12-24 10:43:48 ----D---- C:\Program Files\Messenger
2011-12-24 10:43:47 ----D---- C:\WINDOWS\system32\wbem
2011-12-24 10:43:46 ----RSD---- C:\WINDOWS\Fonts
2011-12-24 10:35:27 ----D---- C:\WINDOWS\system32\CatRoot
2011-12-24 10:25:39 ----D---- C:\WINDOWS\security
2011-12-24 10:21:55 ----D---- C:\WINDOWS\ehome
2011-12-24 10:21:53 ----D---- C:\WINDOWS\ime
2011-12-24 10:21:52 ----D---- C:\WINDOWS\Help
2011-12-24 10:21:42 ----D---- C:\WINDOWS\system32\usmt
2011-12-24 10:21:42 ----D---- C:\WINDOWS\system32\cs-CZ
2011-12-24 10:21:41 ----D---- C:\WINDOWS\PeerNet
2011-12-24 10:19:58 ----D---- C:\WINDOWS\ServicePackFiles
2011-12-24 10:19:41 ----D---- C:\WINDOWS\system32\Restore
2011-12-24 10:19:41 ----D---- C:\WINDOWS\system32\npp
2011-12-24 10:19:39 ----D---- C:\WINDOWS\msagent
2011-12-24 10:19:38 ----D---- C:\WINDOWS\srchasst
2011-12-24 10:19:37 ----D---- C:\Program Files\NetMeeting
2011-12-24 10:19:35 ----D---- C:\WINDOWS\system32\Com
2011-12-24 10:19:33 ----D---- C:\Program Files\Windows NT
2011-12-24 10:19:33 ----D---- C:\Program Files\Windows Media Player
2011-12-24 10:19:29 ----D---- C:\Program Files\Common Files\System
2011-12-24 10:19:08 ----D---- C:\WINDOWS\system32\oobe
2011-12-24 10:19:06 ----D---- C:\WINDOWS\system

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 agp440;Filtr Intel sběrnice AGP; C:\WINDOWS\system32\DRIVERS\agp440.sys [2008-04-13 42368]
R0 fsbts;fsbts; C:\WINDOWS\system32\Drivers\fsbts.sys [2012-01-16 42672]
R0 FSFW;F-Secure Firewall Driver; C:\WINDOWS\System32\drivers\fsdfw.sys [2012-01-16 82120]
R0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2011-06-15 436792]
R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
R1 F-Secure HIPS;F-Secure HIPS Driver; \??\C:\Program Files\F-Secure\HIPS\drivers\fshs.sys []
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 WS2IFSL;Windows Socket 2.0 Non-IFS Service Provider Support Environment; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2001-10-25 12032]
R3 cmuda3;C-Media PCI Audio Interface; C:\WINDOWS\system32\drivers\cmudax3.sys [2008-09-03 1516672]
R3 E100B;Intel(R) PRO Network Connection Driver; C:\WINDOWS\system32\DRIVERS\e100b325.sys [2007-11-16 165496]
R3 F-Secure Gatekeeper;F-Secure Gatekeeper; \??\C:\Program Files\F-Secure\Anti-Virus\minifilter\fsgk.sys []
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys [2009-05-18 26600]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2004-08-03 1897408]
R3 usbstor;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
S1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
S3 afgjxly6;afgjxly6; C:\WINDOWS\system32\drivers\afgjxly6.sys []
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 E1000;Intel(R) PRO/1000 Adapter Driver; C:\WINDOWS\system32\DRIVERS\e1000nt5.sys [2001-10-24 51231]
S3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\WINDOWS\system32\DRIVERS\ewusbmdm.sys [2008-09-26 101376]
S3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
S3 MREMP50;MREMP50 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MREMP50.SYS []
S3 MREMP50a64;MREMP50a64 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MREMP50a64.SYS []
S3 MREMPR5;MREMPR5 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MREMPR5.SYS []
S3 MRENDIS5;MRENDIS5 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MRENDIS5.SYS []
S3 MRESP50;MRESP50 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MRESP50.SYS []
S3 MRESP50a64;MRESP50a64 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MRESP50a64.SYS []
S3 N100;Compaq Ethernet or Fast Ethernet NIC Driver; C:\WINDOWS\system32\DRIVERS\n100325.sys [2001-10-24 129024]
S3 N1000;Compaq Gigabit NIC Driver; C:\WINDOWS\system32\DRIVERS\n1000nt5.sys [2001-10-24 52767]
S3 RimUsb;zařízení BlackBerry Smartphone; C:\WINDOWS\System32\Drivers\RimUsb.sys [2008-04-16 22784]
S3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2001-10-25 5888]
S3 USBAAPL;Apple Mobile USB Driver; C:\WINDOWS\System32\Drivers\usbaapl.sys [2010-12-14 41984]
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Adobe Version Cue CS2;Adobe Version Cue CS2; C:\Program Files\Adobe\Adobe Version Cue CS2\bin\VersionCueCS2.exe [2005-04-04 163840]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2011-01-05 37664]
R2 F-Secure Gatekeeper Handler Starter;FSGKHS; C:\Program Files\F-Secure\Anti-Virus\fsgk32st.exe [2009-08-05 215648]
R2 FSMA;F-Secure Management Agent; C:\Program Files\F-Secure\Common\FSMA32.EXE [2009-08-05 186976]
R2 IISADMIN;Správa služby IIS; C:\WINDOWS\system32\inetsrv\inetinfo.exe [2008-04-14 15872]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2011-11-10 153376]
R2 SimpTcp;Jednoduché služby TCP/IP; C:\WINDOWS\system32\tcpsvcs.exe [2001-10-25 19456]
R2 SMTPSVC;Simple Mail Transport Protocol (SMTP); C:\WINDOWS\system32\inetsrv\inetinfo.exe [2008-04-14 15872]
R2 SNMP;SNMP; C:\WINDOWS\System32\snmp.exe [2008-04-14 32768]
R2 StarWindServiceAE;StarWind AE Service; C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [2009-12-23 370688]
R2 W3SVC;Publikování na webu; C:\WINDOWS\system32\inetsrv\inetinfo.exe [2008-04-14 15872]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R3 FSDFWD;F-Secure Anti-Virus Firewall Daemon; C:\Program Files\F-Secure\FWES\Program\fsdfwd.exe [2012-01-16 522848]
R3 FSORSPClient;F-Secure ORSP Client; C:\Program Files\F-Secure\ORSP Client\fsorsp.exe [2012-01-16 61088]
S2 Fax;Fax; C:\WINDOWS\system32\fxssvc.exe [2008-04-14 268288]
S3 Adobe LM Service;Adobe LM Service; C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [2011-02-16 72704]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2011-01-25 820008]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2008-10-25 65888]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 SNMPTRAP;Zachytávání pro službu SNMP; C:\WINDOWS\System32\snmptrap.exe [2008-04-14 8704]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------

[vyosek]

T-Cleaner http://vyosek.ic.cz/pro_usery/T-Cleaner.exe

• Stahnete a spustte
• Pro potvrzeni volby mackejte A, Enter
• Po pouziti utilitu smazte
• Antiviry touhou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)

OTC http://oldtimer.geekstogo.com/OTC.exe

• Stahnete a spustte
• Kliknete na CleanUp a potvrdte YES
• Program uklidi a restartuje PC

TFC http://oldtimer.geekstogo.com/TFC.exe

• Stahnete a spustte
• Kliknete na Start a potvrdte OK
• Program uklidi a restartuje pc
• Po pouziti utilitu smazte

Stahnete Ccleaner (viz muj podpis)
Panel čistič

• Vse nechte jak je, jen dejte Analyzovat a pote Spustit CCleaner

Panel registry

• dejte Hledej problémy
• nasledne Opravit problémy - zalohu registru doporucuji udelat, opravte vsechny problemy
• postup opakujte dokud nebude bez problemu - vetsinou cca 3x

Panel nástroje

• Zde muzete odinstalovat nepotrebne programy

CCleaner doporucuji pouzivat cca jednou za tyden

A pokud nejsou problemy ci dotazy, je to z me strany vse