Virus - konrola logu

[jmeno1]

Logfile of random's system information tool 1.06 (written by random/random)
Run by Doma at 2014-02-20 16:24:24
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 72 GB (72%) free of 100 GB
Total RAM: 1022 MB (8% free)

HijackThis download failed

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job
C:\WINDOWS\tasks\AmiUpdXp.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\tasks\RMSchedule.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0C37B053-FD68-456a-82E1-D788EE342E6F}]
MHTBPos00 Class - C:\Program Files\Family Toolbar\tbcore3.dll [2009-05-07 2642432]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0E8A89AD-95D7-40EB-8D9D-083EF7066A01}]
MSS+ Identifier - C:\Program Files\McAfee Security Scan\3.8.141\McAfeeMSS_IE.dll [2014-01-16 96128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110011501160}]
Savings Sidekick - C:\Program Files\Savings Sidekick\Savings Sidekick.dll [2012-10-09 612736]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-07-30 75232]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3444c3c5-6c56-4a16-a453-832b05bf6ea4}]
Movies Toolbar (Dist. by Somoto Ltd.) - C:\PROGRA~1\MOVIES~1\SAFETY~1\SRTOOL~1\IE\searchresultsDx.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]
AVG Safe Search - C:\Program Files\AVG\AVG8\avgssie.dll [2009-12-12 1111320]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{415419c3-dad0-4df1-ac37-22c72ad81878}]
LemurLeap - C:\Program Files\LemurLeap\LemurLeapBHO.dll [2014-02-11 249632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{59a72499-0190-417e-b720-f5a505c0bb5d}]
Media Player - C:\Program Files\MediaPlayerV1\MediaPlayerV1alpha787\ie\MediaPlayerV1alpha787.dll [2014-01-28 87040]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{774790e9-f9e1-49b5-bd7b-f9f80106bdd6}]
Video Player - C:\Program Files\VideoPlayerV3\VideoPlayerV3beta3071\ie\VideoPlayerV3beta3071.dll [2014-01-10 87040]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}]
AVG SafeGuard toolbar - C:\Program Files\AVG SafeGuard toolbar\17.3.1.204\AVG SafeGuard toolbar_toolbar.dll [2014-02-05 3401752]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A057A204-BACC-4D26-9990-79A187E2698E}]
AVG Security Toolbar - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL [2009-12-04 1968920]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA74D58F-ACD0-450D-A85E-6C04B171C044}]
MinibarBHO - C:\Program Files\Minibar\Minibar.dll [2013-09-19 331264]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D62EC836-BF1E-4CAC-81BE-FB9179835D8E}]
CMySite Class - C:\Program Files\Family Toolbar\mhxpcomi.dll [2010-02-18 221184]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{A057A204-BACC-4D26-9990-79A187E2698E} - AVG Security Toolbar - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL [2009-12-04 1968920]
{855F3B16-6D32-4fe6-8A56-BBB695989046} - ICQToolBar - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll [2010-11-21 1054520]
{FD2FD708-1F6F-4B68-B141-C5778F0C19BB} - Family Toolbar - C:\Program Files\Family Toolbar\tbcore3.dll [2009-05-07 2642432]
{95B7759C-8C7F-4BF1-B163-73684A933233} - AVG SafeGuard toolbar - C:\Program Files\AVG SafeGuard toolbar\17.3.1.204\AVG SafeGuard toolbar_toolbar.dll [2014-02-05 3401752]
{3444c3c5-6c56-4a16-a453-832b05bf6ea4} - Movies Toolbar (Dist. by Somoto Ltd.) - C:\PROGRA~1\MOVIES~1\SAFETY~1\SRTOOL~1\IE\searchresultsDx.dll []
10

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2009-01-13 18084864]
"Alcmtr"=C:\WINDOWS\ALCMTR.EXE [2008-06-19 57344]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2009-03-28 13684736]
"nwiz"=nwiz.exe /install []
"NeroFilterCheck"=C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [2007-03-01 153136]
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2009-03-28 86016]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576]
"AVG_UI"=C:\Program Files\AVG\AVG2013\avgui.exe [2013-11-20 4411952]
"vProt"=C:\Program Files\AVG SafeGuard toolbar\vprot.exe [2014-02-05 2535448]
"mobilegeni daemon"=C:\Program Files\Mobogenie\DaemonProcess.exe []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"MSMSGS"=C:\Program Files\Messenger\msmsgs.exe [2008-04-14 1695232]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe [2007-06-27 152872]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2012-04-17 3671872]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2013-01-08 18706176]
"Zoner Photo Studio Autoupdate"=C:\PROGRAM FILES\ZONER\PHOTO STUDIO 15\Program32\ZPSTRAY.EXE [2013-02-18 774168]
"oetqsac"=rundll32 C:\Documents and Settings\Doma\Local Settings\Data aplikací\oetqsac.dll,oetqsac []
"NextLive"=C:\Documents and Settings\Doma\Data aplikací\newnext.me\nengine.dll [2014-01-06 1283584]

C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
McAfee Security Scan Plus.lnk - C:\Program Files\McAfee Security Scan\3.8.141\SSScheduler.exe
Windows Search.lnk - C:\Program Files\Windows Desktop Search\WindowsSearch.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"="C:\DOCUME~1\ALLUSE~1\DATAAP~1\Wincert\WIN32C~1.DLL c:\progra~1\movies~1\safety~1\safety~2.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\avgrsstarter]
C:\WINDOWS\system32\avgrsstx.dll [2009-12-04 11952]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\oetqsac]
C:\Documents and Settings\Doma\Local Settings\Data aplikací\oetqsac.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
WgaLogon.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"=C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [2009-05-24 304128]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\AVG\AVG8\avgemc.exe"="C:\Program Files\AVG\AVG8\avgemc.exe:*:Enabled:avgemc.exe"
"C:\Program Files\AVG\AVG8\avgupd.exe"="C:\Program Files\AVG\AVG8\avgupd.exe:*:Enabled:avgupd.exe"
"C:\Program Files\AVG\AVG8\avgnsx.exe"="C:\Program Files\AVG\AVG8\avgnsx.exe:*:Enabled:avgnsx.exe"
"C:\Program Files\City Interactive\Heat Wave EN\HeatWave.exe"="C:\Program Files\City Interactive\Heat Wave EN\HeatWave.exe:*:Enabled:HeatWave"
"C:\WINDOWS\system32\dpnsvr.exe"="C:\WINDOWS\system32\dpnsvr.exe:*:Enabled:Microsoft DirectPlay8 Server"
"D:\MotoRacer3\MotoRacer3.exe"="D:\MotoRacer3\MotoRacer3.exe:*:Enabled:Moto Racer 3 PC"
"C:\Program Files\Common Files\Ahead\Nero Web\SetupX.exe"="C:\Program Files\Common Files\Ahead\Nero Web\SetupX.exe:*:Enabled:Nero ProductSetup"
"D:\Alpine Skiing & Ski Jumping\Ski Jumping\skijumping.exe"="D:\Alpine Skiing & Ski Jumping\Ski Jumping\skijumping.exe:*:Disabled:skijumping"
"C:\Program Files\ICQ7.5\ICQ.exe"="C:\Program Files\ICQ7.5\ICQ.exe:*:Enabled:ICQ7.5"
"D:\Alpine Skiing & Ski Jumping\Alpine Skiing\alpineski.exe"="D:\Alpine Skiing & Ski Jumping\Alpine Skiing\alpineski.exe:*:Disabled:alpineski"
"C:\Program Files\Mozilla Firefox\firefox.exe"="C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Firefox"
"D:\FIFA 12\Game\fifa.exe"="D:\FIFA 12\Game\fifa.exe:*:Disabled:FIFA 12"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\AVG\AVG2013\avgmfapx.exe"="C:\Program Files\AVG\AVG2013\avgmfapx.exe:*:Enabled:AVG Installer"
"C:\Program Files\Milestone\MotoGP13_Demo\MotoGP13.exe"="C:\Program Files\Milestone\MotoGP13_Demo\MotoGP13.exe:*:Disabled:Launcher"
"C:\Program Files\Movies Toolbar\SafetyNut\SRTOOL~1\IE\dtUser.exe"="C:\Program Files\Movies Toolbar\SafetyNut\SRTOOL~1\IE\dtUser.exe:*:Enabled:Movies Toolbar (Dist. by Somoto Ltd.) DTX Broker"
"C:\DOCUME~1\Doma\LOCALS~1\Temp\weumgw.exe"="C:\DOCUME~1\Doma\LOCALS~1\Temp\weumgw.exe:*:Enabled:weumgw"
"\??\C:\WINDOWS\system32\winlogon.exe"="\??\C:\WINDOWS\system32\winlogon.exe:*:Enabled:winlogon"
"C:\WINDOWS\system32\rundll32.exe"="C:\WINDOWS\system32\rundll32.exe:*:Enabled:rundll32"
"C:\Program Files\AVG\AVG2013\avgnsx.exe"="C:\Program Files\AVG\AVG2013\avgnsx.exe:*:Enabled:Online Shield"
"C:\Program Files\AVG\AVG2013\avgdiagex.exe"="C:\Program Files\AVG\AVG2013\avgdiagex.exe:*:Enabled:AVG Diagnostics 2013"
"C:\Program Files\AVG\AVG2013\avgemcx.exe"="C:\Program Files\AVG\AVG2013\avgemcx.exe:*:Enabled:Personal E-mail Scanner"
"C:\Program Files\Microsoft Games\Motocross Madness 2 Trial\mcm2.exe"="C:\Program Files\Microsoft Games\Motocross Madness 2 Trial\mcm2.exe:*:Enabled:Microsoft® Motocross Madness 2"
"C:\WINDOWS\explorer.exe"="C:\WINDOWS\explorer.exe:*:Enabled:Průzkumník Windows"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\ICQ7.5\ICQ.exe"="C:\Program Files\ICQ7.5\ICQ.exe:*:Enabled:ICQ7.5"

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{3c4a3576-e0f2-11de-a106-00241d91f22b}]
shell\AutoRun\command - I:\Programs\nu2menu\nu2menu.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{40c76a40-f69b-11e1-afb8-806d6172696f}]
shell\AutoRun\command - F:\setup.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{53718553-fdc1-11e2-9fd8-00241d91f22b}]
shell\AutoRun\command - G:\Setup.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{beba890a-25ea-11df-91a4-00241d91f22b}]
shell\AutoRun\command - F:\LaunchU3.exe -a

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{d315da41-03e7-11e3-afd0-00241d91f22b}]
shell\AutoRun\command - G:\Setup.exe


======List of files/folders created in the last 1 months======

2014-02-20 16:22:11 ----D---- C:\Program Files\trend micro
2014-02-20 16:22:10 ----D---- C:\rsit
2014-02-18 17:09:37 ----D---- C:\Program Files\Mozilla Maintenance Service
2014-02-15 15:24:19 ----HDC---- C:\WINDOWS\$NtUninstallKB2916036$
2014-02-15 15:09:45 ----SHD---- C:\Config.Msi
2014-01-29 16:21:13 ----D---- C:\Program Files\MediaPlayerV1
2014-01-26 16:21:07 ----D---- C:\Program Files\VideoPlayerV3
2014-01-25 09:37:19 ----HDC---- C:\WINDOWS\$NtUninstallKB2868626$
2014-01-25 09:33:13 ----HDC---- C:\WINDOWS\$NtUninstallKB2387149$
2014-01-25 09:32:49 ----HDC---- C:\WINDOWS\$NtUninstallKB2712808$
2014-01-25 09:29:06 ----HDC---- C:\WINDOWS\$NtUninstallKB2479943$
2014-01-25 09:29:00 ----HDC---- C:\WINDOWS\$NtUninstallKB2659262$
2014-01-25 09:28:42 ----HDC---- C:\WINDOWS\$NtUninstallKB2564958$
2014-01-25 09:27:11 ----HDC---- C:\WINDOWS\$NtUninstallKB2478971$
2014-01-25 09:27:04 ----HDC---- C:\WINDOWS\$NtUninstallKB2758857$
2014-01-25 09:26:57 ----HDC---- C:\WINDOWS\$NtUninstallKB2544893-v2$
2014-01-25 09:26:52 ----HDC---- C:\WINDOWS\$NtUninstallKB2834886$
2014-01-25 09:26:47 ----HDC---- C:\WINDOWS\$NtUninstallKB2345886$
2014-01-25 09:26:41 ----HDC---- C:\WINDOWS\$NtUninstallKB2536276-v2$
2014-01-25 09:26:36 ----HDC---- C:\WINDOWS\$NtUninstallKB2585542$
2014-01-25 09:26:11 ----HDC---- C:\WINDOWS\$NtUninstallKB2631813$
2014-01-25 09:26:06 ----HDC---- C:\WINDOWS\$NtUninstallKB2296011$
2014-01-25 09:25:55 ----HDC---- C:\WINDOWS\$NtUninstallKB2691442$
2014-01-25 09:22:54 ----HDC---- C:\WINDOWS\$NtUninstallKB2900986$
2014-01-25 09:22:50 ----HDC---- C:\WINDOWS\$NtUninstallKB2115168$
2014-01-25 09:22:44 ----HDC---- C:\WINDOWS\$NtUninstallKB975558_WM8$
2014-01-25 09:22:38 ----HDC---- C:\WINDOWS\$NtUninstallKB2847311$
2014-01-25 09:22:30 ----HDC---- C:\WINDOWS\$NtUninstallKB2378111_WM9$
2014-01-25 09:22:25 ----HDC---- C:\WINDOWS\$NtUninstallKB2443105$
2014-01-25 09:22:18 ----HDC---- C:\WINDOWS\$NtUninstallKB2655992$
2014-01-25 09:19:08 ----HDC---- C:\WINDOWS\$NtUninstallKB2802968$
2014-01-25 09:19:02 ----HDC---- C:\WINDOWS\$NtUninstallKB2229593$
2014-01-25 09:18:33 ----HDC---- C:\WINDOWS\$NtUninstallKB2481109$
2014-01-25 09:18:27 ----HDC---- C:\WINDOWS\$NtUninstallKB2898715$
2014-01-25 09:18:23 ----HDC---- C:\WINDOWS\$NtUninstallKB2485663$
2014-01-25 09:18:17 ----HDC---- C:\WINDOWS\$NtUninstallKB2598479$
2014-01-25 09:18:13 ----HDC---- C:\WINDOWS\$NtUninstallKB2686509$
2014-01-25 09:17:50 ----HDC---- C:\WINDOWS\$NtUninstallKB982132$
2014-01-25 09:17:44 ----HDC---- C:\WINDOWS\$NtUninstallKB2862335$
2014-01-25 09:17:22 ----HDC---- C:\WINDOWS\$NtUninstallKB978338$
2014-01-25 09:17:17 ----HDC---- C:\WINDOWS\$NtUninstallKB2507938$
2014-01-25 09:17:12 ----HDC---- C:\WINDOWS\$NtUninstallKB2834904-v2_WM11$
2014-01-25 09:17:08 ----HDC---- C:\WINDOWS\$NtUninstallKB2780091$
2014-01-25 09:17:03 ----HDC---- C:\WINDOWS\$NtUninstallKB2845187$
2014-01-25 09:16:54 ----HDC---- C:\WINDOWS\$NtUninstallKB2904266$
2014-01-25 09:16:50 ----HDC---- C:\WINDOWS\$NtUninstallKB2347290$
2014-01-25 09:16:45 ----HDC---- C:\WINDOWS\$NtUninstallKB2876217$
2014-01-25 09:16:37 ----HDC---- C:\WINDOWS\$NtUninstallKB2483185$
2014-01-25 09:12:26 ----HDC---- C:\WINDOWS\$NtUninstallKB979687$
2014-01-25 09:09:08 ----HDC---- C:\WINDOWS\$NtUninstallKB2864063$
2014-01-25 09:09:01 ----HDC---- C:\WINDOWS\$NtUninstallKB2719985$
2014-01-25 09:08:55 ----HDC---- C:\WINDOWS\$NtUninstallKB2862152$
2014-01-25 09:08:49 ----HDC---- C:\WINDOWS\$NtUninstallKB2592799$
2014-01-25 09:08:44 ----HDC---- C:\WINDOWS\$NtUninstallKB2770660$
2014-01-25 09:08:38 ----HDC---- C:\WINDOWS\$NtUninstallKB2535512$
2014-01-25 09:08:32 ----HDC---- C:\WINDOWS\$NtUninstallKB977816$
2014-01-25 09:08:25 ----HDC---- C:\WINDOWS\$NtUninstallKB2850869$
2014-01-25 09:04:55 ----HDC---- C:\WINDOWS\$NtUninstallKB2876331$
2014-01-25 09:04:47 ----HDC---- C:\WINDOWS\$NtUninstallKB2859537$
2014-01-25 09:04:39 ----HDC---- C:\WINDOWS\$NtUninstallKB2807986$
2014-01-25 09:04:34 ----HDC---- C:\WINDOWS\$NtUninstallKB2570947$
2014-01-25 09:04:28 ----HDC---- C:\WINDOWS\$NtUninstallKB2884256$
2014-01-25 09:04:20 ----HDC---- C:\WINDOWS\$NtUninstallKB978695_WM9$
2014-01-25 09:04:16 ----HDC---- C:\WINDOWS\$NtUninstallKB2820917$
2014-01-25 09:04:10 ----HDC---- C:\WINDOWS\$NtUninstallKB2603381$
2014-01-25 09:04:05 ----HDC---- C:\WINDOWS\$NtUninstallKB2893294$
2014-01-25 09:03:58 ----HDC---- C:\WINDOWS\$NtUninstallKB2757638$
2014-01-25 09:03:48 ----HDC---- C:\WINDOWS\$NtUninstallKB2419632$
2014-01-25 09:03:42 ----HDC---- C:\WINDOWS\$NtUninstallKB2508429$
2014-01-25 09:03:02 ----HDC---- C:\WINDOWS\$NtUninstallKB2653956$
2014-01-25 09:02:55 ----HDC---- C:\WINDOWS\$NtUninstallKB2749655$
2014-01-25 09:02:42 ----HDC---- C:\WINDOWS\$NtUninstallKB971029$
2014-01-25 09:02:35 ----HDC---- C:\WINDOWS\$NtUninstallKB2506212$
2014-01-25 09:02:26 ----HDC---- C:\WINDOWS\$NtUninstallKB2893984$
2014-01-25 09:02:17 ----HDC---- C:\WINDOWS\$NtUninstallKB2892075$
2014-01-25 09:02:09 ----HDC---- C:\WINDOWS\$NtUninstallKB2698365$
2014-01-25 09:02:02 ----HDC---- C:\WINDOWS\$NtUninstallKB2619339$
2014-01-25 09:01:55 ----HDC---- C:\WINDOWS\$NtUninstallKB2705219-v2$
2014-01-25 09:01:47 ----HDC---- C:\WINDOWS\$NtUninstallKB978542$
2014-01-25 09:01:41 ----HDC---- C:\WINDOWS\$NtUninstallKB979309$
2014-01-25 09:01:35 ----HDC---- C:\WINDOWS\$NtUninstallKB2727528$
2014-01-25 09:01:30 ----HDC---- C:\WINDOWS\$NtUninstallKB979482$
2014-01-25 09:01:24 ----HDC---- C:\WINDOWS\$NtUninstallKB981997$
2014-01-25 09:01:12 ----HDC---- C:\WINDOWS\$NtUninstallKB2723135-v2$
2014-01-25 08:57:35 ----HDC---- C:\WINDOWS\$NtUninstallKB2862330$
2014-01-25 08:57:07 ----HDC---- C:\WINDOWS\$NtUninstallKB2813345$
2014-01-25 08:56:56 ----HDC---- C:\WINDOWS\$NtUninstallKB2509553$
2014-01-25 08:56:44 ----HDC---- C:\WINDOWS\$NtUninstallKB2676562$
2014-01-25 08:43:12 ----D---- C:\WINDOWS\system32\MRT
2014-01-25 08:42:38 ----HDC---- C:\WINDOWS\$NtUninstallKB982665$
2014-01-25 08:36:23 ----HDC---- C:\WINDOWS\$NtUninstallKB2478960$
2014-01-25 08:35:30 ----HDC---- C:\WINDOWS\$NtUninstallKB2393802$
2014-01-25 08:35:19 ----HDC---- C:\WINDOWS\$NtUninstallKB2620712$
2014-01-25 08:35:13 ----HDC---- C:\WINDOWS\$NtUninstallKB2566454$
2014-01-25 08:35:07 ----HDC---- C:\WINDOWS\$NtUninstallKB2914368$
2014-01-25 08:34:56 ----HDC---- C:\WINDOWS\$NtUninstallKB2584146$
2014-01-25 08:31:33 ----HDC---- C:\WINDOWS\$NtUninstallKB2423089$
2014-01-24 13:28:53 ----N---- C:\WINDOWS\system32\browserchoice.exe
2014-01-23 13:53:20 ----D---- C:\Documents and Settings\All Users\Data aplikací\SafetyNut
2014-01-21 13:18:21 ----D---- C:\Documents and Settings\Doma\Data aplikací\Oniszu
2014-01-21 13:18:21 ----D---- C:\Documents and Settings\Doma\Data aplikací\Giyxc
2014-01-21 13:18:21 ----D---- C:\Documents and Settings\Doma\Data aplikací\Dioh

======List of files/folders modified in the last 1 months======

2014-02-20 16:23:57 ----D---- C:\Documents and Settings\All Users\Data aplikací\MFAData
2014-02-20 16:22:31 ----D---- C:\WINDOWS\Prefetch
2014-02-20 16:22:13 ----D---- C:\WINDOWS\Temp
2014-02-20 16:22:11 ----D---- C:\Program Files
2014-02-20 16:18:11 ----D---- C:\WINDOWS\system32\CatRoot2
2014-02-19 20:57:29 ----A---- C:\WINDOWS\SchedLgU.Txt
2014-02-19 20:52:43 ----AD---- C:\Documents and Settings\All Users\Data aplikací\Temp
2014-02-18 17:15:26 ----D---- C:\Documents and Settings\Doma\Data aplikací\newnext.me
2014-02-18 17:09:48 ----D---- C:\Documents and Settings\Doma\Data aplikací\Mozilla
2014-02-18 17:09:30 ----D---- C:\Program Files\Mozilla Firefox
2014-02-18 14:16:04 ----D---- C:\Program Files\McAfee Security Scan
2014-02-17 19:26:47 ----A---- C:\WINDOWS\NeroDigital.ini
2014-02-16 18:49:54 ----RSHDC---- C:\WINDOWS\system32\dllcache
2014-02-16 18:49:48 ----D---- C:\WINDOWS\system32\drivers
2014-02-16 18:49:42 ----HD---- C:\WINDOWS\inf
2014-02-15 18:54:53 ----D---- C:\WINDOWS\Microsoft.NET
2014-02-15 18:54:49 ----RSD---- C:\WINDOWS\assembly
2014-02-15 15:27:40 ----D---- C:\WINDOWS
2014-02-15 15:26:04 ----D---- C:\WINDOWS\system32
2014-02-15 15:24:10 ----SHD---- C:\WINDOWS\Installer
2014-02-15 15:22:53 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2014-02-15 15:22:15 ----D---- C:\WINDOWS\WinSxS
2014-02-15 15:14:42 ----A---- C:\WINDOWS\system32\MRT.exe
2014-02-15 15:13:09 ----A---- C:\WINDOWS\imsins.BAK
2014-02-15 15:12:53 ----D---- C:\Program Files\Internet Explorer
2014-02-15 15:12:42 ----D---- C:\WINDOWS\ie8updates
2014-02-11 13:09:43 ----D---- C:\Program Files\LemurLeap
2014-02-06 04:38:36 ----A---- C:\WINDOWS\system32\wininet.dll
2014-02-06 00:08:34 ----N---- C:\WINDOWS\system32\occache.dll
2014-02-06 00:08:34 ----N---- C:\WINDOWS\system32\jsproxy.dll
2014-02-06 00:08:34 ----A---- C:\WINDOWS\system32\urlmon.dll
2014-02-06 00:08:34 ----A---- C:\WINDOWS\system32\url.dll
2014-02-06 00:08:34 ----A---- C:\WINDOWS\system32\mstime.dll
2014-02-06 00:08:34 ----A---- C:\WINDOWS\system32\mshtmled.dll
2014-02-06 00:08:34 ----A---- C:\WINDOWS\system32\mshtml.dll
2014-02-06 00:08:34 ----A---- C:\WINDOWS\system32\msfeedsbs.dll
2014-02-06 00:08:34 ----A---- C:\WINDOWS\system32\msfeeds.dll
2014-02-06 00:08:34 ----A---- C:\WINDOWS\system32\licmgr10.dll
2014-02-06 00:08:33 ----N---- C:\WINDOWS\system32\iepeers.dll
2014-02-06 00:08:33 ----N---- C:\WINDOWS\system32\iedkcs32.dll
2014-02-06 00:08:33 ----A---- C:\WINDOWS\system32\iertutil.dll
2014-02-06 00:08:33 ----A---- C:\WINDOWS\system32\ieframe.dll
2014-02-06 00:08:33 ----A---- C:\WINDOWS\system32\corpol.dll
2014-02-05 23:24:06 ----N---- C:\WINDOWS\system32\ie4uinit.exe
2014-02-05 22:44:16 ----SD---- C:\WINDOWS\Tasks
2014-02-05 22:43:50 ----D---- C:\WINDOWS\system32\cache
2014-02-05 22:34:04 ----D---- C:\Program Files\AVG SafeGuard toolbar
2014-02-05 14:04:14 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2014-02-04 23:55:46 ----A---- C:\WINDOWS\IE4 Error Log.txt
2014-01-29 16:21:25 ----HD---- C:\WINDOWS\system32\GroupPolicy
2014-01-25 09:52:35 ----D---- C:\Program Files\Outlook Express
2014-01-25 09:33:08 ----HD---- C:\WINDOWS\$hf_mig$
2014-01-25 09:01:26 ----D---- C:\Program Files\Movie Maker
2014-01-25 08:53:22 ----D---- C:\WINDOWS\system32\XPSViewer
2014-01-25 08:43:12 ----D---- C:\WINDOWS\Debug
2014-01-24 17:05:05 ----D---- C:\WINDOWS\system32\Macromed
2014-01-24 13:15:38 ----D---- C:\WINDOWS\Help
2014-01-23 13:54:32 ----D---- C:\Documents and Settings\All Users\Data aplikací\Wincert

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 AVGIDSDriver;AVGIDSDriver; C:\WINDOWS\system32\DRIVERS\avgidsdriverx.sys [2013-11-25 208184]
R1 AVGIDSShim;AVGIDSShim; C:\WINDOWS\system32\DRIVERS\avgidsshimx.sys [2013-10-23 22328]
R1 AvgLdx86;AVG AVI Loader Driver; C:\WINDOWS\system32\DRIVERS\avgldx86.sys [2013-07-20 171320]
R1 AvgTdiX;AVG TDI Driver; C:\WINDOWS\system32\DRIVERS\avgtdix.sys [2013-03-21 182072]
R1 avgtp;avgtp; \??\C:\WINDOWS\system32\drivers\avgtpx86.sys []
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 PQNTDrv;PQNTDrv; C:\WINDOWS\system32\drivers\PQNTDrv.sys [2002-09-16 4228]
R1 prodrv06;StarForce Protection Environment Driver v6; C:\WINDOWS\System32\drivers\prodrv06.sys [2004-09-03 54368]
R3 gdrv;gdrv; \??\C:\WINDOWS\gdrv.sys []
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2009-01-13 5015040]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2009-03-28 6280416]
R3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys [2008-10-30 117888]
R3 usbehci;Ovladač miniportu rozšířeného radiče hostitele Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2009-03-18 30336]
R3 usbhub;Rozbočovač umožnující USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-14 59520]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
S3 aftrcg5o;aftrcg5o; C:\WINDOWS\system32\drivers\aftrcg5o.sys []
S3 androidusb;ADB Interface Driver; C:\WINDOWS\System32\Drivers\fxxandroidusb.sys [2011-03-22 25728]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\WINDOWS\system32\drivers\ccdcmb.sys [2011-08-17 18176]
S3 nmwcdc;Nokia USB Communication Driver; C:\WINDOWS\system32\drivers\ccdcmbo.sys [2011-08-17 23168]
S3 qcusbser;USB Device for Legacy Serial Communication; C:\WINDOWS\system32\DRIVERS\FXX\qcusbser.sys [2011-03-22 103424]
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2013-08-09 32384]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-14 25856]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2013-07-03 14976]
S3 usbser;Nokia USB Serial Port Driver ; C:\WINDOWS\system32\drivers\usbser.sys [2013-08-29 26240]
S3 UsbserFilt;UsbserFilt; C:\WINDOWS\system32\DRIVERS\usbser_lowerfltj.sys [2011-08-17 8192]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 Wdf01000;Wdf01000; C:\WINDOWS\system32\DRIVERS\Wdf01000.sys [2009-07-14 444136]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AVGIDSAgent;AVGIDSAgent; C:\Program Files\AVG\AVG2013\avgidsagent.exe [2013-07-04 4939312]
R2 avgwd;AVG WatchDog; C:\Program Files\AVG\AVG2013\avgwdsvc.exe [2013-11-20 283136]
R2 ES lite Service;ES lite Service for program management.; C:\Program Files\Gigabyte\EasySaver\ESSVR.EXE [2008-12-24 68136]
R2 IBUpdaterService;Updater Service; C:\Documents and Settings\All Users\Data aplikací\IBUpdaterService\ibsvc.exe [2012-10-26 604928]
R2 ICQ Service;ICQ Service; C:\Program Files\ICQ6Toolbar\ICQ Service.exe [2010-11-21 247608]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-19 322120]
R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2009-03-28 163908]
R2 PCToolsSSDMonitorSvc;PC Tools Startup and Shutdown Monitor service; C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe [2010-08-05 583640]
R2 SafetyNutManager2;SafetyNut Manager; C:\Program Files\Movies Toolbar\SafetyNut\SafetyNutManager.exe [2014-01-05 3446792]
R2 Update LemurLeap;Update LemurLeap; C:\Program Files\LemurLeap\updateLemurLeap.exe [2014-02-13 80672]
R2 Util LemurLeap;Util LemurLeap; C:\Program Files\LemurLeap\bin\utilLemurLeap.exe [2014-02-13 80672]
R2 vToolbarUpdater17.3.0;vToolbarUpdater17.3.0; C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\17.3.0\ToolbarUpdater.exe [2014-01-10 1772056]
R2 WSearch;Windows Search; C:\WINDOWS\system32\SearchIndexer.exe [2008-05-26 439808]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2007-06-27 279848]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2013-10-21 116648]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-02-05 257928]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2013-10-21 116648]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 McComponentHostService;McAfee Security Scan Component Host Service; C:\Program Files\McAfee Security Scan\3.8.141\McCHSvc.exe [2014-01-16 235696]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2014-01-28 118896]
S3 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-06-29 800040]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------

Jedná so o PC syna mé kolegyně. Prosím o pomoc, PC je strašně pomalé, spouštějí se samy internetové stránky, antivir hlásí nějakého trojského koně, spoštějí se i nějaké hry. Díky za pomoc.

[cernohous13]

Zdravím,

očistnou kúru začneme tradičně
Stáhni Shortcut Cleaner http://www.bleepingcomputer.com/downloa ... t-cleaner/
Ulož nejlépe na plochu
Ukonči všechny programy a dvojklikem SC spusť
Proběhne skenování a pak se objevi log, případně bude uložen v místě spuštení jako sc-cleaner.txt, jeho obsah sem vlož

Stáhni Junkware Removal Tool http://thisisudax.org/downloads/JRT.exe
Ulož jej na plochu a spusť - zobrazí se licenční podminky -> start libovolnou klávesou.
Bude vytvořena záloha a proběhne skenování.
Vyskočí log (nebo je uložen zde c:\JRT jako JRT.txt) - zkopíruj jej sem

Stáhni AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Ulož nejlépe na plochu -> ukonči všechny programy -> spusť AdwCleaner -> klikni na Scan po dokončení na Clean
bude provedena oprava, restartuje se - (případně restartuj) a vypadne log C:\AdwCleaner\AdwCleaner[S?].txt , jeho obsah vložíš sem

[jmeno1]

Ahoj, tady je výpis kroku 1:

Shortcut Cleaner 1.2.8 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2014 BleepingComputer.com
More Information about Shortcut Cleaner can be found at this link:
http://www.bleepingcomputer.com/downloa ... t-cleaner/

Windows Version: Microsoft Windows XP Service Pack 3
Program started at: 02/20/2014 06:20:47 PM.

Scanning for registry hijacks:

* No issues found in the Registry.

Searching for Hijacked Shortcuts:

Searching C:\Documents and Settings\Doma\Nabídka Start\

Searching C:\Documents and Settings\All Users\Nabídka Start\

Searching C:\Documents and Settings\Doma\Data aplikací\Microsoft\Internet Explorer\Quick Launch\

Searching C:\Documents and Settings\All Users\Plocha\

Searching C:\Documents and Settings\Doma\Plocha


0 bad shortcuts found.

Program finished at: 02/20/2014 06:20:50 PM
Execution time: 0 hours(s), 0 minute(s), and 3 seconds(s)

[jmeno1]

krok 2:

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.2 (02.20.2014:1)
OS: Microsoft Windows XP x86
Ran by Doma on źt 20.02.2014 at 18:26:10.25
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services

Successfully stopped: [Service] ibupdaterservice
Failed to delete: [Service] ibupdaterservice
Successfully stopped: [Service] icq service
Failed to delete: [Service] icq service
Failed to stop: [Service] update lemurleap



~~~ Registry Values

Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_DLLs
Successfully deleted: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{3444c3c5-6c56-4a16-a453-832b05bf6ea4}
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\DisplayName
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\URL
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\AboutURLs\\Tabs



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\icq service.exe
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\scripthelper.exe
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\viprotocol.dll
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{0E45512E-5B95-4C8C-9393-64ED0470E8D2}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{9EDC0C90-2B5B-4512-953E-35767BAD5C67}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\TypeLib\{A0EE0278-2986-4E5A-884E-A3BF0357E476}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\bi
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\cr_installer
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\crossrider
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\installcore
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\installedbrowserextensions
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\softonic
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{415419C3-DAD0-4DF1-AC37-22C72AD81878}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-1482476501-573735546-1606980848-1004\Software\sweetim
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\babylon
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\comobject.deskbarenabler
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\comobject.deskbarenabler.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\icqtoolbar.iehook
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\icqtoolbar.iehook.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\prod.cap
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\protocols\handler\viprotocol
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\s
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\scripthelper.scripthelperapi
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\scripthelper.scripthelperapi.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\updater.amiupd
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\updater.amiupd.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\viprotocol.viprotocolole
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\viprotocol.viprotocolole.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{67BD9EEB-AA06-4329-A940-D250019300C9}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\bi_uninstaller
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\icqtoolbar
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\savings sidekick
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\updater service
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{99c91fc5-db5b-4aa0-bb70-5d89c5a4df96}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CrossriderApp0005060.BHO
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CrossriderApp0005060.BHO.1
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CrossriderApp0005060.Sandbox
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CrossriderApp0005060.Sandbox.1
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{11111111-1111-1111-1111-110011501160}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{22222222-2222-2222-2222-220022502260}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{A057A204-BACC-4D26-9990-79A187E2698E}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{55555555-5555-5555-5555-550055505560}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{66666666-6666-6666-6666-660066506660}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\TypeLib\{44444444-4444-4444-4444-440044504460}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\CrossriderApp0005060.BHO
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\CrossriderApp0005060.BHO.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\CrossriderApp0005060.Sandbox
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\CrossriderApp0005060.Sandbox.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Interface\{55555555-5555-5555-5555-550055505560}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Interface\{66666666-6666-6666-6666-660066506660}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\TypeLib\{44444444-4444-4444-4444-440044504460}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{11111111-1111-1111-1111-110011501160}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{11111111-1111-1111-1111-110011501160}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{11111111-1111-1111-1111-110011501160}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{11111111-1111-1111-1111-110011501160}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110011501160}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A057A204-BACC-4D26-9990-79A187E2698E}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{52db1893-8a90-4192-aede-08e00b8f8473}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{52db1893-8a90-4192-aede-08e00b8f8473}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA74D58F-ACD0-450D-A85E-6C04B171C044}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{415419c3-dad0-4df1-ac37-22c72ad81878}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{415419c3-dad0-4df1-ac37-22c72ad81878}



~~~ Files

Successfully deleted: [File] C:\WINDOWS\Tasks\amiupdxp.job
Successfully deleted: [File] C:\WINDOWS\Tasks\rmschedule.job
Successfully deleted: [File] "C:\WINDOWS\system32\roboot.exe"



~~~ Folders

Successfully deleted: [Folder] "C:\Documents and Settings\Doma\Data aplikacˇ\babylon"
Successfully deleted: [Folder] "C:\Documents and Settings\Doma\Data aplikacˇ\etype"
Successfully deleted: [Folder] "C:\Documents and Settings\Doma\Data aplikacˇ\minibar"
Successfully deleted: [Folder] "C:\Documents and Settings\Doma\Data aplikacˇ\opencandy"
Successfully deleted: [Folder] "C:\Documents and Settings\Doma\Data aplikacˇ\performersoft"
Successfully deleted: [Folder] "C:\Documents and Settings\Doma\Data aplikacˇ\registry mechanic"
Successfully deleted: [Folder] "C:\Documents and Settings\Doma\Data aplikacˇ\searchresultstb"
Successfully deleted: [Folder] "C:\Documents and Settings\Doma\Data aplikacˇ\swvupdater"
Successfully deleted: [Folder] "C:\Documents and Settings\Doma\appdata\locallow\datamngr"
Successfully deleted: [Folder] "C:\Program Files\icq6toolbar"
Failed to delete: [Folder] "C:\Program Files\lemurleap"
Successfully deleted: [Folder] "C:\Program Files\minibar"
Failed to delete: [Folder] "C:\Program Files\movies toolbar"
Successfully deleted: [Folder] "C:\Program Files\registry mechanic"
Successfully deleted: [Folder] "C:\Program Files\savings sidekick"
Successfully deleted: [Folder] "C:\Program Files\videoplayerv3"



~~~ Chrome

Successfully deleted: [Folder] C:\Documents and Settings\Doma\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\mpcknfcdcgpffjddjeceioobdelceffo
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Google\Chrome\Extensions\dhdepfaagokllfmhfbcfmocaeigmoebo
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Google\Chrome\Extensions\pgafcinpmmpklohkojmllohdhomoefph





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on źt 20.02.2014 at 18:31:45.28
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

[cernohous13]

AdwCleaner ještě pracuje?

po restartu dej
Stáhni a nainstaluj MBAM zde http://www.malwarebytes.org/products/malwarebytes_free/
Spustit -> na 3.záložce "Aktualizace" -> Kontrola aktualizací
následně na 1.záložce "Kontrolor" -> Rychlá kontrola -> Prohledat
po dokončení scanu vyskočí okno Notepad s výsledkem - obsah zkopíruj do své odpovědi
zatím nic nemazat - počkej na posouzení

[jmeno1]

krok 3:

# AdwCleaner v3.019 - Report created 20/02/2014 at 18:35:27
# Updated 17/02/2014 by Xplode
# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)
# Username : Doma - PC
# Running from : C:\Documents and Settings\Doma\Plocha\adwcleaner.exe
# Option : Clean

***** [ Services ] *****

[#] Service Deleted : Update LemurLeap
[#] Service Deleted : Util LemurLeap
[#] Service Deleted : vToolbarUpdater17.3.0

***** [ Files / Folders ] *****

Folder Deleted : C:\Documents and Settings\All Users\Data aplikací\AVG SafeGuard toolbar
Folder Deleted : C:\Documents and Settings\All Users\Data aplikací\Babylon
Folder Deleted : C:\Documents and Settings\All Users\Data aplikací\eType Manager
Folder Deleted : C:\Documents and Settings\All Users\Data aplikací\IBUpdaterService
Folder Deleted : C:\Documents and Settings\All Users\Data aplikací\ICQ\ICQToolbar
Folder Deleted : C:\Documents and Settings\All Users\Data aplikací\SafetyNut
Folder Deleted : C:\Documents and Settings\All Users\Data aplikací\wincert
Folder Deleted : C:\Documents and Settings\All Users\Data aplikací\AlawarWrapper
Folder Deleted : C:\Documents and Settings\All Users\Nabídka Start\Programy\registry mechanic
Folder Deleted : C:\Program Files\AVG SafeGuard toolbar
Folder Deleted : C:\Program Files\LemurLeap
Folder Deleted : C:\Program Files\MediaPlayerV1
Folder Deleted : C:\Program Files\Mobogenie
Folder Deleted : C:\Program Files\Movies Toolbar
Folder Deleted : C:\Program Files\SimilarSites
Folder Deleted : C:\Program Files\Common Files\AVG Secure Search
Folder Deleted : C:\Documents and Settings\Doma\Local Settings\Data aplikací\AVG SafeGuard toolbar
Folder Deleted : C:\Documents and Settings\Doma\Local Settings\Data aplikací\genienext
Folder Deleted : C:\Documents and Settings\Doma\Local Settings\Data aplikací\Minibar
Folder Deleted : C:\Documents and Settings\Doma\Local Settings\Data aplikací\Mobogenie
Folder Deleted : C:\Documents and Settings\Doma\Local Settings\Data aplikací\Savings Sidekick
Folder Deleted : C:\Documents and Settings\Doma\Local Settings\Data aplikací\somotomoviestoolbar1
Folder Deleted : C:\Documents and Settings\Doma\Data aplikací\AVG SafeGuard toolbar
Folder Deleted : C:\Documents and Settings\Doma\Data aplikací\newnext.me
Folder Deleted : C:\Documents and Settings\Doma\Data aplikací\SimilarSites
Folder Deleted : C:\Documents and Settings\Doma\Data aplikací\somotomoviestoolbar1
Folder Deleted : C:\Program Files\Mozilla Firefox\Extensions\{800B5000-A755-47E1-992B-48A1C1357F07}
[!] Folder Deleted : C:\Documents and Settings\Doma\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\aaaaimdcedbpbcjjbbnfcbbjcngmomic
[!] Folder Deleted : C:\Documents and Settings\Doma\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\jlnfdbbladgcmhhamgkioifhbobjaoof
[!] Folder Deleted : C:\Documents and Settings\Doma\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof
[!] Folder Deleted : C:\Documents and Settings\Doma\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pgafcinpmmpklohkojmllohdhomoefph
File Deleted : C:\Program Files\Mozilla Firefox\browser\searchplugins\Ask.xml
File Deleted : C:\Program Files\Mozilla Firefox\browser\searchplugins\safeguard-secure-search.xml

***** [ Shortcuts ] *****


***** [ Registry ] *****

Value Deleted : HKCU\Software\Mozilla\Firefox\Extensions [{DFEFBE51-CA52-484B-ADF0-6B158B05262D}]
Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [Avg@toolbar]
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\aaaaimdcedbpbcjjbbnfcbbjcngmomic
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\jlnfdbbladgcmhhamgkioifhbobjaoof
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\ICQ\ICQToolBar
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Main [bprotector start page]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes [bProtectorDefaultScope]
Value Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [NextLive]
Key Deleted : HKLM\SOFTWARE\Classes\AVG SafeGuard toolbar.BrowserWndAPI
Key Deleted : HKLM\SOFTWARE\Classes\AVG SafeGuard toolbar.BrowserWndAPI.1
Key Deleted : HKLM\SOFTWARE\Classes\AVG SafeGuard toolbar.PugiObj
Key Deleted : HKLM\SOFTWARE\Classes\AVG SafeGuard toolbar.PugiObj.1
Key Deleted : HKLM\SOFTWARE\Classes\MoviesToolbarHelper.DNSGuard
Key Deleted : HKLM\SOFTWARE\Classes\MoviesToolbarHelper.DNSGuard.1
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bitguard.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bprotect.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserdefender.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserprotect.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [mobilegeni daemon]
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [vProt]
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
Value Deleted : HKLM\SYSTEM\ControlSet001\Control\Session Manager\AppCertDlls [x64]
Value Deleted : HKLM\SYSTEM\ControlSet001\Control\Session Manager\AppCertDlls [x86]
Value Deleted : HKLM\SYSTEM\ControlSet002\Control\Session Manager\AppCertDlls [x64]
Value Deleted : HKLM\SYSTEM\ControlSet002\Control\Session Manager\AppCertDlls [x86]
Key Deleted : HKCU\Software\d558fdae03de914
Key Deleted : HKLM\SOFTWARE\d558fdae03de914
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{5D723752-5899-47E8-99B4-62C824EF9E13}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{00000001-4FEF-40D3-B3FA-E0531B897F98}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3444C3C5-6C56-4A16-A453-832B05BF6EA4}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{408CFAD9-8F13-4747-8EC7-770A339C7237}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{539F76FD-084E-4858-86D5-62F02F54AE86}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{60EACC1A-33FA-443D-9846-17B28E2C9BDB}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{64697678-0000-0010-8000-00AA00389B71}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{855F3B16-6D32-4FE6-8A56-BBB695989046}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AA74D58F-ACD0-450D-A85E-6C04B171C044}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AAA38851-3CFF-475F-B5E0-720D3645E4A5}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AF175732-0D59-716D-F757-9F1492D808D9}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FD2FD708-1F6F-4B68-B141-C5778F0C19BB}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{06E50566-0AB7-431C-841D-62794727DAF9}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{26E7211D-0650-43CF-8498-4C81E83AEAAA}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2A42D13C-D427-4787-821B-CF6973855778}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3D8478AA-7B88-48A9-8BCB-B85D594411EC}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{07CAC314-E962-4F78-89AB-DD002F2490EE}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{EC4085F2-8DB3-45A6-AD0B-CA289F3C5D7E}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{F13D3582-1359-4F8F-9A48-EF3AE9F5701C}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3444C3C5-6C56-4A16-A453-832B05BF6EA4}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3444C3C5-6C56-4A16-A453-832B05BF6EA4}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{539F76FD-084E-4858-86D5-62F02F54AE86}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{855F3B16-6D32-4FE6-8A56-BBB695989046}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AA74D58F-ACD0-450D-A85E-6C04B171C044}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AAA38851-3CFF-475F-B5E0-720D3645E4A5}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FD2FD708-1F6F-4B68-B141-C5778F0C19BB}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{3444C3C5-6C56-4A16-A453-832B05BF6EA4}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{855F3B16-6D32-4FE6-8A56-BBB695989046}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AA74D58F-ACD0-450D-A85E-6C04B171C044}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FD2FD708-1F6F-4B68-B141-C5778F0C19BB}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Explorer Bars\{855F3B16-6D32-4FE6-8A56-BBB695989046}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{AAA38851-3CFF-475F-B5E0-720D3645E4A5}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3444C3C5-6C56-4A16-A453-832B05BF6EA4}
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{855F3B16-6D32-4FE6-8A56-BBB695989046}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{95B7759C-8C7F-4BF1-B163-73684A933233}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{FD2FD708-1F6F-4B68-B141-C5778F0C19BB}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{FD2FD708-1F6F-4B68-B141-C5778F0C19BB}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{539F76FD-084E-4858-86D5-62F02F54AE86}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{855F3B16-6D32-4FE6-8A56-BBB695989046}]
Value Deleted : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List [C:\Program Files\Movies Toolbar\SafetyNut\SRTOOL~1\IE\dtUser.exe]
Key Deleted : HKCU\Software\AVG SafeGuard toolbar
Key Deleted : HKCU\Software\ICQ\ICQToolbar
Key Deleted : HKCU\Software\SafetyNut
Key Deleted : HKCU\Software\Savings Sidekick
Key Deleted : HKCU\Software\somotomoviestoolbar1
Key Deleted : HKLM\Software\AVG SafeGuard toolbar
Key Deleted : HKLM\Software\AVG Security Toolbar
Key Deleted : HKLM\Software\caphyon
Key Deleted : HKLM\Software\ICQ\ICQToolbar
Key Deleted : HKLM\Software\Minibar
Key Deleted : HKLM\Software\SafetyNut
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\AppsHat Mobile Apps
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG SafeGuard toolbar
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\AppsHat Mobile Apps
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{99C91FC5-DB5B-4AA0-BB70-5D89C5A4DF96}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\AVG SafeGuard toolbar
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\bi_uninstaller
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\ICQToolbar
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Savings Sidekick
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Updater Service
Data Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - c:\docume~1\alluse~1\dataap~1\wincert\win32c~1.dll
Data Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - c:\progra~1\movies~1\safety~1\safety~2.dll

***** [ Browsers ] *****

-\\ Internet Explorer v8.0.6001.18702

Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]

-\\ Mozilla Firefox v27.0 (cs)

[ File : C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\g9c1b6ib.default\prefs.js ]


-\\ Google Chrome v32.0.1700.107

[ File : C:\Documents and Settings\Doma\Local Settings\Data aplikací\Google\Chrome\User Data\Default\preferences ]

Deleted : search_url

*************************

AdwCleaner[R0].txt - [12593 octets] - [20/02/2014 18:34:44]
AdwCleaner[S0].txt - [12617 octets] - [20/02/2014 18:35:27]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [12678 octets] ##########

[cernohous13]

Na MBAM ti kouknu ráno - jdu koukat na Evropskou ligu (Liberec + Plzeň)

[jmeno1]

já jsem majitelka zavirovaného počítače přihlášená na kolegu "Jmeno1" jsem laik a nejsem tak rychlá. Takže běž koukat, já budu pracovat dle tvých pokynů . Zatím díky

[jmeno1]

snad je to správně:

Malwarebytes Anti-Malware (Zkušební verze Malwarebytes Anti-Malware.) 1.75.0.1300
www.malwarebytes.org

Verze: v2014.02.20.08

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
Doma :: PC [administrátor]

Ochrana: Povolena

20.2.2014 19:15:24
MBAM-log-2014-02-20 (19-38-21).txt

Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 254692
Uplynulý čas: 21 minut, 12 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 9
HKCU\Software\LemurLeap (PUP.Optional.LemurLeap.A) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\LemurLeap (PUP.Optional.LemurLeap.A) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\MediaPlayerV1alpha787 (PUP.Optional.MediaPlayerAlpha.A) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{59a72499-0190-417e-b720-f5a505c0bb5d} (PUP.Optional.MediaPlayerAlpha.A) -> Nebyla provedena žádná instrukce.
HKCR\CLSID\{59a72499-0190-417e-b720-f5a505c0bb5d} (PUP.Optional.MediaPlayerAlpha.A) -> Nebyla provedena žádná instrukce.
HKCR\TypeLib\{28468e3a-a86b-403e-abf1-163eeb5f104a} (PUP.Optional.MediaPlayerAlpha.A) -> Nebyla provedena žádná instrukce.
HKCR\Interface\{4C78525A-6960-4B23-9A87-E30070E7A605} (PUP.Optional.MediaPlayerAlpha.A) -> Nebyla provedena žádná instrukce.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{59A72499-0190-417E-B720-F5A505C0BB5D} (PUP.Optional.MediaPlayerAlpha.A) -> Nebyla provedena žádná instrukce.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{59A72499-0190-417E-B720-F5A505C0BB5D} (PUP.Optional.MediaPlayerAlpha.A) -> Nebyla provedena žádná instrukce.

Nalezené hodnoty v registru: 1
HKLM\SOFTWARE\Mozilla\Firefox\Extensions|ext@MediaPlayerV1alpha787.net (PUP.Optional.MediaPlayerAlpha.A) -> Data: C:\Program Files\MediaPlayerV1\MediaPlayerV1alpha787\ff -> Nebyla provedena žádná instrukce.

Nalezené datové položky v registru: 1
HKLM\SOFTWARE\Microsoft\Security Center|UpdatesDisableNotify (PUM.Disabled.SecurityCenter) -> Špatný: (1) Dobrý: (0) -> Nebyla provedena žádná instrukce.

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 18
C:\Documents and Settings\Doma\Dokumenty\Downloads\DTLite4454-0315.exe (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Doma\Dokumenty\Downloads\Player.exe (Trojan.Chromex) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Doma\Local Settings\Temp\appshat-distribution.exe (PUP.Optional.Somoto.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Doma\Local Settings\Temp\MoviesToolbarSetup_Somoto29_9_13.exe (PUP.Optional.MoviesToolBar.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Doma\Local Settings\Temp\ICReinstall_setup[1].exe (PUP.Optional.InstallCore) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Doma\Local Settings\Temp\Setup1.exe (Adware.BetterSurf) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Doma\Local Settings\Temp\Setup2.exe (PUP.Optional.MediaPlayerAlpha.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Doma\Local Settings\Temp\U9jcVgtP.exe.part (PUP.Optional.Amonetize.AS) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Doma\Local Settings\Temp\UpdateCheckerSetup.exe (PUP.Optional.Somoto.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Doma\Local Settings\Temp\LemurLeap_sm.exe (PUP.Optional.LemurLeap.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Doma\Local Settings\Temp\nsf40\nsi44.tmp\ffExtension.exe (PUP.Optional.SafetyNut.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Doma\Local Settings\Temp\nsf40\nsi44.tmp\mediabar.exe (PUP.Optional.MoviesToolBar.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Doma\Local Settings\Temp\nsf40\nsi44.tmp\MoviesToolbarMediaBar.exe (PUP.Optional.MoviesToolBar.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Doma\Local Settings\Temp\nsf40\nsi44.tmp\pack.exe (PUP.Optional.SafetyNut.A) -> Nebyla provedena žádná instrukce.
C:\WINDOWS\Temp\bf300179\MoviesToolbarSetup_Somoto.exe (PUP.Optional.MoviesToolBar.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Doma\Local Settings\Application Data\Bundled software uninstaller\biclient.exe (PUP.Optional.Somoto.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Doma\Local Settings\Data aplikací\AppsHat Mobile Apps\Uninstall.exe (PUP.Optional.Somoto.A) -> Nebyla provedena žádná instrukce.
C:\WINDOWS\inf\ntvdm.inf (Malware.Trace) -> Nebyla provedena žádná instrukce.

(konec)

[cernohous13]

já jsem majitelka zavirovaného počítače přihlášená na kolegu "Jmeno1" jsem laik a nejsem tak rychlá. ...

Tak tě u nás vítám

PC jsi asi na noc vypínala, takže znovu MBAM spustíš
na 1.záložce "Kontrolor" -> Úplná kontrola -> Prohledat
po ukončení -> Zobrazit výsledky -> zkontrolovat zda je vše označeno -> Odstranit označené
vyběhne log, (nebo je uložen v Protokolech) ve kterém budou záznamy tohoto typu:
Nalezené soubory
C:\Program Files\xxxxxx -> Umístnění do karantény a smazání se zdařilo.
ten bych rád viděl

[jmeno1]

Ahoj, ano vypínala nechtěla jsem ale někomu to můžeš říkat 100 x a stejně vypne
Tak jdu na to...........

[jmeno1]

prosímtě,
tak mi vyjel seznam, ale jen 4 jsou klikem označené. Mám označit zbytek ručně nebo nechat odstranit jen ty 4? Díky

[cernohous13]

Ahoj, označ a odstraň všechno - není tam nic systémového

[jmeno1]

tady je log:

Malwarebytes Anti-Malware (Zkušební verze Malwarebytes Anti-Malware.) 1.75.0.1300
www.malwarebytes.org

Verze: v2014.02.20.08

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
Doma :: PC [administrátor]

Ochrana: Povolena

21.2.2014 17:35:39
mbam-log-2014-02-21 (17-35-39).txt

Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 254850
Uplynulý čas: 22 minut, 54 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 9
HKCU\Software\LemurLeap (PUP.Optional.LemurLeap.A) -> Přesun do karantény a smazání se zdařilo.
HKLM\SOFTWARE\LemurLeap (PUP.Optional.LemurLeap.A) -> Přesun do karantény a smazání se zdařilo.
HKLM\SOFTWARE\MediaPlayerV1alpha787 (PUP.Optional.MediaPlayerAlpha.A) -> Přesun do karantény a smazání se zdařilo.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{59a72499-0190-417e-b720-f5a505c0bb5d} (PUP.Optional.MediaPlayerAlpha.A) -> Přesun do karantény a smazání se zdařilo.
HKCR\CLSID\{59a72499-0190-417e-b720-f5a505c0bb5d} (PUP.Optional.MediaPlayerAlpha.A) -> Přesun do karantény a smazání se zdařilo.
HKCR\TypeLib\{28468e3a-a86b-403e-abf1-163eeb5f104a} (PUP.Optional.MediaPlayerAlpha.A) -> Přesun do karantény a smazání se zdařilo.
HKCR\Interface\{4C78525A-6960-4B23-9A87-E30070E7A605} (PUP.Optional.MediaPlayerAlpha.A) -> Přesun do karantény a smazání se zdařilo.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{59A72499-0190-417E-B720-F5A505C0BB5D} (PUP.Optional.MediaPlayerAlpha.A) -> Přesun do karantény a smazání se zdařilo.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{59A72499-0190-417E-B720-F5A505C0BB5D} (PUP.Optional.MediaPlayerAlpha.A) -> Přesun do karantény a smazání se zdařilo.

Nalezené hodnoty v registru: 1
HKLM\SOFTWARE\Mozilla\Firefox\Extensions|ext@MediaPlayerV1alpha787.net (PUP.Optional.MediaPlayerAlpha.A) -> Data: C:\Program Files\MediaPlayerV1\MediaPlayerV1alpha787\ff -> Přesun do karantény a smazání se zdařilo.

Nalezené datové položky v registru: 1
HKLM\SOFTWARE\Microsoft\Security Center|UpdatesDisableNotify (PUM.Disabled.SecurityCenter) -> Špatný: (1) Dobrý: (0) -> Přesun do karantény a opravení se zdařilo.

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 18
C:\Documents and Settings\Doma\Dokumenty\Downloads\DTLite4454-0315.exe (PUP.Optional.OpenCandy) -> Přesun do karantény a smazání se zdařilo.
C:\Documents and Settings\Doma\Dokumenty\Downloads\Player.exe (Trojan.Chromex) -> Přesun do karantény a smazání se zdařilo.
C:\Documents and Settings\Doma\Local Settings\Temp\appshat-distribution.exe (PUP.Optional.Somoto.A) -> Přesun do karantény a smazání se zdařilo.
C:\Documents and Settings\Doma\Local Settings\Temp\MoviesToolbarSetup_Somoto29_9_13.exe (PUP.Optional.MoviesToolBar.A) -> Přesun do karantény a smazání se zdařilo.
C:\Documents and Settings\Doma\Local Settings\Temp\ICReinstall_setup[1].exe (PUP.Optional.InstallCore) -> Přesun do karantény a smazání se zdařilo.
C:\Documents and Settings\Doma\Local Settings\Temp\Setup1.exe (Adware.BetterSurf) -> Přesun do karantény a smazání se zdařilo.
C:\Documents and Settings\Doma\Local Settings\Temp\Setup2.exe (PUP.Optional.MediaPlayerAlpha.A) -> Přesun do karantény a smazání se zdařilo.
C:\Documents and Settings\Doma\Local Settings\Temp\U9jcVgtP.exe.part (PUP.Optional.Amonetize.AS) -> Přesun do karantény a smazání se zdařilo.
C:\Documents and Settings\Doma\Local Settings\Temp\UpdateCheckerSetup.exe (PUP.Optional.Somoto.A) -> Přesun do karantény a smazání se zdařilo.
C:\Documents and Settings\Doma\Local Settings\Temp\LemurLeap_sm.exe (PUP.Optional.LemurLeap.A) -> Přesun do karantény a smazání se zdařilo.
C:\Documents and Settings\Doma\Local Settings\Temp\nsf40\nsi44.tmp\ffExtension.exe (PUP.Optional.SafetyNut.A) -> Přesun do karantény a smazání se zdařilo.
C:\Documents and Settings\Doma\Local Settings\Temp\nsf40\nsi44.tmp\mediabar.exe (PUP.Optional.MoviesToolBar.A) -> Přesun do karantény a smazání se zdařilo.
C:\Documents and Settings\Doma\Local Settings\Temp\nsf40\nsi44.tmp\MoviesToolbarMediaBar.exe (PUP.Optional.MoviesToolBar.A) -> Přesun do karantény a smazání se zdařilo.
C:\Documents and Settings\Doma\Local Settings\Temp\nsf40\nsi44.tmp\pack.exe (PUP.Optional.SafetyNut.A) -> Přesun do karantény a smazání se zdařilo.
C:\WINDOWS\Temp\bf300179\MoviesToolbarSetup_Somoto.exe (PUP.Optional.MoviesToolBar.A) -> Přesun do karantény a smazání se zdařilo.
C:\Documents and Settings\Doma\Local Settings\Application Data\Bundled software uninstaller\biclient.exe (PUP.Optional.Somoto.A) -> Přesun do karantény a smazání se zdařilo.
C:\Documents and Settings\Doma\Local Settings\Data aplikací\AppsHat Mobile Apps\Uninstall.exe (PUP.Optional.Somoto.A) -> Přesun do karantény a smazání se zdařilo.
C:\WINDOWS\inf\ntvdm.inf (Malware.Trace) -> Přesun do karantény a smazání se zdařilo.

(konec)

[jmeno1]

hlásí to, že pro úspěšné smazání je důležitý restart. Mám restartovat?