Prosím o kontrolu - vyskakující reklama, pomalý počítač

[asellaa]

Zdravím rádce a prosím o kontrolu. Děkuju
Logfile of random's system information tool 1.09 (written by random/random)
Run by Jitka at 2014-06-22 08:22:54
Microsoft Windows 7 Ultimate
System drive C: has 22 GB (37%) free of 60 GB
Total RAM: 1527 MB (16% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 8:22:58, on 22.6.2014
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Alwil Software\Avast5\AvastUI.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\OO Software\Defrag\oodtray.exe
C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCtrl.exe
C:\Program Files\Common Files\ACD Systems\EN\DevDetect.exe
C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Users\Jitka\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files\OpenOffice.org 3\program\soffice.exe
C:\Program Files\OpenOffice.org 3\program\soffice.bin
C:\Windows\system32\igfxsrvc.exe
C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\VolCtrl.exe
C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_13_0_0_214.exe
C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_13_0_0_214.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\Jitka\Desktop\RSIT.exe
C:\Program Files\trend micro\Jitka.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: Podpora odkazu pro Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: WebTransBHO Class - {2DB66063-BB98-466A-AA0D-3E7ACF5ED853} - C:\ProgramData\LangSoft\WebIE.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: savee on - {CF19A1FC-5DA1-A319-5595-3106FBEC5FF4} - C:\Program Files\savee on\o.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: WebTranslator - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - C:\ProgramData\LangSoft\WebIE.dll
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [avast5] "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui
O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] "C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS5ServiceManager] "C:\Program Files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [OODefragTray] C:\Program Files\OO Software\Defrag\oodtray.exe
O4 - HKLM\..\Run: [QlbCtrl.exe] C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
O4 - HKLM\..\Run: [AdobeCS5.5ServiceManager] "C:\Program Files\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" -launchedbylogin
O4 - HKCU\..\Run: [Device Detector] DevDetect.exe -autorun
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [AlcoholAutomount] "C:\Program Files\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe" -automount
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [Facebook Update] "C:\Users\Jitka\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: Dropbox.lnk = Jitka\AppData\Roaming\Dropbox\bin\Dropbox.exe
O4 - Startup: OpenOffice.org 3.0.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe
O4 - Global Startup: Register Mask Pro 3.0.lnk = ?
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: WebTran - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra button: ICQ7 - {88EB38EF-4D2C-436D-ABD3-56B232674062} - C:\Program Files\ICQ7.0\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7 - {88EB38EF-4D2C-436D-ABD3-56B232674062} - C:\Program Files\ICQ7.0\ICQ.exe
O9 - Extra button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: (no name) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - (no file)
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: &Nastavit překladač - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: &Slovník - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: Přeložit &označený text - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: Přeložit &stránku - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\ProgramData\LangSoft\WebIE.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O20 - AppInit_DLLs:
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Application Updater - Spigot, Inc. - C:\Program Files\Application Updater\ApplicationUpdater.exe
O23 - Service: AST Service (astcc) - Nalpeiron Ltd. - C:\Windows\SYSTEM32\astsrv.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Mail Scanner - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Web Scanner - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Com4QLBEx - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Unknown owner - C:\Program Files\Google\Update\GoogleUpdate.exe (file missing)
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Unknown owner - C:\Program Files\Google\Update\GoogleUpdate.exe (file missing)
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: LMIGuardianSvc - Unknown owner - C:\Program Files\LogMeIn\x86\LMIGuardianSvc.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
O23 - Service: Nalpeiron Licensing Service (nlsX86cc) - Nalpeiron Ltd. - C:\Windows\system32\nlssrv32.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: O&O Defrag Agent (OODefragAgent) - O&O Software GmbH - C:\Program Files\OO Software\Defrag\oodag.exe
O23 - Service: PS3 Media Server - Unknown owner - C:\Program Files\PS3 Media Server\win32\service\wrapper.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared files\RichVideo.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - StarWind Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: @%SystemRoot%\System32\TuneUpDefragService.exe,-1 (TuneUp.Defrag) - TuneUp Software - C:\Windows\System32\TuneUpDefragService.exe
O23 - Service: @%SystemRoot%\System32\TUProgSt.exe,-1 (TuneUp.ProgramStatisticsSvc) - TuneUp Software - C:\Windows\System32\TUProgSt.exe

--
End of file - 10865 bytes

======Scheduled tasks folder======

C:\Windows\tasks\1-Click Maintenance.job
C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-3635609660-213766569-3848013960-1000Core.job
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-3635609660-213766569-3848013960-1000UA.job

=========Mozilla firefox=========

ProfilePath - C:\Users\Jitka\AppData\Roaming\Mozilla\Firefox\Profiles\rdrm70zq.default

prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"
prefs.js - "extensions.enabledItems" - "firebug@software.joehewitt.com:1.7.1, wtxpcom@mybrowserbar.com:6.7, wappalyzer@crunchlabz.com:1.13.2, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.28"
prefs.js - "keyword.URL" - "http://websearch.ask.com/redirect?clien ... YYYYYCZ&q="

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 13.0.0.214 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_13_0_0_214.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nppl3260;version=6.0.12.448]
"Description"=RealPlayer(tm) LiveConnect-Enabled Plug-In
"Path"=C:\Program Files\Win7codecs\rm\browser\plugins\nppl3260.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.448]
"Description"=6.0.12.448
"Path"=C:\Program Files\Win7codecs\rm\browser\plugins\nprpjplug.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=]
"Description"=
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.24.7\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.24.7\npGoogleUpdate3.dll

C:\Program Files\Mozilla Firefox\extensions\
{AB2CE124-6272-4b12-94A9-7303C7397BD1}

C:\Program Files\Mozilla Firefox\components\
npwachk.xpt

C:\Program Files\Mozilla Firefox\plugins\
np-mswmp.dll
npdeployJava1.dll
nppdf32.dll
npwachk.dll
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt

C:\Users\Jitka\AppData\Roaming\Mozilla\Firefox\Profiles\rdrm70zq.default\extensions\
ahjggkvxq@iauevcz.org
azkyoayc@c-bshv.edu
coralietab@mozdev.org
uaeuodl@wtssthn.net
{003D3EDC-99B9-4a34-9C20-60CB94F7E829}
{77b819fa-95ad-4f2c-ac7c-486b356188a9}
{ea614400-e918-4741-9a97-7a972ff7c30b}

C:\Users\Jitka\AppData\Roaming\Mozilla\Firefox\Profiles\rdrm70zq.default\searchplugins\
askcom.xml
icqplugin.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Podpora odkazu pro Adobe PDF Reader - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-23 62080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2DB66063-BB98-466A-AA0D-3E7ACF5ED853}]
WebTransBHO Class - C:\ProgramData\LangSoft\WebIE.dll [2010-08-25 520192]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype add-on for Internet Explorer - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2010-02-08 804136]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{CF19A1FC-5DA1-A319-5595-3106FBEC5FF4}]
savee on - C:\Program Files\savee on\o.dll [2014-06-03 423936]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-04-14 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{BFC32E1D-EE75-4A48-BC60-104E11EE2431} - WebTranslator - C:\ProgramData\LangSoft\WebIE.dll [2010-08-25 520192]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2009-09-23 141848]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2009-09-23 173592]
"Persistence"=C:\Windows\system32\igfxpers.exe [2009-09-23 150552]
"avast5"=C:\Program Files\Alwil Software\Avast5\avastUI.exe [2010-06-28 2837864]
"AdobeAAMUpdater-1.0"=C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2011-03-15 499608]
"SwitchBoard"=C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"AdobeCS5ServiceManager"=C:\Program Files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [2010-02-22 406992]
"NeroFilterCheck"=C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [2007-03-01 153136]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2011-01-07 253672]
"OODefragTray"=C:\Program Files\OO Software\Defrag\oodtray.exe [2011-09-18 2770760]
"QlbCtrl.exe"=C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [2009-11-11 287800]
"AdobeCS5.5ServiceManager"=C:\Program Files\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe [2011-01-12 1523360]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Device Detector"=DevDetect.exe -autorun []
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe [2007-06-27 152872]
"AlcoholAutomount"=C:\Program Files\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [2010-08-20 33120]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2011-07-29 17361032]
"Facebook Update"=C:\Users\Jitka\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-07-13 138096]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Register Mask Pro 3.0.lnk -

C:\Users\Jitka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Dropbox.lnk - C:\Users\Jitka\AppData\Roaming\Dropbox\bin\Dropbox.exe
OpenOffice.org 3.0.lnk - C:\Program Files\OpenOffice.org 3\program\quickstart.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=" "

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2009-09-23 218112]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.FFDS"=ff_vfw.dll
"msacm.ac3filter"=ac3filter.acm
"msacm.avis"=ff_acm.acm
"vidc.avrn"=C:\PROGRA~1\ACEMEG~1\SystemS\AVIDAV~1.DLL
"vidc.advj"=C:\PROGRA~1\ACEMEG~1\SystemS\AVIDAV~1.DLL
"vidc.mszh"=C:\PROGRA~1\ACEMEG~1\SystemS\avimszh.dll
"vidc.zlib"=C:\PROGRA~1\ACEMEG~1\SystemS\avizlib.dll
"vidc.cscd"=C:\PROGRA~1\ACEMEG~1\SystemS\camcodec.dll
"vidc.cvid"=C:\PROGRA~1\ACEMEG~1\SystemS\iccvid.dll
"msacm.trspch"=C:\PROGRA~1\ACEMEG~1\SystemS\tssoft32.acm
"vidc.em2v"=C:\PROGRA~1\ACEMEG~1\SystemS\etxcodec.dll
"vidc.mkvc"=C:\PROGRA~1\ACEMEG~1\SystemS\kmvidc32.dll
"vidc.hfyu"=C:\PROGRA~1\ACEMEG~1\SystemS\huffyuv.dll
"msacm.lameacm"=C:\PROGRA~1\ACEMEG~1\SystemS\lameacm.acm
"msacm.lhacm"=C:\PROGRA~1\ACEMEG~1\SystemS\lhacm.acm
"msacm.l3acm"=C:\PROGRA~1\ACEMEG~1\SystemS\l3codecp.acm
"vidc.sjpg"=C:\PROGRA~1\ACEMEG~1\SystemS\pmjpeg32.dll
"vidc.dmb2"=C:\PROGRA~1\ACEMEG~1\SystemS\pmjpeg32.dll
"vidc.gepj"=C:\PROGRA~1\ACEMEG~1\SystemS\pmjpeg32.dll
"vidc.qpeg"=C:\PROGRA~1\ACEMEG~1\SystemS\Qpeg32.dll
"vidc.q1.0"=C:\PROGRA~1\ACEMEG~1\SystemS\Qpeg32.dll
"msacm.sl_anet"=C:\PROGRA~1\ACEMEG~1\SystemS\sl_anet.acm
"vidc.tscc"=C:\PROGRA~1\ACEMEG~1\SystemS\tsccvid.dll
"vidc.vifp"=C:\PROGRA~1\ACEMEG~1\SystemS\vfcodec.dll
"vidc.wrpr"=C:\PROGRA~1\ACEMEG~1\SystemS\aviwrap.dll
"vidc.wnv1"=C:\PROGRA~1\ACEMEG~1\SystemS\wnvplay1.dll
"vidc.advs"=C:\PROGRA~1\ACEMEG~1\SystemS\Adaptec\Dvc.dll
"vidc.aflc"=C:\PROGRA~1\ACEMEG~1\SystemS\Autodesk\FLCCOD~1.DLL
"vidc.afli"=C:\PROGRA~1\ACEMEG~1\SystemS\Autodesk\FLCCOD~1.DLL
"vidc.aasc"=C:\PROGRA~1\ACEMEG~1\SystemS\Autodesk\Aasc32.dll
"vidc.aas4"=C:\PROGRA~1\ACEMEG~1\SystemS\Autodesk\Aasc32.dll
"vidc.asv1"=C:\PROGRA~1\ACEMEG~1\SystemS\ASUS\asusasv1.dll
"vidc.asv2"=C:\PROGRA~1\ACEMEG~1\SystemS\ASUS\asusasv2.dll
"vidc.asvx"=C:\PROGRA~1\ACEMEG~1\SystemS\ASUS\asusasv2.dll
"vidc.vcr1"=C:\PROGRA~1\ACEMEG~1\SystemS\ATI\ativcr1.dll
"vidc.vcr2"=C:\PROGRA~1\ACEMEG~1\SystemS\ATI\ativcr2.dll
"vidc.yv12"=C:\PROGRA~1\ACEMEG~1\SystemS\ATI\atiyuv12.DLL
"vidc.mwv1"=C:\PROGRA~1\ACEMEG~1\SystemS\Aware\icmw_32.dll
"vidc.bt20"=C:\PROGRA~1\ACEMEG~1\SystemS\BROOKT~1\btvvc32.drv
"vidc.y41p"=C:\PROGRA~1\ACEMEG~1\SystemS\BROOKT~1\btvvc32.drv
"msacm.pcdv"=C:\PROGRA~1\ACEMEG~1\SystemS\Canopus\pcdv.acm
"vidc.cdvc"=C:\PROGRA~1\ACEMEG~1\SystemS\Canopus\CSCCDVC.DLL
"vidc.ddvc"=C:\PROGRA~1\ACEMEG~1\SystemS\Canopus\CSCdvsd.DLL
"vidc.png1"=C:\PROGRA~1\ACEMEG~1\SystemS\Core\COREPN~1.DLL
"msacm.CoreFLAC_ACM"=C:\PROGRA~1\ACEMEG~1\SystemS\Core\COREFL~1.ACM
"vidc.davc"=C:\PROGRA~1\ACEMEG~1\SystemS\dicas\davcvfw.dll
"vidc.div3"=C:\PROGRA~1\ACEMEG~1\SystemS\DivX\DivXc32.dll
"vidc.div5"=C:\PROGRA~1\ACEMEG~1\SystemS\DivX\DivXc32.dll
"vidc.mpg3"=C:\PROGRA~1\ACEMEG~1\SystemS\DivX\DivXc32.dll
"vidc.div4"=C:\PROGRA~1\ACEMEG~1\SystemS\DivX\DivXc32f.dll
"vidc.div6"=C:\PROGRA~1\ACEMEG~1\SystemS\DivX\DivXc32f.dll
"vidc.ap41"=C:\PROGRA~1\ACEMEG~1\SystemS\DivX\DivXc32f.dll
"vidc.dvx4"=C:\PROGRA~1\ACEMEG~1\SystemS\DivX\divx4.dll
"vidc.divx"=C:\PROGRA~1\ACEMEG~1\SystemS\DivX\DivX520.dll
"msacm.divxa32"=C:\PROGRA~1\ACEMEG~1\SystemS\DivX\divxa32.acm
"vidc.frwd"=C:\PROGRA~1\ACEMEG~1\SystemS\Forward\frwd.dll
"vidc.frwt"=C:\PROGRA~1\ACEMEG~1\SystemS\Forward\frwd.dll
"vidc.frwa"=C:\PROGRA~1\ACEMEG~1\SystemS\Forward\frwt.dll
"vidc.frwu"=C:\PROGRA~1\ACEMEG~1\SystemS\Forward\frwu.dll
"vidc.glzw"=C:\PROGRA~1\ACEMEG~1\SystemS\Gabest\GLZW.dll
"vidc.gpeg"=C:\PROGRA~1\ACEMEG~1\SystemS\Gabest\GPEG.dll
"vidc.i263"=C:\PROGRA~1\ACEMEG~1\SystemS\Intel\i263_32.drv
"vidc.iv30"=C:\PROGRA~1\ACEMEG~1\SystemS\Intel\ir32_32.dll
"vidc.iv31"=C:\PROGRA~1\ACEMEG~1\SystemS\Intel\ir32_32.dll
"vidc.iv32"=C:\PROGRA~1\ACEMEG~1\SystemS\Intel\ir32_32.dll
"vidc.iv33"=C:\PROGRA~1\ACEMEG~1\SystemS\Intel\ir32_32.dll
"vidc.iv34"=C:\PROGRA~1\ACEMEG~1\SystemS\Intel\ir32_32.dll
"vidc.iv35"=C:\PROGRA~1\ACEMEG~1\SystemS\Intel\ir32_32.dll
"vidc.iv36"=C:\PROGRA~1\ACEMEG~1\SystemS\Intel\ir32_32.dll
"vidc.iv37"=C:\PROGRA~1\ACEMEG~1\SystemS\Intel\ir32_32.dll
"vidc.iv38"=C:\PROGRA~1\ACEMEG~1\SystemS\Intel\ir32_32.dll
"vidc.iv39"=C:\PROGRA~1\ACEMEG~1\SystemS\Intel\ir32_32.dll
"vidc.iv40"=C:\PROGRA~1\ACEMEG~1\SystemS\Intel\ir41_32.dll
"vidc.iv41"=C:\PROGRA~1\ACEMEG~1\SystemS\Intel\ir41_32.dll
"vidc.iv42"=C:\PROGRA~1\ACEMEG~1\SystemS\Intel\ir41_32.dll
"vidc.iv43"=C:\PROGRA~1\ACEMEG~1\SystemS\Intel\ir41_32.dll
"vidc.iv44"=C:\PROGRA~1\ACEMEG~1\SystemS\Intel\ir41_32.dll
"vidc.iv45"=C:\PROGRA~1\ACEMEG~1\SystemS\Intel\ir41_32.dll
"vidc.iv46"=C:\PROGRA~1\ACEMEG~1\SystemS\Intel\ir41_32.dll
"vidc.iv47"=C:\PROGRA~1\ACEMEG~1\SystemS\Intel\ir41_32.dll
"vidc.iv48"=C:\PROGRA~1\ACEMEG~1\SystemS\Intel\ir41_32.dll
"vidc.iv49"=C:\PROGRA~1\ACEMEG~1\SystemS\Intel\ir41_32.dll
"vidc.iv50"=C:\PROGRA~1\ACEMEG~1\SystemS\Intel\ir50_32.dll
"VIDC.IYUV"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"vidc.ir21"=C:\PROGRA~1\ACEMEG~1\SystemS\Intel\IR21_R.DLL
"vidc.rt21"=C:\PROGRA~1\ACEMEG~1\SystemS\Intel\IR21_R.DLL
"msacm.imc"=C:\PROGRA~1\ACEMEG~1\SystemS\Intel\IMC32.ACM
"vidc.lead"=C:\PROGRA~1\ACEMEG~1\SystemS\LEAD\LCODCCMP.DLL
"vidc.dvsd"=C:\PROGRA~1\ACEMEG~1\SystemS\MAINCO~1\MCDVD_32.DLL
"vidc.dvc"=C:\PROGRA~1\ACEMEG~1\SystemS\MAINCO~1\MCDVD_32.DLL
"vidc.dvcs"=C:\PROGRA~1\ACEMEG~1\SystemS\MAINCO~1\MCDVD_32.DLL
"vidc.dcmj"=C:\PROGRA~1\ACEMEG~1\SystemS\MAINCO~1\MCMJPG32.DLL
"vidc.avi1"=C:\PROGRA~1\ACEMEG~1\SystemS\MAINCO~1\MCMJPG32.DLL

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - "D:\Adobe\Adobe Dreamweaver CS5\Dreamweaver.exe","%1"

======List of files/folders created in the last 1 month======

2014-06-22 08:12:10 ----D---- C:\Program Files\trend micro
2014-06-22 08:12:09 ----D---- C:\rsit
2014-06-22 08:06:45 ----SHD---- C:\Config.Msi
2014-06-18 17:17:07 ----D---- C:\Program Files\Mozilla Firefox
2014-06-03 13:51:47 ----A---- C:\Users\Jitka\AppData\Roaming\LiveSupport.exe_log.txt
2014-06-03 13:51:46 ----A---- C:\Users\Jitka\AppData\Roaming\regsvr32.exe_log.txt
2014-06-03 13:50:55 ----D---- C:\ProgramData\Application fields Software
2014-06-03 13:50:05 ----D---- C:\ProgramData\Save on
2014-06-03 13:50:04 ----D---- C:\Program Files\Save on
2014-06-03 13:49:21 ----D---- C:\ProgramData\YoutubeAdblocker
2014-06-03 13:49:20 ----D---- C:\Program Files\YoutubeAdblocker
2014-06-03 13:49:12 ----D---- C:\ProgramData\savee on
2014-06-03 13:49:10 ----D---- C:\Program Files\savee on
2014-06-03 13:49:04 ----D---- C:\ProgramData\a53a5c89207a1725
2014-06-03 13:48:30 ----D---- C:\ProgramData\InstallMate

======List of files/folders modified in the last 1 month======

2014-06-22 08:22:52 ----D---- C:\Windows\Temp
2014-06-22 08:22:45 ----D---- C:\Windows\Prefetch
2014-06-22 08:16:27 ----D---- C:\Windows\system32\config
2014-06-22 08:16:16 ----D---- C:\Windows\winsxs
2014-06-22 08:12:10 ----RD---- C:\Program Files
2014-06-22 08:07:05 ----SHD---- C:\Windows\Installer
2014-06-22 08:05:42 ----D---- C:\ProgramData\Corel
2014-06-22 08:05:22 ----D---- C:\Program Files\Common Files
2014-06-22 08:00:34 ----RSD---- C:\Windows\assembly
2014-06-22 07:59:29 ----D---- C:\Windows\System32
2014-06-22 07:30:14 ----D---- C:\Users\Jitka\AppData\Roaming\Skype
2014-06-22 07:17:38 ----D---- C:\Program Files\PS3 Media Server
2014-06-22 07:16:26 ----D---- C:\Users\Jitka\AppData\Roaming\Dropbox
2014-06-22 07:16:15 ----D---- C:\Users\Jitka\AppData\Roaming\DropboxMaster
2014-06-20 12:12:48 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-06-20 12:12:46 ----D---- C:\Windows\inf
2014-06-19 17:29:55 ----D---- C:\Program Files\Mozilla Maintenance Service
2014-06-19 08:18:36 ----SHD---- C:\System Volume Information
2014-06-11 19:55:51 ----RSD---- C:\Windows\Fonts
2014-06-07 09:29:17 ----D---- C:\Windows\system32\Tasks
2014-06-07 09:29:15 ----D---- C:\Windows\Tasks
2014-06-05 14:27:57 ----D---- C:\Windows\system32\catroot
2014-06-05 13:08:15 ----AD---- C:\Windows
2014-06-05 07:29:19 ----D---- C:\ProgramData\LogMeIn
2014-06-05 07:29:19 ----D---- C:\Program Files\LogMeIn
2014-06-05 07:27:06 ----D---- C:\Program Files\Teta
2014-06-05 07:26:07 ----D---- C:\Windows\system32\DriverStore
2014-06-05 07:26:07 ----D---- C:\Windows\system32\drivers
2014-06-05 07:25:12 ----D---- C:\Program Files\Alien Skin
2014-06-05 07:24:49 ----D---- C:\Program Files\Alík - Můj první slabikář
2014-06-04 07:39:51 ----D---- C:\Windows\system32\catroot2
2014-06-03 13:56:14 ----D---- C:\Program Files\Software.com
2014-06-03 13:50:55 ----HD---- C:\ProgramData
2014-06-03 13:50:04 ----HD---- C:\Windows\system32\GroupPolicy
2014-06-03 13:50:03 ----D---- C:\Program Files\Google
2014-06-03 13:49:01 ----RD---- C:\Users
2014-05-28 07:40:14 ----A---- C:\Windows\system32\LMIRfsClientNP.dll
2014-05-28 07:40:13 ----A---- C:\Windows\system32\LMIport.dll
2014-05-28 07:40:13 ----A---- C:\Windows\system32\LMIinit.dll
2014-05-27 09:08:08 ----D---- C:\ProgramData\CorelDRAW Graphics Suite X5
2014-05-27 09:06:51 ----D---- C:\Windows\Microsoft.NET
2014-05-27 09:02:15 ----D---- C:\ProgramData\Microsoft Help

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2009-07-14 173648]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2012-07-03 477240]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys [2010-09-07 23376]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2010-09-07 165584]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2010-09-07 46672]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2009-07-14 387584]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2010-06-28 17744]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2010-09-07 50768]
R2 LMIRfsDriver;LogMeIn Remote File System Driver; \??\C:\Windows\system32\drivers\LMIRfsDriver.sys [2010-01-27 47640]
R3 BCM43XX;Broadcom 802.11 – ovladač síťového adaptéru; C:\Windows\system32\DRIVERS\bcmwl6.sys [2009-07-14 1131008]
R3 E100B;Intel(R) PRO Adapter Driver; C:\Windows\system32\DRIVERS\e100b325.sys [2009-07-14 159232]
R3 HBtnKey;HP Hotkey Device; C:\Windows\system32\DRIVERS\cpqbttn.sys [2010-02-25 15544]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\Windows\system32\DRIVERS\HpqKbFiltr.sys [2009-04-29 15872]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd32.sys [2009-09-23 4808192]
R3 lmimirr;lmimirr; C:\Windows\system32\DRIVERS\lmimirr.sys [2010-01-27 10144]
R3 SrvHsfHDA;SrvHsfHDA; C:\Windows\system32\DRIVERS\VSTAZL3.SYS [2009-07-14 207360]
R3 SrvHsfV92;SrvHsfV92; C:\Windows\system32\DRIVERS\VSTDPV3.SYS [2009-07-14 980992]
R3 SrvHsfWinac;SrvHsfWinac; C:\Windows\system32\DRIVERS\VSTCNXT3.SYS [2009-07-14 661504]
S2 LMIInfo;LogMeIn Kernel Information Provider; \??\C:\Program Files\LogMeIn\x86\RaInfo.sys []
S2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\DRIVERS\amdagp.sys [2009-07-14 53312]
S3 ampfh2pk;ampfh2pk; C:\Windows\system32\drivers\ampfh2pk.sys []
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmb.sys [2010-12-02 18304]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbo.sys [2010-12-02 23168]
S3 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys [2009-07-14 12368]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2009-07-14 133120]
S3 RTL8192su;Realtek RTL8192SU Wireless LAN 802.11n USB 2.0 Network Adapter; C:\Windows\system32\DRIVERS\RTL8192su.sys [2010-11-25 603240]
S3 s3cap;s3cap; C:\Windows\system32\DRIVERS\vms3cap.sys [2009-07-14 5632]
S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\DRIVERS\sisagp.sys [2009-07-14 52304]
S3 storvsc;storvsc; C:\Windows\system32\DRIVERS\storvsc.sys [2009-07-14 28224]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerflt.sys [2010-12-02 8192]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2009-07-14 27648]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltj.sys [2010-12-02 8192]
S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\DRIVERS\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\DRIVERS\vmbus.sys [2009-07-14 175824]
S3 VMBusHID;VMBusHID; C:\Windows\system32\DRIVERS\VMBusHID.sys [2009-07-14 17920]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2009-07-14 34944]
S4 LMIRfsClientNP;LMIRfsClientNP; C:\Windows\system32\drivers\LMIRfsClientNP.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Application Updater;Application Updater; C:\Program Files\Application Updater\ApplicationUpdater.exe [2013-11-08 807800]
R2 astcc;AST Service; C:\Windows\SYSTEM32\astsrv.exe [2008-05-19 57344]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-06-28 40384]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe [2001-02-23 270336]
R2 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0; C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe [2009-05-15 935208]
R2 nlsX86cc;Nalpeiron Licensing Service; C:\Windows\system32\nlssrv32.exe [2009-12-18 57344]
R2 OODefragAgent;O&O Defrag Agent; C:\Program Files\OO Software\Defrag\oodag.exe [2011-09-18 2484040]
R2 PS3 Media Server;PS3 Media Server; C:\Program Files\PS3 Media Server\win32\service\wrapper.exe [2010-01-13 217088]
R2 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files\CyberLink\Shared files\RichVideo.exe [2005-08-08 167936]
R2 StarWindServiceAE;StarWind AE Service; C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [2009-12-23 370688]
R2 TuneUp.ProgramStatisticsSvc;@%SystemRoot%\System32\TUProgSt.exe,-1; C:\Windows\System32\TUProgSt.exe [2010-08-25 603904]
R3 Com4QLBEx;Com4QLBEx; C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [2010-01-12 227896]
R3 hpqwmiex;hpqwmiex; C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe [2009-04-30 229944]
R3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2007-06-27 279848]
R3 TuneUp.Defrag;@%SystemRoot%\System32\TuneUpDefragService.exe,-1; C:\Windows\System32\TuneUpDefragService.exe [2010-08-25 360192]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe /svc []
S2 LMIGuardianSvc;LMIGuardianSvc; C:\Program Files\LogMeIn\x86\LMIGuardianSvc.exe []
S2 UxTuneUp;@%SystemRoot%\System32\uxtuneup.dll,-4096; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-05-14 257712]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-06-28 40384]
S3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-06-28 40384]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2010-08-25 654848]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe /medsvc []
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2014-06-18 119408]
S3 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-06-29 800040]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 SwitchBoard;SwitchBoard; C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2010-08-27 1343400]

-----------------EOF-----------------

[Márty84]

Zdravim

Nejprve se zeptam, jak je to s legalitou systemu. Ultimate neni zrovna bezna domaci verze

[asellaa]

Popravdě netuším, už jej používám několik let. Já ho neistalovala, ale mám tušení, že asi nic "ofiko" to nebude Je to problém?

[Márty84]

Problem by to byt mohl, protoze pravidla fora hovori jasne http://forum.viry.cz/viewtopic.php?f=12&t=115512

Pomáhat NELZE:
2) Pokud stroj uživatele prokazatelně obsahuje nelegální hostitelský čí ochranný software
(operační systém, antivir, firewall, atd.), je nutné navést uživatele k nápravě, např. skrze neplacený software,
a začít řešit, až v době kdy je PC "v pořádku". V případě že uživatel nechce na pravidla přistoupit,
je nutné jej vyzvat ať fórum opustí, a vrátí se až je splní.

Tak uvidime, vsak ja na to prijdu


Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner a ulozte ho na plochu.
Ukoncete vsechny programy, jinak to AdwCleaner udela za vas.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce.
Kliknete na Scan a pockejte, az kontrola dobehne.
Pak kliknete na Clean
Program zacne pracovat (muze dojit k restartu pc) a vyplivne log (pripadne bude zde C:\AdwCleaner\AdwCleaner [S?].txt ). Ten mi sem zkopirujte.

[asellaa]

Aha, tak to jsem netušila, budu to tedy muset nějak pořešit. Nejen windows, ale celkově, už tady z toho kopmu pár dní rostu. Zřejmě ho vyhodim z okna a bude vše vyřešeno Jinak než to udělám, tady je log a ještě jednou díky za Vaší práci

# AdwCleaner v3.212 - Report created 22/06/2014 at 09:07:46
# Updated 05/06/2014 by Xplode
# Operating System : Windows 7 Ultimate (32 bits)
# Username : Jitka - JITKA-PC
# Running from : C:\Users\Jitka\Desktop\adwcleaner_3.212(1).exe
# Option : Clean

***** [ Services ] *****

Service Deleted : Application Updater

***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\ICQ\ICQToolbar
Folder Deleted : C:\ProgramData\YoutubeAdblocker
Folder Deleted : C:\Program Files\Application Updater
Folder Deleted : C:\Program Files\ICQ6Toolbar
Folder Deleted : C:\Program Files\pdfforge Toolbar
Folder Deleted : C:\Program Files\YoutubeAdblocker
Folder Deleted : C:\Program Files\Common Files\Spigot
Folder Deleted : C:\Users\Administrator\AppData\Local\Chromatic Browser
Folder Deleted : C:\Users\Administrator\AppData\Local\torch
Folder Deleted : C:\Users\Guest\AppData\Local\Chromatic Browser
Folder Deleted : C:\Users\Guest\AppData\Local\torch
Folder Deleted : C:\Users\HomeGroupUser$\AppData\Local\Chromatic Browser
Folder Deleted : C:\Users\HomeGroupUser$\AppData\Local\torch
Folder Deleted : C:\Users\Jitka\AppData\Local\Chromatic Browser
Folder Deleted : C:\Users\Jitka\AppData\Local\torch
Folder Deleted : C:\Users\Jitka\AppData\LocalLow\pdfforge
Folder Deleted : C:\Users\Jitka\AppData\LocalLow\Search Settings
Folder Deleted : C:\Users\LogMeInRemoteUser\AppData\Local\Chromatic Browser
Folder Deleted : C:\Users\LogMeInRemoteUser\AppData\Local\torch
Folder Deleted : C:\Users\Media\AppData\Local\Chromatic Browser
Folder Deleted : C:\Users\Media\AppData\Local\torch
Folder Deleted : C:\Users\Jitka\AppData\Roaming\Mozilla\Firefox\Profiles\rdrm70zq.default\ICQToolbarData
Folder Deleted : C:\Users\Jitka\AppData\Roaming\Mozilla\Firefox\Profiles\rdrm70zq.default\Extensions\azkyoayc@c-bshv.edu
Folder Deleted : C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\gnmfnhgopkolkhlamamjeahjldjonpeh
Folder Deleted : C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\gnmfnhgopkolkhlamamjeahjldjonpeh
Folder Deleted : C:\Users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\gnmfnhgopkolkhlamamjeahjldjonpeh
Folder Deleted : C:\Users\Jitka\AppData\Local\Google\Chrome\User Data\Default\Extensions\gnmfnhgopkolkhlamamjeahjldjonpeh
Folder Deleted : C:\Users\LogMeInRemoteUser\AppData\Local\Google\Chrome\User Data\Default\Extensions\gnmfnhgopkolkhlamamjeahjldjonpeh
Folder Deleted : C:\Users\Media\AppData\Local\Google\Chrome\User Data\Default\Extensions\gnmfnhgopkolkhlamamjeahjldjonpeh
File Deleted : C:\Users\Jitka\AppData\Roaming\Mozilla\Firefox\Profiles\rdrm70zq.default\Extensions\pdfforge@mybrowserbar.com
File Deleted : C:\Users\Jitka\AppData\Roaming\LiveSupport.exe_log.txt
File Deleted : C:\Users\Jitka\AppData\Roaming\regsvr32.exe_log.txt
File Deleted : C:\Users\Jitka\AppData\Roaming\Mozilla\Firefox\Profiles\rdrm70zq.default\searchplugins\Askcom.xml
File Deleted : C:\Users\Jitka\AppData\Roaming\Mozilla\Firefox\Profiles\rdrm70zq.default\searchplugins\icqplugin.xml
File Deleted : C:\Users\Jitka\AppData\Roaming\Mozilla\Firefox\Profiles\rdrm70zq.default\user.js

***** [ Shortcuts ] *****


***** [ Registry ] *****

[#] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1EC9510D-A439-4950-9399-B6399EDF9EA7}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\ICQ\ICQToolBar
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\AskInstallChecker-1_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\AskInstallChecker-1_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasapi32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasmancs
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\LiveSupport_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\livesupport_rasmancs
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\optprostart_rasapi32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\optprostart_rasmancs
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\TaskScheduler_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\TaskScheduler_RASMANCS
Key Deleted : HKCU\Software\AppDataLow\{5F189DF5-2D05-472B-9091-84D9848AE48B}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{00000000-6E41-4FD3-8538-502F5495E5FC}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40B7-AC73-056A5EBA4A7E}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{EEE7E0A3-AE64-4DC8-84D1-F5D7BAF2DB0C}
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Key Deleted : HKCU\Software\RegisteredApplicationsEx
Key Deleted : HKCU\Software\AppDataLow\Software\Search Settings
Key Deleted : HKLM\Software\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
Key Deleted : HKLM\Software\{5F189DF5-2D05-472B-9091-84D9848AE48B}
Key Deleted : HKLM\Software\{77D46E27-0E41-4478-87A6-AABE6FBCF252}
Key Deleted : HKLM\Software\Application Updater
Key Deleted : HKLM\Software\ICQ\ICQToolbar
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\00E944CB89111313EAF35A0553F547F9
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\53F55AF3F4049ED3FA6EA6F88E414E24
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\68E4BF4B11615E03C97732FD581AB607
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8CE3DDAB2D152683FBCEB4866BCD2B0F
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AF6CE16AFEA5C9A39B766468A8B35C21
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FB1E44269B58F433A8C8E671E37CFDCF

***** [ Browsers ] *****

-\\ Internet Explorer v9.0.8112.16421

Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]

-\\ Mozilla Firefox v30.0 (cs)

[ File : C:\Users\Jitka\AppData\Roaming\Mozilla\Firefox\Profiles\rdrm70zq.default\prefs.js ]

Line Deleted : user_pref("browser.search.defaultengine", "Ask.com");
Line Deleted : user_pref("browser.search.order.1", "Ask.com");
Line Deleted : user_pref("extensions.7h1RASmPvXY.scode", "(function(){try{var url=(window.self.location.href + document.cookie);if(url.indexOf(\"acebook\")>-1||url.indexOf(\"warnalert11.com\")>-1||url.indexOf(\"sumo[...]
Line Deleted : user_pref("extensions.L1BD_mNQuEY.scode", "(function(){try{var url=(window.self.location.href + document.cookie);if(url.indexOf(\"acebook\")>-1||url.indexOf(\"warnalert11.com\")>-1||url.indexOf(\"sumo[...]
Line Deleted : user_pref("extensions.sYN.scode", "(function(){try{var url=(window.self.location.href + document.cookie);if(url.indexOf(\"acebook\")>-1||url.indexOf(\"warnalert11.com\")>-1||url.indexOf(\"sumorobo.net[...]
Line Deleted : user_pref("icqtoolbar.allowSendURL", false);
Line Deleted : user_pref("icqtoolbar.engineVerified", false);
Line Deleted : user_pref("icqtoolbar.geolastmodified", 1282770632);
Line Deleted : user_pref("icqtoolbar.hiddenElements", "itb_options");
Line Deleted : user_pref("icqtoolbar.history", "mars%20v%20srpnu");
Line Deleted : user_pref("icqtoolbar.icqgeo", 42);
Line Deleted : user_pref("icqtoolbar.installTime", "1282770632");
Line Deleted : user_pref("icqtoolbar.installsource", "1");
Line Deleted : user_pref("icqtoolbar.newtab_state", "1");
Line Deleted : user_pref("icqtoolbar.numberOfSearches", 0);
Line Deleted : user_pref("icqtoolbar.previousFFVersion", "3.5.5");
Line Deleted : user_pref("icqtoolbar.skip_default_search", "no");
Line Deleted : user_pref("icqtoolbar.suggestions", false);
Line Deleted : user_pref("icqtoolbar.uniqueID", "128276794412827679421282770632866");
Line Deleted : user_pref("icqtoolbar.usageStatstTimestamp", 1282893033);
Line Deleted : user_pref("icqtoolbar.version", "2.0.0.1");
Line Deleted : user_pref("icqtoolbar.xmlEnableSuggestions", false);
Line Deleted : user_pref("icqtoolbar.xmlLanguage", "cs");
Line Deleted : user_pref("keyword.URL", "hxxp://websearch.ask.com/redirect?client=ff&src=kw&tb=SPC2&o=15000&locale=en_EU&apn_uid=3D45F5C9-7BFA-41AB-BDA8-57C446BFC4C2&apn_ptnrs=PV&apn_sauid=E23774A8-9B1C-46E5-B84B-11[...]

-\\ Google Chrome v35.0.1916.114

[ File : C:\Users\Jitka\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Deleted [Extension] : gnmfnhgopkolkhlamamjeahjldjonpeh

*************************

AdwCleaner[R0].txt - [9041 octets] - [22/06/2014 09:06:09]
AdwCleaner[S0].txt - [9013 octets] - [22/06/2014 09:07:46]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [9073 octets] ##########

[Márty84]

No ja myslim, ze dalsi kroky nejsou potreba, kdyz poleti z okna, ne?


Udelejte !!!kompletni!!! kontrolu s MBAM http://www.bleepingcomputer.com/downloa ... re/dl/241/ a dejte sem vysledky. Predem nic nemazte, miva obcas falesne detekce. Navod zde http://forum.viry.cz/viewtopic.php?f=29&t=115222

[asellaa]

Chvilku to trvalo, než to ten můj rychlík schroupal. Tak snad je to správně.
Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 22.6.2014
Scan Time: 9:25:06
Logfile: log.txt
Administrator: Yes

Version: 2.00.2.1012
Malware Database: v2014.06.22.01
Rootkit Database: v2014.06.20.01
License: Trial
Malware Protection: Enabled
Malicious Website Protection: Enabled
Self-protection: Disabled

OS: Windows 7
CPU: x86
File System: NTFS
User: Jitka

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 323741
Time Elapsed: 17 min, 25 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 8
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\CLSID\{CF19A1FC-5DA1-A319-5595-3106FBEC5FF4}, , [1861e6956b103501076375d97f8255ab],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{CF19A1FC-5DA1-A319-5595-3106FBEC5FF4}, , [1861e6956b103501076375d97f8255ab],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\oon, , [1861e6956b103501076375d97f8255ab],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\oon.2.14, , [1861e6956b103501076375d97f8255ab],
PUP.Optional.MultiPlug.A, HKU\S-1-5-21-3635609660-213766569-3848013960-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{CF19A1FC-5DA1-A319-5595-3106FBEC5FF4}, , [1861e6956b103501076375d97f8255ab],
PUP.Optional.MultiPlug.A, HKU\S-1-5-21-3635609660-213766569-3848013960-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{CF19A1FC-5DA1-A319-5595-3106FBEC5FF4}, , [1861e6956b103501076375d97f8255ab],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{CF19A1FC-5DA1-A319-5595-3106FBEC5FF4}, , [1861e6956b103501076375d97f8255ab],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\CLSID\{CF19A1FC-5DA1-A319-5595-3106FBEC5FF4}\INPROCSERVER32, , [1861e6956b103501076375d97f8255ab],

Registry Values: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Folders: 2
PUP.Optional.SaveOn.A, C:\ProgramData\Save on, , [ed8c95e64a3143f3dd234b56cd35ef11],
PUP.Optional.SaveOn.A, C:\Program Files\Save on, , [2a4f4d2e35460135c8392e7313ef9a66],

Files: 6
PUP.Optional.MultiPlug.A, C:\Program Files\savee on\o.dll, , [1861e6956b103501076375d97f8255ab],
PUP.Optional.MultiPlug.A, C:\ProgramData\savee on\mz.exe, , [b7c20a71c8b342f4755ddf67b749b64a],
PUP.Optional.InstalleRex, C:\$Recycle.Bin\S-1-5-21-3635609660-213766569-3848013960-1000\$R59DTEL.exe, , [a8d1e7943645bd791de3cbbcd42dd12f],
PUP.Optional.OpenCandy, C:\$Recycle.Bin\S-1-5-21-3635609660-213766569-3848013960-1000\$REI4WM8.exe, , [b2c72655c4b78fa769af6b3b18ec51af],
Malware.Gen, C:\$Recycle.Bin\S-1-5-21-3635609660-213766569-3848013960-1000\$RU51EZL\keygen.exe, , [81f8a3d8512a87af3a4079e006faea16],
PUP.Optional.Spigot.A, C:\Windows\Installer\3420f.msi, , [b2c72f4c83f8bc7a09dd54313cc5fb05],

Physical Sectors: 0
(No malicious items detected)


(end)

[Márty84]

Koukam, ze jste stahla uz tu novou verzi

Vsechny nalezy nechte odstranit. Po odstraneni a restartu pc udelejte novy test podle tohoto navodu http://forum.viry.cz/viewtopic.php?f=29&t=137928
Ted jste dala myslim sken hrozeb, tady je jina volba s vyberem vsech pevnych disku. Zase napiste vysledek a podle toho zvolim dalsi postup.

[asellaa]

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 22.6.2014
Scan Time: 10:23:58
Logfile: log2.txt
Administrator: Yes

Version: 2.00.2.1012
Malware Database: v2014.06.22.01
Rootkit Database: v2014.06.20.01
License: Trial
Malware Protection: Enabled
Malicious Website Protection: Enabled
Self-protection: Disabled

OS: Windows 7
CPU: x86
File System: NTFS
User: Jitka

Scan Type: Custom Scan
Result: Completed
Objects Scanned: 485219
Time Elapsed: 2 hr, 2 min, 45 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 0
(No malicious items detected)

Registry Values: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Folders: 0
(No malicious items detected)

Files: 40
PUP.Optional.Spigot.A, C:\AdwCleaner\Quarantine\C\Program Files\Application Updater\ApplicationUpdater.exe.vir, , [d7a2cdaef784f93d36af1a6b5ba67d83],
PUP.Optional.Spigot.A, C:\AdwCleaner\Quarantine\C\Program Files\pdfforge Toolbar\WidgiHelper.exe.vir, , [fd7c93e8c7b445f1d016f68fca37d22e],
PUP.Optional.MultiPlug.A, C:\Program Files\savee on\o.x64.dll, , [6712aad11764e650a6c43915be4334cc],
PUP.Optional.MultiPlug.A, C:\Users\Jitka\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\15S06L1D\agup[1].exe, , [e39632498eed350142cceb4bd031bb45],
PUP.Optional.MultiPlug.A, C:\Users\Jitka\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\15S06L1D\JPo[1].exe, , [25545724681343f3acb76cd9d52bc739],
PUP.Optional.MultiPlug.A, C:\Users\Jitka\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5RKDGVEE\6XOMcdpBz[1].exe, , [a2d74d2e5d1efb3bd1920a3b3fc1fa06],
PUP.Optional.MultiPlug.A, C:\Users\Jitka\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5RKDGVEE\hruzTDwFW[1].exe, , [e4952c4f89f21521e57e50f5986813ed],
PUP.Optional.MultiPlug.A, C:\Users\Jitka\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\A23E2PMI\P[1].exe, , [3742017a1a610c2a075c291c847c57a9],
PUP.Optional.MultiPlug.A, C:\Users\Jitka\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\A23E2PMI\w[1].exe, , [2a4fb0cb047759dd4221fc49867a29d7],
Trojan.SProtector, C:\Users\Jitka\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\U2CEEZ7J\tpq[1].exe, , [1d5cadceff7c44f22d39f55fba47b14f],
Trojan.Agent.W, C:\Windows\Setup\SCRIPTS\Windows7Loader.exe, , [2f4a7cff3c3f9c9a06f4ee5eae567090],
Malware.Packer.Gen, D:\Doku\dokumenty\Adobe\AAEP.v1.0\Adobe After Effects Plugins\Fnordware PowerPicker 1.01\Fnordware PowerPicker 1.01.rar, , [19608bf0bdbed1650d9d77d808f8f50b],
Malware.Packer.Gen, D:\Doku\dokumenty\Adobe\AAEP.v1.0\Adobe After Effects Plugins\Buena Software Swatch Buckler 1.0.1\Buena Software Swatch Buckler 1.0.1.rar, , [473279024d2e9b9b07a32d22c937966a],
RiskWare.Tool.CK, D:\Doku\dokumenty\Adobe\AAEP.v1.0\Adobe After Effects Plugins\Digital Film Tools 55MM 5.0\Digital Film Tools 55MM 5.0.rar, , [1d5c39427209d561de1b068a1fe5db25],
RiskWare.Tool.CK, D:\Doku\dokumenty\Adobe\AAEP.v1.0\Adobe After Effects Plugins\Digital Film Tools Digital Film Lab 2.0\Digital Film Tools Digital Film Lab 2.0.rar, , [0772eb9095e620167188eda352b2fd03],
Malware.Packer.Gen, D:\Doku\dokumenty\Adobe\AAEP.v1.0\Adobe After Effects Plugins\Panopticum Animatext 3D 1.0 for 9xMENT2K\Panopticum Animatext 3D 1.0 for 9xMENT2K.rar, , [a9d03744ff7c88aea00a400f9a66ae52],
Malware.Packer.Gen, D:\Doku\dokumenty\Adobe\AAEP.v1.0\Adobe After Effects Plugins\Panopticum Animatext 3D 1.0 for WinXP\Panopticum Animatext 3D 1.0 for WinXP.rar, , [88f10b70a7d43df97238ee61d32d738d],
Malware.Packer.Gen, D:\Doku\dokumenty\Adobe\AAEP.v1.0\Adobe After Effects Plugins\Panopticum Curtains 1.02\Panopticum Curtains 1.02.rar, , [611834474a3192a4d5d5c689817f52ae],
Malware.Packer.Gen, D:\Doku\dokumenty\Adobe\AAEP.v1.0\Adobe After Effects Plugins\Panopticum Custom Speed2 v.1.0\Panopticum Custom Speed2 v.1.0.rar, , [c1b8f2897efd9d9981296fe02bd58779],
Malware.Packer.Gen, D:\Doku\dokumenty\Adobe\AAEP.v1.0\Adobe After Effects Plugins\Panopticum IcePattern 1.0\Panopticum IcePattern 1.0.rar, , [ee8b6c0faad13bfbd0da331ce61abe42],
Malware.Packer.Gen, D:\Doku\dokumenty\Adobe\AAEP.v1.0\Adobe After Effects Plugins\Panopticum Water 1.0\Panopticum Water 1.0.rar, , [cfaab1cad9a279bdabff044b8878d729],
Malware.Packer.Gen, D:\Doku\dokumenty\Adobe\AAEP.v1.0\Adobe After Effects Plugins\Profound Effects Useful Assistants 1.0\KEYGEN.EXE, , [7009c5b66b105cda02a871de4cb45da3],
Malware.Packer.Gen, D:\Doku\dokumenty\Adobe\AAEP.v1.0\Adobe After Effects Plugins\Profound Effects Useful Assistants 1.0\Profound Effects Useful Assistants 1.0.rar, , [4b2ebac1037861d5d4d695badf218878],
Malware.Packer.Gen, D:\Doku\dokumenty\Adobe\AAEP.v1.0\Adobe After Effects Plugins\Profound Effects Useful Things 1.5\Profound Effects Useful Things 1.5.rar, , [601996e57704f0462d7d3a15f20e1de3],
Malware.Packer.Gen, D:\Doku\dokumenty\Adobe\AAEP.v1.0\Adobe After Effects Plugins\StageTools MovingPicture 4.4 AE\StageTools MovingPicture 4.4 AE.rar, , [9bde73080f6c16206a4095bac53b56aa],
Malware.Packer.Gen, D:\Doku\dokumenty\Adobe\AAEP.v1.0\Adobe After Effects Plugins\Trapcode 3D Stroke 2.0.4\Trapcode 3D Stroke 2.0.4.rar, , [4f2a116a80fb0e288d1d3b14ee1253ad],
Malware.Packer.Gen, D:\Doku\dokumenty\Adobe\AAEP.v1.0\Adobe After Effects Plugins\Trapcode Lux 1.0.1\Trapcode Lux 1.0.1.rar, , [8cedf3886b10092d2189f956758bdc24],
Malware.Packer.Gen, D:\Doku\dokumenty\Adobe\AAEP.v1.0\Adobe After Effects Plugins\Trapcode Particular 1.0.1\Trapcode Particular 1.0.1.rar, , [0b6ec6b5126967cfd0da6be4b947c43c],
Malware.Packer.Gen, D:\Doku\dokumenty\Adobe\AAEP.v1.0\Adobe After Effects Plugins\Trapcode Shine 1.0.6\Trapcode Shine 1.0.6.rar, , [88f17efda6d53cfab9f167e80df3c43c],
Malware.Packer.Gen, D:\Doku\dokumenty\Adobe\AAEP.v1.0\Adobe After Effects Plugins\Trapcode SoundKeys 1.1.2\Trapcode SoundKeys 1.1.2.rar, , [cbaed7a48fecdd590c9ea3ac6f91e41c],
Malware.Packer.Gen, D:\Doku\dokumenty\Adobe\AAEP.v1.0\Adobe After Effects Plugins\Trapcode Starglow 1.0.3\Trapcode Starglow 1.0.3.rar, , [3049a5d65d1e49edf1b986c9c23e669a],
RiskWare.Tool.CK, D:\Doku\dokumenty\Adobe\AAEP.v1.0\Adobe After Effects Plugins\WalkerEffects 2.0.2 Pro\crack.zip, , [f88193e8a4d759dd47865a3639cb32ce],
Riskware.Tool.CK, D:\Doku\dokumenty\Adobe\Best Adobe Photoshop Plugins\7 Best Adobe Photoshop Plugins\OnOne\OnOne_FocalPoint.1.0\keygen.exe, , [0079bdbe186339fdc62df19d9272768a],
RiskWare.Tool.CK, D:\Doku\dokumenty\Adobe\Best Adobe Photoshop Plugins\Alien.Skin-Blow.Up.v2.0.3.Incl.KeyGen-CORE\KeyGen\KeyGen-CORE.exe, , [8aef106b78030a2c016cd70d6c951de3],
Trojan.Downloader, D:\Doku\dokumenty\Adobe\Best Adobe Photoshop Plugins\Alien.Skin-Eye.Candy.v6.0.0.Incl.KeyGen-CORE\KeyGen\KeyGen-CORE.exe, , [67126714d2a981b58c8c0cda46bb867a],
PUP.Hacktool.Patcher, D:\Doku\dokumenty\Adobe\Best Adobe Photoshop Plugins\Alien.Skin-Image.Doctor.v2.0.1.Incl.Patch-TEAM UARE\Patch\image.doctor.2.0.1-patch-UARE.exe, , [3f3a314a5823e353e6d761a4e51b5ba5],
RiskWare.Tool.CK, D:\Doku\dokumenty\Adobe\Best Adobe Photoshop Plugins\Adobe Photoshop Plugins - Nik Software (Complete Plugin Suite for Adobe Photoshop)\Your Plugin Here\Color Efx\xf-colorefex3.exe, , [00794635dba07bbbabd9a524a75a9967],
Trojan.Agent.CK, D:\ZA!loha\programy atd\TuneUp 2009\TuneUp.Utilities.2009-keygen.exe, , [1e5be49753280c2ae364607637ca6997],
RiskWare.Tool.HCK, D:\ZA!loha\programy atd\TuneUp2010v9.0.3000\keygen.exe, , [d2a75328daa10333df10972a24ddbc44],
Trojan.Agent.W, D:\ZA!loha\win7 crack v CJ\sources\$OEM$\$$\SETUP\SCRIPTS\Windows7Loader.exe, , [5b1ee09bc1ba23134cae3913a55f15eb],

Physical Sectors: 0
(No malicious items detected)


(end)

[Márty84]

Uz je to tady Potvrzeni nelegalniho systemu

[asellaa]

Co to znamená? Vy mě děsíte

[Márty84]

To znamena, ze mi pravidla fora nedovoluji pokracovat v cisteni a nezbyva, nez tema uzavrit

Prectete si soukromou zpravu (vlevo nahore vedle odhlaseni), kde vam jeste napisu co v MBAM smazat a dal to budete muset poresit sama.

Je mi lito