Novy notebook_kontrola

Zpráva

michal29 · #1 Příspěvek od **michal29** » 04 říj 2014 19:23

Dobrý den.

Dnes jsem koupil matce notebook Acer E15 s operačním systémem Win 8.1. Vše je prozatím ok, ale jelikož jsem amatér, poprosil bych o kontrolu logu. Plus jestli můžu poprosit, jestli jde takhle nadálku zjistit, co všechno můžu hned odinstalovat z "acerovských hovadin" co se nainstalovaly automaticky s instalací OS.

Prozatím jsem nainstaloval Avast + CCleaner a budu instalovat MalwareBites.
Jako prohlížeč G Chrome.

Děkuji.

Log:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 04-10-2014 01
Ran by Jaroslava (administrator) on JARKA on 04-10-2014 20:08:56
Running from C:\Users\Jaroslava\Desktop
Loaded Profile: Jaroslava (Available profiles: Jaroslava)
Platform: Windows 8.1 (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\AdminService.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe
(Intel(R) Corporation) C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe
() C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMEvent.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\QASvc.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\QAEvent.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMTray.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerTray.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Qualcomm®Atheros®) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
() C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\ActivateDesktop.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe
(Spotify Ltd) C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerWinMonitor.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\RMSvc.exe
(Pokki) C:\Users\Jaroslava\AppData\Local\Pokki\Engine\StartMenuIndexer.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\QAMsg.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\QuickAccess.exe
(Pokki) C:\Users\Jaroslava\AppData\Local\Pokki\Engine\HostAppService.exe
(Pokki) C:\Users\Jaroslava\AppData\Local\Pokki\Engine\HostAppService.exe
(TODO: <Company name>) C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(acer) C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(forum.viry.cz) C:\Users\Jaroslava\Desktop\FRSTLauncher (2).exe

==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13672304 2014-03-21] (Realtek Semiconductor)
HKLM-x32\...\Run: [Adobe ARM] => c:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-09-05] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [4085896 2014-10-04] (AVAST Software)
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe [134784 2014-02-26] ( (Qualcomm®Atheros®))
HKU\S-1-5-21-1973963726-3463450731-2135770685-1001\...\Run: [Pokki] => C:\Windows\system32\rundll32.exe "%LOCALAPPDATA%\Pokki\Engine\Launcher.dll",RunLaunchPlatform
HKU\S-1-5-21-1973963726-3463450731-2135770685-1001\...\Run: [Spotify Web Helper] => C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe [1168896 2014-06-13] (Spotify Ltd)
HKU\S-1-5-21-1973963726-3463450731-2135770685-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [6482200 2014-09-26] (Piriform Ltd)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software)
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => No File

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://acer13.msn.com/?pc=ACJB
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer13.msn.com/?pc=ACJB
SearchScopes: HKLM - DefaultScope {8E5AA035-DC94-46DC-AE33-51CC53E87946} URL = http://www.bing.com/search?q={searchTer ... TR&pc=ACJB
SearchScopes: HKLM - {8E5AA035-DC94-46DC-AE33-51CC53E87946} URL = http://www.bing.com/search?q={searchTer ... TR&pc=ACJB
SearchScopes: HKLM-x32 - DefaultScope {8E5AA035-DC94-46DC-AE33-51CC53E87946} URL = http://www.bing.com/search?q={searchTer ... TR&pc=ACJB
SearchScopes: HKLM-x32 - {8E5AA035-DC94-46DC-AE33-51CC53E87946} URL = http://www.bing.com/search?q={searchTer ... TR&pc=ACJB
SearchScopes: HKCU - DefaultScope {8E5AA035-DC94-46DC-AE33-51CC53E87946} URL =
SearchScopes: HKCU - {8E5AA035-DC94-46DC-AE33-51CC53E87946} URL =
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1

FireFox:
========
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll ()
FF Plugin-x32: Adobe Reader -> c:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-10-04]

Chrome:
=======
CHR Profile: C:\Users\Jaroslava\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Prezentace Google) - C:\Users\Jaroslava\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2014-10-05]
CHR Extension: (Dokumenty Google) - C:\Users\Jaroslava\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-10-05]
CHR Extension: (Disk Google) - C:\Users\Jaroslava\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-10-05]
CHR Extension: (YouTube) - C:\Users\Jaroslava\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-10-05]
CHR Extension: (Vyhledávání Google) - C:\Users\Jaroslava\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-10-05]
CHR Extension: (Tabulky Google) - C:\Users\Jaroslava\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2014-10-05]
CHR Extension: (avast! Online Security) - C:\Users\Jaroslava\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-10-04]
CHR Extension: (Peněženka Google) - C:\Users\Jaroslava\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-10-05]
CHR Extension: (Gmail) - C:\Users\Jaroslava\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-10-05]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-10-04]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AtherosSvc; C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe [319104 2014-02-26] (Windows (R) Win 7 DDK provider)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-10-04] (AVAST Software)
R2 CCDMonitorService; C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe [3097856 2014-09-22] (Acer Incorporated)
R3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [2573544 2014-03-21] (Acer Incorporated)
R2 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [235008 2013-07-16] (TODO: <Company name>) [File not signed]
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [282096 2014-03-18] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe [733696 2013-07-02] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe [822232 2013-07-02] (Intel(R) Corporation)
R3 KeyIso; C:\Windows\SysWOW64\keyiso.dll [44032 2013-08-22] (Microsoft Corporation)
S3 lfsvc; C:\Windows\SysWOW64\GeofenceMonitorService.dll [357376 2014-03-18] (Microsoft Corporation)
R2 LMSvc; C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe [459496 2014-03-17] (Acer Incorporate)
S3 Netlogon; C:\Windows\SysWOW64\netlogon.dll [688640 2013-08-22] (Microsoft Corporation)
R3 QASvc; C:\Program Files\Acer\Acer Quick Access\QASvc.exe [457960 2014-03-22] (Acer Incorporate)
R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [254512 2012-04-24] ()
R3 RMSvc; C:\Program Files\Acer\Acer Quick Access\RMSvc.exe [449768 2014-03-22] (Acer Incorporate)
S3 smphost; C:\Windows\SysWOW64\smphost.dll [11776 2013-08-22] (Microsoft Corporation)
S3 StorSvc; C:\Windows\SysWOW64\storsvc.dll [18944 2013-08-22] (Microsoft Corporation)
R3 UEIPSvc; C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe [222952 2014-01-25] (acer)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [348392 2014-06-13] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2014-06-13] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-10-04] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [79184 2014-10-04] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-10-04] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-10-04] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1041168 2014-10-04] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [427360 2014-10-04] (AVAST Software)
S2 aswStm; C:\Windows\system32\drivers\aswStm.sys [92008 2014-10-04] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [224896 2014-10-04] ()
R3 athr; C:\Windows\system32\DRIVERS\athwbx.sys [3888640 2014-02-14] (Qualcomm Atheros Communications, Inc.)
S3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [77464 2014-02-26] (Qualcomm Atheros)
S3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [226304 2014-03-18] (Microsoft Corporation)
S3 GPIO; C:\Windows\System32\drivers\iaiogpioe.sys [31232 2013-11-11] (Intel Corporation)
R3 iaioi2c; C:\Windows\System32\drivers\iaioi2ce.sys [67584 2013-11-11] (Intel Corporation)
R3 LMDriver; C:\Windows\System32\drivers\LMDriver.sys [21360 2013-07-17] (Acer Incorporated)
R3 RadioShim; C:\Windows\System32\drivers\RadioShim.sys [14680 2013-07-17] (Acer Incorporated)
R3 RTSPER; C:\Windows\system32\DRIVERS\RtsPer.sys [461528 2013-12-20] (Realsil Semiconductor Corporation)
R3 SynRMIHID; C:\Windows\system32\DRIVERS\SynRMIHID.sys [42224 2014-02-19] (Synaptics Incorporated)
R3 TXEIx64; C:\Windows\System32\drivers\TXEIx64.sys [88592 2014-01-15] (Intel Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124760 2014-06-13] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)

==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-10-05 09:19 - 2014-10-05 09:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-10-05 09:19 - 2014-10-04 19:42 - 00002207 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-10-05 09:18 - 2014-10-05 09:24 - 00000970 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-10-05 09:18 - 2014-10-05 09:19 - 00000000 ____D () C:\Users\Jaroslava\AppData\Local\Google
2014-10-05 09:18 - 2014-10-05 09:19 - 00000000 ____D () C:\Program Files (x86)\Google
2014-10-05 09:18 - 2014-10-05 09:18 - 00003942 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-10-05 09:18 - 2014-10-05 09:18 - 00003706 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-10-05 09:18 - 2014-10-04 19:42 - 00000966 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-10-05 09:17 - 2014-10-05 09:18 - 00000000 ____D () C:\Users\Jaroslava\AppData\Local\Deployment
2014-10-05 09:17 - 2014-10-05 09:17 - 00000000 ____D () C:\Users\Jaroslava\AppData\Local\Apps\2.0
2014-10-05 09:15 - 2014-10-05 09:15 - 00000000 ____D () C:\Users\Jaroslava\AppData\Roaming\Macromedia
2014-10-05 09:14 - 2014-10-05 09:14 - 00003974 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{4CCE959D-458F-4BB6-AD12-15144E0C4BA7}
2014-10-05 09:14 - 2014-10-05 09:14 - 00000000 __SHD () C:\Users\Jaroslava\AppData\Local\EmieUserList
2014-10-05 09:14 - 2014-10-05 09:14 - 00000000 __SHD () C:\Users\Jaroslava\AppData\Local\EmieSiteList
2014-10-05 09:12 - 2014-10-05 09:12 - 00000000 ____D () C:\Users\Jaroslava\AppData\Roaming\Spotify
2014-10-05 09:12 - 2014-10-05 09:12 - 00000000 ____D () C:\Users\Jaroslava\AppData\Local\Spotify
2014-10-05 09:10 - 2014-10-05 09:10 - 00000000 ____D () C:\Users\Jaroslava\Documents\clear.fi
2014-10-05 09:10 - 2014-10-04 19:16 - 00000000 ____D () C:\Users\Public\OEM
2014-10-05 09:09 - 2014-10-05 09:09 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_LocationProvider_01_11_00.Wdf
2014-10-05 09:07 - 2014-10-05 09:07 - 00000000 ____D () C:\Users\Jaroslava\AppData\Local\AOP SDK
2014-10-05 09:07 - 2014-10-04 19:45 - 00003598 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1973963726-3463450731-2135770685-1001
2014-10-05 09:06 - 2014-10-05 09:06 - 00000000 ____D () C:\Users\Public\Pokki
2014-10-05 09:05 - 2014-10-05 09:05 - 00002337 _____ () C:\Users\Jaroslava\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC App Store.lnk
2014-10-05 09:05 - 2014-10-04 19:41 - 00002166 _____ () C:\Users\Jaroslava\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pokki Start Menu.lnk
2014-10-05 09:03 - 2014-10-05 09:03 - 00000000 ____D () C:\Users\Jaroslava\PicStream
2014-10-05 09:03 - 2014-10-04 19:14 - 00000000 ____D () C:\Users\Jaroslava\AppData\Local\clear.fi
2014-10-05 09:02 - 2014-10-05 09:02 - 00001280 _____ () C:\Users\Jaroslava\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Správce zvuku HD.lnk
2014-10-05 09:02 - 2014-10-05 09:02 - 00000000 ____D () C:\Windows\System32\Tasks\WPD
2014-10-05 09:02 - 2014-10-05 09:02 - 00000000 ____D () C:\Users\Jaroslava\AppData\Roaming\Atheros
2014-10-05 09:01 - 2014-10-05 09:05 - 00000000 ____D () C:\Users\Jaroslava\AppData\Local\Packages
2014-10-05 09:01 - 2014-10-05 09:01 - 00001430 _____ () C:\Users\Jaroslava\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-10-05 09:01 - 2014-10-05 09:01 - 00000180 _____ () C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2014-10-05 09:01 - 2014-10-05 09:01 - 00000020 ___SH () C:\Users\Jaroslava\ntuser.ini
2014-10-05 09:01 - 2014-10-05 09:01 - 00000000 _SHDL () C:\Users\Jaroslava\Šablony
2014-10-05 09:01 - 2014-10-05 09:01 - 00000000 _SHDL () C:\Users\Jaroslava\Soubory cookie
2014-10-05 09:01 - 2014-10-05 09:01 - 00000000 _SHDL () C:\Users\Jaroslava\Poslední
2014-10-05 09:01 - 2014-10-05 09:01 - 00000000 _SHDL () C:\Users\Jaroslava\Okolní tiskárny
2014-10-05 09:01 - 2014-10-05 09:01 - 00000000 _SHDL () C:\Users\Jaroslava\Okolní síť
2014-10-05 09:01 - 2014-10-05 09:01 - 00000000 _SHDL () C:\Users\Jaroslava\Nabídka Start
2014-10-05 09:01 - 2014-10-05 09:01 - 00000000 _SHDL () C:\Users\Jaroslava\Dokumenty
2014-10-05 09:01 - 2014-10-05 09:01 - 00000000 _SHDL () C:\Users\Jaroslava\Documents\Obrázky
2014-10-05 09:01 - 2014-10-05 09:01 - 00000000 _SHDL () C:\Users\Jaroslava\Documents\Hudba
2014-10-05 09:01 - 2014-10-05 09:01 - 00000000 _SHDL () C:\Users\Jaroslava\Documents\Filmy
2014-10-05 09:01 - 2014-10-05 09:01 - 00000000 _SHDL () C:\Users\Jaroslava\Data aplikací
2014-10-05 09:01 - 2014-10-05 09:01 - 00000000 _SHDL () C:\Users\Jaroslava\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2014-10-05 09:01 - 2014-10-05 09:01 - 00000000 _SHDL () C:\Users\Jaroslava\AppData\Local\Data aplikací
2014-10-05 09:01 - 2014-10-05 09:01 - 00000000 ____D () C:\Users\Jaroslava\AppData\Roaming\Adobe
2014-10-05 09:01 - 2014-10-05 09:01 - 00000000 ____D () C:\Users\Jaroslava\AppData\Local\VirtualStore
2014-10-05 09:00 - 2014-10-05 09:03 - 00000000 ____D () C:\Users\Jaroslava
2014-10-05 09:00 - 2014-10-04 19:42 - 00000000 ____D () C:\Users\Jaroslava\AppData\Local\Pokki
2014-10-05 09:00 - 2014-06-13 19:01 - 00000000 ___RD () C:\Users\Jaroslava\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-10-05 09:00 - 2014-03-18 12:33 - 00000000 ___RD () C:\Users\Jaroslava\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-10-05 09:00 - 2014-03-18 12:13 - 00000369 _____ () C:\Users\Jaroslava\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2014-10-05 09:00 - 2014-03-18 12:13 - 00000369 _____ () C:\Users\Jaroslava\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2014-10-05 09:00 - 2013-08-22 17:36 - 00000000 ___RD () C:\Users\Jaroslava\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-10-05 09:00 - 2013-08-22 17:36 - 00000000 ____D () C:\Users\Jaroslava\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-10-05 08:55 - 2014-10-04 19:53 - 00210364 _____ () C:\Windows\WindowsUpdate.log
2014-10-04 20:08 - 2014-10-04 20:09 - 00014158 _____ () C:\Users\Jaroslava\Desktop\FRST.txt
2014-10-04 20:08 - 2014-10-04 20:08 - 00000000 ____D () C:\FRST
2014-10-04 20:06 - 2014-10-04 20:06 - 00112640 _____ (forum.viry.cz) C:\Users\Jaroslava\Desktop\FRSTLauncher (2).exe
2014-10-04 20:03 - 2014-10-04 20:03 - 02109440 _____ (Farbar) C:\Users\Jaroslava\Desktop\FRST64.exe
2014-10-04 19:46 - 2014-10-04 19:46 - 00005108 _____ () C:\Users\Jaroslava\Documents\cc_20141004_194608.reg
2014-10-04 19:45 - 2014-10-04 19:45 - 00121334 _____ () C:\Users\Jaroslava\Documents\cc_20141004_194539.reg
2014-10-04 19:44 - 2014-10-04 19:44 - 00002780 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
2014-10-04 19:44 - 2014-10-04 19:44 - 00000000 ____D () C:\Program Files\CCleaner
2014-10-04 19:26 - 2014-10-04 19:26 - 00000000 ____D () C:\Users\Jaroslava\AppData\Roaming\AVAST Software
2014-10-04 19:26 - 2014-10-04 19:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast
2014-10-04 19:25 - 2014-10-04 19:26 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-10-04 19:24 - 2014-10-04 19:26 - 00427360 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2014-10-04 19:24 - 2014-10-04 19:23 - 01041168 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2014-10-04 19:24 - 2014-10-04 19:23 - 00307344 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-10-04 19:24 - 2014-10-04 19:23 - 00224896 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2014-10-04 19:24 - 2014-10-04 19:23 - 00093568 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2014-10-04 19:24 - 2014-10-04 19:23 - 00092008 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2014-10-04 19:24 - 2014-10-04 19:23 - 00079184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-10-04 19:24 - 2014-10-04 19:23 - 00065776 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2014-10-04 19:24 - 2014-10-04 19:23 - 00029208 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2014-10-04 19:23 - 2014-10-04 19:23 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-10-04 19:22 - 2014-10-04 19:22 - 00000000 ____D () C:\Program Files\AVAST Software
2014-10-04 19:21 - 2014-10-04 19:22 - 00000000 ____D () C:\ProgramData\AVAST Software

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-10-05 09:14 - 2014-05-16 09:18 - 00000000 ___HD () C:\OEM
2014-10-05 09:13 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\AppReadiness
2014-10-05 09:07 - 2014-06-13 18:46 - 00739924 _____ () C:\Windows\system32\perfh005.dat
2014-10-05 09:07 - 2014-06-13 18:46 - 00151610 _____ () C:\Windows\system32\perfc005.dat
2014-10-05 09:07 - 2014-03-18 12:03 - 01745984 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-10-05 09:04 - 2013-08-22 15:25 - 00262144 ___SH () C:\Windows\system32\config\ELAM
2014-10-05 08:59 - 2013-08-22 16:44 - 00345256 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-10-05 08:53 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\rescache
2014-10-04 20:00 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\system32\sru
2014-10-04 19:45 - 2014-05-16 09:24 - 00000000 ____D () C:\Windows\Panther
2014-10-04 19:40 - 2014-05-16 08:54 - 00000000 ____D () C:\ProgramData\McAfee
2014-10-04 19:40 - 2013-08-22 16:45 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-10-04 19:39 - 2013-08-22 15:25 - 00262144 ___SH () C:\Windows\system32\config\BBI
2014-10-04 19:37 - 2013-08-22 17:36 - 00000000 ___HD () C:\Windows\ELAMBKUP
2014-10-04 19:16 - 2014-05-16 08:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer
2014-10-04 19:16 - 2014-05-16 08:42 - 00000000 ____D () C:\Program Files (x86)\Acer
2014-10-04 19:12 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\system32\restore

Some content of TEMP:
====================
C:\Users\Jaroslava\AppData\Local\Temp\AcerDocsSetup.exe
C:\Users\Jaroslava\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpq_4df5.dll

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed

===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================

==================== MBR and Partition Table ==================

==================== Scheduled Tasks (whitelisted) ==================

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Alternate Data Streams (whitelisted) ==================

==================== Security Center ==================

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Disabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Disabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)

***** Velikost "Plochy" *****

Velikost slozky "C:\Users\Jaroslava\Desktop" je 2 MB.

***** Startup Programs *****

***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR"=dword:00000000
"Generalize_DisableSR"=dword:00000000

==================== End Of Log ==============================

#2 Příspěvek od **Rudy** » 05 říj 2014 18:20

Zdravím!
Otevřte poznámkový blok a zkopírujte do něj:

Start
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => No File
SearchScopes: HKLM - DefaultScope {8E5AA035-DC94-46DC-AE33-51CC53E87946} URL = http://www.bing.com/search?q={searchTer ... TR&pc=ACJB
SearchScopes: HKLM - {8E5AA035-DC94-46DC-AE33-51CC53E87946} URL = http://www.bing.com/search?q={searchTer ... TR&pc=ACJB
SearchScopes: HKLM-x32 - DefaultScope {8E5AA035-DC94-46DC-AE33-51CC53E87946} URL = http://www.bing.com/search?q={searchTer ... TR&pc=ACJB
SearchScopes: HKLM-x32 - {8E5AA035-DC94-46DC-AE33-51CC53E87946} URL = http://www.bing.com/search?q={searchTer ... TR&pc=ACJB
SearchScopes: HKCU - DefaultScope {8E5AA035-DC94-46DC-AE33-51CC53E87946} URL =
SearchScopes: HKCU - {8E5AA035-DC94-46DC-AE33-51CC53E87946} URL =
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
c:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
C:\ProgramData\McAfee
C:\Users\Jaroslava\AppData\Local\Temp
End

Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Můžete odinstalovat prakticky vše, co je tam od Aceru navíc, systém je schopen fungovat i bez toho. Z toho,co je spuštěno:

Acer Power Management
AOP Framework
Acer Launch Manager
Acer Quick Access

michal29 · #3 Příspěvek od **michal29** » 06 říj 2014 17:52

Ok, díky. Jdu to zrovna smazat.
Po vytvoření fixlogu a spuštění toho FRST se mi pak na ploše vytvořili dva soubory - LM a Domácí skupina. To s tím nějak souvisí nebo to můžu smáznout?

Log je zde:
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 06-10-2014
Ran by Jaroslava at 2014-10-06 18:40:56 Run:1
Running from C:\Users\Jaroslava\Desktop
Loaded Profile: Jaroslava (Available profiles: Jaroslava)
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
Start
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => No File
SearchScopes: HKLM - DefaultScope {8E5AA035-DC94-46DC-AE33-51CC53E87946} URL = http://www.bing.com/search?q={searchTer ... TR&pc=ACJB
SearchScopes: HKLM - {8E5AA035-DC94-46DC-AE33-51CC53E87946} URL = http://www.bing.com/search?q={searchTer ... TR&pc=ACJB
SearchScopes: HKLM-x32 - DefaultScope {8E5AA035-DC94-46DC-AE33-51CC53E87946} URL = http://www.bing.com/search?q={searchTer ... TR&pc=ACJB
SearchScopes: HKLM-x32 - {8E5AA035-DC94-46DC-AE33-51CC53E87946} URL = http://www.bing.com/search?q={searchTer ... TR&pc=ACJB
SearchScopes: HKCU - DefaultScope {8E5AA035-DC94-46DC-AE33-51CC53E87946} URL =
SearchScopes: HKCU - {8E5AA035-DC94-46DC-AE33-51CC53E87946} URL =
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
c:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
C:\ProgramData\McAfee
C:\Users\Jaroslava\AppData\Local\Temp
End
*****************

"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\DropboxExt1]" => Key not found.
"HKCR\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}" => Key not found.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\DropboxExt2]" => Key not found.
"HKCR\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}" => Key not found.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\DropboxExt3]" => Key not found.
"HKCR\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}" => Key not found.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\DropboxExt4]" => Key not found.
"HKCR\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}" => Key not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.
"HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{8E5AA035-DC94-46DC-AE33-51CC53E87946}" => Key deleted successfully.
"HKCR\CLSID\{8E5AA035-DC94-46DC-AE33-51CC53E87946}" => Key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{8E5AA035-DC94-46DC-AE33-51CC53E87946}" => Key deleted successfully.
"HKCR\Wow6432Node\CLSID\{8E5AA035-DC94-46DC-AE33-51CC53E87946}" => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
"HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{8E5AA035-DC94-46DC-AE33-51CC53E87946}" => Key deleted successfully.
"HKCR\CLSID\{8E5AA035-DC94-46DC-AE33-51CC53E87946}" => Key not found.
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => Moved successfully.
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA => Moved successfully.
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore => Moved successfully.
c:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => Moved successfully.
C:\ProgramData\McAfee => Moved successfully.

"C:\Users\Jaroslava\AppData\Local\Temp" directory move:

C:\Users\Jaroslava\AppData\Local\Temp\AcerDocsSetup.exe => Moved successfully.
C:\Users\Jaroslava\AppData\Local\Temp\AdobeARM.log => Moved successfully.
C:\Users\Jaroslava\AppData\Local\Temp\CFG8A38.tmp => Moved successfully.
C:\Users\Jaroslava\AppData\Local\Temp\chrome_installer.log => Moved successfully.
C:\Users\Jaroslava\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpq_4df5.dll => Moved successfully.
C:\Users\Jaroslava\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpq_4df5.lck => Moved successfully.
C:\Users\Jaroslava\AppData\Local\Temp\modules00 => Moved successfully.
C:\Users\Jaroslava\AppData\Local\Temp\modules11 => Moved successfully.
C:\Users\Jaroslava\AppData\Local\Temp\oct16F7.tmp => Moved successfully.
C:\Users\Jaroslava\AppData\Local\Temp\oct1E56.tmp => Moved successfully.
C:\Users\Jaroslava\AppData\Local\Temp\oct20D.tmp.exe => Moved successfully.
C:\Users\Jaroslava\AppData\Local\Temp\oct95DD.tmp => Moved successfully.
C:\Users\Jaroslava\AppData\Local\Temp\oct97AD.tmp => Moved successfully.
C:\Users\Jaroslava\AppData\Local\Temp\octE291.tmp => Moved successfully.
C:\Users\Jaroslava\AppData\Local\Temp\octE5CC.tmp => Moved successfully.
C:\Users\Jaroslava\AppData\Local\Temp\octF46E.tmp => Moved successfully.
C:\Users\Jaroslava\AppData\Local\Temp\Pokki-2014-10-04.log => Moved successfully.
C:\Users\Jaroslava\AppData\Local\Temp\Pokki-2014-10-05.log => Moved successfully.
C:\Users\Jaroslava\AppData\Local\Temp\Pokki-2014-10-06.log => Moved successfully.
C:\Users\Jaroslava\AppData\Local\Temp\StructuredQuery.log => Moved successfully.
C:\Users\Jaroslava\AppData\Local\Temp\wmsetup.log => Moved successfully.
C:\Users\Jaroslava\AppData\Local\Temp\~793.tmp => Moved successfully.
C:\Users\Jaroslava\AppData\Local\Temp\~A4BD.bat => Moved successfully.
C:\Users\Jaroslava\AppData\Local\Temp\~A4BD.tmp => Moved successfully.
C:\Users\Jaroslava\AppData\Local\Temp\~nsu.tmp\Au_.exe => Moved successfully.
C:\Users\Jaroslava\AppData\Local\Temp\nsz586D.tmp\DropboxNSISTools.dll => Moved successfully.
C:\Users\Jaroslava\AppData\Local\Temp\nsz586D.tmp\UAC.dll => Moved successfully.
C:\Users\Jaroslava\AppData\Local\Temp\nsyF8EE.tmp\DropboxNSISTools.dll => Moved successfully.
C:\Users\Jaroslava\AppData\Local\Temp\nsyF8EE.tmp\UAC.dll => Moved successfully.
C:\Users\Jaroslava\AppData\Local\Temp\nsvBEC3.tmp\___ocnsis.dll => Moved successfully.
C:\Users\Jaroslava\AppData\Local\Temp\nsi298D.tmp\UAC.dll => Moved successfully.
C:\Users\Jaroslava\AppData\Local\Temp\nsg8754.tmp\ccsetup.exe => Moved successfully.
C:\Users\Jaroslava\AppData\Local\Temp\nsc6B44.tmp\DropboxNSISTools.dll => Moved successfully.
C:\Users\Jaroslava\AppData\Local\Temp\nsc6B44.tmp\UAC.dll => Moved successfully.
C:\Users\Jaroslava\AppData\Local\Temp\dab252a7-d536-402f-8992-41f13b6b42a1\unpinmedia.vbs => Moved successfully.
C:\Users\Jaroslava\AppData\Local\Temp\clear.fi_media\abMediaSetup.exe => Moved successfully.
C:\Users\Jaroslava\AppData\Local\Temp\avastBCLTMP\chrome\Default\Web Data => Moved successfully.
Could not move "C:\Users\Jaroslava\AppData\Local\Temp" directory. => Scheduled to move on reboot.

=> Result of Scheduled Files to move (Boot Mode: Normal) (Date&Time: 2014-10-06 18:44:03)<=

C:\Users\Jaroslava\AppData\Local\Temp => Moved successfully.

==== End of Fixlog ====

#4 Příspěvek od **Rudy** » 06 říj 2014 18:12

Vše smazáno. FRST a vše, co "vyrobil", můžete smazat.

michal29 · #5 Příspěvek od **michal29** » 06 říj 2014 18:16

Ok. Vše smazáno. Toť vše? Jestli ano, tak děkuji!

#6 Příspěvek od **Rudy** » 06 říj 2014 19:57

Ano, vše. Neemáte zač!

VIRY.CZ

Novy notebook_kontrola

Novy notebook_kontrola

Re: Novy notebook_kontrola

Re: Novy notebook_kontrola

Re: Novy notebook_kontrola

Re: Novy notebook_kontrola

Re: Novy notebook_kontrola