Pomaly notebook a vyskakujici reklamy

Zpráva

bubakkaja · #1 Příspěvek od **bubakkaja** » 12 bře 2015 20:12

Dobry vecer mohl bych poprosit o kontrolu notebooku.Od vcera se strasne zpomalil a porad mi vyskakujou reklamy.Dokonce i tady na hlavni strance.Predem dekuji

Logfile of random's system information tool 1.10 (written by random/random)
Run by Vojta at 2015-03-12 20:09:09
Microsoft Windows 8.1
System drive C: has 336 GB (73%) free of 460 GB
Total RAM: 3978 MB (61% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:09:17, on 12. 3. 2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17416)
Boot mode: Normal

Running processes:
C:\Program Files\Acer\Acer Power Management\ePowerWinMonitor.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Users\Vojta\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Vojta\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Vojta\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Vojta\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Vojta\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Vojta\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\syswow64\wwahost.exe
C:\Users\Vojta\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Vojta.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer13.msn.com/?pc=ACJB
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 127.0.0.1:8118
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: SecureWebBHO - {D3C24E2B-C820-4492-9B69-11BF7163F998} - C:\Program Files (x86)\Jelbrus Secure Web\amie.dll
O4 - HKLM\..\Run: [abDocsDllLoader] C:\Program Files (x86)\Acer\abDocs\abDocsDllLoader.exe
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKCU\..\Run: [Pokki] "%LOCALAPPDATA%\Pokki\Engine\HostAppServiceUpdater.exe" /LOGON
O4 - HKCU\..\Run: [Google Update] "C:\Users\Vojta\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKLM\..\Policies\Explorer\Run: [BtvStack] "C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe"
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AtherosSvc - Windows (R) Win 7 DDK provider - C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AvastVBox COM Service (AvastVBoxSvc) - Avast Software - C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
O23 - Service: CCDMonitorService - Acer Incorporated - C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @oem6.inf,%WIN32_DPTF_PARTICIPANT_PROC_SERVICE_DISPLAY_NAME%;Intel(R) Dynamic Platform and Thermal Framework Processor Participant Service Application (DptfParticipantAcpiProcessorService) - Unknown owner - C:\Windows\system32\DptfParticipantProcessorService.exe (file missing)
O23 - Service: @oem6.inf,%WIN32_DPTF_POLICY_CRITICAL_SERVICE_DISPLAY_NAME%;Intel(R) Dynamic Platform and Thermal Framework Critical Service Application (DptfPolicyCriticalService) - Unknown owner - C:\Windows\system32\DptfPolicyCriticalService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\Windows\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Live Malware Protection - AV Security Software - C:\Windows\mlwps.exe
O23 - Service: Launch Manager Service (LMSvc) - Acer Incorporate - C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Privoxy (PrivoxyService) (PrivoxyService) - The Privoxy team - www.privoxy.org - C:\Program Files (x86)\Jelbrus Secure Web\privoxy.exe
O23 - Service: Quick Access Service (QASvc) - Acer Incorporate - C:\Program Files\Acer\Acer Quick Access\QASvc.exe
O23 - Service: Quick Access RadioMgr Service (RMSvc) - Acer Incorporate - C:\Program Files\Acer\Acer Quick Access\RMSvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: SAMSUNG Mobile Connectivity Service (ss_conn_service) - DEVGURU Co., LTD. - C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe
O23 - Service: User Experience Improvement Program (UEIPSvc) - acer - C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 8716 bytes

======Listing Processes======

wininit.exe

winlogon.exe

C:\Windows\system32\lsass.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"dwm.exe"
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\igfxCUIService.exe
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe"
"C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe"
taskhostex.exe
C:\Windows\Explorer.EXE
dashost.exe {dcb88a03-0c6c-43d0-846453906dbf85c4}
C:\Windows\system32\DptfParticipantProcessorService.exe
C:\Windows\system32\DptfPolicyCriticalService.exe
"C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe"
C:\Windows\mlwps.exe
"C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe"
"C:\Program Files\Acer\Acer Launch Manager\LMEvent.exe"
"C:\Program Files (x86)\Jelbrus Secure Web\privoxy.exe" --service
"C:\Program Files\Acer\Acer Launch Manager\LMLockHandler.exe"
"C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe"
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe"
"C:\Windows\System32\SettingSyncHost.exe" -Embedding
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
ngservice.exe pipeserver
igfxEM.exe
"C:\Program Files\Acer\Acer Quick Access\QASvc.exe"
igfxHK.exe
igfxTray.exe
"C:\Program Files\Acer\Acer Launch Manager\LMTray.exe"
"C:\Program Files\Acer\Acer Quick Access\QAEvent.exe"
"C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe"
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\vssvc.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files\Acer\Acer Power Management\ePowerTray.exe"
C:\Windows\System32\svchost.exe -k swprv
"C:\Windows\system32\igfxext.exe" -Embedding
"C:\Program Files\Acer\Acer Quick Access\QAMsg.exe"
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe"
"C:\Program Files\Acer\Acer Power Management\ePowerWinMonitor.exe"
C:\Windows\System32\skydrive.exe -Embedding
"C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe"
"C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\ActivateDesktop.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
"C:\Program Files\Acer\Acer Quick Access\RMSvc.exe"
C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\Program Files\CCleaner\CCleaner64.exe" /monitor
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Users\Vojta\AppData\Local\Google\Chrome\Application\chrome.exe
"C:\Users\Vojta\AppData\Local\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="6012.0.2134330952\2000929157" --supports-dual-gpus=false --gpu-driver-bug-workarounds=1,18,39 --gpu-vendor-id=0x8086 --gpu-device-id=0x0f31 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=10.18.10.3621 --ignored=" --type=renderer " /prefetch:822062411
"C:\Users\Vojta\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="BrowserBlacklist/Enabled/ChromeSuggestions/Default/DomRel-Enable/enable/EmbeddedSearch/Group9 pct:10i stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/Enforce/ExtensionInstallVerification/Enforce/GoogleNow/Enable/MaterialDesignNTP/Enabled/NewProfileManagement/NewAvatarMenu/OmniboxBundledExperimentV1/NewSuggestType_A7_Stable_R2/PasswordGeneration/Disabled/QUIC/ControlForLargePopulation/RememberCertificateErrorDecisions/Default/SPDY/Spdy4Enabled-default/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Population-Restrict/normal/UMA-Uniformity-Trial-1-Percent/group_42/UMA-Uniformity-Trial-10-Percent/group_03/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/default/UMA-Uniformity-Trial-5-Percent/group_16/UMA-Uniformity-Trial-50-Percent/group_01/UwSInterstitialStatus/On/VoiceTrigger/Install/WebRTC-IPv6Default/Default/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="6012.2.1455667193\899530418" /prefetch:673131151
"C:\Users\Vojta\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="BrowserBlacklist/Enabled/ChromeSuggestions/Default/DomRel-Enable/enable/EmbeddedSearch/Group9 pct:10i stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/Enforce/ExtensionInstallVerification/Enforce/GoogleNow/Enable/MaterialDesignNTP/Enabled/NewProfileManagement/NewAvatarMenu/OmniboxBundledExperimentV1/NewSuggestType_A7_Stable_R2/PasswordGeneration/Disabled/QUIC/ControlForLargePopulation/RememberCertificateErrorDecisions/Default/SPDY/Spdy4Enabled-default/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Population-Restrict/normal/UMA-Uniformity-Trial-1-Percent/group_42/UMA-Uniformity-Trial-10-Percent/group_03/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/default/UMA-Uniformity-Trial-5-Percent/group_16/UMA-Uniformity-Trial-50-Percent/group_01/UwSInterstitialStatus/On/VoiceTrigger/Install/WebRTC-IPv6Default/Default/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="6012.3.400094703\348859289" /prefetch:673131151
"C:\Users\Vojta\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="BrowserBlacklist/Enabled/ChromeSuggestions/Default/DomRel-Enable/enable/EmbeddedSearch/Group9 pct:10i stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/Enforce/ExtensionInstallVerification/Enforce/GoogleNow/Enable/MaterialDesignNTP/Enabled/NewProfileManagement/NewAvatarMenu/OmniboxBundledExperimentV1/NewSuggestType_A7_Stable_R2/PasswordGeneration/Disabled/QUIC/ControlForLargePopulation/RememberCertificateErrorDecisions/Default/SPDY/Spdy4Enabled-default/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Population-Restrict/normal/UMA-Uniformity-Trial-1-Percent/group_42/UMA-Uniformity-Trial-10-Percent/group_03/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/default/UMA-Uniformity-Trial-5-Percent/group_16/UMA-Uniformity-Trial-50-Percent/group_01/UwSInterstitialStatus/On/VoiceTrigger/Install/WebRTC-IPv6Default/Default/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="6012.4.637115748\480353167" /prefetch:673131151
"C:\Users\Vojta\AppData\Local\Google\Chrome\Application\chrome.exe" --type=ppapi --channel="6012.7.2142416881\412827216" --ppapi-flash-args=enable_hw_video_decode=1 --lang=cs --ignored=" --type=renderer " /prefetch:-632637702
"C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe"

"C:\Windows\syswow64\wwahost.exe" -ServerName:App.wwa
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server
taskhost.exe
"C:\Users\Vojta\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="BrowserBlacklist/Enabled/ChromeSuggestions/Default/DomRel-Enable/enable/EmbeddedSearch/Group9 pct:10i stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/Enforce/ExtensionInstallVerification/Enforce/GCM/Enabled/GoogleNow/Enable/MaterialDesignNTP/Enabled/NewProfileManagement/NewAvatarMenu/OmniboxBundledExperimentV1/NewSuggestType_A7_Stable_R2/PasswordGeneration/Disabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/QUIC/ControlForLargePopulation/RememberCertificateErrorDecisions/Default/SPDY/Spdy4Enabled-default/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Population-Restrict/normal/UMA-Uniformity-Trial-1-Percent/group_42/UMA-Uniformity-Trial-10-Percent/group_03/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/default/UMA-Uniformity-Trial-5-Percent/group_16/UMA-Uniformity-Trial-50-Percent/group_01/UwSInterstitialStatus/On/VoiceTrigger/Install/WebRTC-IPv6Default/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="6012.11.357338276\1350682955" /prefetch:673131151
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe4_ Global\UsGthrCtrlFltPipeMssGthrPipe4 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 560 568 576 65536 572
"C:\Users\Vojta\Downloads\RSITx64.exe"

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2460364176-499435987-3049047525-1001Core.job - C:\Users\Vojta\AppData\Local\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2460364176-499435987-3049047525-1001UA.job - C:\Users\Vojta\AppData\Local\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2460364176-499435987-3049047525-1001UA1d008dc35b4c451.job - C:\Users\Vojta\AppData\Local\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-12-26 705448]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-12-26 586968]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D3C24E2B-C820-4492-9B69-11BF7163F998}]
SecureWebBHO Class - C:\Program Files (x86)\Jelbrus Secure Web\amie.dll [2015-03-11 119808]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2014-06-30 13672664]
"DptfPolicyLpmServiceHelper"=C:\Windows\System32\DptfPolicyLpmServiceHelper.exe [2013-09-17 111488]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe [2014-02-26 134784]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Pokki"=C:\Users\Vojta\AppData\Local\Pokki\Engine\HostAppServiceUpdater.exe [2014-11-20 9282376]
"Google Update"=C:\Users\Vojta\AppData\Local\Google\Update\GoogleUpdate.exe [2014-11-25 116648]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2014-11-21 7063832]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"abDocsDllLoader"=C:\Program Files (x86)\Acer\abDocs\abDocsDllLoader.exe [2014-11-20 90368]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-01-28 5227112]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe [2014-02-26 134784]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iaioi2ce.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcpltsvc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"PromptOnSecureDesktop"=0
"ConsentPromptBehaviorAdmin"=0
"SoftwareSASGeneration"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-03-12 20:09:09 ----D---- C:\rsit
2015-03-12 20:09:09 ----D---- C:\Program Files\trend micro
2015-03-12 18:56:47 ----A---- C:\Windows\SYSWOW64\tasks.dll
2015-03-11 18:16:46 ----A---- C:\Windows\mlwps.exe
2015-03-11 18:16:45 ----A---- C:\Users\Vojta\AppData\Roaming\FF44.tmp.exe
2015-03-11 18:16:45 ----A---- C:\Users\Vojta\AppData\Roaming\FF44.tmp
2015-03-11 18:16:44 ----D---- C:\Program Files (x86)\Jelbrus Secure Web
2015-03-11 18:16:41 ----A---- C:\Users\Vojta\AppData\Roaming\F0CD.tmp
2015-03-11 18:15:58 ----D---- C:\Program Files (x86)\PrivateVPN
2015-03-10 19:37:00 ----A---- C:\Windows\system32\win32k.sys
2015-03-10 19:36:58 ----A---- C:\Windows\SYSWOW64\schannel.dll
2015-03-10 19:36:58 ----A---- C:\Windows\system32\schannel.dll
2015-03-10 19:36:03 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2015-03-10 19:36:03 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2015-03-10 19:36:03 ----A---- C:\Windows\system32\atmfd.dll
2015-03-10 19:36:02 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2015-03-10 19:36:02 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2015-03-10 19:36:02 ----A---- C:\Windows\system32\lpk.dll
2015-03-10 19:36:02 ----A---- C:\Windows\system32\fontsub.dll
2015-03-10 19:36:02 ----A---- C:\Windows\system32\dciman32.dll
2015-03-10 19:36:02 ----A---- C:\Windows\system32\atmlib.dll
2015-03-10 19:36:01 ----A---- C:\Windows\SYSWOW64\lpk.dll
2015-03-10 19:35:58 ----A---- C:\Windows\system32\rfxvmt.dll
2015-03-10 19:35:58 ----A---- C:\Windows\system32\rdpudd.dll
2015-03-10 19:35:58 ----A---- C:\Windows\system32\rdpcorets.dll
2015-03-10 19:35:58 ----A---- C:\Windows\system32\drivers\rdpvideominiport.sys
2015-03-10 19:35:55 ----A---- C:\Windows\system32\ubpm.dll
2015-03-10 19:35:31 ----A---- C:\Windows\system32\ntoskrnl.exe
2015-03-10 19:35:31 ----A---- C:\Windows\system32\ntdll.dll
2015-03-10 19:35:30 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2015-03-10 19:35:04 ----A---- C:\Windows\SYSWOW64\eapphost.dll
2015-03-10 19:35:04 ----A---- C:\Windows\SYSWOW64\eappcfg.dll
2015-03-10 19:35:04 ----A---- C:\Windows\system32\eapphost.dll
2015-03-10 19:35:04 ----A---- C:\Windows\system32\eappcfg.dll
2015-03-10 19:35:04 ----A---- C:\Windows\system32\eapp3hst.dll
2015-03-10 19:35:03 ----A---- C:\Windows\SYSWOW64\eappprxy.dll
2015-03-10 19:35:03 ----A---- C:\Windows\SYSWOW64\eappgnui.dll
2015-03-10 19:35:03 ----A---- C:\Windows\SYSWOW64\eapp3hst.dll
2015-03-10 19:35:03 ----A---- C:\Windows\system32\eappprxy.dll
2015-03-10 19:35:03 ----A---- C:\Windows\system32\eappgnui.dll
2015-03-10 19:34:59 ----A---- C:\Windows\system32\mshtml.dll
2015-03-10 19:34:57 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-03-10 19:34:53 ----A---- C:\Windows\system32\jscript9.dll
2015-03-10 19:34:52 ----A---- C:\Windows\system32\ieframe.dll
2015-03-10 19:34:51 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-03-10 19:34:49 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-03-10 19:34:48 ----A---- C:\Windows\system32\wininet.dll
2015-03-10 19:34:48 ----A---- C:\Windows\system32\iertutil.dll
2015-03-10 19:34:47 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-03-10 19:34:47 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-03-10 19:34:47 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-03-10 19:34:47 ----A---- C:\Windows\system32\urlmon.dll
2015-03-10 19:34:46 ----A---- C:\Windows\SYSWOW64\inetcomm.dll
2015-03-10 19:34:46 ----A---- C:\Windows\system32\inetcomm.dll
2015-03-10 19:34:45 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-03-10 19:34:44 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-03-10 19:34:44 ----A---- C:\Windows\system32\vbscript.dll
2015-03-10 19:34:43 ----A---- C:\Windows\system32\iepeers.dll
2015-03-10 19:34:42 ----A---- C:\Windows\system32\msfeeds.dll
2015-03-10 19:34:42 ----A---- C:\Windows\system32\dxtrans.dll
2015-03-10 19:34:41 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2015-03-10 19:34:41 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2015-03-10 19:34:41 ----A---- C:\Windows\system32\MshtmlDac.dll
2015-03-10 19:34:40 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2015-03-10 19:34:40 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2015-03-10 19:34:40 ----A---- C:\Windows\system32\webcheck.dll
2015-03-10 19:34:40 ----A---- C:\Windows\system32\mshtmled.dll
2015-03-10 19:34:40 ----A---- C:\Windows\system32\jscript9diag.dll
2015-03-10 19:34:40 ----A---- C:\Windows\system32\iedkcs32.dll
2015-03-10 19:34:39 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2015-03-10 19:34:39 ----A---- C:\Windows\system32\jscript.dll
2015-03-10 19:34:39 ----A---- C:\Windows\system32\actxprxy.dll
2015-03-10 19:34:38 ----A---- C:\Windows\SYSWOW64\jscript.dll
2015-03-10 19:34:38 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2015-03-10 19:34:38 ----A---- C:\Windows\system32\ieapfltr.dll
2015-03-10 19:34:29 ----A---- C:\Windows\system32\WindowsCodecs.dll
2015-03-10 19:34:28 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2015-03-10 19:34:27 ----A---- C:\Windows\system32\LockScreenContentServer.exe
2015-03-10 19:34:26 ----A---- C:\Windows\system32\shell32.dll
2015-03-10 19:34:25 ----A---- C:\Windows\SYSWOW64\shell32.dll
2015-03-10 19:34:20 ----A---- C:\Windows\SYSWOW64\MrmCoreR.dll
2015-03-10 19:34:20 ----A---- C:\Windows\system32\MrmCoreR.dll
2015-03-10 19:34:19 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll
2015-03-10 19:34:19 ----A---- C:\Windows\system32\WMPhoto.dll
2015-03-10 19:34:19 ----A---- C:\Windows\explorer.exe
2015-03-10 19:34:18 ----A---- C:\Windows\SYSWOW64\explorer.exe
2015-03-10 19:34:16 ----A---- C:\Windows\SYSWOW64\msctf.dll
2015-03-10 19:34:16 ----A---- C:\Windows\system32\msctf.dll
2015-02-27 21:36:09 ----D---- C:\Users\Vojta\AppData\Roaming\Spotify
2015-02-27 21:13:54 ----D---- C:\Users\Vojta\AppData\Roaming\Mozilla
2015-02-25 18:05:19 ----A---- C:\Windows\system32\Windows.Globalization.dll
2015-02-25 18:05:18 ----A---- C:\Windows\SYSWOW64\Windows.Globalization.dll
2015-02-25 18:05:18 ----A---- C:\Windows\SYSWOW64\GlobCollationHost.dll
2015-02-25 18:05:17 ----A---- C:\Windows\system32\GlobCollationHost.dll
2015-02-19 06:47:07 ----D---- C:\Windows\Minidump

======List of files/folders modified in the last 1 month======

2015-03-12 20:09:16 ----D---- C:\Windows\Prefetch
2015-03-12 20:09:09 ----RD---- C:\Program Files
2015-03-12 20:05:10 ----D---- C:\Windows\Temp
2015-03-12 20:02:49 ----SD---- C:\Users\Vojta\AppData\Roaming\Microsoft
2015-03-12 20:00:32 ----SHD---- C:\Windows\Installer
2015-03-12 20:00:31 ----SHD---- C:\Config.Msi
2015-03-12 20:00:04 ----D---- C:\Windows\system32\sru
2015-03-12 19:55:36 ----D---- C:\Windows\system32\config
2015-03-12 19:52:45 ----D---- C:\Windows\SoftwareDistribution
2015-03-12 19:52:42 ----D---- C:\Windows
2015-03-12 19:52:24 ----RD---- C:\Windows\System32
2015-03-12 19:45:54 ----D---- C:\Windows\Inf
2015-03-12 19:45:38 ----D---- C:\Windows\debug
2015-03-12 18:56:50 ----D---- C:\Windows\system32\Tasks
2015-03-12 18:56:47 ----D---- C:\Windows\SysWOW64
2015-03-12 12:58:55 ----D---- C:\Windows\CbsTemp
2015-03-12 12:58:38 ----D---- C:\Windows\WinSxS
2015-03-12 12:21:30 ----D---- C:\Windows\system32\catroot2
2015-03-12 12:04:10 ----D---- C:\Windows\AppReadiness
2015-03-12 12:04:09 ----HD---- C:\Program Files\WindowsApps
2015-03-12 06:50:38 ----D---- C:\Windows\Microsoft.NET
2015-03-11 18:32:37 ----D---- C:\Windows\system32\drivers
2015-03-11 18:32:36 ----D---- C:\Program Files (x86)\Internet Explorer
2015-03-11 18:32:35 ----D---- C:\Program Files\Internet Explorer
2015-03-11 18:32:34 ----RD---- C:\Windows\ToastData
2015-03-11 18:27:01 ----D---- C:\Windows\system32\MRT
2015-03-11 18:26:58 ----A---- C:\Windows\system32\MRT.exe
2015-03-11 18:23:19 ----SHD---- C:\System Volume Information
2015-03-11 18:16:44 ----D---- C:\Program Files (x86)
2015-03-04 22:24:42 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2015-03-02 17:28:53 ----D---- C:\Users\Vojta\AppData\Roaming\MyPhoneExplorer
2015-03-02 14:15:14 ----D---- C:\Windows\system32\NDF
2015-02-27 21:35:04 ----D---- C:\Windows\Tasks
2015-02-22 16:43:38 ----D---- C:\Filmy
2015-02-15 12:22:04 ----D---- C:\Windows\rescache
2015-02-14 16:52:47 ----D---- C:\Windows\SYSWOW64\cs-CZ
2015-02-14 16:52:46 ----D---- C:\Windows\SYSWOW64\en-US
2015-02-14 16:52:46 ----D---- C:\Windows\system32\en-US
2015-02-14 16:52:46 ----D---- C:\Windows\system32\cs-CZ
2015-02-14 16:52:44 ----D---- C:\Windows\apppatch
2015-02-13 18:33:45 ----A---- C:\Windows\system32\PerfStringBackup.INI

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2014-12-26 65776]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2014-12-26 267632]
R0 BTATH_BUS;@oem16.inf,%BTATH_BUS.SVCDESC%;Qualcomm Atheros Bluetooth Bus; C:\Windows\System32\drivers\btath_bus.sys [2014-02-26 35016]
R0 MBI;@oem7.inf,%MBI.SVCDESC%;Intel(R) Sideband Fabric Device Service; C:\Windows\System32\drivers\MBI.sys [2013-12-10 29464]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2014-12-26 93568]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2014-12-26 1050432]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2014-12-26 436624]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\Windows\system32\DRIVERS\vwififlt.sys [2014-04-30 71680]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2014-12-26 29208]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2014-12-26 83280]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2014-12-26 116728]
R2 VBoxAswDrv;VBoxAsw Support Driver; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [2014-12-26 271752]
R3 athr;@oem15.inf,%ATHR.Service.DispName%;Qualcomm Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athwbx.sys [2014-02-14 3888640]
R3 BtFilter;BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [2014-02-26 598216]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2014-03-18 81920]
R3 DptfDevAcpiProc;DptfDevAcpiProc; C:\Windows\system32\DRIVERS\DptfDevAcpiProc.sys [2013-09-17 198808]
R3 DptfDevGen;DptfDevGen; C:\Windows\system32\DRIVERS\DptfDevGen.sys [2013-09-17 78504]
R3 DptfManager;DptfManager; C:\Windows\system32\DRIVERS\DptfManager.sys [2013-09-17 493240]
R3 GPIO;@oem1.inf,%GPIO.SVCDESC%;Intel SoC GPIO Controller Driver; C:\Windows\System32\drivers\iaiogpioe.sys [2013-11-11 31232]
R3 iaioi2c;@oem2.inf,%Driver_Service.Desc%;I2C Controller Service; C:\Windows\System32\drivers\iaioi2ce.sys [2013-11-11 67584]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2014-05-30 3791872]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2014-07-01 4002008]
R3 IntcDAud;@oem8.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2014-05-30 450520]
R3 iwdbus;@oem11.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\Windows\System32\drivers\iwdbus.sys [2014-05-06 27032]
R3 LMDriver;@oem22.inf,%LMDriver.SVCDESC%;Launch Manager Wireless Driver; C:\Windows\System32\drivers\LMDriver.sys [2013-07-18 21360]
R3 RadioShim;@oem22.inf,%RadioShim.SVCDESC%;Shim for HID-KMDF Interface layer; C:\Windows\System32\drivers\RadioShim.sys [2013-07-18 14680]
R3 RTL8168;@oem12.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\Windows\system32\DRIVERS\Rt630x64.sys [2014-05-08 871640]
R3 SynRMIHID;@oem14.inf,%SynRMIHID.SVCDESC%;Synaptics HID Service; C:\Windows\system32\DRIVERS\SynRMIHID.sys [2014-02-19 42224]
R3 TXEIx64;@oem13.inf,%TEE_SvcDesc%;Intel(R) Trusted Execution Engine Interface ; C:\Windows\System32\drivers\TXEIx64.sys [2014-01-15 88592]
R3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;USB Video Device (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2013-08-22 212224]
R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\Windows\system32\DRIVERS\vwifimp.sys [2014-04-30 38912]
S3 AthBTPort;@oem19.inf,%BTHSUPPORT.SvcDesc%;Qualcomm Atheros Virtual Bluetooth Class; C:\Windows\system32\DRIVERS\btath_flt.sys [2014-02-26 89800]
S3 BCM43XX;@netbc64.inf,%BCM43XX_Service_DispName%;Broadcom 802.11 Network Adapter Driver; C:\Windows\system32\DRIVERS\bcmwl63a.sys [2013-07-01 8536752]
S3 BTATH_A2DP;@oem18.inf,%BTATH_A2DP.SvcDesc%;Bluetooth A2DP Audio Driver; C:\Windows\system32\drivers\btath_a2dp.sys [2014-02-26 355528]
S3 btath_avdt;@oem18.inf,%btath_avdt.SvcDesc%;Qualcomm Atheros Bluetooth AVDT Service; C:\Windows\system32\drivers\btath_avdt.sys [2014-02-26 118984]
S3 BTATH_HCRP;@oem21.inf,%BTATH_HCRP.SvcDesc%;Bluetooth HCRP Server driver; C:\Windows\System32\drivers\btath_hcrp.sys [2014-02-26 179432]
S3 BTATH_LWFLT;@oem23.inf,%BTATH_LWFLT%;Bluetooth LWFLT Device; C:\Windows\system32\DRIVERS\btath_lwflt.sys [2014-02-26 77464]
S3 BTATH_RCP;@oem25.inf,%BTATH_RCP%;Bluetooth AVRCP Device; C:\Windows\System32\drivers\btath_rcp.sys [2014-02-26 137928]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\Windows\System32\drivers\BthEnum.sys [2013-08-22 53248]
S3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\Windows\system32\DRIVERS\BthLEEnum.sys [2014-03-18 226304]
S3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\Windows\System32\drivers\bthpan.sys [2014-07-24 118272]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2014-07-24 1200640]
S3 dg_ssudbus;@oem27.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2014-10-13 110336]
S3 DptfDevDisplay;DptfDevDisplay; C:\Windows\System32\drivers\DptfDevDisplay.sys [2013-09-17 70752]
S3 DptfDevDram;DptfDevDram; C:\Windows\System32\drivers\DptfDevDram.sys [2013-09-17 145640]
S3 DptfDevFan;DptfDevFan; C:\Windows\System32\drivers\DptfDevFan.sys [2013-09-17 50640]
S3 DptfDevPch;DptfDevPch; C:\Windows\System32\drivers\DptfDevPch.sys [2013-09-17 116752]
S3 DptfDevPower;DptfDevPower; C:\Windows\System32\drivers\DptfDevPower.sys [2013-09-17 71808]
S3 intaud_WaveExtensible;@oem10.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\Windows\system32\drivers\intelaud.sys [2014-05-06 38296]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\System32\drivers\rfcomm.sys [2014-03-18 167424]
S3 ssudmdm;@oem28.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2014-10-13 206080]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe [2014-02-26 319104]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-12-26 50344]
R2 CCDMonitorService;CCDMonitorService; C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe [2014-11-17 2709760]
R2 DptfParticipantAcpiProcessorService;@oem6.inf,%WIN32_DPTF_PARTICIPANT_PROC_SERVICE_DISPLAY_NAME%;Intel(R) Dynamic Platform and Thermal Framework Processor Participant Service Application; C:\Windows\system32\DptfParticipantProcessorService.exe [2013-09-17 117704]
R2 DptfPolicyCriticalService;@oem6.inf,%WIN32_DPTF_POLICY_CRITICAL_SERVICE_DISPLAY_NAME%;Intel(R) Dynamic Platform and Thermal Framework Critical Service Application; C:\Windows\system32\DptfPolicyCriticalService.exe [2013-09-17 150760]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\Windows\system32\igfxCUIService.exe [2014-05-30 315352]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe [2013-07-02 733696]
R2 Live Malware Protection;Live Malware Protection; C:\Windows\mlwps.exe [2015-03-11 239104]
R2 LMSvc;Launch Manager Service; C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe [2014-06-10 466664]
R2 PrivoxyService;Privoxy (PrivoxyService); C:\Program Files (x86)\Jelbrus Secure Web\privoxy.exe [2015-03-11 371200]
R2 ss_conn_service;SAMSUNG Mobile Connectivity Service; C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe [2014-10-13 743688]
R3 AvastVBoxSvc;AvastVBox COM Service; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [2014-12-26 4012248]
R3 ePowerSvc;ePower Service; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [2014-06-12 2573032]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2014-03-18 43696]
R3 QASvc;Quick Access Service; C:\Program Files\Acer\Acer Quick Access\QASvc.exe [2014-06-26 458984]
R3 RMSvc;Quick Access RadioMgr Service; C:\Program Files\Acer\Acer Quick Access\RMSvc.exe [2014-06-26 449768]
R3 UEIPSvc;User Experience Improvement Program; C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe [2014-07-15 234240]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2014-05-30 279000]
S3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2012-04-24 169752]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe [2013-07-02 822232]

-----------------EOF-----------------

#2 Příspěvek od **Rudy** » 12 bře 2015 20:52

Zdravím!
Spusťte nejprve tuto utilitu:

Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.

bubakkaja · #3 Příspěvek od **bubakkaja** » 12 bře 2015 21:07

Mi se to podarilo az podruhe,poprve mi to neco vy,yzalo ale ten poznamkovy blok mi vyhodil nejake klikyhaky tak jsem to skusil jeste jedno uz tam nic nebylo a zase klikyhaky ale po vlozeni sem to precist jde.Nicmene reklamy jsou pryc sice i s chromem ale ten jsem stahnul znovu.

# AdwCleaner v4.112 - Logfile created 12/03/2015 at 21:03:05
# Updated 09/03/2015 by Xplode
# Database : 2015-03-05.1 [Server]
# Operating system : Windows 8.1 (x64)
# Username : Vojta - ACERVOJTA
# Running from : C:\Users\Vojta\Downloads\AdwCleaner.exe
# Option : Cleaning

***** [ Services ] *****

***** [ Files / Folders ] *****

***** [ Scheduled tasks ] *****

***** [ Shortcuts ] *****

***** [ Registry ] *****

***** [ Web browsers ] *****

-\\ Internet Explorer v11.0.9600.17416

-\\ Mozilla Firefox v

-\\ Google Chrome v41.0.2272.89

*************************

AdwCleaner[R1].txt - [748 bytes] - [12/03/2015 20:59:16]
AdwCleaner[S1].txt - [676 bytes] - [12/03/2015 21:03:05]

########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [734 bytes] ##########

#4 Příspěvek od **Rudy** » 12 bře 2015 22:23

Toto je OK. Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:

:files
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2460364176-499435987-3049047525-1001Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2460364176-499435987-3049047525-1001UA.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2460364176-499435987-3049047525-1001UA1d008dc35b4c451.job
C:\Users\Vojta\AppData\Roaming\FF44.tmp.exe
C:\Users\Vojta\AppData\Roaming\FF44.tmp
C:\Users\Vojta\AppData\Roaming\F0CD.tmp

:commands
[Purity]
[Emptytemp]
[Emptyflash]

a klikněte na >MoveIt!<. Před skenem vypněte antivir a po něm restartujte PC. Dejte nový log RSIT.

bubakkaja · #5 Příspěvek od **bubakkaja** » 15 bře 2015 13:50

All processes killed
========== FILES ==========
File/Folder C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2460364176-499435987-3049047525-1001Core.job not found.
File/Folder C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2460364176-499435987-3049047525-1001UA.job not found.
File/Folder C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2460364176-499435987-3049047525-1001UA1d008dc35b4c451.job not found.
C:\Users\Vojta\AppData\Roaming\FF44.tmp.exe moved successfully.
C:\Users\Vojta\AppData\Roaming\FF44.tmp moved successfully.
C:\Users\Vojta\AppData\Roaming\F0CD.tmp moved successfully.
========== COMMANDS ==========

[EMPTYTEMP]

User: Administrator

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Public

User: Vojta
->Temp folder emptied: 5802942 bytes
->Temporary Internet Files folder emptied: 15126883 bytes
->FireFox cache emptied: 2770143 bytes
->Google Chrome cache emptied: 373356436 bytes
->Flash cache emptied: 506 bytes

%systemdrive% .tmp files removed: 111104 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 12376502 bytes
RecycleBin emptied: 12533634933 bytes

Total Files Cleaned = 12 344,00 mb

[EMPTYFLASH]

User: Administrator

User: All Users

User: Default

User: Default User

User: Public

User: Vojta
->Flash cache emptied: 0 bytes

Total Flash Files Cleaned = 0,00 mb

OTM by OldTimer - Version 3.1.21.0 log created on 03152015_133045

Files moved on Reboot...
C:\Users\Vojta\AppData\Local\Microsoft\Windows\INetCache\counters.dat moved successfully.
C:\Users\Vojta\AppData\Local\Google\Chrome\User Data\Default\Cache\data_0 moved successfully.
C:\Users\Vojta\AppData\Local\Google\Chrome\User Data\Default\Cache\data_1 moved successfully.
C:\Users\Vojta\AppData\Local\Google\Chrome\User Data\Default\Cache\data_2 moved successfully.
C:\Users\Vojta\AppData\Local\Google\Chrome\User Data\Default\Cache\data_3 moved successfully.
File move failed. C:\Windows\temp\_avast_\AvastLock.txt scheduled to be moved on reboot.

Registry entries deleted on Reboot...

#6 Příspěvek od **Rudy** » 15 bře 2015 17:03

Dejte nový log RSIT.

VIRY.CZ

Pomaly notebook a vyskakujici reklamy

Pomaly notebook a vyskakujici reklamy

Re: Pomaly notebook a vyskakujici reklamy

Re: Pomaly notebook a vyskakujici reklamy

Re: Pomaly notebook a vyskakujici reklamy

Re: Pomaly notebook a vyskakujici reklamy

Re: Pomaly notebook a vyskakujici reklamy