Preventivni kontrola -PC se zpomalil a zasekává se

[KEnik]

Zdravím,
občas se stane že se PC zasekne - obraz se "rozsype" ( pismena na čaj) Nutno PC restartovat nebo se vypne samo.
Ma SSD disk ale v posledni dobe je nejake zpomalene..
Predem diky

Logfile of random's system information tool 1.10 (written by random/random)
Run by PEPE at 2015-04-13 21:12:00
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 46 GB (40%) free of 114 GB
Total RAM: 3327 MB (41% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:12:06, on 13.4.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17689)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files\MyHeritage\Bin\FTBCheckUpdates.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\DAEMON Tools Lite\DTLite.exe
C:\Users\PEPE\AppData\Roaming\Copy\CopyAgent.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files\Opera\Opera.exe
C:\Program Files\TeamViewer\Version9\TeamViewer.exe
C:\Windows\system32\mmc.exe
C:\Program Files\MyPC Backup\MyPC Backup.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Users\PEPE\Downloads\FRST (1).exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\PEPE\Downloads\RSIT.exe
C:\Program Files\trend micro\PEPE.exe
C:\Windows\system32\DllHost.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.seznam.cz/?clid=22668
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.seznam.cz/?sourceid=quick ... earchTerms}
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.seznam.cz/?clid=22668
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.seznam.cz/?clid=22668
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.seznam.cz/?sourceid=quick ... earchTerms}
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.seznam.cz/?clid=22668
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O4 - HKLM\..\Run: [RTHDVCPL] "C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe" -s
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [Family Tree Builder Update] C:\Program Files\MyHeritage\Bin\FTBCheckUpdates.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Copy] "C:\Users\PEPE\AppData\Roaming\Copy\CopyAgent.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [Copy] "C:\Users\PEPE\AppData\Roaming\Copy\CopyAgent.exe" (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [Copy] "C:\Users\PEPE\AppData\Roaming\Copy\CopyAgent.exe" (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')
O4 - Startup: MyPC Backup.lnk = C:\Program Files\MyPC Backup\MyPC Backup.exe
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - (no file)
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - (no file)
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AMD External Events Utility - AMD - C:\Windows\system32\atiesrxx.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Computer Backup (MyPC Backup) (BackupStack) - Just Develop It - C:\Program Files\MyPC Backup\BackupStack.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: PDF Architect 2 - pdfforge GmbH - C:\Program Files\PDF Architect 2\ws.exe
O23 - Service: pdfforge CrashHandler - pdfforge GmbH - C:\Program Files\PDF Architect 2\crash-handler-ws.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: TeamViewer 9 (TeamViewer9) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe
O23 - Service: Util PortalMore - Unknown owner - C:\Program Files\PortalMore\bin\utilPortalMore.exe (file missing)

--
End of file - 6557 bytes

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

=========Mozilla firefox=========

ProfilePath - C:\Users\PEPE\AppData\Roaming\Mozilla\Firefox\Profiles\j7vqoby6.default

"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 16.0.0.305 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_16_0_0_305.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@google.com/npPicasa3,version=3.0.0]
"Description"=Picasa3 plugin
"Path"=C:\Program Files\Google\Picasa3\npPicasa3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.26.9\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.26.9\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\PDF Architect 2]
"Description"=
"Path"=C:\Program Files\PDF Architect 2\np-previewer.dll


C:\Users\PEPE\AppData\Roaming\Mozilla\Firefox\Profiles\j7vqoby6.default\searchplugins\
bingp.xml
Search The Web.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-09-10 457712]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2014-07-14 1709152]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2014-06-30 12021464]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-09-10 4085896]
"Family Tree Builder Update"=C:\Program Files\MyHeritage\Bin\FTBCheckUpdates.exe [2014-05-14 2534400]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2015-01-23 31087200]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]
"Copy"=C:\Users\PEPE\AppData\Roaming\Copy\CopyAgent.exe [2015-03-26 13400208]

C:\Users\PEPE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
MyPC Backup.lnk - C:\Program Files\MyPC Backup\MyPC Backup.exe

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-04-13 21:12:00 ----D---- C:\rsit
2015-04-13 21:12:00 ----D---- C:\Program Files\trend micro
2015-04-04 14:55:35 ----SD---- C:\Windows\system32\GWX
2015-04-04 10:19:26 ----D---- C:\Program Files\Mozilla Firefox
2015-04-03 11:28:32 ----D---- C:\Program Files\Mozilla Thunderbird
2015-03-25 18:56:31 ----A---- C:\Windows\system32\invagent.dll
2015-03-25 18:56:31 ----A---- C:\Windows\system32\generaltel.dll
2015-03-25 18:56:31 ----A---- C:\Windows\system32\devinv.dll
2015-03-25 18:56:31 ----A---- C:\Windows\system32\appraiser.dll
2015-03-25 18:56:31 ----A---- C:\Windows\system32\aepdu.dll
2015-03-25 18:56:31 ----A---- C:\Windows\system32\aeinv.dll
2015-03-25 18:56:31 ----A---- C:\Windows\system32\acmigration.dll
2015-03-25 18:56:30 ----A---- C:\Windows\system32\aepic.dll

======List of files/folders modified in the last 1 month======

2015-04-13 21:12:03 ----D---- C:\Windows\Temp
2015-04-13 21:12:00 ----RD---- C:\Program Files
2015-04-13 21:09:41 ----D---- C:\Windows
2015-04-13 21:09:38 ----D---- C:\FRST
2015-04-13 21:04:13 ----SD---- C:\ProgramData\Microsoft
2015-04-13 20:24:25 ----D---- C:\Users\PEPE\AppData\Roaming\Skype
2015-04-13 20:14:40 ----D---- C:\Windows\system32\Tasks
2015-04-13 20:14:37 ----RSD---- C:\Windows\Fonts
2015-04-13 17:28:21 ----D---- C:\Windows\System32
2015-04-13 17:28:21 ----D---- C:\Windows\inf
2015-04-13 17:28:21 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-04-13 17:24:29 ----D---- C:\Users\PEPE\AppData\Roaming\Copy
2015-04-13 16:55:17 ----D---- C:\Windows\system32\config
2015-04-10 09:08:34 ----SHD---- C:\System Volume Information
2015-04-08 17:56:30 ----D---- C:\Program Files\Opera
2015-04-04 23:04:15 ----D---- C:\Program Files\MyPC Backup
2015-04-04 19:01:21 ----D---- C:\Program Files\Mozilla Maintenance Service
2015-04-04 14:55:37 ----D---- C:\Windows\winsxs
2015-04-04 14:55:36 ----D---- C:\Windows\Logs
2015-04-03 00:52:59 ----D---- C:\Windows\Minidump
2015-03-30 08:58:56 ----D---- C:\Windows\system32\wdi
2015-03-26 04:15:53 ----SD---- C:\Windows\system32\CompatTel
2015-03-26 04:15:53 ----D---- C:\Windows\system32\wbem
2015-03-26 04:15:53 ----D---- C:\Windows\system32\appraiser
2015-03-26 04:15:53 ----D---- C:\Windows\AppPatch
2015-03-17 22:05:15 ----D---- C:\Windows\system32\catroot2

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2014-09-10 49944]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2014-09-10 192352]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R1 {31a2f244-4a67-4367-b593-df9513aea360}Gw;{31a2f244-4a67-4367-b593-df9513aea360}Gw; C:\Windows\system32\drivers\{31a2f244-4a67-4367-b593-df9513aea360}Gw.sys [2014-10-06 43096]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2014-09-10 81768]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2014-11-22 779536]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2014-09-10 414520]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2014-09-19 243128]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2014-09-10 24184]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2014-09-10 67824]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2014-09-10 71944]
R2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
R3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2009-08-18 4994560]
R3 InputFilter_Hid_FlexDef2b;Siliten HID Devices(FlexDef2b) Driver Service; C:\Windows\system32\DRIVERS\InputFilter_FlexDef2b.sys [2010-06-19 14848]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2014-07-15 3125592]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt86win7.sys [2013-11-26 683736]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;Ovladač filtru AMD portu AGP; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888]
S3 sisagp;Filtr SIS sběrnice AGP; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 viaagp;Filtr VIA sběrnice AGP; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-12-19 81088]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2009-08-18 176128]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-09-10 50344]
R2 BackupStack;Computer Backup (MyPC Backup); C:\Program Files\MyPC Backup\BackupStack.exe [2014-11-13 53320]
R2 c2cautoupdatesvc;Skype Click to Call Updater; C:\Program Files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2014-07-14 1390176]
R2 c2cpnrsvc;Skype Click to Call PNR Service; C:\Program Files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2014-07-14 1767520]
R2 TeamViewer9;TeamViewer 9; C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe [2014-09-12 4799760]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-12 103608]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2014-09-10 116648]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2015-01-02 315488]
S2 Util PortalMore;Util PortalMore; C:\Program Files\PortalMore\bin\utilPortalMore.exe []
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-02-05 267440]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2014-09-10 116648]
S3 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2014-08-13 136120]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2015-02-20 102912]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2015-04-04 148080]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PDF Architect 2;PDF Architect 2; C:\Program Files\PDF Architect 2\ws.exe [2014-06-26 1771560]
S3 pdfforge CrashHandler;pdfforge CrashHandler; C:\Program Files\PDF Architect 2\crash-handler-ws.exe [2014-06-26 861736]
S4 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2014-04-12 45744]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]

-----------------EOF-----------------

[altrok]

Zdravim


Odinstalujte

• Skype Click to Call - adware z instalace Skypu http://forum.viry.cz/viewtopic.php?p=1374439#p1374439

V ramci cisteni Vam budou vyprazdneny docasne adresare (vcetne Kose).

Ulozte na plochu AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/ (nebo http://www.bleepingcomputer.com/download/adwcleaner/ )

• ukoncete vsechny programy
• kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
• kliknete na Scan, pote na Cleaning
• po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\AdwCleaner [Sx].txt), jehoz obsah mi zkopirujte do pristi odpovedi

[KEnik]

Zdravím,
díky

nepochopil jsem poznamku o Vysypanem koši..
Mam spustit ccleaner ? Nechtel jsem smazat stopy...

PS: Rad bych vymenil antivirus za nejaky lepší - pro BFU - Co by jste mi doprucil klidne placeny.

Log níže:

# AdwCleaner v4.201 - Log vytvořen 17/04/2015 v 08:45:59
# Aktualizováno 08/04/2015 by Xplode
# Databáze : 2015-04-15.1 [Server]
# Operační system : Windows 7 Home Premium Service Pack 1 (x86)
# Uživatelské jméno : PEPE - PEPE-PC
# Spuštěno z : C:\Users\PEPE\Downloads\adwcleaner_4.201.exe
# Nastavení : Čištění

***** [ Služby ] *****

[#] Služba Smazáno : BackupStack
Služba Smazáno : {31a2f244-4a67-4367-b593-df9513aea360}Gw

***** [ Soubory / Složky ] *****

Složka Smazáno : C:\Program Files\MyPC Backup
Složka Smazáno : C:\Program Files\PortalMore
Složka Smazáno : C:\Users\PEPE\AppData\Local\Temp\PortalMore
Složka Smazáno : C:\Users\PEPE\AppData\Roaming\pdfforge
Složka Smazáno : C:\Users\PEPE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MyPC Backup
Složka Smazáno : C:\Users\PEPE\AppData\Local\Google\Chrome\User Data\Default\Extensions\ncheegbloelpifhkekmpljcbekcmbpig
Soubor Smazáno : C:\Users\PEPE\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ncheegbloelpifhkekmpljcbekcmbpig_0.localstorage
Soubor Smazáno : C:\Users\PEPE\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ncheegbloelpifhkekmpljcbekcmbpig_0.localstorage-journal
Soubor Smazáno : C:\Windows\system32\drivers\{31a2f244-4a67-4367-b593-df9513aea360}Gw.sys
Soubor Smazáno : C:\Users\PEPE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MyPC Backup.lnk
Soubor Smazáno : C:\Users\PEPE\Desktop\Sync Folder.lnk
Soubor Smazáno : C:\Users\PEPE\AppData\Roaming\Mozilla\Firefox\Profiles\j7vqoby6.default\searchplugins\bingp.xml
Soubor Smazáno : C:\Users\PEPE\AppData\Roaming\Mozilla\Firefox\Profiles\j7vqoby6.default\searchplugins\Search The Web.xml
Soubor Smazáno : C:\Users\PEPE\AppData\Roaming\Mozilla\Firefox\Profiles\j7vqoby6.default\user.js
Soubor Smazáno : C:\Users\PEPE\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_allin1convert.dl.tb.ask.com_0.localstorage
Soubor Smazáno : C:\Users\PEPE\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_allin1convert.dl.tb.ask.com_0.localstorage-journal
Soubor Smazáno : C:\Users\PEPE\AppData\Roaming\Opera Software\Opera Stable\Local Storage\hxxp_wlogin.icq.com_0.localstorage
Soubor Smazáno : C:\Users\PEPE\AppData\Roaming\Opera Software\Opera Stable\Local Storage\hxxp_wlogin.icq.com_0.localstorage-journal

***** [ Naplánované úlohy ] *****

Úloha Smazáno : LaunchSignup

***** [ Zástupci ] *****


***** [ Registry ] *****

Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\mypc backup
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{A2D733A7-73B0-4C6B-B0C7-06A432950B66}
Klíč Smazáno : HKCU\Software\performersoft llc
Klíč Smazáno : HKLM\SOFTWARE\PerformerSoft

***** [ Prohlížeče ] *****

-\\ Internet Explorer v11.0.9600.17728


-\\ Mozilla Firefox v37.0.1 (x86 cs)

[j7vqoby6.default\prefs.js] - Řádek Smazáno : user_pref("browser.search.order.1", "Search The Web");

-\\ Google Chrome v41.0.2272.118

[C:\Users\PEPE\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] - Smazáno [Extension] : ncheegbloelpifhkekmpljcbekcmbpig

-\\ Opera v28.0.1750.51


*************************

AdwCleaner[R0].txt - [3708 bytů] - [17/04/2015 08:43:16]
AdwCleaner[S0].txt - [3615 bytů] - [17/04/2015 08:45:59]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [3673 bytů] ##########

[altrok]

V nekterem z dalsich kroku Vam bude vysypan kos (je to jen upozorneni, abyste s tim pocital), protoze se obcas najdou i uzivatele, kteri v kosi skladuji dulezite dokumenty a po vycisteni PC se je slozite snazime obnovovat.

Tatry03 pro Vas primo na forum serviruje posledni srovnavaci testy antiviru. Kazdy Vam na toto da jinou odpoved. Pokud nepujdete do antiviru od Microsoftu (Microsoft Security Essentials nebo na osmickach pak Windows Defender), extremni chybu neudelate. Avast je velice dobra ochrana stejne jako ESET (ceskoslovenska produkce). Pro zajimavost si projedte i vysledky starsich srovnavacich testu, at se muzete sam rozhodnout http://forum.viry.cz/viewtopic.php?p=1387644#p1387644
Ve finale jde o to, ze (jednoduse receno) je vzdy prvne nakaza a az nasledne protilatka. Antiviry pouzivaji i tzv. heuristiku, kdy je pocitac ochranen ikdyz konkretni vzorek malwaru jeste neni ve virove databazi, ale jen se chova podezrele. Antivir Vas take nemuze ochranit pokud zavirovanemu souboru udelite v AV vyjimku a spustite jej (smesne, ale presne toto uzivatele delaji pri crackovani). Zadny antivir Vas 100% neochrani pred vsim, protoze se temer vzdy jedna o chybu mezi monitorem a zidli

Dejte log FRST.txt, prilozte i Addition.txt - http://forum.viry.cz/viewtopic.php?f=30&t=133101

[KEnik]

Díky
-když už jste zmínil udělování vyjímek tak http://vyosek.ic.cz/pro_usery/FRSTLauncher.exe proste nejde stáhnout zablokuje jej jak chrome tak Avast. Asi to je OK ale pro jistotu abych nebyl ten nejslabsi clanek v ertezci nakazy prosím o potvrzení že je soubor v pořádku.

Díky

[altrok]

Tento soubor je vytvorem naseho fora a garantuji jeho neskodnost, takze zde povolit vyjimku muzete