Dobrý den, dneska se mi stalo něco takového poprve. Notebook udelal zvlastni mono zvuk ktery nevychazel z reproduktoru pricemz se mi ztratili veskere pripojeni a nemohlo to najit zadnou sit. Tak sem zkusil vypnout a zapnout Wi-Fi v notebooku a stale nic. Kouknul jsem se na router, ten vubec nesvitil.. jako by ho to vyradilo, tak sem ho vyndal ze zasuvky a zase zapl a stale nic. Po chvilce se zase ozval ten zvuk a Wi-Fi zase najenou nabehla. Je zde moznost prapodivneho viru co mi dela neco se sitovym ovladacem nebo tak neco ???
Logfile of random's system information tool 1.10 (written by random/random)
Run by Jiří at 2015-04-30 09:08:31
Microsoft Windows 8.1
System drive C: has 1171 GB (83%) free of 1412 GB
Total RAM: 8072 MB (67% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 9:08:33, on 30. 4. 2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17416)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files\Acer\Acer Power Management\ePowerWinMonitor.exe
C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe
C:\Users\Jiří\AppData\Roaming\Spotify\SpotifyWebHelper.exe
C:\Users\Jiří\AppData\Local\Microsoft\BingSvc\BingSvc.exe
C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\Acer\abDocs\abDocsDllLoader.exe
C:\Program Files (x86)\Acer\abDocs\abDocsDllLoaderMonitor.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\Jiří\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\NvOAWrapperCache.exe
C:\Windows\syswow64\wwahost.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Jiří.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office12\GR469A~1.DLL
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [Adobe ARM] "c:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [BacKGround Agent] C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [abDocsDllLoader] C:\Program Files (x86)\Acer\abDocs\abDocsDllLoader.exe
O4 - HKCU\..\Run: [AcerPortal] "C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe" startup
O4 - HKCU\..\Run: [Spotify Web Helper] "C:\Users\Jiří\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [BingSvc] C:\Users\Jiří\AppData\Local\Microsoft\BingSvc\BingSvc.exe
O4 - HKLM\..\Policies\Explorer\Run: [BtvStack] "C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe"
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~2\MICROS~1\Office12\GRA32A~1.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - c:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AtherosSvc - Windows (R) Win 7 DDK provider - C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AvastVBox COM Service (AvastVBoxSvc) - Avast Software - C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
O23 - Service: BattlEye Service (BEService) - Unknown owner - C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
O23 - Service: CCDMonitorService - Acer Incorporated - C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: GamesAppIntegrationService - TODO: <Company name> - C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Launch Manager Service (LMSvc) - Acer Incorporate - C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @C:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: Quick Access Service (QASvc) - Acer Incorporate - C:\Program Files\Acer\Acer Quick Access\QASvc.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
O23 - Service: Quick Access RadioMgr Service (RMSvc) - Acer Incorporate - C:\Program Files\Acer\Acer Quick Access\RMSvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: User Experience Improvement Program (UEIPSvc) - acer - C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 10318 bytes
======Listing Processes======
wininit.exe
winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"dwm.exe"
"C:\Windows\system32\nvvsvc.exe"
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"c:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe"
"C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
taskhostex.exe
taskeng.exe {BC3F5E9D-C837-41CA-AC40-2602097766A6}
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
C:\Windows\Explorer.EXE
dashost.exe {8eff9b6d-d882-460e-9595c6633b6db6e6}
"C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe"
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe"
"C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe" "C:\Users\Jiří\AppData\Local\AOP SDK\acer infra\acer\SyncAgent" S-1-5-21-2356023641-892162002-67537662-1002 416 526 "C:\ProgramData\acer\CCD"
"C:\Program Files\Acer\Acer Launch Manager\LMEvent.exe"
\??\C:\Windows\system32\conhost.exe 0x4
"C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe" 68d77ca3-185c-4278-b8c9-ef49b497d3fd 1
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" serviceapp
\??\C:\Windows\system32\conhost.exe 0x4
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
\??\C:\Windows\system32\conhost.exe 0x4
"C:\Program Files\Acer\Acer Quick Access\QASvc.exe"
"C:\Program Files\Acer\Acer Quick Access\QAEvent.exe"
"C:\Program Files\Acer\Acer Launch Manager\LMTray.exe"
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Dolby Digital Plus\ddp.exe" -autostart
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\skydrive.exe -Embedding
"C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe"
"C:\Program Files\Acer\Acer Quick Access\QAMsg.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe"
"C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\ActivateDesktop.exe"
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\system32\igfxsrvc.exe" -Embedding
"C:\Windows\System32\hkcmd.exe"
"C:\Program Files\Acer\Acer Power Management\ePowerTray.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Windows\system32\igfxext.exe" -Embedding
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /FORPCEE4
"C:\Program Files\Acer\Acer Power Management\ePowerWinMonitor.exe"
"C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe" startup
"C:\Users\Jiří\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
"C:\Users\Jiří\AppData\Local\Microsoft\BingSvc\BingSvc.exe"
"C:\Program Files\Acer\Acer Quick Access\RMSvc.exe"
"C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe"
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
"C:\Program Files\Acer\Acer Quick Access\QuickAccess.exe" -hide
"C:\Program Files (x86)\Acer\abDocs\abDocsDllLoader.exe"
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files (x86)\Acer\abDocs\abDocsDllLoaderMonitor.exe"
"C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Nero\Update\NASvc.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Windows\ImmersiveControlPanel\SystemSettings.exe" -ServerName:microsoft.windows.immersivecontrolpanel
"C:\Windows\System32\SettingSyncHost.exe" -Embedding
"C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe"
"C:\Program Files\Acer\User Experience Improvement Program\Plugin\AppMonitor\AppMonitorPlugIn.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="2400.0.792224469\1670185835" --disable-d3d11 --supports-dual-gpus=false --gpu-driver-bug-workarounds=1,6,17,38 --gpu-vendor-id=0x8086 --gpu-device-id=0x0416 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=10.18.10.3355 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="BrowserBlacklist/Enabled/ChromeSuggestions/Mixed/DomRel-Enable/enable/EmbeddedSearch/Group1 dev:pp6 prefetch_results:1 reuse_instant_search_base_page:1/EnhancedBookmarks/Extension (public)/ExtensionContentVerification/Enforce/ExtensionInstallVerification/Bootstrap/GoogleNow/Enable/NewProfileManagement/NewAvatarMenu/PasswordGeneration/Enabled/Prerender/MatchComplete/RememberCertificateErrorDecisions/Default/SafeBrowsingIncidentReportingService/Enabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/group_01/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_06/UMA-Uniformity-Trial-1-Percent/group_87/UMA-Uniformity-Trial-10-Percent/group_06/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_17/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/WebRTC-SupportVP9/Default/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="2400.2.2088495667\401887205" /prefetch:673131151
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Users\Jiří\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\NvOAWrapperCache.exe
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe2_ Global\UsGthrCtrlFltPipeMssGthrPipe2 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 572 576 584 65536 580
"C:\Windows\syswow64\wwahost.exe" -ServerName:App.wwa
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
C:\Windows\WinStore\WSHost.exe -Embedding
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="BrowserBlacklist/Enabled/ChromeSuggestions/Mixed/DomRel-Enable/enable/EmbeddedSearch/Group1 dev:pp6 prefetch_results:1 reuse_instant_search_base_page:1/EnhancedBookmarks/Extension (public)/ExtensionContentVerification/Enforce/ExtensionInstallVerification/Bootstrap/GoogleNow/Enable/NewProfileManagement/NewAvatarMenu/PasswordGeneration/Enabled/Prerender/MatchComplete/RememberCertificateErrorDecisions/Default/SafeBrowsingIncidentReportingService/Enabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/group_01/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_06/UMA-Uniformity-Trial-1-Percent/group_87/UMA-Uniformity-Trial-10-Percent/group_06/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_17/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/WebRTC-SupportVP9/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="2400.9.2130647688\1755977393" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=ppapi --channel="2400.10.888628659\1936701222" --ppapi-flash-args=enable_hw_video_decode=1 --lang=cs --ignored=" --type=renderer " /prefetch:-632637702
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"C:\Users\Jiří\Downloads\RSITx64.exe"
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2acd5e4f-3c38-4f19-ba84-80b27b5a3450}]
YoutubeAdBlocke - C:\Program Files (x86)\YoutubeAdBlocke\w7GzE6lw4W6fJj.x64.dll []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-12-06 705448]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d3565358-b0f7-4980-ad16-f7511be81230}]
BuyNsave - C:\Program Files (x86)\BuyNsave\ozjoJBMYzHfgLx.x64.dll []
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office12\GR469A~1.DLL [2006-10-27 2210608]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-12-06 586968]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2013-11-19 391152]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2013-11-19 771056]
"Persistence"=C:\Windows\system32\igfxpers.exe [2013-11-19 770032]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2013-08-27 13647576]
"RtHDVBg_Dolby"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2013-08-07 1321688]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2015-03-28 2673296]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2015-03-28 1570672]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe [2014-04-29 134784]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"AcerPortal"=C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe [2015-03-18 2541312]
"Spotify Web Helper"=C:\Users\Jiří\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2015-04-19 2018360]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2015-04-17 31283328]
"BingSvc"=C:\Users\Jiří\AppData\Local\Microsoft\BingSvc\BingSvc.exe [2015-04-07 144008]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Adobe ARM"=c:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-09-05 958576]
"BacKGround Agent"=C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe [2015-03-18 66304]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-03-30 5227648]
"GrooveMonitor"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2006-10-27 31016]
"abDocsDllLoader"=C:\Program Files (x86)\Acer\abDocs\abDocsDllLoader.exe [2015-04-16 90880]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe [2014-04-29 134784]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=" "
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2013-11-13 624640]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office12\GR469A~1.DLL [2006-10-27 2210608]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcpltsvc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"EnableLinkedConnections"=1
"DisableTaskMgr"=0
"SoftwareSASGeneration"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoRun"=0
"NoFolderOptions"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2015-04-30 09:08:31 ----D---- C:\rsit
2015-04-23 09:49:00 ----D---- C:\Users\Jiří\AppData\Roaming\Skype
2015-04-23 09:48:54 ----RD---- C:\Program Files (x86)\Skype
2015-04-23 09:48:50 ----D---- C:\ProgramData\Skype
2015-04-14 20:59:07 ----A---- C:\Windows\SYSWOW64\msctf.dll
2015-04-14 20:59:07 ----A---- C:\Windows\system32\msctf.dll
2015-04-14 20:58:40 ----A---- C:\Windows\system32\ntoskrnl.exe
2015-04-14 20:58:39 ----A---- C:\Windows\SYSWOW64\tdh.dll
2015-04-14 20:58:39 ----A---- C:\Windows\SYSWOW64\sechost.dll
2015-04-14 20:58:39 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2015-04-14 20:58:39 ----A---- C:\Windows\system32\wow64.dll
2015-04-14 20:58:39 ----A---- C:\Windows\system32\tracerpt.exe
2015-04-14 20:58:39 ----A---- C:\Windows\system32\tdh.dll
2015-04-14 20:58:39 ----A---- C:\Windows\system32\sechost.dll
2015-04-14 20:58:39 ----A---- C:\Windows\system32\ntdll.dll
2015-04-14 20:58:39 ----A---- C:\Windows\system32\microsoft-windows-system-events.dll
2015-04-14 20:58:38 ----A---- C:\Windows\SYSWOW64\tracerpt.exe
2015-04-14 20:58:38 ----A---- C:\Windows\system32\wow64cpu.dll
2015-04-14 20:58:11 ----A---- C:\Windows\system32\lsm.dll
2015-04-14 20:57:43 ----A---- C:\Windows\SYSWOW64\pku2u.dll
2015-04-14 20:57:43 ----A---- C:\Windows\system32\pku2u.dll
2015-04-14 20:57:27 ----A---- C:\Windows\system32\mshtml.dll
2015-04-14 20:57:23 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-04-14 20:57:21 ----A---- C:\Windows\system32\jscript9.dll
2015-04-14 20:57:20 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-04-14 20:57:20 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-04-14 20:57:20 ----A---- C:\Windows\system32\ieframe.dll
2015-04-14 20:57:19 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-04-14 20:57:19 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-04-14 20:57:19 ----A---- C:\Windows\system32\wininet.dll
2015-04-14 20:57:19 ----A---- C:\Windows\system32\mshtmled.dll
2015-04-14 20:57:19 ----A---- C:\Windows\system32\iertutil.dll
2015-04-14 20:57:19 ----A---- C:\Windows\system32\ie4uinit.exe
2015-04-14 20:57:18 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-04-14 20:57:18 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-04-14 20:57:18 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-04-14 20:57:18 ----A---- C:\Windows\SYSWOW64\jscript.dll
2015-04-14 20:57:18 ----A---- C:\Windows\SYSWOW64\inetcomm.dll
2015-04-14 20:57:18 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2015-04-14 20:57:18 ----A---- C:\Windows\system32\vbscript.dll
2015-04-14 20:57:18 ----A---- C:\Windows\system32\urlmon.dll
2015-04-14 20:57:18 ----A---- C:\Windows\system32\msfeeds.dll
2015-04-14 20:57:18 ----A---- C:\Windows\system32\jscript.dll
2015-04-14 20:57:18 ----A---- C:\Windows\system32\inetcomm.dll
2015-04-14 20:57:18 ----A---- C:\Windows\system32\ieapfltr.dll
2015-04-14 20:56:46 ----A---- C:\Windows\system32\drivers\http.sys
2015-04-14 20:56:18 ----A---- C:\Windows\SYSWOW64\clfsw32.dll
2015-04-14 20:56:18 ----A---- C:\Windows\system32\drivers\clfs.sys
2015-04-14 20:56:18 ----A---- C:\Windows\system32\clfsw32.dll
2015-04-14 20:55:54 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2015-04-14 20:55:54 ----A---- C:\Windows\system32\wucltux.dll
2015-04-14 20:55:54 ----A---- C:\Windows\system32\wuaueng.dll
2015-04-14 20:55:54 ----A---- C:\Windows\system32\wuauclt.exe
2015-04-14 20:55:54 ----A---- C:\Windows\system32\wuapi.dll
2015-04-14 20:55:54 ----A---- C:\Windows\system32\WinSetupUI.dll
2015-04-14 20:55:53 ----A---- C:\Windows\SYSWOW64\wups.dll
2015-04-14 20:55:53 ----A---- C:\Windows\system32\wuwebv.dll
2015-04-14 20:55:53 ----A---- C:\Windows\system32\WUSettingsProvider.dll
2015-04-14 20:55:53 ----A---- C:\Windows\system32\wups2.dll
2015-04-14 20:55:53 ----A---- C:\Windows\system32\wups.dll
2015-04-14 20:55:53 ----A---- C:\Windows\system32\wudriver.dll
2015-04-14 20:55:53 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2015-04-14 20:55:53 ----A---- C:\Windows\system32\storewuauth.dll
2015-04-14 20:55:52 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2015-04-14 20:55:52 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2015-04-14 20:55:52 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2015-04-14 20:55:52 ----A---- C:\Windows\system32\wuapp.exe
2015-04-14 20:55:24 ----A---- C:\Windows\system32\generaltel.dll
2015-04-14 20:55:24 ----A---- C:\Windows\system32\appraiser.dll
2015-04-14 20:55:24 ----A---- C:\Windows\system32\aepdu.dll
2015-04-14 20:55:24 ----A---- C:\Windows\system32\aeinv.dll
2015-04-14 20:55:24 ----A---- C:\Windows\system32\acmigration.dll
2015-04-14 20:55:23 ----A---- C:\Windows\system32\invagent.dll
2015-04-14 20:55:23 ----A---- C:\Windows\system32\devinv.dll
2015-04-13 22:56:37 ----D---- C:\WarThunder
2015-04-04 15:18:28 ----SD---- C:\Windows\SYSWOW64\GWX
2015-04-04 15:18:28 ----SD---- C:\Windows\system32\GWX
======List of files/folders modified in the last 1 month======
2015-04-30 09:08:32 ----D---- C:\Program Files\trend micro
2015-04-30 09:08:24 ----D---- C:\Windows\Prefetch
2015-04-30 09:07:54 ----D---- C:\Windows\Temp
2015-04-30 09:06:29 ----RD---- C:\Windows\System32
2015-04-30 09:06:29 ----D---- C:\Windows\system32\NDF
2015-04-30 09:06:29 ----D---- C:\Windows\Inf
2015-04-30 09:06:29 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-04-30 09:02:50 ----D---- C:\Windows\Logs
2015-04-30 09:02:13 ----D---- C:\Windows\system32\sru
2015-04-30 07:02:26 ----D---- C:\Windows\system32\config
2015-04-30 04:17:49 ----D---- C:\Windows\Microsoft.NET
2015-04-28 23:59:29 ----D---- C:\Users\Jiří\AppData\Roaming\TS3Client
2015-04-28 18:29:29 ----D---- C:\Windows\system32\DriverStore
2015-04-26 17:00:54 ----D---- C:\Users\Jiří\AppData\Roaming\BitTorrent
2015-04-25 03:38:54 ----SHD---- C:\System Volume Information
2015-04-23 09:48:59 ----SHD---- C:\Windows\Installer
2015-04-23 09:48:54 ----RD---- C:\Program Files (x86)
2015-04-23 09:48:54 ----D---- C:\Windows\SysWOW64
2015-04-23 09:48:54 ----D---- C:\Program Files (x86)\Common Files
2015-04-23 09:48:50 ----HD---- C:\ProgramData
2015-04-23 05:56:26 ----D---- C:\Windows\WinSxS
2015-04-23 05:35:02 ----D---- C:\Windows\system32\catroot2
2015-04-22 18:19:14 ----SD---- C:\Users\Jiří\AppData\Roaming\Microsoft
2015-04-20 23:04:46 ----D---- C:\Program Files (x86)\Steam
2015-04-19 10:45:32 ----D---- C:\Users\Jiří\AppData\Roaming\Spotify
2015-04-19 05:39:17 ----D---- C:\Windows\rescache
2015-04-18 11:12:24 ----D---- C:\Windows\system32\en-US
2015-04-18 11:12:24 ----D---- C:\Windows\system32\cs-CZ
2015-04-18 11:12:24 ----D---- C:\Windows\apppatch
2015-04-18 11:12:23 ----D---- C:\Program Files\Internet Explorer
2015-04-18 11:12:22 ----D---- C:\Windows\SYSWOW64\cs-CZ
2015-04-18 11:12:22 ----D---- C:\Windows\system32\drivers
2015-04-18 02:28:40 ----D---- C:\Program Files (x86)\Acer
2015-04-17 12:09:14 ----HD---- C:\Program Files\WindowsApps
2015-04-17 12:09:14 ----D---- C:\Windows\AppReadiness
2015-04-16 13:10:22 ----D---- C:\Windows\CbsTemp
2015-04-15 02:14:55 ----D---- C:\Windows\AppCompat
2015-04-15 02:09:09 ----RSD---- C:\Windows\assembly
2015-04-15 00:17:20 ----D---- C:\Windows\system32\catroot
2015-04-14 21:40:59 ----D---- C:\Windows\system32\MRT
2015-04-14 21:37:53 ----A---- C:\Windows\system32\MRT.exe
2015-04-14 21:35:28 ----SD---- C:\Windows\system32\CompatTel
2015-04-14 21:35:28 ----D---- C:\Windows\system32\appraiser
2015-04-14 20:51:18 ----A---- C:\Windows\system32\wuaext.dll
2015-04-14 19:31:35 ----D---- C:\Program Files (x86)\Hearthstone
2015-04-14 01:24:21 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2015-04-14 00:45:42 ----D---- C:\ProgramData\OEM
2015-04-07 21:30:08 ----D---- C:\Windows\system32\Tasks
2015-04-07 21:29:15 ----HD---- C:\OEM
2015-04-07 10:57:34 ----D---- C:\Program Files (x86)\Battle.net
2015-04-07 03:53:44 ----D---- C:\Program Files (x86)\World of Warcraft
2015-04-05 20:08:55 ----D---- C:\Windows\system32\wbem
2015-04-04 09:53:27 ----D---- C:\Program Files (x86)\Heroes of the Storm
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2014-12-06 65776]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2014-12-06 267632]
R0 BTATH_BUS;@oem17.inf,%BTATH_BUS.SVCDESC%;Qualcomm Atheros Bluetooth Bus; C:\Windows\System32\drivers\btath_bus.sys [2014-04-29 35016]
R0 iaStorA;iaStorA; C:\Windows\System32\drivers\iaStorA.sys [2013-08-07 644968]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2014-12-06 93568]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2014-12-06 1050432]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2014-12-06 436624]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\Windows\system32\DRIVERS\vwififlt.sys [2014-04-30 71680]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2014-12-06 29208]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2014-12-06 83280]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2014-12-06 116728]
R2 VBoxAswDrv;VBoxAsw Support Driver; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [2014-12-06 271752]
R3 athr;@oem16.inf,%ATHR.Service.DispName%;Qualcomm Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athwbx.sys [2014-04-03 3893248]
R3 BtFilter;BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [2014-04-29 599240]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2014-10-29 81920]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2013-11-13 4208640]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2013-08-27 3613528]
R3 iwdbus;@oem8.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\Windows\System32\drivers\iwdbus.sys [2013-10-29 27032]
R3 k57nd60a;@oem13.inf,%SvcDispName%;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\k57nd60a.sys [2013-10-30 458960]
R3 LMDriver;@oem23.inf,%LMDriver.SVCDESC%;Launch Manager Wireless Driver; C:\Windows\System32\drivers\LMDriver.sys [2013-07-17 21360]
R3 MEIx64;@oem11.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [2013-09-04 99288]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2014-12-13 10345280]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2015-03-28 19600]
R3 nvvad_WaveExtensible;@oem34.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2014-11-22 38032]
R3 RadioShim;@oem23.inf,%RadioShim.SVCDESC%;Shim for HID-KMDF Interface layer; C:\Windows\System32\drivers\RadioShim.sys [2013-07-17 14680]
R3 SmbDrvI;SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [2013-10-01 34544]
R3 SynTP;@oem15.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2013-10-01 524528]
R3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;USB Video Device (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2014-06-21 212736]
R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\Windows\system32\DRIVERS\vwifimp.sys [2014-04-30 38912]
S3 AthBTPort;@oem20.inf,%BTHSUPPORT.SvcDesc%;Qualcomm Atheros Virtual Bluetooth Class; C:\Windows\system32\DRIVERS\btath_flt.sys [2014-04-29 89800]
S3 BCM43XX;@netbc64.inf,%BCM43XX_Service_DispName%;Broadcom 802.11 Network Adapter Driver; C:\Windows\system32\DRIVERS\bcmwl63a.sys [2013-07-01 8536752]
S3 BTATH_A2DP;@oem19.inf,%BTATH_A2DP.SvcDesc%;Bluetooth A2DP Audio Driver; C:\Windows\system32\drivers\btath_a2dp.sys [2014-04-29 338120]
S3 btath_avdt;@oem19.inf,%btath_avdt.SvcDesc%;Qualcomm Atheros Bluetooth AVDT Service; C:\Windows\system32\drivers\btath_avdt.sys [2014-04-29 116424]
S3 BTATH_LWFLT;@oem24.inf,%BTATH_LWFLT%;Bluetooth LWFLT Device; C:\Windows\system32\DRIVERS\btath_lwflt.sys [2014-04-29 77464]
S3 BTATH_RCP;@oem26.inf,%BTATH_RCP%;Bluetooth AVRCP Device; C:\Windows\System32\drivers\btath_rcp.sys [2014-04-29 137928]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\Windows\System32\drivers\BthEnum.sys [2014-10-29 53248]
S3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\Windows\system32\DRIVERS\BthLEEnum.sys [2014-03-18 226304]
S3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\Windows\System32\drivers\bthpan.sys [2014-07-24 118272]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2014-10-29 1198080]
S3 intaud_WaveExtensible;@oem7.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\Windows\system32\drivers\intelaud.sys [2013-10-29 39320]
S3 IntcDAud;@oem5.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2013-11-13 449496]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\System32\drivers\rfcomm.sys [2015-01-30 167424]
S3 RSPCIESTOR;@oem10.inf,%Rts5208%;Realtek PCIE CardReader Driver; C:\Windows\system32\DRIVERS\RtsPStor.sys [2013-12-13 356056]
S3 usbscan;@sti.inf,%usbscan.SvcDesc%;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2014-10-29 44544]
S3 WDC_SAM;@oem35.inf,%WDC_SAM_ServiceName%;WD SCSI Pass Thru driver; C:\Windows\System32\drivers\wdcsam64.sys [2015-01-27 14464]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; c:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-09-05 65640]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe [2014-04-29 319104]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-12-06 50344]
R2 CCDMonitorService;CCDMonitorService; C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe [2015-03-18 2749696]
R2 GamesAppIntegrationService;GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [2013-07-16 235008]
R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2015-03-28 1152144]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-05-12 733696]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2013-09-04 169432]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2013-09-04 390616]
R2 LMSvc;Launch Manager Service; C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe [2014-03-17 459496]
R2 NAUpdate;@C:\Program Files (x86)\Nero\Update\NASvc.exe,-200; C:\Program Files (x86)\Nero\Update\NASvc.exe [2012-07-14 769432]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2015-03-28 1878672]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2015-03-28 22995600]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2014-12-13 935240]
R2 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [2012-04-24 254512]
R3 ePowerSvc;ePower Service; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [2014-03-21 2573544]
R3 QASvc;Quick Access Service; C:\Program Files\Acer\Acer Quick Access\QASvc.exe [2014-04-28 457960]
R3 RMSvc;Quick Access RadioMgr Service; C:\Program Files\Acer\Acer Quick Access\RMSvc.exe [2014-04-28 449768]
R3 UEIPSvc;User Experience Improvement Program; C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe [2014-01-25 222952]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-12-01 107912]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-02-18 315488]
S3 AvastVBoxSvc;AvastVBox COM Service; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [2014-12-06 4012248]
S3 BEService;BattlEye Service; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [2014-12-23 448384]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\Windows\System32\svchost.exe [2014-10-29 38792]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2013-11-19 279024]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2014-03-18 43696]
S3 GamesAppService;GamesAppService; C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-12-01 107912]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-05-12 822232]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2006-10-27 65824]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2015-04-09 836288]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Vir ???
Moderátor: Moderátoři
Pravidla fóra
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
Re: Vir ???
Krasny den Vam preju 
Zavirovano mate, ale jiz delsi dobu, tak uvidime.
Start -> spustit -> eventvwr, vlevo rozkliknete Protokoly systemu Windows, pravej klik na System, vyberte Ulozit vsechny udalosti jako, typ souboru *.evtx, vysledny soubor zabalte a upnete na leteckou postu - link (odkaz na stazeni) dejte do pristi odpovedi.
V ramci cisteni Vam budou vyprazdneny docasne adresare (vcetne Kose).
Ulozte na plochu AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/ (nebo http://www.bleepingcomputer.com/download/adwcleaner/ )
Zavirovano mate, ale jiz delsi dobu, tak uvidime. Start -> spustit -> eventvwr, vlevo rozkliknete Protokoly systemu Windows, pravej klik na System, vyberte Ulozit vsechny udalosti jako, typ souboru *.evtx, vysledny soubor zabalte a upnete na leteckou postu - link (odkaz na stazeni) dejte do pristi odpovedi. V ramci cisteni Vam budou vyprazdneny docasne adresare (vcetne Kose). Ulozte na plochu AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/ (nebo http://www.bleepingcomputer.com/download/adwcleaner/ )
- ukoncete vsechny programy
- kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
- kliknete na Scan, pote na Cleaning
- po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\AdwCleaner [Sx].txt), jehoz obsah mi zkopirujte do pristi odpovedi
Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
Re: Vir ???
dekuju velmi za rychlou odpoved, snad se podari. zatim tedy prikladam soubor z letecke posty
http://leteckaposta.cz/414789852
EDIT: uz i s logem
# AdwCleaner v4.202 - Log vytvořen 30/04/2015 v 09:47:51
# Aktualizováno 23/04/2015 by Xplode
# Databáze : 2015-04-27.1 [Server]
# Operační system : Windows 8.1 (x64)
# Uživatelské jméno : Jiří - JURA
# Spuštěno z : C:\Users\Jiří\Desktop\adwcleaner_4.202.exe
# Nastavení : Čištění
***** [ Služby ] *****
***** [ Soubory / Složky ] *****
Složka Smazáno : C:\Users\Jiří\AppData\Local\pokki
Složka Smazáno : C:\Users\Jiří\AppData\Local\Google\Chrome\User Data\Default\Extensions\fcfenmboojpjinhpgggodefccipikbpd
Soubor Smazáno : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pokki Start Menu.lnk
Soubor Smazáno : C:\Users\Jiří\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pokki Start Menu.lnk
***** [ Naplánované úlohy ] *****
***** [ Zástupci ] *****
***** [ Registry ] *****
Klíč Smazáno : HKCU\Software\Google\Chrome\Extensions\fcfenmboojpjinhpgggodefccipikbpd
Klíč Smazáno : HKCU\Software\Classes\AllFileSystemObjects\shell\pokki
Klíč Smazáno : HKCU\Software\Classes\Directory\shell\pokki
Klíč Smazáno : HKCU\Software\Classes\Drive\shell\pokki
Klíč Smazáno : HKCU\Software\Classes\lnkfile\shell\pokki
Klíč Smazáno : HKCU\Software\Conduit
Klíč Smazáno : HKCU\Software\Local AppWizard-Generated Applications
Klíč Smazáno : HKU\.DEFAULT\Software\Local AppWizard-Generated Applications
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Pokki_Start_Menu
***** [ Prohlížeče ] *****
-\\ Internet Explorer v11.0.9600.17416
-\\ Google Chrome v39.0.2171.71
[C:\Users\Jiří\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Smazáno [Search Provider] : hxxp://websearch.ask.com/redirect?client=cr&src=kw&tb=HIP&o=102876&locale=en_EU&apn_uid=1a02e24b-46d0-469a-84b8-9cb8d350a216&apn_ptnrs=6G&apn_sauid=6834F733-3CC2-4075-BB59-F70C9FE0659F&apn_dtid=YYYYYYYYCZ&q={searchTerms}
[C:\Users\Jiří\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Smazáno [Search Provider] : hxxp://www.mystartsearch.com/web/?type=ds&ts=1 ... earchTerms}
[C:\Users\Jiří\AppData\Local\Google\Chrome\User Data\Default\Preferences] - Smazáno [Extension] : fcfenmboojpjinhpgggodefccipikbpd
[C:\Users\Jiří\AppData\Local\Google\Chrome\User Data\Default\Preferences] - Smazáno [Default_Search_Provider_Data] : {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:bookmarkBarPinned}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}{google:contextualSearchVersion}ie={inputEncoding}",
"usage_count": 0
}
},
"distribution": {
"make_chrome_default_for_user": true
},
"dns_prefetching": {
"host_referral_list": [ 2, [ "hxxp://1.www.s81c.com/", [ "hxxp://1.www.s81c.com/", 1.5474686540845115 ] ], [ "hxxp://4228414.fls.doubleclick.net/", [ "hxxp://4479628.fls.doubleclick.net/", 0.32023119715016224, "hxxp://4479830.fls.doubleclick.net/", 0.32023119715016224 ] ], [ "hxxp://4gifme.com/", [ "hxxp://4gifme.com/", 26.03895377694583, "hxxp://connect.facebook.net/", 0.8818921415736707, "hxxp://pagead2.googlesyndication.com/", 1.697583449642505, "hxxp://static.ak.facebook.com/", 1.697583449642505, "hxxp://stats.g.doubleclick.net/", 1.697583449642505, "hxxp://toplist.cz/", 0.8818921415736707, "hxxp://www.facebook.com/", 0.8818921415736707, "hxxps://s-static.ak.facebook.com/", 0.8818921415736707, "hxxps://www.facebook.com/", 2.51327475771134 ] ], [ "hxxp://666.marvinet.cz/", [ "hxxp://666.marvinet.cz/", 42.05896344012343, "hxxp://fc06.deviantart.net/", 0.26175903898383773, "hxxp://fonts.googleapis.com/", 0.5003333041318031, "hxxp://status.icq.com/
*************************
AdwCleaner[R0].txt - [8264 bytů] - [25/02/2015 14:14:31]
AdwCleaner[R1].txt - [4218 bytů] - [30/04/2015 09:46:40]
AdwCleaner[S0].txt - [6945 bytů] - [25/02/2015 14:15:55]
AdwCleaner[S1].txt - [4005 bytů] - [30/04/2015 09:47:51]
########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [4063 bytů] ##########
http://leteckaposta.cz/414789852
EDIT: uz i s logem
# AdwCleaner v4.202 - Log vytvořen 30/04/2015 v 09:47:51
# Aktualizováno 23/04/2015 by Xplode
# Databáze : 2015-04-27.1 [Server]
# Operační system : Windows 8.1 (x64)
# Uživatelské jméno : Jiří - JURA
# Spuštěno z : C:\Users\Jiří\Desktop\adwcleaner_4.202.exe
# Nastavení : Čištění
***** [ Služby ] *****
***** [ Soubory / Složky ] *****
Složka Smazáno : C:\Users\Jiří\AppData\Local\pokki
Složka Smazáno : C:\Users\Jiří\AppData\Local\Google\Chrome\User Data\Default\Extensions\fcfenmboojpjinhpgggodefccipikbpd
Soubor Smazáno : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pokki Start Menu.lnk
Soubor Smazáno : C:\Users\Jiří\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pokki Start Menu.lnk
***** [ Naplánované úlohy ] *****
***** [ Zástupci ] *****
***** [ Registry ] *****
Klíč Smazáno : HKCU\Software\Google\Chrome\Extensions\fcfenmboojpjinhpgggodefccipikbpd
Klíč Smazáno : HKCU\Software\Classes\AllFileSystemObjects\shell\pokki
Klíč Smazáno : HKCU\Software\Classes\Directory\shell\pokki
Klíč Smazáno : HKCU\Software\Classes\Drive\shell\pokki
Klíč Smazáno : HKCU\Software\Classes\lnkfile\shell\pokki
Klíč Smazáno : HKCU\Software\Conduit
Klíč Smazáno : HKCU\Software\Local AppWizard-Generated Applications
Klíč Smazáno : HKU\.DEFAULT\Software\Local AppWizard-Generated Applications
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Pokki_Start_Menu
***** [ Prohlížeče ] *****
-\\ Internet Explorer v11.0.9600.17416
-\\ Google Chrome v39.0.2171.71
[C:\Users\Jiří\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Smazáno [Search Provider] : hxxp://websearch.ask.com/redirect?client=cr&src=kw&tb=HIP&o=102876&locale=en_EU&apn_uid=1a02e24b-46d0-469a-84b8-9cb8d350a216&apn_ptnrs=6G&apn_sauid=6834F733-3CC2-4075-BB59-F70C9FE0659F&apn_dtid=YYYYYYYYCZ&q={searchTerms}
[C:\Users\Jiří\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Smazáno [Search Provider] : hxxp://www.mystartsearch.com/web/?type=ds&ts=1 ... earchTerms}
[C:\Users\Jiří\AppData\Local\Google\Chrome\User Data\Default\Preferences] - Smazáno [Extension] : fcfenmboojpjinhpgggodefccipikbpd
[C:\Users\Jiří\AppData\Local\Google\Chrome\User Data\Default\Preferences] - Smazáno [Default_Search_Provider_Data] : {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:bookmarkBarPinned}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}{google:contextualSearchVersion}ie={inputEncoding}",
"usage_count": 0
}
},
"distribution": {
"make_chrome_default_for_user": true
},
"dns_prefetching": {
"host_referral_list": [ 2, [ "hxxp://1.www.s81c.com/", [ "hxxp://1.www.s81c.com/", 1.5474686540845115 ] ], [ "hxxp://4228414.fls.doubleclick.net/", [ "hxxp://4479628.fls.doubleclick.net/", 0.32023119715016224, "hxxp://4479830.fls.doubleclick.net/", 0.32023119715016224 ] ], [ "hxxp://4gifme.com/", [ "hxxp://4gifme.com/", 26.03895377694583, "hxxp://connect.facebook.net/", 0.8818921415736707, "hxxp://pagead2.googlesyndication.com/", 1.697583449642505, "hxxp://static.ak.facebook.com/", 1.697583449642505, "hxxp://stats.g.doubleclick.net/", 1.697583449642505, "hxxp://toplist.cz/", 0.8818921415736707, "hxxp://www.facebook.com/", 0.8818921415736707, "hxxps://s-static.ak.facebook.com/", 0.8818921415736707, "hxxps://www.facebook.com/", 2.51327475771134 ] ], [ "hxxp://666.marvinet.cz/", [ "hxxp://666.marvinet.cz/", 42.05896344012343, "hxxp://fc06.deviantart.net/", 0.26175903898383773, "hxxp://fonts.googleapis.com/", 0.5003333041318031, "hxxp://status.icq.com/
*************************
AdwCleaner[R0].txt - [8264 bytů] - [25/02/2015 14:14:31]
AdwCleaner[R1].txt - [4218 bytů] - [30/04/2015 09:46:40]
AdwCleaner[S0].txt - [6945 bytů] - [25/02/2015 14:15:55]
AdwCleaner[S1].txt - [4005 bytů] - [30/04/2015 09:47:51]
########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [4063 bytů] ##########
Re: Vir ???
Dejte log FRST.txt, prilozte i Addition.txt - http://forum.viry.cz/viewtopic.php?f=30&t=133101Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
Re: Vir ???
Poprosil jsem jeste kolegu o soucinnost ohledne popisovaneho zvuku a vypadku internetoveho pripojeni. Ted docistime zbytky po haveti. Velikost plochy by nemela presahovat 200 MB. Zpomaluje se pak start i samotny chod celeho PC.- Do Poznamkoveho bloku (Start -> spustit -> notepad) zkopirujte obsah bileho pole
- ulozte na plochu jako fixlist (Typ souboru: Textovy dokument)
- znovu spustte FRST a kliknete na Fix
- po restartu bude na plose ulozen fixlog, jehoz obsah mi vlozte do pristi odpovedi
Kód: Vybrat vše
Start CloseProcesses: HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2673296 2015-03-28] (NVIDIA Corporation) HKLM-x32\...\Run: [Adobe ARM] => c:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-09-05] (Adobe Systems Incorporated) HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation) HKLM\...\Policies\Explorer: [NoFolderOptions] 0 HKLM\...\Policies\Explorer: [NoControlPanel] 0 CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = BHO: YoutubeAdBlocke -> {2acd5e4f-3c38-4f19-ba84-80b27b5a3450} -> C:\Program Files (x86)\YoutubeAdBlocke\w7GzE6lw4W6fJj.x64.dll No File C:\Program Files (x86)\YoutubeAdBlocke BHO: BuyNsave -> {d3565358-b0f7-4980-ad16-f7511be81230} -> C:\Program Files (x86)\BuyNsave\ozjoJBMYzHfgLx.x64.dll No File C:\Program Files (x86)\BuyNsave CHR DefaultSearchKeyword: Default -> B6152A0890A001C0B50BE4EC014499551A95396F0030E94B8E58045378CE24A3 CHR DefaultSearchURL: Default -> 55B00790C6A4633E816A49C66FAEC1D8571A2FFA42C3A52FF924457EE7B8AABB 2015-04-30 10:17 - 2015-04-30 10:17 - 00112640 _____ (forum.viry.cz) C:\Users\Jiří\Downloads\Nepotvrzeno 899310.crdownload 2015-04-30 10:17 - 2015-04-30 10:17 - 00112640 _____ (forum.viry.cz) C:\Users\Jiří\Desktop\FRSTLauncher.exe 2015-04-30 09:45 - 2015-04-30 09:45 - 02224640 _____ () C:\Users\Jiří\Desktop\adwcleaner_4.202.exe 2015-04-30 09:43 - 2015-04-30 09:43 - 05312512 _____ () C:\Users\Jiří\Desktop\soubory.evtx 2015-04-30 09:43 - 2015-04-30 09:43 - 00733404 _____ () C:\Users\Jiří\Desktop\soubory.zip 2015-04-30 09:08 - 2015-04-30 09:08 - 00000000 ____D () C:\rsit 2015-04-30 09:48 - 2015-02-25 14:14 - 00000000 ____D () C:\AdwCleaner 2015-04-30 09:08 - 2015-02-25 13:33 - 00000000 ____D () C:\Program Files\trend micro 2014-07-25 22:12 - 2014-07-25 22:12 - 0000000 ____H () C:\ProgramData\DP45977C.lfl CMD: dir "C:\PROGRA~1" CMD: dir "C:\PROGRA~2" CMD: dir "C:\PROGRA~3" CMD: dir "%localappdata%" CMD: dir "%appdata%" EmptyTemp: End
Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
Re: Vir ???
Abych jeste trochu popsal ten zvuk, znelo to jako vyzvaneni starych mobilnich telefonu. Nebo bych to mohl jeste prirovnat k memu staremu notebooku, ktery vydal stejny zvuk pri pripojení napájení.
Hlavne dekuju nejvic za bleskovou pomoc, snad uz je vse OK. Jen jestli se muzu zeptat byl to nejaky vážný vir pripadne co zpusoboval ??
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 29-04-2015 01
Ran by Jiří at 2015-04-30 10:44:46 Run:1
Running from C:\Users\Jiří\Desktop
Loaded Profiles: Jiří (Available profiles: Jiří)
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
Start
CloseProcesses:
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2673296 2015-03-28] (NVIDIA Corporation)
HKLM-x32\...\Run: [Adobe ARM] => c:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-09-05] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation)
HKLM\...\Policies\Explorer: [NoFolderOptions] 0
HKLM\...\Policies\Explorer: [NoControlPanel] 0
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: YoutubeAdBlocke -> {2acd5e4f-3c38-4f19-ba84-80b27b5a3450} -> C:\Program Files (x86)\YoutubeAdBlocke\w7GzE6lw4W6fJj.x64.dll No File
C:\Program Files (x86)\YoutubeAdBlocke
BHO: BuyNsave -> {d3565358-b0f7-4980-ad16-f7511be81230} -> C:\Program Files (x86)\BuyNsave\ozjoJBMYzHfgLx.x64.dll No File
C:\Program Files (x86)\BuyNsave
CHR DefaultSearchKeyword: Default -> B6152A0890A001C0B50BE4EC014499551A95396F0030E94B8E58045378CE24A3
CHR DefaultSearchURL: Default -> 55B00790C6A4633E816A49C66FAEC1D8571A2FFA42C3A52FF924457EE7B8AABB
2015-04-30 10:17 - 2015-04-30 10:17 - 00112640 _____ (forum.viry.cz) C:\Users\Jiří\Downloads\Nepotvrzeno 899310.crdownload
2015-04-30 10:17 - 2015-04-30 10:17 - 00112640 _____ (forum.viry.cz) C:\Users\Jiří\Desktop\FRSTLauncher.exe
2015-04-30 09:45 - 2015-04-30 09:45 - 02224640 _____ () C:\Users\Jiří\Desktop\adwcleaner_4.202.exe
2015-04-30 09:43 - 2015-04-30 09:43 - 05312512 _____ () C:\Users\Jiří\Desktop\soubory.evtx
2015-04-30 09:43 - 2015-04-30 09:43 - 00733404 _____ () C:\Users\Jiří\Desktop\soubory.zip
2015-04-30 09:08 - 2015-04-30 09:08 - 00000000 ____D () C:\rsit
2015-04-30 09:48 - 2015-02-25 14:14 - 00000000 ____D () C:\AdwCleaner
2015-04-30 09:08 - 2015-02-25 13:33 - 00000000 ____D () C:\Program Files\trend micro
2014-07-25 22:12 - 2014-07-25 22:12 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
CMD: dir "C:\PROGRA~1"
CMD: dir "C:\PROGRA~2"
CMD: dir "C:\PROGRA~3"
CMD: dir "%localappdata%"
CMD: dir "%appdata%"
EmptyTemp:
End
*****************
Processes closed successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\NvBackend => value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Adobe ARM => value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\GrooveMonitor => value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\NoFolderOptions => value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\NoControlPanel => value deleted successfully.
"HKLM\SOFTWARE\Policies\Google" => Key deleted successfully.
HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2acd5e4f-3c38-4f19-ba84-80b27b5a3450}" => Key deleted successfully.
"HKCR\CLSID\{2acd5e4f-3c38-4f19-ba84-80b27b5a3450}" => Key deleted successfully.
"C:\Program Files (x86)\YoutubeAdBlocke" => File/Directory not found.
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d3565358-b0f7-4980-ad16-f7511be81230}" => Key deleted successfully.
"HKCR\CLSID\{d3565358-b0f7-4980-ad16-f7511be81230}" => Key deleted successfully.
"C:\Program Files (x86)\BuyNsave" => File/Directory not found.
Chrome DefaultSearchKeyword not detected.
Chrome DefaultSearchURL not detected.
C:\Users\Jiří\Downloads\Nepotvrzeno 899310.crdownload => Moved successfully.
"C:\Users\Jiří\Desktop\FRSTLauncher.exe" => File/Directory not found.
C:\Users\Jiří\Desktop\adwcleaner_4.202.exe => Moved successfully.
C:\Users\Jiří\Desktop\soubory.evtx => Moved successfully.
C:\Users\Jiří\Desktop\soubory.zip => Moved successfully.
C:\rsit => Moved successfully.
C:\AdwCleaner => Moved successfully.
C:\Program Files\trend micro => Moved successfully.
Could not move "C:\ProgramData\DP45977C.lfl" => Scheduled to move on reboot.
========= dir "C:\PROGRA~1" =========
Volume in drive C is Acer
Volume Serial Number is E4B7-193F
Directory of C:\PROGRA~1
30. 04. 2015 10:44 <DIR> .
30. 04. 2015 10:44 <DIR> ..
25. 07. 2014 22:41 <DIR> Acer
06. 12. 2014 05:35 <DIR> AVAST Software
25. 07. 2014 22:28 <DIR> Booking.COM
25. 07. 2014 22:13 <DIR> Broadcom
06. 12. 2014 05:30 <DIR> Common Files
25. 07. 2014 22:12 <DIR> Dolby Digital Plus
25. 07. 2014 22:10 <DIR> Intel
18. 04. 2015 11:12 <DIR> Internet Explorer
21. 01. 2015 17:26 <DIR> Microsoft Office
11. 06. 2014 10:07 <DIR> MSBuild
24. 12. 2014 13:49 <DIR> NVIDIA Corporation
25. 07. 2014 22:12 <DIR> Realtek
11. 06. 2014 10:07 <DIR> Reference Assemblies
25. 07. 2014 22:14 <DIR> Synaptics
13. 12. 2014 03:14 <DIR> TeamSpeak 3 Client
14. 03. 2015 12:03 <DIR> Windows Defender
14. 03. 2015 12:06 <DIR> Windows Journal
14. 03. 2015 12:06 <DIR> Windows Mail
14. 03. 2015 12:06 <DIR> Windows Media Player
14. 03. 2015 12:06 <DIR> Windows Multimedia Platform
22. 08. 2013 17:36 <DIR> Windows NT
14. 03. 2015 12:06 <DIR> Windows Photo Viewer
14. 03. 2015 12:06 <DIR> Windows Portable Devices
14. 03. 2015 12:03 <DIR> WindowsPowerShell
0 File(s) 0 bytes
26 Dir(s) 1�227�338�551�296 bytes free
========= End of CMD: =========
========= dir "C:\PROGRA~2" =========
Volume in drive C is Acer
Volume Serial Number is E4B7-193F
Directory of C:\PROGRA~2
23. 04. 2015 09:48 <DIR> .
23. 04. 2015 09:48 <DIR> ..
18. 04. 2015 02:28 <DIR> Acer
11. 06. 2014 10:25 <DIR> Adobe
24. 12. 2014 13:50 <DIR> AGEIA Technologies
07. 04. 2015 10:57 <DIR> Battle.net
23. 04. 2015 09:48 <DIR> Common Files
25. 07. 2014 22:40 <DIR> CyberLink
05. 12. 2014 20:36 <DIR> dotEPUB
01. 12. 2014 15:30 <DIR> Google
14. 04. 2015 19:31 <DIR> Hearthstone
04. 04. 2015 09:53 <DIR> Heroes of the Storm
25. 07. 2014 22:10 <DIR> Intel
14. 03. 2015 12:03 <DIR> Internet Explorer
21. 01. 2015 17:29 <DIR> Microsoft Office
21. 01. 2015 17:29 <DIR> Microsoft Visual Studio
21. 01. 2015 17:26 <DIR> Microsoft Visual Studio 8
21. 01. 2015 17:29 <DIR> Microsoft Works
21. 01. 2015 17:28 <DIR> Microsoft.NET
21. 01. 2015 17:29 <DIR> MSBuild
11. 06. 2014 10:24 <DIR> Nero
24. 12. 2014 13:50 <DIR> NVIDIA Corporation
25. 07. 2014 22:19 <DIR> Qualcomm Atheros
25. 07. 2014 22:11 <DIR> Realtek
11. 06. 2014 10:07 <DIR> Reference Assemblies
23. 04. 2015 09:48 <DIR> Skype
25. 07. 2014 22:35 <DIR> Spotify
20. 04. 2015 23:04 <DIR> Steam
01. 12. 2014 22:56 <DIR> Webteh
11. 06. 2014 10:21 <DIR> WildGames
11. 06. 2014 10:22 <DIR> WildTangent Games
14. 03. 2015 12:03 <DIR> Windows Defender
14. 03. 2015 12:03 <DIR> Windows Mail
14. 03. 2015 12:03 <DIR> Windows Media Player
14. 03. 2015 12:03 <DIR> Windows Multimedia Platform
22. 08. 2013 17:36 <DIR> Windows NT
14. 03. 2015 12:03 <DIR> Windows Photo Viewer
14. 03. 2015 12:03 <DIR> Windows Portable Devices
22. 08. 2013 17:36 <DIR> WindowsPowerShell
07. 04. 2015 03:53 <DIR> World of Warcraft
0 File(s) 0 bytes
40 Dir(s) 1�227�338�555�392 bytes free
========= End of CMD: =========
========= dir "C:\PROGRA~3" =========
Volume in drive C is Acer
Volume Serial Number is E4B7-193F
Directory of C:\PROGRA~3
16. 03. 2015 13:31 <DIR> 3872871776
25. 07. 2014 22:42 <DIR> Acer
11. 06. 2014 10:25 <DIR> Adobe
25. 07. 2014 22:26 <DIR> Atheros
06. 12. 2014 05:35 <DIR> AVAST Software
01. 12. 2014 15:48 <DIR> Battle.net
27. 02. 2015 03:11 <DIR> Blizzard Entertainment
25. 07. 2014 22:40 <DIR> CLSK
01. 12. 2014 15:41 <DIR> CyberLink
25. 07. 2014 22:12 0 DP45977C.lfl
25. 07. 2014 22:40 <DIR> install_clap
25. 07. 2014 22:06 <DIR> Intel
06. 12. 2014 05:30 <DIR> McAfee
21. 01. 2015 17:31 <DIR> Microsoft Help
11. 06. 2014 10:24 <DIR> Nero
24. 12. 2014 13:49 <DIR> NVIDIA
24. 12. 2014 13:49 <DIR> NVIDIA Corporation
14. 04. 2015 00:45 <DIR> OEM
25. 07. 2014 22:16 <DIR> Qualcomm Atheros
14. 03. 2015 12:03 <DIR> regid.1991-06.com.microsoft
01. 12. 2014 16:47 <DIR> Riot Games
23. 04. 2015 09:48 <DIR> Skype
01. 12. 2014 15:27 <DIR> Synaptics
25. 07. 2014 22:39 <DIR> Temp
11. 06. 2014 10:22 <DIR> WildTangent
25. 07. 2014 22:16 <DIR> {69533018-33A8-4C46-869A-11AA2CDF4EDC}
1 File(s) 0 bytes
25 Dir(s) 1�227�338�555�392 bytes free
========= End of CMD: =========
========= dir "%localappdata%" =========
Volume in drive C is Acer
Volume Serial Number is E4B7-193F
Directory of C:\Users\Ji��\AppData\Local
30. 04. 2015 10:22 <DIR> .
30. 04. 2015 10:22 <DIR> ..
01. 12. 2014 15:29 <DIR> acer
01. 12. 2014 17:50 <DIR> Acer Aspire R7 Tutorial
28. 12. 2014 13:57 <DIR> Adobe
01. 12. 2014 15:27 <DIR> AOP SDK
01. 12. 2014 15:30 <DIR> Apps
30. 04. 2015 08:53 <DIR> Battle.net
20. 01. 2015 16:06 <DIR> Blizzard
01. 12. 2014 15:49 <DIR> Blizzard Entertainment
05. 04. 2015 20:07 <DIR> BMExplorer
30. 04. 2015 09:07 <DIR> clear.fi
28. 04. 2015 18:21 <DIR> CrashDumps
01. 12. 2014 15:40 <DIR> Cyberlink
24. 12. 2014 02:30 <DIR> DayZ
18. 03. 2015 12:57 <DIR> Deployment
30. 04. 2015 09:06 <DIR> Diagnostics
15. 04. 2015 21:09 127�568 GDIPFONTCACHEV1.DAT
01. 12. 2014 15:31 <DIR> Google
01. 12. 2014 17:36 <DIR> iGware
30. 04. 2015 09:42 <DIR> Microsoft
21. 01. 2015 17:25 <DIR> Microsoft Help
13. 12. 2014 23:40 <DIR> NVIDIA
24. 12. 2014 00:17 <DIR> NVIDIA Corporation
01. 12. 2014 15:22 <DIR> OEM
01. 12. 2014 19:53 <DIR> Packages
13. 04. 2015 22:56 <DIR> Programs
23. 04. 2015 09:49 <DIR> Skype
19. 04. 2015 10:46 <DIR> Spotify
30. 03. 2015 17:40 <DIR> Steam
30. 04. 2015 10:44 <DIR> Temp
01. 12. 2014 15:22 <DIR> VirtualStore
1 File(s) 127�568 bytes
31 Dir(s) 1�227�338�551�296 bytes free
========= End of CMD: =========
========= dir "%appdata%" =========
Volume in drive C is Acer
Volume Serial Number is E4B7-193F
Directory of C:\Users\Ji��\AppData\Roaming
23. 04. 2015 09:49 <DIR> .
23. 04. 2015 09:49 <DIR> ..
28. 12. 2014 13:57 <DIR> Adobe
01. 12. 2014 15:23 <DIR> Atheros
06. 12. 2014 05:36 <DIR> AVAST Software
01. 12. 2014 15:50 <DIR> Battle.net
26. 04. 2015 17:00 <DIR> BitTorrent
02. 12. 2014 12:20 <DIR> BSplayer
01. 12. 2014 22:56 <DIR> BSplayer Pro
08. 03. 2015 13:50 <DIR> Curse Advertising
14. 03. 2015 12:15 <DIR> Identities
01. 12. 2014 18:18 <DIR> LolClient
01. 12. 2014 15:25 <DIR> Macromedia
01. 12. 2014 15:58 <DIR> NVIDIA
01. 12. 2014 16:46 <DIR> Riot Games
30. 04. 2015 09:01 <DIR> Skype
19. 04. 2015 10:45 <DIR> Spotify
01. 12. 2014 15:26 <DIR> Synaptics
29. 12. 2014 05:17 <DIR> Trine2
28. 04. 2015 23:59 <DIR> TS3Client
0 File(s) 0 bytes
20 Dir(s) 1�227�338�551�296 bytes free
========= End of CMD: =========
EmptyTemp: => Removed 2.3 GB temporary data.
=> Result of Scheduled Files to move (Boot Mode: Normal) (Date&Time: 2015-04-30 10:46:19)<=
C:\ProgramData\DP45977C.lfl => Is moved successfully.
==== End of Fixlog 10:46:19 ====
Hlavne dekuju nejvic za bleskovou pomoc, snad uz je vse OK. Jen jestli se muzu zeptat byl to nejaky vážný vir pripadne co zpusoboval ??
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 29-04-2015 01
Ran by Jiří at 2015-04-30 10:44:46 Run:1
Running from C:\Users\Jiří\Desktop
Loaded Profiles: Jiří (Available profiles: Jiří)
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
Start
CloseProcesses:
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2673296 2015-03-28] (NVIDIA Corporation)
HKLM-x32\...\Run: [Adobe ARM] => c:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-09-05] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation)
HKLM\...\Policies\Explorer: [NoFolderOptions] 0
HKLM\...\Policies\Explorer: [NoControlPanel] 0
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: YoutubeAdBlocke -> {2acd5e4f-3c38-4f19-ba84-80b27b5a3450} -> C:\Program Files (x86)\YoutubeAdBlocke\w7GzE6lw4W6fJj.x64.dll No File
C:\Program Files (x86)\YoutubeAdBlocke
BHO: BuyNsave -> {d3565358-b0f7-4980-ad16-f7511be81230} -> C:\Program Files (x86)\BuyNsave\ozjoJBMYzHfgLx.x64.dll No File
C:\Program Files (x86)\BuyNsave
CHR DefaultSearchKeyword: Default -> B6152A0890A001C0B50BE4EC014499551A95396F0030E94B8E58045378CE24A3
CHR DefaultSearchURL: Default -> 55B00790C6A4633E816A49C66FAEC1D8571A2FFA42C3A52FF924457EE7B8AABB
2015-04-30 10:17 - 2015-04-30 10:17 - 00112640 _____ (forum.viry.cz) C:\Users\Jiří\Downloads\Nepotvrzeno 899310.crdownload
2015-04-30 10:17 - 2015-04-30 10:17 - 00112640 _____ (forum.viry.cz) C:\Users\Jiří\Desktop\FRSTLauncher.exe
2015-04-30 09:45 - 2015-04-30 09:45 - 02224640 _____ () C:\Users\Jiří\Desktop\adwcleaner_4.202.exe
2015-04-30 09:43 - 2015-04-30 09:43 - 05312512 _____ () C:\Users\Jiří\Desktop\soubory.evtx
2015-04-30 09:43 - 2015-04-30 09:43 - 00733404 _____ () C:\Users\Jiří\Desktop\soubory.zip
2015-04-30 09:08 - 2015-04-30 09:08 - 00000000 ____D () C:\rsit
2015-04-30 09:48 - 2015-02-25 14:14 - 00000000 ____D () C:\AdwCleaner
2015-04-30 09:08 - 2015-02-25 13:33 - 00000000 ____D () C:\Program Files\trend micro
2014-07-25 22:12 - 2014-07-25 22:12 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
CMD: dir "C:\PROGRA~1"
CMD: dir "C:\PROGRA~2"
CMD: dir "C:\PROGRA~3"
CMD: dir "%localappdata%"
CMD: dir "%appdata%"
EmptyTemp:
End
*****************
Processes closed successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\NvBackend => value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Adobe ARM => value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\GrooveMonitor => value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\NoFolderOptions => value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\NoControlPanel => value deleted successfully.
"HKLM\SOFTWARE\Policies\Google" => Key deleted successfully.
HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2acd5e4f-3c38-4f19-ba84-80b27b5a3450}" => Key deleted successfully.
"HKCR\CLSID\{2acd5e4f-3c38-4f19-ba84-80b27b5a3450}" => Key deleted successfully.
"C:\Program Files (x86)\YoutubeAdBlocke" => File/Directory not found.
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d3565358-b0f7-4980-ad16-f7511be81230}" => Key deleted successfully.
"HKCR\CLSID\{d3565358-b0f7-4980-ad16-f7511be81230}" => Key deleted successfully.
"C:\Program Files (x86)\BuyNsave" => File/Directory not found.
Chrome DefaultSearchKeyword not detected.
Chrome DefaultSearchURL not detected.
C:\Users\Jiří\Downloads\Nepotvrzeno 899310.crdownload => Moved successfully.
"C:\Users\Jiří\Desktop\FRSTLauncher.exe" => File/Directory not found.
C:\Users\Jiří\Desktop\adwcleaner_4.202.exe => Moved successfully.
C:\Users\Jiří\Desktop\soubory.evtx => Moved successfully.
C:\Users\Jiří\Desktop\soubory.zip => Moved successfully.
C:\rsit => Moved successfully.
C:\AdwCleaner => Moved successfully.
C:\Program Files\trend micro => Moved successfully.
Could not move "C:\ProgramData\DP45977C.lfl" => Scheduled to move on reboot.
========= dir "C:\PROGRA~1" =========
Volume in drive C is Acer
Volume Serial Number is E4B7-193F
Directory of C:\PROGRA~1
30. 04. 2015 10:44 <DIR> .
30. 04. 2015 10:44 <DIR> ..
25. 07. 2014 22:41 <DIR> Acer
06. 12. 2014 05:35 <DIR> AVAST Software
25. 07. 2014 22:28 <DIR> Booking.COM
25. 07. 2014 22:13 <DIR> Broadcom
06. 12. 2014 05:30 <DIR> Common Files
25. 07. 2014 22:12 <DIR> Dolby Digital Plus
25. 07. 2014 22:10 <DIR> Intel
18. 04. 2015 11:12 <DIR> Internet Explorer
21. 01. 2015 17:26 <DIR> Microsoft Office
11. 06. 2014 10:07 <DIR> MSBuild
24. 12. 2014 13:49 <DIR> NVIDIA Corporation
25. 07. 2014 22:12 <DIR> Realtek
11. 06. 2014 10:07 <DIR> Reference Assemblies
25. 07. 2014 22:14 <DIR> Synaptics
13. 12. 2014 03:14 <DIR> TeamSpeak 3 Client
14. 03. 2015 12:03 <DIR> Windows Defender
14. 03. 2015 12:06 <DIR> Windows Journal
14. 03. 2015 12:06 <DIR> Windows Mail
14. 03. 2015 12:06 <DIR> Windows Media Player
14. 03. 2015 12:06 <DIR> Windows Multimedia Platform
22. 08. 2013 17:36 <DIR> Windows NT
14. 03. 2015 12:06 <DIR> Windows Photo Viewer
14. 03. 2015 12:06 <DIR> Windows Portable Devices
14. 03. 2015 12:03 <DIR> WindowsPowerShell
0 File(s) 0 bytes
26 Dir(s) 1�227�338�551�296 bytes free
========= End of CMD: =========
========= dir "C:\PROGRA~2" =========
Volume in drive C is Acer
Volume Serial Number is E4B7-193F
Directory of C:\PROGRA~2
23. 04. 2015 09:48 <DIR> .
23. 04. 2015 09:48 <DIR> ..
18. 04. 2015 02:28 <DIR> Acer
11. 06. 2014 10:25 <DIR> Adobe
24. 12. 2014 13:50 <DIR> AGEIA Technologies
07. 04. 2015 10:57 <DIR> Battle.net
23. 04. 2015 09:48 <DIR> Common Files
25. 07. 2014 22:40 <DIR> CyberLink
05. 12. 2014 20:36 <DIR> dotEPUB
01. 12. 2014 15:30 <DIR> Google
14. 04. 2015 19:31 <DIR> Hearthstone
04. 04. 2015 09:53 <DIR> Heroes of the Storm
25. 07. 2014 22:10 <DIR> Intel
14. 03. 2015 12:03 <DIR> Internet Explorer
21. 01. 2015 17:29 <DIR> Microsoft Office
21. 01. 2015 17:29 <DIR> Microsoft Visual Studio
21. 01. 2015 17:26 <DIR> Microsoft Visual Studio 8
21. 01. 2015 17:29 <DIR> Microsoft Works
21. 01. 2015 17:28 <DIR> Microsoft.NET
21. 01. 2015 17:29 <DIR> MSBuild
11. 06. 2014 10:24 <DIR> Nero
24. 12. 2014 13:50 <DIR> NVIDIA Corporation
25. 07. 2014 22:19 <DIR> Qualcomm Atheros
25. 07. 2014 22:11 <DIR> Realtek
11. 06. 2014 10:07 <DIR> Reference Assemblies
23. 04. 2015 09:48 <DIR> Skype
25. 07. 2014 22:35 <DIR> Spotify
20. 04. 2015 23:04 <DIR> Steam
01. 12. 2014 22:56 <DIR> Webteh
11. 06. 2014 10:21 <DIR> WildGames
11. 06. 2014 10:22 <DIR> WildTangent Games
14. 03. 2015 12:03 <DIR> Windows Defender
14. 03. 2015 12:03 <DIR> Windows Mail
14. 03. 2015 12:03 <DIR> Windows Media Player
14. 03. 2015 12:03 <DIR> Windows Multimedia Platform
22. 08. 2013 17:36 <DIR> Windows NT
14. 03. 2015 12:03 <DIR> Windows Photo Viewer
14. 03. 2015 12:03 <DIR> Windows Portable Devices
22. 08. 2013 17:36 <DIR> WindowsPowerShell
07. 04. 2015 03:53 <DIR> World of Warcraft
0 File(s) 0 bytes
40 Dir(s) 1�227�338�555�392 bytes free
========= End of CMD: =========
========= dir "C:\PROGRA~3" =========
Volume in drive C is Acer
Volume Serial Number is E4B7-193F
Directory of C:\PROGRA~3
16. 03. 2015 13:31 <DIR> 3872871776
25. 07. 2014 22:42 <DIR> Acer
11. 06. 2014 10:25 <DIR> Adobe
25. 07. 2014 22:26 <DIR> Atheros
06. 12. 2014 05:35 <DIR> AVAST Software
01. 12. 2014 15:48 <DIR> Battle.net
27. 02. 2015 03:11 <DIR> Blizzard Entertainment
25. 07. 2014 22:40 <DIR> CLSK
01. 12. 2014 15:41 <DIR> CyberLink
25. 07. 2014 22:12 0 DP45977C.lfl
25. 07. 2014 22:40 <DIR> install_clap
25. 07. 2014 22:06 <DIR> Intel
06. 12. 2014 05:30 <DIR> McAfee
21. 01. 2015 17:31 <DIR> Microsoft Help
11. 06. 2014 10:24 <DIR> Nero
24. 12. 2014 13:49 <DIR> NVIDIA
24. 12. 2014 13:49 <DIR> NVIDIA Corporation
14. 04. 2015 00:45 <DIR> OEM
25. 07. 2014 22:16 <DIR> Qualcomm Atheros
14. 03. 2015 12:03 <DIR> regid.1991-06.com.microsoft
01. 12. 2014 16:47 <DIR> Riot Games
23. 04. 2015 09:48 <DIR> Skype
01. 12. 2014 15:27 <DIR> Synaptics
25. 07. 2014 22:39 <DIR> Temp
11. 06. 2014 10:22 <DIR> WildTangent
25. 07. 2014 22:16 <DIR> {69533018-33A8-4C46-869A-11AA2CDF4EDC}
1 File(s) 0 bytes
25 Dir(s) 1�227�338�555�392 bytes free
========= End of CMD: =========
========= dir "%localappdata%" =========
Volume in drive C is Acer
Volume Serial Number is E4B7-193F
Directory of C:\Users\Ji��\AppData\Local
30. 04. 2015 10:22 <DIR> .
30. 04. 2015 10:22 <DIR> ..
01. 12. 2014 15:29 <DIR> acer
01. 12. 2014 17:50 <DIR> Acer Aspire R7 Tutorial
28. 12. 2014 13:57 <DIR> Adobe
01. 12. 2014 15:27 <DIR> AOP SDK
01. 12. 2014 15:30 <DIR> Apps
30. 04. 2015 08:53 <DIR> Battle.net
20. 01. 2015 16:06 <DIR> Blizzard
01. 12. 2014 15:49 <DIR> Blizzard Entertainment
05. 04. 2015 20:07 <DIR> BMExplorer
30. 04. 2015 09:07 <DIR> clear.fi
28. 04. 2015 18:21 <DIR> CrashDumps
01. 12. 2014 15:40 <DIR> Cyberlink
24. 12. 2014 02:30 <DIR> DayZ
18. 03. 2015 12:57 <DIR> Deployment
30. 04. 2015 09:06 <DIR> Diagnostics
15. 04. 2015 21:09 127�568 GDIPFONTCACHEV1.DAT
01. 12. 2014 15:31 <DIR> Google
01. 12. 2014 17:36 <DIR> iGware
30. 04. 2015 09:42 <DIR> Microsoft
21. 01. 2015 17:25 <DIR> Microsoft Help
13. 12. 2014 23:40 <DIR> NVIDIA
24. 12. 2014 00:17 <DIR> NVIDIA Corporation
01. 12. 2014 15:22 <DIR> OEM
01. 12. 2014 19:53 <DIR> Packages
13. 04. 2015 22:56 <DIR> Programs
23. 04. 2015 09:49 <DIR> Skype
19. 04. 2015 10:46 <DIR> Spotify
30. 03. 2015 17:40 <DIR> Steam
30. 04. 2015 10:44 <DIR> Temp
01. 12. 2014 15:22 <DIR> VirtualStore
1 File(s) 127�568 bytes
31 Dir(s) 1�227�338�551�296 bytes free
========= End of CMD: =========
========= dir "%appdata%" =========
Volume in drive C is Acer
Volume Serial Number is E4B7-193F
Directory of C:\Users\Ji��\AppData\Roaming
23. 04. 2015 09:49 <DIR> .
23. 04. 2015 09:49 <DIR> ..
28. 12. 2014 13:57 <DIR> Adobe
01. 12. 2014 15:23 <DIR> Atheros
06. 12. 2014 05:36 <DIR> AVAST Software
01. 12. 2014 15:50 <DIR> Battle.net
26. 04. 2015 17:00 <DIR> BitTorrent
02. 12. 2014 12:20 <DIR> BSplayer
01. 12. 2014 22:56 <DIR> BSplayer Pro
08. 03. 2015 13:50 <DIR> Curse Advertising
14. 03. 2015 12:15 <DIR> Identities
01. 12. 2014 18:18 <DIR> LolClient
01. 12. 2014 15:25 <DIR> Macromedia
01. 12. 2014 15:58 <DIR> NVIDIA
01. 12. 2014 16:46 <DIR> Riot Games
30. 04. 2015 09:01 <DIR> Skype
19. 04. 2015 10:45 <DIR> Spotify
01. 12. 2014 15:26 <DIR> Synaptics
29. 12. 2014 05:17 <DIR> Trine2
28. 04. 2015 23:59 <DIR> TS3Client
0 File(s) 0 bytes
20 Dir(s) 1�227�338�551�296 bytes free
========= End of CMD: =========
EmptyTemp: => Removed 2.3 GB temporary data.
=> Result of Scheduled Files to move (Boot Mode: Normal) (Date&Time: 2015-04-30 10:46:19)<=
C:\ProgramData\DP45977C.lfl => Is moved successfully.
==== End of Fixlog 10:46:19 ====
Re: Vir ???
Jeste jsem se nesetkal s tim, ze by odstranena havet (zejmena zbytky adwaru, takze nic vazneho) zpusobovala popisovane problemy, proto jsem pozadal o soucinnost kolegu, ktery do HW vidi znacne vic jak ja.
Vytvorte jeste nasledujici fixlist.txt, znovu spustte FRST a kliknete na fix. Obsah fixlogu vlozte do pristi odpovedi.
Vytvorte jeste nasledujici fixlist.txt, znovu spustte FRST a kliknete na fix. Obsah fixlogu vlozte do pristi odpovedi.
Kód: Vybrat vše
Start
Folder: C:\PROGRA~3\3872871776
Folder: C:\PROGRA~3\{69533018-33A8-4C46-869A-11AA2CDF4EDC}
End- Stahnete Crystal Disk Info (CDI) http://sourceforge.jp/frs/redir.php?m=j ... o6_2_2.zip
- archiv extrahujte a spustte vyextrahovany soubor DiskInfo.exe
- ve spustenem programu kliknete nahore na Upravy -> Kopirovat (log mate nyni zkopirovany ve schrance)
- log vlozte do dalsi odpovedi (Ctrl + V)
Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
Re: Vir ???
Na doporučení jsem si teda promazal plochu, nejsem si jisty jestli to umim zjistit presne, ale uz mi to ukazuje 3,8 MB
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 29-04-2015 01
Ran by Jiří at 2015-04-30 11:29:38 Run:2
Running from C:\Users\Jiří\Desktop
Loaded Profiles: Jiří (Available profiles: Jiří)
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
Start
Folder: C:\PROGRA~3\3872871776
Folder: C:\PROGRA~3\{69533018-33A8-4C46-869A-11AA2CDF4EDC}
End
*****************
========================= Folder: C:\PROGRA~3\3872871776 ========================
====== End of Folder: ======
========================= Folder: C:\PROGRA~3\{69533018-33A8-4C46-869A-11AA2CDF4EDC} ========================
2014-07-25 22:16 - 2014-07-25 22:16 - 0020480 _____ () C:\PROGRA~3\{69533018-33A8-4C46-869A-11AA2CDF4EDC}\1033.MST
2014-07-25 22:16 - 2014-07-25 22:16 - 98933864 _____ () C:\PROGRA~3\{69533018-33A8-4C46-869A-11AA2CDF4EDC}\Qualcomm Atheros Bluetooth Suite (64).msi
====== End of Folder: ======
==== End of Fixlog 11:29:38 ====
----------------------------------------------------------------------------
CrystalDiskInfo 6.2.2 (C) 2008-2014 hiyohiyo
Crystal Dew World : http://crystalmark.info/
----------------------------------------------------------------------------
OS : Windows 8.1 [6.3 Build 9600] (x64)
Date : 2015/04/30 11:31:56
-- Controller Map ----------------------------------------------------------
+ Intel(R) 8 Series Chipset Family SATA AHCI Controller [ATA]
- MATSHITA DVD-RAM UJ8E0
- HGST HTS541515A9E630
- Řadič prostorů úložišť [SCSI]
-- Disk List ---------------------------------------------------------------
(1) HGST HTS541515A9E630 : 1500,3 GB [0/0/0, pd1]
----------------------------------------------------------------------------
(1) HGST HTS541515A9E630
----------------------------------------------------------------------------
Model : HGST HTS541515A9E630
Firmware : KA0OA500
Serial Number : DA4010DAG353TR
Disk Size : 1500,3 GB (8,4/137,4/1500,3/1500,3)
Buffer Size : 32767 KB
Queue Depth : 32
# of Sectors : 2930277168
Rotation Rate : 5400 RPM
Interface : Serial ATA
Major Version : ATA8-ACS
Minor Version : ATA8-ACS version 6
Transfer Mode : SATA/600 | SATA/600
Power On Hours : 2623 hod.
Power On Count : 237 krát
Temperature : 33 C (91 F)
Health Status : Dobrý
Features : S.M.A.R.T., APM, 48bit LBA, NCQ
APM Level : 40FEh [ON]
AAM Level : ----
-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 100 100 _62 000000000000 Počet chyb čtení
02 100 100 _40 000000000000 Průchodnost disku
03 125 125 _33 001600000002 Čas na roztočení ploten
04 100 100 __0 000000000120 Počet spuštění/zastavení
05 100 100 __5 000000000000 Počet přemapovaných sektorů
07 100 100 _67 000000000000 Počet chybných hledání
08 100 100 _40 000000000000 Čas potřebný na vyhledání
09 _95 _95 __0 000000000A3F Hodin v činnosti
0A 100 100 _60 000000000000 Počet opakovaných pokusů o roztočení ploten
0C 100 100 __0 0000000000ED Počet cyklů zapnutí zařízení
BF 100 100 __0 000000000000 Počet udalostí zaznamenaných otřesovým senzorem
C0 100 100 __0 000000000003 Počet vypnutí disku
C1 _98 _98 __0 000000007084 Počet cyklů načítání/vymazání
C2 181 181 __0 002F000F0021 Teplota
C4 100 100 __0 000000000000 Počet udalostí s číslem realokování sektorů
C5 100 100 __0 000000000000 Počet podezřelých sektorů
C6 100 100 __0 000000000000 Počet neopravitelných sektorů
C7 200 200 __0 00000000001A Počet chyb v kontrolním součtu UltraDMA
DF 100 100 __0 000000000000 Zatížení budiče magnetických hlav způsobené opakovanými úkony
-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 045A 3FFF C837 0010 0000 0000 003F 0000 0000 0000
010: 2020 2020 2020 4441 3430 3130 4441 4733 3533 5452
020: 0003 FFFF 0004 4B41 304F 4135 3030 4847 5354 2048
030: 5453 3534 3135 3135 4139 4536 3330 2020 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 4000 2F00
050: 4000 0200 0200 0007 3FFF 0010 003F FC10 00FB 0110
060: FFFF 0FFF 0000 0007 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 001F 9F0E 0006 005E 004C
080: 01FC 0028 746B 7D29 6163 7469 BC09 6163 407F 00A5
090: 00A6 40FE FFFE 0000 0000 0000 0000 0000 0000 0000
100: 7B30 AEA8 0000 0000 0000 0000 6003 826C 5000 CCA7
110: 4BC1 7057 0000 0000 0000 0000 0000 0000 0000 401C
120: 401C 0000 0000 0000 0000 0000 0000 0000 0029 000B
130: 0000 0000 2182 1CF1 FA00 0000 4000 2000 0022 0000
140: 0000 0703 0604 0704 0603 0703 0604 0000 0000 0000
150: 0000 0005 3033 4235 0000 6806 0000 5DBD 9390 8000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0003 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 003D 0000 0000 4000
210: 0000 0000 0000 0000 0000 0000 0000 1518 0000 0000
220: 0000 0000 103F 0021 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0001 03E0 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 61A5
-- SMART_READ_DATA ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 0B 00 64 64 00 00 00 00 00 00 00 02 05
010: 00 64 64 00 00 00 00 00 00 00 03 07 00 7D 7D 02
020: 00 00 00 16 00 00 04 12 00 64 64 20 01 00 00 00
030: 00 00 05 33 00 64 64 00 00 00 00 00 00 00 07 0B
040: 00 64 64 00 00 00 00 00 00 00 08 05 00 64 64 00
050: 00 00 00 00 00 00 09 12 00 5F 5F 3F 0A 00 00 00
060: 00 00 0A 13 00 64 64 00 00 00 00 00 00 00 0C 32
070: 00 64 64 ED 00 00 00 00 00 00 BF 0A 00 64 64 00
080: 00 00 00 00 00 00 C0 32 00 64 64 03 00 00 00 00
090: 00 00 C1 12 00 62 62 84 70 00 00 00 00 00 C2 02
0A0: 00 B5 B5 21 00 0F 00 2F 00 00 C4 32 00 64 64 00
0B0: 00 00 00 00 00 00 C5 22 00 64 64 00 00 00 00 00
0C0: 00 00 C6 08 00 64 64 00 00 00 00 00 00 00 C7 0A
0D0: 00 C8 C8 1A 00 00 00 00 00 00 DF 0A 00 64 64 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 2D 00 01 5B
170: 03 00 01 00 02 FF 00 4C 01 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 19
-- SMART_READ_THRESHOLD ----------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 3E 00 00 00 00 00 00 00 00 00 00 02 28
010: 00 00 00 00 00 00 00 00 00 00 03 21 00 00 00 00
020: 00 00 00 00 00 00 04 00 00 00 00 00 00 00 00 00
030: 00 00 05 05 00 00 00 00 00 00 00 00 00 00 07 43
040: 00 00 00 00 00 00 00 00 00 00 08 28 00 00 00 00
050: 00 00 00 00 00 00 09 00 00 00 00 00 00 00 00 00
060: 00 00 0A 3C 00 00 00 00 00 00 00 00 00 00 0C 00
070: 00 00 00 00 00 00 00 00 00 00 BF 00 00 00 00 00
080: 00 00 00 00 00 00 C0 00 00 00 00 00 00 00 00 00
090: 00 00 C1 00 00 00 00 00 00 00 00 00 00 00 C2 00
0A0: 00 00 00 00 00 00 00 00 00 00 C4 00 00 00 00 00
0B0: 00 00 00 00 00 00 C5 00 00 00 00 00 00 00 00 00
0C0: 00 00 C6 00 00 00 00 00 00 00 00 00 00 00 C7 00
0D0: 00 00 00 00 00 00 00 00 00 00 DF 00 00 00 00 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 89
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 29-04-2015 01
Ran by Jiří at 2015-04-30 11:29:38 Run:2
Running from C:\Users\Jiří\Desktop
Loaded Profiles: Jiří (Available profiles: Jiří)
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
Start
Folder: C:\PROGRA~3\3872871776
Folder: C:\PROGRA~3\{69533018-33A8-4C46-869A-11AA2CDF4EDC}
End
*****************
========================= Folder: C:\PROGRA~3\3872871776 ========================
====== End of Folder: ======
========================= Folder: C:\PROGRA~3\{69533018-33A8-4C46-869A-11AA2CDF4EDC} ========================
2014-07-25 22:16 - 2014-07-25 22:16 - 0020480 _____ () C:\PROGRA~3\{69533018-33A8-4C46-869A-11AA2CDF4EDC}\1033.MST
2014-07-25 22:16 - 2014-07-25 22:16 - 98933864 _____ () C:\PROGRA~3\{69533018-33A8-4C46-869A-11AA2CDF4EDC}\Qualcomm Atheros Bluetooth Suite (64).msi
====== End of Folder: ======
==== End of Fixlog 11:29:38 ====
----------------------------------------------------------------------------
CrystalDiskInfo 6.2.2 (C) 2008-2014 hiyohiyo
Crystal Dew World : http://crystalmark.info/
----------------------------------------------------------------------------
OS : Windows 8.1 [6.3 Build 9600] (x64)
Date : 2015/04/30 11:31:56
-- Controller Map ----------------------------------------------------------
+ Intel(R) 8 Series Chipset Family SATA AHCI Controller [ATA]
- MATSHITA DVD-RAM UJ8E0
- HGST HTS541515A9E630
- Řadič prostorů úložišť [SCSI]
-- Disk List ---------------------------------------------------------------
(1) HGST HTS541515A9E630 : 1500,3 GB [0/0/0, pd1]
----------------------------------------------------------------------------
(1) HGST HTS541515A9E630
----------------------------------------------------------------------------
Model : HGST HTS541515A9E630
Firmware : KA0OA500
Serial Number : DA4010DAG353TR
Disk Size : 1500,3 GB (8,4/137,4/1500,3/1500,3)
Buffer Size : 32767 KB
Queue Depth : 32
# of Sectors : 2930277168
Rotation Rate : 5400 RPM
Interface : Serial ATA
Major Version : ATA8-ACS
Minor Version : ATA8-ACS version 6
Transfer Mode : SATA/600 | SATA/600
Power On Hours : 2623 hod.
Power On Count : 237 krát
Temperature : 33 C (91 F)
Health Status : Dobrý
Features : S.M.A.R.T., APM, 48bit LBA, NCQ
APM Level : 40FEh [ON]
AAM Level : ----
-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 100 100 _62 000000000000 Počet chyb čtení
02 100 100 _40 000000000000 Průchodnost disku
03 125 125 _33 001600000002 Čas na roztočení ploten
04 100 100 __0 000000000120 Počet spuštění/zastavení
05 100 100 __5 000000000000 Počet přemapovaných sektorů
07 100 100 _67 000000000000 Počet chybných hledání
08 100 100 _40 000000000000 Čas potřebný na vyhledání
09 _95 _95 __0 000000000A3F Hodin v činnosti
0A 100 100 _60 000000000000 Počet opakovaných pokusů o roztočení ploten
0C 100 100 __0 0000000000ED Počet cyklů zapnutí zařízení
BF 100 100 __0 000000000000 Počet udalostí zaznamenaných otřesovým senzorem
C0 100 100 __0 000000000003 Počet vypnutí disku
C1 _98 _98 __0 000000007084 Počet cyklů načítání/vymazání
C2 181 181 __0 002F000F0021 Teplota
C4 100 100 __0 000000000000 Počet udalostí s číslem realokování sektorů
C5 100 100 __0 000000000000 Počet podezřelých sektorů
C6 100 100 __0 000000000000 Počet neopravitelných sektorů
C7 200 200 __0 00000000001A Počet chyb v kontrolním součtu UltraDMA
DF 100 100 __0 000000000000 Zatížení budiče magnetických hlav způsobené opakovanými úkony
-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 045A 3FFF C837 0010 0000 0000 003F 0000 0000 0000
010: 2020 2020 2020 4441 3430 3130 4441 4733 3533 5452
020: 0003 FFFF 0004 4B41 304F 4135 3030 4847 5354 2048
030: 5453 3534 3135 3135 4139 4536 3330 2020 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 4000 2F00
050: 4000 0200 0200 0007 3FFF 0010 003F FC10 00FB 0110
060: FFFF 0FFF 0000 0007 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 001F 9F0E 0006 005E 004C
080: 01FC 0028 746B 7D29 6163 7469 BC09 6163 407F 00A5
090: 00A6 40FE FFFE 0000 0000 0000 0000 0000 0000 0000
100: 7B30 AEA8 0000 0000 0000 0000 6003 826C 5000 CCA7
110: 4BC1 7057 0000 0000 0000 0000 0000 0000 0000 401C
120: 401C 0000 0000 0000 0000 0000 0000 0000 0029 000B
130: 0000 0000 2182 1CF1 FA00 0000 4000 2000 0022 0000
140: 0000 0703 0604 0704 0603 0703 0604 0000 0000 0000
150: 0000 0005 3033 4235 0000 6806 0000 5DBD 9390 8000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0003 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 003D 0000 0000 4000
210: 0000 0000 0000 0000 0000 0000 0000 1518 0000 0000
220: 0000 0000 103F 0021 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0001 03E0 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 61A5
-- SMART_READ_DATA ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 0B 00 64 64 00 00 00 00 00 00 00 02 05
010: 00 64 64 00 00 00 00 00 00 00 03 07 00 7D 7D 02
020: 00 00 00 16 00 00 04 12 00 64 64 20 01 00 00 00
030: 00 00 05 33 00 64 64 00 00 00 00 00 00 00 07 0B
040: 00 64 64 00 00 00 00 00 00 00 08 05 00 64 64 00
050: 00 00 00 00 00 00 09 12 00 5F 5F 3F 0A 00 00 00
060: 00 00 0A 13 00 64 64 00 00 00 00 00 00 00 0C 32
070: 00 64 64 ED 00 00 00 00 00 00 BF 0A 00 64 64 00
080: 00 00 00 00 00 00 C0 32 00 64 64 03 00 00 00 00
090: 00 00 C1 12 00 62 62 84 70 00 00 00 00 00 C2 02
0A0: 00 B5 B5 21 00 0F 00 2F 00 00 C4 32 00 64 64 00
0B0: 00 00 00 00 00 00 C5 22 00 64 64 00 00 00 00 00
0C0: 00 00 C6 08 00 64 64 00 00 00 00 00 00 00 C7 0A
0D0: 00 C8 C8 1A 00 00 00 00 00 00 DF 0A 00 64 64 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 2D 00 01 5B
170: 03 00 01 00 02 FF 00 4C 01 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 19
-- SMART_READ_THRESHOLD ----------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 3E 00 00 00 00 00 00 00 00 00 00 02 28
010: 00 00 00 00 00 00 00 00 00 00 03 21 00 00 00 00
020: 00 00 00 00 00 00 04 00 00 00 00 00 00 00 00 00
030: 00 00 05 05 00 00 00 00 00 00 00 00 00 00 07 43
040: 00 00 00 00 00 00 00 00 00 00 08 28 00 00 00 00
050: 00 00 00 00 00 00 09 00 00 00 00 00 00 00 00 00
060: 00 00 0A 3C 00 00 00 00 00 00 00 00 00 00 0C 00
070: 00 00 00 00 00 00 00 00 00 00 BF 00 00 00 00 00
080: 00 00 00 00 00 00 C0 00 00 00 00 00 00 00 00 00
090: 00 00 C1 00 00 00 00 00 00 00 00 00 00 00 C2 00
0A0: 00 00 00 00 00 00 00 00 00 00 C4 00 00 00 00 00
0B0: 00 00 00 00 00 00 C5 00 00 00 00 00 00 00 00 00
0C0: 00 00 C6 00 00 00 00 00 00 00 00 00 00 00 C7 00
0D0: 00 00 00 00 00 00 00 00 00 00 DF 00 00 00 00 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 89
Re: Vir ???
Podle událostí v protokolu bych řekl, že se notebook pravděpodobně dost přehřívá.
Spusť HeavyLoad a Hardware Monitor (nebo Open Hardware Monitor). V HeavyLoad spusť zátěžový test
a zhruba po 10 minutách udělej screenshot Hardware Monitoru. Ten pak vlož do příspěvku.
Spusť HeavyLoad a Hardware Monitor (nebo Open Hardware Monitor). V HeavyLoad spusť zátěžový test
a zhruba po 10 minutách udělej screenshot Hardware Monitoru. Ten pak vlož do příspěvku.
Pokud jste s naší pomocí spokojeni, můžete nás podpořit. Informace zde
Re: Vir ???
Nevlezou se mi zde ty screeny takze odkaz na leteckou postu
http://leteckaposta.cz/272204263
jsou tam 2 obrazky protoze ten Open hardware i po roztazeni nesel videt cely
http://leteckaposta.cz/272204263
jsou tam 2 obrazky protoze ten Open hardware i po roztazeni nesel videt cely
Re: Vir ???
Myslím, že ten problém s WiFi připojeními je způsobený nějakým problémem ze strany routeru.
Router je vlastně takový malý počítač s vlastním operačním systémem a občas to prostě zablbne.
Co se týká těch teplot, sice má CPU ještě 15°C rezervu, než si sáhne na maximum, pro ostatní komponenty je to ale celkem dost.
Chce to profouknout výduchový otvor ventilátoru stlačených vzduchem, žebra chladiče budou patrně zanesená.
Router je vlastně takový malý počítač s vlastním operačním systémem a občas to prostě zablbne.
Co se týká těch teplot, sice má CPU ještě 15°C rezervu, než si sáhne na maximum, pro ostatní komponenty je to ale celkem dost.
Chce to profouknout výduchový otvor ventilátoru stlačených vzduchem, žebra chladiče budou patrně zanesená.
Pokud jste s naší pomocí spokojeni, můžete nás podpořit. Informace zde
Re: Vir ???
OK děkuji za rady a omlouvám se za delší odmlku. Stěhoval sem se právě do Polska a nemam tu internet. Ted se mi koencne povedlo najit nejakou kavarnicku.
Takze to zkusim nejak profouknout a snad to bude OK))
samozrejme dekuju za Vas cas a pomoc
Takze to zkusim nejak profouknout a snad to bude OK
))samozrejme dekuju za Vas cas a pomoc
Přispějete na provoz fóra?