Zpomalený tablet

Zpráva

lastsaves · #1 Příspěvek od **lastsaves** » 08 říj 2015 20:21

Prosím o kontrolu logu, děkuji.

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:08-10-2015
Ran by oem-user (administrator) on TABLET-HP (08-10-2015 21:13:46)
Running from C:\Users\oem-user\Desktop
Loaded Profiles: oem-user (Available Profiles: oem-user)
Platform: Microsoft Windows 8.1 (X86) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Opera)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(AVAST Software) C:\Program Files\Avast\AvastSvc.exe
(Intel Corporation) C:\Windows\System32\DptfParticipantDisplayService.exe
(Intel Corporation) C:\Windows\System32\DptfParticipantProcessorService.exe
(Intel Corporation) C:\Windows\System32\DptfPolicyCriticalService.exe
() C:\Apps\Everything\Everything.exe
(Foxit Software Inc.) C:\Apps\Foxit Reader\Foxit Cloud\FCUpdateService.exe
() C:\Apps\NetTime\NetTimeService.exe
( ) C:\Apps\TouchMousePointer\TouchMousePointer.exe
(IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\Shared\hpdfe.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\AP\RtkNGUI.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Ghisler Software GmbH) C:\Apps\Total Conmander\TOTALCMD.EXE
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(AVAST Software) C:\Program Files\Avast\AvastUI.exe
() C:\Apps\NetTime\NetTime.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(SoftPerfect Research) C:\Apps\Networx\networx.exe
(Flux Software LLC) C:\Users\oem-user\AppData\Local\FluxSoftware\Flux\flux.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
() C:\Apps\Ditto\Ditto.exe
(Dropbox, Inc.) C:\Users\oem-user\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Polychrome Limited) C:\Apps\PowerSlave\PowerSlave.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Microsoft Corporation) C:\Windows\WinSxS\x86_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.17709_none_9e5a9771e29ebd0a\TiWorker.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(forum.viry.cz) C:\Users\oem-user\Desktop\FRSTLauncher.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [hpdfe] => C:\Program Files\Hewlett-Packard\Shared\hpdfe.exe [400608 2015-06-23] (Hewlett-Packard Development Company, L.P.)
HKLM\...\Run: [RtkNGUI] => C:\Program Files\Realtek\Audio\AP\RtkNGUI.exe [2760408 2014-11-12] (Realtek Semiconductor)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast\AvastUI.exe [6134544 2015-09-20] (AVAST Software)
HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [150208 2014-04-20] (IvoSoft)
HKLM\...\Run: [NetTime] => C:\Apps\NetTime\NetTime.exe [772096 2012-05-12] ()
HKLM\...\Run: [NetWorx] => C:\Apps\Networx\networx.exe [4333776 2014-06-24] (SoftPerfect Research)
HKLM\...\Run: [DptfPolicyLpmServiceHelper] => C:\WINDOWS\system32\DptfPolicyLpmServiceHelper.exe [71992 2014-11-12] (Intel Corporation)
HKU\S-1-5-21-2625918598-2988866889-3153320694-1001\...\Run: [f.lux] => C:\Users\oem-user\AppData\Local\FluxSoftware\Flux\flux.exe [1017224 2013-10-24] (Flux Software LLC)
HKU\S-1-5-21-2625918598-2988866889-3153320694-1001\...\Run: [GoogleChromeAutoLaunch_BFE5B4CEB695DF87D1F4F18696A12B99] => C:\Program Files\Google\Chrome\Application\chrome.exe [815944 2015-09-24] (Google Inc.)
HKU\S-1-5-21-2625918598-2988866889-3153320694-1001\...\Run: [ShowBatteryBar] => C:\Program Files\BatteryBar\ShowBatteryBar.exe [90624 2014-09-19] ()
HKU\S-1-5-21-2625918598-2988866889-3153320694-1001\...\Run: [Dropbox Update] => C:\Users\oem-user\AppData\Local\Dropbox\Update\DropboxUpdate.exe [134512 2015-06-16] (Dropbox, Inc.)
HKU\S-1-5-21-2625918598-2988866889-3153320694-1001\...\Run: [Ditto] => C:\Apps\Ditto\Ditto.exe [1647104 2015-01-10] ()
HKU\S-1-5-21-2625918598-2988866889-3153320694-1001\...\Policies\Explorer: [NoLogoff] 0
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast\ashShell.dll [2015-09-20] (AVAST Software)
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\oem-user\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll [2015-10-02] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\oem-user\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll [2015-10-02] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\oem-user\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll [2015-10-02] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-04-20] (IvoSoft)
Startup: C:\Users\oem-user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk [2015-09-06]
ShortcutTarget: Dropbox.lnk -> C:\Users\oem-user\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
Startup: C:\Users\oem-user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Odeslat do OneNote.lnk [2015-01-15]
ShortcutTarget: Odeslat do OneNote.lnk -> C:\Program Files\Microsoft Office\Office15\ONENOTEM.EXE (Microsoft Corporation)
Startup: C:\Users\oem-user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\PowerSlave.lnk [2014-07-18]
ShortcutTarget: PowerSlave.lnk -> C:\Windows\Installer\{561F816E-FDEB-4F4A-B040-C80F6583D4B9}\_DC9CF5E0B5265200E6F6BB.exe ()

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 213.46.172.36 213.46.172.37
Tcpip\..\Interfaces\{188F7CFE-E7AD-4605-B8C0-1361F4CC8170}: [DhcpNameServer] 213.46.172.36 213.46.172.37

Internet Explorer:
==================
BHO: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-04-20] (IvoSoft)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2015-07-14] (Microsoft Corporation)
BHO: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2014-04-20] (IvoSoft)
Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-04-20] (IvoSoft)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2015-02-17] (Microsoft Corporation)

FireFox:
========
FF Plugin: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Apps\PDF X-Change\PDF Viewer\npPDFXCviewNPPlugin.dll [2014-07-28] (Tracker Software Products (Canada) Ltd.)
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Apps\Foxit Reader\plugins\npFoxitReaderPlugin.dll [No File]
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Apps\Foxit Reader\plugins\npFoxitReaderPlugin.dll [No File]
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Apps\Foxit Reader\plugins\npFoxitReaderPlugin.dll [No File]
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Apps\Foxit Reader\plugins\npFoxitReaderPlugin.dll [No File]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-20] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-20] (Google Inc.)
FF Plugin HKU\S-1-5-21-2625918598-2988866889-3153320694-1001: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Apps\PDF X-Change\PDF Viewer\npPDFXCviewNPPlugin.dll [2014-07-28] (Tracker Software Products (Canada) Ltd.)

Chrome:
=======
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR DefaultSearchKeyword: Default -> gml
CHR Profile: C:\Users\oem-user\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Dokumenty Google) - C:\Users\oem-user\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-06-22]
CHR Extension: (Disk Google) - C:\Users\oem-user\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-06-22]
CHR Extension: (YouTube) - C:\Users\oem-user\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-06-22]
CHR Extension: (Adblock Plus) - C:\Users\oem-user\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2014-07-13]
CHR Extension: (Vyhledávání Google) - C:\Users\oem-user\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-06-22]
CHR Extension: (Gmelius for Gmail) - C:\Users\oem-user\AppData\Local\Google\Chrome\User Data\Default\Extensions\dheionainndbbpoacpnopgmnihkcmnkl [2014-09-16]
CHR Extension: (Nástroj pro optimalizaci Offline Gmailu) - C:\Users\oem-user\AppData\Local\Google\Chrome\User Data\Default\Extensions\dncjnngcblhgeeocnhmmihpanahkjbmi [2014-09-16]
CHR Extension: (Gmail Offline) - C:\Users\oem-user\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejidjjhkpiempkbhmpbfngldlkglhimk [2014-09-16]
CHR Extension: (Dokumenty Google offline) - C:\Users\oem-user\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-09-06]
CHR Extension: (SingleFile Core) - C:\Users\oem-user\AppData\Local\Google\Chrome\User Data\Default\Extensions\jemlklgaibiijojffihnhieihhagocma [2015-01-29]
CHR Extension: (Grammarly Spell Checker & Grammar Checker) - C:\Users\oem-user\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbfnbcaeplbcioakkpcpgfkobkghlhen [2015-06-13]
CHR Extension: (Right Inbox for Gmail) - C:\Users\oem-user\AppData\Local\Google\Chrome\User Data\Default\Extensions\mflnemhkomgploogccdmcloekbloobgb [2014-09-16]
CHR Extension: (SingleFile) - C:\Users\oem-user\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpiodijhokgodhhofbcjdecpffjipkle [2015-01-29]
CHR Extension: (Save to Pocket) - C:\Users\oem-user\AppData\Local\Google\Chrome\User Data\Default\Extensions\niloccemoadcdkdjlinkgdfekeahmflj [2014-11-20]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\oem-user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-06-22]
CHR Extension: (Retro Compose for Gmail™) - C:\Users\oem-user\AppData\Local\Google\Chrome\User Data\Default\Extensions\npjkmbechijncoapeeifgfhcjkcandgk [2014-09-16]
CHR Extension: (Windowed Mail for GMail) - C:\Users\oem-user\AppData\Local\Google\Chrome\User Data\Default\Extensions\okgpnfocnmofaplnnimmiojppnabfclb [2014-09-16]
CHR Extension: (Gmail) - C:\Users\oem-user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-06-22]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 avast! Antivirus; C:\Program Files\Avast\AvastSvc.exe [146600 2015-09-20] (AVAST Software)
R2 DptfParticipantDisplayService; C:\WINDOWS\system32\DptfParticipantDisplayService.exe [104248 2014-11-12] (Intel Corporation)
R2 DptfParticipantProcessorService; C:\WINDOWS\system32\DptfParticipantProcessorService.exe [76088 2014-11-12] (Intel Corporation)
R2 DptfPolicyCriticalService; C:\WINDOWS\system32\DptfPolicyCriticalService.exe [63288 2014-11-12] (Intel Corporation)
S2 DptfPolicyLpmService; C:\WINDOWS\system32\DptfPolicyLpmService.exe [82232 2014-11-12] (Intel Corporation)
R2 Everything; C:\Apps\Everything\Everything.exe [1048576 2014-08-06] () [File not signed]
R2 FoxitCloudUpdateService; C:\Apps\Foxit Reader\Foxit Cloud\FCUpdateService.exe [242880 2015-07-02] (Foxit Software Inc.)
R2 NetTimeSvc; C:\Apps\NetTime\NetTimeService.exe [473088 2012-05-12] () [File not signed]
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [284520 2015-07-07] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [22224 2015-07-07] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 ar6knwf; C:\WINDOWS\system32\DRIVERS\ar6knwf.sys [1544192 2013-10-24] (Qualcomm Atheros Communications, Inc.)
R2 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [24016 2015-09-20] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [76000 2015-09-20] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [81728 2015-09-20] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\system32\Drivers\aswRvrt.sys [49776 2015-09-20] (AVAST Software)
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [789296 2015-09-20] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [434184 2015-09-20] (AVAST Software)
S2 aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [115640 2015-09-20] (AVAST Software)
R0 aswVmm; C:\WINDOWS\system32\Drivers\aswVmm.sys [208664 2015-09-20] (AVAST Software)
R3 BcmGnssBus; C:\WINDOWS\System32\drivers\BcmGnssBus.sys [95304 2013-08-07] (Broadcom Corporation)
R3 BthLEEnum; C:\WINDOWS\system32\DRIVERS\BthLEEnum.sys [186880 2014-03-18] (Microsoft Corporation)
R3 BthMini; C:\WINDOWS\System32\Drivers\BTHMINI.sys [23552 2015-06-10] (Microsoft Corporation)
R3 camera; C:\WINDOWS\system32\DRIVERS\camera.sys [207872 2014-11-12] (Intel Corporation)
R0 ChaabiDriver; C:\WINDOWS\System32\drivers\ChaabiDriver.sys [74256 2014-11-12] (Intel Corporation)
R0 clvpep; C:\WINDOWS\System32\drivers\clvpep.sys [81648 2012-10-24] (Intel Corporation)
R3 DASL; C:\WINDOWS\System32\drivers\DASL86.sys [76000 2015-06-23] (Hewlett-Packard)
R3 DptfDevDisplay; C:\WINDOWS\System32\drivers\DptfDevDisplay.sys [44256 2014-11-12] (Intel Corporation)
R3 DptfDevGen; C:\WINDOWS\System32\drivers\DptfDevGen.sys [49888 2014-11-12] (Intel Corporation)
R3 DptfDevProc; C:\WINDOWS\System32\drivers\DptfDevProc.sys [69344 2014-11-12] (Intel Corporation)
R3 DptfManager; C:\WINDOWS\System32\drivers\DptfManager.sys [163552 2014-11-12] (Intel Corporation)
S3 FlashLed; C:\WINDOWS\System32\drivers\flashled.sys [27136 2013-03-02] (Intel Corporation)
R3 GPIOCLV; C:\WINDOWS\System32\drivers\GPIOCLV.sys [22016 2014-11-12] (Intel Corporation)
R3 GpioVirtual; C:\WINDOWS\System32\drivers\GpioVirtual.sys [11264 2014-11-12] (Windows (R) Win 7 DDK provider)
R3 igdperf32; C:\WINDOWS\system32\DRIVERS\igdperf32.sys [4096 2014-11-12] ()
S3 imx175; C:\WINDOWS\System32\drivers\imx175.sys [57856 2013-03-02] (Intel Corporation)
R0 inteli2c; C:\WINDOWS\System32\drivers\inteli2c.sys [48880 2014-11-12] (Intel Corporation)
R3 IntelSST; C:\WINDOWS\system32\drivers\isstrtc.sys [241152 2014-11-12] (Intel(R) Corporation)
S3 LAN9500; C:\WINDOWS\system32\DRIVERS\lan9500-x86-n630f.sys [76288 2015-04-22] (SMSC)
R0 Lm3554; C:\WINDOWS\System32\drivers\lm3554.sys [34816 2014-11-12] (Intel Corporation)
R0 LNWIPC; C:\WINDOWS\System32\drivers\LNWIPC.sys [25840 2014-11-12] (Intel Corporation)
R0 MBI; C:\WINDOWS\System32\drivers\MBI.sys [16112 2014-11-12] (Intel Corporation)
R3 MSICReg; C:\WINDOWS\System32\drivers\MSICReg.sys [17408 2014-11-12] (Intel Corporation)
S3 mt9e013; C:\WINDOWS\System32\drivers\mt9e013.sys [49664 2013-03-02] (Intel Corporation)
R3 ov2720; C:\WINDOWS\System32\drivers\ov2720.sys [46592 2014-11-12] (Intel Corporation)
R3 ov8830; C:\WINDOWS\System32\drivers\ov8830.sys [63488 2014-11-12] (Intel Corporation)
S3 qca_shb; C:\WINDOWS\System32\drivers\qca_shb.sys [104960 2012-12-07] (Qualcomm Atheros Communications Inc.) [File not signed]
R3 qcbtuart; C:\WINDOWS\System32\drivers\qcbtuart.sys [139776 2014-01-18] (Qualcomm Atheros, Inc.)
S3 RSUSBVSTOR; C:\WINDOWS\System32\Drivers\RtsUVStor.sys [244952 2014-11-12] (Realtek Semiconductor Corp.)
R3 rtii2sac; C:\WINDOWS\system32\DRIVERS\rtii2sac.sys [142552 2014-11-12] (Realtek Semiconductor Corp.)
R3 SensorsServiceDriver; C:\WINDOWS\System32\drivers\WUDFRd.sys [190976 2014-10-29] (Microsoft Corporation)
R3 spi; C:\WINDOWS\System32\drivers\spi.sys [46592 2014-11-12] (Intel Corporation)
R3 Uart16550pc; C:\WINDOWS\System32\drivers\Uart16550pc.sys [40960 2014-11-12] (Intel Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [38928 2015-07-07] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [233304 2015-07-07] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [84824 2015-07-07] (Microsoft Corporation)
R3 WUDFSensorLP; C:\WINDOWS\System32\drivers\WUDFRd.sys [190976 2014-10-29] (Microsoft Corporation)
R3 WUDFWpdMtp; C:\WINDOWS\System32\drivers\WUDFRd.sys [190976 2014-10-29] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-10-08 21:13 - 2015-10-08 21:14 - 00019053 _____ C:\Users\oem-user\Desktop\FRST.txt
2015-10-08 21:13 - 2015-10-08 21:13 - 00000000 ____D C:\FRST
2015-10-08 21:12 - 2015-10-08 21:12 - 00112640 _____ (forum.viry.cz) C:\Users\oem-user\Desktop\FRSTLauncher.exe
2015-10-08 21:08 - 2015-10-08 21:08 - 01698304 _____ (Farbar) C:\Users\oem-user\Desktop\FRST.exe
2015-10-07 18:51 - 2015-09-29 14:34 - 00128568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2015-10-07 18:51 - 2015-09-28 20:29 - 03065856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2015-10-07 18:51 - 2015-09-28 20:22 - 00334336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2015-10-07 18:51 - 2015-09-28 20:22 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuwebv.dll
2015-10-07 18:51 - 2015-09-28 20:22 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2015-10-07 18:51 - 2015-09-28 20:22 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapp.exe
2015-10-07 18:51 - 2015-09-28 20:13 - 02175488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2015-10-07 18:51 - 2015-09-28 20:12 - 00721920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2015-10-07 18:43 - 2015-10-08 21:01 - 00000000 ____D C:\Users\oem-user\AppData\Roaming\ProcessLasso
2015-10-03 22:34 - 2015-10-03 22:34 - 00000000 ____D C:\Users\oem-user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2015-09-27 13:19 - 2015-09-27 13:19 - 00001205 _____ C:\Users\oem-user\Desktop\Dead In Bermuda.exe – zástupce.lnk
2015-09-27 13:19 - 2015-09-27 13:19 - 00000000 ____D C:\Users\oem-user\AppData\LocalLow\CCCP
2015-09-22 10:34 - 2015-09-22 10:34 - 00010990 _____ C:\WINDOWS\PFRO.log
2015-09-22 09:53 - 2015-08-06 18:18 - 04068352 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2015-09-22 09:52 - 2015-08-07 23:46 - 05767000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-09-22 09:52 - 2015-08-07 23:46 - 01469456 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2015-09-22 09:52 - 2015-08-07 23:46 - 00888896 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2015-09-22 09:52 - 2015-08-07 23:40 - 00507176 _____ (Microsoft Corporation) C:\WINDOWS\system32\advapi32.dll
2015-09-22 09:50 - 2015-08-22 15:42 - 00901264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2015-09-22 09:50 - 2015-08-22 15:42 - 00066400 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-private-l1-1-0.dll
2015-09-22 09:50 - 2015-08-22 15:42 - 00022368 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-math-l1-1-0.dll
2015-09-22 09:50 - 2015-08-22 15:42 - 00019808 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2015-09-22 09:50 - 2015-08-22 15:42 - 00017760 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-string-l1-1-0.dll
2015-09-22 09:50 - 2015-08-22 15:42 - 00017760 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-stdio-l1-1-0.dll
2015-09-22 09:50 - 2015-08-22 15:42 - 00016224 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-runtime-l1-1-0.dll
2015-09-22 09:50 - 2015-08-22 15:42 - 00015712 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-convert-l1-1-0.dll
2015-09-22 09:50 - 2015-08-22 15:42 - 00014176 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-time-l1-1-0.dll
2015-09-22 09:50 - 2015-08-22 15:42 - 00013664 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2015-09-22 09:50 - 2015-08-22 15:42 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-process-l1-1-0.dll
2015-09-22 09:50 - 2015-08-22 15:42 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-heap-l1-1-0.dll
2015-09-22 09:50 - 2015-08-22 15:42 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-conio-l1-1-0.dll
2015-09-22 09:50 - 2015-08-22 15:42 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-utility-l1-1-0.dll
2015-09-22 09:50 - 2015-08-22 15:42 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-locale-l1-1-0.dll
2015-09-22 09:50 - 2015-08-22 15:42 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-environment-l1-1-0.dll
2015-09-22 09:50 - 2015-08-10 19:01 - 00570368 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2015-09-22 09:50 - 2015-08-10 18:58 - 00734208 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2015-09-22 09:50 - 2015-08-10 18:56 - 00272384 _____ (Microsoft Corporation) C:\WINDOWS\system32\FWPUCLNT.DLL
2015-09-22 09:50 - 2015-08-10 18:46 - 00561664 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2015-09-22 09:50 - 2015-08-06 20:23 - 01388936 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2015-09-22 09:50 - 2015-08-06 20:23 - 01277888 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2015-09-22 09:50 - 2015-08-06 20:23 - 01269072 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2015-09-22 09:50 - 2015-08-06 20:23 - 01168920 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2015-09-22 09:50 - 2015-08-06 18:37 - 00536576 _____ (Microsoft Corporation) C:\WINDOWS\system32\hhctrl.ocx
2015-09-22 09:50 - 2015-07-16 20:42 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\NcdAutoSetup.dll
2015-09-20 16:14 - 2015-09-20 16:14 - 00313472 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2015-09-20 16:14 - 2015-09-20 16:14 - 00043112 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2015-09-20 12:41 - 2015-09-20 12:41 - 00001624 _____ C:\Users\Public\Desktop\Foxit Reader.lnk
2015-09-20 12:41 - 2015-09-20 12:41 - 00000000 ____D C:\Users\Public\Foxit Software
2015-09-20 12:41 - 2015-09-20 12:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit Reader
2015-09-10 18:27 - 2015-09-10 18:27 - 00000024 _____ C:\WINDOWS\cmm.dat
2015-09-09 17:14 - 2015-10-08 21:04 - 00001327 _____ C:\WINDOWS\setupact.log
2015-09-09 17:14 - 2015-09-09 17:14 - 00000000 _____ C:\WINDOWS\setuperr.log
2015-09-09 14:26 - 2015-08-22 19:22 - 19856384 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-09-09 14:26 - 2015-08-22 18:55 - 00504832 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-09-09 14:26 - 2015-08-22 18:50 - 02279424 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-09-09 14:26 - 2015-08-22 18:45 - 00665600 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-09-09 14:26 - 2015-08-22 18:28 - 04520448 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-09-09 14:26 - 2015-08-22 18:23 - 00880128 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2015-09-09 14:26 - 2015-08-22 18:22 - 12857344 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-09-09 14:26 - 2015-08-22 18:20 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2015-09-09 14:26 - 2015-08-22 18:18 - 02052608 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2015-09-09 14:26 - 2015-08-22 18:18 - 00689152 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2015-09-09 14:26 - 2015-08-22 18:18 - 00685568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2015-09-09 14:26 - 2015-08-22 18:18 - 00327168 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2015-09-09 14:26 - 2015-08-22 18:00 - 01951232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2015-09-09 14:26 - 2015-08-22 17:56 - 01310720 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-09-09 14:26 - 2015-08-22 17:55 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2015-09-09 14:24 - 2015-08-01 05:45 - 00182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\schtasks.exe
2015-09-09 14:24 - 2015-08-01 05:38 - 01015808 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2015-09-09 14:24 - 2015-08-01 05:37 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskeng.exe
2015-09-09 14:24 - 2015-07-22 16:25 - 02461184 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2015-09-09 14:24 - 2015-07-22 16:25 - 01546752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2015-09-09 14:24 - 2015-07-18 20:29 - 00148480 _____ (Microsoft Corporation) C:\WINDOWS\system32\shacct.dll
2015-09-09 14:24 - 2015-07-18 20:27 - 00520192 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2015-09-09 14:22 - 2015-09-02 04:17 - 03523584 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2015-09-09 14:22 - 2015-09-02 04:17 - 00301568 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2015-09-09 14:22 - 2015-09-02 04:13 - 00035840 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2015-09-09 14:20 - 2015-09-03 04:17 - 01903848 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2015-09-09 14:20 - 2015-09-02 19:09 - 01556992 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2015-09-09 14:20 - 2015-07-30 18:22 - 00230912 _____ (Microsoft Corporation) C:\WINDOWS\system32\InkEd.dll
2015-09-09 14:19 - 2015-08-03 23:15 - 00065600 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidapi.dll
2015-09-09 14:19 - 2015-08-01 16:21 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidsvc.dll

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-10-08 21:14 - 2013-08-22 10:17 - 00000000 ____D C:\WINDOWS\system32\sru
2015-10-08 21:11 - 2014-06-22 13:51 - 00000000 ____D C:\Users\oem-user\AppData\Roaming\ClassicShell
2015-10-08 21:10 - 2014-03-18 09:57 - 01967884 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-10-08 21:06 - 2014-07-04 11:52 - 00000000 ___RD C:\Dropbox
2015-10-08 21:06 - 2014-07-04 11:46 - 00000000 ____D C:\Users\oem-user\AppData\Roaming\Dropbox
2015-10-08 21:05 - 2015-02-23 22:11 - 00000000 ____D C:\Users\oem-user\OneDrive
2015-10-08 21:05 - 2014-06-22 13:16 - 00000964 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-10-08 21:05 - 2014-04-26 13:13 - 00001223 ____H C:\Users\oem-user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Designed for ElitePad.lnk
2015-10-08 21:04 - 2015-09-07 22:17 - 01332434 _____ C:\WINDOWS\WindowsUpdate.log
2015-10-08 21:04 - 2013-08-22 09:23 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-10-08 21:03 - 2013-08-22 08:13 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2015-10-08 21:01 - 2015-06-16 19:50 - 00000950 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-2625918598-2988866889-3153320694-1001UA.job
2015-10-08 20:57 - 2014-07-10 10:39 - 00000000 ____D C:\Games
2015-10-08 20:34 - 2014-06-22 13:16 - 00000968 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-10-07 18:54 - 2012-07-26 08:43 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-10-07 05:02 - 2013-08-22 10:17 - 00000000 ____D C:\WINDOWS\Microsoft.NET
2015-10-07 01:03 - 2015-06-16 19:50 - 00000898 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-2625918598-2988866889-3153320694-1001Core.job
2015-10-03 22:28 - 2015-08-02 15:07 - 00000983 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2015-10-03 22:28 - 2015-08-02 15:07 - 00000000 ____D C:\Program Files\Opera
2015-09-27 13:19 - 2015-07-19 15:21 - 00000000 ____D C:\ProgramData\Steam
2015-09-27 12:22 - 2014-07-09 17:37 - 00000000 ___SD C:\WINDOWS\system32\CompatTel
2015-09-27 12:22 - 2013-08-22 10:17 - 00000000 ____D C:\WINDOWS\system32\NDF
2015-09-27 10:15 - 2014-06-22 13:18 - 00002111 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-09-23 12:21 - 2015-07-11 10:08 - 00000771 _____ C:\Users\oem-user\Desktop\Daum Potplayer.lnk
2015-09-22 13:53 - 2013-08-22 10:17 - 00000000 ____D C:\WINDOWS\rescache
2015-09-22 10:49 - 2015-01-02 19:39 - 00166400 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2015-09-22 10:34 - 2014-06-14 08:09 - 00000000 ____D C:\Program Files\Avast
2015-09-20 16:14 - 2014-06-22 13:17 - 00024016 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2015-09-20 16:14 - 2014-06-14 08:10 - 00789296 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2015-09-20 16:14 - 2014-06-14 08:10 - 00434184 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2015-09-20 16:14 - 2014-06-14 08:10 - 00208664 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2015-09-20 16:14 - 2014-06-14 08:10 - 00115640 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2015-09-20 16:14 - 2014-06-14 08:10 - 00081728 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2015-09-20 16:14 - 2014-06-14 08:10 - 00076000 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2015-09-20 16:14 - 2014-06-14 08:10 - 00049776 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2015-09-20 12:41 - 2013-08-22 08:21 - 00000000 ___RD C:\Users\Public
2015-09-16 17:16 - 2014-06-14 08:11 - 00000000 ____D C:\Users\oem-user\AppData\Local\Google
2015-09-15 03:18 - 2015-01-25 13:29 - 00812008 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2015-09-15 03:18 - 2015-01-25 13:29 - 00178152 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2015-09-12 00:49 - 2013-08-22 10:17 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-09-10 11:17 - 2014-06-18 10:58 - 00000000 ____D C:\Martin
2015-09-10 06:50 - 2015-01-02 19:43 - 00230912 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2015-09-10 06:50 - 2015-01-02 19:42 - 00587264 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepdu.dll
2015-09-10 06:50 - 2015-01-02 19:42 - 00446464 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2015-09-10 06:50 - 2015-01-02 19:42 - 00318464 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2015-09-10 06:50 - 2015-01-02 19:42 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2015-09-09 17:30 - 2012-07-26 08:53 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2015-09-09 17:16 - 2013-08-22 09:22 - 00472672 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-09-09 17:15 - 2014-03-18 09:38 - 00000000 ____D C:\Program Files\Windows Journal
2015-09-09 15:37 - 2014-06-20 15:03 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2015-09-09 15:35 - 2014-06-20 14:56 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-09-09 15:31 - 2014-05-15 00:30 - 00000000 ____D C:\WINDOWS\system32\MRT

==================== Files in the root of some directories =======

2014-10-17 20:16 - 2014-10-17 20:16 - 0000000 ____H () C:\Users\oem-user\AppData\Local\BITDCA7.tmp
2014-10-17 20:16 - 2014-10-17 20:16 - 0000000 _____ () C:\Users\oem-user\AppData\Local\{9D9C5672-32AD-4B0E-A3C5-AB76F783FDB4}

Some files in TEMP:
====================
C:\Users\oem-user\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp5kdxox.dll
C:\Users\oem-user\AppData\Local\Temp\FoxitUpdater.exe

==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================

==================== MBR and Partition Table ==================

==================== Scheduled Tasks (whitelisted) ==================

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-2625918598-2988866889-3153320694-1001Core.job => C:\Users\oem-user\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-2625918598-2988866889-3153320694-1001UA.job => C:\Users\oem-user\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe

==================== Alternate Data Streams (whitelisted) ==================

==================== Security Center ==================

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Disabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Disabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)

***** Velikost "Plochy" *****

Velikost slozky "C:\Users\oem-user\Desktop" je 1 MB.

***** Startup Programs *****

***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000

==================== End Of Log ==============================

Addition.zip: (4.22 KiB) Staženo 53 x

#2 Příspěvek od **Rudy** » 08 říj 2015 20:26

Zdravím!
Spusťte tuto utilitu:

Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.

lastsaves · #3 Příspěvek od **lastsaves** » 08 říj 2015 21:40

# AdwCleaner v5.012 - Logfile created 08/10/2015 at 22:33:59
# Updated 08/10/2015 by Xplode
# Database : 2015-10-07.1 [Server]
# Operating system : Windows 8.1 (x86)
# Username : oem-user - TABLET-HP
# Running from : C:\Users\oem-user\Desktop\adwcleaner_5.012.exe
# Option : Cleaning
# Support : http://toolslib.net/forum

***** [ Services ] *****

***** [ Folders ] *****

[-] Folder Deleted : C:\Users\oem-user\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbfnbcaeplbcioakkpcpgfkobkghlhen

***** [ Files ] *****

[-] File Deleted : C:\Users\oem-user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_kbfnbcaeplbcioakkpcpgfkobkghlhen_0.localstorage
[-] File Deleted : C:\Users\oem-user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_kbfnbcaeplbcioakkpcpgfkobkghlhen_0.localstorage-journal
[-] File Deleted : C:\Users\oem-user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_st.chatango.com_0.localstorage
[-] File Deleted : C:\Users\oem-user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_st.chatango.com_0.localstorage-journal

***** [ DLLs ] *****

***** [ Shortcuts ] *****

***** [ Scheduled tasks ] *****

[-] Task Deleted : TouchMousePointer0741448

***** [ Registry ] *****

[-] Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [NetWorx]
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\TouchMousePointer

***** [ Web browsers ] *****

[-] [C:\Users\oem-user\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : kbfnbcaeplbcioakkpcpgfkobkghlhen

*************************

:: Winsock settings cleared

########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [1741 bytes] ##########

#4 Příspěvek od **Rudy** » 09 říj 2015 17:43

Dejte nový log FRST.

lastsaves · #5 Příspěvek od **lastsaves** » 12 říj 2015 15:11

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:11-10-2015 02
Ran by oem-user (administrator) on TABLET-HP (12-10-2015 16:04:03)
Running from C:\Users\oem-user\Desktop
Loaded Profiles: oem-user (Available Profiles: oem-user)
Platform: Microsoft Windows 8.1 (X86) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Opera)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(AVAST Software) C:\Program Files\Avast\AvastSvc.exe
(Intel Corporation) C:\Windows\System32\DptfParticipantDisplayService.exe
(Intel Corporation) C:\Windows\System32\DptfParticipantProcessorService.exe
(Intel Corporation) C:\Windows\System32\DptfPolicyCriticalService.exe
() C:\Apps\Everything\Everything.exe
(Foxit Software Inc.) C:\Apps\Foxit Reader\Foxit Cloud\FCUpdateService.exe
() C:\Apps\NetTime\NetTimeService.exe
(IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x86__8wekyb3d8bbwe\livecomm.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\Shared\hpdfe.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\AP\RtkNGUI.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(AVAST Software) C:\Program Files\Avast\AvastUI.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\BackgroundTransferHost.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
() C:\Apps\NetTime\NetTime.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Flux Software LLC) C:\Users\oem-user\AppData\Local\FluxSoftware\Flux\flux.exe
(Dropbox, Inc.) C:\Users\oem-user\AppData\Local\Dropbox\Update\DropboxUpdate.exe
() C:\Apps\Ditto\Ditto.exe
(Dropbox, Inc.) C:\Users\oem-user\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Polychrome Limited) C:\Apps\PowerSlave\PowerSlave.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [hpdfe] => C:\Program Files\Hewlett-Packard\Shared\hpdfe.exe [400608 2015-06-23] (Hewlett-Packard Development Company, L.P.)
HKLM\...\Run: [RtkNGUI] => C:\Program Files\Realtek\Audio\AP\RtkNGUI.exe [2760408 2014-11-12] (Realtek Semiconductor)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast\AvastUI.exe [6134544 2015-09-20] (AVAST Software)
HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [150208 2014-04-20] (IvoSoft)
HKLM\...\Run: [NetTime] => C:\Apps\NetTime\NetTime.exe [772096 2012-05-12] ()
HKLM\...\Run: [DptfPolicyLpmServiceHelper] => C:\WINDOWS\system32\DptfPolicyLpmServiceHelper.exe [71992 2014-11-12] (Intel Corporation)
HKU\S-1-5-21-2625918598-2988866889-3153320694-1001\...\Run: [f.lux] => C:\Users\oem-user\AppData\Local\FluxSoftware\Flux\flux.exe [1017224 2013-10-24] (Flux Software LLC)
HKU\S-1-5-21-2625918598-2988866889-3153320694-1001\...\Run: [GoogleChromeAutoLaunch_BFE5B4CEB695DF87D1F4F18696A12B99] => C:\Program Files\Google\Chrome\Application\chrome.exe [815944 2015-09-24] (Google Inc.)
HKU\S-1-5-21-2625918598-2988866889-3153320694-1001\...\Run: [ShowBatteryBar] => C:\Program Files\BatteryBar\ShowBatteryBar.exe [90624 2014-09-19] ()
HKU\S-1-5-21-2625918598-2988866889-3153320694-1001\...\Run: [Dropbox Update] => C:\Users\oem-user\AppData\Local\Dropbox\Update\DropboxUpdate.exe [134512 2015-06-16] (Dropbox, Inc.)
HKU\S-1-5-21-2625918598-2988866889-3153320694-1001\...\Run: [Ditto] => C:\Apps\Ditto\Ditto.exe [1647104 2015-01-10] ()
HKU\S-1-5-21-2625918598-2988866889-3153320694-1001\...\Policies\Explorer: [NoLogoff] 0
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast\ashShell.dll [2015-09-20] (AVAST Software)
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\oem-user\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll [2015-10-02] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\oem-user\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll [2015-10-02] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\oem-user\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll [2015-10-02] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-04-20] (IvoSoft)
Startup: C:\Users\oem-user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk [2015-09-06]
ShortcutTarget: Dropbox.lnk -> C:\Users\oem-user\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
Startup: C:\Users\oem-user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Odeslat do OneNote.lnk [2015-01-15]
ShortcutTarget: Odeslat do OneNote.lnk -> C:\Program Files\Microsoft Office\Office15\ONENOTEM.EXE (Microsoft Corporation)
Startup: C:\Users\oem-user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\PowerSlave.lnk [2014-07-18]
ShortcutTarget: PowerSlave.lnk -> C:\Windows\Installer\{561F816E-FDEB-4F4A-B040-C80F6583D4B9}\_DC9CF5E0B5265200E6F6BB.exe ()

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{188F7CFE-E7AD-4605-B8C0-1361F4CC8170}: [DhcpNameServer] 10.0.0.138

Internet Explorer:
==================
BHO: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-04-20] (IvoSoft)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2015-07-14] (Microsoft Corporation)
BHO: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2014-04-20] (IvoSoft)
Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-04-20] (IvoSoft)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2015-02-17] (Microsoft Corporation)

FireFox:
========
FF Plugin: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Apps\PDF X-Change\PDF Viewer\npPDFXCviewNPPlugin.dll [2014-07-28] (Tracker Software Products (Canada) Ltd.)
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Apps\Foxit Reader\plugins\npFoxitReaderPlugin.dll [No File]
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Apps\Foxit Reader\plugins\npFoxitReaderPlugin.dll [No File]
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Apps\Foxit Reader\plugins\npFoxitReaderPlugin.dll [No File]
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Apps\Foxit Reader\plugins\npFoxitReaderPlugin.dll [No File]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-20] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-20] (Google Inc.)
FF Plugin HKU\S-1-5-21-2625918598-2988866889-3153320694-1001: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Apps\PDF X-Change\PDF Viewer\npPDFXCviewNPPlugin.dll [2014-07-28] (Tracker Software Products (Canada) Ltd.)

Chrome:
=======
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR DefaultSearchKeyword: Default -> gml
CHR Profile: C:\Users\oem-user\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Dokumenty Google) - C:\Users\oem-user\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-06-22]
CHR Extension: (Disk Google) - C:\Users\oem-user\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-06-22]
CHR Extension: (YouTube) - C:\Users\oem-user\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-06-22]
CHR Extension: (Adblock Plus) - C:\Users\oem-user\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2014-07-13]
CHR Extension: (Vyhledávání Google) - C:\Users\oem-user\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-06-22]
CHR Extension: (Gmelius for Gmail) - C:\Users\oem-user\AppData\Local\Google\Chrome\User Data\Default\Extensions\dheionainndbbpoacpnopgmnihkcmnkl [2014-09-16]
CHR Extension: (Nástroj pro optimalizaci Offline Gmailu) - C:\Users\oem-user\AppData\Local\Google\Chrome\User Data\Default\Extensions\dncjnngcblhgeeocnhmmihpanahkjbmi [2014-09-16]
CHR Extension: (Gmail Offline) - C:\Users\oem-user\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejidjjhkpiempkbhmpbfngldlkglhimk [2014-09-16]
CHR Extension: (Dokumenty Google offline) - C:\Users\oem-user\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-09-06]
CHR Extension: (SingleFile Core) - C:\Users\oem-user\AppData\Local\Google\Chrome\User Data\Default\Extensions\jemlklgaibiijojffihnhieihhagocma [2015-01-29]
CHR Extension: (Grammarly Spell Checker & Grammar Checker) - C:\Users\oem-user\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbfnbcaeplbcioakkpcpgfkobkghlhen [2015-10-09]
CHR Extension: (Right Inbox for Gmail) - C:\Users\oem-user\AppData\Local\Google\Chrome\User Data\Default\Extensions\mflnemhkomgploogccdmcloekbloobgb [2014-09-16]
CHR Extension: (SingleFile) - C:\Users\oem-user\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpiodijhokgodhhofbcjdecpffjipkle [2015-01-29]
CHR Extension: (Save to Pocket) - C:\Users\oem-user\AppData\Local\Google\Chrome\User Data\Default\Extensions\niloccemoadcdkdjlinkgdfekeahmflj [2014-11-20]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\oem-user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-06-22]
CHR Extension: (Retro Compose for Gmail™) - C:\Users\oem-user\AppData\Local\Google\Chrome\User Data\Default\Extensions\npjkmbechijncoapeeifgfhcjkcandgk [2014-09-16]
CHR Extension: (Windowed Mail for GMail) - C:\Users\oem-user\AppData\Local\Google\Chrome\User Data\Default\Extensions\okgpnfocnmofaplnnimmiojppnabfclb [2014-09-16]
CHR Extension: (Gmail) - C:\Users\oem-user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-06-22]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 avast! Antivirus; C:\Program Files\Avast\AvastSvc.exe [146600 2015-09-20] (AVAST Software)
R2 DptfParticipantDisplayService; C:\WINDOWS\system32\DptfParticipantDisplayService.exe [104248 2014-11-12] (Intel Corporation)
R2 DptfParticipantProcessorService; C:\WINDOWS\system32\DptfParticipantProcessorService.exe [76088 2014-11-12] (Intel Corporation)
R2 DptfPolicyCriticalService; C:\WINDOWS\system32\DptfPolicyCriticalService.exe [63288 2014-11-12] (Intel Corporation)
S2 DptfPolicyLpmService; C:\WINDOWS\system32\DptfPolicyLpmService.exe [82232 2014-11-12] (Intel Corporation)
R2 Everything; C:\Apps\Everything\Everything.exe [1048576 2014-08-06] () [File not signed]
R2 FoxitCloudUpdateService; C:\Apps\Foxit Reader\Foxit Cloud\FCUpdateService.exe [242880 2015-07-02] (Foxit Software Inc.)
R2 NetTimeSvc; C:\Apps\NetTime\NetTimeService.exe [473088 2012-05-12] () [File not signed]
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [284520 2015-07-07] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [22224 2015-07-07] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 ar6knwf; C:\WINDOWS\system32\DRIVERS\ar6knwf.sys [1544192 2013-10-24] (Qualcomm Atheros Communications, Inc.)
R2 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [24016 2015-09-20] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [76000 2015-09-20] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [81728 2015-09-20] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\system32\Drivers\aswRvrt.sys [49776 2015-09-20] (AVAST Software)
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [789296 2015-09-20] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [434184 2015-09-20] (AVAST Software)
R2 aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [115640 2015-09-20] (AVAST Software)
R0 aswVmm; C:\WINDOWS\system32\Drivers\aswVmm.sys [208664 2015-09-20] (AVAST Software)
R3 BcmGnssBus; C:\WINDOWS\System32\drivers\BcmGnssBus.sys [95304 2013-08-07] (Broadcom Corporation)
R3 BthLEEnum; C:\WINDOWS\system32\DRIVERS\BthLEEnum.sys [186880 2014-03-18] (Microsoft Corporation)
R3 BthMini; C:\WINDOWS\System32\Drivers\BTHMINI.sys [23552 2015-06-10] (Microsoft Corporation)
R3 camera; C:\WINDOWS\system32\DRIVERS\camera.sys [207872 2014-11-12] (Intel Corporation)
R0 ChaabiDriver; C:\WINDOWS\System32\drivers\ChaabiDriver.sys [74256 2014-11-12] (Intel Corporation)
R0 clvpep; C:\WINDOWS\System32\drivers\clvpep.sys [81648 2012-10-24] (Intel Corporation)
R3 DASL; C:\WINDOWS\System32\drivers\DASL86.sys [76000 2015-06-23] (Hewlett-Packard)
R3 DptfDevDisplay; C:\WINDOWS\System32\drivers\DptfDevDisplay.sys [44256 2014-11-12] (Intel Corporation)
R3 DptfDevGen; C:\WINDOWS\System32\drivers\DptfDevGen.sys [49888 2014-11-12] (Intel Corporation)
R3 DptfDevProc; C:\WINDOWS\System32\drivers\DptfDevProc.sys [69344 2014-11-12] (Intel Corporation)
R3 DptfManager; C:\WINDOWS\System32\drivers\DptfManager.sys [163552 2014-11-12] (Intel Corporation)
S3 FlashLed; C:\WINDOWS\System32\drivers\flashled.sys [27136 2013-03-02] (Intel Corporation)
R3 GPIOCLV; C:\WINDOWS\System32\drivers\GPIOCLV.sys [22016 2014-11-12] (Intel Corporation)
R3 GpioVirtual; C:\WINDOWS\System32\drivers\GpioVirtual.sys [11264 2014-11-12] (Windows (R) Win 7 DDK provider)
R3 igdperf32; C:\WINDOWS\system32\DRIVERS\igdperf32.sys [4096 2014-11-12] ()
S3 imx175; C:\WINDOWS\System32\drivers\imx175.sys [57856 2013-03-02] (Intel Corporation)
R0 inteli2c; C:\WINDOWS\System32\drivers\inteli2c.sys [48880 2014-11-12] (Intel Corporation)
R3 IntelSST; C:\WINDOWS\system32\drivers\isstrtc.sys [241152 2014-11-12] (Intel(R) Corporation)
S3 LAN9500; C:\WINDOWS\system32\DRIVERS\lan9500-x86-n630f.sys [76288 2015-04-22] (SMSC)
R0 Lm3554; C:\WINDOWS\System32\drivers\lm3554.sys [34816 2014-11-12] (Intel Corporation)
R0 LNWIPC; C:\WINDOWS\System32\drivers\LNWIPC.sys [25840 2014-11-12] (Intel Corporation)
R0 MBI; C:\WINDOWS\System32\drivers\MBI.sys [16112 2014-11-12] (Intel Corporation)
R3 MSICReg; C:\WINDOWS\System32\drivers\MSICReg.sys [17408 2014-11-12] (Intel Corporation)
S3 mt9e013; C:\WINDOWS\System32\drivers\mt9e013.sys [49664 2013-03-02] (Intel Corporation)
R3 ov2720; C:\WINDOWS\System32\drivers\ov2720.sys [46592 2014-11-12] (Intel Corporation)
R3 ov8830; C:\WINDOWS\System32\drivers\ov8830.sys [63488 2014-11-12] (Intel Corporation)
S3 qca_shb; C:\WINDOWS\System32\drivers\qca_shb.sys [104960 2012-12-07] (Qualcomm Atheros Communications Inc.) [File not signed]
R3 qcbtuart; C:\WINDOWS\System32\drivers\qcbtuart.sys [139776 2014-01-18] (Qualcomm Atheros, Inc.)
S3 RSUSBVSTOR; C:\WINDOWS\System32\Drivers\RtsUVStor.sys [244952 2014-11-12] (Realtek Semiconductor Corp.)
R3 rtii2sac; C:\WINDOWS\system32\DRIVERS\rtii2sac.sys [142552 2014-11-12] (Realtek Semiconductor Corp.)
R3 SensorsServiceDriver; C:\WINDOWS\System32\drivers\WUDFRd.sys [190976 2014-10-29] (Microsoft Corporation)
R3 spi; C:\WINDOWS\System32\drivers\spi.sys [46592 2014-11-12] (Intel Corporation)
R3 Uart16550pc; C:\WINDOWS\System32\drivers\Uart16550pc.sys [40960 2014-11-12] (Intel Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [38928 2015-07-07] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [233304 2015-07-07] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [84824 2015-07-07] (Microsoft Corporation)
R3 WUDFSensorLP; C:\WINDOWS\System32\drivers\WUDFRd.sys [190976 2014-10-29] (Microsoft Corporation)
R3 WUDFWpdMtp; C:\WINDOWS\System32\drivers\WUDFRd.sys [190976 2014-10-29] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-10-12 16:03 - 2015-10-12 16:03 - 00000000 ____D C:\Users\oem-user\Desktop\FRST-OlderVersion
2015-10-08 22:29 - 2015-10-08 22:33 - 00000000 ____D C:\AdwCleaner
2015-10-08 22:28 - 2015-10-08 22:28 - 01682432 _____ C:\Users\oem-user\Desktop\adwcleaner_5.012.exe
2015-10-08 21:15 - 2015-10-08 21:15 - 00014871 _____ C:\Users\oem-user\Desktop\Addition.txt
2015-10-08 21:13 - 2015-10-12 16:04 - 00018595 _____ C:\Users\oem-user\Desktop\FRST.txt
2015-10-08 21:13 - 2015-10-12 16:04 - 00000000 ____D C:\FRST
2015-10-08 21:13 - 2015-10-08 21:13 - 00015327 _____ C:\Users\oem-user\Desktop\LM.bat
2015-10-08 21:08 - 2015-10-12 16:03 - 01699840 _____ (Farbar) C:\Users\oem-user\Desktop\FRST.exe
2015-10-07 18:51 - 2015-09-29 14:34 - 00128568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2015-10-07 18:51 - 2015-09-28 20:29 - 03065856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2015-10-07 18:51 - 2015-09-28 20:22 - 00334336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2015-10-07 18:51 - 2015-09-28 20:22 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuwebv.dll
2015-10-07 18:51 - 2015-09-28 20:22 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2015-10-07 18:51 - 2015-09-28 20:22 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapp.exe
2015-10-07 18:51 - 2015-09-28 20:13 - 02175488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2015-10-07 18:51 - 2015-09-28 20:12 - 00721920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2015-10-07 18:43 - 2015-10-08 21:01 - 00000000 ____D C:\Users\oem-user\AppData\Roaming\ProcessLasso
2015-10-03 22:34 - 2015-10-03 22:34 - 00000000 ____D C:\Users\oem-user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2015-09-27 13:19 - 2015-09-27 13:19 - 00001205 _____ C:\Users\oem-user\Desktop\Dead In Bermuda.exe – zástupce.lnk
2015-09-27 13:19 - 2015-09-27 13:19 - 00000000 ____D C:\Users\oem-user\AppData\LocalLow\CCCP
2015-09-22 10:34 - 2015-09-22 10:34 - 00010990 _____ C:\WINDOWS\PFRO.log
2015-09-22 09:53 - 2015-08-06 18:18 - 04068352 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2015-09-22 09:52 - 2015-08-07 23:46 - 05767000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-09-22 09:52 - 2015-08-07 23:46 - 01469456 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2015-09-22 09:52 - 2015-08-07 23:46 - 00888896 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2015-09-22 09:52 - 2015-08-07 23:40 - 00507176 _____ (Microsoft Corporation) C:\WINDOWS\system32\advapi32.dll
2015-09-22 09:50 - 2015-08-22 15:42 - 00901264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2015-09-22 09:50 - 2015-08-22 15:42 - 00066400 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-private-l1-1-0.dll
2015-09-22 09:50 - 2015-08-22 15:42 - 00022368 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-math-l1-1-0.dll
2015-09-22 09:50 - 2015-08-22 15:42 - 00019808 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2015-09-22 09:50 - 2015-08-22 15:42 - 00017760 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-string-l1-1-0.dll
2015-09-22 09:50 - 2015-08-22 15:42 - 00017760 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-stdio-l1-1-0.dll
2015-09-22 09:50 - 2015-08-22 15:42 - 00016224 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-runtime-l1-1-0.dll
2015-09-22 09:50 - 2015-08-22 15:42 - 00015712 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-convert-l1-1-0.dll
2015-09-22 09:50 - 2015-08-22 15:42 - 00014176 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-time-l1-1-0.dll
2015-09-22 09:50 - 2015-08-22 15:42 - 00013664 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2015-09-22 09:50 - 2015-08-22 15:42 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-process-l1-1-0.dll
2015-09-22 09:50 - 2015-08-22 15:42 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-heap-l1-1-0.dll
2015-09-22 09:50 - 2015-08-22 15:42 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-conio-l1-1-0.dll
2015-09-22 09:50 - 2015-08-22 15:42 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-utility-l1-1-0.dll
2015-09-22 09:50 - 2015-08-22 15:42 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-locale-l1-1-0.dll
2015-09-22 09:50 - 2015-08-22 15:42 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-environment-l1-1-0.dll
2015-09-22 09:50 - 2015-08-10 19:01 - 00570368 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2015-09-22 09:50 - 2015-08-10 18:58 - 00734208 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2015-09-22 09:50 - 2015-08-10 18:56 - 00272384 _____ (Microsoft Corporation) C:\WINDOWS\system32\FWPUCLNT.DLL
2015-09-22 09:50 - 2015-08-10 18:46 - 00561664 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2015-09-22 09:50 - 2015-08-06 20:23 - 01388936 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2015-09-22 09:50 - 2015-08-06 20:23 - 01277888 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2015-09-22 09:50 - 2015-08-06 20:23 - 01269072 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2015-09-22 09:50 - 2015-08-06 20:23 - 01168920 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2015-09-22 09:50 - 2015-08-06 18:37 - 00536576 _____ (Microsoft Corporation) C:\WINDOWS\system32\hhctrl.ocx
2015-09-22 09:50 - 2015-07-16 20:42 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\NcdAutoSetup.dll
2015-09-20 16:14 - 2015-09-20 16:14 - 00313472 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2015-09-20 16:14 - 2015-09-20 16:14 - 00043112 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2015-09-20 12:41 - 2015-09-20 12:41 - 00001624 _____ C:\Users\Public\Desktop\Foxit Reader.lnk
2015-09-20 12:41 - 2015-09-20 12:41 - 00000000 ____D C:\Users\Public\Foxit Software
2015-09-20 12:41 - 2015-09-20 12:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit Reader

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-10-12 16:05 - 2013-08-22 10:17 - 00000000 ____D C:\WINDOWS\system32\sru
2015-10-12 16:04 - 2014-07-04 11:52 - 00000000 ___RD C:\Dropbox
2015-10-12 16:04 - 2014-07-04 11:46 - 00000000 ____D C:\Users\oem-user\AppData\Roaming\Dropbox
2015-10-12 16:02 - 2015-02-23 22:11 - 00000000 ___RD C:\Users\oem-user\OneDrive
2015-10-12 16:02 - 2014-06-22 13:16 - 00000964 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-10-12 16:02 - 2014-04-26 13:13 - 00001223 ____H C:\Users\oem-user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Designed for ElitePad.lnk
2015-10-12 16:01 - 2015-06-16 19:50 - 00000950 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-2625918598-2988866889-3153320694-1001UA.job
2015-10-12 15:40 - 2014-06-22 13:16 - 00000968 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-10-12 11:06 - 2015-09-07 22:17 - 01900718 _____ C:\WINDOWS\WindowsUpdate.log
2015-10-12 10:54 - 2013-08-22 10:17 - 00000000 ____D C:\WINDOWS\Microsoft.NET
2015-10-09 17:54 - 2014-06-22 13:51 - 00000000 ____D C:\Users\oem-user\AppData\Roaming\ClassicShell
2015-10-09 01:03 - 2015-06-16 19:50 - 00000898 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-2625918598-2988866889-3153320694-1001Core.job
2015-10-08 22:40 - 2014-03-18 09:57 - 01967884 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-10-08 22:35 - 2015-09-09 17:14 - 00001404 _____ C:\WINDOWS\setupact.log
2015-10-08 22:35 - 2013-08-22 09:23 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-10-08 22:35 - 2013-08-22 08:13 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2015-10-08 22:29 - 2013-08-22 10:17 - 00000000 ____D C:\WINDOWS\rescache
2015-10-08 21:30 - 2014-07-10 10:39 - 00000000 ____D C:\Games
2015-10-07 18:54 - 2012-07-26 08:43 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-10-03 22:28 - 2015-08-02 15:07 - 00000983 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2015-10-03 22:28 - 2015-08-02 15:07 - 00000000 ____D C:\Program Files\Opera
2015-09-27 13:19 - 2015-07-19 15:21 - 00000000 ____D C:\ProgramData\Steam
2015-09-27 12:22 - 2014-07-09 17:37 - 00000000 ___SD C:\WINDOWS\system32\CompatTel
2015-09-27 12:22 - 2013-08-22 10:17 - 00000000 ____D C:\WINDOWS\system32\NDF
2015-09-27 10:15 - 2014-06-22 13:18 - 00002111 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-09-23 12:21 - 2015-07-11 10:08 - 00000771 _____ C:\Users\oem-user\Desktop\Daum Potplayer.lnk
2015-09-22 10:49 - 2015-01-02 19:39 - 00166400 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2015-09-22 10:34 - 2014-06-14 08:09 - 00000000 ____D C:\Program Files\Avast
2015-09-20 16:14 - 2014-06-22 13:17 - 00024016 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2015-09-20 16:14 - 2014-06-14 08:10 - 00789296 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2015-09-20 16:14 - 2014-06-14 08:10 - 00434184 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2015-09-20 16:14 - 2014-06-14 08:10 - 00208664 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2015-09-20 16:14 - 2014-06-14 08:10 - 00115640 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2015-09-20 16:14 - 2014-06-14 08:10 - 00081728 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2015-09-20 16:14 - 2014-06-14 08:10 - 00076000 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2015-09-20 16:14 - 2014-06-14 08:10 - 00049776 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2015-09-20 12:41 - 2013-08-22 08:21 - 00000000 ___RD C:\Users\Public
2015-09-16 17:16 - 2014-06-14 08:11 - 00000000 ____D C:\Users\oem-user\AppData\Local\Google
2015-09-15 03:18 - 2015-01-25 13:29 - 00812008 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2015-09-15 03:18 - 2015-01-25 13:29 - 00178152 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2015-09-12 00:49 - 2013-08-22 10:17 - 00000000 ____D C:\WINDOWS\AppReadiness

==================== Files in the root of some directories =======

2014-10-17 20:16 - 2014-10-17 20:16 - 0000000 ____H () C:\Users\oem-user\AppData\Local\BITDCA7.tmp
2014-10-17 20:16 - 2014-10-17 20:16 - 0000000 _____ () C:\Users\oem-user\AppData\Local\{9D9C5672-32AD-4B0E-A3C5-AB76F783FDB4}

Some files in TEMP:
====================
C:\Users\oem-user\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpkh5ns9.dll
C:\Users\oem-user\AppData\Local\Temp\FoxitUpdater.exe
C:\Users\oem-user\AppData\Local\Temp\sqlite3.dll

==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2015-10-12 10:54

==================== End of FRST.txt ============================

#6 Příspěvek od **Rudy** » 12 říj 2015 18:00

Otevřte poznámkový blok a zkopírujte do něj:

Start
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
C:\Users\oem-user\AppData\Local\BITDCA7.tmp
C:\Users\oem-user\AppData\Local\Temp
End

Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

lastsaves · #7 Příspěvek od **lastsaves** » 14 říj 2015 23:23

Provedeno, log níže.

Fix result of Farbar Recovery Scan Tool (x86) Version:14-10-2015 01
Ran by oem-user (2015-10-15 00:11:06) Run:1
Running from C:\Users\oem-user\Desktop
Loaded Profiles: oem-user (Available Profiles: oem-user)
Boot Mode: Normal

==============================================

fixlist content:
*****************
Start
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
C:\Users\oem-user\AppData\Local\BITDCA7.tmp
C:\Users\oem-user\AppData\Local\Temp
End
*****************

C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => moved successfully
C:\Users\oem-user\AppData\Local\BITDCA7.tmp => moved successfully

"C:\Users\oem-user\AppData\Local\Temp" folder move:

Could not move "C:\Users\oem-user\AppData\Local\Temp" => Scheduled to move on reboot.

Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 2015-10-15 00:18:36)

C:\Users\oem-user\AppData\Local\Temp => moved successfully

==== End of Fixlog 00:18:37 ====

#8 Příspěvek od **Rudy** » 15 říj 2015 17:06

Smazáno. Nastala nějaká změna?

lastsaves · #9 Příspěvek od **lastsaves** » 18 říj 2015 11:00

Zatím žádné výraznější zlepšení

#10 Příspěvek od **Rudy** » 18 říj 2015 11:05

Udělejte kompletní sken MBAM: http://www.malwarebytes.org/mbam.php a dejte log. Předem nic nemažte.

lastsaves · #11 Příspěvek od **lastsaves** » 18 říj 2015 22:35

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 18. 10. 2015
Scan Time: 17:10
Logfile:
Administrator: Yes

Version: 2.2.0.1024
Malware Database: v2015.10.18.03
Rootkit Database: v2015.10.16.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled

OS: Windows 8.1
CPU: x86
File System: NTFS
User: oem-user

Scan Type: Custom Scan
Result: Completed
Objects Scanned: 421743
Time Elapsed: 5 hr, 57 min, 12 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Enabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 0
(No malicious items detected)

Registry Values: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Folders: 0
(No malicious items detected)

Files: 0
(No malicious items detected)

Physical Sectors: 0
(No malicious items detected)

(end)

lastsaves · #12 Příspěvek od **lastsaves** » 18 říj 2015 22:35

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 18. 10. 2015
Scan Time: 17:10
Logfile:
Administrator: Yes

Version: 2.2.0.1024
Malware Database: v2015.10.18.03
Rootkit Database: v2015.10.16.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled

OS: Windows 8.1
CPU: x86
File System: NTFS
User: oem-user

Scan Type: Custom Scan
Result: Completed
Objects Scanned: 421743
Time Elapsed: 5 hr, 57 min, 12 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Enabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 0
(No malicious items detected)

Registry Values: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Folders: 0
(No malicious items detected)

Files: 0
(No malicious items detected)

Physical Sectors: 0
(No malicious items detected)

(end)

#13 Příspěvek od **Rudy** » 19 říj 2015 16:54

Po virovém stránce je čisto. Co jste instaloval těsně před tím, než se problém objevil?

lastsaves · #14 Příspěvek od **lastsaves** » 24 říj 2015 06:53

Omlouvám se za prodlevu v odpovědi.
Zkoušel jsem CleanMem http://www.pcwintech.com/cleanmem a Proccess Lasso https://bitsum.com/processlasso/.
Ale obojí jsem odinstaloval ještě před testem FRST.

#15 Příspěvek od **Rudy** » 24 říj 2015 10:44

Zkuste tedy obnovu systému k datu, kdy korektně fungoval.

VIRY.CZ

Zpomalený tablet

Zpomalený tablet

Re: Zpomalený tablet

Re: Zpomalený tablet

Re: Zpomalený tablet

Re: Zpomalený tablet

Re: Zpomalený tablet

Re: Zpomalený tablet

Re: Zpomalený tablet

Re: Zpomalený tablet

Re: Zpomalený tablet

Re: Zpomalený tablet

Re: Zpomalený tablet

Re: Zpomalený tablet

Re: Zpomalený tablet

Re: Zpomalený tablet