Zamrznutie myšky-kurzoru

Zpráva

barney811 · #1 Příspěvek od **barney811** » 16 led 2016 23:09

Ahojte,
prosím o pomoc už som v koncoch a neviem sa pohnúť ďalej.

Po zapnutí noteb. asi do 5 min. zasekne kurzor(touchpad) dovtedy funguje ako má,po zamrznutí kurzora noťas funguje naďalej(klávesnica,správca úloh atď.)
V Safe mode kurzor funguje, tak mám podozrenie o nejakom škodlivom programe.

Logfile of random's system information tool 1.10 (written by random/random)
Run by Miriama at 2016-01-16 23:04:33
Microsoft Windows 8.1
System drive C: has 18 GB (10%) free of 190 GB
Total RAM: 3982 MB (86% free)

HijackThis download failed

======Listing Processes======

wininit.exe

winlogon.exe

C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
"dwm.exe"
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\Explorer.EXE
ctfmon.exe
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
"C:\Users\Miriama\Desktop\RSITx64.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player PPAPI Notifier.job - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_20_0_0_267_pepper.exe -check pepperplugin
C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5054562D-5247-006A-76A7-7A786E7484D7}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126}]
CIESpeechBHO Class - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2013-04-24 66688]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Persistence"=C:\WINDOWS\system32\igfxpers.exe [2013-10-01 769496]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2013-04-24 132736]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2015-01-23 31090272]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19 1022152]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe [2014-12-03 40336]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ASUSPRP]
C:\Program Files (x86)\ASUS\APRP\APRP.EXE [2013-05-01 3187360]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ASUSWebStorage]
C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\AsusWSPanel.exe [2012-12-19 3576784]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DisableS3S4]
c:\windows\temp\DisableS3S464\sethigh.cmd []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HotKeysCmds]
C:\WINDOWS\system32\hkcmd.exe [2013-10-01 771032]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IgfxTray]
C:\WINDOWS\system32\igfxtray.exe [2013-10-01 391128]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\mcpltui_exe]
C:\Program Files\McAfee.com\Agent\mcagent.exe /runkey []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl10]
C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [2013-03-08 95192]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RtHDVBg]
C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2013-07-04 1321688]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RTHDVCPL]
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2013-07-23 13632216]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2013-04-24 132736]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2013-10-01 623104]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MSIServer]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MSIServer]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableCAD"=1
"DisableTaskMgr"=0
"SoftwareSASGeneration"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoRun"=0
"NoFolderOptions"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave4"=wdmaud.drv
"mixer4"=wdmaud.drv
"midi4"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2016-01-16 23:04:34 ----D---- C:\Program Files\trend micro
2016-01-16 23:04:33 ----D---- C:\rsit
2016-01-16 18:00:20 ----A---- C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys
2016-01-16 18:00:02 ----D---- C:\ProgramData\Malwarebytes
2016-01-16 18:00:02 ----D---- C:\Program Files (x86)\Malwarebytes Anti-Malware
2016-01-16 18:00:02 ----A---- C:\WINDOWS\system32\drivers\mwac.sys
2016-01-16 18:00:02 ----A---- C:\WINDOWS\system32\drivers\mbamchameleon.sys
2016-01-16 18:00:02 ----A---- C:\WINDOWS\system32\drivers\mbam.sys
2016-01-16 17:28:26 ----SD---- C:\WINDOWS\SYSWOW64\Microsoft
2016-01-16 17:09:37 ----A---- C:\WINDOWS\ntbtlog.txt
2016-01-13 17:41:16 ----A---- C:\WINDOWS\system32\generaltel.dll
2016-01-13 17:41:16 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2016-01-13 17:41:16 ----A---- C:\WINDOWS\system32\appraiser.dll
2016-01-13 17:41:15 ----A---- C:\WINDOWS\system32\acmigration.dll
2016-01-13 17:33:41 ----A---- C:\WINDOWS\system32\mshtml.dll
2016-01-13 17:33:39 ----A---- C:\WINDOWS\system32\jscript9.dll
2016-01-13 17:33:37 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2016-01-13 17:33:34 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2016-01-13 17:33:32 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2016-01-13 17:33:31 ----A---- C:\WINDOWS\system32\wininet.dll
2016-01-13 17:33:30 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2016-01-13 17:33:30 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2016-01-13 17:33:30 ----A---- C:\WINDOWS\system32\vbscript.dll
2016-01-13 17:33:29 ----A---- C:\WINDOWS\system32\mshtmled.dll
2016-01-13 17:33:28 ----A---- C:\WINDOWS\system32\ieframe.dll
2016-01-13 17:33:27 ----A---- C:\WINDOWS\system32\urlmon.dll
2016-01-13 17:33:27 ----A---- C:\WINDOWS\system32\inetcomm.dll
2016-01-13 17:33:26 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2016-01-13 17:33:26 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2016-01-13 17:33:26 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2016-01-13 17:33:26 ----A---- C:\WINDOWS\SYSWOW64\inetcomm.dll
2016-01-13 17:33:26 ----A---- C:\WINDOWS\system32\msfeeds.dll
2016-01-13 17:33:26 ----A---- C:\WINDOWS\system32\jscript.dll
2016-01-13 17:33:25 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2016-01-13 17:33:25 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2016-01-13 17:31:47 ----A---- C:\WINDOWS\system32\devinv.dll
2016-01-13 17:31:47 ----A---- C:\WINDOWS\system32\aepic.dll
2016-01-13 17:31:47 ----A---- C:\WINDOWS\system32\aeinv.dll
2016-01-13 17:31:46 ----A---- C:\WINDOWS\SYSWOW64\qedit.dll
2016-01-13 17:31:46 ----A---- C:\WINDOWS\system32\qedit.dll
2016-01-13 17:31:44 ----A---- C:\WINDOWS\system32\msmpeg2adec.dll
2016-01-13 17:31:43 ----A---- C:\WINDOWS\SYSWOW64\WMVDECOD.DLL
2016-01-13 17:31:43 ----A---- C:\WINDOWS\SYSWOW64\msmpeg2adec.dll
2016-01-13 17:31:43 ----A---- C:\WINDOWS\system32\WMVDECOD.DLL
2016-01-13 17:31:42 ----A---- C:\WINDOWS\SYSWOW64\mfnetsrc.dll
2016-01-13 17:31:42 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2016-01-13 17:31:42 ----A---- C:\WINDOWS\system32\WMADMOD.DLL
2016-01-13 17:31:42 ----A---- C:\WINDOWS\system32\mfnetsrc.dll
2016-01-13 17:31:42 ----A---- C:\WINDOWS\system32\mfcore.dll
2016-01-13 17:31:41 ----A---- C:\WINDOWS\SYSWOW64\WMADMOD.DLL
2016-01-13 17:31:41 ----A---- C:\WINDOWS\SYSWOW64\mfnetcore.dll
2016-01-13 17:31:41 ----A---- C:\WINDOWS\system32\WMVENCOD.DLL
2016-01-13 17:31:41 ----A---- C:\WINDOWS\system32\mfnetcore.dll
2016-01-13 17:31:41 ----A---- C:\WINDOWS\system32\evr.dll
2016-01-13 17:31:40 ----A---- C:\WINDOWS\SYSWOW64\WMVENCOD.DLL
2016-01-13 17:31:40 ----A---- C:\WINDOWS\system32\WMSPDMOD.DLL
2016-01-13 17:31:40 ----A---- C:\WINDOWS\system32\quartz.dll
2016-01-13 17:31:40 ----A---- C:\WINDOWS\system32\mfsvr.dll
2016-01-13 17:31:39 ----A---- C:\WINDOWS\SYSWOW64\WMVSDECD.DLL
2016-01-13 17:31:39 ----A---- C:\WINDOWS\SYSWOW64\WMSPDMOD.DLL
2016-01-13 17:31:39 ----A---- C:\WINDOWS\SYSWOW64\quartz.dll
2016-01-13 17:31:39 ----A---- C:\WINDOWS\SYSWOW64\evr.dll
2016-01-13 17:31:39 ----A---- C:\WINDOWS\system32\WMVSDECD.DLL
2016-01-13 17:31:39 ----A---- C:\WINDOWS\system32\WMALFXGFXDSP.dll
2016-01-13 17:31:38 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2016-01-13 17:31:38 ----A---- C:\WINDOWS\system32\WMSPDMOE.DLL
2016-01-13 17:31:38 ----A---- C:\WINDOWS\system32\VIDRESZR.DLL
2016-01-13 17:31:38 ----A---- C:\WINDOWS\system32\MPG4DECD.DLL
2016-01-13 17:31:38 ----A---- C:\WINDOWS\system32\MP4SDECD.DLL
2016-01-13 17:31:38 ----A---- C:\WINDOWS\system32\COLORCNV.DLL
2016-01-13 17:31:37 ----A---- C:\WINDOWS\SYSWOW64\RESAMPLEDMO.DLL
2016-01-13 17:31:37 ----A---- C:\WINDOWS\SYSWOW64\MP4SDECD.DLL
2016-01-13 17:31:37 ----A---- C:\WINDOWS\SYSWOW64\MP3DMOD.DLL
2016-01-13 17:31:37 ----A---- C:\WINDOWS\SYSWOW64\COLORCNV.DLL
2016-01-13 17:31:37 ----A---- C:\WINDOWS\system32\RESAMPLEDMO.DLL
2016-01-13 17:31:37 ----A---- C:\WINDOWS\system32\MP43DECD.DLL
2016-01-13 17:31:37 ----A---- C:\WINDOWS\system32\MP3DMOD.DLL
2016-01-13 17:31:37 ----A---- C:\WINDOWS\system32\mfvdsp.dll
2016-01-13 17:31:36 ----A---- C:\WINDOWS\SYSWOW64\WMADMOE.DLL
2016-01-13 17:31:36 ----A---- C:\WINDOWS\SYSWOW64\VIDRESZR.DLL
2016-01-13 17:31:36 ----A---- C:\WINDOWS\SYSWOW64\MPG4DECD.DLL
2016-01-13 17:31:36 ----A---- C:\WINDOWS\SYSWOW64\MP43DECD.DLL
2016-01-13 17:31:36 ----A---- C:\WINDOWS\SYSWOW64\mfvdsp.dll
2016-01-13 17:31:36 ----A---- C:\WINDOWS\SYSWOW64\mfps.dll
2016-01-13 17:31:36 ----A---- C:\WINDOWS\SYSWOW64\devenum.dll
2016-01-13 17:31:36 ----A---- C:\WINDOWS\system32\mfps.dll
2016-01-13 17:31:36 ----A---- C:\WINDOWS\system32\devenum.dll
2016-01-13 17:31:35 ----A---- C:\WINDOWS\system32\WMVXENCD.DLL
2016-01-13 17:31:35 ----A---- C:\WINDOWS\system32\WMVSENCD.DLL
2016-01-13 17:31:35 ----A---- C:\WINDOWS\system32\WMADMOE.DLL
2016-01-13 17:31:35 ----A---- C:\WINDOWS\system32\qdvd.dll
2016-01-13 17:31:35 ----A---- C:\WINDOWS\system32\MFWMAAEC.DLL
2016-01-13 17:31:34 ----A---- C:\WINDOWS\SYSWOW64\WMVXENCD.DLL
2016-01-13 17:31:34 ----A---- C:\WINDOWS\SYSWOW64\WMVSENCD.DLL
2016-01-13 17:31:34 ----A---- C:\WINDOWS\SYSWOW64\qdvd.dll
2016-01-13 17:31:34 ----A---- C:\WINDOWS\SYSWOW64\MFWMAAEC.DLL
2016-01-13 17:31:34 ----A---- C:\WINDOWS\system32\SysFxUI.dll
2016-01-13 17:31:33 ----A---- C:\WINDOWS\SYSWOW64\WMSPDMOE.DLL
2016-01-13 17:31:30 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll
2016-01-13 17:31:30 ----A---- C:\WINDOWS\system32\gdi32.dll
2016-01-13 17:31:28 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2016-01-13 17:31:27 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2016-01-13 17:31:27 ----A---- C:\WINDOWS\system32\ntdll.dll
2016-01-13 17:31:15 ----A---- C:\WINDOWS\system32\certcli.dll
2016-01-13 17:31:15 ----A---- C:\WINDOWS\system32\bcryptprimitives.dll
2016-01-13 17:31:14 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2016-01-13 17:31:14 ----A---- C:\WINDOWS\system32\schannel.dll
2016-01-13 17:31:14 ----A---- C:\WINDOWS\system32\lsasrv.dll
2016-01-13 17:31:13 ----A---- C:\WINDOWS\SYSWOW64\ncryptsslp.dll
2016-01-13 17:31:13 ----A---- C:\WINDOWS\system32\ncryptsslp.dll
2016-01-13 17:31:13 ----A---- C:\WINDOWS\system32\ncrypt.dll
2016-01-13 17:31:12 ----A---- C:\WINDOWS\SYSWOW64\ncrypt.dll
2016-01-13 17:31:12 ----A---- C:\WINDOWS\SYSWOW64\certcli.dll
2016-01-13 17:31:12 ----A---- C:\WINDOWS\SYSWOW64\bcryptprimitives.dll
2016-01-13 17:31:12 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2016-01-13 17:31:12 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2016-01-13 17:31:12 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2016-01-13 17:31:12 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2016-01-13 17:30:52 ----A---- C:\WINDOWS\system32\advapi32.dll
2016-01-13 17:30:51 ----A---- C:\WINDOWS\SYSWOW64\advapi32.dll
2015-12-19 15:01:31 ----D---- C:\Program Files\Common Files\AV

======List of files/folders modified in the last 1 month======

2016-01-16 23:04:34 ----RD---- C:\Program Files
2016-01-16 22:57:03 ----A---- C:\WINDOWS\SYSWOW64\log.txt
2016-01-16 22:54:18 ----D---- C:\WINDOWS\Temp
2016-01-16 21:12:05 ----D---- C:\WINDOWS\Inf
2016-01-16 20:54:32 ----D---- C:\WINDOWS\System32
2016-01-16 20:54:32 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2016-01-16 20:35:55 ----D---- C:\WINDOWS\Prefetch
2016-01-16 20:06:57 ----D---- C:\WINDOWS\system32\sru
2016-01-16 19:09:52 ----D---- C:\WINDOWS\system32\catroot2
2016-01-16 19:08:04 ----D---- C:\WINDOWS\system32\DriverStore
2016-01-16 19:05:11 ----D---- C:\WINDOWS\system32\config
2016-01-16 19:02:14 ----D---- C:\WINDOWS\Microsoft.NET
2016-01-16 18:28:40 ----SHD---- C:\System Volume Information
2016-01-16 18:27:20 ----D---- C:\Users\Miriama\AppData\Roaming\Skype
2016-01-16 18:25:54 ----D---- C:\WINDOWS\Logs
2016-01-16 18:17:00 ----D---- C:\ProgramData\APN
2016-01-16 18:00:20 ----D---- C:\WINDOWS\system32\drivers
2016-01-16 18:00:02 ----HD---- C:\ProgramData
2016-01-16 18:00:02 ----D---- C:\Program Files (x86)
2016-01-16 17:52:25 ----D---- C:\WINDOWS\rescache
2016-01-16 17:39:19 ----D---- C:\ProgramData\AVAST Software
2016-01-16 17:39:09 ----D---- C:\Windows
2016-01-16 17:28:26 ----D---- C:\WINDOWS\SysWOW64
2016-01-16 17:27:35 ----D---- C:\Program Files (x86)\WildGames
2016-01-16 17:27:23 ----D---- C:\ProgramData\WildTangent
2016-01-16 17:25:19 ----SHD---- C:\WINDOWS\Installer
2016-01-16 17:22:06 ----D---- C:\Users\Miriama\AppData\Roaming\Seznam.cz
2016-01-16 16:56:10 ----D---- C:\WINDOWS\system32\wdi
2016-01-16 16:54:20 ----D---- C:\WINDOWS\CbsTemp
2016-01-16 16:54:17 ----D---- C:\WINDOWS\WinSxS
2016-01-16 16:54:11 ----SD---- C:\WINDOWS\system32\CompatTel
2016-01-16 16:54:11 ----D---- C:\WINDOWS\system32\appraiser
2016-01-16 16:54:11 ----D---- C:\WINDOWS\apppatch
2016-01-16 16:54:08 ----D---- C:\WINDOWS\system32\MRT
2016-01-16 16:47:55 ----D---- C:\WINDOWS\debug
2016-01-16 16:47:53 ----A---- C:\WINDOWS\system32\MRT.exe
2016-01-16 16:46:36 ----D---- C:\WINDOWS\SoftwareDistribution
2016-01-16 11:54:49 ----D---- C:\WINDOWS\system32\Tasks
2016-01-16 11:45:13 ----D---- C:\Program Files\Internet Explorer
2016-01-14 18:09:30 ----D---- C:\WINDOWS\AppReadiness
2016-01-13 17:53:10 ----D---- C:\Program Files (x86)\Opera
2016-01-12 18:06:22 ----HD---- C:\Program Files\WindowsApps
2016-01-10 11:18:21 ----D---- C:\WINDOWS\LiveKernelReports
2016-01-07 21:34:57 ----D---- C:\Users\Miriama\AppData\Roaming\ViberPC
2016-01-07 10:01:17 ----D---- C:\WINDOWS\system32\NDF
2016-01-05 21:04:40 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2015-12-21 00:29:00 ----D---- C:\Users\Miriama\AppData\Roaming\vlc
2015-12-21 00:07:02 ----D---- C:\Users\Miriama\AppData\Roaming\dvdcss
2015-12-19 15:01:31 ----D---- C:\Program Files\Common Files
2015-12-19 15:01:31 ----D---- C:\Program Files (x86)\Common Files
2015-12-18 11:50:22 ----SD---- C:\WINDOWS\SYSWOW64\GWX
2015-12-18 11:50:22 ----SD---- C:\WINDOWS\system32\GWX

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2013-05-03 677360]
R3 AiCharger;ASUS Charger Driver; C:\WINDOWS\system32\DRIVERS\AiCharger.sys [2012-09-18 17152]
R3 ATP;@oem25.inf,%PS2.DeviceDesc%;ASUS Input Device; C:\WINDOWS\System32\drivers\AsusTP.sys [2013-11-08 70928]
R3 HIDSwitch;@oem9.inf,%ASSW.DisplayName%;ASUS Wireless Radio Control; C:\WINDOWS\System32\drivers\AsHIDSwitch64.sys [2012-05-31 21152]
R3 iwdbus;@oem29.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2013-08-22 26008]
R3 kbfiltr;@oem11.inf,%kbfiltr.SvcDesc%;Keyboard Filter; C:\WINDOWS\System32\drivers\kbfiltr.sys [2012-08-02 14992]
R3 MEIx64;@oem13.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\HECIx64.sys [2012-07-02 62784]
S1 ATKWMIACPIIO;ATKWMIACPI Driver; \??\C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [2011-09-07 17536]
S1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\WINDOWS\system32\DRIVERS\vwififlt.sys [2014-04-30 71680]
S2 ASMMAP64;ASMMAP64; \??\C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-07-02 15416]
S3 AthBTPort;@oem8.inf,%BTHSUPPORT.SvcDesc%;Qualcomm Atheros Virtual Bluetooth Class; C:\WINDOWS\system32\DRIVERS\btath_flt.sys [2013-04-24 89800]
S3 athr;@athw8x.inf,%ATHR.Service.DispName%;Qualcomm Atheros Extensible Wireless LAN device driver; C:\WINDOWS\system32\DRIVERS\athw8x.sys [2013-06-18 3680256]
S3 BTATH_A2DP;@oem7.inf,%BTATH_A2DP.SvcDesc%;Bluetooth A2DP Audio Driver; C:\WINDOWS\system32\drivers\btath_a2dp.sys [2013-04-24 347336]
S3 btath_avdt;@oem7.inf,%btath_avdt.SvcDesc%;Qualcomm Atheros Bluetooth AVDT Service; C:\WINDOWS\system32\drivers\btath_avdt.sys [2013-04-24 115912]
S3 BTATH_HCRP;@oem10.inf,%BTATH_HCRP.SvcDesc%;Bluetooth HCRP Server driver; C:\WINDOWS\System32\drivers\btath_hcrp.sys [2013-04-24 179432]
S3 BTATH_LWFLT;@oem19.inf,%BTATH_LWFLT%;Bluetooth LWFLT Device; C:\WINDOWS\system32\DRIVERS\btath_lwflt.sys [2013-04-24 77464]
S3 BTATH_RCP;@oem15.inf,%BTATH_RCP%;Bluetooth AVRCP Device; C:\WINDOWS\System32\drivers\btath_rcp.sys [2013-04-24 136784]
S3 BtFilter;BtFilter; C:\WINDOWS\system32\DRIVERS\btfilter.sys [2014-01-28 593000]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\WINDOWS\System32\drivers\BthEnum.sys [2014-10-29 53248]
S3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\system32\DRIVERS\BthLEEnum.sys [2014-09-24 226304]
S3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2015-07-10 118272]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\System32\Drivers\BTHport.sys [2015-05-11 1201664]
S3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2014-10-29 81920]
S3 dg_ssudbus;@oem16.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2014-01-22 108800]
S3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2013-10-01 4177920]
S3 intaud_WaveExtensible;@oem28.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\WINDOWS\system32\drivers\intelaud.sys [2013-08-22 39320]
S3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2013-07-23 3492568]
S3 IntcDAud;@oem23.inf,%IntcDAud.SvcDesc%;Intel(R) Zvuk pre obrazovky; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2013-04-26 342528]
S3 MBAMProtector;MBAMProtector; \??\C:\WINDOWS\system32\drivers\mbam.sys [2015-10-05 25816]
S3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\WINDOWS\system32\drivers\mwac.sys [2015-10-05 64216]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2015-01-30 167424]
S3 RSBASTOR;@oem3.inf,%Rts5208%;Realtek PCIE CardReader Driver - BA; C:\WINDOWS\system32\DRIVERS\RtsBaStor.sys [2013-03-05 308808]
S3 RTL8168;@netrt630x64.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\WINDOWS\system32\DRIVERS\Rt630x64.sys [2013-06-18 591360]
S3 ssudmdm;@oem19.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2014-01-22 206080]
S3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;USB Video Device (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2014-06-21 212736]
S3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\WINDOWS\system32\DRIVERS\vwifimp.sys [2014-04-30 38912]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

S2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-12-03 81088]
S2 AFBAgent;AFBAgent; C:\Windows\system32\FBAgent.exe [2013-09-02 1282152]
S2 ASLDRService;ASLDR Service; C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe [2013-01-15 107320]
S2 ATKGFNEXSrv;ATKGFNEX Service; C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [2011-11-21 96896]
S2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\WINDOWS\System32\svchost.exe [2014-10-29 38792]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28 144200]
S2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2015-10-05 1135416]
S2 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0; C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe [2009-07-20 935208]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-01-02 315488]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-12-30 269504]
S3 ASUS InstantOn;ASUS InstantOn Service; C:\Program Files\ASUS\P4G\InsOnSrv.exe [2013-06-19 277120]
S3 Asus WebStorage Windows Service;Asus WebStorage Windows Service; C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\AsusWSWinService.exe [2012-12-19 72192]
S3 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2013-04-24 310400]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2014-10-29 38792]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2013-10-01 279000]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28 144200]
S3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2012-04-24 169752]
S3 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-04-20 635104]
S3 Intel(R) ME Service;Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2012-06-27 129856]
S3 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-06-25 166720]
S3 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-07-17 277824]
S3 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-07-17 365376]

-----------------EOF-----------------

#2 Příspěvek od **Márty84** » 17 led 2016 09:04

Zdravim

barney811 píše:Po zapnutí noteb. asi do 5 min. zasekne kurzor(touchpad)

Pri pouziti klasicke mysky se to sekne taky?

Stahnete AdwCleaner https://toolslib.net/downloads/finish/1/ a ulozte ho na plochu.
Ukoncete vsechny programy, jinak to AdwCleaner udela za vas.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce.
Kliknete na Scan a pockejte, az kontrola dobehne.
Pak kliknete na Cleaning
Program zacne pracovat (muze dojit k restartu pc) a vyplivne log (pripadne bude zde C:\AdwCleaner\AdwCleaner[C?].txt ). Ten mi sem zkopirujte.

barney811 · #3 Příspěvek od **barney811** » 17 led 2016 11:44

Dobré ráno

nie klasická myška funguje, zamrzne len touchpad, ktorý nereaguje ani pri pripojenej či zas odpojenej klasickej myšky.

# AdwCleaner v5.029 - Logfile created 17/01/2016 at 11:34:21
# Updated 11/01/2016 by Xplode
# Database : 2016-01-15.2 [Server]
# Operating system : Windows 8.1 (x64)
# Username : Miriama - ASUS
# Running from : C:\Users\Miriama\Downloads\adwcleaner_5.029.exe
# Option : Cleaning
# Support : http://toolslib.net/forum

***** [ Services ] *****

***** [ Folders ] *****

[-] Folder Deleted : C:\Program Files (x86)\GreenTree Applications
[-] Folder Deleted : C:\ProgramData\apn
[-] Folder Deleted : C:\Users\Miriama\AppData\Local\VNT
[-] Folder Deleted : C:\Users\Miriama\AppData\Local\Temp\apn

***** [ Files ] *****

***** [ DLLs ] *****

***** [ Shortcuts ] *****

***** [ Scheduled tasks ] *****

[-] Task Deleted : LaunchSignup

***** [ Registry ] *****

[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{5054562D-5247-006A-76A7-7A786E7484D7}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{5054562D-5247-006A-76A7-7A786E7484D7}
[-] Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{5054562D-5247-006A-76A7-7A786E7484D7}]
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5054562D-5247-006A-76A7-7A786E7484D7}
[-] Key Deleted : HKCU\Software\VNT
[-] Key Deleted : HKLM\SOFTWARE\AVG Secure Search
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{E3889AE6-E76E-4131-9967-B251615A6BB0}

***** [ Web browsers ] *****

[-] [C:\Users\Miriama\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : aaaahnibljmklpljnbpgfobmfpfhplch

*************************

:: "Tracing" keys removed
:: Winsock settings cleared

########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [1991 bytes] ##########

barney811 · #4 Příspěvek od **barney811** » 17 led 2016 12:54

Ďakujem veľmi pekne za Váš čas.
Problém vyriešený.Celý čas som sa zameriaval na malware atď. a problém som mal pod nosom(inštalovaním rôznych programov typu-"zrýchlenie pc" rozhádzalo ovládače).
Pokiaľ nevidíte v mojich logov nejaký ďalší problém poprosím

Ešte raz ďakujem.

#5 Příspěvek od **Márty84** » 17 led 2016 14:35

To jsem rad, ze uz je to v poradku

Ano, podobne programy mivaji takove blahodarne ucinky, jako rozhazene ovladace, registry, nebo rovnou celkovy pad systemu

Je tam par veci, ktere by tam byt nemusely, takze jestli chcete, muzem to procistit...

Dejte logy podle tohoto navodu http://forum.viry.cz/viewtopic.php?f=13&t=133100 - vypnete na chvili antivir, je mozne, ze to bude blokovat jako skodnou, ale pouzivame to porad, jedna se o falesny poplach

Jinak nemate zac!

barney811 · #6 Příspěvek od **barney811** » 17 led 2016 16:15

Ok tak už to dokončíme keď tu mám ten noťas

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:10-01-2015 01
Ran by Miriama (administrator) on ASUS (17-01-2016 16:09:09)
Running from C:\Users\Miriama\Desktop
Loaded Profiles: Miriama (Available Profiles: Miriama)
Platform: Windows 8.1 (X64) Language: Slovenčina (Slovensko)
Internet Explorer Version 11 (Default browser: Opera)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\vsserv.exe
(ASUSTeK Computer Inc.) C:\Windows\System32\FBAgent.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(Nero AG) C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\updatesrv.exe
(Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.17709_none_fa7932f59afc2e40\TiWorker.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(ASUS) C:\Program Files\ASUS\P4G\InsOnSrv.exe
() C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\AsusWSWinService.exe
(Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\APRP\aprp.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
(ASUS) C:\Program Files\ASUS\P4G\InsOnWMI.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\Splendid\ColorUService.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(Atheros Communications) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\bdagent.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
() C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\bdwtxag.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsusVibe\AsusVibe2.0.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\downloader.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\seccenter.exe
Failed to access process -> FRST64.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\APRP\aprp.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(ASUS) C:\Program Files\ASUS\P4G\BatteryLife.exe
(forum.viry.cz) C:\Users\Miriama\Desktop\FRSTLauncher.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe
(ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsusVibe\AsusVibe2.0.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [Bdagent] => C:\Program Files\Bitdefender\Bitdefender 2015\bdagent.exe [1695744 2015-06-12] (Bitdefender)
Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [132736 2013-04-24] (Atheros Communications)
HKU\S-1-5-21-143734197-33437288-2066276020-1001\...\Run: [Bitdefender Wallet Agent] => C:\Program Files\Bitdefender\Bitdefender 2015\bdwtxag.exe [790880 2015-06-12] (Bitdefender)
ShellIconOverlayIdentifiers: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => No File
ShellIconOverlayIdentifiers: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => No File
ShellIconOverlayIdentifiers: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => No File
ShellIconOverlayIdentifiers: [!AsusWSShellExt_B] -> {6D4133E5-0742-4ADC-8A8C-9303440F7190} => C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\ASUSWSShellExt64.dll [2012-09-27] (ASUS Cloud Corporation.)
ShellIconOverlayIdentifiers: [!AsusWSShellExt_O] -> {64174815-8D98-4CE6-8646-4C039977D808} => C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\ASUSWSShellExt64.dll [2012-09-27] (ASUS Cloud Corporation.)
ShellIconOverlayIdentifiers: [!AsusWSShellExt_U] -> {1C5AB7B1-0B38-4EC4-9093-7FD277E2AF4D} => C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\ASUSWSShellExt64.dll [2012-09-27] (ASUS Cloud Corporation.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
ShellIconOverlayIdentifiers-x32: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => No File
ShellIconOverlayIdentifiers-x32: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => No File
ShellIconOverlayIdentifiers-x32: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => No File

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{A4A873CF-4E2D-475F-8BDA-8F4FB9AB2D13}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-143734197-33437288-2066276020-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/
HKU\S-1-5-21-143734197-33437288-2066276020-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus13.msn.com
HKU\S-1-5-21-143734197-33437288-2066276020-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxps://www.google.sk/
hxxps://www.google.sk/
URLSearchHook: HKLM-x32 - (No Name) - {707db484-2428-402d-afb5-d85b387544c7} - No File
SearchScopes: HKLM-x32 -> DefaultScope {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL =
SearchScopes: HKU\S-1-5-21-143734197-33437288-2066276020-1001 -> DefaultScope {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL =
SearchScopes: HKU\S-1-5-21-143734197-33437288-2066276020-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-143734197-33437288-2066276020-1001 -> {C8C95161-09C5-475F-869C-7339F1116068} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_13014
BHO: Bitdefender Wallet -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender 2015\pmbxie.dll [2015-04-03] (Bitdefender)
BHO: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2013-04-24] (Qualcomm Atheros Commnucations)
BHO-x32: Bitdefender Wallet -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender 2015\Antispam32\pmbxie.dll [2015-04-03] (Bitdefender)
Toolbar: HKLM - Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2015\pmbxie.dll [2015-04-03] (Bitdefender)
Toolbar: HKLM-x32 - Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2015\Antispam32\pmbxie.dll [2015-04-03] (Bitdefender)

FireFox:
========
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-09-12] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-05] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-05] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-02-05] (VideoLAN)
FF HKLM\...\Firefox\Extensions: [bdwteffv19@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2015\\antispam32\bdwteff
FF Extension: Bitdefender Wallet - C:\Program Files\Bitdefender\Bitdefender 2015\\antispam32\bdwteff [2016-01-17]
FF HKLM\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2015\bdtbext
FF Extension: Bitdefender Antispam Toolbar - C:\Program Files\Bitdefender\Bitdefender 2015\bdtbext [2015-06-22] [not signed]
FF HKLM-x32\...\Firefox\Extensions: [bdwteffv19@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2015\\antispam32\bdwteff
FF HKLM-x32\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2015\bdtbext

Chrome:
=======
CHR StartupUrls: Default -> "hxxp://ask-tb.com/?tpid=PTV-RG&o=Y10002&pf=V7&trgb=ALL&p2=%5EB9N%5EYYYYYY%5EYY%5ESK&gct=hp&apn_ptnrs=%5EB9N&apn_dtid=%5EYYYYYY%5EYY%5ESK&apn_dbr=Launcher.exe_0_21.0.1432.67&apn_uid=6EBDF9B4-9C0D-4536-A960-18B3D7664087&itbv=12.10.6.4912&doi=2014-05-18&psv=","hxxp://www.google.com"
CHR Profile: C:\Users\Miriama\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Dokumenty Google) - C:\Users\Miriama\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-04-17]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Miriama\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-01-09]
CHR HKLM-x32\...\Chrome\Extension: [fabcmochhfpldjekobfaaggijgohadih] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 ASUS InstantOn; C:\Program Files\ASUS\P4G\InsOnSrv.exe [277120 2013-06-19] (ASUS)
R3 Asus WebStorage Windows Service; C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\AsusWSWinService.exe [72192 2012-12-19] () [File not signed]
R3 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [310400 2013-04-24] (Windows (R) Win 7 DDK provider) [File not signed]
S3 BdDesktopParental; C:\Program Files\Bitdefender\Bitdefender 2015\bdparentalservice.exe [78144 2014-12-09] (Bitdefender)
R3 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [129856 2012-06-27] (Intel Corporation)
R3 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-06-25] (Intel Corporation)
R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender 2015\updatesrv.exe [67320 2014-10-27] (Bitdefender)
R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender 2015\vsserv.exe [1545376 2015-06-18] (Bitdefender)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-07-07] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-07-07] (Microsoft Corporation)
R3 ZAtheros Bt and Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2013-04-24] (Atheros) [File not signed]

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 athr; C:\Windows\system32\DRIVERS\athwbx.sys [3837440 2013-08-14] (Qualcomm Atheros Communications, Inc.)
R3 ATP; C:\Windows\System32\drivers\AsusTP.sys [70928 2013-11-08] (ASUS Corporation)
R0 avc3; C:\Windows\System32\DRIVERS\avc3.sys [1369288 2015-05-28] (BitDefender)
R3 avchv; C:\Windows\system32\DRIVERS\avchv.sys [271272 2015-05-29] (BitDefender)
R3 avckf; C:\Windows\System32\DRIVERS\avckf.sys [747120 2015-05-28] (BitDefender)
S0 bdelam; C:\Windows\System32\drivers\bdelam.sys [23568 2013-09-08] (Bitdefender)
R1 BdfNdisf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfndisf6.sys [98768 2014-12-15] (BitDefender LLC)
R1 bdfwfpf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [107008 2013-07-29] (BitDefender LLC)
S3 bdfwfpf_pc; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf_pc.sys [121928 2013-07-02] (Bitdefender SRL)
S3 BDSandBox; C:\WINDOWS\system32\drivers\bdsandbox.sys [82824 2015-01-09] (BitDefender SRL)
S3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [77464 2013-04-24] (Qualcomm Atheros)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation)
R0 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [160032 2015-04-29] (BitDefender LLC)
R3 kbfiltr; C:\Windows\System32\drivers\kbfiltr.sys [14992 2012-08-02] ( )
R0 trufos; C:\Windows\System32\DRIVERS\trufos.sys [477272 2015-06-02] (BitDefender S.R.L.)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44560 2015-07-07] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [270168 2015-07-07] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114520 2015-07-07] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-01-17 16:09 - 2016-01-17 16:09 - 00015379 _____ C:\Users\Miriama\Desktop\FRST.txt
2016-01-17 16:07 - 2016-01-17 16:09 - 00000000 ____D C:\FRST
2016-01-17 16:05 - 2016-01-17 15:58 - 02370560 _____ (Farbar) C:\Users\Miriama\Desktop\FRST64.exe
2016-01-17 16:05 - 2016-01-17 15:58 - 00112640 _____ (forum.viry.cz) C:\Users\Miriama\Desktop\FRSTLauncher.exe
2016-01-17 13:59 - 2016-01-17 13:59 - 00000385 _____ C:\WINDOWS\system32\user_gensett.xml
2016-01-17 13:56 - 2016-01-17 14:19 - 00001693 _____ C:\bdlog.txt
2016-01-17 13:38 - 2016-01-17 13:38 - 00002786 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2016-01-17 13:38 - 2016-01-17 13:38 - 00000836 _____ C:\Users\Public\Desktop\CCleaner.lnk
2016-01-17 13:38 - 2016-01-17 13:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2016-01-17 13:38 - 2016-01-17 13:38 - 00000000 ____D C:\Program Files\CCleaner
2016-01-17 13:31 - 2016-01-17 13:31 - 00000385 _____ C:\Users\Miriama\AppData\Roaminguser_gensett.xml
2016-01-17 13:29 - 2016-01-17 13:29 - 00003518 _____ C:\WINDOWS\System32\Tasks\Bitdefender Update Product Data_A17FD818A96743FAB28AC221BEB4B2C8
2016-01-17 13:24 - 2016-01-17 13:24 - 00079192 _____ (BitDefender) C:\WINDOWS\system32\Drivers\bdvedisk.sys
2016-01-17 13:24 - 2016-01-17 13:24 - 00074000 _____ (BitDefender SRL) C:\WINDOWS\system32\bdsandboxuiskin32.dll
2016-01-17 13:23 - 2016-01-17 13:23 - 00767073 _____ C:\ProgramData\1453032549.bdinstall.bin
2016-01-17 13:20 - 2016-01-17 13:20 - 00002211 _____ C:\Users\Public\Desktop\Bitdefender Internet Security 2015.lnk
2016-01-17 13:20 - 2016-01-17 13:20 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_avchv_01009.Wdf
2016-01-17 13:20 - 2016-01-17 13:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender 2015
2016-01-17 13:19 - 2016-01-17 14:18 - 00000000 ____D C:\ProgramData\BDLogging
2016-01-17 13:19 - 2015-05-29 09:50 - 00271272 _____ (BitDefender) C:\WINDOWS\system32\Drivers\avchv.sys
2016-01-17 13:19 - 2015-05-28 14:21 - 00747120 _____ (BitDefender) C:\WINDOWS\system32\Drivers\avckf.sys
2016-01-17 13:19 - 2015-05-28 13:37 - 01369288 _____ (BitDefender) C:\WINDOWS\system32\Drivers\avc3.sys
2016-01-17 13:19 - 2015-01-09 11:59 - 00082824 _____ (BitDefender SRL) C:\WINDOWS\system32\Drivers\bdsandbox.sys
2016-01-17 13:19 - 2015-01-09 11:44 - 00074000 _____ (BitDefender SRL) C:\WINDOWS\SysWOW64\bdsandboxuiskin32.dll
2016-01-17 13:19 - 2014-12-15 18:04 - 00098768 _____ (BitDefender LLC) C:\WINDOWS\system32\Drivers\bdfndisf6.sys
2016-01-17 13:19 - 2013-09-08 20:04 - 00023568 _____ (Bitdefender) C:\WINDOWS\system32\Drivers\bdelam.sys
2016-01-17 13:19 - 2007-04-11 11:11 - 00511328 _____ (Microsoft Corporation) C:\WINDOWS\capicom.dll
2016-01-17 13:11 - 2016-01-17 13:26 - 00000000 ____D C:\Users\Miriama\AppData\Roaming\Bitdefender
2016-01-17 13:09 - 2016-01-17 13:21 - 00000000 ____D C:\ProgramData\Bitdefender
2016-01-17 13:09 - 2016-01-17 13:09 - 00000000 ____D C:\Users\Miriama\AppData\Roaming\QuickScan
2016-01-17 13:09 - 2016-01-17 13:09 - 00000000 ____D C:\Program Files\Bitdefender
2016-01-17 13:09 - 2015-06-02 14:21 - 00477272 _____ (BitDefender S.R.L.) C:\WINDOWS\system32\Drivers\trufos.sys
2016-01-17 13:09 - 2015-04-29 13:32 - 00160032 _____ (BitDefender LLC) C:\WINDOWS\system32\Drivers\gzflt.sys
2016-01-17 13:09 - 2015-01-09 11:44 - 00084848 _____ (BitDefender SRL) C:\WINDOWS\system32\BDSandBoxUISkin.dll
2016-01-17 13:09 - 2015-01-09 11:44 - 00033360 _____ (BitDefender SRL) C:\WINDOWS\system32\BDSandBoxUH.dll
2016-01-17 13:08 - 2016-01-17 13:09 - 00000000 ____D C:\Program Files\Common Files\Bitdefender
2016-01-17 12:35 - 2015-01-06 04:01 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndproxy.sys
2016-01-17 12:35 - 2015-01-06 03:59 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wanarp.sys
2016-01-17 12:35 - 2015-01-06 02:12 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascfg.dll
2016-01-17 12:35 - 2015-01-06 02:02 - 00164864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rascfg.dll
2016-01-17 12:34 - 2015-05-01 02:13 - 06521800 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2016-01-17 12:34 - 2015-05-01 02:13 - 01488000 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2016-01-17 12:34 - 2015-05-01 02:13 - 00261376 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2016-01-17 12:34 - 2014-11-17 21:17 - 00672984 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAgent.exe
2016-01-17 12:34 - 2014-11-17 21:17 - 00273240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2016-01-17 12:34 - 2014-11-15 20:05 - 00801584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2016-01-17 12:34 - 2014-11-15 07:29 - 00962216 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2016-01-17 12:34 - 2014-11-14 07:57 - 01027584 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2016-01-17 12:34 - 2014-11-14 07:54 - 00463872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2016-01-17 12:34 - 2014-11-14 07:46 - 02171904 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlowUI.dll
2016-01-17 12:34 - 2014-11-14 06:03 - 00885760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2016-01-17 12:34 - 2014-11-10 19:06 - 00473408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2016-01-17 12:34 - 2014-11-10 03:57 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\agilevpn.sys
2016-01-17 12:34 - 2014-11-10 02:20 - 00420864 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll
2016-01-17 12:34 - 2014-11-10 02:08 - 00702464 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2016-01-17 12:34 - 2014-11-10 01:57 - 00624640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2016-01-17 12:34 - 2014-11-08 05:00 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndistapi.sys
2016-01-17 12:34 - 2014-11-08 04:58 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rasl2tp.sys
2016-01-17 12:34 - 2014-11-08 04:56 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\kmddsp.tsp
2016-01-17 12:34 - 2014-11-08 04:56 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmxs.dll
2016-01-17 12:34 - 2014-11-08 04:56 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasser.dll
2016-01-17 12:34 - 2014-11-08 04:24 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasdiag.dll
2016-01-17 12:34 - 2014-11-08 04:13 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kmddsp.tsp
2016-01-17 12:34 - 2014-11-08 04:13 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasmxs.dll
2016-01-17 12:34 - 2014-11-08 04:13 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasser.dll
2016-01-17 12:34 - 2014-11-08 03:48 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasdiag.dll
2016-01-17 12:34 - 2014-11-08 03:38 - 00166912 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2016-01-17 12:34 - 2014-11-08 03:17 - 00143360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2016-01-17 12:34 - 2014-11-08 03:03 - 00733696 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveTelemetry.dll
2016-01-17 12:34 - 2014-11-08 02:58 - 04837376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll
2016-01-17 12:34 - 2014-11-08 02:49 - 01154048 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDrive.exe
2016-01-17 12:34 - 2014-11-07 04:58 - 00952896 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2016-01-17 12:34 - 2014-11-07 04:20 - 00786120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2016-01-17 12:34 - 2014-11-05 03:12 - 00211968 _____ (Microsoft Corporation) C:\WINDOWS\system32\QSHVHOST.DLL
2016-01-17 12:34 - 2014-11-05 03:12 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\QSVRMGMT.DLL
2016-01-17 12:34 - 2014-11-05 03:06 - 00514048 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
2016-01-17 12:34 - 2014-11-05 02:44 - 00657920 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2016-01-17 12:34 - 2014-11-05 02:43 - 00252416 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2016-01-17 12:34 - 2014-11-05 02:39 - 00155648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\QSHVHOST.DLL
2016-01-17 12:34 - 2014-11-05 02:39 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\QSVRMGMT.DLL
2016-01-17 12:34 - 2014-11-05 02:33 - 00465408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevicePairing.dll
2016-01-17 12:34 - 2014-11-05 02:21 - 00658432 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDApi.dll
2016-01-17 12:34 - 2014-11-05 02:20 - 00498688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2016-01-17 12:34 - 2014-11-05 02:14 - 00309760 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDMon.dll
2016-01-17 12:34 - 2014-11-05 02:06 - 00555520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSDApi.dll
2016-01-17 12:34 - 2014-11-04 20:33 - 00058176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2016-01-17 12:34 - 2014-11-04 07:27 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\splwow64.exe
2016-01-17 12:34 - 2014-11-04 06:01 - 00827392 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2016-01-17 12:34 - 2014-10-29 04:05 - 00551232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2016-01-17 12:34 - 2014-10-29 02:55 - 00242176 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSCard.dll
2016-01-17 12:34 - 2014-10-29 02:13 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinSCard.dll
2016-01-17 12:34 - 2014-10-21 02:59 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\eventcls.dll
2016-01-17 12:34 - 2014-10-21 02:19 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eventcls.dll
2016-01-17 12:34 - 2014-10-21 01:50 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\vsstrace.dll
2016-01-17 12:34 - 2014-10-21 01:31 - 01574400 _____ (Microsoft Corporation) C:\WINDOWS\system32\vssapi.dll
2016-01-17 12:34 - 2014-10-21 01:31 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vsstrace.dll
2016-01-17 12:34 - 2014-10-21 01:30 - 01454080 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSSVC.exe
2016-01-17 12:34 - 2014-10-21 01:20 - 01142272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vssapi.dll
2016-01-17 12:34 - 2014-10-17 05:56 - 00039744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2016-01-17 12:34 - 2014-10-17 04:35 - 00086336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2016-01-17 12:33 - 2015-06-09 23:39 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS
2016-01-17 12:33 - 2015-06-09 23:39 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys
2016-01-17 12:33 - 2015-06-09 23:38 - 01201664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2016-01-17 11:15 - 2016-01-17 11:34 - 00000000 ____D C:\AdwCleaner
2016-01-16 23:04 - 2016-01-16 23:04 - 00000000 ____D C:\rsit
2016-01-16 23:04 - 2016-01-16 23:04 - 00000000 ____D C:\Program Files\trend micro
2016-01-16 20:21 - 2016-01-16 20:24 - 00000000 ____D C:\Users\Miriama\Desktop\backups
2016-01-16 18:00 - 2016-01-16 18:00 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-01-13 17:41 - 2015-12-10 01:40 - 00033456 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2016-01-13 17:41 - 2015-11-17 22:07 - 01380864 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-01-13 17:41 - 2015-11-17 22:07 - 00792064 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2016-01-13 17:41 - 2015-11-17 22:07 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2016-01-13 17:33 - 2015-12-11 05:38 - 25837568 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-01-13 17:33 - 2015-12-11 05:00 - 00571904 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2016-01-13 17:33 - 2015-12-11 04:55 - 06051328 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-01-13 17:33 - 2015-12-11 04:50 - 20367360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-01-13 17:33 - 2015-12-11 04:45 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2016-01-13 17:33 - 2015-12-11 04:21 - 00496640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2016-01-13 17:33 - 2015-12-11 04:18 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2016-01-13 17:33 - 2015-12-11 04:09 - 01032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2016-01-13 17:33 - 2015-12-11 04:09 - 00663552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2016-01-13 17:33 - 2015-12-11 04:03 - 14456832 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-01-13 17:33 - 2015-12-11 03:59 - 00798208 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2016-01-13 17:33 - 2015-12-11 03:43 - 04610560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2016-01-13 17:33 - 2015-12-11 03:43 - 00880128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2016-01-13 17:33 - 2015-12-11 03:38 - 02487808 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-01-13 17:33 - 2015-12-11 03:37 - 00687104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2016-01-13 17:33 - 2015-12-11 03:35 - 12856320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-01-13 17:33 - 2015-12-11 03:26 - 01546752 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-01-13 17:33 - 2015-12-11 03:14 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2016-01-13 17:33 - 2015-12-11 03:12 - 02011136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2016-01-13 17:33 - 2015-12-11 03:08 - 01311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-01-13 17:33 - 2015-12-11 03:07 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2016-01-13 17:31 - 2015-12-30 20:32 - 07453016 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-01-13 17:31 - 2015-12-30 20:32 - 01735000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2016-01-13 17:31 - 2015-12-30 20:32 - 01499912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2016-01-13 17:31 - 2015-12-11 01:13 - 01164800 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2016-01-13 17:31 - 2015-12-11 01:13 - 00505344 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2016-01-13 17:31 - 2015-12-11 01:13 - 00210432 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2016-01-13 17:31 - 2015-12-07 11:56 - 01380600 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2016-01-13 17:31 - 2015-12-05 06:58 - 02745184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVDECOD.DLL
2016-01-13 17:31 - 2015-12-05 06:58 - 02528784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVDECOD.DLL
2016-01-13 17:31 - 2015-12-05 06:58 - 02450240 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVENCOD.DLL
2016-01-13 17:31 - 2015-12-05 06:58 - 02447136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVENCOD.DLL
2016-01-13 17:31 - 2015-12-05 06:58 - 02334104 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2016-01-13 17:31 - 2015-12-05 06:58 - 02324744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2016-01-13 17:31 - 2015-12-05 06:58 - 01877504 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2adec.dll
2016-01-13 17:31 - 2015-12-05 06:58 - 01798480 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMALFXGFXDSP.dll
2016-01-13 17:31 - 2015-12-05 06:58 - 01484888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2adec.dll
2016-01-13 17:31 - 2015-12-05 06:58 - 01288128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2016-01-13 17:31 - 2015-12-05 06:58 - 01210200 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOD.DLL
2016-01-13 17:31 - 2015-12-05 06:58 - 01150232 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOE.DLL
2016-01-13 17:31 - 2015-12-05 06:58 - 01115640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll
2016-01-13 17:31 - 2015-12-05 06:58 - 01037680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOD.DLL
2016-01-13 17:31 - 2015-12-05 06:58 - 00914672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOE.DLL
2016-01-13 17:31 - 2015-12-05 06:58 - 00850680 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2016-01-13 17:31 - 2015-12-05 06:58 - 00735496 _____ (Microsoft Corporation) C:\WINDOWS\system32\evr.dll
2016-01-13 17:31 - 2015-12-05 06:58 - 00700360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll
2016-01-13 17:31 - 2015-12-05 06:58 - 00629600 _____ (Microsoft Corporation) C:\WINDOWS\system32\MP4SDECD.DLL
2016-01-13 17:31 - 2015-12-05 06:58 - 00584656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\evr.dll
2016-01-13 17:31 - 2015-12-05 06:58 - 00557856 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVSDECD.DLL
2016-01-13 17:31 - 2015-12-05 06:58 - 00498472 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2016-01-13 17:31 - 2015-12-05 06:58 - 00492736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVSDECD.DLL
2016-01-13 17:31 - 2015-12-05 06:58 - 00463776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MP4SDECD.DLL
2016-01-13 17:31 - 2015-12-05 06:58 - 00399776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2016-01-13 17:31 - 2015-12-05 06:58 - 00299080 _____ (Microsoft Corporation) C:\WINDOWS\system32\VIDRESZR.DLL
2016-01-13 17:31 - 2015-12-05 06:58 - 00275312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MPG4DECD.DLL
2016-01-13 17:31 - 2015-12-05 06:58 - 00274280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MP43DECD.DLL
2016-01-13 17:31 - 2015-12-05 06:58 - 00250520 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPG4DECD.DLL
2016-01-13 17:31 - 2015-12-05 06:58 - 00248432 _____ (Microsoft Corporation) C:\WINDOWS\system32\MP43DECD.DLL
2016-01-13 17:31 - 2015-12-05 06:58 - 00246856 _____ (Microsoft Corporation) C:\WINDOWS\system32\RESAMPLEDMO.DLL
2016-01-13 17:31 - 2015-12-05 06:58 - 00244296 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2016-01-13 17:31 - 2015-12-05 06:58 - 00229272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RESAMPLEDMO.DLL
2016-01-13 17:31 - 2015-12-05 06:58 - 00203016 _____ (Microsoft Corporation) C:\WINDOWS\system32\COLORCNV.DLL
2016-01-13 17:31 - 2015-12-05 06:58 - 00184912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\COLORCNV.DLL
2016-01-13 17:31 - 2015-12-05 06:58 - 00183856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VIDRESZR.DLL
2016-01-13 17:31 - 2015-12-05 06:58 - 00116720 _____ (Microsoft Corporation) C:\WINDOWS\system32\MP3DMOD.DLL
2016-01-13 17:31 - 2015-12-05 06:58 - 00110544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfps.dll
2016-01-13 17:31 - 2015-12-05 06:58 - 00099136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MP3DMOD.DLL
2016-01-13 17:31 - 2015-12-05 06:58 - 00090904 _____ (Microsoft Corporation) C:\WINDOWS\system32\devenum.dll
2016-01-13 17:31 - 2015-12-05 06:58 - 00090392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfvdsp.dll
2016-01-13 17:31 - 2015-12-05 06:58 - 00081032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\devenum.dll
2016-01-13 17:31 - 2015-12-05 06:58 - 00076936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfvdsp.dll
2016-01-13 17:31 - 2015-12-04 16:00 - 01097216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2016-01-13 17:31 - 2015-12-03 20:42 - 00561952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-01-13 17:31 - 2015-12-03 20:42 - 00397224 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
2016-01-13 17:31 - 2015-12-03 20:42 - 00137968 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncrypt.dll
2016-01-13 17:31 - 2015-12-03 20:42 - 00106960 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptsslp.dll
2016-01-13 17:31 - 2015-12-03 20:41 - 00177488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2016-01-13 17:31 - 2015-12-03 19:52 - 00340872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2016-01-13 17:31 - 2015-12-03 19:52 - 00120376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncrypt.dll
2016-01-13 17:31 - 2015-12-03 19:52 - 00091416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptsslp.dll
2016-01-13 17:31 - 2015-12-03 19:28 - 00401920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2016-01-13 17:31 - 2015-12-03 19:28 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2016-01-13 17:31 - 2015-12-03 19:07 - 00340992 _____ (Microsoft Corporation) C:\WINDOWS\system32\qdvd.dll
2016-01-13 17:31 - 2015-12-03 19:07 - 00289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\ksproxy.ax
2016-01-13 17:31 - 2015-12-03 19:05 - 00644608 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVXENCD.DLL
2016-01-13 17:31 - 2015-12-03 19:02 - 01664000 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMSPDMOE.DLL
2016-01-13 17:31 - 2015-12-03 19:00 - 00451072 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVSENCD.DLL
2016-01-13 17:31 - 2015-12-03 18:58 - 00378880 _____ (Microsoft Corporation) C:\WINDOWS\system32\SysFxUI.dll
2016-01-13 17:31 - 2015-12-03 18:51 - 00445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2016-01-13 17:31 - 2015-12-03 18:36 - 01697792 _____ (Microsoft Corporation) C:\WINDOWS\system32\quartz.dll
2016-01-13 17:31 - 2015-12-03 18:30 - 00468480 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFWMAAEC.DLL
2016-01-13 17:31 - 2015-12-03 18:28 - 00519680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qdvd.dll
2016-01-13 17:31 - 2015-12-03 18:28 - 00245760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ksproxy.ax
2016-01-13 17:31 - 2015-12-03 18:27 - 00736256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVXENCD.DLL
2016-01-13 17:31 - 2015-12-03 18:24 - 01411584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMSPDMOE.DLL
2016-01-13 17:31 - 2015-12-03 18:23 - 00402432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVSENCD.DLL
2016-01-13 17:31 - 2015-12-03 18:16 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2016-01-13 17:31 - 2015-12-03 18:13 - 01441280 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-01-13 17:31 - 2015-12-03 18:07 - 00432128 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2016-01-13 17:31 - 2015-12-03 18:06 - 01501184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\quartz.dll
2016-01-13 17:31 - 2015-12-03 18:01 - 00743936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFWMAAEC.DLL
2016-01-13 17:31 - 2015-12-03 17:45 - 00357888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2016-01-13 17:31 - 2015-12-03 17:40 - 01010688 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMSPDMOD.DLL
2016-01-13 17:31 - 2015-12-03 17:29 - 00887296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMSPDMOD.DLL
2016-01-13 17:31 - 2015-12-02 16:04 - 00670208 _____ (Microsoft Corporation) C:\WINDOWS\system32\qedit.dll
2016-01-13 17:31 - 2015-12-02 16:01 - 00561664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qedit.dll
2016-01-13 17:30 - 2015-12-08 20:08 - 00685432 _____ (Microsoft Corporation) C:\WINDOWS\system32\advapi32.dll
2016-01-13 17:30 - 2015-12-08 20:07 - 00507176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\advapi32.dll
2016-01-12 17:03 - 2016-01-13 19:09 - 1243816862 _____ C:\Users\Miriama\Downloads\Dva.dny.jedna.noc.2014.BDRip.XviD.AC3.SK.titulky.avi
2016-01-11 17:09 - 2016-01-11 18:15 - 1173790720 _____ C:\Users\Miriama\Downloads\Začít-nanovo-[Goodbye-to-All-That]-2014-(CZ-Dabing) (1).avi
2016-01-10 18:43 - 2016-01-10 19:51 - 1173790720 _____ C:\Users\Miriama\Downloads\Začít-nanovo-[Goodbye-to-All-That]-2014-(CZ-Dabing).avi
2016-01-10 17:12 - 2016-01-10 17:59 - 800920876 _____ C:\Users\Miriama\Downloads\Archa-bláznov-(Podivný-experiment)---E.A.Poe---film-USA-2014--dab-CZ-.avi
2016-01-04 19:43 - 2016-01-04 20:58 - 1290799065 _____ C:\Users\Miriama\Downloads\Transformers-2---(2009)---CZ-(A).mp4
2016-01-03 10:04 - 2016-01-03 11:29 - 1467028846 _____ C:\Users\Miriama\Downloads\Transformers-1-(2007)-cz-dab.avi
2015-12-23 20:36 - 2015-12-23 21:48 - 1285048616 _____ C:\Users\Miriama\Downloads\Transformers-3---CZ-(A).avi
2015-12-19 15:01 - 2016-01-17 13:29 - 00000000 ____D C:\Program Files\Common Files\AV
2015-12-19 15:01 - 2015-12-19 15:01 - 00000000 ____D C:\WINDOWS\System32\Tasks\AVAST Software
2015-12-19 12:34 - 2015-12-19 15:11 - 1492888290 _____ C:\Users\Miriama\Downloads\Transformers-4-CZ.avi

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-01-17 16:09 - 2014-01-28 00:47 - 00003268 _____ C:\WINDOWS\System32\Tasks\AsusVibeSchedule
2016-01-17 16:08 - 2014-01-28 00:42 - 00002988 _____ C:\WINDOWS\System32\Tasks\ASUS Splendid ACMON
2016-01-17 16:08 - 2014-01-28 00:41 - 00003056 _____ C:\WINDOWS\System32\Tasks\ASUS P4G
2016-01-17 16:08 - 2014-01-28 00:40 - 00002956 _____ C:\WINDOWS\System32\Tasks\ASUS InstantOn Config
2016-01-17 16:08 - 2014-01-28 00:30 - 00003540 _____ C:\WINDOWS\System32\Tasks\ASUS Smart Gesture Launcher
2016-01-17 16:07 - 2013-08-22 14:36 - 00000000 ____D C:\Windows
2016-01-17 16:05 - 2014-09-24 06:35 - 00863592 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-01-17 16:05 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\Inf
2016-01-17 16:04 - 2014-12-06 20:30 - 00000000 ____D C:\Users\Miriama\OneDrive
2016-01-17 16:03 - 2014-05-18 21:49 - 00000950 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-01-17 16:03 - 2014-01-28 00:42 - 00003028 _____ C:\WINDOWS\System32\Tasks\ASUS USB Charger Plus
2016-01-17 16:03 - 2014-01-28 00:42 - 00003004 _____ C:\WINDOWS\System32\Tasks\ASUS Splendid ColorU
2016-01-17 14:23 - 2013-08-22 15:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-01-17 14:18 - 2014-05-18 22:23 - 00000000 ____D C:\Users\Miriama\AppData\Roaming\ViberPC
2016-01-17 14:18 - 2014-05-18 22:23 - 00000000 ____D C:\Users\Miriama\AppData\Local\Viber
2016-01-17 14:09 - 2014-12-08 17:15 - 02192896 ___SH C:\Users\Miriama\Downloads\Thumbs.db
2016-01-17 14:07 - 2014-05-18 05:01 - 00000062 _____ C:\Users\Miriama\AppData\Roaming\sp_data.sys
2016-01-17 13:59 - 2013-08-22 14:25 - 00262144 ___SH C:\WINDOWS\system32\config\ELAM
2016-01-17 13:56 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\SysWOW64\setup
2016-01-17 13:56 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\setup
2016-01-17 13:54 - 2014-05-18 21:49 - 00000954 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-01-17 13:50 - 2014-05-19 01:14 - 00003594 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-143734197-33437288-2066276020-1001
2016-01-17 13:46 - 2014-05-18 04:57 - 00000000 ____D C:\Users\Miriama\AppData\Local\Packages
2016-01-17 13:46 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-01-17 13:46 - 2013-05-01 12:15 - 00000000 ____D C:\ProgramData\Adobe
2016-01-17 13:43 - 2015-09-27 16:22 - 00003476 _____ C:\WINDOWS\System32\Tasks\ASUS Live Update1
2016-01-17 12:40 - 2014-10-24 20:03 - 00000000 ____D C:\Users\Miriama\AppData\Roaming\Seznam.cz
2016-01-17 12:39 - 2014-05-29 16:09 - 00000000 ____D C:\Users\Miriama\AppData\Roaming\Skype
2016-01-17 12:39 - 2014-05-29 16:09 - 00000000 ____D C:\ProgramData\Skype
2016-01-17 12:37 - 2012-07-26 08:59 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-01-17 11:55 - 2014-05-18 21:50 - 00002177 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-01-17 11:34 - 2013-08-22 14:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2016-01-17 11:13 - 2015-07-15 17:47 - 00003962 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{D6621D1F-B4C4-4911-A33D-E8C399568749}
2016-01-16 17:52 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\rescache
2016-01-16 17:39 - 2014-07-09 18:57 - 00000000 ____D C:\ProgramData\AVAST Software
2016-01-16 17:27 - 2013-05-01 12:20 - 00000000 ____D C:\ProgramData\WildTangent
2016-01-16 17:27 - 2013-05-01 12:20 - 00000000 ____D C:\Program Files (x86)\WildGames
2016-01-16 16:54 - 2014-12-12 23:01 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-01-16 16:54 - 2014-12-12 22:33 - 00340992 ___SH C:\Users\Miriama\Desktop\Thumbs.db
2016-01-16 16:54 - 2014-09-24 09:20 - 00000000 ___SD C:\WINDOWS\system32\CompatTel
2016-01-16 16:54 - 2014-05-20 18:50 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-01-16 16:53 - 2014-12-06 19:57 - 00000000 ____D C:\Users\Miriama
2016-01-16 16:47 - 2014-05-20 18:50 - 143671360 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-01-16 15:55 - 2015-07-08 20:20 - 00000000 ____D C:\Users\Miriama\Desktop\Litvinov
2016-01-13 17:53 - 2014-12-24 10:31 - 00003850 _____ C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 1400443255
2016-01-13 17:53 - 2014-05-18 21:01 - 00001065 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2016-01-13 17:53 - 2014-05-18 21:00 - 00000000 ____D C:\Program Files (x86)\Opera
2016-01-12 18:06 - 2013-08-22 16:36 - 00000000 ___HD C:\Program Files\WindowsApps
2016-01-12 17:08 - 2014-07-11 20:35 - 00003924 _____ C:\WINDOWS\System32\Tasks\avast! Emergency Update
2016-01-10 11:18 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2016-01-08 20:46 - 2014-05-18 21:49 - 00000000 ____D C:\Users\Miriama\AppData\Local\Google
2016-01-07 10:01 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\NDF
2016-01-05 21:04 - 2014-12-14 10:23 - 00826872 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2016-01-05 21:04 - 2014-12-14 10:23 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-12-30 13:29 - 2014-05-18 05:17 - 00000000 ____D C:\Users\Miriama\AppData\Local\Adobe
2015-12-21 00:29 - 2014-05-18 21:18 - 00000000 ____D C:\Users\Miriama\AppData\Roaming\vlc
2015-12-21 00:07 - 2014-08-18 17:27 - 00000000 ____D C:\Users\Miriama\AppData\Roaming\dvdcss
2015-12-18 11:50 - 2015-04-04 12:56 - 00000000 ___SD C:\WINDOWS\SysWOW64\GWX
2015-12-18 11:50 - 2015-04-04 12:56 - 00000000 ___SD C:\WINDOWS\system32\GWX
2015-12-18 09:43 - 2014-05-18 22:38 - 00000000 ____D C:\Users\Miriama\Desktop\Rozprávky

==================== Files in the root of some directories =======

2014-05-18 22:03 - 2014-05-18 22:03 - 0002207 _____ () C:\Program Files (x86)\TuneUp 1-Click Maintenance.lnk
2014-05-18 05:01 - 2016-01-17 14:07 - 0000062 _____ () C:\Users\Miriama\AppData\Roaming\sp_data.sys
2016-01-17 13:23 - 2016-01-17 13:23 - 0767073 _____ () C:\ProgramData\1453032549.bdinstall.bin
2014-12-06 19:50 - 2014-12-06 19:50 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2013-05-01 12:15 - 2012-09-07 12:40 - 0000256 _____ () C:\ProgramData\SetStretch.cmd
2013-05-01 12:15 - 2009-07-22 11:04 - 0024576 _____ () C:\ProgramData\SetStretch.exe
2013-05-01 12:15 - 2012-09-07 12:37 - 0000103 _____ () C:\ProgramData\SetStretch.VBS

Some files in TEMP:
====================
C:\Users\Miriama\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpp03ngh.dll
C:\Users\Miriama\AppData\Local\Temp\DseShExt-x64.dll
C:\Users\Miriama\AppData\Local\Temp\DseShExt-x86.dll
C:\Users\Miriama\AppData\Local\Temp\SDShelEx-win32.dll
C:\Users\Miriama\AppData\Local\Temp\SDShelEx-x64.dll
C:\Users\Miriama\AppData\Local\Temp\sqlite3.dll
C:\Users\Miriama\AppData\Local\Temp\{E638ABC1-0067-474b-A379-87CFE81E7848}.exe

==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================

==================== MBR and Partition Table ==================

==================== Scheduled Tasks (whitelisted) ==================

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Alternate Data Streams (whitelisted) ==================

==================== Security Center ==================

AV: Bitdefender Antivirus (Enabled - Out of date) {9A0813D8-CED6-F86B-072E-28D2AF25A83D}
AV: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Bitdefender Antispyware (Enabled - Out of date) {2169F23C-E8EC-F7E5-3D9E-13A0D4A2E280}
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Bitdefender Firewall (Enabled) {A23392FD-84B9-F933-2C71-81E751F6EF46}

===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)

***** Velikost "Plochy" *****

Velikost slozky "C:\Users\Miriama\Desktop" je 60816 MB.

***** Startup Programs *****

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher
"C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe" [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ASUSPRP
"C:\Program Files (x86)\ASUS\APRP\APRP.EXE"

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ASUSWebStorage
C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\AsusWSPanel.exe /S [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DisableS3S4
c:\windows\temp\DisableS3S464\sethigh.cmd [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HotKeysCmds
"C:\WINDOWS\system32\hkcmd.exe" [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IgfxTray
"C:\WINDOWS\system32\igfxtray.exe" [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\mcpltui_exe
"C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl10
"C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RtHDVBg
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /MAXX4 [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RTHDVCPL
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s [x]

***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x0
DisableNotifications REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x0
DisableNotifications REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000

==================== End Of Log ==============================

#7 Příspěvek od **Márty84** » 17 led 2016 17:05

***** Velikost "Plochy" *****

Velikost slozky "C:\Users\Miriama\Desktop" je 60816 MB.

Velikost plochy by nemela presahovat 200 - 300 MB! Brzdi to chod pc. Cili ji trosku uklidte a na plochu dejte jen zastupce. Jen pozor na obcasnou chybu, ze uzivatele maji na plose slozku, v ni dalsi a v ni dalsi a do te to schovaji. To je sice hezke, ale plochu to nezmensi, jen je to v jinem supliku

Podle logu vam tam bezi dva antiviry, Bitdefender a Windows Defender. Ani jeden neni aktualizovany. Zkontrolujte to tedy radeji v nastaveni a Windows Defender tvale vypnete

AV: Bitdefender Antivirus (Enabled - Out of date) {9A0813D8-CED6-F86B-072E-28D2AF25A83D}
AV: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Bitdefender Antispyware (Enabled - Out of date) {2169F23C-E8EC-F7E5-3D9E-13A0D4A2E280}
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Bitdefender Firewall (Enabled) {A23392FD-84B9-F933-2C71-81E751F6EF46}

Otevrete si poznamkovy blok a zkopirujte do nej tento skript

Kód: Vybrat vše

Start
CloseProcesses:
CreateRestorePoint:

ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
ShellIconOverlayIdentifiers: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => No File
ShellIconOverlayIdentifiers: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => No File
ShellIconOverlayIdentifiers: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => No File
ShellIconOverlayIdentifiers-x32: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => No File
ShellIconOverlayIdentifiers-x32: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => No File
ShellIconOverlayIdentifiers-x32: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => No File

HKU\S-1-5-21-143734197-33437288-2066276020-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/
HKU\S-1-5-21-143734197-33437288-2066276020-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus13.msn.com
URLSearchHook: HKLM-x32 - (No Name) - {707db484-2428-402d-afb5-d85b387544c7} - No File
SearchScopes: HKLM-x32 -> DefaultScope {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL =
SearchScopes: HKU\S-1-5-21-143734197-33437288-2066276020-1001 -> DefaultScope {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL =

CHR StartupUrls: Default -> "hxxp://ask-tb.com/?tpid=PTV-RG&o=Y10002&pf=V7&trgb=ALL&p2=%5EB9N%5EYYYYYY%5EYY%5ESK&gct=hp&apn_ptnrs=%5EB9N&apn_dtid=%5EYYYYYY%5EYY%5ESK&apn_dbr=Launcher.exe_0_21.0.1432.67&apn_uid=6EBDF9B4-9C0D-4536-A960-18B3D7664087&itbv=12.10.6.4912&doi=2014-05-18&psv=","hxxp://www.google.com"

Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

S2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-12-03 81088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28 144200]
S2 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0; C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe [2009-07-20 935208]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-01-02 315488]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28 144200]

2016-01-16 18:00 - 2016-01-16 18:00 - 00000000 ____D C:\ProgramData\Malwarebytes

DeleteKey: HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM
DeleteKey: HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher
DeleteKey: HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ASUSWebStorage
DeleteKey: HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DisableS3S4
DeleteKey: HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HotKeysCmds
DeleteKey: HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IgfxTray
DeleteKey: HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\mcpltui_exe
DeleteKey: HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl10

Hosts:
EmptyTemp:
Reboot:
End

Vlevo nahore kliknete na napis Soubor
Kliknete na napis Ulozit jako...
Napiste spravne ten cerveny nazev fixlist a ulozte na plochu.
Vypnete antivir i dalsi pripadne zabezpeceni.
Spustte FRST jako spravce, kliknete na napis Fix a program vykona prikazy.
Po restartu pc by se mel objevit novy log - s nazvem fixlog, ten mi sem zase zkopirujte.

barney811 · #8 Příspěvek od **barney811** » 17 led 2016 17:57

Dik za upozornenie,plochu uklidim

Defendera som teraz kontroloval,je vypnutý,aspoň systém to tak hlási.

Fix result of Farbar Recovery Scan Tool (x64) Version:10-01-2015 01
Ran by Miriama (2016-01-17 17:49:34) Run:1
Running from C:\Users\Miriama\Desktop
Loaded Profiles: Miriama (Available Profiles: Miriama)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CloseProcesses:
CreateRestorePoint:

ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
ShellIconOverlayIdentifiers: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => No File
ShellIconOverlayIdentifiers: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => No File
ShellIconOverlayIdentifiers: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => No File
ShellIconOverlayIdentifiers-x32: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => No File
ShellIconOverlayIdentifiers-x32: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => No File
ShellIconOverlayIdentifiers-x32: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => No File

HKU\S-1-5-21-143734197-33437288-2066276020-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/
HKU\S-1-5-21-143734197-33437288-2066276020-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus13.msn.com
URLSearchHook: HKLM-x32 - (No Name) - {707db484-2428-402d-afb5-d85b387544c7} - No File
SearchScopes: HKLM-x32 -> DefaultScope {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL =
SearchScopes: HKU\S-1-5-21-143734197-33437288-2066276020-1001 -> DefaultScope {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL =

CHR StartupUrls: Default -> "hxxp://ask-tb.com/?tpid=PTV-RG&o=Y10002&pf=V7&trgb=ALL&p2=%5EB9N%5EYYYYYY%5EYY%5ESK&gct=hp&apn_ptnrs=%5EB9N&apn_dtid=%5EYYYYYY%5EYY%5ESK&apn_dbr=Launcher.exe_0_21.0.1432.67&apn_uid=6EBDF9B4-9C0D-4536-A960-18B3D7664087&itbv=12.10.6.4912&doi=2014-05-18&psv=","hxxp://www.google.com"

Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

S2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-12-03 81088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28 144200]
S2 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0; C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe [2009-07-20 935208]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-01-02 315488]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28 144200]

2016-01-16 18:00 - 2016-01-16 18:00 - 00000000 ____D C:\ProgramData\Malwarebytes

DeleteKey: HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM
DeleteKey: HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher
DeleteKey: HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ASUSWebStorage
DeleteKey: HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DisableS3S4
DeleteKey: HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HotKeysCmds
DeleteKey: HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IgfxTray
DeleteKey: HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\mcpltui_exe
DeleteKey: HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl10

Hosts:
EmptyTemp:
Reboot:
End
*****************

Processes closed successfully.
Restore point was successfully created.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00avast" => key removed successfully
HKCR\CLSID\{472083B0-C522-11CF-8763-00608CC02F24} => key not found.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ SkyDrive1" => key removed successfully
HKCR\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A} => key not found.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ SkyDrive2" => key removed successfully
HKCR\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => key not found.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ SkyDrive3" => key removed successfully
HKCR\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524} => key not found.
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ SkyDrive1" => key removed successfully
HKCR\Wow6432Node\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A} => key not found.
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ SkyDrive2" => key removed successfully
HKCR\Wow6432Node\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => key not found.
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ SkyDrive3" => key removed successfully
HKCR\Wow6432Node\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524} => key not found.
HKU\S-1-5-21-143734197-33437288-2066276020-1001\Software\Microsoft\Internet Explorer\Main\\Start Page => value restored successfully
HKU\S-1-5-21-143734197-33437288-2066276020-1001\Software\Microsoft\Internet Explorer\Main\\Default_Page_URL => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\URLSearchHooks\\{707db484-2428-402d-afb5-d85b387544c7} => value removed successfully
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value restored successfully
HKU\S-1-5-21-143734197-33437288-2066276020-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully
Chrome StartupUrls => removed successfully
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => moved successfully
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => moved successfully
AdobeARMservice => service not found.
gupdate => service removed successfully
Nero BackItUp Scheduler 4.0 => Unable to stop service.
Nero BackItUp Scheduler 4.0 => service removed successfully
SkypeUpdate => service not found.
gupdatem => service removed successfully
C:\ProgramData\Malwarebytes => moved successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM => key removed successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher => key removed successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ASUSWebStorage => key removed successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DisableS3S4 => key removed successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HotKeysCmds => key removed successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IgfxTray => key removed successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\mcpltui_exe => key removed successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl10 => key removed successfully
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.
EmptyTemp: => 81.7 MB temporary data Removed.

The system needed a reboot.

==== End of Fixlog 17:50:28 ====

#9 Příspěvek od **Márty84** » 17 led 2016 19:01

barney811 píše:Defendera som teraz kontroloval,je vypnutý,aspoň systém to tak hlási.

Mozna se docasne zapnul proto, ze Bitdefender nebyl aktualizovany, nebo mozna chybka v logu. Hlavne ze je ted vypnuty

Vsechny tyto programy - vcetne pripadne instalace - spoustejte jako spravce (kliknete na ne pravym mysidlem a zvolte - Spustit jako spravce)

vyosek píše: DelFix https://toolslib.net/downloads/finish/2/
Stahnete a spustte

Ponechte zatrzitkou pouze u volby Remove disinfection tools

Kliknete na Run

Stahnete Ccleaner http://www.filehippo.com/download_ccleaner a spustte.
Pri instalaci pozor na toolbar (ci jine doplnky), jestli vam nabidne jeho instalaci, tak zruste zatrzitko.
Po spusteni se ocitnete ve funkci Cistic. Vlevo je spousta zatrzitek. Pozor dejte hlavne na kos, pokud nechate zatrzene, vzdy ho vysype.
Dale, podle toho jak je nastaven, smaze vsechna hesla ulozena na netu!!! Takze jestli mate nastavene, at si pocitac hesla pamatuje (coz neni pro bezpecnost dobre), budete je muset pak napsat znova rucne (napr mail, facebook, ruzna fora atd.)
Kliknete na Analyzovat a az dokonci analyzu, kliknete na Spustit Cleaner.
Potom kliknete vlevo na funkci Registry
Kliknete na Hledej problemy, kdyz najde, kliknete na Opravit problemy. Nabidne Vam zalohu, tu udelejte a ulozte ji tak, at ji v pripade potreby najdete.
Funkce Nastroje umoznuje odinstalovani programu. Je dukladnejsi nez samotny windows!
(Pokud je v pc vice uzivatelskych uctu, pouzijte program i v nich)

Defragmentujte disk(y) (SSD Disky ne!)
Stahnete program Defraggler https://www.piriform.com/defraggler/download/standard
Pri instalaci opet pozor na toolbar a dalsi nesmysly.
Po nainstalovani program spustte a kliknete na Analyzovat, po analyze kliknete na Defragmentovat a programek odvede svou praci.

Pak napiste, jak to s pc vypada. Pokud vse pobezi jak ma, mame hotovo

barney811 · #10 Příspěvek od **barney811** » 18 led 2016 06:58

Ďakujem za pomoc, všetko je v poriadku.Môžte

#11 Příspěvek od **Márty84** » 18 led 2016 09:52

Nemate zac!

Mejte se a treba zase nekdy

VIRY.CZ

Zamrznutie myšky-kurzoru

Zamrznutie myšky-kurzoru

Re: Zamrznutie myšky-kurzoru

Re: Zamrznutie myšky-kurzoru

Re: Zamrznutie myšky-kurzoru

Re: Zamrznutie myšky-kurzoru

Re: Zamrznutie myšky-kurzoru

Re: Zamrznutie myšky-kurzoru

Re: Zamrznutie myšky-kurzoru

Re: Zamrznutie myšky-kurzoru

Re: Zamrznutie myšky-kurzoru

Re: Zamrznutie myšky-kurzoru