surna pomoc

Zpráva

marilynman · #1 Příspěvek od **marilynman** » 18 úno 2016 14:42

prosimmneviem co sa stalo ale zrazu mi klavesnica pis viacej pismen naraz popripade absoutne nereaguje a to z nicoho nic
info.txt logfile of random's system information tool 1.10 2016-02-18 14:39:19

======MBR======

0x0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000CF339392000000000200EEFFFFFF01000000FFFFFFFF00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000055AA

======Uninstall list======

abDocs Office AddIn-->MsiExec.exe /I{DCBF3379-246B-47E1-8173-639B63940838}
abDocs-->C:\Program Files (x86)\Acer\abDocs\AcerDocsSetup.exe -uninstall
abFiles-->C:\Program Files (x86)\Acer\abFiles\abFilesSetup.exe -uninstall
abMedia-->C:\Program Files (x86)\Acer\abMedia\abMediaSetup.exe -uninstall
abPhoto-->C:\Program Files (x86)\Acer\abPhoto\abPhotoSetup.exe -uninstall
Acer Audio Invert Utility-->MsiExec.exe /i {11086334-4198-44C7-8C67-7B49E4AC925A} BOOTSTRATOR=1 GPRODUCTNAME="Acer Audio Invert Utility" BRANDNAME="Acer"
Acer Care Center-->Msiexec.exe /i {A424844F-CDB3-45E2-BB77-1DDE4A091E76} ACER=1 PRODUCTNAME="Acer Care Center" REMOVEUSEC=1 BOOTSTRATOR=1
Acer Explorer Agent-->Msiexec.exe /i {4D0F42CF-1693-43D9-BDC8-19141D023EE0} ACER=1 PRODUCTNAME="Acer Explorer Agent" REMOVEUSEC=1 BOOTSTRATOR=1
Acer Launch Manager-->MsiExec.exe /i {C18D55BD-1EC6-466D-B763-8EEDDDA9100E} BOOTSTRATOR=1 GPRODUCTNAME="Acer Launch Manager" BRANDNAME="Acer" ISDT=0
Acer Portal-->C:\Program Files (x86)\Acer\Acer Portal\uninstall.exe
Acer Power Management-->MsiExec.exe /i {91F52DE4-B789-42B0-9311-A349F10E5479} PRODUCTNAME="Acer Power Management" BRANDNAME="Acer" NEWUPGRADE=0 BOOTSTRATOR=1 ISDT=0
Acer Quick Access-->MsiExec.exe /i {C1FA525F-D701-4B31-9D32-504FC0CF0B98} BOOTSTRATOR=1 GPRODUCTNAME="Acer Quick Access" BRANDNAME="Acer" ISDT=0
Acer Recovery Management-->Msiexec.exe /i {07F2005A-8CAC-4A4B-83A2-DA98A722CA61} ACER=1 PRODUCTNAME="Acer Recovery Management" REMOVEUSEC=1 BOOTSTRATOR=1 ACERPRELOAD=1
Acer Screen Grasp-->Msiexec.exe /i {84443E5D-0767-438B-B1C8-6A52FAB2101B} ACER=1 PRODUCTNAME="Acer Screen Grasp" REMOVEUSEC=1 BOOTSTRATOR=1
Acer Touch Tools-->MsiExec.exe /i {BB1F8130-3CB3-4896-9D28-770DFFFDE59C} BOOTSTRATOR=1 GPRODUCTNAME="Acer Touch Tools" BRANDNAME="Acer" ISDT=0
Acer UEIP App Monitor Plugin-->MsiExec.exe /i {978724F6-1863-4DD5-9E66-FB77F5AB5613} PRODUCTNAME="Acer UEIP App Monitor Plugin" BRANDNAME="Acer" BOOTSTRATOR=1
Acer UEIP Framework-->MsiExec.exe /i {12A718F2-2357-4D41-9E1F-18583A4745F7} PRODUCTNAME="Acer UEIP Framework" BRANDNAME="Acer" BOOTSTRATOR=1
Aloha TriPeaks-->"C:\Program Files (x86)\WildGames\Aloha TriPeaks\uninstall\uninstaller.exe"
AOP Framework-->C:\Program Files (x86)\Acer\AOP Framework\uninstall.exe
Avast Free Antivirus-->C:\Program Files\AVAST Software\Avast\Setup\Instup.exe /control_panel /instop:uninstall
Avast SecureLine-->"C:\Program Files\AVAST Software\SecureLine\unins000.exe"
CCleaner-->"C:\Program Files\CCleaner\uninst.exe"
CyberLink PhotoDirector 5-->"C:\Program Files (x86)\InstallShield Installation Information\{5A454EC5-217A-42a5-8CE1-2DDEC4E70E01}\Setup.exe" /z-uninstall
CyberLink PhotoDirector 5-->"C:\Program Files (x86)\InstallShield Installation Information\{5A454EC5-217A-42a5-8CE1-2DDEC4E70E01}\Setup.exe" /z-uninstall
CyberLink PowerDirector 12-->"C:\Program Files (x86)\InstallShield Installation Information\{E1646825-D391-42A0-93AA-27FA810DA093}\Setup.exe" /z-uninstall
CyberLink PowerDirector 12-->"C:\Program Files (x86)\InstallShield Installation Information\{E1646825-D391-42A0-93AA-27FA810DA093}\Setup.exe" /z-uninstall
Dropbox 15 GB-->MsiExec.exe /I{597A58EC-42D6-4940-8739-FB94491B013C}
Foxit PhantomPDF-->MsiExec.exe /X{2DF18CA8-86F2-4F3A-A1BF-A2A7D39B9161}
Game Explorer Categories - genres-->"C:\Program Files (x86)\WildTangent Games\Game Explorer Categories - genres\Uninstall.exe"
Game Explorer Categories - main-->"C:\Program Files (x86)\WildTangent Games\Game Explorer Categories - main\Uninstall.exe"
Home Makeover-->"C:\Program Files (x86)\WildGames\Home Makeover\uninstall\uninstaller.exe"
Hospital Manager-->"C:\Program Files (x86)\WildGames\Hospital Manager\uninstall\uninstaller.exe"
Intel(R) Dynamic Platform and Thermal Framework-->C:\Program Files (x86)\Intel\Intel(R) Dynamic Platform and Thermal Framework\Uninstall\setup.exe -uninstall
Intel(R) Chipset Device Software-->"C:\ProgramData\Package Cache\{5a6a5d15-d5af-417c-b08f-f7e5eb1f98af}\SetupChipset.exe" /uninstall
Intel(R) Chipset Device Software-->MsiExec.exe /I{9A431D9C-9FC9-454E-AC8D-15DBAA6ED0F7}
Intel(R) Processor Graphics-->"C:\Program Files (x86)\Intel\Intel(R) Processor Graphics\Uninstall\setup.exe" -uninstall
Intel(R) Trusted Execution Engine Driver-->MsiExec.exe /I{2D58D75E-FB84-4C08-9E80-E5D95856F5A3}
Intel(R) Trusted Execution Engine-->"C:\ProgramData\Intel\Package Cache\{176E2755-0A17-42C6-88E2-192AB2131278}\Setup.exe" -uninstall
Intel(R) Trusted Execution Engine-->MsiExec.exe /I{36FDA68F-5372-4179-8428-F895C7C51993}
Intel(R) USB 3.0 Host Controller Adaptation Driver-->"C:\ProgramData\Intel\Package Cache\{9472AEE5-5D4D-4329-8BD8-B282FD33B8E0}\Setup.exe" -uninstall
Intel(R) USB 3.0 Host Controller Adaptation Driver-->MsiExec.exe /I{A4DAAE14-88F7-4FA4-ABA4-8041F521C247}
Intel(R) Virtual Buttons-->C:\Program Files (x86)\Intel\Intel(R) Virtual Buttons\Uninstall\setup.exe -uninstall
Intel(R) Wireless Bluetooth(R)-->MsiExec.exe /I{6EBEAD7F-4445-4E1E-B0DD-DF435771379D}
Intel® PROSet/Wireless Software-->"C:\ProgramData\Package Cache\{745e87a9-00b7-4263-8d14-5662f6f490f3}\Setup.exe" /uninstall
Intel® PROSet/Wireless WiFi Software-->MsiExec.exe /I{808FF34C-8F5D-4B72-90A6-FECBE9D736B2}
Intel® Security Assist-->MsiExec.exe /I{A5830729-36A3-4900-8135-D8A972914342}
Jewel Match 3-->"C:\Program Files (x86)\WildGames\Jewel Match 3\uninstall\uninstaller.exe"
King Oddball-->"C:\Program Files (x86)\WildGames\King Oddball\uninstall\uninstaller.exe"
LibreOffice 5.0.3.2-->MsiExec.exe /I{D61E7AA0-0380-49B9-8DDD-7685E2306176}
Magic Academy-->"C:\Program Files (x86)\WildGames\Magic Academy\uninstall\uninstaller.exe"
Microsoft Office-->MsiExec.exe /X{90150000-0138-0409-0000-0000000FF1CE}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{837b34e3-7c30-493c-8f6a-2b0f04e2912c}
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17-->MsiExec.exe /X{8220EEFE-38CD-377E-8595-13398D740ACE}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148-->MsiExec.exe /X{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219-->MsiExec.exe /X{1D8E6291-B0D5-35EC-8441-6616F567A0F7}
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219-->MsiExec.exe /X{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}
Polar Bowler 1st Frame-->"C:\Program Files (x86)\WildGames\Polar Bowler 1st Frame\uninstall\uninstaller.exe"
Realtek Ethernet Controller Driver-->C:\Program Files (x86)\InstallShield Installation Information\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}\setup.exe -runfromtemp -removeonly
Realtek High Definition Audio Driver-->"C:\Program Files (x86)\InstallShield Installation Information\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}\Setup.exe" -runfromtemp -removeonly
Rory's Restaurant-->"C:\Program Files (x86)\WildGames\Rorys Restaurant\uninstall\uninstaller.exe"
Royal Envoy Double Pack-->"C:\Program Files (x86)\WildGames\Royal Envoy Double Pack\uninstall\uninstaller.exe"
Skype™ 7.17-->MsiExec.exe /X{FC965A47-4839-40CA-B618-18F486F042C6}
Spotify-->"C:\Program Files (x86)\Spotify\Spotify.exe" /uninstall
The Chronicles of Emerland Solitaire-->"C:\Program Files (x86)\WildGames\The Chronicles of Emerland Solitaire\uninstall\uninstaller.exe"
Theme Hospital-->"C:\Program Files (x86)\GOG.com\Theme Hospital\unins000.exe"
Trinklit Supreme-->"C:\Program Files (x86)\WildGames\Trinklit Supreme\uninstall\uninstaller.exe"
Update Installer for WildTangent Games App-->"C:\Program Files (x86)\WildTangent Games\App\Uninstall.exe"
VLC media player-->C:\Program Files (x86)\VideoLAN\VLC\uninstall.exe
WildTangent Games App-->"C:\Program Files (x86)\WildTangent Games\Touchpoints\acer\Uninstall.exe"
WildTangent Games-->"C:\Program Files (x86)\WildGames\Uninstall.exe"
Windows Driver Package - Intel Corporation (iagpioe) System (02/28/2015 603.9600.1920.60719)-->C:\PROGRA~1\DIFX\D29FE547208FE130\DPInst.exe /u C:\Windows\System32\DriverStore\FileRepository\iagpioe.inf_amd64_4a2409cf61458d40\iagpioe.inf
Windows Driver Package - Intel Corporation (iai2ce) System (02/28/2015 603.9600.2425.60717)-->C:\PROGRA~1\DIFX\D29FE547208FE130\DPInst.exe /u C:\Windows\System32\DriverStore\FileRepository\iai2ce.inf_amd64_ede66724afd78a3b\iai2ce.inf
Windows Driver Package - Intel Corporation (iauarte) System (02/16/2015 603.9600.2426.59928)-->C:\PROGRA~1\DIFX\D29FE547208FE130\DPInst.exe /u C:\Windows\System32\DriverStore\FileRepository\iauarte.inf_amd64_4d19195a7aa17fc1\iauarte.inf
WinRAR 5.21 beta 1 (32-bit)-->C:\Program Files (x86)\WinRAR\uninstall.exe

======Hosts File======

0.0.0.0 0.0.0.0 # fix for traceroute and netstat display anomaly
0.0.0.0 tracking.opencandy.com.s3.amazonaws.com
0.0.0.0 media.opencandy.com
0.0.0.0 cdn.opencandy.com
0.0.0.0 tracking.opencandy.com
0.0.0.0 api.opencandy.com
0.0.0.0 api.recommendedsw.com
0.0.0.0 installer.betterinstaller.com
0.0.0.0 installer.filebulldog.com
0.0.0.0 d3oxtn1x3b8d7i.cloudfront.net

======System event log======

Computer Name: votička-pc
Event Code: 134
Message: NtpClient was unable to set a manual peer to use as a time source because of DNS resolution error on 'time.windows.com,0x9'. NtpClient will try again in 15 minutes and double the reattempt interval thereafter. The error was: Žiadny takýto hostiteľ nie je známy. (0x80072AF9)
Record Number: 2060
Source Name: Microsoft-Windows-Time-Service
Time Written: 20151213083502.202603-000
Event Type: Warning
User: NT AUTHORITY\LOCAL SERVICE

Computer Name: votička-pc
Event Code: 264
Message: Viacdotykové zariadenie udalo nekonzistentné informácie o kontaktoch.
Record Number: 2044
Source Name: Win32k
Time Written: 20151213083023.083700-000
Event Type: Warning
User:

Computer Name: votička-pc
Event Code: 219
Message: The driver \Driver\WudfRd failed to load for the device HID\INT33D1\5&2e9e9e6c&0&0000.
Record Number: 2040
Source Name: Microsoft-Windows-Kernel-PnP
Time Written: 20151213083013.769615-000
Event Type: Warning
User: NT AUTHORITY\SYSTEM

Computer Name: votička-pc
Event Code: 219
Message: The driver \Driver\WUDFRd failed to load for the device ACPI\INT3400\2&daba3ff&2.
Record Number: 2032
Source Name: Microsoft-Windows-Kernel-PnP
Time Written: 20151213083010.895373-000
Event Type: Warning
User: NT AUTHORITY\SYSTEM

Computer Name: votička-pc
Event Code: 10002
Message: Modul WLAN Extensibility Module sa zastavil.

Cesta k modulu: C:\Windows\System32\IWMSSvc.dll

Record Number: 2011
Source Name: Microsoft-Windows-WLAN-AutoConfig
Time Written: 20150606071515.452978-000
Event Type: Warning
User: NT AUTHORITY\SYSTEM

=====Application event log=====

Computer Name: votička-pc
Event Code: 78
Message: Activation context generation failed for "C:\Users\Lenka\AppData\Local\Pokki\Engine\HostAppService.exe".Error in manifest or policy file "" on line . A component version required by the application conflicts with another component version already active. Conflicting components are:. Component 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_a9ed7f470139b3c1.manifest. Component 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_6240486fecbd8abb.manifest.
Record Number: 1109
Source Name: SideBySide
Time Written: 20151212175852.000000-000
Event Type: Error
User:

Computer Name: votička-pc
Event Code: 78
Message: Activation context generation failed for "C:\Users\Lenka\AppData\Local\Pokki\Engine\HostAppService.exe".Error in manifest or policy file "" on line . A component version required by the application conflicts with another component version already active. Conflicting components are:. Component 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_a9ed7f470139b3c1.manifest. Component 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_6240486fecbd8abb.manifest.
Record Number: 1108
Source Name: SideBySide
Time Written: 20151212175851.000000-000
Event Type: Error
User:

Computer Name: votička-pc
Event Code: 3086
Message: The system locale has changed. Existing data will be deleted and the index must be recreated.

Context: Application, SystemIndex Catalog

Record Number: 1085
Source Name: Microsoft-Windows-Search
Time Written: 20151212175626.000000-000
Event Type: Warning
User:

Computer Name: votička-pc
Event Code: 3006
Message: Unable to read the performance counter strings defined for the 01b language ID. The first DWORD in the Data section contains the Win32 error code.
Record Number: 1039
Source Name: Microsoft-Windows-LoadPerf
Time Written: 20151212173622.499980-000
Event Type: Error
User: NT AUTHORITY\SYSTEM

Computer Name: votička-pc
Event Code: 1008
Message: Služba Windows Search sa spúšťa a pokúša sa odstrániť starý index hľadania. {Dôvod: Full Index Reset}.

Record Number: 1021
Source Name: Microsoft-Windows-Search
Time Written: 20151213083520.000000-000
Event Type: Warning
User:

=====Security event log=====

Computer Name: WIN-IQH18E817NL
Event Code: 4672
Message: Special privileges assigned to new logon.

Subject:
Security ID: S-1-5-18
Account Name: SYSTEM
Account Domain: NT AUTHORITY
Logon ID: 0x3E7

Privileges: SeAssignPrimaryTokenPrivilege
SeTcbPrivilege
SeSecurityPrivilege
SeTakeOwnershipPrivilege
SeLoadDriverPrivilege
SeBackupPrivilege
SeRestorePrivilege
SeDebugPrivilege
SeAuditPrivilege
SeSystemEnvironmentPrivilege
SeImpersonatePrivilege
Record Number: 6913
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20150606071446.782182-000
Event Type: Audit Success
User:

Computer Name: WIN-IQH18E817NL
Event Code: 4624
Message: An account was successfully logged on.

Subject:
Security ID: S-1-5-18
Account Name: WIN-IQH18E817NL$
Account Domain: WORKGROUP
Logon ID: 0x3E7

Logon Type: 5

Impersonation Level: Impersonation

New Logon:
Security ID: S-1-5-18
Account Name: SYSTEM
Account Domain: NT AUTHORITY
Logon ID: 0x3E7
Logon GUID: {00000000-0000-0000-0000-000000000000}

Process Information:
Process ID: 0x2e0
Process Name: C:\Windows\System32\services.exe

Network Information:
Workstation Name:
Source Network Address: -
Source Port: -

Detailed Authentication Information:
Logon Process: Advapi
Authentication Package: Negotiate
Transited Services: -
Package Name (NTLM only): -
Key Length: 0

This event is generated when a logon session is created. It is generated on the computer that was accessed.

The subject fields indicate the account on the local system which requested the logon. This is most commonly a service such as the Server service, or a local process such as Winlogon.exe or Services.exe.

The logon type field indicates the kind of logon that occurred. The most common types are 2 (interactive) and 3 (network).

The New Logon fields indicate the account for whom the new logon was created, i.e. the account that was logged on.

The network fields indicate where a remote logon request originated. Workstation name is not always available and may be left blank in some cases.

The impersonation level field indicates the extent to which a process in the logon session can impersonate.

The authentication information fields provide detailed information about this specific logon request.
- Logon GUID is a unique identifier that can be used to correlate this event with a KDC event.
- Transited services indicate which intermediate services have participated in this logon request.
- Package name indicates which sub-protocol was used among the NTLM protocols.
- Key length indicates the length of the generated session key. This will be 0 if no session key was requested.
Record Number: 6912
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20150606071446.782182-000
Event Type: Audit Success
User:

Computer Name: WIN-IQH18E817NL
Event Code: 4672
Message: Special privileges assigned to new logon.

Subject:
Security ID: S-1-5-18
Account Name: SYSTEM
Account Domain: NT AUTHORITY
Logon ID: 0x3E7

Privileges: SeAssignPrimaryTokenPrivilege
SeTcbPrivilege
SeSecurityPrivilege
SeTakeOwnershipPrivilege
SeLoadDriverPrivilege
SeBackupPrivilege
SeRestorePrivilege
SeDebugPrivilege
SeAuditPrivilege
SeSystemEnvironmentPrivilege
SeImpersonatePrivilege
Record Number: 6911
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20150606071446.688421-000
Event Type: Audit Success
User:

Computer Name: WIN-IQH18E817NL
Event Code: 4624
Message: An account was successfully logged on.

Subject:
Security ID: S-1-5-18
Account Name: WIN-IQH18E817NL$
Account Domain: WORKGROUP
Logon ID: 0x3E7

Logon Type: 5

Impersonation Level: Impersonation

New Logon:
Security ID: S-1-5-18
Account Name: SYSTEM
Account Domain: NT AUTHORITY
Logon ID: 0x3E7
Logon GUID: {00000000-0000-0000-0000-000000000000}

Process Information:
Process ID: 0x2e0
Process Name: C:\Windows\System32\services.exe

Network Information:
Workstation Name:
Source Network Address: -
Source Port: -

Detailed Authentication Information:
Logon Process: Advapi
Authentication Package: Negotiate
Transited Services: -
Package Name (NTLM only): -
Key Length: 0

This event is generated when a logon session is created. It is generated on the computer that was accessed.

The subject fields indicate the account on the local system which requested the logon. This is most commonly a service such as the Server service, or a local process such as Winlogon.exe or Services.exe.

The logon type field indicates the kind of logon that occurred. The most common types are 2 (interactive) and 3 (network).

The New Logon fields indicate the account for whom the new logon was created, i.e. the account that was logged on.

The network fields indicate where a remote logon request originated. Workstation name is not always available and may be left blank in some cases.

The impersonation level field indicates the extent to which a process in the logon session can impersonate.

The authentication information fields provide detailed information about this specific logon request.
- Logon GUID is a unique identifier that can be used to correlate this event with a KDC event.
- Transited services indicate which intermediate services have participated in this logon request.
- Package name indicates which sub-protocol was used among the NTLM protocols.
- Key length indicates the length of the generated session key. This will be 0 if no session key was requested.
Record Number: 6910
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20150606071446.688421-000
Event Type: Audit Success
User:

Computer Name: WIN-IQH18E817NL
Event Code: 1102
Message: The audit log was cleared.
Subject:
Security ID: S-1-5-21-203021172-1241644906-943083227-500
Account Name: Administrator
Domain Name: WIN-IQH18E817NL
Logon ID: 0x2FB45
Record Number: 6909
Source Name: Microsoft-Windows-Eventlog
Time Written: 20150606071445.032215-000
Event Type: Audit Success
User:

======Environment variables======

"FP_NO_HOST_CHECK"=NO
"USERNAME"=SYSTEM
"Path"=C:\Program Files (x86)\Intel\TXE Components\TCS\;C:\Program Files\Intel\TXE Components\TCS\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\Intel\TXE Components\DAL\;C:\Program Files (x86)\Intel\TXE Components\DAL\;C:\Program Files\Intel\TXE Components\IPT\;C:\Program Files (x86)\Intel\TXE Components\IPT\;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\;C:\Program Files (x86)\Skype\Phone\
"ComSpec"=%SystemRoot%\system32\cmd.exe
"TMP"=%SystemRoot%\TEMP
"OS"=Windows_NT
"windir"=%SystemRoot%
"PROCESSOR_ARCHITECTURE"=AMD64
"TEMP"=%SystemRoot%\TEMP
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
"PSModulePath"=%SystemRoot%\system32\WindowsPowerShell\v1.0\Modules\
"NUMBER_OF_PROCESSORS"=4
"PROCESSOR_LEVEL"=6
"PROCESSOR_IDENTIFIER"=Intel64 Family 6 Model 76 Stepping 3, GenuineIntel
"PROCESSOR_REVISION"=4c03

-----------------EOF-----------------

#2 Příspěvek od **JaRon** » 18 úno 2016 14:51

ahoj,
pouzi navod kolegu http://forum.viry.cz/viewtopic.php?f=13 ... e#p1436908
oba kroky
ak nepomoze vloz novy log - ten opacny

marilynman · #3 Příspěvek od **marilynman** » 20 úno 2016 14:29

ktory opacny ? kedsmiem vediet.

marilynman · #4 Příspěvek od **marilynman** » 20 úno 2016 14:43

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.0.3 (02.09.2016)
Operating System: Windows 8.1 x64
Ran by Lenka (Administrator) on so 20.02.2016 at 14:35:55,40
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

File System: 0

Registry: 0

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on so 20.02.2016 at 14:40:36,66
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

#5 Příspěvek od **JaRon** » 21 úno 2016 12:02

vlozil si info.txt, potrebujem log.txt z RSIT

marilynman · #6 Příspěvek od **marilynman** » 26 úno 2016 06:57

Logfile of random's system information tool 1.10 (written by random/random)
Run by Lenka at 2016-02-26 06:55:20
Microsoft Windows 8.1
System drive C: has 414 GB (90%) free of 458 GB
Total RAM: 4010 MB (56% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 6:55:32, on 26.2.2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17416)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe
C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
C:\Program Files (x86)\Acer\abDocs\abDocsDllLoaderMonitor.exe
c:\Program Files (x86)\Dropbox\DropboxOEM\DropboxOEM.exe
C:\Program Files (x86)\Acer\Screen Grasp\GestureDetection.exe
C:\Program Files (x86)\Acer\Screen Grasp\Launch Screen Grasp.exe
C:\Program Files\AVAST Software\SecureLine\SecureLine.exe
C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe
C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe
C:\Program Files (x86)\Microsoft Office\Office15\FirstRun.exe
C:\Program Files (x86)\VideoLAN\VLC\vlc.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Lenka.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer13.msn.com/?pc=ACJB
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://at.search.yahoo.com/yhs/web?hsp ... dows%2B8.1
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O4 - HKLM\..\Run: [abDocsDllLoader] C:\Program Files (x86)\Acer\abDocs\abDocsDllLoader.exe
O4 - HKLM\..\Run: [isa] C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
O4 - HKLM\..\Run: [mcpltui_exe] "C:\Program Files\Common~1\McAfee\Platform\mcuicnt.exe" /platui
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: CCDMonitorService - Acer Incorporated - C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
O23 - Service: @oem3.inf,%ServiceDisplayName%;ESIF Upper Framework Service (esifsvc) - Intel Corporation - C:\WINDOWS\SysWOW64\esif_uf.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: GamesAppIntegrationService - WildTangent - C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel Bluetooth Service (ibtsiva) - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\utilities\ibtsiva.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe
O23 - Service: Intel(R) Security Assist - Unknown owner - C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
O23 - Service: Intel(R) Security Assist Helper (isaHelperSvc) - Unknown owner - C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\TXE Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Launch Manager Service (LMSvc) - Acer Incorporate - C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Quick Access Service (QASvc) - Acer Incorporated - C:\Program Files\Acer\Acer Quick Access\QASvc.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
O23 - Service: Quick Access RadioMgr Service (RMSvc) - Acer Incorporated - C:\Program Files\Acer\Acer Quick Access\RMSvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Avast SecureLine (SecureLine) - Unknown owner - C:\Program Files\AVAST Software\SecureLine\VpnSvc.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Touch Tools Launch Service (TouchToolsLaunchService) - Acer Incorporated - C:\Program Files\Acer\Acer Touch Tools\TouchToolsLaunchSvc.exe
O23 - Service: User Experience Improvement Program (UEIPSvc) - acer - C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe

--
End of file - 9467 bytes

======Listing Processes======

wininit.exe

winlogon.exe

C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"dwm.exe"
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\igfxCUIService.exe
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\system32\WLANExt.exe 622812310048
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe"
C:\WINDOWS\SysWOW64\esif_uf.exe
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
"C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe"
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
"C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe"
"C:\Program Files\AVAST Software\SecureLine\VpnSvc.exe"
C:\WINDOWS\system32\svchost.exe -k imgsvc
"C:\Program Files\Acer\Acer Touch Tools\TouchToolsLaunchSvc.exe"

"C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe"
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-1afeb31f-b7f8-47d6-ac1a-1a5ffa77e414 -SystemEventPortName:HostProcess-0abe9a93-b7ae-4196-a03d-a168fa87d7f1 -IoCancelEventPortName:HostProcess-2b174420-2d35-4a62-a65a-bdca8ffd8baf -NonStateChangingEventPortName:HostProcess-85d610c0-95a1-4145-99fb-956fc45d72fc -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:78560dd2-5c66-462f-8d7b-fa6fcebd1546 -DeviceGroupId:

"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-5de283f6-67c3-4abd-ad96-0a3d67939b23 -SystemEventPortName:HostProcess-ced568f2-1308-4ddf-8355-6364fb07fcbf -IoCancelEventPortName:HostProcess-ef5675e2-1940-4abd-a311-16959f5b5b68 -NonStateChangingEventPortName:HostProcess-e0a5ae7c-e984-42db-8852-10b9200950a1 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:800afd1b-c6c4-4c65-889e-0991bd081148 -DeviceGroupId:WpdFsGroup
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-ec6d3c94-2b0a-4dc0-aaec-e60f3378bc43 -SystemEventPortName:HostProcess-1c89d890-f6be-4bbb-b013-5aa277ecbd61 -IoCancelEventPortName:HostProcess-6e3c8d06-3992-49a8-9c4b-9cc5dbcbaa6e -NonStateChangingEventPortName:HostProcess-aba80c0f-184a-43fb-b1da-d4f451597caa -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:db64aa3b-3588-4234-a646-d2e780a2d0d1 -DeviceGroupId:WudfDefaultDevicePool
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\WINDOWS\TEMP\DPTF\esif_assist_64.exe"
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\WINDOWS\Explorer.EXE
taskhostex.exe
"C:\Users\Lenka\AppData\Local\SweetLabs App Platform\Engine\ServiceHostAppUpdater.exe" /LOGON
igfxEM.exe
igfxHK.exe
igfxTray.exe
"C:\Program Files\Acer\Acer Launch Manager\LMEvent.exe"
"C:\Program Files\Acer\Acer Launch Manager\LMLockHandler.exe"
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\Acer\Acer Quick Access\QASvc.exe"
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\Acer\Acer Launch Manager\LMTray.exe"
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Acer\Acer Quick Access\QAMsg.exe"
"C:\Program Files\Acer\Acer Quick Access\QAEvent.exe"
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\Acer\Acer Quick Access\QAThemes.exe" -t Notebook
/QuitInfo:0000000000000B90;0000000000000B94;
C:\Windows\System32\skydrive.exe -Embedding
/loadhooks /Parent:0000000000000fd0
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe"
"C:\Program Files\Acer\Acer Power Management\ePowerTray.exe"
"C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe"
"C:\Windows\system32\igfxext.exe" -Embedding
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe"
"C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe"
"C:\Program Files (x86)\Intel\TXE Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Acer\abDocs\abDocsDllLoaderMonitor.exe"
"C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe" -r "C:\Users\Lenka\AppData\Local\AOP SDK\Acer Infra\acer\SyncAgent" -u S-1-5-21-203021172-1241644906-943083227-1001 -c 364 -s 481 -g "C:\ProgramData\acer\CCD"
\??\C:\WINDOWS\system32\conhost.exe 0x4
"c:\Program Files (x86)\Dropbox\DropboxOEM\DropboxOEM.exe" auto
"C:\Program Files\Acer\Acer Quick Access\RMSvc.exe"
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files (x86)\Acer\Acer Audio Invert Utility\AudioInvertAgent.exe"
"C:\Program Files (x86)\Acer\Screen Grasp\GestureDetection.exe"
"C:\Program Files (x86)\Acer\Screen Grasp\Launch Screen Grasp.exe"
"C:\Windows\System32\WWAHost.exe" -ServerName:Windows.Store
"C:\Program Files\AVAST Software\SecureLine\SecureLine.exe" /nogui
"C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe" task
"C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe" task
"C:\Windows\System32\SettingSyncHost.exe" -Embedding
"C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe"
dashost.exe {21da0ce2-a7cc-4671-9ade8bfcf7371858}
"C:\Program Files (x86)\Microsoft Office\Office15\FirstRun.exe" /OEMTA silent
taskhost.exe
"C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file "E:\SK-CZ\kamenak\Kamenak.2003.DVDrip.XViD.CZdub-DiVXCZ\Kamenak-DiVXCZ.avi"

"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="5748.0.203245319\1632862836" --supports-dual-gpus=false --gpu-driver-bug-workarounds=2,24,52 --gpu-vendor-id=0x8086 --gpu-device-id=0x22b1 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=10.18.14.4189 --ignored=" --type=renderer " /prefetch:822062411
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe56_ Global\UsGthrCtrlFltPipeMssGthrPipe56 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"

C:\WINDOWS\servicing\TrustedInstaller.exe
C:\WINDOWS\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.17477_none_fa2b7d3b9b36c7b4\TiWorker.exe -Embedding
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtrials=AffiliationBasedMatching/EnabledThroughFieldTrial/AppBannerTriggering/Aggressive/AsyncSetAsDefault/Disabled/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_5/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/*CrossDevicePromo/1DaySingleProfile/*ExtensionActionRedesign/Default/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/CrimePaddingControl/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/NewSuggestType_A7_Stable_R2/*PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SafeBrowsingUpdateFrequency/Default/SlimmingPaint/EnableSlimmingPaint/*SpdyEnableDependencies/Control/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/WebRTC-LocalIPPermissionCheck/Default/WebRTC-PeerConnectionDTLS1.2/Enabled/ --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="5748.12.1963836351\1474775179" --font-cache-shared-handle=4748 /prefetch:673131151
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 556 560 568 65536 564
"C:\Users\Lenka\Downloads\RSITx64 (1).exe"

======Scheduled tasks folder======

C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

======Registry dump======

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2015-05-08 13876952]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"abDocsDllLoader"=C:\Program Files (x86)\Acer\abDocs\abDocsDllLoader.exe [2015-11-23 91488]
"isa"=C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [2015-02-18 330240]
"mcpltui_exe"=C:\Program Files\Common~1\McAfee\Platform\mcuicnt.exe /platui []

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2ce.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcpltsvc]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2016-02-26 06:55:21 ----D---- C:\Program Files\trend micro
2016-02-25 00:33:07 ----A---- C:\WINDOWS\system32\rdpudd.dll
2016-02-25 00:33:07 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2016-02-23 08:57:17 ----D---- C:\Users\Lenka\AppData\Roaming\DropboxOEM
2016-02-21 00:47:59 ----D---- C:\Windows.old
2016-02-20 21:57:26 ----D---- C:\Program Files\CCleaner
2016-02-20 21:56:48 ----D---- C:\Users\Lenka\AppData\Roaming\vlc
2016-02-20 21:56:04 ----D---- C:\Program Files (x86)\VideoLAN
2016-02-20 16:38:10 ----SHD---- C:\Config.Msi
2016-02-20 16:37:30 ----D---- C:\ProgramData\Synaptics
2016-02-20 16:28:27 ----D---- C:\Program Files (x86)\Google
2016-02-20 16:24:49 ----D---- C:\Program Files (x86)\WinRAR
2016-02-20 16:10:35 ----D---- C:\Users\Lenka\AppData\Roaming\Macromedia
2016-02-20 16:02:39 ----D---- C:\WINDOWS\oem
2016-02-20 15:56:21 ----D---- C:\Users\Lenka\AppData\Roaming\Adobe
2016-02-20 15:56:18 ----A---- C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2016-02-20 15:55:51 ----D---- C:\Users\Lenka\AppData\Roaming\Intel
2016-02-20 15:52:43 ----D---- C:\WINDOWS\SoftwareDistribution
2016-02-20 15:51:11 ----SD---- C:\Users\Lenka\AppData\Roaming\Microsoft
2016-02-20 15:24:29 ----HD---- C:\$SysReset
2016-02-18 14:55:33 ----D---- C:\zoek_backup
2016-02-18 14:39:06 ----D---- C:\rsit

======List of files/folders modified in the last 1 month======

2016-02-26 06:55:28 ----D---- C:\WINDOWS\Prefetch
2016-02-26 06:55:21 ----RD---- C:\Program Files
2016-02-26 03:42:21 ----D---- C:\WINDOWS\system32\sru
2016-02-26 00:40:35 ----D---- C:\WINDOWS\Microsoft.NET
2016-02-25 22:59:41 ----D---- C:\WINDOWS\Temp
2016-02-25 12:54:08 ----D---- C:\WINDOWS\system32\config
2016-02-25 09:13:43 ----D---- C:\WINDOWS\WinSxS
2016-02-25 07:59:36 ----RD---- C:\WINDOWS\System32
2016-02-25 07:59:34 ----D---- C:\WINDOWS\SysWOW64
2016-02-25 07:36:21 ----D---- C:\WINDOWS\system32\catroot2
2016-02-25 00:51:50 ----D---- C:\WINDOWS\system32\DriverStore
2016-02-25 00:51:50 ----D---- C:\WINDOWS\system32\drivers
2016-02-25 00:51:50 ----D---- C:\WINDOWS\Inf
2016-02-23 14:58:17 ----D---- C:\WINDOWS\Logs
2016-02-23 14:13:05 ----D---- C:\WINDOWS\CbsTemp
2016-02-23 14:12:57 ----D---- C:\WINDOWS\system32\AdvancedInstallers
2016-02-23 14:12:38 ----SHD---- C:\System Volume Information
2016-02-23 14:11:31 ----D---- C:\WINDOWS\system32\restore
2016-02-23 08:58:54 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2016-02-23 08:58:16 ----D---- C:\ProgramData\OEM
2016-02-23 08:54:43 ----RD---- C:\Program Files (x86)
2016-02-23 08:54:43 ----D---- C:\ProgramData\McAfee
2016-02-23 08:54:43 ----D---- C:\Program Files\Common Files
2016-02-23 01:19:47 ----HD---- C:\Program Files\WindowsApps
2016-02-23 00:40:31 ----D---- C:\WINDOWS\AppReadiness
2016-02-21 16:30:44 ----D---- C:\WINDOWS\LiveKernelReports
2016-02-21 14:30:27 ----D---- C:\WINDOWS\system32\drivers\UMDF
2016-02-21 03:13:50 ----D---- C:\ProgramData\Acer
2016-02-21 00:47:45 ----SD---- C:\WINDOWS\system32\Microsoft
2016-02-20 21:57:51 ----D---- C:\WINDOWS\system32\Tasks
2016-02-20 21:49:01 ----SHD---- C:\WINDOWS\Installer
2016-02-20 21:44:39 ----D---- C:\WINDOWS\Tasks
2016-02-20 20:01:57 ----D---- C:\WINDOWS\system32\wdi
2016-02-20 16:52:15 ----D---- C:\Program Files (x86)\Acer
2016-02-20 16:52:08 ----RD---- C:\WINDOWS\assembly
2016-02-20 16:52:01 ----HD---- C:\OEM
2016-02-20 16:46:40 ----HD---- C:\WINDOWS\ELAMBKUP
2016-02-20 16:37:30 ----HD---- C:\ProgramData
2016-02-20 16:20:57 ----SD---- C:\ProgramData\Microsoft
2016-02-20 16:02:39 ----D---- C:\Windows
2016-02-20 16:01:57 ----D---- C:\WINDOWS\rescache
2016-02-20 15:59:10 ----SHD---- C:\$Recycle.Bin
2016-02-20 15:56:48 ----DC---- C:\WINDOWS\Panther
2016-02-20 15:53:15 ----D---- C:\WINDOWS\debug
2016-02-20 15:52:42 ----D---- C:\WINDOWS\system32\Recovery
2016-02-20 15:51:10 ----RD---- C:\Users
2016-02-02 03:37:41 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\WINDOWS\system32\DRIVERS\vwififlt.sys [2013-08-22 71680]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2014-11-21 81920]
R3 dptf_acpi;dptf_acpi; C:\WINDOWS\System32\drivers\dptf_acpi.sys [2015-03-05 45648]
R3 dptf_cpu;dptf_cpu; C:\WINDOWS\System32\drivers\dptf_cpu.sys [2015-03-05 41552]
R3 esif_lf;esif_lf; C:\WINDOWS\system32\DRIVERS\esif_lf.sys [2015-03-05 243792]
R3 iagpioe;@oem14.inf,%iagpioe.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpioe.sys [2015-03-01 32256]
R3 iai2ce;@oem15.inf,%iai2ce.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2ce.sys [2015-03-01 83968]
R3 ibtusb;@oem13.inf,%ibtusb.SVCDESC_IBT%;Intel(R) Wireless Bluetooth(R); C:\WINDOWS\system32\DRIVERS\ibtusb.sys [2015-02-24 250096]
R3 igfxLP;igfxLP; C:\WINDOWS\system32\DRIVERS\igdkmd64lp.sys [2015-04-19 4516280]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2015-05-08 4467928]
R3 IntcDAud;@oem7.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2015-04-19 460048]
R3 iusb3adp;@oem6.inf,%iusb3adp.SvcDesc%;Intel(R) USB 3.0 Host Controller Adaptation Driver; C:\WINDOWS\System32\drivers\iusb3adp.sys [2015-03-27 23824]
R3 iwdbus;@oem10.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2015-03-04 30512]
R3 LMDriver;@oem23.inf,%LMDriver.SVCDESC%;Launch Manager Wireless Driver; C:\WINDOWS\System32\drivers\LMDriver.sys [2013-07-18 21360]
R3 NETwNb64;@oem17.inf,___ %NIC_Service_DispName_WINB_64%;___ Intel(R) Wireless Adapter Driver for Windows 8.1 - 64 Bit; C:\WINDOWS\system32\DRIVERS\Netwbw02.sys [2015-03-05 3657496]
R3 RadioShim;@oem23.inf,%RadioShim.SVCDESC%;Shim for HID-KMDF Interface layer; C:\WINDOWS\System32\drivers\RadioShim.sys [2013-07-18 14680]
R3 RTL8168;@oem22.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\WINDOWS\system32\DRIVERS\Rt630x64.sys [2015-01-15 881368]
R3 SensorsHIDClassDriver;@sensorshidclassdriver.inf,%WudfSensorsHIDClassDriverDisplayName%;UMDF Reflector service for SensorsHIDClassDriver; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [2014-11-21 226304]
R3 SensorsServiceDriver;@sensorsservicedriver.inf,%WudfSensorsServiceDriverDisplayName%;UMDF Reflector service for SensorsServiceDriver; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [2014-11-21 226304]
R3 TXEIx64;@oem11.inf,%TEE_SvcDesc%;Intel(R) Trusted Execution Engine Interface ; C:\WINDOWS\System32\drivers\TXEIx64.sys [2014-11-24 114976]
R3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;USB Video Device (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2014-11-21 212736]
R3 VirtualButtons;@oem4.inf,%VirtualButtons%;Intel(R) Virtual Buttons; C:\WINDOWS\System32\drivers\VirtualButtons.sys [2014-08-14 31512]
R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\WINDOWS\system32\DRIVERS\vwifimp.sys [2013-08-22 36864]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\WINDOWS\system32\DRIVERS\BthEnum.sys [2014-11-21 53248]
S3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\system32\DRIVERS\BthLEEnum.sys [2014-11-21 226304]
S3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\system32\DRIVERS\bthpan.sys [2014-11-21 118272]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\System32\Drivers\BTHport.sys [2014-11-21 1198080]
S3 iauarte;@oem16.inf,%iauarte.SVCDESC%;Intel(R) Serial IO UART Controller; C:\WINDOWS\System32\drivers\iauarte.sys [2015-03-01 101888]
S3 intaud_WaveExtensible;@oem9.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\WINDOWS\system32\drivers\intelaud.sys [2015-03-04 42288]
S3 k57nd60a;@netk57a.inf,%SvcDispName%;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0; C:\WINDOWS\system32\DRIVERS\k57nd60a.sys [2013-06-18 425984]
S3 NETwNe64;@netwew02.inf,___ %NIC_Service_DispName_WIN8_64%;___ Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 8 - 64 Bit; C:\WINDOWS\system32\DRIVERS\NETwew02.sys [2013-06-18 4649440]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\system32\DRIVERS\rfcomm.sys [2014-11-21 167424]
S3 WDC_SAM;@oem24.inf,%WDC_SAM_ServiceName%;WD SCSI Pass Thru driver; C:\WINDOWS\System32\drivers\wdcsam64.sys [2015-11-12 26880]
S3 WinUsb;@wpdmtp.inf,%WinUsb.SvcDesc%;WinUsb; C:\WINDOWS\system32\DRIVERS\WinUsb.sys [2013-08-22 78848]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 CCDMonitorService;CCDMonitorService; C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe [2016-01-14 2860760]
R2 esifsvc;@oem3.inf,%ServiceDisplayName%;ESIF Upper Framework Service; C:\WINDOWS\SysWOW64\esif_uf.exe [2015-03-05 1332184]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2015-03-04 638368]
R2 GamesAppIntegrationService;GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [2014-11-20 227904]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2015-04-19 344168]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface; C:\Program Files (x86)\Intel\TXE Components\DAL\jhi_service.exe [2014-12-11 172320]
R2 LMSvc;Launch Manager Service; C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe [2014-12-30 455912]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2015-03-04 157088]
R2 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [2014-10-08 253776]
R2 SecureLine;Avast SecureLine; C:\Program Files\AVAST Software\SecureLine\VpnSvc.exe [2015-01-27 451432]
R2 TouchToolsLaunchService;Touch Tools Launch Service; C:\Program Files\Acer\Acer Touch Tools\TouchToolsLaunchSvc.exe [2014-01-09 250624]
R3 ePowerSvc;ePower Service; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [2015-01-28 2573544]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2014-11-21 43696]
R3 Intel(R) Security Assist;Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [2015-02-18 330240]
R3 QASvc;Quick Access Service; C:\Program Files\Acer\Acer Quick Access\QASvc.exe [2015-02-04 476904]
R3 RMSvc;Quick Access RadioMgr Service; C:\Program Files\Acer\Acer Quick Access\RMSvc.exe [2015-02-04 449768]
R3 UEIPSvc;User Experience Improvement Program; C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe [2015-01-07 242944]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-02-20 154440]
S2 ibtsiva;Intel Bluetooth Service; C:\Program Files (x86)\Intel\Bluetooth\utilities\ibtsiva.exe [2015-02-24 131312]
S2 isaHelperSvc;Intel(R) Security Assist Helper; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [2015-02-18 7680]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2014-04-04 315008]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2014-11-21 38792]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2015-04-19 279144]
S3 GamesAppService;GamesAppService; C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2014-11-15 259664]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-02-20 154440]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe [2014-10-03 881152]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2015-03-04 268192]

-----------------EOF-----------------

#7 Příspěvek od **JaRon** » 26 úno 2016 07:12

log vypada OK
prescanuj PC s AVPTool - obavam sa vsak, ze ide o problem klavesnice samotnej ,,,

VIRY.CZ

surna pomoc

surna pomoc

Re: surna pomoc

Re: surna pomoc

Re: surna pomoc

Re: surna pomoc

Re: surna pomoc

Re: surna pomoc