Počítač zamrze

Zpráva

Ares444 · #1 Příspěvek od **Ares444** » 02 čer 2016 22:14

Zdravím, potřebuji pomoc. Kdykoliv kdy začnu na počítači něco dělat tak se zamrze a na vůbec nic nereaguje ani po několika minutách...

log:

Logfile of random's system information tool 1.10 (written by random/random)
Run by xxx at 2016-06-02 23:07:57
Microsoft Windows 7 Professional
System drive C: has 47 GB (31%) free of 153 GB
Total RAM: 4094 MB (53% free)

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
winlogon.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
atieclxx
C:\Windows\System32\spoolsv.exe
"C:\Windows\system32\Dwm.exe"
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"taskhost.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE"
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Windows\SysWOW64\PnkBstrB.exe
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
"C:\Users\xxx\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
"C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe"
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe" -s
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow
"C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe"
"C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Users\xxx\AppData\Local\Temp\Microsoft Security.exe" ..
WLIDSvcM.exe 2340
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE"
"C:\Windows\system32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-0edfb544-2b90-402a-b7ab-31ecd7d59acf -SystemEventPortName:HostProcess-179fa7be-f6d2-427b-873e-bba8c4100bc1 -IoCancelEventPortName:HostProcess-a676c3c8-135b-48d4-8757-4dbe2cca5bf2 -NonStateChangingEventPortName:HostProcess-dcfd5c9a-0cdc-4876-b835-8d32085675c6 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:c66f3d55-2547-4960-9d36-7402138356c6
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler /prefetch:7 --no-rate-limit "--database=C:\Users\xxx\AppData\Local\Google\Chrome\User Data\Crashpad" --url=https://clients2.google.com/cr/report --annotation=channel=m --annotation=plat=Win32 --annotation=prod=Chrome --annotation=ver=50.0.2661.102 --handshake-handle=0xc4
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="3980.0.1728086486\1275244239" --disable-direct-composition --supports-dual-gpus=false --gpu-driver-bug-workarounds=4,12,24,53,71 --disable-accelerated-video-decode --gpu-vendor-id=0x1002 --gpu-device-id=0x95c5 --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=8.970.100.1100 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,IncidentReportingModuleLoadAnalysis<SafeBrowsingIncidentReportingServiceFeatures,IncidentReportingSuspiciousModuleReporting<SafeBrowsingIncidentReportingServiceFeatures,WebFontsIntervention<WebFontsIntervention,brotli-encoding<BrotliEncoding --disable-features=UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --lang=cs --force-fieldtrials=AppBannerTriggering/Aggressive/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_10-gen2/*BrotliEncoding/Enabled/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*CrossDevicePromo/Control/*DataReductionProxyConfigService/Enabled/*DirectWriteFontProxy/UseDirectWriteFontProxy/*ExtensionActionRedesign/Enabled/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/NewSuggestType_A2_Stable_R1/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/*PreRead/Default/*QUIC/EnabledDisableDelayTcpRace/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Launch50pct_11011_1_1_10/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Control/*SafeBrowsingIncidentReportingService/Default/*SafeBrowsingIncidentReportingServiceFeatures/WithSuspiciousModuleReporting/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_74/*UMA-Uniformity-Trial-10-Percent/group_09/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_02/*UMA-Uniformity-Trial-5-Percent/group_04/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/*WebFontsIntervention/Enabled/ --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=fetchDeferLateScripts=true,fetchIncreaseFontPriority=true,fetchIncreasePriorities=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --disable-accelerated-video-decode --channel="3980.4.43564243\632626075" /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,IncidentReportingModuleLoadAnalysis<SafeBrowsingIncidentReportingServiceFeatures,IncidentReportingSuspiciousModuleReporting<SafeBrowsingIncidentReportingServiceFeatures,WebFontsIntervention<WebFontsIntervention,brotli-encoding<BrotliEncoding --disable-features=UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --lang=cs --force-fieldtrials=AppBannerTriggering/Aggressive/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_10-gen2/*BrotliEncoding/Enabled/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*CrossDevicePromo/Control/*DataReductionProxyConfigService/Enabled/*DirectWriteFontProxy/UseDirectWriteFontProxy/*ExtensionActionRedesign/Enabled/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/NewSuggestType_A2_Stable_R1/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/*PreRead/Default/*QUIC/EnabledDisableDelayTcpRace/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Launch50pct_11011_1_1_10/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Control/*SafeBrowsingIncidentReportingService/Default/*SafeBrowsingIncidentReportingServiceFeatures/WithSuspiciousModuleReporting/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_74/*UMA-Uniformity-Trial-10-Percent/group_09/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_02/*UMA-Uniformity-Trial-5-Percent/group_04/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/*WebFontsIntervention/Enabled/ --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=fetchDeferLateScripts=true,fetchIncreaseFontPriority=true,fetchIncreasePriorities=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --disable-accelerated-video-decode --channel="3980.7.367316069\356008598" /prefetch:1
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files\trend micro\xxx.exe" /silentautolog

"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=ppapi --channel="3980.12.432789650\869546665" --ppapi-flash-args --lang=cs --device-scale-factor=1 --ignored=" --type=renderer " /prefetch:3
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,IncidentReportingModuleLoadAnalysis<SafeBrowsingIncidentReportingServiceFeatures,IncidentReportingSuspiciousModuleReporting<SafeBrowsingIncidentReportingServiceFeatures,WebFontsIntervention<WebFontsIntervention,brotli-encoding<BrotliEncoding --disable-features=UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --lang=cs --force-fieldtrials=AppBannerTriggering/Aggressive/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_10-gen2/*BrotliEncoding/Enabled/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*CrossDevicePromo/Control/*DataReductionProxyConfigService/Enabled/*DirectWriteFontProxy/UseDirectWriteFontProxy/*ExtensionActionRedesign/Enabled/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/NewSuggestType_A2_Stable_R1/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/*PreRead/Default/*QUIC/EnabledDisableDelayTcpRace/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Launch50pct_11011_1_1_10/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Control/*SafeBrowsingIncidentReportingService/Default/*SafeBrowsingIncidentReportingServiceFeatures/WithSuspiciousModuleReporting/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SafeBrowsingUpdateFrequency/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_74/*UMA-Uniformity-Trial-10-Percent/group_09/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_02/*UMA-Uniformity-Trial-5-Percent/group_04/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/*WebFontsIntervention/Enabled/ --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=fetchDeferLateScripts=true,fetchIncreaseFontPriority=true,fetchIncreasePriorities=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --disable-accelerated-video-decode --channel="3980.15.172989262\1742712180" /prefetch:1
"C:\Users\xxx\Downloads\RSITx64.exe"
taskeng.exe {87C60265-D7CC-411B-AD1A-95470D2A73D9}
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /ua /installsource scheduler

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18 532336]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_91\bin\ssv.dll [2016-05-25 462400]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18 403840]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-05-25 173120]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2012-06-11 12503184]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2016-04-08 51656320]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2016-03-11 8686296]
"Spotify Web Helper"=C:\Users\xxx\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2016-05-27 1554032]
"bb68a7ce504999b6a34fe41c548781a2"=C:\Users\xxx\AppData\Local\Temp\Microsoft Security.exe [2016-05-29 396288]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Spotify]
C:\Users\xxx\AppData\Roaming\Spotify\Spotify.exe [2016-05-27 6858864]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Spotify Web Helper]
C:\Users\xxx\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2016-05-27 1554032]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2013-04-30 642304]
"AMD AVT"=Cmd.exe /c start AMD Accelerated Video Transcoding device initialization /min C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe aml []
"HP Software Update"=C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [2010-03-12 49208]
""= []
"LogMeIn Hamachi Ui"=C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [2016-05-06 5565960]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2016-04-01 596504]
"bb68a7ce504999b6a34fe41c548781a2"=C:\Users\xxx\AppData\Local\Temp\Microsoft Security.exe [2016-05-29 396288]

C:\Users\xxx\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
bb68a7ce504999b6a34fe41c548781a2.exe

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.LAGS"=lagarith.dll
"VIDC.X264"=x264vfw64.dll
"VIDC.XVID"=xvidvfw.dll
"VIDC.FFDS"=ff_vfw.dll
"msacm.ac3acm"=ac3acm.acm
"msacm.l3codecp"=l3codecp.acm
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2016-06-02 22:48:36 ----D---- C:\Program Files\trend micro
2016-06-02 22:48:35 ----D---- C:\rsit
2016-05-27 16:57:48 ----D---- C:\Users\xxx\AppData\Roaming\.mono
2016-05-27 16:57:48 ----D---- C:\ProgramData\.mono
2016-05-27 16:47:30 ----D---- C:\Program Files (x86)\Hearthstone
2016-05-27 16:36:24 ----D---- C:\ProgramData\Blizzard Entertainment
2016-05-27 16:35:22 ----D---- C:\Program Files (x86)\Battle.net
2016-05-27 16:35:02 ----D---- C:\Users\xxx\AppData\Roaming\Battle.net
2016-05-27 16:34:40 ----D---- C:\ProgramData\Battle.net
2016-05-25 17:06:32 ----D---- C:\Users\xxx\AppData\Roaming\.minecraft
2016-05-25 17:06:31 ----D---- C:\Users\xxx\AppData\Roaming\.tlauncher
2016-05-25 17:06:00 ----D---- C:\Users\xxx\AppData\Roaming\Sun
2016-05-25 17:05:37 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2016-05-25 17:05:13 ----D---- C:\ProgramData\Oracle
2016-05-25 17:05:08 ----D---- C:\Program Files (x86)\Java
2016-05-16 07:50:03 ----D---- C:\Users\xxx\AppData\Roaming\ATI
2016-05-16 07:49:21 ----A---- C:\Windows\system32\FNTCACHE.DAT
2016-05-14 12:31:28 ----D---- C:\Program Files (x86)\LogMeIn Hamachi
2016-05-08 23:15:42 ----D---- C:\Users\xxx\AppData\Roaming\TeamViewer
2016-05-08 23:15:40 ----A---- C:\Windows\system32\drivers\teamviewervpn.sys
2016-05-08 23:15:37 ----D---- C:\Program Files (x86)\TeamViewer
2016-05-08 14:28:42 ----D---- C:\Users\xxx\AppData\Roaming\Hamachi
2016-05-08 00:02:34 ----D---- C:\ProgramData\LogMeIn
2016-05-07 18:26:53 ----RD---- C:\NHL 09
2016-05-07 18:05:53 ----AH---- C:\Windows\system32\hamachi.sys

======List of files/folders modified in the last 1 month======

2016-06-02 23:07:59 ----D---- C:\Windows\Temp
2016-06-02 22:48:46 ----D---- C:\Windows\Prefetch
2016-06-02 22:48:36 ----RD---- C:\Program Files
2016-06-02 22:42:39 ----D---- C:\Users\xxx\AppData\Roaming\Skype
2016-06-02 22:28:16 ----D---- C:\Windows\System32
2016-06-02 22:28:16 ----D---- C:\Windows\inf
2016-06-02 22:28:16 ----A---- C:\Windows\system32\PerfStringBackup.INI
2016-06-02 22:17:49 ----D---- C:\Program Files (x86)\Microsoft
2016-06-02 21:43:46 ----D---- C:\Program Files\Steam
2016-06-02 21:42:42 ----RSD---- C:\Windows\assembly
2016-06-02 21:41:56 ----SHD---- C:\System Volume Information
2016-06-02 19:53:29 ----D---- C:\Users\xxx\AppData\Roaming\TS3Client
2016-05-28 19:55:07 ----D---- C:\Windows\system32\config
2016-05-28 00:07:00 ----D---- C:\Windows
2016-05-27 16:57:48 ----HD---- C:\ProgramData
2016-05-27 16:47:30 ----RD---- C:\Program Files (x86)
2016-05-27 14:12:35 ----D---- C:\Users\xxx\AppData\Roaming\Spotify
2016-05-25 17:06:21 ----SHD---- C:\Windows\Installer
2016-05-25 17:06:20 ----D---- C:\Program Files (x86)\Common Files
2016-05-25 17:05:37 ----D---- C:\Windows\SysWOW64
2016-05-23 14:06:07 ----D---- C:\Windows\system32\catroot2
2016-05-22 20:21:30 ----D---- C:\Users\xxx\AppData\Roaming\Anvsoft
2016-05-20 17:10:23 ----D---- C:\Windows\Logs
2016-05-19 21:14:20 ----D---- C:\Users\xxx\AppData\Roaming\MPC-HC
2016-05-17 15:05:23 ----D---- C:\Program Files (x86)\Internet Explorer
2016-05-16 07:54:39 ----D---- C:\Windows\system32\LogFiles
2016-05-13 14:55:18 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2016-05-11 09:03:18 ----D---- C:\Windows\Tasks
2016-05-10 21:48:04 ----D---- C:\Windows\system32\DriverStore
2016-05-08 23:55:13 ----D---- C:\Windows\system32\Tasks
2016-05-08 23:49:12 ----D---- C:\Users\xxx\AppData\Roaming\uTorrent
2016-05-08 23:16:13 ----D---- C:\Windows\system32\drivers
2016-05-08 23:16:12 ----D---- C:\Windows\system32\catroot
2016-05-08 23:15:48 ----RSD---- C:\Windows\Fonts

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2009-07-14 214096]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2009-07-14 514048]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2013-04-30 11922944]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2013-04-30 359936]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2012-05-14 96896]
R3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 33856]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2012-06-19 4065296]
R3 RTL8167;Ovladač Realtek 8167 NT; C:\Windows\system32\DRIVERS\Rt64win7.sys [2009-06-10 187392]
R3 teamviewervpn;TeamViewer VPN Adapter; C:\Windows\system32\DRIVERS\teamviewervpn.sys [2015-11-16 35112]
S3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2013-04-30 11922944]
S3 dtlitescsibus;DAEMON Tools Lite Virtual SCSI Bus; C:\Windows\system32\DRIVERS\dtlitescsibus.sys [2016-02-17 30264]
S3 dtliteusbbus;DAEMON Tools Lite Virtual USB Bus; C:\Windows\system32\DRIVERS\dtliteusbbus.sys [2016-02-17 47672]
S3 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys [2009-07-14 12352]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2009-07-14 165376]
S3 RTHDMIAzAudService;Service for HDMI; C:\Windows\system32\drivers\RtHDMIVX.sys [2012-06-05 237968]
S3 s3cap;s3cap; C:\Windows\system32\DRIVERS\vms3cap.sys [2009-07-14 6656]
S3 storvsc;storvsc; C:\Windows\system32\DRIVERS\storvsc.sys [2009-07-14 34896]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 41984]
S3 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\DRIVERS\vmbus.sys [2009-07-14 200272]
S3 VMBusHID;VMBusHID; C:\Windows\system32\DRIVERS\VMBusHID.sys [2009-07-14 21760]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2009-07-14 40448]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2013-04-30 238080]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe [2016-05-06 2552840]
R2 LMIGuardianSvc;LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [2016-05-06 419248]
R2 MDM;Machine Debug Manager; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-20 322120]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2016-01-23 66872]
R2 PnkBstrB;PnkBstrB; C:\Windows\syswow64\PnkBstrB.exe [2016-01-23 103736]
R2 TeamViewer;TeamViewer 11; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [2016-05-02 7031056]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2009-08-18 2291568]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-12-30 144200]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2016-03-23 327808]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-05-13 269504]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2010-03-18 44376]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-12-30 144200]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2016-04-30 835664]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]

-----------------EOF-----------------

#2 Příspěvek od **Márty84** » 03 čer 2016 03:30

Zdravim

Nevidim tam antivir, pouzivate nejaky?

Mate tam havet

Udelejte kontrolu s MBAM. Test nastavte podle tohoto navodu (cili Vlastni sken vsech disku) http://forum.viry.cz/viewtopic.php?f=29&t=144868 a dejte sem vysledky. Predem nic nemazte, miva obcas falesne detekce

Ares444 · #3 Příspěvek od **Ares444** » 03 čer 2016 10:05

Antivir jsem měl, ale nebyl jsem s ním spokojený a momentálně žádný nemám... Budu rád když mi nějaký doporučíte

Log:

Malwarebytes Anti-Malware
www.malwarebytes.org

Datum skenování: 3.6.2016
Čas skenování: 9:26
Protokol: Log-Malware.txt
Správce: Ano

Verze: 2.2.1.1043
Databáze malwaru: v2016.06.02.06
Databáze rootkitů: v2016.05.27.01
Licence: Zkušební verze
Ochrana proti malwaru: Zapnuto
Ochrana proti škodlivým webovým stránkám: Zapnuto
Ochrana programu: Vypnuto

OS: Windows 7
CPU: x64
Souborový systém: NTFS
Uživatel: xxx

Typ skenu: Vlastní sken
Výsledek: Dokončeno
Prohledaných objektů: 430736
Uplynulý čas: 1 hod, 34 min, 49 sek

Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Zapnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto

Procesy: 1
Trojan.Agent, C:\Users\xxx\AppData\Local\Temp\Microsoft Security.exe, 2476, , [46e8f10789103bfbea68676ca161d12f]

Moduly: 0
(Nenalezeny žádné škodlivé položky)

Klíče registru: 31
PUP.Optional.TorrentSearch, HKU\S-1-5-21-187247514-2148316309-4089826778-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{03AE1B7B-A9E7-4D5A-9D34-89999C31B659}, , [50dede1a4a4fb383f95796ec26dcd22e],
PUP.Optional.TSearch, HKU\S-1-5-21-187247514-2148316309-4089826778-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{6E727987-C8EA-44DA-8749-310C0FBE3C3E}, , [15193bbd742576c04e649ce391718779],
Trojan.FakeMS.ED, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{AC0714F6-3D04-11D1-AE7D-00A0C90F26F4}, , [29051edaedac0630305ab247d42c9967],
Trojan.FakeMS.ED, HKLM\SOFTWARE\CLASSES\TYPELIB\{AC0714F2-3D04-11D1-AE7D-00A0C90F26F4}, , [29051edaedac0630305ab247d42c9967],
Trojan.FakeMS.ED, HKLM\SOFTWARE\CLASSES\INTERFACE\{AC0714F3-3D04-11D1-AE7D-00A0C90F26F4}, , [29051edaedac0630305ab247d42c9967],
Trojan.FakeMS.ED, HKLM\SOFTWARE\CLASSES\INTERFACE\{AC0714F4-3D04-11D1-AE7D-00A0C90F26F4}, , [29051edaedac0630305ab247d42c9967],
Trojan.FakeMS.ED, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{AC0714F3-3D04-11D1-AE7D-00A0C90F26F4}, , [29051edaedac0630305ab247d42c9967],
Trojan.FakeMS.ED, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{AC0714F4-3D04-11D1-AE7D-00A0C90F26F4}, , [29051edaedac0630305ab247d42c9967],
Trojan.FakeMS.ED, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{AC0714F3-3D04-11D1-AE7D-00A0C90F26F4}, , [29051edaedac0630305ab247d42c9967],
Trojan.FakeMS.ED, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{AC0714F4-3D04-11D1-AE7D-00A0C90F26F4}, , [29051edaedac0630305ab247d42c9967],
Trojan.FakeMS.ED, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{AC0714F2-3D04-11D1-AE7D-00A0C90F26F4}, , [29051edaedac0630305ab247d42c9967],
Trojan.FakeMS.ED, HKLM\SOFTWARE\CLASSES\WOW6432NODE\TYPELIB\{AC0714F2-3D04-11D1-AE7D-00A0C90F26F4}, , [29051edaedac0630305ab247d42c9967],
Trojan.FakeMS.ED, HKLM\SOFTWARE\CLASSES\MSAddnDr.AddInDesigner.1, , [29051edaedac0630305ab247d42c9967],
Trojan.FakeMS.ED, HKLM\SOFTWARE\CLASSES\MSAddnDr.AddInDesigner, , [29051edaedac0630305ab247d42c9967],
Trojan.FakeMS.ED, HKLM\SOFTWARE\WOW6432NODE\CLASSES\MSAddnDr.AddInDesigner, , [29051edaedac0630305ab247d42c9967],
Trojan.FakeMS.ED, HKLM\SOFTWARE\CLASSES\WOW6432NODE\MSAddnDr.AddInDesigner, , [29051edaedac0630305ab247d42c9967],
Trojan.FakeMS.ED, HKLM\SOFTWARE\WOW6432NODE\CLASSES\MSAddnDr.AddInDesigner.1, , [29051edaedac0630305ab247d42c9967],
Trojan.FakeMS.ED, HKLM\SOFTWARE\CLASSES\WOW6432NODE\MSAddnDr.AddInDesigner.1, , [29051edaedac0630305ab247d42c9967],
Trojan.FakeMS.ED, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{AC0714F6-3D04-11D1-AE7D-00A0C90F26F4}, , [29051edaedac0630305ab247d42c9967],
Trojan.FakeMS.ED, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{AC0714F7-3D04-11D1-AE7D-00A0C90F26F4}, , [29051edaedac0630305ab247d42c9967],
Trojan.FakeMS.ED, HKLM\SOFTWARE\CLASSES\MSAddnDr.AddInInstance.1, , [29051edaedac0630305ab247d42c9967],
Trojan.FakeMS.ED, HKLM\SOFTWARE\CLASSES\MSAddnDr.AddInInstance, , [29051edaedac0630305ab247d42c9967],
Trojan.FakeMS.ED, HKLM\SOFTWARE\WOW6432NODE\CLASSES\MSAddnDr.AddInInstance, , [29051edaedac0630305ab247d42c9967],
Trojan.FakeMS.ED, HKLM\SOFTWARE\CLASSES\WOW6432NODE\MSAddnDr.AddInInstance, , [29051edaedac0630305ab247d42c9967],
Trojan.FakeMS.ED, HKLM\SOFTWARE\WOW6432NODE\CLASSES\MSAddnDr.AddInInstance.1, , [29051edaedac0630305ab247d42c9967],
Trojan.FakeMS.ED, HKLM\SOFTWARE\CLASSES\WOW6432NODE\MSAddnDr.AddInInstance.1, , [29051edaedac0630305ab247d42c9967],
Trojan.FakeMS.ED, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{AC0714F7-3D04-11D1-AE7D-00A0C90F26F4}, , [29051edaedac0630305ab247d42c9967],
PUP.Optional.MyPCBackup, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{0C905992-B6D8-4F3B-8A46-C051D7D21F2B}, , [32fcdf194d4c122487d723b7699ac23e],
PUP.Optional.MyPCBackup, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\LaunchPreSignup, , [50dee117a5f4989e6d383b5c5ba81de3],
PUP.Optional.InstallCore, HKU\S-1-5-21-187247514-2148316309-4089826778-1001\SOFTWARE\ICSW1.18, , [3cf29464603983b311c65b36ae55c739],
PUP.Optional.ASK, HKU\S-1-5-21-187247514-2148316309-4089826778-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{171DEBEB-C3D4-40B7-AC73-056A5EBA4A7E}, , [08262dcb8316072f456c657515eeb54b],

Hodnoty registru: 6
Trojan.FakeMS.ED, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\SHAREDDLLS|C:\PROGRAM FILES (X86)\COMMON FILES\DESIGNER\MSADDNDR.DLL, 1, , [29051edaedac0630305ab247d42c9967]
PUP.Optional.MyPCBackup, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{0C905992-B6D8-4F3B-8A46-C051D7D21F2B}|Path, \LaunchPreSignup, , [32fcdf194d4c122487d723b7699ac23e]
Trojan.Agent, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|bb68a7ce504999b6a34fe41c548781a2, "C:\Users\xxx\AppData\Local\Temp\Microsoft Security.exe" .., , [46e8f10789103bfbea68676ca161d12f]
Trojan.Agent, HKU\S-1-5-21-187247514-2148316309-4089826778-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|bb68a7ce504999b6a34fe41c548781a2, "C:\Users\xxx\AppData\Local\Temp\Microsoft Security.exe" .., , [46e8f10789103bfbea68676ca161d12f]
PUP.Optional.ASK, HKU\S-1-5-21-187247514-2148316309-4089826778-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E}|URL, http://websearch.ask.com/redirect?clien ... cale=en_EU, , [08262dcb8316072f456c657515eeb54b]
PUM.Optional.LowRiskFileTypes, HKU\S-1-5-21-187247514-2148316309-4089826778-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\ASSOCIATIONS|LowRiskFileTypes, .avi;.bat;.com;.cmd;.exe;.htm;.html;.lnk;.mpg;.mpeg;.mov;.mp3;.msi;.m3u;.rar;.reg;.txt;.vbs;.wav;.zip;, , [ec42b93f0b8e3402f0ea8c34c63dfc04]

Data registru: 1
Hijack.UserInit, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON|Userinit, userinit.exe,c:\program files (x86)\microsoft\desktoplayer.exe,c:\program files (x86)\common files\microsoft shared\vs7debug\mdmsrv.exe, Dobré: (userinit.exe), Špatné: (userinit.exe,c:\program files (x86)\microsoft\desktoplayer.exe,c:\program files (x86)\common files\microsoft shared\vs7debug\mdmsrv.exe),,[47e7e810d0c963d301794119f31105fb]

Složky: 0
(Nenalezeny žádné škodlivé položky)

Soubory: 17
Trojan.Agent.GenX, C:\Users\xxx\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\bb68a7ce504999b6a34fe41c548781a2.exe, , [ab836890a9f00d29160ae06949b8c13f],
Backdoor.Bot, C:\Users\xxx\Desktop\GPC\NHL09GamePlayCenterSrv.exe, , [d658a94f881182b4f50f5b4a659cd729],
Trojan.Zbot, C:\NHL 09\nhl08hook.dll, , [35f958a0980187af695f0cc57e8341bf],
Backdoor.Bot, C:\Program Files\Steam\steamapps\common\dota 2 beta\game\bin\win32\dota2Srv.exe, , [9d9141b73564eb4b09fb891c4bb605fb],
Trojan.Fignotok.PWS, C:\Program Files\trend micro\hijackthis.exe, , [75b99365a4f5d85e8e512d160ef3758b],
Trojan.Fignotok.PWS, C:\Program Files\trend micro\xxx.exe, , [59d58474386146f0d10e99aa669b16ea],
Trojan.Zbot, C:\Program Files (x86)\Skype\Phone\SkypeSrv.exe, , [280649af2d6cfb3bb0a1422444bc926e],
Backdoor.Bot, C:\Program Files (x86)\Battle.net\Battle.net.7348\Battle.net HelperSrv.exe, , [a18d9365524713233cc8c4e1ea17c53b],
Backdoor.Bot, C:\Program Files (x86)\Battle.net\Battle.net.7348\Battle.netSrv.exe, , [66c8d0287a1f43f3679d594ce021b050],
Trojan.FakeMS.ED, C:\Program Files (x86)\Common Files\DESIGNER\MSADDNDR.DLL, , [29051edaedac0630305ab247d42c9967],
Trojan.Zbot, C:\Program Files (x86)\Common Files\microsoft shared\VS7DEBUG\MDMSrv.exe, , [bd71db1df3a63204a4ad580e847c7f81],
Backdoor.Bot, C:\Program Files (x86)\GOG.com\Tomb Raider 1 2 3\Tomb Raider 3\tomb3Srv.exe, , [230bcc2ca6f3fd3914f0e6bfe91831cf],
Trojan.Zbot, C:\Program Files (x86)\Microsoft\DesktopLayer.exe, , [59d5f008f7a2d36350012b3ba45c39c7],
Backdoor.Bot, C:\Program Files (x86)\Microsoft Office\OFFICE11\WINWORDSrv.exe, , [5bd30eea90092a0ce2225f4638c909f7],
Trojan.Agent.W, C:\Windows\Setup\SCRIPTS\Windows7Loader.exe, , [68c604f40495221484ee66a27193c63a],
PUP.Optional.MyPCBackup, C:\Windows\System32\Tasks\LaunchPreSignup, , [9d91d7215b3e3df9e0c30f88b94af40c],
Trojan.Agent, C:\Users\xxx\AppData\Local\Temp\Microsoft Security.exe, , [46e8f10789103bfbea68676ca161d12f],

Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)

(end)

#4 Příspěvek od **Márty84** » 03 čer 2016 18:46

Ten system moc legalni nebude, ze?

Ares444 · #5 Příspěvek od **Ares444** » 03 čer 2016 19:45

Moc ne...

#6 Příspěvek od **Márty84** » 03 čer 2016 21:45

Je mi lito, ale pravidla fora mi nedovoluji pokracovat

Hovori jasne http://forum.viry.cz/viewtopic.php?f=12&t=115512

Pomáhat NELZE:
2) Pokud stroj uživatele prokazatelně obsahuje nelegální hostitelský čí ochranný software
(operační systém, antivir, firewall, atd.), je nutné navést uživatele k nápravě, např. skrze neplacený software,
a začít řešit, až v době kdy je PC "v pořádku". V případě že uživatel nechce na pravidla přistoupit,
je nutné jej vyzvat ať fórum opustí, a vrátí se až je splní.

17.7. pro neaktivitu

http://forum.viry.cz/viewtopic.php?f=12&t=123975

VIRY.CZ

Počítač zamrze

Počítač zamrze

Re: Počítač zamrze

Re: Počítač zamrze

Re: Počítač zamrze

Re: Počítač zamrze

Re: Počítač zamrze