Kontrola logu - zasekaný počítač

Zpráva

schinkoj · #1 Příspěvek od **schinkoj** » 05 lis 2016 23:04

Dobry den,

nasel sem podobný problém zde http://forum.viry.cz/viewtopic.php?f=13&t=135844 a prosil bych o kontrolu logu.

Problem:
Mam zasekany pocitac, spravce uloh mi hlasi 100% vytizeni procesoru, presto by to ukazovat nemelo. Nejvic mi to hlasy proces Hostitel sluzby Mistni system.

Zde je muj log

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 04-11-2016
Ran by Jakub (administrator) on JAKUBPC (05-11-2016 22:54:02)
Running from C:\Users\Jakub\Desktop
Loaded Profiles: Jakub (Available Profiles: asus & Jakub & Administrator)
Platform: Windows 8.1 (Update) (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Check Device\ASUS_Check.exe
(ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(ASUS Cloud Corporation) C:\Program Files (x86)\ASUS\WebStorage\2.1.11.399\AsusWSWinService.exe
(Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(Intel Corporation) C:\Windows\SysWOW64\esif_uf.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe
(Intel(R) Corporation) C:\Program Files\Intel\BCA\pabeSvc64.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Conexant Systems, Inc.) C:\Windows\SysWOW64\SASrv.exe
(McAfee, Inc.) C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Windows\System32\igfxTray.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
(Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
() C:\Users\Jakub\AppData\Local\Facebook\Games\FacebookGames.exe
(The CefSharp Authors) C:\Users\Jakub\AppData\Local\Facebook\Games\CefSharp.BrowserSubprocess.exe
(WildTangent) C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(McAfee, Inc.) C:\Program Files\TrueKey\McTkSchedulerService.exe
() C:\xampp\xampp-control.exe
(Apache Software Foundation) C:\xampp\apache\bin\httpd.exe
() C:\xampp\mysql\bin\mysqld.exe
(Apache Software Foundation) C:\xampp\apache\bin\httpd.exe
(FileZilla Project) C:\xampp\FileZillaFTP\FileZillaServer.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.11.427\SSScheduler.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(The Document Foundation) C:\Program Files (x86)\LibreOffice 5\program\scalc.exe
(The Document Foundation) C:\Program Files (x86)\LibreOffice 5\program\soffice.exe
(The Document Foundation) C:\Program Files (x86)\LibreOffice 5\program\soffice.bin
(Microsoft Corporation) C:\Windows\splwow64.exe
(FileZilla Project) C:\Program Files\FileZilla FTP Client\filezilla.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Reader_6.3.9654.17044_x64__8wekyb3d8bbwe\glcnd.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft VS Code\Code.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft VS Code\Code.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft VS Code\Code.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft VS Code\Code.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft VS Code\Code.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft VS Code\Code.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft VS Code\resources\app\out\vs\workbench\services\files\node\watcher\win32\CodeHelper.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft VS Code\Code.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(forum.viry.cz) C:\Users\Jakub\Desktop\FRSTLauncher.exe

==================== Registry (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [919768 2014-10-13] (Conexant Systems, Inc.)
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1830616 2014-04-10] (Conexant Systems, Inc.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500936 2015-05-25] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [WebStorage] => C:\Program Files (x86)\ASUS\WebStorage\2.1.11.399\ASUSWSLoader.exe [63296 2014-08-20] ()
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [9099440 2016-10-28] (AVAST Software)
Lsa: [Notification Packages] scecli C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter
ShellIconOverlayIdentifiers: [!AsusWSShellExt_B] -> {6D4133E5-0742-4ADC-8A8C-9303440F7191} => C:\Program Files (x86)\Common Files\AWS\2.1.11.399\ASUSWSShellExt64.dll [2013-06-26] (ASUS Cloud Corporation.)
ShellIconOverlayIdentifiers: [!AsusWSShellExt_O] -> {64174815-8D98-4CE6-8646-4C039977D809} => C:\Program Files (x86)\Common Files\AWS\2.1.11.399\ASUSWSShellExt64.dll [2013-06-26] (ASUS Cloud Corporation.)
ShellIconOverlayIdentifiers: [!AsusWSShellExt_U] -> {1C5AB7B1-0B38-4EC4-9093-7FD277E2AF4E} => C:\Program Files (x86)\Common Files\AWS\2.1.11.399\ASUSWSShellExt64.dll [2013-06-26] (ASUS Cloud Corporation.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2016-10-16] (AVAST Software)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2016-10-30]
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.11.427\SSScheduler.exe (McAfee, Inc.)
Startup: C:\Users\Jakub\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Facebook Games Arcade (BETA).lnk [2016-10-22]
ShortcutTarget: Facebook Games Arcade (BETA).lnk -> C:\Users\Jakub\AppData\Local\Facebook\Games\FacebookGames.exe ()

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: 0.0.0.1 mssplus.mcafee.com
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{85D8E552-0D57-4A47-A930-BB2865E32EF7}: [DhcpNameServer] 10.0.0.138

Internet Explorer:
==================
HKU\S-1-5-21-3264075325-3016531668-2554651287-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://asus13.msn.com/?pc=ASJB
HKU\S-1-5-21-3264075325-3016531668-2554651287-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus13.msn.com/?pc=ASJB
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2016-10-26] (AVAST Software)
BHO-x32: True Key Helper -> {0F4B8786-5502-4803-8EBC-F652A1153BB6} -> C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2016-07-15] (Intel Security)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-10-26] (AVAST Software)
Toolbar: HKLM-x32 - True Key - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2016-07-15] (Intel Security)

FireFox:
========
FF DefaultProfile: qdiwwgxh.default
FF ProfilePath: C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\qdiwwgxh.default [2016-11-05]
FF HKLM\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: (Avast SafePrice) - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2016-10-16]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: (Avast Online Security) - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-10-16]
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_23_0_0_185.dll [2016-10-16] ()
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2015-03-09] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_23_0_0_185.dll [2016-10-16] ()
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [No File]
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-02-25] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-02-25] (Intel Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-28] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-28] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2013-08-06] ()
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2015-03-09] (Adobe Systems)

Chrome:
=======
CHR Profile: C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default [2016-11-05]
CHR Extension: (Prezentace Google) - C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-06-13]
CHR Extension: (Dokumenty Google) - C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-06-13]
CHR Extension: (Disk Google) - C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-06-13]
CHR Extension: (YouTube) - C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-06-13]
CHR Extension: (Avast Online Security) - C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\daanglpcpkjjlkhcbladppjphglbigam [2016-08-09]
CHR Extension: (Avast SafePrice) - C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2016-09-11]
CHR Extension: (Avast SafePrice) - C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\fcoadmpfijfcmokecmkgolhbaeclfage [2016-09-11]
CHR Extension: (Tabulky Google) - C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-06-13]
CHR Extension: (Dokumenty Google offline) - C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-06-13]
CHR Extension: (Avast Online Security) - C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2016-11-03]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-06-13]
CHR Extension: (Gmail) - C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-06-14]
CHR Extension: (Chrome Media Router) - C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-10-29]
CHR HKLM-x32\...\Chrome\Extension: [daanglpcpkjjlkhcbladppjphglbigam] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [fcoadmpfijfcmokecmkgolhbaeclfage] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 Asus WebStorage Windows Service; C:\Program Files (x86)\ASUS\WebStorage\2.1.11.399\AsusWSWinService.exe [71168 2014-08-20] (ASUS Cloud Corporation) [File not signed]
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [197128 2016-10-16] (AVAST Software)
R2 esifsvc; C:\WINDOWS\SysWOW64\esif_uf.exe [1392792 2015-10-02] (Intel Corporation)
R2 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [227904 2014-04-24] (WildTangent)
S2 ibtsiva; C:\Program Files (x86)\Intel\Bluetooth\utilities\ibtsiva.exe [125168 2014-12-12] (Intel Corporation)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [353384 2015-10-30] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2014-10-03] (Intel(R) Corporation)
R2 IntelBCAsvc; C:\Program Files\Intel\BCA\pabeSvc64.exe [3026584 2016-05-06] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [156960 2015-02-25] (Intel Corporation)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.11.427\McCHSvc.exe [329480 2016-10-13] (McAfee, Inc.)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [268192 2015-08-13] ()
R2 TrueKey; C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe [908256 2016-07-22] (McAfee, Inc.)
R2 TrueKeyScheduler; C:\Program Files\TrueKey\McTkSchedulerService.exe [15736 2016-07-22] (McAfee, Inc.)
S3 TrueKeyServiceHelper; C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe [86864 2016-07-22] (McAfee, Inc.)
S3 vmicguestinterface; C:\WINDOWS\System32\ICSvc.dll [517120 2013-08-22] (Microsoft Corporation)
S3 vmicheartbeat; C:\WINDOWS\System32\ICSvc.dll [517120 2013-08-22] (Microsoft Corporation)
S3 vmickvpexchange; C:\WINDOWS\System32\ICSvc.dll [517120 2013-08-22] (Microsoft Corporation)
S3 vmicshutdown; C:\WINDOWS\System32\ICSvc.dll [517120 2013-08-22] (Microsoft Corporation)
S3 vmictimesync; C:\WINDOWS\System32\ICSvc.dll [517120 2013-08-22] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347880 2014-10-21] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2014-10-21] (Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3831712 2015-08-13] (Intel® Corporation)
S2 InstallerService; "C:\Program Files\TrueKey\Mcafee.TrueKey.InstallerService.exe" [X]
S2 McAfee SiteAdvisor Service; "c:\PROGRA~2\mcafee\SITEAD~1\mcsacore.exe" [X]

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 aswHdsKe; C:\WINDOWS\system32\drivers\aswHdsKe.sys [83312 2016-09-07] (AVAST Software)
S3 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [37656 2016-10-16] (AVAST Software)
R1 aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [37144 2016-10-16] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [108816 2016-10-16] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [103064 2016-10-16] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [74544 2016-10-16] (AVAST Software)
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [969184 2016-10-16] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [513632 2016-10-16] (AVAST Software)
S2 aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [163416 2016-10-16] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [293352 2016-10-16] (AVAST Software)
R3 ATP; C:\WINDOWS\System32\drivers\AsusTP.sys [73512 2015-03-18] (ASUS Corporation)
R3 dptf_acpi; C:\WINDOWS\System32\drivers\dptf_acpi.sys [57304 2015-10-02] (Intel Corporation)
R3 dptf_cpu; C:\WINDOWS\System32\drivers\dptf_cpu.sys [52200 2015-10-02] (Intel Corporation)
S0 ebdrv; C:\WINDOWS\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation)
R3 esif_lf; C:\WINDOWS\system32\DRIVERS\esif_lf.sys [260072 2015-10-02] (Intel Corporation)
R3 ibtusb; C:\WINDOWS\system32\DRIVERS\ibtusb.sys [231152 2014-12-12] (Intel Corporation)
R0 IntelHSWPcc; C:\WINDOWS\System32\drivers\IntelPcc.sys [79528 2014-10-16] (Intel Corporation)
R3 MEIx64; C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys [129312 2015-02-25] (Intel Corporation)
R3 NETwNb64; C:\WINDOWS\system32\DRIVERS\Netwbw02.sys [4107504 2015-09-24] (Intel Corporation)
S3 RTLU3E8023-W8-64; C:\WINDOWS\system32\DRIVERS\rtu30x64w8.sys [70656 2013-06-18] (Realtek )
R3 SensorsAlsDriver; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [227840 2014-10-21] (Microsoft Corporation)
R3 SensorsSimulatorDriver; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [227840 2014-10-21] (Microsoft Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [35856 2014-10-21] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [257880 2014-10-21] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [123224 2014-10-21] (Microsoft Corporation)
S3 mfesapsn; \??\C:\Program Files (x86)\McAfee\SiteAdvisor\x64\mfesapsn.sys [X]
U0 msahci; system32\drivers\msahci.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-11-05 22:54 - 2016-11-05 22:54 - 00020607 _____ C:\Users\Jakub\Desktop\FRST.txt
2016-11-05 22:53 - 2016-11-05 22:54 - 00000000 ____D C:\FRST
2016-11-05 22:52 - 2016-11-05 22:52 - 02409984 _____ (Farbar) C:\Users\Jakub\Desktop\FRST64.exe
2016-11-05 22:50 - 2016-11-05 22:49 - 00112640 _____ (forum.viry.cz) C:\Users\Jakub\Desktop\FRSTLauncher.exe
2016-11-05 22:46 - 2016-11-05 22:46 - 00112640 _____ (forum.viry.cz) C:\Users\Jakub\Downloads\Nepotvrzeno 980006.crdownload
2016-10-31 16:36 - 2016-10-31 16:36 - 00100568 _____ C:\Users\Jakub\Documents\Otto_cz.ttf
2016-10-31 16:34 - 2016-10-31 16:34 - 00895368 _____ C:\Users\Jakub\Documents\Otto.sfd
2016-10-30 21:23 - 2016-10-30 21:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus
2016-10-26 22:54 - 2016-10-26 22:54 - 00000000 ____D C:\Users\Jakub\AppData\Roaming\fp
2016-10-26 22:47 - 2016-10-26 22:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Free Pascal
2016-10-26 22:21 - 2016-10-26 22:25 - 00000000 ____D C:\Users\Jakub\AppData\Local\lazarus
2016-10-26 22:16 - 2016-10-26 22:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lazarus
2016-10-26 22:14 - 2016-10-26 22:16 - 00000000 ____D C:\lazarus
2016-10-24 23:09 - 2016-10-26 22:36 - 00000000 ____D C:\FPC
2016-10-24 23:09 - 2016-10-24 23:09 - 00000000 ____D C:\Users\Jakub\AppData\Local\FreePascal
2016-10-23 23:13 - 2016-10-23 23:13 - 00000805 _____ C:\Users\Jakub\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Start Tor Browser.lnk
2016-10-23 01:27 - 2016-10-23 02:43 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-10-16 13:39 - 2016-11-05 21:56 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-10-16 13:39 - 2016-10-16 13:39 - 00003802 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2016-10-16 13:29 - 2016-10-16 13:29 - 00391496 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2016-10-16 13:29 - 2016-10-16 13:29 - 00053208 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2016-10-16 01:04 - 2016-10-16 01:04 - 00394928 _____ C:\WINDOWS\Minidump\101616-19984-01.dmp
2016-10-16 01:04 - 2016-10-16 01:04 - 00001870 _____ C:\Users\Jakub\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\avast! antivirus.lnk
2016-10-16 01:04 - 2016-10-16 01:04 - 00000000 ____D C:\WINDOWS\Minidump
2016-10-14 22:03 - 2016-10-14 22:03 - 06647224 _____ (Tim Kosse) C:\Users\Jakub\Downloads\FileZilla_3.22.1_win64-setup.exe
2016-10-12 21:00 - 2016-10-12 21:00 - 00008479 _____ C:\Users\Jakub\Downloads\M1_mal.C

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-11-05 22:52 - 2016-06-03 23:03 - 00000000 ____D C:\Users\Jakub\Documents\Instalacni_programy
2016-11-05 22:51 - 2016-06-13 22:09 - 00000000 ____D C:\Users\Jakub\AppData\Roaming\Skype
2016-11-05 22:46 - 2016-06-13 22:12 - 00000000 ____D C:\Users\Jakub\AppData\Roaming\uTorrent
2016-11-05 22:43 - 2016-09-01 13:50 - 00000000 ____D C:\Users\Jakub\AppData\Roaming\FontForge
2016-11-05 22:33 - 2014-10-21 12:24 - 00775174 _____ C:\WINDOWS\system32\perfh005.dat
2016-11-05 22:33 - 2014-10-21 12:24 - 00169240 _____ C:\WINDOWS\system32\perfc005.dat
2016-11-05 22:33 - 2014-03-18 16:26 - 01847990 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-11-05 22:33 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\Inf
2016-11-05 22:29 - 2016-06-13 22:03 - 00000976 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-11-05 21:34 - 2016-06-13 21:52 - 00000125 _____ C:\Users\Jakub\AppData\Roaming\sp_data.sys
2016-11-05 20:18 - 2016-06-15 19:44 - 00000000 ____D C:\Users\Jakub\AppData\Roaming\vlc
2016-11-05 19:03 - 2016-05-17 11:45 - 00003480 _____ C:\WINDOWS\System32\Tasks\ASUS Live Update1
2016-11-05 19:03 - 2016-05-17 11:45 - 00003470 _____ C:\WINDOWS\System32\Tasks\ASUS Live Update2
2016-11-05 19:02 - 2016-06-13 22:12 - 00000000 ____D C:\Users\Jakub\AppData\Local\Adobe
2016-11-04 00:55 - 2016-09-17 13:44 - 00000034 _____ C:\Users\Jakub\AppData\Roaming\AdobeWLCMCache.dat
2016-11-03 23:35 - 2016-06-13 22:24 - 00000972 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1d1c5b9e798cc94.job
2016-11-03 23:29 - 2016-06-13 22:03 - 00000972 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-11-03 01:41 - 2016-06-14 08:53 - 00000000 ____D C:\Users\Jakub\AppData\Roaming\FileZilla
2016-11-02 22:33 - 2016-06-13 22:03 - 00000000 ____D C:\Users\Jakub\AppData\Local\Google
2016-11-02 00:36 - 2016-06-13 21:51 - 00000000 ____D C:\Users\Jakub\AppData\Roaming\Adobe
2016-11-01 23:17 - 2016-06-15 11:13 - 00000000 ____D C:\Users\Jakub\AppData\Local\CrashDumps
2016-11-01 13:12 - 2016-06-13 21:58 - 00003600 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3264075325-3016531668-2554651287-1002
2016-10-30 21:23 - 2016-08-27 06:52 - 00000000 ____D C:\Program Files\McAfee Security Scan
2016-10-30 01:06 - 2016-06-09 18:30 - 00000000 ____D C:\Users\Jakub\Documents\Prace
2016-10-29 22:40 - 2016-06-13 21:51 - 00000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2016-10-29 22:40 - 2016-06-13 21:51 - 00000000 ____D C:\ProgramData\ASUS Smart Gesture
2016-10-29 22:40 - 2016-06-13 21:48 - 00000000 ____D C:\Users\Jakub
2016-10-29 22:40 - 2016-06-02 10:33 - 00000000 __SHD C:\Users\Jakub\IntelGraphicsProfiles
2016-10-29 22:40 - 2013-08-22 15:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-10-29 22:40 - 2013-08-22 15:44 - 00535136 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-10-28 18:29 - 2016-06-03 23:17 - 00000000 ____D C:\Users\Jakub\Documents\Db
2016-10-24 21:49 - 2016-06-13 22:04 - 00002217 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-10-23 15:21 - 2013-08-22 14:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2016-10-23 03:09 - 2016-08-04 03:37 - 00003888 _____ C:\WINDOWS\System32\Tasks\SafeZone scheduled Autoupdate 1470278267
2016-10-23 03:09 - 2016-08-04 03:37 - 00001061 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk
2016-10-23 02:52 - 2016-08-04 03:07 - 00004180 _____ C:\WINDOWS\System32\Tasks\avast! Emergency Update
2016-10-23 02:43 - 2016-06-21 21:50 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-10-22 21:51 - 2016-09-01 18:54 - 00000000 ____D C:\Users\Jakub\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Facebook
2016-10-22 13:17 - 2016-06-03 23:04 - 00000000 ____D C:\Users\Jakub\Documents\Knihovny
2016-10-21 22:37 - 2014-10-21 05:29 - 00000000 ____D C:\ProgramData\Skype
2016-10-17 18:46 - 2016-06-14 08:16 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-10-16 13:39 - 2016-07-15 22:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2016-10-16 13:39 - 2016-07-15 22:01 - 00000000 ____D C:\Program Files\7-Zip
2016-10-16 13:39 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed
2016-10-16 13:39 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\Macromed
2016-10-16 13:29 - 2016-08-04 03:37 - 00037144 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2016-10-16 13:29 - 2016-08-04 03:07 - 00969560 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsnx.sys.147662096431207
2016-10-16 13:29 - 2016-08-04 03:07 - 00969184 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsnx.sys
2016-10-16 13:29 - 2016-08-04 03:07 - 00513632 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsp.sys
2016-10-16 13:29 - 2016-08-04 03:07 - 00513496 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsp.sys.147662096598410
2016-10-16 13:29 - 2016-08-04 03:07 - 00293352 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswvmm.sys
2016-10-16 13:29 - 2016-08-04 03:07 - 00292704 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswvmm.sys.147662096535912
2016-10-16 13:29 - 2016-08-04 03:07 - 00163416 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2016-10-16 13:29 - 2016-08-04 03:07 - 00108816 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2016-10-16 13:29 - 2016-08-04 03:07 - 00103064 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2016-10-16 13:29 - 2016-08-04 03:07 - 00074544 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2016-10-16 13:29 - 2016-08-04 03:07 - 00037656 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2016-10-16 01:16 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\rescache
2016-10-16 01:04 - 2016-09-12 10:07 - 00000000 ___HD C:\Users\Jakub\AppData\Roaming\WindowsServices
2016-10-12 12:45 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-10-11 11:13 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\NDF

==================== Files in the root of some directories =======

2016-09-17 13:44 - 2016-11-04 00:55 - 0000034 _____ () C:\Users\Jakub\AppData\Roaming\AdobeWLCMCache.dat
2016-06-13 21:52 - 2016-11-05 21:34 - 0000125 _____ () C:\Users\Jakub\AppData\Roaming\sp_data.sys
2014-10-21 05:28 - 2012-09-07 12:40 - 0000256 _____ () C:\ProgramData\SetStretch.cmd
2014-10-21 05:28 - 2009-07-22 11:04 - 0024576 _____ () C:\ProgramData\SetStretch.exe
2014-10-21 05:28 - 2012-09-07 12:37 - 0000103 _____ () C:\ProgramData\SetStretch.VBS

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================

==================== MBR and Partition Table ==================

==================== Scheduled Tasks (whitelisted) ==================

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1d1c5b9e798cc94.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1d1c5b9e7c58a0f.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Alternate Data Streams (whitelisted) ==================

==================== Security Center ==================

AV: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Disabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Disabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)

***** Velikost "Plochy" *****

Velikost slozky "C:\Users\Jakub\Desktop" je 2 MB.

***** Startup Programs *****

***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR"=dword:00000000
"Generalize_DisableSR"=dword:00000000

==================== End Of Log ==============================

Dekuji za odpoved

#2 Příspěvek od **Rudy** » 06 lis 2016 11:06

Zdravím!
Spusťte tuto utilitu:

Stáhněte AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.

schinkoj · #3 Příspěvek od **schinkoj** » 06 lis 2016 12:21

Zde je log z adwcleaneru

# AdwCleaner v6.030 - Log soubor vytvořen 06/11/2016 na 12:19:32
# Aktualizováno dne 19/10/2016 z Malwarebytes
# Databáze : 2016-11-05.1 [Server]
# Operační systém : Windows 8.1 (X64)
# Uživatelské jméno : Jakub - JAKUBPC
# Beží od : C:\Users\Jakub\Desktop\adwcleaner.exe
# Mod: Skenování
# Podpora : https://www.malwarebytes.com/support

***** [ Služby ] *****

Nebyly nalezeny žádné škodlivé služby.

***** [ Adresáře ] *****

Nebyly nalezeny žádné škodlivé složky.

***** [ Soubory ] *****

Nebyly nalezeny žádné škodlivé soubory.

***** [ DLL ] *****

Nebyly nalezeny žádné škodlivé DLL soubory.

***** [ WMI ] *****

Nebyly nalezeny žádné škodlivé klíče.

***** [ Zástupce ] *****

Žádné infikovaný zástupce nenalezen.

***** [ Plánovač úloh ] *****

Žádný nebezpečná úloha nenalezena.

***** [ Registry ] *****

Klíč nalezen: HKLM\SOFTWARE\Classes\OCComSDK.ComSDK
Klíč nalezen: HKLM\SOFTWARE\Classes\OCComSDK.ComSDK.1
Klíč nalezen: [x64] HKLM\SOFTWARE\Classes\OCComSDK.ComSDK
Klíč nalezen: [x64] HKLM\SOFTWARE\Classes\OCComSDK.ComSDK.1
Klíč nalezen: HKLM\SOFTWARE\Classes\CLSID\{B9D64D3B-BE75-4FA2-B94A-C4AE772A0146}
Klíč nalezen: HKLM\SOFTWARE\Classes\CLSID\{47A1DF02-BCE4-40C3-AE47-E3EA09A65E4A}
Klíč nalezen: HKLM\SOFTWARE\Classes\Interface\{FA7B2795-C0C8-4A58-8672-3F8D80CC0270}
Klíč nalezen: HKLM\SOFTWARE\Classes\Interface\{47A1DF02-BCE4-40C3-AE47-E3EA09A65E4A}
Klíč nalezen: HKLM\SOFTWARE\Classes\TypeLib\{1112F282-7099-4624-A439-DB29D6551552}

***** [ Internetové prohlížeče ] *****

Nebyly nalezeny žádné škodlivé položky prohlížeče Firefox báze.
Nebyly nalezeny žádné škodlivé položky prohlížeče Chromium báze.

*************************

C:\AdwCleaner\AdwCleaner[S0].txt - [1827 Bajtů] - [06/11/2016 12:19:32]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [1901 Bajtů] ##########

#4 Příspěvek od **Rudy** » 06 lis 2016 12:26

Neklikl jste na čištění, ADW nemazal. Zkuste to ještě jednou.

schinkoj · #5 Příspěvek od **schinkoj** » 06 lis 2016 13:26

Omlouvam se, presto ze to dava naprosty smysl spustit cisteni, myslel sem si ze schvalne chcete jenom log ze scanu a nechtel sem delat neco co nebylo vylozene napsane v postupu.

Jinak zde je log:

# AdwCleaner v6.030 - Log soubor vytvořen 06/11/2016 na 13:23:12
# Aktualizováno dne 19/10/2016 z Malwarebytes
# Databáze : 2016-11-05.1 [Server]
# Operační systém : Windows 8.1 (X64)
# Uživatelské jméno : Jakub - JAKUBPC
# Beží od : C:\Users\Jakub\Desktop\adwcleaner.exe
# Mod: Čištění
# Podpora : hxxps://www.malwarebytes.com/support

***** [ Služby ] *****

***** [ Adresáře ] *****

***** [ Soubory ] *****

***** [ DLL ] *****

***** [ WMI ] *****

***** [ Zástupce ] *****

***** [ Plánovač úloh ] *****

***** [ Registry ] *****

[-] Klíč smazán:HKLM\SOFTWARE\Classes\OCComSDK.ComSDK
[-] Klíč smazán:HKLM\SOFTWARE\Classes\OCComSDK.ComSDK.1
[#] Klíč smazán po restartování:[x64] HKLM\SOFTWARE\Classes\OCComSDK.ComSDK
[#] Klíč smazán po restartování:[x64] HKLM\SOFTWARE\Classes\OCComSDK.ComSDK.1
[-] Klíč smazán:HKLM\SOFTWARE\Classes\CLSID\{B9D64D3B-BE75-4FA2-B94A-C4AE772A0146}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\CLSID\{47A1DF02-BCE4-40C3-AE47-E3EA09A65E4A}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\Interface\{FA7B2795-C0C8-4A58-8672-3F8D80CC0270}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\Interface\{47A1DF02-BCE4-40C3-AE47-E3EA09A65E4A}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\TypeLib\{1112F282-7099-4624-A439-DB29D6551552}

***** [ Prohlížeče ] *****

*************************

:: "Tracing" klíč smazán
:: Winsock nastavení vyčištěno

*************************

C:\AdwCleaner\AdwCleaner[C0].txt - [1504 Bajtů] - [06/11/2016 13:23:12]
C:\AdwCleaner\AdwCleaner[S0].txt - [1989 Bajtů] - [06/11/2016 12:19:32]

########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [1652 Bajtů] ##########

#6 Příspěvek od **Rudy** » 06 lis 2016 17:45

Teď je to OK. Dejte nový log FRST.

schinkoj · #7 Příspěvek od **schinkoj** » 06 lis 2016 19:20

Zde je nový log z frst

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 04-11-2016
Ran by Jakub (administrator) on JAKUBPC (06-11-2016 19:17:13)
Running from C:\Users\Jakub\Desktop
Loaded Profiles: Jakub (Available Profiles: asus & Jakub & Administrator)
Platform: Windows 8.1 (Update) (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Check Device\ASUS_Check.exe
(ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(ASUS Cloud Corporation) C:\Program Files (x86)\ASUS\WebStorage\2.1.11.399\AsusWSWinService.exe
(Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(Intel Corporation) C:\Windows\SysWOW64\esif_uf.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe
(Intel(R) Corporation) C:\Program Files\Intel\BCA\pabeSvc64.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Conexant Systems, Inc.) C:\Windows\SysWOW64\SASrv.exe
(McAfee, Inc.) C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Windows\System32\igfxTray.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
(McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.11.427\SSScheduler.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
(Conexant Systems, Inc) C:\Program Files\CONEXANT\SAII\SmartAudio.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Reader_6.3.9654.17044_x64__8wekyb3d8bbwe\glcnd.exe
(WildTangent) C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(McAfee, Inc.) C:\Program Files\TrueKey\McTkSchedulerService.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\System32\WWAHost.exe
(Microsoft Corporation) C:\ESD\Windows\setup.exe
(Microsoft Corporation) C:\ESD\Windows\sources\setupprep.exe
(Microsoft Corporation) C:\$WINDOWS.~BT\Sources\SetupHost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe

==================== Registry (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [919768 2014-10-13] (Conexant Systems, Inc.)
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1830616 2014-04-10] (Conexant Systems, Inc.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500936 2015-05-25] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [WebStorage] => C:\Program Files (x86)\ASUS\WebStorage\2.1.11.399\ASUSWSLoader.exe [63296 2014-08-20] ()
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [9099440 2016-10-28] (AVAST Software)
Lsa: [Notification Packages] scecli C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter
ShellIconOverlayIdentifiers: [!AsusWSShellExt_B] -> {6D4133E5-0742-4ADC-8A8C-9303440F7191} => C:\Program Files (x86)\Common Files\AWS\2.1.11.399\ASUSWSShellExt64.dll [2013-06-26] (ASUS Cloud Corporation.)
ShellIconOverlayIdentifiers: [!AsusWSShellExt_O] -> {64174815-8D98-4CE6-8646-4C039977D809} => C:\Program Files (x86)\Common Files\AWS\2.1.11.399\ASUSWSShellExt64.dll [2013-06-26] (ASUS Cloud Corporation.)
ShellIconOverlayIdentifiers: [!AsusWSShellExt_U] -> {1C5AB7B1-0B38-4EC4-9093-7FD277E2AF4E} => C:\Program Files (x86)\Common Files\AWS\2.1.11.399\ASUSWSShellExt64.dll [2013-06-26] (ASUS Cloud Corporation.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2016-10-16] (AVAST Software)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2016-10-30]
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.11.427\SSScheduler.exe (McAfee, Inc.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: 0.0.0.1 mssplus.mcafee.com
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{85D8E552-0D57-4A47-A930-BB2865E32EF7}: [DhcpNameServer] 10.0.0.138

Internet Explorer:
==================
HKU\S-1-5-21-3264075325-3016531668-2554651287-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://asus13.msn.com/?pc=ASJB
HKU\S-1-5-21-3264075325-3016531668-2554651287-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus13.msn.com/?pc=ASJB
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2016-10-26] (AVAST Software)
BHO-x32: True Key Helper -> {0F4B8786-5502-4803-8EBC-F652A1153BB6} -> C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2016-07-15] (Intel Security)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-10-26] (AVAST Software)
Toolbar: HKLM-x32 - True Key - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2016-07-15] (Intel Security)

FireFox:
========
FF DefaultProfile: qdiwwgxh.default
FF ProfilePath: C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\qdiwwgxh.default [2016-11-06]
FF HKLM\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: (Avast SafePrice) - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2016-10-16]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: (Avast Online Security) - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-10-16]
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_23_0_0_185.dll [2016-10-16] ()
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2015-03-09] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_23_0_0_185.dll [2016-10-16] ()
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [No File]
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-02-25] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-02-25] (Intel Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-28] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-28] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2013-08-06] ()
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2015-03-09] (Adobe Systems)

Chrome:
=======
CHR Profile: C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default [2016-11-06]
CHR Extension: (Prezentace Google) - C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-06-13]
CHR Extension: (Dokumenty Google) - C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-06-13]
CHR Extension: (Disk Google) - C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-06-13]
CHR Extension: (YouTube) - C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-06-13]
CHR Extension: (Avast Online Security) - C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\daanglpcpkjjlkhcbladppjphglbigam [2016-08-09]
CHR Extension: (Avast SafePrice) - C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2016-09-11]
CHR Extension: (Avast SafePrice) - C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\fcoadmpfijfcmokecmkgolhbaeclfage [2016-09-11]
CHR Extension: (Tabulky Google) - C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-06-13]
CHR Extension: (Dokumenty Google offline) - C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-06-13]
CHR Extension: (Avast Online Security) - C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2016-11-03]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-06-13]
CHR Extension: (Gmail) - C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-06-14]
CHR Extension: (Chrome Media Router) - C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-10-29]
CHR HKLM-x32\...\Chrome\Extension: [daanglpcpkjjlkhcbladppjphglbigam] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [fcoadmpfijfcmokecmkgolhbaeclfage] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 Asus WebStorage Windows Service; C:\Program Files (x86)\ASUS\WebStorage\2.1.11.399\AsusWSWinService.exe [71168 2014-08-20] (ASUS Cloud Corporation) [File not signed]
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [197128 2016-10-16] (AVAST Software)
R2 esifsvc; C:\WINDOWS\SysWOW64\esif_uf.exe [1392792 2015-10-02] (Intel Corporation)
R2 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [227904 2014-04-24] (WildTangent)
S2 ibtsiva; C:\Program Files (x86)\Intel\Bluetooth\utilities\ibtsiva.exe [125168 2014-12-12] (Intel Corporation)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [353384 2015-10-30] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2014-10-03] (Intel(R) Corporation)
R2 IntelBCAsvc; C:\Program Files\Intel\BCA\pabeSvc64.exe [3026584 2016-05-06] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [156960 2015-02-25] (Intel Corporation)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1514464 2016-03-10] (Malwarebytes)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1136608 2016-03-10] (Malwarebytes)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.11.427\McCHSvc.exe [329480 2016-10-13] (McAfee, Inc.)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [268192 2015-08-13] ()
R2 TrueKey; C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe [908256 2016-07-22] (McAfee, Inc.)
R2 TrueKeyScheduler; C:\Program Files\TrueKey\McTkSchedulerService.exe [15736 2016-07-22] (McAfee, Inc.)
S3 TrueKeyServiceHelper; C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe [86864 2016-07-22] (McAfee, Inc.)
S3 vmicguestinterface; C:\WINDOWS\System32\ICSvc.dll [517120 2013-08-22] (Microsoft Corporation)
S3 vmicheartbeat; C:\WINDOWS\System32\ICSvc.dll [517120 2013-08-22] (Microsoft Corporation)
S3 vmickvpexchange; C:\WINDOWS\System32\ICSvc.dll [517120 2013-08-22] (Microsoft Corporation)
S3 vmicshutdown; C:\WINDOWS\System32\ICSvc.dll [517120 2013-08-22] (Microsoft Corporation)
S3 vmictimesync; C:\WINDOWS\System32\ICSvc.dll [517120 2013-08-22] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347880 2014-10-21] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2014-10-21] (Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3831712 2015-08-13] (Intel® Corporation)
S2 InstallerService; "C:\Program Files\TrueKey\Mcafee.TrueKey.InstallerService.exe" [X]
S2 McAfee SiteAdvisor Service; "c:\PROGRA~2\mcafee\SITEAD~1\mcsacore.exe" [X]

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 aswHdsKe; C:\WINDOWS\system32\drivers\aswHdsKe.sys [83312 2016-09-07] (AVAST Software)
S3 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [37656 2016-10-16] (AVAST Software)
R1 aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [37144 2016-10-16] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [108816 2016-10-16] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [103064 2016-10-16] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [74544 2016-10-16] (AVAST Software)
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [969184 2016-10-16] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [513632 2016-10-16] (AVAST Software)
R2 aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [163416 2016-10-16] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [293352 2016-10-16] (AVAST Software)
R3 ATP; C:\WINDOWS\System32\drivers\AsusTP.sys [73512 2015-03-18] (ASUS Corporation)
R3 dptf_acpi; C:\WINDOWS\System32\drivers\dptf_acpi.sys [57304 2015-10-02] (Intel Corporation)
R3 dptf_cpu; C:\WINDOWS\System32\drivers\dptf_cpu.sys [52200 2015-10-02] (Intel Corporation)
S0 ebdrv; C:\WINDOWS\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation)
R3 esif_lf; C:\WINDOWS\system32\DRIVERS\esif_lf.sys [260072 2015-10-02] (Intel Corporation)
R3 ibtusb; C:\WINDOWS\system32\DRIVERS\ibtusb.sys [231152 2014-12-12] (Intel Corporation)
R0 IntelHSWPcc; C:\WINDOWS\System32\drivers\IntelPcc.sys [79528 2014-10-16] (Intel Corporation)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [27008 2016-03-10] (Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [192216 2016-11-06] (Malwarebytes)
R3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [65408 2016-03-10] (Malwarebytes Corporation)
R3 MEIx64; C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys [129312 2015-02-25] (Intel Corporation)
R3 NETwNb64; C:\WINDOWS\system32\DRIVERS\Netwbw02.sys [4107504 2015-09-24] (Intel Corporation)
S3 RTLU3E8023-W8-64; C:\WINDOWS\system32\DRIVERS\rtu30x64w8.sys [70656 2013-06-18] (Realtek )
R3 SensorsAlsDriver; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [227840 2014-10-21] (Microsoft Corporation)
R3 SensorsSimulatorDriver; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [227840 2014-10-21] (Microsoft Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [35856 2014-10-21] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [257880 2014-10-21] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [123224 2014-10-21] (Microsoft Corporation)
S3 mfesapsn; \??\C:\Program Files (x86)\McAfee\SiteAdvisor\x64\mfesapsn.sys [X]
U0 msahci; system32\drivers\msahci.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-11-06 19:17 - 2016-11-06 19:17 - 00000000 ____D C:\Users\Jakub\Desktop\FRST-OlderVersion
2016-11-06 17:48 - 2016-11-06 17:48 - 00000000 ___HD C:\$WINDOWS.~BT
2016-11-06 17:32 - 2016-11-06 17:48 - 00000000 ____D C:\ESD
2016-11-06 17:32 - 2016-11-06 17:32 - 00000000 ___HD C:\$Windows.~WS
2016-11-06 16:23 - 2016-11-06 17:44 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-11-06 16:23 - 2016-11-06 16:23 - 00001120 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2016-11-06 16:23 - 2016-11-06 16:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2016-11-06 16:23 - 2016-11-06 16:23 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-11-06 16:23 - 2016-11-06 16:23 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2016-11-06 16:23 - 2016-03-10 14:09 - 00065408 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2016-11-06 16:23 - 2016-03-10 14:08 - 00140672 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2016-11-06 16:23 - 2016-03-10 14:08 - 00027008 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2016-11-06 12:16 - 2016-11-06 13:23 - 00000000 ____D C:\AdwCleaner
2016-11-06 12:16 - 2016-11-06 12:16 - 03910208 _____ C:\Users\Jakub\Desktop\adwcleaner.exe
2016-11-05 22:54 - 2016-11-06 19:17 - 00018879 _____ C:\Users\Jakub\Desktop\FRST.txt
2016-11-05 22:54 - 2016-11-05 22:55 - 00018174 _____ C:\Users\Jakub\Desktop\Addition.txt
2016-11-05 22:53 - 2016-11-05 22:54 - 00000000 ____D C:\FRST
2016-11-05 22:52 - 2016-11-06 19:17 - 02410496 _____ (Farbar) C:\Users\Jakub\Desktop\FRST64.exe
2016-11-05 22:46 - 2016-11-05 22:46 - 00112640 _____ (forum.viry.cz) C:\Users\Jakub\Downloads\Nepotvrzeno 980006.crdownload
2016-10-31 16:36 - 2016-10-31 16:36 - 00100568 _____ C:\Users\Jakub\Documents\Otto_cz.ttf
2016-10-31 16:34 - 2016-10-31 16:34 - 00895368 _____ C:\Users\Jakub\Documents\Otto.sfd
2016-10-30 21:23 - 2016-10-30 21:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus
2016-10-26 22:54 - 2016-10-26 22:54 - 00000000 ____D C:\Users\Jakub\AppData\Roaming\fp
2016-10-26 22:47 - 2016-10-26 22:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Free Pascal
2016-10-26 22:21 - 2016-10-26 22:25 - 00000000 ____D C:\Users\Jakub\AppData\Local\lazarus
2016-10-26 22:16 - 2016-10-26 22:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lazarus
2016-10-26 22:14 - 2016-10-26 22:16 - 00000000 ____D C:\lazarus
2016-10-24 23:09 - 2016-10-26 22:36 - 00000000 ____D C:\FPC
2016-10-24 23:09 - 2016-10-24 23:09 - 00000000 ____D C:\Users\Jakub\AppData\Local\FreePascal
2016-10-23 23:13 - 2016-10-23 23:13 - 00000805 _____ C:\Users\Jakub\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Start Tor Browser.lnk
2016-10-23 01:27 - 2016-10-23 02:43 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-10-16 13:39 - 2016-11-06 18:56 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-10-16 13:39 - 2016-10-16 13:39 - 00003802 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2016-10-16 13:29 - 2016-10-16 13:29 - 00391496 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2016-10-16 13:29 - 2016-10-16 13:29 - 00053208 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2016-10-16 01:04 - 2016-10-16 01:04 - 00394928 _____ C:\WINDOWS\Minidump\101616-19984-01.dmp
2016-10-16 01:04 - 2016-10-16 01:04 - 00001870 _____ C:\Users\Jakub\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\avast! antivirus.lnk
2016-10-16 01:04 - 2016-10-16 01:04 - 00000000 ____D C:\WINDOWS\Minidump
2016-10-14 22:03 - 2016-10-14 22:03 - 06647224 _____ (Tim Kosse) C:\Users\Jakub\Downloads\FileZilla_3.22.1_win64-setup.exe
2016-10-12 21:00 - 2016-10-12 21:00 - 00008479 _____ C:\Users\Jakub\Downloads\M1_mal.C

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-11-06 18:29 - 2016-06-13 22:03 - 00000976 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-11-06 17:48 - 2016-06-13 21:47 - 00001890 _____ C:\WINDOWS\diagwrn.xml
2016-11-06 17:48 - 2016-06-13 21:47 - 00001890 _____ C:\WINDOWS\diagerr.xml
2016-11-06 17:48 - 2014-10-21 13:09 - 00000000 ___DC C:\WINDOWS\Panther
2016-11-06 17:32 - 2016-06-13 21:58 - 00003598 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3264075325-3016531668-2554651287-1002
2016-11-06 17:30 - 2014-10-21 11:43 - 00000000 ____D C:\Program Files (x86)\MSBuild
2016-11-06 17:30 - 2014-10-21 05:29 - 00000000 ____D C:\ProgramData\Package Cache
2016-11-06 17:30 - 2013-08-22 16:36 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-11-06 17:29 - 2016-09-17 13:44 - 00000034 _____ C:\Users\Jakub\AppData\Roaming\AdobeWLCMCache.dat
2016-11-06 17:28 - 2016-09-14 01:39 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 14.0
2016-11-06 17:28 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-11-06 17:25 - 2016-09-14 01:38 - 00000000 ____D C:\Program Files (x86)\Windows Kits
2016-11-06 17:25 - 2016-09-14 01:38 - 00000000 ____D C:\Program Files (x86)\Microsoft SDKs
2016-11-06 17:14 - 2016-06-03 23:03 - 00000000 ____D C:\Users\Jakub\Documents\Instalacni_programy
2016-11-06 16:43 - 2014-10-21 12:24 - 00775174 _____ C:\WINDOWS\system32\perfh005.dat
2016-11-06 16:43 - 2014-10-21 12:24 - 00169240 _____ C:\WINDOWS\system32\perfc005.dat
2016-11-06 16:43 - 2014-03-18 16:26 - 01847990 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-11-06 16:43 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\Inf
2016-11-06 16:38 - 2016-06-13 22:24 - 00000972 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1d1c5b9e798cc94.job
2016-11-06 16:38 - 2016-06-13 22:03 - 00000972 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-11-06 16:38 - 2016-06-13 21:52 - 00000125 _____ C:\Users\Jakub\AppData\Roaming\sp_data.sys
2016-11-06 16:38 - 2016-06-13 21:51 - 00000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2016-11-06 16:38 - 2016-06-13 21:51 - 00000000 ____D C:\ProgramData\ASUS Smart Gesture
2016-11-06 16:38 - 2016-06-02 10:33 - 00000000 __SHD C:\Users\Jakub\IntelGraphicsProfiles
2016-11-06 16:37 - 2014-10-21 11:37 - 00000000 ____D C:\WINDOWS\Log
2016-11-06 16:37 - 2013-08-22 15:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-11-06 16:37 - 2013-08-22 15:44 - 00539016 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-11-06 16:37 - 2013-08-22 14:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2016-11-06 16:31 - 2016-09-12 10:07 - 00000000 ___HD C:\Users\Jakub\AppData\Roaming\WindowsServices
2016-11-06 13:23 - 2016-06-13 22:09 - 00000000 ____D C:\Users\Jakub\AppData\Roaming\Skype
2016-11-06 13:17 - 2016-06-13 22:12 - 00000000 ____D C:\Users\Jakub\AppData\Local\Adobe
2016-11-06 12:00 - 2016-05-17 11:45 - 00003480 _____ C:\WINDOWS\System32\Tasks\ASUS Live Update1
2016-11-06 12:00 - 2016-05-17 11:45 - 00003470 _____ C:\WINDOWS\System32\Tasks\ASUS Live Update2
2016-11-05 22:46 - 2016-06-13 22:12 - 00000000 ____D C:\Users\Jakub\AppData\Roaming\uTorrent
2016-11-05 22:43 - 2016-09-01 13:50 - 00000000 ____D C:\Users\Jakub\AppData\Roaming\FontForge
2016-11-05 20:18 - 2016-06-15 19:44 - 00000000 ____D C:\Users\Jakub\AppData\Roaming\vlc
2016-11-03 01:41 - 2016-06-14 08:53 - 00000000 ____D C:\Users\Jakub\AppData\Roaming\FileZilla
2016-11-02 22:33 - 2016-06-13 22:03 - 00000000 ____D C:\Users\Jakub\AppData\Local\Google
2016-11-02 00:36 - 2016-06-13 21:51 - 00000000 ____D C:\Users\Jakub\AppData\Roaming\Adobe
2016-11-01 23:17 - 2016-06-15 11:13 - 00000000 ____D C:\Users\Jakub\AppData\Local\CrashDumps
2016-10-30 21:23 - 2016-08-27 06:52 - 00000000 ____D C:\Program Files\McAfee Security Scan
2016-10-30 01:06 - 2016-06-09 18:30 - 00000000 ____D C:\Users\Jakub\Documents\Prace
2016-10-29 22:40 - 2016-06-13 21:48 - 00000000 ____D C:\Users\Jakub
2016-10-28 18:29 - 2016-06-03 23:17 - 00000000 ____D C:\Users\Jakub\Documents\Db
2016-10-24 21:49 - 2016-06-13 22:04 - 00002217 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-10-23 03:09 - 2016-08-04 03:37 - 00003888 _____ C:\WINDOWS\System32\Tasks\SafeZone scheduled Autoupdate 1470278267
2016-10-23 03:09 - 2016-08-04 03:37 - 00001061 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk
2016-10-23 02:52 - 2016-08-04 03:07 - 00004180 _____ C:\WINDOWS\System32\Tasks\avast! Emergency Update
2016-10-23 02:43 - 2016-06-21 21:50 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-10-22 13:17 - 2016-06-03 23:04 - 00000000 ____D C:\Users\Jakub\Documents\Knihovny
2016-10-21 22:37 - 2014-10-21 05:29 - 00000000 ____D C:\ProgramData\Skype
2016-10-17 18:46 - 2016-06-14 08:16 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-10-16 13:39 - 2016-07-15 22:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2016-10-16 13:39 - 2016-07-15 22:01 - 00000000 ____D C:\Program Files\7-Zip
2016-10-16 13:39 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed
2016-10-16 13:39 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\Macromed
2016-10-16 13:29 - 2016-08-04 03:37 - 00037144 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2016-10-16 13:29 - 2016-08-04 03:07 - 00969560 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsnx.sys.147662096431207
2016-10-16 13:29 - 2016-08-04 03:07 - 00969184 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsnx.sys
2016-10-16 13:29 - 2016-08-04 03:07 - 00513632 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsp.sys
2016-10-16 13:29 - 2016-08-04 03:07 - 00513496 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsp.sys.147662096598410
2016-10-16 13:29 - 2016-08-04 03:07 - 00293352 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswvmm.sys
2016-10-16 13:29 - 2016-08-04 03:07 - 00292704 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswvmm.sys.147662096535912
2016-10-16 13:29 - 2016-08-04 03:07 - 00163416 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2016-10-16 13:29 - 2016-08-04 03:07 - 00108816 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2016-10-16 13:29 - 2016-08-04 03:07 - 00103064 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2016-10-16 13:29 - 2016-08-04 03:07 - 00074544 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2016-10-16 13:29 - 2016-08-04 03:07 - 00037656 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2016-10-16 01:16 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\rescache
2016-10-12 12:45 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-10-11 11:13 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\NDF

==================== Files in the root of some directories =======

2016-09-17 13:44 - 2016-11-06 17:29 - 0000034 _____ () C:\Users\Jakub\AppData\Roaming\AdobeWLCMCache.dat
2016-06-13 21:52 - 2016-11-06 16:38 - 0000125 _____ () C:\Users\Jakub\AppData\Roaming\sp_data.sys
2014-10-21 05:28 - 2012-09-07 12:40 - 0000256 _____ () C:\ProgramData\SetStretch.cmd
2014-10-21 05:28 - 2009-07-22 11:04 - 0024576 _____ () C:\ProgramData\SetStretch.exe
2014-10-21 05:28 - 2012-09-07 12:37 - 0000103 _____ () C:\ProgramData\SetStretch.VBS

Some files in TEMP:
====================
C:\Users\Jakub\AppData\Local\Temp\libeay32.dll
C:\Users\Jakub\AppData\Local\Temp\msvcr120.dll
C:\Users\Jakub\AppData\Local\Temp\sqlite3.dll

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2016-11-03 23:53

==================== End of FRST.txt ============================

#8 Příspěvek od **Rudy** » 06 lis 2016 19:51

Otevřte poznámkový blok a zkopírujte do něj:

Start
C:\Program Files\McAfee Security Scan
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2016-10-30]
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.11.427\SSScheduler.exe (McAfee, Inc.)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.11.427\McCHSvc.exe [329480 2016-10-13] (McAfee, Inc.)
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1d1c5b9e798cc94.job
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
C:\ProgramData\SetStretch.VBS
C:\Users\Jakub\AppData\Local\Temp
End

Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

schinkoj · #9 Příspěvek od **schinkoj** » 06 lis 2016 21:39

Zde je log

Fix result of Farbar Recovery Scan Tool (x64) Version: 04-11-2016
Ran by Jakub (06-11-2016 21:37:33) Run:1
Running from C:\Users\Jakub\Desktop
Loaded Profiles: Jakub (Available Profiles: asus & Jakub & Administrator)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
C:\Program Files\McAfee Security Scan
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2016-10-30]
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.11.427\SSScheduler.exe (McAfee, Inc.)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.11.427\McCHSvc.exe [329480 2016-10-13] (McAfee, Inc.)
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1d1c5b9e798cc94.job
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
C:\ProgramData\SetStretch.VBS
C:\Users\Jakub\AppData\Local\Temp
End
*****************

"C:\Program Files\McAfee Security Scan" folder move:

Could not move "C:\Program Files\McAfee Security Scan" => Scheduled to move on reboot.

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk => moved successfully
C:\Program Files\McAfee Security Scan\3.11.427\SSScheduler.exe => moved successfully
McComponentHostService => service removed successfully
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => moved successfully
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1d1c5b9e798cc94.job => moved successfully
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => moved successfully
C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat => moved successfully
C:\ProgramData\SetStretch.VBS => moved successfully

"C:\Users\Jakub\AppData\Local\Temp" folder move:

Could not move "C:\Users\Jakub\AppData\Local\Temp" => Scheduled to move on reboot.

Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 06-11-2016 21:38:10)

C:\Program Files\McAfee Security Scan => moved successfully
C:\Users\Jakub\AppData\Local\Temp => moved successfully

==== End of Fixlog 21:38:11 ====

#10 Příspěvek od **Rudy** » 06 lis 2016 22:22

Smazáno. Nastala nějaká změna?

schinkoj · #11 Příspěvek od **schinkoj** » 06 lis 2016 23:00

No připadá mi, že se tím počítač zrychlil, ale v procesech mi proces: hostitel služby místní systém pořád ukazuje tech 33%, které mi pripadaji podezrele. V kazdem pripade Vam mockrát dekuji za Vas cas.

#12 Příspěvek od **Rudy** » 07 lis 2016 18:02

Na zkoušku vypněte aut. aktualizace, příp. přeinstalujte antivir.

VIRY.CZ

Kontrola logu - zasekaný počítač

Kontrola logu - zasekaný počítač

Re: Kontrola logu - zasekaný počítač

Re: Kontrola logu - zasekaný počítač

Re: Kontrola logu - zasekaný počítač

Re: Kontrola logu - zasekaný počítač

Re: Kontrola logu - zasekaný počítač

Re: Kontrola logu - zasekaný počítač

Re: Kontrola logu - zasekaný počítač

Re: Kontrola logu - zasekaný počítač

Re: Kontrola logu - zasekaný počítač

Re: Kontrola logu - zasekaný počítač

Re: Kontrola logu - zasekaný počítač