Prosim o kontrolu logu, hodně zpomaleny VŠECHNO

Zpráva

marek999 · #16 Příspěvek od **marek999** » 27 zář 2016 11:23

Takže log z Mbam čistý, paráda diky. Ale zlepšilo se to "jen" zhruba tak o 30 - 40 % ještě to neni ono jako vždy..

#17 Příspěvek od **Márty84** » 27 zář 2016 19:11

Vsak nikdo nerekl, ze uz jsme skoncili

Nejde to udelat najednou, musime postupne

Dejte logy podle tohoto navodu http://forum.viry.cz/viewtopic.php?f=13&t=133100 - vypnete na chvili antivir, je mozne, ze to bude blokovat jako skodnou, ale pouzivame to porad, jedna se o falesny poplach

(Kdyby nesel Launcher stahnout, dejte logy jen ze samotneho FRST, tedy bez pouziti Launcheru)

marek999 · #18 Příspěvek od **marek999** » 28 zář 2016 14:05

Márty84 píše:Vsak nikdo nerekl, ze uz jsme skoncili Nejde to udelat najednou, musime postupne

Dejte logy podle tohoto navodu http://forum.viry.cz/viewtopic.php?f=13&t=133100 - vypnete na chvili antivir, je mozne, ze to bude blokovat jako skodnou, ale pouzivame to porad, jedna se o falesny poplach
(Kdyby nesel Launcher stahnout, dejte logy jen ze samotneho FRST, tedy bez pouziti Launcheru)

Prvni log a dodatek v příloze.

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 28-09-2016
Ran by Zuzka (administrator) on ZUZKA-PC (28-09-2016 14:58:36)
Running from C:\Users\Zuzka\Downloads
Loaded Profiles: Zuzka (Available Profiles: Zuzka)
Platform: Microsoft Windows 7 Starter Service Pack 1 (X86) Language: Čeština (Česká republika)
Internet Explorer Version 9 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() C:\Windows\System32\AsusService.exe
() C:\ExpressGateUtil\VAWinService.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
() C:\ExpressGateUtil\VAWinAgent.exe
(ASUSTeK Computer Inc.) C:\Program Files\Asus\HotkeyService\HotKeyMon.exe
(ASUSTeK Computer Inc.) C:\Program Files\Asus\HotkeyService\HotkeyService.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(ASUSTeK Computer Inc.) C:\Program Files\Asus\SHE\SuperHybridEngine.exe
(ASUS) C:\Program Files\Asus\CapsHook\CapsHook.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(AsusTek Computer Inc.) C:\Program Files\Asus\LiveUpdate\LiveUpdate.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [HotkeyMon] => C:\Program Files\ASUS\HotkeyService\HotKeyMon.exe [101288 2011-03-04] (ASUSTeK Computer Inc.)
HKLM\...\Run: [HotkeyService] => C:\Program Files\ASUS\HotkeyService\HotkeyService.exe [1252272 2011-03-04] (ASUSTeK Computer Inc.)
HKLM\...\Run: [SuperHybridEngine] => C:\Program Files\ASUS\SHE\SuperHybridEngine.exe [412600 2010-11-15] (ASUSTeK Computer Inc.)
HKLM\...\Run: [LiveUpdate] => C:\Program Files\Asus\LiveUpdate\LiveUpdate.exe [1095080 2011-03-11] (AsusTek Computer Inc.)
HKLM\...\Run: [CapsHook] => C:\Program Files\ASUS\CapsHook\CapsHook.exe [445344 2010-11-15] (ASUS)
HKLM\...\Run: [VAWinAgent] => C:\ExpressGateUtil\VAWinAgent.exe [45448 2011-03-24] ()
HKLM\...\Run: [ASUSPRP] => C:\Program Files\ASUS\APRP\APRP.EXE [2018032 2011-04-30] (ASUSTek Computer Inc.)
HKU\S-1-5-21-2978567687-4275224139-954450255-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\windows\system32\Bubbles.scr [878592 2010-11-20] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [AsusWSShellExt_B] -> {CC5FC992-B0AA-47CD-9DC2-83445083CBB8} => C:\Program Files\Asus\ASUS WebStorage\3.0.108.222\AsusWSShellExt.dll [2010-09-02] ()
ShellIconOverlayIdentifiers: [AsusWSShellExt_O] -> {618A47A2-528B-4D9A-AFC8-97D3233511E2} => C:\Program Files\Asus\ASUS WebStorage\3.0.108.222\AsusWSShellExt.dll [2010-09-02] ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AsusVibeLauncher.lnk [2014-05-18]
ShortcutTarget: AsusVibeLauncher.lnk -> C:\Program Files\Asus\AsusVibe\AsusVibeLauncher.exe (ASUSTeK Computer Inc.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{62BAAC46-1B79-4899-B04F-E09E7C8D9B57}: [DhcpNameServer] 192.168.0.1

Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-2978567687-4275224139-954450255-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-2978567687-4275224139-954450255-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-2978567687-4275224139-954450255-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://asus.msn.com
HKU\S-1-5-21-2978567687-4275224139-954450255-1000\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://eeepc.asus.com
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKU\S-1-5-21-2978567687-4275224139-954450255-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKU\S-1-5-21-2978567687-4275224139-954450255-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-2978567687-4275224139-954450255-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
BHO: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27] (Adobe Systems Incorporated)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21] (Microsoft Corp.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\Zuzka\AppData\Roaming\Mozilla\Firefox\Profiles\a74kucnk.default
FF NewTab: about:newtab
FF Homepage: about:home
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\4.0.50401.0\npctrl.dll [2010-04-01] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MIF5BA~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MIF5BA~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.30.3\npGoogleUpdate3.dll [No File]
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.30.3\npGoogleUpdate3.dll [No File]
FF Extension: (No Name) - C:\Program Files\AVAST Software\Avast\WebRep\FF [not found]

Chrome:
=======
CHR Profile: C:\Users\Zuzka\AppData\Local\Google\Chrome\User Data\Default [2016-09-28]
CHR Extension: (Prezentace Google) - C:\Users\Zuzka\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-09-27]
CHR Extension: (Dokumenty Google) - C:\Users\Zuzka\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-09-27]
CHR Extension: (Disk Google) - C:\Users\Zuzka\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-09-27]
CHR Extension: (YouTube) - C:\Users\Zuzka\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-09-27]
CHR Extension: (Tabulky Google) - C:\Users\Zuzka\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-09-27]
CHR Extension: (Dokumenty Google offline) - C:\Users\Zuzka\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-09-27]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Zuzka\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-09-27]
CHR Extension: (Gmail) - C:\Users\Zuzka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-09-27]
CHR Extension: (Chrome Media Router) - C:\Users\Zuzka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-09-27]

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AsusService; C:\windows\system32\AsusService.exe [224680 2011-03-04] ()
R2 VideAceWindowsService; C:\ExpressGateUtil\VAWinService.exe [91464 2011-01-13] ()
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 AsIO; C:\windows\System32\drivers\AsIO.sys [11456 2010-06-28] ()
R1 AsUpIO; C:\windows\System32\drivers\AsUpIO.sys [11832 2010-08-03] ()
R3 ETD; C:\windows\System32\DRIVERS\ETD.sys [109960 2010-04-13] (ELAN Microelectronic Corp.)
R2 giveio; C:\windows\system32\giveio.sys [5248 1996-04-03] () [File not signed]
R3 kbfiltr; C:\windows\System32\DRIVERS\kbfiltr.sys [13880 2009-07-20] ( )
R2 speedfan; C:\windows\system32\speedfan.sys [24184 2012-12-29] (Almico Software)
S3 wsvd; C:\windows\System32\DRIVERS\wsvd.sys [81704 2009-07-22] (CyberLink)
U5 AppMgmt; C:\windows\system32\svchost.exe [20992 2009-07-14] (Microsoft Corporation)
S3 btwavdt; \SystemRoot\system32\drivers\btwavdt.sys [X]
S3 btwrchid; \SystemRoot\system32\drivers\btwrchid.sys [X]
S3 catchme; \??\C:\Users\Zuzka\AppData\Local\Temp\catchme.sys [X]
S3 IntcAzAudAddService; system32\drivers\RTKVHDA.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-09-28 14:58 - 2016-09-28 14:59 - 00010995 _____ C:\Users\Zuzka\Downloads\FRST.txt
2016-09-28 14:57 - 2016-09-28 14:57 - 00112640 _____ (forum.viry.cz) C:\Users\Zuzka\Desktop\FRSTLauncher.exe
2016-09-28 14:53 - 2016-09-28 14:58 - 00000000 ____D C:\FRST
2016-09-28 14:53 - 2016-09-28 14:53 - 01754624 _____ (Farbar) C:\Users\Zuzka\Downloads\FRST.exe
2016-09-28 14:51 - 2016-09-28 14:52 - 02404352 _____ (Farbar) C:\Users\Zuzka\Downloads\FRST64 (1).exe
2016-09-28 14:51 - 2016-09-28 14:51 - 02404352 _____ (Farbar) C:\Users\Zuzka\Downloads\FRST64.exe
2016-09-28 14:16 - 2016-09-28 14:17 - 00420976 _____ C:\windows\system32\FNTCACHE.DAT
2016-09-27 11:44 - 2016-09-27 11:05 - 00024064 _____ C:\windows\zoek-delete.exe
2016-09-27 11:05 - 2016-09-27 11:39 - 00000000 ____D C:\zoek_backup
2016-09-27 08:33 - 2016-09-27 08:33 - 00000682 _____ C:\Users\Zuzka\Desktop\SpeedFan.lnk
2016-09-27 08:31 - 2016-09-27 08:33 - 00000045 _____ C:\windows\system32\initdebug.nfo
2016-09-26 23:57 - 2016-09-26 23:58 - 00000000 ____D C:\Users\Zuzka\Desktop\Nová složka
2016-09-26 21:41 - 2016-09-26 21:41 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-09-26 18:26 - 2016-09-26 18:26 - 00000000 ____D C:\Users\Zuzka\AppData\Roaming\Netscape
2016-09-26 18:26 - 2016-09-26 18:26 - 00000000 ____D C:\Users\Zuzka\AppData\Local\Netscape
2016-09-22 22:59 - 2016-09-22 22:59 - 00000000 ____D C:\rsit
2016-09-22 22:59 - 2016-09-22 22:59 - 00000000 ____D C:\Program Files\trend micro
2016-09-21 21:28 - 2016-09-21 21:28 - 00005616 _____ C:\ComboFix.txt
2016-09-21 21:04 - 2011-06-26 08:45 - 00256000 _____ C:\windows\PEV.exe
2016-09-21 21:04 - 2010-11-07 19:20 - 00208896 _____ C:\windows\MBR.exe
2016-09-21 21:04 - 2009-04-20 06:56 - 00060416 _____ (NirSoft) C:\windows\NIRCMD.exe
2016-09-21 21:04 - 2000-08-31 02:00 - 00518144 _____ (SteelWerX) C:\windows\SWREG.exe
2016-09-21 21:04 - 2000-08-31 02:00 - 00406528 _____ (SteelWerX) C:\windows\SWSC.exe
2016-09-21 21:04 - 2000-08-31 02:00 - 00098816 _____ C:\windows\sed.exe
2016-09-21 21:04 - 2000-08-31 02:00 - 00080412 _____ C:\windows\grep.exe
2016-09-21 21:04 - 2000-08-31 02:00 - 00068096 _____ C:\windows\zip.exe
2016-09-21 20:56 - 2016-09-26 18:44 - 00000000 ____D C:\Qoobox
2016-09-21 20:53 - 2016-09-21 21:25 - 00000000 ____D C:\windows\erdnt
2016-09-21 19:33 - 2016-09-21 19:33 - 00000965 _____ C:\Users\Public\Desktop\CCleaner.lnk
2016-09-21 19:07 - 2016-09-21 19:07 - 00000000 ____D C:\found.000

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-09-28 14:24 - 2009-07-14 06:34 - 00009696 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-09-28 14:24 - 2009-07-14 06:34 - 00009696 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-09-28 14:17 - 2015-07-20 18:54 - 00000936 _____ C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-09-28 14:17 - 2009-07-14 06:53 - 00000006 ____H C:\windows\Tasks\SA.DAT
2016-09-28 14:17 - 2009-07-14 04:37 - 00000000 ____D C:\windows\inf
2016-09-26 22:56 - 2014-05-18 15:42 - 00000000 ____D C:\Users\Zuzka\AppData\Local\Windows Live
2016-09-26 18:26 - 2014-05-18 15:42 - 00000000 ____D C:\Users\Zuzka\AppData\Local\VirtualStore
2016-09-26 18:25 - 2014-05-18 15:42 - 00000000 ____D C:\Users\Zuzka
2016-09-22 22:37 - 2015-07-20 18:53 - 00000000 ____D C:\Users\Zuzka\AppData\Local\Google
2016-09-22 06:47 - 2015-07-20 18:54 - 00002141 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-09-22 06:47 - 2015-07-20 18:54 - 00002129 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-09-21 21:23 - 2009-07-14 04:04 - 00000215 _____ C:\windows\system.ini
2016-09-21 19:33 - 2015-07-20 22:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2016-09-21 19:33 - 2015-07-20 22:27 - 00000000 ____D C:\Program Files\CCleaner
2016-09-21 19:00 - 2015-07-20 18:54 - 00000940 _____ C:\windows\Tasks\GoogleUpdateTaskMachineUA.job

==================== Files in the root of some directories =======

2011-04-30 03:17 - 2010-03-03 00:59 - 0131984 _____ () C:\ProgramData\FullRemove.exe

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\windows\explorer.exe => File is digitally signed
C:\windows\system32\winlogon.exe => File is digitally signed
C:\windows\system32\wininit.exe => File is digitally signed
C:\windows\system32\svchost.exe => File is digitally signed
C:\windows\system32\services.exe => File is digitally signed
C:\windows\system32\User32.dll => File is digitally signed
C:\windows\system32\userinit.exe => File is digitally signed
C:\windows\system32\rpcss.dll => File is digitally signed
C:\windows\system32\dnsapi.dll => File is digitally signed
C:\windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2015-06-23 16:49

==================== End of FRST.txt ============================

marek999 · #19 Příspěvek od **marek999** » 28 zář 2016 14:10

dal bych log i z toho druhyho z toho launcheru, stahl jsem to, to mi šlo. Ale při spuštěni mi to vyhodilo chybu že nesedí verze a chcou po mě verzi na 32-bit. Takže jsem to nerozjel.

#20 Příspěvek od **Márty84** » 28 zář 2016 14:54

Priloha nejde otevrit, pise, ze je soubor poskozen.

Napiste mi velikost adresare plochy (C:\Users\Zuzka\Plocha)

Presunte FRST na plochu, jak je v navodu, jinak to nebude fungovat!

Otevrete si poznamkovy blok a zkopirujte do nej tento skript

Kód: Vybrat vše

Start
CloseProcesses:
CreateRestorePoint:

HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-2978567687-4275224139-954450255-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=ASUTDF&pc=NP07&src=IE-SearchBox
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=ASUTDF&pc=NP07&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-2978567687-4275224139-954450255-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=ASUTDF&pc=NP07&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-2978567687-4275224139-954450255-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=ASUTDF&pc=NP07&src=IE-SearchBox

2016-09-28 14:17 - 2015-07-20 18:54 - 00000936 _____ C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-09-21 19:00 - 2015-07-20 18:54 - 00000940 _____ C:\windows\Tasks\GoogleUpdateTaskMachineUA.job

Hosts:
EmptyTemp:
Reboot:
End

Vlevo nahore kliknete na napis Soubor
Kliknete na napis Ulozit jako...
Napiste spravne ten cerveny nazev fixlist a ulozte na plochu.
Vypnete antivir i dalsi pripadne zabezpeceni.
Spustte FRST jako spravce, kliknete na napis Fix a program vykona prikazy.
Po restartu pc by se mel objevit novy log - s nazvem fixlog, ten mi sem zase zkopirujte.

marek999 · #21 Příspěvek od **marek999** » 28 zář 2016 15:23

Márty84 píše:Priloha nejde otevrit, pise, ze je soubor poskozen.

Napiste mi velikost adresare plochy (C:\Users\Zuzka\Plocha)

Presunte FRST na plochu, jak je v navodu, jinak to nebude fungovat!
Otevrete si poznamkovy blok a zkopirujte do nej tento skript
Kód: Vybrat vše
Start
CloseProcesses:
CreateRestorePoint:

HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-2978567687-4275224139-954450255-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=ASUTDF&pc=NP07&src=IE-SearchBox
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=ASUTDF&pc=NP07&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-2978567687-4275224139-954450255-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=ASUTDF&pc=NP07&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-2978567687-4275224139-954450255-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=ASUTDF&pc=NP07&src=IE-SearchBox

2016-09-28 14:17 - 2015-07-20 18:54 - 00000936 _____ C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-09-21 19:00 - 2015-07-20 18:54 - 00000940 _____ C:\windows\Tasks\GoogleUpdateTaskMachineUA.job

Hosts:
EmptyTemp:
Reboot:
End
Vlevo nahore kliknete na napis Soubor
Kliknete na napis Ulozit jako...
Napiste spravne ten cerveny nazev fixlist a ulozte na plochu.
Vypnete antivir i dalsi pripadne zabezpeceni.
Spustte FRST jako spravce, kliknete na napis Fix a program vykona prikazy.
Po restartu pc by se mel objevit novy log - s nazvem fixlog, ten mi sem zase zkopirujte.

Takže popořadě. Plocha ma velikost : 1,67 MB

A log z noveho skenu je tady ( snad jsem to udělal jak jsem měl )

Fix result of Farbar Recovery Scan Tool (x86) Version: 28-09-2016
Ran by Zuzka (28-09-2016 16:13:47) Run:1
Running from C:\Users\Zuzka\Desktop
Loaded Profiles: Zuzka (Available Profiles: Zuzka)
Boot Mode: Normal

==============================================

fixlist content:
*****************
Start
CloseProcesses:
CreateRestorePoint:

HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-2978567687-4275224139-954450255-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKU\S-1-5-21-2978567687-4275224139-954450255-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKU\S-1-5-21-2978567687-4275224139-954450255-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox

2016-09-28 14:17 - 2015-07-20 18:54 - 00000936 _____ C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-09-21 19:00 - 2015-07-20 18:54 - 00000940 _____ C:\windows\Tasks\GoogleUpdateTaskMachineUA.job

Hosts:
EmptyTemp:
Reboot:
End
*****************

Processes closed successfully.
Restore point was successfully created.
"HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer" => key removed successfully.
"HKU\S-1-5-21-2978567687-4275224139-954450255-1000\SOFTWARE\Policies\Microsoft\Internet Explorer" => key removed successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value restored successfully
"HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => key removed successfully.
HKCR\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => key not found.
HKU\S-1-5-21-2978567687-4275224139-954450255-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully.
"HKU\S-1-5-21-2978567687-4275224139-954450255-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => key removed successfully.
HKCR\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => key not found.
C:\windows\Tasks\GoogleUpdateTaskMachineCore.job => moved successfully
C:\windows\Tasks\GoogleUpdateTaskMachineUA.job => moved successfully
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.

=========== EmptyTemp: ==========

BITS transfer queue => 8388608 B
DOMStoree, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 7084482 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 1495892 B
Edge => 0 B
Chrome => 704104531 B
Firefox => 1910511 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 372123 B
Public => 0 B
ProgramData => 0 B
systemprofile => 67202 B
LocalService => 0 B
NetworkService => 0 B
Zuzka => 3277150 B

RecycleBin => 4922976 B
EmptyTemp: => 697.7 MB temporary data Removed.

================================

The system needed a reboot.

==== End of Fixlog 16:15:13 ====

marek999 · #22 Příspěvek od **marek999** » 28 zář 2016 15:24

A posilam ještě ten log co vam nešel otevřít predtim.

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 28-09-2016
Ran by Zuzka (28-09-2016 15:00:00)
Running from C:\Users\Zuzka\Downloads
Microsoft Windows 7 Starter Service Pack 1 (X86) (2014-05-18 13:42:16)
Boot Mode: Normal
==========================================================

==================== Accounts: =============================

Administrator (S-1-5-21-2978567687-4275224139-954450255-500 - Administrator - Disabled)
Guest (S-1-5-21-2978567687-4275224139-954450255-501 - Limited - Disabled)
Zuzka (S-1-5-21-2978567687-4275224139-954450255-1000 - Administrator - Enabled) => C:\Users\Zuzka

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Acrobat.com (HKLM\...\{287ECFA4-719A-2143-A09B-D6A12DE54E40}) (Version: 1.6.65 - Adobe Systems Incorporated)
Adobe AIR (HKLM\...\Adobe AIR) (Version: 2.5.1.17730 - Adobe Systems Inc.)
Adobe Flash Player 10 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 10.2.152.32 - Adobe Systems Incorporated)
Adobe Reader 9.1 MUI (HKLM\...\{AC76BA86-7AD7-FFFF-7B44-A91000000001}) (Version: 9.1.0 - Adobe Systems Incorporated)
ASUS WebStorage (HKLM\...\ASUS WebStorage) (Version: 3.0.108.222 - eCareme Technologies, Inc.)
AsusScreensaver (HKLM\...\{99E77016-BCF2-48C8-9119-43ECF5815F65}) (Version: 1.05 - AsusTek Computer Inc.)
ASUSUpdate for Eee PC (HKLM\...\{587178E7-B1DF-494E-9838-FA4DD36E873C}) (Version: 1.06.03 - ASUSTeK Computer Inc.)
AsusVibe2.0 (HKLM\...\Asus Vibe2.0) (Version: 2.0.9.157 - ASUSTEK)
Atheros Client Installation Program (HKLM\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 7.0 - Atheros)
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 1.0.0.36 - Atheros Communications Inc.)
Broadcom Wireless Network Adapter (HKLM\...\{4FCBCF89-1823-4D97-A6F2-0E8DD66E273A}) (Version: 1.00.0000 - AzureWave)
CapsHook (HKLM\...\{4B5092B6-F231-4D18-83BC-2618B729CA45}) (Version: 1.0.0.7 - AsusTek Computer)
CCleaner (HKLM\...\CCleaner) (Version: 5.22 - Piriform)
CyberLink PowerRecover (HKLM\...\InstallShield_{44B2A0AB-412E-4F8C-B058-D1E8AECCDFF5}) (Version: 5.6.1622 - CyberLink Corp.)
D3DX10 (Version: 15.4.2368.0902 - Microsoft) Hidden
E-Cam (HKLM\...\{185AFA7A-F63E-450B-94AA-011CAC18090E}) (Version: 2.0.3.0 - AzureWave)
Eee Docking 3.8.3 (HKLM\...\Eee Docking_is1) (Version: 3.8.3 - ASUSTek Computer Inc.)
ExpressGateCloud (HKLM\...\InstallShield_{36B0DC39-3282-40EB-8587-B875CE46C3A7}) (Version: 2.7.29.198 - VideACE Co.)
ExpressGateCloud (Version: 2.7.29.198 - VideACE Co.) Hidden
FontResizer (HKLM\...\InstallShield_{17780F99-A9DF-450B-81B3-6781B20A17A8}) (Version: 1.01.0011 - ASUSTek)
FontResizer (Version: 1.01.0011 - ASUSTek) Hidden
Formant ActiveX programu Windows Live Mesh odpowiedzialny za obsługę połączeń zdalnych (HKLM\...\{B04A0E2F-1E4C-4E61-B18E-3B2BD6779CA7}) (Version: 15.4.5722.2 - Microsoft Corporation)
Galeria fotografii usługi Windows Live (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Google Chrome (HKLM\...\Google Chrome) (Version: 53.0.2785.116 - Google Inc.)
Google Update Helper (Version: 1.3.21.169 - Google Inc.) Hidden
Google Update Helper (Version: 1.3.30.3 - Google Inc.) Hidden
Hotkey Service (HKLM\...\{71C0E38E-09F2-4386-9977-404D4F6640CD}) (Version: 1.38 - AsusTek Computer Inc.)
InstantOn (HKLM\...\{749F674B-2674-47E8-879C-5626A06B2A91}) (Version: 2.0.0 - ASUS)
Intel(R) Graphics Media Accelerator Driver (HKLM\...\HDMI) (Version: 8.14.10.2364 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 9.6.4.1002 - Intel Corporation)
Junk Mail filter update (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
LiveUpdate (HKLM\...\{38E5A3B1-ADF1-47E0-8024-76310A30EB36}) (Version: 1.28 - AsusTek Computer Inc.)
Mesh Runtime (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft Office Professional 2010 (HKLM\...\Office14.SingleImage) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 4.0.50401.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Ovládací prvek ActiveX platformy Windows Live Mesh pro vzdálená připojení (HKLM\...\{B6190387-0036-4BEB-8D74-A0AFC5F14706}) (Version: 15.4.5722.2 - Microsoft Corporation)
Ovládací prvok ActiveX programu Windows Live Mesh pre vzdialené pripojenia (HKLM\...\{C2FD7DB5-FE30-49B6-8A2F-C5652E053C31}) (Version: 15.4.5722.2 - Microsoft Corporation)
Poczta usługi Windows Live (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Podstawowe programy Windows Live (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Ralink RT2860 Wireless LAN Card (HKLM\...\{8FC4F1DD-F7FD-4766-804D-3C8FF1D309AF}) (Version: 1.5.1.0 - Ralink)
SpeedFan (remove only) (HKLM\...\SpeedFan) (Version: - )
Super Hybrid Engine (HKLM\...\{88F08F98-12BC-4613-81A2-8F9B88CFC73E}) (Version: 2.17 - AsusTek Computer)
syncables desktop SE (HKLM\...\{341697D8-9923-445E-B42A-529E5A99CB7A}) (Version: 5.5.746.11492 - syncables)
Windows Live Essentials (HKLM\...\WinLiveSuite) (Version: 15.4.3508.1109 - Microsoft Corporation)
Windows Live Mesh ActiveX Control for Remote Connections (HKLM\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX-vezérlő távoli kapcsolatokhoz (HKLM\...\{6E29C4F7-C2C2-4B18-A15C-E09B92065F15}) (Version: 15.4.5722.2 - Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {39D378D1-783E-4CC8-AD1E-4B44A5351AC7} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-12-29] (Google Inc.)
Task: {78EED6D5-DE3D-41D9-B1CC-EF6A992001BA} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-08-26] (Piriform Ltd)
Task: {95159D71-1C92-4CD8-9AC7-4941072454F1} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
Task: {B4702D96-E6DA-4461-BB13-7C80502DA14D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-12-29] (Google Inc.)
Task: {DC608725-F72A-4DBD-B354-A6E8B1CB28FB} - System32\Tasks\InsOnWMI => C:\Program Files\Common Files\InstantOn\InsOnWMI.exe [2011-04-12] (ASUS)
Task: {F6C83B03-B2BB-433F-A28D-36BF5D265B81} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => Rundll32.exe aepdu.dll,AePduRunUpdate -nolegacy

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

==================== Loaded Modules (Whitelisted) ==============

2011-04-30 03:19 - 2011-03-04 01:33 - 00224680 _____ () C:\windows\system32\AsusService.exe
2011-01-13 01:22 - 2011-01-13 01:22 - 00091464 _____ () C:\ExpressGateUtil\VAWinService.exe
2010-12-25 03:51 - 2010-12-25 03:51 - 00157000 _____ () C:\ExpressGateUtil\libexpat.dll
2011-01-04 02:08 - 2011-01-04 02:08 - 00061768 _____ () C:\ExpressGateUtil\netProfileDatabase.DLL
2010-09-02 13:08 - 2010-09-02 13:08 - 00118784 _____ () C:\Program Files\Asus\ASUS WebStorage\3.0.108.222\AsusWSShellExt.dll
2011-03-24 05:33 - 2011-03-24 05:33 - 00045448 _____ () C:\ExpressGateUtil\VAWinAgent.exe
2011-03-11 03:05 - 2011-03-11 03:05 - 00181664 _____ () C:\Program Files\Asus\LiveUpdate\Parser.dll
2016-09-21 21:40 - 2016-09-06 12:00 - 05197312 _____ () C:\Users\Zuzka\AppData\Local\Google\Chrome\User Data\SwiftShader\3.3.0.1\libglesv2.dll
2016-09-21 21:40 - 2016-09-06 12:00 - 00147456 _____ () C:\Users\Zuzka\AppData\Local\Google\Chrome\User Data\SwiftShader\3.3.0.1\libegl.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:04 - 2016-09-27 11:08 - 00000841 ____A C:\windows\system32\Drivers\etc\hosts

127.0.0.1 localhost
::1 localhost

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2978567687-4275224139-954450255-1000\Control Panel\Desktop\\Wallpaper -> %windir%\web\wallpaper\windows\img0.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

MSCONFIG\startupreg: Eee Docking => C:\Program Files\ASUS\Eee Docking\Eee Docking.exe autorun

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{9E347E69-2F34-460F-95E4-EDB5C0F589D5}] => (Allow) C:\Program Files\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{5BA3DCE5-D09F-4F46-A126-CF70A5710AED}] => (Allow) LPort=2869
FirewallRules: [{721C6277-BA36-4FEE-9DD7-60D859219D17}] => (Allow) LPort=1900
FirewallRules: [{A62C7B2E-9279-4CE7-A531-AAAC8C09FC83}] => (Allow) C:\Program Files\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{A94B0FF9-66D6-4D2C-9453-8D75286A024D}] => (Allow) C:\Program Files\Windows Live\Mesh\MOE.exe
FirewallRules: [{15BE2902-AAD5-49DB-9ADB-821A8720D7CF}] => (Allow) LPort=5353
FirewallRules: [{726224FF-487C-461D-ADD0-F5AE0DA8881E}] => (Allow) LPort=8182
FirewallRules: [{46F18146-1552-427F-A840-FBD34D87C64C}] => (Allow) C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
FirewallRules: [{32AB94C7-9491-49FB-B201-91A76949FA5B}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe

==================== Restore Points =========================

23-07-2013 20:26:41 Nainstalováno rozhraní DirectX
23-06-2015 21:30:18 Sony PC Companion
20-07-2015 18:51:06 avast! antivirus system restore point
20-07-2015 19:02:17 Windows Update
22-10-2015 19:44:57 avast! antivirus system restore point
21-09-2016 20:01:09 avast! antivirus system restore point
27-09-2016 10:59:47 JRT Pre-Junkware Removal
27-09-2016 11:06:57 zoek.exe restore point

==================== Faulty Device Manager Devices =============

==================== Event log errors: =========================

Application errors:
==================

System errors:
=============
Error: (09/28/2016 02:17:27 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Zavedení následujícího ovladače pro spouštění počítače nebo systému se nezdařilo:
cdrom

==================== Memory info ===========================

Processor: Intel(R) Atom(TM) CPU N570 @ 1.66GHz
Percentage of memory in use: 86%
Total physical RAM: 1014.12 MB
Available physical RAM: 140.64 MB
Total Virtual: 2582.12 MB
Available Virtual: 939.51 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:100 GB) (Free:52.55 GB) NTFS ==>[drive with boot components (obtained from BCD)]
Drive d: () (Fixed) (Total:183.07 GB) (Free:182.53 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298.1 GB) (Disk ID: AE9B0ED5)
Partition 1: (Active) - (Size=100 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=15 GB) - (Type=1B)
Partition 3: (Not Active) - (Size=183.1 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=16 MB) - (Type=EF)

==================== End of Addition.txt ============================

#23 Příspěvek od **Márty84** » 28 zář 2016 16:48

Nainstalujte ten antivir.

Vypnete trvale Windows Defender.

Vsechny tyto programy - vcetne pripadne instalace - spoustejte jako spravce (kliknete na ne pravym mysidlem a zvolte - Spustit jako spravce)

vyosek píše: DelFix https://toolslib.net/downloads/finish/2/
Stahnete a spustte

Ponechte zatrzitkou pouze u volby Remove disinfection tools

Kliknete na Run

Stahnete Ccleaner http://www.filehippo.com/download_ccleaner a spustte.
Pri instalaci pozor na toolbar (ci jine doplnky), jestli vam nabidne jeho instalaci, tak zruste zatrzitko.
Po spusteni se ocitnete ve funkci Cistic. Vlevo je spousta zatrzitek. Pozor dejte hlavne na kos, pokud nechate zatrzene, vzdy ho vysype.
Dale, podle toho jak je nastaven, smaze vsechna hesla ulozena na netu!!! Takze jestli mate nastavene, at si pocitac hesla pamatuje (coz neni pro bezpecnost dobre), budete je muset pak napsat znova rucne (napr mail, facebook, ruzna fora atd.)
Kliknete na Analyzovat a az dokonci analyzu, kliknete na Spustit Cleaner.
Potom kliknete vlevo na funkci Registry
Kliknete na Hledej problemy, kdyz najde, kliknete na Opravit problemy. Nabidne Vam zalohu, tu udelejte a ulozte ji tak, at ji v pripade potreby najdete.
Funkce Nastroje umoznuje odinstalovani programu. Je dukladnejsi nez samotny windows!
(Pokud je v pc vice uzivatelskych uctu, pouzijte program i v nich)

Defragmentujte disk(y) (SSD Disky ne!)
Stahnete program Defraggler https://www.piriform.com/defraggler/download/standard
Pri instalaci opet pozor na toolbar a dalsi nesmysly.
Po nainstalovani program spustte a kliknete na Analyzovat, po analyze kliknete na Defragmentovat a programek odvede svou praci.

Pak napiste, jak to s pc vypada.

VIRY.CZ

Prosim o kontrolu logu, hodně zpomaleny VŠECHNO

Re: Prosim o kontrolu logu, hodně zpomaleny VŠECHNO

Re: Prosim o kontrolu logu, hodně zpomaleny VŠECHNO

Re: Prosim o kontrolu logu, hodně zpomaleny VŠECHNO

Re: Prosim o kontrolu logu, hodně zpomaleny VŠECHNO

Re: Prosim o kontrolu logu, hodně zpomaleny VŠECHNO

Re: Prosim o kontrolu logu, hodně zpomaleny VŠECHNO

Re: Prosim o kontrolu logu, hodně zpomaleny VŠECHNO

Re: Prosim o kontrolu logu, hodně zpomaleny VŠECHNO