VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Vypínanie notebooku

https://forum.viry.cz:443/viewtopic.php?t=137079

Stránka 1 z 1

Vypínanie notebooku

Napsal: 25 bře 2014 20:14
od cuco11
Dobrý deň prosím o kontrolu logu. Mám nasledovný problém - notebook sa správa divne v prostredku práce vyskoci na zlomok sekundy DOS (terminál) okno a systém začne zatvárať všetky otvorené aplikácie až sa nakoniec uplne štandardne vypne. Nejedná sa o hranie hier alebo pozeranie videi - väčšinou praca s prehliadačom alebo kancelarskym balikom. Preskenoval som ho cez NOD32 a aj Kaspersky security scan a nic som neobjavil.
O prehriatie sa asi nejedna procesor mava okolo 45°C, Mb okolo 50°C, RAM 45°C a HDD 35°C.

Ďakujem

LOG:

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 13-03-2014
Ran by q (administrator) on KNI4 on 25-03-2014 20:00:36
Running from C:\Users\q\Desktop
Windows 7 Professional Service Pack 1 (X64) OS Language: 041B
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(IDT, Inc.) C:\Program Files\IDT\WDM\STacSV64.exe
(Hewlett-Packard Company) C:\Windows\system32\Hpservice.exe
(Andrea Electronics Corporation) C:\Program Files\IDT\WDM\AESTSr64.exe
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
(Motorola Solutions, Inc.) C:\Program Files\Motorola\Bluetooth\devmgrsrv.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\kss.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
(Portrait Displays, Inc.) C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe
(Motorola Solutions, Inc.) C:\Program Files\Motorola\Bluetooth\obexsrv.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Synaptics Incorporated) C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\kss.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
(Macrovision Europe Ltd.) C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(Mister Group) C:\Program Files (x86)\System Explorer\SystemExplorer.exe
(Mister Group) C:\Program Files (x86)\System Explorer\service\SystemExplorerService64.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Main.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Portrait Displays, Inc) C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\SDKCOMServer.exe
(Portrait Displays, Inc.) C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdiSdkHelperx64.exe
(Intel Corporation) C:\Windows\system32\igfxext.exe
(Intel Corporation) C:\Windows\system32\igfxsrvc.exe
(Microsoft Corporation) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Ghisler Software GmbH) C:\totalcmd\TOTALCMD.EXE
(Microsoft Corporation) C:\Windows\system32\msiexec.exe
(forum.viry.cz) C:\Users\q\Desktop\FRSTLauncher.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [egui] - C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2918656 2011-01-12] (ESET)
HKLM\...\Run: [HPPowerAssistant] - C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Main.exe [2942520 2011-06-02] (Hewlett-Packard Company)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2804976 2013-10-30] (Synaptics Incorporated)
HKLM-x32\...\Run: [QLBController] - C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe [323128 2011-07-06] (Hewlett-Packard Company)
HKLM-x32\...\Run: [NUSB3MON] - c:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113288 2011-04-14] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [SystemExplorerAutoStart] - C:\Program Files (x86)\System Explorer\SystemExplorer.exe [2860576 2014-02-27] (Mister Group)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-667187236-2916497924-1121132568-1005\...\Run: [ShowBatteryBar] - C:\Program Files\BatteryBar\ShowBatteryBar.exe [89600 2013-04-11] ()
HKU\S-1-5-21-667187236-2916497924-1121132568-1005\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [20922016 2014-02-10] (Skype Technologies S.A.)
HKU\S-1-5-21-667187236-2916497924-1121132568-1005\...\Run: [KSS] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\kss.exe [202328 2012-12-07] (Kaspersky Lab ZAO)
HKU\S-1-5-21-667187236-2916497924-1121132568-1005\...\Policies\system: [Wallpaper] c:\Windows\Web\Wallpaper\Characters\plocha.jpg
HKU\S-1-5-21-667187236-2916497924-1121132568-1005\...\Policies\system: [WallpaperStyle] 0
IFEO\taskmgr.exe: [Debugger] "C:\Program Files (x86)\System Explorer\SystemExplorer.exe"
Startup: C:\Users\q\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Start - odkaz.lnk
ShortcutTarget: Start - odkaz.lnk -> D:\portables\Start.exe (PortableApps.com)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.sk/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x270331E30EEBCC01
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: CIESpeechBHO Class - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll (Atheros Commnucations)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/pub/s ... wflash.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.10
Tcpip\..\Interfaces\{B06296C6-4AEA-4484-B8F1-455E2557F8AA}: [NameServer]192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\q\AppData\Roaming\Mozilla\Firefox\Profiles\0pbmjkro.default
FF Homepage: chrome://speeddial/content/speeddial.xul
FF NetworkProxy: "http", "10.12.16.10"
FF NetworkProxy: "http_port", 4480
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_12_0_0_77.dll ()
FF Plugin: @microsoft.com/GENUINE - C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_77.dll ()
FF Plugin-x32: @java.com/DTPlugin,version=10.25.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\atlas-sk.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\azet-sk.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\dunaj-sk.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\slovnik-sk.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\zoznam-sk.xml
FF Extension: TranslateMenu - C:\Users\q\AppData\Roaming\Mozilla\Firefox\Profiles\0pbmjkro.default\Extensions\transmenu@ahmeda.net [2014-03-04]
FF Extension: feedly - C:\Users\q\AppData\Roaming\Mozilla\Firefox\Profiles\0pbmjkro.default\Extensions\feedly@devhd.xpi [2014-03-04]
FF Extension: FireGestures - C:\Users\q\AppData\Roaming\Mozilla\Firefox\Profiles\0pbmjkro.default\Extensions\firegestures@xuldev.org.xpi [2014-03-04]
FF Extension: Awesome screenshot: Capture and Annotate - C:\Users\q\AppData\Roaming\Mozilla\Firefox\Profiles\0pbmjkro.default\Extensions\jid0-GXjLLfbCoAx0LcltEdFrEkQdQPI@jetpack.xpi [2014-03-04]
FF Extension: X-notifier - C:\Users\q\AppData\Roaming\Mozilla\Firefox\Profiles\0pbmjkro.default\Extensions\{37fa1426-b82d-11db-8314-0800200c9a66}.xpi [2013-12-11]
FF Extension: Speed Dial - C:\Users\q\AppData\Roaming\Mozilla\Firefox\Profiles\0pbmjkro.default\Extensions\{64161300-e22b-11db-8314-0800200c9a66}.xpi [2014-03-04]
FF Extension: Adblock Plus - C:\Users\q\AppData\Roaming\Mozilla\Firefox\Profiles\0pbmjkro.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2013-12-11]
FF Extension: Tab Mix Plus - C:\Users\q\AppData\Roaming\Mozilla\Firefox\Profiles\0pbmjkro.default\Extensions\{dc572301-7619-498c-a57d-39143191b318}.xpi [2014-03-04]
FF Extension: DownThemAll! - C:\Users\q\AppData\Roaming\Mozilla\Firefox\Profiles\0pbmjkro.default\Extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}.xpi [2014-03-04]
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird
FF Extension: ESET Smart Security Extension - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2011-12-16]
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird
FF Extension: ESET Smart Security Extension - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2011-12-16]

Chrome:
=======
Error reading preferences. Please check "preferences" file for possible corruption. <======= ATTENTION
CHR StartMenuInternet: Google Chrome - C:\Users\test1\AppData\Local\Google\Chrome\Application\chrome.exe

==================== Services (Whitelisted) =================

R2 Atheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [138400 2011-01-06] (Atheros)
S3 EhttpSrv; C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe [42360 2011-01-12] (ESET)
R2 ekrn; C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [810144 2011-01-12] (ESET)
R2 hpHotkeyMonitor; C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe [1698360 2011-07-06] (Hewlett-Packard Company)
R2 KSS; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\kss.exe [202328 2012-12-07] (Kaspersky Lab ZAO)
R3 SystemExplorerHelpService; C:\Program Files (x86)\System Explorer\service\SystemExplorerService64.exe [821720 2012-11-25] (Mister Group)

==================== Drivers (Whitelisted) ====================

R2 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [170640 2010-12-21] (ESET)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [141264 2010-12-21] (ESET)
R2 epfwwfpr; C:\Windows\System32\DRIVERS\epfwwfpr.sys [125296 2010-12-21] (ESET)
R0 FSProFilter; C:\Windows\System32\Drivers\FSPFltd.sys [54848 2010-07-22] (FSPro Labs)
R3 mv2; C:\Windows\System32\DRIVERS\mv2.sys [12904 2012-02-17] (UVNC BVBA)
S3 RTLE8023x64; C:\Windows\System32\DRIVERS\Rtenic64.sys [328808 2010-10-28] (Realtek Semiconductor Corporation )
S3 SNP2UVC; C:\Windows\System32\DRIVERS\snp2uvc.sys [1863680 2012-03-30] (Sonix Co. Ltd.)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-03-25 20:00 - 2014-03-25 20:02 - 00012570 _____ () C:\Users\q\Desktop\FRST.txt
2014-03-25 20:00 - 2014-03-25 20:00 - 00000000 ____D () C:\FRST
2014-03-25 19:59 - 2014-03-25 19:57 - 02157056 _____ (Farbar) C:\Users\q\Desktop\FRST64.exe
2014-03-25 19:59 - 2014-03-25 19:57 - 00112640 _____ (forum.viry.cz) C:\Users\q\Desktop\FRSTLauncher.exe
2014-03-25 19:57 - 2014-03-25 19:57 - 02157056 _____ (Farbar) C:\Users\q\Downloads\FRST64.exe
2014-03-25 19:57 - 2014-03-25 19:57 - 00112640 _____ (forum.viry.cz) C:\Users\q\Downloads\FRSTLauncher.exe
2014-03-25 19:02 - 2014-03-25 19:02 - 00000056 _____ () C:\Windows\setupact.log
2014-03-25 19:02 - 2014-03-25 19:02 - 00000000 _____ () C:\Windows\setuperr.log
2014-03-25 17:34 - 2014-03-25 17:34 - 00001079 _____ () C:\Users\q\Desktop\Kaspersky Security Scan.lnk
2014-03-25 17:34 - 2014-03-25 17:34 - 00000000 ____D () C:\Users\q\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Kaspersky Security Scan
2014-03-25 17:34 - 2014-03-25 17:34 - 00000000 ____D () C:\ProgramData\Kaspersky Lab
2014-03-25 17:34 - 2014-03-25 17:34 - 00000000 ____D () C:\Program Files (x86)\Kaspersky Lab
2014-03-25 17:27 - 2014-03-25 17:28 - 00179968 _____ (Kaspersky Lab) C:\Users\q\Downloads\kss12.0.1.117mlg_en_ru_fr_de.exe
2014-03-24 19:02 - 2014-03-25 18:51 - 00363068 _____ () C:\Users\q\Documents\Organizácia a riadenie lyžiarskeho kurzu v EGT Tisovec.pptm
2014-03-24 17:26 - 2014-03-24 17:26 - 01758720 _____ () C:\Users\q\Downloads\Príprava a vedenie lyžiarskeho kurzu - SOŠ Veľký.ppt
2014-03-20 19:14 - 2014-03-20 19:14 - 00000000 ____H () C:\Users\q\Desktop\~WRL0004.tmp
2014-03-20 17:11 - 2014-03-20 17:12 - 00000000 ____D () C:\Users\q\Desktop\Mirka
2014-03-16 19:23 - 2014-03-16 19:23 - 00003241 _____ () C:\Users\q\Downloads\makro_pptx.txt
2014-03-16 19:15 - 2014-03-16 19:21 - 00004265 _____ () C:\Users\q\Downloads\AllText.TXT
2014-03-16 18:59 - 2014-03-16 19:13 - 00002759 _____ () C:\Users\q\Downloads\Prednaška 4 výbuš sila SCH.htm
2014-03-16 18:59 - 2014-03-16 19:13 - 00000000 ____D () C:\Users\q\Downloads\Prednaška 4 výbuš sila SCH.files
2014-03-16 18:55 - 2014-03-16 19:17 - 00808321 _____ () C:\Users\q\Downloads\Prednaška 5 sila.pptx
2014-03-16 18:55 - 2014-03-16 18:55 - 02670669 _____ () C:\Users\q\Downloads\Prednaška 7 pohyblivost a koordinácia.pptx
2014-03-16 18:55 - 2014-03-16 18:55 - 01281920 _____ () C:\Users\q\Downloads\Prednaška 4 výbuš sila SCH.pptx
2014-03-16 18:55 - 2014-03-16 18:55 - 01064118 _____ () C:\Users\q\Downloads\Prednaška 8 koordinácia.pptx
2014-03-16 18:55 - 2014-03-16 18:55 - 00436645 _____ () C:\Users\q\Downloads\Prednaška 6 vytrvalosť.pptx
2014-03-16 09:51 - 2014-03-16 09:51 - 00857654 _____ (PortableApps.com) C:\Users\q\Downloads\PSPadPortable_4.5.7.2450_Dev_Test_1_online.paf.exe
2014-03-13 22:08 - 2014-03-13 22:09 - 00921121 _____ () C:\Users\q\Downloads\Adler-Olsen,_Jussi_-_Komisar_M&#248,rck_3_-_Vzkaz_v_lahvi.docx.zip
2014-03-13 22:08 - 2014-03-13 22:08 - 01312771 _____ () C:\Users\q\Downloads\Adler-Olsen,_Jussi_-_Komisar_M&#248,rck_1_-_Zena_v_kleci.docx.zip
2014-03-13 22:08 - 2014-03-13 22:08 - 01109456 _____ () C:\Users\q\Downloads\Adler-Olsen,_Jussi_-_Komisar_M&#248,rck_2_-_Zabijaci.doc.zip
2014-03-12 20:39 - 2014-03-01 06:17 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-03-12 20:39 - 2014-03-01 06:16 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-03-12 20:39 - 2014-03-01 05:58 - 02765824 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-03-12 20:39 - 2014-03-01 05:52 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-03-12 20:39 - 2014-03-01 05:51 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-03-12 20:39 - 2014-03-01 05:42 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-03-12 20:39 - 2014-03-01 05:40 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-03-12 20:39 - 2014-03-01 05:37 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-03-12 20:39 - 2014-03-01 05:33 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-03-12 20:39 - 2014-03-01 05:30 - 17074688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-03-12 20:39 - 2014-03-01 05:17 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-03-12 20:39 - 2014-03-01 05:11 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-03-12 20:39 - 2014-03-01 04:52 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-03-12 20:39 - 2014-03-01 04:51 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-03-12 20:39 - 2014-03-01 04:47 - 02168320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-03-12 20:39 - 2014-03-01 04:43 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-03-12 20:39 - 2014-03-01 04:43 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-03-12 20:39 - 2014-03-01 04:42 - 00627200 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-03-12 20:39 - 2014-03-01 04:40 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-03-12 20:39 - 2014-03-01 04:38 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-03-12 20:39 - 2014-03-01 04:37 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-03-12 20:39 - 2014-03-01 04:35 - 02041856 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-03-12 20:39 - 2014-03-01 04:16 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-03-12 20:39 - 2014-03-01 04:14 - 04244480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-03-12 20:39 - 2014-03-01 04:03 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-03-12 20:39 - 2014-03-01 04:00 - 01964032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-03-12 20:39 - 2014-03-01 03:57 - 11266048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-03-12 20:39 - 2014-03-01 03:38 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-03-12 20:39 - 2014-03-01 03:32 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-03-12 20:39 - 2014-03-01 03:27 - 01156096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-03-12 20:39 - 2014-03-01 03:25 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-03-12 20:38 - 2014-03-01 07:05 - 23133696 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-03-12 20:38 - 2014-03-01 05:33 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-03-12 20:38 - 2014-03-01 05:32 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-03-12 20:38 - 2014-03-01 05:23 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-03-12 20:38 - 2014-03-01 05:02 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-03-12 20:38 - 2014-03-01 04:54 - 05768704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-03-12 20:38 - 2014-03-01 04:18 - 13051904 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-03-12 20:38 - 2014-03-01 04:10 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-03-12 20:38 - 2014-03-01 03:25 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-03-12 20:37 - 2014-02-07 02:23 - 03156480 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-03-12 20:37 - 2014-02-04 03:32 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2014-03-12 20:37 - 2014-02-04 03:32 - 00624128 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2014-03-12 20:37 - 2014-02-04 03:04 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2014-03-12 20:37 - 2014-02-04 03:04 - 00509440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2014-03-12 20:37 - 2014-01-29 03:32 - 00484864 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2014-03-12 20:37 - 2014-01-29 03:06 - 00381440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2014-03-12 20:37 - 2014-01-28 03:32 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2014-03-12 19:23 - 2014-03-12 20:09 - 709887516 _____ () C:\Users\q\Downloads\Kamenak_4_CZ_NOVINKA_-_KVALITA.avi.avi
2014-03-11 18:43 - 2014-03-11 20:04 - 771284992 _____ () C:\Users\q\Downloads\Zelezna_Lady.2011.BDRip.XviD.CZ.avi
2014-03-10 18:34 - 2014-03-10 18:41 - 00000000 ____D () C:\wamp
2014-03-09 17:22 - 2014-01-09 03:22 - 05694464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2014-03-09 17:22 - 2014-01-03 23:44 - 06574592 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-03-07 19:02 - 2014-03-07 19:02 - 02482771 _____ () C:\Users\q\Downloads\Gaiman,_Neil_Richard,_Reaves,_Michael_-_Mezisvet.doc.zip
2014-03-07 17:52 - 2014-03-25 18:55 - 00000000 ____D () C:\Program Files (x86)\PDFCreator
2014-03-07 17:52 - 2014-03-07 17:52 - 00000000 ____D () C:\Users\q\AppData\Roaming\pdfforge
2014-03-07 17:52 - 2013-04-09 14:13 - 00110264 _____ (pdfforge GmbH) C:\Windows\system32\pdfcmon.dll
2014-03-07 17:52 - 2012-05-05 10:54 - 00662288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSCOMCT2.OCX
2014-03-07 17:52 - 2012-05-05 10:54 - 00137000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSMAPI32.OCX
2014-03-07 17:52 - 2012-05-05 10:54 - 00023552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSMPIDE.DLL
2014-03-07 17:47 - 2014-03-07 11:22 - 02224775 _____ () C:\Users\q\Desktop\mrtvy na pekelnom vrchu.djvu
2014-03-07 17:43 - 2014-03-07 17:43 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_SynTP_01011.Wdf
2014-03-07 17:43 - 2013-10-02 03:22 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
2014-03-07 17:43 - 2013-10-02 03:11 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2014-03-07 17:43 - 2013-10-02 03:08 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2014-03-07 17:43 - 2013-10-02 02:48 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll
2014-03-07 17:43 - 2013-10-02 02:48 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
2014-03-07 17:43 - 2013-10-02 02:29 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2014-03-07 17:43 - 2013-10-02 02:10 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2014-03-07 17:43 - 2013-10-02 01:15 - 01057280 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2014-03-07 17:43 - 2013-10-02 01:14 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsRdpWebAccess.dll
2014-03-07 17:43 - 2013-10-02 01:14 - 00017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll
2014-03-07 17:43 - 2013-10-02 01:08 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2014-03-07 17:43 - 2013-10-02 01:01 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2014-03-07 17:43 - 2013-10-02 00:58 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2014-03-07 17:43 - 2013-10-02 00:31 - 01147392 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2014-03-07 17:43 - 2013-10-02 00:08 - 00855552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll
2014-03-07 17:43 - 2013-10-01 23:34 - 01068544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2014-03-07 17:27 - 2013-09-25 03:23 - 01030144 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2014-03-07 17:27 - 2013-09-25 02:57 - 00792576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
2014-03-05 19:42 - 2014-03-05 19:43 - 02037562 _____ () C:\Users\q\Downloads\geek.zip
2014-03-05 19:39 - 2014-03-05 19:39 - 00000000 ____D () C:\Windows\XSxS
2014-03-05 19:39 - 2014-03-05 19:39 - 00000000 ____D () C:\Users\q\AppData\Local\Xenocode
2014-03-05 19:39 - 2014-03-05 19:39 - 00000000 ____D () C:\Program Files (x86)\Xenocode
2014-03-05 19:34 - 2014-03-05 19:43 - 60018688 _____ () C:\Users\q\Downloads\calibre-64bit-1.26.0.msi
2014-03-05 16:50 - 2014-03-05 16:53 - 00304801 _____ () C:\Users\q\Downloads\makro_v2.9.7.zip
2014-03-05 16:40 - 2014-03-05 16:40 - 00002758 _____ () C:\Windows\System32\Tasks\RunSpeccy
2014-03-04 20:04 - 2014-03-04 20:04 - 00000000 ____D () C:\Users\q\AppData\Local\Skype
2014-03-04 19:38 - 2014-03-04 19:38 - 00092519 _____ () C:\Users\q\Downloads\db42963xjoomla.sql.zip
2014-03-04 18:29 - 2013-12-07 17:10 - 00015515 _____ () C:\Users\q\Desktop\services.m3u
2014-03-04 18:15 - 2014-03-04 18:17 - 00000000 ____D () C:\ProgramData\SystemExplorer
2014-03-04 18:15 - 2014-03-04 18:15 - 00000000 ____D () C:\Program Files (x86)\System Explorer
2014-03-04 18:13 - 2014-03-04 18:14 - 01979952 _____ (Mister Group ) C:\Users\q\Downloads\SystemExplorerSetup_460.exe
2014-03-04 16:10 - 2014-03-04 16:10 - 00000000 ____D () C:\Users\q\AppData\Roaming\Auslogics
2014-03-02 09:02 - 2014-03-02 09:03 - 06013140 _____ () C:\Users\q\Downloads\CDBurnerXP-x64-4.5.2.4478.zip

==================== One Month Modified Files and Folders =======

2014-03-25 20:02 - 2014-03-25 20:00 - 00012570 _____ () C:\Users\q\Desktop\FRST.txt
2014-03-25 20:00 - 2014-03-25 20:00 - 00000000 ____D () C:\FRST
2014-03-25 19:59 - 2013-12-11 15:34 - 00000000 ____D () C:\Users\q\AppData\Roaming\Skype
2014-03-25 19:57 - 2014-03-25 19:59 - 02157056 _____ (Farbar) C:\Users\q\Desktop\FRST64.exe
2014-03-25 19:57 - 2014-03-25 19:59 - 00112640 _____ (forum.viry.cz) C:\Users\q\Desktop\FRSTLauncher.exe
2014-03-25 19:57 - 2014-03-25 19:57 - 02157056 _____ (Farbar) C:\Users\q\Downloads\FRST64.exe
2014-03-25 19:57 - 2014-03-25 19:57 - 00112640 _____ (forum.viry.cz) C:\Users\q\Downloads\FRSTLauncher.exe
2014-03-25 19:41 - 2013-12-18 23:18 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-03-25 19:29 - 2012-02-14 16:24 - 00000946 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-667187236-2916497924-1121132568-1004UA.job
2014-03-25 19:10 - 2009-07-14 05:45 - 00009920 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-03-25 19:10 - 2009-07-14 05:45 - 00009920 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-03-25 19:09 - 2012-02-13 13:04 - 01454030 _____ () C:\Windows\WindowsUpdate.log
2014-03-25 19:09 - 2009-07-14 06:13 - 00782510 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-03-25 19:02 - 2014-03-25 19:02 - 00000056 _____ () C:\Windows\setupact.log
2014-03-25 19:02 - 2014-03-25 19:02 - 00000000 _____ () C:\Windows\setuperr.log
2014-03-25 19:02 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-03-25 19:00 - 2012-02-17 15:24 - 00000000 ___RD () C:\Users\q\Virtual Machines
2014-03-25 18:55 - 2014-03-07 17:52 - 00000000 ____D () C:\Program Files (x86)\PDFCreator
2014-03-25 18:55 - 2013-12-11 15:32 - 00000000 ____D () C:\Users\q\AppData\Roaming\Media Player Classic
2014-03-25 18:55 - 2012-02-15 09:57 - 00000000 ____D () C:\Users\q\AppData\Local\CrashDumps
2014-03-25 18:51 - 2014-03-24 19:02 - 00363068 _____ () C:\Users\q\Documents\Organizácia a riadenie lyžiarskeho kurzu v EGT Tisovec.pptm
2014-03-25 17:34 - 2014-03-25 17:34 - 00001079 _____ () C:\Users\q\Desktop\Kaspersky Security Scan.lnk
2014-03-25 17:34 - 2014-03-25 17:34 - 00000000 ____D () C:\Users\q\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Kaspersky Security Scan
2014-03-25 17:34 - 2014-03-25 17:34 - 00000000 ____D () C:\ProgramData\Kaspersky Lab
2014-03-25 17:34 - 2014-03-25 17:34 - 00000000 ____D () C:\Program Files (x86)\Kaspersky Lab
2014-03-25 17:28 - 2014-03-25 17:27 - 00179968 _____ (Kaspersky Lab) C:\Users\q\Downloads\kss12.0.1.117mlg_en_ru_fr_de.exe
2014-03-25 17:24 - 2012-02-14 16:24 - 00000894 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-667187236-2916497924-1121132568-1004Core.job
2014-03-24 17:26 - 2014-03-24 17:26 - 01758720 _____ () C:\Users\q\Downloads\Príprava a vedenie lyžiarskeho kurzu - SOŠ Veľký.ppt
2014-03-22 08:29 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-03-20 19:14 - 2014-03-20 19:14 - 00000000 ____H () C:\Users\q\Desktop\~WRL0004.tmp
2014-03-20 17:12 - 2014-03-20 17:11 - 00000000 ____D () C:\Users\q\Desktop\Mirka
2014-03-19 19:47 - 2009-07-14 06:32 - 00000000 ____D () C:\Windows\system32\FxsTmp
2014-03-19 18:45 - 2011-10-12 16:56 - 00000000 ____D () C:\ProgramData\FLEXnet
2014-03-16 19:23 - 2014-03-16 19:23 - 00003241 _____ () C:\Users\q\Downloads\makro_pptx.txt
2014-03-16 19:21 - 2014-03-16 19:15 - 00004265 _____ () C:\Users\q\Downloads\AllText.TXT
2014-03-16 19:17 - 2014-03-16 18:55 - 00808321 _____ () C:\Users\q\Downloads\Prednaška 5 sila.pptx
2014-03-16 19:13 - 2014-03-16 18:59 - 00002759 _____ () C:\Users\q\Downloads\Prednaška 4 výbuš sila SCH.htm
2014-03-16 19:13 - 2014-03-16 18:59 - 00000000 ____D () C:\Users\q\Downloads\Prednaška 4 výbuš sila SCH.files
2014-03-16 18:55 - 2014-03-16 18:55 - 02670669 _____ () C:\Users\q\Downloads\Prednaška 7 pohyblivost a koordinácia.pptx
2014-03-16 18:55 - 2014-03-16 18:55 - 01281920 _____ () C:\Users\q\Downloads\Prednaška 4 výbuš sila SCH.pptx
2014-03-16 18:55 - 2014-03-16 18:55 - 01064118 _____ () C:\Users\q\Downloads\Prednaška 8 koordinácia.pptx
2014-03-16 18:55 - 2014-03-16 18:55 - 00436645 _____ () C:\Users\q\Downloads\Prednaška 6 vytrvalosť.pptx
2014-03-16 09:51 - 2014-03-16 09:51 - 00857654 _____ (PortableApps.com) C:\Users\q\Downloads\PSPadPortable_4.5.7.2450_Dev_Test_1_online.paf.exe
2014-03-13 22:09 - 2014-03-13 22:08 - 00921121 _____ () C:\Users\q\Downloads\Adler-Olsen,_Jussi_-_Komisar_M&#248,rck_3_-_Vzkaz_v_lahvi.docx.zip
2014-03-13 22:08 - 2014-03-13 22:08 - 01312771 _____ () C:\Users\q\Downloads\Adler-Olsen,_Jussi_-_Komisar_M&#248,rck_1_-_Zena_v_kleci.docx.zip
2014-03-13 22:08 - 2014-03-13 22:08 - 01109456 _____ () C:\Users\q\Downloads\Adler-Olsen,_Jussi_-_Komisar_M&#248,rck_2_-_Zabijaci.doc.zip
2014-03-12 20:57 - 2009-07-14 05:45 - 00442368 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-03-12 20:56 - 2013-12-11 16:44 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-03-12 20:56 - 2013-12-11 16:44 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight
2014-03-12 20:47 - 2013-09-10 14:43 - 00000000 ____D () C:\Windows\system32\MRT
2014-03-12 20:43 - 2011-10-12 20:16 - 90015360 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-03-12 20:42 - 2011-10-12 19:48 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-03-12 20:09 - 2014-03-12 19:23 - 709887516 _____ () C:\Users\q\Downloads\Kamenak_4_CZ_NOVINKA_-_KVALITA.avi.avi
2014-03-11 20:04 - 2014-03-11 18:43 - 771284992 _____ () C:\Users\q\Downloads\Zelezna_Lady.2011.BDRip.XviD.CZ.avi
2014-03-11 19:22 - 2013-12-11 15:41 - 00000000 ____D () C:\Users\q\AppData\Roaming\vlc
2014-03-11 18:41 - 2013-12-18 23:18 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-03-11 18:41 - 2013-12-18 23:18 - 00003768 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-03-11 18:41 - 2011-10-12 19:30 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-03-10 19:04 - 2014-01-02 21:19 - 00000035 _____ () C:\Users\Public\Documents\AtherosServiceConfig.ini
2014-03-10 18:41 - 2014-03-10 18:34 - 00000000 ____D () C:\wamp
2014-03-09 18:48 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\sk-SK
2014-03-09 18:48 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\sk-SK
2014-03-07 19:02 - 2014-03-07 19:02 - 02482771 _____ () C:\Users\q\Downloads\Gaiman,_Neil_Richard,_Reaves,_Michael_-_Mezisvet.doc.zip
2014-03-07 18:06 - 2012-02-14 19:48 - 00000000 ____D () C:\Users\q
2014-03-07 17:52 - 2014-03-07 17:52 - 00000000 ____D () C:\Users\q\AppData\Roaming\pdfforge
2014-03-07 17:43 - 2014-03-07 17:43 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_SynTP_01011.Wdf
2014-03-07 11:22 - 2014-03-07 17:47 - 02224775 _____ () C:\Users\q\Desktop\mrtvy na pekelnom vrchu.djvu
2014-03-05 19:55 - 2013-12-18 23:24 - 00000932 _____ () C:\Users\Public\Desktop\calibre 64bit.lnk
2014-03-05 19:55 - 2013-12-18 23:24 - 00000000 ____D () C:\Program Files\Calibre2
2014-03-05 19:43 - 2014-03-05 19:42 - 02037562 _____ () C:\Users\q\Downloads\geek.zip
2014-03-05 19:43 - 2014-03-05 19:34 - 60018688 _____ () C:\Users\q\Downloads\calibre-64bit-1.26.0.msi
2014-03-05 19:39 - 2014-03-05 19:39 - 00000000 ____D () C:\Windows\XSxS
2014-03-05 19:39 - 2014-03-05 19:39 - 00000000 ____D () C:\Users\q\AppData\Local\Xenocode
2014-03-05 19:39 - 2014-03-05 19:39 - 00000000 ____D () C:\Program Files (x86)\Xenocode
2014-03-05 19:32 - 2013-12-18 23:24 - 00000000 ____D () C:\Users\q\AppData\Roaming\calibre
2014-03-05 18:31 - 2012-02-14 19:54 - 00000000 ____D () C:\Users\q\AppData\Roaming\GHISLER
2014-03-05 18:30 - 2012-02-14 16:12 - 00000000 ____D () C:\totalcmd
2014-03-05 16:53 - 2014-03-05 16:50 - 00304801 _____ () C:\Users\q\Downloads\makro_v2.9.7.zip
2014-03-05 16:40 - 2014-03-05 16:40 - 00002758 _____ () C:\Windows\System32\Tasks\RunSpeccy
2014-03-04 20:04 - 2014-03-04 20:04 - 00000000 ____D () C:\Users\q\AppData\Local\Skype
2014-03-04 20:04 - 2013-12-11 15:32 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-03-04 20:04 - 2013-12-11 15:32 - 00000000 ____D () C:\ProgramData\Skype
2014-03-04 19:38 - 2014-03-04 19:38 - 00092519 _____ () C:\Users\q\Downloads\db42963xjoomla.sql.zip
2014-03-04 19:32 - 2012-02-14 19:49 - 00000000 ___RD () C:\Users\q\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-03-04 18:28 - 2014-02-16 22:27 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-03-04 18:17 - 2014-03-04 18:15 - 00000000 ____D () C:\ProgramData\SystemExplorer
2014-03-04 18:15 - 2014-03-04 18:15 - 00000000 ____D () C:\Program Files (x86)\System Explorer
2014-03-04 18:14 - 2014-03-04 18:13 - 01979952 _____ (Mister Group ) C:\Users\q\Downloads\SystemExplorerSetup_460.exe
2014-03-04 16:10 - 2014-03-04 16:10 - 00000000 ____D () C:\Users\q\AppData\Roaming\Auslogics
2014-03-02 09:03 - 2014-03-02 09:02 - 06013140 _____ () C:\Users\q\Downloads\CDBurnerXP-x64-4.5.2.4478.zip
2014-03-01 07:05 - 2014-03-12 20:38 - 23133696 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-03-01 06:17 - 2014-03-12 20:39 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-03-01 06:16 - 2014-03-12 20:39 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-03-01 05:58 - 2014-03-12 20:39 - 02765824 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-03-01 05:52 - 2014-03-12 20:39 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-03-01 05:51 - 2014-03-12 20:39 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-03-01 05:42 - 2014-03-12 20:39 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-03-01 05:40 - 2014-03-12 20:39 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-03-01 05:37 - 2014-03-12 20:39 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-03-01 05:33 - 2014-03-12 20:39 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-03-01 05:33 - 2014-03-12 20:38 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-03-01 05:32 - 2014-03-12 20:38 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-03-01 05:30 - 2014-03-12 20:39 - 17074688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-03-01 05:23 - 2014-03-12 20:38 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-03-01 05:17 - 2014-03-12 20:39 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-03-01 05:11 - 2014-03-12 20:39 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-03-01 05:02 - 2014-03-12 20:38 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-03-01 04:54 - 2014-03-12 20:38 - 05768704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-03-01 04:52 - 2014-03-12 20:39 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-03-01 04:51 - 2014-03-12 20:39 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-03-01 04:47 - 2014-03-12 20:39 - 02168320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-03-01 04:43 - 2014-03-12 20:39 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-03-01 04:43 - 2014-03-12 20:39 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-03-01 04:42 - 2014-03-12 20:39 - 00627200 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-03-01 04:40 - 2014-03-12 20:39 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-03-01 04:38 - 2014-03-12 20:39 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-03-01 04:37 - 2014-03-12 20:39 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-03-01 04:35 - 2014-03-12 20:39 - 02041856 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-03-01 04:18 - 2014-03-12 20:38 - 13051904 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-03-01 04:16 - 2014-03-12 20:39 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-03-01 04:14 - 2014-03-12 20:39 - 04244480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-03-01 04:10 - 2014-03-12 20:38 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-03-01 04:03 - 2014-03-12 20:39 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-03-01 04:00 - 2014-03-12 20:39 - 01964032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-03-01 03:57 - 2014-03-12 20:39 - 11266048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-03-01 03:38 - 2014-03-12 20:39 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-03-01 03:32 - 2014-03-12 20:39 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-03-01 03:27 - 2014-03-12 20:39 - 01156096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-03-01 03:25 - 2014-03-12 20:39 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-03-01 03:25 - 2014-03-12 20:38 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll

Some content of TEMP:
====================
C:\Users\q\AppData\Local\Temp\geek_x64.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit



===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================



==================== MBR and Partition Table ==================


==================== Scheduled Tasks (whitelisted) ==================

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-667187236-2916497924-1121132568-1004Core.job => C:\Users\test1\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-667187236-2916497924-1121132568-1004UA.job => C:\Users\test1\AppData\Local\Google\Update\GoogleUpdate.exe

==================== Alternate Data Streams (whitelisted) ==================


==================== Security Center ==================

AV: ESET NOD32 Antivirus 4.2 (Enabled - Up to date) {77DEAFED-8149-104B-25A1-21771CA47CD1}
AS: ESET NOD32 Antivirus 4.2 (Enabled - Up to date) {CCBF4E09-A773-1FC5-1F11-1A056723366C}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}



===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)


***** Velikost "Plochy" *****

Velikost slozky "C:\Users\q\Desktop" je 14 MB.


***** Startup Programs *****

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AtherosBtStack
"C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update
"C:\Users\q\AppData\Local\Google\Update\GoogleUpdate.exe" /c [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IgfxTray
"C:\Windows\system32\igfxtray.exe" [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\mylbx
C:\Program Files\My Lockbox\mylbx.exe /a [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Persistence
"C:\Windows\system32\igfxpers.exe" [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"


***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]


***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000


==================== End Of Log ==============================

Re: Vypínanie notebooku

Napsal: 25 bře 2014 21:13
od Rudy
Zdravím!
V logu nevidím nic, co by podobný problém mohlo způsobovat. Co jste instaloval těsně před tím, než se problém objevil?

Re: Vypínanie notebooku

Napsal: 25 bře 2014 21:30
od cuco11
Je to skolsky notebook, ktory manzelka dostala ako sluzobny uz bol pouzivany, ma ho asi mesac moc ho nepouzivala az teraz kus viac takze tazko povedat ci sa to zacalo prejavovat az teraz. Co som posledne doinstaloval, pdfcreator, systemexplorer, FastStone Image viever, DVD Shrink, DVD Decripter, Img Burn, 7zip a MPC Home Cinema, standardne programy krore bezne vyuzivame.

Re: Vypínanie notebooku

Napsal: 25 bře 2014 22:28
od Rudy
OK. Je toho dost. Zkuste obnovu systému k datu, kdy korektně fungoval.

Re: Vypínanie notebooku

Napsal: 26 bře 2014 19:50
od cuco11
Dobre, dakujem pekne za kontrolu, aj za rady do buducna, dôležite je že tam nie je žiadna háveď - po systemovej stranke si to už budem hľadať čo to spôsobuje.

Ešte raz ďakujem a prajem pekny večer

Re: Vypínanie notebooku

Napsal: 26 bře 2014 19:52
od Rudy
Nemáte zač! :)

Re: Vypínanie notebooku

Napsal: 26 bře 2014 20:24
od cuco11
Tak som to nakoniec nasiel. V TaskSheduler bola uloha odkazujuca na shutdown.bat nastavena na kazdy den na 19:00. Muselo to byt nastavene tak ze az den predtym ulohu zmeskal tak sa aktivoval po nasledujucom zapnuti. Preto sa niekedy vypol aj 2 x za den. Pritom som uz TaskSheduler predtym pozeral a nic som si tam nevsimol, az teraz pri cisteni cez CCleaner. Moja chyba. Uz len zistit naco to tam a kto nastavil :-)

Re: Vypínanie notebooku

Napsal: 26 bře 2014 20:47
od Rudy
Aha. To je určitě ono.
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz