Prosím o kytvoření líontrolu notebooku, nesnesitelně se seká

Zpráva

William_CZ · #1 Příspěvek od **William_CZ** » 17 pro 2014 17:03

Dobrý den, prosím o pomoc s pročištěním počítače. Kamarádka mi dala na pročištění notebook, že se jí neskutečně seká a má pravdu, stáhnout si program na vytvořit log mi trvalo dvě hrozné hodiny. Má netbook Lenovo Ideapad. Pročištění PC a registrů programem CCleaner sem dělal v pondělí.

Zde je log:
aLogfile of random's system information tool 1.10 (written by random/random)
Run by Martina at 2014-12-17 16:40:58
Microsoft Windows 7 Starter Service Pack 1
System drive C: has 153 GB (80%) free of 192 GB
Total RAM: 1013 MB (16% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 16:44:01, on 17.12.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17496)
Boot mode: Normal
a
Running processes:
C:\windows\system32\taskhost.exe
C:\windows\system32\Dwm.exe
C:\windows\Explorer.EXE
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Lenovo\VeriFace\PManage.exe
C:\Program Files\Lenovo\Energy Management\utility.exe
C:\Program Files\Lenovo\Energy Management\Energy Management.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Atheros\Bluetooth Suite\BtvStack.exe
C:\windows\system32\igfxsrvc.exe
C:\Program Files\Atheros\Bluetooth Suite\AthBtTray.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Alwil Software\Avast5\avastui.exe
C:\Program Files\System Explorer\SystemExplorer.exe
C:\Program Files\T-Mobile\Web'n'walk Manager\Manager.exe
C:\Users\Martina\AppData\Local\Facebook\Messenger\2.1.4814.0\FacebookMessenger.exe
C:\windows\system32\taskeng.exe
C:\Program Files\CCleaner\CCleaner.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\Motorola\Bluetooth\btplayerctrl.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\windows\system32\wbem\unsecapp.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Users\Martina\Desktop\RSIT.exe
C:\Program Files\trend micro\Martina.exe
C:\windows\system32\SearchFilterHost.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.t-zones.cz
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.tb.ask.com/index.jhtml?n=78 ... NTL_CZE_45
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: IESpeakDoc - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files\Atheros\Bluetooth Suite\IEPlugIn.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
O4 - HKLM\..\Run: [RtHDVBg] C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe /FORPCEE3
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [VeriFaceManager] C:\Program Files\Lenovo\VeriFace\PManage.exe
O4 - HKLM\..\Run: [EnergyUtility] C:\Program Files\Lenovo\Energy Management\utility.exe
O4 - HKLM\..\Run: [Energy Management] C:\Program Files\Lenovo\Energy Management\Energy Management.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [IgfxTray] C:\windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [AtherosBtStack] "C:\Program Files\Atheros\Bluetooth Suite\BtvStack.exe"
O4 - HKLM\..\Run: [AthBtTray] "C:\Program Files\Atheros\Bluetooth Suite\AthBtTray.exe"
O4 - HKLM\..\Run: [BTMTrayAgent] rundll32.exe "C:\Program Files\Motorola\Bluetooth\btmshell.dll",TrayApp
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\Alwil Software\Avast5\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [SystemExplorerAutoStart] "C:\Program Files\System Explorer\SystemExplorer.exe" /TRAY
O4 - HKCU\..\Run: [T-Mobile Communication Centre] "C:\Program Files\T-Mobile\Web'n'walk Manager\Manager.exe" -autorun
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: Facebook Messenger.lnk = C:\Users\Martina\AppData\Local\Facebook\Messenger\2.1.4814.0\FacebookMessenger.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105
O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: (no name) - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files\Atheros\Bluetooth Suite\IEPlugIn.dll
O9 - Extra 'Tools' menuitem: Send by Bluetooth to - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files\Atheros\Bluetooth Suite\IEPlugIn.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: @C:\Program Files\Motorola\Bluetooth\btmshell.dll,-247 - {bd707fe6-39f6-4bda-9265-86a76719bdc5} - C:\Program Files\Motorola\Bluetooth\btmiesend.htm
O9 - Extra 'Tools' menuitem: @C:\Program Files\Motorola\Bluetooth\btmshell.dll,-247 - {bd707fe6-39f6-4bda-9265-86a76719bdc5} - C:\Program Files\Motorola\Bluetooth\btmiesend.htm
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Web'n'walk Manager mobile equipment installation service (ameisvc) - Gemfor s.r.o. - C:\Program Files\T-Mobile\Web'n'walk Manager\ameisvc.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Bluetooth Device Manager - Motorola, Inc. - C:\Program Files\Motorola\Bluetooth\devmgrsrv.exe
O23 - Service: Bluetooth Media Service - Motorola, Inc. - C:\Program Files\Motorola\Bluetooth\audiosrv.exe
O23 - Service: Bluetooth OBEX Service - Motorola, Inc. - C:\Program Files\Motorola\Bluetooth\obexsrv.exe
O23 - Service: DeviceVM Meta Data Export Service (DvmMDES) - DeviceVM, Inc. - C:\QSTART.SYS\config\DVMExportService.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: IGRS - Lenovo Group Limited - C:\Program Files\Lenovo\ReadyComm\common\IGRS.exe
O23 - Service: ioloToolService (ioloService) - iolo technologies, LLC - C:\Program Files\SafePCRepair\ioloToolService.exe
O23 - Service: Lenovo ReadyComm AppSvc - Lenovo Group Limited - C:\Program Files\Lenovo\ReadyComm\AppSvc.exe
O23 - Service: Lenovo ReadyComm ConnSvc - Lenovo Group Limited - C:\Program Files\Lenovo\ReadyComm\ConnSvc.exe
O23 - Service: System Explorer Service (SystemExplorerHelpService) - Mister Group - C:\Program Files\System Explorer\service\SystemExplorerService.exe

--
End of file - 10972 bytes

======Scheduled tasks folder======

C:\windows\tasks\Adobe Flash Player Updater.job - C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\windows\tasks\FacebookUpdateTaskUserS-1-5-21-3630831923-836820803-3741860235-1000Core.job - C:\Users\Martina\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver
C:\windows\tasks\FacebookUpdateTaskUserS-1-5-21-3630831923-836820803-3741860235-1000UA.job - C:\Users\Martina\AppData\Local\Facebook\Update\FacebookUpdate.exe /ua /installsource scheduler
C:\windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-11-15 62376]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2013-10-08 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126}]
CIESpeechBHO Class - C:\Program Files\Atheros\Bluetooth Suite\IEPlugIn.dll [2011-03-13 60576]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll [2014-10-03 457712]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 562904]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-10-08 171944]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [2010-03-03 284696]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2010-05-18 9210400]
"RtHDVBg"=C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe [2010-05-18 1407520]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2009-11-25 1594664]
"VeriFaceManager"=C:\Program Files\Lenovo\VeriFace\PManage.exe [2010-12-12 3122528]
"EnergyUtility"=C:\Program Files\Lenovo\Energy Management\utility.exe [2009-10-23 4114288]
"Energy Management"=C:\Program Files\Lenovo\Energy Management\Energy Management.exe [2009-10-23 5064560]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe [2010-11-15 35736]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-11-15 932288]
"IgfxTray"=C:\windows\system32\igfxtray.exe [2010-10-25 141848]
"HotKeysCmds"=C:\windows\system32\hkcmd.exe [2010-10-25 173592]
"Persistence"=C:\windows\system32\igfxpers.exe [2010-10-25 150552]
"AtherosBtStack"=C:\Program Files\Atheros\Bluetooth Suite\BtvStack.exe [2011-03-13 490656]
"AthBtTray"=C:\Program Files\Atheros\Bluetooth Suite\AthBtTray.exe [2011-03-13 302240]
"BTMTrayAgent"=C:\Program Files\Motorola\Bluetooth\btmshell.dll [2010-11-30 20899408]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336]
"AvastUI.exe"=C:\Program Files\Alwil Software\Avast5\AvastUI.exe [2014-10-05 4085896]
"SystemExplorerAutoStart"=C:\Program Files\System Explorer\SystemExplorer.exe [2014-12-02 3390688]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"T-Mobile Communication Centre"=C:\Program Files\T-Mobile\Web'n'walk Manager\Manager.exe [2011-06-30 1363984]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner.exe [2014-11-21 5282584]

C:\Users\Martina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Facebook Messenger.lnk - C:\Users\Martina\AppData\Local\Facebook\Messenger\2.1.4814.0\FacebookMessenger.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\windows\system32\igfxdev.dll [2010-10-25 218112]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"msacm.siren"=sirenacm.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 3 months======

2014-12-17 16:41:02 ----D---- C:\Program Files\trend micro
2014-12-17 16:40:58 ----D---- C:\rsit
2014-12-17 16:40:41 ----D---- C:\ad8846382d74a3e4c6953e962370
2014-12-15 17:08:38 ----D---- C:\ProgramData\SystemExplorer
2014-12-15 17:08:36 ----D---- C:\Program Files\System Explorer
2014-12-15 16:19:32 ----D---- C:\Program Files\CCleaner
2014-12-10 19:21:42 ----D---- C:\windows\system32\appraiser
2014-12-10 17:03:58 ----A---- C:\windows\system32\mfps.dll
2014-12-10 17:03:58 ----A---- C:\windows\system32\mfpmp.exe
2014-12-10 17:03:58 ----A---- C:\windows\system32\mferror.dll
2014-12-10 17:03:57 ----A---- C:\windows\system32\rrinstaller.exe
2014-12-10 17:03:57 ----A---- C:\windows\system32\mf.dll
2014-12-09 22:47:27 ----A---- C:\windows\system32\charmap.exe
2014-12-09 22:47:24 ----A---- C:\windows\system32\drivers\tdx.sys
2014-12-09 22:47:22 ----A---- C:\windows\system32\WindowsCodecs.dll
2014-12-09 22:47:16 ----A---- C:\windows\system32\aitstatic.exe
2014-12-09 22:47:15 ----A---- C:\windows\system32\appraiser.dll
2014-12-09 22:47:15 ----A---- C:\windows\system32\aepic.dll
2014-12-09 22:47:15 ----A---- C:\windows\system32\aeinv.dll
2014-12-09 22:47:14 ----A---- C:\windows\system32\invagent.dll
2014-12-09 22:47:13 ----A---- C:\windows\system32\generaltel.dll
2014-12-09 22:47:13 ----A---- C:\windows\system32\devinv.dll
2014-12-09 22:47:11 ----A---- C:\windows\system32\aepdu.dll
2014-12-09 22:46:58 ----A---- C:\windows\system32\JavaScriptCollectionAgent.dll
2014-12-09 22:46:58 ----A---- C:\windows\system32\ieetwproxystub.dll
2014-12-09 22:46:58 ----A---- C:\windows\system32\ieetwcollector.exe
2014-12-09 22:46:56 ----A---- C:\windows\system32\MsSpellCheckingFacility.exe
2014-12-09 22:46:56 ----A---- C:\windows\system32\jsproxy.dll
2014-12-09 22:46:56 ----A---- C:\windows\system32\ieUnatt.exe
2014-12-09 22:46:55 ----A---- C:\windows\system32\vbscript.dll
2014-12-09 22:46:55 ----A---- C:\windows\system32\jscript9diag.dll
2014-12-09 22:46:55 ----A---- C:\windows\system32\ieetwcollectorres.dll
2014-12-09 22:46:55 ----A---- C:\windows\system32\dxtmsft.dll
2014-12-09 22:46:53 ----A---- C:\windows\system32\wininet.dll
2014-12-09 22:46:49 ----A---- C:\windows\system32\dxtrans.dll
2014-12-09 22:46:48 ----A---- C:\windows\system32\ieui.dll
2014-12-09 22:46:46 ----A---- C:\windows\system32\mshtmled.dll
2014-12-09 22:46:45 ----A---- C:\windows\system32\mshtmlmedia.dll
2014-12-09 22:46:43 ----A---- C:\windows\system32\MshtmlDac.dll
2014-12-09 22:46:42 ----A---- C:\windows\system32\iertutil.dll
2014-12-09 22:46:39 ----A---- C:\windows\system32\jscript9.dll
2014-12-09 22:46:36 ----A---- C:\windows\system32\mshtml.dll
2014-12-09 22:46:32 ----A---- C:\windows\system32\iernonce.dll
2014-12-09 22:46:32 ----A---- C:\windows\system32\ie4uinit.exe
2014-12-09 22:46:31 ----A---- C:\windows\system32\urlmon.dll
2014-12-09 22:46:31 ----A---- C:\windows\system32\iedkcs32.dll
2014-12-09 22:46:31 ----A---- C:\windows\system32\ieapfltr.dll
2014-12-09 22:46:30 ----A---- C:\windows\system32\msfeeds.dll
2014-12-09 22:46:24 ----A---- C:\windows\system32\msrating.dll
2014-12-09 22:46:24 ----A---- C:\windows\system32\iesetup.dll
2014-12-09 22:46:23 ----A---- C:\windows\system32\ieframe.dll
2014-12-09 22:42:31 ----A---- C:\windows\system32\tzres.dll
2014-12-09 22:36:46 ----A---- C:\windows\system32\WsmSvc.dll
2014-12-09 22:36:45 ----A---- C:\windows\system32\WsmWmiPl.dll
2014-12-09 22:36:45 ----A---- C:\windows\system32\WSManMigrationPlugin.dll
2014-12-09 22:36:45 ----A---- C:\windows\system32\WSManHTTPConfig.exe
2014-12-09 22:36:44 ----A---- C:\windows\system32\WsmAuto.dll
2014-11-19 16:52:11 ----A---- C:\windows\system32\pku2u.dll
2014-11-19 16:52:09 ----A---- C:\windows\system32\kerberos.dll
2014-11-19 04:31:16 ----A---- C:\windows\system32\FM20.DLL
2014-11-14 18:45:25 ----A---- C:\windows\system32\oleaut32.dll
2014-11-14 18:45:12 ----A---- C:\windows\system32\IMJP10K.DLL
2014-11-14 18:45:03 ----A---- C:\windows\system32\msi.dll
2014-11-14 18:44:43 ----A---- C:\windows\system32\msxml3.dll
2014-11-14 18:44:42 ----A---- C:\windows\system32\msxml3r.dll
2014-11-14 18:44:38 ----A---- C:\windows\system32\audiosrv.dll
2014-11-14 18:44:38 ----A---- C:\windows\system32\AUDIOKSE.dll
2014-11-14 18:44:38 ----A---- C:\windows\system32\AudioEng.dll
2014-11-14 18:44:37 ----A---- C:\windows\system32\EncDump.dll
2014-11-14 18:44:37 ----A---- C:\windows\system32\AudioSes.dll
2014-11-14 18:44:35 ----A---- C:\windows\system32\win32k.sys
2014-11-14 18:44:25 ----A---- C:\windows\system32\schannel.dll
2014-11-14 18:44:25 ----A---- C:\windows\system32\ncrypt.dll
2014-11-14 18:44:23 ----A---- C:\windows\system32\wdigest.dll
2014-11-14 18:44:23 ----A---- C:\windows\system32\msv1_0.dll
2014-11-14 18:44:22 ----A---- C:\windows\system32\TSpkg.dll
2014-11-14 18:44:21 ----A---- C:\windows\system32\credssp.dll
2014-11-14 18:43:58 ----A---- C:\windows\system32\packager.dll
2014-11-14 18:43:51 ----A---- C:\windows\system32\termsrv.dll
2014-11-14 18:43:51 ----A---- C:\windows\system32\adtschema.dll
2014-11-14 18:43:50 ----A---- C:\windows\system32\drivers\ksecpkg.sys
2014-11-14 18:43:48 ----A---- C:\windows\system32\lsasrv.dll
2014-11-14 18:43:47 ----A---- C:\windows\system32\msaudite.dll
2014-10-16 19:30:26 ----A---- C:\windows\system32\mscorier.dll
2014-10-16 19:30:25 ----A---- C:\windows\system32\dfshim.dll
2014-10-16 19:30:23 ----A---- C:\windows\system32\mscories.dll
2014-10-16 19:30:01 ----A---- C:\windows\system32\mstscax.dll
2014-10-16 19:29:59 ----A---- C:\windows\system32\mstsc.exe
2014-10-16 19:29:55 ----A---- C:\windows\system32\winsta.dll
2014-10-16 19:29:54 ----A---- C:\windows\system32\winlogon.exe
2014-10-16 19:29:53 ----A---- C:\windows\system32\rdpcorekmts.dll
2014-10-16 19:29:53 ----A---- C:\windows\system32\drivers\rdpwd.sys
2014-10-16 19:29:51 ----A---- C:\windows\system32\aaclient.dll
2014-10-16 19:29:48 ----A---- C:\windows\system32\drivers\tssecsrv.sys
2014-10-16 19:20:36 ----A---- C:\windows\system32\rastls.dll
2014-10-04 18:58:34 ----D---- C:\Users\Martina\AppData\Roaming\AVAST Software
2014-10-03 14:17:10 ----A---- C:\windows\system32\drivers\aswStm.sys
2014-10-03 14:17:10 ----A---- C:\windows\system32\drivers\aswHwid.sys
2014-10-03 14:16:38 ----A---- C:\windows\avastSS.scr
2014-10-03 14:10:16 ----D---- C:\ProgramData\AVAST Software
2014-10-01 21:26:56 ----D---- C:\ProgramData\iolo
2014-10-01 21:26:49 ----D---- C:\Program Files\SafePCRepair
2014-10-01 21:25:55 ----D---- C:\Program Files\SafePCRepair_89
2014-10-01 17:07:58 ----A---- C:\windows\system32\qdvd.dll

======List of files/folders modified in the last 3 months======

2014-12-17 16:41:13 ----D---- C:\windows\Temp
2014-12-17 16:41:02 ----D---- C:\Program Files
2014-12-17 16:27:54 ----D---- C:\windows\System32
2014-12-17 16:27:53 ----A---- C:\windows\system32\PerfStringBackup.INI
2014-12-17 16:27:49 ----D---- C:\windows\inf
2014-12-17 16:22:39 ----D---- C:\windows\system32\config
2014-12-17 16:22:10 ----D---- C:\windows\tracing
2014-12-17 16:21:13 ----D---- C:\ProgramData\VeriFace
2014-12-15 17:19:47 ----D---- C:\Windows
2014-12-15 17:18:21 ----D---- C:\Program Files\Microsoft Silverlight
2014-12-15 17:17:24 ----SHD---- C:\windows\Installer
2014-12-15 17:08:38 ----HD---- C:\ProgramData
2014-12-15 16:56:58 ----D---- C:\windows\Panther
2014-12-15 16:56:58 ----D---- C:\windows\ModemLogs
2014-12-15 16:56:55 ----D---- C:\windows\Logs
2014-12-15 16:56:55 ----D---- C:\windows\debug
2014-12-15 16:44:01 ----D---- C:\windows\winsxs
2014-12-15 16:20:50 ----D---- C:\windows\system32\Tasks
2014-12-15 09:51:56 ----D---- C:\windows\system32\catroot
2014-12-15 09:51:55 ----D---- C:\windows\system32\catroot2
2014-12-14 13:47:56 ----D---- C:\windows\system32\cs-CZ
2014-12-10 20:16:24 ----A---- C:\windows\system32\FlashPlayerApp.exe
2014-12-10 19:21:44 ----D---- C:\windows\system32\drivers
2014-12-10 19:21:43 ----SD---- C:\windows\system32\CompatTel
2014-12-10 19:21:43 ----D---- C:\windows\AppCompat
2014-12-10 19:21:42 ----SD---- C:\ProgramData\Microsoft
2014-12-10 19:21:42 ----D---- C:\windows\PolicyDefinitions
2014-12-10 19:21:41 ----D---- C:\windows\system32\en-US
2014-12-10 19:21:39 ----D---- C:\Program Files\Internet Explorer
2014-12-10 17:10:07 ----D---- C:\ProgramData\Microsoft Help
2014-12-10 16:56:40 ----D---- C:\windows\system32\MRT
2014-12-10 16:44:50 ----A---- C:\windows\system32\MRT.exe
2014-12-08 20:46:02 ----SHD---- C:\System Volume Information
2014-12-06 14:22:12 ----SD---- C:\Users\Martina\AppData\Roaming\Microsoft
2014-12-04 13:25:36 ----D---- C:\Program Files\Google
2014-11-24 14:04:58 ----N---- C:\windows\system32\MpSigStub.exe
2014-11-15 11:06:33 ----D---- C:\windows\Microsoft.NET
2014-11-15 10:56:20 ----RSD---- C:\windows\assembly
2014-11-14 21:38:57 ----RSD---- C:\windows\Fonts
2014-11-12 20:59:08 ----D---- C:\windows\Tasks
2014-10-03 14:16:38 ----A---- C:\windows\system32\aswBoot.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\windows\system32\drivers\aswRvrt.sys [2014-10-03 49944]
R0 aswVmm;avast! VM Monitor; C:\windows\system32\drivers\aswVmm.sys [2014-10-03 192352]
R0 iaStor;Intel AHCI Controller; C:\windows\system32\DRIVERS\iaStor.sys [2010-03-03 435736]
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R1 aswRdr;aswRdr; C:\windows\system32\drivers\aswRdr2.sys [2014-10-03 81768]
R1 aswSnx;aswSnx; C:\windows\system32\drivers\aswSnx.sys [2014-10-03 779536]
R1 aswSP;aswSP; C:\windows\system32\drivers\aswSP.sys [2014-10-05 414520]
R1 vwififlt;Virtual WiFi Filter Driver; C:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R2 aswHwid;avast! HardwareID; C:\windows\system32\drivers\aswHwid.sys [2014-10-03 24184]
R2 aswMonFlt;aswMonFlt; C:\windows\system32\drivers\aswMonFlt.sys [2014-10-03 67824]
R2 aswStm;aswStm; C:\windows\system32\drivers\aswStm.sys [2014-10-03 71944]
R3 ACPIVPC;Lenovo Virtual Power Controller Driver; C:\windows\system32\DRIVERS\AcpiVpc.sys [2010-01-20 23136]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\windows\system32\DRIVERS\athr.sys [2010-12-07 1885184]
R3 BTATH_BUS;Atheros Bluetooth Bus; C:\windows\system32\DRIVERS\btath_bus.sys [2011-03-13 24736]
R3 BtFilter;BtFilter; C:\windows\system32\DRIVERS\btfilter.sys [2011-03-13 242336]
R3 BthEnum;Ovladač pro Bluetooth Request Block; C:\windows\system32\drivers\BthEnum.sys [2009-07-14 34816]
R3 BthPan;Bluetooth Device (Personal Area Network); C:\windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696]
R3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\windows\System32\Drivers\BTHUSB.sys [2011-04-28 60416]
R3 huawei_enumerator;huawei_enumerator; C:\windows\system32\DRIVERS\ew_jubusenum.sys [2011-01-30 73216]
R3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd32.sys [2010-10-25 4807168]
R3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
R3 RTL8167;Realtek 8167 NT Driver; C:\windows\system32\DRIVERS\Rt86win7.sys [2011-01-26 337512]
R3 SynTP;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2009-11-25 230576]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\windows\system32\DRIVERS\vwifimp.sys [2009-07-14 14336]
R3 wdmirror;wdmirror; C:\windows\system32\DRIVERS\WDMirror.sys [2009-07-16 11792]
S2 Parvdm;Parvdm; C:\windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;AMD AGP Bus Filter Driver; C:\windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 ATHDFU;Atheros Valkyrie USB BootROM; C:\windows\System32\Drivers\AthDfu.sys [2011-03-13 43680]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 BCM43XX;Broadcom 802.11 Network Adapter Driver; C:\windows\system32\DRIVERS\bcmwl6.sys [2009-11-05 2494968]
S3 Bridge0;Bridge0; C:\windows\system32\drivers\WDBridge.sys [2009-07-28 63240]
S3 BTHPORT;Ovladač portu Bluetooth; C:\windows\System32\Drivers\BTHport.sys [2012-07-06 393728]
S3 BTMCOM;Bluetooth Serial Port; C:\windows\System32\Drivers\btmcom.sys [2010-11-30 41344]
S3 btmhsf;btmhsf; C:\windows\system32\DRIVERS\btmhsf.sys [2011-07-19 225280]
S3 BTMUSB;Motorola Bluetooth Radio Service; C:\windows\System32\Drivers\btmusb.sys [2010-11-30 402432]
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device; C:\windows\system32\DRIVERS\ew_hwusbdev.sys [2010-07-27 102784]
S3 huawei_cdcacm;huawei_cdcacm; C:\windows\system32\DRIVERS\ew_jucdcacm.sys [2011-02-25 90368]
S3 iBtFltCoex;iBtFltCoex; C:\windows\system32\DRIVERS\iBtFltCoex.sys [2011-07-20 47104]
S3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\windows\system32\drivers\RTKVHDA.sys [2010-05-18 3096992]
S3 k57nd60x;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0; C:\windows\system32\DRIVERS\k57nd60x.sys [2009-07-13 229888]
S3 netw5v32;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 32 Bit; C:\windows\system32\DRIVERS\netw5v32.sys [2009-07-13 4231168]
S3 pciide;pciide; C:\windows\system32\drivers\pciide.sys [2009-07-14 12368]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\windows\System32\Drivers\RtsUStor.sys [2010-07-20 194664]
S3 RTL8192Ce;Realtek Wireless LAN 802.11n PCI-E NIC Driver; C:\windows\system32\DRIVERS\rtl8192Ce.sys [2011-02-25 1004136]
S3 sisagp;SIS AGP Bus Filter; C:\windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 usbsmi;Lenovo EasyCamera; C:\windows\system32\DRIVERS\SMIksdrv.sys [2010-01-22 172160]
S3 viaagp;VIA AGP Bus Filter; C:\windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 WimFltr;WimFltr; C:\windows\system32\DRIVERS\wimfltr.sys [2008-08-06 128104]
S3 WinUsb;WinUsb; C:\windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968]
S3 wsvd;wsvd; C:\windows\system32\DRIVERS\wsvd.sys [2009-07-21 81704]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 ameisvc;Web'n'walk Manager mobile equipment installation service; C:\Program Files\T-Mobile\Web'n'walk Manager\ameisvc.exe [2011-06-24 123120]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2014-10-03 50344]
R2 Bluetooth OBEX Service;Bluetooth OBEX Service; C:\Program Files\Motorola\Bluetooth\obexsrv.exe [2010-11-30 508680]
R2 DvmMDES;DeviceVM Meta Data Export Service; C:\QSTART.SYS\config\DVMExportService.exe [2009-12-29 331776]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-03-03 13336]
R2 IGRS;IGRS; C:\Program Files\Lenovo\ReadyComm\common\IGRS.exe [2009-07-14 38152]
R2 ReadyComm.DirectRouter;ReadyComm.DirectRouter; C:\windows\System32\IgrsSvcs.exe [2009-07-14 20992]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 1710464]
R3 Bluetooth Device Manager;Bluetooth Device Manager; C:\Program Files\Motorola\Bluetooth\devmgrsrv.exe [2010-11-30 3511888]
R3 Bluetooth Media Service;Bluetooth Media Service; C:\Program Files\Motorola\Bluetooth\audiosrv.exe [2010-11-30 901384]
R3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2011-09-26 647680]
R3 SystemExplorerHelpService;System Explorer Service; C:\Program Files\System Explorer\service\SystemExplorerService.exe [2014-12-02 566496]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2014-10-21 107912]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-12-10 267440]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2014-10-21 107912]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\windows\system32\IEEtwCollector.exe [2014-11-22 102912]
S3 ioloService;ioloToolService; C:\Program Files\SafePCRepair\ioloToolService.exe [2013-11-21 2625800]
S3 Lenovo ReadyComm AppSvc;Lenovo ReadyComm AppSvc; C:\Program Files\Lenovo\ReadyComm\AppSvc.exe [2009-08-14 509192]
S3 Lenovo ReadyComm ConnSvc;Lenovo ReadyComm ConnSvc; C:\Program Files\Lenovo\ReadyComm\ConnSvc.exe [2009-09-22 579400]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
S3 PS_MDP;ReadyComm Presentation Space Helper Service; C:\windows\System32\IgrsSvcs.exe [2009-07-14 20992]
S4 aspnet_state;ASP.NET State Service; C:\windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2013-09-11 46688]
S4 NetMsmqActivator;@C:\windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 wlcrasvc;Windows Live Mesh remote connections service; C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 51040]

-----------------EOF-----------------

#2 Příspěvek od **altrok** » 17 pro 2014 17:13

Zdravim

Od kdy se tyto problemy vyskytuji? Jednim z reseni by mohlo byt vratit stav systemu k datu, kdy jeste korektne fungoval... pokud je to s PC tak neunosne, jak popisujete (stazeni + vytvoreni logu 2 hodiny), je mozne toto udelat v nouzovem rezimu... Start - Spustit -> rstrui.exe a zvolit drivejsi bod obnoveni.

Otestujte take stav HDD

Stahnete Crystal Disk Info (CDI) http://sourceforge.jp/frs/redir.php?m=j ... o6_2_1.zip
v archivu spustte soubor DiskInfo.exe
ve spustenem programu kliknete nahore na Upravy -> Kopirovat (log mate nyni zkopirovany ve schrance)
log vlozte do dalsi odpovedi (Ctrl + V)

William_CZ · #3 Příspěvek od **William_CZ** » 17 pro 2014 17:23

Zde je log z disku. Jako disk je rozdělený na 2 sektory C a D. Na disku C je systéma na disku D jen soubory a tam je volných jen 40MB. Možná i to dělá problémy i když to není systémový disk. No a s tou obnovou kdo ví. Ona mě s tím upomíná už asi půl roku a že to už bylo i nějakou dobu před tím. V logu nic špatného nebylo?

Zde je log k tomu disku:
----------------------------------------------------------------------------
CrystalDiskInfo 6.2.2 (C) 2008-2014 hiyohiyo
Crystal Dew World : http://crystalmark.info/
----------------------------------------------------------------------------

OS : Windows 7 Starter SP1 [6.1 Build 7601] (x86)
Date : 2014/12/17 17:20:45

-- Controller Map ----------------------------------------------------------
+ Intel(R) ICH7R/DH SATA AHCI Controller [ATA]
- HITACHI HTS543225A7A384

-- Disk List ---------------------------------------------------------------
(1) HITACHI HTS543225A7A384 : 250,0 GB [0/0/0, pd1]

----------------------------------------------------------------------------
(1) HITACHI HTS543225A7A384
----------------------------------------------------------------------------
Model : HITACHI HTS543225A7A384
Firmware : ESBZB90A
Serial Number : E2024242JRS14J
Disk Size : 250,0 GB (8,4/137,4/250,0/250,0)
Buffer Size : 8192 KB
Queue Depth : 32
# of Sectors : 488397168
Rotation Rate : 5400 RPM
Interface : Serial ATA
Major Version : ATA8-ACS
Minor Version : ATA8-ACS version 6
Transfer Mode : SATA/300 | SATA/300
Power On Hours : 8976 hod.
Power On Count : 1491 krát
Temperature : 33 C (91 F)
Health Status : Dobrý
Features : S.M.A.R.T., APM, 48bit LBA, NCQ
APM Level : 4080h [ON]
AAM Level : ----

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 100 100 _62 000000000000 Počet chyb čtení
02 100 100 _40 000000000000 Průchodnost disku
03 214 214 _33 000E00000001 Čas na roztočení ploten
04 100 100 __0 0000000005D3 Počet spuštění/zastavení
05 100 100 __5 000000000000 Počet přemapovaných sektorů
07 100 100 _67 000000000000 Počet chybných hledání
08 100 100 _40 000000000000 Čas potřebný na vyhledání
09 _80 _80 __0 000000002310 Hodin v činnosti
0A 100 100 _60 000000000000 Počet opakovaných pokusů o roztočení ploten
0C 100 100 __0 0000000005D3 Počet cyklů zapnutí zařízení
BF 100 100 __0 000000000000 Počet udalostí zaznamenaných otřesovým senzorem
C0 100 100 __0 000000000026 Počet vypnutí disku
C1 _99 _99 __0 000000004223 Počet cyklů načítání/vymazání
C2 181 181 __0 003900000021 Teplota
C4 100 100 __0 000000000000 Počet udalostí s číslem realokování sektorů
C5 100 100 __0 000000000000 Počet podezřelých sektorů
C6 100 100 __0 000000000000 Počet neopravitelných sektorů
C7 200 200 __0 000000000000 Počet chyb v kontrolním součtu UltraDMA
DF 100 100 __0 000000000000 Zatížení budiče magnetických hlav způsobené opakovanými úkony

-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 045A 3FFF C837 0010 0000 0000 003F 0000 0000 0000
010: 2020 2020 2020 4532 3032 3432 3432 4A52 5331 344A
020: 0003 4000 0004 4553 425A 4239 3041 4849 5441 4348
030: 4920 4854 5335 3433 3232 3541 3741 3338 3420 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 4000 0F00
050: 4000 0200 0200 0007 3FFF 0010 003F FC10 00FB 0110
060: FFFF 0FFF 0000 0007 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 001F 1F06 0004 004C 0044
080: 01FC 0028 346B 7D09 6123 3469 BC09 6123 203F 0028
090: 0029 4080 FFFE 0000 0000 0000 0000 0000 0000 0000
100: 5970 1D1C 0000 0000 0000 0000 4000 826C 5000 CCA6
110: 14E6 85A6 0000 0000 0000 0000 0000 0000 0000 401C
120: 401C 0000 0000 0000 0000 0000 0000 0000 0029 000B
130: 0000 0000 2182 1CF1 BA00 0000 4000 0400 0110 0000
140: 0000 0709 0807 0000 0000 0000 0000 0000 0000 0000
150: 0000 0000 425A 4239 0000 2802 0000 5DBD 2761 8000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0003 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 003D 0000 0000 0000
210: 0000 0000 0000 0000 0000 0000 0000 1518 0000 0000
220: 0000 0000 101F 0021 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0001 03E0 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 AEA5

-- SMART_READ_DATA ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 0B 00 64 64 00 00 00 00 00 00 00 02 05
010: 00 64 64 00 00 00 00 00 00 00 03 07 00 D6 D6 01
020: 00 00 00 0E 00 00 04 12 00 64 64 D3 05 00 00 00
030: 00 00 05 33 00 64 64 00 00 00 00 00 00 00 07 0B
040: 00 64 64 00 00 00 00 00 00 00 08 05 00 64 64 00
050: 00 00 00 00 00 00 09 12 00 50 50 10 23 00 00 00
060: 00 00 0A 13 00 64 64 00 00 00 00 00 00 00 0C 32
070: 00 64 64 D3 05 00 00 00 00 00 BF 0A 00 64 64 00
080: 00 00 00 00 00 00 C0 32 00 64 64 26 00 00 00 00
090: 00 00 C1 12 00 63 63 23 42 00 00 00 00 00 C2 02
0A0: 00 B5 B5 21 00 00 00 39 00 00 C4 32 00 64 64 00
0B0: 00 00 00 00 00 00 C5 22 00 64 64 00 00 00 00 00
0C0: 00 00 C6 08 00 64 64 00 00 00 00 00 00 00 C7 0A
0D0: 00 C8 C8 00 00 00 00 00 00 00 DF 0A 00 64 64 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 2D 00 01 5B
170: 03 00 01 00 02 52 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 85

-- SMART_READ_THRESHOLD ----------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 3E 00 00 00 00 00 00 00 00 00 00 02 28
010: 00 00 00 00 00 00 00 00 00 00 03 21 00 00 00 00
020: 00 00 00 00 00 00 04 00 00 00 00 00 00 00 00 00
030: 00 00 05 05 00 00 00 00 00 00 00 00 00 00 07 43
040: 00 00 00 00 00 00 00 00 00 00 08 28 00 00 00 00
050: 00 00 00 00 00 00 09 00 00 00 00 00 00 00 00 00
060: 00 00 0A 3C 00 00 00 00 00 00 00 00 00 00 0C 00
070: 00 00 00 00 00 00 00 00 00 00 BF 00 00 00 00 00
080: 00 00 00 00 00 00 C0 00 00 00 00 00 00 00 00 00
090: 00 00 C1 00 00 00 00 00 00 00 00 00 00 00 C2 00
0A0: 00 00 00 00 00 00 00 00 00 00 C4 00 00 00 00 00
0B0: 00 00 00 00 00 00 C5 00 00 00 00 00 00 00 00 00
0C0: 00 00 C6 00 00 00 00 00 00 00 00 00 00 00 C7 00
0D0: 00 00 00 00 00 00 00 00 00 00 DF 00 00 00 00 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 89

#4 Příspěvek od **altrok** » 17 pro 2014 17:28

Jde o to, ze obnova by byla nejrychlejsi volbou

Havet se najde, takze na ni podivame...

V ramci cisteni Vam budou vyprazdneny docasne adresare (vcetne Kose).

Ulozte na plochu AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/

ukoncete vsechny programy
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Scan, pote na Clean
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\AdwCleaner [Sx].txt), jehoz obsah mi zkopirujte do pristi odpovedi

Kdyby nastalo zlepseni, dejte mi to vedet

William_CZ · #5 Příspěvek od **William_CZ** » 17 pro 2014 17:47

Zde je log:
# AdwCleaner v4.105 - Report created 17/12/2014 at 17:39:10
# Updated 08/12/2014 by Xplode
# Database : 2014-12-16.1 [Live]
# Operating System : Windows 7 Starter Service Pack 1 (32 bits)
# Username : Martina - PC
# Running from : C:\Users\Martina\Desktop\adwcleaner_4.105.exe
# Option : Clean

***** [ Services ] *****

[#] Service Deleted : ioloService

***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\apn
Folder Deleted : C:\Program Files\SafePCRepair
Folder Deleted : C:\Program Files\SafePCRepair_89
Folder Deleted : C:\Users\Martina\AppData\Local\iac
Folder Deleted : C:\Users\Martina\AppData\Local\SafePCRepair_89
Folder Deleted : C:\Users\Martina\AppData\LocalLow\iac
Folder Deleted : C:\Users\Martina\AppData\LocalLow\SafePCRepair_89

***** [ Scheduled Tasks ] *****

***** [ Shortcuts ] *****

***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@SafePCRepair_89.com/Plugin
Key Deleted : HKLM\SOFTWARE\Classes\AppID\ioloToolService.exe
Key Deleted : HKLM\SOFTWARE\CLASSES\SafePCRepair_89.SettingsPlugin
Key Deleted : HKLM\SOFTWARE\CLASSES\SafePCRepair_89.SettingsPlugin.1
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{CFBE264C-912E-4DA5-B67B-790B27D6D338}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1FC509DF-4B29-4AB3-96E6-47C178D60287}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{5D13BF91-EA09-4ED8-9ACD-C6BAD32617B9}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8684a7c7-3ade-4208-ad43-ad57a1af352c}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{A12EFF0A-09BE-4C0F-9C9B-567AB42BDD4F}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{8684a7c7-3ade-4208-ad43-ad57a1af352c}
Key Deleted : HKCU\Software\SafePCRepair_89
Key Deleted : HKCU\Software\AppDataLow\Software\Mindspark
Key Deleted : HKCU\Software\AppDataLow\Software\SafePCRepair_89
Key Deleted : HKLM\SOFTWARE\DeviceVM
Key Deleted : HKLM\SOFTWARE\SafePCRepair_89
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SafePCRepair_89bar Uninstall Firefox
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\ask.com
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\icq.com
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\wlogin.icq.com

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17496

Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]

-\\ Google Chrome v39.0.2171.95

*************************

AdwCleaner[R0].txt - [2849 octets] - [17/12/2014 17:33:37]
AdwCleaner[S0].txt - [2695 octets] - [17/12/2014 17:39:10]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [2755 octets] ##########

#6 Příspěvek od **altrok** » 17 pro 2014 17:54

Ulozte na plochu zoek.exe http://hijackthis.nl/smeenk/zoek.htm

spustte jako spravce
do velkeho okna zkopirujte script uvedeny nize
kliknete na Run script
po restartu na Vas vyskoci log (pripadne jej najdete v C:\zoek-results.log) - vlozte mi jej do pristi odpovedi
Kód: Vybrat vše
```
autoclean;
emptyclsid;
emptyalltemp;
```

Kdyby nastalo zlepseni, dejte mi to vedet

William_CZ · #7 Příspěvek od **William_CZ** » 17 pro 2014 18:50

Mám pocit, že to už trochu začíná pomáhat, ale podle mě by to mělo být ještě svižnější tak jestli je v čem pokračovat tak bych čistil dál.

Log:

Zoek.exe v5.0.0.0 Updated 17-December-2014
Tool run by Martina on st 17.12.2014 at 17:58:10,18.
Microsoft Windows 7 Starter 6.1.7601 Service Pack 1 x86
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Martina\Desktop\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

17.12.2014 18:00:21 Zoek.exe System Restore Point Created Succesfully.

==== Empty Folders Check ======================

C:\PROGRA~2\Oracle deleted successfully
C:\Users\Martina\AppData\Local\CrashDumps deleted successfully
C:\Users\Martina\AppData\Local\VirtualStore deleted successfully

==== Deleting CLSID Registry Keys ======================

==== Deleting CLSID Registry Values ======================

==== Deleting Services ======================

==== Deleting Files \ Folders ======================

C:\windows\system32\appdata deleted
C:\windows\system32\config\systemprofile\Searches deleted

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]
"wrc@avast.com"="C:\Program Files\Alwil Software\Avast5\WebRep\FF" [03.10.2014 14:16]

==== Chromium Look ======================

Google Chrome Version: 39.0.2171.95 (Up to date, latest Stable version: 39.0.2171.95)

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
gomekmidlodglbbmalcneegieacbdmki - C:\Program Files\Alwil Software\Avast5\WebRep\Chrome\aswWebRepChrome.crx[03.10.2014 14:16]

Avast Online Security - Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"
"Default_Page_URL"="http://www.t-zones.cz"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Start Page"="http://www.google.com"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTer ... ORM=IE8SRC"

==== Empty IE Cache ======================

C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Martina\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Martina\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\windows\serviceprofiles\Localservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=4 folders=5 262996 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Martina\AppData\Local\Temp will be emptied at reboot
C:\windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\windows\Temp successfully emptied
C:\Users\Martina\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on st 17.12.2014 at 18:42:54,46 ======================

#8 Příspěvek od **altrok** » 17 pro 2014 21:44

Dejte novy log FRST.txt, prilozte i Addition.txt - http://forum.viry.cz/viewtopic.php?f=30&t=133101

William_CZ · #9 Příspěvek od **William_CZ** » 17 pro 2014 22:04

Je to tu:

===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================

==================== MBR and Partition Table ==================

==================== Scheduled Tasks (whitelisted) ==================

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\windows\Tasks\Adobe Flash Player Updater.job => C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3630831923-836820803-3741860235-1000Core.job => C:\Users\Martina\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3630831923-836820803-3741860235-1000UA.job => C:\Users\Martina\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe

==================== Alternate Data Streams (whitelisted) ==================

==================== Security Center ==================

AV: avast! Antivirus (Disabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Disabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)

***** Velikost "Plochy" *****

Velikost slozky "C:\Users\Martina\Desktop" je 423 MB.

***** Startup Programs *****

***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000

==================== End Of Log ==============================

#10 Příspěvek od **altrok** » 18 pro 2014 02:42

Odinstalujte stare verze Javy

Java(TM) 6 Update 26
Java 7 Update 45

Aktualizujte Adobe Flash Player a Adobe Reader.

frst.txt neni cely... vlozil jste jen jeho spodni cast. Vlozte jeho kompletni obsah. Pokud je toto kompletni obsah logu, vytvorte novy log bez pouziti FRSTLauncheru.

William_CZ · #11 Příspěvek od **William_CZ** » 18 pro 2014 19:11

Odinstalace a instalace provedeny, zde je log:

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 17-12-2014
Ran by Martina (administrator) on PC on 18-12-2014 18:54:52
Running from C:\Users\Martina\Desktop
Loaded Profile: Martina (Available profiles: Martina)
Platform: Microsoft Windows 7 Starter Service Pack 1 (X86) OS Language: Čeština (Česká republika)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(AVAST Software) C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Lenovo(beijing) Limited) C:\Program Files\Lenovo\Energy Management\utility.exe
(Lenovo (Beijing) Limited) C:\Program Files\Lenovo\Energy Management\Energy Management.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Atheros Communications) C:\Program Files\Atheros\Bluetooth Suite\BtvStack.exe
(Atheros Commnucations) C:\Program Files\Atheros\Bluetooth Suite\AthBtTray.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(AVAST Software) C:\Program Files\Alwil Software\Avast5\AvastUI.exe
(Mister Group) C:\Program Files\System Explorer\SystemExplorer.exe
(Gemfor s.r.o.) C:\Program Files\T-Mobile\Web'n'walk Manager\Manager.exe
(Facebook) C:\Users\Martina\AppData\Local\Facebook\Messenger\2.1.4814.0\FacebookMessenger.exe
(Motorola, Inc.) C:\Program Files\Motorola\Bluetooth\devmgrsrv.exe
(DeviceVM, Inc.) C:\QSTART.SYS\config\DVMExportService.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\ReadyComm\common\IGRS.exe
(Microsoft Corporation) C:\Windows\System32\IgrsSvcs.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(Motorola, Inc.) C:\Program Files\Motorola\Bluetooth\obexsrv.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(Gemfor s.r.o.) C:\Program Files\T-Mobile\Web'n'walk Manager\ameisvc.exe
(Macrovision Europe Ltd.) C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
(Mister Group) C:\Program Files\System Explorer\service\SystemExplorerService.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Motorola, Inc.) C:\Program Files\Motorola\Bluetooth\audiosrv.exe
(Motorola, Inc.) C:\Program Files\Motorola\Bluetooth\btplayerctrl.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe

==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [9210400 2010-05-18] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe [1407520 2010-05-18] (Realtek Semiconductor)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1594664 2009-11-25] (Synaptics Incorporated)
HKLM\...\Run: [EnergyUtility] => C:\Program Files\Lenovo\Energy Management\utility.exe [4114288 2009-10-23] (Lenovo(beijing) Limited)
HKLM\...\Run: [Energy Management] => C:\Program Files\Lenovo\Energy Management\Energy Management.exe [5064560 2009-10-23] (Lenovo (Beijing) Limited)
HKLM\...\Run: [AtherosBtStack] => C:\Program Files\Atheros\Bluetooth Suite\BtvStack.exe [490656 2011-03-13] (Atheros Communications)
HKLM\...\Run: [AthBtTray] => C:\Program Files\Atheros\Bluetooth Suite\AthBtTray.exe [302240 2011-03-13] (Atheros Commnucations)
HKLM\...\Run: [BTMTrayAgent] => rundll32.exe "C:\Program Files\Motorola\Bluetooth\btmshell.dll",TrayApp
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Alwil Software\Avast5\AvastUI.exe [5227112 2014-12-17] (AVAST Software)
HKLM\...\Run: [SystemExplorerAutoStart] => C:\Program Files\System Explorer\SystemExplorer.exe [3390688 2014-12-02] (Mister Group)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [926896 2012-09-23] (Adobe Systems Incorporated)
HKU\S-1-5-21-3630831923-836820803-3741860235-1000\...\Run: [T-Mobile Communication Centre] => C:\Program Files\T-Mobile\Web'n'walk Manager\Manager.exe [1363984 2011-06-30] (Gemfor s.r.o.)
HKU\S-1-5-21-3630831923-836820803-3741860235-1000\...\MountPoints2: F - F:\Autorun.exe
HKU\S-1-5-21-3630831923-836820803-3741860235-1000\...\MountPoints2: {67147e0a-42ba-11e1-bd09-806e6f6e6963} - E:\Autorun.exe
HKU\S-1-5-21-3630831923-836820803-3741860235-1000\...\MountPoints2: {c249979b-42b2-11e1-9327-90a4de60b6c7} - E:\Autorun.exe
HKU\S-1-5-21-3630831923-836820803-3741860235-1000\...\MountPoints2: {c24997a7-42b2-11e1-9327-90a4de60b6c7} - E:\Autorun.exe
HKU\S-1-5-21-3630831923-836820803-3741860235-1000\...\MountPoints2: {c24997e6-42b2-11e1-9327-90a4de60b6c7} - E:\Autorun.exe
HKU\S-1-5-21-3630831923-836820803-3741860235-1000\...\MountPoints2: {c249980d-42b2-11e1-9327-90a4de60b6c7} - E:\Autorun.exe
HKU\S-1-5-21-3630831923-836820803-3741860235-1000\...\MountPoints2: {c2499834-42b2-11e1-9327-90a4de60b6c7} - F:\Autorun.exe
Startup: C:\Users\Martina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Facebook Messenger.lnk
ShortcutTarget: Facebook Messenger.lnk -> C:\Users\Martina\AppData\Local\Facebook\Messenger\2.1.4814.0\FacebookMessenger.exe (Facebook)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Alwil Software\Avast5\ashShell.dll (AVAST Software)
ShellIconOverlayIdentifiers: [VeriFace Enc] -> {771C7324-DA80-49D3-8017-753B0AF60951} => C:\windows\system32\IcnOvrly.dll ()

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3630831923-836820803-3741860235-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
BHO: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files\Atheros\Bluetooth Suite\IEPlugIn.dll (Atheros Commnucations)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre6\bin\jp2ssv.dll No File
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/s ... wflash.cab
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF32_16_0_0_235.dll ()
FF Plugin: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF Plugin: @java.com/DTPlugin -> C:\Program Files\Java\jre6\bin\npDeployJava1.dll No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.31211.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3630831923-836820803-3741860235-1000: facebook.com/fbDesktopPlugin -> C:\Users\Martina\AppData\Local\Facebook\Messenger\2.1.4814.0\npFbDesktopPlugin.dll (Facebook, Inc.)
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\Alwil Software\Avast5\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\Alwil Software\Avast5\WebRep\FF [2013-04-24]

Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\39.0.2171.95\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\39.0.2171.95\ppGoogleNaClPluginChrome.dll No File
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files\Google\Chrome\Application\39.0.2171.95\pdf.dll ()
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll No File
CHR Plugin: (Java Deployment Toolkit 6.0.260.3) - C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll No File
CHR Plugin: (Java(TM) Platform SE 6 U26) - C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll No File
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL No File
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL No File
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll No File
CHR Plugin: (Windows Live Photo Gallery) - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (Facebook Desktop) - C:\Users\Martina\AppData\Local\Facebook\Messenger\2.1.4651.0\npFbDesktopPlugin.dll No File
CHR Plugin: (Shockwave Flash) - C:\windows\system32\Macromed\Flash\NPSWF32_11_5_502_135.dll No File
CHR Plugin: (Silverlight Plug-In) - c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll No File
CHR Profile: C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (AdBlock) - C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-12-17]
CHR Extension: (Avast Online Security) - C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-10-30]
CHR Extension: (Peněženka Google) - C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-10-27]
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\Alwil Software\Avast5\WebRep\Chrome\aswWebRepChrome.crx [2014-12-17]

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 ameisvc; C:\Program Files\T-Mobile\Web'n'walk Manager\ameisvc.exe [123120 2011-06-24] (Gemfor s.r.o.)
R2 avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [50344 2014-12-17] (AVAST Software)
R3 Bluetooth Device Manager; C:\Program Files\Motorola\Bluetooth\devmgrsrv.exe [3511888 2010-11-30] (Motorola, Inc.)
R3 Bluetooth Media Service; C:\Program Files\Motorola\Bluetooth\audiosrv.exe [901384 2010-11-30] (Motorola, Inc.)
R2 Bluetooth OBEX Service; C:\Program Files\Motorola\Bluetooth\obexsrv.exe [508680 2010-11-30] (Motorola, Inc.)
R2 DvmMDES; C:\QSTART.SYS\config\DVMExportService.exe [331776 2009-12-29] (DeviceVM, Inc.) [File not signed]
R3 FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [647680 2011-09-26] (Macrovision Europe Ltd.) [File not signed]
R2 IGRS; C:\Program Files\Lenovo\ReadyComm\common\IGRS.exe [38152 2009-07-14] (Lenovo Group Limited)
S3 Lenovo ReadyComm AppSvc; C:\Program Files\Lenovo\ReadyComm\AppSvc.exe [509192 2009-08-14] (Lenovo Group Limited)
S3 Lenovo ReadyComm ConnSvc; C:\Program Files\Lenovo\ReadyComm\ConnSvc.exe [579400 2009-09-22] (Lenovo Group Limited)
S3 PS_MDP; C:\Program Files\Lenovo\ReadyComm\PS_MDP.dll [276296 2009-07-16] (Lenovo Group Limited)
R2 ReadyComm.DirectRouter; C:\Program Files\Lenovo\ReadyComm\common\router.dll [103688 2009-07-14] (Lenovo Group Limited)
R3 SystemExplorerHelpService; C:\Program Files\System Explorer\service\SystemExplorerService.exe [566496 2014-12-02] (Mister Group)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R3 ACPIVPC; C:\windows\System32\DRIVERS\AcpiVpc.sys [23136 2010-01-20] (Lenovo Corporation)
R2 aswHwid; C:\windows\system32\drivers\aswHwid.sys [24184 2014-12-17] ()
R2 aswMonFlt; C:\windows\system32\drivers\aswMonFlt.sys [70384 2014-12-17] (AVAST Software)
R1 aswRdr; C:\windows\system32\drivers\aswRdr2.sys [81768 2014-12-17] (AVAST Software)
R0 aswRvrt; C:\windows\system32\Drivers\aswRvrt.sys [49944 2014-12-17] ()
R1 aswSnx; C:\windows\system32\drivers\aswSnx.sys [787800 2014-12-17] (AVAST Software)
R1 aswSP; C:\windows\system32\drivers\aswSP.sys [423784 2014-12-17] (AVAST Software)
R2 aswStm; C:\windows\system32\drivers\aswStm.sys [91496 2014-12-17] (AVAST Software)
R0 aswVmm; C:\windows\system32\Drivers\aswVmm.sys [206248 2014-12-17] ()
S3 ATHDFU; C:\windows\System32\Drivers\AthDfu.sys [43680 2011-03-13] (Windows (R) Win 7 DDK provider)
S3 Bridge0; C:\windows\System32\drivers\WDBridge.sys [63240 2009-07-28] (Lenovo)
R3 BTATH_BUS; C:\windows\System32\DRIVERS\btath_bus.sys [24736 2011-03-13] (Atheros)
R3 BtFilter; C:\windows\System32\DRIVERS\btfilter.sys [242336 2011-03-13] (Atheros)
S3 BTMCOM; C:\windows\System32\Drivers\btmcom.sys [41344 2010-11-30] (Motorola, Inc.)
S3 btmhsf; C:\windows\System32\DRIVERS\btmhsf.sys [225280 2011-07-19] (Intel Corporation)
S3 BTMUSB; C:\windows\System32\Drivers\btmusb.sys [402432 2010-11-30] (Motorola, Inc.)
S3 huawei_cdcacm; C:\windows\System32\DRIVERS\ew_jucdcacm.sys [90368 2011-02-25] (Huawei Technologies Co., Ltd.)
S3 iBtFltCoex; C:\windows\System32\DRIVERS\iBtFltCoex.sys [47104 2011-07-20] (Intel Corporation)
S3 RTL8192Ce; C:\windows\System32\DRIVERS\rtl8192Ce.sys [1004136 2011-02-25] (Realtek Semiconductor Corporation )
S3 usbsmi; C:\windows\System32\DRIVERS\SMIksdrv.sys [172160 2010-01-22] (SMI)
R3 wdmirror; C:\windows\System32\DRIVERS\WDMirror.sys [11792 2009-07-16] (Windows (R) Codename Longhorn DDK provider)
S3 wsvd; C:\windows\System32\DRIVERS\wsvd.sys [81704 2009-07-21] (CyberLink)

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)

==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-12-18 18:36 - 2014-12-18 18:36 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-12-18 18:36 - 2014-12-18 18:36 - 00001949 _____ () C:\Users\Public\Desktop\Adobe Reader XI.lnk
2014-12-18 18:36 - 2014-12-18 18:36 - 00000000 ____D () C:\Program Files\Common Files\Adobe
2014-12-18 18:21 - 2014-12-18 18:22 - 38624400 _____ (Adobe Systems Incorporated) C:\Users\Martina\Desktop\AdbeRdr11000_cs_CZ.exe
2014-12-17 22:06 - 2014-12-17 22:06 - 00004122 _____ () C:\Users\Martina\Desktop\Addition.7z
2014-12-17 22:02 - 2014-12-18 19:00 - 00015954 _____ () C:\Users\Martina\Desktop\FRST.txt
2014-12-17 22:01 - 2014-12-17 22:02 - 00011287 _____ () C:\Users\Martina\Desktop\Addition.txt
2014-12-17 21:57 - 2014-12-17 21:57 - 00015327 _____ () C:\Users\Martina\Desktop\LM.bat
2014-12-17 21:56 - 2014-12-17 21:56 - 00112640 _____ (forum.viry.cz) C:\Users\Martina\Desktop\FRSTLauncher.exe
2014-12-17 21:54 - 2014-12-17 21:54 - 00112640 _____ (forum.viry.cz) C:\Users\Martina\Desktop\Nepotvrzeno 964738.crdownload
2014-12-17 21:53 - 2014-12-18 18:55 - 00000000 ____D () C:\FRST
2014-12-17 21:51 - 2014-12-17 21:51 - 01113600 _____ (Farbar) C:\Users\Martina\Desktop\FRST.exe
2014-12-17 20:32 - 2014-12-17 20:32 - 00044034 _____ () C:\Users\Martina\Documents\cc_20141217_203227.reg
2014-12-17 20:09 - 2014-12-17 20:09 - 00000000 ____D () C:\Users\Martina\AppData\Roaming\LibreOffice
2014-12-17 19:56 - 2014-12-17 19:56 - 00002016 _____ () C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2014-12-17 19:54 - 2014-12-17 19:54 - 00291352 _____ (AVAST Software) C:\windows\system32\aswBoot.exe
2014-12-17 19:54 - 2014-12-17 19:54 - 00043152 _____ (AVAST Software) C:\windows\avastSS.scr
2014-12-17 19:42 - 2014-12-17 19:42 - 00001426 _____ () C:\Users\Public\Desktop\LibreOffice 4.3.lnk
2014-12-17 19:41 - 2014-12-17 19:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 4.3
2014-12-17 19:37 - 2014-12-17 19:41 - 00000000 ____D () C:\Program Files\LibreOffice 4
2014-12-17 19:17 - 2014-12-17 19:17 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2014-12-17 19:17 - 2014-12-17 19:17 - 00000000 ____D () C:\Program Files\7-Zip
2014-12-17 19:13 - 2014-12-17 19:13 - 00001024 _____ () C:\Users\Public\Desktop\Picasa 3.lnk
2014-12-17 19:12 - 2014-12-17 19:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Picasa 3
2014-12-17 18:42 - 2014-12-17 18:42 - 00000000 ____D () C:\Users\Martina\AppData\Local\VirtualStore
2014-12-17 18:40 - 2014-12-17 17:58 - 00024064 _____ () C:\windows\zoek-delete.exe
2014-12-17 17:59 - 2014-12-17 18:42 - 00004597 _____ () C:\zoek-results.log
2014-12-17 17:58 - 2014-12-17 18:35 - 00000000 ____D () C:\zoek_backup
2014-12-17 17:57 - 2014-12-17 17:57 - 01295360 _____ () C:\Users\Martina\Desktop\zoek.exe
2014-12-17 17:33 - 2014-12-17 17:39 - 00000000 ____D () C:\AdwCleaner
2014-12-17 17:32 - 2014-12-17 17:32 - 02166272 _____ () C:\Users\Martina\Desktop\adwcleaner_4.105.exe
2014-12-17 17:19 - 2014-12-17 17:19 - 00001886 _____ () C:\Users\Martina\Desktop\CrystalDiskInfo.lnk
2014-12-17 17:19 - 2014-12-17 17:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskInfo
2014-12-17 17:19 - 2014-12-17 17:19 - 00000000 ____D () C:\Program Files\CrystalDiskInfo
2014-12-17 17:18 - 2014-12-17 17:18 - 02997112 _____ (Crystal Dew World ) C:\Users\Martina\Desktop\CrystalDiskInfo6_2_2-en.exe
2014-12-17 16:41 - 2014-12-17 16:44 - 00000000 ____D () C:\Program Files\trend micro
2014-12-17 16:40 - 2014-12-17 16:44 - 00000000 ____D () C:\rsit
2014-12-17 16:36 - 2014-12-17 16:38 - 01107968 _____ () C:\Users\Martina\Desktop\RSIT.exe
2014-12-15 17:19 - 2014-12-18 18:51 - 00000560 _____ () C:\windows\setupact.log
2014-12-15 17:19 - 2014-12-15 17:19 - 00000000 _____ () C:\windows\setuperr.log
2014-12-15 17:18 - 2014-12-18 18:50 - 00005130 _____ () C:\windows\PFRO.log
2014-12-15 17:08 - 2014-12-15 17:14 - 00000000 ____D () C:\ProgramData\SystemExplorer
2014-12-15 17:08 - 2014-12-15 17:08 - 00001004 _____ () C:\Users\Public\Desktop\System Explorer.lnk
2014-12-15 17:08 - 2014-12-15 17:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Explorer
2014-12-15 17:08 - 2014-12-15 17:08 - 00000000 ____D () C:\Program Files\System Explorer
2014-12-15 17:07 - 2014-12-15 17:07 - 01903184 _____ (Mister Group ) C:\Users\Martina\Downloads\SystemExplorerSetup_610.exe
2014-12-15 17:06 - 2014-12-15 17:07 - 02486655 _____ () C:\Users\Martina\Downloads\SystemExplorerPortable_610.zip
2014-12-15 16:59 - 2014-12-15 16:59 - 00192858 _____ () C:\Users\Martina\Documents\cc_20141215_165859.reg
2014-12-15 16:20 - 2014-12-15 16:20 - 00000925 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-12-15 16:20 - 2014-12-15 16:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2014-12-15 16:19 - 2014-12-15 16:20 - 00000000 ____D () C:\Program Files\CCleaner
2014-12-15 16:08 - 2014-12-15 16:11 - 05162080 _____ (Piriform Ltd) C:\Users\Martina\Downloads\ccsetup500.exe
2014-12-10 19:21 - 2014-12-10 19:21 - 00000000 ____D () C:\windows\system32\appraiser
2014-12-10 17:03 - 2014-10-18 02:33 - 03209728 _____ (Microsoft Corporation) C:\windows\system32\mf.dll
2014-12-10 17:03 - 2014-07-07 02:40 - 00103424 _____ (Microsoft Corporation) C:\windows\system32\mfps.dll
2014-12-10 17:03 - 2014-07-07 02:39 - 00050176 _____ (Microsoft Corporation) C:\windows\system32\rrinstaller.exe
2014-12-10 17:03 - 2014-07-07 02:39 - 00023040 _____ (Microsoft Corporation) C:\windows\system32\mfpmp.exe
2014-12-10 17:03 - 2014-07-07 02:37 - 00002048 _____ (Microsoft Corporation) C:\windows\system32\mferror.dll
2014-12-09 22:47 - 2014-12-04 05:38 - 00728576 _____ (Microsoft Corporation) C:\windows\system32\appraiser.dll
2014-12-09 22:47 - 2014-12-04 05:38 - 00610304 _____ (Microsoft Corporation) C:\windows\system32\invagent.dll
2014-12-09 22:47 - 2014-12-04 05:38 - 00337920 _____ (Microsoft Corporation) C:\windows\system32\generaltel.dll
2014-12-09 22:47 - 2014-12-04 05:38 - 00315392 _____ (Microsoft Corporation) C:\windows\system32\devinv.dll
2014-12-09 22:47 - 2014-12-04 05:38 - 00202752 _____ (Microsoft Corporation) C:\windows\system32\aepdu.dll
2014-12-09 22:47 - 2014-12-04 05:38 - 00159744 _____ (Microsoft Corporation) C:\windows\system32\aepic.dll
2014-12-09 22:47 - 2014-12-04 05:34 - 00873984 _____ (Microsoft Corporation) C:\windows\system32\aeinv.dll
2014-12-09 22:47 - 2014-12-02 00:28 - 01160872 _____ (Microsoft Corporation) C:\windows\system32\aitstatic.exe
2014-12-09 22:47 - 2014-11-11 03:44 - 01230336 _____ (Microsoft Corporation) C:\windows\system32\WindowsCodecs.dll
2014-12-09 22:47 - 2014-11-11 02:32 - 00074752 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tdx.sys
2014-12-09 22:47 - 2014-10-30 02:45 - 00155136 _____ (Microsoft Corporation) C:\windows\system32\charmap.exe
2014-12-09 22:46 - 2014-11-27 02:10 - 00342200 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll
2014-12-09 22:46 - 2014-11-22 03:22 - 19749376 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2014-12-09 22:46 - 2014-11-22 03:20 - 02724864 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2014-12-09 22:46 - 2014-11-22 03:20 - 00004096 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollectorres.dll
2014-12-09 22:46 - 2014-11-22 03:07 - 00501248 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2014-12-09 22:46 - 2014-11-22 03:07 - 00062464 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll
2014-12-09 22:46 - 2014-11-22 03:06 - 00047616 _____ (Microsoft Corporation) C:\windows\system32\ieetwproxystub.dll
2014-12-09 22:46 - 2014-11-22 03:05 - 00064000 _____ (Microsoft Corporation) C:\windows\system32\MshtmlDac.dll
2014-12-09 22:46 - 2014-11-22 03:01 - 02277888 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2014-12-09 22:46 - 2014-11-22 02:59 - 00047104 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll
2014-12-09 22:46 - 2014-11-22 02:58 - 00030720 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll
2014-12-09 22:46 - 2014-11-22 02:56 - 00478208 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll
2014-12-09 22:46 - 2014-11-22 02:55 - 00115712 _____ (Microsoft Corporation) C:\windows\system32\ieUnatt.exe
2014-12-09 22:46 - 2014-11-22 02:55 - 00102912 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollector.exe
2014-12-09 22:46 - 2014-11-22 02:54 - 00620032 _____ (Microsoft Corporation) C:\windows\system32\jscript9diag.dll
2014-12-09 22:46 - 2014-11-22 02:48 - 00667648 _____ (Microsoft Corporation) C:\windows\system32\MsSpellCheckingFacility.exe
2014-12-09 22:46 - 2014-11-22 02:45 - 00418304 _____ (Microsoft Corporation) C:\windows\system32\dxtmsft.dll
2014-12-09 22:46 - 2014-11-22 02:40 - 00060416 _____ (Microsoft Corporation) C:\windows\system32\JavaScriptCollectionAgent.dll
2014-12-09 22:46 - 2014-11-22 02:36 - 00168960 _____ (Microsoft Corporation) C:\windows\system32\msrating.dll
2014-12-09 22:46 - 2014-11-22 02:35 - 00076288 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2014-12-09 22:46 - 2014-11-22 02:33 - 00285696 _____ (Microsoft Corporation) C:\windows\system32\dxtrans.dll
2014-12-09 22:46 - 2014-11-22 02:29 - 04299264 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2014-12-09 22:46 - 2014-11-22 02:23 - 00688640 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2014-12-09 22:46 - 2014-11-22 02:23 - 00684544 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2014-12-09 22:46 - 2014-11-22 02:22 - 02052096 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2014-12-09 22:46 - 2014-11-22 02:21 - 01155072 _____ (Microsoft Corporation) C:\windows\system32\mshtmlmedia.dll
2014-12-09 22:46 - 2014-11-22 02:13 - 12836864 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2014-12-09 22:46 - 2014-11-22 02:00 - 01888256 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2014-12-09 22:46 - 2014-11-22 01:56 - 01307136 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2014-12-09 22:46 - 2014-11-22 01:54 - 00710144 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll
2014-12-09 22:42 - 2014-11-08 03:45 - 00002048 _____ (Microsoft Corporation) C:\windows\system32\tzres.dll
2014-12-09 22:36 - 2014-10-03 02:45 - 01177088 _____ (Microsoft Corporation) C:\windows\system32\WsmSvc.dll
2014-12-09 22:36 - 2014-10-03 02:45 - 00248832 _____ (Microsoft Corporation) C:\windows\system32\WSManMigrationPlugin.dll
2014-12-09 22:36 - 2014-10-03 02:45 - 00214016 _____ (Microsoft Corporation) C:\windows\system32\WsmWmiPl.dll
2014-12-09 22:36 - 2014-10-03 02:45 - 00145920 _____ (Microsoft Corporation) C:\windows\system32\WsmAuto.dll
2014-12-09 22:36 - 2014-10-03 02:44 - 00198656 _____ (Microsoft Corporation) C:\windows\system32\WSManHTTPConfig.exe
2014-11-26 16:09 - 2014-11-26 16:11 - 00000000 ____D () C:\Users\Martina\Desktop\sady bižu
2014-11-26 16:08 - 2014-11-26 16:09 - 00000000 ____D () C:\Users\Martina\Desktop\přívěsky
2014-11-19 16:52 - 2014-11-11 03:44 - 00550912 _____ (Microsoft Corporation) C:\windows\system32\kerberos.dll
2014-11-19 16:52 - 2014-11-11 03:44 - 00186880 _____ (Microsoft Corporation) C:\windows\system32\pku2u.dll
2014-11-19 04:31 - 2014-11-19 04:31 - 01217192 _____ (Microsoft Corporation) C:\windows\system32\FM20.DLL

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-12-18 18:59 - 2009-07-14 05:34 - 00016480 ____H () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-12-18 18:59 - 2009-07-14 05:34 - 00016480 ____H () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-12-18 18:55 - 2010-12-12 08:59 - 01048666 _____ () C:\windows\WindowsUpdate.log
2014-12-18 18:51 - 2012-10-22 11:33 - 00000936 _____ () C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-12-18 18:51 - 2012-10-22 11:32 - 00000914 _____ () C:\windows\Tasks\Adobe Flash Player Updater.job
2014-12-18 18:51 - 2010-12-12 09:53 - 09234488 _____ () C:\FaceProv.log
2014-12-18 18:51 - 2009-07-14 05:53 - 00000006 ____H () C:\windows\Tasks\SA.DAT
2014-12-18 18:44 - 2012-10-22 11:31 - 00701616 _____ (Adobe Systems Incorporated) C:\windows\system32\FlashPlayerApp.exe
2014-12-18 18:44 - 2012-10-22 11:31 - 00071344 _____ (Adobe Systems Incorporated) C:\windows\system32\FlashPlayerCPLApp.cpl
2014-12-18 18:44 - 2012-01-19 17:40 - 00000000 ____D () C:\Users\Martina\AppData\Local\Adobe
2014-12-18 18:36 - 2010-12-12 09:27 - 00000000 ____D () C:\ProgramData\Adobe
2014-12-18 18:36 - 2010-12-12 09:27 - 00000000 ____D () C:\Program Files\Adobe
2014-12-18 18:09 - 2011-02-16 19:17 - 00000000 ____D () C:\Program Files\Java
2014-12-18 18:09 - 2010-12-12 09:48 - 00000012 ____H () C:\dvmexp.idx
2014-12-18 18:05 - 2012-10-22 11:33 - 00000940 _____ () C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-12-18 17:59 - 2010-12-12 09:35 - 00000000 ____D () C:\ProgramData\VeriFace
2014-12-17 21:11 - 2009-07-14 03:37 - 00000000 ____D () C:\windows\Microsoft.NET
2014-12-17 20:51 - 2012-01-19 16:36 - 00102952 _____ () C:\Users\Martina\AppData\Local\GDIPFONTCACHEV1.DAT
2014-12-17 20:50 - 2009-07-14 05:33 - 00394936 _____ () C:\windows\system32\FNTCACHE.DAT
2014-12-17 20:47 - 2012-08-21 18:26 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-12-17 20:45 - 2011-04-26 09:10 - 00000000 ____D () C:\Program Files\Microsoft.NET
2014-12-17 20:45 - 2009-07-14 03:37 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2014-12-17 19:56 - 2013-04-24 19:11 - 00787800 _____ (AVAST Software) C:\windows\system32\Drivers\aswsnx.sys
2014-12-17 19:56 - 2012-01-19 16:34 - 00423784 _____ (AVAST Software) C:\windows\system32\Drivers\aswsp.sys
2014-12-17 19:54 - 2014-10-03 14:17 - 00091496 _____ (AVAST Software) C:\windows\system32\Drivers\aswStm.sys
2014-12-17 19:54 - 2014-10-03 14:17 - 00024184 _____ () C:\windows\system32\Drivers\aswHwid.sys
2014-12-17 19:54 - 2013-04-24 19:11 - 00206248 _____ () C:\windows\system32\Drivers\aswVmm.sys
2014-12-17 19:54 - 2013-04-24 19:11 - 00081768 _____ (AVAST Software) C:\windows\system32\Drivers\aswRdr2.sys
2014-12-17 19:54 - 2013-04-24 19:11 - 00049944 _____ () C:\windows\system32\Drivers\aswRvrt.sys
2014-12-17 19:54 - 2012-01-19 16:34 - 00070384 _____ (AVAST Software) C:\windows\system32\Drivers\aswMonFlt.sys
2014-12-17 19:14 - 2012-10-22 11:32 - 00000000 ____D () C:\Users\Martina\AppData\Local\Google
2014-12-17 19:12 - 2012-10-22 11:32 - 00000000 ____D () C:\Program Files\Google
2014-12-17 16:27 - 2010-12-12 09:08 - 01618698 _____ () C:\windows\system32\PerfStringBackup.INI
2014-12-17 16:22 - 2009-07-14 03:37 - 00000000 ____D () C:\windows\tracing
2014-12-17 16:20 - 2009-07-14 05:53 - 00032622 _____ () C:\windows\Tasks\SCHEDLGU.TXT
2014-12-15 17:19 - 2012-06-26 15:46 - 00000990 _____ () C:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3630831923-836820803-3741860235-1000UA.job
2014-12-15 17:19 - 2012-06-26 15:46 - 00000968 _____ () C:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3630831923-836820803-3741860235-1000Core.job
2014-12-15 17:18 - 2010-12-12 09:42 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-12-15 17:17 - 2010-12-12 09:43 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2014-12-15 16:56 - 2009-07-29 11:27 - 00000000 ____D () C:\windows\Panther
2014-12-13 14:23 - 2012-10-22 11:34 - 00002089 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-12-10 19:21 - 2014-05-06 13:44 - 00000000 ___SD () C:\windows\system32\CompatTel
2014-12-10 19:21 - 2009-07-14 03:37 - 00000000 ____D () C:\windows\AppCompat
2014-12-10 16:56 - 2013-07-14 23:12 - 00000000 ____D () C:\windows\system32\MRT
2014-12-10 16:44 - 2011-04-26 09:22 - 109818608 _____ (Microsoft Corporation) C:\windows\system32\MRT.exe
2014-11-26 16:10 - 2014-10-30 20:23 - 00000000 ____D () C:\Users\Martina\Desktop\náušnice
2014-11-26 16:09 - 2014-11-01 19:12 - 00000000 ____D () C:\Users\Martina\Desktop\prsteny
2014-11-26 16:07 - 2014-10-02 13:40 - 00000000 ____D () C:\Users\Martina\Desktop\nehtění
2014-11-24 14:04 - 2011-02-23 16:10 - 00229000 ____N (Microsoft Corporation) C:\windows\system32\MpSigStub.exe

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\windows\explorer.exe => File is digitally signed
C:\windows\system32\winlogon.exe => File is digitally signed
C:\windows\system32\wininit.exe => File is digitally signed
C:\windows\system32\svchost.exe => File is digitally signed
C:\windows\system32\services.exe => File is digitally signed
C:\windows\system32\User32.dll => File is digitally signed
C:\windows\system32\userinit.exe => File is digitally signed
C:\windows\system32\rpcss.dll => File is digitally signed
C:\windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2014-08-26 12:48

==================== End Of Log ============================

#12 Příspěvek od **altrok** » 19 pro 2014 15:22

Velikost plochy by nemela presahovat 200 MB. Snizuje se pak start i samotny chod celeho PC.

Do Poznamkoveho bloku (Start -> spustit -> notepad) zkopirujte obsah bileho pole
ulozte na plochu jako fixlist (Typ souboru: Textovy dokument)
znovu spustte FRST a kliknete na Fix

po restartu na Vas vyskoci fixlog (pripadne bude ulozen na Plose), jehoz obsah mi vlozte do pristi odpovedi

Kód: Vybrat vše

Start
CloseProcesses:
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [926896 2012-09-23] (Adobe Systems Incorporated)
HKU\S-1-5-21-3630831923-836820803-3741860235-1000\...\MountPoints2: F - F:\Autorun.exe
HKU\S-1-5-21-3630831923-836820803-3741860235-1000\...\MountPoints2: {67147e0a-42ba-11e1-bd09-806e6f6e6963} - E:\Autorun.exe
HKU\S-1-5-21-3630831923-836820803-3741860235-1000\...\MountPoints2: {c249979b-42b2-11e1-9327-90a4de60b6c7} - E:\Autorun.exe
HKU\S-1-5-21-3630831923-836820803-3741860235-1000\...\MountPoints2: {c24997a7-42b2-11e1-9327-90a4de60b6c7} - E:\Autorun.exe
HKU\S-1-5-21-3630831923-836820803-3741860235-1000\...\MountPoints2: {c24997e6-42b2-11e1-9327-90a4de60b6c7} - E:\Autorun.exe
HKU\S-1-5-21-3630831923-836820803-3741860235-1000\...\MountPoints2: {c249980d-42b2-11e1-9327-90a4de60b6c7} - E:\Autorun.exe
HKU\S-1-5-21-3630831923-836820803-3741860235-1000\...\MountPoints2: {c2499834-42b2-11e1-9327-90a4de60b6c7} - F:\Autorun.exe

BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre6\bin\jp2ssv.dll No File
FF Plugin: @java.com/DTPlugin -> C:\Program Files\Java\jre6\bin\npDeployJava1.dll No File
CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\39.0.2171.95\ppGoogleNaClPluginChrome.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll No File
CHR Plugin: (Java Deployment Toolkit 6.0.260.3) - C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll No File
CHR Plugin: (Java(TM) Platform SE 6 U26) - C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll No File
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL No File
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL No File
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll No File
CHR Plugin: (Facebook Desktop) - C:\Users\Martina\AppData\Local\Facebook\Messenger\2.1.4651.0\npFbDesktopPlugin.dll No File
CHR Plugin: (Shockwave Flash) - C:\windows\system32\Macromed\Flash\NPSWF32_11_5_502_135.dll No File
CHR Plugin: (Silverlight Plug-In) - c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll No File

2014-12-18 18:21 - 2014-12-18 18:22 - 38624400 _____ (Adobe Systems Incorporated) C:\Users\Martina\Desktop\AdbeRdr11000_cs_CZ.exe
2014-12-17 21:57 - 2014-12-17 21:57 - 00015327 _____ () C:\Users\Martina\Desktop\LM.bat
2014-12-17 21:56 - 2014-12-17 21:56 - 00112640 _____ (forum.viry.cz) C:\Users\Martina\Desktop\FRSTLauncher.exe
2014-12-17 21:54 - 2014-12-17 21:54 - 00112640 _____ (forum.viry.cz) C:\Users\Martina\Desktop\Nepotvrzeno 964738.crdownload
2014-12-17 18:40 - 2014-12-17 17:58 - 00024064 _____ () C:\windows\zoek-delete.exe
2014-12-17 17:59 - 2014-12-17 18:42 - 00004597 _____ () C:\zoek-results.log
2014-12-17 17:58 - 2014-12-17 18:35 - 00000000 ____D () C:\zoek_backup
2014-12-17 17:57 - 2014-12-17 17:57 - 01295360 _____ () C:\Users\Martina\Desktop\zoek.exe
2014-12-17 17:33 - 2014-12-17 17:39 - 00000000 ____D () C:\AdwCleaner
2014-12-17 17:32 - 2014-12-17 17:32 - 02166272 _____ () C:\Users\Martina\Desktop\adwcleaner_4.105.exe
2014-12-17 17:18 - 2014-12-17 17:18 - 02997112 _____ (Crystal Dew World ) C:\Users\Martina\Desktop\CrystalDiskInfo6_2_2-en.exe
2014-12-17 16:41 - 2014-12-17 16:44 - 00000000 ____D () C:\Program Files\trend micro
2014-12-17 16:40 - 2014-12-17 16:44 - 00000000 ____D () C:\rsit
2014-12-17 16:36 - 2014-12-17 16:38 - 01107968 _____ () C:\Users\Martina\Desktop\RSIT.exe

Task: C:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3630831923-836820803-3741860235-1000Core.job => C:\Users\Martina\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3630831923-836820803-3741860235-1000UA.job => C:\Users\Martina\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Hosts:
EmptyTemp:
End

William_CZ · #13 Příspěvek od **William_CZ** » 20 pro 2014 11:15

Zde je log a mám pocit, že tentokrát se sysém spustil rychleji a i rychleji a o něco svižněji reaguje:

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 17-12-2014
Ran by Martina at 2014-12-20 11:00:05 Run:1
Running from C:\Users\Martina\Desktop
Loaded Profile: Martina (Available profiles: Martina)
Boot Mode: Normal

==============================================

Content of fixlist:
*****************
Start
CloseProcesses:
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [926896 2012-09-23] (Adobe Systems Incorporated)
HKU\S-1-5-21-3630831923-836820803-3741860235-1000\...\MountPoints2: F - F:\Autorun.exe
HKU\S-1-5-21-3630831923-836820803-3741860235-1000\...\MountPoints2: {67147e0a-42ba-11e1-bd09-806e6f6e6963} - E:\Autorun.exe
HKU\S-1-5-21-3630831923-836820803-3741860235-1000\...\MountPoints2: {c249979b-42b2-11e1-9327-90a4de60b6c7} - E:\Autorun.exe
HKU\S-1-5-21-3630831923-836820803-3741860235-1000\...\MountPoints2: {c24997a7-42b2-11e1-9327-90a4de60b6c7} - E:\Autorun.exe
HKU\S-1-5-21-3630831923-836820803-3741860235-1000\...\MountPoints2: {c24997e6-42b2-11e1-9327-90a4de60b6c7} - E:\Autorun.exe
HKU\S-1-5-21-3630831923-836820803-3741860235-1000\...\MountPoints2: {c249980d-42b2-11e1-9327-90a4de60b6c7} - E:\Autorun.exe
HKU\S-1-5-21-3630831923-836820803-3741860235-1000\...\MountPoints2: {c2499834-42b2-11e1-9327-90a4de60b6c7} - F:\Autorun.exe

BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre6\bin\jp2ssv.dll No File
FF Plugin: @java.com/DTPlugin -> C:\Program Files\Java\jre6\bin\npDeployJava1.dll No File
CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\39.0.2171.95\ppGoogleNaClPluginChrome.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll No File
CHR Plugin: (Java Deployment Toolkit 6.0.260.3) - C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll No File
CHR Plugin: (Java(TM) Platform SE 6 U26) - C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll No File
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL No File
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL No File
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll No File
CHR Plugin: (Facebook Desktop) - C:\Users\Martina\AppData\Local\Facebook\Messenger\2.1.4651.0\npFbDesktopPlugin.dll No File
CHR Plugin: (Shockwave Flash) - C:\windows\system32\Macromed\Flash\NPSWF32_11_5_502_135.dll No File
CHR Plugin: (Silverlight Plug-In) - c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll No File

2014-12-18 18:21 - 2014-12-18 18:22 - 38624400 _____ (Adobe Systems Incorporated) C:\Users\Martina\Desktop\AdbeRdr11000_cs_CZ.exe
2014-12-17 21:57 - 2014-12-17 21:57 - 00015327 _____ () C:\Users\Martina\Desktop\LM.bat
2014-12-17 21:56 - 2014-12-17 21:56 - 00112640 _____ (forum.viry.cz) C:\Users\Martina\Desktop\FRSTLauncher.exe
2014-12-17 21:54 - 2014-12-17 21:54 - 00112640 _____ (forum.viry.cz) C:\Users\Martina\Desktop\Nepotvrzeno 964738.crdownload
2014-12-17 18:40 - 2014-12-17 17:58 - 00024064 _____ () C:\windows\zoek-delete.exe
2014-12-17 17:59 - 2014-12-17 18:42 - 00004597 _____ () C:\zoek-results.log
2014-12-17 17:58 - 2014-12-17 18:35 - 00000000 ____D () C:\zoek_backup
2014-12-17 17:57 - 2014-12-17 17:57 - 01295360 _____ () C:\Users\Martina\Desktop\zoek.exe
2014-12-17 17:33 - 2014-12-17 17:39 - 00000000 ____D () C:\AdwCleaner
2014-12-17 17:32 - 2014-12-17 17:32 - 02166272 _____ () C:\Users\Martina\Desktop\adwcleaner_4.105.exe
2014-12-17 17:18 - 2014-12-17 17:18 - 02997112 _____ (Crystal Dew World ) C:\Users\Martina\Desktop\CrystalDiskInfo6_2_2-en.exe
2014-12-17 16:41 - 2014-12-17 16:44 - 00000000 ____D () C:\Program Files\trend micro
2014-12-17 16:40 - 2014-12-17 16:44 - 00000000 ____D () C:\rsit
2014-12-17 16:36 - 2014-12-17 16:38 - 01107968 _____ () C:\Users\Martina\Desktop\RSIT.exe

Task: C:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3630831923-836820803-3741860235-1000Core.job => C:\Users\Martina\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3630831923-836820803-3741860235-1000UA.job => C:\Users\Martina\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Hosts:
EmptyTemp:
End
*****************

Processes closed successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\Adobe ARM => value deleted successfully.
"HKU\S-1-5-21-3630831923-836820803-3741860235-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\S-1-5-21-3630831923-836820803-3741860235-1000" => Key not found.
"HKU\S-1-5-21-3630831923-836820803-3741860235-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{67147e0a-42ba-11e1-bd09-806e6f6e6963}" => Key deleted successfully.
"HKCR\CLSID\{67147e0a-42ba-11e1-bd09-806e6f6e6963}" => Key not found.
"HKU\S-1-5-21-3630831923-836820803-3741860235-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c249979b-42b2-11e1-9327-90a4de60b6c7}" => Key deleted successfully.
"HKCR\CLSID\{c249979b-42b2-11e1-9327-90a4de60b6c7}" => Key not found.
"HKU\S-1-5-21-3630831923-836820803-3741860235-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c24997a7-42b2-11e1-9327-90a4de60b6c7}" => Key deleted successfully.
"HKCR\CLSID\{c24997a7-42b2-11e1-9327-90a4de60b6c7}" => Key not found.
"HKU\S-1-5-21-3630831923-836820803-3741860235-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c24997e6-42b2-11e1-9327-90a4de60b6c7}" => Key deleted successfully.
"HKCR\CLSID\{c24997e6-42b2-11e1-9327-90a4de60b6c7}" => Key not found.
"HKU\S-1-5-21-3630831923-836820803-3741860235-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c249980d-42b2-11e1-9327-90a4de60b6c7}" => Key deleted successfully.
"HKCR\CLSID\{c249980d-42b2-11e1-9327-90a4de60b6c7}" => Key not found.
"HKU\S-1-5-21-3630831923-836820803-3741860235-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c2499834-42b2-11e1-9327-90a4de60b6c7}" => Key deleted successfully.
"HKCR\CLSID\{c2499834-42b2-11e1-9327-90a4de60b6c7}" => Key not found.
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}" => Key deleted successfully.
"HKCR\CLSID\{DBC80044-A445-435b-BC74-9C25C1C588A9}" => Key deleted successfully.
"HKLM\Software\MozillaPlugins\@java.com/DTPlugin" => Key deleted successfully.
C:\Program Files\Google\Chrome\Application\39.0.2171.95\ppGoogleNaClPluginChrome.dll not found.
C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll not found.
C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll not found.
C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll not found.
C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL not found.
C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL not found.
C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll not found.
C:\Users\Martina\AppData\Local\Facebook\Messenger\2.1.4651.0\npFbDesktopPlugin.dll not found.
C:\windows\system32\Macromed\Flash\NPSWF32_11_5_502_135.dll not found.
c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll not found.
"C:\Users\Martina\Desktop\AdbeRdr11000_cs_CZ.exe" => File/Directory not found.
C:\Users\Martina\Desktop\LM.bat => Moved successfully.
C:\Users\Martina\Desktop\FRSTLauncher.exe => Moved successfully.
"C:\Users\Martina\Desktop\Nepotvrzeno 964738.crdownload" => File/Directory not found.
C:\windows\zoek-delete.exe => Moved successfully.
C:\zoek-results.log => Moved successfully.
C:\zoek_backup => Moved successfully.
C:\Users\Martina\Desktop\zoek.exe => Moved successfully.
C:\AdwCleaner => Moved successfully.
C:\Users\Martina\Desktop\adwcleaner_4.105.exe => Moved successfully.
"C:\Users\Martina\Desktop\CrystalDiskInfo6_2_2-en.exe" => File/Directory not found.
C:\Program Files\trend micro => Moved successfully.
C:\rsit => Moved successfully.
C:\Users\Martina\Desktop\RSIT.exe => Moved successfully.
C:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3630831923-836820803-3741860235-1000Core.job => Moved successfully.
C:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3630831923-836820803-3741860235-1000UA.job => Moved successfully.
C:\windows\Tasks\GoogleUpdateTaskMachineCore.job => Moved successfully.
C:\windows\Tasks\GoogleUpdateTaskMachineUA.job => Moved successfully.
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.
EmptyTemp: => Removed 33 MB temporary data.

The system needed a reboot.

==== End of Fixlog ====

#14 Příspěvek od **altrok** » 20 pro 2014 14:14

Takze jeste uklidime.

Stahnete a spustte DelFix - https://toolslib.net/downloads/viewdownload/2-delfix/
Oznacte jen moznost "Remove disinfection tools"
kliknete na Run

A pokud nejsou dotazy ci jine problemy, je to ode mne vse.

William_CZ · #15 Příspěvek od **William_CZ** » 20 pro 2014 15:34

Poslední čištění provedeno a prozatím tedy mockrát děkuju a prosím o uzamčení této konverzace. Stejně mám pocit, že nemá cenu věnovat tomu více času a kdyby to nefungovalo pomůže už jen přeinstalace. Nashledanou

VIRY.CZ

Prosím o kytvoření líontrolu notebooku, nesnesitelně se seká

Prosím o kytvoření líontrolu notebooku, nesnesitelně se seká

Re: Prosím o kytvoření líontrolu notebooku, nesnesitelně se

Re: Prosím o kytvoření líontrolu notebooku, nesnesitelně se

Re: Prosím o kytvoření líontrolu notebooku, nesnesitelně se

Re: Prosím o kytvoření líontrolu notebooku, nesnesitelně se

Re: Prosím o kytvoření líontrolu notebooku, nesnesitelně se

Re: Prosím o kytvoření líontrolu notebooku, nesnesitelně se

Re: Prosím o kytvoření líontrolu notebooku, nesnesitelně se

Re: Prosím o kytvoření líontrolu notebooku, nesnesitelně se

Re: Prosím o kytvoření líontrolu notebooku, nesnesitelně se

Re: Prosím o kytvoření líontrolu notebooku, nesnesitelně se

Re: Prosím o kytvoření líontrolu notebooku, nesnesitelně se

Re: Prosím o kytvoření líontrolu notebooku, nesnesitelně se

Re: Prosím o kytvoření líontrolu notebooku, nesnesitelně se

Re: Prosím o kytvoření líontrolu notebooku, nesnesitelně se