VIRY.CZ

Dobrý den, tak jsem tady znova. Jedná se o to, že mi vypadává služba DPS. Při startu počítače se ani nespustí, nepomáhá ani do cmd zadat "net start dps". Váš kolega se v [ o to pokoušel, ale dotyčný změnil něco v registrech (a nenapsal tam co). Nepomohlo mi ani napsat do cmd to, co je vporadně živě.cz.
Uvítám jakékoliv nápady.

Dobrý den,

mohl byste dát odkaz na topic, kde se kolega pokoušel o opravy? Ať nemusíme zjišťovat vše znovu

Tu http://forum.viry.cz/viewtopic.php?f=4& ... 8&start=15

díky za odkaz

1. Vás trápí stejný problém, že se neumíte připojit k síti? nebo že připojení vypadává? nebo máte s pc a službou DPS jiný problém?
2. předcházelo problému odvirování pc tady na fóru? nebo se problém objevil sám od sebe?

(problém může způsobovat více věcí - viry, důsledek použitých nástrojů pro odstraňování virů, poškozené systémové soubory atd., zkuste odpovědět na otázky a zkusíme to opravit )

1. Připojení se někdy (zrovna když to nejméně potřebuju )přeruší (vypadne)-Ve většině případů samo nenaběhne. Připojenej jsem.
Vypadne, i když jedu přes kabel.

2. Ano, už jsem tu dával preventivku.

Jeden ajťák mi poradil napsat něco do cmd na opravu souborů (snad sfc /scannow nebo nějak tak), nic to nenašlo.

Když si vzpomenu, tak si PC jednou za měsíc pročistím CCleanerem (i registry).

ajťák Vám poradil provést kontrolu systémových souborů

1. jste připojen kabelem nebo přes WiFi?
2. máte k internetu připojeno více zařízení? pokud ano, jak to vypadá s připojením u nich v době výpadku na Vašem pc?
3. pro obnovení připojení děláte co? restart pc, restart routeru, jiné?
4. v umístění %systemroot%\logs (%systemroot% je složka s instalací Windows) vyhledejte soubor "CBS.log", nahrajte ho na web (odkaz pro stažení prosím zde)
5. dejte prosím log z FRST
6. Start --> Spustit... --> vepsat a potvrdit enter: eventvwr.msc --> vlevo rozbalit Protokoly systému Windows --> pravé tl. na Systém --> Uložit všechny události jako... --> soubor pojmenovat jako "system" --> uložit a nahrát na web (dejte odkaz pro stažení); to stejné provést v Prohlížeči událostí s oddílem Aplikace

1) Přes wifi, ale dělá to i přes kabel.
2) Ano, mám. Pokud u mě připojení vypadne, u nich ne. Problém je jen na tomto PC.
3) Restart PC.
4) Odkazy níže.
5) Hodím do dalšího příspěvku
6) Odkazy níže.

K těm souborům-optalo se mně to, jestli chci nějaké informace o zobrazení-Dal jsem tam češtinu.

http://leteckaposta.cz/651378225

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 11-01-2015
Ran by Hal (administrator) on HAL3000 on 11-01-2015 11:33:49
Running from C:\Users\Hal\Desktop
Loaded Profile: Hal (Available profiles: Hal)
Platform: Microsoft Windows 8.1 (X86) OS Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(Sandboxie Holdings, LLC) C:\Program Files\Sandboxie\SbieSvc.exe
(Advanced Micro Devices, Inc.) C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
() C:\Windows\System32\ASGT.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(CONSULTA BÜROTECHNIK, s.r.o.) C:\Conto\CPrnServerSvc.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\ekrn.exe
(Firebird Project) C:\Conto\Firebird\bin\fbguard.exe
(Firebird Project) C:\Program Files\Firebird\Firebird_2_5\bin\fbguard.exe
(Firebird Project) C:\Conto\Firebird\bin\fbserver.exe
() C:\Program Files\MSI\CommandCenter\MSIControlService.exe
(Micro-Star International) C:\Program Files\MSI\Live Update\MSI_LiveUpdate_Service.exe
(MSI) C:\Program Files\MSI\Super-Charger\ChargeService.exe
() C:\Windows\System32\PnkBstrA.exe
(Ralink Technology, Corp.) C:\Program Files\Tenda\W326U Flash Install Wireless LAN Card\AutoInstSvc\RaAutoInstSrv.exe
(Seagate) C:\Program Files\Common Files\Seagate\Schedule2\schedul2.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe
(Western Digital Technologies, Inc.) C:\Program Files\Western Digital\WD Drive Manager\WDDriveService.exe
() C:\Program Files\NETGEAR\WNDA3100v2\WifiSvc.exe
(CONSULTA BÜROTECHNIK, s.r.o.) C:\Conto\CServerSvc.exe
(Firebird Project) C:\Program Files\Firebird\Firebird_2_5\bin\fbserver.exe
(Google Inc.) C:\Program Files\Google\Update\1.3.25.11\GoogleCrashHandler.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(MAGIX AG) C:\Program Files\Common Files\MAGIX Services\Database\bin\FABS.exe
(MSI) C:\Program Files\MSI\CommandCenter\BIOSData\MSIBIOSDataService.exe
() C:\Program Files\MSI\CommandCenter\ClockGen\MSIClockService.exe
() C:\Program Files\MSI\CommandCenter\MSICommService.exe
() C:\Program Files\MSI\CommandCenter\MSISaveLoadService.exe
() C:\Program Files\MSI\CommandCenter\SuperIO\MSISuperIOService.exe
() C:\Program Files\MSI\CommandCenter\MSIWMIService.exe
(AMD) C:\Windows\System32\atieclxx.exe
() C:\Program Files\RivaTuner Statistics Server\RTSS.exe
() C:\Program Files\MSI Afterburner\MSIAfterburner.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Logitech Inc.) C:\Program Files\Logitech\Gaming Software\LWEMon.exe
() C:\Program Files\Gaming Keyboard\Monitor.EXE
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
() C:\Program Files\Gaming Keyboard\OSD.exe
(Micro-Star International) C:\Program Files\MSI\Live Update\Live Update.exe
(Sandboxie Holdings, LLC) C:\Program Files\Sandboxie\SbieCtrl.exe
(Advanced Micro Devices Inc.) C:\Program Files\AMD\ATI.ACE\Core-Static\MOM.exe
(Bogdan Sharkov) C:\Program Files\Clownfish\Clownfish.exe
(Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe
(Valve Corporation) C:\Program Files\Steam\Steam.exe
(Sony) C:\Program Files\Sony\Sony PC Companion\PCCompanion.exe
() C:\Program Files\NETGEAR\WNDA3100v2\WNDA3100v2.exe
() C:\Program Files\Sony\Sony PC Companion\PCCompanionInfo.exe
(ATI Technologies Inc.) C:\Program Files\AMD\ATI.ACE\Core-Static\CCC.exe
(Valve Corporation) C:\Program Files\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files\Common Files\Steam\SteamService.exe
() C:\Program Files\RivaTuner Statistics Server\EncoderServer.exe
(Microsoft Corporation) C:\Windows\System32\RuntimeBroker.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmplayer.exe
(forum.viry.cz) C:\Users\Hal\Desktop\FRSTLauncher.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [Start WingMan Profiler] => C:\Program Files\Logitech\Gaming Software\LWEMon.exe [153672 2010-06-14] (Logitech Inc.)
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [6213400 2013-11-14] (Logitech Inc.)
HKLM\...\Run: [LiveUpdate 5] => C:\Program Files\MSI\Live Update 5\BootStartLiveupdate.exe [322544 2014-03-05] ()
HKLM\...\Run: [Super-Charger] => C:\Program Files\MSI\Super-Charger\Super-Charger.exe [1047536 2013-11-12] (MSI)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM\...\Run: [DiscWizardMonitor.exe] => C:\Program Files\Seagate\DiscWizard\DiscWizardMonitor.exe [1346000 2009-11-02] (Seagate)
HKLM\...\Run: [AcronisTimounterMonitor] => C:\Program Files\Seagate\DiscWizard\TimounterMonitor.exe [906288 2009-11-02] (Acronis)
HKLM\...\Run: [Seagate Scheduler2 Service] => C:\Program Files\Common Files\Seagate\Schedule2\schedhlp.exe [136544 2009-11-02] (Seagate)
HKLM\...\Run: [CommandCenter] => C:\Program Files\MSI\CommandCenter\StartCommandCenter.exe [797680 2013-05-30] ()
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [152392 2014-05-26] (Apple Inc.)
HKLM\...\Run: [VICTORY Gaming Keyboard] => C:\Program Files\Gaming Keyboard\Monitor.exe [270336 2013-04-09] ()
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Smart Security\egui.exe [5088456 2014-09-22] (ESET)
HKLM\...\Run: [Live Update] => C:\Program Files\MSI\Live Update\Live Update.exe [3476432 2014-09-18] (Micro-Star International)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [557768 2014-10-14] (Adobe Systems Incorporated)
HKLM\...\Run: [Adobe Creative Cloud] => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2694320 2014-10-15] (Adobe Systems Incorporated)
HKLM\...\Run: [StartCCC] => C:\Program Files\AMD\ATI.ACE\Core-Static\x86\CLIStart.exe [748232 2014-11-20] (Advanced Micro Devices, Inc.)
HKU\S-1-5-21-1252690407-766952165-3243391977-1001\...\Run: [BrowserChoice] => C:\Windows\BrowserChoice\browserchoice.exe [84696 2013-08-22] (Microsoft Corporation)
HKU\S-1-5-21-1252690407-766952165-3243391977-1001\...\Run: [Raptr] => C:\Program Files\Raptr\raptrstub.exe [55360 2014-03-28] (Raptr, Inc)
HKU\S-1-5-21-1252690407-766952165-3243391977-1001\...\Run: [Google Update] => C:\Users\Hal\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2014-04-11] (Google Inc.)
HKU\S-1-5-21-1252690407-766952165-3243391977-1001\...\Run: [SandboxieControl] => C:\Program Files\Sandboxie\SbieCtrl.exe [631816 2014-05-19] (Sandboxie Holdings, LLC)
HKU\S-1-5-21-1252690407-766952165-3243391977-1001\...\Run: [Clownfish] => C:\Program Files\Clownfish\Clownfish.exe [1315584 2014-07-28] (Bogdan Sharkov)
HKU\S-1-5-21-1252690407-766952165-3243391977-1001\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [30877280 2014-12-11] (Skype Technologies S.A.)
HKU\S-1-5-21-1252690407-766952165-3243391977-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-1252690407-766952165-3243391977-1001\...\Run: [Steam] => C:\Program Files\Steam\steam.exe [1942208 2015-01-10] (Valve Corporation)
HKU\S-1-5-21-1252690407-766952165-3243391977-1001\...\Run: [Spotify Web Helper] => C:\Users\Hal\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1676344 2014-12-19] (Spotify Ltd)
HKU\S-1-5-21-1252690407-766952165-3243391977-1001\...\Run: [Sony PC Companion] => C:\Program Files\Sony\Sony PC Companion\PCCompanion.exe [468192 2014-10-15] (Sony)
HKU\S-1-5-21-1252690407-766952165-3243391977-1001\...\Policies\system: [DisableLockWorkstation] 0
HKU\S-1-5-21-1252690407-766952165-3243391977-1001\...\MountPoints2: {0f7b1167-a5fd-11e3-afa2-d43d7e3874f6} - "K:\AutoInst.exe"
HKU\S-1-5-21-1252690407-766952165-3243391977-1001\...\MountPoints2: {77c36eee-4731-11e4-b0aa-d43d7e3874f6} - "E:\setup.exe"
HKU\S-1-5-21-1252690407-766952165-3243391977-1001\...\MountPoints2: {f2965a91-8f88-11e4-b13d-d43d7e3874f6} - "M:\Startme.exe"
Lsa: [Authentication Packages] msv1_0 relog_ap
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\NETGEAR WNDA3100v2 Genie.lnk
ShortcutTarget: NETGEAR WNDA3100v2 Genie.lnk -> C:\Program Files\NETGEAR\WNDA3100v2\WNDA3100v2.exe ()
Startup: C:\Users\Hal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma.lnk
ShortcutTarget: Adobe Gamma.lnk -> C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)
Startup: C:\Users\Hal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Logitech . Registrace produktu.lnk
ShortcutTarget: Logitech . Registrace produktu.lnk -> C:\Program Files\Logitech Gaming Software\EReg\eReg.exe (Leader Technologies/Logitech)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x86.dll ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x86.dll ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x86.dll ()
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKU\S-1-5-21-1252690407-766952165-3243391977-1001\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
HKU\S-1-5-21-1252690407-766952165-3243391977-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = https://www.google.cz/
SearchScopes: HKLM -> DefaultScope value is missing.
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138

FireFox:
========
FF ProfilePath: C:\Users\Hal\AppData\Roaming\Mozilla\Firefox\Profiles\3qn5yaih.default
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_16_0_0_235.dll ()
FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin: @esn/npbattlelog,version=2.5.1 -> C:\Program Files\Battlelog Web Plugins\2.5.1\npbattlelog.dll (EA Digital Illusions CE AB)
FF Plugin: @esn/npbattlelog,version=2.6.2 -> C:\Program Files\Battlelog Web Plugins\2.6.2\npbattlelog.dll (EA Digital Illusions CE AB)
FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin: @java.com/DTPlugin,version=10.51.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=16.4.3522.0110 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll (Adobe Systems)
FF Plugin HKU\S-1-5-21-1252690407-766952165-3243391977-1001: @talk.google.com/GoogleTalkPlugin -> C:\Users\Hal\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin HKU\S-1-5-21-1252690407-766952165-3243391977-1001: @talk.google.com/O1DPlugin -> C:\Users\Hal\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google)
FF Plugin HKU\S-1-5-21-1252690407-766952165-3243391977-1001: @tools.google.com/Google Update;version=3 -> C:\Users\Hal\AppData\Local\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKU\S-1-5-21-1252690407-766952165-3243391977-1001: @tools.google.com/Google Update;version=9 -> C:\Users\Hal\AppData\Local\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKU\S-1-5-21-1252690407-766952165-3243391977-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Hal\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-1252690407-766952165-3243391977-1001: LWAPlugin15.8 -> C:\Users\Hal\AppData\Roaming\Mozilla\Plugins\npLWAPlugin15.8.dll (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Users\Hal\AppData\Roaming\mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin ProgramFiles/Appdata: C:\Users\Hal\AppData\Roaming\mozilla\plugins\npLWAPlugin15.8.dll (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Users\Hal\AppData\Roaming\mozilla\plugins\npo1d.dll (Google)
FF Extension: anonymoX - C:\Users\Hal\AppData\Roaming\Mozilla\Firefox\Profiles\3qn5yaih.default\Extensions\client@anonymox.net.xpi [2014-09-18]
FF Extension: GPU Accelerated Flash Player - C:\Users\Hal\AppData\Roaming\Mozilla\Firefox\Profiles\3qn5yaih.default\Extensions\gpuacceleratedflashplayer@stas.xpi [2014-09-18]
FF Extension: HideMyAss - Free Web Proxy - C:\Users\Hal\AppData\Roaming\Mozilla\Firefox\Profiles\3qn5yaih.default\Extensions\{9aba569a-d0cc-427d-bd2a-27bfd7ce544c}.xpi [2014-09-18]
FF Extension: Adblock Plus - C:\Users\Hal\AppData\Roaming\Mozilla\Firefox\Profiles\3qn5yaih.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-09-18]
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird

Chrome:
=======
CHR Profile: C:\Users\Hal\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Dokumenty Google) - C:\Users\Hal\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-06-23]
CHR Extension: (Disk Google) - C:\Users\Hal\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-06-23]
CHR Extension: (YouTube) - C:\Users\Hal\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-06-23]
CHR Extension: (Vyhledávání Google) - C:\Users\Hal\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-06-23]
CHR Extension: (AdBlock) - C:\Users\Hal\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-06-23]
CHR Extension: (Peněženka Google) - C:\Users\Hal\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-06-23]
CHR Extension: (Gmail) - C:\Users\Hal\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-06-23]

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S3 Adobe LM Service; C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [72704 2014-12-09] (Adobe Systems) [File not signed]
R2 AMD FUEL Service; C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe [276992 2014-11-20] (Advanced Micro Devices, Inc.) [File not signed]
R2 ASGT; C:\Windows\System32\ASGT.exe [55296 2012-01-17] () [File not signed]
S3 BthHFSrv; C:\WINDOWS\System32\BthHFSrv.dll [250880 2014-10-29] (Microsoft Corporation)
R2 ContoPrnServerSvc; C:\Conto\CPrnServerSvc.exe [3616768 2014-12-11] (CONSULTA BÜROTECHNIK, s.r.o.) [File not signed]
R2 ContoServerSvc; C:\Conto\CServerSvc.exe [5427712 2014-12-11] (CONSULTA BÜROTECHNIK, s.r.o.) [File not signed]
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [1350112 2014-09-16] (ESET)
R2 Fabs; C:\Program Files\Common Files\MAGIX Services\Database\bin\FABS.exe [1840128 2011-05-24] (MAGIX AG) [File not signed]
R2 FirebirdGuardianContoInstance; C:\Conto\Firebird\bin\fbguard.exe [98304 2012-11-01] (Firebird Project) [File not signed]
R2 FirebirdGuardianDefaultInstance; C:\Program Files\Firebird\Firebird_2_5\bin\fbguard.exe [98304 2013-03-19] (Firebird Project) [File not signed]
R3 FirebirdServerContoInstance; C:\Conto\Firebird\bin\fbserver.exe [3784704 2012-11-01] (Firebird Project) [File not signed]
R3 FirebirdServerDefaultInstance; C:\Program Files\Firebird\Firebird_2_5\bin\fbserver.exe [3784704 2013-03-19] (Firebird Project) [File not signed]
S3 FirebirdServerMAGIXInstance; C:\Program Files\Common Files\MAGIX Services\Database\bin\fbserver.exe [2702848 2011-04-26] (MAGIX®) [File not signed]
S3 Futuremark SystemInfo Service; C:\Program Files\Futuremark\SystemInfo\FMSISvc.exe [614624 2014-09-02] (Futuremark)
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
S2 MBAMScheduler; C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe [1809720 2014-05-12] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [860472 2014-05-12] (Malwarebytes Corporation)
R2 MSIBIOSData_CC; C:\Program Files\MSI\CommandCenter\BIOSData\MSIBIOSDataService.exe [2055680 2013-06-06] (MSI) [File not signed]
R2 MSIClock_CC; C:\Program Files\MSI\CommandCenter\ClockGen\MSIClockService.exe [305152 2013-06-19] () [File not signed]
R2 MSICOMM_CC; C:\Program Files\MSI\CommandCenter\MSICommService.exe [2103296 2013-05-29] () [File not signed]
S2 MSICPU_CC; C:\Program Files\MSI\CommandCenter\CPU\MSICPUService.exe [4101120 2013-06-19] () [File not signed]
R2 MSICTL_CC; C:\Program Files\MSI\CommandCenter\MSIControlService.exe [1981440 2013-06-14] () [File not signed]
R2 MSISaveLoad_CC; C:\Program Files\MSI\CommandCenter\MSISaveLoadService.exe [3957248 2013-04-18] () [File not signed]
R2 MSISuperIO_CC; C:\Program Files\MSI\CommandCenter\SuperIO\MSISuperIOService.exe [481280 2013-06-19] () [File not signed]
R2 MSIWMI_CC; C:\Program Files\MSI\CommandCenter\MSIWMIService.exe [181760 2013-04-18] () [File not signed]
R2 MSI_LiveUpdate_Service; C:\Program Files\MSI\Live Update\MSI_LiveUpdate_Service.exe [1723856 2014-09-18] (Micro-Star International)
R2 MSI_SuperCharger; C:\Program Files\MSI\Super-Charger\ChargeService.exe [161776 2013-09-09] (MSI)
S3 Origin Client Service; C:\Program Files\Origin\OriginClientService.exe [1903472 2014-12-19] (Electronic Arts)
R2 PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [76152 2014-08-06] ()
R2 RaAutoInstSrv_RT2870; C:\Program Files\Tenda\W326U Flash Install Wireless LAN Card\AutoInstSvc\RaAutoInstSrv.exe [110592 2009-10-01] (Ralink Technology, Corp.) [File not signed]
R2 SbieSvc; C:\Program Files\Sandboxie\SbieSvc.exe [134664 2014-05-19] (Sandboxie Holdings, LLC)
S3 ScDeviceEnum; C:\WINDOWS\System32\ScDeviceEnum.dll [103936 2014-10-29] (Microsoft Corporation)
R2 SgtSch2Svc; C:\Program Files\Common Files\Seagate\Schedule2\schedul2.exe [431456 2009-11-02] (Seagate)
S3 Sony PC Companion; C:\Program Files\Sony\Sony PC Companion\PCCService.exe [155824 2013-02-04] (Avanquest Software)
R2 WDDriveService; C:\Program Files\Western Digital\WD Drive Manager\WDDriveService.exe [270704 2013-11-20] (Western Digital Technologies, Inc.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [288128 2014-09-22] (Microsoft Corporation)
S3 WEPHOSTSVC; C:\WINDOWS\system32\wephostsvc.dll [20992 2014-10-29] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [22192 2014-09-22] (Microsoft Corporation)
S3 workfolderssvc; C:\WINDOWS\system32\workfolderssvc.dll [1269248 2014-10-29] (Microsoft Corporation)
R2 WSWNDA3100v2; C:\Program Files\NETGEAR\WNDA3100v2\WifiSvc.exe [307928 2013-11-11] ()
S3 COMSysApp; %SystemRoot%\system32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235}
S2 Hamachi2Svc; "C:\Program Files\LogMeIn Hamachi\hamachi-2.exe" -s [X]
S2 JetDrive WindowsClosingService; C:\WINDOWS\System32\WindowsClosingService [X]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S0 amdkmafd; C:\WINDOWS\System32\drivers\amdkmafd.sys [15528 2012-09-23] (Advanced Micro Devices, Inc.)
R2 AODDriver4.2.0; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\i386\AODDriver2.sys [50400 2014-02-11] (Advanced Micro Devices)
S2 AODDriver4.3; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\i386\AODDriver2.sys [50400 2014-02-11] (Advanced Micro Devices)
R3 AtiHDAudioService; C:\WINDOWS\system32\drivers\AtihdWB3.sys [200704 2014-06-21] (Advanced Micro Devices)
R1 BasicRender; C:\WINDOWS\System32\drivers\BasicRender.sys [25600 2014-02-22] (Microsoft Corporation)
R3 BCMH43XX; C:\WINDOWS\system32\DRIVERS\bcmwlhigh6.sys [1093888 2011-12-12] (Broadcom Corporation)
R1 dtsoftbus01; C:\WINDOWS\System32\drivers\dtsoftbus01.sys [243128 2014-10-01] (Disc Soft Ltd)
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [191928 2014-09-22] (ESET)
R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [190368 2014-09-22] (ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [135296 2014-09-22] (ESET)
R2 epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [176448 2014-09-22] (ESET)
R1 EpfwLWF; C:\WINDOWS\system32\DRIVERS\EpfwLWF.sys [37928 2014-09-22] (ESET)
R0 epfwwfp; C:\WINDOWS\System32\DRIVERS\epfwwfp.sys [51288 2014-09-22] (ESET)
R0 giveio; C:\WINDOWS\System32\giveio.sys [5248 1996-04-03] () [File not signed]
S3 GPIO; C:\WINDOWS\System32\drivers\iaiogpio.sys [22016 2013-07-23] (Intel Corporation)
S3 Hamachi; C:\WINDOWS\system32\DRIVERS\Hamdrv.sys [38920 2014-04-15] (LogMeIn Inc.)
S3 jetdrive; C:\WINDOWS\System32\DRIVERS\jddrv.sys [29056 2014-07-06] (Abelssoft GmbH)
R3 LGBusEnum; C:\WINDOWS\system32\drivers\LGBusEnum.sys [19720 2009-11-24] (Logitech Inc.)
S3 LGVirHid; C:\WINDOWS\system32\drivers\LGVirHid.sys [14856 2009-11-24] (Logitech Inc.)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [23256 2014-05-12] (Malwarebytes Corporation)
S3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [110296 2014-06-12] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [51928 2014-05-12] (Malwarebytes Corporation)
S3 netr28u; C:\WINDOWS\system32\DRIVERS\netr28u.sys [1696528 2013-06-18] (Ralink Technology Corp.)
S3 NPF; C:\WINDOWS\system32\DRIVERS\npf.sys [50704 2010-02-03] (CACE Technologies, Inc.)
R3 NTIOLib_1_0_3; C:\Program Files\MSI\Super-Charger\NTIOLib.sys [14392 2012-10-26] (MSI)
R3 NTIOLib_1_0_4; C:\Program Files\MSI\Live Update\NTIOLib.sys [7680 2010-10-20] (MSI) [File not signed]
S3 NTIOLib_1_0_6; C:\Program Files\Setup Files\Ms7721vA50\NTIOLib.sys [7680 2011-01-06] (MSI) [File not signed]
R3 NTIOLib_MSIClock_CC; C:\Program Files\MSI\CommandCenter\ClockGen\NTIOLib.sys [7680 2012-11-20] (MSI) [File not signed]
R3 NTIOLib_MSICOMM_CC; C:\Program Files\MSI\CommandCenter\NTIOLib.sys [7680 2012-11-19] (MSI) [File not signed]
R3 NTIOLib_MSICPU_CC; C:\Program Files\MSI\CommandCenter\CPU\NTIOLib.sys [7680 2012-11-20] (MSI) [File not signed]
S3 NTIOLib_MSIDDR_CC; C:\Program Files\MSI\CommandCenter\DDR\NTIOLib.sys [7680 2012-11-26] (MSI) [File not signed]
S3 NTIOLib_MSISMB_CC; C:\Program Files\MSI\CommandCenter\SMBus\NTIOLib.sys [7680 2012-11-19] (MSI) [File not signed]
R3 NTIOLib_MSISuperIO_CC; C:\Program Files\MSI\CommandCenter\SuperIO\NTIOLib.sys [7680 2012-11-19] (MSI) [File not signed]
R3 RTCore32; C:\Program Files\MSI Afterburner\RTCore32.sys [5632 2013-03-11] () [File not signed]
R3 SbieDrv; C:\Program Files\Sandboxie\SbieDrv.sys [159752 2014-05-19] (Sandboxie Holdings, LLC)
R0 SCMNdisP; C:\WINDOWS\System32\DRIVERS\scmndisp.sys [24352 2012-09-03] (SerComm Corporation)
R3 SCREAMINGBDRIVER; C:\WINDOWS\system32\drivers\ScreamingBAudio.sys [34896 2010-07-01] (Screaming Bee LLC)
R0 speedfan; C:\WINDOWS\System32\speedfan.sys [24184 2012-12-29] (Almico Software)
S3 ssudserd; C:\WINDOWS\system32\DRIVERS\ssudserd.sys [184192 2014-01-22] (DEVGURU Co., LTD.(www.devguru.co.kr))
R0 tdrpman; C:\WINDOWS\System32\DRIVERS\tdrpman.sys [368480 2014-04-08] (Acronis)
R2 tifsfilter; C:\WINDOWS\System32\DRIVERS\tifsfilt.sys [44384 2014-04-08] (Acronis)
R3 VCSVADHWSer; C:\WINDOWS\system32\DRIVERS\vcsvad.sys [17792 2008-12-26] (Avnex)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [84800 2014-09-22] (Microsoft Corporation)
R3 WmBEnum; C:\WINDOWS\system32\drivers\WmBEnum.sys [22856 2010-04-27] (Logitech Inc.)
R3 WmFilter; C:\WINDOWS\system32\drivers\WmFilter.sys [37704 2010-04-27] (Logitech Inc.)
R3 WmHidLo; C:\WINDOWS\system32\drivers\WmHidLo.sys [31816 2010-04-27] (Logitech Inc.)
R3 WmVirHid; C:\WINDOWS\system32\drivers\WmVirHid.sys [15048 2010-04-27] (Logitech Inc.)
R3 WmXlCore; C:\WINDOWS\system32\drivers\WmXlCore.sys [66632 2010-04-27] (Logitech Inc.)
R0 Wof; C:\WINDOWS\system32\Drivers\Wof.sys [138584 2014-03-13] (Microsoft Corporation)
R3 WUDFSensorLP; C:\WINDOWS\System32\drivers\WUDFRd.sys [190976 2014-10-29] (Microsoft Corporation)
R3 WUDFWpdMtp; C:\WINDOWS\System32\drivers\WUDFRd.sys [190976 2014-10-29] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================


(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-01-11 11:33 - 2015-01-11 11:34 - 00027041 _____ () C:\Users\Hal\Desktop\FRST.txt
2015-01-11 11:32 - 2015-01-11 11:33 - 00000000 ____D () C:\FRST
2015-01-11 11:31 - 2015-01-11 11:31 - 01115648 _____ (Farbar) C:\Users\Hal\Desktop\FRST.exe
2015-01-11 11:31 - 2015-01-11 11:31 - 00112640 _____ (forum.viry.cz) C:\Users\Hal\Desktop\FRSTLauncher.exe
2015-01-11 11:22 - 2015-01-11 11:22 - 21041152 _____ () C:\Users\Hal\Desktop\system-aplikace.evtx
2015-01-11 11:22 - 2015-01-11 11:22 - 00000000 ____D () C:\Users\Hal\Desktop\LocaleMetaData
2015-01-11 11:21 - 2015-01-11 11:21 - 21041152 _____ () C:\Users\Hal\Desktop\system.evtx
2015-01-11 11:14 - 2015-01-11 11:14 - 06633461 _____ () C:\Users\Hal\Desktop\CBS.log
2015-01-10 10:16 - 2015-01-10 10:16 - 00149256 _____ () C:\WINDOWS\Minidump\011015-21078-01.dmp
2015-01-08 18:50 - 2015-01-08 18:51 - 22764208 _____ () C:\Users\Hal\Downloads\TechnicLauncher.exe
2015-01-07 14:06 - 2015-01-07 14:09 - 311882208 _____ () C:\Users\Hal\Downloads\Spitterberg_V4.rar
2015-01-06 19:49 - 2015-01-06 19:51 - 00024349 _____ () C:\Users\Hal\Desktop\ssss.camproj
2015-01-06 19:21 - 2015-01-06 19:21 - 01577512 _____ ( ) C:\Users\Hal\Downloads\cpu-z_1.71-setup-en.exe
2015-01-06 19:21 - 2015-01-06 19:21 - 00001004 _____ () C:\Users\Public\Desktop\CPUID CPU-Z.lnk
2015-01-06 19:21 - 2015-01-06 19:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
2015-01-06 19:21 - 2015-01-06 19:21 - 00000000 ____D () C:\Program Files\CPUID
2015-01-04 12:01 - 2015-01-04 12:01 - 00000404 _____ () C:\Users\Hal\Desktop\Nový textový dokument (4).txt
2015-01-03 16:28 - 2015-01-03 16:31 - 77915415 _____ () C:\Users\Hal\Downloads\CitaroL_V1.1.rar
2015-01-03 14:58 - 2015-01-03 14:58 - 00000216 _____ () C:\Users\Hal\Desktop\Fallen Enchantress Legendary Heroes.url
2014-12-29 21:16 - 2014-12-29 21:16 - 00000846 _____ () C:\Users\Hal\Documents\Hudba – zástupce.lnk
2014-12-29 20:17 - 2014-12-29 20:17 - 35125966 _____ () C:\Users\Hal\Desktop\Pinkzebra-The Dreamer in Me.wav
2014-12-29 20:11 - 2014-12-29 20:11 - 30931148 _____ () C:\Users\Hal\Desktop\Pinkzebra ft. Benji Jackson-That´s life.wav
2014-12-29 19:49 - 2014-12-29 19:50 - 00129538 _____ () C:\WINDOWS\DPINST.LOG
2014-12-29 19:49 - 2014-12-29 19:49 - 00002026 _____ () C:\Users\Public\Desktop\Sony PC Companion 2.1.lnk
2014-12-29 19:49 - 2014-12-29 19:49 - 00000000 ____D () C:\ProgramData\Sony
2014-12-29 19:49 - 2014-12-29 19:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
2014-12-29 19:49 - 2014-12-29 19:49 - 00000000 ____D () C:\Program Files\Sony
2014-12-29 19:48 - 2014-12-29 19:49 - 28488056 _____ (Sony Mobile Communications ) C:\Users\Hal\Downloads\Sony PC Companion_Web.exe
2014-12-29 09:57 - 2014-12-29 09:57 - 00149256 _____ () C:\WINDOWS\Minidump\122914-19203-01.dmp
2014-12-28 10:16 - 2014-12-28 10:16 - 00149208 _____ () C:\WINDOWS\Minidump\122814-18250-01.dmp
2014-12-27 19:47 - 2014-12-27 19:50 - 117990083 _____ () C:\Users\Hal\Downloads\Wiesenberg-A-D_BETA.7z
2014-12-27 17:08 - 2014-12-27 17:08 - 00509341 _____ () C:\Users\Hal\Downloads\SolarisUrbino12PLPatch-1.zip
2014-12-27 17:00 - 2014-12-27 17:00 - 152145980 _____ () C:\Users\Hal\Desktop\Solaris Urbino 12 PL 24.12.2014 0354.rar
2014-12-27 15:40 - 2014-12-27 15:41 - 00149256 _____ () C:\WINDOWS\Minidump\122714-19437-01.dmp
2014-12-26 19:59 - 2014-12-26 19:59 - 00149256 _____ () C:\WINDOWS\Minidump\122614-31500-01.dmp
2014-12-20 17:49 - 2014-12-20 17:49 - 00149160 _____ () C:\WINDOWS\Minidump\122014-15984-01.dmp
2014-12-20 13:32 - 2014-12-20 13:47 - 936439885 _____ () C:\Users\Hal\Downloads\Downloads.rar
2014-12-20 12:50 - 2014-12-20 13:14 - 118872850 _____ () C:\Users\Hal\Downloads\(Hudba)-Xindl-X--Čecháček-Made.rar
2014-12-19 19:43 - 2014-12-19 19:43 - 00000000 ____D () C:\Users\Hal\AppData\Roaming\LolClient
2014-12-19 18:06 - 2014-12-19 18:06 - 00000000 ____D () C:\ProgramData\Riot Games
2014-12-19 18:02 - 2014-12-19 18:05 - 00000000 ____D () C:\rads
2014-12-19 18:01 - 2014-12-19 18:01 - 00001625 _____ () C:\Users\Public\Desktop\League of Legends.lnk
2014-12-19 18:01 - 2014-12-19 18:01 - 00000000 ____D () C:\Riot Games
2014-12-19 18:01 - 2014-12-19 18:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\League of Legends
2014-12-19 18:01 - 2008-07-12 08:18 - 03851784 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_39.dll
2014-12-19 18:01 - 2008-07-12 08:18 - 01493528 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_39.dll
2014-12-19 18:01 - 2008-07-12 08:18 - 00467984 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_39.dll
2014-12-19 18:00 - 2014-12-19 18:02 - 00000000 ____D () C:\Users\Hal\AppData\Roaming\Riot Games
2014-12-19 17:59 - 2014-12-19 18:00 - 30993712 _____ (Riot Games) C:\Users\Hal\Downloads\LeagueofLegends_EUNE_Installer_9_15_2014.exe
2014-12-17 14:48 - 2014-12-17 14:49 - 14489193 _____ () C:\Users\Hal\Downloads\zANTI2.apk
2014-12-17 14:15 - 2014-12-17 14:16 - 00000000 ____D () C:\Users\Hal\.android
2014-12-17 14:14 - 2014-12-17 14:15 - 00000000 ____D () C:\Program Files\Kingo ROOT
2014-12-17 14:14 - 2014-12-17 14:14 - 00000967 _____ () C:\Users\Public\Desktop\Kingo ROOT.lnk
2014-12-17 14:14 - 2014-12-17 14:14 - 00000000 ____D () C:\Users\Hal\AppData\Roaming\Kingosoft
2014-12-17 14:14 - 2014-12-17 14:14 - 00000000 ____D () C:\Users\Hal\AppData\Local\Kingosoft
2014-12-17 14:14 - 2014-12-17 14:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kingo ROOT
2014-12-17 14:13 - 2014-12-17 14:14 - 18456616 _____ (Kingosoft Technology Ltd. ) C:\Users\Hal\Downloads\android_root.exe
2014-12-17 13:57 - 2014-12-17 13:57 - 00001569 _____ () C:\Users\Hal\Desktop\WPS Writer.lnk
2014-12-17 13:57 - 2014-12-17 13:57 - 00001567 _____ () C:\Users\Hal\Desktop\WPS Presentation.lnk
2014-12-17 13:57 - 2014-12-17 13:57 - 00001548 _____ () C:\Users\Hal\Desktop\WPS Spreadsheets.lnk
2014-12-17 13:57 - 2014-12-17 13:57 - 00000000 ____D () C:\Users\Hal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WPS Office
2014-12-17 13:36 - 2015-01-11 10:50 - 00000396 _____ () C:\WINDOWS\Tasks\WpsNotifyTask_Hal.job
2014-12-17 13:36 - 2015-01-11 10:47 - 00000396 _____ () C:\WINDOWS\Tasks\WpsUpdateTask_Hal.job
2014-12-17 13:36 - 2014-12-17 15:38 - 00000000 ____D () C:\Users\Hal\AppData\Local\Kingsoft
2014-12-17 13:35 - 2014-12-17 13:36 - 00000000 ____D () C:\Users\Hal\AppData\Roaming\kingsoft
2014-12-17 13:35 - 2014-12-17 13:36 - 00000000 ____D () C:\ProgramData\kingsoft
2014-12-17 13:24 - 2014-12-17 13:30 - 59789008 _____ (Kingsoft Corp. Ltd.) C:\Users\Hal\Downloads\wps_office_2014_4674_22.105.exe
2014-12-17 13:23 - 2014-12-17 13:23 - 00108565 _____ () C:\Users\Hal\Desktop\eset export.xml
2014-12-16 19:49 - 2014-12-16 19:49 - 00421788 _____ () C:\Users\Hal\Desktop\eset Wireshark.pcapng
2014-12-16 19:41 - 2014-12-16 19:41 - 00000218 _____ () C:\Users\Hal\AppData\Local\recently-used.xbel
2014-12-16 19:39 - 2014-12-16 19:39 - 00000000 ____D () C:\Users\Hal\AppData\Local\gtk-2.0
2014-12-16 18:25 - 2014-12-16 18:27 - 768491520 _____ () C:\Users\Hal\Desktop\capture-2.camrec
2014-12-16 17:35 - 2014-12-16 17:39 - 00000000 ____D () C:\Users\Hal\Documents\Ableton
2014-12-16 17:35 - 2014-12-16 17:35 - 03548552 _____ () C:\Users\Hal\Downloads\asinstall.exe
2014-12-16 17:35 - 2014-12-16 17:35 - 00002613 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Anvil Studio.lnk
2014-12-16 17:35 - 2014-12-16 17:35 - 00002601 _____ () C:\Users\Public\Desktop\Anvil Studio.lnk
2014-12-16 17:35 - 2014-12-16 17:35 - 00000000 ____D () C:\Program Files\Anvil Studio 2013
2014-12-16 17:35 - 2014-10-28 17:52 - 03837952 _____ () C:\Users\Hal\Downloads\astudio.msi
2014-12-16 17:35 - 2014-10-28 17:52 - 00434280 _____ () C:\Users\Hal\Downloads\setup.exe
2014-12-16 17:34 - 2014-12-16 17:37 - 00000000 ____D () C:\Users\Hal\AppData\Roaming\Ableton
2014-12-16 17:34 - 2014-12-16 17:34 - 00000000 ____D () C:\Program Files\Common Files\Propellerhead Software
2014-12-16 17:31 - 2014-12-16 17:31 - 00000901 _____ () C:\Users\Hal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ableton Live 9 Trial.lnk
2014-12-16 17:31 - 2014-12-16 17:31 - 00000000 ____D () C:\ProgramData\Ableton
2014-12-14 16:44 - 2014-12-14 16:44 - 00149256 _____ () C:\WINDOWS\Minidump\121414-17750-01.dmp
2014-12-13 10:07 - 2014-10-30 23:37 - 00129536 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2014-12-12 18:42 - 2014-12-12 18:42 - 00000000 ____D () C:\Users\Hal\Desktop\etska profily 1.15
2014-12-12 18:37 - 2014-12-12 18:42 - 141861040 _____ () C:\Users\Hal\Downloads\cyberlink_photo_director_4.exe
2014-12-12 18:22 - 2014-12-12 18:22 - 00001879 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Your Software Deals.lnk
2014-12-12 18:22 - 2014-12-12 18:22 - 00001227 _____ () C:\Users\Hal\Desktop\Ashampoo MP3 Cover Finder.lnk
2014-12-12 18:22 - 2014-12-12 18:22 - 00000214 _____ () C:\Users\Public\Desktop\Your Software Deals.url
2014-12-12 18:22 - 2014-12-12 18:22 - 00000000 ____D () C:\Users\Hal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ashampoo
2014-12-12 18:22 - 2014-12-12 18:22 - 00000000 ____D () C:\Users\Hal\AppData\Local\Ashampoo
2014-12-12 18:21 - 2014-12-12 18:22 - 00000000 ____D () C:\ProgramData\Ashampoo
2014-12-12 18:21 - 2014-12-12 18:21 - 00000000 ____D () C:\Program Files\Ashampoo
2014-12-12 18:18 - 2014-12-12 18:19 - 21278528 _____ (Ashampoo GmbH & Co. KG ) C:\Users\Hal\Downloads\ash_mp3_cover_finder_1_0_11.exe
2014-12-12 17:47 - 2014-12-12 17:47 - 00000000 ____D () C:\ProgramData\aiBvDRVJqFI3
2014-12-12 17:43 - 2014-12-12 17:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Consulta Conto
2014-12-12 17:43 - 2014-12-12 17:47 - 00000000 ____D () C:\Conto
2014-12-12 17:43 - 2014-12-12 17:43 - 00000000 ____D () C:\ProgramData\corb0s6HqFI3TaCSGtWn
2014-12-12 17:43 - 2006-05-14 06:25 - 00284672 _____ () C:\WINDOWS\system32\7za.dll
2014-12-12 17:40 - 2014-12-12 17:41 - 51125383 _____ (CONSULTA BÜROTECHNIK, s.r.o. ) C:\Users\Hal\Downloads\Conto_setup.exe

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-01-11 11:30 - 2014-10-23 13:17 - 00000970 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1252690407-766952165-3243391977-1001UA1cfeebb4356e1d6.job
2015-01-11 11:22 - 2014-04-11 19:51 - 00000970 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1252690407-766952165-3243391977-1001UA.job
2015-01-11 11:10 - 2014-09-18 17:59 - 00000914 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-01-11 11:04 - 2014-03-12 19:57 - 00000000 ____D () C:\Users\Hal\AppData\Roaming\Skype
2015-01-11 11:01 - 2014-09-30 16:57 - 01197213 _____ () C:\WINDOWS\WindowsUpdate.log
2015-01-11 10:49 - 2013-08-22 09:17 - 00000000 ____D () C:\WINDOWS\AppReadiness
2015-01-11 10:41 - 2014-03-07 17:54 - 00000000 ____D () C:\Program Files\Steam
2015-01-11 10:37 - 2014-03-07 17:54 - 00000000 ____D () C:\Program Files\Common Files\Steam
2015-01-11 10:36 - 2014-09-30 16:57 - 00141011 _____ () C:\WINDOWS\setupact.log
2015-01-11 10:36 - 2014-03-05 20:50 - 00000000 __RDO () C:\Users\Hal\SkyDrive
2015-01-10 10:17 - 2014-05-09 10:40 - 00000000 ____D () C:\ProgramData\firebird
2015-01-10 10:16 - 2014-10-06 15:28 - 251325001 _____ () C:\WINDOWS\MEMORY.DMP
2015-01-10 10:16 - 2014-03-07 14:33 - 00000000 ____D () C:\WINDOWS\Minidump
2015-01-10 10:16 - 2013-08-22 08:23 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2015-01-09 20:38 - 2014-03-05 13:11 - 00000000 ____D () C:\Users\Hal\Documents\Euro Truck Simulator 2
2015-01-09 20:00 - 2013-08-22 09:17 - 00000000 ____D () C:\WINDOWS\system32\sru
2015-01-09 19:30 - 2014-11-20 19:25 - 00000918 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1252690407-766952165-3243391977-1001Core1d004ef5b0f6c1c.job
2015-01-09 19:30 - 2014-04-11 19:51 - 00000918 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1252690407-766952165-3243391977-1001Core.job
2015-01-09 14:03 - 2013-08-22 09:17 - 00000000 ____D () C:\WINDOWS\Microsoft.NET
2015-01-06 19:38 - 2014-03-05 13:17 - 00000000 ____D () C:\Program Files\MSI Afterburner
2015-01-05 20:42 - 2014-09-13 11:36 - 00001718 _____ () C:\WINDOWS\Sandboxie.ini
2015-01-04 18:53 - 2012-07-26 07:43 - 00000000 ____D () C:\WINDOWS\CbsTemp
2015-01-04 12:32 - 2014-03-12 20:09 - 00295720 _____ () C:\WINDOWS\system32\PnkBstrB.xtr
2015-01-04 12:32 - 2014-03-10 17:21 - 00295720 _____ () C:\WINDOWS\system32\PnkBstrB.exe
2015-01-04 12:32 - 2014-03-10 17:21 - 00139264 _____ () C:\WINDOWS\system32\Drivers\PnkBstrK.sys
2015-01-04 12:24 - 2014-03-10 17:22 - 00000000 ____D () C:\Program Files\Battlelog Web Plugins
2015-01-04 12:21 - 2014-03-08 10:57 - 00000000 ____D () C:\ProgramData\Origin
2015-01-04 12:20 - 2014-03-08 10:57 - 00000000 ____D () C:\Program Files\Origin
2015-01-04 12:03 - 2013-08-22 09:17 - 00000000 ____D () C:\WINDOWS\system32\NDF
2015-01-03 19:56 - 2014-06-22 10:13 - 00000000 ____D () C:\Users\Hal\Documents\ETS2MP
2015-01-03 19:53 - 2014-05-04 12:24 - 00001125 _____ () C:\Users\Public\Desktop\Play Euro Truck Simulator 2 Multiplayer.lnk
2015-01-03 19:53 - 2014-05-04 12:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Euro Truck Simulator 2 Multiplayer
2015-01-03 19:53 - 2014-05-04 12:24 - 00000000 ____D () C:\Program Files\Euro Truck Simulator 2 Multiplayer
2015-01-03 17:04 - 2013-08-22 07:13 - 00262144 ___SH () C:\WINDOWS\system32\config\BBI
2015-01-03 14:58 - 2014-03-07 18:13 - 00000000 ____D () C:\Users\Hal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2014-12-29 21:02 - 2014-03-10 14:06 - 00000000 ____D () C:\Users\Hal\AppData\Roaming\Audacity
2014-12-29 19:49 - 2014-03-04 14:38 - 00000000 ___HD () C:\Program Files\InstallShield Installation Information
2014-12-28 16:02 - 2014-03-12 17:12 - 00000000 ____D () C:\Users\Hal\AppData\Local\CrashDumps
2014-12-26 20:46 - 2014-03-05 20:38 - 00000000 ____D () C:\Users\Hal
2014-12-26 15:15 - 2013-11-14 06:34 - 01745984 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2014-12-26 15:10 - 2014-03-12 19:57 - 00000000 ___RD () C:\Program Files\Skype
2014-12-26 15:10 - 2014-03-12 19:57 - 00000000 ____D () C:\ProgramData\Skype
2014-12-19 14:01 - 2014-12-06 19:50 - 00000000 ____D () C:\Users\Hal\AppData\Roaming\Spotify
2014-12-19 13:56 - 2014-12-06 19:51 - 00000000 ____D () C:\Users\Hal\AppData\Local\Spotify
2014-12-19 12:50 - 2014-08-22 14:28 - 00000000 ____D () C:\Program Files\RivaTuner Statistics Server
2014-12-18 17:17 - 2014-04-08 17:44 - 00000000 ____D () C:\Users\Hal\.VirtualBox
2014-12-17 14:03 - 2014-10-15 18:42 - 00016950 _____ () C:\WINDOWS\PFRO.log
2014-12-17 14:03 - 2013-08-22 08:22 - 00413464 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2014-12-16 18:25 - 2014-03-06 16:35 - 00003584 _____ () C:\Users\Hal\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-12-16 17:28 - 2014-10-21 18:34 - 696463360 _____ () C:\Users\Hal\Desktop\Setup.msi
2014-12-16 16:08 - 2014-04-19 20:54 - 00000000 ____D () C:\Users\Hal\AppData\Local\Adobe

Some content of TEMP:
====================
C:\Users\Hal\AppData\Local\Temp\bitool.dll
C:\Users\Hal\AppData\Local\Temp\InstHelper.exe
C:\Users\Hal\AppData\Local\Temp\qing_update.exe
C:\Users\Hal\AppData\Local\Temp\sfamcc00001.dll
C:\Users\Hal\AppData\Local\Temp\sfareca00001.dll
C:\Users\Hal\AppData\Local\Temp\sfextra.dll
C:\Users\Hal\AppData\Local\Temp\SkypeSetup.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed



===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================


Available physical RAM: 1680.49 MB
Total physical RAM: 3297.77 MB
Percentage of memory in use: 49%

==================== MBR and Partition Table ==================


==================== Scheduled Tasks (whitelisted) ==================

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1252690407-766952165-3243391977-1001Core.job => C:\Users\Hal\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1252690407-766952165-3243391977-1001Core1d004ef5b0f6c1c.job => C:\Users\Hal\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1252690407-766952165-3243391977-1001UA.job => C:\Users\Hal\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1252690407-766952165-3243391977-1001UA1cfeebb4356e1d6.job => C:\Users\Hal\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\WpsNotifyTask_Hal.job => C:\Users\Hal\AppData\Local\Kingsoft\WPS Office\9.1.0.4746\wtoolex\wpsnotify.exe
Task: C:\WINDOWS\Tasks\WpsUpdateTask_Hal.job => C:\Users\Hal\AppData\Local\Kingsoft\WPS Office\9.1.0.4746\wtoolex\wpsupdate.exe

==================== Alternate Data Streams (whitelisted) ==================

AlternateDataStreams: C:\Users\Hal\SkyDrive:ms-properties

==================== Security Center ==================

AV: ESET Smart Security 8.0 (Enabled - Up to date) {19259FAE-8396-A113-46DB-15B0E7DFA289}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: ESET Smart Security 8.0 (Enabled - Up to date) {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}
FW: ESET Personální firewall (Enabled) {211E1E8B-C9F9-A04B-6D84-BC85190CE5F2}



===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)


***** Velikost "Plochy" *****

Velikost slozky "C:\Users\Hal\Desktop" je 6114 MB.


***** Startup Programs *****


***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]


***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000


==================== End Of Log ==============================

máte poškozenou instalaci Windows, pc padá do modré smrti; do budoucna nedoporučuji u Windows 8.1 používat jakýkoliv nástroj třetí strany pro čištění registrů včetně CCleaneru (je to sice kvalitní nástroj, ale čištění databáze registrů je k ničemu, ke zrychlení pc to nepovede, a bohužel to má za následek více škody než užitku)

1. prosím o upload složky C:\Windows\Minidump
2. kombinace kláves "Windows+X" --> spustit Příkazový řádek (správce) --> povolit jeho spuštění --> vepsat a potvrdit enter: appwiz.cpl
- odinstalovat Apple Bonjour
- odinstalovat Eset Smart Security (po dobu testování prosím neinstalovat jiný antivir) --> restart pc
3. stáhnout nástroj ESET Uninstaller --> restart pc do Nouzového režimu --> klik pravým tl. myši na ESETUnistaller.exe --> Spustit jako správce --> provést odebrání zbytků po instalaci Esetu --> restart pc do normální režimu

4. stáhnout AdwCleaner --> Spustit jako správce --> souhlasit s licenčními podmínkami --> počkat na stažení databáze programu --> kliknout na tl. Scan --> po dokončení skenování kliknout na tl. Clean --> tl. OK --> OK --> OK --> po automatickém restartu pc se zobrazí log AdwCleaner[S?].txt, případně ho naleznete v umístění c:\AdwCleaner\ --> vložte sem

5. tvorba fixlistu pro FRST:
kombinace kláves "Windows+X" --> vepsat a potvrdit enter: notepad - do otevřeného okna Poznámkového bloku zkopírovat následující:
--> textový soubor uložit do stejného umístění jako FRST.exe pod názvem fixlist.txt --> pravé tl. myši na FRST.exe --> Spustit jako správce --> klikněte na tl. Fix --> proběhne oprava (restart pc) --> log Fixlog.txt vložte sem

6. kombinace kláves "Windows+X" --> spustit Příkazový řádek (správce) --> povolit jeho spuštění --> vložit a potvrdit enter: netsh int ip reset --> restart pc

vyzkoušejte po těchto krocích, zda dochází k odpojování od sítě (nezapomeňte, že jsme odinstalovali antivir, surforvat s rozumem )

Jste šikulka, nevěděl jsem, že se dá z logu vyčíst, že mi to při startu spadne do BSOD
1) Ještě než začnu dělat kroky, zeptám se: Koupili jsme si Eset family pack, a použili jsme všechny klíče, doufám správně, zůstanou tam nějaké soubory při odinstalaci, abych nemusel zase opisovat licenční klíč (aby nebyl zablokovanej)? Maximálně můžu antivirus ( i s firewallem vypnout komplet.
2) Nouzák mi nejde, nevim proč. Mužu si mačkat F2, F8, kombinaci CTRL+Fx a nic... Bohužel se nemůžu dostat ani do nastavení, hnedka mi spadne... Nevim jak to popsat.. Viz VIDEO

Po Vaší odpovědi se vrhnu na další kroky.

Díky, že se mnou trávíte Váš čas.

zkuste prosím nahrát obsah adresáře c:\Windows\Minidump

1) Eset Smart Security musíme odinstalovat, nestačí pouhé vypnutí; po aplikaci ESET Uninstalleru v pc nezůstanou žádné informace o licenci, bude bohužel nutné program znovu nainstalovat i aktivovat (i kdyby nastal problém s aktivací, podpora Esetu Vám rychle pomůže)

2) video je důkazem poškozeného systému; do Nouzového režimu se dostanete přes:

kombinace kláves "Windows+X" --> spustit Příkazový řádek (správce) --> zadat a potvrdit enter: shutdown -r -o -f -t 00 --> najede startovací nabídka Windows --> zvolte Odstranit potíže --> Upřesnit možnosti --> Nastavení spouštění --> tl. Restartovat --> najede okno Nastavení spuštění --> stisknutím klávesy F4 spustíte pc v nouzového režimu

3) nejdříve tedy odinstalujte Eset, pak v nouzovém režimu použijte Eset Uninstaller

4) v normálním řežimu stáhněte do pc AppsDiagnostic.diagcab (nástroj je v angličtině, ale platí pro všechny jazykové verze Windows) --> spustit --> klik na tl. Advanced --> klik na tl. Run as administrator --> pokud vyskočí okno UAC, povolte spuštění aplikace --> znovu klik na tl. Advanced --> zrušit zatržení u "Apply repairs automatically" --> Next --> nechat zatržené pouze "Repair missing or corrupt files" --> Next --> nakonec můžete přes volbu "View detailed information" zjistit a napsat, co bylo opraveno --> restart pc --> pokud půjde spustit aplikace "Nastavení počítače" (viz Vaše video), pak prosím pokračujte bodem 4. v předchozím příspěvku

Obsah složky Minidump nikam uploadovat nemůžu, ani do raru to nedostanu-přístup byl odepřen. Ani ho neotevřu-A to jsem správce.
Jdu na váš postup s aplikací na opravu

Nástroj mám v češtině, AJ umím, ale vy máte napsáno, abych vybral (přeložím to) "Opravit pouze chybějící soubory či poškozené soubory". Já tam mám víc chyb.

Market se mi otevře při opravě, nic to ale neopraví. Ale pokrok už je: Otevřu ho (market)!

Zítra (pokud to bude fakt potřeba, moc se mi do toho nechce ) odinstaluji Eseta.

---------------------------------------------------------------------------------------------
LOG Z ADWARE CLEANERu:


# AdwCleaner v4.107 - Report created 13/01/2015 at 16:06:49
# Updated 07/01/2015 by Xplode
# Database : 2015-01-13.2 [Live]
# Operating System : Windows 8.1 (32 bits)
# Username : Hal - HAL3000
# Running from : C:\Users\Hal\Downloads\adwcleaner_4.107.exe
# Option : Clean

***** [ Services ] *****

Service Deleted : ASGT

***** [ Files / Folders ] *****

Folder Deleted : C:\Users\Hal\AppData\Local\CrashRpt
File Deleted : C:\WINDOWS\system32\ASGT.exe

***** [ Scheduled Tasks ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\svetaplikaci.tyden.cz

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17416


-\\ Mozilla Firefox v34.0.5 (x86 cs)


-\\ Google Chrome v39.0.2171.95


*************************

AdwCleaner[R0].txt - [907 octets] - [30/05/2014 18:10:58]
AdwCleaner[R1].txt - [1100 octets] - [13/01/2015 16:04:04]
AdwCleaner[R2].txt - [1160 octets] - [13/01/2015 16:05:56]
AdwCleaner[S0].txt - [951 octets] - [30/05/2014 18:16:20]
AdwCleaner[S1].txt - [1090 octets] - [13/01/2015 16:06:49]

########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [1150 octets] ##########

LOG Z FRST:


Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 11-01-2015
Ran by Hal at 2015-01-13 16:12:25 Run:1
Running from C:\Users\Hal\Desktop
Loaded Profile: Hal (Available profiles: Hal)
Boot Mode: Normal

==============================================

Content of fixlist:
*****************
Start
CloseProcesses:
CreateRestorePoint:

ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
2014-12-12 18:22 - 2014-12-12 18:22 - 00000214 _____ () C:\Users\Public\Desktop\Your Software Deals.url
2014-12-12 17:47 - 2014-12-12 17:47 - 00000000 ____D () C:\ProgramData\aiBvDRVJqFI3
2014-12-12 17:43 - 2014-12-12 17:43 - 00000000 ____D () C:\ProgramData\corb0s6HqFI3TaCSGtWn

Hosts:
EmptyTemp:
Reboot:
End
*****************

Processes closed successfully.
Restore point was successfully created.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00avast" => Key deleted successfully.
HKCR\CLSID\{472083B0-C522-11CF-8763-00608CC02F24} => Key not found.
C:\Users\Public\Desktop\Your Software Deals.url => Moved successfully.
C:\ProgramData\aiBvDRVJqFI3 => Moved successfully.
C:\ProgramData\corb0s6HqFI3TaCSGtWn => Moved successfully.
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.
EmptyTemp: => Removed 26.8 GB temporary data.


The system needed a reboot.

==== End of Fixlog 16:16:00 ====

kombinace kláves "Windows+X" --> spustit Příkazový řádek (správce) --> postupně zadat a potvrdit jednotlivé řádky:

takeown /F c:\Windows\Minidump /R /D A
cacls c:\Windows\Minidump /E /T /C /G Hal:F

dostanete se nyní do složky c:\Windows\Minidump?

jo, díky, tak je to tu: