VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Preventivní kontrola děkuji

https://forum.viry.cz:443/viewtopic.php?t=142947

Stránka 1 z 1

Preventivní kontrola děkuji

Napsal: 11 úno 2015 19:23
od xstation
Byla by možná preventivní kontrola? Nyní žádné problémy s notebookem nemám, takže jen pro jistotu.
Děkuji


Logfile of random's system information tool 1.10 (written by random/random)
Run by Martin at 2015-02-11 19:21:13
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 9 GB (33%) free of 28 GB
Total RAM: 1919 MB (35% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:21:26, on 11.2.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17631)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskhost.exe
C:\Windows\Explorer.EXE
C:\Windows\System32\rundll32.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\Program Files\Opera\27.0.1689.66\opera.exe
C:\Program Files\Opera\27.0.1689.66\opera.exe
C:\Program Files\Opera\27.0.1689.66\opera.exe
C:\Program Files\Opera\27.0.1689.66\opera.exe
C:\Program Files\Opera\27.0.1689.66\opera.exe
C:\Program Files\Opera\27.0.1689.66\opera.exe
C:\Program Files\Opera\27.0.1689.66\opera.exe
C:\Program Files\Opera\27.0.1689.66\opera.exe
C:\Program Files\Opera\27.0.1689.66\opera.exe
D:\Prográmky\viry.cz\RSIT.exe
C:\Program Files\trend micro\Martin.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:Tabs
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_25\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_25\bin\jp2ssv.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {5AE58FCF-6F6A-49B2-B064-02492C66E3F4} (MUCatalogWebControl Class) - http://catalog.update.microsoft.com/v7/ ... 5444611000
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: ASLDR Service (ASLDRService) - Unknown owner - C:\Program Files\ATK Hotkey\ASLDRSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: Syntek AVStream USB2.0 WebCam Service (StkSSrv) - Syntek America Inc. - C:\Windows\System32\StkCSrv.exe

--
End of file - 3976 bytes

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_25\bin\ssv.dll [2014-11-29 460712]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_25\bin\jp2ssv.dll [2014-11-29 172968]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"=C:\Windows\system32\NvCpl.dll [2009-03-06 13605408]
"NvMediaCenter"=C:\Windows\system32\NvMcTray.dll [2009-03-06 92704]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2006-11-22 815104]
"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2014-10-01 5088456]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BrowserChoice]
C:\Windows\System32\browserchoice.exe [2010-02-11 293376]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvSvc]
C:\Windows\system32\nvsvc.dll [2009-03-06 735776]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RTHDVCPL]
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2013-10-24 12017368]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SMSERIAL]
C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe [2009-10-26 1458176]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files\Common Files\Java\Java Update\jusched.exe [2014-10-07 507776]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"VIDC.I420"=MSh263.drv
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-02-11 19:15:09 ----A---- C:\Windows\system32\jscript9diag.dll
2015-02-11 19:15:08 ----A---- C:\Windows\system32\jscript9.dll
2015-02-11 19:08:31 ----D---- C:\rsit
2015-02-11 19:08:31 ----D---- C:\Program Files\trend micro
2015-02-10 21:50:52 ----A---- C:\Windows\system32\adtschema.dll
2015-02-10 21:50:51 ----A---- C:\Windows\system32\lsasrv.dll
2015-02-10 21:50:51 ----A---- C:\Windows\system32\drivers\cng.sys
2015-02-10 21:50:50 ----A---- C:\Windows\system32\sspisrv.dll
2015-02-10 21:50:50 ----A---- C:\Windows\system32\sspicli.dll
2015-02-10 21:50:50 ----A---- C:\Windows\system32\secur32.dll
2015-02-10 21:50:50 ----A---- C:\Windows\system32\msobjs.dll
2015-02-10 21:50:50 ----A---- C:\Windows\system32\msaudite.dll
2015-02-10 21:50:50 ----A---- C:\Windows\system32\lsass.exe
2015-02-10 21:50:50 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2015-02-10 21:50:50 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2015-02-10 21:50:50 ----A---- C:\Windows\system32\auditpol.exe
2015-02-10 21:49:52 ----A---- C:\Windows\system32\win32k.sys
2015-02-10 21:49:21 ----A---- C:\Windows\system32\ntoskrnl.exe
2015-02-10 21:49:21 ----A---- C:\Windows\system32\ntkrnlpa.exe
2015-02-10 21:49:03 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-02-10 21:49:03 ----A---- C:\Windows\system32\ieetwproxystub.dll
2015-02-10 21:49:03 ----A---- C:\Windows\system32\ieetwcollector.exe
2015-02-10 21:49:03 ----A---- C:\Windows\system32\ie4uinit.exe
2015-02-10 21:49:02 ----A---- C:\Windows\system32\urlmon.dll
2015-02-10 21:49:02 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2015-02-10 21:49:02 ----A---- C:\Windows\system32\jsproxy.dll
2015-02-10 21:49:02 ----A---- C:\Windows\system32\ieUnatt.exe
2015-02-10 21:49:02 ----A---- C:\Windows\system32\iernonce.dll
2015-02-10 21:49:02 ----A---- C:\Windows\system32\iedkcs32.dll
2015-02-10 21:49:01 ----A---- C:\Windows\system32\msfeeds.dll
2015-02-10 21:49:01 ----A---- C:\Windows\system32\ieapfltr.dll
2015-02-10 21:49:01 ----A---- C:\Windows\system32\dxtmsft.dll
2015-02-10 21:48:59 ----A---- C:\Windows\system32\msrating.dll
2015-02-10 21:48:58 ----A---- C:\Windows\system32\wininet.dll
2015-02-10 21:48:58 ----A---- C:\Windows\system32\iesetup.dll
2015-02-10 21:48:58 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2015-02-10 21:48:56 ----A---- C:\Windows\system32\dxtrans.dll
2015-02-10 21:48:55 ----A---- C:\Windows\system32\ieui.dll
2015-02-10 21:48:54 ----A---- C:\Windows\system32\ieframe.dll
2015-02-10 21:48:52 ----A---- C:\Windows\system32\mshtmled.dll
2015-02-10 21:48:51 ----A---- C:\Windows\system32\mshtmlmedia.dll
2015-02-10 21:48:51 ----A---- C:\Windows\system32\MshtmlDac.dll
2015-02-10 21:48:50 ----A---- C:\Windows\system32\iertutil.dll
2015-02-10 21:48:48 ----A---- C:\Windows\system32\mshtml.dll
2015-02-10 21:48:46 ----A---- C:\Windows\system32\vbscript.dll
2015-02-10 21:43:59 ----A---- C:\Windows\system32\schannel.dll
2015-02-10 21:43:59 ----A---- C:\Windows\system32\kerberos.dll
2015-02-10 21:43:58 ----A---- C:\Windows\system32\wdigest.dll
2015-02-10 21:43:58 ----A---- C:\Windows\system32\TSpkg.dll
2015-02-10 21:43:58 ----A---- C:\Windows\system32\ncrypt.dll
2015-02-10 21:43:58 ----A---- C:\Windows\system32\msv1_0.dll
2015-02-10 21:43:57 ----A---- C:\Windows\system32\credssp.dll
2015-02-10 21:43:25 ----A---- C:\Windows\system32\WindowsCodecs.dll
2015-02-10 21:40:57 ----A---- C:\Windows\system32\scesrv.dll
2015-02-02 12:36:38 ----D---- C:\Users\Martin\AppData\Roaming\Dev-Cpp
2015-02-02 12:34:54 ----D---- C:\Dev-Cpp
2015-01-17 10:34:08 ----D---- C:\ProgramData\GRETECH
2015-01-17 10:31:42 ----D---- C:\Users\Martin\AppData\Roaming\GRETECH
2015-01-17 10:31:24 ----D---- C:\Program Files\GRETECH
2015-01-14 18:17:15 ----A---- C:\Windows\system32\TSWbPrxy.exe
2015-01-14 18:17:15 ----A---- C:\Windows\system32\nlasvc.dll
2015-01-14 18:17:15 ----A---- C:\Windows\system32\nlaapi.dll
2015-01-14 18:17:15 ----A---- C:\Windows\system32\ncsi.dll
2015-01-14 18:17:13 ----A---- C:\Windows\system32\profsvc.dll
2015-01-14 18:16:39 ----A---- C:\Windows\system32\drivers\mrxdav.sys

======List of files/folders modified in the last 1 month======

2015-02-11 19:21:05 ----D---- C:\Program Files\Opera
2015-02-11 19:20:22 ----D---- C:\Windows\Temp
2015-02-11 19:16:16 ----D---- C:\Windows\winsxs
2015-02-11 19:16:07 ----D---- C:\Windows\system32\en-US
2015-02-11 19:16:07 ----D---- C:\Windows\System32
2015-02-11 19:15:54 ----SHD---- C:\System Volume Information
2015-02-11 19:08:31 ----RD---- C:\Program Files
2015-02-11 19:07:34 ----D---- C:\Windows\system32\config
2015-02-10 22:35:14 ----D---- C:\Windows\system32\drivers
2015-02-10 22:35:14 ----D---- C:\Windows\system32\cs-CZ
2015-02-10 22:35:11 ----D---- C:\Program Files\Internet Explorer
2015-02-10 22:33:56 ----D---- C:\Users\Martin\AppData\Roaming\Skype
2015-02-10 22:27:12 ----D---- C:\Windows\system32\MRT
2015-02-10 22:14:12 ----D---- C:\Windows\debug
2015-02-10 22:13:53 ----A---- C:\Windows\system32\MRT.exe
2015-02-10 22:06:29 ----SHD---- C:\Windows\Installer
2015-02-10 22:06:22 ----D---- C:\ProgramData\Microsoft Help
2015-02-10 21:48:23 ----D---- C:\Windows\system32\catroot2
2015-02-10 21:26:47 ----D---- C:\Windows\Prefetch
2015-02-09 17:44:55 ----D---- C:\Windows\inf
2015-02-09 17:44:55 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-02-05 11:29:16 ----A---- C:\Windows\system32\FlashPlayerApp.exe
2015-02-04 00:19:17 ----D---- C:\Windows\system32\Tasks
2015-01-31 12:31:16 ----D---- C:\Windows
2015-01-23 11:03:08 ----D---- C:\Program Files\SiMoCo
2015-01-17 10:34:08 ----HD---- C:\ProgramData
2015-01-15 23:50:37 ----D---- C:\Program Files\SumatraPDF
2015-01-14 22:38:26 ----D---- C:\Program Files\WinRAR

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 epfwwfp;epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [2014-10-10 51288]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R1 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2014-10-10 191928]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2014-10-10 135296]
R1 EpfwLWF;Epfw NDIS LightWeight Filter; C:\Windows\system32\DRIVERS\EpfwLWF.sys [2014-10-10 37928]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R2 epfw;epfw; C:\Windows\system32\DRIVERS\epfw.sys [2014-10-10 176448]
R2 rimsptsk;rimsptsk; C:\Windows\system32\DRIVERS\rimsptsk.sys [2009-06-25 44544]
R3 BCM43XX;Ovladač síťového adaptéru Broadcom 802.11; C:\Windows\system32\DRIVERS\bcmwl6.sys [2000-01-01 2710592]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2013-11-05 2888536]
R3 MTsensor;ATK0100 ACPI UTILITY; C:\Windows\system32\DRIVERS\ATKACPI.sys [2009-05-13 14392]
R3 nvsmu;nvsmu; C:\Windows\system32\DRIVERS\nvsmu.sys [2009-06-29 17920]
R3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2010-11-20 84992]
R3 smserial;smserial; C:\Windows\system32\DRIVERS\smserial.sys [2009-10-26 1095936]
R3 StkCMini;Syntek AVStream USB2.0 1.3M WebCam; C:\Windows\System32\Drivers\StkCMini.sys [2007-01-19 1324544]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2006-11-22 181304]
S2 Parvdm;Parvdm; C:\Windows\system32\drivers\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\Windows\system32\drivers\djsvs.sys [2009-07-14 70720]
S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 cpuz136;cpuz136; \??\C:\Users\Martin\AppData\Local\Temp\cpuz136\cpuz136_x32.sys []
S3 HX9USB;JP1081 USB2.0 To Fast Ethernet Adapter; C:\Windows\system32\DRIVERS\jp97usb.sys [2010-11-08 17408]
S3 lvupdtio;lvupdtio; \??\C:\Program Files\ASUS\ASUS Live Update\SYS64\lvupdtio.sys []
S3 netr28u;RT2870 USB Extensible Wireless LAN Card Driver; C:\Windows\system32\DRIVERS\netr28u.sys []
S3 RTL8023xp;Realtek 10/100 NIC Family NDIS x86 Driver; C:\Windows\system32\DRIVERS\Rtnicxp.sys [2009-07-13 43008]
S3 Ser2plx86;Prolific Serial port WDF driver; C:\Windows\system32\DRIVERS\ser2pl.sys [2014-08-15 140800]
S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 ss_bbus;SAMSUNG USB Mobile Device (WDM); C:\Windows\system32\DRIVERS\ss_bbus.sys [2009-09-19 98432]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-20 27264]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 36352]
S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\drivers\viac7.sys [2009-07-14 52736]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 ASLDRService;ASLDR Service; C:\Program Files\ATK Hotkey\ASLDRSrv.exe [2007-02-05 94208]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2014-10-01 1349576]
R2 StkSSrv;Syntek AVStream USB2.0 WebCam Service; C:\Windows\System32\StkCSrv.exe [2006-12-11 24576]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2014-12-11 315496]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-02-05 267440]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2015-01-12 102912]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S4 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2009-03-06 203296]

-----------------EOF-----------------

Re: Preventivní kontrola děkuji

Napsal: 11 úno 2015 20:03
od altrok
Zdravim :bye:

:arrow: Log je cisty, takze na to jen v rychlovce mrknem :)

:arrow: V ramci cisteni Vam budou vyprazdneny docasne adresare (vcetne Kose).

:arrow: Ulozte na plochu AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/ (nebo http://www.bleepingcomputer.com/download/adwcleaner/ )
  • ukoncete vsechny programy
  • kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
  • kliknete na Scan, pote na Clean
  • po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\AdwCleaner [Sx].txt), jehoz obsah mi zkopirujte do pristi odpovedi

Re: Preventivní kontrola děkuji

Napsal: 11 úno 2015 20:16
od xstation
# AdwCleaner v4.110 - Logfile created 11/02/2015 at 20:13:17
# Updated 05/02/2015 by Xplode
# Database : 2015-02-09.1 [Server]
# Operating system : Windows 7 Home Premium Service Pack 1 (x86)
# Username : Martin - ASUSNB
# Running from : C:\Users\Martin\Desktop\adwcleaner_4.110.exe
# Option : Cleaning

***** [ Services ] *****


***** [ Files / Folders ] *****

File Deleted : C:\Users\Martin\AppData\Roaming\Opera Software\Opera Stable\Local Storage\hxxps_static.olark.com_0.localstorage-journal

***** [ Scheduled tasks ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****


***** [ Web browsers ] *****

-\\ Internet Explorer v11.0.9600.17631


-\\ Opera v27.0.1689.69


*************************

AdwCleaner[R1].txt - [875 bytes] - [11/02/2015 20:10:31]
AdwCleaner[S0].txt - [805 bytes] - [11/02/2015 20:13:17]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [863 bytes] ##########

Re: Preventivní kontrola děkuji

Napsal: 11 úno 2015 20:22
od altrok
:arrow: Dejte log FRST.txt, prilozte i Addition.txt - http://forum.viry.cz/viewtopic.php?f=30&t=133101

Re: Preventivní kontrola děkuji

Napsal: 11 úno 2015 20:34
od xstation
FRST.txt

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 11-02-2015 02
Ran by Martin (administrator) on ASUSNB on 11-02-2015 20:29:15
Running from C:\Users\Martin\Desktop
Loaded Profiles: Martin (Available profiles: Martin)
Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X86) OS Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Opera)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Microsoft Corporation) C:\Windows\System32\wlanext.exe
() C:\Program Files\ATK Hotkey\ASLDRSrv.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\ekrn.exe
(ATK0100) C:\Program Files\ATK Hotkey\HControl.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
() C:\Program Files\Wireless Console 2\wcourier.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
(Syntek America Inc.) C:\Windows\System32\StkCSrv.exe
() C:\Program Files\ATK Hotkey\ATKOSD.exe
(Opera Software) C:\Program Files\Opera\27.0.1689.69\opera.exe
(Opera Software) C:\Program Files\Opera\27.0.1689.69\opera.exe
(Opera Software) C:\Program Files\Opera\27.0.1689.69\opera.exe
(Opera Software) C:\Program Files\Opera\27.0.1689.69\opera.exe
(Opera Software) C:\Program Files\Opera\27.0.1689.69\opera.exe
(Opera Software) C:\Program Files\Opera\27.0.1689.69\opera.exe
(Opera Software) C:\Program Files\Opera\27.0.1689.69\opera.exe
(Opera Software) C:\Program Files\Opera\27.0.1689.69\opera.exe
(Opera Software) C:\Program Files\Opera\27.0.1689.69\opera.exe
(Opera Software) C:\Program Files\Opera\27.0.1689.69\opera.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [NvCplDaemon] => RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
HKLM\...\Run: [NvMediaCenter] => RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [815104 2006-11-22] (Synaptics, Inc.)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Smart Security\egui.exe [5088456 2014-10-01] (ESET)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKU\S-1-5-21-3443184700-689492710-194535619-1000\Software\Microsoft\Internet Explorer\Main,Start Page = about:Tabs
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_25\bin\ssv.dll (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_25\bin\jp2ssv.dll (Oracle Corporation)
DPF: {5AE58FCF-6F6A-49B2-B064-02492C66E3F4} http://catalog.update.microsoft.com/v7/ ... 5444611000
Tcpip\Parameters: [DhcpNameServer] 10.0.0.1 10.0.0.1

FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.25.2 -> C:\Program Files\Java\jre1.8.0_25\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.25.2 -> C:\Program Files\Java\jre1.8.0_25\bin\plugin2\npjp2.dll (Oracle Corporation)
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird

Opera:
=======
OPR Extension: (Adblock Plus) - C:\Users\Martin\AppData\Roaming\Opera Software\Opera Stable\Extensions\oidhhegpmlfpoeialbgcdocjalghfpkp [2014-10-28]

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 ASLDRService; C:\Program Files\ATK Hotkey\ASLDRSrv.exe [94208 2007-02-05] () [File not signed]
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [1349576 2014-10-01] (ESET)
R2 StkSSrv; C:\Windows\System32\StkCSrv.exe [24576 2006-12-11] (Syntek America Inc.)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [191928 2014-10-10] (ESET)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [135296 2014-10-10] (ESET)
R2 epfw; C:\Windows\System32\DRIVERS\epfw.sys [176448 2014-10-10] (ESET)
R1 EpfwLWF; C:\Windows\System32\DRIVERS\EpfwLWF.sys [37928 2014-10-10] (ESET)
R0 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [51288 2014-10-10] (ESET)
S3 HX9USB; C:\Windows\System32\DRIVERS\jp97usb.sys [17408 2010-11-08] (JIAPENG Network Technology) [File not signed]
R3 MTsensor; C:\Windows\System32\DRIVERS\ATKACPI.sys [14392 2009-05-13] (ASUS)
S3 Ser2plx86; C:\Windows\System32\DRIVERS\ser2pl.sys [140800 2014-08-15] (Prolific Technology Inc.)
S3 ss_bbus; C:\Windows\System32\DRIVERS\ss_bbus.sys [98432 2009-09-19] (MCCI)
R3 StkCMini; C:\Windows\System32\Drivers\StkCMini.sys [1324544 2007-01-19] (Syntek)
S3 cpuz136; \??\C:\Users\Martin\AppData\Local\Temp\cpuz136\cpuz136_x32.sys [X]
S3 lvupdtio; \??\C:\Program Files\ASUS\ASUS Live Update\SYS64\lvupdtio.sys [X]
S3 netr28u; system32\DRIVERS\netr28u.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-02-11 20:29 - 2015-02-11 20:29 - 00006298 _____ () C:\Users\Martin\Desktop\FRST.txt
2015-02-11 20:28 - 2015-02-11 20:29 - 00000000 ____D () C:\FRST
2015-02-11 20:27 - 2015-02-11 20:27 - 01125376 _____ (Farbar) C:\Users\Martin\Desktop\FRST.exe
2015-02-11 20:26 - 2015-02-11 20:26 - 00029696 _____ () C:\Users\Martin\AppData\Local\MSGBOX.EXE
2015-02-11 20:25 - 2015-02-11 20:26 - 00000708 _____ () C:\Users\Martin\Desktop\Nový textový dokument.txt
2015-02-11 20:10 - 2015-02-11 20:13 - 00000000 ____D () C:\AdwCleaner
2015-02-11 20:08 - 2015-02-11 20:08 - 02112512 _____ () C:\Users\Martin\Desktop\adwcleaner_4.110.exe
2015-02-11 19:15 - 2015-01-23 04:43 - 00620032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-02-11 19:15 - 2015-01-23 04:17 - 04300800 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-02-11 19:08 - 2015-02-11 19:21 - 00000000 ____D () C:\Program Files\trend micro
2015-02-11 19:08 - 2015-02-11 19:10 - 00000000 ____D () C:\rsit
2015-02-10 21:50 - 2015-01-15 08:46 - 00136640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-02-10 21:50 - 2015-01-15 08:46 - 00067520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-02-10 21:50 - 2015-01-15 08:43 - 00100352 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-02-10 21:50 - 2015-01-15 08:43 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-02-10 21:50 - 2015-01-15 08:42 - 01061376 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-02-10 21:50 - 2015-01-15 08:42 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2015-02-10 21:50 - 2015-01-15 08:42 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-02-10 21:50 - 2015-01-15 08:42 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-02-10 21:50 - 2015-01-15 08:39 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-02-10 21:50 - 2015-01-15 08:39 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2015-02-10 21:50 - 2015-01-15 08:37 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-02-10 21:50 - 2015-01-15 05:21 - 00369968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2015-02-10 21:49 - 2015-01-14 06:44 - 03972544 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2015-02-10 21:49 - 2015-01-14 06:44 - 03917760 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-02-10 21:49 - 2015-01-14 06:09 - 00342712 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-02-10 21:49 - 2015-01-12 03:21 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-02-10 21:49 - 2015-01-12 03:07 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2015-02-10 21:49 - 2015-01-12 03:00 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-02-10 21:49 - 2015-01-12 02:59 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-02-10 21:49 - 2015-01-12 02:55 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-02-10 21:49 - 2015-01-12 02:55 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2015-02-10 21:49 - 2015-01-12 02:48 - 00667648 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2015-02-10 21:49 - 2015-01-12 02:45 - 00418304 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-02-10 21:49 - 2015-01-12 02:40 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-02-10 21:49 - 2015-01-12 02:23 - 00688640 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-02-10 21:49 - 2015-01-12 02:23 - 00684544 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-02-10 21:49 - 2015-01-12 01:56 - 01307136 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-02-10 21:49 - 2015-01-12 01:55 - 00710144 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-02-10 21:49 - 2015-01-09 02:45 - 02380288 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-02-10 21:48 - 2015-01-12 03:25 - 19740160 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-02-10 21:48 - 2015-01-12 03:21 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2015-02-10 21:48 - 2015-01-12 03:08 - 00503296 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-02-10 21:48 - 2015-01-12 03:07 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-02-10 21:48 - 2015-01-12 03:05 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-02-10 21:48 - 2015-01-12 03:02 - 02277888 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-02-10 21:48 - 2015-01-12 02:57 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-02-10 21:48 - 2015-01-12 02:36 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-02-10 21:48 - 2015-01-12 02:35 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-02-10 21:48 - 2015-01-12 02:33 - 00285696 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-02-10 21:48 - 2015-01-12 02:23 - 02052608 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-02-10 21:48 - 2015-01-12 02:22 - 01155072 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2015-02-10 21:48 - 2015-01-12 02:14 - 12829184 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-02-10 21:48 - 2015-01-12 02:00 - 01888256 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-02-10 21:43 - 2015-01-13 03:49 - 01230336 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2015-02-10 21:43 - 2015-01-10 07:27 - 00550912 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-02-10 21:43 - 2015-01-10 07:27 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-02-10 21:43 - 2015-01-10 07:27 - 00248832 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-02-10 21:43 - 2015-01-10 07:27 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-02-10 21:43 - 2015-01-10 07:27 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-02-10 21:43 - 2015-01-10 07:27 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-02-10 21:43 - 2015-01-10 07:27 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-02-10 21:40 - 2014-12-08 03:46 - 00308224 _____ (Microsoft Corporation) C:\Windows\system32\scesrv.dll
2015-02-02 12:36 - 2015-02-02 12:47 - 00000000 ____D () C:\Users\Martin\AppData\Roaming\Dev-Cpp
2015-02-02 12:35 - 2015-02-02 12:41 - 00000585 _____ () C:\Users\Martin\Desktop\Dev-C++.lnk
2015-02-02 12:34 - 2015-02-08 17:40 - 00000000 ____D () C:\Dev-Cpp
2015-01-31 12:31 - 2015-02-11 20:14 - 00001288 _____ () C:\Windows\setupact.log
2015-01-31 12:31 - 2015-01-31 12:31 - 00000000 _____ () C:\Windows\setuperr.log
2015-01-30 19:54 - 2015-01-30 19:54 - 00000000 ____D () C:\Users\Martin\AppData\Local\Macromedia
2015-01-30 19:38 - 2015-01-30 19:38 - 00000000 ____D () C:\Users\Martin\AppData\Local\Moonchild Productions
2015-01-23 09:52 - 2015-01-23 09:52 - 00284600 _____ () C:\Users\Martin\Desktop\Evidence REBOX - posl 22.1.2015.xlsm
2015-01-17 10:49 - 2015-01-23 11:06 - 00000000 ____D () C:\Users\Martin\Plocha
2015-01-17 10:34 - 2015-01-17 10:34 - 00000000 ____D () C:\ProgramData\GRETECH
2015-01-17 10:31 - 2015-01-17 10:31 - 00000000 ____D () C:\Users\Martin\AppData\Roaming\GRETECH
2015-01-17 10:31 - 2015-01-17 10:31 - 00000000 ____D () C:\Program Files\GRETECH
2015-01-15 19:05 - 2015-01-15 19:06 - 00002562 _____ () C:\Windows\diagwrn.xml
2015-01-15 19:05 - 2015-01-15 19:06 - 00001908 _____ () C:\Windows\diagerr.xml
2015-01-14 22:38 - 2015-01-14 22:39 - 00000000 ____D () C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-01-14 22:38 - 2015-01-14 22:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-01-14 18:17 - 2014-12-19 03:43 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2015-01-14 18:17 - 2014-12-11 18:47 - 00046592 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2015-01-14 18:17 - 2014-12-06 04:50 - 00242688 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2015-01-14 18:17 - 2012-10-03 17:42 - 00156672 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2015-01-14 18:17 - 2012-10-03 17:42 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\nlaapi.dll
2015-01-14 18:16 - 2014-12-19 02:34 - 00116224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-02-11 20:29 - 2014-11-17 19:17 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-02-11 20:22 - 2009-07-14 05:34 - 00028128 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-02-11 20:22 - 2009-07-14 05:34 - 00028128 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-02-11 20:14 - 2009-07-14 05:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-02-11 20:13 - 2014-03-21 07:17 - 02083420 _____ () C:\Windows\WindowsUpdate.log
2015-02-11 20:09 - 2014-08-20 17:49 - 00000000 ____D () C:\Users\Martin\AppData\Roaming\Skype
2015-02-11 19:21 - 2014-03-21 12:18 - 00000000 ____D () C:\Program Files\Opera
2015-02-10 22:37 - 2009-07-14 05:33 - 00335184 _____ () C:\Windows\system32\FNTCACHE.DAT
2015-02-10 22:27 - 2014-03-21 10:07 - 00000000 ____D () C:\Windows\system32\MRT
2015-02-10 22:13 - 2014-03-21 10:07 - 113756392 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-02-10 22:06 - 2014-03-21 11:58 - 00000000 ____D () C:\ProgramData\Microsoft Help
2015-02-09 17:44 - 2010-11-20 22:01 - 01445734 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-02-05 11:29 - 2014-05-14 14:10 - 00701616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2015-02-05 11:29 - 2014-05-14 14:10 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2015-01-30 19:53 - 2014-09-05 13:01 - 00000000 ____D () C:\Users\Martin\AppData\Local\Adobe
2015-01-24 07:58 - 2009-07-14 05:53 - 00032606 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2015-01-23 11:03 - 2014-11-23 17:20 - 00000000 ____D () C:\Program Files\SiMoCo
2015-01-17 10:50 - 2014-03-21 09:45 - 00000000 ___RD () C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\OSTATNÍ
2015-01-17 10:49 - 2014-03-21 07:22 - 00000000 ____D () C:\Users\Martin
2015-01-15 23:50 - 2014-03-21 09:59 - 00000000 ____D () C:\Program Files\SumatraPDF
2015-01-14 22:38 - 2014-03-21 07:59 - 00000000 ____D () C:\Program Files\WinRAR

==================== Files in the root of some directories =======

2015-02-11 20:26 - 2015-02-11 20:26 - 0029696 _____ () C:\Users\Martin\AppData\Local\MSGBOX.EXE
2014-03-22 19:18 - 2014-05-14 08:03 - 0007605 _____ () C:\Users\Martin\AppData\Local\Resmon.ResmonCfg
2014-03-21 07:53 - 2014-03-21 07:53 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Some content of TEMP:
====================
C:\Users\Martin\AppData\Local\Temp\Quarantine.exe
C:\Users\Martin\AppData\Local\Temp\sqlite3.dll


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-02-03 14:48

==================== End Of Log ============================




Addition.txt

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 11-02-2015 02
Ran by Martin at 2015-02-11 20:30:08
Running from C:\Users\Martin\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: ESET Smart Security 8.0 (Enabled - Up to date) {19259FAE-8396-A113-46DB-15B0E7DFA289}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: ESET Smart Security 8.0 (Enabled - Up to date) {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}
FW: ESET Personální firewall (Enabled) {211E1E8B-C9F9-A04B-6D84-BC85190CE5F2}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

2007 Microsoft Office Suite Service Pack 3 (SP3) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
2007 Microsoft Office Suite Service Pack 3 (SP3) (Version: - Microsoft) Hidden
AC3Filter 2.6.0b (HKLM\...\AC3Filter_is1) (Version: 2.6.0b - Alexander Vigovsky)
Adobe Flash Player 16 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 16.0.0.305 - Adobe Systems Incorporated)
Adobe Flash Player 16 PPAPI (HKLM\...\Adobe Flash Player PPAPI) (Version: 16.0.0.305 - Adobe Systems Incorporated)
Ashampoo Burning Studio FREE v.1.14.5 (HKLM\...\{91B33C97-91F8-FFB3-581B-BC952C901685}_is1) (Version: 1.14.5 - Ashampoo GmbH & Co. KG)
ATK Hotkey (HKLM\...\{3912D529-02BC-4CA8-B5ED-0D0C20EB6003}) (Version: 1.00.0007 - ATK)
Canon MP Navigator EX 1.0 (HKLM\...\MP Navigator EX 1.0) (Version: - )
Canon MP220 series (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP220_series) (Version: - )
Canon My Printer (HKLM\...\CanonMyPrinter) (Version: 3.2.0 - Canon Inc.)
Dev-C++ 5 beta 9 release (4.9.9.2) (HKLM\...\Dev-C++) (Version: - )
ESET Smart Security (HKLM\...\{A68ED22D-17E8-4B1C-A32F-12177796BA61}) (Version: 8.0.304.1 - ESET, spol s r. o.)
GOM Player (HKLM\...\GOM Player) (Version: 2.2.64.5211 - Gretech Corporation)
In-Tune Multi-Instrument Tuner v1.81 (HKLM\...\In-Tune Multi-Instrument Tuner_is1) (Version: - )
Java 8 Update 25 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218025F0}) (Version: 8.0.250 - Oracle Corporation)
Microsoft Office Enterprise 2007 (HKLM\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Motorola SM56 Data Fax Modem (HKLM\...\SMSERIAL) (Version: 6.12.25.06 - Motorola Inc)
Mumble 1.2.8 (HKLM\...\{0E784CFD-CEB1-42E1-9C42-FC2497DD653E}) (Version: 1.2.8 - Thorvald Natvig)
NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version: 1.4 - NVIDIA Corporation)
Opera Stable 27.0.1689.69 (HKLM\...\Opera 27.0.1689.69) (Version: 27.0.1689.69 - Opera Software ASA)
PL-2303 USB-to-Serial (HKLM\...\{ECC3713C-08A4-40E3-95F1-7D0704F1CE5E}) (Version: 1.10.0 - Prolific Technology INC)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7083 - Realtek Semiconductor Corp.)
RICOH R5U8xx Media Driver ver.3.62.02 (HKLM\...\{59F6A514-9813-47A3-948C-8A155460CC2A}) (Version: 3.62.02 - RICOH)
Skype™ 7.0 (HKLM\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 9.1.5.0 - Synaptics)
Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
USB2.0 1.3M WebCam (HKLM\...\USB2.0 1.3M WebCam) (Version: - )
V_KLay v3.3 (HKLM\...\V_KLay) (Version: 3.3 - Valeriy V. Vishnyak (ValeraVi))
Winamp (HKLM\...\Winamp) (Version: 5.66 - Nullsoft, Inc)
WinRAR 5.20 (32-bit) (HKLM\...\WinRAR archiver) (Version: 5.20.0 - win.rar GmbH)
Wireless Console 2 (HKLM\...\{83F73CB1-7705-49D1-9852-84D839CA2A45}) (Version: 2.0.8 - ATK)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)


==================== Restore Points =========================

11-02-2015 19:15:25 Windows Update

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:04 - 2009-06-10 22:39 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {2BCEB960-D4E9-496E-8458-CF5DE37997A8} - System32\Tasks\{DFF911ED-C6F4-4C44-983E-25B3C81D9D09} => pcalua.exe -a "D:\Prográmky\Stahování z internetu (uloz.to, atd)\FreeRapid-0.9u4\frd.exe" -d "D:\Prográmky\Stahování z internetu (uloz.to, atd)\FreeRapid-0.9u4"
Task: {3252A614-7D6F-4707-814A-D5B6FF690E97} - System32\Tasks\{86730281-2066-47C7-AD2D-B183F6D12CA5} => c:\program files\opera\launcher.exe [2015-02-10] (Opera Software)
Task: {8586419B-AD2F-486E-A60C-673F99CEE7BE} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-02-05] (Adobe Systems Incorporated)
Task: {872BD960-AB55-434B-B59F-C84955FA98D0} - System32\Tasks\Opera scheduled Autoupdate 1395400713 => C:\Program Files\Opera\launcher.exe [2015-02-10] (Opera Software)
Task: {90987834-7737-419C-B617-456338D79EE1} - System32\Tasks\{B9C5DC9A-CB5D-425E-BA06-E49CCC7B9B5C} => c:\program files\opera\launcher.exe [2015-02-10] (Opera Software)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe

==================== Loaded Modules (whitelisted) ==============

2014-03-21 08:14 - 2007-02-05 18:13 - 00094208 _____ () C:\Program Files\ATK Hotkey\ASLDRSrv.exe
2014-03-21 08:14 - 2004-05-27 18:13 - 00057344 _____ () C:\Program Files\ATK Hotkey\CMSSC.dll
2014-03-21 08:17 - 2006-12-20 23:03 - 01036288 _____ () C:\Program Files\Wireless Console 2\wcourier.exe
2014-03-21 08:14 - 2006-12-18 17:26 - 02420736 _____ () C:\Program Files\ATK Hotkey\ATKOSD.exe
2015-02-11 19:21 - 2015-02-11 19:15 - 01408632 _____ () C:\Program Files\Opera\27.0.1689.69\libglesv2.dll
2015-02-11 19:21 - 2015-02-11 19:15 - 00219256 _____ () C:\Program Files\Opera\27.0.1689.69\libegl.dll
2015-02-11 19:21 - 2015-02-11 19:16 - 09510520 _____ () C:\Program Files\Opera\27.0.1689.69\pdf.dll
2015-02-05 11:29 - 2015-02-05 11:29 - 14964912 _____ () C:\Windows\system32\Macromed\Flash\pepflashplayer32_16_0_0_305.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)


==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (whitelisted) ===============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3443184700-689492710-194535619-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 10.0.0.1

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\startupreg: BrowserChoice => "C:\Windows\System32\browserchoice.exe" /run
MSCONFIG\startupreg: NvSvc => RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart
MSCONFIG\startupreg: RTHDVCPL => "C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe" -s
MSCONFIG\startupreg: SMSERIAL => C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files\Common Files\Java\Java Update\jusched.exe"

==================== Accounts: =============================

Administrator (S-1-5-21-3443184700-689492710-194535619-500 - Administrator - Disabled)
Guest (S-1-5-21-3443184700-689492710-194535619-501 - Limited - Disabled)
Martin (S-1-5-21-3443184700-689492710-194535619-1000 - Administrator - Enabled) => C:\Users\Martin

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (02/11/2015 08:16:24 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/11/2015 07:05:10 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/10/2015 10:38:26 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/10/2015 09:25:54 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program iexplore.exe verze 11.0.9600.17496 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID procesu: c38

Čas spuštění: 01d045699d1f6f30

Čas ukončení: 503

Cesta k aplikaci: C:\Program Files\Internet Explorer\iexplore.exe

ID hlášení: f5d7cef1-b162-11e4-aa2d-e907f1695163

Error: (02/10/2015 04:13:42 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/10/2015 04:09:07 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/09/2015 03:59:32 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/08/2015 10:07:48 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/07/2015 08:58:34 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/06/2015 10:44:13 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


System errors:
=============
Error: (02/10/2015 04:17:33 PM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: Byla vygenerována následující výstraha o závažné chybě: 70. Stav interní chyby: 105

Error: (02/07/2015 10:23:18 PM) (Source: volsnap) (EventID: 36) (User: )
Description: Stínové kopie svazku C: byly přerušeny, protože z důvodu limitu stanoveného uživatelem se nepodařilo zvětšit úložiště stínové kopie.

Error: (02/07/2015 09:09:24 AM) (Source: Disk) (EventID: 11) (User: )
Description: Ovladač zjistil chybu řadiče na \Device\Harddisk1\DR1.

Error: (02/07/2015 09:09:23 AM) (Source: Disk) (EventID: 11) (User: )
Description: Ovladač zjistil chybu řadiče na \Device\Harddisk1\DR1.

Error: (02/07/2015 09:09:22 AM) (Source: Disk) (EventID: 11) (User: )
Description: Ovladač zjistil chybu řadiče na \Device\Harddisk1\DR1.

Error: (02/04/2015 01:29:59 PM) (Source: volsnap) (EventID: 36) (User: )
Description: Stínové kopie svazku C: byly přerušeny, protože z důvodu limitu stanoveného uživatelem se nepodařilo zvětšit úložiště stínové kopie.

Error: (02/01/2015 00:57:29 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Při čekání na odezvu transakce služby LanmanServer bylo dosaženo časového limitu (30000 ms).

Error: (01/31/2015 08:37:46 PM) (Source: volsnap) (EventID: 36) (User: )
Description: Stínové kopie svazku C: byly přerušeny, protože z důvodu limitu stanoveného uživatelem se nepodařilo zvětšit úložiště stínové kopie.

Error: (01/30/2015 09:36:46 PM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: Byla vygenerována následující výstraha o závažné chybě: 70. Stav interní chyby: 105

Error: (01/28/2015 04:50:33 PM) (Source: volsnap) (EventID: 36) (User: )
Description: Stínové kopie svazku C: byly přerušeny, protože z důvodu limitu stanoveného uživatelem se nepodařilo zvětšit úložiště stínové kopie.


Microsoft Office Sessions:
=========================

==================== Memory info ===========================

Processor: AMD Turion(tm) 64 Mobile Technology MK-38
Percentage of memory in use: 49%
Total physical RAM: 1919.37 MB
Available physical RAM: 963.82 MB
Total Pagefile: 3838.73 MB
Available Pagefile: 2546.18 MB
Total Virtual: 2047.88 MB
Available Virtual: 1913.6 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:27 GB) (Free:8.9 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: (Moje dokumenty) (Fixed) (Total:84.79 GB) (Free:13.64 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 111.8 GB) (Disk ID: 00088995)
Partition 1: (Active) - (Size=27 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=84.8 GB) - (Type=07 NTFS)

==================== End Of Log ============================

Re: Preventivní kontrola děkuji

Napsal: 11 úno 2015 20:41
od altrok
:arrow: Ten ESET predpokladam mate zaplaceny, takze trvale vypnete Windows Defender (2 antispywarove ochrany jsou spise na skodu) - http://windows.microsoft.com/cs-cz/wind ... =windows-7

  • Do Poznamkoveho bloku (Start -> spustit -> notepad) zkopirujte obsah bileho pole
  • ulozte na plochu jako fixlist (Typ souboru: Textovy dokument)
  • znovu spustte FRST a kliknete na Fix
  • po restartu na Vas vyskoci fixlog (pripadne bude ulozen na Plose), jehoz obsah mi vlozte do pristi odpovedi

    Kód: Vybrat vše

    Start
CloseProcesses:
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
2015-02-11 20:26 - 2015-02-11 20:26 - 00029696 _____ () C:\Users\Martin\AppData\Local\MSGBOX.EXE
2015-02-11 20:10 - 2015-02-11 20:13 - 00000000 ____D () C:\AdwCleaner
2015-02-11 20:08 - 2015-02-11 20:08 - 02112512 _____ () C:\Users\Martin\Desktop\adwcleaner_4.110.exe
2015-02-11 19:08 - 2015-02-11 19:21 - 00000000 ____D () C:\Program Files\trend micro
2015-02-11 19:08 - 2015-02-11 19:10 - 00000000 ____D () C:\rsit
Task: {2BCEB960-D4E9-496E-8458-CF5DE37997A8} - System32\Tasks\{DFF911ED-C6F4-4C44-983E-25B3C81D9D09} => pcalua.exe -a "D:\Prográmky\Stahování z internetu (uloz.to, atd)\FreeRapid-0.9u4\frd.exe" -d "D:\Prográmky\Stahování z internetu (uloz.to, atd)\FreeRapid-0.9u4"
EmptyTemp:
End

Re: Preventivní kontrola děkuji

Napsal: 11 úno 2015 21:00
od xstation
ESET je placený.

Defender jsem vypnul.

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 11-02-2015 02
Ran by Martin at 2015-02-11 20:53:46 Run:1
Running from C:\Users\Martin\Desktop
Loaded Profiles: Martin (Available profiles: Martin)
Boot Mode: Normal

==============================================

Content of fixlist:
*****************
Start
CloseProcesses:
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
2015-02-11 20:26 - 2015-02-11 20:26 - 00029696 _____ () C:\Users\Martin\AppData\Local\MSGBOX.EXE
2015-02-11 20:10 - 2015-02-11 20:13 - 00000000 ____D () C:\AdwCleaner
2015-02-11 20:08 - 2015-02-11 20:08 - 02112512 _____ () C:\Users\Martin\Desktop\adwcleaner_4.110.exe
2015-02-11 19:08 - 2015-02-11 19:21 - 00000000 ____D () C:\Program Files\trend micro
2015-02-11 19:08 - 2015-02-11 19:10 - 00000000 ____D () C:\rsit
Task: {2BCEB960-D4E9-496E-8458-CF5DE37997A8} - System32\Tasks\{DFF911ED-C6F4-4C44-983E-25B3C81D9D09} => pcalua.exe -a "D:\Prográmky\Stahování z internetu (uloz.to, atd)\FreeRapid-0.9u4\frd.exe" -d "D:\Prográmky\Stahování z internetu (uloz.to, atd)\FreeRapid-0.9u4"
EmptyTemp:
End
*****************

Processes closed successfully.
HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
C:\Users\Martin\AppData\Local\MSGBOX.EXE => Moved successfully.
C:\AdwCleaner => Moved successfully.
C:\Users\Martin\Desktop\adwcleaner_4.110.exe => Moved successfully.
C:\Program Files\trend micro => Moved successfully.
C:\rsit => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{2BCEB960-D4E9-496E-8458-CF5DE37997A8}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2BCEB960-D4E9-496E-8458-CF5DE37997A8}" => Key deleted successfully.
C:\Windows\System32\Tasks\{DFF911ED-C6F4-4C44-983E-25B3C81D9D09} => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{DFF911ED-C6F4-4C44-983E-25B3C81D9D09}" => Key deleted successfully.
EmptyTemp: => Removed 321.6 MB temporary data.


The system needed a reboot.

==== End of Fixlog 20:54:05 ====

Re: Preventivní kontrola děkuji

Napsal: 11 úno 2015 21:02
od altrok
Log byl opravdu cisty, takze jsme mazali jen zbytecnosti a zbytky... totez by provedl CCleaner :)

Jeste uklidime.
A pokud nejsou dotazy ci jine problemy, je to ode mne vse.

Re: Preventivní kontrola děkuji

Napsal: 11 úno 2015 21:07
od xstation
Děkuji mnohokrát za kontrolu.

Re: Preventivní kontrola děkuji

Napsal: 11 úno 2015 21:09
od altrok
Za malo :)


Mejte se krasne a treba zase nekdy :bye:
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz