VIRY.CZ

Zdravím Vás, mám "LENOVO ideapad 320", windows 10. Prosím o kontrolu. Když mi teď běží chrome, využití CPU je kolem 100%, využití disku čas od času taky, i když nic nedělám. Logy z FRST jsou moc dlouhé, dávám je do přílohy. Děkuji za pomoc.

Zdravím!
Spusťte tuto utilitu:

Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi

Občas samovolně vyskakují okna cmd, pak se zavřou.
log:

# -------------------------------
# Malwarebytes AdwCleaner 7.4.1.0
# -------------------------------
# Build: 09-05-2019
# Database: 2019-10-17.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 10-20-2019
# Duration: 00:00:22
# OS: Windows 10 Home
# Cleaned: 32
# Failed: 1

***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

Deleted C:\ProgramData\Host App Service
Deleted C:\Users\Default\AppData\Local\Host App Service
Deleted C:\Windows\ServiceProfiles\LocalService\AppData\Local\Host App Service
Deleted C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Host App Service
Not Deleted C:\Users\Marek\AppData\Local\Host App Service

***** [ Files ] *****

Deleted C:\Windows\System32\Tasks_Migrated\App Explorer

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

Deleted C:\Windows\System32\Tasks\APP EXPLORER

***** [ Registry ] *****

Deleted HKCU\Software\App Host Service
Deleted HKCU\Software\Host App Service
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Host App Service
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{41FB6326-8F19-4D55-B53C-2D6EA5C501F5}
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\App Explorer

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Preinstalled Software ] *****

Deleted Preinstalled.CyberLinkShellExtension Registry HKLM\Software\Classes\CLSID\{3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2}
Deleted Preinstalled.LenovoCCSDK Folder C:\Program Files (x86)\LENOVO\CCSDK
Deleted Preinstalled.LenovoCCSDK Folder C:\ProgramData\LENOVO\CCSDK
Deleted Preinstalled.LenovoCCSDK Registry HKLM\Software\Wow6432Node\\Classes\CLSID\{67827BB6-4B05-6181-921A-E49FC484E859}
Deleted Preinstalled.LenovoIMController Folder C:\Program Files (x86)\LENOVO\IMCONTROLLER
Deleted Preinstalled.LenovoIMController Folder C:\Program Files\LENOVO\IMCONTROLLER
Deleted Preinstalled.LenovoIMController Folder C:\ProgramData\LENOVO\IMCONTROLLER
Deleted Preinstalled.LenovoIMController Folder C:\Users\Marek\AppData\Local\LENOVO\IMCONTROLLER
Deleted Preinstalled.LenovoIMController Folder C:\Windows\System32\Tasks\LENOVO\IMCONTROLLER
Deleted Preinstalled.LenovoIMController Folder C:\Windows\System32\drivers\LENOVO\IMCONTROLLER
Deleted Preinstalled.LenovoIMController Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\Lenovo Dependency Package_is1
Deleted Preinstalled.LenovoPower2Go Folder C:\Program Files (x86)\LENOVO\POWER2GO
Deleted Preinstalled.LenovoPower2Go Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{41A1AD6A-10E7-4280-A52E-60B5934AE5E1}
Deleted Preinstalled.LenovoPower2Go Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\CLVDLauncher
Deleted Preinstalled.LenovoPower2Go Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}
Deleted Preinstalled.LenovoPower2Go Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}
Deleted Preinstalled.LenovoPower2Go Task C:\Windows\System32\Tasks\CLVDLAUNCHER
Deleted Preinstalled.LenovoUtility Folder C:\Program Files\LENOVO\LENOVOUTILITY
Deleted Preinstalled.LenovoUtility Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run|LenovoUtility
Deleted Preinstalled.LenovoUtility Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Run|LenovoUtility
Deleted Preinstalled.LenovoUtility Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{12ABAC82-7D83-4CB8-9DD2-434DC9AF2942}_is1

*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner_Debug.log - [25350 octets] - [20/10/2019 12:33:15]
AdwCleaner[S00].txt - [4604 octets] - [20/10/2019 12:33:44]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########

Dejte nové logy FRST+Addition.

Hotovo, viz příloha

Otevřte poznámkový blok a zkopírujte do něj:

Start

CloseProcesses:
Task: {68C31297-4697-47D2-8180-D71DDFB12244} - \Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance -> No File <==== ATTENTION
Task: {725B5430-5825-4308-AFC3-571ECBC3B040} - \Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask -> No File <==== ATTENTION
Task: {8FE032B7-9433-4541-AC64-FBFEDBFBB551} - \Lenovo\ImController\Lenovo iM Controller Monitor -> No File <==== ATTENTION
Task: {90819538-7D15-4CC9-97FC-8772E5E7E09E} - \Lenovo\ImController\TimeBasedEvents\87e122c0-3132-4bbb-819a-3a6eb552b8f8 -> No File <==== ATTENTION
Task: {9CF8E5DA-D3A5-49BE-9A09-93234CB16BEF} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-02-23] (Google Inc -> Google Inc.)
Task: {A882EB1C-74C0-45FE-B6BE-74D6EC83E398} - \Lenovo\ImController\TimeBasedEvents\d141b535-ff25-4b72-8ac0-63dee525e692 -> No File <==== ATTENTION
Task: {B3AFD36E-63A8-4322-9FA2-38F6FDF868DD} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-02-23] (Google Inc -> Google Inc.)
Task: {DEBE54AA-B013-4422-BDE5-9189E15861BC} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {FEF69AB1-9C28-461D-84F8-1EC2384EBD9D} - \Lenovo\ImController\TimeBasedEvents\ec1d2347-3aab-419a-a9c4-39a624de0770 -> No File <==== ATTENTION
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
ContextMenuHandlers1: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => -> No File
ContextMenuHandlers2: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => -> No File
FirewallRules: [UDP Query User{24A006C6-9DDA-44D8-AE34-BAAD110982F2}C:\users\marek\appdata\local\temp\rarsfx44\hlds.exe] => (Block) C:\users\marek\appdata\local\temp\rarsfx44\hlds.exe No File
FirewallRules: [TCP Query User{3A383BFD-9B63-44D0-B390-449E6CE7256E}C:\users\marek\appdata\local\temp\rarsfx44\hlds.exe] => (Block) C:\users\marek\appdata\local\temp\rarsfx44\hlds.exe No File
FirewallRules: [UDP Query User{401C65FD-893F-42FD-BFE7-4EF3D46D84A3}C:\users\marek\appdata\local\temp\rarsfx43\hlds.exe] => (Block) C:\users\marek\appdata\local\temp\rarsfx43\hlds.exe No File
FirewallRules: [TCP Query User{2FFE59E1-035D-45A2-A0F0-8BA3490C1326}C:\users\marek\appdata\local\temp\rarsfx43\hlds.exe] => (Block) C:\users\marek\appdata\local\temp\rarsfx43\hlds.exe No File
FirewallRules: [UDP Query User{95055784-B06D-4CA4-9D76-8908D78409F8}C:\users\marek\appdata\local\temp\rarsfx42\hlds.exe] => (Block) C:\users\marek\appdata\local\temp\rarsfx42\hlds.exe No File
FirewallRules: [TCP Query User{2362C5A8-A021-4B8F-A76B-C116B19CF1A1}C:\users\marek\appdata\local\temp\rarsfx42\hlds.exe] => (Block) C:\users\marek\appdata\local\temp\rarsfx42\hlds.exe No File
FirewallRules: [UDP Query User{2542C469-F567-4D2E-95DE-0D6740CCC41A}C:\users\marek\appdata\local\temp\rarsfx41\hlds.exe] => (Block) C:\users\marek\appdata\local\temp\rarsfx41\hlds.exe No File
FirewallRules: [TCP Query User{D74C1CE4-3DF1-4A63-ACC9-C74F89C06075}C:\users\marek\appdata\local\temp\rarsfx41\hlds.exe] => (Block) C:\users\marek\appdata\local\temp\rarsfx41\hlds.exe No File
FirewallRules: [UDP Query User{F447D741-2ACA-46DF-8155-31E4339391BB}C:\users\marek\appdata\local\temp\rarsfx40\hlds.exe] => (Block) C:\users\marek\appdata\local\temp\rarsfx40\hlds.exe No File
FirewallRules: [TCP Query User{FCBAD6EA-9D96-4A40-A4C6-7D3B01C1EF15}C:\users\marek\appdata\local\temp\rarsfx40\hlds.exe] => (Block) C:\users\marek\appdata\local\temp\rarsfx40\hlds.exe No File
FirewallRules: [UDP Query User{F0D479DC-E9E8-4A80-9F04-E926E014702B}C:\users\marek\appdata\local\temp\rarsfx39\hlds.exe] => (Block) C:\users\marek\appdata\local\temp\rarsfx39\hlds.exe No File
FirewallRules: [TCP Query User{8B58DD20-20B9-4AB9-8A17-CA35105369DF}C:\users\marek\appdata\local\temp\rarsfx39\hlds.exe] => (Block) C:\users\marek\appdata\local\temp\rarsfx39\hlds.exe No File
FirewallRules: [UDP Query User{D59C4EB8-6012-4EF8-BB2F-5350DE543309}C:\users\marek\appdata\local\temp\rarsfx38\hlds.exe] => (Block) C:\users\marek\appdata\local\temp\rarsfx38\hlds.exe No File
FirewallRules: [TCP Query User{9AEF3C2A-EF35-4FEF-BC9C-970AFB4F0FE5}C:\users\marek\appdata\local\temp\rarsfx38\hlds.exe] => (Block) C:\users\marek\appdata\local\temp\rarsfx38\hlds.exe No File
FirewallRules: [UDP Query User{8E35D6EE-A8E1-4806-BA47-C088CA6D7E20}C:\users\marek\appdata\local\temp\rarsfx37\hlds.exe] => (Block) C:\users\marek\appdata\local\temp\rarsfx37\hlds.exe No File
FirewallRules: [TCP Query User{432D6E74-9F16-49C6-A79D-836DB7068206}C:\users\marek\appdata\local\temp\rarsfx37\hlds.exe] => (Block) C:\users\marek\appdata\local\temp\rarsfx37\hlds.exe No File
FirewallRules: [UDP Query User{64A3BE3D-4C75-429A-A595-3CC2BBC47365}C:\users\marek\appdata\local\temp\rarsfx36\hlds.exe] => (Block) C:\users\marek\appdata\local\temp\rarsfx36\hlds.exe No File
FirewallRules: [TCP Query User{1AE119DE-E6EE-40E4-B3E8-1F425FE351C3}C:\users\marek\appdata\local\temp\rarsfx36\hlds.exe] => (Block) C:\users\marek\appdata\local\temp\rarsfx36\hlds.exe No File
FirewallRules: [UDP Query User{236E628A-8B7D-4B9F-A46A-1CEBC71F92F7}C:\users\marek\appdata\local\temp\rarsfx35\hlds.exe] => (Block) C:\users\marek\appdata\local\temp\rarsfx35\hlds.exe No File
FirewallRules: [TCP Query User{C790E45F-4A47-4AF9-91E9-A0CD21C8587B}C:\users\marek\appdata\local\temp\rarsfx35\hlds.exe] => (Block) C:\users\marek\appdata\local\temp\rarsfx35\hlds.exe No File
FirewallRules: [UDP Query User{5AE5656E-DF85-4EDE-988D-EEC14BEDDB42}C:\users\marek\appdata\local\temp\rarsfx34\hlds.exe] => (Block) C:\users\marek\appdata\local\temp\rarsfx34\hlds.exe No File
FirewallRules: [TCP Query User{937D0A55-152E-4666-A17F-9E0AB74C6CB4}C:\users\marek\appdata\local\temp\rarsfx34\hlds.exe] => (Block) C:\users\marek\appdata\local\temp\rarsfx34\hlds.exe No File
FirewallRules: [UDP Query User{1FF46676-3F45-40AF-AD81-86939867A9AB}C:\users\marek\appdata\local\temp\rarsfx33\hlds.exe] => (Block) C:\users\marek\appdata\local\temp\rarsfx33\hlds.exe No File
FirewallRules: [TCP Query User{04D494AA-43A2-4379-9E22-CC418C4827AD}C:\users\marek\appdata\local\temp\rarsfx33\hlds.exe] => (Block) C:\users\marek\appdata\local\temp\rarsfx33\hlds.exe No File
FirewallRules: [UDP Query User{C8793677-FF9A-48F2-8B72-12B88D0F6183}C:\users\marek\appdata\local\temp\rarsfx32\hlds.exe] => (Block) C:\users\marek\appdata\local\temp\rarsfx32\hlds.exe No File
FirewallRules: [TCP Query User{49AEC985-6C92-4591-8B7F-D8FF94852CF6}C:\users\marek\appdata\local\temp\rarsfx32\hlds.exe] => (Block) C:\users\marek\appdata\local\temp\rarsfx32\hlds.exe No File
FirewallRules: [UDP Query User{DFE89072-AB6E-4907-98AB-2CE332CFF72C}C:\users\marek\appdata\local\temp\rarsfx31\hlds.exe] => (Block) C:\users\marek\appdata\local\temp\rarsfx31\hlds.exe No File
FirewallRules: [TCP Query User{A2DC94DB-5448-488B-BE01-F842C4BFC0D3}C:\users\marek\appdata\local\temp\rarsfx31\hlds.exe] => (Block) C:\users\marek\appdata\local\temp\rarsfx31\hlds.exe No File
FirewallRules: [UDP Query User{230926BF-580A-4CA0-B1B2-1E534B7439AB}C:\users\marek\appdata\local\temp\rarsfx30\hlds.exe] => (Block) C:\users\marek\appdata\local\temp\rarsfx30\hlds.exe No File
FirewallRules: [TCP Query User{C3FB87E9-8A0C-4F06-94C3-ACC235C96411}C:\users\marek\appdata\local\temp\rarsfx30\hlds.exe] => (Block) C:\users\marek\appdata\local\temp\rarsfx30\hlds.exe No File
FirewallRules: [UDP Query User{D04C8D50-7C8A-4926-B221-745AF9310DA2}C:\users\marek\appdata\local\temp\rarsfx29\hlds.exe] => (Block) C:\users\marek\appdata\local\temp\rarsfx29\hlds.exe No File
FirewallRules: [TCP Query User{0DFA1FDF-4A6F-4CAB-926D-A165E22E07F5}C:\users\marek\appdata\local\temp\rarsfx29\hlds.exe] => (Block) C:\users\marek\appdata\local\temp\rarsfx29\hlds.exe No File
FirewallRules: [UDP Query User{A16085B0-68D5-45C6-8D08-4E113106F09C}C:\users\marek\appdata\local\temp\rarsfx28\hlds.exe] => (Block) C:\users\marek\appdata\local\temp\rarsfx28\hlds.exe No File
FirewallRules: [TCP Query User{AB06B927-362B-4163-962E-0647A2CCDF38}C:\users\marek\appdata\local\temp\rarsfx28\hlds.exe] => (Block) C:\users\marek\appdata\local\temp\rarsfx28\hlds.exe No File
FirewallRules: [UDP Query User{4CC9498F-3D88-4C0F-B55C-0421A6E52783}C:\users\marek\appdata\local\temp\rarsfx27\hlds.exe] => (Allow) C:\users\marek\appdata\local\temp\rarsfx27\hlds.exe No File
FirewallRules: [TCP Query User{4BE45DF5-FCFD-45D6-83B6-9CA6B267624F}C:\users\marek\appdata\local\temp\rarsfx27\hlds.exe] => (Allow) C:\users\marek\appdata\local\temp\rarsfx27\hlds.exe No File
FirewallRules: [UDP Query User{057F042D-2AA6-48D4-AF69-BB3E4630EA26}C:\users\marek\appdata\local\temp\rarsfx26\hlds.exe] => (Allow) C:\users\marek\appdata\local\temp\rarsfx26\hlds.exe No File
FirewallRules: [TCP Query User{2C6C575E-1131-4043-9DB4-96097A8DE31C}C:\users\marek\appdata\local\temp\rarsfx26\hlds.exe] => (Allow) C:\users\marek\appdata\local\temp\rarsfx26\hlds.exe No File
FirewallRules: [UDP Query User{CACDD5DD-5977-4210-A53F-D27EE1236418}C:\users\marek\appdata\local\temp\rarsfx25\hlds.exe] => (Block) C:\users\marek\appdata\local\temp\rarsfx25\hlds.exe No File
FirewallRules: [TCP Query User{2CF8C336-A7BD-4316-BFCE-732BEAB0B10E}C:\users\marek\appdata\local\temp\rarsfx25\hlds.exe] => (Block) C:\users\marek\appdata\local\temp\rarsfx25\hlds.exe No File
FirewallRules: [UDP Query User{A4474775-E46A-4F89-8899-385EF83DD25A}C:\users\marek\appdata\local\temp\rarsfx24\hlds.exe] => (Block) C:\users\marek\appdata\local\temp\rarsfx24\hlds.exe No File
FirewallRules: [TCP Query User{738772B8-37E8-4CB3-80F5-7AB013A9BADD}C:\users\marek\appdata\local\temp\rarsfx24\hlds.exe] => (Block) C:\users\marek\appdata\local\temp\rarsfx24\hlds.exe No File
FirewallRules: [UDP Query User{99C76DAF-5DF4-40D2-91C9-1A53D78EFEC7}C:\users\marek\appdata\local\temp\rarsfx23\hlds.exe] => (Allow) C:\users\marek\appdata\local\temp\rarsfx23\hlds.exe No File
FirewallRules: [TCP Query User{D63350D3-609C-49A7-B729-B49979322072}C:\users\marek\appdata\local\temp\rarsfx23\hlds.exe] => (Allow) C:\users\marek\appdata\local\temp\rarsfx23\hlds.exe No File
FirewallRules: [UDP Query User{4C58E901-8E77-4809-A4C1-DA506534D2D7}C:\users\marek\appdata\local\temp\rarsfx22\hlds.exe] => (Allow) C:\users\marek\appdata\local\temp\rarsfx22\hlds.exe No File
FirewallRules: [TCP Query User{7A0D0AE7-7E75-42FD-AD1B-18D0731E4DE5}C:\users\marek\appdata\local\temp\rarsfx22\hlds.exe] => (Allow) C:\users\marek\appdata\local\temp\rarsfx22\hlds.exe No File
FirewallRules: [UDP Query User{64ED0301-8888-4904-A786-760BEAE079B2}C:\users\marek\appdata\local\temp\rarsfx21\hlds.exe] => (Block) C:\users\marek\appdata\local\temp\rarsfx21\hlds.exe No File
FirewallRules: [TCP Query User{F6D1EB2D-967C-462A-9754-468DB858E84B}C:\users\marek\appdata\local\temp\rarsfx21\hlds.exe] => (Block) C:\users\marek\appdata\local\temp\rarsfx21\hlds.exe No File
FirewallRules: [UDP Query User{CFEE0E18-3FFF-42C0-B89C-88A62055AF76}C:\users\marek\appdata\local\temp\rarsfx20\hlds.exe] => (Allow) C:\users\marek\appdata\local\temp\rarsfx20\hlds.exe No File
FirewallRules: [TCP Query User{BFF3FC7A-3C9A-49C4-8C17-105A49AA1E38}C:\users\marek\appdata\local\temp\rarsfx20\hlds.exe] => (Allow) C:\users\marek\appdata\local\temp\rarsfx20\hlds.exe No File
FirewallRules: [UDP Query User{70656A2A-BE8A-4455-9528-A562B76227D7}C:\users\marek\appdata\local\temp\rarsfx19\hlds.exe] => (Block) C:\users\marek\appdata\local\temp\rarsfx19\hlds.exe No File
FirewallRules: [TCP Query User{3556D31A-7DF3-4E85-A145-9BF2839DC241}C:\users\marek\appdata\local\temp\rarsfx19\hlds.exe] => (Block) C:\users\marek\appdata\local\temp\rarsfx19\hlds.exe No File
FirewallRules: [UDP Query User{E47AA738-C496-4813-AE82-B5A87B3B5C8C}C:\users\marek\appdata\local\temp\rarsfx18\hlds.exe] => (Block) C:\users\marek\appdata\local\temp\rarsfx18\hlds.exe No File
FirewallRules: [TCP Query User{AE804D43-149E-4733-BF96-A5FB9218360E}C:\users\marek\appdata\local\temp\rarsfx18\hlds.exe] => (Block) C:\users\marek\appdata\local\temp\rarsfx18\hlds.exe No File
FirewallRules: [UDP Query User{B5A69B24-E56D-4A99-8EE9-CC4CB30A8878}C:\users\marek\appdata\local\temp\rarsfx17\hlds.exe] => (Block) C:\users\marek\appdata\local\temp\rarsfx17\hlds.exe No File
FirewallRules: [TCP Query User{E5895AEA-E53E-4F6C-964F-A736242C11CA}C:\users\marek\appdata\local\temp\rarsfx17\hlds.exe] => (Block) C:\users\marek\appdata\local\temp\rarsfx17\hlds.exe No File
FirewallRules: [UDP Query User{BB0B00E6-4150-4252-A130-580487E9BCC4}C:\users\marek\appdata\local\temp\rarsfx16\hlds.exe] => (Allow) C:\users\marek\appdata\local\temp\rarsfx16\hlds.exe No File
FirewallRules: [TCP Query User{A52256B5-26F7-4DC9-86B7-150F72A73EC2}C:\users\marek\appdata\local\temp\rarsfx16\hlds.exe] => (Allow) C:\users\marek\appdata\local\temp\rarsfx16\hlds.exe No File
FirewallRules: [UDP Query User{32B39514-2B9A-4740-9BE4-AD66C7A7E5E6}C:\users\marek\appdata\local\temp\rarsfx15\hlds.exe] => (Block) C:\users\marek\appdata\local\temp\rarsfx15\hlds.exe No File
FirewallRules: [TCP Query User{7B645C2F-6E8F-41AF-91F1-A5DCBEF17634}C:\users\marek\appdata\local\temp\rarsfx15\hlds.exe] => (Block) C:\users\marek\appdata\local\temp\rarsfx15\hlds.exe No File
FirewallRules: [UDP Query User{5C490052-E17B-496C-B286-F5CE11856341}C:\users\marek\appdata\local\temp\rarsfx14\hlds.exe] => (Block) C:\users\marek\appdata\local\temp\rarsfx14\hlds.exe No File
FirewallRules: [TCP Query User{B8E83E36-B263-4C41-AD4B-CE28158D52BD}C:\users\marek\appdata\local\temp\rarsfx14\hlds.exe] => (Block) C:\users\marek\appdata\local\temp\rarsfx14\hlds.exe No File
FirewallRules: [UDP Query User{6D4309B0-75EC-44CB-9CB7-1FD6222F6F65}C:\users\marek\appdata\local\temp\rarsfx13\hlds.exe] => (Block) C:\users\marek\appdata\local\temp\rarsfx13\hlds.exe No File
FirewallRules: [TCP Query User{ED8600FE-BB13-4BEA-B8C4-6D800B6E8264}C:\users\marek\appdata\local\temp\rarsfx13\hlds.exe] => (Block) C:\users\marek\appdata\local\temp\rarsfx13\hlds.exe No File
FirewallRules: [UDP Query User{77A56C5C-783B-426C-B6DE-15472DF20890}C:\users\marek\appdata\local\temp\rarsfx12\hlds.exe] => (Block) C:\users\marek\appdata\local\temp\rarsfx12\hlds.exe No File
FirewallRules: [TCP Query User{F7C5DB55-AF0F-4C03-9196-94833994AE3C}C:\users\marek\appdata\local\temp\rarsfx12\hlds.exe] => (Block) C:\users\marek\appdata\local\temp\rarsfx12\hlds.exe No File
FirewallRules: [UDP Query User{AA4B95A8-FC1B-46EB-B3B5-4A7090424838}C:\users\marek\appdata\local\temp\rarsfx11\hlds.exe] => (Block) C:\users\marek\appdata\local\temp\rarsfx11\hlds.exe No File
FirewallRules: [TCP Query User{78B758E0-F8A1-4A09-8FEC-B787D1CFC8B1}C:\users\marek\appdata\local\temp\rarsfx11\hlds.exe] => (Block) C:\users\marek\appdata\local\temp\rarsfx11\hlds.exe No File
FirewallRules: [UDP Query User{B046FCD4-2A13-4D5C-9460-9EDB79D11F63}C:\users\marek\appdata\local\temp\rarsfx9\hlds.exe] => (Allow) C:\users\marek\appdata\local\temp\rarsfx9\hlds.exe No File
FirewallRules: [TCP Query User{15F02975-AF2B-42E2-88CA-71A5276DB410}C:\users\marek\appdata\local\temp\rarsfx9\hlds.exe] => (Allow) C:\users\marek\appdata\local\temp\rarsfx9\hlds.exe No File
FirewallRules: [UDP Query User{DE0D7B31-CB49-4275-B27C-CD10EAD8F3A2}C:\users\marek\appdata\local\temp\rarsfx8\hlds.exe] => (Block) C:\users\marek\appdata\local\temp\rarsfx8\hlds.exe No File
FirewallRules: [TCP Query User{9279B07F-91B1-46F4-BDC4-F452BBD4D931}C:\users\marek\appdata\local\temp\rarsfx8\hlds.exe] => (Block) C:\users\marek\appdata\local\temp\rarsfx8\hlds.exe No File
FirewallRules: [UDP Query User{130ED9F4-C15A-48D4-801F-1BEACE8E5F29}C:\users\marek\appdata\local\temp\rarsfx7\hlds.exe] => (Block) C:\users\marek\appdata\local\temp\rarsfx7\hlds.exe No File
FirewallRules: [TCP Query User{1D2F8991-C8B1-4309-8FF4-CA1D3680F9EF}C:\users\marek\appdata\local\temp\rarsfx7\hlds.exe] => (Block) C:\users\marek\appdata\local\temp\rarsfx7\hlds.exe No File
FirewallRules: [UDP Query User{5B4243B2-89B3-4A9B-9DCB-D1427704EE13}C:\users\marek\appdata\local\temp\rarsfx6\hlds.exe] => (Block) C:\users\marek\appdata\local\temp\rarsfx6\hlds.exe No File
FirewallRules: [TCP Query User{0711905B-84EF-43F9-BCBD-0A76B773342A}C:\users\marek\appdata\local\temp\rarsfx6\hlds.exe] => (Block) C:\users\marek\appdata\local\temp\rarsfx6\hlds.exe No File
FirewallRules: [UDP Query User{092D5595-0461-49E8-8207-2C4DE585FBED}C:\users\marek\appdata\local\temp\rarsfx5\hlds.exe] => (Block) C:\users\marek\appdata\local\temp\rarsfx5\hlds.exe No File
FirewallRules: [TCP Query User{645130DB-7C40-4655-A557-866A1396BA5D}C:\users\marek\appdata\local\temp\rarsfx5\hlds.exe] => (Block) C:\users\marek\appdata\local\temp\rarsfx5\hlds.exe No File
FirewallRules: [UDP Query User{69B747E7-686A-4445-A197-779268F5A408}C:\users\marek\appdata\local\temp\rarsfx4\hlds.exe] => (Block) C:\users\marek\appdata\local\temp\rarsfx4\hlds.exe No File
FirewallRules: [TCP Query User{82A65F00-7D75-4975-B653-9FE0D63C419F}C:\users\marek\appdata\local\temp\rarsfx4\hlds.exe] => (Block) C:\users\marek\appdata\local\temp\rarsfx4\hlds.exe No File
FirewallRules: [UDP Query User{E81192E9-3DE7-4A02-985E-CFB60D046916}C:\users\marek\appdata\local\temp\rarsfx1\hlds.exe] => (Block) C:\users\marek\appdata\local\temp\rarsfx1\hlds.exe No File
FirewallRules: [TCP Query User{F1F3AB40-ACF9-4A2D-81E8-3053D419CAE2}C:\users\marek\appdata\local\temp\rarsfx1\hlds.exe] => (Block) C:\users\marek\appdata\local\temp\rarsfx1\hlds.exe No File
FirewallRules: [UDP Query User{B5A9E97A-E134-460E-AA8F-A8F2B7FA893F}C:\users\marek\appdata\local\temp\rarsfx3\hlds.exe] => (Block) C:\users\marek\appdata\local\temp\rarsfx3\hlds.exe No File
FirewallRules: [TCP Query User{8FE08C97-75CC-41CB-9A6D-FA76FF33E459}C:\users\marek\appdata\local\temp\rarsfx3\hlds.exe] => (Block) C:\users\marek\appdata\local\temp\rarsfx3\hlds.exe No File
FirewallRules: [UDP Query User{7EF0941E-87BD-4F9E-8153-FDDE9E3EA46D}C:\users\marek\appdata\local\temp\rarsfx2\hlds.exe] => (Block) C:\users\marek\appdata\local\temp\rarsfx2\hlds.exe No File
FirewallRules: [TCP Query User{9560ED34-75BB-45F3-87B2-E994FCFEFC6F}C:\users\marek\appdata\local\temp\rarsfx2\hlds.exe] => (Block) C:\users\marek\appdata\local\temp\rarsfx2\hlds.exe No File
FirewallRules: [UDP Query User{4F36256E-DF64-4C73-8486-BAC2A17DBA47}C:\users\marek\appdata\local\temp\rarsfx1\hlds.exe] => (Block) C:\users\marek\appdata\local\temp\rarsfx1\hlds.exe No File
FirewallRules: [TCP Query User{27787BD5-8B89-4F9D-8A47-24722714BE33}C:\users\marek\appdata\local\temp\rarsfx1\hlds.exe] => (Block) C:\users\marek\appdata\local\temp\rarsfx1\hlds.exe No File
FirewallRules: [UDP Query User{8404BE64-351E-4764-9E0B-7CE373B55B89}C:\users\marek\appdata\local\temp\rarsfx0\hlds.exe] => (Block) C:\users\marek\appdata\local\temp\rarsfx0\hlds.exe No File
FirewallRules: [TCP Query User{5810894A-0FA3-40DE-B6CF-281F4D3142F3}C:\users\marek\appdata\local\temp\rarsfx0\hlds.exe] => (Block) C:\users\marek\appdata\local\temp\rarsfx0\hlds.exe No File
FirewallRules: [{60D15E53-87D5-4DB4-AEB4-1F69235FB15C}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\PowerDVD14Agent.exe No File
FirewallRules: [{7AE4D236-ED80-410E-BE4F-D9E3F65B37BA}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\Kernel\DMS\CLMSServerPDVD14.exe No File
FirewallRules: [{5574BB8D-4A56-4F76-9247-93DB321C9807}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{7C5F1B66-9395-4EBC-BC9C-6E9C84653BCF}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
C:\Windows\System32\wscript.exe

EmptyTemp:
End

Uložte do C:\Users\Marek\Downloads jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

VIRY.CZ

Vysoké využití disku, CPU

Vysoké využití disku, CPU

Re: Vysoké využití disku, CPU

Re: Vysoké využití disku, CPU

Re: Vysoké využití disku, CPU

Re: Vysoké využití disku, CPU

Re: Vysoké využití disku, CPU