Kontrola logu -Freezovaní PC

akvakvac · Příspěvekod **akvakvac** » 14 čer 2015 12:52

Zoek.exe v5.0.0.0 Updated 04-May-2015
Tool run by David on ne 14. 06. 2015 at 12:09:34,91.
Microsoft Windows 8.1 Pro 6.3.9600 x86
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\David\Desktop\Čištění PC\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

14. 6. 2015 12:10:33 Zoek.exe System Restore Point Created Successfully.

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

127.0.0.1 localhost

==== Empty Folders Check ======================

C:\PROGRA~3\{BAF091CA-86C4-4627-ADA1-897E2621C1B0} deleted successfully
C:\Users\David\AppData\Local\Secunia PSI deleted successfully

==== Deleting CLSID Registry Keys ======================

==== Deleting CLSID Registry Values ======================

HKEY_USERS\S-1-5-21-3311125245-2410980911-1931526384-1001\Software\Microsoft\Internet Explorer\Approved Extensions\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} deleted successfully

==== Deleting Services ======================

==== FireFox Fix ======================

Deleted from C:\Users\David\AppData\Roaming\Mozilla\Firefox\Profiles\jdzjkr9v.default\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.search.selectedEngine", "Search By ZoneAlarm");
user_pref("browser.search.useDBForOrder", true);

Added to C:\Users\David\AppData\Roaming\Mozilla\Firefox\Profiles\jdzjkr9v.default\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

ProfilePath: C:\Users\David\AppData\Roaming\Mozilla\Firefox\Profiles\jdzjkr9v.default

user.js not found
---- Lines zonealarm removed from prefs.js ----
user_pref("extensions.ffxtlbr@zonealarm.com.install-event-fired", true);
user_pref("extensions.zonealarm.admin", false);
user_pref("extensions.zonealarm.aflt", "1001");
user_pref("extensions.zonealarm.appId", "{C56C48A0-DA4E-46F6-9859-1553DC865F84}");
user_pref("extensions.zonealarm.autoRvrt", "false");
user_pref("extensions.zonealarm.dfltLng", "EN");
user_pref("extensions.zonealarm.dfltSrch", true);
user_pref("extensions.zonealarm.dnsErr", true);
user_pref("extensions.zonealarm.excTlbr", false);
user_pref("extensions.zonealarm.ffxUnstlRst", false);
user_pref("extensions.zonealarm.hmpg", true);
user_pref("extensions.zonealarm.hpOld0", "about:home");
user_pref("extensions.zonealarm.id", "84c7ff5100000000000000ff703b2289");
user_pref("extensions.zonealarm.instlDay", "16579");
user_pref("extensions.zonealarm.instlRef", "ZLN128280990640299-1001");
user_pref("extensions.zonealarm.newTab", true);
user_pref("extensions.zonealarm.prdct", "zonealarm");
user_pref("extensions.zonealarm.prtnrId", "checkpoint");
user_pref("extensions.zonealarm.rvrt", "false");
user_pref("extensions.zonealarm.smplGrp", "NewUSR");
user_pref("extensions.zonealarm.srchPrvdr", "Search By ZoneAlarm");
user_pref("extensions.zonealarm.tlbrId", "HFA5");
user_pref("extensions.zonealarm.vrsn", "1.8.29.17");
user_pref("extensions.zonealarm.vrsni", "1.8.29.17");
user_pref("extensions.zonealarm.vrsnTs", "1.8.29.1716:08:46");
---- FireFox user.js and prefs.js backups ----

prefs_201514.06._1220_.backup

==== Deleting Files \ Folders ======================

C:\PROGRA~3\{BAF091CA-86C4-4627-ADA1-897E2621C1B0} not found
C:\Program Files\SystemRequirementsLab deleted
C:\Program Files\Winamp deleted
C:\Program Files\Pro Evolution Soccer 2015 deleted
C:\PROGRA~3\Package Cache deleted

==== Firefox Start and Search pages ======================

ProfilePath: C:\Users\David\AppData\Roaming\Mozilla\Firefox\Profiles\jdzjkr9v.default
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

==== Firefox Extensions ======================

AppDir: C:\Program Files\Mozilla Firefox
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================

Profilepath: C:\Users\David\AppData\Roaming\Mozilla\Firefox\Profiles\jdzjkr9v.default
1B4060455919B1430268AD615EAEE2E3 - C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll - PDF-XChange Editor
08ACECEB47FAF053C468D8AFE44709AD - C:\Program Files\Google\Update\1.3.27.5\npGoogleUpdate3.dll - Google Update
76772EFC681A12A9BE650939DDB030E8 - C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll - NVIDIA 3D VISION
3980193DFE0CFC348D597C37944A538C - C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll - NVIDIA 3D Vision
073A22FDCDAFD513DAD0D972BD2DF76E - c:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll - Silverlight Plug-In
CA808688B28D12B368F9A511FC5E3697 - C:\Program Files\Java\jre1.8.0_45\bin\plugin2\npjp2.dll - Java(TM) Platform SE 8 U45
B28862688B70415A3C0C5DCC8B242388 - C:\Program Files\Java\jre1.8.0_45\bin\dtplugin\npdeployJava1.dll - Java Deployment Toolkit 8.0.450.15
2E661988463BCFA1B95D4DAAB9B0B6FA - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_17_0_0_188.dll - Shockwave Flash
6D23BB87BCF88731959BF79082D442E6 - c:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrlui.dll - Microsoft® Silverlight

==== Chromium Look ======================

Google Chrome Version: 43.0.2357.124

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
flliilndjeohchalpbbcdekjklbdgfkk - No path found[]

Angry Birds - David\AppData\Local\Google\Chrome\User Data\Default\Extensions\aknpkdffaafgjchaibgeefbgmgeghloj
The Rise of Atlantis - David\AppData\Local\Google\Chrome\User Data\Default\Extensions\dcmgcfmfemlhoncahhnmhinceggddcnp
Bookmark Manager - David\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmlllbghnfkpflemihljekbapjopfjik
Avast Online Security - David\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki
Space Planet - David\AppData\Local\Google\Chrome\User Data\Default\Extensions\ppcocpoeoiajndepaaimnnglicichmbb

==== Chromium Startpages ======================

C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Preferences
source":"1004"},{"invalidation-list":[],"name":"EXTENSION","source":"1004"},{"invalidation-list":[],"name":"EXTENSION_SETTING","source":"1004"},{"invalidation-list":[],"name":"FAVICON_IMAGE","source":"1004"},{"invalidation-list":[],"name":"FAVICON_TRACKING","source":"1004"},{"invalidation-list":[],"name":"MANAGED_USER","source":"1004"},{"invalidation-list":[],"name":"MANAGED_USER_SHARED_SETTING","source":"1004"},{"invalidation-list":[],"name":"NIGORI","source":"1004"},{"invalidation-list":[],"name":"PASSWORD","source":"1004"},{"invalidation-list":[],"name":"PREFERENCE","source":"1004"},{"invalidation-list":[],"name":"PRIORITY_PREFERENCE","source":"1004"},{"invalidation-list":[],"name":"SEARCH_ENGINE","source":"1004"},{"invalidation-list":[],"name":"SESSION","source":"1004"},{"invalidation-list":[],"name":"THEME","source":"1004"},{"invalidation-list":[],"name":"TYPED_URL","source":"1004"}]},"media":{"device_id_salt":"6WJrL5MO6S0+oBcXiBQtIA=="},"message_center":{"welcome_notification_expiration_timestamp":"13077833098943756","welcome_notification_previously_popped_up":true},"net":{"http_server_properties":{"servers":{"clients4.google.com:443":{"supports_spdy":true}},"version":3}},"ntp":{"app_page_names":["Aplikace"]},"password_bubble":{"nopes":0},"plugins":{"migrated_to_pepper_flash":true,"plugins_list":[],"removed_old_component_pepper_flash_settings":true},"profile":{"avatar_bubble_tutorial_shown":2,"avatar_index":0,"content_settings":{"exceptions":{"app_banner":{},"auto_select_certificate":{},"automatic_downloads":{},"cookies":{},"fullscreen":{"[*.]www.facebook.com,*":{"setting":1},"[*.]www.rozzlobenimuzi.com,*":{"setting":1},"https://[*.]www.facebook.com:443,*":{"setting":1}},"geolocation":{"chrome-extension://fapbbpdnlcmiolkdfjnnjhabmcndadad/,chrome-extension://fapbbpdnlcmiolkdfjnnjhabmcndadad/":{"last_used":1432914677.2275,"setting":1}},"images":{},"javascript":{},"media_stream":{},"media_stream_camera":{},"media_stream_mic":{},"metro_switch_to_desktop":{},"midi_sysex":{},"mixed_script":{},"mouselock":{},"notifications":{},"plugins":{"[*.]grimmag.drakensang-online.com,*":{"setting":1},"[*.]software.sonymobile.com,*":{"setting":1}},"popups":{"[*.]edition.cnn.com,*":{"setting":1},"[*.]s2.sfgame.cz,*":{"setting":1},"[*.]www.gametwist.cz,*":{"setting":1}},"ppapi_broker":{},"protocol_handlers":{},"push_messaging":{},"ssl_cert_decisions":{}},"pattern_pairs":{"[*.]edition.cnn.com,*":{"popups":1},"[*.]grimmag.drakensang-online.com,*":{"plugins":1},"[*.]s2.sfgame.cz,*":{"popups":1},"[*.]software.sonymobile.com,*":{"plugins":1},"[*.]www.facebook.com,*":{"fullscreen":1},"[*.]www.gametwist.cz,*":{"popups":1},"[*.]www.rozzlobenimuzi.com,*":{"fullscreen":1},"chrome-extension://ihdkejbciahopmbagpnjmmkkdpfpaaak/,chrome-extension://ihdkejbciahopmbagpnjmmkkdpfpaaak/":{"geolocation":1},"https://[*.]www.facebook.com:443,*":{"fullscreen":1},"https://mail.google.com:443,*":{"notifications":1}},"pref_version":1},"exit_type":"Normal","exited_cleanly":true,"gaia_info_picture_url":"https://lh4.googleusercontent.com/-SdQmh6nqsrg/AAAAAAAAAAI/AAAAAAAAAOA/FI-_D4P4ImM/s256-c/photo.jpg","gaia_info_update_time":"13077388269977500","icon_version":3,"managed_user_id":"","managed_users":{},"migrated_content_settings_exceptions":true,"migrated_default_content_settings":true,"migrated_default_media_stream_content_settings":true,"name":"PrvnĂ uĹľivatel","password_manager_enabled":true,"per_host_zoom_levels":{}},"protection":{"macs":{}},"reverse_autologin":{"enabled":false},"savefile":{"default_directory":"C:\\Users\\David\\Downloads"},"session":{"restore_on_startup_migrated":true,"startup_urls_migration_time":"13076527879425405"},"signin":{"signedin_time":"13076623405560313"},"sync":{"app_list":true,"app_settings":true,"apps":true,"autofill":true,"autofill_profile":true,"autofill_wallet":true,"bookmarks":true,"dictionary":true,"encryption_bootstrap_token":"AQAAANCMnd8BFdERjHoAwE/Cl+sBAAAA03JAHkKwm0+LwF1c33xkIwAAAAACAAAAAAAQZgAAAAEAACAAAADHF1Hu46Li5zzCx9ME84qGPPXI8G8xRVb+Zejw66IZOAAAAAAOgAAAAAIAACAAAAC1qtnd5INiMLcuIQ4WkgBSNeeGZtg0Yg8+0RAnXU+QaEAAAADK/1OMvyIAN4WOsBynPctBwUpQ645NgJfvG2xypPN6L/m+QwzXs7TxIT1osWmk8z/VPi1oJWfn30DzFCl+VVLMQAAAAP8tX6lj8q+PY9B0TAbtHVsHJTAt26xuxLx2erd9eJM7ZoVczv6w9/FOCBwQT2IsUZraW79REu+Ix5Gyhw47YBs=","extension_settings":true,"extensions":true,"favicon_images":true,"favicon_tracking":true,"first_sync_time":"13076623405597313","has_setup_completed":true,"history_delete_directives":true,"keep_everything_synced":true,"keystore_encryption_bootstrap_token":"AQAAANCMnd8BFdERjHoAwE/Cl+sBAAAA03JAHkKwm0+LwF1c33xkIwAAAAACAAAAAAAQZgAAAAEAACAAAADyMd1iPOsCtjgML5P4+SadHTd4EXIdemHbJD4wp3ZNGAAAAAAOgAAAAAIAACAAAAAqC5sZC2RfXIJVFmtu29kJnhQwWf1uDoVnjpFk7e0HwlAAAAD7PN48peW+2zNXibm+ilMepGK7n47cRTdB8EPTZm4WUSrcN7AAHObJhzU/FnwAIeuemguUa3nMpepqb79WRgphhP7hHZhoTLyB0t/kR99uF0AAAAAUkYFy3I+IyAZ100hMrE3nXKSSc75TRdrOx502Ywajom0FqmySRKToN9yBD7NO3519AHLxR6DUMa0QJV2L2qXv","last_synced_time":"13077388533316877","managed_user_settings":false,"managed_user_shared_settings":false,"managed_user_whitelists":false,"managed_users":false,"passwords":true,"preferences":true,"priority_preferences":true,"search_engines":true,"session_sync_guid":"session_syncCuSLVxxvNcfPebxW8YXX0w==","sessions":true,"suppress_start":false,"tabs":true,"themes":true,"typed_urls":true},"sync_promo":{"show_on_first_run_allowed":false,"user_skipped":true},"translate_accepted_count":{"de":4,"en":0,"fa":1,"fr":0,"ru":1,"sk":0,"zh-CN":6},"translate_blocked_languages":["cs"],"translate_denied_count":{"de":0,"en":5,"fa":0,"fr":1,"ru":0,"sk":6,"zh-CN":0},"translate_language_blacklist":[],"translate_last_denied_time":1432149937181.252,"translate_site_blacklist":[],"translate_whitelists":{"de":"cs"},"zerosuggest":{"cachedresults":""}}
amko":"BB63D626B06B96C26A2932465611F8668DE1D1C5C9546C832AD6E03CF0EB4A67","ihdkejbciahopmbagpnjmmkkdpfpaaak":"878FC825C5F1128F229286A8CDB18DF8E9F91308ACEB9F9969F8E75DEEDAF06E","kmendfapggjehodndflmmgagdbamhnfd":"8138C2B002F9120088924278B45B7393A36EA269064FA93E49B2480D2AA29FC7","lhlflcpjmbmnhfehipheboagibdjgmog":"935B2C3E655E40EEBE931A86045E95991707426C777857903B668F5E806DFE2E","mfehgcgbbipciphmccgaenjidiccnmng":"B08CB9ACD8FC34652A4557E225CBD2BC3A81444B4AE70818A9777613017807AC","mfffpogegjflfpflabcdkioaeobkgjik":"A448D3B47973A69FD55D04DBB1CFAABF7EB4E3ABA0F311E5E51C09A2E69D37F9","mgndgikekgjfcpckkfioiadnlibdjbkf":"31D0733587B2D756032F196F24A88B14B58F81F61F5DE5D65039AB6103D83646","mhjfbmdgcfjbbpaeojofohoefgiehjai":"CB78BB8C3AA49E8B8C864063E15EAC2BE7D537310A8E8C70D8FD3D3C05501171","neajdppkdcdipfabeoofebfddakdcjhd":"D2A4797D9DB50B3D145E0664832EC7C6EA1E4A5EF6F7B7659BEBB024AAC3E125","nkeimhogjdpnpccoofpliimaahmaaome":"F70CFCA45CBC80C04F7F9F96847FD87FA392DD768EEB84EC0307EE1F6FCCF1A9","nlbjncdgjeocebhnmkbbbdekmmmcbfjd":"7BCA6527D0B9B59B0649CD98671CFD842E567B7AE61EB59DD64609DF957781B2","nmmhkkegccagdldgiimedpiccmgmieda":"458DE619EE5C0A361A194C77CE0FAFDDCEEC4EC1CD627A37AE08E06D8B05258D","olfeabkoenfaoljndfecamgilllcpiak":"F95E6C32DC7AC750A31DDFDA5F1A0325E8CB3087FF58EA5DA6E16262899B2522","opdjkbcinphfcelhffnllilcfpdgkogc":"5BCB9B072E43187717E4E80253652CA108D1E7AFAB63FD13CA05073B57404206","pafkbggdmjlpgkdkcbjmhmfcdpncadgh":"0DD156AC4BD59CB9E5B491147FD6478A5BBAC456C4EBAF001FF707A7559B45F2","pjkljhegncpnkpknbcohdijeoejaedia":"2D359CD48537673B6A92F927BB14C550BF212CAED1D3B00F31E91CCD7479B7FF","ppcocpoeoiajndepaaimnnglicichmbb":"1FF093463C6740EF217B425DD36F58E429E2EAEF0D31B2ECB3C07EE615F693DD"}},"google":{"services":{"last_username":"24973624A836263EA2DE279A4F0E2BB858023BF52E24CE3ED8B1A50074C9CD12","username":"92892A6C21A265E99C014BDDBB69303923EE89096D8D14DBD100A44FA80D053F"}},"homepage":"B9E0C2155A0B86D885759AA76BB212ABB5AFCF3C33CA32BA604D506A8123E388","homepage_is_newtabpage":"FCCEDA521593607CB725B776F081FA02C286B54388C65FCC657FEEB296237C56","pinned_tabs":"D920B936867F7C9725C2C5B0CEDB3E699AD74C99D948923F4802E6F68E385983","prefs":{"preference_reset_time":"4FCEA853B3C90637DF40334D594467C2770AD18F84095D2D5A455E351DDDAFC2"},"profile":{"reset_prompt_memento":"515603956F8EE9484F65F73D314E6DAB535BCA0FD20883EA61E3F769F35A5EE0"},"safebrowsing":{"incidents_sent":"ED8A5F551634D6CFECBB7B95E5EFE8FDD0FFDB5D3270B933D81E470B386164BA"},"search_provider_overrides":"304E4FA54AAC21B0CEA737B8B2D20F28792702859C5FCCB9DAE08C9EAF546170","session":{"restore_on_startup":"F93F6D259E6FA895FF526228F1F131CB4C9F5A3C6302551A46CCFAC95719712B","startup_urls":"6A311D4889855711E68AB6260FA13A9B687D5B1F662CA1B2650028590BB53D14"},"software_reporter":{"prompt_reason":"042B2AC5527555F18FB29AE231A9F9DD02BBBD22EDE79ED8AC401139DC520AD9","prompt_seed":"4B876B077898F92BF78C463BB8BD436BDF44B397FCFBF17CAD03D1838082DE5A","prompt_version":"ADE36755DCD121E7464699F87415629060D42F2F922BBFD273DC4533766AA85A"},"sync":{"remaining_rollback_tries":"2D0AC04A61F94B1F893845C3DBD62D753B903A78C7F507341E419E5E78F009E4"}},"super_mac":"40C945CCEC74F574C829C5177688995389EA7C300C159749AD09B5AE9D45F960"},"session":{"restore_on_startup":4,"startup_urls":["http://www.seznam.cz/","http://www.google.com/"]},"sync":{"remaining_rollback_tries":0}}

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"
"Old Start Page"="http://www.google.com"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="res://ieframe.dll/tabswelcome.htm"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
No DefaultScope Set For HKCU

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"
"Old Start Page"="http://www.google.com"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="about:newtab"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02"

==== Reset Google Chrome ======================

C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences was reset successfully
C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully

==== Empty IE Cache ======================

C:\Users\David\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\David\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully

==== Empty FireFox Cache ======================

C:\Users\David\AppData\Local\Mozilla\Firefox\Profiles\jdzjkr9v.default\cache2 emptied successfully

==== Empty Chrome Cache ======================

C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=232 folders=14 11299458636 bytes)

==== Empty Temp Folders ======================

C:\Users\David\AppData\Local\Temp will be emptied at reboot
C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\WINDOWS\Temp will be emptied at reboot

Reklama

akvakvac · Příspěvekod **akvakvac** » 14 čer 2015 12:54

Tak problemy zda se ustaly :-)

uvidím další dny přece jen člověk přes víkend u toho pc tolik nesedí :-)

přikladám log z HJT

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:53:00, on 14. 6. 2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17840)

FIREFOX: 38.0.5 (x86 cs)
Boot mode: Normal

Running processes:
C:\WINDOWS\system32\taskhostex.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\GWX\GWX.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
C:\WINDOWS\system32\SearchFilterHost.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\CheckPoint\ZoneAlarm\zatray.exe
C:\Program Files\Avira\Antivirus\avgnt.exe
C:\Program Files\Serviio\bin\ServiioConsole.exe
C:\Program Files\Avira\Launcher\Avira.Systray.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\WINDOWS\system32\Macromed\Flash\FlashPlayerPlugin_17_0_0_188.exe
C:\WINDOWS\system32\Macromed\Flash\FlashPlayerPlugin_17_0_0_188.exe
C:\Users\David\Desktop\Čištění PC\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_45\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_45\bin\jp2ssv.dll
O4 - HKLM\..\Run: [NvBackend] "C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe"
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [ZoneAlarm] C:\Program Files\CheckPoint\ZoneAlarm\zatray.exe
O4 - HKLM\..\Run: [ShadowPlay] C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\nvspcap.dll,ShadowPlayOnSystemStart
O4 - HKLM\..\Run: [Avira Systray] C:\Program Files\Avira\Launcher\Avira.Systray.exe
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\Antivirus\avgnt.exe" /min
O4 - HKCU\..\Run: [HP Deskjet 3050A J611 series (NET)] "C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\ScanToPCActivationApp.exe" -deviceID "CN23L510M305PJ:NW" -scfn "HP Deskjet 3050A J611 series (NET)" -AutoStart 1
O4 - Startup: Serviio.lnk = C:\Program Files\Serviio\bin\ServiioConsole.exe
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted IP range: http://192.168.0.1
O15 - ESC Trusted IP range: http://192.168.0.1
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Avira Mail Protection (AntiVirMailService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\Antivirus\avmailc7.exe
O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\Antivirus\sched.exe
O23 - Service: Avira Real-Time Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\Antivirus\avguard.exe
O23 - Service: Avira Web Protection (AntiVirWebService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\Antivirus\avwebg7.exe
O23 - Service: Avira Service Host (Avira.ServiceHost) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\Launcher\Avira.ServiceHost.exe
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvvsvc.exe
O23 - Service: Secunia PSI Agent - Secunia - C:\Program Files\Secunia\PSI\PSIA.exe
O23 - Service: Secunia Update Agent - Secunia - C:\Program Files\Secunia\PSI\sua.exe
O23 - Service: Serviio - Unknown owner - C:\Program Files\Serviio\bin\ServiioService.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Check Point Software Technologies Ltd. - C:\Program Files\CheckPoint\ZoneAlarm\vsmon.exe
O23 - Service: ZoneAlarm Privacy Service (ZAPrivacyService) - Check Point Software Technologies, Ltd. - C:\Program Files\CheckPoint\ZoneAlarm\ZaPrivacyService.exe

--
End of file - 6093 bytes

Příspěvekod **Orcus** » 14 čer 2015 16:33

V HJT fixni:

Kód: Vybrat vše

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = 
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"

Vyčisti systém CCleanerem

====================================================

Stáhni si zde DelFix
http://general-changelog-team.fr/fr/dow ... e/9-delfix

ulož si soubor na plochu.
Poklepáním na ikonu spusť nástroj Delfix.exe
( Ve Windows Vista, Windows 7 a 8, musíš spustit soubor pravým tlačítkem myši -> Spustit jako správce .
V hlavním menu, zkontroluj tyto možnosti - Odstranění dezinfekce nástrojů (Remove desinfection tools) – Vyčistit body obnovy (Purge System Restore) .
Poté klikněte na tlačítko Spustit (Run) a nech nástroj dělat svoji práci.

Poté se zpráva se otevře (DelFix.txt). Vlož celý obsah zprávy sem. Jinak je zpráva zde:
v C: \ DelFix.txt

Pokud nebudou problémy, je to vše a můžeš dát vyřešeno , zelenou fajfku.

akvakvac · Příspěvekod **akvakvac** » 14 čer 2015 22:41

# DelFix v1.010 - Logfile created 14/06/2015 at 22:39:52
# Updated 26/04/2015 by Xplode
# Username : David - DOMACÍPC
# Operating System : Windows 8.1 Pro (32 bits)

~ Removing disinfection tools ...

Deleted : C:\zoek_backup
Deleted : C:\AdwCleaner
Deleted : C:\RegBackup
Deleted : C:\zoek-results.log
Deleted : C:\Users\David\Desktop\JRT.txt
Deleted : HKLM\SOFTWARE\AdwCleaner
Deleted : HKLM\SOFTWARE\TrendMicro\Hijackthis

~ Cleaning system restore ...

Deleted : RP #33 [Naplánovaný kontrolní bod | 05/27/2015 08:45:48]
Deleted : RP #34 [Naplánovaný kontrolní bod | 06/05/2015 15:32:20]
Deleted : RP #35 [Odebráno: NVIDIA PhysX | 06/06/2015 16:14:44]
Deleted : RP #36 [Windows Update | 06/10/2015 14:31:11]
Deleted : RP #38 [avast! antivirus system restore point | 06/12/2015 19:25:17]
Deleted : RP #39 [zoek.exe restore point | 06/14/2015 10:10:17]

New restore point created !

########## - EOF - ##########

Opět děkuji za skvělou práci ,moc si toho vážim °-)

Kontrola logu -Freezovaní PC Vyřešeno

Re: Kontrola logu -Freezovaní PC

Re: Kontrola logu -Freezovaní PC

Re: Kontrola logu -Freezovaní C

Re: Kontrola logu -Freezovaní PC Vyřešeno

Kdo je online