PC-HELP.CZ

České diskuzní fórum o počítačích
https://pc-help.cnews.cz/

Neustale zamrzanie pocitaca

https://pc-help.cnews.cz/viewtopic.php?f=70&t=145087

Stránka 1 z 1

Neustale zamrzanie pocitaca

Napsal: 02 pro 2014 10:52
od stuper555
Ahojte.
Mam taky problem, preinstaloval som si Windows, kvoli tomu, ze mi pocitac stale zamrzal hocikedy z nicoho nic (zamrzne pri praci vo Windowse, napr. ked som napr. na nete alebo aj pri inych hocijakych veciach) a nemozem prist nato preco. Proste vyskytuje sa to hocikedy niekedy napr. 10 min. po nabehnuti Windowsu, niekedy za 1 hod a inokedy aj za 4 hod atd., ako kedy.
Neviem co mam uz robit. Bude to teda asi hardwarom alebo cim?

Dakujem velmi pekne za pomoc
Prikladam logy:

Logfile of random's system information tool 1.10 (written by random/random)
Run by Marek at 2014-11-30 21:41:27
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 98 GB (82%) free of 120 GB
Total RAM: 2047 MB (68% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:41:38, on 30. 11. 2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v8.00 (8.00.7601.17514)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\soundman.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
C:\Program Files\KROS\ALFA plus\!System\ALFAplus.exe
C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Users\Marek\Desktop\RSIT.exe
C:\Program Files\trend micro\Marek.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.mystartsearch.com/?type=hp&t ... J90F164108
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.mystartsearch.com/?type=hp&t ... J90F164108
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.mystartsearch.com/?type=hp&t ... J90F164108
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.mystartsearch.com/web/?type= ... F164108&q={searchTerms}
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.mystartsearch.com/web/?type= ... F164108&q={searchTerms}
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.mystartsearch.com/?type=hp&t ... J90F164108
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Global Startup: ALFA plus - rýchle spustenie.lnk = C:\Program Files\KROS\ALFA plus\!System\ALFAplus.exe
O4 - Global Startup: Canon LBP2900 Status Window.lnk = C:\Windows\System32\spool\drivers\w32x86\3\CNAB4LAK.EXE
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Firebird Server - KROS_20400 (FirebirdServerKROS_20400) - Firebird Project - C:\Program Files\KROS\KROS FBServer\Firebird001\bin\fbserver.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\Windows\system32\nvsvc32.exe
O23 - Service: WindowsMangerProtect Service (WindowsMangerProtect) - Fuyu LIMITED - C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe

--
End of file - 5138 bytes

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe

=========Mozilla firefox=========

ProfilePath - C:\Users\Marek\AppData\Roaming\Mozilla\Firefox\Profiles\n5025sza.default-1417353547558

"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF
"faststartff@gmail.com"=C:\Users\Marek\AppData\Roaming\Mozilla\Firefox\Profiles\xenmkbbn.default\extensions\faststartff@gmail.com


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 15.0.0.239 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_15_0_0_239.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll


======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-11-30 586968]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SoundMan"=C:\Windows\SOUNDMAN.EXE [2005-05-17 77824]
"NvCplDaemon"=C:\Windows\system32\NvCpl.dll [2004-02-29 2904064]
"nwiz"=nwiz.exe /install []
"NvMediaCenter"=C:\Windows\system32\NvMcTray.dll [2004-02-29 46080]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-08-21 959176]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-11-30 5226600]
"NeroFilterCheck"=C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [2007-03-01 153136]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe [2007-06-27 152872]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
ALFA plus - rýchle spustenie.lnk - C:\Program Files\KROS\ALFA plus\!System\ALFAplus.exe
Canon LBP2900 Status Window.lnk - C:\Windows\System32\spool\drivers\w32x86\3\CNAB4LAK.EXE

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2014-11-30 21:35:04 ----D---- C:\rsit
2014-11-30 21:35:04 ----D---- C:\Program Files\trend micro
2014-11-30 20:04:09 ----D---- C:\Windows\PCHEALTH
2014-11-30 16:59:19 ----D---- C:\Program Files\Microsoft Visual Studio 8
2014-11-30 16:56:06 ----RHD---- C:\MSOCache
2014-11-30 16:48:01 ----D---- C:\Program Files\Mozilla Firefox
2014-11-30 15:00:18 ----D---- C:\Users\Marek\AppData\Roaming\Ahead
2014-11-30 14:59:13 ----D---- C:\ProgramData\Ahead
2014-11-30 14:56:20 ----D---- C:\Program Files\Nero
2014-11-30 14:56:19 ----D---- C:\ProgramData\Nero
2014-11-30 14:56:19 ----D---- C:\Program Files\Common Files\Ahead
2014-11-30 14:48:33 ----A---- C:\Windows\system32\d3dx9_30.dll
2014-11-30 14:48:33 ----A---- C:\Windows\system32\d3dx9_28.dll
2014-11-30 14:47:39 ----D---- C:\Program Files\MSECache
2014-11-30 14:14:28 ----A---- C:\Windows\system32\rdpcorets.dll
2014-11-30 14:14:28 ----A---- C:\Windows\system32\rdpcore.dll
2014-11-30 14:14:27 ----A---- C:\Windows\system32\drivers\tdtcp.sys
2014-11-30 14:14:27 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2014-11-30 14:14:08 ----A---- C:\Windows\ODBC.INI
2014-11-30 14:13:55 ----A---- C:\Windows\system32\mdimon.dll
2014-11-30 14:01:35 ----D---- C:\Users\Marek\AppData\Roaming\Macromedia
2014-11-30 14:01:35 ----D---- C:\Users\Marek\AppData\Roaming\Adobe
2014-11-30 13:52:12 ----A---- C:\Windows\system32\wups2.dll
2014-11-30 13:52:12 ----A---- C:\Windows\system32\wuauclt.exe
2014-11-30 13:52:11 ----A---- C:\Windows\system32\wucltux.dll
2014-11-30 13:52:11 ----A---- C:\Windows\system32\wuaueng.dll
2014-11-30 13:51:59 ----A---- C:\Windows\system32\wups.dll
2014-11-30 13:51:59 ----A---- C:\Windows\system32\wudriver.dll
2014-11-30 13:51:59 ----A---- C:\Windows\system32\wuapi.dll
2014-11-30 13:51:51 ----A---- C:\Windows\system32\wuwebv.dll
2014-11-30 13:51:51 ----A---- C:\Windows\system32\wuapp.exe
2014-11-30 13:43:38 ----D---- C:\ProgramData\firebird
2014-11-30 13:40:41 ----D---- C:\Program Files\SupTab
2014-11-30 13:40:26 ----D---- C:\ProgramData\WindowsMangerProtect
2014-11-30 13:39:57 ----D---- C:\Users\Marek\AppData\Roaming\mystartsearch
2014-11-30 13:32:16 ----A---- C:\Windows\system32\drivers\dtsoftbus01.sys
2014-11-30 13:32:00 ----D---- C:\Users\Marek\AppData\Roaming\DAEMON Tools Lite
2014-11-30 13:31:39 ----D---- C:\Program Files\DAEMON Tools Lite
2014-11-30 13:30:46 ----D---- C:\Program Files\Elcom
2014-11-30 13:29:28 ----D---- C:\ProgramData\DAEMON Tools Lite
2014-11-30 13:26:50 ----D---- C:\Users\Marek\AppData\Roaming\AVAST Software
2014-11-30 13:25:31 ----A---- C:\Windows\system32\drivers\aswStm.sys
2014-11-30 13:25:30 ----A---- C:\Windows\system32\drivers\aswVmm.sys
2014-11-30 13:25:29 ----A---- C:\Windows\system32\drivers\aswsp.sys
2014-11-30 13:25:29 ----A---- C:\Windows\system32\drivers\aswRvrt.sys
2014-11-30 13:25:29 ----A---- C:\Windows\system32\drivers\aswMonFlt.sys
2014-11-30 13:25:28 ----A---- C:\Windows\system32\drivers\aswRdr2.sys
2014-11-30 13:25:28 ----A---- C:\Windows\system32\drivers\aswHwid.sys
2014-11-30 13:25:26 ----A---- C:\Windows\system32\drivers\aswsnx.sys
2014-11-30 13:25:23 ----A---- C:\Windows\system32\aswBoot.exe
2014-11-30 13:25:19 ----A---- C:\Windows\avastSS.scr
2014-11-30 13:23:12 ----D---- C:\ALFA plus
2014-11-30 13:20:46 ----D---- C:\Program Files\KROS
2014-11-30 13:19:30 ----D---- C:\ProgramData\KROS
2014-11-30 13:18:00 ----D---- C:\Program Files\AVAST Software
2014-11-30 13:17:08 ----D---- C:\ProgramData\AVAST Software
2014-11-30 13:06:11 ----A---- C:\Windows\system32\FlashPlayerApp.exe
2014-11-30 13:06:08 ----D---- C:\Windows\system32\Macromed
2014-11-30 12:52:53 ----A---- C:\Windows\system32\CNAB4SMK.DLL
2014-11-30 12:52:53 ----A---- C:\Windows\system32\CNAB4RPK.EXE
2014-11-30 12:52:53 ----A---- C:\Windows\system32\CNAB4PTU.DLL
2014-11-30 12:52:53 ----A---- C:\Windows\system32\CNAB4LMK.DLL
2014-11-30 12:52:53 ----A---- C:\Windows\system32\CNAB4EMU.DLL
2014-11-30 12:52:30 ----D---- C:\Program Files\Canon
2014-11-30 12:38:58 ----D---- C:\Program Files\Common Files\Adobe
2014-11-30 12:38:58 ----D---- C:\Program Files\Adobe
2014-11-30 12:19:05 ----D---- C:\ProgramData\Adobe
2014-11-30 12:18:02 ----D---- C:\1by1
2014-11-30 12:17:16 ----D---- C:\Program Files\Common Files\DESIGNER
2014-11-30 12:16:03 ----D---- C:\Program Files\Microsoft.NET
2014-11-30 12:12:54 ----D---- C:\Users\Marek\AppData\Roaming\Mozilla
2014-11-30 12:12:46 ----D---- C:\ProgramData\Mozilla
2014-11-30 12:12:46 ----D---- C:\Program Files\Mozilla Maintenance Service
2014-11-30 12:11:45 ----D---- C:\ProgramData\Microsoft Help
2014-11-30 12:11:45 ----D---- C:\Program Files\Microsoft Office
2014-11-30 12:11:38 ----SHD---- C:\Windows\Installer
2014-11-30 11:29:09 ----N---- C:\Windows\system32\MpSigStub.exe
2014-11-30 11:22:41 ----D---- C:\Windows\nview
2014-11-30 11:22:22 ----A---- C:\Windows\system32\WinSys.exe
2014-11-30 11:22:22 ----A---- C:\Windows\system32\Nvgpio.dll
2014-11-30 11:22:22 ----A---- C:\Windows\system32\nvclock.dll
2014-11-30 11:22:22 ----A---- C:\Windows\system32\Nvapi9x.dll
2014-11-30 11:22:22 ----A---- C:\Windows\system32\msiuins.exe
2014-11-30 11:22:22 ----A---- C:\Windows\system32\msicpl.dll
2014-11-30 11:22:22 ----A---- C:\Windows\system32\memtest.dll
2014-11-30 11:22:22 ----A---- C:\Windows\system32\drivers\vgauti.sys
2014-11-30 11:22:22 ----A---- C:\Windows\system32\drivers\msicpl.sys
2014-11-30 11:20:13 ----D---- C:\Program Files\Realtek Sound Manager
2014-11-30 11:20:13 ----D---- C:\Program Files\AvRack
2014-11-30 11:20:13 ----A---- C:\Windows\avrack.ini
2014-11-30 11:20:11 ----A---- C:\Windows\system32\RTLCPL.exe
2014-11-30 11:20:11 ----A---- C:\Windows\system32\RtlCPAPI.dll
2014-11-30 11:20:11 ----A---- C:\Windows\system32\ChCfg.exe
2014-11-30 11:20:11 ----A---- C:\Windows\system32\drivers\alcxwdm.sys
2014-11-30 11:20:11 ----A---- C:\Windows\soundman.exe
2014-11-30 11:20:10 ----HD---- C:\Program Files\InstallShield Installation Information
2014-11-30 11:20:10 ----A---- C:\Windows\system32\drivers\alcxinit.dat
2014-11-30 11:20:10 ----A---- C:\Windows\alcupd.exe
2014-11-30 11:20:10 ----A---- C:\Windows\alcrmv.exe
2014-11-30 11:19:48 ----D---- C:\Program Files\Common Files\InstallShield
2014-11-30 11:19:32 ----D---- C:\Users\Marek\AppData\Roaming\WinRAR
2014-11-30 11:19:16 ----D---- C:\Program Files\WinRAR
2014-11-30 11:13:38 ----D---- C:\Users\Marek\AppData\Roaming\Identities
2014-11-30 11:13:29 ----SD---- C:\Users\Marek\AppData\Roaming\Microsoft
2014-11-30 11:13:29 ----D---- C:\Users\Marek\AppData\Roaming\Media Center Programs
2014-11-30 11:13:14 ----SHD---- C:\Recovery
2014-11-30 11:08:16 ----D---- C:\Windows\SoftwareDistribution
2014-11-30 11:05:16 ----D---- C:\Windows\Prefetch
2014-11-30 11:04:50 ----ASH---- C:\pagefile.sys
2014-11-30 11:04:50 ----ASH---- C:\hiberfil.sys
2014-11-30 11:04:49 ----SHD---- C:\System Volume Information
2014-11-30 11:04:02 ----D---- C:\Windows\Panther
2014-11-30 11:03:50 ----RASH---- C:\BOOTSECT.BAK
2014-11-30 11:03:48 ----SHD---- C:\Boot

======List of files/folders modified in the last 1 month======

2014-11-30 21:40:21 ----D---- C:\Windows\Temp
2014-11-30 21:35:04 ----RD---- C:\Program Files
2014-11-30 20:58:09 ----D---- C:\Windows\system32\config
2014-11-30 20:58:08 ----RSD---- C:\Windows\Fonts
2014-11-30 20:58:08 ----RSD---- C:\Windows\assembly
2014-11-30 20:58:08 ----D---- C:\Windows\Tasks
2014-11-30 20:58:08 ----D---- C:\Windows\system32\wfp
2014-11-30 20:58:08 ----D---- C:\Windows\system32\Tasks
2014-11-30 20:58:08 ----D---- C:\Windows\system32\DriverStore
2014-11-30 20:58:08 ----D---- C:\Windows\system32\catroot2
2014-11-30 20:58:08 ----D---- C:\Windows\System32
2014-11-30 20:58:08 ----D---- C:\Windows\ShellNew
2014-11-30 20:58:08 ----D---- C:\Windows\inf
2014-11-30 20:58:08 ----D---- C:\Windows
2014-11-30 20:58:06 ----D---- C:\Program Files\Common Files\microsoft shared
2014-11-30 20:58:05 ----D---- C:\Program Files\Common Files
2014-11-30 20:57:57 ----D---- C:\Windows\system32\wbem
2014-11-30 20:57:57 ----D---- C:\Windows\registration
2014-11-30 20:57:56 ----D---- C:\Windows\winsxs
2014-11-30 20:57:53 ----D---- C:\Windows\Microsoft.NET
2014-11-30 20:57:47 ----SD---- C:\ProgramData\Microsoft
2014-11-30 20:55:57 ----D---- C:\Windows\system32\LogFiles
2014-11-30 15:03:08 ----D---- C:\Windows\system32\sk-SK
2014-11-30 15:03:07 ----D---- C:\Windows\system32\drivers
2014-11-30 14:59:13 ----HD---- C:\ProgramData
2014-11-30 14:57:47 ----D---- C:\Windows\ehome
2014-11-30 14:40:48 ----D---- C:\Program Files\MSBuild
2014-11-30 14:36:39 ----A---- C:\Windows\win.ini
2014-11-30 14:10:28 ----D---- C:\Windows\system32\catroot
2014-11-30 14:05:00 ----D---- C:\Windows\system
2014-11-30 13:48:38 ----D---- C:\Windows\Logs
2014-11-30 13:47:00 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-11-30 12:55:29 ----D---- C:\Windows\system32\drivers\UMDF
2014-11-30 12:43:40 ----D---- C:\Windows\system32\en-US
2014-11-30 12:12:11 ----D---- C:\Program Files\Common Files\System
2014-11-30 11:30:26 ----D---- C:\Windows\Help
2014-11-30 11:19:58 ----D---- C:\Windows\system32\restore
2014-11-30 11:19:23 ----D---- C:\Windows\system32\CodeIntegrity
2014-11-30 11:13:36 ----SHD---- C:\$Recycle.Bin
2014-11-30 11:13:26 ----RD---- C:\Users
2014-11-30 11:10:29 ----D---- C:\Windows\rescache
2014-11-30 11:10:22 ----D---- C:\Windows\debug
2014-11-30 11:07:31 ----D---- C:\Windows\system32\sysprep
2014-11-30 11:05:33 ----D---- C:\Windows\CSC

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2014-11-30 49944]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2014-11-30 206248]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2014-11-30 81768]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2014-11-30 787800]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2014-11-30 423784]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 388096]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2014-11-30 243128]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2014-11-30 24184]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2014-11-30 70384]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2014-11-30 91496]
R2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\Windows\system32\drivers\ALCXWDM.SYS [2005-05-18 2319680]
R3 nv;nv; C:\Windows\system32\DRIVERS\nv4_mini.sys [2004-02-29 1893728]
R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\Windows\system32\DRIVERS\nvm60x32.sys [2009-07-13 429056]
S3 aic78xx;aic78xx; C:\Windows\system32\drivers\djsvs.sys [2009-07-14 70720]
S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-20 62464]
S3 GMSIPCI;GMSIPCI; \??\E:\INSTALL\GMSIPCI.SYS []
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2010-11-20 15872]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632]
S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys [2010-11-20 77184]
S3 terminpt;Microsoft Remote Desktop Input Driver; C:\Windows\system32\drivers\terminpt.sys [2010-11-20 25600]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-20 27264]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys [2010-11-20 112640]
S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys []
S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\drivers\viac7.sys [2009-07-14 52736]
S3 vmbus;vmbus; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-09-12 64704]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-11-30 50344]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 FirebirdServerKROS_20400;Firebird Server - KROS_20400; C:\Program Files\KROS\KROS FBServer\Firebird001\bin\fbserver.exe [2011-10-11 3764224]
R2 WindowsMangerProtect;WindowsMangerProtect Service; C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe [2014-11-30 484352]
R3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2007-06-27 279848]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 NVSvc;NVIDIA Display Driver Service; C:\Windows\system32\nvsvc32.exe [2004-02-29 77824]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-11-30 267440]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2014-11-30 114288]
S3 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-06-29 800040]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]

-----------------EOF-----------------




DDS (Ver_2012-11-20.01) - NTFS_x86
Internet Explorer: 8.0.7601.17514
Run by Marek at 21:56:31 on 2014-11-30
Microsoft Windows 7 Ultimate 6.1.7601.1.1250.421.1051.18.2047.1094 [GMT 1:00]
.
AV: avast! Antivirus *Enabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: avast! Antivirus *Enabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
.
============== Running Processes ================
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\taskhost.exe
C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\KROS\KROS FBServer\Firebird001\bin\fbserver.exe
C:\Windows\soundman.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
C:\Program Files\KROS\ALFA plus\!System\ALFAplus.exe
C:\Windows\system32\CNAB4RPK.EXE
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\system32\WUDFHost.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
C:\Windows\system32\NOTEPAD.EXE
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_15_0_0_239.exe
C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_15_0_0_239.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\conhost.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\System32\svchost.exe -k secsvcs
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.mystartsearch.com/?type=hp&t ... J90F164108
uDefault_Page_URL = hxxp://www.mystartsearch.com/?type=hp&t ... J90F164108
mStart Page = hxxp://www.mystartsearch.com/?type=hp&t ... J90F164108
mSearch Page = hxxp://www.mystartsearch.com/web/?type= ... F164108&q={searchTerms}
mDefault_Page_URL = hxxp://www.mystartsearch.com/?type=hp&t ... J90F164108
mDefault_Search_URL = hxxp://www.mystartsearch.com/web/?type= ... F164108&q={searchTerms}
BHO: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - c:\program files\avast software\avast\aswWebRepIE.dll
uRun: [DAEMON Tools Lite] "c:\program files\daemon tools lite\DTLite.exe" -autorun
uRun: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "c:\program files\common files\ahead\lib\NMBgMonitor.exe"
mRun: [SoundMan] SOUNDMAN.EXE
mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup
mRun: [nwiz] nwiz.exe /install
mRun: [NvMediaCenter] RUNDLL32.EXE c:\windows\system32\NvMcTray.dll,NvTaskbarInit
mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
mRun: [AvastUI.exe] "c:\program files\avast software\avast\AvastUI.exe" /nogui
mRun: [NeroFilterCheck] c:\program files\common files\ahead\lib\NeroCheck.exe
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\alfapl~1.lnk - c:\program files\kros\alfa plus\!system\ALFAplus.exe
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\canonl~1.lnk - c:\windows\system32\spool\drivers\w32x86\3\CNAB4LAK.EXE
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
mPolicies-System: SoftwareSASGeneration = dword:1
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office12\EXCEL.EXE/3000
IE: E&xportovať do programu Microsoft Excel - c:\progra~1\micros~2\office11\EXCEL.EXE/3000
TCP: NameServer = 192.168.1.1
TCP: Interfaces\{6A9DED7D-C8A6-4045-8F35-909A111CB439} : DHCPNameServer = 192.168.1.1
SSODL: WebCheck - <orphaned>
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\users\marek\appdata\roaming\mozilla\firefox\profiles\n5025sza.default-1417353547558\
FF - plugin: c:\program files\adobe\reader 11.0\reader\air\nppdf32.dll
FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_15_0_0_239.dll
.
============= SERVICES / DRIVERS ===============
.
R0 aswRvrt;avast! Revert;c:\windows\system32\drivers\aswRvrt.sys [2014-11-30 49944]
R0 aswVmm;avast! VM Monitor;c:\windows\system32\drivers\aswVmm.sys [2014-11-30 206248]
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswsnx.sys [2014-11-30 787800]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswsp.sys [2014-11-30 423784]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\drivers\dtsoftbus01.sys [2014-11-30 243128]
R2 aswHwid;avast! HardwareID;c:\windows\system32\drivers\aswHwid.sys [2014-11-30 24184]
R2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2014-11-30 70384]
R2 aswStm;aswStm;c:\windows\system32\drivers\aswStm.sys [2014-11-30 91496]
R2 avast! Antivirus;avast! Antivirus;c:\program files\avast software\avast\AvastSvc.exe [2014-11-30 50344]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
R2 FirebirdServerKROS_20400;Firebird Server - KROS_20400;c:\program files\kros\kros fbserver\firebird001\bin\fbserver.exe [2014-11-30 3764224]
R2 WindowsMangerProtect;WindowsMangerProtect Service;c:\programdata\windowsmangerprotect\protectwindowsmanager.exe -service --> c:\programdata\windowsmangerprotect\ProtectWindowsManager.exe -service [?]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-13 229888]
S3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys [2011-4-12 62464]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2010-11-20 15872]
S3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\Synth3dVsc.sys [2011-4-12 77184]
S3 terminpt;Microsoft Remote Desktop Input Driver;c:\windows\system32\drivers\terminpt.sys [2011-4-12 25600]
S3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\TsUsbFlt.sys [2010-11-20 52224]
S3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2010-11-20 27264]
S3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [2011-4-12 112640]
.
=============== Created Last 30 ================
.
2014-11-30 20:35:04 -------- d-----w- c:\program files\trend micro
2014-11-30 19:04:09 -------- d-----w- c:\windows\PCHEALTH
2014-11-30 15:59:19 -------- d-----w- c:\program files\Microsoft Visual Studio 8
2014-11-30 14:04:57 -------- d-----w- c:\users\marek\appdata\local\Ahead
2014-11-30 13:56:20 -------- d-----w- c:\program files\Nero
2014-11-30 13:56:19 -------- d-----w- c:\programdata\Nero
2014-11-30 13:47:39 -------- d-----w- c:\program files\MSECache
2014-11-30 13:14:28 919040 ----a-w- c:\windows\system32\rdpcorets.dll
2014-11-30 13:14:28 826880 ----a-w- c:\windows\system32\rdpcore.dll
2014-11-30 13:14:27 24576 ----a-w- c:\windows\system32\drivers\tdtcp.sys
2014-11-30 13:14:27 183808 ----a-w- c:\windows\system32\drivers\rdpwd.sys
2014-11-30 13:13:56 18944 ----a-w- c:\windows\system32\spool\prtprocs\w32x86\mdippr.dll
2014-11-30 13:13:55 17920 ----a-w- c:\windows\system32\mdimon.dll
2014-11-30 13:01:35 -------- d-----w- c:\users\marek\appdata\local\Macromedia
2014-11-30 12:52:11 2425856 ----a-w- c:\windows\system32\wucltux.dll
2014-11-30 12:51:59 92672 ----a-w- c:\windows\system32\wudriver.dll
2014-11-30 12:51:51 33792 ----a-w- c:\windows\system32\wuapp.exe
2014-11-30 12:51:51 179656 ----a-w- c:\windows\system32\wuwebv.dll
2014-11-30 12:44:03 -------- d-----w- c:\users\marek\appdata\local\KROS_a.s
2014-11-30 12:43:38 -------- d-----w- c:\programdata\firebird
2014-11-30 12:40:41 -------- d-----w- c:\program files\SupTab
2014-11-30 12:40:26 -------- d-----w- c:\programdata\WindowsMangerProtect
2014-11-30 12:39:57 -------- d-----w- c:\users\marek\appdata\roaming\mystartsearch
2014-11-30 12:32:16 243128 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2014-11-30 12:32:00 -------- d-----w- c:\users\marek\appdata\roaming\DAEMON Tools Lite
2014-11-30 12:31:39 -------- d-----w- c:\program files\DAEMON Tools Lite
2014-11-30 12:30:46 -------- d-----w- c:\program files\Elcom
2014-11-30 12:29:28 -------- d-----w- c:\programdata\DAEMON Tools Lite
2014-11-30 12:26:50 -------- d-----w- c:\users\marek\appdata\roaming\AVAST Software
2014-11-30 12:25:31 91496 ----a-w- c:\windows\system32\drivers\aswStm.sys
2014-11-30 12:25:30 206248 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2014-11-30 12:25:29 70384 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2014-11-30 12:25:29 49944 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
2014-11-30 12:25:28 81768 ----a-w- c:\windows\system32\drivers\aswRdr2.sys
2014-11-30 12:25:28 24184 ----a-w- c:\windows\system32\drivers\aswHwid.sys
2014-11-30 12:25:26 787800 ----a-w- c:\windows\system32\drivers\aswsnx.sys
2014-11-30 12:25:19 43152 ----a-w- c:\windows\avastSS.scr
2014-11-30 12:23:12 -------- d-----w- C:\ALFA plus
2014-11-30 12:20:46 -------- d-----w- c:\program files\KROS
2014-11-30 12:19:30 -------- d-----w- c:\programdata\KROS
2014-11-30 12:18:00 -------- d-----w- c:\program files\AVAST Software
2014-11-30 12:17:08 -------- d-----w- c:\programdata\AVAST Software
2014-11-30 12:06:11 701104 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2014-11-30 12:06:10 71344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2014-11-30 11:52:53 57344 ----a-w- c:\windows\system32\CNAB4PTU.DLL
2014-11-30 11:52:53 192512 ----a-w- c:\windows\system32\CNAB4EMU.DLL
2014-11-30 11:52:53 163840 ----a-w- c:\windows\system32\CNAB4SMK.DLL
2014-11-30 11:52:53 113856 ----a-w- c:\windows\system32\CNAB4RPK.EXE
2014-11-30 11:52:53 106496 ----a-w- c:\windows\system32\CNAB4LMK.DLL
2014-11-30 11:52:30 -------- d-----w- c:\program files\Canon
2014-11-30 11:44:01 -------- d-----w- c:\users\marek\appdata\local\Finančné_riaditeľstvo_SR_-_Sekcia_daňová
2014-11-30 11:43:15 -------- d-----w- c:\users\marek\appdata\local\Apps
2014-11-30 11:43:13 -------- d-----w- c:\users\marek\appdata\local\Deployment
2014-11-30 11:18:02 -------- d-----w- C:\1by1
2014-11-30 11:15:54 -------- d-----w- c:\users\marek\appdata\local\Adobe
2014-11-30 11:12:54 -------- d-----w- c:\users\marek\appdata\local\Mozilla
2014-11-30 11:12:46 -------- d-----w- c:\program files\Mozilla Maintenance Service
2014-11-30 11:11:47 -------- d-----w- c:\users\marek\appdata\local\Microsoft Help
2014-11-30 11:11:38 -------- d-sh--w- c:\windows\Installer
2014-11-30 10:29:11 8941456 ----a-w- c:\programdata\microsoft\windows defender\definition updates\{c679f2c5-cb0e-4647-94dd-286df0892c56}\mpengine.dll
2014-11-30 10:29:09 229000 ------w- c:\windows\system32\MpSigStub.exe
2014-11-30 10:20:13 -------- d-----w- c:\program files\Realtek Sound Manager
2014-11-30 10:20:13 -------- d-----w- c:\program files\AvRack
2014-11-30 10:20:11 9389568 ----a-w- c:\windows\system32\RTLCPL.exe
2014-11-30 10:20:11 77824 ----a-w- c:\windows\soundman.exe
2014-11-30 10:20:11 40960 ----a-w- c:\windows\system32\ChCfg.exe
2014-11-30 10:20:11 2319680 ----a-w- c:\windows\system32\drivers\alcxwdm.sys
2014-11-30 10:20:11 18726912 ----a-w- c:\windows\system32\alsndmgr.cpl
2014-11-30 10:20:11 156672 ----a-w- c:\windows\system32\RtlCPAPI.dll
2014-11-30 10:20:10 294912 ----a-w- c:\windows\alcupd.exe
2014-11-30 10:20:10 200704 ----a-w- c:\windows\alcrmv.exe
2014-11-30 10:20:10 1360 ----a-w- c:\windows\system32\drivers\alcxinit.dat
2014-11-30 10:19:51 32768 ----a-w- c:\program files\common files\installshield\professional\runtime\Objectps.dll
2014-11-30 10:19:50 753664 ----a-w- c:\program files\common files\installshield\professional\runtime\11\00\intel32\iKernel.dll
2014-11-30 10:19:50 69714 ----a-w- c:\program files\common files\installshield\professional\runtime\11\00\intel32\ctor.dll
2014-11-30 10:19:50 5632 ----a-w- c:\program files\common files\installshield\professional\runtime\11\00\intel32\DotNetInstaller.exe
2014-11-30 10:19:50 274432 ----a-w- c:\program files\common files\installshield\professional\runtime\11\00\intel32\iscript.dll
2014-11-30 10:19:50 184320 ----a-w- c:\program files\common files\installshield\professional\runtime\11\00\intel32\iuser.dll
2014-11-30 10:19:49 200836 ----a-w- c:\program files\common files\installshield\professional\runtime\11\00\intel32\iGdi.dll
2014-11-30 10:19:48 331908 ----a-w- c:\program files\common files\installshield\professional\runtime\11\00\intel32\setup.dll
2014-11-30 10:04:02 -------- d-----w- c:\windows\Panther
2014-11-30 10:03:48 -------- d-sh--w- C:\Boot
.
==================== Find3M ====================
.
.
============= FINISH: 21:58:11,47 ===============

Re: Neustale zamrzanie pocitaca

Napsal: 02 pro 2014 10:53
od stuper555
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 30-11-2014
Ran by Marek (administrator) on MAREK-PC on 30-11-2014 22:07:39
Running from C:\Users\Marek\Desktop
Loaded Profile: Marek (Available profiles: Marek)
Platform: Microsoft Windows 7 Ultimate Service Pack 1 (X86) OS Language: Slovenčina (Slovensko)
Internet Explorer Version 8
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Fuyu LIMITED) C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe
(Realtek Semiconductor Corp.) C:\Windows\soundman.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Nero AG) C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
(KROS a.s.) C:\Program Files\KROS\ALFA plus\!System\ALFAplus.exe
(CANON INC.) C:\Windows\System32\CNAB4RPK.EXE
(Firebird Project) C:\Program Files\KROS\KROS FBServer\Firebird001\bin\fbserver.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Nero AG) C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
(Nero AG) C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
(Microsoft Corporation) C:\Windows\System32\taskmgr.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe
(Adobe Systems, Inc.) C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_15_0_0_239.exe
(Adobe Systems, Inc.) C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_15_0_0_239.exe
(forum.viry.cz) C:\Users\Marek\Desktop\FRSTLauncher.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SoundMan] => C:\Windows\SOUNDMAN.EXE [77824 2005-05-17] (Realtek Semiconductor Corp.)
HKLM\...\Run: [NvCplDaemon] => RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
HKLM\...\Run: [nwiz] => nwiz.exe /install
HKLM\...\Run: [NvMediaCenter] => RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959176 2014-08-21] (Adobe Systems Incorporated)
HKLM\...\Run: [NeroFilterCheck] => C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [153136 2007-03-01] (Nero AG)
HKU\S-1-5-21-1849170774-2521590681-4292587955-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-1849170774-2521590681-4292587955-1001\...\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] => C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe [152872 2007-06-27] (Nero AG)
HKU\S-1-5-21-1849170774-2521590681-4292587955-1001\...\MountPoints2: {4be9a235-7878-11e4-a544-806e6f6e6963} - E:\setup.exe
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ALFA plus - rýchle spustenie.lnk
ShortcutTarget: ALFA plus - rýchle spustenie.lnk -> C:\Program Files\KROS\ALFA plus\!System\ALFAplus.exe (KROS a.s.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Canon LBP2900 Status Window.lnk
ShortcutTarget: Canon LBP2900 Status Window.lnk -> C:\Windows\System32\spool\drivers\w32x86\3\CNAB4LAK.EXE (CANON INC.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKU\S-1-5-21-1849170774-2521590681-4292587955-1001\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.mystartsearch.com/?type=hp&t ... J90F164108
HKU\S-1-5-21-1849170774-2521590681-4292587955-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp
HKU\S-1-5-21-1849170774-2521590681-4292587955-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x5FD73F82860CD001
HKU\S-1-5-21-1849170774-2521590681-4292587955-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = sk
HKU\S-1-5-21-1849170774-2521590681-4292587955-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.mystartsearch.com/?type=hp&t ... J90F164108
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.mystartsearch.com/web/?type= ... F164108&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.mystartsearch.com/?type=hp&t ... J90F164108
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.mystartsearch.com/?type=hp&t ... J90F164108
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.mystartsearch.com/web/?type= ... F164108&q={searchTerms}
StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe http://www.mystartsearch.com/?type=sc&t ... J90F164108
SearchScopes: HKLM -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://www.mystartsearch.com/web/?type= ... F164108&q={searchTerms}
SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://www.mystartsearch.com/web/?type= ... F164108&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1849170774-2521590681-4292587955-1001 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\Marek\AppData\Roaming\Mozilla\Firefox\Profiles\n5025sza.default-1417353547558
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_15_0_0_239.dll ()
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\mystartsearch.xml
FF HKLM\...\Firefox\Extensions: [faststartff@gmail.com] - C:\Users\Marek\AppData\Roaming\Mozilla\Firefox\Profiles\xenmkbbn.default\extensions\faststartff@gmail.com
FF StartMenuInternet: FIREFOX.EXE - C:\Program Files\Mozilla Firefox\firefox.exe http://www.mystartsearch.com/?type=sc&t ... J90F164108

Chrome:
=======

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 FirebirdServerKROS_20400; C:\Program Files\KROS\KROS FBServer\Firebird001\bin\fbserver.exe [3764224 2011-10-11] (Firebird Project) [File not signed]
S2 NVSvc; C:\Windows\system32\nvsvc32.exe [77824 2004-02-29] (NVIDIA Corporation) [File not signed]
R2 WindowsMangerProtect; C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe [484352 2014-11-30] (Fuyu LIMITED) [File not signed]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R3 ALCXWDM; C:\Windows\System32\drivers\ALCXWDM.SYS [2319680 2005-05-18] (Realtek Semiconductor Corp.)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [243128 2014-11-30] (Disc Soft Ltd)
R3 nv; C:\Windows\System32\DRIVERS\nv4_mini.sys [1893728 2004-02-29] (NVIDIA Corporation) [File not signed]
S3 GMSIPCI; \??\E:\INSTALL\GMSIPCI.SYS [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]

==================== NetSvcs (Whitelisted) ===================


(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-11-30 22:07 - 2014-11-30 22:08 - 00008606 _____ () C:\Users\Marek\Desktop\FRST.txt
2014-11-30 22:07 - 2014-11-30 22:07 - 00000000 ____D () C:\FRST
2014-11-30 22:06 - 2014-11-30 22:06 - 00112640 _____ (forum.viry.cz) C:\Users\Marek\Desktop\FRSTLauncher.exe
2014-11-30 21:58 - 2014-11-30 21:58 - 00013934 _____ () C:\Users\Marek\Desktop\dds.txt
2014-11-30 21:58 - 2014-11-30 21:58 - 00011052 _____ () C:\Users\Marek\Desktop\attach.txt
2014-11-30 21:35 - 2014-11-30 21:41 - 00000000 ____D () C:\Program Files\trend micro
2014-11-30 21:35 - 2014-11-30 21:35 - 00000000 ____D () C:\rsit
2014-11-30 21:18 - 2014-11-30 21:18 - 00688992 ____R (Swearware) C:\Users\Marek\Desktop\dds.exe
2014-11-30 21:17 - 2014-11-30 21:18 - 01107968 _____ () C:\Users\Marek\Desktop\RSIT.exe
2014-11-30 21:09 - 2014-11-30 21:09 - 01108992 _____ (Farbar) C:\Users\Marek\Desktop\FRST.exe
2014-11-30 20:04 - 2014-11-30 20:04 - 00000000 ____D () C:\Windows\PCHEALTH
2014-11-30 19:57 - 2014-11-27 20:36 - 00028672 _____ () C:\Users\Marek\Desktop\Zošit1-2.xls
2014-11-30 19:57 - 2014-11-27 20:35 - 00028672 _____ () C:\Users\Marek\Desktop\Zošit1-3.xls
2014-11-30 19:57 - 2014-11-27 05:09 - 00028160 _____ () C:\Users\Marek\Desktop\Zošit1.xls
2014-11-30 16:59 - 2014-11-30 20:58 - 00000000 ____D () C:\Program Files\Microsoft Visual Studio 8
2014-11-30 16:56 - 2014-11-30 16:56 - 00000000 __RHD () C:\MSOCache
2014-11-30 16:48 - 2014-11-30 16:48 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-11-30 15:04 - 2014-11-30 15:05 - 00000000 ____D () C:\Users\Marek\AppData\Local\Ahead
2014-11-30 15:02 - 2014-11-30 15:02 - 00002503 _____ () C:\Users\Marek\Desktop\Nero Burning ROM.lnk
2014-11-30 15:01 - 2014-11-30 15:01 - 00002732 _____ () C:\Users\Public\Desktop\Nero StartSmart.lnk
2014-11-30 15:01 - 2014-11-30 15:01 - 00002636 _____ () C:\Users\Public\Desktop\Nero Home.lnk
2014-11-30 15:01 - 2014-11-30 15:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero 7 Ultra Edition
2014-11-30 15:00 - 2014-11-30 15:00 - 00000000 ____D () C:\Users\Marek\AppData\Roaming\Ahead
2014-11-30 14:59 - 2014-11-30 14:59 - 00000000 ____D () C:\ProgramData\Ahead
2014-11-30 14:56 - 2014-11-30 14:57 - 00000000 ____D () C:\Program Files\Common Files\Ahead
2014-11-30 14:56 - 2014-11-30 14:56 - 00000000 ____D () C:\ProgramData\Nero
2014-11-30 14:56 - 2014-11-30 14:56 - 00000000 ____D () C:\Program Files\Nero
2014-11-30 14:48 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll
2014-11-30 14:48 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll
2014-11-30 14:47 - 2014-11-30 14:47 - 00000000 ____D () C:\Program Files\MSECache
2014-11-30 14:46 - 2014-11-30 14:48 - 00026828 _____ () C:\Windows\DirectX.log
2014-11-30 14:25 - 2014-11-30 14:25 - 00002759 _____ () C:\Users\Marek\Desktop\Microsoft Office Word 2003.lnk
2014-11-30 14:25 - 2014-11-30 14:25 - 00002721 _____ () C:\Users\Marek\Desktop\Microsoft Office Excel 2003.lnk
2014-11-30 14:14 - 2014-11-30 14:14 - 00000376 _____ () C:\Windows\ODBC.INI
2014-11-30 14:14 - 2012-02-17 06:34 - 00919040 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2014-11-30 14:14 - 2012-02-17 06:34 - 00826880 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2014-11-30 14:14 - 2012-02-17 05:14 - 00183808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2014-11-30 14:14 - 2012-02-17 05:13 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdtcp.sys
2014-11-30 14:13 - 2003-06-19 00:31 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\mdimon.dll
2014-11-30 14:01 - 2014-11-30 14:01 - 00000000 ____D () C:\Users\Marek\AppData\Roaming\Macromedia
2014-11-30 14:01 - 2014-11-30 14:01 - 00000000 ____D () C:\Users\Marek\AppData\Roaming\Adobe
2014-11-30 14:01 - 2014-11-30 14:01 - 00000000 ____D () C:\Users\Marek\AppData\Local\Macromedia
2014-11-30 13:53 - 2014-11-30 13:55 - 00000000 ____D () C:\Users\Marek\Desktop\Sdílené dokumenty - stare
2014-11-30 13:52 - 2014-05-14 17:23 - 01973728 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2014-11-30 13:52 - 2014-05-14 17:23 - 00054240 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2014-11-30 13:52 - 2014-05-14 17:23 - 00045536 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2014-11-30 13:52 - 2014-05-14 17:17 - 02425856 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2014-11-30 13:51 - 2014-05-14 17:23 - 00581600 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2014-11-30 13:51 - 2014-05-14 17:23 - 00036320 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2014-11-30 13:51 - 2014-05-14 17:17 - 00092672 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2014-11-30 13:51 - 2014-05-14 09:23 - 00179656 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2014-11-30 13:51 - 2014-05-14 09:17 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2014-11-30 13:44 - 2014-11-30 13:44 - 00000000 ____D () C:\Users\Marek\AppData\Local\KROS_a.s
2014-11-30 13:43 - 2014-11-30 22:02 - 00000000 ____D () C:\ProgramData\firebird
2014-11-30 13:40 - 2014-11-30 13:40 - 00000000 ____D () C:\ProgramData\WindowsMangerProtect
2014-11-30 13:40 - 2014-11-30 13:40 - 00000000 ____D () C:\Program Files\SupTab
2014-11-30 13:39 - 2014-11-30 21:27 - 00000000 ____D () C:\Users\Marek\AppData\Roaming\mystartsearch
2014-11-30 13:38 - 2014-11-30 13:38 - 00001900 _____ () C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
2014-11-30 13:34 - 2014-11-30 13:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
2014-11-30 13:32 - 2014-11-30 13:39 - 00000000 ____D () C:\Users\Marek\AppData\Roaming\DAEMON Tools Lite
2014-11-30 13:32 - 2014-11-30 13:32 - 00243128 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtsoftbus01.sys
2014-11-30 13:31 - 2014-11-30 13:32 - 00000000 ____D () C:\Program Files\DAEMON Tools Lite
2014-11-30 13:30 - 2014-11-30 13:30 - 00000000 ____D () C:\Program Files\Elcom
2014-11-30 13:29 - 2014-11-30 13:39 - 00000000 ____D () C:\ProgramData\DAEMON Tools Lite
2014-11-30 13:26 - 2014-11-30 13:26 - 00000000 ____D () C:\Users\Marek\AppData\Roaming\AVAST Software
2014-11-30 13:25 - 2014-11-30 13:25 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-11-30 13:23 - 2014-11-30 13:23 - 00002023 _____ () C:\Users\Public\Desktop\ALFA plus.lnk
2014-11-30 13:23 - 2014-11-30 13:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KROS
2014-11-30 13:23 - 2014-11-30 13:23 - 00000000 ____D () C:\ALFA plus
2014-11-30 13:23 - 2014-11-30 13:22 - 00001989 _____ () C:\Users\Public\Desktop\Daňové priznania.lnk
2014-11-30 13:20 - 2014-11-30 13:23 - 00000000 ____D () C:\Program Files\KROS
2014-11-30 13:20 - 2014-11-30 13:20 - 00000000 ____D () C:\Users\Public\KROS
2014-11-30 13:19 - 2014-11-30 13:19 - 00000000 ____D () C:\ProgramData\KROS
2014-11-30 13:18 - 2014-11-30 13:18 - 00000000 ____D () C:\Program Files\AVAST Software
2014-11-30 13:17 - 2014-11-30 13:18 - 00000000 ____D () C:\ProgramData\AVAST Software
2014-11-30 13:06 - 2014-11-30 21:26 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-11-30 13:06 - 2014-11-30 13:06 - 00701104 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2014-11-30 13:06 - 2014-11-30 13:06 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2014-11-30 13:06 - 2014-11-30 13:06 - 00000000 ____D () C:\Windows\system32\Macromed
2014-11-30 12:55 - 2014-11-30 12:55 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2014-11-30 12:52 - 2014-11-30 12:54 - 00000000 ____D () C:\Program Files\Canon
2014-11-30 12:52 - 2012-10-10 00:00 - 00192512 _____ (CANON INC.) C:\Windows\system32\CNAB4EMU.DLL
2014-11-30 12:52 - 2012-10-10 00:00 - 00163840 _____ (CANON INC.) C:\Windows\system32\CNAB4SMK.DLL
2014-11-30 12:52 - 2012-10-10 00:00 - 00113856 _____ (CANON INC.) C:\Windows\system32\CNAB4RPK.EXE
2014-11-30 12:52 - 2012-10-10 00:00 - 00106496 _____ (CANON INC.) C:\Windows\system32\CNAB4LMK.DLL
2014-11-30 12:52 - 2012-10-10 00:00 - 00057344 _____ (CANON INC.) C:\Windows\system32\CNAB4PTU.DLL
2014-11-30 12:44 - 2014-11-30 12:44 - 00000000 ____D () C:\Users\Marek\AppData\Local\Finančné_riaditeľstvo_SR_-_Sekcia_daňová
2014-11-30 12:44 - 2014-11-30 12:43 - 00000344 _____ () C:\Users\Marek\Desktop\eDANE – aplikácia sekcie daňovej FR SR pre podávanie daňových dokumentov .appref-ms
2014-11-30 12:43 - 2014-11-30 20:59 - 00109264 _____ () C:\Users\Marek\AppData\Local\GDIPFONTCACHEV1.DAT
2014-11-30 12:43 - 2014-11-30 12:46 - 00000000 ____D () C:\Users\Marek\AppData\Local\Deployment
2014-11-30 12:43 - 2014-11-30 12:43 - 00000000 ____D () C:\Users\Marek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Finančné riaditeľstvo SR - Sekcia daňová
2014-11-30 12:43 - 2014-11-30 12:43 - 00000000 ____D () C:\Users\Marek\AppData\Local\Apps\2.0
2014-11-30 12:39 - 2014-11-30 12:55 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-11-30 12:39 - 2014-11-30 12:39 - 00001989 _____ () C:\Users\Public\Desktop\Adobe Reader XI.lnk
2014-11-30 12:38 - 2014-11-30 12:39 - 00000000 ____D () C:\Program Files\Common Files\Adobe
2014-11-30 12:38 - 2014-11-30 12:38 - 00000000 ____D () C:\Program Files\Adobe
2014-11-30 12:22 - 2014-11-30 20:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2014-11-30 12:19 - 2014-11-30 12:51 - 00000000 ____D () C:\ProgramData\Adobe
2014-11-30 12:18 - 2014-11-30 12:20 - 00000000 ____D () C:\1by1
2014-11-30 12:18 - 2014-11-30 12:18 - 00000550 _____ () C:\Users\Marek\Desktop\1by1.lnk
2014-11-30 12:17 - 2014-11-30 20:58 - 00000000 ____D () C:\Program Files\Common Files\DESIGNER
2014-11-30 12:16 - 2014-11-30 20:58 - 00000000 ____D () C:\Program Files\Microsoft.NET
2014-11-30 12:15 - 2014-11-30 13:14 - 00000000 ____D () C:\Users\Marek\AppData\Local\Adobe
2014-11-30 12:12 - 2014-11-30 21:07 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2014-11-30 12:12 - 2014-11-30 13:39 - 00001319 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-11-30 12:12 - 2014-11-30 13:39 - 00001307 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-11-30 12:12 - 2014-11-30 12:12 - 00000000 ____D () C:\Users\Marek\AppData\Roaming\Mozilla
2014-11-30 12:12 - 2014-11-30 12:12 - 00000000 ____D () C:\Users\Marek\AppData\Local\Mozilla
2014-11-30 12:12 - 2014-11-30 12:12 - 00000000 ____D () C:\ProgramData\Mozilla
2014-11-30 12:11 - 2014-11-30 20:57 - 00000000 ____D () C:\Program Files\Microsoft Office
2014-11-30 12:11 - 2014-11-30 14:43 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-11-30 12:11 - 2014-11-30 12:11 - 00000000 ____D () C:\Users\Marek\AppData\Local\Microsoft Help
2014-11-30 11:29 - 2014-11-24 14:04 - 00229000 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2014-11-30 11:22 - 2014-11-30 11:30 - 00000000 ____D () C:\Windows\nview
2014-11-30 11:22 - 2004-04-08 09:53 - 00294912 _____ (MSI) C:\Windows\system32\msicpl.dll
2014-11-30 11:22 - 2004-02-29 02:18 - 00012196 _____ () C:\Windows\system32\nvdisp.nvu
2014-11-30 11:22 - 2003-10-22 10:37 - 00036076 _____ () C:\Windows\system32\Drivers\vgauti.sys
2014-11-30 11:22 - 2003-10-22 10:37 - 00036076 _____ () C:\Windows\system32\Drivers\msicpl.sys
2014-11-30 11:22 - 2003-10-16 03:37 - 00036864 _____ () C:\Windows\system32\msiuins.exe
2014-11-30 11:22 - 2003-09-22 07:31 - 00135168 _____ () C:\Windows\system32\WinSys.exe
2014-11-30 11:22 - 2003-05-15 07:44 - 00040960 _____ (NVIDIA Corporation) C:\Windows\system32\Nvgpio.dll
2014-11-30 11:22 - 2003-05-15 07:44 - 00036864 _____ (NVIDIA Corporation) C:\Windows\system32\Nvapi9x.dll
2014-11-30 11:22 - 2003-04-14 02:59 - 00081920 _____ (Micro-Star Int'l) C:\Windows\system32\nvclock.dll
2014-11-30 11:22 - 2002-04-15 21:41 - 00045056 _____ () C:\Windows\system32\memtest.dll
2014-11-30 11:20 - 2014-11-30 11:20 - 00001806 _____ () C:\Users\Public\Desktop\AvRack.lnk
2014-11-30 11:20 - 2014-11-30 11:20 - 00000000 ___HD () C:\Program Files\InstallShield Installation Information
2014-11-30 11:20 - 2014-11-30 11:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Realtek Sound Manager
2014-11-30 11:20 - 2014-11-30 11:20 - 00000000 ____D () C:\Program Files\Realtek Sound Manager
2014-11-30 11:20 - 2014-11-30 11:20 - 00000000 ____D () C:\Program Files\AvRack
2014-11-30 11:20 - 2005-06-09 18:49 - 00001360 _____ () C:\Windows\system32\Drivers\alcxinit.dat
2014-11-30 11:20 - 2005-05-18 16:50 - 02319680 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\alcxwdm.sys
2014-11-30 11:20 - 2005-05-18 14:17 - 18726912 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\alsndmgr.cpl
2014-11-30 11:20 - 2005-05-18 14:15 - 09389568 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTLCPL.exe
2014-11-30 11:20 - 2005-05-18 12:38 - 00040960 _____ () C:\Windows\system32\ChCfg.exe
2014-11-30 11:20 - 2005-05-17 17:48 - 00077824 _____ (Realtek Semiconductor Corp.) C:\Windows\soundman.exe
2014-11-30 11:20 - 2005-03-02 20:21 - 00200704 _____ (Realtek Semiconductor Corp.) C:\Windows\alcrmv.exe
2014-11-30 11:20 - 2005-02-03 15:13 - 00294912 _____ (Realtek Semiconductor Corp.) C:\Windows\alcupd.exe
2014-11-30 11:20 - 2004-09-07 13:23 - 00156672 _____ () C:\Windows\system32\RtlCPAPI.dll
2014-11-30 11:20 - 2002-02-05 13:54 - 00141016 _____ () C:\Windows\system32\alsndmgr.wav
2014-11-30 11:20 - 2001-07-05 23:19 - 00000164 _____ () C:\Windows\avrack.ini
2014-11-30 11:19 - 2014-11-30 11:22 - 00000000 ____D () C:\Program Files\Common Files\InstallShield
2014-11-30 11:19 - 2014-11-30 11:19 - 00000983 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\WinRAR.lnk
2014-11-30 11:19 - 2014-11-30 11:19 - 00000977 _____ () C:\Users\Public\Desktop\WinRAR.lnk
2014-11-30 11:19 - 2014-11-30 11:19 - 00000000 ____D () C:\Users\Marek\AppData\Roaming\WinRAR
2014-11-30 11:19 - 2014-11-30 11:19 - 00000000 ____D () C:\Users\Marek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-11-30 11:19 - 2014-11-30 11:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-11-30 11:19 - 2014-11-30 11:19 - 00000000 ____D () C:\Program Files\WinRAR
2014-11-30 11:18 - 2014-11-30 11:18 - 00000363 _____ () C:\Users\Marek\Desktop\Počítač - odkaz.lnk
2014-11-30 11:14 - 2014-11-30 13:39 - 00001615 _____ () C:\Users\Marek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-11-30 11:13 - 2014-11-30 21:39 - 00000000 ____D () C:\Users\Marek
2014-11-30 11:13 - 2014-11-30 12:39 - 00000000 ____D () C:\Users\Marek\AppData\Local\VirtualStore
2014-11-30 11:13 - 2014-11-30 11:13 - 00000020 ___SH () C:\Users\Marek\ntuser.ini
2014-11-30 11:13 - 2014-11-30 11:13 - 00000000 __SHD () C:\Recovery
2014-11-30 11:13 - 2009-07-14 05:42 - 00000000 ___RD () C:\Users\Marek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-11-30 11:13 - 2009-07-14 05:37 - 00000000 ___RD () C:\Users\Marek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-11-30 11:08 - 2014-11-30 22:05 - 00565237 _____ () C:\Windows\WindowsUpdate.log
2014-11-30 11:08 - 2014-11-30 11:08 - 00001345 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
2014-11-30 11:08 - 2014-11-30 11:08 - 00001326 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
2014-11-30 11:05 - 2014-11-30 11:07 - 00001355 _____ () C:\Windows\TSSysprep.log
2014-11-30 11:04 - 2014-11-30 11:13 - 00000000 ____D () C:\Windows\Panther
2014-11-30 11:03 - 2014-11-30 11:03 - 00008192 __RSH () C:\BOOTSECT.BAK
2014-11-30 11:03 - 2010-11-20 22:29 - 00383786 __RSH () C:\bootmgr

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-11-30 22:07 - 2010-11-20 22:01 - 00786462 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-11-30 22:01 - 2009-07-14 05:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-11-30 22:01 - 2009-07-14 05:39 - 00024328 _____ () C:\Windows\setupact.log
2014-11-30 21:46 - 2009-07-14 05:34 - 00029648 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-11-30 21:46 - 2009-07-14 05:34 - 00029648 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-11-30 20:58 - 2011-04-12 07:45 - 00000000 ____D () C:\Windows\ShellNew
2014-11-30 20:58 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\wfp
2014-11-30 20:58 - 2009-07-14 03:37 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2014-11-30 20:57 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\registration
2014-11-30 20:57 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\Microsoft.NET
2014-11-30 20:55 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\LogFiles
2014-11-30 15:04 - 2010-11-20 22:48 - 00008298 _____ () C:\Windows\PFRO.log
2014-11-30 15:04 - 2009-07-14 05:33 - 00412744 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-11-30 15:03 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\sk-SK
2014-11-30 14:40 - 2009-07-14 05:52 - 00000000 ____D () C:\Program Files\MSBuild
2014-11-30 14:36 - 2009-07-14 03:04 - 00000416 _____ () C:\Windows\win.ini
2014-11-30 14:05 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system
2014-11-30 13:20 - 2009-07-14 03:37 - 00000000 ___RD () C:\Users\Public
2014-11-30 12:12 - 2009-07-14 03:37 - 00000000 ____D () C:\Program Files\Common Files\System
2014-11-30 11:30 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\Help
2014-11-30 11:19 - 2009-07-14 05:52 - 00000000 ____D () C:\Windows\system32\restore
2014-11-30 11:13 - 2009-07-14 03:37 - 00000000 __RHD () C:\Users\Public\Libraries
2014-11-30 11:10 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\rescache
2014-11-30 11:08 - 2009-07-14 05:52 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2014-11-30 11:08 - 2009-07-14 03:37 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2014-11-30 11:05 - 2011-04-12 07:45 - 00000000 ____D () C:\Windows\CSC
2014-11-30 11:05 - 2009-07-14 05:34 - 00002790 _____ () C:\Windows\DtcInstall.log
2014-11-30 11:03 - 2009-07-14 05:57 - 00025600 ___SH () C:\Windows\system32\config\BCD-Template.LOG
2014-11-30 11:03 - 2009-07-14 05:52 - 00028672 _____ () C:\Windows\system32\config\BCD-Template

Some content of TEMP:
====================
C:\Users\Marek\AppData\Local\Temp\AdbeRdr930_sk_SK.exe
C:\Users\Marek\AppData\Local\Temp\bitool.dll
C:\Users\Marek\AppData\Local\Temp\FirebirdServerSetupZip.exe
C:\Users\Marek\AppData\Local\Temp\smt_mystartsearch.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-11-30 11:48




===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================

Drive c: () (Fixed) (Total:117.19 GB) (Free:96.15 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: () (Fixed) (Total:348.56 GB) (Free:238.34 GB) NTFS
Drive f: () (Removable) (Total:1.86 GB) (Free:0.01 GB) NTFS

Available physical RAM: 1225.85 MB
Total physical RAM: 2047.3 MB
Percentage of memory in use: 40%

==================== MBR and Partition Table ==================

Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: D3FED3FE)
Partition 1: (Active) - (Size=117.2 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=348.6 GB) - (Type=OF Extended)
Disk: 1 (Size: 1.9 GB) (Disk ID: 6EA0766F)

==================== Scheduled Tasks (whitelisted) ==================

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe

==================== Alternate Data Streams (whitelisted) ==================


==================== Security Center ==================

AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}



===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)


***** Velikost "Plochy" *****

Velikost slozky "C:\Users\Marek\Desktop" je 152 MB.


***** Startup Programs *****


***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]


***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000


==================== End Of Log ==============================




Additional scan result of Farbar Recovery Scan Tool (x86) Version: 30-11-2014
Ran by Marek at 2014-11-30 22:08:43
Running from C:\Users\Marek\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Flash Player 15 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 15.0.0.239 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.09) - Slovak (HKLM\...\{AC76BA86-7AD7-1051-7B44-AB0000000001}) (Version: 11.0.09 - Adobe Systems Incorporated)
ALFA plus 5.70.00 - C:\Program Files\KROS\ALFA plus\ (HKLM\...\{48543166-2159-4235-8F8C-7CBEF9608493}) (Version: 5.70.00 - KROS a.s.)
Balík Compatibility Pack pre systém Office 2007 (HKLM\...\{90120000-0020-041B-0000-0000000FF1CE}) (Version: 12.0.6514.5001 - Microsoft Corporation)
Canon LBP2900 (HKLM\...\Canon LBP2900) (Version: - )
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd)
eDANE – aplikácia sekcie daňovej FR SR pre podávanie daňových dokumentov (HKU\S-1-5-21-1849170774-2521590681-4292587955-1001\...\872af2c69629da34) (Version: 1.2.0.5 - Finančné riaditeľstvo SR - Sekcia daňová)
Elcomm (HKLM\...\Elcomm) (Version: - )
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Extended (HKLM\...\Microsoft .NET Framework 4 Extended) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft Office Professional Edition 2003 (HKLM\...\{9011041B-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.5614.0 - Microsoft Corporation)
Mozilla Firefox 32.0.2 (x86 sk) (HKLM\...\Mozilla Firefox 32.0.2 (x86 sk)) (Version: 32.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 32.0.2 - Mozilla)
mystartsearch uninstall (HKLM\...\mystartsearch uninstall) (Version: - mystartsearch) <==== ATTENTION
Nero 7 Ultra Edition (HKLM\...\{91C0B95B-B83A-4828-A775-BBE2DD421051}) (Version: 7.02.9752 - Nero AG)
NVIDIA Display Driver (HKLM\...\NVIDIA Display Driver) (Version: - )
Realtek AC'97 Audio (HKLM\...\{FB08F381-6533-4108-B7DD-039E11FBC27E}) (Version: 5.09 - Realtek Semiconductor Corp.)
WindowsMangerProtect20.0.0.1277 (HKLM\...\WindowsMangerProtect) (Version: 20.0.0.1277 - WindowsProtect LIMITED) <==== ATTENTION
WinRAR 5.10 (32-bitová verzia) (HKLM\...\WinRAR archiver) (Version: 5.10.0 - win.rar GmbH)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-1849170774-2521590681-4292587955-1001_Classes\CLSID\{00B7E0AB-817A-44AD-A04B-D1148D524136}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1849170774-2521590681-4292587955-1001_Classes\CLSID\{7C6E29BC-8B8B-4C3D-859E-AF6CD158BE0F}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1849170774-2521590681-4292587955-1001_Classes\CLSID\{88D969C0-F192-11D4-A65F-0040963251E5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1849170774-2521590681-4292587955-1001_Classes\CLSID\{88D969C1-F192-11D4-A65F-0040963251E5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1849170774-2521590681-4292587955-1001_Classes\CLSID\{88D969C2-F192-11D4-A65F-0040963251E5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1849170774-2521590681-4292587955-1001_Classes\CLSID\{88D969C3-F192-11D4-A65F-0040963251E5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1849170774-2521590681-4292587955-1001_Classes\CLSID\{88D969C4-F192-11D4-A65F-0040963251E5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1849170774-2521590681-4292587955-1001_Classes\CLSID\{88D969C5-F192-11D4-A65F-0040963251E5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1849170774-2521590681-4292587955-1001_Classes\CLSID\{88D969C6-F192-11D4-A65F-0040963251E5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1849170774-2521590681-4292587955-1001_Classes\CLSID\{88D969C8-F192-11D4-A65F-0040963251E5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1849170774-2521590681-4292587955-1001_Classes\CLSID\{88D969C9-F192-11D4-A65F-0040963251E5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1849170774-2521590681-4292587955-1001_Classes\CLSID\{88D969CA-F192-11D4-A65F-0040963251E5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1849170774-2521590681-4292587955-1001_Classes\CLSID\{88D969D6-F192-11D4-A65F-0040963251E5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation)

==================== Restore Points =========================

30-11-2014 10:19:58 Installed Realtek AC'97 Audio
30-11-2014 10:22:26 Inštalácia balíka ovládačov zariadenia: NVIDIA Display adapters
30-11-2014 10:28:40 Windows Update
30-11-2014 11:10:56 Installed Microsoft Office Professional Plus 2007
30-11-2014 11:41:50 Windows Update
30-11-2014 11:48:07 marek
30-11-2014 12:17:37 avast! antivirus system restore point
30-11-2014 12:19:51 Nainštalované ALFA plus.
30-11-2014 12:32:22 Inštalácia balíka ovládačov zariadenia: DT Soft Ltd Systémové zariadenia
30-11-2014 12:51:23 Windows Update
30-11-2014 13:08:07 Nainštalované Microsoft Office Professional Edition 2003
30-11-2014 13:14:31 Windows Update
30-11-2014 13:19:09 Removed Microsoft Office Professional Plus 2007
30-11-2014 13:46:50 Installed DirectX
30-11-2014 13:47:47 Nainštalované Balík Compatibility Pack pre systém Office 2007
30-11-2014 13:53:53 Installed Nero 7. Available with Windows Installer version 1.2 and later.
30-11-2014 14:09:22 marek2
30-11-2014 15:54:44 Installed Microsoft Office Enterprise 2007
30-11-2014 18:55:18 Installed Microsoft Office Enterprise 2007
30-11-2014 18:57:02 Installed Microsoft Office Enterprise 2007
30-11-2014 21:03:49 avast! antivirus system restore point

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:04 - 2009-06-10 22:39 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {753C2D40-F1EE-4B32-9161-37928E5D9FAE} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-11-30] (Adobe Systems Incorporated)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe

==================== Loaded Modules (whitelisted) =============

2014-11-30 16:48 - 2014-11-30 16:48 - 03649648 _____ () C:\Program Files\Mozilla Firefox\mozjs.dll
2014-11-30 13:06 - 2014-11-30 13:06 - 16841392 _____ () C:\Windows\system32\Macromed\Flash\NPSWF32_15_0_0_239.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)


==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)


========================= Accounts: ==========================

Administrator (S-1-5-21-1849170774-2521590681-4292587955-500 - Administrator - Disabled)
Guest (S-1-5-21-1849170774-2521590681-4292587955-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1849170774-2521590681-4292587955-1002 - Limited - Enabled)
Marek (S-1-5-21-1849170774-2521590681-4292587955-1001 - Administrator - Enabled) => C:\Users\Marek

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (11/30/2014 10:07:29 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: Unable to read the performance counter strings defined for the 01B language ID. The first DWORD in the Data section contains the Win32 error code.

Error: (11/30/2014 10:07:29 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: Unable to read the performance counter strings defined for the 01B language ID. The first DWORD in the Data section contains the Win32 error code.

Error: (11/30/2014 10:03:48 PM) (Source: VSS) (EventID: 8194) (User: )
Description: Volume Shadow Copy Service error: Unexpected error querying for the IVssWriterCallback interface. hr = 0x80070005, Prístup je odmietnutý.
.
This is often caused by incorrect security settings in either the writer or requestor process.


Operation:
Gathering Writer Data

Context:
Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
Writer Name: System Writer
Writer Instance ID: {d2786c45-60c7-4986-9e98-c111a1215603}

Error: (11/30/2014 10:01:50 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/30/2014 09:50:46 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: Unable to read the performance counter strings defined for the 01B language ID. The first DWORD in the Data section contains the Win32 error code.

Error: (11/30/2014 09:50:46 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: Unable to read the performance counter strings defined for the 01B language ID. The first DWORD in the Data section contains the Win32 error code.

Error: (11/30/2014 09:42:10 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: Unable to read the performance counter strings defined for the 01B language ID. The first DWORD in the Data section contains the Win32 error code.

Error: (11/30/2014 09:42:10 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: Unable to read the performance counter strings defined for the 01B language ID. The first DWORD in the Data section contains the Win32 error code.

Error: (11/30/2014 09:40:09 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/30/2014 09:33:02 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


System errors:
=============
Error: (11/30/2014 10:02:51 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba Peer Name Resolution Protocol bola ukončená s nasledujúcou chybou:
%%-2140993535

Error: (11/30/2014 10:02:51 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Spustenie služby Peer Name Resolution Protocol, od ktorej závisí služba Peer Networking Grouping, zlyhalo kvôli nasledujúcej chybe:
%%-2140993535

Error: (11/30/2014 10:02:51 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba Peer Name Resolution Protocol bola ukončená s nasledujúcou chybou:
%%-2140993535

Error: (11/30/2014 10:02:51 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Spustenie služby Peer Name Resolution Protocol, od ktorej závisí služba Peer Networking Grouping, zlyhalo kvôli nasledujúcej chybe:
%%-2140993535

Error: (11/30/2014 10:02:51 PM) (Source: PNRPSvc) (EventID: 102) (User: )
Description: 0x80630801

Error: (11/30/2014 10:02:51 PM) (Source: PNRPSvc) (EventID: 102) (User: )
Description: 0x80630801

Error: (11/30/2014 10:02:40 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba Peer Name Resolution Protocol bola ukončená s nasledujúcou chybou:
%%-2140993535

Error: (11/30/2014 10:02:40 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Spustenie služby Peer Name Resolution Protocol, od ktorej závisí služba Peer Networking Grouping, zlyhalo kvôli nasledujúcej chybe:
%%-2140993535

Error: (11/30/2014 10:02:40 PM) (Source: PNRPSvc) (EventID: 102) (User: )
Description: 0x80630801

Error: (11/30/2014 10:02:07 PM) (Source: WMPNetworkSvc) (EventID: 14332) (User: )
Description: WMPNetworkSvc0x80004005


Microsoft Office Sessions:
=========================
Error: (11/30/2014 10:07:29 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: 01B8020000002D010000

Error: (11/30/2014 10:07:29 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: 01B120200000000000000AF000000

Error: (11/30/2014 10:03:48 PM) (Source: VSS) (EventID: 8194) (User: )
Description: 0x80070005, Prístup je odmietnutý.


Operation:
Gathering Writer Data

Context:
Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
Writer Name: System Writer
Writer Instance ID: {d2786c45-60c7-4986-9e98-c111a1215603}

Error: (11/30/2014 10:01:50 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/30/2014 09:50:46 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: 01B8020000002D010000

Error: (11/30/2014 09:50:46 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: 01B120200000000000000AF000000

Error: (11/30/2014 09:42:10 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: 01B8020000002D010000

Error: (11/30/2014 09:42:10 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: 01B120200000000000000AF000000

Error: (11/30/2014 09:40:09 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/30/2014 09:33:02 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


==================== Memory info ===========================

Processor: AMD Sempron(tm) Processor 2800+
Percentage of memory in use: 40%
Total physical RAM: 2047.3 MB
Available physical RAM: 1225.85 MB
Total Pagefile: 4094.61 MB
Available Pagefile: 3000.25 MB
Total Virtual: 2047.88 MB
Available Virtual: 1902.69 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:117.19 GB) (Free:96.15 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: () (Fixed) (Total:348.56 GB) (Free:238.34 GB) NTFS
Drive f: () (Removable) (Total:1.86 GB) (Free:0.01 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: D3FED3FE)
Partition 1: (Active) - (Size=117.2 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=348.6 GB) - (Type=OF Extended)

========================================================
Disk: 1 (Size: 1.9 GB) (Disk ID: 6EA0766F)
No partition Table on disk 1.

==================== End Of Log ============================

Re: Neustale zamrzanie pocitaca

Napsal: 02 pro 2014 11:03
od Orcus
Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
-Když používáš Firefox (Mozzila), klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
-Když používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected. Poté klikni na Main (hlavní stránku ) a klikni na Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranění historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit dočasné soubory Windows, vysypat koš atd.

- Pokud používáš jen Google Chrome , tak ATF nemusíš použít.

===================================================

Stáhni si TFC
Otevři soubor a zavři všechny ostatní okna, Klikni na Start k zahájení procesu. Program by neměl trvat dlouho.
Poté by se měl PC restartovat, pokud ne , proveď sám.

===================================================

Stáhni AdwCleaner (by Xplode)

Ulož si ho na svojí plochu
Ukonči všechny programy , okna a prohlížeče
Spusť program poklepáním a klikni na „Prohledat-Scan“
Po skenu se objeví log ( jinak je uložen systémovem disku jako AdwCleaner[R?].txt), jeho obsah sem celý vlož.

===================================================

Stáhni si Malwarebytes' Anti-Malware
- Při instalaci odeber zatržítko u „Povolit bezplatnou zkušební verzi Malwarebytes' Anti-Malware Premium“
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Aktualizace Malwarebytes' Anti-Malware a Spustit aplikaci Malwarebytes' Anti-Malware, pokud jo tak klikni na tlačítko konec
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a klikni na Skenovat nyní a
- po proběhnutí programu se ti objeví hláška vpravo dole tak klikni na b] Kopírovat do schránky [/b]a a vlož sem celý log.

- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(zatím nic nemaž!).

Pokud budou problémy , spusť v nouz. režimu.
Časové pásmo: UTC+02:00
Stránka 1 z 1
Powered by phpBB® Forum Software © phpBB Limited
https://www.phpbb.com/