Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

prosim kontrolu logu, dakujem

Nemáte v tuto chvíli žádný problém s pc a chcete se jen ujistit, že je vše v pořádku?
Vložte log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpovědět
Zpráva
Autor
talbott
Návštěvník
Návštěvník
Příspěvky: 44
Registrován: 15 pro 2016 19:22

prosim kontrolu logu, dakujem

#1 Příspěvek od talbott »

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 20-08-2017
Ran by uzivatel (administrator) on ZERO1 (20-08-2017 09:35:09)
Running from C:\Users\uzivatel\Desktop
Loaded Profiles: uzivatel (Available Profiles: uzivatel & Administrator)
Platform: Windows 8.1 Pro (Update) (X64) Language: Slovenčina (Slovensko)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(Intel Corporation) C:\Windows\SysWOW64\esif_uf.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Foxit Software Inc.) C:\Program Files (x86)\Foxit Software\Foxit Reader\FoxitConnectedPDFService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\utilities\ibtsiva.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Conexant Systems, Inc.) C:\Windows\SysWOW64\SASrv.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Intel) C:\Program Files\Intel Corporation\USB over IP\bin\UoipService.exe
(AVAST Software s.r.o.) C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(Intel Corporation) C:\Windows\Temp\DPTF\esif_assist.exe
(ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
() C:\Windows\System32\igfxTray.exe
(Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
() C:\Windows\SysWOW64\UMonit64.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Conexant Systems, Inc) C:\Program Files\CONEXANT\SAII\SmartAudio.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe

==================== Registry (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [919768 2014-10-13] (Conexant Systems, Inc.)
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1830616 2014-04-10] (Conexant Systems, Inc.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [213832 2017-07-25] (AVAST Software)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [303928 2017-05-09] (Apple Inc.)
HKLM-x32\...\Run: [WebStorage] => C:\Program Files (x86)\ASUS\WebStorage\2.1.11.399\ASUSWSLoader.exe [63296 2014-08-20] ()
HKLM Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRoot% <==== ATTENTION
HKLM Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ProgramFilesDir% <==== ATTENTION
HKU\S-1-5-21-4176085001-3363555415-2058170901-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8619224 2016-01-15] (Piriform Ltd)
HKU\S-1-5-21-4176085001-3363555415-2058170901-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\SysWOW64\ACTUAL~1.SCR [111616 2017-06-21] ()
HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE ->
GroupPolicy: Restriction <==== ATTENTION
GroupPolicyScripts: Restriction <==== ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 213.151.222.34 192.168.0.1
Tcpip\..\Interfaces\{AE1B6697-3F17-41CD-9040-9266881E316F}: [DhcpNameServer] 213.151.222.34 192.168.0.1
Tcpip\..\Interfaces\{F13214A8-0D64-434C-9306-EDFF19AFCCF5}: [DhcpNameServer] 10.32.0.10 10.160.0.12

Internet Explorer:
==================
HKU\S-1-5-21-4176085001-3363555415-2058170901-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://asus13.msn.com/?pc=ASJB
HKU\S-1-5-21-4176085001-3363555415-2058170901-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus13.msn.com/?pc=ASJB
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2017-07-10] (AVAST Software)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2017-07-10] (AVAST Software)

FireFox:
========
FF DefaultProfile: 7coy8gqf.default
FF ProfilePath: C:\Users\uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\7coy8gqf.default [2017-08-20]
FF Homepage: Mozilla\Firefox\Profiles\7coy8gqf.default -> startpage.com
FF NetworkProxy: Mozilla\Firefox\Profiles\7coy8gqf.default -> proxy_over_tls", false
FF NetworkProxy: Mozilla\Firefox\Profiles\7coy8gqf.default -> type", 0
FF Extension: (Hoxx VPN Proxy) - C:\Users\uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\7coy8gqf.default\Extensions\@hoxx-vpn.xpi [2017-06-05]
FF Extension: (Ghostery) - C:\Users\uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\7coy8gqf.default\Extensions\firefox@ghostery.com.xpi [2017-08-11]
FF Extension: (Self-Destructing Cookies) - C:\Users\uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\7coy8gqf.default\Extensions\jid0-9XfBwUWnvPx4wWsfBWMCm4Jj69E@jetpack.xpi [2017-03-25]
FF Extension: (Avast SafePrice) - C:\Users\uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\7coy8gqf.default\Extensions\sp@avast.com.xpi [2017-05-31]
FF Extension: (uBlock Origin) - C:\Users\uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\7coy8gqf.default\Extensions\uBlock0@raymondhill.net.xpi [2017-07-19]
FF Extension: (Avast Online Security) - C:\Users\uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\7coy8gqf.default\Extensions\wrc@avast.com.xpi [2017-08-17]
FF Extension: (Google Analytics Opt-out Add-on (by Google)) - C:\Users\uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\7coy8gqf.default\Extensions\{6d96bb5e-1175-4ebf-8ab5-5f56f1c79f65}.xpi [2017-03-31]
FF Extension: (NoScript) - C:\Users\uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\7coy8gqf.default\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2017-07-29]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_26_0_0_131.dll [2017-06-21] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_26_0_0_131.dll [2017-06-21] ()
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2015-02-12] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2015-02-12] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2015-02-12] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2015-02-12] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2017-06-29] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2017-06-29] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2017-06-29] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2017-06-29] (Foxit Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.56 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-09-03] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-09-03] (Intel Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-08-01] (Adobe Systems Inc.)

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2017-04-03] (Apple Inc.)
S4 Asus WebStorage Windows Service; C:\Program Files (x86)\ASUS\WebStorage\2.1.11.399\AsusWSWinService.exe [71168 2014-08-20] (ASUS Cloud Corporation) [File not signed]
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7430992 2017-07-25] (AVAST Software s.r.o.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [263312 2017-07-25] (AVAST Software)
R2 esifsvc; C:\Windows\SysWOW64\esif_uf.exe [1037568 2014-09-18] (Intel Corporation)
R2 FoxitReaderService; C:\Program Files (x86)\Foxit Software\Foxit Reader\FoxitConnectedPDFService.exe [1659456 2017-06-29] (Foxit Software Inc.)
R2 ibtsiva.exe; C:\Program Files (x86)\Intel\Bluetooth\utilities\ibtsiva.exe [121288 2014-08-13] (Intel Corporation)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [329104 2014-11-19] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [887256 2014-05-13] (Intel(R) Corporation)
R2 IntelUSBoverIP; C:\Program Files\Intel Corporation\USB over IP\bin\UoipService.exe [394184 2014-10-15] (Intel)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [154584 2014-09-03] (Intel Corporation)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [265936 2014-10-29] ()
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-07-07] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-07-07] (Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3818704 2014-10-29] (Intel® Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 aswbidsdriver; C:\Windows\system32\drivers\aswbidsdrivera.sys [320008 2017-07-25] (AVAST Software s.r.o.)
R0 aswbidsh; C:\Windows\system32\drivers\aswbidsha.sys [198976 2017-07-25] (AVAST Software s.r.o.)
R0 aswblog; C:\Windows\system32\drivers\aswbloga.sys [343288 2017-07-25] (AVAST Software s.r.o.)
R0 aswbuniv; C:\Windows\system32\drivers\aswbuniva.sys [57728 2017-07-25] (AVAST Software s.r.o.)
S3 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [46984 2017-07-10] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [41800 2017-07-10] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [146704 2017-08-09] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [110352 2017-07-10] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [84392 2017-07-10] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1015880 2017-08-09] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [585608 2017-07-10] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [198768 2017-07-10] (AVAST Software)
R0 aswVmm; C:\Windows\system32\drivers\aswVmm.sys [361336 2017-07-10] (AVAST Software)
S3 ATP; C:\Windows\System32\drivers\AsusTP.sys [69904 2014-11-21] (ASUS Corporation)
S3 AX88772; C:\Windows\system32\DRIVERS\ax88772.sys [113864 2013-07-18] (ASIX Electronics Corp.)
S3 BthMtpEnum; C:\Windows\system32\DRIVERS\BthMtpEnum.sys [62976 2013-08-22] (Microsoft Corporation)
R3 dptf_cpu; C:\Windows\System32\drivers\dptf_cpu.sys [38720 2014-09-18] (Intel Corporation)
R3 dptf_pch; C:\Windows\System32\drivers\dptf_pch.sys [38208 2014-09-18] (Intel Corporation)
R3 esif_lf; C:\Windows\System32\drivers\esif_lf.sys [216360 2014-09-18] (Intel Corporation)
S3 GeneStor; C:\Windows\System32\drivers\GeneStor.sys [110824 2014-06-11] (GenesysLogic)
R3 ibtusb; C:\Windows\system32\DRIVERS\ibtusb.sys [219592 2014-08-13] (Intel Corporation)
R0 IntelHSWPcc; C:\Windows\System32\drivers\IntelPcc.sys [79016 2014-08-26] (Intel Corporation)
R3 kbfiltr; C:\Windows\System32\drivers\kbfiltr.sys [17280 2012-08-06] ( )
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [129312 2014-09-30] (Intel Corporation)
S0 mfeelamk; C:\Windows\System32\drivers\mfeelamk.sys [80920 2015-07-02] (McAfee, Inc.)
R3 NETwNb64; C:\Windows\system32\DRIVERS\Netwbw02.sys [3482600 2014-11-06] (Intel Corporation)
S3 RTLU3E8023-W8-64; C:\Windows\system32\DRIVERS\rtu30x64w8.sys [70656 2013-06-18] (Realtek )
R3 SensorsAlsDriver; C:\Windows\System32\drivers\WUDFRd.sys [226304 2014-10-29] (Microsoft Corporation)
R3 usb3Hub; C:\Windows\System32\drivers\usb3Hub.sys [213296 2014-10-15] (Windows (R) Win 7 DDK provider)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44560 2015-07-07] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [270168 2015-07-07] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114520 2015-07-07] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-08-20 09:35 - 2017-08-20 09:35 - 000015786 _____ C:\Users\uzivatel\Desktop\FRST.txt
2017-08-20 09:35 - 2017-08-20 09:35 - 000000000 ____D C:\Users\uzivatel\Desktop\FRST-OlderVersion
2017-08-20 09:08 - 2017-08-20 09:08 - 000432184 _____ C:\Windows\system32\FNTCACHE.DAT
2017-08-19 23:18 - 2017-08-19 23:18 - 007846949 _____ C:\Users\uzivatel\Downloads\VYCHOVA K LASKE.pdf
2017-08-10 21:07 - 2017-08-10 21:08 - 000372663 _____ C:\Users\uzivatel\Downloads\DOC009.pdf
2017-08-09 22:54 - 2017-08-09 22:54 - 009040454 _____ C:\Users\uzivatel\Downloads\mz-72.pdf
2017-08-08 19:06 - 2017-08-08 19:06 - 000001150 _____ C:\ProgramData\Microsoft\Windows\Start Menu\BS.Player FREE.lnk
2017-08-08 19:06 - 2017-08-08 19:06 - 000001144 _____ C:\Users\Public\Desktop\BS.Player FREE.lnk
2017-08-08 19:06 - 2017-08-08 19:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BS.Player
2017-08-08 19:05 - 2017-08-08 19:05 - 010563576 _____ C:\Users\uzivatel\Downloads\bsplayer271.setup.exe
2017-08-08 18:27 - 2017-08-08 18:27 - 000783199 _____ C:\Users\uzivatel\Downloads\1501521525SPD_SSZ_(01-08-2017)20170724131714.pdf
2017-07-31 20:05 - 2017-07-31 20:05 - 000000000 ____D C:\Users\uzivatel\Doctor Web
2017-07-31 20:05 - 2017-07-31 20:05 - 000000000 ____D C:\ProgramData\Doctor Web
2017-07-31 19:58 - 2017-07-31 20:03 - 155793832 _____ C:\Users\uzivatel\Downloads\7lsj56u5.exe
2017-07-30 21:23 - 2017-07-30 21:23 - 000001118 _____ C:\Users\uzivatel\Desktop\SWF Opener.lnk
2017-07-30 21:23 - 2017-07-30 21:23 - 000001118 _____ C:\Users\Administrator\Desktop\SWF Opener.lnk
2017-07-30 21:23 - 2017-07-30 21:23 - 000000000 ____D C:\Users\uzivatel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\UnH Solutions
2017-07-30 21:23 - 2017-07-30 21:23 - 000000000 ____D C:\Program Files (x86)\UnH Solutions
2017-07-27 15:23 - 2017-07-27 15:23 - 000000000 ____D C:\Users\uzivatel\Documents\ChessBase
2017-07-27 15:23 - 2017-07-27 15:23 - 000000000 ____D C:\Users\uzivatel\AppData\Local\ChessBase
2017-07-27 15:14 - 2017-07-27 15:14 - 000415159 _____ (swffileplayer.com ) C:\Users\uzivatel\Downloads\swffileplayer_setup.exe
2017-07-27 15:14 - 2017-07-27 15:14 - 000001099 _____ C:\Users\Public\Desktop\SWF File Player.lnk
2017-07-27 15:14 - 2017-07-27 15:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SWF File Player
2017-07-27 15:14 - 2017-07-27 15:14 - 000000000 ____D C:\Program Files (x86)\SWF File Player
2017-07-27 11:48 - 2017-07-27 11:48 - 000352604 _____ C:\Users\uzivatel\Downloads\1499837511InterpretaciaPravidielFIDE2017.pdf
2017-07-27 11:47 - 2017-07-27 11:47 - 000412559 _____ C:\Users\uzivatel\Downloads\1500226808Pravidla_sachu_FIDE_platne_od_Jul-01-2017_po_atenskej_Prezidentskej_rade_v_Mar-2017_cislovane_podla_anglickych_pravidiel.pdf
2017-07-27 11:47 - 2017-07-27 11:47 - 000268908 _____ C:\Users\uzivatel\Downloads\1498756393PravidlaFIDE2017-tabulkazmien.pdf
2017-07-26 21:17 - 2017-07-26 21:18 - 065033984 _____ (Malwarebytes ) C:\Users\uzivatel\Downloads\mb3-setup-consumer-3.1.2.1733-1.0.160-1.0.2251.exe
2017-07-26 21:10 - 2017-07-26 21:15 - 000000000 ____D C:\AdwCleaner
2017-07-26 21:10 - 2017-07-26 21:10 - 008162248 _____ (Malwarebytes) C:\Users\uzivatel\Desktop\adwcleaner_7.0.0.0.exe
2017-07-25 22:18 - 2017-08-20 09:35 - 002395648 _____ (Farbar) C:\Users\uzivatel\Desktop\FRST64.exe
2017-07-25 22:18 - 2017-08-20 09:35 - 000000000 ____D C:\FRST
2017-07-25 22:17 - 2017-07-25 22:18 - 002382336 _____ (Farbar) C:\Users\uzivatel\Downloads\FRST64.exe
2017-07-25 22:02 - 2017-07-25 22:02 - 000400464 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-08-20 09:13 - 2015-09-02 18:49 - 000003480 _____ C:\Windows\System32\Tasks\ASUS Live Update1
2017-08-20 09:13 - 2015-09-02 18:49 - 000003470 _____ C:\Windows\System32\Tasks\ASUS Live Update2
2017-08-20 09:13 - 2014-03-18 17:25 - 000863592 _____ C:\Windows\system32\PerfStringBackup.INI
2017-08-20 09:13 - 2013-08-22 15:36 - 000000000 ____D C:\Windows\Inf
2017-08-20 09:08 - 2016-11-15 19:41 - 000000000 ____D C:\Users\uzivatel\AppData\LocalLow\Mozilla
2017-08-20 09:08 - 2015-09-02 18:43 - 000000125 _____ C:\Users\uzivatel\AppData\Roaming\sp_data.sys
2017-08-20 09:08 - 2013-08-22 16:45 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2017-08-17 15:23 - 2017-03-18 15:32 - 000004172 _____ C:\Windows\System32\Tasks\Avast Emergency Update
2017-08-17 10:23 - 2015-09-02 18:48 - 000003600 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-4176085001-3363555415-2058170901-1001
2017-08-12 21:38 - 2013-08-22 15:25 - 000262144 ___SH C:\Windows\system32\config\BBI
2017-08-12 19:32 - 2017-07-18 21:59 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-08-11 21:14 - 2016-07-18 23:28 - 000003920 _____ C:\Windows\System32\Tasks\SafeZone scheduled Autoupdate 1468877329
2017-08-11 21:14 - 2016-07-18 23:28 - 000001061 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk
2017-08-09 19:27 - 2016-07-18 23:27 - 001015880 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys
2017-08-09 19:27 - 2016-07-18 23:27 - 000146704 _____ (AVAST Software) C:\Windows\system32\Drivers\aswmonflt.sys
2017-08-08 19:08 - 2017-03-04 22:24 - 000003990 __RSH C:\ProgramData\ntuser.pol
2017-08-08 18:23 - 2017-07-18 21:59 - 000004476 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2017-07-31 23:30 - 2015-09-02 18:42 - 000000000 ____D C:\Users\uzivatel
2017-07-25 22:02 - 2017-03-18 15:32 - 000343288 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbloga.sys
2017-07-25 22:02 - 2017-03-18 15:32 - 000320008 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidsdrivera.sys
2017-07-25 22:02 - 2017-03-18 15:32 - 000198976 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidsha.sys
2017-07-25 22:02 - 2017-03-18 15:32 - 000057728 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbuniva.sys
2017-07-25 22:02 - 2016-07-18 23:27 - 000146664 _____ (AVAST Software) C:\Windows\system32\Drivers\aswmonflt.sys.150101295889003
2017-07-22 23:21 - 2016-06-12 11:14 - 000000000 ____D C:\Users\uzivatel\AppData\Local\CrashDumps

==================== Files in the root of some directories =======

2015-09-02 18:43 - 2017-08-20 09:08 - 000000125 _____ () C:\Users\uzivatel\AppData\Roaming\sp_data.sys
2015-10-01 15:42 - 2015-10-01 15:42 - 000000017 _____ () C:\Users\uzivatel\AppData\Local\resmon.resmoncfg
2014-11-16 08:55 - 2012-09-07 13:40 - 000000256 _____ () C:\ProgramData\SetStretch.cmd
2014-11-16 08:55 - 2009-07-22 12:04 - 000024576 _____ () C:\ProgramData\SetStretch.exe
2014-11-16 08:55 - 2012-09-07 13:37 - 000000103 _____ () C:\ProgramData\SetStretch.VBS

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2017-08-15 19:59

==================== End of FRST.txt ============================

Uživatelský avatar
JaRon
Moderátor
Moderátor
Příspěvky: 15192
Registrován: 29 bře 2005 13:39
Bydliště: BB-SK

Re: prosim kontrolu logu, dakujem

#2 Příspěvek od JaRon »

ahoj,
log vypada OK
FRST |ADWCleaner |MBAM |CCleaner |AVPTool

V prípade spokojnosti je možné podporiť fórum
https://platba.viry.cz/payment/

talbott
Návštěvník
Návštěvník
Příspěvky: 44
Registrován: 15 pro 2016 19:22

Re: prosim kontrolu logu, dakujem

#3 Příspěvek od talbott »

dakujem za pozretie
mam problem s tym ze niekedy stuhne mozilla
asi mesiac trva stav, ze uz pri prvom zapnuti nabieha pomalsie, prebieha akesi tls handshake, co predtym nebolo

Uživatelský avatar
JaRon
Moderátor
Moderátor
Příspěvky: 15192
Registrován: 29 bře 2005 13:39
Bydliště: BB-SK

Re: prosim kontrolu logu, dakujem

#4 Příspěvek od JaRon »

Preventivne mozes prescanovat s Adwcleanerom
FRST |ADWCleaner |MBAM |CCleaner |AVPTool

V prípade spokojnosti je možné podporiť fórum
https://platba.viry.cz/payment/

talbott
Návštěvník
Návštěvník
Příspěvky: 44
Registrován: 15 pro 2016 19:22

Re: prosim kontrolu logu, dakujem

#5 Příspěvek od talbott »

boli tam dve hrozby, nejaky conduit a pokki.

# AdwCleaner 7.0.1.0 - Logfile created on Fri Aug 25 19:59:48 2017
# Updated on 2017/05/08 by Malwarebytes
# Running on Windows 8.1 Pro (X64)
# Mode: clean
# Support: https://www.malwarebytes.com/support

***** [ Services ] *****

No malicious services deleted.

***** [ Folders ] *****

No malicious folders deleted.

***** [ Files ] *****

No malicious files deleted.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks deleted.

***** [ Registry ] *****

Deleted: [Key] - HKLM\SOFTWARE\Conduit
Deleted: [Key] - HKU\S-1-5-21-4176085001-3363555415-2058170901-1001\Software\Conduit
Deleted: [Key] - HKCU\Software\Conduit
Deleted: [Value] - HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\TBDEn|SBOEM2


***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries deleted.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries deleted.

*************************

::Tracing keys deleted
::Winsock settings cleared
::Additional Actions: 0



*************************

C:/AdwCleaner/AdwCleaner[C0].txt - [1220 B] - [2017/7/26 19:15:13]
C:/AdwCleaner/AdwCleaner[S0].txt - [1061 B] - [2017/7/26 19:11:39]
C:/AdwCleaner/AdwCleaner[S1].txt - [1346 B] - [2017/8/25 19:20:0]


########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt ##########

Uživatelský avatar
JaRon
Moderátor
Moderátor
Příspěvky: 15192
Registrován: 29 bře 2005 13:39
Bydliště: BB-SK

Re: prosim kontrolu logu, dakujem

#6 Příspěvek od JaRon »

Conduit je klasicky spomalovac ☺
Je to lepsie ?
FRST |ADWCleaner |MBAM |CCleaner |AVPTool

V prípade spokojnosti je možné podporiť fórum
https://platba.viry.cz/payment/

Odpovědět