VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Kontrola logu- problémy s internetem.

https://forum.viry.cz:443/viewtopic.php?t=145999

Stránka 1 z 1

Kontrola logu- problémy s internetem.

Napsal: 09 zář 2015 16:41
od hanzzik123
Zdravím,
poslední týden eviduji problémy s internet- pomalé načítání stránek, skype hovory s obrovskou odezvou(někdy ihned spadnou z důvodu pomalého připojení)
Dodavatel tom není,odzkoušeno na více místech a více připojení od Topnetu až po O2.


Zde přikládám FRST:

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:07-09-2015
Ran by Honza (administrator) on HANZIK (09-09-2015 17:33:10)
Running from C:\Users\Honza\Desktop
Loaded Profiles: Honza (Available Profiles: Honza)
Platform: Windows 8.1 Connected (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Opera)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore64.exe
(Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\AdminService.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe
(Intel(R) Corporation) C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe
() C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\QASvc.exe
(Avast Software) C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\QAEvent.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMEvent.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMLockHandler.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMTray.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\QAMsg.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Qualcomm®Atheros®) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerTray.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\RMSvc.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe
() C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\ActivateDesktop.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerWinMonitor.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(WildTangent) C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(acer) C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe
(Ekura) C:\Users\Honza\Desktop\Ekura\ekura_launcher.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13672664 2014-06-30] (Realtek Semiconductor)
HKLM-x32\...\Run: [BacKGround Agent] => C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe [62208 2014-12-19] (Acer Incorporated)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [6109776 2015-07-25] (AVAST Software)
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe [134784 2014-04-29] (Qualcomm®Atheros®)
HKU\S-1-5-21-3125435620-391947284-2330968494-1001\...\Run: [AcerCloud] => C:\Program Files (x86)\Acer\Acer Portal\acpanel_win.exe [2480384 2014-12-19] (Acer)
HKU\S-1-5-21-3125435620-391947284-2330968494-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [7394584 2014-12-12] (Piriform Ltd)
HKU\S-1-5-21-3125435620-391947284-2330968494-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-3125435620-391947284-2330968494-1001\...\Run: [uTorrent] => C:\Users\Honza\AppData\Roaming\uTorrent\uTorrent.exe [1374032 2015-01-21] (BitTorrent Inc.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-07-25] (AVAST Software)
ShellIconOverlayIdentifiers: [ACloudSyncedRF] -> {5CCE71FA-9F61-4F24-9CD1-98D819B40D68} => C:\Program Files (x86)\Acer\Acer Portal\x64\shellext_win.dll [2014-12-19] (Acer Incorporated)
ShellIconOverlayIdentifiers: [ACloudSyncedSF] -> {5D5F18B7-D59B-4B18-A3E9-0A4BDCCCB699} => C:\Program Files (x86)\Acer\Acer Portal\x64\shellext_win.dll [2014-12-19] (Acer Incorporated)
ShellIconOverlayIdentifiers: [ACloudSyncing] -> {C1E1456F-C2D8-4C96-870D-35F1E13941EE} => C:\Program Files (x86)\Acer\Acer Portal\x64\shellext_win.dll [2014-12-19] (Acer Incorporated)
ShellIconOverlayIdentifiers: [ACloudToBeSynced] -> {307523FA-DDC0-4068-983F-2A6B34627744} => C:\Program Files (x86)\Acer\Acer Portal\x64\shellext_win.dll [2014-12-19] (Acer Incorporated)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

ProxyServer: [S-1-5-21-3125435620-391947284-2330968494-1001] => 192.168.1.1:8080
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{73BFEF96-12CB-4CCD-87BE-C4A75FF840D8}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{9AB34063-885C-4E48-8BB5-A32677981EC8}: [DhcpNameServer] 192.168.1.254

Internet Explorer:
==================
HKU\S-1-5-21-3125435620-391947284-2330968494-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.seznam.cz/?clid=13415
SearchScopes: HKU\S-1-5-21-3125435620-391947284-2330968494-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-3125435620-391947284-2330968494-1001 -> {494A6CF8-C5D1-46C4-BBE7-6D6D9B1CA207} URL = hxxp://encyklopedie.seznam.cz/search?q={searchTerms}&sourceid=QuickSearch_13415
SearchScopes: HKU\S-1-5-21-3125435620-391947284-2330968494-1001 -> {5D602557-6ED3-4F96-A00A-5DEB66CA62C3} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=en_cz&sourceid=QuickSearch_13415
SearchScopes: HKU\S-1-5-21-3125435620-391947284-2330968494-1001 -> {63FB1F7D-889C-4EB3-A53D-AB46BD1B805D} URL = hxxp://search.seznam.cz/?q={searchTerms}&sourceid=QuickSearch_13415
SearchScopes: HKU\S-1-5-21-3125435620-391947284-2330968494-1001 -> {67C683B3-28F0-4591-A398-BD86109A84C1} URL = hxxp://www.firmy.cz/?q={searchTerms}&sourceid= ... arch_13415
SearchScopes: HKU\S-1-5-21-3125435620-391947284-2330968494-1001 -> {6D2C490E-2056-44DE-BB89-30B2901A3A44} URL = hxxp://www.mapy.cz/?query={searchTerms}&source ... arch_13415
SearchScopes: HKU\S-1-5-21-3125435620-391947284-2330968494-1001 -> {7823C17E-ECD6-4E6C-AC91-CEC1C4F3DE4D} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_13415
SearchScopes: HKU\S-1-5-21-3125435620-391947284-2330968494-1001 -> {8EC198AD-8D9E-4DC0-8C8C-87493CA42C5D} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=cz_en&sourceid=QuickSearch_13415
SearchScopes: HKU\S-1-5-21-3125435620-391947284-2330968494-1001 -> {A388744D-D9EE-4DC8-9FB3-7462E3FDD5C4} URL = hxxp://www.novinky.cz/hledej?w={searchTerms}&s ... arch_13415
SearchScopes: HKU\S-1-5-21-3125435620-391947284-2330968494-1001 -> {F502DA66-86F2-4467-BFC7-A9BA59EF0FFA} URL = hxxp://www.zbozi.cz/?q={searchTerms}&r=campmoz ... arch_13415
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-07-25] (AVAST Software)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-07-25] (AVAST Software)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)

FireFox:
========
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.13\npGoogleUpdate3.dll [2015-08-29] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.13\npGoogleUpdate3.dll [2015-08-29] (Google Inc.)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\3\NP_wtapp.dll [2014-12-25] ()
FF Plugin-x32: Adobe Reader -> c:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2013-09-05] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3125435620-391947284-2330968494-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Honza\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-07-17] (Unity Technologies ApS)
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-12-24]

Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR Profile: C:\Users\Honza\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\Honza\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-03-07]
CHR Extension: (Docs) - C:\Users\Honza\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-12-24]
CHR Extension: (Google Drive) - C:\Users\Honza\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-12-24]
CHR Extension: (Seznam Lištička - Email) - C:\Users\Honza\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2015-03-07]
CHR Extension: (Seznam Lištička - Slovník) - C:\Users\Honza\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2015-03-07]
CHR Extension: (YouTube) - C:\Users\Honza\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-12-24]
CHR Extension: (Google Search) - C:\Users\Honza\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-12-24]
CHR Extension: (Avast Online Security) - C:\Users\Honza\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-02-28]
CHR Extension: (Google Wallet) - C:\Users\Honza\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-12-24]
CHR Extension: (Seznam Lištička - Rychlá volba) - C:\Users\Honza\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2015-03-07]
CHR Extension: (Gmail) - C:\Users\Honza\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-12-24]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-07-25]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2015-05-01]

Opera:
=======
OPR Extension: (Adblock Plus) - C:\Users\Honza\AppData\Roaming\Opera Software\Opera Stable\Extensions\oidhhegpmlfpoeialbgcdocjalghfpkp [2015-03-11]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [172344 2014-07-23] (SUPERAntiSpyware.com)
R2 AtherosSvc; C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe [319104 2014-04-29] (Windows (R) Win 7 DDK provider) [File not signed]
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [146600 2015-07-25] (AVAST Software)
R3 AvastVBoxSvc; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [4047768 2015-07-25] (Avast Software)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1394816 2015-05-01] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1772672 2015-05-01] (Microsoft Corporation)
R2 CCDMonitorService; C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe [2713856 2014-12-19] (Acer Incorporated)
R3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [2573032 2014-06-12] (Acer Incorporated)
R2 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [347200 2015-02-24] (WildTangent)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [315376 2014-06-09] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe [733696 2013-07-02] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe [822232 2013-07-02] (Intel(R) Corporation)
R2 LMSvc; C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe [466664 2014-06-10] (Acer Incorporate)
R3 QASvc; C:\Program Files\Acer\Acer Quick Access\QASvc.exe [458984 2014-06-26] (Acer Incorporate)
R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [254512 2012-04-24] ()
R3 RMSvc; C:\Program Files\Acer\Acer Quick Access\RMSvc.exe [449768 2014-06-26] (Acer Incorporate)
R3 UEIPSvc; C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe [233216 2014-06-24] (acer)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [368632 2014-09-22] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2014-09-22] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [28656 2015-07-25] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [90968 2015-07-25] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-07-25] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65224 2015-07-25] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1048856 2015-07-25] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [447944 2015-07-25] (AVAST Software)
S2 aswStm; C:\Windows\system32\drivers\aswStm.sys [150160 2015-07-25] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [274808 2015-07-25] (AVAST Software)
R3 athr; C:\Windows\system32\DRIVERS\athwbx.sys [3893248 2014-04-03] (Qualcomm Atheros Communications, Inc.)
S3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [77464 2014-04-29] (Qualcomm Atheros)
S3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [226304 2014-03-18] (Microsoft Corporation)
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283064 2015-03-07] (Disc Soft Ltd)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation)
R3 GPIO; C:\Windows\System32\drivers\iaiogpioe.sys [31232 2014-06-09] (Intel Corporation)
R3 iaioi2c; C:\Windows\System32\drivers\iaioi2ce.sys [69632 2014-06-09] (Intel Corporation)
R3 LMDriver; C:\Windows\System32\drivers\LMDriver.sys [21360 2013-07-18] (Acer Incorporated)
R0 ngvss; C:\Windows\System32\Drivers\ngvss.sys [115152 2015-07-25] (AVAST Software)
R3 RadioShim; C:\Windows\System32\drivers\RadioShim.sys [14680 2013-07-18] (Acer Incorporated)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R3 TXEIx64; C:\Windows\System32\drivers\TXEIx64.sys [88592 2014-01-15] (Intel Corporation)
R2 VBoxAswDrv; C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [273824 2015-07-25] (Avast Software)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [35320 2014-09-22] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [258368 2014-09-22] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2014-09-22] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-09-09 17:33 - 2015-09-09 17:33 - 00018129 _____ C:\Users\Honza\Desktop\FRST.txt
2015-09-09 17:26 - 2015-09-09 17:26 - 02190336 _____ (Farbar) C:\Users\Honza\Desktop\FRST64.exe
2015-09-09 17:26 - 2015-09-09 17:26 - 00112640 _____ (forum.viry.cz) C:\Users\Honza\Desktop\FRSTLauncher.exe
2015-09-07 22:47 - 2015-09-07 22:47 - 00000000 ____D C:\Users\Honza\Desktop\zutu
2015-09-07 22:31 - 2015-09-07 22:40 - 00000000 ____D C:\Users\Honza\Desktop\asdasd
2015-09-07 15:06 - 2015-09-07 15:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-09-05 17:25 - 2015-09-05 17:26 - 00000000 ____D C:\Users\Honza\Documents\GTA San Andreas User Files
2015-08-28 23:13 - 2015-08-28 23:13 - 00001156 _____ C:\Users\Public\Desktop\Aureria Classic.lnk
2015-08-28 23:13 - 2015-08-28 23:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Aureria Classic
2015-08-28 23:05 - 2015-09-05 10:29 - 00000000 ____D C:\Program Files (x86)\Aureria Classic
2015-08-28 17:52 - 2015-08-28 17:52 - 00000000 ____D C:\Users\Honza\Desktop\4story
2015-08-27 13:57 - 2015-08-27 13:58 - 00000000 ____D C:\Users\Honza\Desktop\gggg
2015-08-16 20:10 - 2015-08-16 20:11 - 00000000 ____D C:\Windows\SysWOW64\directx
2015-08-16 20:10 - 2015-08-16 20:10 - 00000000 ___HD C:\Windows\msdownld.tmp
2015-08-16 02:18 - 2015-09-04 23:00 - 00000000 ____D C:\Users\Honza\Desktop\OBCHODY
2015-08-14 15:24 - 2015-08-14 15:24 - 00003188 _____ C:\Windows\System32\Tasks\{FC69B19B-3AD1-441E-9AEC-1E96BA04E629}
2015-08-14 15:20 - 2015-08-14 15:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mafia
2015-08-14 15:20 - 2015-08-14 15:20 - 00000000 ____D C:\Program Files (x86)\Cenega Czech

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-09-09 17:33 - 2015-03-18 21:31 - 00000000 ____D C:\FRST
2015-09-09 17:28 - 2014-12-25 10:06 - 00000000 ____D C:\Users\Honza\AppData\Roaming\Skype
2015-09-09 17:16 - 2014-12-24 23:39 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-09-09 17:08 - 2015-05-17 03:51 - 00000974 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-09-09 17:00 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\sru
2015-09-09 15:54 - 2015-05-21 15:21 - 01267677 _____ C:\Windows\WindowsUpdate.log
2015-09-09 14:12 - 2014-12-24 22:30 - 00003962 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{A3888134-4681-46CD-8F5C-AA5C4D59029E}
2015-09-08 23:06 - 2015-03-29 15:14 - 00000202 _____ C:\Users\Honza\Desktop\aisd.txt
2015-09-08 23:01 - 2015-03-21 11:08 - 00000000 ____D C:\Moje#
2015-09-08 22:38 - 2015-08-05 13:10 - 00000000 ____D C:\Users\Honza\Desktop\Capsvssindicate
2015-09-08 21:18 - 2015-03-10 21:55 - 00129752 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-09-08 15:53 - 2014-08-21 11:25 - 00739924 _____ C:\Windows\system32\perfh005.dat
2015-09-08 15:53 - 2014-08-21 11:25 - 00151610 _____ C:\Windows\system32\perfc005.dat
2015-09-08 15:53 - 2014-03-18 11:47 - 01745984 _____ C:\Windows\system32\PerfStringBackup.INI
2015-09-08 15:50 - 2015-05-22 15:43 - 00008606 _____ C:\Windows\setupact.log
2015-09-07 19:57 - 2014-12-09 10:06 - 00003598 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3125435620-391947284-2330968494-1001
2015-09-07 15:11 - 2015-05-03 14:12 - 00003074 _____ C:\Windows\System32\Tasks\Game_Booster_Startup
2015-09-07 15:06 - 2014-12-25 10:06 - 00002747 _____ C:\Users\Public\Desktop\Skype.lnk
2015-09-07 15:06 - 2014-12-25 10:06 - 00000000 ___RD C:\Program Files (x86)\Skype
2015-09-07 15:06 - 2014-12-25 10:06 - 00000000 ____D C:\ProgramData\Skype
2015-09-07 06:33 - 2014-12-09 10:06 - 00000000 ____D C:\Users\Honza\AppData\Local\CrashDumps
2015-09-07 06:31 - 2014-12-09 10:04 - 00000000 __RDO C:\Users\Honza\OneDrive
2015-09-07 06:30 - 2014-12-09 09:57 - 00000000 ____D C:\Users\Honza
2015-09-07 06:30 - 2013-08-22 16:45 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-09-07 06:25 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\AppReadiness
2015-09-05 23:56 - 2014-12-24 22:35 - 00000892 _____ C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job
2015-09-05 08:53 - 2013-08-22 15:25 - 00262144 ___SH C:\Windows\system32\config\BBI
2015-09-03 14:43 - 2015-05-12 19:09 - 00000000 ____D C:\Users\Honza\Desktop\Ekura
2015-08-29 20:03 - 2015-05-17 03:51 - 00000970 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-08-29 20:03 - 2014-12-24 22:36 - 00003946 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-08-29 20:03 - 2014-12-24 22:36 - 00003710 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-08-28 11:42 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\NDF
2015-08-28 11:39 - 2015-08-07 22:23 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2015-08-28 11:33 - 2015-05-22 15:43 - 00133664 _____ C:\Windows\PFRO.log
2015-08-20 01:47 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\rescache
2015-08-19 18:02 - 2014-12-24 22:32 - 00003826 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1419453153
2015-08-19 18:02 - 2014-12-24 22:32 - 00001067 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2015-08-19 18:02 - 2014-12-24 22:31 - 00000000 ____D C:\Program Files (x86)\Opera
2015-08-16 20:16 - 2013-08-22 17:20 - 00000000 ____D C:\Windows\CbsTemp
2015-08-16 20:04 - 2013-08-22 13:22 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2015-08-16 20:04 - 2013-08-22 13:22 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\dpnsvr.exe
2015-08-16 20:04 - 2013-08-22 13:17 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\dpnathlp.dll
2015-08-16 20:04 - 2013-08-22 13:17 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\dpnhupnp.dll
2015-08-16 20:04 - 2013-08-22 13:17 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\dpnhpast.dll
2015-08-16 20:04 - 2013-08-22 05:56 - 00377856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnet.dll
2015-08-16 20:04 - 2013-08-22 05:56 - 00033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnsvr.exe
2015-08-16 20:04 - 2013-08-22 05:51 - 00059904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnathlp.dll
2015-08-16 20:04 - 2013-08-22 05:51 - 00009216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnhupnp.dll
2015-08-16 20:04 - 2013-08-22 05:51 - 00009216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnhpast.dll
2015-08-14 15:26 - 2013-08-22 06:05 - 00023552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpmodemx.dll
2015-08-14 15:26 - 2013-08-22 06:03 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dplaysvr.exe
2015-08-14 15:26 - 2013-08-22 05:59 - 00214016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dplayx.dll
2015-08-14 15:26 - 2013-08-22 05:51 - 00045056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpwsockx.dll
2015-08-14 12:16 - 2014-12-24 23:39 - 00003802 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-08-14 12:16 - 2014-12-24 22:35 - 00003852 _____ C:\Windows\System32\Tasks\Adobe Flash Player PPAPI Notifier
2015-08-14 11:26 - 2014-12-24 23:10 - 00000000 ____D C:\Windows\SysWOW64\vbox
2015-08-14 11:26 - 2014-12-24 23:10 - 00000000 ____D C:\Windows\system32\vbox

==================== Files in the root of some directories =======

2015-01-04 01:37 - 2015-01-04 01:37 - 0000017 _____ () C:\Users\Honza\AppData\Local\resmon.resmoncfg
2014-08-21 11:35 - 2014-08-21 11:35 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Some files in TEMP:
====================
C:\Users\Honza\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Honza\AppData\Local\Temp\{0435E6FB-57BA-45B5-BF1A-AA5419ADA8D9}-45.0.2454.85_44.0.2403.157_chrome_updater.exe


==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-09-07 19:58

==================== End of FRST.txt ============================

Re: Kontrola logu- problémy s internetem.

Napsal: 09 zář 2015 17:31
od Rudy
Zdravím!
Spusťte tuto utilitu:
Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.

Re: Kontrola logu- problémy s internetem.

Napsal: 10 zář 2015 21:44
od hanzzik123
přikládám ADWcleaner log


# Username : Honza - HANZIK
# Running from : C:\Users\Honza\Desktop\adwcleaner_5.007 (1).exe
# Option : Cleaning
# Support : http://toolslib.net/forum

***** [ Services ] *****


***** [ Folders ] *****

[-] Folder Deleted : C:\ProgramData\{69533018-33A8-4C46-869A-11AA2CDF4EDC}

***** [ Files ] *****

[-] File Deleted : C:\Users\Honza\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pokki Start Menu.lnk

***** [ Shortcuts ] *****


***** [ Scheduled tasks ] *****


***** [ Registry ] *****

[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{9522B3FB-7A2B-4646-8AF6-36E7F593073C}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Pokki_Start_Menu
[!] Key Not Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Pokki_Start_Menu

***** [ Web browsers ] *****


*************************

:: Winsock settings cleared

########## EOF - C:\AdwCleaner\AdwCleaner[C2].txt - [1112 bytes] ##########

Re: Kontrola logu- problémy s internetem.

Napsal: 11 zář 2015 17:02
od Rudy
Dejte nový log FRST.

Re: Kontrola logu- problémy s internetem.

Napsal: 11 zář 2015 17:55
od hanzzik123
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:10-09-2015 01
Ran by Honza (administrator) on HANZIK (11-09-2015 18:53:00)
Running from C:\Users\Honza\Desktop
Loaded Profiles: Honza (Available Profiles: Honza)
Platform: Windows 8.1 Connected (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Opera)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore64.exe
(Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\AdminService.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe
(Intel(R) Corporation) C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe
() C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
(Avast Software) C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
(IObit) C:\Program Files (x86)\IObit\Game Booster 3\gbtray.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMEvent.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\QASvc.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMLockHandler.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\QAEvent.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMTray.exe
(Qualcomm®Atheros®) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe
() C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\ActivateDesktop.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\QAMsg.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerTray.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerWinMonitor.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\RMSvc.exe
(WildTangent) C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
(acer) C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe
(Opera Software) C:\Program Files (x86)\Opera\31.0.1889.174\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\31.0.1889.174\opera_crashreporter.exe
(Opera Software) C:\Program Files (x86)\Opera\31.0.1889.174\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\31.0.1889.174\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\31.0.1889.174\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\31.0.1889.174\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\31.0.1889.174\opera.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Ekura) C:\Users\Honza\Desktop\Ekura\ekura_launcher.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\livecomm.exe
(Opera Software) C:\Program Files (x86)\Opera\31.0.1889.174\opera.exe
(forum.viry.cz) C:\Users\Honza\Desktop\FRSTLauncher.exe
(Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(Microsoft Corporation) C:\Windows\SysWOW64\PING.EXE


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13672664 2014-06-30] (Realtek Semiconductor)
HKLM-x32\...\Run: [BacKGround Agent] => C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe [62208 2014-12-19] (Acer Incorporated)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [6109776 2015-07-25] (AVAST Software)
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe [134784 2014-04-29] (Qualcomm®Atheros®)
HKU\S-1-5-21-3125435620-391947284-2330968494-1001\...\Run: [AcerCloud] => C:\Program Files (x86)\Acer\Acer Portal\acpanel_win.exe [2480384 2014-12-19] (Acer)
HKU\S-1-5-21-3125435620-391947284-2330968494-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [7394584 2014-12-12] (Piriform Ltd)
HKU\S-1-5-21-3125435620-391947284-2330968494-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-3125435620-391947284-2330968494-1001\...\Run: [uTorrent] => C:\Users\Honza\AppData\Roaming\uTorrent\uTorrent.exe [1374032 2015-01-21] (BitTorrent Inc.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-07-25] (AVAST Software)
ShellIconOverlayIdentifiers: [ACloudSyncedRF] -> {5CCE71FA-9F61-4F24-9CD1-98D819B40D68} => C:\Program Files (x86)\Acer\Acer Portal\x64\shellext_win.dll [2014-12-19] (Acer Incorporated)
ShellIconOverlayIdentifiers: [ACloudSyncedSF] -> {5D5F18B7-D59B-4B18-A3E9-0A4BDCCCB699} => C:\Program Files (x86)\Acer\Acer Portal\x64\shellext_win.dll [2014-12-19] (Acer Incorporated)
ShellIconOverlayIdentifiers: [ACloudSyncing] -> {C1E1456F-C2D8-4C96-870D-35F1E13941EE} => C:\Program Files (x86)\Acer\Acer Portal\x64\shellext_win.dll [2014-12-19] (Acer Incorporated)
ShellIconOverlayIdentifiers: [ACloudToBeSynced] -> {307523FA-DDC0-4068-983F-2A6B34627744} => C:\Program Files (x86)\Acer\Acer Portal\x64\shellext_win.dll [2014-12-19] (Acer Incorporated)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

ProxyServer: [S-1-5-21-3125435620-391947284-2330968494-1001] => 192.168.1.1:8080
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{73BFEF96-12CB-4CCD-87BE-C4A75FF840D8}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{9AB34063-885C-4E48-8BB5-A32677981EC8}: [DhcpNameServer] 192.168.1.254

Internet Explorer:
==================
HKU\S-1-5-21-3125435620-391947284-2330968494-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.seznam.cz/?clid=13415
SearchScopes: HKU\S-1-5-21-3125435620-391947284-2330968494-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-3125435620-391947284-2330968494-1001 -> {494A6CF8-C5D1-46C4-BBE7-6D6D9B1CA207} URL = hxxp://encyklopedie.seznam.cz/search?q={searchTerms}&sourceid=QuickSearch_13415
SearchScopes: HKU\S-1-5-21-3125435620-391947284-2330968494-1001 -> {5D602557-6ED3-4F96-A00A-5DEB66CA62C3} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=en_cz&sourceid=QuickSearch_13415
SearchScopes: HKU\S-1-5-21-3125435620-391947284-2330968494-1001 -> {63FB1F7D-889C-4EB3-A53D-AB46BD1B805D} URL = hxxp://search.seznam.cz/?q={searchTerms}&sourceid=QuickSearch_13415
SearchScopes: HKU\S-1-5-21-3125435620-391947284-2330968494-1001 -> {67C683B3-28F0-4591-A398-BD86109A84C1} URL = hxxp://www.firmy.cz/?q={searchTerms}&sourceid= ... arch_13415
SearchScopes: HKU\S-1-5-21-3125435620-391947284-2330968494-1001 -> {6D2C490E-2056-44DE-BB89-30B2901A3A44} URL = hxxp://www.mapy.cz/?query={searchTerms}&source ... arch_13415
SearchScopes: HKU\S-1-5-21-3125435620-391947284-2330968494-1001 -> {7823C17E-ECD6-4E6C-AC91-CEC1C4F3DE4D} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_13415
SearchScopes: HKU\S-1-5-21-3125435620-391947284-2330968494-1001 -> {8EC198AD-8D9E-4DC0-8C8C-87493CA42C5D} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=cz_en&sourceid=QuickSearch_13415
SearchScopes: HKU\S-1-5-21-3125435620-391947284-2330968494-1001 -> {A388744D-D9EE-4DC8-9FB3-7462E3FDD5C4} URL = hxxp://www.novinky.cz/hledej?w={searchTerms}&s ... arch_13415
SearchScopes: HKU\S-1-5-21-3125435620-391947284-2330968494-1001 -> {F502DA66-86F2-4467-BFC7-A9BA59EF0FFA} URL = hxxp://www.zbozi.cz/?q={searchTerms}&r=campmoz ... arch_13415
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-07-25] (AVAST Software)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-07-25] (AVAST Software)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)

FireFox:
========
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.13\npGoogleUpdate3.dll [2015-08-29] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.13\npGoogleUpdate3.dll [2015-08-29] (Google Inc.)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\3\NP_wtapp.dll [2014-12-25] ()
FF Plugin-x32: Adobe Reader -> c:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2013-09-05] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3125435620-391947284-2330968494-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Honza\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-07-17] (Unity Technologies ApS)
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-12-24]

Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR Profile: C:\Users\Honza\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\Honza\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-03-07]
CHR Extension: (Docs) - C:\Users\Honza\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-12-24]
CHR Extension: (Google Drive) - C:\Users\Honza\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-12-24]
CHR Extension: (Seznam Lištička - Email) - C:\Users\Honza\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2015-03-07]
CHR Extension: (Seznam Lištička - Slovník) - C:\Users\Honza\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2015-03-07]
CHR Extension: (YouTube) - C:\Users\Honza\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-12-24]
CHR Extension: (Google Search) - C:\Users\Honza\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-12-24]
CHR Extension: (Avast Online Security) - C:\Users\Honza\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-02-28]
CHR Extension: (Google Wallet) - C:\Users\Honza\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-12-24]
CHR Extension: (Seznam Lištička - Rychlá volba) - C:\Users\Honza\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2015-03-07]
CHR Extension: (Gmail) - C:\Users\Honza\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-12-24]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-07-25]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2015-05-01]

Opera:
=======
OPR Extension: (Adblock Plus) - C:\Users\Honza\AppData\Roaming\Opera Software\Opera Stable\Extensions\oidhhegpmlfpoeialbgcdocjalghfpkp [2015-03-11]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [172344 2014-07-23] (SUPERAntiSpyware.com)
R2 AtherosSvc; C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe [319104 2014-04-29] (Windows (R) Win 7 DDK provider) [File not signed]
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [146600 2015-07-25] (AVAST Software)
R3 AvastVBoxSvc; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [4047768 2015-07-25] (Avast Software)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1394816 2015-05-01] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1772672 2015-05-01] (Microsoft Corporation)
R2 CCDMonitorService; C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe [2713856 2014-12-19] (Acer Incorporated)
R3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [2573032 2014-06-12] (Acer Incorporated)
R2 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [347200 2015-02-24] (WildTangent)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [315376 2014-06-09] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe [733696 2013-07-02] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe [822232 2013-07-02] (Intel(R) Corporation)
R2 LMSvc; C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe [466664 2014-06-10] (Acer Incorporate)
R3 QASvc; C:\Program Files\Acer\Acer Quick Access\QASvc.exe [458984 2014-06-26] (Acer Incorporate)
R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [254512 2012-04-24] ()
R3 RMSvc; C:\Program Files\Acer\Acer Quick Access\RMSvc.exe [449768 2014-06-26] (Acer Incorporate)
R3 UEIPSvc; C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe [233216 2014-06-24] (acer)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [368632 2014-09-22] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2014-09-22] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [28656 2015-07-25] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [90968 2015-07-25] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-07-25] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65224 2015-07-25] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1048856 2015-07-25] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [447944 2015-07-25] (AVAST Software)
S2 aswStm; C:\Windows\system32\drivers\aswStm.sys [150160 2015-07-25] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [274808 2015-07-25] (AVAST Software)
R3 athr; C:\Windows\system32\DRIVERS\athwbx.sys [3893248 2014-04-03] (Qualcomm Atheros Communications, Inc.)
S3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [77464 2014-04-29] (Qualcomm Atheros)
S3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [226304 2014-03-18] (Microsoft Corporation)
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283064 2015-03-07] (Disc Soft Ltd)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation)
R3 GPIO; C:\Windows\System32\drivers\iaiogpioe.sys [31232 2014-06-09] (Intel Corporation)
R3 iaioi2c; C:\Windows\System32\drivers\iaioi2ce.sys [69632 2014-06-09] (Intel Corporation)
R3 LMDriver; C:\Windows\System32\drivers\LMDriver.sys [21360 2013-07-18] (Acer Incorporated)
R0 ngvss; C:\Windows\System32\Drivers\ngvss.sys [115152 2015-07-25] (AVAST Software)
R3 RadioShim; C:\Windows\System32\drivers\RadioShim.sys [14680 2013-07-18] (Acer Incorporated)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R3 TXEIx64; C:\Windows\System32\drivers\TXEIx64.sys [88592 2014-01-15] (Intel Corporation)
R2 VBoxAswDrv; C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [273824 2015-07-25] (Avast Software)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [35320 2014-09-22] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [258368 2014-09-22] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2014-09-22] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-09-11 18:52 - 2015-09-11 18:52 - 00112640 _____ (forum.viry.cz) C:\Users\Honza\Desktop\FRSTLauncher.exe
2015-09-11 18:52 - 2015-09-11 18:52 - 00029696 _____ C:\Users\Honza\AppData\Local\MSGBOX.EXE
2015-09-11 18:52 - 2015-09-11 18:52 - 00015327 _____ C:\Users\Honza\Desktop\LM.bat
2015-09-11 18:49 - 2015-09-11 18:51 - 00000000 ____D C:\Users\Honza\Desktop\FRST-OlderVersion
2015-09-10 19:44 - 2015-09-10 19:44 - 01660416 _____ C:\Users\Honza\Desktop\adwcleaner_5.007 (1).exe
2015-09-09 21:35 - 2015-09-09 21:35 - 01660416 _____ C:\Users\Honza\Downloads\adwcleaner_5.007.exe
2015-09-09 17:33 - 2015-09-11 18:53 - 00019152 _____ C:\Users\Honza\Desktop\FRST.txt
2015-09-09 17:26 - 2015-09-11 18:51 - 02190848 _____ (Farbar) C:\Users\Honza\Desktop\FRST64.exe
2015-09-07 22:47 - 2015-09-07 22:47 - 00000000 ____D C:\Users\Honza\Desktop\zutu
2015-09-07 22:31 - 2015-09-07 22:40 - 00000000 ____D C:\Users\Honza\Desktop\asdasd
2015-09-07 15:06 - 2015-09-07 15:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-09-05 17:25 - 2015-09-05 17:26 - 00000000 ____D C:\Users\Honza\Documents\GTA San Andreas User Files
2015-08-28 23:13 - 2015-08-28 23:13 - 00001156 _____ C:\Users\Public\Desktop\Aureria Classic.lnk
2015-08-28 23:13 - 2015-08-28 23:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Aureria Classic
2015-08-28 23:05 - 2015-09-05 10:29 - 00000000 ____D C:\Program Files (x86)\Aureria Classic
2015-08-28 17:52 - 2015-08-28 17:52 - 00000000 ____D C:\Users\Honza\Desktop\4story
2015-08-27 13:57 - 2015-08-27 13:58 - 00000000 ____D C:\Users\Honza\Desktop\gggg
2015-08-16 20:10 - 2015-08-16 20:11 - 00000000 ____D C:\Windows\SysWOW64\directx
2015-08-16 20:10 - 2015-08-16 20:10 - 00000000 ___HD C:\Windows\msdownld.tmp
2015-08-16 02:18 - 2015-09-04 23:00 - 00000000 ____D C:\Users\Honza\Desktop\OBCHODY
2015-08-14 15:24 - 2015-08-14 15:24 - 00003188 _____ C:\Windows\System32\Tasks\{FC69B19B-3AD1-441E-9AEC-1E96BA04E629}
2015-08-14 15:20 - 2015-08-14 15:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mafia
2015-08-14 15:20 - 2015-08-14 15:20 - 00000000 ____D C:\Program Files (x86)\Cenega Czech

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-09-11 18:53 - 2015-03-18 21:31 - 00000000 ____D C:\FRST
2015-09-11 18:47 - 2014-12-25 10:06 - 00000000 ____D C:\Users\Honza\AppData\Roaming\Skype
2015-09-11 18:16 - 2014-12-24 23:39 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-09-11 18:08 - 2015-05-17 03:51 - 00000974 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-09-11 18:00 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\sru
2015-09-11 17:38 - 2015-05-21 15:21 - 01460659 _____ C:\Windows\WindowsUpdate.log
2015-09-11 14:03 - 2014-12-24 22:30 - 00003962 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{A3888134-4681-46CD-8F5C-AA5C4D59029E}
2015-09-11 07:11 - 2014-12-09 10:06 - 00003598 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3125435620-391947284-2330968494-1001
2015-09-10 22:42 - 2014-12-09 10:06 - 00000000 ____D C:\Users\Honza\AppData\Local\CrashDumps
2015-09-10 22:40 - 2014-12-09 10:04 - 00000000 __RDO C:\Users\Honza\OneDrive
2015-09-10 22:39 - 2013-08-22 16:45 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-09-10 22:38 - 2015-05-22 15:43 - 00134020 _____ C:\Windows\PFRO.log
2015-09-10 22:38 - 2015-05-22 15:43 - 00008722 _____ C:\Windows\setupact.log
2015-09-10 22:38 - 2013-08-22 15:25 - 00262144 ___SH C:\Windows\system32\config\BBI
2015-09-10 22:37 - 2015-03-21 12:37 - 00000000 ____D C:\AdwCleaner
2015-09-10 22:37 - 2014-12-09 09:57 - 00000000 ____D C:\Users\Honza
2015-09-10 22:08 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\LiveKernelReports
2015-09-10 18:54 - 2015-05-12 19:09 - 00000000 ____D C:\Users\Honza\Desktop\Ekura
2015-09-08 23:06 - 2015-03-29 15:14 - 00000202 _____ C:\Users\Honza\Desktop\aisd.txt
2015-09-08 23:01 - 2015-03-21 11:08 - 00000000 ____D C:\Moje#
2015-09-08 22:38 - 2015-08-05 13:10 - 00000000 ____D C:\Users\Honza\Desktop\Capsvssindicate
2015-09-08 21:18 - 2015-03-10 21:55 - 00129752 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-09-08 15:53 - 2014-08-21 11:25 - 00739924 _____ C:\Windows\system32\perfh005.dat
2015-09-08 15:53 - 2014-08-21 11:25 - 00151610 _____ C:\Windows\system32\perfc005.dat
2015-09-08 15:53 - 2014-03-18 11:47 - 01745984 _____ C:\Windows\system32\PerfStringBackup.INI
2015-09-07 15:11 - 2015-05-03 14:12 - 00003074 _____ C:\Windows\System32\Tasks\Game_Booster_Startup
2015-09-07 15:06 - 2014-12-25 10:06 - 00002747 _____ C:\Users\Public\Desktop\Skype.lnk
2015-09-07 15:06 - 2014-12-25 10:06 - 00000000 ___RD C:\Program Files (x86)\Skype
2015-09-07 15:06 - 2014-12-25 10:06 - 00000000 ____D C:\ProgramData\Skype
2015-09-07 06:25 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\AppReadiness
2015-09-05 23:56 - 2014-12-24 22:35 - 00000892 _____ C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job
2015-08-29 20:03 - 2015-05-17 03:51 - 00000970 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-08-29 20:03 - 2014-12-24 22:36 - 00003946 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-08-29 20:03 - 2014-12-24 22:36 - 00003710 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-08-28 11:42 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\NDF
2015-08-28 11:39 - 2015-08-07 22:23 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2015-08-20 01:47 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\rescache
2015-08-19 18:02 - 2014-12-24 22:32 - 00003826 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1419453153
2015-08-19 18:02 - 2014-12-24 22:32 - 00001067 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2015-08-19 18:02 - 2014-12-24 22:31 - 00000000 ____D C:\Program Files (x86)\Opera
2015-08-16 20:16 - 2013-08-22 17:20 - 00000000 ____D C:\Windows\CbsTemp
2015-08-16 20:04 - 2013-08-22 13:22 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2015-08-16 20:04 - 2013-08-22 13:22 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\dpnsvr.exe
2015-08-16 20:04 - 2013-08-22 13:17 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\dpnathlp.dll
2015-08-16 20:04 - 2013-08-22 13:17 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\dpnhupnp.dll
2015-08-16 20:04 - 2013-08-22 13:17 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\dpnhpast.dll
2015-08-16 20:04 - 2013-08-22 05:56 - 00377856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnet.dll
2015-08-16 20:04 - 2013-08-22 05:56 - 00033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnsvr.exe
2015-08-16 20:04 - 2013-08-22 05:51 - 00059904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnathlp.dll
2015-08-16 20:04 - 2013-08-22 05:51 - 00009216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnhupnp.dll
2015-08-16 20:04 - 2013-08-22 05:51 - 00009216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnhpast.dll
2015-08-14 15:26 - 2013-08-22 06:05 - 00023552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpmodemx.dll
2015-08-14 15:26 - 2013-08-22 06:03 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dplaysvr.exe
2015-08-14 15:26 - 2013-08-22 05:59 - 00214016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dplayx.dll
2015-08-14 15:26 - 2013-08-22 05:51 - 00045056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpwsockx.dll
2015-08-14 12:16 - 2014-12-24 23:39 - 00003802 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-08-14 12:16 - 2014-12-24 22:35 - 00003852 _____ C:\Windows\System32\Tasks\Adobe Flash Player PPAPI Notifier
2015-08-14 11:26 - 2014-12-24 23:10 - 00000000 ____D C:\Windows\SysWOW64\vbox
2015-08-14 11:26 - 2014-12-24 23:10 - 00000000 ____D C:\Windows\system32\vbox

==================== Files in the root of some directories =======

2015-09-11 18:52 - 2015-09-11 18:52 - 0029696 _____ () C:\Users\Honza\AppData\Local\MSGBOX.EXE
2015-01-04 01:37 - 2015-01-04 01:37 - 0000017 _____ () C:\Users\Honza\AppData\Local\resmon.resmoncfg
2014-08-21 11:35 - 2014-08-21 11:35 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Some files in TEMP:
====================
C:\Users\Honza\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Honza\AppData\Local\Temp\sqlite3.dll
C:\Users\Honza\AppData\Local\Temp\{0435E6FB-57BA-45B5-BF1A-AA5419ADA8D9}-45.0.2454.85_44.0.2403.157_chrome_updater.exe


==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-09-07 19:58

==================== End of FRST.txt ============================

Re: Kontrola logu- problémy s internetem.

Napsal: 11 zář 2015 18:08
od Rudy
Otevřte poznámkový blok a zkopírujte do něj:
Start
C:\Program Files (x86)\Skype\Toolbars
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1394816 2015-05-01] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1772672 2015-05-01] (Microsoft Corporation)
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
C:\ProgramData\DP45977C.lfl
C:\Users\Honza\AppData\Local\Temp
End
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Re: Kontrola logu- problémy s internetem.

Napsal: 11 zář 2015 18:40
od hanzzik123
Fix result of Farbar Recovery Scan Tool (x64) Version:10-09-2015 01
Ran by Honza (2015-09-11 19:36:15) Run:3
Running from C:\Users\Honza\Desktop
Loaded Profiles: Honza (Available Profiles: Honza)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
C:\Program Files (x86)\Skype\Toolbars
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1394816 2015-05-01] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1772672 2015-05-01] (Microsoft Corporation)
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
C:\ProgramData\DP45977C.lfl
C:\Users\Honza\AppData\Local\Temp
End
*****************

C:\Program Files (x86)\Skype\Toolbars => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}" => key removed successfully
"HKCR\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}" => key removed successfully
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}" => key removed successfully
"HKCR\Wow6432Node\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}" => key removed successfully
"HKCR\PROTOCOLS\Handler\skypec2c" => key removed successfully
"HKCR\CLSID\{91774881-D725-4E58-B298-07617B9B86A8}" => key removed successfully
HKCR\Wow6432Node\PROTOCOLS\Handler\skypec2c => key not found.
"HKCR\Wow6432Node\CLSID\{91774881-D725-4E58-B298-07617B9B86A8}" => key removed successfully
c2cautoupdatesvc => Unable to stop service.
c2cautoupdatesvc => service removed successfully
c2cpnrsvc => Unable to stop service.
c2cpnrsvc => service removed successfully
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => moved successfully
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => moved successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
C:\ProgramData\DP45977C.lfl => moved successfully

"C:\Users\Honza\AppData\Local\Temp" folder move:

Could not move "C:\Users\Honza\AppData\Local\Temp" => Scheduled to move on reboot.


Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 2015-09-11 19:38:29)<=

C:\Users\Honza\AppData\Local\Temp => moved successfully

==== End of Fixlog 19:38:30 ====

Re: Kontrola logu- problémy s internetem.

Napsal: 11 zář 2015 19:36
od Rudy
Smazáno. Nastala nějaká změna?

Re: Kontrola logu- problémy s internetem.

Napsal: 11 zář 2015 21:06
od hanzzik123
Odezva je lepší, bezpochyby změna k lepšímu.

Mohl bych se zeptat co bylo špatně?

Re: Kontrola logu- problémy s internetem.

Napsal: 11 zář 2015 21:30
od Rudy
Smazali jsme několik AdWarů a zbytečností.

Re: Kontrola logu- problémy s internetem.

Napsal: 13 zář 2015 13:23
od hanzzik123
Mužete lock :closed:
Děkuju za pomoc.

Re: Kontrola logu- problémy s internetem.

Napsal: 13 zář 2015 16:19
od Rudy
Rádo se stalo! :)
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz