Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

prosím o kontrolu logu

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zamčeno
Zpráva
Autor
dominocz
Návštěvník
Návštěvník
Příspěvky: 19
Registrován: 13 zář 2014 21:15

prosím o kontrolu logu

#1 Příspěvek od dominocz »

Dobrý den, včera z ničeho nic se mi začal sekat PC. Přešel jsem do správce úloh a najednou se mi zobrazilo využití paměti 98%. Nic jsem neinstaloval, jenom nějaká aktualizace toho Windows defenderu. Dost mě hlavně překvapilo tohle, je možnost že je to vir nebo tak něco?
Obrázek

Dneska 30.1.2015 se to stalo znovu..

ADWCleaner:
# AdwCleaner v4.109 - Report created 30/01/2015 at 09:58:40
# Updated 24/01/2015 by Xplode
# Database : 2015-01-26.1 [Live]
# Operating System : Windows 7 Professional Service Pack 1 (64 bits)
# Username : User - DOMINIK
# Running from : C:\Users\User\Desktop\SYSTEM\adwcleaner_4.109.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****


***** [ Scheduled Tasks ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKCU\Software\03218330cf3949f0c132544eda511f1b
Key Deleted : HKCU\Software\176e80f48d6c06394fb504e571b5404d

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17280


-\\ Mozilla Firefox v35.0 (x86 cs)


-\\ Google Chrome v40.0.2214.93


*************************

AdwCleaner[R2].txt - [1680 octets] - [11/01/2015 12:14:38]
AdwCleaner[R3].txt - [1875 octets] - [28/01/2015 20:48:02]
AdwCleaner[R4].txt - [1034 octets] - [29/01/2015 19:57:20]
AdwCleaner[R5].txt - [1155 octets] - [30/01/2015 09:53:36]
AdwCleaner[S1].txt - [1918 octets] - [28/01/2015 20:58:36]
AdwCleaner[S2].txt - [1081 octets] - [30/01/2015 09:58:40]

########## EOF - C:\AdwCleaner\AdwCleaner[S2].txt - [1141 octets] ##########


FRST:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 28-01-2015
Ran by User (administrator) on DOMINIK on 30-01-2015 10:06:37
Running from C:\Users\User\Desktop\SYSTEM
Loaded Profiles: User (Available profiles: User)
Platform: Windows 7 Professional Service Pack 1 (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCService.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\dsiwmis.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMutilps32.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(H.D.S. Hungary) C:\PROGRAMY\Hard Disk Sentinel\HDSentinel.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare 8\Monitor.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Malwarebytes Corporation) C:\PROGRAMY\Malwarebytes Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\PROGRAMY\Malwarebytes Anti-Malware\mbamservice.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Skype Technologies S.A.) C:\PROGRAMY\Skype\Phone\Skype.exe
(Malwarebytes Corporation) C:\PROGRAMY\Malwarebytes Anti-Malware\mbam.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(ICQ) C:\Users\User\AppData\Roaming\ICQM\icq.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LManager.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe
(NVIDIA Corporation) C:\Users\User\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\NvOAWrapperCache.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMworker.exe
(Atheros) C:\Program Files (x86)\Atheros\Ath_WlanAgent.exe
(LogMeIn Inc.) C:\PROGRAMY\LogMeIn Hamachi\hamachi-2.exe
(LogMeIn, Inc.) C:\PROGRAMY\LogMeIn Hamachi\LMIGuardianSvc.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(IObit) C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe
(Microsoft Corporation) C:\Windows\System32\taskmgr.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2868496 2012-02-14] (Synaptics Incorporated)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13672152 2014-11-14] (Realtek Semiconductor)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2531472 2014-12-13] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284440 2012-02-01] (Intel Corporation)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291608 2012-02-27] (Intel Corporation)
HKLM-x32\...\Run: [LManager] => C:\Program Files (x86)\Launch Manager\LManager.exe [1105488 2012-03-23] (Dritek System Inc.)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-3824889128-963875201-4122865143-1000\...\Run: [Skype] => C:\PROGRAMY\Skype\Phone\Skype.exe [30872168 2014-12-11] (Skype Technologies S.A.)
HKU\S-1-5-21-3824889128-963875201-4122865143-1000\...\Run: [icq] => C:\Users\User\AppData\Roaming\ICQM\icq.exe [35224072 2014-09-26] (ICQ)
HKU\S-1-5-21-3824889128-963875201-4122865143-1000\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-3824889128-963875201-4122865143-1000\...\MountPoints2: {80090a79-455e-11e4-9a76-806e6f6e6963} - D:\AutoRun\AutoRunX\AutoRunX.exe
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [177624 2015-01-10] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [164568 2015-01-10] (NVIDIA Corporation)
Startup: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\176e80f48d6c06394fb504e571b5404d.exe (Microsoft)
Startup: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Microsoft_Backup.exe (Google Inc)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKU\S-1-5-21-3824889128-963875201-4122865143-1000\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3824889128-963875201-4122865143-1000 -> {4187F0FC-AF41-4E4B-AE67-84C8FD35A0AE} URL = http://terra.im/search?q={searchTerms}
BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll (IObit)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Pomocná služba pro přihlášení k účtu Microsoft -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
Handler: WSISVCUchrome - No CLSID Value
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 213.46.172.37 213.46.172.36

FireFox:
========
FF ProfilePath: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\zmpgeupc.default-1416401456464
FF SelectedSearchEngine: Google
FF Homepage: seznam.cz
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_296.dll ()
FF Plugin: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelogx64.dll (EA Digital Illusions CE AB)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_296.dll ()
FF Plugin-x32: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelog.dll (EA Digital Illusions CE AB)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\zmpgeupc.default-1416401456464\searchplugins\defaultsearch.xml
FF Extension: FT DeepDark - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\zmpgeupc.default-1416401456464\Extensions\{77d2ed30-4cd2-11e0-b8af-0800200c9a66} [2015-01-23]
FF Extension: Adblock Plus - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\zmpgeupc.default-1416401456464\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-11-19]
StartMenuInternet: FIREFOX.EXE - C:\PROGRAMY\Mozilla Firefox\firefox.exe
Chrome:
=======
CHR HomePage: Default -> hxxp://seznam.cz/
CHR StartupUrls: Default -> "hxxp://www.seznam.cz/"
CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Prezentace Google) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-01-02]
CHR Extension: (Dokumenty Google) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-01-02]
CHR Extension: (Disk Google) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-01-02]
CHR Extension: (YouTube) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-01-02]
CHR Extension: (Vyhledávání Google) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-01-02]
CHR Extension: (Tabulky Google) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-01-02]
CHR Extension: (AdBlock) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-01-02]
CHR Extension: (Peněženka Google) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-01-02]
CHR Extension: (Gmail) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-01-02]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdvancedSystemCareService8; C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCService.exe [815392 2014-11-04] (IObit)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1148560 2014-12-13] (NVIDIA Corporation)
R2 Hamachi2Svc; C:\PROGRAMY\LogMeIn Hamachi\hamachi-2.exe [2485608 2015-01-20] (LogMeIn Inc.)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [161560 2012-02-08] (Intel Corporation)
S2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2631456 2014-12-10] (IObit)
R2 MBAMScheduler; C:\PROGRAMY\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2014-11-21] (Malwarebytes Corporation)
R2 MBAMService; C:\PROGRAMY\Malwarebytes Anti-Malware\mbamservice.exe [969016 2014-11-21] (Malwarebytes Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1701520 2014-12-13] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [19823248 2014-12-13] (NVIDIA Corporation)
S3 Origin Client Service; C:\PROGRAMY\Origin\OriginClientService.exe [1910128 2015-01-27] (Electronic Arts)
S2 SkypeUpdate; C:\PROGRAMY\Skype\Updater\Updater.exe [315496 2014-12-11] (Skype Technologies)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5426448 2014-12-15] (TeamViewer GmbH)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
R2 ZAtheros Wlan Agent; C:\Program Files (x86)\Atheros\Ath_WlanAgent.exe [72864 2012-02-19] (Atheros) [File not signed]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R3 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2014-09-26] (Disc Soft Ltd)
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [26528 2014-12-30] (REALiX(tm))
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28656 2014-11-28] (Intel Corporation)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-11-21] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [129752 2015-01-30] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2014-11-21] (Malwarebytes Corporation)
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [118272 2014-12-19] (Intel Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2014-12-13] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [38032 2014-11-22] (NVIDIA Corporation)
S3 SmbDrv; C:\Windows\System32\DRIVERS\Smb_driver.sys [22800 2012-02-14] (Synaptics Incorporated)
R3 SmbDrvI; C:\Windows\System32\DRIVERS\Smb_driver_Intel.sys [33008 2014-11-28] (Synaptics Incorporated)
S3 WinRing0_1_2_0; No ImagePath
S3 cpuz137; \??\C:\Users\User\AppData\Local\Temp\cpuz137\cpuz137_x64.sys [X]
S3 FairplayKD; \??\C:\ProgramData\MTA San Andreas All\Common\temp\FairplayKD.sys [X]
S3 taphss6; system32\DRIVERS\taphss6.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-01-30 09:58 - 2015-01-30 09:58 - 00000364 _____ () C:\Users\User\Desktop\sad.txt
2015-01-30 09:51 - 2015-01-30 10:06 - 00000000 ____D () C:\FRST
2015-01-29 19:56 - 2015-01-29 19:56 - 00129752 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\12B25392.sys
2015-01-29 15:54 - 2015-01-29 15:54 - 00000000 ____D () C:\Users\User\Documents\DyingLight
2015-01-29 15:54 - 2015-01-29 15:54 - 00000000 ____D () C:\ProgramData\Steam
2015-01-29 15:50 - 2015-01-29 15:50 - 00000747 _____ () C:\Users\Public\Desktop\Dying Light.lnk
2015-01-29 14:43 - 2015-01-29 14:56 - 00000000 ____D () C:\Users\User\Desktop\Dying Light
2015-01-29 06:01 - 2015-01-29 06:01 - 00000000 ____D () C:\Windows\SysWOW64\NV
2015-01-29 06:01 - 2015-01-29 06:01 - 00000000 ____D () C:\Windows\system32\NV
2015-01-29 06:01 - 2015-01-29 06:01 - 00000000 ____D () C:\ProgramData\NVIDIA
2015-01-28 21:29 - 2015-01-10 00:30 - 06860432 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2015-01-28 21:29 - 2015-01-10 00:30 - 03517256 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2015-01-28 21:29 - 2015-01-10 00:29 - 02558608 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2015-01-28 21:29 - 2015-01-10 00:29 - 01097872 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
2015-01-28 21:29 - 2015-01-10 00:29 - 00935056 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2015-01-28 21:29 - 2015-01-10 00:29 - 00385352 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2015-01-28 21:29 - 2015-01-10 00:29 - 00075080 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
2015-01-28 21:29 - 2015-01-10 00:29 - 00062608 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2015-01-28 21:29 - 2015-01-09 20:47 - 04173527 _____ () C:\Windows\system32\nvcoproc.bin
2015-01-28 21:21 - 2015-01-10 09:07 - 32102544 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2015-01-28 21:21 - 2015-01-10 09:07 - 25459856 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2015-01-28 21:21 - 2015-01-10 09:07 - 24765584 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2015-01-28 21:21 - 2015-01-10 09:07 - 20465296 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2015-01-28 21:21 - 2015-01-10 09:07 - 18566296 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2015-01-28 21:21 - 2015-01-10 09:07 - 17250776 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2015-01-28 21:21 - 2015-01-10 09:07 - 16009120 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2015-01-28 21:21 - 2015-01-10 09:07 - 14115944 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2015-01-28 21:21 - 2015-01-10 09:07 - 13295552 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2015-01-28 21:21 - 2015-01-10 09:07 - 13210248 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2015-01-28 21:21 - 2015-01-10 09:07 - 10774544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2015-01-28 21:21 - 2015-01-10 09:07 - 10714488 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2015-01-28 21:21 - 2015-01-10 09:07 - 10274448 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2015-01-28 21:21 - 2015-01-10 09:07 - 03607184 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2015-01-28 21:21 - 2015-01-10 09:07 - 03298816 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2015-01-28 21:21 - 2015-01-10 09:07 - 03245712 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2015-01-28 21:21 - 2015-01-10 09:07 - 02902456 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2015-01-28 21:21 - 2015-01-10 09:07 - 01895240 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6434725.dll
2015-01-28 21:21 - 2015-01-10 09:07 - 01556808 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6434725.dll
2015-01-28 21:21 - 2015-01-10 09:07 - 00994712 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2015-01-28 21:21 - 2015-01-10 09:07 - 00969360 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2015-01-28 21:21 - 2015-01-10 09:07 - 00942736 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2015-01-28 21:21 - 2015-01-10 09:07 - 00929424 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2015-01-28 21:21 - 2015-01-10 09:07 - 00906384 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2015-01-28 21:21 - 2015-01-10 09:07 - 00877488 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2015-01-28 21:21 - 2015-01-10 09:07 - 00353040 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2015-01-28 21:21 - 2015-01-10 09:07 - 00305320 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2015-01-28 21:21 - 2015-01-10 09:07 - 00177624 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2015-01-28 21:21 - 2015-01-10 09:07 - 00164568 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2015-01-28 21:21 - 2015-01-10 09:07 - 00031376 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvpciflt.sys
2015-01-28 21:21 - 2015-01-10 09:07 - 00027441 _____ () C:\Windows\system32\nvinfo.pb
2015-01-28 21:08 - 2015-01-28 21:08 - 00000000 ____D () C:\NVIDIA
2015-01-28 20:47 - 2015-01-29 19:58 - 00000000 ____D () C:\Windows\pss
2015-01-28 20:45 - 2015-01-28 20:45 - 04044800 _____ (Qualcomm Atheros Communications, Inc.) C:\Windows\system32\Drivers\athrx.sys
2015-01-28 19:02 - 2015-01-28 19:02 - 00000000 ____D () C:\Users\User\AppData\Roaming\MaskMyIP
2015-01-28 19:02 - 2015-01-28 19:02 - 00000000 ____D () C:\ProgramData\MaskMyIP
2015-01-28 17:34 - 2015-01-28 17:37 - 00002271 _____ () C:\Windows\DirectX.log
2015-01-26 05:47 - 2015-01-30 00:00 - 00083037 _____ () C:\Windows\WindowsUpdate.log
2015-01-25 19:18 - 2015-01-25 19:18 - 00000000 ____D () C:\Users\User\AppData\Roaming\Publish Providers
2015-01-25 19:05 - 2015-01-25 20:19 - 00000000 ____D () C:\ProgramData\Sony
2015-01-25 18:59 - 2015-01-29 14:15 - 00000000 ___RD () C:\Users\User\Desktop\OSTATNI
2015-01-25 18:58 - 2015-01-28 21:30 - 00000000 ___RD () C:\Users\User\Desktop\KONTROLA-OPTIMALIZACE PC
2015-01-25 18:57 - 2015-01-30 10:06 - 00000000 ___RD () C:\Users\User\Desktop\SYSTEM
2015-01-25 18:41 - 2015-01-25 19:18 - 00000000 ____D () C:\Users\User\AppData\Roaming\Sony
2015-01-25 18:41 - 2015-01-25 18:41 - 00000000 ____D () C:\Users\User\AppData\Local\Sony
2015-01-25 09:58 - 2015-01-25 09:58 - 00000000 ____D () C:\Users\User\AppData\Local\LogMeIn
2015-01-25 09:58 - 2015-01-25 09:58 - 00000000 ____D () C:\ProgramData\LogMeIn
2015-01-25 09:55 - 2015-01-30 09:59 - 00006204 _____ () C:\Windows\PFRO.log
2015-01-24 22:46 - 2015-01-30 10:02 - 00000000 ____D () C:\Users\User\AppData\Local\LogMeIn Hamachi
2015-01-24 22:45 - 2015-01-24 22:45 - 00000000 ____D () C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\San Andreas Multiplayer
2015-01-24 22:45 - 2015-01-24 22:45 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2015-01-23 20:09 - 2015-01-30 10:01 - 00003687 _____ () C:\Windows\setupact.log
2015-01-23 20:09 - 2015-01-23 20:09 - 00000000 _____ () C:\Windows\setuperr.log
2015-01-22 06:04 - 2015-01-22 12:46 - 00129752 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\5BA0339C.sys
2015-01-20 12:12 - 2015-01-20 12:12 - 03178496 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2015-01-20 12:12 - 2015-01-20 12:12 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2015-01-18 14:34 - 2015-01-28 20:41 - 00000000 ____D () C:\Users\User\AppData\Local\Rockstar Games
2015-01-18 14:32 - 2015-01-18 14:32 - 01700352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdiplus.dll
2015-01-18 14:32 - 2015-01-18 14:32 - 01060864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc71.dll
2015-01-18 14:32 - 2015-01-18 14:32 - 00348160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Msvcr71.dll
2015-01-18 14:29 - 2015-01-18 14:29 - 00178800 _____ (Sony DADC Austria AG.) C:\Windows\SysWOW64\CmdLineExt_x64.dll
2015-01-14 11:32 - 2015-01-14 11:32 - 00033856 ____H (LogMeIn, Inc.) C:\Windows\system32\Drivers\hamachi.sys
2015-01-12 14:49 - 2015-01-12 14:49 - 01197921 _____ () C:\Windows\unins000.exe
2015-01-12 14:49 - 2015-01-12 14:49 - 00007597 _____ () C:\Windows\unins000.dat
2015-01-12 14:29 - 2015-01-12 14:29 - 00000000 _____ () C:\Windows\SysWOW64\cd.dat
2015-01-12 06:09 - 2015-01-12 06:09 - 00000000 ____D () C:\Program Files (x86)\Skype
2015-01-11 17:17 - 2015-01-11 17:17 - 00000000 ____D () C:\Users\User\AppData\Local\ESN
2015-01-11 12:14 - 2015-01-30 09:58 - 00000000 ____D () C:\AdwCleaner
2015-01-10 15:07 - 2015-01-25 16:08 - 00000000 ___HD () C:\Windows\msdownld.tmp
2015-01-10 11:48 - 2015-01-11 18:46 - 00000000 ____D () C:\Program Files (x86)\Battlelog Web Plugins
2015-01-09 20:52 - 2015-01-26 20:24 - 00000000 ____D () C:\Program Files (x86)\TeamViewer
2015-01-09 20:52 - 2015-01-09 20:52 - 00001043 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 10.lnk
2015-01-07 15:33 - 2015-01-25 16:13 - 00000000 ____D () C:\Users\User\AppData\Local\SKIDROW
2015-01-06 16:23 - 2015-01-20 12:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TunnelBear
2015-01-06 16:21 - 2015-01-10 14:59 - 00000600 _____ () C:\Users\User\PUTTY.RND
2015-01-05 14:40 - 2015-01-05 14:40 - 00165888 _____ (Microsoft Corporation) C:\Windows\system32\charmap.exe
2015-01-05 14:40 - 2015-01-05 14:40 - 00155136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\charmap.exe
2015-01-05 14:39 - 2015-01-05 14:39 - 04121600 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2015-01-05 14:39 - 2015-01-05 14:39 - 03209728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2015-01-05 14:39 - 2015-01-05 14:39 - 02020352 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2015-01-05 14:39 - 2015-01-05 14:39 - 01177088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmSvc.dll
2015-01-05 14:39 - 2015-01-05 14:39 - 00346624 _____ (Microsoft Corporation) C:\Windows\system32\WSManMigrationPlugin.dll
2015-01-05 14:39 - 2015-01-05 14:39 - 00310272 _____ (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll
2015-01-05 14:39 - 2015-01-05 14:39 - 00266240 _____ (Microsoft Corporation) C:\Windows\system32\WSManHTTPConfig.exe
2015-01-05 14:39 - 2015-01-05 14:39 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManMigrationPlugin.dll
2015-01-05 14:39 - 2015-01-05 14:39 - 00214016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmWmiPl.dll
2015-01-05 14:39 - 2015-01-05 14:39 - 00198656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManHTTPConfig.exe
2015-01-05 14:39 - 2015-01-05 14:39 - 00181248 _____ (Microsoft Corporation) C:\Windows\system32\WsmAuto.dll
2015-01-05 14:39 - 2015-01-05 14:39 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmAuto.dll
2015-01-05 14:39 - 2015-01-05 14:39 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2015-01-05 14:39 - 2015-01-05 14:39 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2015-01-05 14:38 - 2015-01-05 14:38 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2015-01-05 14:38 - 2015-01-05 14:38 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2015-01-05 14:38 - 2015-01-05 14:38 - 00119296 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
2015-01-05 14:37 - 2015-01-05 14:37 - 05773824 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2015-01-05 14:37 - 2015-01-05 14:37 - 04916224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2015-01-05 14:37 - 2015-01-05 14:37 - 01123840 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2015-01-05 14:37 - 2015-01-05 14:37 - 01048064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2015-01-05 14:37 - 2015-01-05 14:37 - 00384000 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2015-01-05 14:37 - 2015-01-05 14:37 - 00322560 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll
2015-01-05 14:37 - 2015-01-05 14:37 - 00269312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll
2015-01-05 14:37 - 2015-01-05 14:37 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2015-01-05 14:37 - 2015-01-05 14:37 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\rdpendp_winip.dll
2015-01-05 14:37 - 2015-01-05 14:37 - 00192000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpendp_winip.dll
2015-01-05 14:37 - 2015-01-05 14:37 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2015-01-05 14:37 - 2015-01-05 14:37 - 00057856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
2015-01-05 14:37 - 2015-01-05 14:37 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll
2015-01-05 14:37 - 2015-01-05 14:37 - 00046592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsRdpWebAccess.dll
2015-01-05 14:37 - 2015-01-05 14:37 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2015-01-05 14:37 - 2015-01-05 14:37 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2015-01-05 14:37 - 2015-01-05 14:37 - 00037376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2015-01-05 14:37 - 2015-01-05 14:37 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbGD.sys
2015-01-05 14:37 - 2015-01-05 14:37 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2015-01-05 14:37 - 2015-01-05 14:37 - 00018432 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
2015-01-05 14:37 - 2015-01-05 14:37 - 00016896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll
2015-01-05 14:37 - 2015-01-05 14:37 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2015-01-05 14:37 - 2015-01-05 14:37 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2015-01-05 14:31 - 2015-01-05 14:31 - 00003164 _____ () C:\Windows\System32\Tasks\ASC8_PerformanceMonitor
2015-01-05 14:27 - 2015-01-05 14:27 - 61669376 _____ () C:\Windows\system32\config\SOFTWARE.iobit
2015-01-05 14:27 - 2015-01-05 14:27 - 44015616 _____ () C:\Windows\system32\config\COMPONENTS.iobit
2015-01-05 14:27 - 2015-01-05 14:27 - 01572864 _____ () C:\Windows\system32\config\DEFAULT.iobit
2015-01-05 14:27 - 2015-01-05 14:27 - 00069632 _____ () C:\Windows\system32\config\SAM.iobit
2015-01-05 14:27 - 2015-01-05 14:27 - 00024576 _____ () C:\Windows\system32\config\SECURITY.iobit
2015-01-05 13:49 - 2015-01-05 13:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare 8
2015-01-05 13:48 - 2015-01-05 13:48 - 00000000 ____D () C:\Users\User\AppData\IObit
2015-01-02 20:07 - 2015-01-02 20:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-01-02 20:06 - 2015-01-30 10:01 - 00000944 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-01-02 20:06 - 2015-01-30 09:11 - 00000948 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-01-02 20:06 - 2015-01-02 20:07 - 00000000 ____D () C:\Users\User\AppData\Local\Google
2015-01-02 19:55 - 2015-01-02 20:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Parhelia Tools
2015-01-02 19:55 - 2015-01-02 19:56 - 00000000 ____D () C:\Users\User\AppData\Roaming\Google Chrome Backup
2014-12-31 22:30 - 2015-01-01 22:35 - 00000000 ____D () C:\Program Files\trend micro

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-01-30 10:04 - 2014-09-26 11:13 - 00000000 ____D () C:\Users\User\AppData\Roaming\Skype
2015-01-30 10:04 - 2014-09-26 10:58 - 00129752 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-01-30 10:00 - 2014-12-30 23:33 - 00000406 _____ () C:\Windows\Tasks\newSI_620.job
2015-01-30 10:00 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-01-30 09:57 - 2014-09-26 11:38 - 00000000 ____D () C:\Users\User\AppData\Roaming\uTorrent
2015-01-30 09:23 - 2014-10-03 18:40 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-01-30 09:12 - 2009-07-14 05:45 - 00031312 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-01-30 09:12 - 2009-07-14 05:45 - 00031312 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-01-29 20:27 - 2014-09-26 14:08 - 00000600 _____ () C:\Users\User\AppData\Roaming\winscp.rnd
2015-01-29 19:42 - 2014-10-10 17:06 - 00000000 ____D () C:\Users\User\AppData\Roaming\TS3Client
2015-01-29 15:50 - 2014-09-26 14:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\hry
2015-01-29 15:19 - 2014-09-26 14:37 - 00000000 ____D () C:\HRY
2015-01-29 13:24 - 2014-09-27 11:57 - 00000000 ____D () C:\ProgramData\Origin
2015-01-29 06:11 - 2014-09-27 14:28 - 00000000 ____D () C:\Users\User\AppData\Local\Adobe
2015-01-28 21:29 - 2014-09-26 10:40 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation
2015-01-28 21:29 - 2014-09-26 10:40 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2015-01-28 21:29 - 2014-09-26 10:39 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2015-01-28 21:29 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\Help
2015-01-28 21:08 - 2011-04-12 09:34 - 00668376 _____ () C:\Windows\system32\perfh005.dat
2015-01-28 21:08 - 2011-04-12 09:34 - 00141004 _____ () C:\Windows\system32\perfc005.dat
2015-01-28 21:08 - 2009-07-14 06:13 - 01582262 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-01-28 20:49 - 2014-09-26 10:31 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2015-01-28 20:45 - 2014-09-26 14:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rockstar Games
2015-01-28 20:43 - 2014-09-26 11:30 - 00002830 _____ () C:\Windows\System32\Tasks\Driver Booster SkipUAC (User)
2015-01-28 20:43 - 2009-07-14 06:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-01-28 19:56 - 2014-10-08 06:48 - 00000000 ____D () C:\Users\User\Documents\My Games
2015-01-28 19:08 - 2014-09-26 10:57 - 00000000 ____D () C:\PROGRAMY
2015-01-26 19:28 - 2014-09-26 15:04 - 00000000 ____D () C:\Users\User\Documents\Bandicam
2015-01-26 13:30 - 2014-09-26 11:29 - 00000000 ____D () C:\ProgramData\ProductData
2015-01-25 18:58 - 2014-11-19 19:58 - 00000000 ____D () C:\Program Files (x86)\Origin Games
2015-01-25 15:51 - 2014-09-26 14:41 - 00000000 ____D () C:\Users\User\AppData\Roaming\DAEMON Tools Lite
2015-01-25 00:23 - 2014-10-03 18:40 - 00701616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-01-25 00:23 - 2014-10-03 18:40 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-01-25 00:23 - 2014-10-03 18:40 - 00003852 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-01-24 23:52 - 2014-09-29 07:40 - 00000000 ____D () C:\Windows\SysWOW64\directx
2015-01-24 22:45 - 2014-09-26 14:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\San Andreas Multiplayer
2015-01-24 21:19 - 2014-09-26 11:53 - 00000000 ___RD () C:\Users\User\Desktop\FILMY-SERIALY
2015-01-24 20:49 - 2014-10-11 13:58 - 00001480 _____ () C:\Users\User\AppData\Local\Adobe Uložit pro web 13.0 Prefs
2015-01-23 13:00 - 2014-10-18 07:51 - 00000132 _____ () C:\Users\User\AppData\Roaming\Adobe Formát PNG CS6 – předvolby
2015-01-18 09:13 - 2009-07-14 05:45 - 04907392 _____ () C:\Windows\system32\FNTCACHE.DAT
2015-01-17 22:59 - 2014-09-26 10:53 - 00063760 _____ () C:\Users\User\AppData\Local\GDIPFONTCACHEV1.DAT
2015-01-17 22:02 - 2014-09-27 14:54 - 00348928 _____ () C:\Windows\SysWOW64\PnkBstrB.xtr
2015-01-17 22:01 - 2014-09-27 12:49 - 00280904 _____ () C:\Windows\SysWOW64\PnkBstrB.ex0
2015-01-12 15:29 - 2014-12-27 12:28 - 00000000 ____D () C:\Windows\Minidump
2015-01-12 14:52 - 2014-09-28 17:12 - 00000000 ____D () C:\Users\User\Documents\Visual Studio 2010
2015-01-12 06:09 - 2014-09-26 11:13 - 00000000 ____D () C:\ProgramData\Skype
2015-01-10 12:03 - 2014-09-27 12:49 - 00076152 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2015-01-10 11:49 - 2014-12-23 16:09 - 00000000 ____D () C:\Users\User\AppData\Local\PunkBuster
2015-01-09 21:01 - 2014-10-03 16:43 - 00000000 ____D () C:\Users\User\AppData\Roaming\TeamViewer
2015-01-09 15:33 - 2009-07-14 04:20 - 00000000 __RHD () C:\Users\Public\Libraries
2015-01-08 09:55 - 2010-11-21 04:27 - 00298120 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2015-01-06 06:01 - 2009-07-14 04:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2015-01-05 22:29 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2015-01-05 14:25 - 2014-09-26 11:29 - 00000000 ____D () C:\Program Files (x86)\IObit
2015-01-02 20:06 - 2014-09-26 11:06 - 00003944 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-01-02 20:06 - 2014-09-26 11:06 - 00003692 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-01-02 20:06 - 2014-09-26 11:06 - 00000000 ____D () C:\Program Files (x86)\Google
2015-01-02 16:26 - 2014-11-23 12:54 - 00000530 _____ () C:\Users\User\Desktop\mapy.txt
2015-01-01 22:30 - 2014-09-26 10:27 - 00000000 ____D () C:\Users\User\AppData\Local\VirtualStore

==================== Files in the root of some directories =======

2014-11-19 18:34 - 2014-11-19 18:46 - 0000132 _____ () C:\Users\User\AppData\Roaming\Adobe Formát GIF CS6 – předvolby
2014-10-18 07:51 - 2015-01-23 13:00 - 0000132 _____ () C:\Users\User\AppData\Roaming\Adobe Formát PNG CS6 – předvolby
2014-09-26 14:08 - 2015-01-29 20:27 - 0000600 _____ () C:\Users\User\AppData\Roaming\winscp.rnd
2014-10-11 13:58 - 2015-01-24 20:49 - 0001480 _____ () C:\Users\User\AppData\Local\Adobe Uložit pro web 13.0 Prefs
2014-11-14 17:33 - 2014-11-14 17:33 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Some content of TEMP:
====================
C:\Users\User\AppData\Local\Temp\aehsyhonid.exe
C:\Users\User\AppData\Local\Temp\Quarantine.exe
C:\Users\User\AppData\Local\Temp\SearchGoogle.exe
C:\Users\User\AppData\Local\Temp\Skype_Inf.exe
C:\Users\User\AppData\Local\Temp\sqlite3.dll


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-11-27 16:52

==================== End Of Log ============================
Nahoru
Uživatelský avatar
JaRon
Moderátor
Moderátor
Příspěvky: 15799
Registrován: 29 bře 2005 13:39
Bydliště: BB-SK

Re: prosím o kontrolu logu

#2 Příspěvek od JaRon »

ahoj,
je to ako epidemia - kto Vam kaze instalovat tento debilny SW :???: >> Advanced SystemCare 8 - odinstaluj to pokial nie je neskoro :!:
+ prescanuj PC s MBAM - log sem
FRST |ADWCleaner |MBAM |CCleaner |AVPTool

V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Nahoru
dominocz
Návštěvník
Návštěvník
Příspěvky: 19
Registrován: 13 zář 2014 21:15

Re: prosím o kontrolu logu

#3 Příspěvek od dominocz »

Malwarebytes Anti-Malware
www.malwarebytes.org

Datum skenování: 30.1.2015
Čas skenování: 12:04:12
Protokol: 4.txt
Správce: Ano

Verze: 2.00.4.1028
Databáze malwaru: v2015.01.30.03
Databáze rootkitů: v2015.01.14.01
Licence: Free
Ochrana proti malwaru: Zapnuto
Ochrana proti škodlivým webovým stránkám: Zapnuto
Sebeobrany: Vypnuto

OS: Windows 7 Service Pack 1
CPU: x64
Souborový systém: NTFS
Uživatel: User

Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 332338
Uplynulý čas: 21 min, 30 sek

Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto

Procesy: 0
(Žádné zákerné zjištěny položek)

Moduly: 0
(Žádné zákerné zjištěny položek)

Klíče registru: 0
(Žádné zákerné zjištěny položek)

Hodnoty registru: 0
(Žádné zákerné zjištěny položek)

Data registru: 0
(Žádné zákerné zjištěny položek)

Složky: 0
(Žádné zákerné zjištěny položek)

Soubory: 0
(Žádné zákerné zjištěny položek)

Fyzické sektory: 0
(Žádné zákerné zjištěny položek)


(end)
Nahoru
Uživatelský avatar
JaRon
Moderátor
Moderátor
Příspěvky: 15799
Registrován: 29 bře 2005 13:39
Bydliště: BB-SK

Re: prosím o kontrolu logu

#4 Příspěvek od JaRon »

citat:
TFC http://oldtimer.geekstogo.com/TFC.exe
• Stahnete a spustte
• Kliknete na Start a potvrdte OK
• Program uklidi a restartuje pc
• Po pouziti utilitu smazte
+
potom napis, ci problem pretrvava
FRST |ADWCleaner |MBAM |CCleaner |AVPTool

V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Nahoru
dominocz
Návštěvník
Návštěvník
Příspěvky: 19
Registrován: 13 zář 2014 21:15

Re: prosím o kontrolu logu

#5 Příspěvek od dominocz »

Bohužel problém přetrvává - http://ctrlv.cz/S6Ht
Nahoru
Uživatelský avatar
JaRon
Moderátor
Moderátor
Příspěvky: 15799
Registrován: 29 bře 2005 13:39
Bydliště: BB-SK

Re: prosím o kontrolu logu

#6 Příspěvek od JaRon »

skus obnovu systemu, tak 2-3 dni naspat
FRST |ADWCleaner |MBAM |CCleaner |AVPTool

V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Nahoru
dominocz
Návštěvník
Návštěvník
Příspěvky: 19
Registrován: 13 zář 2014 21:15

Re: prosím o kontrolu logu

#7 Příspěvek od dominocz »

Problém jsem vyřešil tak, že jsem si otevřel umístění toho procesu - bylo to v po spuštění PC. Následně jsem pomocí CCleaneru odstranil spouštění toho procesu a smazal to z toho umístění + nechal opravit registry. Problém je tedy vyřešen, můžete zámek.:)
Nahoru
Uživatelský avatar
JaRon
Moderátor
Moderátor
Příspěvky: 15799
Registrován: 29 bře 2005 13:39
Bydliště: BB-SK

Re: prosím o kontrolu logu

#8 Příspěvek od JaRon »

OK :)
FRST |ADWCleaner |MBAM |CCleaner |AVPTool

V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Nahoru
Zamčeno

Zpět na „Řešení problémů, logy“