Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

sekání

To, co se nehodí jinam..

Moderátor: Moderátoři

Odpovědět
Zpráva
Autor
hOkaj
Návštěvník
Návštěvník
Příspěvky: 59
Registrován: 18 kvě 2014 22:40

sekání

#1 Příspěvek od hOkaj »

Ahoj mám problém se sekáním her.Když hraju tak to vždycky po 5 - 10 minutách sekne na 5 vteřin a pořád dokola. Mám windows 7 64 bit, 8 giga ram i5 2.9 ghz a geforce gtx 760.Někdy se mi stává, že když hraju minimalizuju hru a když ji zpátky maximalizuju, tak mi nechce najet obraz vidím myš ze hry slyším zvuk, ale obraz nikde. Takže musím vypnout a zapnout hru a kolikrát se mi stalo než mi to zpátky načetlo tak jsem dostal ban za odpojení :).Čistil jsem pc ccleanerem, adwcleanere, a mbam.adw i mbam mi něco našli a už jsem to smazal a od té doby mám ty seky.To s tím obrazem mi už dělá asi měsic.Potom mám ve spávci ůloh iexplorer.exe, kterej já nespouštím, ale spouští se sám i když ho ukončím cesta vede do c/internet explorer kde nejde odinstalovat.Někdy se stane, že mi to samo od sebe přehraje nějakou reklamu z internetu při hraní her nebo koukání na film.Kdybych nebyl takovej závislák tak ten pc asi rozkopu xD už na to nemám nervy. Hlavně, že jsem do něj už dal nějakých 20 000.Nedávno jsem kupoval tu grafiku, ramky a novej zdroj. Prosím potřebuju pomoct já se v tom nevyznám.Mám origo windows.
Edit - všiml jsem si jak to vždycky sekne tak přestane jít větrák na procáku nebo na grafické nevím jako by se to na chvíli vyplo.
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119404
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: sekání

#2 Příspěvek od Rudy »

Zdravím!
Předem upozorňuji, že jsme bezpečnostní fórum, kde vám můžeme PC vyčistit a odvirovat. Na čistě herní problematiku jsou jiná fóra. Máte-li dojem, že se vám zastavuje některý větrák, je nutné to ověřit např. tak, že budete chvíli provozovat PC s odejmutou bočnicí a když budete mít dojem, že se větrák zastavil, zkontrolujte to pohledem. Problém může způsobovat teplota.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
hOkaj
Návštěvník
Návštěvník
Příspěvky: 59
Registrován: 18 kvě 2014 22:40

Re: sekání

#3 Příspěvek od hOkaj »

Dobře, ale ten iexplorer je softwareový takýe help? :P
Nahoru
hOkaj
Návštěvník
Návštěvník
Příspěvky: 59
Registrován: 18 kvě 2014 22:40

Re: sekání

#4 Příspěvek od hOkaj »

Prosím co mám dělat s tím iexplorerem?
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119404
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: sekání

#5 Příspěvek od Rudy »

Co má společného iexplorer (prohlížeč internetu) s hrou?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
hOkaj
Návštěvník
Návštěvník
Příspěvky: 59
Registrován: 18 kvě 2014 22:40

Re: sekání

#6 Příspěvek od hOkaj »

To je zase jiný problém.Používám firefox internet explorer ani neotvírám přesto ho mám v procesech a když ho v procesech vypnu tak se znovu zapne párkrát mi to i přehraji reklamy z internetu
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119404
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: sekání

#7 Příspěvek od Rudy »

Dejte log FRST: http://forum.viry.cz/viewtopic.php?f=24&t=132509 .
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
hOkaj
Návštěvník
Návštěvník
Příspěvky: 59
Registrován: 18 kvě 2014 22:40

Re: sekání

#8 Příspěvek od hOkaj »

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 19-01-2015
Ran by hokaj (administrator) on HOKAJ-PC on 20-01-2015 18:42:00
Running from C:\Users\hokaj\Desktop
Loaded Profiles: hokaj (Available profiles: hokaj)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
() C:\Program Files (x86)\ASUS\AXSP\1.00.13\atkexComSvc.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe
() C:\Program Files (x86)\ASUS\AAHM\1.00.13\aaHMSvc.exe
() C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe
(ASUSTeK Computer Inc.) C:\Windows\SysWOW64\AsHookDevice.exe
() C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\EPU\EPUHelp.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Razer Inc.) D:\programy\Razer Cortex\RzKLService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Mozilla Corporation) D:\programy\firefox\firefox.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Mozilla Corporation) D:\programy\firefox\plugin-container.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_16_0_0_257.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_16_0_0_257.exe
(Valve Corporation) D:\hry\Steam\Steam.exe
(Adobe Systems Incorporated) C:\Windows\System32\Macromed\Flash\FlashUtil64_16_0_0_257_ActiveX.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(TeamSpeak Systems GmbH) D:\programy\ts 3\ts3client_win32.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Valve Corporation) D:\hry\Steam\bin\steamwebhelper.exe
(Valve Corporation) D:\hry\Steam\bin\steamwebhelper.exe
() D:\hry\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
(Valve Corporation) D:\hry\Steam\GameOverlayUI.exe
(forum.viry.cz) C:\Users\hokaj\Desktop\FRSTLauncher.exe
(Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\SysWOW64\PING.EXE


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [12697368 2014-10-14] (Logitech Inc.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7575768 2014-05-14] (Realtek Semiconductor)
HKU\S-1-5-21-804004432-891466739-263396637-1000\...\Run: [DAEMON Tools Lite] => D:\programy\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-804004432-891466739-263396637-1000\...\MountPoints2: {b0349067-864d-11e4-a364-f46d049e92bb} - F:\Setup.exe
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-804004432-891466739-263396637-1000 -> {DA41CF6C-0814-44C0-8193-5E137D9BA35E} URL = http://tv.seznam.cz/hledej?w={searchTer ... arch_16194
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: BitComet Helper -> {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} -> D:\programy\BitComet\tools\BitCometBHO_1.5.4.11.dll (BitComet)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll (Oracle Corporation)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\..\Interfaces\{4B3DC229-55F7-414A-A788-ED9A686DC2DC}: [NameServer] 62.129.50.20,85.135.32.100

FireFox:
========
FF ProfilePath: C:\Users\hokaj\AppData\Roaming\Mozilla\Firefox\Profiles\ixvqc3mx.default
FF DefaultSearchEngine: Seznam
FF Homepage: https://seznam.cz/
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_257.dll ()
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_257.dll ()
FF Plugin-x32: @java.com/DTPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Extension: YouTube High Definition - C:\Users\hokaj\AppData\Roaming\Mozilla\Firefox\Profiles\ixvqc3mx.default\Extensions\{7b1bf0b6-a1b9-42b0-b75d-252036438bdc}.xpi [2015-01-01]
FF Extension: Adblock Plus - C:\Users\hokaj\AppData\Roaming\Mozilla\Firefox\Profiles\ixvqc3mx.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-01-01]

Chrome:
=======
CHR dev: Chrome dev build detected! <======= ATTENTION

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.00.13\atkexComSvc.exe [918144 2010-11-03] ()
R2 asHmComSvc; C:\Program Files (x86)\ASUS\AAHM\1.00.13\aaHMSvc.exe [915584 2010-12-02] ()
R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe [586880 2010-10-21] ()
S3 BITCOMET_HELPER_SERVICE; D:\programy\BitComet\tools\BitCometService.exe [1296728 2013-11-29] (www.BitComet.com)
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2009-05-15] (Hewlett-Packard) [File not signed]
S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [3191392 2014-05-15] (INCA Internet Co., Ltd.)
S3 Origin Client Service; D:\hry\Origin\OriginClientService.exe [1903472 2015-01-15] (Electronic Arts)
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2009-05-15] (Hewlett-Packard) [File not signed]
R2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [186048 2014-12-09] ()
R2 RzKLService; D:\programy\Razer Cortex\RzKLService.exe [105448 2014-12-06] (Razer Inc.)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 ASInsHelp; C:\Windows\SysWow64\drivers\AsInsHelp64.sys [11832 2008-01-04] ()
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [13440 2010-08-24] ()
R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [14464 2010-08-03] ()
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2014-12-18] (Disc Soft Ltd)
R3 LGSHidFilt; C:\Windows\System32\DRIVERS\LGSHidFilt.Sys [64280 2013-05-30] (Logitech Inc.)
R2 rzpmgrk; C:\Windows\system32\drivers\rzpmgrk.sys [37184 2014-12-09] (Razer, Inc.)
S3 VLAN; C:\Windows\System32\DRIVERS\RtVLAN60.sys [29472 2010-01-15] (Windows (R) Codename Longhorn DDK provider)
S3 cpuz134; \??\C:\Users\hokaj\AppData\Local\Temp\cpuz134\cpuz134_x64.sys [X]
S4 nvvad_WaveExtensible; system32\drivers\nvvad64v.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-01-20 18:42 - 2015-01-20 18:42 - 00011159 _____ () C:\Users\hokaj\Desktop\FRST.txt
2015-01-20 18:41 - 2015-01-20 18:42 - 00000000 ____D () C:\FRST
2015-01-20 18:41 - 2015-01-20 18:41 - 00015327 _____ () C:\Users\hokaj\Desktop\LM.bat
2015-01-20 18:37 - 2015-01-20 18:41 - 00029696 _____ () C:\Users\hokaj\AppData\Local\MSGBOX.EXE
2015-01-20 18:36 - 2015-01-20 18:36 - 00112640 _____ (forum.viry.cz) C:\Users\hokaj\Desktop\FRSTLauncher.exe
2015-01-20 18:34 - 2015-01-20 18:34 - 02126848 _____ (Farbar) C:\Users\hokaj\Desktop\FRST64.exe
2015-01-20 17:24 - 2015-01-20 17:24 - 00017533 _____ () C:\Windows\DirectX.log
2015-01-20 16:58 - 2015-01-20 16:58 - 00000233 _____ () C:\Users\hokaj\Desktop\Watch_Dogs.url
2015-01-20 16:58 - 2015-01-20 16:58 - 00000233 _____ () C:\Users\hokaj\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Watch_Dogs.url
2015-01-19 15:27 - 2015-01-19 15:27 - 00000967 _____ () C:\Users\Public\Desktop\The Mighty Quest For Epic Loot.lnk
2015-01-19 15:27 - 2015-01-19 15:27 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Mighty Quest For Epic Loot
2015-01-19 15:25 - 2015-01-20 16:57 - 00000000 ____D () C:\Users\hokaj\AppData\Local\Ubisoft Game Launcher
2015-01-19 15:25 - 2015-01-19 15:25 - 00001201 _____ () C:\Users\hokaj\Desktop\Uplay.lnk
2015-01-19 15:25 - 2015-01-19 15:25 - 00000000 ____D () C:\Users\hokaj\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
2015-01-19 15:25 - 2015-01-19 15:25 - 00000000 ____D () C:\Program Files (x86)\Ubisoft
2015-01-19 15:20 - 2015-01-19 15:25 - 60293720 _____ (Ubisoft) C:\Users\hokaj\Desktop\UplayInstaller.exe
2015-01-19 14:25 - 2015-01-19 14:25 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AIMP3
2015-01-19 14:23 - 2015-01-19 14:25 - 00000593 _____ () C:\Users\Public\Desktop\AIMP3.lnk
2015-01-19 14:22 - 2015-01-19 14:22 - 08655944 _____ (AIMP DevTeam) C:\Users\hokaj\Desktop\aimp_3.60.1465.exe
2015-01-19 06:28 - 2015-01-19 06:35 - 00000000 ____D () C:\Users\hokaj\AppData\Local\GeometryWars3Dimensions
2015-01-19 06:21 - 2015-01-19 06:21 - 00000783 _____ () C:\Users\Public\Desktop\Geometry Wars 3 Dimensions.lnk
2015-01-19 06:21 - 2015-01-19 06:21 - 00000000 ____D () C:\Users\hokaj\AppData\Local\SKIDROW
2015-01-19 06:21 - 2015-01-19 06:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sierra Activision Aspyr
2015-01-19 06:13 - 2015-01-19 06:13 - 00000780 _____ () C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
2015-01-19 06:00 - 2015-01-19 06:02 - 00000000 ____D () C:\Users\hokaj\Desktop\Geometry.Wars.3.Dimensions-TiNYiSO
2015-01-18 04:38 - 2015-01-20 14:37 - 00001140 _____ () C:\Windows\PFRO.log
2015-01-18 03:55 - 2015-01-18 03:55 - 00000669 _____ () C:\Users\Public\Desktop\CPUID HWMonitor.lnk
2015-01-18 03:55 - 2015-01-18 03:55 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
2015-01-18 02:38 - 2015-01-18 02:38 - 00000712 _____ () C:\Users\hokaj\Desktop\Far Cry 4.lnk
2015-01-18 02:38 - 2015-01-18 02:38 - 00000000 ____D () C:\Users\hokaj\AppData\Roaming\Far Cry 4
2015-01-18 02:38 - 2015-01-18 02:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\R.G. Mechanics
2015-01-18 01:00 - 2015-01-20 14:38 - 00000392 _____ () C:\Windows\setupact.log
2015-01-18 01:00 - 2015-01-18 01:00 - 00000000 _____ () C:\Windows\setuperr.log
2015-01-17 15:04 - 2015-01-17 15:04 - 00071944 _____ () C:\Users\hokaj\Desktop\Fury(0000247571).srt
2015-01-16 04:04 - 2013-04-10 00:34 - 01247744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2015-01-16 04:04 - 2013-04-02 23:51 - 01643520 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2015-01-15 17:41 - 2015-01-15 17:41 - 00000955 _____ () C:\Users\Public\Desktop\Dragon Age Inquisition.lnk
2015-01-15 17:13 - 2015-01-15 17:13 - 00003114 _____ () C:\Windows\System32\Tasks\JetBoost_AutoUpdate
2015-01-15 17:13 - 2015-01-15 17:13 - 00000673 _____ () C:\Users\Public\Desktop\Quick Boost.lnk
2015-01-15 17:13 - 2015-01-15 17:13 - 00000661 _____ () C:\Users\Public\Desktop\JetBoost.lnk
2015-01-15 17:13 - 2015-01-15 17:13 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JetBoost
2015-01-15 17:13 - 2015-01-15 17:13 - 00000000 ____D () C:\ProgramData\BlueSprig
2015-01-15 16:53 - 2015-01-15 16:53 - 00003412 _____ () C:\Windows\System32\Tasks\steamwebhelper_killer
2015-01-15 16:38 - 2015-01-15 16:38 - 00000000 ____H () C:\ProgramData\DP45977C.lfl
2015-01-15 16:38 - 2015-01-15 16:38 - 00000000 ____D () C:\Windows\SysWOW64\RTCOM
2015-01-15 16:38 - 2015-01-15 16:38 - 00000000 ____D () C:\Program Files\Realtek
2015-01-15 16:38 - 2014-05-14 18:37 - 03962840 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2015-01-15 16:38 - 2014-05-14 16:00 - 01099203 _____ () C:\Windows\system32\Drivers\RTAIODAT.DAT
2015-01-15 16:38 - 2014-05-09 11:17 - 00628952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll
2015-01-15 16:38 - 2014-04-28 15:48 - 02800344 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO64.dll
2015-01-15 16:38 - 2014-04-25 13:51 - 02834648 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2015-01-15 16:38 - 2014-04-25 13:23 - 01022168 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2015-01-15 16:38 - 2014-04-23 17:51 - 02117424 _____ () C:\Windows\system32\SStudio.dll
2015-01-15 16:38 - 2014-04-10 12:19 - 02101848 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib64.dll
2015-01-15 16:38 - 2014-03-06 16:35 - 01959128 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2015-01-15 16:38 - 2014-03-05 05:11 - 01048824 _____ (SRS Labs, Inc.) C:\Windows\system32\slcnt64.dll
2015-01-15 16:38 - 2014-03-05 05:11 - 00889592 _____ (DTS, Inc.) C:\Windows\system32\sl3apo64.dll
2015-01-15 16:38 - 2014-03-05 05:11 - 00724728 _____ (DTS, Inc.) C:\Windows\system32\sltech64.dll
2015-01-15 16:38 - 2014-03-05 05:11 - 00246008 _____ (TODO: <Company name>) C:\Windows\system32\slprp64.dll
2015-01-15 16:38 - 2014-02-27 20:02 - 02162992 _____ (Yamaha Corporation) C:\Windows\system32\YamahaAE.dll
2015-01-15 16:38 - 2014-02-06 11:28 - 05804772 _____ () C:\Windows\system32\Drivers\rtvienna.dat
2015-01-15 16:38 - 2014-01-28 11:48 - 01286872 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2015-01-15 16:38 - 2013-10-11 11:31 - 00947760 _____ (Sony Corporation) C:\Windows\system32\SFSS_APO.dll
2015-01-15 16:38 - 2013-06-25 12:47 - 00871856 _____ (TOSHIBA Corporation) C:\Windows\system32\tossaeapo64.dll
2015-01-15 16:38 - 2013-06-25 12:47 - 00162224 _____ (TOSHIBA Corporation) C:\Windows\system32\toseaeapo64.dll
2015-01-15 16:38 - 2013-06-25 12:46 - 00582056 _____ (TOSHIBA Corporation) C:\Windows\system32\tosasfapo64.dll
2015-01-15 16:38 - 2012-01-30 11:43 - 00836544 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo264.dll
2015-01-15 16:38 - 2012-01-10 10:20 - 00065944 _____ (TOSHIBA CORPORATION.) C:\Windows\system32\tepeqapo64.dll
2015-01-15 16:38 - 2011-12-20 15:32 - 00331880 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2015-01-15 16:38 - 2011-11-22 16:28 - 00014952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll
2015-01-15 16:38 - 2011-09-02 14:21 - 00221024 _____ (Synopsys, Inc.) C:\Windows\system32\SFNHK64.dll
2015-01-15 16:38 - 2011-09-02 14:21 - 00081248 _____ (Synopsys, Inc.) C:\Windows\system32\SFCOM64.dll
2015-01-15 16:38 - 2011-09-02 14:21 - 00078688 _____ (Synopsys, Inc.) C:\Windows\system32\SFAPO64.dll
2015-01-15 16:38 - 2011-03-17 12:17 - 01361336 _____ (TOSHIBA Corporation) C:\Windows\system32\tosade.dll
2015-01-15 16:38 - 2011-03-07 17:11 - 00148416 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo.dll
2015-01-15 16:38 - 2010-11-08 07:31 - 00375128 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
2015-01-15 16:38 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
2015-01-15 16:38 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
2015-01-15 16:38 - 2010-11-08 07:31 - 00204120 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
2015-01-15 16:38 - 2010-11-08 07:31 - 00101208 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
2015-01-15 16:38 - 2010-11-08 07:31 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
2015-01-15 16:38 - 2010-11-03 18:30 - 00149608 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2015-01-15 16:38 - 2010-07-22 16:48 - 00074064 _____ (Virage Logic Corporation / Sonic Focus) C:\Windows\SysWOW64\SFCOM.dll
2015-01-15 16:38 - 2009-11-24 09:55 - 00518896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll
2015-01-15 16:38 - 2009-11-24 09:55 - 00211184 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll
2015-01-15 16:38 - 2009-11-24 09:55 - 00198896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll
2015-01-15 16:38 - 2009-11-24 09:55 - 00155888 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll
2015-01-15 16:37 - 2014-05-12 20:11 - 60636160 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes64.dat
2015-01-15 16:37 - 2014-05-02 11:19 - 00033592 _____ () C:\Windows\system32\audioLibVc.dll
2015-01-15 16:37 - 2014-04-30 11:34 - 00948952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2015-01-15 16:37 - 2014-04-17 17:42 - 01317976 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO6064.dll
2015-01-15 16:37 - 2014-04-17 17:42 - 01168472 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO5064.dll
2015-01-15 16:37 - 2014-04-17 17:42 - 01136728 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO4064.dll
2015-01-15 16:37 - 2014-04-10 12:20 - 12894808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO3064.dll
2015-01-15 16:37 - 2014-04-10 12:20 - 01934424 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek264.dll
2015-01-15 16:37 - 2014-04-10 12:19 - 28343384 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioVnA64.dll
2015-01-15 16:37 - 2014-04-10 12:19 - 14863448 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek64.dll
2015-01-15 16:37 - 2014-04-10 12:19 - 03959384 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioVnN64.dll
2015-01-15 16:37 - 2014-04-10 12:19 - 02041432 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ64.dll
2015-01-15 16:37 - 2014-04-10 12:19 - 01063512 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell64.dll
2015-01-15 16:37 - 2014-04-10 12:19 - 00900696 _____ (Waves Audio Ltd.) C:\Windows\SysWOW64\MaxxAudioAPOShell.dll
2015-01-15 16:37 - 2014-04-09 16:39 - 00942384 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICAPOSettingsIPC.dll
2015-01-15 16:37 - 2014-04-09 16:38 - 05751048 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICAPOlfx.dll
2015-01-15 16:37 - 2014-04-07 16:03 - 06218072 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64A.dll
2015-01-15 16:37 - 2014-04-07 16:03 - 01939800 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64A.dll
2015-01-15 16:37 - 2014-04-07 16:03 - 00315736 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64A.dll
2015-01-15 16:37 - 2014-04-07 16:03 - 00261464 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64.dll
2015-01-15 16:37 - 2014-03-21 14:17 - 00291488 _____ (ICEpower a/s) C:\Windows\system32\ICEsoundAPO64.dll
2015-01-15 16:37 - 2014-03-19 19:19 - 00956504 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO2064.dll
2015-01-15 16:37 - 2014-02-18 17:04 - 02770976 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2015-01-15 16:37 - 2014-01-31 17:27 - 01313904 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxSpeechAPO64.dll
2015-01-15 16:37 - 2013-10-16 03:43 - 00209096 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2015-01-15 16:37 - 2013-10-11 12:47 - 00113576 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2015-01-15 16:37 - 2013-10-07 00:26 - 00501184 _____ (DTS) C:\Windows\system32\DTSU2PLFX64.dll
2015-01-15 16:37 - 2013-10-07 00:26 - 00487360 _____ (DTS) C:\Windows\system32\DTSU2PGFX64.dll
2015-01-15 16:37 - 2013-10-07 00:26 - 00415680 _____ (DTS) C:\Windows\system32\DTSU2PREC64.dll
2015-01-15 16:37 - 2013-08-14 15:36 - 00662784 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVolumeSDAPO.dll
2015-01-15 16:37 - 2013-08-14 15:35 - 00663296 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll
2015-01-15 16:37 - 2013-06-21 11:01 - 00109848 _____ () C:\Windows\system32\AcpiServiceVnA64.dll
2015-01-15 16:37 - 2013-04-03 14:13 - 00906800 _____ (Sony Corporation) C:\Windows\system32\MISS_APO.dll
2015-01-15 16:37 - 2012-08-31 19:18 - 07164176 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP64A.dll
2015-01-15 16:37 - 2012-08-31 19:17 - 00434960 _____ (Dolby Laboratories) C:\Windows\system32\R4EED64A.dll
2015-01-15 16:37 - 2012-08-31 19:17 - 00141584 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL64A.dll
2015-01-15 16:37 - 2012-08-31 19:17 - 00124176 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA64A.dll
2015-01-15 16:37 - 2012-08-31 19:17 - 00075024 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG64A.dll
2015-01-15 16:37 - 2012-03-08 11:47 - 00108640 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll
2015-01-15 16:37 - 2011-08-23 17:00 - 00603984 _____ (Knowles Acoustics ) C:\Windows\system32\KAAPORT64.dll
2015-01-15 16:37 - 2011-05-31 09:42 - 01756264 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL64.dll
2015-01-15 16:37 - 2011-05-31 09:42 - 01568360 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2015-01-15 16:37 - 2011-05-31 09:42 - 01486952 _____ (DTS) C:\Windows\system32\DTSBoostDLL64.dll
2015-01-15 16:37 - 2011-05-31 09:42 - 00728680 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL64.dll
2015-01-15 16:37 - 2011-05-31 09:42 - 00712296 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL64.dll
2015-01-15 16:37 - 2011-05-31 09:42 - 00693352 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL64.dll
2015-01-15 16:37 - 2011-05-31 09:42 - 00491112 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL64.dll
2015-01-15 16:37 - 2011-05-31 09:42 - 00432744 _____ (DTS) C:\Windows\system32\DTSLimiterDLL64.dll
2015-01-15 16:37 - 2011-05-31 09:42 - 00428648 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL64.dll
2015-01-15 16:37 - 2011-05-31 09:42 - 00242792 _____ (DTS) C:\Windows\system32\DTSLFXAPO64.dll
2015-01-15 16:37 - 2011-05-31 09:42 - 00242792 _____ (DTS) C:\Windows\system32\DTSGFXAPO64.dll
2015-01-15 16:37 - 2011-05-31 09:42 - 00241768 _____ (DTS) C:\Windows\system32\DTSGFXAPONS64.dll
2015-01-15 16:37 - 2010-09-27 09:34 - 00318808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2015-01-15 14:29 - 2014-12-12 06:35 - 05553592 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-01-15 14:29 - 2014-12-12 06:31 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-01-15 14:29 - 2014-12-12 06:31 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-01-15 14:29 - 2014-12-12 06:31 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-01-15 14:29 - 2014-12-12 06:11 - 03971512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2015-01-15 14:29 - 2014-12-12 06:11 - 03916728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2015-01-15 14:29 - 2014-12-12 06:07 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2015-01-15 14:12 - 2014-12-19 04:06 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2015-01-15 14:12 - 2014-12-19 02:46 - 00141312 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2015-01-15 14:12 - 2014-12-11 18:47 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2015-01-15 14:12 - 2014-12-06 05:17 - 00303616 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2015-01-15 14:12 - 2014-12-06 04:50 - 00156672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncsi.dll
2015-01-15 14:12 - 2014-12-06 04:50 - 00052224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlaapi.dll
2015-01-15 14:12 - 2012-06-01 06:39 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\wamregps.dll
2015-01-15 14:12 - 2012-06-01 06:36 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\iisRtl.dll
2015-01-15 14:12 - 2012-06-01 06:36 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\iisrstap.dll
2015-01-15 14:12 - 2012-06-01 06:35 - 00060928 _____ (Microsoft Corporation) C:\Windows\system32\ahadmin.dll
2015-01-15 14:12 - 2012-06-01 06:34 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\admwprox.dll
2015-01-15 14:12 - 2012-06-01 06:33 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\iisreset.exe
2015-01-15 14:12 - 2012-06-01 05:40 - 00010752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wamregps.dll
2015-01-15 14:12 - 2012-06-01 05:37 - 00154624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iisRtl.dll
2015-01-15 14:12 - 2012-06-01 05:37 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iisrstap.dll
2015-01-15 14:12 - 2012-06-01 05:35 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\admwprox.dll
2015-01-15 14:12 - 2012-06-01 05:35 - 00026624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ahadmin.dll
2015-01-15 14:12 - 2012-06-01 05:34 - 00015360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iisreset.exe
2015-01-15 13:42 - 2015-01-15 13:42 - 00001684 _____ () C:\Windows\Tasks\DRDBCBP.job
2015-01-15 13:42 - 2015-01-15 13:42 - 00001340 _____ () C:\Windows\Tasks\IVZWKIE.job
2015-01-15 13:40 - 2015-01-15 13:40 - 00000000 ____D () C:\ProgramData\Lavasoft
2015-01-15 11:21 - 2015-01-15 11:21 - 00001047 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Quake Live.lnk
2015-01-15 11:21 - 2015-01-15 11:21 - 00000000 ____D () C:\Program Files (x86)\Quake Live
2015-01-15 10:30 - 2015-01-15 10:30 - 00000000 ____D () C:\inetpub
2015-01-15 10:17 - 2015-01-15 10:17 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dragon Age Inquisition
2015-01-15 08:23 - 2015-01-15 08:23 - 00000000 ____D () C:\Windows\SysWOW64\directx
2015-01-15 05:15 - 2015-01-15 05:15 - 00000000 ____D () C:\Windows\pss
2015-01-15 05:14 - 2015-01-20 18:39 - 00580246 _____ () C:\Windows\WindowsUpdate.log
2015-01-11 00:57 - 2015-01-15 15:30 - 00000000 ____D () C:\Users\hokaj\AppData\Local\Glyph
2015-01-11 00:57 - 2015-01-11 00:57 - 00000000 ____D () C:\ProgramData\Glyph
2015-01-08 00:30 - 2015-01-08 00:30 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2015-01-08 00:30 - 2015-01-08 00:30 - 00000000 ____D () C:\ProgramData\Sun
2015-01-08 00:30 - 2015-01-08 00:30 - 00000000 ____D () C:\ProgramData\Oracle
2015-01-08 00:30 - 2015-01-08 00:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-01-08 00:30 - 2015-01-08 00:30 - 00000000 ____D () C:\Program Files (x86)\Java
2015-01-07 20:36 - 2015-01-07 20:37 - 00000000 ____D () C:\Users\hokaj\AppData\Local\Overwolf
2015-01-05 20:45 - 2015-01-05 20:45 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BitComet
2015-01-04 22:37 - 2015-01-04 22:37 - 00000936 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\paint.net.lnk
2015-01-04 22:36 - 2015-01-04 22:42 - 00000000 ____D () C:\Users\hokaj\AppData\Local\paint.net
2015-01-04 01:18 - 2015-01-04 01:18 - 00002772 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
2015-01-04 01:18 - 2015-01-04 01:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2015-01-04 01:18 - 2015-01-04 01:18 - 00000000 ____D () C:\Program Files\CCleaner
2015-01-04 00:06 - 2015-01-15 11:19 - 00000000 ____D () C:\Users\hokaj\Documents\TrackMania
2015-01-04 00:06 - 2015-01-08 04:02 - 00000000 ____D () C:\ProgramData\TrackMania
2015-01-03 15:47 - 2015-01-03 23:17 - 00000000 ____D () C:\Users\hokaj\Documents\Bandicam
2015-01-03 15:47 - 2015-01-03 15:47 - 00000000 ____D () C:\Users\hokaj\AppData\Roaming\BANDISOFT
2015-01-01 18:06 - 2015-01-03 15:47 - 00000000 ____D () C:\Users\hokaj\AppData\Roaming\NVIDIA
2015-01-01 17:15 - 2015-01-01 17:15 - 00000000 ____D () C:\Users\hokaj\AppData\Local\Launcher
2015-01-01 17:15 - 2015-01-01 17:15 - 00000000 ____D () C:\Users\hokaj\AppData\Local\id Software
2014-12-27 12:47 - 2015-01-15 16:51 - 00000000 ____D () C:\Users\hokaj\Desktop\hry
2014-12-27 12:47 - 2015-01-15 15:33 - 00000000 ____D () C:\Users\hokaj\Desktop\programy
2014-12-26 13:01 - 2014-12-26 13:01 - 00000000 ___HD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup (Disabled by Starter)
2014-12-26 13:00 - 2014-12-26 13:00 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CodeStuff Starter
2014-12-26 03:21 - 2014-12-26 03:21 - 00000000 ____D () C:\Users\hokaj\AppData\Roaming\Steam
2014-12-24 21:32 - 2014-12-25 23:41 - 00000000 ____D () C:\Users\hokaj\AppData\Roaming\Origin
2014-12-24 21:32 - 2014-12-24 21:35 - 00000000 ____D () C:\Users\hokaj\AppData\Local\Origin
2014-12-24 21:31 - 2015-01-15 09:25 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
2014-12-24 21:14 - 2014-12-24 21:14 - 00000000 ____D () C:\Program Files (x86)\AGEIA Technologies
2014-12-24 21:14 - 2014-12-13 01:47 - 00620176 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2014-12-24 21:11 - 2015-01-19 13:16 - 00000000 ____D () C:\Users\hokaj\Desktop\serialy
2014-12-24 21:11 - 2014-12-13 11:08 - 32099472 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2014-12-24 21:11 - 2014-12-13 11:08 - 25460552 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2014-12-24 21:11 - 2014-12-13 11:08 - 24764232 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2014-12-24 21:11 - 2014-12-13 11:08 - 20465808 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2014-12-24 21:11 - 2014-12-13 11:08 - 17264312 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2014-12-24 21:11 - 2014-12-13 11:08 - 16040184 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2014-12-24 21:11 - 2014-12-13 11:08 - 13288360 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2014-12-24 21:11 - 2014-12-13 11:08 - 13202520 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2014-12-24 21:11 - 2014-12-13 11:08 - 10770120 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2014-12-24 21:11 - 2014-12-13 11:08 - 10710160 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2014-12-24 21:11 - 2014-12-13 11:08 - 10345280 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2014-12-24 21:11 - 2014-12-13 11:08 - 03610440 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2014-12-24 21:11 - 2014-12-13 11:08 - 03248968 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2014-12-24 21:11 - 2014-12-13 11:08 - 02897824 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2014-12-24 21:11 - 2014-12-13 11:08 - 01895056 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6434709.dll
2014-12-24 21:11 - 2014-12-13 11:08 - 01556624 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6434709.dll
2014-12-24 21:11 - 2014-12-13 11:08 - 00968336 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2014-12-24 21:11 - 2014-12-13 11:08 - 00942400 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2014-12-24 21:11 - 2014-12-13 11:08 - 00928072 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2014-12-24 21:11 - 2014-12-13 11:08 - 00906560 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2014-12-24 21:11 - 2014-12-13 11:08 - 00876976 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2014-12-24 21:11 - 2014-12-13 11:08 - 00496272 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2014-12-24 21:11 - 2014-12-13 11:08 - 00399688 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2014-12-24 21:11 - 2014-12-13 11:08 - 00391488 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2014-12-24 21:11 - 2014-12-13 11:08 - 00353224 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2014-12-24 21:11 - 2014-12-13 11:08 - 00346944 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2014-12-24 21:11 - 2014-12-13 11:08 - 00306328 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2014-12-24 21:11 - 2014-12-13 11:08 - 00178632 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2014-12-24 21:11 - 2014-12-13 11:08 - 00165760 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2014-12-24 21:11 - 2014-10-09 18:02 - 00195728 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2014-12-24 21:11 - 2014-10-09 18:02 - 00030536 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2014-12-24 21:11 - 2014-10-09 08:17 - 01540240 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco64.dll
2014-12-24 08:19 - 2015-01-15 14:03 - 00129752 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-12-24 08:19 - 2014-12-24 08:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-12-24 08:19 - 2014-12-24 08:19 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-12-24 08:19 - 2014-12-24 08:19 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-12-24 08:19 - 2014-11-21 06:14 - 00093400 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-12-24 08:19 - 2014-11-21 06:14 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-12-24 08:19 - 2014-11-21 06:14 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-12-23 15:44 - 2015-01-15 10:55 - 00000000 ____D () C:\ProgramData\Avira
2014-12-23 15:43 - 2014-12-23 16:27 - 00000000 ____D () C:\OETemp
2014-12-23 15:28 - 2015-01-15 14:00 - 00000000 ____D () C:\AdwCleaner
2014-12-23 09:22 - 2014-12-23 15:29 - 00000000 ____D () C:\Windows\system32\log
2014-12-23 09:12 - 2015-01-03 17:16 - 00007597 _____ () C:\Users\hokaj\AppData\Local\Resmon.ResmonCfg
2014-12-23 05:09 - 2014-12-23 05:09 - 00000000 _____ () C:\Users\hokaj\Desktop\596452463.txt
2014-12-23 02:49 - 2014-12-23 02:49 - 00000000 ____D () C:\Program Files (x86)\Microsoft ASP.NET
2014-12-23 00:22 - 2014-12-23 00:23 - 00000000 ____D () C:\Windows\SysWOW64\DCS
2014-12-22 16:34 - 2014-12-22 16:43 - 00000000 ____D () C:\Users\hokaj\Documents\Assassin's Creed Unity
2014-12-22 16:34 - 2014-12-22 16:34 - 00000000 ____D () C:\ProgramData\Orbit
2014-12-22 15:23 - 2014-12-22 15:45 - 00000000 ____D () C:\Users\hokaj\AppData\Roaming\BitComet
2014-12-22 15:23 - 2014-12-22 15:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BitComet (64-bit)
2014-12-21 21:38 - 2015-01-17 03:34 - 00000000 ____D () C:\KMPlayer
2014-12-21 19:05 - 2014-12-21 19:05 - 00000000 ____D () C:\Users\hokaj\AppData\Local\DriverToolkit
2014-12-21 09:37 - 2015-01-04 01:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Deseti prsty

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-01-20 18:42 - 2014-12-17 01:29 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-01-20 17:25 - 2014-12-18 03:43 - 00000000 ____D () C:\Users\hokaj\Documents\My Games
2015-01-20 17:25 - 2009-07-14 06:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-01-20 15:46 - 2014-12-17 20:55 - 00000000 ____D () C:\Users\hokaj\AppData\Roaming\TS3Client
2015-01-20 14:45 - 2009-07-14 05:45 - 00016976 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-01-20 14:45 - 2009-07-14 05:45 - 00016976 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-01-20 14:43 - 2011-03-15 01:52 - 00680278 _____ () C:\Windows\system32\perfh005.dat
2015-01-20 14:43 - 2011-03-15 01:52 - 00145278 _____ () C:\Windows\system32\perfc005.dat
2015-01-20 14:43 - 2009-07-14 06:13 - 01615314 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-01-20 14:38 - 2014-12-17 00:45 - 00000000 ____D () C:\ProgramData\NVIDIA
2015-01-20 14:38 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-01-20 04:55 - 2014-12-20 21:57 - 00000000 ____D () C:\Users\hokaj\AppData\Roaming\AIMP3
2015-01-19 21:15 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\rescache
2015-01-19 14:29 - 2014-12-17 23:41 - 00000000 ____D () C:\ProgramData\Origin
2015-01-19 06:20 - 2014-12-18 01:40 - 00000000 ____D () C:\Users\hokaj\AppData\Roaming\DAEMON Tools Lite
2015-01-19 06:13 - 2014-12-18 01:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
2015-01-16 15:05 - 2014-12-19 22:20 - 00000000 ____D () C:\Users\hokaj\Desktop\filmy
2015-01-15 16:39 - 2011-06-09 18:32 - 00000000 ___HD () C:\Program Files (x86)\Temp
2015-01-15 16:37 - 2011-06-09 18:32 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2015-01-15 16:07 - 2011-06-09 18:32 - 00000000 ____D () C:\Program Files (x86)\Realtek
2015-01-15 15:30 - 2014-12-18 03:35 - 00000000 ____D () C:\Program Files (x86)\VideoLAN
2015-01-15 14:35 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\inetsrv
2015-01-15 14:35 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\inetsrv
2015-01-15 14:33 - 2014-12-17 03:29 - 00000000 ____D () C:\Windows\system32\MRT
2015-01-15 14:31 - 2014-12-17 03:29 - 113365784 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-01-15 14:19 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system
2015-01-15 14:00 - 2014-12-17 00:32 - 00000649 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2015-01-15 13:55 - 2009-07-14 03:34 - 00000505 _____ () C:\Windows\win.ini
2015-01-15 11:08 - 2014-12-17 00:21 - 00000000 ____D () C:\Users\hokaj\AppData\Local\VirtualStore
2015-01-15 10:55 - 2014-12-20 20:56 - 00000000 ____D () C:\ProgramData\Package Cache
2015-01-15 10:30 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2015-01-15 10:30 - 2009-07-14 04:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared
2015-01-15 10:22 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\NDF
2015-01-15 10:18 - 2014-12-17 23:39 - 00000000 ____D () C:\ProgramData\Electronic Arts
2015-01-15 05:56 - 2014-12-17 00:32 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2015-01-14 03:42 - 2014-12-17 01:29 - 00701616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-01-14 03:42 - 2014-12-17 01:29 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-01-14 03:42 - 2014-12-17 01:29 - 00003852 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-01-13 00:52 - 2011-06-09 18:40 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader X.lnk
2015-01-12 15:08 - 2011-06-09 18:40 - 00000000 ____D () C:\ProgramData\Adobe
2015-01-12 15:07 - 2014-12-17 01:29 - 00000000 ____D () C:\Users\hokaj\AppData\Local\Adobe
2015-01-12 15:07 - 2014-12-17 00:31 - 00000000 ____D () C:\Users\hokaj\AppData\Roaming\Adobe
2015-01-07 21:40 - 2014-12-17 00:50 - 00000000 ____D () C:\Users\hokaj\AppData\Local\NVIDIA Corporation
2015-01-07 21:40 - 2014-12-17 00:45 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2015-01-07 21:40 - 2014-12-17 00:44 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation
2015-01-07 21:40 - 2014-12-17 00:44 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2015-01-07 21:40 - 2014-12-17 00:38 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2015-01-06 04:36 - 2010-11-21 04:27 - 00298120 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2015-01-04 01:24 - 2011-03-15 01:53 - 00000000 ____D () C:\Windows\Panther
2015-01-04 01:20 - 2014-12-18 23:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-01-03 23:52 - 2014-12-18 04:08 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2015-01-03 17:20 - 2014-12-19 22:02 - 00000000 __SHD () C:\Windows\SysWOW64\AI_RecycleBin
2014-12-26 12:58 - 2014-12-19 22:20 - 00001912 _____ () C:\Windows\epplauncher.mif
2014-12-26 03:16 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\IME
2014-12-23 19:25 - 2014-12-18 03:33 - 00000000 ____D () C:\Users\hokaj\AppData\Roaming\DAT
2014-12-23 16:53 - 2014-12-18 03:46 - 00000000 ____D () C:\ProgramData\AVG2015
2014-12-23 16:53 - 2014-12-18 03:40 - 00000000 ____D () C:\ProgramData\MFAData
2014-12-23 13:48 - 2014-12-20 09:36 - 00000000 ____D () C:\Windows\Minidump
2014-12-23 10:35 - 2009-07-14 05:45 - 00269544 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-12-23 10:31 - 2014-12-17 00:21 - 00000000 ____D () C:\Users\hokaj
2014-12-23 10:31 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\registration
2014-12-23 09:23 - 2014-12-17 00:50 - 00058016 _____ () C:\Users\hokaj\AppData\Local\GDIPFONTCACHEV1.DAT
2014-12-23 06:26 - 2014-12-18 03:35 - 00000000 ____D () C:\Users\hokaj\AppData\Roaming\Seznam.cz
2014-12-22 15:22 - 2014-12-17 00:59 - 00000000 ____D () C:\Users\hokaj\AppData\Roaming\BitTorrent
2014-12-21 21:35 - 2014-12-20 00:55 - 00000000 ____D () C:\Users\hokaj\AppData\Roaming\vlc
2014-12-21 19:51 - 2014-12-20 20:57 - 00018960 _____ (Logitech, Inc.) C:\Windows\system32\Drivers\LNonPnP.sys

==================== Files in the root of some directories =======
2014-09-01 09:18 - 2014-09-01 09:18 - 0001248 _____ () C:\Users\hokaj\AppData\Roaming\DRDBCBP
2014-09-01 09:18 - 2014-09-01 09:18 - 0002086 _____ () C:\Users\hokaj\AppData\Roaming\IVZWKIE
2015-01-20 18:37 - 2015-01-20 18:41 - 0029696 _____ () C:\Users\hokaj\AppData\Local\MSGBOX.EXE
2014-12-23 09:12 - 2015-01-03 17:16 - 0007597 _____ () C:\Users\hokaj\AppData\Local\Resmon.ResmonCfg
2015-01-15 16:38 - 2015-01-15 16:38 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Some content of TEMP:
====================
C:\Users\hokaj\AppData\Local\Temp\bitool.dll


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-12-26 04:35

==================== End Of Log ============================
Přílohy
Addition.rar
(9.03 KiB) Staženo 129 x
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119404
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: sekání

#9 Příspěvek od Rudy »

Otevřte poznámkový blok a zkopírujte do něj:
Start
HKU\S-1-5-21-804004432-891466739-263396637-1000\...\MountPoints2: {b0349067-864d-11e4-a364-f46d049e92bb} - F:\Setup.exe
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
CHR dev: Chrome dev build detected! <======= ATTENTION
C:\ProgramData\DP45977C.lfl
C:\Windows\Tasks\DRDBCBP.job
C:\Windows\Tasks\IVZWKIE.job
C:\Users\hokaj\AppData\Roaming\DRDBCBP
C:\Users\hokaj\AppData\Roaming\IVZWKIE
C:\Users\hokaj\AppData\Local\MSGBOX.EXE
C:\Users\hokaj\AppData\Local\Resmon.ResmonCfg
C:\Users\hokaj\AppData\Local\Temp
Task: {4276ED7C-696A-4D27-9EF0-B905019327CF} - System32\Tasks\steamwebhelper_killer => TASKKILL <==== ATTENTION
End
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
hOkaj
Návštěvník
Návštěvník
Příspěvky: 59
Registrován: 18 kvě 2014 22:40

Re: sekání

#10 Příspěvek od hOkaj »

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 19-01-2015
Ran by hokaj at 2015-01-20 20:09:22 Run:1
Running from C:\Users\hokaj\Desktop
Loaded Profiles: hokaj (Available profiles: hokaj)
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
Start
HKU\S-1-5-21-804004432-891466739-263396637-1000\...\MountPoints2: {b0349067-864d-11e4-a364-f46d049e92bb} - F:\Setup.exe
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
CHR dev: Chrome dev build detected! <======= ATTENTION
C:\ProgramData\DP45977C.lfl
C:\Windows\Tasks\DRDBCBP.job
C:\Windows\Tasks\IVZWKIE.job
C:\Users\hokaj\AppData\Roaming\DRDBCBP
C:\Users\hokaj\AppData\Roaming\IVZWKIE
C:\Users\hokaj\AppData\Local\MSGBOX.EXE
C:\Users\hokaj\AppData\Local\Resmon.ResmonCfg
C:\Users\hokaj\AppData\Local\Temp
Task: {4276ED7C-696A-4D27-9EF0-B905019327CF} - System32\Tasks\steamwebhelper_killer => TASKKILL <==== ATTENTION
End
*****************

"HKU\S-1-5-21-804004432-891466739-263396637-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{b0349067-864d-11e4-a364-f46d049e92bb}" => Key deleted successfully.
HKCR\CLSID\{b0349067-864d-11e4-a364-f46d049e92bb} => Key not found.
"HKLM\SOFTWARE\Policies\Google" => Key deleted successfully.
HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
"HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE" => Key deleted successfully.
"HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE" => Key deleted successfully.
CHR dev: Chrome dev build detected! <======= ATTENTION => Error: No automatic fix found for this entry.
C:\ProgramData\DP45977C.lfl => Moved successfully.
C:\Windows\Tasks\DRDBCBP.job => Moved successfully.
C:\Windows\Tasks\IVZWKIE.job => Moved successfully.
C:\Users\hokaj\AppData\Roaming\DRDBCBP => Moved successfully.
C:\Users\hokaj\AppData\Roaming\IVZWKIE => Moved successfully.
"C:\Users\hokaj\AppData\Local\MSGBOX.EXE" => File/Directory not found.
C:\Users\hokaj\AppData\Local\Resmon.ResmonCfg => Moved successfully.

"C:\Users\hokaj\AppData\Local\Temp" directory move:

C:\Users\hokaj\AppData\Local\Temp\binsis142.xml => Moved successfully.
C:\Users\hokaj\AppData\Local\Temp\binsischeck654.xml => Moved successfully.
C:\Users\hokaj\AppData\Local\Temp\bitool.dll => Moved successfully.
C:\Users\hokaj\AppData\Local\Temp\dd_vcredistMSI204E.txt => Moved successfully.
C:\Users\hokaj\AppData\Local\Temp\dd_vcredistUI204E.txt => Moved successfully.
C:\Users\hokaj\AppData\Local\Temp\DT.gadget.~0000 => Moved successfully.
Could not move "C:\Users\hokaj\AppData\Local\Temp\FXSAPIDebugLogFile.txt" => Scheduled to move on reboot.
C:\Users\hokaj\AppData\Local\Temp\Microsoft Visual C++ 2010 x64 Redistributable Setup_20150120_172503442.html => Moved successfully.
C:\Users\hokaj\AppData\Local\Temp\Microsoft Visual C++ 2010 x86 Redistributable Setup_20150119_152825177.html => Moved successfully.
C:\Users\hokaj\AppData\Local\Temp\nsm2A7E.tmp => Moved successfully.
C:\Users\hokaj\AppData\Local\Temp\snaAA4.tmp => Moved successfully.
C:\Users\hokaj\AppData\Local\Temp\WER9294.tmp.WERInternalMetadata.xml => Moved successfully.
C:\Users\hokaj\AppData\Local\Temp\_4FED.tmp => Moved successfully.
C:\Users\hokaj\AppData\Local\Temp\_E28B.tmp => Moved successfully.
C:\Users\hokaj\AppData\Local\Temp\_E96E.tmp => Moved successfully.
C:\Users\hokaj\AppData\Local\Temp\~33.bat => Moved successfully.
C:\Users\hokaj\AppData\Local\Temp\~33.tmp => Moved successfully.
C:\Users\hokaj\AppData\Local\Temp\~513.tmp => Moved successfully.
C:\Users\hokaj\AppData\Local\Temp\~A9E.bat => Moved successfully.
C:\Users\hokaj\AppData\Local\Temp\~A9E.tmp => Moved successfully.
C:\Users\hokaj\AppData\Local\Temp\NVIDIA Corporation\NV_Cache\d7d3d739e92c4c369646f953c2baf35f_fce8395f8fd8a84b_15f74c7777689be5_0_0.bin => Moved successfully.
C:\Users\hokaj\AppData\Local\Temp\NVIDIA Corporation\NV_Cache\d7d3d739e92c4c369646f953c2baf35f_fce8395f8fd8a84b_15f74c7777689be5_0_0.toc => Moved successfully.
C:\Users\hokaj\AppData\Local\Temp\NVIDIA Corporation\NV_Cache\d7d3d739e92c4c369646f953c2baf35f_fce8395f8fd8a84b_15f74c7777689be5_0_1.bin => Moved successfully.
C:\Users\hokaj\AppData\Local\Temp\NVIDIA Corporation\NV_Cache\d7d3d739e92c4c369646f953c2baf35f_fce8395f8fd8a84b_15f74c7777689be5_1_0.bin => Moved successfully.
C:\Users\hokaj\AppData\Local\Temp\NVIDIA Corporation\NV_Cache\d7d3d739e92c4c369646f953c2baf35f_fce8395f8fd8a84b_15f74c7777689be5_1_0.toc => Moved successfully.
C:\Users\hokaj\AppData\Local\Temp\NVIDIA Corporation\NV_Cache\d7d3d739e92c4c369646f953c2baf35f_fce8395f8fd8a84b_7d471b9a49f37860_0_0.bin => Moved successfully.
C:\Users\hokaj\AppData\Local\Temp\NVIDIA Corporation\NV_Cache\d7d3d739e92c4c369646f953c2baf35f_fce8395f8fd8a84b_7d471b9a49f37860_0_0.toc => Moved successfully.
C:\Users\hokaj\AppData\Local\Temp\NVIDIA Corporation\NV_Cache\d7d3d739e92c4c369646f953c2baf35f_fce8395f8fd8a84b_7d471b9a49f37860_1_0.bin => Moved successfully.
C:\Users\hokaj\AppData\Local\Temp\NVIDIA Corporation\NV_Cache\d7d3d739e92c4c369646f953c2baf35f_fce8395f8fd8a84b_7d471b9a49f37860_1_0.toc => Moved successfully.
C:\Users\hokaj\AppData\Local\Temp\NVIDIA Corporation\NV_Cache\d7d3d739e92c4c369646f953c2baf35f_fce8395f8fd8a84b_7d471b9a49f37860_1_1.bin => Moved successfully.
C:\Users\hokaj\AppData\Local\Temp\NVIDIA Corporation\NV_Cache\d7d3d739e92c4c369646f953c2baf35f_fce8395f8fd8a84b_7d471b9a49f37860_2_0.bin => Moved successfully.
C:\Users\hokaj\AppData\Local\Temp\NVIDIA Corporation\NV_Cache\d7d3d739e92c4c369646f953c2baf35f_fce8395f8fd8a84b_7d471b9a49f37860_2_0.toc => Moved successfully.
C:\Users\hokaj\AppData\Local\Temp\NVIDIA Corporation\NV_Cache\d7d3d739e92c4c369646f953c2baf35f_fce8395f8fd8a84b_7d471b9a49f37860_2_1.bin => Moved successfully.
C:\Users\hokaj\AppData\Local\Temp\NVIDIA Corporation\NV_Cache\d7d3d739e92c4c369646f953c2baf35f_fce8395f8fd8a84b_8e912777872ba4e3_0_0.bin => Moved successfully.
C:\Users\hokaj\AppData\Local\Temp\NVIDIA Corporation\NV_Cache\d7d3d739e92c4c369646f953c2baf35f_fce8395f8fd8a84b_8e912777872ba4e3_0_0.toc => Moved successfully.
C:\Users\hokaj\AppData\Local\Temp\NVIDIA Corporation\NV_Cache\d7d3d739e92c4c369646f953c2baf35f_fce8395f8fd8a84b_8e912777872ba4e3_0_1.bin => Moved successfully.
C:\Users\hokaj\AppData\Local\Temp\NVIDIA Corporation\NV_Cache\eb36b8051af6133d3ee4e767d98e7437_fce8395f8fd8a84b_528dde8599747d1c_0_0.bin => Moved successfully.
C:\Users\hokaj\AppData\Local\Temp\NVIDIA Corporation\NV_Cache\eb36b8051af6133d3ee4e767d98e7437_fce8395f8fd8a84b_528dde8599747d1c_0_0.toc => Moved successfully.
C:\Users\hokaj\AppData\Local\Temp\NVIDIA Corporation\NV_Cache\eb36b8051af6133d3ee4e767d98e7437_fce8395f8fd8a84b_528dde8599747d1c_0_1.bin => Moved successfully.
C:\Users\hokaj\AppData\Local\Temp\NVIDIA Corporation\NV_Cache\eb36b8051af6133d3ee4e767d98e7437_fce8395f8fd8a84b_528dde8599747d1c_0_1.toc => Moved successfully.
C:\Users\hokaj\AppData\Local\Temp\NVIDIA Corporation\NV_Cache\eb36b8051af6133d3ee4e767d98e7437_fce8395f8fd8a84b_528dde8599747d1c_0_2.bin => Moved successfully.
C:\Users\hokaj\AppData\Local\Temp\NVIDIA Corporation\NV_Cache\eb36b8051af6133d3ee4e767d98e7437_fce8395f8fd8a84b_528dde8599747d1c_0_2.toc => Moved successfully.
C:\Users\hokaj\AppData\Local\Temp\NVIDIA Corporation\NV_Cache\eb36b8051af6133d3ee4e767d98e7437_fce8395f8fd8a84b_528dde8599747d1c_0_3.bin => Moved successfully.
C:\Users\hokaj\AppData\Local\Temp\NVIDIA Corporation\NV_Cache\eb36b8051af6133d3ee4e767d98e7437_fce8395f8fd8a84b_528dde8599747d1c_0_4.bin => Moved successfully.
C:\Users\hokaj\AppData\Local\Temp\NVIDIA Corporation\NV_Cache\eb36b8051af6133d3ee4e767d98e7437_fce8395f8fd8a84b_60d3fb0e9a2fd70a_0_0.bin => Moved successfully.
C:\Users\hokaj\AppData\Local\Temp\NVIDIA Corporation\NV_Cache\eb36b8051af6133d3ee4e767d98e7437_fce8395f8fd8a84b_60d3fb0e9a2fd70a_0_0.toc => Moved successfully.
C:\Users\hokaj\AppData\Local\Temp\NVIDIA Corporation\NV_Cache\eb36b8051af6133d3ee4e767d98e7437_fce8395f8fd8a84b_60d3fb0e9a2fd70a_0_1.bin => Moved successfully.
C:\Users\hokaj\AppData\Local\Temp\NVIDIA Corporation\NV_Cache\eb36b8051af6133d3ee4e767d98e7437_fce8395f8fd8a84b_60d3fb0e9a2fd70a_0_1.toc => Moved successfully.
C:\Users\hokaj\AppData\Local\Temp\NVIDIA Corporation\NV_Cache\eb36b8051af6133d3ee4e767d98e7437_fce8395f8fd8a84b_60d3fb0e9a2fd70a_0_2.bin => Moved successfully.
C:\Users\hokaj\AppData\Local\Temp\NVIDIA Corporation\NV_Cache\eb36b8051af6133d3ee4e767d98e7437_fce8395f8fd8a84b_60d3fb0e9a2fd70a_0_2.toc => Moved successfully.
C:\Users\hokaj\AppData\Local\Temp\NVIDIA Corporation\NV_Cache\eb36b8051af6133d3ee4e767d98e7437_fce8395f8fd8a84b_fbd467cf0477e43d_0_0.bin => Moved successfully.
C:\Users\hokaj\AppData\Local\Temp\NVIDIA Corporation\NV_Cache\eb36b8051af6133d3ee4e767d98e7437_fce8395f8fd8a84b_fbd467cf0477e43d_0_0.toc => Moved successfully.
C:\Users\hokaj\AppData\Local\Temp\NVIDIA Corporation\NV_Cache\eb36b8051af6133d3ee4e767d98e7437_fce8395f8fd8a84b_fbd467cf0477e43d_0_1.bin => Moved successfully.
C:\Users\hokaj\AppData\Local\Temp\NVIDIA Corporation\NV_Cache\eb36b8051af6133d3ee4e767d98e7437_fce8395f8fd8a84b_fbd467cf0477e43d_0_1.toc => Moved successfully.
C:\Users\hokaj\AppData\Local\Temp\NVIDIA Corporation\NV_Cache\eb36b8051af6133d3ee4e767d98e7437_fce8395f8fd8a84b_fbd467cf0477e43d_0_2.bin => Moved successfully.
C:\Users\hokaj\AppData\Local\Temp\NVIDIA Corporation\NV_Cache\eb36b8051af6133d3ee4e767d98e7437_fce8395f8fd8a84b_fbd467cf0477e43d_0_2.toc => Moved successfully.
C:\Users\hokaj\AppData\Local\Temp\NVIDIA Corporation\NV_Cache\eb36b8051af6133d3ee4e767d98e7437_fce8395f8fd8a84b_fbd467cf0477e43d_0_3.bin => Moved successfully.
C:\Users\hokaj\AppData\Local\Temp\NVIDIA Corporation\NV_Cache\eb36b8051af6133d3ee4e767d98e7437_fce8395f8fd8a84b_fbd467cf0477e43d_0_4.bin => Moved successfully.
C:\Users\hokaj\AppData\Local\Temp\Low\JavaDeployReg.log => Moved successfully.
C:\Users\hokaj\AppData\Local\Temp\Low\NVIDIA Corporation\NV_Cache\d7d3d739e92c4c369646f953c2baf35f_fce8395f8fd8a84b_f3279b66e87c6f22_0_0.bin => Moved successfully.
C:\Users\hokaj\AppData\Local\Temp\Low\NVIDIA Corporation\NV_Cache\d7d3d739e92c4c369646f953c2baf35f_fce8395f8fd8a84b_f3279b66e87c6f22_0_0.toc => Moved successfully.
C:\Users\hokaj\AppData\Local\Temp\is-SCMNK.tmp\XDelta3.dll => Moved successfully.
Could not move "C:\Users\hokaj\AppData\Local\Temp" directory. => Scheduled to move on reboot.

"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{4276ED7C-696A-4D27-9EF0-B905019327CF}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4276ED7C-696A-4D27-9EF0-B905019327CF}" => Key deleted successfully.
C:\Windows\System32\Tasks\steamwebhelper_killer => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\steamwebhelper_killer" => Key deleted successfully.

=> Result of Scheduled Files to move (Boot Mode: Normal) (Date&Time: 2015-01-20 20:11:12)<=

C:\Users\hokaj\AppData\Local\Temp\FXSAPIDebugLogFile.txt => Is moved successfully.
C:\Users\hokaj\AppData\Local\Temp => Moved successfully.

==== End of Fixlog 20:11:12 ====
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119404
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: sekání

#11 Příspěvek od Rudy »

Smazáno. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
hOkaj
Návštěvník
Návštěvník
Příspěvky: 59
Registrován: 18 kvě 2014 22:40

Re: sekání

#12 Příspěvek od hOkaj »

Jop vypadá to, že už to zmizelo doufám už na pořád.Můžete mi říct co to bylo a jak si na tom mám příště dát pozor? Snažil jsem se to řešit různýma antivirákama,mbam,adwcleanerem nic nepomáhalo a Vy mi řeknete jednu věc a je to xD
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119404
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: sekání

#13 Příspěvek od Rudy »

Tak to jsem rád. :)
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
hOkaj
Návštěvník
Návštěvník
Příspěvky: 59
Registrován: 18 kvě 2014 22:40

Re: sekání

#14 Příspěvek od hOkaj »

Tak dneska spím a měl jsem zapnuté reproduktory a normálně mě ty reklamy vzbudily. Takže pořád to tam mám :/.Teď mi to i párkrát napsalo internet explorer přestal pracovat. Tady je foto toho procesu http://postimg.org/image/q4hxf2m89/
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119404
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: sekání

#15 Příspěvek od Rudy »

Udělejte kompletní sken MBAM: http://www.malwarebytes.org/mbam.php dejte log. Předem nic nemažte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
Odpovědět

Zpět na „Všehochuť“