Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

winlog.exe 100pro vytížení procesoru

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zamčeno
Zpráva
Autor
Still242
Návštěvník
Návštěvník
Příspěvky: 10
Registrován: 16 čer 2014 19:59

winlog.exe 100pro vytížení procesoru

#1 Příspěvek od Still242 »

Ahoj, byl jsem zřejmě infikován hnusem "winlog.exe" a vytěžuje mi to moje CPU, což mě děsně vytáčí... Našel jsem k tomu tady už pár topiku s radou, ale nevím zda to slepě následovat a udělat v tom ještě větší bordel... akorát jsem jako první udělal výpis s FRTS. Ale tím to asi pro mě zatím končí...

http://pastebin.com/crTyYrYM
Nahoru
Uživatelský avatar
vyosek
VIP
VIP
Příspěvky: 56373
Registrován: 07 lis 2006 15:24
Bydliště: Šalingrad - Brno

Re: winlog.exe 100pro vytížení procesoru

#2 Příspěvek od vyosek »

Zdravim :)

:arrow: Jen se s dovolenim zeptam, kde jste prisel k verzi Windows 8 Enterprise, ktery neni bezne k zakoupeni a je urcen pro firemni klientelu??
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen Obrázek od 1. února 2011.
Nahoru
Still242
Návštěvník
Návštěvník
Příspěvky: 10
Registrován: 16 čer 2014 19:59

Re: winlog.exe 100pro vytížení procesoru

#3 Příspěvek od Still242 »

Rodinný příslušník
Nahoru
Uživatelský avatar
vyosek
VIP
VIP
Příspěvky: 56373
Registrován: 07 lis 2006 15:24
Bydliště: Šalingrad - Brno

Re: winlog.exe 100pro vytížení procesoru

#4 Příspěvek od vyosek »

To mam chapat jak??

Takze legalne zakoupena verze, instalacni medium nebo COA stitek?? Nebo rodinny prislusnik umi nekde na warez forech co podobnych serverech stahovat??
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen Obrázek od 1. února 2011.
Nahoru
Still242
Návštěvník
Návštěvník
Příspěvky: 10
Registrován: 16 čer 2014 19:59

Re: winlog.exe 100pro vytížení procesoru

#5 Příspěvek od Still242 »

Pracuje v nejmenované IT firmě, takže mi to z media nainstaloval.
Nahoru
Uživatelský avatar
vyosek
VIP
VIP
Příspěvky: 56373
Registrován: 07 lis 2006 15:24
Bydliště: Šalingrad - Brno

Re: winlog.exe 100pro vytížení procesoru

#6 Příspěvek od vyosek »

:arrow: Stahnete Malwarebytes' Anti-Malware (zkracene MBAM)
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen Obrázek od 1. února 2011.
Nahoru
Still242
Návštěvník
Návštěvník
Příspěvky: 10
Registrován: 16 čer 2014 19:59

Re: winlog.exe 100pro vytížení procesoru

#7 Příspěvek od Still242 »

Log zde:
http://pastebin.com/05jeF4bL

Čerpal jsem i z tohohle vlákna zde na viry.cz http://forum.viry.cz/viewtopic.php?f=13&t=138574
Nahoru
Uživatelský avatar
vyosek
VIP
VIP
Příspěvky: 56373
Registrován: 07 lis 2006 15:24
Bydliště: Šalingrad - Brno

Re: winlog.exe 100pro vytížení procesoru

#8 Příspěvek od vyosek »

:arrow: Davejte logy primo do tematu

:arrow: Nalezy smazte, log sem
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen Obrázek od 1. února 2011.
Nahoru
Still242
Návštěvník
Návštěvník
Příspěvky: 10
Registrován: 16 čer 2014 19:59

Re: winlog.exe 100pro vytížení procesoru

#9 Příspěvek od Still242 »

Vložit ten původní, nebo udělat nový?
Nahoru
Uživatelský avatar
vyosek
VIP
VIP
Příspěvky: 56373
Registrován: 07 lis 2006 15:24
Bydliště: Šalingrad - Brno

Re: winlog.exe 100pro vytížení procesoru

#10 Příspěvek od vyosek »

:arrow: Smazat nalezy a pote vyskoci log o mazani, ten mi sem dejte
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen Obrázek od 1. února 2011.
Nahoru
Still242
Návštěvník
Návštěvník
Příspěvky: 10
Registrován: 16 čer 2014 19:59

Re: winlog.exe 100pro vytížení procesoru

#11 Příspěvek od Still242 »

Smazat to nešlo (?), vložit do karanteny, nebo přidat vyjímku...

Malwarebytes Anti-Malware
www.malwarebytes.org

Datum skenování: 16. 6. 2014
Čas skenování: 21:59:20
Protokol: wtf.txt
Správce: Ano

Verze: 2.00.2.1012
Databáze malwaru: v2014.06.16.07
Databáze rootkitů: v2014.06.02.01
Licence: Zkušební verze
Ochrana proti malwaru: Zapnuto
Ochrana proti škodlivým webovým stránkám: Zapnuto
Self-protection: Vypnuto

OS: Windows 8
CPU: x64
Souborový systém: NTFS
Uživatel: Still-Alive

Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 297334
Uplynulý čas: 12 min, 48 sek

Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristics: Zapnuto
PUP: Varovat
PUM: Zapnuto

Procesy: 0
(No malicious items detected)

Moduly: 0
(No malicious items detected)

Klíče registru: 19
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\CLASSES\APPID\{CA5CAA63-B27C-4963-9BEC-CB16A36D56F8}, , [d750a5d48cef70c66cb6cea9966ca65a],
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\APPID\{CA5CAA63-B27C-4963-9BEC-CB16A36D56F8}, , [d750a5d48cef70c66cb6cea9966ca65a],
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{D40753C7-8A59-4C1F-BE88-C300F4624D5B}, , [e93e86f36c0f6dc942e1fb7cb34f07f9],
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{C292AD0A-C11F-479B-B8DB-743E72D283B0}, , [e93e86f36c0f6dc942e1fb7cb34f07f9],
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{C292AD0A-C11F-479B-B8DB-743E72D283B0}, , [e93e86f36c0f6dc942e1fb7cb34f07f9],
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\CLASSES\esrv.mysearchdialESrvc.1, , [e93e86f36c0f6dc942e1fb7cb34f07f9],
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\CLASSES\esrv.mysearchdialESrvc, , [e93e86f36c0f6dc942e1fb7cb34f07f9],
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\esrv.mysearchdialESrvc, , [e93e86f36c0f6dc942e1fb7cb34f07f9],
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\esrv.mysearchdialESrvc.1, , [e93e86f36c0f6dc942e1fb7cb34f07f9],
PUP.Optional.WebCake.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{DF84E609-C3A4-49CB-A160-61767DAF8899}, , [68bf027795e6cb6b2dee96e103fff20e],
PUP.Optional.WebCake.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{DF84E609-C3A4-49CB-A160-61767DAF8899}, , [68bf027795e6cb6b2dee96e103fff20e],
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{219046AE-358F-4CF1-B1FD-2B4DE83642A8}, , [33f44d2c91ea79bd9544b3c3fe04ad53],
PUP.Optional.TornTV.A, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\nbmafkdmkkckhggblphicnnhlgljnoje, , [0126c7b2bebd91a50d0af2b7b250ff01],
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\WOW6432NODE\INSTALLCORE\mysearchdial, , [6fb82e4b7704e650d06de3f534cf1de3],
PUP.Optional.1ClickDownload.A, HKU\S-1-5-21-3304260785-2353553996-2048135476-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\1ClickDownload, , [9790df9aabd049edc7756f6b54af6a96],
PUP.Optional.MySearchDial.A, HKU\S-1-5-21-3304260785-2353553996-2048135476-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\mysearchdial, , [7ea97207215a22142abd83566c97f20e],
PUP.Optional.MySearchDial.A, HKU\S-1-5-21-3304260785-2353553996-2048135476-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\mysearchdial.com, , [a483374214676acc3eaa0acf4ab9ad53],
PUP.Optional.MySearchDial.A, HKU\S-1-5-21-3304260785-2353553996-2048135476-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\INSTALLCORE\mysearchdial, , [1710a4d535468aacc9d77766d72c748c],
PUP.Optional.Softonic.A, HKU\S-1-5-21-3304260785-2353553996-2048135476-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\SOFTONIC\Universal Downloader, , [2ff8b5c4a6d576c0bbca00b1ec166e92],

Hodnoty registru: 0
(No malicious items detected)

Data registru: 3
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, http://start.mysearchdial.com/?f=1&a=co ... 946291&ir=, Dobré: (http://www.google.com), Špatné: (http://start.mysearchdial.com/?f=1&a=co ... 946291&ir=),,[cd5a5a1f89f270c6cf105d1b9a6aed13]
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\ABOUTURLS|Tabs, http://start.mysearchdial.com/?f=2&a=co ... 946291&ir=, Dobré: (www.google.com), Špatné: (http://start.mysearchdial.com/?f=2&a=co ... 946291&ir=),,[d6513f3a522983b38c0478f76b995ba5]
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, http://start.mysearchdial.com/?f=1&a=co ... 946291&ir=, Dobré: (http://www.google.com), Špatné: (http://start.mysearchdial.com/?f=1&a=co ... 946291&ir=),,[79ae4039215abf77a33ce69211f3d62a]

Složky: 4
PUP.Optional.MySearchDial.A, C:\Users\Still-Alive\AppData\Roaming\mysearchdial, , [bc6ba5d43a4176c02ee2f199ad558c74],
PUP.Optional.MySearchDial.A, C:\Users\Still-Alive\AppData\Roaming\mysearchdial\icons_2.2.4.731, , [bc6ba5d43a4176c02ee2f199ad558c74],
PUP.Optional.MySearchDial.A, C:\Users\Still-Alive\AppData\Roaming\mysearchdial\UpdateProc, , [bc6ba5d43a4176c02ee2f199ad558c74],
PUP.Optional.SimilarSites.A, C:\Users\Still-Alive\AppData\Roaming\SimilarSites, , [e047710823581620f7203a58af53be42],

Soubory: 7
PUP.BitCoinMiner, C:\Users\Still-Alive\AppData\Roaming\WinUpdate\g\winlog.exe, , [7fa8ff7a0972b6800bf98db2b150bc44],
PUP.Optional.Softonic.A, C:\Users\Still-Alive\AppData\Local\Temp\KMP_3.9.0.124.exe, , [28ff86f3fa8170c6195dcb5832cf22de],
PUP.Optional.FunMoods.A, C:\Users\Still-Alive\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_pflphaooapbgpeakohlggbpidpppgdff_0.localstorage, , [e04788f1cdae999d9e6f6c7606fd19e7],
PUP.Optional.MySearchDial.A, C:\Users\Still-Alive\AppData\Roaming\mysearchdial\icons_2.2.4.731\magnifying.ico, , [bc6ba5d43a4176c02ee2f199ad558c74],
PUP.Optional.MySearchDial.A, C:\Users\Still-Alive\AppData\Roaming\mysearchdial\icons_2.2.4.731\star2.ico, , [bc6ba5d43a4176c02ee2f199ad558c74],
PUP.Optional.MySearchDial.A, C:\Users\Still-Alive\AppData\Roaming\mysearchdial\UpdateProc\config.dat, , [bc6ba5d43a4176c02ee2f199ad558c74],
PUP.Optional.MySearchDial.A, C:\Users\Still-Alive\AppData\Roaming\mysearchdial\UpdateProc\TTL.DAT, , [bc6ba5d43a4176c02ee2f199ad558c74],

Fyzické sektory: 0
(No malicious items detected)


(end)
Nahoru
Uživatelský avatar
vyosek
VIP
VIP
Příspěvky: 56373
Registrován: 07 lis 2006 15:24
Bydliště: Šalingrad - Brno

Re: winlog.exe 100pro vytížení procesoru

#12 Příspěvek od vyosek »

:arrow: No jasne, do karanteny s tim

:arrow: Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
  • Ulozte nejlepe na plochu
  • Ukoncete vsechny programy
  • Kliknete na Scan a nasledne Clean
  • Probehne oprava, restart PC a pak se objevi log, pripadne bude ulozen ve slozce c:\AdwCleaner\AdwCleaner[S?].txt, ten sem vlozte
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen Obrázek od 1. února 2011.
Nahoru
Still242
Návštěvník
Návštěvník
Příspěvky: 10
Registrován: 16 čer 2014 19:59

Re: winlog.exe 100pro vytížení procesoru

#13 Příspěvek od Still242 »

Log AdwCleaner

# AdwCleaner v3.212 - Report created 17/06/2014 at 07:39:43
# Updated 05/06/2014 by Xplode
# Operating System : Windows 8 Enterprise (64 bits)
# Username : Still-Alive - STILL
# Running from : C:\Users\Still-Alive\Desktop\adwcleaner_3.212.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\Babylon
Folder Deleted : C:\ProgramData\Tarma Installer
Folder Deleted : C:\Program Files (x86)\SimilarSites
Folder Deleted : C:\Windows\Uninstaller
Folder Deleted : C:\Users\Still-Alive\AppData\Roaming\Babylon
Folder Deleted : C:\Users\Still-Alive\Documents\Updater
Folder Deleted : C:\Users\Still-Alive\AppData\Local\Google\Chrome\User Data\Default\Extensions\olakgnkoldmagdblaalodobkmeokmgjj
File Deleted : C:\Users\STILL-~1\AppData\Local\Temp\Utils.dll

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\kiplfnciaokpcennlkldkdaeaaomamof
Key Deleted : HKLM\SOFTWARE\Classes\AppID\esrv.EXE
Key Deleted : HKLM\SOFTWARE\Classes\AppID\secman.DLL
Key Deleted : HKLM\SOFTWARE\Classes\Applications\Torch.exe
Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap
Key Deleted : HKLM\SOFTWARE\Classes\secman.OutlookSecurityManager
Key Deleted : HKLM\SOFTWARE\Classes\secman.OutlookSecurityManager.1
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Torntv Downloader_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Torntv Downloader_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\WebCakeDesktop_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\WebCakeDesktop_RASMANCS
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{C007DADD-132A-624C-088E-59EE6CF0711F}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{C292AD0A-C11F-479B-B8DB-743E72D283B0}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FB684D26-01F4-4D9D-87CB-F486BEBA56DC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0AFD55C8-ADF8-4A33-A6E1-DEDB7A36AEB4}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{11549FE4-7C5A-4C17-9FC3-56FC5162A994}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
Key Deleted : HKCU\Software\APN PIP
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\InstallCore
Key Deleted : HKCU\Software\Softonic
Key Deleted : HKCU\Software\torch
Key Deleted : HKLM\Software\Babylon
Key Deleted : HKLM\Software\InstallCore
Key Deleted : HKLM\Software\PIP
Key Deleted : HKLM\Software\torch
Key Deleted : [x64] HKLM\SOFTWARE\Tarma Installer

***** [ Browsers ] *****

-\\ Internet Explorer v10.0.9200.16921


-\\ Mozilla Firefox v29.0.1 (cs)

[ File : C:\Users\Still-Alive\AppData\Roaming\Mozilla\Firefox\Profiles\sbq58hk0.default-1384472107371\prefs.js ]


-\\ Google Chrome v

[ File : C:\Users\Still-Alive\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [3960 octets] - [17/06/2014 07:38:08]
AdwCleaner[S0].txt - [3634 octets] - [17/06/2014 07:39:43]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [3694 octets] ##########
Nahoru
Uživatelský avatar
vyosek
VIP
VIP
Příspěvky: 56373
Registrován: 07 lis 2006 15:24
Bydliště: Šalingrad - Brno

Re: winlog.exe 100pro vytížení procesoru

#14 Příspěvek od vyosek »

Dejte novy log z FRST
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen Obrázek od 1. února 2011.
Nahoru
Still242
Návštěvník
Návštěvník
Příspěvky: 10
Registrován: 16 čer 2014 19:59

Re: winlog.exe 100pro vytížení procesoru

#15 Příspěvek od Still242 »

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 16-06-2014
Ran by Still-Alive (administrator) on STILL on 17-06-2014 07:55:52
Running from C:\Users\Still-Alive\Desktop
Platform: Windows 8 Enterprise (X64) OS Language: Czech
Internet Explorer Version 10
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(IvoSoft) C:\Program Files\Classic Shell\ClassicShellService.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
() C:\Windows\SysWOW64\ASGT.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(FinalWire Ltd.) D:\JDown\AIDA64_Business_Edition_2.70.2250_Beta_softarchive.net\aida64.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_13_0_0_214.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_13_0_0_214.exe
(forum.viry.cz) C:\Users\Still-Alive\Desktop\FRSTLauncher.exe
(Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(Microsoft Corporation) C:\Windows\SysWOW64\PING.EXE


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [6846096 2012-11-19] (Realtek Semiconductor)
HKLM\...\Run: [Start WingMan Profiler] => C:\Program Files\Logitech\Gaming Software\LWEMon.exe [190536 2010-06-14] (Logitech Inc.)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2279712 2013-12-10] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\nvspcap64.dll [1100248 2013-12-10] (NVIDIA Corporation)
HKLM-x32\...\Run: [KiesTrayAgent] => C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [311152 2013-12-11] (Samsung Electronics Co., Ltd.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [253816 2013-03-12] (Oracle Corporation)
HKLM-x32\...\Run: [ActiveSMART] => C:\Program Files (x86)\Active SMART USB\\ActiveSMART.exe
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [3890208 2014-06-16] (AVAST Software)
HKU\S-1-5-21-3304260785-2353553996-2048135476-1001\...\Run: [KiesPreload] => C:\Program Files (x86)\Samsung\Kies\Kies.exe [1564528 2013-12-11] (Samsung)
HKU\S-1-5-21-3304260785-2353553996-2048135476-1001\...\Run: [] => C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [845168 2013-12-11] (Samsung)
HKU\S-1-5-21-3304260785-2353553996-2048135476-1001\...\Run: [KiesAirMessage] => C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe -startup
HKU\S-1-5-21-3304260785-2353553996-2048135476-1001\...\Run: [Steam] => D:\Steam\steam.exe [1775808 2014-05-28] (Valve Corporation)
HKU\S-1-5-21-3304260785-2353553996-2048135476-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [21444224 2014-05-08] (Skype Technologies S.A.)
AppInit_DLLs: C:\PROGRA~2\NVIDIA~1\3DVISI~1\NVSTIN~1.DLL => C:\PROGRA~2\NVIDIA~1\3DVISI~1\NVSTIN~1.DLL File Not Found
AppInit_DLLs-x32: C:\PROGRA~2\NVIDIA~1\3DVISI~1\nvStInit.dll => "C:\PROGRA~2\NVIDIA~1\3DVISI~1\nvStInit.dll" File Not Found
Startup: C:\Users\Still-Alive\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma.lnk
ShortcutTarget: Adobe Gamma.lnk -> C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)
BootExecute: autocheck autochk /m /P \Device\HarddiskVolume8autocheck autochk *

==================== Internet (Whitelisted) ====================

SearchScopes: HKLM - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://start.mysearchdial.com/results.p ... 946291&ir=
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://start.mysearchdial.com/results.p ... 946291&ir=
SearchScopes: HKLM-x32 - DefaultScope value is missing.
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://start.mysearchdial.com/results.p ... 946291&ir=
BHO: ExplorerBHO Class - {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer64.dll (IvoSoft)
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: ClassicIE9BHO Class - {EA801577-E6AD-4BD5-8F71-4BE0154331A4} - C:\Program Files\Classic Shell\ClassicIE9DLL_64.dll (IvoSoft)
BHO-x32: ExplorerBHO Class - {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer32.dll (IvoSoft)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: ClassicIE9BHO Class - {EA801577-E6AD-4BD5-8F71-4BE0154331A4} - C:\Program Files\Classic Shell\ClassicIE9DLL_32.dll (IvoSoft)
Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll (IvoSoft)
Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll (IvoSoft)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{19EB60C2-9DA0-46D4-81AD-A7DE8FEF891F}: [NameServer]8.8.8.8,8.8.1.1

FireFox:
========
FF ProfilePath: C:\Users\Still-Alive\AppData\Roaming\Mozilla\Firefox\Profiles\sbq58hk0.default-1384472107371
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_13_0_0_214.dll ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll ()
FF Plugin-x32: @java.com/DTPlugin,version=10.25.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: ubisoft.com/uplaypc - D:\Ubisoft Game Launcher\npuplaypc.dll (Ubisoft)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\mapy-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF Extension: Český slovník pro kontrolu pravopisu - C:\Users\Still-Alive\AppData\Roaming\Mozilla\Firefox\Profiles\sbq58hk0.default-1384472107371\Extensions\cs@dictionaries.addons.mozilla.org [2014-02-01]
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-06-16]
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird

Chrome:
=======
CHR HomePage:
CHR RestoreOnStartup: "hxxp://www.google.com/"
CHR StartupUrls: "hxxp://www.google.com/"
CHR Extension: (No Name) - C:\Users\Still-Alive\AppData\Local\Google\Chrome\User Data\Default\Extensions\olakgnkoldmagdblaalodobkmeokmgjj [2013-10-16]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-06-16]

==================== Services (Whitelisted) =================

S3 Adobe LM Service; C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [72704 2013-02-27] (Adobe Systems) [File not signed]
R2 ASGT; C:\Windows\SysWOW64\ASGT.exe [55296 2012-01-17] () [File not signed]
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-06-16] (AVAST Software)
R2 ClassicShellService; C:\Program Files\Classic Shell\ClassicShellService.exe [68608 2012-12-14] (IvoSoft) [File not signed]
S4 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1809720 2014-05-12] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [860472 2014-05-12] (Malwarebytes Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1494304 2013-12-10] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [15129376 2013-12-10] (NVIDIA Corporation)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2014-01-23] ()
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16056 2014-03-29] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

R3 AIDA64Driver; D:\JDown\AIDA64_Business_Edition_2.70.2250_Beta_softarchive.net\kerneld.x64 [30624 2012-12-23] ()
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-06-16] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [79184 2014-06-16] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-06-16] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-06-16] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1039096 2014-06-16] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [423240 2014-06-16] (AVAST Software)
S2 aswStm; C:\Windows\system32\drivers\aswStm.sys [85328 2014-06-16] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [208416 2014-06-16] ()
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-05-12] (Malwarebytes Corporation)
S3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [122584 2014-06-16] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64216 2014-05-12] (Malwarebytes Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [39200 2013-12-05] (NVIDIA Corporation)
S3 pwdrvio; C:\Windows\system32\pwdrvio.sys [19032 2013-03-07] ()
S3 pwdspio; C:\Windows\system32\pwdspio.sys [9584 2013-03-07] ()
S3 dgderdrv; System32\drivers\dgderdrv.sys [X]
S3 GPUZ; \??\C:\Users\STILL-~1\AppData\Local\Temp\GPUZ.sys [X]
S3 MSICDSetup; \??\E:\CDriver64.sys [X]
S3 NTIOLib_1_0_C; \??\E:\NTIOLib_X64.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-06-17 07:55 - 2014-06-17 07:56 - 00013615 _____ () C:\Users\Still-Alive\Desktop\FRST.txt
2014-06-17 07:55 - 2014-06-17 07:55 - 00112640 _____ (forum.viry.cz) C:\Users\Still-Alive\Desktop\FRSTLauncher.exe
2014-06-17 07:55 - 2014-06-17 07:55 - 00029696 _____ () C:\Users\Still-Alive\AppData\Local\MSGBOX.EXE
2014-06-17 07:55 - 2014-06-17 07:55 - 00015327 _____ () C:\Users\Still-Alive\Desktop\LM.bat
2014-06-17 07:54 - 2014-06-17 07:55 - 02081280 _____ (Farbar) C:\Users\Still-Alive\Desktop\FRST64.exe
2014-06-17 07:38 - 2014-06-17 07:39 - 00000000 ____D () C:\AdwCleaner
2014-06-17 07:38 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\SysWOW64\sqlite3.dll
2014-06-17 07:37 - 2014-06-17 07:37 - 01333465 _____ () C:\Users\Still-Alive\Desktop\adwcleaner_3.212.exe
2014-06-16 22:12 - 2014-06-16 22:12 - 00007017 _____ () C:\wtf.txt
2014-06-16 21:47 - 2014-06-16 21:47 - 00009233 _____ () C:\malvare.txt
2014-06-16 21:29 - 2014-06-16 22:30 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-06-16 21:29 - 2014-06-16 21:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-06-16 21:29 - 2014-06-16 21:29 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-06-16 21:29 - 2014-05-12 07:26 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-06-16 21:29 - 2014-05-12 07:26 - 00064216 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-06-16 21:28 - 2014-06-16 21:29 - 00000000 ____D () C:\Users\Still-Alive\AppData\Roaming\Malwarebytes
2014-06-16 21:27 - 2014-06-16 21:29 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-06-16 21:27 - 2014-05-12 07:25 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-06-16 21:25 - 2014-06-16 21:25 - 11167316 _____ () C:\Users\Still-Alive\Desktop\cc-setup.exe
2014-06-16 20:54 - 2014-06-17 07:55 - 00000000 ____D () C:\FRST
2014-06-16 20:45 - 2014-06-16 20:45 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-06-16 20:45 - 2014-06-16 20:45 - 00001966 _____ () C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2014-06-16 20:45 - 2014-06-16 20:45 - 00000000 ____D () C:\Users\Still-Alive\AppData\Roaming\AVAST Software
2014-06-16 20:45 - 2014-06-16 20:45 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast
2014-06-16 20:44 - 2014-06-16 20:46 - 00000000 ____D () C:\Program Files (x86)\Google
2014-06-16 20:44 - 2014-06-16 20:45 - 01039096 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys
2014-06-16 20:44 - 2014-06-16 20:45 - 00423240 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2014-06-16 20:44 - 2014-06-16 20:45 - 00085328 _____ (AVAST Software) C:\Windows\system32\Drivers\aswstm.sys
2014-06-16 20:44 - 2014-06-16 20:44 - 01039096 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys.1402944320421
2014-06-16 20:44 - 2014-06-16 20:44 - 00423240 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys.1402944320421
2014-06-16 20:44 - 2014-06-16 20:44 - 00334648 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-06-16 20:44 - 2014-06-16 20:44 - 00208416 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2014-06-16 20:44 - 2014-06-16 20:44 - 00093568 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2014-06-16 20:44 - 2014-06-16 20:44 - 00079184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-06-16 20:44 - 2014-06-16 20:44 - 00065776 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2014-06-16 20:44 - 2014-06-16 20:44 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-06-16 20:44 - 2014-06-16 20:44 - 00029208 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2014-06-16 20:43 - 2014-06-16 20:43 - 00000000 ____D () C:\Program Files\AVAST Software
2014-06-16 20:42 - 2014-06-16 20:42 - 00000000 ____D () C:\ProgramData\AVAST Software
2014-06-15 18:05 - 2014-06-15 18:05 - 00000000 ____D () C:\Users\Still-Alive\Documents\STILL
2014-06-14 09:24 - 2014-06-15 11:36 - 00040991 _____ () C:\Users\Still-Alive\Documents\MGR-Studium.xlsx
2014-06-14 07:48 - 2014-06-14 07:48 - 00183946 _____ () C:\Users\Still-Alive\Downloads\unterpantofel.htm
2014-06-14 07:48 - 2014-06-14 07:48 - 00000000 ____D () C:\Users\Still-Alive\Downloads\unterpantofel_soubory
2014-06-13 21:53 - 2014-06-14 07:48 - 00000000 ____D () C:\Users\Still-Alive\Downloads\Eleanor - Community - Diablo III_soubory
2014-06-13 21:53 - 2014-06-13 21:53 - 00112756 _____ () C:\Users\Still-Alive\Downloads\Eleanor - Community - Diablo III.xht
2014-06-13 09:12 - 2014-06-13 09:12 - 00000854 _____ () C:\Users\Still-Alive\Desktop\µTorrent.lnk
2014-06-13 09:12 - 2014-06-13 09:12 - 00000834 _____ () C:\Users\Still-Alive\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2014-06-11 18:32 - 2014-05-24 03:26 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-06-11 18:32 - 2014-05-24 03:26 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-06-11 18:32 - 2014-05-24 03:25 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-06-11 18:32 - 2014-05-24 03:25 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-06-11 18:32 - 2014-05-03 07:47 - 03246592 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2014-06-11 18:32 - 2014-05-03 05:34 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2014-06-11 18:32 - 2014-04-30 00:32 - 01301504 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-06-11 18:32 - 2014-04-30 00:22 - 01023488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2014-06-11 18:32 - 2014-04-03 13:19 - 00328024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Classpnp.sys
2014-06-11 18:32 - 2014-04-03 05:44 - 00619008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2014-06-11 18:32 - 2014-04-01 00:08 - 00387268 _____ () C:\Windows\system32\ApnDatabase.xml
2014-06-11 18:32 - 2014-03-25 01:42 - 00305152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wusa.exe
2014-06-11 18:32 - 2014-03-25 00:56 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\wusa.exe
2014-06-11 18:31 - 2014-05-24 04:48 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-06-11 18:31 - 2014-05-24 04:47 - 02239488 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-06-11 18:31 - 2014-05-24 04:47 - 01366016 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-06-11 18:31 - 2014-05-24 04:47 - 00915968 _____ (Microsoft Corporation) C:\Windows\system32\uxtheme.dll
2014-06-11 18:31 - 2014-05-24 04:47 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\UXInit.dll
2014-06-11 18:31 - 2014-05-24 04:46 - 19290112 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-06-11 18:31 - 2014-05-24 04:46 - 15368704 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-06-11 18:31 - 2014-05-24 04:46 - 03958784 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-06-11 18:31 - 2014-05-24 04:46 - 02650112 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-06-11 18:31 - 2014-05-24 04:46 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-06-11 18:31 - 2014-05-24 04:46 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-06-11 18:31 - 2014-05-24 04:46 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-06-11 18:31 - 2014-05-24 04:46 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-06-11 18:31 - 2014-05-24 04:46 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-06-11 18:31 - 2014-05-24 04:46 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-06-11 18:31 - 2014-05-24 04:46 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-06-11 18:31 - 2014-05-24 04:46 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-06-11 18:31 - 2014-05-24 04:45 - 01508864 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-06-11 18:31 - 2014-05-24 04:45 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-06-11 18:31 - 2014-05-24 04:45 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-06-11 18:31 - 2014-05-24 03:26 - 14365696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-06-11 18:31 - 2014-05-24 03:26 - 01766400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-06-11 18:31 - 2014-05-24 03:26 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-06-11 18:31 - 2014-05-24 03:26 - 00080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-06-11 18:31 - 2014-05-24 03:26 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UXInit.dll
2014-06-11 18:31 - 2014-05-24 03:25 - 13731328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-06-11 18:31 - 2014-05-24 03:25 - 02862080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-06-11 18:31 - 2014-05-24 03:25 - 02050560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-06-11 18:31 - 2014-05-24 03:25 - 01440768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-06-11 18:31 - 2014-05-24 03:25 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-06-11 18:31 - 2014-05-24 03:25 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-06-11 18:31 - 2014-05-24 03:25 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-06-11 18:31 - 2014-05-24 03:25 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-06-11 18:31 - 2014-05-24 03:25 - 00039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-06-11 18:31 - 2014-05-24 03:09 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-06-11 18:31 - 2014-05-24 03:03 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-06-11 18:31 - 2014-05-24 00:37 - 00534528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uxtheme.dll
2014-06-11 18:31 - 2014-04-03 13:22 - 02233176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2014-06-11 18:31 - 2014-03-07 02:47 - 01419264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-06-11 18:31 - 2014-03-07 02:08 - 01845760 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-06-06 06:39 - 2014-06-06 06:39 - 00000000 ____D () C:\ProgramData\Steam
2014-06-06 06:13 - 2014-06-06 06:13 - 00000000 ____D () C:\Users\Still-Alive\AppData\Roaming\WinUpdate
2014-06-05 15:46 - 2014-06-12 19:35 - 00000000 ____D () C:\Users\Still-Alive\AppData\Local\Deployment
2014-06-05 15:46 - 2014-06-05 15:46 - 00000000 ____D () C:\Users\Still-Alive\AppData\Local\Apps\2.0
2014-06-05 11:06 - 2014-06-05 11:06 - 00000692 _____ () C:\Users\Public\Desktop\WarThunder.lnk
2014-06-05 11:06 - 2014-06-05 11:06 - 00000000 ____D () C:\Users\Still-Alive\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WarThunder
2014-06-04 18:41 - 2014-06-04 18:41 - 00000027 _____ () C:\Users\Still-Alive\Desktop\pecko.txt
2014-06-01 07:22 - 2014-06-01 07:22 - 00008385 _____ () C:\Users\Still-Alive\Documents\kontrola-stitek.xlsx
2014-05-28 18:10 - 2014-06-12 14:47 - 00000162 _____ () C:\Users\Still-Alive\Desktop\bakalarka-hodiny.txt
2014-05-27 11:23 - 2014-05-27 11:23 - 00002137 _____ () C:\Users\Public\Desktop\3D Vision Photo Viewer.lnk
2014-05-27 11:23 - 2014-05-27 11:23 - 00000000 ____D () C:\Program Files (x86)\AGEIA Technologies
2014-05-27 11:23 - 2014-05-20 01:10 - 00601432 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2014-05-27 11:19 - 2014-05-20 04:44 - 31387936 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2014-05-27 11:19 - 2014-05-20 04:44 - 25256224 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2014-05-27 11:19 - 2014-05-20 04:44 - 24025376 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2014-05-27 11:19 - 2014-05-20 04:44 - 17561544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2014-05-27 11:19 - 2014-05-20 04:44 - 17480432 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2014-05-27 11:19 - 2014-05-20 04:44 - 12688328 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2014-05-27 11:19 - 2014-05-20 04:44 - 11644928 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2014-05-27 11:19 - 2014-05-20 04:44 - 11599072 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2014-05-27 11:19 - 2014-05-20 04:44 - 09735256 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2014-05-27 11:19 - 2014-05-20 04:44 - 09697640 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2014-05-27 11:19 - 2014-05-20 04:44 - 03141976 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2014-05-27 11:19 - 2014-05-20 04:44 - 02953672 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2014-05-27 11:19 - 2014-05-20 04:44 - 02785568 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll
2014-05-27 11:19 - 2014-05-20 04:44 - 02412376 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll
2014-05-27 11:19 - 2014-05-20 04:44 - 01889112 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433788.dll
2014-05-27 11:19 - 2014-05-20 04:44 - 01541576 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433788.dll
2014-05-27 11:19 - 2014-05-20 04:44 - 00895776 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2014-05-27 11:19 - 2014-05-20 04:44 - 00892704 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2014-05-27 11:19 - 2014-05-20 04:44 - 00867784 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2014-05-27 11:19 - 2014-05-20 04:44 - 00861128 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2014-05-27 11:19 - 2014-05-20 04:44 - 00837056 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2014-05-27 11:19 - 2014-05-20 04:44 - 00492376 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2014-05-27 11:19 - 2014-05-20 04:44 - 00416712 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2014-05-27 11:19 - 2014-05-20 04:44 - 00382240 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2014-05-27 11:19 - 2014-05-20 04:44 - 00354016 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2014-05-27 11:19 - 2014-05-20 04:44 - 00335704 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2014-05-27 11:19 - 2014-05-20 04:44 - 00305600 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2014-05-27 11:19 - 2014-05-20 04:44 - 00166568 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2014-05-27 11:19 - 2014-05-20 04:44 - 00146480 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2014-05-23 22:15 - 2014-06-17 07:42 - 00003486 _____ () C:\Windows\System32\Tasks\AutoKMS
2014-05-21 22:01 - 2014-03-28 10:23 - 19759104 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-05-21 22:01 - 2014-03-28 08:18 - 17562112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2014-05-21 22:01 - 2014-03-24 00:11 - 00269592 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdFilter.sys
2014-05-21 22:00 - 2014-04-12 11:27 - 00172888 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-05-21 22:00 - 2014-04-12 11:10 - 00578048 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2014-05-21 22:00 - 2014-04-12 11:09 - 01043968 _____ (Microsoft Corporation) C:\Windows\system32\usercpl.dll
2014-05-21 22:00 - 2014-04-12 11:09 - 00588288 _____ (Microsoft Corporation) C:\Windows\system32\SHCore.dll
2014-05-21 22:00 - 2014-04-12 11:09 - 00208896 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2014-05-21 22:00 - 2014-04-12 11:09 - 00094720 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-05-21 22:00 - 2014-04-12 11:08 - 01281536 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-05-21 22:00 - 2014-04-12 11:08 - 00827904 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-05-21 22:00 - 2014-04-12 11:08 - 00439808 _____ (Microsoft Corporation) C:\Windows\system32\lsm.dll
2014-05-21 22:00 - 2014-04-12 11:08 - 00318464 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2014-05-21 22:00 - 2014-04-12 11:07 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-05-21 22:00 - 2014-04-12 09:23 - 00961536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usercpl.dll
2014-05-21 22:00 - 2014-04-12 09:23 - 00452608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SHCore.dll
2014-05-21 22:00 - 2014-04-12 09:23 - 00273920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2014-05-21 22:00 - 2014-04-12 09:23 - 00178688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2014-05-21 22:00 - 2014-04-12 09:23 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2014-05-21 22:00 - 2014-04-12 09:22 - 00666624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-05-21 22:00 - 2014-04-12 09:22 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2014-05-21 22:00 - 2014-04-12 08:58 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\workerdd.dll
2014-05-21 22:00 - 2014-03-28 21:19 - 00035856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdBoot.sys
2014-05-21 22:00 - 2014-03-28 10:23 - 01287168 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2014-05-21 22:00 - 2014-03-11 05:32 - 06987096 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-05-21 22:00 - 2014-03-11 05:25 - 00100184 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2014-05-21 22:00 - 2014-03-11 02:41 - 00559104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\objsel.dll
2014-05-21 22:00 - 2014-03-11 02:41 - 00323072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2014-05-21 22:00 - 2014-03-11 02:41 - 00038400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dimsroam.dll
2014-05-21 22:00 - 2014-03-11 02:39 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2014-05-21 22:00 - 2014-03-11 02:38 - 00982016 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2014-05-21 22:00 - 2014-03-11 02:38 - 00684032 _____ (Microsoft Corporation) C:\Windows\system32\objsel.dll
2014-05-21 22:00 - 2014-03-11 02:38 - 00419328 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-05-21 22:00 - 2014-03-11 02:38 - 00179712 _____ (Microsoft Corporation) C:\Windows\system32\dpapisrv.dll
2014-05-21 22:00 - 2014-03-11 02:38 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2014-05-21 22:00 - 2014-03-11 02:38 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\dimsroam.dll
2014-05-21 22:00 - 2014-03-11 02:38 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2014-05-21 22:00 - 2014-03-10 05:05 - 00668160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2014-05-21 22:00 - 2014-03-10 03:27 - 00099840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-05-21 22:00 - 2014-03-04 01:07 - 00570216 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2014-05-21 21:59 - 2014-03-01 11:47 - 01258496 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2014-05-21 21:59 - 2014-03-01 11:47 - 01120768 _____ (Microsoft Corporation) C:\Windows\system32\gpedit.dll
2014-05-21 21:59 - 2014-03-01 10:07 - 01075200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpedit.dll
2014-05-21 21:59 - 2014-03-01 08:59 - 00974848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2014-05-21 21:59 - 2014-02-27 01:18 - 00370688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2014-05-21 21:59 - 2014-02-27 01:18 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2014-05-21 21:59 - 2014-02-27 01:18 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2014-05-21 21:59 - 2014-02-15 06:15 - 00078336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\IPMIDrv.sys
2014-05-20 16:24 - 2014-05-20 16:24 - 01644626 _____ (A-PDF Solution ) C:\Users\Still-Alive\Downloads\a-pdf-rr.exe
2014-05-20 16:11 - 2014-05-20 16:19 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-05-20 16:11 - 2014-05-20 16:11 - 00002019 _____ () C:\Users\Public\Desktop\Adobe Reader XI.lnk
2014-05-20 14:09 - 2014-05-20 20:02 - 00016615 _____ () C:\Users\Still-Alive\Documents\Lucerna.xlsx
2014-05-20 12:37 - 2014-05-20 12:37 - 00089088 _____ () C:\Users\Still-Alive\AppData\Local\GDIPFONTCACHEV1.DAT

==================== One Month Modified Files and Folders =======

2014-06-17 07:56 - 2014-06-17 07:55 - 00013615 _____ () C:\Users\Still-Alive\Desktop\FRST.txt
2014-06-17 07:56 - 2013-01-11 14:48 - 00000000 ____D () C:\Users\Still-Alive\AppData\Local\Temp
2014-06-17 07:55 - 2014-06-17 07:55 - 00112640 _____ (forum.viry.cz) C:\Users\Still-Alive\Desktop\FRSTLauncher.exe
2014-06-17 07:55 - 2014-06-17 07:55 - 00029696 _____ () C:\Users\Still-Alive\AppData\Local\MSGBOX.EXE
2014-06-17 07:55 - 2014-06-17 07:55 - 00015327 _____ () C:\Users\Still-Alive\Desktop\LM.bat
2014-06-17 07:55 - 2014-06-17 07:54 - 02081280 _____ (Farbar) C:\Users\Still-Alive\Desktop\FRST64.exe
2014-06-17 07:55 - 2014-06-16 20:54 - 00000000 ____D () C:\FRST
2014-06-17 07:53 - 2013-06-12 20:35 - 00000000 ____D () C:\Users\Still-Alive\AppData\Local\JDownloader v2.0
2014-06-17 07:51 - 2012-07-26 10:12 - 00000000 ____D () C:\Windows\system32\sru
2014-06-17 07:47 - 2012-07-26 12:01 - 00726246 _____ () C:\Windows\system32\perfh005.dat
2014-06-17 07:47 - 2012-07-26 12:01 - 00147800 _____ () C:\Windows\system32\perfc005.dat
2014-06-17 07:47 - 2012-07-26 09:28 - 01714430 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-06-17 07:46 - 2013-01-11 14:55 - 00003598 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3304260785-2353553996-2048135476-1001
2014-06-17 07:42 - 2014-05-23 22:15 - 00003486 _____ () C:\Windows\System32\Tasks\AutoKMS
2014-06-17 07:40 - 2013-05-14 21:10 - 00018904 _____ () C:\Windows\PFRO.log
2014-06-17 07:40 - 2013-01-11 14:55 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-06-17 07:40 - 2012-07-26 09:22 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-06-17 07:39 - 2014-06-17 07:38 - 00000000 ____D () C:\AdwCleaner
2014-06-17 07:37 - 2014-06-17 07:37 - 01333465 _____ () C:\Users\Still-Alive\Desktop\adwcleaner_3.212.exe
2014-06-16 22:30 - 2014-06-16 21:29 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-06-16 22:29 - 2012-07-26 10:12 - 00000000 ____D () C:\Windows\PLA
2014-06-16 22:18 - 2013-01-11 14:58 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-06-16 22:12 - 2014-06-16 22:12 - 00007017 _____ () C:\wtf.txt
2014-06-16 21:54 - 2013-03-05 15:26 - 00000000 ____D () C:\Windows\AutoKMS
2014-06-16 21:47 - 2014-06-16 21:47 - 00009233 _____ () C:\malvare.txt
2014-06-16 21:33 - 2013-01-11 15:09 - 00000000 ____D () C:\Users\Still-Alive\AppData\Roaming\Skype
2014-06-16 21:29 - 2014-06-16 21:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-06-16 21:29 - 2014-06-16 21:29 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-06-16 21:29 - 2014-06-16 21:28 - 00000000 ____D () C:\Users\Still-Alive\AppData\Roaming\Malwarebytes
2014-06-16 21:29 - 2014-06-16 21:27 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-06-16 21:25 - 2014-06-16 21:25 - 11167316 _____ () C:\Users\Still-Alive\Desktop\cc-setup.exe
2014-06-16 21:09 - 2014-03-20 12:19 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-06-16 21:09 - 2013-01-11 15:09 - 00000000 ____D () C:\ProgramData\Skype
2014-06-16 20:46 - 2014-06-16 20:44 - 00000000 ____D () C:\Program Files (x86)\Google
2014-06-16 20:45 - 2014-06-16 20:45 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-06-16 20:45 - 2014-06-16 20:45 - 00001966 _____ () C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2014-06-16 20:45 - 2014-06-16 20:45 - 00000000 ____D () C:\Users\Still-Alive\AppData\Roaming\AVAST Software
2014-06-16 20:45 - 2014-06-16 20:45 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast
2014-06-16 20:45 - 2014-06-16 20:44 - 01039096 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys
2014-06-16 20:45 - 2014-06-16 20:44 - 00423240 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2014-06-16 20:45 - 2014-06-16 20:44 - 00085328 _____ (AVAST Software) C:\Windows\system32\Drivers\aswstm.sys
2014-06-16 20:44 - 2014-06-16 20:44 - 01039096 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys.1402944320421
2014-06-16 20:44 - 2014-06-16 20:44 - 00423240 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys.1402944320421
2014-06-16 20:44 - 2014-06-16 20:44 - 00334648 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-06-16 20:44 - 2014-06-16 20:44 - 00208416 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2014-06-16 20:44 - 2014-06-16 20:44 - 00093568 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2014-06-16 20:44 - 2014-06-16 20:44 - 00079184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-06-16 20:44 - 2014-06-16 20:44 - 00065776 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2014-06-16 20:44 - 2014-06-16 20:44 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-06-16 20:44 - 2014-06-16 20:44 - 00029208 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2014-06-16 20:44 - 2013-06-24 14:20 - 00000000 ____D () C:\Users\Still-Alive\AppData\Local\Google
2014-06-16 20:43 - 2014-06-16 20:43 - 00000000 ____D () C:\Program Files\AVAST Software
2014-06-16 20:42 - 2014-06-16 20:42 - 00000000 ____D () C:\ProgramData\AVAST Software
2014-06-16 20:39 - 2013-04-05 14:19 - 01807754 _____ () C:\Windows\WindowsUpdate.log
2014-06-16 20:39 - 2012-07-26 07:26 - 00262144 ___SH () C:\Windows\system32\config\BBI
2014-06-16 20:38 - 2012-07-26 07:26 - 00262144 ___SH () C:\Windows\system32\config\ELAM
2014-06-16 20:35 - 2012-07-26 10:12 - 00000000 ____D () C:\Windows\AUInstallAgent
2014-06-16 20:29 - 2013-05-08 13:52 - 00000000 ____D () C:\Users\Still-Alive\AppData\Roaming\uTorrent
2014-06-16 17:50 - 2013-01-11 19:18 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-06-16 17:49 - 2013-12-21 11:40 - 00000000 ____D () C:\ProgramData\Codemasters
2014-06-16 17:24 - 2014-02-26 15:29 - 00000000 ____D () C:\Users\Still-Alive\AppData\Local\Battle.net
2014-06-16 12:31 - 2013-12-09 12:20 - 00000000 ____D () C:\Users\Still-Alive\Downloads\Cundicky
2014-06-15 20:12 - 2013-02-10 00:14 - 00000000 ____D () C:\Users\Still-Alive\Downloads\Blend
2014-06-15 18:05 - 2014-06-15 18:05 - 00000000 ____D () C:\Users\Still-Alive\Documents\STILL
2014-06-15 11:36 - 2014-06-14 09:24 - 00040991 _____ () C:\Users\Still-Alive\Documents\MGR-Studium.xlsx
2014-06-14 07:48 - 2014-06-14 07:48 - 00183946 _____ () C:\Users\Still-Alive\Downloads\unterpantofel.htm
2014-06-14 07:48 - 2014-06-14 07:48 - 00000000 ____D () C:\Users\Still-Alive\Downloads\unterpantofel_soubory
2014-06-14 07:48 - 2014-06-13 21:53 - 00000000 ____D () C:\Users\Still-Alive\Downloads\Eleanor - Community - Diablo III_soubory
2014-06-13 21:53 - 2014-06-13 21:53 - 00112756 _____ () C:\Users\Still-Alive\Downloads\Eleanor - Community - Diablo III.xht
2014-06-13 09:12 - 2014-06-13 09:12 - 00000854 _____ () C:\Users\Still-Alive\Desktop\µTorrent.lnk
2014-06-13 09:12 - 2014-06-13 09:12 - 00000834 _____ () C:\Users\Still-Alive\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2014-06-12 21:54 - 2014-01-30 08:05 - 00000000 ____D () C:\Users\Still-Alive\Downloads\87857-11-12222
2014-06-12 19:35 - 2014-06-05 15:46 - 00000000 ____D () C:\Users\Still-Alive\AppData\Local\Deployment
2014-06-12 14:47 - 2014-05-28 18:10 - 00000162 _____ () C:\Users\Still-Alive\Desktop\bakalarka-hodiny.txt
2014-06-12 06:10 - 2013-02-10 18:10 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-06-12 06:10 - 2012-07-26 09:59 - 00000000 ____D () C:\Windows\CbsTemp
2014-06-12 06:08 - 2013-08-26 18:47 - 00000000 ____D () C:\Windows\system32\MRT
2014-06-12 06:07 - 2013-01-11 15:26 - 95414520 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-06-11 13:24 - 2014-02-26 15:29 - 00000000 ____D () C:\Program Files (x86)\Battle.net
2014-06-09 17:13 - 2014-04-21 21:59 - 00000000 ____D () C:\Users\Still-Alive\AppData\Roaming\Audacity
2014-06-06 06:39 - 2014-06-06 06:39 - 00000000 ____D () C:\ProgramData\Steam
2014-06-06 06:13 - 2014-06-06 06:13 - 00000000 ____D () C:\Users\Still-Alive\AppData\Roaming\WinUpdate
2014-06-05 15:46 - 2014-06-05 15:46 - 00000000 ____D () C:\Users\Still-Alive\AppData\Local\Apps\2.0
2014-06-05 12:41 - 2013-01-13 20:05 - 00000000 ____D () C:\Windows\SysWOW64\directx
2014-06-05 11:06 - 2014-06-05 11:06 - 00000692 _____ () C:\Users\Public\Desktop\WarThunder.lnk
2014-06-05 11:06 - 2014-06-05 11:06 - 00000000 ____D () C:\Users\Still-Alive\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WarThunder
2014-06-04 18:41 - 2014-06-04 18:41 - 00000027 _____ () C:\Users\Still-Alive\Desktop\pecko.txt
2014-06-01 07:22 - 2014-06-01 07:22 - 00008385 _____ () C:\Users\Still-Alive\Documents\kontrola-stitek.xlsx
2014-05-31 23:46 - 2014-05-07 18:05 - 00000000 ____D () C:\Users\Still-Alive\Downloads\fukar
2014-05-31 07:16 - 2014-04-09 09:45 - 00703992 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-05-31 07:16 - 2014-04-09 09:45 - 00105464 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-05-27 11:23 - 2014-05-27 11:23 - 00002137 _____ () C:\Users\Public\Desktop\3D Vision Photo Viewer.lnk
2014-05-27 11:23 - 2014-05-27 11:23 - 00000000 ____D () C:\Program Files (x86)\AGEIA Technologies
2014-05-27 11:23 - 2013-05-19 18:20 - 00011251 _____ () C:\Windows\setupact.log
2014-05-27 11:23 - 2013-04-05 15:10 - 00000000 ____D () C:\Temp
2014-05-27 11:23 - 2013-01-11 15:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2014-05-27 11:23 - 2013-01-11 14:53 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2014-05-27 11:05 - 2013-02-10 18:10 - 00000000 ____D () C:\Users\Still-Alive\AppData\Local\Microsoft Help
2014-05-25 18:34 - 2013-04-16 18:54 - 00000000 ____D () C:\Windows\rescache
2014-05-24 04:48 - 2014-06-11 18:31 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-05-24 04:47 - 2014-06-11 18:31 - 02239488 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-05-24 04:47 - 2014-06-11 18:31 - 01366016 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-05-24 04:47 - 2014-06-11 18:31 - 00915968 _____ (Microsoft Corporation) C:\Windows\system32\uxtheme.dll
2014-05-24 04:47 - 2014-06-11 18:31 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\UXInit.dll
2014-05-24 04:46 - 2014-06-11 18:31 - 19290112 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-05-24 04:46 - 2014-06-11 18:31 - 15368704 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-05-24 04:46 - 2014-06-11 18:31 - 03958784 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-05-24 04:46 - 2014-06-11 18:31 - 02650112 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-05-24 04:46 - 2014-06-11 18:31 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-05-24 04:46 - 2014-06-11 18:31 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-05-24 04:46 - 2014-06-11 18:31 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-05-24 04:46 - 2014-06-11 18:31 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-05-24 04:46 - 2014-06-11 18:31 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-05-24 04:46 - 2014-06-11 18:31 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-05-24 04:46 - 2014-06-11 18:31 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-05-24 04:46 - 2014-06-11 18:31 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-05-24 04:45 - 2014-06-11 18:31 - 01508864 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-05-24 04:45 - 2014-06-11 18:31 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-05-24 04:45 - 2014-06-11 18:31 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-05-24 03:26 - 2014-06-11 18:32 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-05-24 03:26 - 2014-06-11 18:32 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-05-24 03:26 - 2014-06-11 18:31 - 14365696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-05-24 03:26 - 2014-06-11 18:31 - 01766400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-05-24 03:26 - 2014-06-11 18:31 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-05-24 03:26 - 2014-06-11 18:31 - 00080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-05-24 03:26 - 2014-06-11 18:31 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UXInit.dll
2014-05-24 03:25 - 2014-06-11 18:32 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-05-24 03:25 - 2014-06-11 18:32 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-05-24 03:25 - 2014-06-11 18:31 - 13731328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-05-24 03:25 - 2014-06-11 18:31 - 02862080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-05-24 03:25 - 2014-06-11 18:31 - 02050560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-05-24 03:25 - 2014-06-11 18:31 - 01440768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-05-24 03:25 - 2014-06-11 18:31 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-05-24 03:25 - 2014-06-11 18:31 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-05-24 03:25 - 2014-06-11 18:31 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-05-24 03:25 - 2014-06-11 18:31 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-05-24 03:25 - 2014-06-11 18:31 - 00039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-05-24 03:09 - 2014-06-11 18:31 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-05-24 03:03 - 2014-06-11 18:31 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-05-24 00:37 - 2014-06-11 18:31 - 00534528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uxtheme.dll
2014-05-22 07:12 - 2013-01-11 14:49 - 00000000 ___RD () C:\Users\Still-Alive\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-05-22 07:12 - 2013-01-11 14:49 - 00000000 ___RD () C:\Users\Still-Alive\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-05-21 23:28 - 2012-07-26 10:12 - 00000000 ___RD () C:\Windows\ToastData
2014-05-21 23:28 - 2012-07-26 10:12 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-05-21 23:28 - 2012-07-26 10:12 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-05-21 23:28 - 2012-07-26 10:12 - 00000000 ____D () C:\Windows\system32\SecureBootUpdates
2014-05-21 23:28 - 2012-07-26 10:12 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-05-21 23:28 - 2012-07-26 10:12 - 00000000 ____D () C:\Program Files\Windows Defender
2014-05-21 23:28 - 2012-07-26 10:12 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
2014-05-20 20:02 - 2014-05-20 14:09 - 00016615 _____ () C:\Users\Still-Alive\Documents\Lucerna.xlsx
2014-05-20 16:24 - 2014-05-20 16:24 - 01644626 _____ (A-PDF Solution ) C:\Users\Still-Alive\Downloads\a-pdf-rr.exe
2014-05-20 16:19 - 2014-05-20 16:11 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-05-20 16:19 - 2013-02-25 09:58 - 00000000 ____D () C:\Users\Still-Alive\AppData\Local\Adobe
2014-05-20 16:12 - 2013-02-25 09:59 - 00000000 ____D () C:\ProgramData\Adobe
2014-05-20 16:12 - 2013-01-11 14:49 - 00000000 ____D () C:\Users\Still-Alive\AppData\Roaming\Adobe
2014-05-20 16:11 - 2014-05-20 16:11 - 00002019 _____ () C:\Users\Public\Desktop\Adobe Reader XI.lnk
2014-05-20 16:11 - 2013-02-25 09:59 - 00000000 ____D () C:\Program Files (x86)\Adobe
2014-05-20 12:37 - 2014-05-20 12:37 - 00089088 _____ () C:\Users\Still-Alive\AppData\Local\GDIPFONTCACHEV1.DAT
2014-05-20 04:44 - 2014-05-27 11:19 - 31387936 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2014-05-20 04:44 - 2014-05-27 11:19 - 25256224 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2014-05-20 04:44 - 2014-05-27 11:19 - 24025376 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2014-05-20 04:44 - 2014-05-27 11:19 - 17561544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2014-05-20 04:44 - 2014-05-27 11:19 - 17480432 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2014-05-20 04:44 - 2014-05-27 11:19 - 12688328 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2014-05-20 04:44 - 2014-05-27 11:19 - 11644928 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2014-05-20 04:44 - 2014-05-27 11:19 - 11599072 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2014-05-20 04:44 - 2014-05-27 11:19 - 09735256 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2014-05-20 04:44 - 2014-05-27 11:19 - 09697640 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2014-05-20 04:44 - 2014-05-27 11:19 - 03141976 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2014-05-20 04:44 - 2014-05-27 11:19 - 02953672 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2014-05-20 04:44 - 2014-05-27 11:19 - 02785568 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll
2014-05-20 04:44 - 2014-05-27 11:19 - 02412376 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll
2014-05-20 04:44 - 2014-05-27 11:19 - 01889112 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433788.dll
2014-05-20 04:44 - 2014-05-27 11:19 - 01541576 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433788.dll
2014-05-20 04:44 - 2014-05-27 11:19 - 00895776 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2014-05-20 04:44 - 2014-05-27 11:19 - 00892704 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2014-05-20 04:44 - 2014-05-27 11:19 - 00867784 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2014-05-20 04:44 - 2014-05-27 11:19 - 00861128 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2014-05-20 04:44 - 2014-05-27 11:19 - 00837056 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2014-05-20 04:44 - 2014-05-27 11:19 - 00492376 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2014-05-20 04:44 - 2014-05-27 11:19 - 00416712 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2014-05-20 04:44 - 2014-05-27 11:19 - 00382240 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2014-05-20 04:44 - 2014-05-27 11:19 - 00354016 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2014-05-20 04:44 - 2014-05-27 11:19 - 00335704 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2014-05-20 04:44 - 2014-05-27 11:19 - 00305600 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2014-05-20 04:44 - 2014-05-27 11:19 - 00166568 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2014-05-20 04:44 - 2014-05-27 11:19 - 00146480 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2014-05-20 04:44 - 2013-04-04 08:50 - 14434704 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2014-05-20 04:44 - 2013-02-19 12:59 - 00026069 _____ () C:\Windows\system32\nvinfo.pb
2014-05-20 04:44 - 2013-01-11 15:08 - 18531568 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2014-05-20 04:44 - 2013-01-11 15:08 - 16003912 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2014-05-20 04:44 - 2013-01-11 15:08 - 03109248 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2014-05-20 04:44 - 2013-01-11 15:08 - 00952952 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2014-05-20 04:44 - 2013-01-11 14:54 - 00061216 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2014-05-20 04:44 - 2013-01-11 14:54 - 00052056 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2014-05-20 04:44 - 2012-10-19 01:02 - 02730208 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2014-05-20 03:25 - 2013-01-11 14:54 - 06769096 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2014-05-20 03:25 - 2013-01-11 14:54 - 03514144 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2014-05-20 03:25 - 2013-01-11 14:54 - 02560968 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2014-05-20 03:25 - 2013-01-11 14:54 - 00927520 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2014-05-20 03:25 - 2013-01-11 14:54 - 00387528 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2014-05-20 03:25 - 2013-01-11 14:54 - 00062808 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2014-05-20 01:10 - 2014-05-27 11:23 - 00601432 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe

Some content of TEMP:
====================
C:\Users\Still-Alive\AppData\Local\Temp\46061uninstall.exe
C:\Users\Still-Alive\AppData\Local\Temp\drm_dyndata_7380014.dll
C:\Users\Still-Alive\AppData\Local\Temp\drm_dyndata_7390005.dll
C:\Users\Still-Alive\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpyl42cw.dll
C:\Users\Still-Alive\AppData\Local\Temp\Execute2App.exe
C:\Users\Still-Alive\AppData\Local\Temp\InstHelper.exe
C:\Users\Still-Alive\AppData\Local\Temp\jre-7u25-windows-i586-iftw.exe
C:\Users\Still-Alive\AppData\Local\Temp\Kies2RemoveAll.exe
C:\Users\Still-Alive\AppData\Local\Temp\msvcp90.dll
C:\Users\Still-Alive\AppData\Local\Temp\msvcr90.dll
C:\Users\Still-Alive\AppData\Local\Temp\nv3DVStreaming.dll
C:\Users\Still-Alive\AppData\Local\Temp\nvSCPAPI.dll
C:\Users\Still-Alive\AppData\Local\Temp\nvSCPAPI64.dll
C:\Users\Still-Alive\AppData\Local\Temp\nvStereoApiI.dll
C:\Users\Still-Alive\AppData\Local\Temp\nvStInst.exe
C:\Users\Still-Alive\AppData\Local\Temp\ose00000.exe
C:\Users\Still-Alive\AppData\Local\Temp\proxy_vole7513451595786976459.dll
C:\Users\Still-Alive\AppData\Local\Temp\Quarantine.exe
C:\Users\Still-Alive\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Still-Alive\AppData\Local\Temp\sonarinst.exe
C:\Users\Still-Alive\AppData\Local\Temp\Sqlite3.dll
C:\Users\Still-Alive\AppData\Local\Temp\utt40A8.tmp.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-06-14 11:56

==================== End Of Log ============================
Nahoru
Zamčeno

Zpět na „Řešení problémů, logy“