VIRY.CZ

Ahojte, mohl by mi někdo prosím prventivně zkontrolovat log? Včera se mi v PC objevil Bettersurf, smazal jsem ho a pak projel PC uplnou kontrolou MBAM. Ten našel nějaké pozůstatky nejspíše po tom Bettersurf a ještě asi něco jiného. Převážně nějaké soubory ze složky Appdata a Temp (například jakýsi updater.exe) a nějaké problémy z registrů. Vše jsem tedy smazal. Pc nevykazuje žádné divné chování. Takže je to je pro jistotu.
Btw. Jen tada nechápu, kde jsem ten Bettersurf chytil. Objevil se mi včera (respektive se mi objevily zvýrazněná slova s reklamními odkazy na stránkách, kde bych to nečekal a taky obrovské množství bannerů ve Firefoxu). Nic jsem neinstaloval ani nestahoval, ale Bettersurf si vesele trůnil v mých program files. Fakt nechápu :/. Jak se tam mohl sám od sebe objevit. Na instalačky a balast, který se s nimi zanáší do PC si totiž fakt dávám bacha.

Log jsem hodil na uložto, mám problémy ho sem zkopírovat.
Předem děkuji tomu, co se na to mrkne.

Zdravim

Stahnete Junkware Removal Tool http://thisisudax.org/downloads/JRT.exe

• Ulozte nejlepe na plochu
• Po spusteni se zobrazi licencni podminky, stisknete libovolnou klavesu
• Probehne vytvoreni zalohy a nasledne prohledavani
• Probehne skenovani a pak se objevi log, pripadne bude ulozen v c:\JRT jako JRT.txt, ten sem vlozte

Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner

• Ulozte nejlepe na plochu
• Ukoncete vsechny programy
• Kliknete na Scan a nasledne Clean
• Probehne oprava, restart PC a pak se objevi log, pripadne bude ulozen ve slozce c:\AdwCleaner\AdwCleaner[S?].txt, ten sem vlozte

Zde je Junkware

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.8 (11.05.2013:1)
OS: Windows 8 x64
Ran by Pepa Grmolenskě on st 11. 12. 2013 at 20:03:06,51
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\conduit
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\software\smartbar
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\conduit
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\conduit
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{29B48F54-D75E-4301-992E-60C5A63CC6FC}



~~~ Files



~~~ Folders

Successfully deleted: [Folder] "C:\Users\Pepa Grmolenskě\appdata\local\swvupdater"



~~~ FireFox

Emptied folder: C:\Users\Pepa Grmolenskě\AppData\Roaming\mozilla\firefox\profiles\asnq7wnf.default\minidumps [30 files]



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on st 11. 12. 2013 at 20:05:28,37
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

A zde je AdwCleaner

# AdwCleaner v3.015 - Report created 11/12/2013 at 20:08:09
# Updated 10/12/2013 by Xplode
# Operating System : Windows 8 (64 bits)
# Username : Pepa Grmolenský - MUJ-PC
# Running from : C:\Users\Pepa Grmolenský\Desktop\adwcleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

File Deleted : C:\windows\System32\roboot64.exe

***** [ Shortcuts ] *****


***** [ Registry ] *****

Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [12x3q@3244516.com]
Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [xz123@ya456.com]
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\dedmngkbaffkenlfdcbganndoghblmap
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\poheodfamflhhhdcmjfeggbgigeefaco
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{BEAA0C04-ED15-4C17-800B-28716025A4E4}
Key Deleted : HKLM\Software\Conduit

***** [ Browsers ] *****

-\\ Internet Explorer v10.0.9200.16537


-\\ Mozilla Firefox v25.0.1 (cs)

[ File : C:\Users\Pepa Grmolenský\AppData\Roaming\Mozilla\Firefox\Profiles\asnq7wnf.default\prefs.js ]


[ File : C:\Users\Pep Quest\AppData\Roaming\Mozilla\Firefox\Profiles\4sl3o50f.default\prefs.js ]


*************************

AdwCleaner[R0].txt - [1509 octets] - [11/12/2013 20:07:41]
AdwCleaner[S0].txt - [1294 octets] - [11/12/2013 20:08:09]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [1354 octets] ##########

Poprosim o log dle tohoto navodu http://forum.viry.cz/viewtopic.php?f=30&t=133101

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 11-12-2013
Ran by Pepa Grmolenský (administrator) on MUJ-PC on 11-12-2013 21:58:54
Running from C:\Users\Pepa Grmolenský\Desktop
Windows 8 (X64) OS Language: Czech
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore64.exe
(Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
(Broadcom Corporation.) C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
() C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Secunia) C:\Program Files (x86)\Secunia\PSI\sua.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Lenovo (Beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDIntelligent.exe
(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\utility.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
(Dolby Laboratories Inc.) C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe
(ALTAP) C:\Program Files (x86)\Altap Salamander\salamand.exe
(Intel Corporation) C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
(Intel(R) Corporation) C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(FinalWire Ltd.) C:\Program Files (x86)\FinalWire\AIDA64 Extreme Edition\aida64.exe
(MPC-HC Team) C:\Program Files (x86)\MPC-HC\mpc-hc.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_170.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_170.exe
(forum.viry.cz) C:\Users\Pepa Grmolenský\Desktop\FRSTLauncher.exe
(Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(Microsoft Corporation) C:\Windows\SysWOW64\PING.EXE

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [SmartAudio] - C:\Program Files\CONEXANT\SAII\SACpl.exe [1647616 2012-06-13] (Conexant Systems, Inc.)
HKLM\...\Run: [cAudioFilterAgent] - C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe [887968 2012-06-15] (Conexant Systems, Inc.)
HKLM\...\Run: [ETDCtrl] - C:\Program Files\Elantech\ETDCtrl.exe [2864016 2012-08-08] (ELAN Microelectronics Corp.)
HKLM\...\Run: [Energy Management] - C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [17079376 2012-11-24] (Lenovo (Beijing) Limited)
HKLM\...\Run: [EnergyUtility] - C:\Program Files (x86)\Lenovo\Energy Management\utility.exe [191568 2012-11-24] (Lenovo(beijing) Limited)
HKLM\...\Run: [HotKeysCmds] - C:\windows\system32\hkcmd.exe [ ] ()
HKLM\...\Run: [Start WingMan Profiler] - C:\Program Files\Logitech\Gaming Software\LWEMon.exe [190536 2010-06-14] (Logitech Inc.)
HKLM\...\Run: [Nvtmru] - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe [1028384 2013-11-08] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] - C:\windows\system32\rundll32.exe C:\windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [egui] - C:\Program Files\ESET\ESET Smart Security\egui.exe [5618456 2013-09-12] (ESET)
HKLM\...\Run: [NvBackend] - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2273056 2013-11-29] (NVIDIA Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKCU\...\Run: [Steam] - C:\games\Steam\Steam.exe [1820584 2013-10-30] (Valve Corporation)
MountPoints2: {9604b554-b8b8-11e2-be79-c0143dd679f8} - "F:\autorun.exe"
HKLM-x32\...\Run: [Dolby Advanced Audio v2] - C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe [508656 2012-07-26] (Dolby Laboratories Inc.)
HKLM-x32\...\Run: [RemoteControl10] - C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe [91432 2012-03-29] (CyberLink Corp.)
HKLM-x32\...\Run: [VirtualCloneDrive] - C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [89456 2011-03-07] (Elaborate Bytes AG)
HKLM-x32\...\Run: [HTC Sync Loader] - C:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe [651264 2012-04-17] ()
HKU\Default\...\RunOnce: [Lenovo.ShowBand] - C:\Program Files\Lenovo\SimpleTap DeskBand\ShowBand.exe [52584 2013-05-17] (Lenovo)
AppInit_DLLs: C:\Windows\System32\nvinitx.dll [168616 2013-11-14] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\windows\SysWOW64\nvinit.dll [141336 2013-11-14] (NVIDIA Corporation)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://lenovo13.msn.com
HKCU\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://www.lenovo.com
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://www.lenovo.com
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKLM - {990A8642-7521-448A-822D-109FA1B3A72D} URL = http://www.bing.com/search?q={searchTer ... &pc=MALNJS
SearchScopes: HKLM-x32 - {990A8642-7521-448A-822D-109FA1B3A72D} URL = http://www.bing.com/search?q={searchTer ... &pc=MALNJS
SearchScopes: HKCU - {32B65CF4-3358-4B70-85C0-0F6918C76621} URL = http://tv.seznam.cz/hledej?w={searchTer ... arch_12454
SearchScopes: HKCU - {71B82549-43F5-4307-8C11-AF816C42DFCE} URL = http://www.firmy.cz/?q={searchTerms}&so ... arch_12454
SearchScopes: HKCU - {8CC7A916-AA88-484D-9604-7D2134D0E9C9} URL = http://www.novinky.cz/hledej?w={searchT ... arch_12454
SearchScopes: HKCU - {990A8642-7521-448A-822D-109FA1B3A72D} URL =
SearchScopes: HKCU - {9E353755-2F02-4DA9-9E2C-E1BABACC5671} URL = http://www.zbozi.cz/?q={searchTerms}&r= ... arch_12454
SearchScopes: HKCU - {A4DC3AA3-45BC-4DC0-ACEE-309CBD7E3618} URL = http://slovnik.seznam.cz/?q={searchTerm ... arch_12454
SearchScopes: HKCU - {D086E1A0-364E-4095-BEFC-8B79BFAAE671} URL = http://slovnik.seznam.cz/?q={searchTerm ... arch_12454
SearchScopes: HKCU - {ED39F24B-DF3D-4308-8BCC-0ED942EE32B8} URL = http://www.mapy.cz/?query={searchTerms} ... arch_12454
SearchScopes: HKCU - {F1E4B04D-96E7-45A0-B802-D76FDCEE8B07} URL = http://encyklopedie.seznam.cz/search?q= ... arch_12454
Tcpip\Parameters: [DhcpNameServer] 178.17.80.66 178.17.80.67

FireFox:
========
FF ProfilePath: C:\Users\Pepa Grmolenský\AppData\Roaming\Mozilla\Firefox\Profiles\asnq7wnf.default
FF Homepage: hxxp://www.google.cz/
FF Plugin: @adobe.com/FlashPlayer - C:\windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=2.3.0 - C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll (ESN Social Software AB)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.0.5 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.0.7 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.0.8 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.0 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.1 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin HKCU: ubisoft.com/uplaypc - C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\jyxo-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF Extension: DownloadHelper - C:\Users\Pepa Grmolenský\AppData\Roaming\Mozilla\Firefox\Profiles\asnq7wnf.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
FF Extension: ESET Smart Security Extension - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
FF Extension: ESET Smart Security Extension - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird

==================== Services (Whitelisted) =================

R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [143088 2013-05-07] (SUPERAntiSpyware.com)
R2 BcmBtRSupport; C:\Windows\system32\BtwRSupportService.exe [2252600 2012-08-26] (Broadcom Corporation.)
R2 btwdins; C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe [953720 2012-08-27] (Broadcom Corporation.)
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [1337752 2013-09-12] (ESET)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-06-25] (Intel Corporation)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [273168 2011-12-08] ()
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1370912 2013-11-29] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [15128352 2013-11-29] (NVIDIA Corporation)
R2 PassThru Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [167424 2012-12-07] ()
R2 PnkBstrA; C:\windows\SysWow64\PnkBstrA.exe [76888 2013-05-15] ()
S3 Secunia PSI Agent; C:\Program Files (x86)\Secunia\PSI\PSIA.exe [1228504 2013-07-03] (Secunia)
R2 Secunia Update Agent; C:\Program Files (x86)\Secunia\PSI\sua.exe [660184 2013-07-03] (Secunia)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16048 2013-07-02] (Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [594704 2011-12-08] (Intel® Corporation)

==================== Drivers (Whitelisted) ====================

R3 AIDA64Driver; C:\Program Files (x86)\FinalWire\AIDA64 Extreme Edition\kerneld.x64 [32600 2013-09-16] ()
S3 bcbtums; C:\Windows\system32\drivers\bcbtums.sys [164152 2012-08-26] (Broadcom Corporation.)
R3 BCM43XX; C:\Windows\system32\DRIVERS\bcmwl63a.sys [6824520 2012-07-10] (Broadcom Corporation)
S3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [202752 2012-07-26] (Microsoft Corporation)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [239320 2013-09-17] (ESET)
R0 edevmon; C:\Windows\System32\DRIVERS\edevmon.sys [239296 2013-09-17] (ESET)
R1 ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [168256 2013-09-17] (ESET)
R2 epfw; C:\Windows\system32\DRIVERS\epfw.sys [220232 2013-09-17] (ESET)
R1 EpfwLWF; C:\Windows\system32\DRIVERS\EpfwLWF.sys [44120 2013-09-17] (ESET)
R0 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [62136 2013-09-17] (ESET)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [39200 2013-10-30] (NVIDIA Corporation)
S3 PSI; C:\Windows\System32\DRIVERS\psi_mf_amd64.sys [18456 2013-07-03] (Secunia)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [530488 2013-07-16] ()
S3 WIMMount; C:\Program Files (x86)\Windows Kits\8.0\Assessment and Deployment Kit\Deployment Tools\amd64\DISM\wimmount.sys [40392 2012-07-25] (Microsoft Corporation)
S3 wsvd; C:\Windows\system32\DRIVERS\wsvd.sys [102376 2012-06-14] ("CyberLink)
S3 vm331avs; \SystemRoot\System32\Drivers\vm331avs.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-12-11 21:58 - 2013-12-11 21:59 - 00014689 _____ C:\Users\Pepa Grmolenský\Desktop\FRST.txt
2013-12-11 21:58 - 2013-12-11 21:58 - 00029696 _____ C:\Users\Pepa Grmolenský\AppData\Local\MSGBOX.EXE
2013-12-11 21:58 - 2013-12-11 21:58 - 00015327 _____ C:\Users\Pepa Grmolenský\Desktop\LM.bat
2013-12-11 21:58 - 2013-12-11 21:58 - 00000000 ____D C:\FRST
2013-12-11 21:57 - 2013-12-11 21:57 - 01926944 _____ (Farbar) C:\Users\Pepa Grmolenský\Desktop\FRST64.exe
2013-12-11 21:57 - 2013-12-11 21:57 - 00112640 _____ (forum.viry.cz) C:\Users\Pepa Grmolenský\Desktop\FRSTLauncher.exe
2013-12-11 21:54 - 2013-12-11 21:55 - 22180353 _____ (Audacity Team ) C:\Users\Pepa Grmolenský\Desktop\audacity-win-2.0.5.exe
2013-12-11 20:09 - 2013-12-11 20:09 - 00312360 _____ C:\windows\system32\FNTCACHE.DAT
2013-12-11 20:07 - 2013-12-11 20:08 - 00000000 ____D C:\AdwCleaner
2013-12-11 20:03 - 2013-12-11 20:03 - 00000000 ____D C:\windows\ERUNT
2013-12-11 19:38 - 2013-12-11 19:38 - 00000000 ____D C:\Users\Pepa Grmolenský\Desktop\Assassins-Creed-3-ToGW-Soundtrack
2013-12-11 18:22 - 2013-12-11 18:22 - 00001566 _____ C:\windows\PFRO.log
2013-12-11 12:26 - 2013-12-11 12:26 - 00033463 _____ C:\Users\Pepa Grmolenský\Desktop\Oxen-(1991)-Swedish-DVDRip-eng-hardsub-.srt
2013-12-11 12:25 - 2013-12-11 13:10 - 795830272 _____ C:\Users\Pepa Grmolenský\Desktop\Oxen-(1991)-Swedish-DVDRip-eng-hardsub-.avi
2013-12-11 12:12 - 2013-12-11 12:12 - 00077593 _____ C:\Users\Pepa Grmolenský\Desktop\An.American.Crime.2007.FESTIVAL.DVDRip.XviD-BETAMAX.srt
2013-12-11 11:17 - 2013-12-11 11:59 - 730769408 _____ C:\Users\Pepa Grmolenský\Desktop\An.American.Crime.2007.FESTIVAL.DVDRip.XviD-BETAMAX.avi
2013-12-11 10:24 - 2013-12-11 19:38 - 00035502 _____ C:\Users\Pepa Grmolenský\Desktop\tarkovsky poznamky.odt
2013-12-11 10:17 - 2013-11-01 06:38 - 00312320 _____ (Microsoft Corporation) C:\windows\system32\msieftp.dll
2013-12-11 10:17 - 2013-11-01 04:49 - 00273408 _____ (Microsoft Corporation) C:\windows\SysWOW64\msieftp.dll
2013-12-11 10:16 - 2013-11-23 07:43 - 00420864 _____ (Microsoft Corporation) C:\windows\system32\WMPhoto.dll
2013-12-11 10:16 - 2013-11-23 06:05 - 00368640 _____ (Microsoft Corporation) C:\windows\SysWOW64\WMPhoto.dll
2013-12-11 10:15 - 2013-10-25 07:19 - 02241536 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2013-12-11 10:15 - 2013-10-25 07:19 - 01365504 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2013-12-11 10:15 - 2013-10-25 07:19 - 00915968 _____ (Microsoft Corporation) C:\windows\system32\uxtheme.dll
2013-12-11 10:15 - 2013-10-25 07:19 - 00051712 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2013-12-11 10:15 - 2013-10-25 07:18 - 19271168 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2013-12-11 10:15 - 2013-10-25 07:18 - 00603136 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2013-12-11 10:15 - 2013-10-25 07:17 - 15404032 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2013-12-11 10:15 - 2013-10-25 07:17 - 03959808 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2013-12-11 10:15 - 2013-10-25 07:17 - 02648576 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2013-12-11 10:15 - 2013-10-25 07:17 - 00855552 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2013-12-11 10:15 - 2013-10-25 05:45 - 01767936 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininet.dll
2013-12-11 10:15 - 2013-10-25 05:44 - 14356992 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2013-12-11 10:15 - 2013-10-25 05:44 - 01140736 _____ (Microsoft Corporation) C:\windows\SysWOW64\urlmon.dll
2013-12-11 10:15 - 2013-10-25 05:43 - 13761536 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll
2013-12-11 10:15 - 2013-10-25 05:43 - 02877952 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9.dll
2013-12-11 10:15 - 2013-10-25 05:43 - 02049024 _____ (Microsoft Corporation) C:\windows\SysWOW64\iertutil.dll
2013-12-11 10:15 - 2013-10-25 05:43 - 00690688 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript.dll
2013-12-11 10:15 - 2013-10-25 05:43 - 00493056 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeeds.dll
2013-12-11 10:14 - 2013-10-19 06:45 - 00062976 _____ (Microsoft Corporation) C:\windows\system32\imagehlp.dll
2013-12-11 10:14 - 2013-10-19 05:04 - 00059392 _____ (Microsoft Corporation) C:\windows\SysWOW64\imagehlp.dll
2013-12-11 10:13 - 2013-10-09 02:33 - 00059416 _____ (Microsoft Corporation) C:\windows\system32\wuauclt.exe
2013-12-11 10:13 - 2013-10-08 23:30 - 00628736 _____ (Microsoft Corporation) C:\windows\SysWOW64\wuapi.dll
2013-12-11 10:13 - 2013-10-08 23:30 - 00126976 _____ (Microsoft Corporation) C:\windows\SysWOW64\wuwebv.dll
2013-12-11 10:13 - 2013-10-08 23:30 - 00084992 _____ (Microsoft Corporation) C:\windows\SysWOW64\wudriver.dll
2013-12-11 10:13 - 2013-10-08 23:30 - 00035328 _____ (Microsoft Corporation) C:\windows\SysWOW64\wuapp.exe
2013-12-11 10:13 - 2013-10-08 23:28 - 00040448 _____ (Microsoft Corporation) C:\windows\system32\wuapp.exe
2013-12-11 10:13 - 2013-10-08 23:27 - 03279872 _____ (Microsoft Corporation) C:\windows\system32\wuaueng.dll
2013-12-11 10:13 - 2013-10-08 23:27 - 01622016 _____ (Microsoft Corporation) C:\windows\system32\wucltux.dll
2013-12-11 10:13 - 2013-10-08 23:27 - 00773120 _____ (Microsoft Corporation) C:\windows\system32\wuapi.dll
2013-12-11 10:13 - 2013-10-08 23:27 - 00252928 _____ (Microsoft Corporation) C:\windows\system32\WUSettingsProvider.dll
2013-12-11 10:13 - 2013-10-08 23:27 - 00175104 _____ (Microsoft Corporation) C:\windows\system32\storewuauth.dll
2013-12-11 10:13 - 2013-10-08 23:27 - 00142848 _____ (Microsoft Corporation) C:\windows\system32\wuwebv.dll
2013-12-11 10:13 - 2013-10-08 23:27 - 00099328 _____ (Microsoft Corporation) C:\windows\system32\wudriver.dll
2013-12-11 10:13 - 2013-10-05 07:10 - 00285016 _____ (Microsoft Corporation) C:\windows\system32\Drivers\spaceport.sys
2013-12-11 10:13 - 2013-10-03 23:09 - 00385528 _____ C:\windows\system32\ApnDatabase.xml
2013-12-11 10:13 - 2013-10-02 03:50 - 00447320 _____ (Microsoft Corporation) C:\windows\system32\Drivers\USBHUB3.SYS
2013-12-11 10:13 - 2013-09-28 06:48 - 00778752 _____ (Microsoft Corporation) C:\windows\system32\oleaut32.dll
2013-12-11 10:13 - 2013-09-28 04:58 - 00551424 _____ (Microsoft Corporation) C:\windows\SysWOW64\oleaut32.dll
2013-12-11 10:13 - 2013-09-19 08:32 - 01455448 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dxgkrnl.sys
2013-12-11 10:13 - 2013-08-30 06:19 - 00626688 _____ (Microsoft Corporation) C:\windows\system32\resutils.dll
2013-12-11 10:13 - 2013-08-30 06:18 - 00374784 _____ (Microsoft Corporation) C:\windows\system32\clusapi.dll
2013-12-11 10:13 - 2013-08-30 00:48 - 00488960 _____ (Microsoft Corporation) C:\windows\SysWOW64\resutils.dll
2013-12-11 10:13 - 2013-08-30 00:47 - 00302080 _____ (Microsoft Corporation) C:\windows\SysWOW64\clusapi.dll
2013-12-11 10:10 - 2013-11-07 00:18 - 04036608 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2013-12-11 10:10 - 2013-10-10 10:32 - 00115712 _____ (Microsoft Corporation) C:\windows\SysWOW64\cscript.exe
2013-12-11 10:10 - 2013-10-10 10:30 - 00162304 _____ (Microsoft Corporation) C:\windows\SysWOW64\scrobj.dll
2013-12-11 10:10 - 2013-10-10 10:30 - 00156160 _____ (Microsoft Corporation) C:\windows\SysWOW64\scrrun.dll
2013-12-11 10:10 - 2013-10-10 10:24 - 00143872 _____ (Microsoft Corporation) C:\windows\system32\wshom.ocx
2013-12-11 10:10 - 2013-10-10 10:23 - 00146944 _____ (Microsoft Corporation) C:\windows\system32\cscript.exe
2013-12-11 10:10 - 2013-10-10 10:22 - 00222720 _____ (Microsoft Corporation) C:\windows\system32\scrobj.dll
2013-12-11 10:10 - 2013-10-10 10:22 - 00194048 _____ (Microsoft Corporation) C:\windows\system32\scrrun.dll
2013-12-11 10:09 - 2013-09-28 04:35 - 00288768 _____ (Microsoft Corporation) C:\windows\system32\Drivers\portcls.sys
2013-12-11 09:56 - 2013-12-11 21:56 - 00518761 _____ C:\windows\WindowsUpdate.log
2013-12-10 17:57 - 2013-12-10 17:57 - 00080522 _____ C:\Users\Pepa Grmolenský\Desktop\Offret (1986 Suécia,França, Inglaterra - Andrei Tarkovsky).srt
2013-12-10 17:40 - 2013-12-10 17:55 - 407174270 _____ C:\Users\Pepa Grmolenský\Desktop\Offret (1986 Suécia,França, Inglaterra - Andrei Tarkovsky).mp4
2013-12-09 16:47 - 2013-12-09 16:47 - 00039320 _____ C:\Users\Pepa Grmolenský\Desktop\Andrei_Tarkovsky_Nostalghia.srt
2013-12-09 14:52 - 2013-12-09 16:45 - 732778496 _____ C:\Users\Pepa Grmolenský\Desktop\Andrei_Tarkovsky_Nostalghia.avi
2013-12-06 16:45 - 2013-12-06 16:45 - 00039566 _____ C:\Users\Pepa Grmolenský\Desktop\Shake.Hands.with.the.Devil.2007.FESTiVAL.DVDRip.XviD.AC3.CD1.srt
2013-12-06 16:45 - 2013-12-06 16:45 - 00033630 _____ C:\Users\Pepa Grmolenský\Desktop\Shake.Hands.with.the.Devil.2007.FESTiVAL.DVDRip.XviD.AC3.CD2.srt
2013-12-06 16:44 - 2013-12-06 17:36 - 733175808 _____ C:\Users\Pepa Grmolenský\Desktop\Shake.Hands.with.the.Devil.2007.FESTiVAL.DVDRip.XviD.AC3.CD2.avi
2013-12-06 15:59 - 2013-12-06 16:42 - 733468672 _____ C:\Users\Pepa Grmolenský\Desktop\Shake.Hands.with.the.Devil.2007.FESTiVAL.DVDRip.XviD.AC3.CD1.avi
2013-12-06 09:53 - 2013-12-06 10:58 - 1562178651 _____ C:\Users\Pepa Grmolenský\Desktop\Alois.Nebel.2011.DVDRip.x264.AC3.CZ-bBr.mkv
2013-12-05 00:13 - 2013-12-05 00:13 - 00000000 ____D C:\Users\Pep Quest\AppData\Local\NVIDIA Corporation
2013-12-05 00:12 - 2013-12-05 00:12 - 00000000 ____D C:\Users\Pep Quest\AppData\Local\NVIDIA
2013-12-03 15:22 - 2013-12-03 15:29 - 00000000 ____D C:\Users\Pepa Grmolenský\Desktop\1979_Salems Lot_en
2013-12-03 11:01 - 2013-10-30 18:03 - 00039200 _____ (NVIDIA Corporation) C:\windows\system32\Drivers\nvvad64v.sys
2013-12-03 11:01 - 2013-10-30 18:02 - 00032544 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvaudcap32v.dll
2013-12-03 10:56 - 2013-12-03 10:56 - 00000000 ____D C:\ProgramData\ESET
2013-12-03 10:56 - 2013-12-03 10:56 - 00000000 ____D C:\Program Files\ESET
2013-12-02 11:11 - 2013-12-02 11:11 - 00000000 ____D C:\Users\Pepa Grmolenský\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\The KMPlayer
2013-12-02 11:02 - 2013-12-02 11:04 - 00000000 ____D C:\Program Files (x86)\Webteh
2013-12-02 10:43 - 2013-12-02 11:13 - 00000000 ____D C:\Users\Pepa Grmolenský\Desktop\Dark Tales of Japan 2005 KM PLAYER
2013-12-01 17:53 - 2013-12-01 17:53 - 00000818 _____ C:\Users\Pepa Grmolenský\Desktop\AC4BFSP – zástupce.lnk
2013-12-01 17:51 - 2013-12-01 17:51 - 00000000 ____D C:\Users\Pepa Grmolenský\Documents\Assassin's Creed IV Black Flag
2013-11-27 00:45 - 2013-12-10 00:22 - 00003596 _____ C:\windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3535571480-712762846-2723503358-1004
2013-11-27 00:42 - 2013-11-27 00:42 - 00000000 ____D C:\Users\Pep Quest\AppData\Local\Macromedia
2013-11-26 23:46 - 2013-12-10 00:33 - 00000000 ____D C:\Users\Pep Quest\AppData\Local\Mozilla
2013-11-26 23:46 - 2013-11-26 23:46 - 00000000 ____D C:\Users\Pep Quest\AppData\Roaming\Mozilla
2013-11-26 23:45 - 2013-11-26 23:45 - 00000000 ___RD C:\Users\Pep Quest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-11-26 23:45 - 2013-11-26 23:45 - 00000000 ___RD C:\Users\Pep Quest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-11-26 23:45 - 2013-11-26 23:45 - 00000000 ____D C:\Users\Pep Quest\AppData\Roaming\Lenovo
2013-11-26 23:45 - 2013-11-26 23:45 - 00000000 ____D C:\Users\Pep Quest\AppData\Roaming\ESET
2013-11-26 23:45 - 2013-11-26 23:45 - 00000000 ____D C:\Users\Pep Quest\AppData\Local\ESET
2013-11-26 23:44 - 2013-11-26 23:45 - 00000000 ____D C:\Users\Pep Quest
2013-11-26 23:44 - 2013-11-26 23:44 - 00001416 _____ C:\Users\Pep Quest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-11-26 23:44 - 2013-11-26 23:44 - 00000020 ___SH C:\Users\Pep Quest\ntuser.ini
2013-11-26 23:44 - 2013-11-26 23:44 - 00000000 _SHDL C:\Users\Pep Quest\Šablony
2013-11-26 23:44 - 2013-11-26 23:44 - 00000000 _SHDL C:\Users\Pep Quest\Soubory cookie
2013-11-26 23:44 - 2013-11-26 23:44 - 00000000 _SHDL C:\Users\Pep Quest\Poslední
2013-11-26 23:44 - 2013-11-26 23:44 - 00000000 _SHDL C:\Users\Pep Quest\Okolní tiskárny
2013-11-26 23:44 - 2013-11-26 23:44 - 00000000 _SHDL C:\Users\Pep Quest\Okolní síť
2013-11-26 23:44 - 2013-11-26 23:44 - 00000000 _SHDL C:\Users\Pep Quest\Nabídka Start
2013-11-26 23:44 - 2013-11-26 23:44 - 00000000 _SHDL C:\Users\Pep Quest\Dokumenty
2013-11-26 23:44 - 2013-11-26 23:44 - 00000000 _SHDL C:\Users\Pep Quest\Documents\Obrázky
2013-11-26 23:44 - 2013-11-26 23:44 - 00000000 _SHDL C:\Users\Pep Quest\Documents\Hudba
2013-11-26 23:44 - 2013-11-26 23:44 - 00000000 _SHDL C:\Users\Pep Quest\Documents\Filmy
2013-11-26 23:44 - 2013-11-26 23:44 - 00000000 _SHDL C:\Users\Pep Quest\Data aplikací
2013-11-26 23:44 - 2013-11-26 23:44 - 00000000 _SHDL C:\Users\Pep Quest\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2013-11-26 23:44 - 2013-11-26 23:44 - 00000000 _SHDL C:\Users\Pep Quest\AppData\Local\Data aplikací
2013-11-26 23:44 - 2013-11-26 23:44 - 00000000 ____D C:\Users\Pep Quest\AppData\Roaming\Intel
2013-11-26 23:44 - 2013-11-26 23:44 - 00000000 ____D C:\Users\Pep Quest\AppData\Roaming\Adobe
2013-11-26 23:44 - 2013-11-26 23:44 - 00000000 ____D C:\Users\Pep Quest\AppData\Local\VirtualStore
2013-11-26 23:44 - 2013-11-26 23:44 - 00000000 ____D C:\Users\Pep Quest\AppData\Local\Packages
2013-11-26 23:44 - 2013-08-14 10:32 - 00000000 ___RD C:\Users\Pep Quest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2013-11-26 23:44 - 2013-06-17 11:57 - 00000000 ___RD C:\Users\Pep Quest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2013-11-26 23:44 - 2012-11-24 11:08 - 00000000 ____D C:\Users\Pep Quest\AppData\Roaming\Macromedia
2013-11-26 23:44 - 2012-07-26 09:13 - 00000000 ___RD C:\Users\Pep Quest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2013-11-26 23:44 - 2012-07-26 09:13 - 00000000 ____D C:\Users\Pep Quest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2013-11-26 23:44 - 2010-12-19 06:31 - 00000189 _____ C:\Users\Pep Quest\Desktop\Lenovo Telephony Start Now.url
2013-11-25 20:46 - 2013-11-25 20:46 - 00000000 ____D C:\windows\SysWOW64\NV
2013-11-25 20:46 - 2013-11-25 20:46 - 00000000 ____D C:\windows\system32\NV
2013-11-25 20:42 - 2013-11-14 12:58 - 30361888 _____ (NVIDIA Corporation) C:\windows\system32\nvoglv64.dll
2013-11-25 20:42 - 2013-11-14 12:58 - 25257248 _____ (NVIDIA Corporation) C:\windows\system32\nvcompiler.dll
2013-11-25 20:42 - 2013-11-14 12:58 - 22951200 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvoglv32.dll
2013-11-25 20:42 - 2013-11-14 12:58 - 18293608 _____ (NVIDIA Corporation) C:\windows\system32\nvwgf2umx.dll
2013-11-25 20:42 - 2013-11-14 12:58 - 18208624 _____ (NVIDIA Corporation) C:\windows\system32\nvd3dumx.dll
2013-11-25 20:42 - 2013-11-14 12:58 - 17560352 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvcompiler.dll
2013-11-25 20:42 - 2013-11-14 12:58 - 15862272 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvwgf2um.dll
2013-11-25 20:42 - 2013-11-14 12:58 - 15218504 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvd3dum.dll
2013-11-25 20:42 - 2013-11-14 12:58 - 12613408 _____ (NVIDIA Corporation) C:\windows\system32\Drivers\nvlddmkm.sys
2013-11-25 20:42 - 2013-11-14 12:58 - 11600432 _____ (NVIDIA Corporation) C:\windows\system32\nvcuda.dll
2013-11-25 20:42 - 2013-11-14 12:58 - 11514624 _____ (NVIDIA Corporation) C:\windows\system32\nvopencl.dll
2013-11-25 20:42 - 2013-11-14 12:58 - 09691888 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvcuda.dll
2013-11-25 20:42 - 2013-11-14 12:58 - 09619872 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvopencl.dll
2013-11-25 20:42 - 2013-11-14 12:58 - 03132704 _____ (NVIDIA Corporation) C:\windows\system32\nvcuvid.dll
2013-11-25 20:42 - 2013-11-14 12:58 - 03125024 _____ (NVIDIA Corporation) C:\windows\system32\nvcuvenc.dll
2013-11-25 20:42 - 2013-11-14 12:58 - 02947872 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvcuvid.dll
2013-11-25 20:42 - 2013-11-14 12:58 - 02747680 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvcuvenc.dll
2013-11-25 20:42 - 2013-11-14 12:58 - 01884448 _____ (NVIDIA Corporation) C:\windows\system32\nvdispco6433182.dll
2013-11-25 20:42 - 2013-11-14 12:58 - 01511712 _____ (NVIDIA Corporation) C:\windows\system32\nvdispgenco6433182.dll
2013-11-25 20:42 - 2013-11-14 12:58 - 00707360 _____ (NVIDIA Corporation) C:\windows\system32\NvFBC64.dll
2013-11-25 20:42 - 2013-11-14 12:58 - 00657184 _____ (NVIDIA Corporation) C:\windows\system32\NvIFR64.dll
2013-11-25 20:42 - 2013-11-14 12:58 - 00609568 _____ (NVIDIA Corporation) C:\windows\SysWOW64\NvFBC.dll
2013-11-25 20:42 - 2013-11-14 12:58 - 00562464 _____ (NVIDIA Corporation) C:\windows\SysWOW64\NvIFR.dll
2013-11-25 20:42 - 2013-11-14 12:58 - 00317472 _____ (NVIDIA Corporation) C:\windows\system32\nvoglshim64.dll
2013-11-25 20:42 - 2013-11-14 12:58 - 00266984 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvoglshim32.dll
2013-11-25 20:42 - 2013-11-14 12:58 - 00032544 _____ (NVIDIA Corporation) C:\windows\system32\Drivers\nvpciflt.sys
2013-11-25 19:16 - 2013-12-03 11:03 - 00000000 ____D C:\Users\Pepa Grmolenský\AppData\Local\NVIDIA Corporation
2013-11-25 17:33 - 2013-11-25 17:34 - 00000000 ____D C:\Users\Pepa Grmolenský\Documents\Battlefield 4
2013-11-25 17:26 - 2013-11-25 17:26 - 00000000 ____D C:\Program Files (x86)\Battlelog Web Plugins
2013-11-25 13:28 - 2013-11-25 13:28 - 01350232 _____ (techPowerUp (www.techpowerup.com)) C:\Users\Pepa Grmolenský\Desktop\GPU-Z.0.7.4.exe
2013-11-21 22:08 - 2002-05-27 08:25 - 00295424 _____ (Tomas Zavodny) C:\Users\Pepa Grmolenský\Desktop\SubtitleToolCZ.exe
2013-11-20 12:37 - 2013-11-20 12:37 - 00002077 _____ C:\Users\Public\Desktop\I Have No Mouth, and I Must Scream.lnk
2013-11-18 14:17 - 2013-11-18 14:17 - 00001996 _____ C:\Users\Pepa Grmolenský\Desktop\Kraven Manor.lnk
2013-11-18 14:16 - 2013-11-18 14:16 - 00000000 ____D C:\Users\Pepa Grmolenský\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Kraven Manor
2013-11-18 14:15 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DX9_43.dll
2013-11-15 09:52 - 2013-12-04 01:53 - 00694240 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerApp.exe
2013-11-15 09:52 - 2013-12-04 01:53 - 00078304 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-11-13 10:37 - 2013-10-10 12:53 - 00096600 _____ (Microsoft Corporation) C:\windows\system32\Drivers\wfplwfs.sys
2013-11-13 10:37 - 2013-10-10 10:21 - 01160192 _____ (Microsoft Corporation) C:\windows\system32\IKEEXT.DLL
2013-11-13 10:37 - 2013-10-10 10:20 - 00723968 _____ (Microsoft Corporation) C:\windows\system32\BFE.DLL
2013-11-13 10:37 - 2013-10-03 00:25 - 01300992 _____ (Microsoft Corporation) C:\windows\system32\gdi32.dll
2013-11-13 10:37 - 2013-10-01 23:22 - 01022976 _____ (Microsoft Corporation) C:\windows\SysWOW64\gdi32.dll
2013-11-13 10:37 - 2013-09-13 23:36 - 00247296 _____ (Microsoft Corporation) C:\windows\SysWOW64\ubpm.dll
2013-11-13 10:37 - 2013-09-13 23:33 - 00328192 _____ (Microsoft Corporation) C:\windows\system32\ubpm.dll
2013-11-13 10:37 - 2013-09-04 04:11 - 00576512 _____ (Microsoft Corporation) C:\windows\system32\Drivers\afd.sys
2013-11-13 10:37 - 2013-08-30 06:43 - 00061784 _____ (Microsoft Corporation) C:\windows\system32\Drivers\crashdmp.sys
2013-11-13 10:37 - 2013-08-30 06:20 - 01173504 _____ (Microsoft Corporation) C:\windows\system32\UIAutomationCore.dll
2013-11-13 10:37 - 2013-08-30 00:48 - 00914432 _____ (Microsoft Corporation) C:\windows\SysWOW64\UIAutomationCore.dll
2013-11-13 10:37 - 2013-08-21 07:39 - 00465240 _____ (Microsoft Corporation) C:\windows\system32\Drivers\fvevol.sys
2013-11-13 10:37 - 2013-08-10 07:30 - 00151896 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tpm.sys
2013-11-13 10:37 - 2013-08-10 06:21 - 00817152 _____ (Microsoft Corporation) C:\windows\system32\kerberos.dll
2013-11-13 10:37 - 2013-08-10 04:58 - 00656896 _____ (Microsoft Corporation) C:\windows\SysWOW64\kerberos.dll
2013-11-13 10:37 - 2013-07-25 00:10 - 10799104 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.UI.Xaml.dll
2013-11-13 10:37 - 2013-07-25 00:07 - 13661696 _____ (Microsoft Corporation) C:\windows\system32\Windows.UI.Xaml.dll
2013-11-13 10:37 - 2013-07-12 02:38 - 00599040 _____ (Microsoft Corporation) C:\windows\system32\WSDApi.dll
2013-11-13 10:37 - 2013-07-12 02:30 - 00485376 _____ (Microsoft Corporation) C:\windows\SysWOW64\WSDApi.dll
2013-11-13 10:36 - 2013-10-02 00:37 - 01569280 _____ (Microsoft Corporation) C:\windows\SysWOW64\crypt32.dll
2013-11-13 10:36 - 2013-10-02 00:26 - 01890816 _____ (Microsoft Corporation) C:\windows\system32\crypt32.dll
2013-11-13 10:36 - 2013-09-23 23:30 - 00419328 _____ (Microsoft Corporation) C:\windows\system32\schannel.dll
2013-11-13 10:36 - 2013-09-23 23:30 - 00323072 _____ (Microsoft Corporation) C:\windows\SysWOW64\schannel.dll
2013-11-13 10:32 - 2013-08-23 08:22 - 02062848 _____ (Microsoft Corporation) C:\windows\system32\d3d11.dll
2013-11-13 10:32 - 2013-08-23 02:44 - 01711616 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3d11.dll
2013-11-13 10:28 - 2013-10-02 00:37 - 02035712 _____ (Microsoft Corporation) C:\windows\SysWOW64\authui.dll
2013-11-13 10:28 - 2013-10-02 00:26 - 02304512 _____ (Microsoft Corporation) C:\windows\system32\authui.dll
2013-11-12 08:55 - 2013-11-12 08:55 - 00000000 ____D C:\Program Files (x86)\Seagate

==================== One Month Modified Files and Folders =======

2013-12-11 21:59 - 2013-12-11 21:58 - 00014689 _____ C:\Users\Pepa Grmolenský\Desktop\FRST.txt
2013-12-11 21:58 - 2013-12-11 21:58 - 00029696 _____ C:\Users\Pepa Grmolenský\AppData\Local\MSGBOX.EXE
2013-12-11 21:58 - 2013-12-11 21:58 - 00015327 _____ C:\Users\Pepa Grmolenský\Desktop\LM.bat
2013-12-11 21:58 - 2013-12-11 21:58 - 00000000 ____D C:\FRST
2013-12-11 21:58 - 2013-05-09 11:20 - 00000914 _____ C:\windows\Tasks\Adobe Flash Player Updater.job
2013-12-11 21:57 - 2013-12-11 21:57 - 01926944 _____ (Farbar) C:\Users\Pepa Grmolenský\Desktop\FRST64.exe
2013-12-11 21:57 - 2013-12-11 21:57 - 00112640 _____ (forum.viry.cz) C:\Users\Pepa Grmolenský\Desktop\FRSTLauncher.exe
2013-12-11 21:56 - 2013-12-11 09:56 - 00518761 _____ C:\windows\WindowsUpdate.log
2013-12-11 21:55 - 2013-12-11 21:54 - 22180353 _____ (Audacity Team ) C:\Users\Pepa Grmolenský\Desktop\audacity-win-2.0.5.exe
2013-12-11 21:53 - 2013-05-09 14:36 - 00003598 _____ C:\windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3535571480-712762846-2723503358-1002
2013-12-11 21:02 - 2012-07-26 09:12 - 00000000 ____D C:\windows\system32\sru
2013-12-11 20:14 - 2012-11-24 11:25 - 00727488 _____ C:\windows\system32\perfh005.dat
2013-12-11 20:14 - 2012-11-24 11:25 - 00148006 _____ C:\windows\system32\perfc005.dat
2013-12-11 20:14 - 2012-07-26 08:28 - 01714430 _____ C:\windows\system32\PerfStringBackup.INI
2013-12-11 20:09 - 2013-12-11 20:09 - 00312360 _____ C:\windows\system32\FNTCACHE.DAT
2013-12-11 20:09 - 2012-07-26 08:22 - 00000006 ____H C:\windows\Tasks\SA.DAT
2013-12-11 20:08 - 2013-12-11 20:07 - 00000000 ____D C:\AdwCleaner
2013-12-11 20:03 - 2013-12-11 20:03 - 00000000 ____D C:\windows\ERUNT
2013-12-11 19:38 - 2013-12-11 19:38 - 00000000 ____D C:\Users\Pepa Grmolenský\Desktop\Assassins-Creed-3-ToGW-Soundtrack
2013-12-11 19:38 - 2013-12-11 10:24 - 00035502 _____ C:\Users\Pepa Grmolenský\Desktop\tarkovsky poznamky.odt
2013-12-11 19:27 - 2013-05-10 08:56 - 00000000 ____D C:\Program Files\trend micro
2013-12-11 18:22 - 2013-12-11 18:22 - 00001566 _____ C:\windows\PFRO.log
2013-12-11 18:22 - 2012-07-26 06:26 - 00524288 ___SH C:\windows\system32\config\BBI
2013-12-11 18:21 - 2012-07-26 09:12 - 00000000 ____D C:\windows\system32\SecureBootUpdates
2013-12-11 18:21 - 2012-07-26 06:38 - 00000000 ____D C:\windows\system32\oobe
2013-12-11 13:10 - 2013-12-11 12:25 - 795830272 _____ C:\Users\Pepa Grmolenský\Desktop\Oxen-(1991)-Swedish-DVDRip-eng-hardsub-.avi
2013-12-11 12:26 - 2013-12-11 12:26 - 00033463 _____ C:\Users\Pepa Grmolenský\Desktop\Oxen-(1991)-Swedish-DVDRip-eng-hardsub-.srt
2013-12-11 12:12 - 2013-12-11 12:12 - 00077593 _____ C:\Users\Pepa Grmolenský\Desktop\An.American.Crime.2007.FESTIVAL.DVDRip.XviD-BETAMAX.srt
2013-12-11 11:59 - 2013-12-11 11:17 - 730769408 _____ C:\Users\Pepa Grmolenský\Desktop\An.American.Crime.2007.FESTIVAL.DVDRip.XviD-BETAMAX.avi
2013-12-10 21:58 - 2013-05-09 11:20 - 00003802 _____ C:\windows\System32\Tasks\Adobe Flash Player Updater
2013-12-10 17:57 - 2013-12-10 17:57 - 00080522 _____ C:\Users\Pepa Grmolenský\Desktop\Offret (1986 Suécia,França, Inglaterra - Andrei Tarkovsky).srt
2013-12-10 17:55 - 2013-12-10 17:40 - 407174270 _____ C:\Users\Pepa Grmolenský\Desktop\Offret (1986 Suécia,França, Inglaterra - Andrei Tarkovsky).mp4
2013-12-10 17:41 - 2012-07-26 09:12 - 00000000 ____D C:\windows\AUInstallAgent
2013-12-10 00:33 - 2013-11-26 23:46 - 00000000 ____D C:\Users\Pep Quest\AppData\Local\Mozilla
2013-12-10 00:22 - 2013-11-27 00:45 - 00003596 _____ C:\windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3535571480-712762846-2723503358-1004
2013-12-09 16:47 - 2013-12-09 16:47 - 00039320 _____ C:\Users\Pepa Grmolenský\Desktop\Andrei_Tarkovsky_Nostalghia.srt
2013-12-09 16:45 - 2013-12-09 14:52 - 732778496 _____ C:\Users\Pepa Grmolenský\Desktop\Andrei_Tarkovsky_Nostalghia.avi
2013-12-08 23:15 - 2013-08-20 13:43 - 00000000 ____D C:\Users\Pepa Grmolenský\AppData\Roaming\XnView
2013-12-08 20:55 - 2012-07-26 09:12 - 00000000 ____D C:\windows\system32\NDF
2013-12-06 17:36 - 2013-12-06 16:44 - 733175808 _____ C:\Users\Pepa Grmolenský\Desktop\Shake.Hands.with.the.Devil.2007.FESTiVAL.DVDRip.XviD.AC3.CD2.avi
2013-12-06 16:45 - 2013-12-06 16:45 - 00039566 _____ C:\Users\Pepa Grmolenský\Desktop\Shake.Hands.with.the.Devil.2007.FESTiVAL.DVDRip.XviD.AC3.CD1.srt
2013-12-06 16:45 - 2013-12-06 16:45 - 00033630 _____ C:\Users\Pepa Grmolenský\Desktop\Shake.Hands.with.the.Devil.2007.FESTiVAL.DVDRip.XviD.AC3.CD2.srt
2013-12-06 16:44 - 2013-01-04 12:04 - 00000000 ____D C:\games
2013-12-06 16:42 - 2013-12-06 15:59 - 733468672 _____ C:\Users\Pepa Grmolenský\Desktop\Shake.Hands.with.the.Devil.2007.FESTiVAL.DVDRip.XviD.AC3.CD1.avi
2013-12-06 10:58 - 2013-12-06 09:53 - 1562178651 _____ C:\Users\Pepa Grmolenský\Desktop\Alois.Nebel.2011.DVDRip.x264.AC3.CZ-bBr.mkv
2013-12-05 16:20 - 2013-09-22 18:03 - 00000000 ____D C:\Users\Pepa Grmolenský\AppData\Local\Arma 3
2013-12-05 00:13 - 2013-12-05 00:13 - 00000000 ____D C:\Users\Pep Quest\AppData\Local\NVIDIA Corporation
2013-12-05 00:12 - 2013-12-05 00:12 - 00000000 ____D C:\Users\Pep Quest\AppData\Local\NVIDIA
2013-12-04 01:53 - 2013-11-15 09:52 - 00694240 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerApp.exe
2013-12-04 01:53 - 2013-11-15 09:52 - 00078304 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-12-03 15:29 - 2013-12-03 15:22 - 00000000 ____D C:\Users\Pepa Grmolenský\Desktop\1979_Salems Lot_en
2013-12-03 11:05 - 2013-05-24 17:10 - 00000000 ____D C:\Users\Pepa Grmolenský\AppData\Local\NVIDIA
2013-12-03 11:03 - 2013-11-25 19:16 - 00000000 ____D C:\Users\Pepa Grmolenský\AppData\Local\NVIDIA Corporation
2013-12-03 11:03 - 2012-11-24 10:42 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2013-12-03 11:03 - 2012-11-24 10:42 - 00000000 ____D C:\ProgramData\NVIDIA
2013-12-03 11:02 - 2012-11-24 10:42 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2013-12-03 11:02 - 2012-11-24 10:41 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2013-12-03 10:56 - 2013-12-03 10:56 - 00000000 ____D C:\ProgramData\ESET
2013-12-03 10:56 - 2013-12-03 10:56 - 00000000 ____D C:\Program Files\ESET
2013-12-03 10:20 - 2013-05-09 13:48 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-12-02 11:13 - 2013-12-02 10:43 - 00000000 ____D C:\Users\Pepa Grmolenský\Desktop\Dark Tales of Japan 2005 KM PLAYER
2013-12-02 11:11 - 2013-12-02 11:11 - 00000000 ____D C:\Users\Pepa Grmolenský\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\The KMPlayer
2013-12-02 11:11 - 2013-10-05 16:26 - 00000000 ____D C:\Program Files (x86)\The KMPlayer
2013-12-02 11:04 - 2013-12-02 11:02 - 00000000 ____D C:\Program Files (x86)\Webteh
2013-12-02 10:55 - 2013-06-22 22:49 - 00000000 ____D C:\Users\Pepa Grmolenský\AppData\Roaming\vlc
2013-12-01 17:53 - 2013-12-01 17:53 - 00000818 _____ C:\Users\Pepa Grmolenský\Desktop\AC4BFSP – zástupce.lnk
2013-12-01 17:51 - 2013-12-01 17:51 - 00000000 ____D C:\Users\Pepa Grmolenský\Documents\Assassin's Creed IV Black Flag
2013-12-01 17:51 - 2013-05-09 21:45 - 00000000 ____D C:\ProgramData\Orbit
2013-11-29 17:56 - 2013-11-04 18:29 - 01096480 _____ (NVIDIA Corporation) C:\windows\system32\nvspcap64.dll
2013-11-29 17:56 - 2013-11-04 18:29 - 00979744 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvspcap.dll
2013-11-29 09:41 - 2013-05-09 15:09 - 00000000 ____D C:\Users\Pepa Grmolenský\AppData\Roaming\Media Player Classic
2013-11-28 22:51 - 2013-01-03 21:37 - 00000000 ____D C:\P
2013-11-27 00:42 - 2013-11-27 00:42 - 00000000 ____D C:\Users\Pep Quest\AppData\Local\Macromedia
2013-11-26 23:46 - 2013-11-26 23:46 - 00000000 ____D C:\Users\Pep Quest\AppData\Roaming\Mozilla
2013-11-26 23:45 - 2013-11-26 23:45 - 00000000 ___RD C:\Users\Pep Quest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-11-26 23:45 - 2013-11-26 23:45 - 00000000 ___RD C:\Users\Pep Quest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-11-26 23:45 - 2013-11-26 23:45 - 00000000 ____D C:\Users\Pep Quest\AppData\Roaming\Lenovo
2013-11-26 23:45 - 2013-11-26 23:45 - 00000000 ____D C:\Users\Pep Quest\AppData\Roaming\ESET
2013-11-26 23:45 - 2013-11-26 23:45 - 00000000 ____D C:\Users\Pep Quest\AppData\Local\ESET
2013-11-26 23:45 - 2013-11-26 23:44 - 00000000 ____D C:\Users\Pep Quest
2013-11-26 23:44 - 2013-11-26 23:44 - 00001416 _____ C:\Users\Pep Quest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-11-26 23:44 - 2013-11-26 23:44 - 00000020 ___SH C:\Users\Pep Quest\ntuser.ini
2013-11-26 23:44 - 2013-11-26 23:44 - 00000000 _SHDL C:\Users\Pep Quest\Šablony
2013-11-26 23:44 - 2013-11-26 23:44 - 00000000 _SHDL C:\Users\Pep Quest\Soubory cookie
2013-11-26 23:44 - 2013-11-26 23:44 - 00000000 _SHDL C:\Users\Pep Quest\Poslední
2013-11-26 23:44 - 2013-11-26 23:44 - 00000000 _SHDL C:\Users\Pep Quest\Okolní tiskárny
2013-11-26 23:44 - 2013-11-26 23:44 - 00000000 _SHDL C:\Users\Pep Quest\Okolní síť
2013-11-26 23:44 - 2013-11-26 23:44 - 00000000 _SHDL C:\Users\Pep Quest\Nabídka Start
2013-11-26 23:44 - 2013-11-26 23:44 - 00000000 _SHDL C:\Users\Pep Quest\Dokumenty
2013-11-26 23:44 - 2013-11-26 23:44 - 00000000 _SHDL C:\Users\Pep Quest\Documents\Obrázky
2013-11-26 23:44 - 2013-11-26 23:44 - 00000000 _SHDL C:\Users\Pep Quest\Documents\Hudba
2013-11-26 23:44 - 2013-11-26 23:44 - 00000000 _SHDL C:\Users\Pep Quest\Documents\Filmy
2013-11-26 23:44 - 2013-11-26 23:44 - 00000000 _SHDL C:\Users\Pep Quest\Data aplikací
2013-11-26 23:44 - 2013-11-26 23:44 - 00000000 _SHDL C:\Users\Pep Quest\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2013-11-26 23:44 - 2013-11-26 23:44 - 00000000 _SHDL C:\Users\Pep Quest\AppData\Local\Data aplikací
2013-11-26 23:44 - 2013-11-26 23:44 - 00000000 ____D C:\Users\Pep Quest\AppData\Roaming\Intel
2013-11-26 23:44 - 2013-11-26 23:44 - 00000000 ____D C:\Users\Pep Quest\AppData\Roaming\Adobe
2013-11-26 23:44 - 2013-11-26 23:44 - 00000000 ____D C:\Users\Pep Quest\AppData\Local\VirtualStore
2013-11-26 23:44 - 2013-11-26 23:44 - 00000000 ____D C:\Users\Pep Quest\AppData\Local\Packages
2013-11-26 23:24 - 2013-10-24 09:40 - 00001000 _____ C:\Users\Public\Desktop\VLC media player.lnk
2013-11-25 20:46 - 2013-11-25 20:46 - 00000000 ____D C:\windows\SysWOW64\NV
2013-11-25 20:46 - 2013-11-25 20:46 - 00000000 ____D C:\windows\system32\NV
2013-11-25 17:34 - 2013-11-25 17:33 - 00000000 ____D C:\Users\Pepa Grmolenský\Documents\Battlefield 4
2013-11-25 17:26 - 2013-11-25 17:26 - 00000000 ____D C:\Program Files (x86)\Battlelog Web Plugins
2013-11-25 17:26 - 2013-06-03 12:39 - 00000000 ____D C:\ProgramData\Package Cache
2013-11-25 15:39 - 2013-08-29 16:22 - 00000000 ____D C:\Users\Pepa Grmolenský\AppData\Local\GHISLER
2013-11-25 13:28 - 2013-11-25 13:28 - 01350232 _____ (techPowerUp (www.techpowerup.com)) C:\Users\Pepa Grmolenský\Desktop\GPU-Z.0.7.4.exe
2013-11-23 07:43 - 2013-12-11 10:16 - 00420864 _____ (Microsoft Corporation) C:\windows\system32\WMPhoto.dll
2013-11-23 06:05 - 2013-12-11 10:16 - 00368640 _____ (Microsoft Corporation) C:\windows\SysWOW64\WMPhoto.dll
2013-11-22 20:56 - 2013-05-09 21:46 - 00281688 _____ C:\windows\SysWOW64\PnkBstrB.xtr
2013-11-22 20:56 - 2013-05-09 21:37 - 00281688 _____ C:\windows\SysWOW64\PnkBstrB.exe
2013-11-20 12:37 - 2013-11-20 12:37 - 00002077 _____ C:\Users\Public\Desktop\I Have No Mouth, and I Must Scream.lnk
2013-11-19 17:39 - 2013-05-09 10:41 - 00000000 ____D C:\Users\Pepa Grmolenský\AppData\Local\Adobe
2013-11-18 14:17 - 2013-11-18 14:17 - 00001996 _____ C:\Users\Pepa Grmolenský\Desktop\Kraven Manor.lnk
2013-11-18 14:16 - 2013-11-18 14:16 - 00000000 ____D C:\Users\Pepa Grmolenský\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Kraven Manor
2013-11-16 17:59 - 2013-10-01 23:54 - 00000000 ____D C:\Users\Pepa Grmolenský\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\uTorrent
2013-11-16 16:36 - 2013-05-09 11:01 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-11-16 14:47 - 2013-01-04 21:57 - 00000000 ____D C:\Users\Pepa Grmolenský\Documents\My Games
2013-11-15 11:59 - 2012-07-26 09:12 - 00000000 ____D C:\windows\rescache
2013-11-15 09:48 - 2012-07-26 09:12 - 00000000 ___RD C:\windows\ToastData
2013-11-15 09:48 - 2012-07-26 09:12 - 00000000 ____D C:\windows\WinStore
2013-11-14 20:07 - 2013-07-13 08:18 - 00000000 ____D C:\windows\system32\MRT
2013-11-14 20:06 - 2013-05-09 22:14 - 82896128 _____ (Microsoft Corporation) C:\windows\system32\MRT.exe
2013-11-14 12:58 - 2013-11-25 20:42 - 30361888 _____ (NVIDIA Corporation) C:\windows\system32\nvoglv64.dll
2013-11-14 12:58 - 2013-11-25 20:42 - 25257248 _____ (NVIDIA Corporation) C:\windows\system32\nvcompiler.dll
2013-11-14 12:58 - 2013-11-25 20:42 - 22951200 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvoglv32.dll
2013-11-14 12:58 - 2013-11-25 20:42 - 18293608 _____ (NVIDIA Corporation) C:\windows\system32\nvwgf2umx.dll
2013-11-14 12:58 - 2013-11-25 20:42 - 18208624 _____ (NVIDIA Corporation) C:\windows\system32\nvd3dumx.dll
2013-11-14 12:58 - 2013-11-25 20:42 - 17560352 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvcompiler.dll
2013-11-14 12:58 - 2013-11-25 20:42 - 15862272 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvwgf2um.dll
2013-11-14 12:58 - 2013-11-25 20:42 - 15218504 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvd3dum.dll
2013-11-14 12:58 - 2013-11-25 20:42 - 12613408 _____ (NVIDIA Corporation) C:\windows\system32\Drivers\nvlddmkm.sys
2013-11-14 12:58 - 2013-11-25 20:42 - 11600432 _____ (NVIDIA Corporation) C:\windows\system32\nvcuda.dll
2013-11-14 12:58 - 2013-11-25 20:42 - 11514624 _____ (NVIDIA Corporation) C:\windows\system32\nvopencl.dll
2013-11-14 12:58 - 2013-11-25 20:42 - 09691888 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvcuda.dll
2013-11-14 12:58 - 2013-11-25 20:42 - 09619872 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvopencl.dll
2013-11-14 12:58 - 2013-11-25 20:42 - 03132704 _____ (NVIDIA Corporation) C:\windows\system32\nvcuvid.dll
2013-11-14 12:58 - 2013-11-25 20:42 - 03125024 _____ (NVIDIA Corporation) C:\windows\system32\nvcuvenc.dll
2013-11-14 12:58 - 2013-11-25 20:42 - 02947872 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvcuvid.dll
2013-11-14 12:58 - 2013-11-25 20:42 - 02747680 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvcuvenc.dll
2013-11-14 12:58 - 2013-11-25 20:42 - 01884448 _____ (NVIDIA Corporation) C:\windows\system32\nvdispco6433182.dll
2013-11-14 12:58 - 2013-11-25 20:42 - 01511712 _____ (NVIDIA Corporation) C:\windows\system32\nvdispgenco6433182.dll
2013-11-14 12:58 - 2013-11-25 20:42 - 00707360 _____ (NVIDIA Corporation) C:\windows\system32\NvFBC64.dll
2013-11-14 12:58 - 2013-11-25 20:42 - 00657184 _____ (NVIDIA Corporation) C:\windows\system32\NvIFR64.dll
2013-11-14 12:58 - 2013-11-25 20:42 - 00609568 _____ (NVIDIA Corporation) C:\windows\SysWOW64\NvFBC.dll
2013-11-14 12:58 - 2013-11-25 20:42 - 00562464 _____ (NVIDIA Corporation) C:\windows\SysWOW64\NvIFR.dll
2013-11-14 12:58 - 2013-11-25 20:42 - 00317472 _____ (NVIDIA Corporation) C:\windows\system32\nvoglshim64.dll
2013-11-14 12:58 - 2013-11-25 20:42 - 00266984 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvoglshim32.dll
2013-11-14 12:58 - 2013-11-25 20:42 - 00032544 _____ (NVIDIA Corporation) C:\windows\system32\Drivers\nvpciflt.sys
2013-11-14 12:58 - 2012-11-24 10:41 - 03069608 _____ (NVIDIA Corporation) C:\windows\system32\nvapi64.dll
2013-11-14 12:58 - 2012-11-24 10:41 - 02697248 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvapi.dll
2013-11-14 12:58 - 2012-11-24 10:41 - 01436528 _____ (NVIDIA Corporation) C:\windows\system32\nvumdshimx.dll
2013-11-14 12:58 - 2012-11-24 10:41 - 01242400 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvumdshim.dll
2013-11-14 12:58 - 2012-11-24 10:41 - 00168616 _____ (NVIDIA Corporation) C:\windows\system32\nvinitx.dll
2013-11-14 12:58 - 2012-11-24 10:41 - 00141336 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvinit.dll
2013-11-14 12:58 - 2012-11-24 10:41 - 00023754 _____ C:\windows\system32\nvinfo.pb
2013-11-12 19:08 - 2013-05-09 20:56 - 00000000 ____D C:\Program Files (x86)\SpeedFan
2013-11-12 08:55 - 2013-11-12 08:55 - 00000000 ____D C:\Program Files (x86)\Seagate
2013-11-12 08:48 - 2012-11-24 10:36 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2013-11-11 16:02 - 2012-11-24 10:42 - 06674208 _____ (NVIDIA Corporation) C:\windows\system32\nvcpl.dll
2013-11-11 16:02 - 2012-11-24 10:42 - 03490080 _____ (NVIDIA Corporation) C:\windows\system32\nvsvc64.dll
2013-11-11 16:01 - 2012-11-24 10:42 - 03467927 _____ C:\windows\system32\nvcoproc.bin
2013-11-11 16:01 - 2012-11-24 10:42 - 02559776 _____ (NVIDIA Corporation) C:\windows\system32\nvsvcr.dll
2013-11-11 16:01 - 2012-11-24 10:42 - 01065248 _____ (NVIDIA Corporation) C:\windows\system32\nv3dappshext.dll
2013-11-11 16:01 - 2012-11-24 10:42 - 00922912 _____ (NVIDIA Corporation) C:\windows\system32\nvvsvc.exe
2013-11-11 16:01 - 2012-11-24 10:42 - 00598304 _____ (NVIDIA Corporation) C:\windows\SysWOW64\oemdspif.dll
2013-11-11 16:01 - 2012-11-24 10:42 - 00219424 _____ (NVIDIA Corporation) C:\windows\system32\nvmctray.dll
2013-11-11 16:01 - 2012-11-24 10:42 - 00067072 _____ (NVIDIA Corporation) C:\windows\system32\nv3dappshextr.dll
2013-11-11 16:01 - 2012-11-24 10:42 - 00063776 _____ (NVIDIA Corporation) C:\windows\system32\nvshext.dll

Some content of TEMP:
====================
C:\Users\Pepa Grmolenský\AppData\Local\Temp\Quarantine.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-12-08 10:25

==================== End Of Log ============================

Tvorba fixlistu pro FRST

• Spustte poznamkovy blok (Start-spustit-notepad)
• Zkopirujte skript nize

• Kód: Vybrat vše

  Start
  HKLM\...\Run: [Nvtmru] - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe [1028384 2013-11-08] (NVIDIA Corporation)
  HKCU\...\Run: [Steam] - C:\games\Steam\Steam.exe [1820584 2013-10-30] (Valve Corporation)
  MountPoints2: {9604b554-b8b8-11e2-be79-c0143dd679f8} - "F:\autorun.exe"
  HKLM-x32\...\Run: [Dolby Advanced Audio v2] - C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe [508656 2012-07-26] (Dolby Laboratories Inc.)
  HKLM-x32\...\Run: [RemoteControl10] - C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe [91432 2012-03-29] (CyberLink Corp.)
  HKLM-x32\...\Run: [VirtualCloneDrive] - C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [89456 2011-03-07] (Elaborate Bytes AG)
  
  SearchScopes: HKLM - DefaultScope value is missing.
  
  2013-12-11 21:58 - 2013-12-11 21:58 - 00029696 _____ C:\Users\Pepa Grmolenský\AppData\Local\MSGBOX.EXE
  2013-12-11 21:58 - 2013-12-11 21:58 - 00015327 _____ C:\Users\Pepa Grmolenský\Desktop\LM.bat
  
  Hosts:
  CMD: shutdown /r /f /t 2
  
  End

• Ulozte vytvoreny TXT jako fixlist.txt
• Presunte vytvoreny fixlist vedle FRST

Spustte znovu FRST.exe

• Kliknete na Fix
• Probehne oprava a vytvori log Fixlog.txt

Restart PC a dejte mi sem fixlog.txt

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 11-12-2013
Ran by Pepa Grmolenský at 2013-12-11 22:28:20 Run:1
Running from C:\Users\Pepa Grmolenský\Desktop
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
Start
HKLM\...\Run: [Nvtmru] - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe [1028384 2013-11-08] (NVIDIA Corporation)
HKCU\...\Run: [Steam] - C:\games\Steam\Steam.exe [1820584 2013-10-30] (Valve Corporation)
MountPoints2: {9604b554-b8b8-11e2-be79-c0143dd679f8} - "F:\autorun.exe"
HKLM-x32\...\Run: [Dolby Advanced Audio v2] - C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe [508656 2012-07-26] (Dolby Laboratories Inc.)
HKLM-x32\...\Run: [RemoteControl10] - C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe [91432 2012-03-29] (CyberLink Corp.)
HKLM-x32\...\Run: [VirtualCloneDrive] - C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [89456 2011-03-07] (Elaborate Bytes AG)

SearchScopes: HKLM - DefaultScope value is missing.

2013-12-11 21:58 - 2013-12-11 21:58 - 00029696 _____ C:\Users\Pepa Grmolenský\AppData\Local\MSGBOX.EXE
2013-12-11 21:58 - 2013-12-11 21:58 - 00015327 _____ C:\Users\Pepa Grmolenský\Desktop\LM.bat

Hosts:
CMD: shutdown /r /f /t 2

End
*****************

HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\Nvtmru => Value deleted successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\Steam => Value deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{9604b554-b8b8-11e2-be79-c0143dd679f8} => Key deleted successfully.
HKCR\CLSID\{9604b554-b8b8-11e2-be79-c0143dd679f8} => Key not found.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Dolby Advanced Audio v2 => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\RemoteControl10 => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\VirtualCloneDrive => Value deleted successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.
C:\Users\Pepa Grmolenský\AppData\Local\MSGBOX.EXE => Moved successfully.
C:\Users\Pepa Grmolenský\Desktop\LM.bat => Moved successfully.
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.

========= shutdown /r /f /t 2 =========


========= End of CMD: =========


==== End of Fixlog ====

Tak jeste uklidime

T-Cleaner http://vyosek.tym.cz/pro_usery/T-Cleaner.exe

• Stahnete a spustte
• Pro potvrzeni volby mackejte A, Enter
• Po pouziti utilitu smazte
• Antiviry touhou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)

OTC http://oldtimer.geekstogo.com/OTC.exe

• Stahnete a spustte
• Kliknete na CleanUp a potvrdte YES
• Program uklidi a restartuje PC

TFC http://oldtimer.geekstogo.com/TFC.exe

• Stahnete a spustte
• Kliknete na Start a potvrdte OK
• Program uklidi a restartuje pc
• Po pouziti utilitu smazte

Stahnete Ccleaner http://forum.viry.cz/viewtopic.php?t=7478
Panel čistič

• Vse nechte jak je, jen dejte Analyzovat a pote Spustit CCleaner

Panel registry

• dejte Hledej problémy
• nasledne Opravit problémy - zalohu registru doporucuji udelat, opravte vsechny problemy
• postup opakujte dokud nebude bez problemu - vetsinou cca 3x

Panel nástroje

• Zde muzete odinstalovat nepotrebne programy

CCleaner doporucuji pouzivat cca jednou za tyden

A pokud nejsou problemy ci dotazy, je to z me strany vse

Vše splněno . Akorát ten TFC na konci úklidu nerestartoval PC a ani mi to nenabídnul. Tak jsem utilitku normálně vypnul. Snad to nevadí. Ccleaner používám pravidelně už od toho, co jsem notebook koupil a musím říct, že moje Windows jsou cca po roce pořád stejně rychlé jako když byly nové. Je to kouzelný prográmek. Po tom všem, co jsme teď udělali, mi to našlo přes 100 problemu v registrech. To jsem teda čuměl, protože před tím, než jsem vytvořil toto téma, tak jich tam bylo asi 8, které se však stále vraceli a nemohl jsem docílit toho, aby tam bylo "žádné problémy". Teď už to tam je Akorát jsem ten Ccleaner aktualizoval, protože jsem měl o něco starší verzi.
Díky díky, vy a tohle forum jste zázrak!

Nemate zac, rad jsem pomohl Zase nekdy

A na zaklade Pravidla o zamykani temat