﻿Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 16-05-2015 02
Ran by home (administrator) on PC on 17-05-2015 13:48:17
Running from C:\Users\home\Desktop
Loaded Profiles: home (Available profiles: home)
Platform: Windows 8.1 Pro (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
() C:\Windows\SysWOW64\ASGT.exe
(Baidu, Inc.) C:\Program Files (x86)\Baidu Security\Baidu Antivirus\BavSvc.exe
(Baidu, Inc.) C:\Program Files (x86)\Baidu Security\Baidu Antivirus\BHipsSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(Baidu, Inc.) C:\Program Files (x86)\Baidu Security\Baidu Antivirus\bavhm.exe
(ASUS) C:\Program Files (x86)\ASUS\GPU Tweak\GPUTweak.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Baidu, Inc.) C:\Program Files (x86)\Baidu Security\Baidu Antivirus\BavTray.exe
(TeamSpeak Systems GmbH) C:\Program Files\TeamSpeak 3 Client\ts3client_win64.exe
(Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Oracle Corporation) C:\Program Files (x86)\Java\jre1.8.0_45\bin\java.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2685072 2015-05-01] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7203032 2014-09-03] (Realtek Semiconductor)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500208 2010-03-06] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS5ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [406992 2010-02-22] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1022152 2014-12-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [334896 2015-04-30] (Oracle Corporation)
HKLM-x32\...\Run: [Baidu Antivirus] => C:\Program Files (x86)\Baidu Security\Baidu Antivirus\BavTray.exe [1956336 2015-05-17] (Baidu, Inc.)
HKU\S-1-5-21-2893419502-1249477774-2242879243-1001\...\Run: [AdobeBridge] => [X]
Startup: C:\Users\home\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Grand Theft Auto V (2015) + DLC&#039;s - FULL UNLOCKED - RETAIL.lnk [2015-04-21]
ShortcutTarget: Grand Theft Auto V (2015) + DLC&#039;s - FULL UNLOCKED - RETAIL.lnk -> C:\ProgramData\{f31b9353-e84d-146c-f31b-b9353e844d4f}\Grand Theft Auto V (2015) + DLC&#039;s - FULL UNLOCKED - RETAIL.exe (No File)
ShellIconOverlayIdentifiers: [BaiduAntivirusIconLock] -> {0A93904A-BB1E-4a0c-9753-B57B9AE272CC} => C:\Program Files (x86)\Baidu Security\Baidu Antivirus\BavShx64.dll [2015-05-17] (Baidu, Inc.)
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKU\S-1-5-21-2893419502-1249477774-2242879243-1001\Software\Microsoft\Internet Explorer\Main,Start Page = http://google.cz/
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-2893419502-1249477774-2242879243-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll [2015-05-15] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-05-15] (Oracle Corporation)
Tcpip\..\Interfaces\{C1C6FDE8-6265-4941-B184-76F8227E6FE9}: [NameServer] 62.129.50.20,85.135.32.100

FireFox:
========
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-05-15] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-05-15] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-04-08] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-04-08] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-17] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-17] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-05-01] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-2893419502-1249477774-2242879243-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\home\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2009-11-30] (Unity Technologies ApS)

Chrome: 
=======
CHR dev: Chrome dev build detected! <======= ATTENTION
CHR Profile: C:\Users\home\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\home\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-05-16]
CHR Extension: (Google Docs) - C:\Users\home\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-05-16]
CHR Extension: (Google Drive) - C:\Users\home\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-05-16]
CHR Extension: (YouTube) - C:\Users\home\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-09-04]
CHR Extension: (Google Search) - C:\Users\home\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-09-04]
CHR Extension: (Google Sheets) - C:\Users\home\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-05-16]
CHR Extension: (Google Wallet) - C:\Users\home\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-05-16]
CHR Extension: (Gmail) - C:\Users\home\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-09-04]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 ASGT; C:\Windows\SysWOW64\ASGT.exe [55296 2012-01-17] () [File not signed]
R2 BavSvc; C:\Program Files (x86)\Baidu Security\Baidu Antivirus\BavSvc.exe [2280432 2015-05-17] (Baidu, Inc.)
S3 BdSandboxSrv; C:\Program Files (x86)\Baidu Security\Baidu Antivirus\BdSandboxSrv64.exe [264736 2015-01-08] (Baidu, Inc.)
R2 BHipsSvc; C:\Program Files (x86)\Baidu Security\Baidu Antivirus\BHipsSvc.exe [405280 2015-05-17] (Baidu, Inc.)
S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [321024 2013-08-22] (Microsoft Corporation)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1152656 2015-05-01] (NVIDIA Corporation)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2015-04-14] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1080120 2015-04-14] (Malwarebytes Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1884304 2015-05-01] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [22997648 2015-05-01] (NVIDIA Corporation)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5448976 2015-04-17] (TeamViewer GmbH)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366520 2015-02-04] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2015-02-04] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

U3 BdApiUtil; C:\Program Files (x86)\Baidu Security\Baidu Antivirus\BdApiUtil64.sys [116936 2015-05-17] (Baidu, Inc.)
U3 BdCameraProtect; C:\Program Files (x86)\Baidu Security\Baidu Antivirus\BdCameraProtect64.sys [25032 2015-05-17] (Baidu, Inc.)
S3 BdSandbox; C:\Windows\System32\drivers\BdSandbox.sys [201672 2015-05-17] (Baidu, Inc.)
R1 Bfilter; C:\Windows\System32\drivers\Bfilter.sys [58824 2015-05-17] (Baidu, Inc.)
R1 Bfmon; C:\Windows\System32\drivers\Bfmon.sys [38344 2015-05-17] (Baidu, Inc.)
R0 Bhbase; C:\Windows\System32\drivers\Bhbase.sys [70952 2015-05-17] (Baidu, Inc.)
R1 Bnbase; C:\Windows\System32\drivers\bnbasex64.sys [66856 2015-05-17] (Baidu, Inc.)
R1 Bndef; C:\Windows\System32\drivers\bndef64.sys [481864 2015-05-17] (Baidu, Inc.)
R1 Bprotect; C:\Windows\System32\drivers\Bprotect.sys [272360 2015-05-17] (Baidu, Inc.)
R3 CMUAC; C:\Windows\system32\DRIVERS\Headset6400x1.SYS [387072 2013-10-03] (A4Tech Inc.)
R3 IOMap; C:\Windows\system32\drivers\IOMap64.sys [24824 2013-07-02] (ASUSTeK Computer Inc.)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-04-14] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [136408 2015-05-17] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64216 2015-04-14] (Malwarebytes Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2015-05-01] (NVIDIA Corporation)
R3 NVVADARM; C:\Windows\system32\drivers\nvvadarm.sys [39056 2015-04-09] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [38032 2014-11-22] (NVIDIA Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2015-02-04] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-05-17 13:48 - 2015-05-17 13:48 - 00013926 _____ () C:\Users\home\Desktop\FRST.txt
2015-05-17 11:58 - 2015-01-08 10:01 - 00418336 _____ (Baidu, Inc.) C:\Windows\system32\BdSandboxDll64.dll
2015-05-17 11:58 - 2015-01-08 10:01 - 00330272 _____ (Baidu, Inc.) C:\Windows\SysWOW64\BdSandboxDll32.dll
2015-05-17 11:50 - 2015-05-17 11:50 - 00000000 ____D () C:\ProgramData\BavSvc_exe
2015-05-17 11:26 - 2015-05-17 11:26 - 00481864 _____ (Baidu, Inc.) C:\Windows\system32\Drivers\bndef64.sys
2015-05-17 11:26 - 2015-05-17 11:26 - 00272360 _____ (Baidu, Inc.) C:\Windows\system32\Drivers\Bprotect.sys
2015-05-17 11:26 - 2015-05-17 11:26 - 00201672 _____ (Baidu, Inc.) C:\Windows\system32\Drivers\BdSandbox.sys
2015-05-17 11:26 - 2015-05-17 11:26 - 00070952 _____ (Baidu, Inc.) C:\Windows\system32\Drivers\Bhbase.sys
2015-05-17 11:26 - 2015-05-17 11:26 - 00066856 _____ (Baidu, Inc.) C:\Windows\system32\Drivers\bnbasex64.sys
2015-05-17 11:26 - 2015-05-17 11:26 - 00060912 _____ (Baidu, Inc.) C:\Windows\system32\bdhookx64.dll
2015-05-17 11:26 - 2015-05-17 11:26 - 00058824 _____ (Baidu, Inc.) C:\Windows\system32\Drivers\Bfilter.sys
2015-05-17 11:26 - 2015-05-17 11:26 - 00038344 _____ (Baidu, Inc.) C:\Windows\system32\Drivers\Bfmon.sys
2015-05-17 11:26 - 2015-05-17 11:26 - 00003544 _____ () C:\Windows\System32\Tasks\060184C3-9766-46a0-B258-F4518A0B2633
2015-05-17 11:26 - 2015-05-17 11:26 - 00003422 _____ () C:\Windows\System32\Tasks\Baidu Antivirus Update
2015-05-17 11:26 - 2015-05-17 11:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Baidu Antivirus
2015-05-17 11:26 - 2015-05-17 11:26 - 00000000 ____D () C:\ProgramData\Baidu Security
2015-05-17 11:25 - 2015-05-17 11:25 - 00000000 ____D () C:\Program Files (x86)\Baidu Security
2015-05-17 11:24 - 2015-05-17 11:51 - 00000000 ____D () C:\Users\home\AppData\Roaming\BavMini
2015-05-17 11:24 - 2015-05-17 11:26 - 00000000 ____D () C:\ProgramData\Baidu
2015-05-17 11:24 - 2015-05-17 11:24 - 02033488 _____ (Baidu, Inc.) C:\Users\home\Downloads\BavPro_Setup_Mini_GL.exe
2015-05-17 11:24 - 2015-05-17 11:24 - 00000000 ____D () C:\Users\Public\Documents\Baidu
2015-05-16 13:56 - 2015-05-16 13:56 - 00000000 ____D () C:\Users\home\AppData\Local\VirtualStore
2015-05-16 13:55 - 2015-05-16 13:45 - 00024064 _____ () C:\Windows\zoek-delete.exe
2015-05-16 13:46 - 2015-05-16 13:56 - 00005452 _____ () C:\zoek-results.log
2015-05-16 13:45 - 2015-05-16 13:54 - 00000000 ____D () C:\zoek_backup
2015-05-16 13:45 - 2015-05-16 13:45 - 01308672 _____ () C:\Users\home\Downloads\zoek.exe
2015-05-16 13:45 - 2015-05-16 13:45 - 01308672 _____ () C:\Users\home\Desktop\zoek.exe
2015-05-16 13:37 - 2015-05-16 13:42 - 00000000 ____D () C:\AdwCleaner
2015-05-16 13:37 - 2015-05-16 13:37 - 02209792 _____ () C:\Users\home\Downloads\adwcleaner_4.204.exe
2015-05-16 13:37 - 2015-05-16 13:37 - 02209792 _____ () C:\Users\home\Desktop\adwcleaner_4.204.exe
2015-05-16 11:34 - 2015-05-16 19:03 - 00000000 ____D () C:\Users\home\Desktop\FRST-OlderVersion
2015-05-16 10:30 - 2015-05-16 10:30 - 21546080 _____ (Malwarebytes Corporation ) C:\Users\home\Downloads\mbam-setup-2.1.6.1022 (1).exe
2015-05-16 09:43 - 2015-05-16 09:43 - 00000472 _____ () C:\Users\home\Downloads\FixList (2).zip
2015-05-16 09:21 - 2015-05-17 13:16 - 00136408 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-05-16 09:21 - 2015-05-16 10:31 - 00001118 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-05-16 09:21 - 2015-05-16 10:31 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-05-16 09:21 - 2015-05-16 09:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-05-16 09:21 - 2015-05-16 09:21 - 00000000 ____D () C:\ProgramData\Malwarebytes
2015-05-16 09:21 - 2015-04-14 09:38 - 00064216 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2015-05-16 09:21 - 2015-04-14 09:37 - 00107736 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-05-16 09:21 - 2015-04-14 09:37 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2015-05-16 09:18 - 2015-05-16 09:19 - 21546080 _____ (Malwarebytes Corporation ) C:\Users\home\Downloads\mbam-setup-2.1.6.1022.exe
2015-05-15 23:36 - 2015-05-15 23:36 - 00000472 _____ () C:\Users\home\Downloads\FixList (1).zip
2015-05-15 23:33 - 2015-05-15 23:33 - 00112640 _____ (forum.viry.cz) C:\Users\home\Downloads\FRSTLauncher (2).exe
2015-05-15 23:32 - 2015-05-15 23:32 - 00112640 _____ (forum.viry.cz) C:\Users\home\Downloads\Nepotvrzeno 215233.crdownload
2015-05-15 23:31 - 2015-05-16 19:03 - 02107392 _____ (Farbar) C:\Users\home\Desktop\FRST64.exe
2015-05-15 23:31 - 2015-05-15 23:31 - 00112640 _____ (forum.viry.cz) C:\Users\home\Downloads\Nepotvrzeno 827992.crdownload
2015-05-15 23:30 - 2015-05-17 13:48 - 00000000 ____D () C:\FRST
2015-05-15 23:30 - 2015-05-15 23:30 - 02106368 _____ (Farbar) C:\Users\home\Downloads\FRST64.exe
2015-05-15 23:28 - 2015-05-15 23:28 - 00000472 _____ () C:\Users\home\Downloads\FixList.zip
2015-05-15 22:28 - 2015-05-15 22:28 - 00000952 _____ () C:\Users\home\Desktop\Play Minecraft.lnk
2015-05-15 22:28 - 2015-05-15 22:28 - 00000000 ____D () C:\Users\home\AppData\Local\TagCraftMC
2015-05-15 22:20 - 2015-05-15 22:27 - 135427653 _____ (TagCraftMC ) C:\Users\home\Downloads\Minecraft_1.8.3_Auto_Installer.exe
2015-05-15 22:17 - 2015-05-15 22:17 - 00562272 _____ (Oracle Corporation) C:\Users\home\Downloads\chromeinstall-8u45.exe
2015-05-15 22:07 - 2015-05-17 13:27 - 00000000 ____D () C:\Users\home\AppData\Roaming\.minecraft
2015-05-15 09:52 - 2015-05-15 09:52 - 00000000 _____ () C:\Users\home\AppData\Local\Temp.dat
2015-05-15 09:42 - 2015-05-15 09:42 - 00006538 _____ () C:\Users\home\Downloads\megafont.zip
2015-05-15 09:32 - 2015-05-15 09:32 - 01821663 _____ () C:\Users\home\Downloads\Adobe-Photoshop-CS5-Crack.rar
2015-05-14 22:40 - 2015-05-15 09:52 - 48657168 _____ () C:\Users\home\Downloads\avatar.psd
2015-05-12 00:26 - 2015-05-12 00:26 - 05963600 _____ () C:\Users\home\ts3_recording_15_05_12_0_26_2.wav
2015-05-10 11:46 - 2013-07-02 16:29 - 00024824 _____ (ASUSTeK Computer Inc.) C:\Windows\system32\Drivers\IOMap64.sys
2015-05-09 17:20 - 2015-05-09 17:20 - 00000000 ____D () C:\Users\home\Documents\BeamNG.drive
2015-05-09 17:19 - 2015-05-09 17:25 - 187642614 _____ () C:\Users\home\Downloads\BeamNG-Techdemo-v2.1.zip
2015-05-09 17:03 - 2015-05-09 17:03 - 01081072 _____ (Unity Technologies ApS) C:\Users\home\Downloads\UnityWebPlayer (1).exe
2015-05-09 15:08 - 2015-05-09 15:08 - 07973496 _____ (TeamViewer GmbH) C:\Users\home\Downloads\TeamViewer_Setup_cs-iuu (1).exe
2015-04-28 11:11 - 2015-04-28 11:11 - 00001998 _____ () C:\Users\home\Desktop\Vítejte u registrace produktu ASUS.lnk
2015-04-26 15:04 - 2015-04-26 15:04 - 00200174 _____ () C:\Users\home\Downloads\Nazvoslovi_-_ARENY.odp
2015-04-23 18:20 - 2015-04-23 18:20 - 00000022 _____ () C:\Windows\GPU-Z.INI
2015-04-23 18:14 - 2015-04-23 18:14 - 00001066 _____ () C:\Users\Public\Desktop\GPUTweakStreaming.lnk
2015-04-23 18:14 - 2015-04-23 18:14 - 00001059 _____ () C:\Users\Public\Desktop\ASUS GPU Tweak.lnk
2015-04-23 18:14 - 2015-04-23 18:14 - 00000032 _____ () C:\setup.log
2015-04-23 18:14 - 2015-04-23 18:14 - 00000000 ____D () C:\Windows\System32\Tasks\ASUS
2015-04-23 18:14 - 2015-04-23 18:14 - 00000000 ____D () C:\Windows\Downloaded Installations
2015-04-23 18:14 - 2015-04-23 18:14 - 00000000 ____D () C:\Users\home\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ASUS
2015-04-23 18:14 - 2015-04-23 18:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
2015-04-23 18:14 - 2015-04-23 18:14 - 00000000 ____D () C:\Program Files (x86)\ASUS
2015-04-23 08:21 - 2015-04-23 08:21 - 00456973 _____ () C:\Users\home\Downloads\Grand Theft Auto V 8, 8.1 & 10.rar
2015-04-23 08:07 - 2015-04-14 08:09 - 56382096 _____ (Rockstar Games) C:\Users\home\Desktop\Social Club v1.1.5.6 Setup.exe
2015-04-23 08:00 - 2015-04-23 08:06 - 447096881 _____ () C:\Users\home\Downloads\Grand.Theft.Auto.V.Update.1.and.Crack.v2-3DM.zip
2015-04-23 07:46 - 2015-04-23 07:47 - 09659782 _____ () C:\Users\home\Downloads\GTA V - Crack Only.rar
2015-04-23 07:27 - 2015-04-22 18:36 - 00000080 _____ () C:\Users\home\AppData\Local剜捯獫慴⁲慇敭屳呇⁁屖湥楴汴浥湥⹴湩潦
2015-04-23 07:27 - 2015-04-16 00:10 - 00000000 ____D () C:\Program Files\Rockstar Games
2015-04-23 07:27 - 2015-04-16 00:10 - 00000000 ____D () C:\Program Files (x86)\Rockstar Games
2015-04-23 07:24 - 2015-04-23 07:24 - 00016323 _____ () C:\Users\home\Downloads\[kickass.to]3dmgame.grand.theft.auto.v.update.1.and.crack.v2.3dm (1).torrent
2015-04-23 07:22 - 2015-04-23 07:22 - 00016323 _____ () C:\Users\home\Downloads\[kickass.to]3dmgame.grand.theft.auto.v.update.1.and.crack.v2.3dm.torrent
2015-04-23 07:10 - 2015-04-23 08:19 - 00000000 ____D () C:\Users\home\Documents\Rockstar Games
2015-04-23 07:10 - 2015-04-23 07:10 - 00000000 ____D () C:\Users\home\AppData\Local\Rockstar Games
2015-04-22 21:36 - 2015-04-22 21:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rockstar Games
2015-04-22 18:27 - 2015-05-06 17:07 - 00001397 _____ () C:\Users\Public\Desktop\GeForce Experience.lnk
2015-04-22 18:26 - 2015-04-22 18:26 - 00002153 _____ () C:\Users\Public\Desktop\3D Vision Photo Viewer.lnk
2015-04-22 18:26 - 2015-04-08 22:32 - 00560968 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2015-04-22 18:24 - 2015-04-09 02:58 - 01557648 _____ (NVIDIA Corporation) C:\Windows\system32\nvmcvadgenco64.dll
2015-04-22 18:24 - 2015-04-09 02:58 - 00100680 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcaparm.dll
2015-04-22 18:24 - 2015-04-09 02:58 - 00039056 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvadarm.sys
2015-04-22 18:20 - 2015-04-22 18:21 - 283201840 _____ (NVIDIA Corporation) C:\Users\home\Downloads\350.12-desktop-win8-win7-winvista-64bit-international-whql.exe
2015-04-22 18:13 - 2015-04-22 18:13 - 00000000 ____D () C:\Windows\LastGood
2015-04-22 07:42 - 2015-04-22 07:42 - 00032111 _____ () C:\Users\home\Downloads\[kickass.to]grand.theft.auto.v.update.3.v1.0.33502.and.crack.v4.3dm.torrent
2015-04-22 07:41 - 2015-04-22 07:41 - 00031991 _____ () C:\Users\home\Downloads\[kickass.to]3dmgame.grand.theft.auto.v.update.2.and.crack.3dm.torrent
2015-04-21 22:05 - 2015-04-21 22:05 - 00187479 _____ () C:\Users\home\Downloads\GTAV-utoerrent-PC-Tutoriales y de todo gamer-repack (1)
2015-04-21 22:05 - 2015-04-21 22:05 - 00187479 _____ () C:\Users\home\Downloads\GTAV-utoerrent-PC-Tutoriales y de todo gamer-repack
2015-04-21 22:05 - 2015-04-21 22:05 - 00000722 _____ () C:\Users\home\Downloads\GTA V+CRACK.txt
2015-04-21 22:01 - 2015-04-21 22:01 - 00162454 _____ () C:\Users\home\Downloads\[kickass.to]grand.theft.auto.v.2015.dlc.s.full.unlocked.retail.torrent
2015-04-21 21:48 - 2015-04-21 21:48 - 20197233 _____ () C:\Users\home\Downloads\GTA-5-PC-Game-Downloader-Fix-Patch-Full-Unlocked.rar
2015-04-21 19:40 - 2015-04-21 19:40 - 00154171 _____ () C:\Users\home\Downloads\Grand Theft Auto V (2015) + DLC's - FULL UNLOCKED +CRACK.torrent
2015-04-21 19:39 - 2015-04-21 19:39 - 00017552 _____ () C:\Users\home\Downloads\Grand.Theft.Auto.V.(2012).RELOADED.torrent
2015-04-21 17:32 - 2015-04-21 17:34 - 00000000 ____D () C:\Windows\system32\appmgmt

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-05-17 13:48 - 2013-09-30 05:52 - 00003942 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{E5F34E29-9037-41AA-80DE-74D3938F68C1}
2015-05-17 13:39 - 2014-12-31 15:19 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-05-17 13:00 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\system32\sru
2015-05-17 12:43 - 2014-10-19 11:29 - 00000000 ____D () C:\Users\home\Desktop\Plocha
2015-05-17 12:19 - 2014-09-16 17:34 - 00000000 ____D () C:\Users\home\AppData\Roaming\TS3Client
2015-05-17 12:19 - 2013-09-30 05:45 - 00003600 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2893419502-1249477774-2242879243-1001
2015-05-17 11:52 - 2013-08-22 16:46 - 00069525 _____ () C:\Windows\setupact.log
2015-05-17 11:51 - 2014-09-03 14:16 - 00000000 ____D () C:\ProgramData\NVIDIA
2015-05-17 11:51 - 2013-09-30 05:39 - 01117867 _____ () C:\Windows\WindowsUpdate.log
2015-05-17 11:51 - 2013-09-29 21:09 - 00113106 _____ () C:\Windows\PFRO.log
2015-05-17 11:51 - 2013-08-22 16:45 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-05-17 11:46 - 2013-08-22 17:36 - 00000000 ___HD () C:\Windows\system32\GroupPolicy
2015-05-17 11:46 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\SysWOW64\GroupPolicy
2015-05-17 03:01 - 2014-09-04 17:36 - 00003938 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-05-17 03:01 - 2014-09-04 17:36 - 00003702 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-05-17 03:01 - 2014-09-04 17:36 - 00000966 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-05-17 03:01 - 2014-09-04 17:36 - 00000962 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-05-17 02:41 - 2014-12-31 15:19 - 00000892 _____ () C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job
2015-05-16 13:38 - 2013-08-22 17:43 - 00000000 ____D () C:\Windows\DigitalLocker
2015-05-16 11:30 - 2015-01-28 16:24 - 00000000 ____D () C:\Users\home\AppData\Local\CrashDumps
2015-05-16 09:37 - 2013-08-22 15:25 - 00262144 ___SH () C:\Windows\system32\config\BBI
2015-05-16 09:32 - 2013-08-22 16:44 - 05040912 _____ () C:\Windows\system32\FNTCACHE.DAT
2015-05-15 22:18 - 2015-02-05 19:49 - 00097888 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2015-05-15 22:18 - 2015-02-05 19:48 - 00000000 ____D () C:\Program Files (x86)\Java
2015-05-15 22:09 - 2014-09-30 16:45 - 00000000 ____D () C:\Users\home\AppData\Roaming\NVIDIA
2015-05-15 10:25 - 2014-12-13 17:57 - 00000000 ____D () C:\Users\home\AppData\Roaming\OBS
2015-05-14 22:42 - 2014-12-28 21:23 - 00000000 ____D () C:\Users\home\AppData\Local\Battle.net
2015-05-14 22:36 - 2015-03-20 19:26 - 00000000 ____D () C:\Users\home\Desktop\Adobe CS5
2015-05-14 21:42 - 2014-12-28 21:22 - 00000000 ____D () C:\Program Files (x86)\Battle.net
2015-05-14 21:14 - 2014-09-04 08:44 - 00002457 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2015-05-14 10:57 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\AppReadiness
2015-05-12 00:26 - 2013-09-30 05:40 - 00000000 ____D () C:\Users\home
2015-05-11 12:33 - 2015-01-14 21:33 - 00000000 ____D () C:\Users\home\Desktop\referáty
2015-05-09 15:08 - 2015-02-18 22:50 - 00001059 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 10.lnk
2015-05-09 15:08 - 2015-02-18 22:50 - 00001047 _____ () C:\Users\Public\Desktop\TeamViewer 10.lnk
2015-05-09 15:08 - 2015-02-18 22:50 - 00000000 ____D () C:\Program Files (x86)\TeamViewer
2015-05-01 18:51 - 2014-09-03 14:19 - 01316184 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2015-05-01 18:51 - 2014-09-03 14:19 - 01316000 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll
2015-05-01 18:50 - 2014-09-03 14:19 - 01756424 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll
2015-05-01 18:50 - 2014-09-03 14:19 - 01570672 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2015-04-23 18:14 - 2014-09-03 14:40 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2015-04-23 07:33 - 2014-09-04 09:22 - 00097862 _____ () C:\Windows\DirectX.log
2015-04-22 18:26 - 2014-09-03 14:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2015-04-22 18:26 - 2014-09-03 14:15 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation
2015-04-22 18:26 - 2014-09-03 14:15 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2015-04-22 14:48 - 2013-09-30 06:20 - 01745984 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-04-22 14:48 - 2013-09-30 05:57 - 00738682 _____ () C:\Windows\system32\perfh005.dat
2015-04-22 14:48 - 2013-09-30 05:57 - 00151404 _____ () C:\Windows\system32\perfc005.dat
2015-04-21 17:34 - 2014-09-04 18:02 - 00000000 ____D () C:\ProgramData\Skype
2015-04-21 17:15 - 2014-09-04 18:02 - 00000000 ____D () C:\Users\home\AppData\Roaming\Skype
2015-04-17 12:01 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\LiveKernelReports

==================== Files in the root of some directories =======

2015-05-15 09:52 - 2015-05-15 09:52 - 0000000 _____ () C:\Users\home\AppData\Local\Temp.dat
2014-09-03 14:41 - 2014-09-03 14:41 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-05-11 17:20

==================== End Of Log ============================