prosím o kontrolu logu
Napsal: 27 lis 2013 18:07
Dobrý den, nejdou mě spustit miniaplikace na plochu tak bych chtěl zkontrolovat tento log:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 27-11-2013
Ran by Martin (administrator) on MARTIN-PC on 27-11-2013 17:59:06
Running from C:\Users\Martin\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: Czech
Internet Explorer Version 10
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(APN LLC.) C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe
(Broadcom Corporation.) C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe
(Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(Lenovo (Beijing) Limited) C:\Program Files\Lenovo\Instant Reset\DamageGuardSvc.exe
() C:\Program Files (x86)\Dokan\DokanLibrary\mounter.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Nalpeiron Ltd.) C:\Windows\SysWOW64\NLSSRV32.EXE
(Pandora.TV) C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(PandoraTV) C:\Program Files (x86)\PANDORA.TV\PanService\PanProcess.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Lenovo (Beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe
(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\utility.exe
(Google Inc.) C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Broadcom Corporation.) C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Dolby Laboratories Inc.) C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe
(Vimicro) C:\Program Files (x86)\USB Camera2\VM332_STI.EXE
(CyberLink) C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe
(Lenovo) C:\Program Files (x86)\Lenovo\VeriFace\PManage.exe
( ) C:\Program Files (x86)\LockKey\LockKey.exe
(APN) C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(APN LLC.) C:\Users\Martin\AppData\Local\VNT\vntldr.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(forum.viry.cz) C:\Users\Martin\Desktop\FRSTLauncher.exe
(Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(Microsoft Corporation) C:\Windows\SysWOW64\PING.EXE
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [HotKeysCmds] - C:\Windows\system32\hkcmd.exe [ ] ()
HKLM\...\Run: [cAudioFilterAgent] - C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe [564352 2011-12-15] (Conexant Systems, Inc.)
HKLM\...\Run: [ETDCtrl] - C:\Program Files\Elantech\ETDCtrl.exe [2809856 2012-01-16] (ELAN Microelectronics Corp.)
HKLM\...\Run: [Energy Management] - C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [8079408 2012-09-07] (Lenovo (Beijing) Limited)
HKLM\...\Run: [EnergyUtility] - C:\Program Files (x86)\Lenovo\Energy Management\utility.exe [6202416 2012-09-07] (Lenovo(beijing) Limited)
HKLM\...\Run: [Lenovo EE Boot Optimizer] - C:\Program Files (x86)\Lenovo\Boot Optimizer\PopWnd.exe [206176 2012-09-07] (Lenovo)
HKLM\...\Run: [AutoKMS] - C:\Windows\AutoKMS.exe [615936 2013-04-21] ()
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKCU\...\Run: [swg] - C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2012-09-07] (Google Inc.)
HKCU\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3673728 2012-11-06] (DT Soft Ltd)
HKCU\...\Run: [Power2GoExpress] - NA
HKLM-x32\...\Run: [IAStorIcon] - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284440 2011-11-30] (Intel Corporation)
HKLM-x32\...\Run: [USB3MON] - C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291648 2012-05-21] (Intel Corporation)
HKLM-x32\...\Run: [Dolby Advanced Audio v2] - C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe [507744 2011-12-21] (Dolby Laboratories Inc.)
HKLM-x32\...\Run: [332BigDog] - C:\Program Files (x86)\USB Camera2\VM332_STI.EXE [548864 2011-12-09] (Vimicro)
HKLM-x32\...\Run: [Lenovo Registration] - C:\Program Files (x86)\Lenovo Registration\LenovoReg.exe [4351712 2012-01-26] (Lenovo, Inc.)
HKLM-x32\...\Run: [YouCam Mirage] - C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe [136488 2011-01-29] (CyberLink)
HKLM-x32\...\Run: [YouCam Tray] - C:\Program Files (x86)\Lenovo\YouCam\YouCam.exe [228448 2011-01-29] (CyberLink Corp.)
HKLM-x32\...\Run: [UpdateP2GShortCut] - C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [222504 2010-07-27] (CyberLink Corp.)
HKLM-x32\...\Run: [VeriFaceManager] - C:\Program Files (x86)\Lenovo\VeriFace\PManage.exe [329056 2012-09-07] (Lenovo)
HKLM-x32\...\Run: [UpdatePRCShortCut] - C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MUITransfer\MUIStartMenu.exe [222504 2009-05-14] (CyberLink Corp.)
HKLM-x32\...\Run: [LockKey] - C:\Program Files (x86)\LockKey\LockKey.exe [337776 2011-08-26] ( )
HKLM-x32\...\Run: [BCSSync] - C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [91520 2010-03-13] (Microsoft Corporation)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [ApnTBMon] - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe [1707472 2013-11-06] (APN)
HKLM-x32\...\Run: [AvastUI.exe] - C:\Program Files\AVAST Software\Avast\AvastUI.exe [3568312 2013-10-21] (AVAST Software)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [VNT] - C:\Program Files (x86)\VNT\vntldr.exe [202192 2013-11-06] (APN LLC.)
HKLM-x32\...\Run: [20131121] - C:\Program Files\AVAST Software\Avast\Setup\emupdate\7cc1374c-8aae-4c93-a899-d5af0fe6c30d.exe [180184 2013-11-23] (AVAST Software)
HKU\Default\...\RunOnce: [Lenovo.ShowBand] - C:\Program Files\Lenovo\SimpleTap DeskBand\ShowBand.exe [52584 2013-09-25] (Lenovo)
HKU\Default User\...\RunOnce: [Lenovo.ShowBand] - C:\SWTOOLS\SimpleTap DeskBand\ShowBand.exe /show
AppInit_DLLs: C:\Windows\System32\nvinitx.dll [260928 2012-05-01] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\Windows\SysWOW64\nvinit.dll [215360 2012-05-01] (NVIDIA Corporation)
Lsa: [Notification Packages] scecli C:\Program Files\Lenovo\Bluetooth Software\BtwProximityCP.dll
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com/ig/redirectdomain ... &bmod=KMOH
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.cz/?rlz=1W4CHBA_csCZ563
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.google.com/ig/redirectdomain ... &bmod=KMOH
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs =
BHO: avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: TBLayoutBHO Class - {008f6853-9cb4-41c5-a950-39d55e5e06ba} - C:\Program Files (x86)\Amazon Browser Bar\AmazonBrowserBar.3.0.dll (Amazon.com)
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: AlxHelper Class - {F443A627-5009-4323-9C1D-7FD598D0D712} - C:\Program Files (x86)\Amazon Browser Bar\AmazonBrowserBar.3.0.dll (Amazon.com)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM-x32 - Amazon Browser Bar - {EA582743-9076-4178-9AA6-7393FDF4D5CE} - C:\Program Files (x86)\Amazon Browser Bar\AmazonBrowserBar.3.0.dll (Amazon.com)
Toolbar: HKLM-x32 - avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.208 192.168.1.203
Chrome:
=======
CHR Extension: (Ask Toolbar) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\26.60709_0
CHR Extension: (YouTube) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Google Search) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (Google Wallet) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.5.0_0
CHR Extension: (Amazon 1Button App for Chrome) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbjikboenpfhbbejgkoklgkhjpfogcam\4.2013.1111.2_0
CHR Extension: (Gmail) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0
CHR HKLM-x32\...\Chrome\Extension: [aaaajfocmnnhjaajccaelhippajhaeod] - C:\ProgramData\AskPartnerNetwork\Toolbar\ATU4-V7\CRX\ToolbarCR.crx
CHR HKLM-x32\...\Chrome\Extension: [fjbbjfdilbioabojmcplalojlmdngbjl] - C:\Users\Martin\AppData\Roaming\OpenCandy\96CF1D3D620D473BA633583A54E48AC1\smileyswelovetoolbar.crx
CHR HKLM-x32\...\Chrome\Extension: [pbjikboenpfhbbejgkoklgkhjpfogcam] - C:\Program Files (x86)\Amazon\ABB\AmazonChrome-lenovo-abb.crx
==================== Services (Whitelisted) =================
R2 APNMCP; C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe [166352 2013-11-06] (APN LLC.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2013-10-21] (AVAST Software)
R2 btwdins; C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe [945440 2012-02-02] (Broadcom Corporation.)
R2 DamageGuardSvc; C:\Program Files\Lenovo\Instant Reset\DamageGuardSvc.exe [572976 2012-03-26] (Lenovo (Beijing) Limited)
R2 DokanMounter; C:\Program Files (x86)\Dokan\DokanLibrary\mounter.exe [14848 2011-01-10] ()
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [161560 2012-02-28] (Intel Corporation)
S3 LSCWinService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe [1674720 2013-09-25] ()
R2 PanService; C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe [625304 2012-09-28] (Pandora.TV)
R2 PnkBstrA; C:\Windows\SysWow64\PnkBstrA.exe [76888 2013-02-21] ()
==================== Drivers (Whitelisted) ====================
R2 aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [38984 2013-10-21] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [84328 2013-10-21] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [92544 2013-10-21] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2013-10-21] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1032416 2013-10-21] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [409832 2013-11-08] (AVAST Software)
R1 aswTdi; C:\Windows\system32\drivers\aswTdi.sys [65264 2013-10-21] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [205320 2013-10-21] ()
S3 bcbtums; C:\Windows\System32\drivers\bcbtums.sys [134696 2012-02-02] (Broadcom Corporation.)
R1 DamageGuard; C:\Windows\System32\DRIVERS\DamageGuardX64.sys [217392 2012-02-11] (Lenovo)
R1 dgFltr; C:\Windows\System32\drivers\dgFltrX64.sys [23648 2011-12-13] (Lenovo)
R2 Dokan; C:\Windows\system32\drivers\dokan.sys [120408 2011-01-10] (Windows (R) Win 7 DDK provider)
R3 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2012-12-25] (DT Soft Ltd)
R3 L1C; C:\Windows\System32\DRIVERS\L1C62x64.sys [104048 2012-03-02] (Qualcomm Atheros Co., Ltd.)
U3 BcmSqlStartupSvc;
U2 CLKMSVC10_3A60B698;
U2 CLKMSVC10_C3B3B687;
U2 DriverService;
U2 iATAgentService;
U2 idealife Update Service;
U3 IGRS;
U2 IviRegMgr;
U2 Oasis2Service;
U2 PCCarerService;
U2 ReadyComm.DirectRouter;
U2 RichVideo;
U2 RtLedService;
U2 SeaPort;
U2 SoftwareService;
U3 SQLWriter;
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-11-27 17:59 - 2013-11-27 17:59 - 00017035 _____ C:\Users\Martin\Desktop\FRST.txt
2013-11-27 17:58 - 2013-11-27 17:58 - 00029696 _____ C:\Users\Martin\AppData\Local\MSGBOX.EXE
2013-11-27 17:58 - 2013-11-27 17:58 - 00015327 _____ C:\Users\Martin\Desktop\LM.bat
2013-11-27 17:58 - 2013-11-27 17:58 - 00000000 ____D C:\FRST
2013-11-27 17:57 - 2013-11-27 17:57 - 01958818 _____ (Farbar) C:\Users\Martin\Desktop\FRST64.exe
2013-11-27 17:57 - 2013-11-27 17:57 - 00112640 _____ (forum.viry.cz) C:\Users\Martin\Desktop\FRSTLauncher.exe
2013-11-27 17:38 - 2013-11-27 17:38 - 00000000 ____D C:\Users\Martin\AppData\Roaming\LSC
2013-11-27 17:38 - 2013-11-27 17:38 - 00000000 ____D C:\ldiag
2013-11-25 21:08 - 2013-11-25 21:08 - 00002970 _____ C:\Windows\System32\Tasks\{CD1AA10E-3ECC-4709-854F-EA796AC759A0}
2013-11-25 21:08 - 2013-11-25 21:08 - 00002970 _____ C:\Windows\System32\Tasks\{248AA81B-2FBC-4739-A636-66562DB54DA4}
2013-11-25 21:07 - 2013-11-25 21:07 - 00002970 _____ C:\Windows\System32\Tasks\{71603498-DA18-4A36-9E3C-12838E200082}
2013-11-21 21:13 - 2013-11-21 21:13 - 00001786 _____ C:\Users\Public\Desktop\Assassins Creed IV - Black Flag.lnk
2013-11-21 20:04 - 2013-11-21 20:04 - 00000000 ____D C:\Users\Martin\Documents\Assassin's Creed IV Black Flag
2013-11-21 19:35 - 2013-11-21 20:55 - 00000000 ____D C:\Hry
2013-11-21 18:40 - 2013-11-21 18:40 - 00001705 _____ C:\Users\Martin\Desktop\BioShock Infinite.lnk
2013-11-21 18:19 - 2013-11-21 18:19 - 00000000 ____D C:\Users\Martin\AppData\Local\SugarSync
2013-11-21 17:58 - 2013-11-21 17:59 - 00000012 _____ C:\Users\Martin\Desktop\ten text.txt
2013-11-21 15:33 - 2013-11-21 15:34 - 40633685 _____ C:\Users\Martin\Downloads\8.9Crabtr33_XVM_CZ_modpack_v1.05.7z
2013-11-19 21:42 - 2013-11-19 21:42 - 00000000 ____D C:\Users\Martin\Desktop\NVIDIA Inspector
2013-11-19 20:54 - 2013-11-19 20:54 - 00000000 ____D C:\Users\Martin\AppData\Local\FLT
2013-11-19 17:50 - 2013-11-19 17:50 - 00000000 ____D C:\Users\Martin\Documents\Add-in Express
2013-11-19 17:49 - 2013-11-19 17:49 - 00001195 _____ C:\Users\Public\Desktop\aTube Catcher.lnk
2013-11-19 17:49 - 2008-08-19 01:18 - 00077824 _____ (Fox Magic Software) C:\Windows\SysWOW64\fmcodec.DLL
2013-11-19 17:47 - 2013-11-19 17:48 - 11851440 _____ (DsNET Corp) C:\Users\Martin\Downloads\aTubeCatcher.exe
2013-11-16 14:39 - 2013-11-16 14:39 - 01474431 _____ C:\Users\Martin\Downloads\20131116_1344_china-Ch01_Type59_85_winter.wotreplay
2013-11-14 20:38 - 2013-11-14 20:38 - 00000000 ____D C:\Users\Martin\AppData\Local\{2ABF1605-877D-444C-BA3D-31A88384B246}
2013-11-14 16:33 - 2013-10-12 09:45 - 02241536 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-11-14 16:33 - 2013-10-12 09:45 - 01364992 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-11-14 16:33 - 2013-10-12 09:45 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-11-14 16:33 - 2013-10-12 09:43 - 19269632 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-11-14 16:33 - 2013-10-12 09:43 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-11-14 16:33 - 2013-10-12 09:43 - 03959808 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-11-14 16:33 - 2013-10-12 09:43 - 02648576 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-11-14 16:33 - 2013-10-12 09:43 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-11-14 16:33 - 2013-10-12 09:43 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-11-14 16:33 - 2013-10-12 09:43 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-11-14 16:33 - 2013-10-12 09:43 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-11-14 16:33 - 2013-10-12 09:43 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-11-14 16:33 - 2013-10-12 09:43 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-11-14 16:33 - 2013-10-12 09:43 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-11-14 16:33 - 2013-10-12 08:03 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-11-14 16:33 - 2013-10-12 08:03 - 01138176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-11-14 16:33 - 2013-10-12 08:02 - 14355968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-11-14 16:33 - 2013-10-12 08:02 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-11-14 16:33 - 2013-10-12 08:02 - 02877952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-11-14 16:33 - 2013-10-12 08:02 - 02049024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-11-14 16:33 - 2013-10-12 08:02 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-11-14 16:33 - 2013-10-12 08:02 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-11-14 16:33 - 2013-10-12 08:02 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-11-14 16:33 - 2013-10-12 08:02 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-11-14 16:33 - 2013-10-12 08:02 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-11-14 16:33 - 2013-10-12 08:02 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-11-14 16:33 - 2013-10-12 08:02 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-11-14 16:33 - 2013-10-12 07:35 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-11-14 16:33 - 2013-10-12 07:08 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-11-14 16:33 - 2013-10-12 06:44 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-11-14 16:33 - 2013-10-12 06:15 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-11-13 17:32 - 2013-11-13 17:33 - 39743397 _____ C:\Users\Martin\Downloads\8.9Crabtr33_XVM_CZ_modpack_v1.04.7z
2013-11-13 15:47 - 2013-10-05 21:25 - 01474048 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-11-13 15:47 - 2013-10-05 20:57 - 01168384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-11-13 15:47 - 2013-10-04 03:28 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2013-11-13 15:47 - 2013-10-04 03:25 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2013-11-13 15:47 - 2013-10-04 03:24 - 01930752 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2013-11-13 15:47 - 2013-10-04 02:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2013-11-13 15:47 - 2013-10-04 02:56 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2013-11-13 15:47 - 2013-10-04 02:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll
2013-11-13 15:47 - 2013-10-03 03:23 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2013-11-13 15:47 - 2013-10-03 03:00 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2013-11-13 15:47 - 2013-09-28 02:09 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-11-13 15:47 - 2013-09-25 03:26 - 00154560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2013-11-13 15:47 - 2013-09-25 03:26 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2013-11-13 15:47 - 2013-09-25 03:23 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2013-11-13 15:47 - 2013-09-25 03:23 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2013-11-13 15:47 - 2013-09-25 03:23 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2013-11-13 15:47 - 2013-09-25 03:22 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2013-11-13 15:47 - 2013-09-25 03:21 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2013-11-13 15:47 - 2013-09-25 03:21 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2013-11-13 15:47 - 2013-09-25 02:58 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2013-11-13 15:47 - 2013-09-25 02:57 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2013-11-13 15:47 - 2013-09-25 02:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2013-11-13 15:47 - 2013-09-25 02:56 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2013-11-13 15:47 - 2013-09-25 02:03 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2013-11-13 15:47 - 2013-07-04 13:18 - 00458712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2013-11-13 15:46 - 2013-10-12 03:30 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2013-11-13 15:46 - 2013-10-12 03:29 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2013-11-13 15:46 - 2013-10-12 03:29 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2013-11-13 15:46 - 2013-10-12 03:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2013-11-13 15:46 - 2013-10-12 03:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2013-11-11 15:12 - 2013-11-11 15:12 - 00000813 _____ C:\Users\Public\Desktop\World of Warplanes.lnk
2013-11-11 14:35 - 2013-11-11 14:37 - 08775080 _____ (Wargaming.net ) C:\Users\Martin\Downloads\WoWP_internet_install_eu.exe
2013-11-10 16:55 - 2013-11-10 16:55 - 01605307 _____ C:\Users\Martin\Downloads\13838537688780_germany_VK3002M_malinovka.wotreplay
2013-11-10 11:34 - 2013-11-10 11:34 - 01102805 _____ C:\Users\Martin\Downloads\13840783345917_ussr_Churchill_LL_el_hallouf.wotreplay
2013-11-10 11:22 - 2013-11-10 11:22 - 01281053 _____ C:\Users\Martin\Downloads\13840784608836_germany_RhB_Waffentrager_hills.wotreplay
2013-11-10 11:16 - 2013-11-10 11:16 - 00975248 _____ C:\Users\Martin\Downloads\13840785073012_france_AMX_50_120_himmelsdorf.wotreplay
2013-11-10 11:02 - 2013-11-10 11:02 - 01403108 _____ C:\Users\Martin\Downloads\13837607573741_germany_PzVI_erlenberg.wotreplay
2013-11-10 10:28 - 2013-11-10 10:28 - 01326447 _____ C:\Users\Martin\Downloads\13838522795807_france_BDR_G1B_mannerheim_line.wotreplay
2013-11-09 16:24 - 2013-11-09 16:25 - 00930245 _____ C:\Users\Martin\Downloads\13840090169478_usa_M12_karelia.wotreplay
2013-11-08 16:26 - 2013-11-08 16:26 - 00000000 ____D C:\Users\Martin\AppData\Local\VNT
2013-11-08 16:26 - 2013-11-08 16:26 - 00000000 ____D C:\Program Files (x86)\VNT
2013-11-05 20:41 - 2013-11-05 20:42 - 00288688 _____ C:\Windows\Minidump\110513-81401-01.dmp
2013-11-05 14:32 - 2013-11-05 14:32 - 67994494 _____ C:\Users\Martin\Downloads\HRMOD Gun Sounds v1.853.zip
2013-11-05 14:07 - 2013-11-05 14:08 - 40573443 _____ C:\Users\Martin\Downloads\8.9Crabtr33_XVM_CZ_modpack_v1.00.7z
2013-11-04 18:21 - 2013-11-04 18:21 - 00000000 ____D C:\ProgramData\Steam
2013-11-04 18:02 - 2013-11-24 19:01 - 00000000 ____D C:\Program Files (x86)\Saints Row IV
2013-10-30 14:23 - 2013-10-30 14:23 - 00915368 _____ (Oracle Corporation) C:\Users\Martin\Downloads\chromeinstall-7u45.exe
2013-10-30 14:22 - 2013-10-30 14:22 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2013-10-30 14:22 - 2013-10-30 14:22 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2013-10-30 14:22 - 2013-10-30 14:22 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2013-10-30 14:22 - 2013-10-30 14:22 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2013-10-30 14:22 - 2013-10-30 14:22 - 00000000 ____D C:\ProgramData\Oracle
2013-10-30 14:22 - 2013-10-30 14:22 - 00000000 ____D C:\Program Files (x86)\Java
2013-10-30 14:17 - 2013-10-30 14:21 - 29040552 _____ (Oracle Corporation) C:\Users\Martin\Downloads\jre-7u45-windows-i586.exe
2013-10-30 14:15 - 2013-10-30 14:15 - 00000000 ____D C:\Windows\Sun
==================== One Month Modified Files and Folders =======
2013-11-27 17:59 - 2013-11-27 17:59 - 00017035 _____ C:\Users\Martin\Desktop\FRST.txt
2013-11-27 17:58 - 2013-11-27 17:58 - 00029696 _____ C:\Users\Martin\AppData\Local\MSGBOX.EXE
2013-11-27 17:58 - 2013-11-27 17:58 - 00015327 _____ C:\Users\Martin\Desktop\LM.bat
2013-11-27 17:58 - 2013-11-27 17:58 - 00000000 ____D C:\FRST
2013-11-27 17:57 - 2013-11-27 17:57 - 01958818 _____ (Farbar) C:\Users\Martin\Desktop\FRST64.exe
2013-11-27 17:57 - 2013-11-27 17:57 - 00112640 _____ (forum.viry.cz) C:\Users\Martin\Desktop\FRSTLauncher.exe
2013-11-27 17:38 - 2013-11-27 17:38 - 00000000 ____D C:\Users\Martin\AppData\Roaming\LSC
2013-11-27 17:38 - 2013-11-27 17:38 - 00000000 ____D C:\ldiag
2013-11-27 17:38 - 1601-01-02 05:16 - 00002016 _____ C:\Users\Public\Desktop\Lenovo Solution Center.lnk
2013-11-27 17:33 - 2012-09-07 12:37 - 00000966 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-11-27 17:33 - 2012-09-07 12:37 - 00000962 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-11-27 17:32 - 2012-09-07 11:46 - 01612721 _____ C:\Windows\WindowsUpdate.log
2013-11-27 17:31 - 1601-01-02 05:16 - 09960276 _____ C:\Windows\system32\perfh005.dat
2013-11-27 17:31 - 1601-01-02 05:16 - 03437720 _____ C:\Windows\system32\perfc005.dat
2013-11-27 17:31 - 1601-01-02 05:16 - 00006252 _____ C:\Windows\system32\PerfStringBackup.INI
2013-11-27 17:28 - 2012-12-01 02:52 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-11-26 21:52 - 2013-03-22 18:11 - 00007601 _____ C:\Users\Martin\AppData\Local\Resmon.ResmonCfg
2013-11-26 21:46 - 1601-01-02 05:16 - 00743676 _____ C:\Windows\system32\fastboot.set
2013-11-26 21:36 - 2013-01-16 14:45 - 00035116 _____ C:\Windows\setupact.log
2013-11-26 21:36 - 1601-01-02 05:16 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-11-26 21:04 - 2013-01-07 20:40 - 00000000 ____D C:\Users\Martin\HRY
2013-11-26 20:18 - 2013-06-08 15:55 - 00000000 ____D C:\Program Files (x86)\The KMPlayer
2013-11-26 19:08 - 2012-12-25 14:11 - 00000000 ____D C:\Users\Martin\FILMY a SERIÁLY
2013-11-25 21:16 - 1601-01-02 05:16 - 00001129 _____ C:\Users\Martin\Desktop\Cyberlink Power2Go.lnk
2013-11-25 21:13 - 2013-01-25 17:51 - 00002221 _____ C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2013-11-25 21:08 - 2013-11-25 21:08 - 00002970 _____ C:\Windows\System32\Tasks\{CD1AA10E-3ECC-4709-854F-EA796AC759A0}
2013-11-25 21:08 - 2013-11-25 21:08 - 00002970 _____ C:\Windows\System32\Tasks\{248AA81B-2FBC-4739-A636-66562DB54DA4}
2013-11-25 21:07 - 2013-11-25 21:07 - 00002970 _____ C:\Windows\System32\Tasks\{71603498-DA18-4A36-9E3C-12838E200082}
2013-11-24 19:01 - 2013-11-04 18:02 - 00000000 ____D C:\Program Files (x86)\Saints Row IV
2013-11-24 09:27 - 2013-01-25 17:51 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2013-11-23 23:38 - 2013-06-08 20:34 - 00000000 ____D C:\Users\Public\Downloads\Maps
2013-11-23 21:15 - 2013-06-08 20:34 - 00000000 ____D C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mio
2013-11-23 20:21 - 2012-12-25 10:06 - 00000000 ____D C:\Users\Martin\AppData\Roaming\Skype
2013-11-21 21:13 - 2013-11-21 21:13 - 00001786 _____ C:\Users\Public\Desktop\Assassins Creed IV - Black Flag.lnk
2013-11-21 21:13 - 2013-06-06 15:37 - 00404936 _____ C:\Windows\DirectX.log
2013-11-21 20:55 - 2013-11-21 19:35 - 00000000 ____D C:\Hry
2013-11-21 20:04 - 2013-11-21 20:04 - 00000000 ____D C:\Users\Martin\Documents\Assassin's Creed IV Black Flag
2013-11-21 20:04 - 2012-12-24 23:36 - 00000000 ____D C:\Users\Martin\AppData\Roaming\CyberLink
2013-11-21 18:40 - 2013-11-21 18:40 - 00001705 _____ C:\Users\Martin\Desktop\BioShock Infinite.lnk
2013-11-21 18:19 - 2013-11-21 18:19 - 00000000 ____D C:\Users\Martin\AppData\Local\SugarSync
2013-11-21 17:59 - 2013-11-21 17:58 - 00000012 _____ C:\Users\Martin\Desktop\ten text.txt
2013-11-21 15:34 - 2013-11-21 15:33 - 40633685 _____ C:\Users\Martin\Downloads\8.9Crabtr33_XVM_CZ_modpack_v1.05.7z
2013-11-19 21:42 - 2013-11-19 21:42 - 00000000 ____D C:\Users\Martin\Desktop\NVIDIA Inspector
2013-11-19 20:54 - 2013-11-19 20:54 - 00000000 ____D C:\Users\Martin\AppData\Local\FLT
2013-11-19 20:54 - 2013-02-05 23:24 - 00000000 ____D C:\Users\Martin\Documents\My Games
2013-11-19 17:50 - 2013-11-19 17:50 - 00000000 ____D C:\Users\Martin\Documents\Add-in Express
2013-11-19 17:49 - 2013-11-19 17:49 - 00001195 _____ C:\Users\Public\Desktop\aTube Catcher.lnk
2013-11-19 17:48 - 2013-11-19 17:47 - 11851440 _____ (DsNET Corp) C:\Users\Martin\Downloads\aTubeCatcher.exe
2013-11-16 14:39 - 2013-11-16 14:39 - 01474431 _____ C:\Users\Martin\Downloads\20131116_1344_china-Ch01_Type59_85_winter.wotreplay
2013-11-15 14:52 - 1601-01-02 05:16 - 00002194 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2013-11-14 20:38 - 2013-11-14 20:38 - 00000000 ____D C:\Users\Martin\AppData\Local\{2ABF1605-877D-444C-BA3D-31A88384B246}
2013-11-14 16:36 - 2013-01-25 16:25 - 00122058 _____ C:\Windows\PFRO.log
2013-11-14 16:34 - 2013-01-12 17:23 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-11-14 16:26 - 2013-07-30 08:04 - 00000000 ____D C:\Windows\system32\MRT
2013-11-14 16:23 - 1601-01-02 05:16 - 82896128 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-11-13 17:33 - 2013-11-13 17:32 - 39743397 _____ C:\Users\Martin\Downloads\8.9Crabtr33_XVM_CZ_modpack_v1.04.7z
2013-11-11 17:03 - 2013-05-01 07:44 - 00000000 ____D C:\Users\Martin\AppData\Roaming\Wargaming.net
2013-11-11 15:12 - 2013-11-11 15:12 - 00000813 _____ C:\Users\Public\Desktop\World of Warplanes.lnk
2013-11-11 15:12 - 2013-04-30 17:35 - 00000000 ____D C:\Games
2013-11-11 15:12 - 2013-02-21 14:20 - 00000000 ___HD C:\Windows\msdownld.tmp
2013-11-11 14:37 - 2013-11-11 14:35 - 08775080 _____ (Wargaming.net ) C:\Users\Martin\Downloads\WoWP_internet_install_eu.exe
2013-11-11 14:34 - 2013-05-15 15:04 - 00000000 ____D C:\Program Files (x86)\War Thunder
2013-11-11 05:50 - 1601-01-02 05:16 - 00267936 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2013-11-10 16:55 - 2013-11-10 16:55 - 01605307 _____ C:\Users\Martin\Downloads\13838537688780_germany_VK3002M_malinovka.wotreplay
2013-11-10 11:34 - 2013-11-10 11:34 - 01102805 _____ C:\Users\Martin\Downloads\13840783345917_ussr_Churchill_LL_el_hallouf.wotreplay
2013-11-10 11:22 - 2013-11-10 11:22 - 01281053 _____ C:\Users\Martin\Downloads\13840784608836_germany_RhB_Waffentrager_hills.wotreplay
2013-11-10 11:16 - 2013-11-10 11:16 - 00975248 _____ C:\Users\Martin\Downloads\13840785073012_france_AMX_50_120_himmelsdorf.wotreplay
2013-11-10 11:02 - 2013-11-10 11:02 - 01403108 _____ C:\Users\Martin\Downloads\13837607573741_germany_PzVI_erlenberg.wotreplay
2013-11-10 10:28 - 2013-11-10 10:28 - 01326447 _____ C:\Users\Martin\Downloads\13838522795807_france_BDR_G1B_mannerheim_line.wotreplay
2013-11-09 16:25 - 2013-11-09 16:24 - 00930245 _____ C:\Users\Martin\Downloads\13840090169478_usa_M12_karelia.wotreplay
2013-11-08 16:56 - 1601-01-02 05:16 - 00409832 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys.1383926163
2013-11-08 16:56 - 1601-01-02 05:16 - 00409832 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2013-11-08 16:26 - 2013-11-08 16:26 - 00000000 ____D C:\Users\Martin\AppData\Local\VNT
2013-11-08 16:26 - 2013-11-08 16:26 - 00000000 ____D C:\Program Files (x86)\VNT
2013-11-07 16:25 - 2013-01-13 17:06 - 00000000 ____D C:\Users\Martin\ŠKOLA
2013-11-07 15:08 - 2012-12-25 10:52 - 00000000 ____D C:\Users\Martin\AppData\Roaming\.minecraft
2013-11-07 15:07 - 2012-12-25 10:41 - 00356352 _____ C:\Users\Martin\Desktop\Minecraft.exe
2013-11-06 19:05 - 2013-09-12 16:40 - 00000000 ____D C:\Users\Martin\WOT
2013-11-06 19:04 - 2013-09-16 18:37 - 00001634 _____ C:\Windows\WDICT32.INI
2013-11-05 20:42 - 2013-11-05 20:41 - 00288688 _____ C:\Windows\Minidump\110513-81401-01.dmp
2013-11-05 20:41 - 2013-03-03 19:48 - 00000000 ____D C:\Windows\Minidump
2013-11-05 20:41 - 2013-03-03 19:47 - 431551708 _____ C:\Windows\MEMORY.DMP
2013-11-05 14:32 - 2013-11-05 14:32 - 67994494 _____ C:\Users\Martin\Downloads\HRMOD Gun Sounds v1.853.zip
2013-11-05 14:08 - 2013-11-05 14:07 - 40573443 _____ C:\Users\Martin\Downloads\8.9Crabtr33_XVM_CZ_modpack_v1.00.7z
2013-11-04 18:21 - 2013-11-04 18:21 - 00000000 ____D C:\ProgramData\Steam
2013-10-30 14:23 - 2013-10-30 14:23 - 00915368 _____ (Oracle Corporation) C:\Users\Martin\Downloads\chromeinstall-7u45.exe
2013-10-30 14:22 - 2013-10-30 14:22 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2013-10-30 14:22 - 2013-10-30 14:22 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2013-10-30 14:22 - 2013-10-30 14:22 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2013-10-30 14:22 - 2013-10-30 14:22 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2013-10-30 14:22 - 2013-10-30 14:22 - 00000000 ____D C:\ProgramData\Oracle
2013-10-30 14:22 - 2013-10-30 14:22 - 00000000 ____D C:\Program Files (x86)\Java
2013-10-30 14:21 - 2013-10-30 14:17 - 29040552 _____ (Oracle Corporation) C:\Users\Martin\Downloads\jre-7u45-windows-i586.exe
2013-10-30 14:15 - 2013-10-30 14:15 - 00000000 ____D C:\Windows\Sun
Files to move or delete:
====================
C:\Users\Public\AlexaNSISPlugin.208.dll
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-11-22 19:39
==================== End Of Log ============================
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 27-11-2013
Ran by Martin (administrator) on MARTIN-PC on 27-11-2013 17:59:06
Running from C:\Users\Martin\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: Czech
Internet Explorer Version 10
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(APN LLC.) C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe
(Broadcom Corporation.) C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe
(Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(Lenovo (Beijing) Limited) C:\Program Files\Lenovo\Instant Reset\DamageGuardSvc.exe
() C:\Program Files (x86)\Dokan\DokanLibrary\mounter.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Nalpeiron Ltd.) C:\Windows\SysWOW64\NLSSRV32.EXE
(Pandora.TV) C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(PandoraTV) C:\Program Files (x86)\PANDORA.TV\PanService\PanProcess.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Lenovo (Beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe
(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\utility.exe
(Google Inc.) C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Broadcom Corporation.) C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Dolby Laboratories Inc.) C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe
(Vimicro) C:\Program Files (x86)\USB Camera2\VM332_STI.EXE
(CyberLink) C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe
(Lenovo) C:\Program Files (x86)\Lenovo\VeriFace\PManage.exe
( ) C:\Program Files (x86)\LockKey\LockKey.exe
(APN) C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(APN LLC.) C:\Users\Martin\AppData\Local\VNT\vntldr.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(forum.viry.cz) C:\Users\Martin\Desktop\FRSTLauncher.exe
(Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(Microsoft Corporation) C:\Windows\SysWOW64\PING.EXE
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [HotKeysCmds] - C:\Windows\system32\hkcmd.exe [ ] ()
HKLM\...\Run: [cAudioFilterAgent] - C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe [564352 2011-12-15] (Conexant Systems, Inc.)
HKLM\...\Run: [ETDCtrl] - C:\Program Files\Elantech\ETDCtrl.exe [2809856 2012-01-16] (ELAN Microelectronics Corp.)
HKLM\...\Run: [Energy Management] - C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [8079408 2012-09-07] (Lenovo (Beijing) Limited)
HKLM\...\Run: [EnergyUtility] - C:\Program Files (x86)\Lenovo\Energy Management\utility.exe [6202416 2012-09-07] (Lenovo(beijing) Limited)
HKLM\...\Run: [Lenovo EE Boot Optimizer] - C:\Program Files (x86)\Lenovo\Boot Optimizer\PopWnd.exe [206176 2012-09-07] (Lenovo)
HKLM\...\Run: [AutoKMS] - C:\Windows\AutoKMS.exe [615936 2013-04-21] ()
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKCU\...\Run: [swg] - C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2012-09-07] (Google Inc.)
HKCU\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3673728 2012-11-06] (DT Soft Ltd)
HKCU\...\Run: [Power2GoExpress] - NA
HKLM-x32\...\Run: [IAStorIcon] - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284440 2011-11-30] (Intel Corporation)
HKLM-x32\...\Run: [USB3MON] - C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291648 2012-05-21] (Intel Corporation)
HKLM-x32\...\Run: [Dolby Advanced Audio v2] - C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe [507744 2011-12-21] (Dolby Laboratories Inc.)
HKLM-x32\...\Run: [332BigDog] - C:\Program Files (x86)\USB Camera2\VM332_STI.EXE [548864 2011-12-09] (Vimicro)
HKLM-x32\...\Run: [Lenovo Registration] - C:\Program Files (x86)\Lenovo Registration\LenovoReg.exe [4351712 2012-01-26] (Lenovo, Inc.)
HKLM-x32\...\Run: [YouCam Mirage] - C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe [136488 2011-01-29] (CyberLink)
HKLM-x32\...\Run: [YouCam Tray] - C:\Program Files (x86)\Lenovo\YouCam\YouCam.exe [228448 2011-01-29] (CyberLink Corp.)
HKLM-x32\...\Run: [UpdateP2GShortCut] - C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [222504 2010-07-27] (CyberLink Corp.)
HKLM-x32\...\Run: [VeriFaceManager] - C:\Program Files (x86)\Lenovo\VeriFace\PManage.exe [329056 2012-09-07] (Lenovo)
HKLM-x32\...\Run: [UpdatePRCShortCut] - C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MUITransfer\MUIStartMenu.exe [222504 2009-05-14] (CyberLink Corp.)
HKLM-x32\...\Run: [LockKey] - C:\Program Files (x86)\LockKey\LockKey.exe [337776 2011-08-26] ( )
HKLM-x32\...\Run: [BCSSync] - C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [91520 2010-03-13] (Microsoft Corporation)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [ApnTBMon] - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe [1707472 2013-11-06] (APN)
HKLM-x32\...\Run: [AvastUI.exe] - C:\Program Files\AVAST Software\Avast\AvastUI.exe [3568312 2013-10-21] (AVAST Software)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [VNT] - C:\Program Files (x86)\VNT\vntldr.exe [202192 2013-11-06] (APN LLC.)
HKLM-x32\...\Run: [20131121] - C:\Program Files\AVAST Software\Avast\Setup\emupdate\7cc1374c-8aae-4c93-a899-d5af0fe6c30d.exe [180184 2013-11-23] (AVAST Software)
HKU\Default\...\RunOnce: [Lenovo.ShowBand] - C:\Program Files\Lenovo\SimpleTap DeskBand\ShowBand.exe [52584 2013-09-25] (Lenovo)
HKU\Default User\...\RunOnce: [Lenovo.ShowBand] - C:\SWTOOLS\SimpleTap DeskBand\ShowBand.exe /show
AppInit_DLLs: C:\Windows\System32\nvinitx.dll [260928 2012-05-01] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\Windows\SysWOW64\nvinit.dll [215360 2012-05-01] (NVIDIA Corporation)
Lsa: [Notification Packages] scecli C:\Program Files\Lenovo\Bluetooth Software\BtwProximityCP.dll
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com/ig/redirectdomain ... &bmod=KMOH
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.cz/?rlz=1W4CHBA_csCZ563
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.google.com/ig/redirectdomain ... &bmod=KMOH
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs =
BHO: avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: TBLayoutBHO Class - {008f6853-9cb4-41c5-a950-39d55e5e06ba} - C:\Program Files (x86)\Amazon Browser Bar\AmazonBrowserBar.3.0.dll (Amazon.com)
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: AlxHelper Class - {F443A627-5009-4323-9C1D-7FD598D0D712} - C:\Program Files (x86)\Amazon Browser Bar\AmazonBrowserBar.3.0.dll (Amazon.com)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM-x32 - Amazon Browser Bar - {EA582743-9076-4178-9AA6-7393FDF4D5CE} - C:\Program Files (x86)\Amazon Browser Bar\AmazonBrowserBar.3.0.dll (Amazon.com)
Toolbar: HKLM-x32 - avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.208 192.168.1.203
Chrome:
=======
CHR Extension: (Ask Toolbar) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\26.60709_0
CHR Extension: (YouTube) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Google Search) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (Google Wallet) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.5.0_0
CHR Extension: (Amazon 1Button App for Chrome) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbjikboenpfhbbejgkoklgkhjpfogcam\4.2013.1111.2_0
CHR Extension: (Gmail) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0
CHR HKLM-x32\...\Chrome\Extension: [aaaajfocmnnhjaajccaelhippajhaeod] - C:\ProgramData\AskPartnerNetwork\Toolbar\ATU4-V7\CRX\ToolbarCR.crx
CHR HKLM-x32\...\Chrome\Extension: [fjbbjfdilbioabojmcplalojlmdngbjl] - C:\Users\Martin\AppData\Roaming\OpenCandy\96CF1D3D620D473BA633583A54E48AC1\smileyswelovetoolbar.crx
CHR HKLM-x32\...\Chrome\Extension: [pbjikboenpfhbbejgkoklgkhjpfogcam] - C:\Program Files (x86)\Amazon\ABB\AmazonChrome-lenovo-abb.crx
==================== Services (Whitelisted) =================
R2 APNMCP; C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe [166352 2013-11-06] (APN LLC.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2013-10-21] (AVAST Software)
R2 btwdins; C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe [945440 2012-02-02] (Broadcom Corporation.)
R2 DamageGuardSvc; C:\Program Files\Lenovo\Instant Reset\DamageGuardSvc.exe [572976 2012-03-26] (Lenovo (Beijing) Limited)
R2 DokanMounter; C:\Program Files (x86)\Dokan\DokanLibrary\mounter.exe [14848 2011-01-10] ()
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [161560 2012-02-28] (Intel Corporation)
S3 LSCWinService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe [1674720 2013-09-25] ()
R2 PanService; C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe [625304 2012-09-28] (Pandora.TV)
R2 PnkBstrA; C:\Windows\SysWow64\PnkBstrA.exe [76888 2013-02-21] ()
==================== Drivers (Whitelisted) ====================
R2 aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [38984 2013-10-21] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [84328 2013-10-21] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [92544 2013-10-21] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2013-10-21] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1032416 2013-10-21] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [409832 2013-11-08] (AVAST Software)
R1 aswTdi; C:\Windows\system32\drivers\aswTdi.sys [65264 2013-10-21] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [205320 2013-10-21] ()
S3 bcbtums; C:\Windows\System32\drivers\bcbtums.sys [134696 2012-02-02] (Broadcom Corporation.)
R1 DamageGuard; C:\Windows\System32\DRIVERS\DamageGuardX64.sys [217392 2012-02-11] (Lenovo)
R1 dgFltr; C:\Windows\System32\drivers\dgFltrX64.sys [23648 2011-12-13] (Lenovo)
R2 Dokan; C:\Windows\system32\drivers\dokan.sys [120408 2011-01-10] (Windows (R) Win 7 DDK provider)
R3 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2012-12-25] (DT Soft Ltd)
R3 L1C; C:\Windows\System32\DRIVERS\L1C62x64.sys [104048 2012-03-02] (Qualcomm Atheros Co., Ltd.)
U3 BcmSqlStartupSvc;
U2 CLKMSVC10_3A60B698;
U2 CLKMSVC10_C3B3B687;
U2 DriverService;
U2 iATAgentService;
U2 idealife Update Service;
U3 IGRS;
U2 IviRegMgr;
U2 Oasis2Service;
U2 PCCarerService;
U2 ReadyComm.DirectRouter;
U2 RichVideo;
U2 RtLedService;
U2 SeaPort;
U2 SoftwareService;
U3 SQLWriter;
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-11-27 17:59 - 2013-11-27 17:59 - 00017035 _____ C:\Users\Martin\Desktop\FRST.txt
2013-11-27 17:58 - 2013-11-27 17:58 - 00029696 _____ C:\Users\Martin\AppData\Local\MSGBOX.EXE
2013-11-27 17:58 - 2013-11-27 17:58 - 00015327 _____ C:\Users\Martin\Desktop\LM.bat
2013-11-27 17:58 - 2013-11-27 17:58 - 00000000 ____D C:\FRST
2013-11-27 17:57 - 2013-11-27 17:57 - 01958818 _____ (Farbar) C:\Users\Martin\Desktop\FRST64.exe
2013-11-27 17:57 - 2013-11-27 17:57 - 00112640 _____ (forum.viry.cz) C:\Users\Martin\Desktop\FRSTLauncher.exe
2013-11-27 17:38 - 2013-11-27 17:38 - 00000000 ____D C:\Users\Martin\AppData\Roaming\LSC
2013-11-27 17:38 - 2013-11-27 17:38 - 00000000 ____D C:\ldiag
2013-11-25 21:08 - 2013-11-25 21:08 - 00002970 _____ C:\Windows\System32\Tasks\{CD1AA10E-3ECC-4709-854F-EA796AC759A0}
2013-11-25 21:08 - 2013-11-25 21:08 - 00002970 _____ C:\Windows\System32\Tasks\{248AA81B-2FBC-4739-A636-66562DB54DA4}
2013-11-25 21:07 - 2013-11-25 21:07 - 00002970 _____ C:\Windows\System32\Tasks\{71603498-DA18-4A36-9E3C-12838E200082}
2013-11-21 21:13 - 2013-11-21 21:13 - 00001786 _____ C:\Users\Public\Desktop\Assassins Creed IV - Black Flag.lnk
2013-11-21 20:04 - 2013-11-21 20:04 - 00000000 ____D C:\Users\Martin\Documents\Assassin's Creed IV Black Flag
2013-11-21 19:35 - 2013-11-21 20:55 - 00000000 ____D C:\Hry
2013-11-21 18:40 - 2013-11-21 18:40 - 00001705 _____ C:\Users\Martin\Desktop\BioShock Infinite.lnk
2013-11-21 18:19 - 2013-11-21 18:19 - 00000000 ____D C:\Users\Martin\AppData\Local\SugarSync
2013-11-21 17:58 - 2013-11-21 17:59 - 00000012 _____ C:\Users\Martin\Desktop\ten text.txt
2013-11-21 15:33 - 2013-11-21 15:34 - 40633685 _____ C:\Users\Martin\Downloads\8.9Crabtr33_XVM_CZ_modpack_v1.05.7z
2013-11-19 21:42 - 2013-11-19 21:42 - 00000000 ____D C:\Users\Martin\Desktop\NVIDIA Inspector
2013-11-19 20:54 - 2013-11-19 20:54 - 00000000 ____D C:\Users\Martin\AppData\Local\FLT
2013-11-19 17:50 - 2013-11-19 17:50 - 00000000 ____D C:\Users\Martin\Documents\Add-in Express
2013-11-19 17:49 - 2013-11-19 17:49 - 00001195 _____ C:\Users\Public\Desktop\aTube Catcher.lnk
2013-11-19 17:49 - 2008-08-19 01:18 - 00077824 _____ (Fox Magic Software) C:\Windows\SysWOW64\fmcodec.DLL
2013-11-19 17:47 - 2013-11-19 17:48 - 11851440 _____ (DsNET Corp) C:\Users\Martin\Downloads\aTubeCatcher.exe
2013-11-16 14:39 - 2013-11-16 14:39 - 01474431 _____ C:\Users\Martin\Downloads\20131116_1344_china-Ch01_Type59_85_winter.wotreplay
2013-11-14 20:38 - 2013-11-14 20:38 - 00000000 ____D C:\Users\Martin\AppData\Local\{2ABF1605-877D-444C-BA3D-31A88384B246}
2013-11-14 16:33 - 2013-10-12 09:45 - 02241536 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-11-14 16:33 - 2013-10-12 09:45 - 01364992 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-11-14 16:33 - 2013-10-12 09:45 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-11-14 16:33 - 2013-10-12 09:43 - 19269632 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-11-14 16:33 - 2013-10-12 09:43 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-11-14 16:33 - 2013-10-12 09:43 - 03959808 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-11-14 16:33 - 2013-10-12 09:43 - 02648576 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-11-14 16:33 - 2013-10-12 09:43 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-11-14 16:33 - 2013-10-12 09:43 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-11-14 16:33 - 2013-10-12 09:43 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-11-14 16:33 - 2013-10-12 09:43 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-11-14 16:33 - 2013-10-12 09:43 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-11-14 16:33 - 2013-10-12 09:43 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-11-14 16:33 - 2013-10-12 09:43 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-11-14 16:33 - 2013-10-12 08:03 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-11-14 16:33 - 2013-10-12 08:03 - 01138176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-11-14 16:33 - 2013-10-12 08:02 - 14355968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-11-14 16:33 - 2013-10-12 08:02 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-11-14 16:33 - 2013-10-12 08:02 - 02877952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-11-14 16:33 - 2013-10-12 08:02 - 02049024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-11-14 16:33 - 2013-10-12 08:02 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-11-14 16:33 - 2013-10-12 08:02 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-11-14 16:33 - 2013-10-12 08:02 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-11-14 16:33 - 2013-10-12 08:02 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-11-14 16:33 - 2013-10-12 08:02 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-11-14 16:33 - 2013-10-12 08:02 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-11-14 16:33 - 2013-10-12 08:02 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-11-14 16:33 - 2013-10-12 07:35 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-11-14 16:33 - 2013-10-12 07:08 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-11-14 16:33 - 2013-10-12 06:44 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-11-14 16:33 - 2013-10-12 06:15 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-11-13 17:32 - 2013-11-13 17:33 - 39743397 _____ C:\Users\Martin\Downloads\8.9Crabtr33_XVM_CZ_modpack_v1.04.7z
2013-11-13 15:47 - 2013-10-05 21:25 - 01474048 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-11-13 15:47 - 2013-10-05 20:57 - 01168384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-11-13 15:47 - 2013-10-04 03:28 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2013-11-13 15:47 - 2013-10-04 03:25 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2013-11-13 15:47 - 2013-10-04 03:24 - 01930752 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2013-11-13 15:47 - 2013-10-04 02:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2013-11-13 15:47 - 2013-10-04 02:56 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2013-11-13 15:47 - 2013-10-04 02:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll
2013-11-13 15:47 - 2013-10-03 03:23 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2013-11-13 15:47 - 2013-10-03 03:00 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2013-11-13 15:47 - 2013-09-28 02:09 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-11-13 15:47 - 2013-09-25 03:26 - 00154560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2013-11-13 15:47 - 2013-09-25 03:26 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2013-11-13 15:47 - 2013-09-25 03:23 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2013-11-13 15:47 - 2013-09-25 03:23 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2013-11-13 15:47 - 2013-09-25 03:23 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2013-11-13 15:47 - 2013-09-25 03:22 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2013-11-13 15:47 - 2013-09-25 03:21 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2013-11-13 15:47 - 2013-09-25 03:21 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2013-11-13 15:47 - 2013-09-25 02:58 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2013-11-13 15:47 - 2013-09-25 02:57 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2013-11-13 15:47 - 2013-09-25 02:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2013-11-13 15:47 - 2013-09-25 02:56 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2013-11-13 15:47 - 2013-09-25 02:03 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2013-11-13 15:47 - 2013-07-04 13:18 - 00458712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2013-11-13 15:46 - 2013-10-12 03:30 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2013-11-13 15:46 - 2013-10-12 03:29 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2013-11-13 15:46 - 2013-10-12 03:29 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2013-11-13 15:46 - 2013-10-12 03:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2013-11-13 15:46 - 2013-10-12 03:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2013-11-11 15:12 - 2013-11-11 15:12 - 00000813 _____ C:\Users\Public\Desktop\World of Warplanes.lnk
2013-11-11 14:35 - 2013-11-11 14:37 - 08775080 _____ (Wargaming.net ) C:\Users\Martin\Downloads\WoWP_internet_install_eu.exe
2013-11-10 16:55 - 2013-11-10 16:55 - 01605307 _____ C:\Users\Martin\Downloads\13838537688780_germany_VK3002M_malinovka.wotreplay
2013-11-10 11:34 - 2013-11-10 11:34 - 01102805 _____ C:\Users\Martin\Downloads\13840783345917_ussr_Churchill_LL_el_hallouf.wotreplay
2013-11-10 11:22 - 2013-11-10 11:22 - 01281053 _____ C:\Users\Martin\Downloads\13840784608836_germany_RhB_Waffentrager_hills.wotreplay
2013-11-10 11:16 - 2013-11-10 11:16 - 00975248 _____ C:\Users\Martin\Downloads\13840785073012_france_AMX_50_120_himmelsdorf.wotreplay
2013-11-10 11:02 - 2013-11-10 11:02 - 01403108 _____ C:\Users\Martin\Downloads\13837607573741_germany_PzVI_erlenberg.wotreplay
2013-11-10 10:28 - 2013-11-10 10:28 - 01326447 _____ C:\Users\Martin\Downloads\13838522795807_france_BDR_G1B_mannerheim_line.wotreplay
2013-11-09 16:24 - 2013-11-09 16:25 - 00930245 _____ C:\Users\Martin\Downloads\13840090169478_usa_M12_karelia.wotreplay
2013-11-08 16:26 - 2013-11-08 16:26 - 00000000 ____D C:\Users\Martin\AppData\Local\VNT
2013-11-08 16:26 - 2013-11-08 16:26 - 00000000 ____D C:\Program Files (x86)\VNT
2013-11-05 20:41 - 2013-11-05 20:42 - 00288688 _____ C:\Windows\Minidump\110513-81401-01.dmp
2013-11-05 14:32 - 2013-11-05 14:32 - 67994494 _____ C:\Users\Martin\Downloads\HRMOD Gun Sounds v1.853.zip
2013-11-05 14:07 - 2013-11-05 14:08 - 40573443 _____ C:\Users\Martin\Downloads\8.9Crabtr33_XVM_CZ_modpack_v1.00.7z
2013-11-04 18:21 - 2013-11-04 18:21 - 00000000 ____D C:\ProgramData\Steam
2013-11-04 18:02 - 2013-11-24 19:01 - 00000000 ____D C:\Program Files (x86)\Saints Row IV
2013-10-30 14:23 - 2013-10-30 14:23 - 00915368 _____ (Oracle Corporation) C:\Users\Martin\Downloads\chromeinstall-7u45.exe
2013-10-30 14:22 - 2013-10-30 14:22 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2013-10-30 14:22 - 2013-10-30 14:22 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2013-10-30 14:22 - 2013-10-30 14:22 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2013-10-30 14:22 - 2013-10-30 14:22 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2013-10-30 14:22 - 2013-10-30 14:22 - 00000000 ____D C:\ProgramData\Oracle
2013-10-30 14:22 - 2013-10-30 14:22 - 00000000 ____D C:\Program Files (x86)\Java
2013-10-30 14:17 - 2013-10-30 14:21 - 29040552 _____ (Oracle Corporation) C:\Users\Martin\Downloads\jre-7u45-windows-i586.exe
2013-10-30 14:15 - 2013-10-30 14:15 - 00000000 ____D C:\Windows\Sun
==================== One Month Modified Files and Folders =======
2013-11-27 17:59 - 2013-11-27 17:59 - 00017035 _____ C:\Users\Martin\Desktop\FRST.txt
2013-11-27 17:58 - 2013-11-27 17:58 - 00029696 _____ C:\Users\Martin\AppData\Local\MSGBOX.EXE
2013-11-27 17:58 - 2013-11-27 17:58 - 00015327 _____ C:\Users\Martin\Desktop\LM.bat
2013-11-27 17:58 - 2013-11-27 17:58 - 00000000 ____D C:\FRST
2013-11-27 17:57 - 2013-11-27 17:57 - 01958818 _____ (Farbar) C:\Users\Martin\Desktop\FRST64.exe
2013-11-27 17:57 - 2013-11-27 17:57 - 00112640 _____ (forum.viry.cz) C:\Users\Martin\Desktop\FRSTLauncher.exe
2013-11-27 17:38 - 2013-11-27 17:38 - 00000000 ____D C:\Users\Martin\AppData\Roaming\LSC
2013-11-27 17:38 - 2013-11-27 17:38 - 00000000 ____D C:\ldiag
2013-11-27 17:38 - 1601-01-02 05:16 - 00002016 _____ C:\Users\Public\Desktop\Lenovo Solution Center.lnk
2013-11-27 17:33 - 2012-09-07 12:37 - 00000966 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-11-27 17:33 - 2012-09-07 12:37 - 00000962 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-11-27 17:32 - 2012-09-07 11:46 - 01612721 _____ C:\Windows\WindowsUpdate.log
2013-11-27 17:31 - 1601-01-02 05:16 - 09960276 _____ C:\Windows\system32\perfh005.dat
2013-11-27 17:31 - 1601-01-02 05:16 - 03437720 _____ C:\Windows\system32\perfc005.dat
2013-11-27 17:31 - 1601-01-02 05:16 - 00006252 _____ C:\Windows\system32\PerfStringBackup.INI
2013-11-27 17:28 - 2012-12-01 02:52 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-11-26 21:52 - 2013-03-22 18:11 - 00007601 _____ C:\Users\Martin\AppData\Local\Resmon.ResmonCfg
2013-11-26 21:46 - 1601-01-02 05:16 - 00743676 _____ C:\Windows\system32\fastboot.set
2013-11-26 21:36 - 2013-01-16 14:45 - 00035116 _____ C:\Windows\setupact.log
2013-11-26 21:36 - 1601-01-02 05:16 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-11-26 21:04 - 2013-01-07 20:40 - 00000000 ____D C:\Users\Martin\HRY
2013-11-26 20:18 - 2013-06-08 15:55 - 00000000 ____D C:\Program Files (x86)\The KMPlayer
2013-11-26 19:08 - 2012-12-25 14:11 - 00000000 ____D C:\Users\Martin\FILMY a SERIÁLY
2013-11-25 21:16 - 1601-01-02 05:16 - 00001129 _____ C:\Users\Martin\Desktop\Cyberlink Power2Go.lnk
2013-11-25 21:13 - 2013-01-25 17:51 - 00002221 _____ C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2013-11-25 21:08 - 2013-11-25 21:08 - 00002970 _____ C:\Windows\System32\Tasks\{CD1AA10E-3ECC-4709-854F-EA796AC759A0}
2013-11-25 21:08 - 2013-11-25 21:08 - 00002970 _____ C:\Windows\System32\Tasks\{248AA81B-2FBC-4739-A636-66562DB54DA4}
2013-11-25 21:07 - 2013-11-25 21:07 - 00002970 _____ C:\Windows\System32\Tasks\{71603498-DA18-4A36-9E3C-12838E200082}
2013-11-24 19:01 - 2013-11-04 18:02 - 00000000 ____D C:\Program Files (x86)\Saints Row IV
2013-11-24 09:27 - 2013-01-25 17:51 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2013-11-23 23:38 - 2013-06-08 20:34 - 00000000 ____D C:\Users\Public\Downloads\Maps
2013-11-23 21:15 - 2013-06-08 20:34 - 00000000 ____D C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mio
2013-11-23 20:21 - 2012-12-25 10:06 - 00000000 ____D C:\Users\Martin\AppData\Roaming\Skype
2013-11-21 21:13 - 2013-11-21 21:13 - 00001786 _____ C:\Users\Public\Desktop\Assassins Creed IV - Black Flag.lnk
2013-11-21 21:13 - 2013-06-06 15:37 - 00404936 _____ C:\Windows\DirectX.log
2013-11-21 20:55 - 2013-11-21 19:35 - 00000000 ____D C:\Hry
2013-11-21 20:04 - 2013-11-21 20:04 - 00000000 ____D C:\Users\Martin\Documents\Assassin's Creed IV Black Flag
2013-11-21 20:04 - 2012-12-24 23:36 - 00000000 ____D C:\Users\Martin\AppData\Roaming\CyberLink
2013-11-21 18:40 - 2013-11-21 18:40 - 00001705 _____ C:\Users\Martin\Desktop\BioShock Infinite.lnk
2013-11-21 18:19 - 2013-11-21 18:19 - 00000000 ____D C:\Users\Martin\AppData\Local\SugarSync
2013-11-21 17:59 - 2013-11-21 17:58 - 00000012 _____ C:\Users\Martin\Desktop\ten text.txt
2013-11-21 15:34 - 2013-11-21 15:33 - 40633685 _____ C:\Users\Martin\Downloads\8.9Crabtr33_XVM_CZ_modpack_v1.05.7z
2013-11-19 21:42 - 2013-11-19 21:42 - 00000000 ____D C:\Users\Martin\Desktop\NVIDIA Inspector
2013-11-19 20:54 - 2013-11-19 20:54 - 00000000 ____D C:\Users\Martin\AppData\Local\FLT
2013-11-19 20:54 - 2013-02-05 23:24 - 00000000 ____D C:\Users\Martin\Documents\My Games
2013-11-19 17:50 - 2013-11-19 17:50 - 00000000 ____D C:\Users\Martin\Documents\Add-in Express
2013-11-19 17:49 - 2013-11-19 17:49 - 00001195 _____ C:\Users\Public\Desktop\aTube Catcher.lnk
2013-11-19 17:48 - 2013-11-19 17:47 - 11851440 _____ (DsNET Corp) C:\Users\Martin\Downloads\aTubeCatcher.exe
2013-11-16 14:39 - 2013-11-16 14:39 - 01474431 _____ C:\Users\Martin\Downloads\20131116_1344_china-Ch01_Type59_85_winter.wotreplay
2013-11-15 14:52 - 1601-01-02 05:16 - 00002194 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2013-11-14 20:38 - 2013-11-14 20:38 - 00000000 ____D C:\Users\Martin\AppData\Local\{2ABF1605-877D-444C-BA3D-31A88384B246}
2013-11-14 16:36 - 2013-01-25 16:25 - 00122058 _____ C:\Windows\PFRO.log
2013-11-14 16:34 - 2013-01-12 17:23 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-11-14 16:26 - 2013-07-30 08:04 - 00000000 ____D C:\Windows\system32\MRT
2013-11-14 16:23 - 1601-01-02 05:16 - 82896128 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-11-13 17:33 - 2013-11-13 17:32 - 39743397 _____ C:\Users\Martin\Downloads\8.9Crabtr33_XVM_CZ_modpack_v1.04.7z
2013-11-11 17:03 - 2013-05-01 07:44 - 00000000 ____D C:\Users\Martin\AppData\Roaming\Wargaming.net
2013-11-11 15:12 - 2013-11-11 15:12 - 00000813 _____ C:\Users\Public\Desktop\World of Warplanes.lnk
2013-11-11 15:12 - 2013-04-30 17:35 - 00000000 ____D C:\Games
2013-11-11 15:12 - 2013-02-21 14:20 - 00000000 ___HD C:\Windows\msdownld.tmp
2013-11-11 14:37 - 2013-11-11 14:35 - 08775080 _____ (Wargaming.net ) C:\Users\Martin\Downloads\WoWP_internet_install_eu.exe
2013-11-11 14:34 - 2013-05-15 15:04 - 00000000 ____D C:\Program Files (x86)\War Thunder
2013-11-11 05:50 - 1601-01-02 05:16 - 00267936 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2013-11-10 16:55 - 2013-11-10 16:55 - 01605307 _____ C:\Users\Martin\Downloads\13838537688780_germany_VK3002M_malinovka.wotreplay
2013-11-10 11:34 - 2013-11-10 11:34 - 01102805 _____ C:\Users\Martin\Downloads\13840783345917_ussr_Churchill_LL_el_hallouf.wotreplay
2013-11-10 11:22 - 2013-11-10 11:22 - 01281053 _____ C:\Users\Martin\Downloads\13840784608836_germany_RhB_Waffentrager_hills.wotreplay
2013-11-10 11:16 - 2013-11-10 11:16 - 00975248 _____ C:\Users\Martin\Downloads\13840785073012_france_AMX_50_120_himmelsdorf.wotreplay
2013-11-10 11:02 - 2013-11-10 11:02 - 01403108 _____ C:\Users\Martin\Downloads\13837607573741_germany_PzVI_erlenberg.wotreplay
2013-11-10 10:28 - 2013-11-10 10:28 - 01326447 _____ C:\Users\Martin\Downloads\13838522795807_france_BDR_G1B_mannerheim_line.wotreplay
2013-11-09 16:25 - 2013-11-09 16:24 - 00930245 _____ C:\Users\Martin\Downloads\13840090169478_usa_M12_karelia.wotreplay
2013-11-08 16:56 - 1601-01-02 05:16 - 00409832 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys.1383926163
2013-11-08 16:56 - 1601-01-02 05:16 - 00409832 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2013-11-08 16:26 - 2013-11-08 16:26 - 00000000 ____D C:\Users\Martin\AppData\Local\VNT
2013-11-08 16:26 - 2013-11-08 16:26 - 00000000 ____D C:\Program Files (x86)\VNT
2013-11-07 16:25 - 2013-01-13 17:06 - 00000000 ____D C:\Users\Martin\ŠKOLA
2013-11-07 15:08 - 2012-12-25 10:52 - 00000000 ____D C:\Users\Martin\AppData\Roaming\.minecraft
2013-11-07 15:07 - 2012-12-25 10:41 - 00356352 _____ C:\Users\Martin\Desktop\Minecraft.exe
2013-11-06 19:05 - 2013-09-12 16:40 - 00000000 ____D C:\Users\Martin\WOT
2013-11-06 19:04 - 2013-09-16 18:37 - 00001634 _____ C:\Windows\WDICT32.INI
2013-11-05 20:42 - 2013-11-05 20:41 - 00288688 _____ C:\Windows\Minidump\110513-81401-01.dmp
2013-11-05 20:41 - 2013-03-03 19:48 - 00000000 ____D C:\Windows\Minidump
2013-11-05 20:41 - 2013-03-03 19:47 - 431551708 _____ C:\Windows\MEMORY.DMP
2013-11-05 14:32 - 2013-11-05 14:32 - 67994494 _____ C:\Users\Martin\Downloads\HRMOD Gun Sounds v1.853.zip
2013-11-05 14:08 - 2013-11-05 14:07 - 40573443 _____ C:\Users\Martin\Downloads\8.9Crabtr33_XVM_CZ_modpack_v1.00.7z
2013-11-04 18:21 - 2013-11-04 18:21 - 00000000 ____D C:\ProgramData\Steam
2013-10-30 14:23 - 2013-10-30 14:23 - 00915368 _____ (Oracle Corporation) C:\Users\Martin\Downloads\chromeinstall-7u45.exe
2013-10-30 14:22 - 2013-10-30 14:22 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2013-10-30 14:22 - 2013-10-30 14:22 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2013-10-30 14:22 - 2013-10-30 14:22 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2013-10-30 14:22 - 2013-10-30 14:22 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2013-10-30 14:22 - 2013-10-30 14:22 - 00000000 ____D C:\ProgramData\Oracle
2013-10-30 14:22 - 2013-10-30 14:22 - 00000000 ____D C:\Program Files (x86)\Java
2013-10-30 14:21 - 2013-10-30 14:17 - 29040552 _____ (Oracle Corporation) C:\Users\Martin\Downloads\jre-7u45-windows-i586.exe
2013-10-30 14:15 - 2013-10-30 14:15 - 00000000 ____D C:\Windows\Sun
Files to move or delete:
====================
C:\Users\Public\AlexaNSISPlugin.208.dll
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-11-22 19:39
==================== End Of Log ============================