Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 27-07-2017
Ran by Cunda (administrator) on CUNDA-PC (28-07-2017 17:51:36)
Running from C:\Users\Cunda\Desktop
Loaded Profiles: Cunda (Available Profiles: Cunda & Kuba & Lukasc)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe
(Symantec Corporation) C:\Program Files\Norton Security\Engine\22.10.0.85\ns.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Plex, Inc.) C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
() C:\Windows\Temp\g156A.tmp.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Elaborate Bytes AG) C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe
(Symantec Corporation) C:\Program Files\Norton Security\Engine\22.10.0.85\ns.exe
(Plex, Inc.) C:\Program Files (x86)\Plex\Plex Media Server\Plex Update Service.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
() C:\Program Files (x86)\WTFast\service\WTFast.Service.exe
(Python Software Foundation) C:\Program Files (x86)\Plex\Plex Media Server\PlexScriptHost.exe
(Plex, Inc.) C:\Program Files (x86)\Plex\Plex Media Server\Plex DLNA Server.exe
(Plex) C:\Program Files (x86)\Plex\Plex Media Server\Plex Tuner Service.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Electronic Arts) C:\Program Files (x86)\Origin\Origin.exe
(Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(Microsoft Corporation) C:\Windows\System32\taskmgr.exe
() C:\Program Files (x86)\Origin\QtWebEngineProcess.exe
() C:\Program Files (x86)\Origin\QtWebEngineProcess.exe
() C:\Users\Cunda\Desktop\DS4\DS4Windows.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Users\Cunda\AppData\Local\AChat\achat.exe
(Microsoft Corporation) C:\Windows\System32\SnippingTool.exe
(Microsoft Corporation) C:\Windows\System32\wisptis.exe
(EFD Software) C:\Program Files (x86)\HD Tune Pro\HDTunePro.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(forum.viry.cz) C:\Users\Cunda\Desktop\FRSTLauncher.exe

==================== Registry (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8783616 2015-12-25] (Realtek Semiconductor)
HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [296216 2015-09-25] (Intel Corporation)
HKLM-x32\...\Run: [VirtualCloneDrive] => C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [88984 2013-03-10] (Elaborate Bytes AG)
HKLM-x32\...\Run: [amd_dc_opt] => C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe [77824 2008-07-22] (AMD)
HKLM\ DisallowedCertificates: 03D22C9C66915D58C88912B64C1F984B8344EF09 (Comodo Security Solutions) <==== ATTENTION
HKLM\ DisallowedCertificates: 0F684EC1163281085C6AF20528878103ACEFCAAB (F-Secure Corporation) <==== ATTENTION
HKLM\ DisallowedCertificates: 1667908C9E22EFBD0590E088715CC74BE4C60884 (FRISK Software International/F-Prot) <==== ATTENTION
HKLM\ DisallowedCertificates: 18DEA4EFA93B06AE997D234411F3FD72A677EECE (Bitdefender SRL) <==== ATTENTION
HKLM\ DisallowedCertificates: 2026D13756EB0DB753DF26CB3B7EEBE3E70BB2CF (G DATA Software AG) <==== ATTENTION
HKLM\ DisallowedCertificates: 249BDA38A611CD746A132FA2AF995A2D3C941264 (Malwarebytes Corporation) <==== ATTENTION
HKLM\ DisallowedCertificates: 31AC96A6C17C425222C46D55C3CCA6BA12E54DAF (Symantec Corporation) <==== ATTENTION
HKLM\ DisallowedCertificates: 331E2046A1CCA7BFEF766724394BE6112B4CA3F7 (Trend Micro) <==== ATTENTION
HKLM\ DisallowedCertificates: 3353EA609334A9F23A701B9159E30CB6C22D4C59 (Webroot Inc.) <==== ATTENTION
HKLM\ DisallowedCertificates: 373C33726722D3A5D1EDD1F1585D5D25B39BEA1A (SUPERAntiSpyware.com) <==== ATTENTION
HKLM\ DisallowedCertificates: 3850EDD77CC74EC9F4829AE406BBF9C21E0DA87F (Kaspersky Lab) <==== ATTENTION
HKLM\ DisallowedCertificates: 3D496FA682E65FC122351EC29B55AB94F3BB03FC (AVG Technologies CZ) <==== ATTENTION
HKLM\ DisallowedCertificates: 4243A03DB4C3C15149CEA8B38EEA1DA4F26BD159 (PC Tools) <==== ATTENTION
HKLM\ DisallowedCertificates: 42727E052C0C2E1B35AB53E1005FD9EDC9DE8F01 (K7 Computing Pvt Ltd) <==== ATTENTION
HKLM\ DisallowedCertificates: 4420C99742DF11DD0795BC15B7B0ABF090DC84DF (Doctor Web Ltd.) <==== ATTENTION
HKLM\ DisallowedCertificates: 4C0AF5719009B7C9D85C5EAEDFA3B7F090FE5FFF (Emsisoft Ltd) <==== ATTENTION
HKLM\ DisallowedCertificates: 5240AB5B05D11B37900AC7712A3C6AE42F377C8C (Check Point Software Technologies Ltd.) <==== ATTENTION
HKLM\ DisallowedCertificates: 5DD3D41810F28B2A13E9A004E6412061E28FA48D (Emsisoft Ltd) <==== ATTENTION
HKLM\ DisallowedCertificates: 7457A3793086DBB58B3858D6476889E3311E550E (K7 Computing Pvt Ltd) <==== ATTENTION
HKLM\ DisallowedCertificates: 76A9295EF4343E12DFC5FE05DC57227C1AB00D29 (BullGuard Ltd) <==== ATTENTION
HKLM\ DisallowedCertificates: 775B373B33B9D15B58BC02B184704332B97C3CAF (McAfee) <==== ATTENTION
HKLM\ DisallowedCertificates: 872CD334B7E7B3C3D1C6114CD6B221026D505EAB (Comodo Security Solutions) <==== ATTENTION
HKLM\ DisallowedCertificates: 88AD5DFE24126872B33175D1778687B642323ACF (McAfee) <==== ATTENTION
HKLM\ DisallowedCertificates: 9132E8B079D080E01D52631690BE18EBC2347C1E (Adaware Software) <==== ATTENTION
HKLM\ DisallowedCertificates: 982D98951CF3C0CA2A02814D474A976CBFF6BDB1 (Safer Networking Ltd.) <==== ATTENTION
HKLM\ DisallowedCertificates: 9A08641F7C5F2CCA0888388BE3E5DBDDAAA3B361 (Webroot Inc.) <==== ATTENTION
HKLM\ DisallowedCertificates: 9C43F665E690AB4D486D4717B456C5554D4BCEB5 (ThreatTrack Security) <==== ATTENTION
HKLM\ DisallowedCertificates: 9E3F95577B37C74CA2F70C1E1859E798B7FC6B13 (CURIOLAB S.M.B.A.) <==== ATTENTION
HKLM\ DisallowedCertificates: A1F8DCB086E461E2ABB4B46ADCFA0B48C58B6E99 (Avira Operations GmbH & Co. KG) <==== ATTENTION
HKLM\ DisallowedCertificates: A5341949ABE1407DD7BF7DFE75460D9608FBC309 (BullGuard Ltd) <==== ATTENTION
HKLM\ DisallowedCertificates: A59CC32724DD07A6FC33F7806945481A2D13CA2F (ESET) <==== ATTENTION
HKLM\ DisallowedCertificates: AB7E760DA2485EA9EF5A6EEE7647748D4BA6B947 (AVG Technologies CZ) <==== ATTENTION
HKLM\ DisallowedCertificates: AD4C5429E10F4FF6C01840C20ABA344D7401209F (Avast Antivirus/Software) <==== ATTENTION
HKLM\ DisallowedCertificates: AD96BB64BA36379D2E354660780C2067B81DA2E0 (Symantec Corporation) <==== ATTENTION
HKLM\ DisallowedCertificates: B8EBF0E696AF77F51C96DB4D044586E2F4F8FD84 (Malwarebytes Corporation) <==== ATTENTION
HKLM\ DisallowedCertificates: CDC37C22FE9272D8F2610206AD397A45040326B8 (Trend Micro) <==== ATTENTION
HKLM\ DisallowedCertificates: D3F78D747E7C5D6D3AE8ABFDDA7522BFB4CBD598 (Kaspersky Lab) <==== ATTENTION
HKLM\ DisallowedCertificates: DB303C9B61282DE525DC754A535CA2D6A9BD3D87 (ThreatTrack Security) <==== ATTENTION
HKLM\ DisallowedCertificates: DB77E5CFEC34459146748B667C97B185619251BA (Avast Antivirus/Software) <==== ATTENTION
HKLM\ DisallowedCertificates: E22240E837B52E691C71DF248F12D27F96441C00 (Total Defense, Inc.) <==== ATTENTION
HKLM\ DisallowedCertificates: E513EAB8610CFFD7C87E00BCA15C23AAB407FCEF (AVG Technologies CZ) <==== ATTENTION
HKLM\ DisallowedCertificates: ED841A61C0F76025598421BC1B00E24189E68D54 (Bitdefender SRL) <==== ATTENTION
HKLM\ DisallowedCertificates: F83099622B4A9F72CB5081F742164AD1B8D048C9 (ESET) <==== ATTENTION
HKLM\ DisallowedCertificates: FBB42F089AF2D570F2BF6F493D107A3255A9BB1A (Panda Security S.L) <==== ATTENTION
HKLM\ DisallowedCertificates: FFFA650F2CB2ABC0D80527B524DD3F9FC172C138 (Doctor Web Ltd.) <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-144071721-2880816984-1805156644-1000\...\Run: [Plex Media Server] => C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe [15346152 2017-04-12] (Plex, Inc.)
HKU\S-1-5-21-144071721-2880816984-1805156644-1000\...\MountPoints2: {0e63c14c-f531-11e6-ae5b-806e6f6e6963} - D:\Bin\Instv2.exe
HKU\S-1-5-21-144071721-2880816984-1805156644-1000\...\MountPoints2: {bb4f6c0e-f71e-11e6-b25a-38d5471a6e34} - E:\setup.exe
HKU\S-1-5-18\...\Run: [script_fcbd] => "C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Far Cry 3 Blood Dragon\fcbd.bat"
HKU\S-1-5-18\...\Run: [Plex Media Server] => C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe [15346152 2017-04-12] (Plex, Inc.)
ShellExecuteHooks: No Name - {5F51FFFE-7463-4220-B711-E5B9ACB8EDFE} - C:\Windows\C_02ir85.dat [2035200 2017-07-25] (Micrasaft Carparation)
Startup: C:\Users\Cunda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Sledovat výstrahy inkoustu - HP DeskJet 2130 series.lnk [2017-07-28]
ShortcutTarget: Sledovat výstrahy inkoustu - HP DeskJet 2130 series.lnk -> C:\Program Files\HP\HP DeskJet 2130 series\Bin\HPStatusBL.dll (Hewlett-Packard Development Company, LP)
Startup: C:\Users\Lukasc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\importantupdatesws.vbs [2017-07-28] ()
Startup: C:\Users\Lukasc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\SearchIndexerst.vbs [2017-07-28] ()
Startup: C:\Users\Lukasc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\smssws.vbs [2017-07-28] ()
Startup: C:\Users\Lukasc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\windowsupdatesst.vbs [2017-07-28] ()

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 82.144.128.1 82.144.129.1 8.8.8.8 192.168.1.1
Tcpip\Parameters: [NameServer] 82.163.143.157 82.163.142.159
Tcpip\..\Interfaces\{78D472A1-FA40-45DA-AD52-B20E7CF0957E}: [DhcpNameServer] 82.144.128.1 82.144.129.1 8.8.8.8 192.168.1.1

Internet Explorer:
==================
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
BHO: Norton Identity Safety -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files\Norton Security\Engine\22.10.0.85\coIEPlg.dll [2017-07-14] (Symantec Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_131\bin\ssv.dll [2017-05-08] (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_131\bin\jp2ssv.dll [2017-05-08] (Oracle Corporation)
BHO-x32: Norton Identity Safety -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files\Norton Security\Engine32\22.10.0.85\coIEPlg.dll [2017-07-14] (Symantec Corporation)
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Security\Engine\22.10.0.85\coIEPlg.dll [2017-07-14] (Symantec Corporation)
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Security\Engine32\22.10.0.85\coIEPlg.dll [2017-07-14] (Symantec Corporation)

FireFox:
========
FF DefaultProfile: 9sszj76d.default
FF ProfilePath: C:\Users\Cunda\AppData\Roaming\Mozilla\Firefox\Profiles\9sszj76d.default [2017-07-27]
FF Homepage: Mozilla\Firefox\Profiles\9sszj76d.default -> hxxps://www.ewrc.cz/
FF Extension: (Norton Safe Web) - C:\Users\Cunda\AppData\Roaming\Mozilla\Firefox\Profiles\9sszj76d.default\Extensions\nortonsafeweb@symantec.com.xpi [2017-06-03]
FF Extension: (uBlock Origin) - C:\Users\Cunda\AppData\Roaming\Mozilla\Firefox\Profiles\9sszj76d.default\Extensions\uBlock0@raymondhill.net.xpi [2017-06-23]
FF Extension: (System.OutOfMemoryException) - C:\Users\Cunda\AppData\Roaming\Mozilla\Firefox\Profiles\9sszj76d.default\Extensions\{CCD69EAE-DA8D-2D32-27BC-530EB6A45D65} [2017-03-01] [not signed]
FF Extension: (Adblock Plus) - C:\Users\Cunda\AppData\Roaming\Mozilla\Firefox\Profiles\9sszj76d.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2017-06-23]
FF HKLM\...\Firefox\Extensions: [{C1A2A613-35F1-4FCF-B27F-2840527B6556}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NS_22.9.0.71\coFFAddon
FF Extension: (Norton Security Toolbar) - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NS_22.9.0.71\coFFAddon [2017-07-23]
FF HKLM-x32\...\Firefox\Extensions: [{C1A2A613-35F1-4FCF-B27F-2840527B6556}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NS_22.9.0.71\coFFAddon
FF HKU\S-1-5-21-144071721-2880816984-1805156644-1000\...\Firefox\Extensions: [acewebextension_unlisted@acestream.org] - C:\Users\Cunda\AppData\Roaming\ACEStream\extensions\awe\firefox\acewebextension_unlisted.xpi => not found
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_26_0_0_137.dll [2017-07-12] ()
FF Plugin: @java.com/DTPlugin,version=11.131.2 -> C:\Program Files\Java\jre1.8.0_131\bin\dtplugin\npDeployJava1.dll [2017-05-08] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.131.2 -> C:\Program Files\Java\jre1.8.0_131\bin\plugin2\npjp2.dll [2017-05-08] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_26_0_0_137.dll [2017-07-12] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-08-24] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-08-24] (Intel Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-07-19] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-07-19] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-29] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-29] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin HKU\S-1-5-21-144071721-2880816984-1805156644-1000: @acestream.net/acestreamplugin,version=3.1.16 -> C:\Users\Cunda\AppData\Roaming\ACEStream\player\npace_plugin.dll [No File]
FF Plugin HKU\S-1-5-21-144071721-2880816984-1805156644-1000: @acestream.net/acestreamplugin,version=3.1.16.1 -> C:\Users\Cunda\AppData\Roaming\ACEStream\player\npace_plugin.dll [No File]
FF Plugin HKU\S-1-5-21-144071721-2880816984-1805156644-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Cunda\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2016-10-26] (Unity Technologies ApS)

Chrome: 
=======
CHR DefaultProfile: Profile 1
CHR HomePage: Profile 1 -> hxxp://youtube.com/
CHR Profile: C:\Users\Cunda\AppData\Local\Google\Chrome\User Data\Profile 1 [2017-07-28]
CHR Extension: (Super Netflix) - C:\Users\Cunda\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aioencjhbaolepcoappllicjebblphoc [2017-03-15]
CHR Extension: (BetterTTV) - C:\Users\Cunda\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2017-04-21]
CHR Extension: (TV) - C:\Users\Cunda\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\beobeededemalmllhkmnkinmfembdimh [2017-02-20]
CHR Extension: (Dark Skin for Youtube™) - C:\Users\Cunda\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\bfeknfgchonpnofdjokchhdhdnddhglm [2017-04-28]
CHR Extension: (uBlock Origin) - C:\Users\Cunda\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2017-07-21]
CHR Extension: (NUFC) - C:\Users\Cunda\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\iicmajfljgagmmcbkkcpnnkikeajnehl [2017-02-20]
CHR Extension: (Spider man(Marvel)) - C:\Users\Cunda\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\jfakofjphifjimpcmfhjhelmheikgmde [2017-02-20]
CHR Extension: (Planner 5D - Interior Design) - C:\Users\Cunda\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\mcafejemebbngbglfoinpoaannbihjna [2017-02-20]
CHR Extension: (Office Online) - C:\Users\Cunda\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ndjpnladcallmjemlbaebfadecfhkepb [2017-05-11]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Cunda\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-09]
CHR Extension: (Chrome Media Router) - C:\Users\Cunda\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-07-14]
CHR HKLM\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files\Norton Security\Engine\22.10.0.85\Exts\Chrome.crx [2017-07-22]
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-144071721-2880816984-1805156644-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [mjbepbhonbojpoaenhckjocchgfiaofo] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files\Norton Security\Engine\22.10.0.85\Exts\Chrome.crx [2017-07-22]
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1530376 2017-07-08] ()
S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [395024 2016-12-27] (EasyAntiCheat Ltd)
S3 FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [654848 2017-03-01] (Macrovision Europe Ltd.) [File not signed]
S3 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [512576 2017-05-29] (GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [7955008 2017-05-29] (GOG.com)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2015-05-22] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [207648 2015-10-16] (Intel Corporation)
R2 MSI_LiveUpdate_Service; C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe [2248144 2016-04-28] (Micro-Star INT'L CO., LTD.)
R2 NS; C:\Program Files\Norton Security\Engine\22.10.0.85\NS.exe [326144 2017-07-15] (Symantec Corporation)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [495224 2017-06-21] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [495224 2017-06-21] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [462968 2017-07-19] (NVIDIA Corporation)
R2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [450168 2017-06-21] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2169696 2017-07-25] (Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3149672 2017-07-25] (Electronic Arts)
R2 PlexUpdateService; C:\Program Files (x86)\Plex\Plex Media Server\Plex Update Service.exe [1986536 2017-04-12] (Plex, Inc.)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2017-05-26] ()
S3 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [118520 2013-03-01] (Riverbed Technology, Inc.)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
R2 WTFast.Service; C:\Program Files (x86)\WTFast\service\WTFast.Service.exe [102912 2017-02-07] () [File not signed]

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2014-09-09] ()
R1 BHDrvx64; C:\Program Files\Norton Security\NortonData\22.9.0.71\Definitions\BASHDefs\20170616.003\BHDrvx64.sys [1862784 2017-05-18] (Symantec Corporation)
R1 ccSet_NS; C:\Windows\system32\drivers\NSx64\160A000.055\ccSetx64.sys [187520 2017-07-14] (Symantec Corporation)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [507032 2017-05-11] (Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [156824 2017-05-11] (Symantec Corporation)
S3 HidNt; C:\Windows\System32\DRIVERS\HIDNt.sys [22576 2008-04-18] (Microsoft Corporation) [File not signed]
S3 HidNt; C:\Windows\SysWOW64\DRIVERS\HIDNt.sys [18992 2008-04-18] (Microsoft Corporation) [File not signed]
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [27552 2017-02-17] (REALiX(tm))
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [31728 2015-11-12] (Intel Corporation)
R1 IDSVia64; C:\Program Files\Norton Security\NortonData\22.9.0.71\Definitions\IPSDefs\20170616.001\IDSvia64.sys [1053824 2017-05-20] (Symantec Corporation)
S3 jakstaVA; C:\Windows\System32\DRIVERS\jaksta_va.sys [103816 2014-12-09] (e2eSoft)
S3 Mac606; C:\Windows\System32\DRIVERS\Mac606.sys [33200 2008-04-18] () [File not signed]
S3 Mac606; C:\Windows\SysWOW64\DRIVERS\Mac606.sys [26672 2008-04-18] () [File not signed]
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [199736 2017-02-17] (Intel Corporation)
R2 NPF; C:\Windows\System32\drivers\npf.sys [36600 2013-03-01] (Riverbed Technology, Inc.)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30328 2017-06-21] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [48248 2017-06-21] (NVIDIA Corporation)
R3 nvvhci; C:\Windows\System32\DRIVERS\nvvhci.sys [76840 2017-04-01] (NVIDIA Corporation)
S0x01000000 papycpu2; C:\Windows\SysWOW64\DRIVERS\papycpu2.sys [1984 2003-01-17] () [File not signed]
S0x01000000 papyjoy; C:\Windows\SysWOW64\DRIVERS\papyjoy.sys [1856 2003-01-17] () [File not signed]
R3 ScpVBus; C:\Windows\System32\DRIVERS\ScpVBus.sys [39168 2013-05-19] (Scarlet.Crush Productions)
S3 SRTSP; C:\Windows\System32\Drivers\NSx64\160A000.055\SRTSP64.SYS [810136 2017-07-14] (Symantec Corporation)
R1 SRTSPX; C:\Windows\system32\drivers\NSx64\160A000.055\SRTSPX64.SYS [49304 2017-07-14] (Symantec Corporation)
R0 SymEFASI; C:\Windows\System32\drivers\NSx64\160A000.055\SYMEFASI64.SYS [1868416 2017-07-14] (Symantec Corporation)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [102568 2017-07-22] (Symantec Corporation)
R1 SymIRON; C:\Windows\system32\drivers\NSx64\160A000.055\Ironx64.SYS [301288 2017-07-14] (Symantec Corporation)
R1 SymNetS; C:\Windows\System32\Drivers\NSx64\160A000.055\SYMNETS.SYS [566912 2017-07-14] (Symantec Corporation)
R1 wfcre; C:\Windows\System32\drivers\wfcre.sys [124288 2017-07-04] ()
R2 WtfEngineDrv; C:\Windows\system32WtfEngineDrv.sys [37360 2016-12-16] (AAA Internet Publishing, Inc.)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-07-28 17:51 - 2017-07-28 17:53 - 00026716 _____ C:\Users\Cunda\Desktop\FRST.txt
2017-07-28 17:50 - 2017-07-28 17:50 - 02381824 _____ (Farbar) C:\Users\Cunda\Desktop\FRST64.exe
2017-07-28 17:49 - 2017-07-28 17:49 - 00112640 _____ (forum.viry.cz) C:\Users\Cunda\Desktop\FRSTLauncher.exe
2017-07-28 17:46 - 2017-07-28 17:47 - 00000000 ____D C:\rsit
2017-07-28 17:46 - 2017-07-28 17:46 - 01329152 _____ C:\Users\Cunda\Desktop\RSITx64.exe
2017-07-28 17:46 - 2017-07-28 17:46 - 00000000 ____D C:\Program Files\trend micro
2017-07-28 17:45 - 2017-07-28 17:45 - 08162248 _____ (Malwarebytes) C:\Users\Cunda\Desktop\adwcleaner_7.0.0.0 (1).exe
2017-07-28 17:22 - 2017-07-28 17:22 - 00001033 _____ C:\Users\Cunda\Desktop\HD Tune Pro.lnk
2017-07-28 17:22 - 2017-07-28 17:22 - 00000000 ____D C:\Users\Cunda\AppData\Roaming\HD Tune Pro
2017-07-28 17:22 - 2017-07-28 17:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HD Tune Pro
2017-07-28 17:22 - 2017-07-28 17:22 - 00000000 ____D C:\Program Files (x86)\HD Tune Pro
2017-07-28 17:21 - 2017-07-28 17:21 - 02239373 _____ (EFD Software ) C:\Users\Cunda\Desktop\hdtunepro_560_trial.exe
2017-07-28 16:22 - 2017-07-28 16:28 - 209948772 _____ C:\Users\Cunda\Desktop\Bugs Bunny - Lost in Time (USA) (En,Fr,Es).7z
2017-07-28 15:53 - 2017-07-28 15:53 - 08162248 _____ (Malwarebytes) C:\Users\Cunda\Desktop\adwcleaner_7.0.0.0.exe
2017-07-28 08:22 - 2017-07-28 08:22 - 00000000 ____D C:\Users\Lukasc\AppData\Roaming\windowsupdates saved files
2017-07-28 08:22 - 2017-07-28 08:22 - 00000000 ____D C:\Users\Lukasc\AppData\Roaming\importantupdates local files
2017-07-28 08:21 - 2017-07-28 17:54 - 00016696 _____ C:\Windows\System32\Tasks\MathMagicGC
2017-07-28 08:21 - 2017-07-28 08:21 - 00000000 ____D C:\Users\Lukasc\AppData\Roaming\SearchIndexer saved files
2017-07-28 08:21 - 2017-07-28 08:21 - 00000000 ____D C:\Users\Lukasc\AppData\Roaming\NVIDIA
2017-07-28 08:21 - 2017-07-28 08:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2017-07-28 08:21 - 2017-07-28 08:21 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2017-07-28 08:21 - 2017-07-25 22:14 - 02035200 ___SH (Micrasaft Carparation) C:\Windows\C_02ir85.dat
2017-07-28 08:20 - 2017-07-28 08:21 - 00000000 ____D C:\Users\Lukasc\AppData\Roaming\smss local files
2017-07-28 05:26 - 2017-07-28 05:26 - 00000000 ____D C:\Windows\System32\Tasks\Remediation
2017-07-26 12:56 - 2017-07-26 12:59 - 00000000 ____D C:\Users\Cunda\Downloads\Daredevil season 2 720p
2017-07-26 12:56 - 2017-07-26 12:56 - 00052433 _____ C:\Users\Cunda\Desktop\[CzT]Daredevil_2_serie_WebRip_720p_.torrent
2017-07-26 10:32 - 2017-07-26 10:38 - 941691858 _____ C:\Users\Cunda\Desktop\WWE.Smackdown.Live.2017.07.25.HDTV.x264-Ebi.mp4
2017-07-25 20:58 - 2017-07-19 00:38 - 00135800 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2017-07-25 20:57 - 2017-07-25 20:57 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2017-07-25 20:57 - 2017-03-10 23:17 - 00536864 _____ C:\Windows\system32\vulkan-1.dll
2017-07-25 20:57 - 2017-03-10 23:17 - 00525600 _____ C:\Windows\SysWOW64\vulkan-1.dll
2017-07-25 20:57 - 2017-03-10 23:17 - 00254240 _____ C:\Windows\system32\vulkaninfo.exe
2017-07-25 20:57 - 2017-03-10 23:17 - 00233760 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2017-07-25 20:54 - 2017-07-19 02:37 - 40239736 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2017-07-25 20:54 - 2017-07-19 02:37 - 35803256 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2017-07-25 20:54 - 2017-07-19 02:37 - 35314296 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2017-07-25 20:54 - 2017-07-19 02:37 - 28928120 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2017-07-25 20:54 - 2017-07-19 02:37 - 17808120 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2017-07-25 20:54 - 2017-07-19 02:37 - 15482488 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2017-07-25 20:54 - 2017-07-19 02:37 - 13655672 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2017-07-25 20:54 - 2017-07-19 02:37 - 12451608 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2017-07-25 20:54 - 2017-07-19 02:37 - 12133112 _____ (NVIDIA Corporation) C:\Windows\system32\nvptxJitCompiler.dll
2017-07-25 20:54 - 2017-07-19 02:37 - 11591392 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2017-07-25 20:54 - 2017-07-19 02:37 - 10487760 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2017-07-25 20:54 - 2017-07-19 02:37 - 09982968 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvptxJitCompiler.dll
2017-07-25 20:54 - 2017-07-19 02:37 - 03803768 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2017-07-25 20:54 - 2017-07-19 02:37 - 03359168 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2017-07-25 20:54 - 2017-07-19 02:37 - 01988216 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6438494.dll
2017-07-25 20:54 - 2017-07-19 02:37 - 01598072 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6438494.dll
2017-07-25 20:54 - 2017-07-19 02:37 - 01067640 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2017-07-25 20:54 - 2017-07-19 02:37 - 01005176 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2017-07-25 20:54 - 2017-07-19 02:37 - 00972920 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2017-07-25 20:54 - 2017-07-19 02:37 - 00924280 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2017-07-25 20:54 - 2017-07-19 02:37 - 00689992 _____ (NVIDIA Corporation) C:\Windows\system32\nvfatbinaryLoader.dll
2017-07-25 20:54 - 2017-07-19 02:37 - 00609912 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2017-07-25 20:54 - 2017-07-19 02:37 - 00578056 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvfatbinaryLoader.dll
2017-07-25 20:54 - 2017-07-19 02:37 - 00512856 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2017-07-25 20:54 - 2017-07-19 02:37 - 00499320 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2017-07-25 20:54 - 2017-07-19 02:37 - 00429920 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2017-07-25 20:54 - 2017-07-19 02:37 - 00407064 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2017-07-25 20:54 - 2017-07-19 02:37 - 00218712 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2017-07-25 20:54 - 2017-07-19 02:37 - 00171384 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2017-07-25 20:54 - 2017-07-19 02:37 - 00154208 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2017-07-25 20:54 - 2017-07-19 02:37 - 00149224 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2017-07-25 20:54 - 2017-07-19 02:37 - 00132072 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2017-07-25 20:54 - 2017-07-19 02:37 - 00045976 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2017-07-25 20:54 - 2017-07-19 02:37 - 00000669 _____ C:\Windows\SysWOW64\nv-vk32.json
2017-07-25 20:54 - 2017-07-19 02:37 - 00000669 _____ C:\Windows\system32\nv-vk64.json
2017-07-25 20:49 - 2017-06-21 09:07 - 00179320 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2017-07-25 20:49 - 2017-06-21 09:07 - 00146552 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2017-07-25 20:49 - 2017-06-21 09:07 - 00048248 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2017-07-25 14:36 - 2017-07-25 14:36 - 02578435 _____ C:\Users\Cunda\Desktop\atkinson_-_prvot_rally_nmecko_2012.rar
2017-07-25 13:32 - 2017-07-25 14:03 - 189861901 _____ C:\Users\Cunda\Desktop\TeachP-1.41-win.rar
2017-07-25 02:05 - 2017-07-25 02:05 - 00107866 _____ C:\Users\Cunda\Desktop\[CzT]Daredevil_2_serie_WebRip_HEVC_2160p_.torrent
2017-07-24 12:56 - 2017-07-24 12:56 - 00001052 _____ C:\Users\Cunda\Desktop\AChat.lnk
2017-07-24 12:56 - 2017-07-24 12:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AChat
2017-07-23 21:22 - 2017-07-23 21:22 - 00000222 _____ C:\Users\Cunda\Desktop\Marvel Heroes Omega.url
2017-07-23 15:57 - 2017-07-23 15:57 - 00000000 ____D C:\Users\Cunda\Documents\Frontier Developments
2017-07-23 15:57 - 2017-07-23 15:57 - 00000000 ____D C:\Users\Cunda\AppData\Roaming\Frontier Developments
2017-07-23 15:57 - 2017-07-23 15:57 - 00000000 ____D C:\Users\Cunda\AppData\Local\Frontier Developments
2017-07-23 15:57 - 2017-07-23 15:57 - 00000000 ____D C:\ProgramData\Planet Coaster
2017-07-23 15:13 - 2017-07-23 15:13 - 00000842 _____ C:\Users\Public\Desktop\Planet Coaster.lnk
2017-07-23 15:13 - 2017-07-23 15:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Planet Coaster
2017-07-23 15:07 - 2017-07-23 15:13 - 00000000 ____D C:\Program Files\Planet Coaster
2017-07-23 04:55 - 2017-07-23 04:55 - 00000000 ____D C:\Windows\System32\Tasks\Norton Security
2017-07-23 04:49 - 2017-07-23 04:49 - 00003206 _____ C:\Windows\System32\Tasks\Norton WSC Integration
2017-07-23 01:08 - 2017-07-23 01:08 - 00000000 ____D C:\Users\Cunda\AppData\Local\Colossal Order
2017-07-23 01:08 - 2017-07-23 01:08 - 00000000 ____D C:\ProgramData\.mono
2017-07-23 01:07 - 2017-07-23 01:07 - 00015921 _____ C:\Users\Cunda\Desktop\[CzT]Planet_Coaster_2016_.torrent
2017-07-22 23:12 - 2017-07-22 23:12 - 00024775 _____ C:\Users\Cunda\Desktop\[CzT]Cities_Skylines_Mass_Transit_2017_CZ_.torrent
2017-07-22 02:38 - 2017-07-22 02:38 - 00000000 ____D C:\Users\Cunda\Documents\ALI213
2017-07-22 00:01 - 2017-07-22 00:01 - 00001141 _____ C:\Users\Public\Desktop\Minecraft.Story.Mode.A.Telltale.Games.Series.Episode.1.To.8.ENG.repack.lnk
2017-07-22 00:01 - 2017-07-22 00:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Minecraft Story Mode
2017-07-21 23:56 - 2017-07-22 23:57 - 00000000 ____D C:\Users\Cunda\AppData\Roaming\Minecraft.Story.Mode.A.Telltale.Games.Series.Episode.1.To.8.ENG.repack
2017-07-21 23:56 - 2017-07-22 00:01 - 00000000 ____D C:\Program Files (x86)\Minecraft Story Mode
2017-07-20 16:45 - 2017-07-20 16:45 - 00000222 _____ C:\Users\Cunda\Desktop\The Walking Dead Season Two.url
2017-07-20 04:05 - 2017-07-20 04:05 - 00000000 ____D C:\Users\Lukasc\AppData\Roaming\Sun
2017-07-20 04:05 - 2017-07-20 04:05 - 00000000 ____D C:\Users\Lukasc\AppData\LocalLow\Sun
2017-07-19 02:16 - 2017-07-20 17:15 - 00008769 _____ C:\Users\Cunda\Desktop\internet.xlsx
2017-07-18 13:15 - 2017-07-18 13:15 - 03798274 _____ C:\Users\Cunda\Desktop\Doctor Who Series 3 Intro (Version 4).mp4
2017-07-18 12:36 - 2017-07-19 13:32 - 00000000 ____D C:\Users\Cunda\AppData\Local\PWU_ep2
2017-07-18 12:35 - 2017-03-06 16:10 - 00000000 ____D C:\Users\Cunda\Desktop\Play With Us! Episode 2
2017-07-18 12:20 - 2017-07-18 12:20 - 00000000 ____D C:\Users\Cunda\AppData\Local\PWU  ep1
2017-07-18 12:19 - 2017-07-18 12:19 - 00000000 ____D C:\Users\Cunda\Desktop\Play_With_Us_Episode1-1.0.8
2017-07-18 01:20 - 2017-07-18 01:20 - 00000000 ____D C:\Users\Cunda\Desktop\Skeče Esther
2017-07-17 02:23 - 2017-07-19 08:51 - 00000000 ____D C:\Users\Lukasc\Documents\American Truck Simulator
2017-07-17 02:23 - 2017-07-17 02:23 - 00000000 ____D C:\Users\Lukasc\Documents\SkidRow
2017-07-16 16:25 - 2017-07-16 16:25 - 00000000 ____D C:\Users\Cunda\AppData\Local\Sony Corporation
2017-07-16 16:20 - 2017-07-16 16:20 - 00000000 ____D C:\Users\Cunda\AppData\Roaming\Sony Interactive Entertainment Inc
2017-07-16 15:27 - 2017-07-26 19:20 - 00000000 ____D C:\Users\Cunda\Desktop\filmy vp
2017-07-16 10:41 - 2017-07-18 16:28 - 00000000 ____D C:\Users\Cunda\Documents\American Truck Simulator
2017-07-16 10:38 - 2017-07-16 10:38 - 00001623 _____ C:\Users\Public\Desktop\American Truck Simulator - Heavy Cargo Pack(X86).lnk
2017-07-16 10:38 - 2017-07-16 10:38 - 00001623 _____ C:\Users\Public\Desktop\American Truck Simulator - Heavy Cargo Pack(X64).lnk
2017-07-16 10:38 - 2017-07-16 10:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\American Truck Simulator - Heavy Cargo Pack
2017-07-16 10:38 - 2017-07-16 10:38 - 00000000 ____D C:\Program Files (x86)\SCS Software
2017-07-15 23:47 - 2017-07-15 23:47 - 00000000 ____D C:\Users\Cunda\AppData\Local\DiscJam
2017-07-15 23:42 - 2017-07-15 23:42 - 00000222 _____ C:\Users\Cunda\Desktop\Disc Jam.url
2017-07-15 11:09 - 2017-07-15 11:10 - 00000000 ____D C:\Users\Cunda\AppData\Roaming\.technic
2017-07-15 11:09 - 2017-07-15 11:09 - 00001875 _____ C:\Users\Public\Desktop\MC Titan Launcher.lnk
2017-07-14 12:51 - 2017-07-14 12:51 - 00468892 _____ C:\Users\Cunda\Desktop\2017_084733_Narizeni_SVS_domaci_prasata_domaci_porazky_zamorena_oblast.pdf
2017-07-13 19:13 - 2017-07-13 19:13 - 00000000 ____D C:\Users\Cunda\AppData\LocalLow\Valve Software
2017-07-12 20:11 - 2017-07-12 20:11 - 00592839 _____ C:\Users\Cunda\Desktop\Smlouva  o  nájmu.pdf
2017-07-10 14:14 - 2017-07-10 14:14 - 00239404 _____ C:\Users\Cunda\Desktop\0000002300239143_20170531_D_005_000_M_C.pdf
2017-07-09 12:39 - 2017-07-09 12:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GameSessions
2017-07-09 12:39 - 2017-07-09 12:39 - 00000000 ____D C:\Program Files\Tangentix
2017-07-09 12:39 - 2017-07-09 12:39 - 00000000 ____D C:\Program Files\GameSessions
2017-07-09 06:42 - 2017-07-09 06:42 - 00000000 ____D C:\Users\Lukasc\AppData\Roaming\FiraxisLive
2017-07-09 02:16 - 2017-07-09 02:16 - 00002091 _____ C:\Users\Lukasc\Desktop\CivilizationVI – zástupce.lnk
2017-07-09 02:10 - 2017-07-09 02:10 - 00000000 ____D C:\Users\Cunda\AppData\Roaming\FiraxisLive
2017-07-09 00:52 - 2017-07-09 02:16 - 00000000 ____D C:\Program Files\Sid Meiers Civilization VI
2017-07-09 00:52 - 2017-07-09 00:52 - 00001139 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sid Meiers Civilization VI.lnk
2017-07-08 17:58 - 2017-07-08 17:58 - 00000000 ____D C:\Users\Cunda\AppData\LocalLow\Smartly Dressed Games
2017-07-08 00:05 - 2017-07-08 00:05 - 00000222 _____ C:\Users\Cunda\Desktop\Unturned.url
2017-07-07 20:50 - 2017-07-07 20:50 - 00222935 _____ C:\Users\Cunda\Desktop\Výpis6.pdf
2017-07-07 18:40 - 2017-07-07 18:59 - 00000000 ____D C:\Users\Cunda\Documents\ETS2MP
2017-07-07 18:37 - 2017-07-07 18:39 - 00000000 ____D C:\ProgramData\TruckersMP
2017-07-07 18:37 - 2017-07-07 18:37 - 00000889 _____ C:\Users\Public\Desktop\TruckersMP.lnk
2017-07-07 18:37 - 2017-07-07 18:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TruckersMP Launcher
2017-07-07 18:37 - 2017-07-07 18:37 - 00000000 ____D C:\Program Files\TruckersMP Launcher
2017-07-07 15:42 - 2017-07-07 15:42 - 00000000 ____D C:\Users\Cunda\AppData\Roaming\java
2017-07-07 15:41 - 2017-07-07 15:41 - 00002124 _____ C:\Users\Cunda\Desktop\Minecraft.lnk
2017-07-07 15:41 - 2017-07-07 15:41 - 00000000 ____D C:\Users\Cunda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Minecraft
2017-07-07 09:31 - 2017-07-07 09:31 - 00000064 _____ C:\Users\Lukasc\Desktop\Skla.txt
2017-07-05 21:38 - 2017-07-05 21:38 - 00000000 ____D C:\Users\Cunda\Desktop\Crash Bandicoot 3 - Warped (E) [SCES-01420]
2017-07-05 13:33 - 2017-07-05 13:33 - 00001235 _____ C:\Users\Cunda\Desktop\Pro Evolution Soccer 2017.lnk
2017-07-05 11:26 - 2017-07-17 00:18 - 00001396 _____ C:\Users\Cunda\Desktop\ePSXe – zástupce.lnk
2017-07-05 02:53 - 2017-07-05 02:53 - 00001943 _____ C:\Users\Cunda\Desktop\NC Launcher.lnk
2017-07-05 02:53 - 2017-07-05 02:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NC Launcher
2017-07-05 02:52 - 2017-07-15 14:48 - 00000000 ____D C:\Program Files (x86)\NC Launcher
2017-07-04 21:23 - 2017-07-26 01:48 - 00000000 ____D C:\Users\Cunda\Desktop\Doctor
2017-07-04 21:19 - 2017-07-26 00:24 - 00000000 ____D C:\Users\Cunda\AppData\Roaming\HandBrake
2017-07-04 21:19 - 2017-07-04 21:19 - 00000000 ____D C:\Users\Cunda\AppData\Roaming\HandBrake Team
2017-07-04 21:18 - 2017-07-17 00:18 - 00000868 _____ C:\Users\Cunda\Desktop\HandBrake.lnk
2017-07-04 21:18 - 2017-07-04 21:18 - 00000000 ____D C:\Users\Cunda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HandBrake
2017-07-04 21:18 - 2017-07-04 21:18 - 00000000 ____D C:\Program Files\HandBrake
2017-07-04 10:46 - 2017-07-04 10:46 - 00124288 _____ C:\Windows\system32\Drivers\wfcre.sys
2017-07-03 18:07 - 2017-07-03 18:07 - 00001151 _____ C:\Users\Public\Desktop\Switcher 2017.lnk
2017-07-03 18:01 - 2017-07-03 18:01 - 00000000 ____D C:\Users\Cunda\Documents\KONAMI
2017-07-03 18:01 - 2017-07-03 18:01 - 00000000 ____D C:\ProgramData\KONAMI
2017-07-03 18:00 - 2017-07-03 18:00 - 00001244 _____ C:\Users\Public\Desktop\Pro Evolution Soccer 2017 Settings.lnk
2017-07-03 18:00 - 2017-07-03 18:00 - 00001235 _____ C:\Users\Public\Desktop\Pro Evolution Soccer 2017.lnk
2017-07-03 18:00 - 2017-07-03 18:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pro Evolution Soccer 2017
2017-07-03 17:51 - 2017-07-28 08:21 - 00000000 ____D C:\Program Files (x86)\Pro Evolution Soccer 2017
2017-07-03 13:10 - 2017-07-03 13:10 - 00104162 _____ C:\Users\Cunda\Desktop\vypis_z_prihlasky.pdf
2017-07-02 00:08 - 2017-07-02 00:12 - 00000000 ____D C:\Users\Cunda\Downloads\DreamsOfDesireEP4-1.0-ELITE-pc
2017-07-01 19:36 - 2017-07-01 19:36 - 00000000 ____D C:\Users\Cunda\Documents\PCSX2
2017-07-01 19:35 - 2017-07-01 19:36 - 00000000 ____D C:\Users\Cunda\Desktop\Crash Bandicoot - The Wrath of Cortex (Europe) (En,Fr,De,Es,It,Nl) (v2.01)
2017-07-01 19:33 - 2017-07-01 19:34 - 00000000 ____D C:\Program Files (x86)\PCSX2 1.0.0
2017-07-01 19:33 - 2017-07-01 19:33 - 00001985 _____ C:\Users\Public\Desktop\PCSX2 1.0.0 (r5350).lnk
2017-07-01 19:33 - 2017-07-01 19:33 - 00000000 ____D C:\Users\Cunda\Desktop\ps2 emu
2017-07-01 19:33 - 2017-07-01 19:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PCSX2
2017-07-01 00:52 - 2017-07-01 00:52 - 00000000 ____D C:\ProgramData\F1 2016
2017-06-30 22:48 - 2017-06-30 22:48 - 00000815 _____ C:\Users\Public\Desktop\F1 2016.lnk
2017-06-30 22:48 - 2017-06-30 22:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\F1 2016
2017-06-30 22:15 - 2017-06-30 22:48 - 00000000 ____D C:\Program Files\F1 2016
2017-06-30 21:53 - 2017-06-30 21:53 - 00000000 ____D C:\Users\Cunda\Desktop\Crash Bandicoot 2 - Cortex Strikes Back (E) [SCES-00967]
2017-06-30 15:22 - 2017-06-30 18:16 - 00000000 ____D C:\Users\Cunda\Downloads\Balíček 47 her pro PSX
2017-06-30 15:10 - 2017-06-30 15:10 - 00000000 ____D C:\Users\Cunda\AppData\Roaming\fltk.org
2017-06-30 15:09 - 2017-06-30 15:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Crash Bandicoot Collection 2016
2017-06-30 15:07 - 2017-06-30 15:09 - 00000000 ____D C:\Crash Bandicoot Collection
2017-06-29 23:15 - 2017-07-23 20:59 - 00000000 ____D C:\Users\Cunda\AppData\Roaming\.minecraft
2017-06-28 17:46 - 2017-06-28 17:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ghost FIFA

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-07-28 17:51 - 2017-03-06 21:03 - 00000000 ____D C:\FRST
2017-07-28 17:37 - 2009-07-14 06:45 - 00037328 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-07-28 17:37 - 2009-07-14 06:45 - 00037328 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-07-28 16:51 - 2017-02-19 00:47 - 00000000 ____D C:\Users\Cunda\Desktop\DS4
2017-07-28 16:18 - 2017-02-17 21:51 - 00000000 ____D C:\Users\Cunda\AppData\Roaming\Origin
2017-07-28 16:10 - 2017-02-17 21:46 - 00000000 ____D C:\ProgramData\Origin
2017-07-28 16:07 - 2017-02-17 15:22 - 00000000 ____D C:\ProgramData\NVIDIA
2017-07-28 16:04 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-07-28 16:03 - 2017-03-11 13:24 - 00281558 _____ C:\Windows\ntbtlog.txt
2017-07-28 16:03 - 2017-02-19 01:52 - 00001135 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2017-07-28 16:03 - 2017-02-19 01:52 - 00001135 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2017-07-28 16:03 - 2017-02-17 18:36 - 00000000 ____D C:\ProgramData\IObit
2017-07-28 16:03 - 2017-02-17 14:40 - 00002171 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-07-28 16:03 - 2017-02-17 14:40 - 00002171 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-07-28 16:02 - 2017-02-17 18:36 - 00000000 ____D C:\Users\Cunda\AppData\Roaming\IObit
2017-07-28 16:02 - 2017-02-17 18:36 - 00000000 ____D C:\Users\Cunda\AppData\LocalLow\IObit
2017-07-28 16:01 - 2017-03-01 01:51 - 00000000 ____D C:\AdwCleaner
2017-07-28 15:47 - 2017-06-08 18:00 - 00000000 ____D C:\Users\Cunda\Documents\Wondershare DVD Creator
2017-07-28 13:19 - 2017-02-19 21:53 - 00000000 ____D C:\Users\Cunda\AppData\Roaming\uTorrent
2017-07-28 12:02 - 2017-03-07 04:25 - 00000000 ____D C:\Users\Lukasc\AppData\LocalLow\Mozilla
2017-07-28 10:21 - 2017-03-06 16:27 - 00000000 ____D C:\Users\Lukasc\Desktop\Doctor Who
2017-07-28 08:22 - 2017-03-07 07:03 - 00000000 ____D C:\Users\Lukasc\AppData\Local\CrashDumps
2017-07-28 08:21 - 2017-03-15 14:13 - 00000000 ____D C:\Program Files (x86)\Webteh
2017-07-28 08:21 - 2017-03-10 16:34 - 00000000 ____D C:\Users\Lukasc\AppData\Roaming\uTorrent
2017-07-28 08:13 - 2017-04-05 05:35 - 00000000 ____D C:\Users\Lukasc\Desktop\RBR Planet
2017-07-28 08:13 - 2017-03-07 08:12 - 00000000 ____D C:\Users\Lukasc\AppData\Roaming\Origin
2017-07-28 07:51 - 2017-03-07 08:11 - 00000000 ____D C:\Users\Lukasc\Desktop\DS4
2017-07-28 05:21 - 2017-04-07 07:47 - 00000000 ____D C:\Users\Lukasc\Desktop\Doctor Who AudioBook
2017-07-28 04:45 - 2017-05-23 07:33 - 00000000 ____D C:\Users\Lukasc\AppData\LocalLow\uTorrent
2017-07-28 04:18 - 2017-02-23 10:12 - 00002896 _____ C:\Users\Lukasc\Desktop\Muj Kalendář (RBR PLANET).txt
2017-07-28 03:41 - 2017-02-17 15:48 - 00000000 ____D C:\Program Files (x86)\Steam
2017-07-28 02:00 - 2017-05-14 00:03 - 00000000 ____D C:\Users\Cunda\AppData\Roaming\Spotify
2017-07-27 22:26 - 2017-05-14 00:04 - 00000000 ____D C:\Users\Cunda\AppData\Local\Spotify
2017-07-27 21:41 - 2017-02-19 01:52 - 00000000 ____D C:\Users\Cunda\AppData\LocalLow\Mozilla
2017-07-27 17:42 - 2017-02-23 01:18 - 00000000 ____D C:\Users\Cunda\AppData\Roaming\vlc
2017-07-27 14:56 - 2017-02-17 14:44 - 00000000 ____D C:\Users\Cunda\AppData\Local\CrashDumps
2017-07-27 10:51 - 2017-03-07 08:05 - 00000000 ____D C:\Users\Lukasc\Desktop\Sponzoři
2017-07-27 05:28 - 2017-03-02 08:57 - 00000939 _____ C:\Users\Lukasc\Desktop\dddd.txt
2017-07-27 05:09 - 2017-04-10 09:38 - 00000000 ____D C:\Users\Lukasc\Desktop\Nová složka
2017-07-26 12:59 - 2017-03-08 15:55 - 00000000 ____D C:\Users\Cunda\Desktop\Filmy
2017-07-26 12:45 - 2017-06-09 23:47 - 00000000 ____D C:\Users\Cunda\Documents\ConvertXtoDVD
2017-07-25 20:58 - 2017-02-17 16:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2017-07-25 20:58 - 2017-02-17 14:38 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2017-07-25 20:58 - 2017-02-17 14:37 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2017-07-25 20:58 - 2017-02-17 13:31 - 00000000 ____D C:\Temp
2017-07-25 20:58 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\inf
2017-07-25 20:50 - 2017-05-24 12:57 - 00003814 _____ C:\Windows\System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-07-25 20:50 - 2017-02-17 16:10 - 00003852 _____ C:\Windows\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-07-25 20:50 - 2017-02-17 16:10 - 00001412 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2017-07-25 20:50 - 2017-02-17 16:09 - 00004146 _____ C:\Windows\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-07-25 20:50 - 2017-02-17 16:08 - 00003738 _____ C:\Windows\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-07-25 20:50 - 2017-02-17 16:08 - 00003738 _____ C:\Windows\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-07-25 20:50 - 2017-02-17 16:08 - 00003730 _____ C:\Windows\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-07-25 20:50 - 2017-02-17 16:08 - 00003554 _____ C:\Windows\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-07-25 20:50 - 2017-02-17 16:08 - 00003494 _____ C:\Windows\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-07-25 20:50 - 2017-02-17 14:37 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2017-07-25 07:25 - 2017-02-17 21:50 - 00000000 ____D C:\Program Files (x86)\Origin
2017-07-24 12:57 - 2017-06-06 02:07 - 00000000 ____D C:\Users\Cunda\AppData\Local\AChat
2017-07-24 10:37 - 2017-03-12 04:55 - 00000000 ____D C:\Users\Lukasc\AppData\Roaming\vlc
2017-07-24 00:20 - 2017-02-22 00:31 - 00000000 ____D C:\Users\Cunda\Documents\My Games
2017-07-23 21:22 - 2017-02-17 19:08 - 00000000 ____D C:\Users\Cunda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2017-07-23 06:12 - 2017-02-19 06:07 - 00000000 ____D C:\Program Files\Common Files\AV
2017-07-23 04:50 - 2017-02-17 14:41 - 00000000 ____D C:\Windows\system32\Drivers\NSx64
2017-07-23 04:49 - 2017-03-06 22:00 - 00002237 _____ C:\Users\Public\Desktop\Norton Security.lnk
2017-07-23 04:49 - 2017-03-06 21:59 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Security
2017-07-22 22:59 - 2017-03-02 23:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com
2017-07-22 05:46 - 2017-03-06 22:00 - 00102568 _____ (Symantec Corporation) C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
2017-07-22 05:46 - 2017-03-06 22:00 - 00008309 _____ C:\Windows\system32\Drivers\SYMEVENT64x86.CAT
2017-07-22 02:38 - 2017-04-19 21:00 - 00000000 ____D C:\Users\Cunda\Documents\Telltale Games
2017-07-21 10:24 - 2017-03-02 23:03 - 00000000 ____D C:\ProgramData\GOG.com
2017-07-21 10:24 - 2017-02-17 14:38 - 00000000 ____D C:\ProgramData\Package Cache
2017-07-21 10:07 - 2017-05-13 00:38 - 00000000 ____D C:\GOG Games
2017-07-20 19:26 - 2017-03-04 23:44 - 00000000 ____D C:\Users\Cunda\AppData\Local\YareelStandalone
2017-07-20 14:19 - 2017-06-09 18:57 - 00000000 ____D C:\Users\Cunda\AppData\Roaming\dvdcss
2017-07-19 16:51 - 2017-02-17 16:00 - 00000000 ____D C:\Users\Cunda\AppData\Local\Steam
2017-07-19 02:37 - 2017-05-24 13:00 - 18704048 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2017-07-19 02:37 - 2017-05-24 13:00 - 14689632 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2017-07-19 02:37 - 2017-02-17 16:57 - 21403904 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2017-07-19 02:37 - 2017-02-17 16:57 - 04187336 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2017-07-19 02:37 - 2017-02-17 16:57 - 03691888 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2017-07-19 02:37 - 2017-02-17 16:57 - 00491536 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2017-07-19 02:37 - 2017-02-17 15:21 - 01615448 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll
2017-07-19 02:37 - 2017-02-17 15:21 - 00044200 _____ C:\Windows\system32\nvinfo.pb
2017-07-19 01:24 - 2017-02-17 15:23 - 06463608 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2017-07-19 01:24 - 2017-02-17 15:23 - 02479040 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2017-07-19 01:24 - 2017-02-17 15:23 - 01762936 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2017-07-19 01:24 - 2017-02-17 15:23 - 00549312 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
2017-07-19 01:24 - 2017-02-17 15:23 - 00392312 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2017-07-19 01:24 - 2017-02-17 15:23 - 00081856 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
2017-07-19 01:24 - 2017-02-17 15:23 - 00069752 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2017-07-19 00:54 - 2017-02-17 15:22 - 00001951 _____ C:\Windows\NvContainerRecovery.bat
2017-07-18 13:53 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\NDF
2017-07-18 07:03 - 2017-03-07 01:02 - 00000000 ____D C:\Users\Lukasc\Desktop\Richard Burns Rally
2017-07-18 07:01 - 2017-02-22 07:42 - 00000000 ____D C:\Users\Lukasc\Desktop\RBR SKINS
2017-07-18 03:27 - 2017-04-05 04:41 - 00000000 ____D C:\Users\Lukasc\Desktop\Wallpapers
2017-07-16 13:51 - 2017-04-03 12:56 - 00009728 ___SH C:\Users\Cunda\Documents\Thumbs.db
2017-07-16 10:41 - 2017-06-25 22:07 - 00000000 ____D C:\Users\Cunda\Documents\SkidRow
2017-07-14 19:29 - 2017-05-29 23:07 - 00000000 ____D C:\Users\Cunda\Documents\Euro Truck Simulator 2
2017-07-13 15:26 - 2017-03-07 21:40 - 00000000 ____D C:\Users\Cunda\AppData\Roaming\RenPy
2017-07-13 03:37 - 2017-02-17 15:23 - 08095171 _____ C:\Windows\system32\nvcoproc.bin
2017-07-12 20:12 - 2011-04-12 10:34 - 00668542 _____ C:\Windows\system32\perfh005.dat
2017-07-12 20:12 - 2011-04-12 10:34 - 00141202 _____ C:\Windows\system32\perfc005.dat
2017-07-12 20:12 - 2009-07-14 07:13 - 01583226 _____ C:\Windows\system32\PerfStringBackup.INI
2017-07-12 06:04 - 2017-02-21 01:50 - 00803328 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2017-07-12 06:04 - 2017-02-21 01:50 - 00144896 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2017-07-12 06:04 - 2017-02-21 01:50 - 00004396 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2017-07-12 06:04 - 2017-02-21 01:50 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2017-07-12 06:04 - 2017-02-21 01:50 - 00000000 ____D C:\Windows\system32\Macromed
2017-07-09 06:42 - 2017-03-29 12:15 - 00000000 ____D C:\Users\Lukasc\Documents\My Games
2017-07-08 23:24 - 2017-06-21 21:57 - 00000334 _____ C:\Users\Cunda\Desktop\Vietnam.txt
2017-07-08 11:51 - 2017-02-19 01:52 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-07-08 11:51 - 2017-02-19 01:52 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2017-07-08 11:51 - 2009-07-14 06:45 - 02236584 _____ C:\Windows\system32\FNTCACHE.DAT
2017-07-07 10:39 - 2017-02-17 14:43 - 00067920 _____ C:\Users\Cunda\AppData\Local\GDIPFONTCACHEV1.DAT
2017-07-07 08:55 - 2017-03-07 04:23 - 00067920 _____ C:\Users\Lukasc\AppData\Local\GDIPFONTCACHEV1.DAT
2017-07-03 19:14 - 2017-05-23 00:19 - 00000000 ____D C:\Users\Cunda\Downloads\Anthropoid.2016.LIMITED.BRRip.XviD.AC3-iFT
2017-07-02 00:48 - 2017-03-24 00:55 - 00000000 ____D C:\Games
2017-07-01 19:34 - 2017-02-17 16:49 - 00000000 ____D C:\Windows\SysWOW64\directx
2017-07-01 19:33 - 2017-03-24 02:02 - 00000000 ___HD C:\Windows\msdownld.tmp
2017-07-01 10:17 - 2009-07-14 07:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2017-07-01 09:15 - 2017-03-09 11:42 - 00000220 _____ C:\Users\Kuba\Desktop\Borderlands.url
2017-07-01 00:52 - 2017-03-17 17:40 - 00000000 ____D C:\ProgramData\Codemasters
2017-06-29 16:43 - 2017-02-19 10:37 - 00000000 ____D C:\Users\Kuba\AppData\Local\Battle.net
2017-06-29 12:44 - 2017-02-17 15:28 - 00000000 ____D C:\Program Files (x86)\Battle.net
2017-06-29 11:55 - 2017-02-17 15:42 - 00000000 ____D C:\Program Files (x86)\Overwatch

==================== Files in the root of some directories =======

2017-02-20 03:02 - 2017-02-20 03:02 - 0062373 _____ () C:\Users\Cunda\AppData\Roaming\Annulet.TNhH
2011-06-17 15:00 - 2011-06-17 15:00 - 0007444 _____ () C:\Users\Cunda\AppData\Roaming\ca.txt
2016-05-19 11:53 - 2016-05-19 11:53 - 0010395 _____ () C:\Users\Cunda\AppData\Roaming\co.txt
2011-06-17 15:00 - 2011-06-17 15:00 - 0018258 _____ () C:\Users\Cunda\AppData\Roaming\gu.txt
2017-06-09 22:09 - 2017-06-09 22:09 - 0099384 _____ () C:\Users\Cunda\AppData\Roaming\inst.exe
2015-11-20 18:06 - 2015-11-20 18:06 - 0009170 _____ () C:\Users\Cunda\AppData\Roaming\nl.txt
2017-06-09 22:09 - 2017-06-09 22:09 - 0007859 _____ () C:\Users\Cunda\AppData\Roaming\pcouffin.cat
2017-06-09 22:09 - 2017-06-09 22:09 - 0001167 _____ () C:\Users\Cunda\AppData\Roaming\pcouffin.inf
2017-06-09 22:09 - 2017-06-09 22:09 - 0000055 _____ () C:\Users\Cunda\AppData\Roaming\pcouffin.log
2017-06-09 22:09 - 2017-06-09 22:09 - 0082816 _____ (VSO Software) C:\Users\Cunda\AppData\Roaming\pcouffin.sys
2015-02-12 15:13 - 2015-02-12 15:13 - 0009372 _____ () C:\Users\Cunda\AppData\Roaming\sk.txt
2011-06-17 15:00 - 2011-06-17 15:00 - 0011386 _____ () C:\Users\Cunda\AppData\Roaming\ug.txt
2017-03-24 01:12 - 2017-03-24 01:12 - 0024835 _____ () C:\Users\Cunda\AppData\Local\2017-03-24.json
2017-04-16 04:17 - 2017-04-16 04:18 - 0101389 _____ () C:\Users\Cunda\AppData\Local\2017-04-14.json
2017-04-16 04:18 - 2017-04-16 04:18 - 0016461 _____ () C:\Users\Cunda\AppData\Local\2017-04-16.json
2017-04-13 02:05 - 2017-06-22 00:32 - 0000193 _____ () C:\Users\Cunda\AppData\Local\changelog.txt
2017-03-15 02:09 - 2017-06-22 00:33 - 0123795 _____ () C:\Users\Cunda\AppData\Local\games.txt
2017-03-11 00:24 - 2017-03-11 01:05 - 0007602 _____ () C:\Users\Cunda\AppData\Local\Resmon.ResmonCfg
2017-03-15 02:09 - 2017-06-22 00:32 - 0000039 _____ () C:\Users\Cunda\AppData\Local\test.txt
2017-04-09 03:12 - 2017-06-22 00:32 - 0000193 _____ () C:\Users\Cunda\AppData\Local\version.txt
2017-02-20 19:23 - 2017-02-20 19:23 - 0000057 _____ () C:\ProgramData\Ament.ini
2017-02-17 14:54 - 2017-02-17 14:54 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Some files in TEMP:
====================
2017-07-23 12:39 - 2017-07-23 12:39 - 0019968 ____N (Red Hat®, Inc.) C:\Users\Cunda\AppData\Local\Temp\jansi-64-1121536934918584124.dll
2017-07-23 14:06 - 2017-07-23 14:06 - 0019968 ____N (Red Hat®, Inc.) C:\Users\Cunda\AppData\Local\Temp\jansi-64-4062399931714134552.dll
2017-07-15 11:15 - 2017-07-15 11:15 - 0019968 ____N (Red Hat®, Inc.) C:\Users\Cunda\AppData\Local\Temp\jansi-64-8090666756751686578.dll
2017-07-03 11:45 - 2017-07-03 11:45 - 30950664 _____ () C:\Users\Cunda\AppData\Local\Temp\vlc-2.2.6-win32.exe

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll
[2017-02-17 19:14] - [2017-06-05 14:12] - 1008640 _____ (Microsoft Corporation) 2C353B6CE0C8D03225CAA2AF33B68D79

C:\Windows\SysWOW64\User32.dll
[2017-02-17 19:14] - [2017-06-05 14:12] - 0833024 _____ (Microsoft Corporation) 861C4346F9281DC0380DE72C8D55D6BE

C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed



===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================



==================== MBR and Partition Table ==================


==================== Scheduled Tasks (whitelisted) ==================

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

==================== Alternate Data Streams (whitelisted) ==================


==================== Security Center ==================

AV: Norton Security (Disabled - Out of date) {30744133-1E94-7B35-F4A3-82A5AEF1CBAA}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Norton Security (Disabled - Out of date) {8B15A0D7-38AE-74BB-CE13-B9D7D5768117}
FW: Norton Security (Disabled) {084FC016-54FB-7A6D-DFFC-2B9050228CD1}



===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)

  
***** Velikost "Plochy" *****

Velikost slozky "C:\Users\Cunda\Desktop" je 59707 MB.
 
 
***** Startup Programs *****
 
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AceStream
C:\Users\Cunda\AppData\Roaming\ACEStream\engine\ace_engine.exe  [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Advanced SystemCare 10
"C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe" /Auto [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BlueStacks Agent
C:\Program Files (x86)\BlueStacks\HD-Agent.exe [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CCleaner Monitoring
"C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cz.seznam.software.autoupdate
"C:\Users\Cunda\AppData\Roaming\Seznam.cz\szninstall.exe" -c [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cz.seznam.software.szndesktop
"C:\Users\Cunda\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GalaxyClient
C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe /launchViaAutoStart [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update
C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe 

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Live Update
C:\Program Files (x86)\MSI\Live Update\Live Update.exe /REMINDER [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\seznam-listicka-distribuce
"C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Spotify
"C:\Users\Cunda\AppData\Roaming\Spotify\Spotify.exe" -autostart -minimized [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Spotify Web Helper
C:\Users\Cunda\AppData\Roaming\Spotify\SpotifyWebHelper.exe --autostart [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam
"C:\Program Files (x86)\Steam\steam.exe" -silent [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" 

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Wondershare Helper Compact.exe
C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe 

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WTFast Tray
"C:\Program Files (x86)\WTFast\WTFast.exe" trayonly [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\XboxStat
"C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe" silentrun [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\YhlbPack
C:\Users\Cunda\AppData\Local\YhlbPack\Windows_Activaton.exe  [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^fcbd.bat
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\fcbd.bat [x]

 
***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
    EnableFirewall    REG_DWORD    0x0
    DisableNotifications    REG_DWORD    0x0
    DefaultOutboundAction    REG_DWORD    0x0
    DefaultInboundAction    REG_DWORD    0x0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
    EnableFirewall    REG_DWORD    0x1
    DisableNotifications    REG_DWORD    0x0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
 
 
***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000

 
==================== End Of Log ==============================
