Zoek.exe v5.0.0.1 Updated 31-December-2015
Tool run by Ondra on 20.08.2016 at 22:16:18,25.
Microsoft Windows 10 Education 10.0.14393 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Ondra\Desktop\zoek.exe [Scan all users] [Script inserted]
==== System Restore Info ======================
20.08.2016 22:16:53 Zoek.exe System Restore Point Created Successfully.
==== Reset Hosts File ======================
# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host
127.0.0.1 localhost
==== Empty Folders Check ======================
C:\PROGRA~2\AGEIA Technologies deleted successfully
C:\PROGRA~2\Origin Games deleted successfully
C:\PROGRA~2\Seznam.cz deleted successfully
C:\PROGRA~2\Webteh deleted successfully
C:\PROGRA~3\Comms deleted successfully
C:\PROGRA~3\SoftwareDistribution deleted successfully
C:\Users\Default\AppData\Local\LogMeIn Hamachi deleted successfully
C:\Users\Ondra\AppData\Local\ActiveSync deleted successfully
C:\Users\Ondra\AppData\Local\CrashDumps deleted successfully
C:\Users\Ondra\AppData\Local\PeerDistRepub deleted successfully
C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\Maps deleted successfully
C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\PeerDistPub deleted successfully
C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\PeerDistRepub deleted successfully
==== Deleting CLSID Registry Keys ======================
==== Deleting CLSID Registry Values ======================
==== Deleting Services ======================
==== Deleting Files \ Folders ======================
C:\PROGRA~2\AGEIA Technologies not found
C:\PROGRA~2\Origin Games not found
C:\PROGRA~2\Seznam.cz not found
C:\PROGRA~2\Webteh not found
C:\PROGRA~3\Package Cache deleted
C:\windows\SysNative\GroupPolicy\User deleted
C:\WINDOWS\Syswow64\SET11DF.tmp deleted
C:\WINDOWS\Syswow64\SET17C3.tmp deleted
C:\WINDOWS\Syswow64\SET1DBB.tmp deleted
C:\WINDOWS\Syswow64\SET2052.tmp deleted
C:\WINDOWS\Syswow64\SET211.tmp deleted
C:\WINDOWS\Syswow64\SET24A3.tmp deleted
C:\WINDOWS\Syswow64\SET25F9.tmp deleted
C:\WINDOWS\Syswow64\SET278A.tmp deleted
C:\WINDOWS\Syswow64\SET2B44.tmp deleted
C:\WINDOWS\Syswow64\SET2D7A.tmp deleted
C:\WINDOWS\Syswow64\SET2F93.tmp deleted
C:\WINDOWS\Syswow64\SET2FD7.tmp deleted
C:\WINDOWS\Syswow64\SET3031.tmp deleted
C:\WINDOWS\Syswow64\SET3309.tmp deleted
C:\WINDOWS\Syswow64\SET3535.tmp deleted
C:\WINDOWS\Syswow64\SET37C.tmp deleted
C:\WINDOWS\Syswow64\SET38EA.tmp deleted
C:\WINDOWS\Syswow64\SET396C.tmp deleted
C:\WINDOWS\Syswow64\SET3FCA.tmp deleted
C:\WINDOWS\Syswow64\SET3FDB.tmp deleted
C:\WINDOWS\Syswow64\SET6.tmp deleted
C:\WINDOWS\Syswow64\SET70FC.tmp deleted
C:\WINDOWS\Syswow64\SET77CB.tmp deleted
C:\WINDOWS\Syswow64\SET848B.tmp deleted
C:\WINDOWS\Syswow64\SET8686.tmp deleted
C:\WINDOWS\Syswow64\SET8930.tmp deleted
C:\WINDOWS\Syswow64\SET8C6B.tmp deleted
C:\WINDOWS\Syswow64\SET8F0C.tmp deleted
C:\WINDOWS\Syswow64\SET911A.tmp deleted
C:\WINDOWS\Syswow64\SET9389.tmp deleted
C:\WINDOWS\Syswow64\SET9B2B.tmp deleted
C:\WINDOWS\Syswow64\SET9C94.tmp deleted
C:\WINDOWS\Syswow64\SET9DD2.tmp deleted
C:\WINDOWS\Syswow64\SETA634.tmp deleted
C:\WINDOWS\Syswow64\SETB3EE.tmp deleted
C:\WINDOWS\Syswow64\SETB5A0.tmp deleted
C:\WINDOWS\Syswow64\SETB62E.tmp deleted
C:\WINDOWS\Syswow64\SETB7FE.tmp deleted
C:\WINDOWS\Syswow64\SETB8B8.tmp deleted
C:\WINDOWS\Syswow64\SETBA0D.tmp deleted
C:\WINDOWS\Syswow64\SETBD50.tmp deleted
C:\WINDOWS\Syswow64\SETBDAB.tmp deleted
C:\WINDOWS\Syswow64\SETBEDE.tmp deleted
C:\WINDOWS\Syswow64\SETC48A.tmp deleted
C:\WINDOWS\Syswow64\SETC4FA.tmp deleted
C:\WINDOWS\Syswow64\SETC9C7.tmp deleted
C:\WINDOWS\Syswow64\SETCDE.tmp deleted
C:\WINDOWS\Syswow64\SETDE7B.tmp deleted
C:\WINDOWS\Syswow64\SETE2F6.tmp deleted
C:\WINDOWS\Syswow64\SETE92D.tmp deleted
C:\WINDOWS\Syswow64\SETF56.tmp deleted
C:\WINDOWS\Syswow64\SETFAC2.tmp deleted
C:\WINDOWS\Syswow64\SETFDA9.tmp deleted
"C:\Users\Ondra\AppData\Roaming\discord\Cookies" not deleted
"C:\Users\Ondra\AppData\Roaming\discord\Cookies-journal" not deleted
"C:\Users\Ondra\AppData\Roaming\discord\modules.log" not deleted
"C:\Users\Ondra\AppData\Roaming\discord\Cache\data_0" deleted
"C:\Users\Ondra\AppData\Roaming\discord\Cache\data_1" deleted
"C:\Users\Ondra\AppData\Roaming\discord\Cache\data_2" deleted
"C:\Users\Ondra\AppData\Roaming\discord\Cache\data_3" deleted
"C:\Users\Ondra\AppData\Roaming\discord\Cache\index" deleted
"C:\Users\Ondra\AppData\Roaming\discord\GPUCache\data_0" deleted
"C:\Users\Ondra\AppData\Roaming\discord\GPUCache\data_1" deleted
"C:\Users\Ondra\AppData\Roaming\discord\GPUCache\data_2" deleted
"C:\Users\Ondra\AppData\Roaming\discord\GPUCache\data_3" deleted
"C:\Users\Ondra\AppData\Roaming\discord\GPUCache\index" deleted
"C:\Users\Ondra\AppData\Roaming\discord\Local Storage\https_discordapp.com_0.localstorage" not deleted
"C:\Users\Ondra\AppData\Roaming\discord\Local Storage\https_discordapp.com_0.localstorage-journal" not deleted
"C:\Users\Ondra\AppData\Roaming\discord\Local Storage\https_www.youtube.com_0.localstorage" not deleted
"C:\Users\Ondra\AppData\Roaming\discord\Local Storage\https_www.youtube.com_0.localstorage-journal" not deleted
"C:\Users\Ondra\AppData\Roaming\discord\0.0.295\modules\discord_toaster\discord_toaster.node" deleted
"C:\Users\Ondra\AppData\Roaming\discord\0.0.295\modules\discord_utils\discord_utils.node" deleted
"C:\Users\Ondra\AppData\Roaming\discord\0.0.295\modules\discord_voice\discord_voice.node" deleted
"C:\Users\Ondra\AppData\Roaming\discord\0.0.295\modules\discord_voice\libdiscord.dll" deleted
"C:\Users\Ondra\AppData\Roaming\discord" not deleted
"C:\Users\Ondra\AppData\Roaming\discord\0.0.295" not deleted
"C:\Users\Ondra\AppData\Roaming\discord\Cache" not deleted
"C:\Users\Ondra\AppData\Roaming\discord\GPUCache" not deleted
"C:\Users\Ondra\AppData\Roaming\discord\Local Storage" not deleted
"C:\Users\Ondra\AppData\Roaming\discord\0.0.295\modules" not deleted
"C:\Users\Ondra\AppData\Roaming\discord\0.0.295\modules\discord_toaster" not deleted
"C:\Users\Ondra\AppData\Roaming\discord\0.0.295\modules\discord_utils" not deleted
"C:\Users\Ondra\AppData\Roaming\discord\0.0.295\modules\discord_voice" not deleted
==== Fake Chromium Profiles Check ======================
Fake profile C:\Users\Default\AppData\Local\Google\Chrome deleted
==== Chromium Look ======================
Super Netflix - Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\aioencjhbaolepcoappllicjebblphoc
Seznam Lištička - Email - Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig
Seznam Lištička - Slovník - Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd
Foxtab Speed Dial - Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\fcoecifcadmambfikillppkoafmgachp
SteamDB - Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\kdbmhfkmnlmbkgbabkdealhhbfhlmmon
Instair Speed Dial - Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\kikeacjcceacohckgiajooneiabebfjj
Infinite HD App - Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\laealigljflmglcgncipdbmbjgjdpiim
Twitch Now - Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\nlmbdmpjmlijibeockamioakdpmhjnpk
Seznam Lištička - Rychlá volba - Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak
Chrome Media Router - Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm
==== Chromium Fix ======================
C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.marinetraffic.com_0.localstorage deleted successfully
C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.marinetraffic.com_0.localstorage-journal deleted successfully
C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\fcoecifcadmambfikillppkoafmgachp deleted successfully
C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\kikeacjcceacohckgiajooneiabebfjj deleted successfully
C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\kdbmhfkmnlmbkgbabkdealhhbfhlmmon deleted successfully
==== Set IE to Default ======================
Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/p/?LinkId=255141"
New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/p/?LinkId=255141"
==== All HKLM and HKCU SearchScopes ======================
HKLM\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
HKLM\Wow6432Node\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\Wow6432Node\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
HKCU\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKCU\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} - http://www.google.com/search?q={searchTerms}
HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTer ... ORM=IESR02
==== Reset Google Chrome ======================
C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences was reset successfully
C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Web Data will be reset at reboot
C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal will be reset at reboot
==== Empty IE Cache ======================
C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Default.migrated\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\Ondra\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\Default\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Users\Default User\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Users\Ondra\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
==== Empty FireFox Cache ======================
No FireFox Profiles found
==== Empty Chrome Cache ======================
C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
==== Empty All Flash Cache ======================
No Flash Cache Found
==== Empty All Java Cache ======================
No Java Cache Found
==== C:\zoek_backup content ======================
C:\zoek_backup (files=866 folders=164 701765479 bytes)
==== Empty Temp Folders ======================
C:\WINDOWS\Temp will be emptied at reboot
==== After Reboot ======================
==== Empty Temp Folders ======================
C:\WINDOWS\Temp successfully emptied
C:\Users\Ondra\AppData\Local\Temp successfully emptied
==== Empty Recycle Bin ======================
C:\$RECYCLE.BIN successfully emptied
==== Deleting Files / Folders ======================
"C:\Users\Ondra\AppData\Roaming\discord\Cookies" not found
"C:\Users\Ondra\AppData\Roaming\discord\Cookies-journal" not found
"C:\Users\Ondra\AppData\Roaming\discord\modules.log" not found
"C:\Users\Ondra\AppData\Roaming\discord\Local Storage\https_discordapp.com_0.localstorage" not found
"C:\Users\Ondra\AppData\Roaming\discord\Local Storage\https_discordapp.com_0.localstorage-journal" not found
"C:\Users\Ondra\AppData\Roaming\discord\Local Storage\https_www.youtube.com_0.localstorage" not found
"C:\Users\Ondra\AppData\Roaming\discord\Local Storage\https_www.youtube.com_0.localstorage-journal" not found
"C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Web Data" not found
"C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal" not found
"C:\Users\Ondra\AppData\Roaming\discord" not found
"C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\kdbmhfkmnlmbkgbabkdealhhbfhlmmon" deleted
==== EOF on 20.08.2016 at 22:29:03,72 ======================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
zodiac-game.info popup po spuštění pc
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: zodiac-game.info popup po spuštění pc
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.0.7 (07.03.2016)
Operating System: Windows 10 Education x64
Ran by Ondra (Administrator) on 20.08.2016 at 22:34:53,85
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
File System: 6
Successfully deleted: C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig (Folder)
Successfully deleted: C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd (Folder)
Successfully deleted: C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkojfkhlekighikafcpjkiklfbnlmeio (Folder)
Successfully deleted: C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak (Folder)
Successfully deleted: C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_gkojfkhlekighikafcpjkiklfbnlmeio_0.localstorage-journal (File)
Successfully deleted: C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_gkojfkhlekighikafcpjkiklfbnlmeio_0.localstorage (File)
Registry: 0
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 20.08.2016 at 22:36:00,88
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.0.7 (07.03.2016)
Operating System: Windows 10 Education x64
Ran by Ondra (Administrator) on 20.08.2016 at 22:34:53,85
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
File System: 6
Successfully deleted: C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig (Folder)
Successfully deleted: C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd (Folder)
Successfully deleted: C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkojfkhlekighikafcpjkiklfbnlmeio (Folder)
Successfully deleted: C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak (Folder)
Successfully deleted: C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_gkojfkhlekighikafcpjkiklfbnlmeio_0.localstorage-journal (File)
Successfully deleted: C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_gkojfkhlekighikafcpjkiklfbnlmeio_0.localstorage (File)
Registry: 0
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 20.08.2016 at 22:36:00,88
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Re: zodiac-game.info popup po spuštění pc
Provedl jsem restart, pořád nic nepomohlo 
.
.-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: zodiac-game.info popup po spuštění pc
Dejte znovu log FRST.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: zodiac-game.info popup po spuštění pc
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 20-08-2016
Ran by Ondra (administrator) on DESKTOP-A9E1KAA (20-08-2016 23:00:50)
Running from C:\Users\Ondra\Desktop
Loaded Profiles: Ondra (Available Profiles: Ondra)
Platform: Windows 10 Education Version 1607 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Cisco Systems, Inc.) C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Advanced Micro Devices) C:\Program Files\AMD\{920DEC42-4CA5-4d1d-9487-67BE645CDDFC}\amdacpusrsvc.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
() C:\Windows\System32\PnkBstrA.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(VIA Technologies, Inc.) C:\Windows\System32\ViakaraokeSrv.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
(Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
(Nota Inc.) C:\Program Files (x86)\Gyazo\GyStation.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(SteelSeries ApS) C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.7.102.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Hammer & Chisel, Inc.) C:\Users\Ondra\AppData\Local\Discord\app-0.0.295\Discord.exe
(Hammer & Chisel, Inc.) C:\Users\Ondra\AppData\Local\Discord\app-0.0.295\Discord.exe
(Hammer & Chisel, Inc.) C:\Users\Ondra\AppData\Local\Discord\app-0.0.295\Discord.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Microsoft® Windows® Operating System) C:\Windows\System32\Taskmgr.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [Cm108Sound] => C:\Windows\Syswow64\cm108.dll [8757248 2013-01-16] (C-Media Corporation)
HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-09-30] (Microsoft Corporation)
HKLM\...\Run: [StartCN] => C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe [6626696 2016-07-18] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [VirtualCloneDrive] => C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [88984 2013-03-10] (Elaborate Bytes AG)
HKLM-x32\...\Run: [zenvpn] => C:\Program Files (x86)\ZenVPN OpenVPN bundle\bin\zenvpn.exe
HKLM-x32\...\Run: [Cisco AnyConnect Secure Mobility Agent for Windows] => C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe [766464 2016-02-29] (Cisco Systems, Inc.)
HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [4101576 2014-06-24] (Safer-Networking Ltd.)
Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
HKU\S-1-5-21-2735073394-199789404-1462047816-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8641240 2016-02-12] (Piriform Ltd)
HKU\S-1-5-21-2735073394-199789404-1462047816-1001\...\Run: [Gyazo] => C:\Program Files (x86)\Gyazo\GyStation.exe [3582240 2016-06-02] (Nota Inc.)
HKU\S-1-5-21-2735073394-199789404-1462047816-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [2857248 2016-08-16] (Valve Corporation)
HKU\S-1-5-21-2735073394-199789404-1462047816-1001\...\Run: [SpybotPostWindows10UpgradeReInstall] => C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe [1011200 2015-07-28] (Safer-Networking Ltd.)
HKU\S-1-5-21-2735073394-199789404-1462047816-1001\...\Run: [Ondra] => explorer.exe hxxp://sd-steam.info <===== ATTENTION
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SteelSeries Engine 3.lnk [2016-04-05]
ShortcutTarget: SteelSeries Engine 3.lnk -> C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe (SteelSeries ApS)
Startup: C:\Users\Ondra\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Sledovat výstrahy inkoustu - HP Deskjet 2050 J510 series.lnk [2016-08-20]
ShortcutTarget: Sledovat výstrahy inkoustu - HP Deskjet 2050 J510 series.lnk -> C:\Program Files\HP\HP Deskjet 2050 J510 series\Bin\HPStatusBL.dll (Hewlett-Packard Co.)
BootExecute: autocheck autochk * sdnclean64.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 8.8.8.8 8.8.4.4
Tcpip\..\Interfaces\{816540e8-cc6f-45f8-9e1d-76072b0caa7e}: [DhcpNameServer] 8.8.8.8 8.8.4.4
Tcpip\..\Interfaces\{e80366ae-28fe-42cb-8e1c-c4c54da8d895}: [DhcpNameServer] 10.8.0.1
Internet Explorer:
==================
SearchScopes: HKU\S-1-5-21-2735073394-199789404-1462047816-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2016-08-19] (Microsoft Corporation)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2016-08-19] (Microsoft Corporation)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2016-08-19] (Microsoft Corporation)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\Office16\GROOVEEX.DLL [2016-08-19] (Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-08-19] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-08-19] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-08-19] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-08-19] (Microsoft Corporation)
FireFox:
========
FF Plugin-x32: @esn/esnlaunch,version=2.3.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll [2013-09-16] (ESN Social Software AB)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2016-08-19] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2016-08-19] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-08-19] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-08-19] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-01-21] (VideoLAN)
Chrome:
=======
CHR Session Restore: Default -> is enabled.
CHR Profile: C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Momentum New Tab Page) - C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\abdholagkagimalmpmohnkmpcbjomlgp [2016-08-20]
CHR Extension: (Super Netflix) - C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\aioencjhbaolepcoappllicjebblphoc [2016-08-20]
CHR Extension: (Adblock Plus) - C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-08-20]
CHR Extension: (Foxtab Speed Dial) - C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\fcoecifcadmambfikillppkoafmgachp [2016-08-20]
CHR Extension: (AdBlock) - C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-08-20]
CHR Extension: (Unlimited Free VPN - Hola) - C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkojfkhlekighikafcpjkiklfbnlmeio [2016-08-20]
CHR Extension: (Steam Database) - C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\kdbmhfkmnlmbkgbabkdealhhbfhlmmon [2016-08-20]
CHR Extension: (Lightning Speed Dial) - C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\kddckpmlbneidbekmajhmhikeegjdgcd [2016-08-20]
CHR Extension: (Instair Speed Dial) - C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\kikeacjcceacohckgiajooneiabebfjj [2016-08-20]
CHR Extension: (Infinite HD App) - C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\laealigljflmglcgncipdbmbjgjdpiim [2016-08-20]
CHR Extension: (Twitch Now) - C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\nlmbdmpjmlijibeockamioakdpmhjnpk [2016-08-20]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-08-20]
CHR Extension: (Chrome Media Router) - C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-08-20]
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 amdacpusrsvc; C:\Program Files\AMD\{920DEC42-4CA5-4d1d-9487-67BE645CDDFC}\amdacpusrsvc.exe [121856 2016-07-18] (Advanced Micro Devices) [File not signed]
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2944768 2016-07-31] (Microsoft Corporation)
S3 EasyAntiCheat; C:\WINDOWS\SysWOW64\EasyAntiCheat.exe [227104 2016-08-09] (EasyAntiCheat Ltd)
R2 ekrn; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2542216 2016-06-10] (ESET)
S3 ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [160256 2011-08-30] (Intel Corporation) [File not signed]
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2122248 2016-06-10] (Electronic Arts)
S3 PAExec; C:\Windows\PAExec.exe [189112 2016-08-07] (Power Admin LLC)
R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76152 2016-04-03] ()
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2016-04-02] ()
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1738168 2014-06-24] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2088408 2014-06-27] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2014-04-25] (Safer-Networking Ltd.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2889896 2016-07-17] (Microsoft Corporation)
R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [46736 2015-09-11] (VIA Technologies, Inc.)
S3 vmicvss; C:\Windows\System32\icsvcext.dll [349696 2016-07-16] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103720 2016-07-16] (Microsoft Corporation)
S3 wisvc; C:\Windows\system32\flightsettings.dll [614912 2016-07-16] (Microsoft Corporation)
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 amdacpksd; C:\WINDOWS\system32\drivers\amdacpksd.sys [313760 2016-07-25] (Advanced Micro Devices)
S0 amdkmafd; C:\Windows\System32\drivers\amdkmafd.sys [40720 2015-07-28] (Advanced Micro Devices, Inc.)
R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWT6.sys [101376 2016-06-02] (Advanced Micro Devices)
R3 bcmsmbsp; C:\Windows\System32\drivers\bcmsmbsp.sys [53024 2015-07-10] (Broadcom Corporation.)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [263336 2016-06-28] (ESET)
R0 edevmon; C:\Windows\System32\DRIVERS\edevmon.sys [199328 2016-06-28] (ESET)
S0 eelam; C:\Windows\System32\DRIVERS\eelam.sys [15488 2016-06-28] (ESET)
R1 ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [197288 2016-06-28] (ESET)
R2 epfwwfpr; C:\Windows\system32\DRIVERS\epfwwfpr.sys [181416 2016-06-28] (ESET)
S3 GVTDrv64; C:\Windows\GVTDrv64.sys [30528 2016-07-04] ()
S3 Hamachi; C:\Windows\System32\drivers\Hamdrv.sys [45680 2016-07-06] (LogMeIn Inc.)
R3 int0800; C:\Windows\System32\drivers\flashud.sys [51712 2009-09-09] (Intel Corporation)
S3 NetAdapterCx; C:\Windows\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
R3 SaiK0728; C:\Windows\system32\DRIVERS\SaiK0728.sys [180896 2015-10-13] (Saitek)
R3 ssdevfactory; C:\Windows\System32\drivers\ssdevfactory.sys [40568 2015-10-03] (SteelSeries ApS)
R3 uvhid; C:\Windows\System32\drivers\uvhid.sys [25592 2015-11-11] (Windows (R) Win 7 DDK provider)
S3 vpnva; C:\Windows\System32\drivers\vpnva64-6.sys [52592 2015-12-23] (Cisco Systems, Inc.)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
NETSVC: shpamsvc -> C:\Windows\system32\Windows.SharedPC.AccountManager.dll (Microsoft Corporation)
NETSVC: wisvc -> C:\Windows\system32\flightsettings.dll (Microsoft Corporation)
NETSVC: WpnService -> C:\Windows\system32\WpnService.dll (Microsoft Corporation)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-08-20 23:00 - 2016-08-20 23:00 - 02396160 _____ (Farbar) C:\Users\Ondra\Desktop\FRST64.exe
2016-08-20 23:00 - 2016-08-20 23:00 - 00029696 _____ C:\Users\Ondra\AppData\Local\MSGBOX.EXE
2016-08-20 23:00 - 2016-08-20 23:00 - 00016667 _____ C:\Users\Ondra\Desktop\FRST.txt
2016-08-20 23:00 - 2016-08-20 23:00 - 00015327 _____ C:\Users\Ondra\Desktop\LM.bat
2016-08-20 23:00 - 2016-08-20 23:00 - 00000000 ____D C:\Users\Ondra\Desktop\FRST-OlderVersion
2016-08-20 22:36 - 2016-08-20 22:36 - 00001454 _____ C:\Users\Ondra\Desktop\JRT.txt
2016-08-20 22:29 - 2016-08-20 22:29 - 00000000 ____D C:\Users\Ondra\AppData\Roaming\discord
2016-08-20 22:28 - 2016-08-20 22:16 - 00024064 _____ C:\WINDOWS\zoek-delete.exe
2016-08-20 22:16 - 2016-08-20 22:26 - 00000000 ____D C:\zoek_backup
2016-08-20 22:15 - 2016-08-20 22:15 - 01610560 _____ (Malwarebytes) C:\Users\Ondra\Desktop\JRT.exe
2016-08-20 22:15 - 2016-08-20 22:14 - 01309184 _____ C:\Users\Ondra\Desktop\zoek.exe
2016-08-19 21:55 - 2016-08-20 22:29 - 00000992 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-08-19 21:55 - 2016-08-20 22:29 - 00000988 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-08-19 21:55 - 2016-08-19 21:55 - 00004050 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2016-08-19 21:55 - 2016-08-19 21:55 - 00003818 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2016-08-19 21:34 - 2016-08-20 23:00 - 00000000 ____D C:\FRST
2016-08-19 20:40 - 2016-08-19 20:40 - 00000222 _____ C:\Users\Ondra\Desktop\Deus Ex Mankind Divided.url
2016-08-19 19:16 - 2016-08-19 19:16 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-08-19 19:06 - 2016-08-19 19:14 - 00001319 _____ C:\Users\Ondra\Desktop\Nový textový dokument.txt
2016-08-19 19:06 - 2016-08-19 19:06 - 00001319 _____ C:\Users\Ondra\Desktop\AdwCleaner[S0].txt
2016-08-19 15:30 - 2016-08-19 20:23 - 00000000 ____D C:\AdwCleaner
2016-08-19 15:23 - 2016-08-19 15:23 - 00000000 ____D C:\Users\Ondra\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome
2016-08-19 15:14 - 2016-08-19 19:57 - 00000000 ____D C:\Users\Ondra\AppData\Local\Google
2016-08-19 15:14 - 2016-08-19 15:14 - 00002344 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-08-19 15:14 - 2016-08-19 15:14 - 00000000 ____D C:\Program Files (x86)\Google
2016-08-19 15:02 - 2016-08-19 15:24 - 00000000 ____D C:\Program Files\trend micro
2016-08-19 15:02 - 2016-08-19 15:02 - 00000000 ____D C:\rsit
2016-08-19 14:36 - 2016-08-19 14:36 - 00000000 ____D C:\KVRT_Data
2016-08-19 14:25 - 2016-08-19 14:25 - 00000000 ____D C:\Program Files\Common Files\AV
2016-08-19 14:20 - 2016-08-19 14:31 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2016-08-19 14:20 - 2016-08-19 14:25 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2016-08-19 14:20 - 2016-08-19 14:20 - 00001460 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk
2016-08-19 14:20 - 2016-08-19 14:20 - 00001448 _____ C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2016-08-19 14:20 - 2016-08-19 14:20 - 00000000 ____D C:\WINDOWS\System32\Tasks\Safer-Networking
2016-08-19 14:20 - 2016-08-19 14:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2
2016-08-19 14:20 - 2013-09-20 10:49 - 00021040 _____ (Safer Networking Limited) C:\WINDOWS\system32\sdnclean64.exe
2016-08-19 13:43 - 2016-08-19 13:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
2016-08-19 13:43 - 2016-08-19 13:43 - 00000000 ____D C:\ProgramData\ESET
2016-08-19 13:43 - 2016-08-19 13:43 - 00000000 ____D C:\Program Files\ESET
2016-08-16 13:08 - 2016-08-19 19:16 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-08-16 13:08 - 2016-08-16 13:08 - 00140672 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2016-08-16 13:08 - 2016-08-16 13:08 - 00065408 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2016-08-16 13:08 - 2016-08-16 13:08 - 00027008 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2016-08-15 22:20 - 2016-08-15 22:20 - 00000000 ____D C:\WINDOWS\LastGood.Tmp
2016-08-15 15:58 - 2016-08-15 15:58 - 00000000 ____D C:\ProgramData\Steam
2016-08-13 01:52 - 2016-08-13 01:52 - 00000000 ____D C:\ProgramData\SkidRow
2016-08-12 20:14 - 2016-08-12 20:19 - 00000000 ____D C:\Users\Ondra\AppData\Roaming\HelloGames
2016-08-10 12:01 - 2016-08-02 10:58 - 00168800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2016-08-10 12:01 - 2016-08-02 10:53 - 02745224 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-08-10 12:01 - 2016-08-02 10:52 - 00619368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-08-10 12:01 - 2016-08-02 10:48 - 22219328 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-08-10 12:01 - 2016-08-02 10:48 - 00241496 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2016-08-10 12:01 - 2016-08-02 10:44 - 00151232 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2016-08-10 12:01 - 2016-08-02 10:44 - 00114192 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2016-08-10 12:01 - 2016-08-02 10:23 - 22572032 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-08-10 12:01 - 2016-08-02 10:21 - 02755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2016-08-10 12:01 - 2016-08-02 10:21 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll
2016-08-10 12:01 - 2016-08-02 10:20 - 00210944 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2016-08-10 12:01 - 2016-08-02 10:20 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2016-08-10 12:01 - 2016-08-02 10:15 - 00231424 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2016-08-10 12:01 - 2016-08-02 10:15 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll
2016-08-10 12:01 - 2016-08-02 10:14 - 00289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeveloperOptionsSettingsHandlers.dll
2016-08-10 12:01 - 2016-08-02 10:13 - 01081856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2016-08-10 12:01 - 2016-08-02 10:12 - 00261120 _____ (Microsoft Corporation) C:\WINDOWS\system32\indexeddbserver.dll
2016-08-10 12:01 - 2016-08-02 10:11 - 00495104 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataSenseHandlers.dll
2016-08-10 12:01 - 2016-08-02 10:11 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-08-10 12:01 - 2016-08-02 10:10 - 00509952 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Bluetooth.dll
2016-08-10 12:01 - 2016-08-02 10:09 - 00496128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.UserAccountsHandlers.dll
2016-08-10 12:01 - 2016-08-02 10:07 - 23682048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-08-10 12:01 - 2016-08-02 10:07 - 09125888 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-08-10 12:01 - 2016-08-02 10:03 - 04749312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-08-10 12:01 - 2016-08-02 10:00 - 05511168 _____ (Microsoft Corporation) C:\WINDOWS\system32\aclui.dll
2016-08-10 12:01 - 2016-08-02 09:59 - 08124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-08-10 12:01 - 2016-08-02 09:58 - 01656320 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2016-08-10 12:01 - 2016-08-02 09:57 - 01491456 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-08-10 12:01 - 2016-08-02 09:56 - 06664192 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe
2016-08-10 12:01 - 2016-08-02 09:56 - 01785856 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-08-10 12:01 - 2016-08-02 09:56 - 00909312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2016-08-10 12:01 - 2016-08-02 09:55 - 03617280 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-08-10 12:01 - 2016-08-02 09:55 - 01508864 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-08-10 12:01 - 2016-08-02 09:52 - 00115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll
2016-08-10 12:01 - 2016-08-02 06:56 - 02251440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-08-10 12:01 - 2016-08-02 06:51 - 20965240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2016-08-10 12:01 - 2016-08-02 06:47 - 00079536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2016-08-10 12:01 - 2016-08-02 06:39 - 02755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2016-08-10 12:01 - 2016-08-02 06:37 - 00121344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll
2016-08-10 12:01 - 2016-08-02 06:37 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2016-08-10 12:01 - 2016-08-02 06:36 - 00150528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2016-08-10 12:01 - 2016-08-02 06:33 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Shell.Search.UriHandler.dll
2016-08-10 12:01 - 2016-08-02 06:30 - 00822784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2016-08-10 12:01 - 2016-08-02 06:28 - 19423232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2016-08-10 12:01 - 2016-08-02 06:27 - 07623168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2016-08-10 12:01 - 2016-08-02 06:26 - 19417600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-08-10 12:01 - 2016-08-02 06:26 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\indexeddbserver.dll
2016-08-10 12:01 - 2016-08-02 06:25 - 05398016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aclui.dll
2016-08-10 12:01 - 2016-08-02 06:25 - 01456640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2016-08-10 12:01 - 2016-08-02 06:23 - 06474752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspaint.exe
2016-08-10 12:01 - 2016-08-02 06:16 - 06044672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2016-08-10 12:01 - 2016-08-02 06:13 - 01600512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-08-10 12:01 - 2016-08-02 06:13 - 00712192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2016-08-10 12:01 - 2016-08-02 06:12 - 02999296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2016-08-10 12:01 - 2016-08-02 06:09 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offlinelsa.dll
2016-08-10 01:01 - 2016-08-10 17:21 - 00355064 _____ C:\WINDOWS\system32\Drivers\EasyAntiCheat.sys
2016-08-10 01:01 - 2016-08-09 21:28 - 00227104 _____ (EasyAntiCheat Ltd) C:\WINDOWS\SysWOW64\EasyAntiCheat.exe
2016-08-10 00:50 - 2016-08-10 01:00 - 00000000 ____D C:\Users\Ondra\AppData\Roaming\SpaceEngineers
2016-08-09 21:17 - 2016-08-09 21:17 - 00000222 _____ C:\Users\Ondra\Desktop\Shelter 2.url
2016-08-09 21:17 - 2016-08-09 21:17 - 00000222 _____ C:\Users\Ondra\Desktop\Rust.url
2016-08-09 21:16 - 2016-08-09 21:16 - 00000222 _____ C:\Users\Ondra\Desktop\Space Engineers.url
2016-08-09 21:08 - 2016-08-09 21:08 - 00000222 _____ C:\Users\Ondra\Desktop\KHOLAT.url
2016-08-09 21:05 - 2016-08-09 21:05 - 00000222 _____ C:\Users\Ondra\Desktop\Savage Lands.url
2016-08-08 15:02 - 2016-08-08 15:02 - 00003558 _____ C:\WINDOWS\System32\Tasks\Ondra
2016-08-07 23:25 - 2016-08-07 23:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Settings
2016-08-07 21:14 - 2016-08-19 14:55 - 00000000 ___DC C:\WINDOWS\Panther
2016-08-07 21:12 - 2016-08-07 21:12 - 02190688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-08-07 21:12 - 2016-08-07 21:12 - 01708544 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2016-08-07 21:12 - 2016-08-07 21:12 - 01461200 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2016-08-07 21:12 - 2016-08-07 21:12 - 01435896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2016-08-07 21:12 - 2016-08-07 21:12 - 01418304 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2016-08-07 21:12 - 2016-08-07 21:12 - 01265424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2016-08-07 21:12 - 2016-08-07 21:12 - 01260384 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2016-08-07 21:12 - 2016-08-07 21:12 - 00843104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2016-08-07 21:12 - 2016-08-07 21:12 - 00770048 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2016-08-07 21:12 - 2016-08-07 21:12 - 00658784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2016-08-07 21:12 - 2016-08-07 21:12 - 00402272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2016-08-07 21:12 - 2016-08-07 21:12 - 00389000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtapi.dll
2016-08-07 21:12 - 2016-08-07 21:12 - 00297552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wevtapi.dll
2016-08-07 21:12 - 2016-08-07 21:12 - 00227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2016-08-07 21:12 - 2016-08-07 21:12 - 00062816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2016-08-07 21:12 - 2016-08-07 21:12 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
2016-08-07 21:12 - 2016-08-07 21:12 - 00000000 ____D C:\Windows.old
2016-08-07 21:12 - 2016-08-07 21:12 - 00000000 ____D C:\Program Files\CMAK
2016-08-07 21:12 - 2016-08-07 21:12 - 00000000 ____D C:\Program Files (x86)\CMAK
2016-08-07 21:11 - 2016-08-07 21:11 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2016-08-07 21:11 - 2016-08-07 21:11 - 00000000 ____D C:\Program Files\Reference Assemblies
2016-08-07 21:11 - 2016-08-07 21:11 - 00000000 ____D C:\Program Files\MSBuild
2016-08-07 21:11 - 2016-08-07 21:11 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2016-08-07 21:11 - 2016-08-07 21:11 - 00000000 ____D C:\Program Files (x86)\MSBuild
2016-08-07 21:11 - 2016-05-25 15:31 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2016-08-07 21:11 - 2016-05-25 15:31 - 00124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2016-08-07 21:11 - 2016-05-25 15:31 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2016-08-07 21:11 - 2016-05-25 12:03 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2016-08-07 21:11 - 2016-05-25 12:03 - 00103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2016-08-07 21:11 - 2016-05-25 12:03 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2016-08-07 21:09 - 2016-08-07 21:13 - 00000000 ____D C:\Users\Ondra\AppData\Local\UnrealEngine
2016-08-07 21:09 - 2016-08-07 21:09 - 00000000 ____H C:\$WINRE_BACKUP_PARTITION.MARKER
2016-08-07 21:09 - 2016-08-07 21:09 - 00000000 ____D C:\Users\Ondra\AppData\Local\AbzuGame
2016-08-07 20:34 - 2016-08-07 20:34 - 00000000 ____D C:\ProgramData\Microsoft OneDrive
2016-08-07 20:33 - 2016-08-07 20:49 - 00000000 ____D C:\Users\Ondra\AppData\Local\ConnectedDevicesPlatform
2016-08-07 20:33 - 2016-08-07 20:33 - 00000020 ___SH C:\Users\Ondra\ntuser.ini
2016-08-07 20:23 - 2016-08-07 20:23 - 00000000 _SHDL C:\Users\Default\Šablony
2016-08-07 20:23 - 2016-08-07 20:23 - 00000000 _SHDL C:\Users\Default\Soubory cookie
2016-08-07 20:23 - 2016-08-07 20:23 - 00000000 _SHDL C:\Users\Default\Poslední
2016-08-07 20:23 - 2016-08-07 20:23 - 00000000 _SHDL C:\Users\Default\Okolní tiskárny
2016-08-07 20:23 - 2016-08-07 20:23 - 00000000 _SHDL C:\Users\Default\Okolní síť
2016-08-07 20:23 - 2016-08-07 20:23 - 00000000 _SHDL C:\Users\Default\Nabídka Start
2016-08-07 20:23 - 2016-08-07 20:23 - 00000000 _SHDL C:\Users\Default\Dokumenty
2016-08-07 20:23 - 2016-08-07 20:23 - 00000000 _SHDL C:\Users\Default\Documents\Obrázky
2016-08-07 20:23 - 2016-08-07 20:23 - 00000000 _SHDL C:\Users\Default\Documents\Hudba
2016-08-07 20:23 - 2016-08-07 20:23 - 00000000 _SHDL C:\Users\Default\Documents\Filmy
2016-08-07 20:23 - 2016-08-07 20:23 - 00000000 _SHDL C:\Users\Default\Data aplikací
2016-08-07 20:23 - 2016-08-07 20:23 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2016-08-07 20:23 - 2016-08-07 20:23 - 00000000 _SHDL C:\Users\Default\AppData\Local\Data aplikací
2016-08-07 20:23 - 2016-08-07 20:23 - 00000000 _SHDL C:\Users\Default User\Documents\Obrázky
2016-08-07 20:23 - 2016-08-07 20:23 - 00000000 _SHDL C:\Users\Default User\Documents\Hudba
2016-08-07 20:23 - 2016-08-07 20:23 - 00000000 _SHDL C:\Users\Default User\Documents\Filmy
2016-08-07 20:23 - 2016-08-07 20:23 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2016-08-07 20:23 - 2016-08-07 20:23 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Data aplikací
2016-08-07 20:23 - 2016-08-07 20:23 - 00000000 ____D C:\ProgramData\USOShared
2016-08-07 20:22 - 2016-08-20 22:38 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-08-07 20:22 - 2016-08-14 21:38 - 00003860 _____ C:\WINDOWS\System32\Tasks\ESET Windows 10 upgrade – Perform upgrade
2016-08-07 20:22 - 2016-08-07 23:26 - 00004296 _____ C:\WINDOWS\System32\Tasks\AMD Updater
2016-08-07 20:22 - 2016-08-07 20:22 - 00022924 _____ C:\WINDOWS\system32\emptyregdb.dat
2016-08-07 20:22 - 2016-08-07 20:22 - 00007623 _____ C:\WINDOWS\diagwrn.xml
2016-08-07 20:22 - 2016-08-07 20:22 - 00007623 _____ C:\WINDOWS\diagerr.xml
2016-08-07 20:22 - 2016-08-07 20:22 - 00002664 _____ C:\WINDOWS\System32\Tasks\GyazoUpdateTaskMachineDaily
2016-08-07 20:22 - 2016-08-07 20:22 - 00002524 _____ C:\WINDOWS\System32\Tasks\GyazoUpdateTaskMachine
2016-08-07 20:22 - 2016-08-07 20:22 - 00002218 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2016-08-07 20:20 - 2016-08-20 22:26 - 00000000 ____D C:\Users\Default\AppData\Local\Google
2016-08-07 20:20 - 2016-08-20 22:26 - 00000000 ____D C:\Users\Default User\AppData\Local\Google
2016-08-07 20:20 - 2016-08-07 20:20 - 00001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2016-08-07 20:16 - 2016-08-08 00:44 - 00000000 ____D C:\Users\Ondra
2016-08-07 20:16 - 2016-08-07 20:21 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2016-08-07 20:16 - 2016-08-07 20:16 - 00000000 _SHDL C:\Users\Ondra\Šablony
2016-08-07 20:16 - 2016-08-07 20:16 - 00000000 _SHDL C:\Users\Ondra\Soubory cookie
2016-08-07 20:16 - 2016-08-07 20:16 - 00000000 _SHDL C:\Users\Ondra\Poslední
2016-08-07 20:16 - 2016-08-07 20:16 - 00000000 _SHDL C:\Users\Ondra\Okolní tiskárny
2016-08-07 20:16 - 2016-08-07 20:16 - 00000000 _SHDL C:\Users\Ondra\Okolní síť
2016-08-07 20:16 - 2016-08-07 20:16 - 00000000 _SHDL C:\Users\Ondra\Nabídka Start
2016-08-07 20:16 - 2016-08-07 20:16 - 00000000 _SHDL C:\Users\Ondra\Dokumenty
2016-08-07 20:16 - 2016-08-07 20:16 - 00000000 _SHDL C:\Users\Ondra\Documents\Obrázky
2016-08-07 20:16 - 2016-08-07 20:16 - 00000000 _SHDL C:\Users\Ondra\Documents\Hudba
2016-08-07 20:16 - 2016-08-07 20:16 - 00000000 _SHDL C:\Users\Ondra\Documents\Filmy
2016-08-07 20:16 - 2016-08-07 20:16 - 00000000 _SHDL C:\Users\Ondra\Data aplikací
2016-08-07 20:16 - 2016-08-07 20:16 - 00000000 _SHDL C:\Users\Ondra\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2016-08-07 20:16 - 2016-08-07 20:16 - 00000000 _SHDL C:\Users\Ondra\AppData\Local\Data aplikací
2016-08-07 20:15 - 2016-08-20 22:37 - 00065536 _____ C:\WINDOWS\system32\spu_storage.bin
2016-08-07 20:15 - 2016-08-07 23:25 - 00000000 ____D C:\Program Files\AMD
2016-08-07 20:15 - 2016-08-07 20:15 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_SaiK0728_01009.Wdf
2016-08-07 20:15 - 2016-08-07 20:15 - 00000000 ____D C:\Program Files\VIA
2016-08-07 20:15 - 2016-08-07 20:15 - 00000000 ____D C:\Program Files\Common Files\ATI Technologies
2016-08-07 20:15 - 2016-08-07 20:15 - 00000000 _____ C:\WINDOWS\ativpsrm.bin
2016-08-07 20:15 - 2016-07-16 13:41 - 02716672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2016-08-07 20:14 - 2016-08-20 03:18 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2016-08-07 20:14 - 2016-08-10 19:22 - 00389512 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-08-07 20:14 - 2016-08-07 20:14 - 00000000 ____D C:\WINDOWS\ServiceProfiles
2016-08-07 20:01 - 2016-08-07 20:04 - 00000000 ___HD C:\$WINDOWS.~BT
2016-08-07 20:00 - 2016-08-07 20:01 - 00000036 _____ C:\WINDOWS\progress.ini
2016-08-07 19:57 - 2016-08-07 19:57 - 00000000 ___HD C:\$SysReset
2016-08-07 19:52 - 2016-08-07 20:32 - 00000000 ___HD C:\$GetCurrent
2016-08-07 19:51 - 2016-08-07 20:33 - 00000000 ____D C:\Windows10Upgrade
2016-08-07 19:51 - 2016-08-07 19:51 - 00000731 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pomocník při upgradu na Windows 10.lnk
2016-08-07 19:46 - 2016-08-07 19:46 - 00000000 ____D C:\Users\Ondra\Documents\League of Legends
2016-08-07 19:29 - 2016-08-07 20:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\League of Legends
2016-08-07 19:29 - 2016-08-07 19:29 - 00001585 _____ C:\Users\Public\Desktop\League of Legends.lnk
2016-08-07 19:29 - 2016-08-07 19:29 - 00000000 ____D C:\Riot Games
2016-08-07 19:13 - 2016-08-07 19:13 - 00000000 ____D C:\Users\Ondra\AppData\Roaming\ATI
2016-08-07 19:13 - 2016-08-07 19:13 - 00000000 ____D C:\ProgramData\ATI
2016-08-07 18:00 - 2016-08-07 18:00 - 00000000 ____D C:\Users\Ondra\AppData\Local\ATI
2016-08-07 17:57 - 2016-08-12 20:19 - 00000000 ____D C:\Users\Ondra\AppData\Local\AMD
2016-08-07 17:57 - 2016-08-07 17:57 - 00000000 ____D C:\Program Files (x86)\AMD
2016-08-07 17:57 - 2016-06-23 20:22 - 00264992 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2016-08-07 17:57 - 2016-06-23 20:21 - 00257824 _____ C:\WINDOWS\system32\vulkan-1.dll
2016-08-07 17:57 - 2016-06-23 20:21 - 00110880 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2016-08-07 17:57 - 2016-06-23 20:20 - 00125216 _____ C:\WINDOWS\system32\vulkaninfo.exe
2016-08-07 17:56 - 2016-08-07 23:21 - 00000000 ____D C:\AMD
2016-08-07 16:58 - 2016-08-07 17:53 - 00000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2016-08-03 15:55 - 2016-08-07 17:53 - 00189112 _____ (Power Admin LLC) C:\WINDOWS\PAExec.exe
2016-08-03 10:49 - 2016-08-19 13:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2016-08-02 18:45 - 2016-08-02 18:45 - 00000000 ____D C:\Users\Ondra\AppData\LocalLow\Weappy
2016-08-01 15:35 - 2016-08-01 15:35 - 00000000 ____D C:\Users\Ondra\Documents\Square Enix
2016-08-01 14:49 - 2016-08-01 14:49 - 00000000 ____D C:\Users\Ondra\AppData\Roaming\Frontier Developments
2016-08-01 14:49 - 2016-08-01 14:49 - 00000000 ____D C:\Users\Ondra\AppData\Local\Frontier Developments
2016-08-01 14:20 - 2016-08-01 14:20 - 00000000 ____D C:\Users\Ondra\AppData\Local\Frontier_Developments
2016-08-01 13:57 - 2016-08-01 13:57 - 00000222 _____ C:\Users\Ondra\Desktop\Just Cause 3.url
2016-07-28 13:09 - 2016-07-28 13:09 - 00000000 ____D C:\Users\Ondra\AppData\Local\LogMeIn
2016-07-28 13:09 - 2016-07-28 13:09 - 00000000 ____D C:\ProgramData\LogMeIn
2016-07-28 13:06 - 2016-07-28 13:06 - 00033344 _____ (LogMeIn, Inc.) C:\WINDOWS\system32\Drivers\hamachi.sys
2016-07-28 13:04 - 2016-07-28 20:04 - 00000000 ____D C:\Users\Ondra\AppData\Roaming\Seznam.cz
2016-07-28 13:04 - 2016-07-28 13:08 - 00000000 ____D C:\Users\Ondra\AppData\Roaming\Hamachi
2016-07-28 12:30 - 2016-07-28 12:30 - 00000000 ____D C:\Users\Ondra\Documents\Commandos II
2016-07-28 12:25 - 2016-07-28 12:25 - 00000220 _____ C:\Users\Ondra\Desktop\Commandos 2 Men of Courage.url
2016-07-27 12:37 - 2016-07-27 12:37 - 00000000 ____D C:\dev
2016-07-26 15:13 - 2016-07-26 15:13 - 00000000 ____D C:\Users\Ondra\AppData\Local\Fallout4
2016-07-26 15:04 - 2016-08-07 20:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\by.xatab
2016-07-26 15:04 - 2016-07-26 15:04 - 00000714 _____ C:\Users\Ondra\Desktop\Fallout 4.lnk
2016-07-25 22:56 - 2016-07-25 22:56 - 10284832 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiumd6a.dll
2016-07-25 22:56 - 2016-07-25 22:56 - 08864056 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiumd64.dll
2016-07-25 22:56 - 2016-07-25 22:56 - 07234256 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiumdag.dll
2016-07-25 22:55 - 2016-07-25 22:55 - 08653128 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdxc64.dll
2016-07-25 22:55 - 2016-07-25 22:55 - 07044704 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdxc32.dll
2016-07-25 22:55 - 2016-07-25 22:55 - 00474992 _____ C:\WINDOWS\system32\amdmiracast.dll
2016-07-25 22:55 - 2016-07-25 22:55 - 00160792 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiu9p64.dll
2016-07-25 22:55 - 2016-07-25 22:55 - 00151456 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdhcp64.dll
2016-07-25 22:55 - 2016-07-25 22:55 - 00135288 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdhcp32.dll
2016-07-25 22:55 - 2016-07-25 22:55 - 00133808 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiu9pag.dll
2016-07-25 22:55 - 2016-07-25 22:55 - 00119744 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atimpc64.dll
2016-07-25 22:55 - 2016-07-25 22:55 - 00119744 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdpcom64.dll
2016-07-25 22:55 - 2016-07-25 22:55 - 00102040 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atimpc32.dll
2016-07-25 22:55 - 2016-07-25 22:55 - 00102040 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdpcom32.dll
2016-07-25 22:54 - 2016-07-25 22:54 - 00155616 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdave64.dll
2016-07-25 22:54 - 2016-07-25 22:54 - 00134776 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdave32.dll
2016-07-25 22:53 - 2016-07-25 22:53 - 26632720 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atioglxx.dll
2016-07-25 22:53 - 2016-07-25 22:53 - 00874520 _____ (AMD) C:\WINDOWS\system32\coinst_16.30.dll
2016-07-25 22:53 - 2016-07-25 22:53 - 00279056 _____ (AMD) C:\WINDOWS\system32\atitmm64.dll
2016-07-25 22:53 - 2016-07-25 22:53 - 00267288 _____ C:\WINDOWS\system32\GameManager64.dll
2016-07-25 22:53 - 2016-07-25 22:53 - 00261656 _____ C:\WINDOWS\system32\clinfo.exe
2016-07-25 22:53 - 2016-07-25 22:53 - 00260112 _____ C:\WINDOWS\system32\hsa-thunk64.dll
2016-07-25 22:53 - 2016-07-25 22:53 - 00225808 _____ C:\WINDOWS\SysWOW64\hsa-thunk.dll
2016-07-25 22:53 - 2016-07-25 22:53 - 00151056 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mantle64.dll
2016-07-25 22:53 - 2016-07-25 22:53 - 00128528 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atisamu64.dll
2016-07-25 22:53 - 2016-07-25 22:53 - 00126488 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mantle32.dll
2016-07-25 22:53 - 2016-07-25 22:53 - 00121872 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mantleaxl64.dll
2016-07-25 22:53 - 2016-07-25 22:53 - 00110104 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atisamu32.dll
2016-07-25 22:53 - 2016-07-25 22:53 - 00012816 _____ (Microsoft Corporation) C:\WINDOWS\system32\detoured.dll
2016-07-25 22:52 - 2016-07-25 22:52 - 15720464 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\aticaldd64.dll
2016-07-25 22:52 - 2016-07-25 22:52 - 00513040 _____ (AMD) C:\WINDOWS\system32\atieclxx.exe
2016-07-25 22:52 - 2016-07-25 22:52 - 00451088 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atidemgy.dll
2016-07-25 22:52 - 2016-07-25 22:52 - 00278544 _____ (AMD) C:\WINDOWS\system32\atiesrxx.exe
2016-07-25 22:52 - 2016-07-25 22:52 - 00222736 _____ C:\WINDOWS\system32\atieah64.exe
2016-07-25 22:52 - 2016-07-25 22:52 - 00200720 _____ C:\WINDOWS\SysWOW64\atieah32.exe
2016-07-25 22:52 - 2016-07-25 22:52 - 00194064 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atig6txx.dll
2016-07-25 22:52 - 2016-07-25 22:52 - 00167952 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atigktxx.dll
2016-07-25 22:52 - 2016-07-25 22:52 - 00115216 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atig6pxx.dll
2016-07-25 22:52 - 2016-07-25 22:52 - 00102416 _____ (AMD) C:\WINDOWS\system32\atimuixx.dll
2016-07-25 22:52 - 2016-07-25 22:52 - 00099856 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiglpxx.dll
2016-07-25 22:52 - 2016-07-25 22:52 - 00099856 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiglpxx.dll
2016-07-25 22:52 - 2016-07-25 22:52 - 00071184 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\aticalrt64.dll
2016-07-25 22:52 - 2016-07-25 22:52 - 00060944 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\aticalrt.dll
2016-07-25 22:52 - 2016-07-25 22:52 - 00059920 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\ATIODCLI.exe
2016-07-25 22:51 - 2016-07-25 22:51 - 48806416 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\amdocl64.dll
2016-07-25 22:51 - 2016-07-25 22:51 - 14311440 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\aticaldd.dll
2016-07-25 22:51 - 2016-07-25 22:51 - 08827920 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdvlk64.dll
2016-07-25 22:51 - 2016-07-25 22:51 - 07084560 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdvlk32.dll
2016-07-25 22:51 - 2016-07-25 22:51 - 02369040 _____ C:\WINDOWS\system32\amdoclvp9lib64.dll
2016-07-25 22:51 - 2016-07-25 22:51 - 02279440 _____ C:\WINDOWS\SysWOW64\amdoclvp9lib32.dll
2016-07-25 22:51 - 2016-07-25 22:51 - 02138640 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amfrt64.dll
2016-07-25 22:51 - 2016-07-25 22:51 - 01828880 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amfrt32.dll
2016-07-25 22:51 - 2016-07-25 22:51 - 01318416 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiadlxx.dll
2016-07-25 22:51 - 2016-07-25 22:51 - 00985104 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxy.dll
2016-07-25 22:51 - 2016-07-25 22:51 - 00985104 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxx.dll
2016-07-25 22:51 - 2016-07-25 22:51 - 00394256 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiapfxx.exe
2016-07-25 22:51 - 2016-07-25 22:51 - 00064528 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\aticalcl64.dll
2016-07-25 22:51 - 2016-07-25 22:51 - 00057872 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\aticalcl.dll
2016-07-25 22:51 - 2016-07-25 22:51 - 00052240 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\ati2erec.dll
2016-07-25 22:50 - 2016-07-25 22:50 - 38257680 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\amdocl.dll
2016-07-25 22:50 - 2016-07-25 22:50 - 27480592 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\amdocl12cl64.dll
2016-07-25 22:50 - 2016-07-25 22:50 - 21632528 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\amdocl12cl.dll
2016-07-25 22:50 - 2016-07-25 22:50 - 00059408 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmmcl6.dll
2016-07-25 22:50 - 2016-07-25 22:50 - 00047120 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdmmcl.dll
2016-07-25 22:49 - 2016-07-25 22:49 - 08619024 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmantle64.dll
2016-07-25 22:49 - 2016-07-25 22:49 - 06947344 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdmantle32.dll
2016-07-25 22:49 - 2016-07-25 22:49 - 00742928 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdlvr64.dll
2016-07-25 22:49 - 2016-07-25 22:49 - 00618512 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdlvr32.dll
2016-07-25 22:49 - 2016-07-25 22:49 - 00313760 _____ (Advanced Micro Devices) C:\WINDOWS\system32\Drivers\amdacpksd.sys
2016-07-25 22:49 - 2016-07-25 22:49 - 00213520 _____ C:\WINDOWS\SysWOW64\amdgfxinfo32.dll
2016-07-25 22:49 - 2016-07-25 22:49 - 00193040 _____ C:\WINDOWS\system32\amdhdl64.dll
2016-07-25 22:49 - 2016-07-25 22:49 - 00173072 _____ C:\WINDOWS\SysWOW64\amdhdl32.dll
2016-07-25 22:49 - 2016-07-25 22:49 - 00104984 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2016-07-25 22:49 - 2016-07-25 22:49 - 00095760 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2016-07-25 22:49 - 2016-07-25 22:49 - 00075280 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmcl64.dll
2016-07-25 22:49 - 2016-07-25 22:49 - 00058896 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdmcl32.dll
2016-07-25 22:45 - 2016-07-25 22:45 - 32548376 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atio6axx.dll
2016-07-25 22:45 - 2016-07-25 22:45 - 00341520 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\ATIODE.exe
2016-07-25 22:45 - 2016-07-25 22:45 - 00283664 _____ C:\WINDOWS\system32\dgtrayicon.exe
2016-07-25 22:45 - 2016-07-25 22:45 - 00240664 _____ C:\WINDOWS\system32\amdgfxinfo64.dll
2016-07-25 22:45 - 2016-07-25 22:45 - 00100880 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mantleaxl32.dll
2016-07-25 13:40 - 2016-07-25 13:40 - 00149008 _____ C:\WINDOWS\system32\samu_krnl_ci.sbin
2016-07-25 13:40 - 2016-07-25 13:40 - 00117808 _____ C:\WINDOWS\system32\kapp_ci.sbin
2016-07-25 13:40 - 2016-07-25 13:40 - 00112336 _____ C:\WINDOWS\system32\kapp_si.sbin
2016-07-25 13:39 - 2016-07-25 13:39 - 03471376 _____ C:\WINDOWS\SysWOW64\atiumdva.cap
2016-07-25 13:39 - 2016-07-25 13:39 - 03437632 _____ C:\WINDOWS\system32\atiumd6a.cap
2016-07-25 13:39 - 2016-07-25 13:39 - 00368672 _____ C:\WINDOWS\system32\ativvaxy_el_nd.dat
2016-07-25 13:39 - 2016-07-25 13:39 - 00322736 _____ C:\WINDOWS\system32\ativvaxy_vi_nd.dat
2016-07-25 13:39 - 2016-07-25 13:39 - 00270912 _____ C:\WINDOWS\system32\ativvaxy_stn_nd.dat
2016-07-25 13:39 - 2016-07-25 13:39 - 00266816 _____ C:\WINDOWS\system32\ativvaxy_cz_nd.dat
2016-07-25 13:39 - 2016-07-25 13:39 - 00260980 _____ C:\WINDOWS\system32\ativvaxy_FJ.dat
2016-07-25 13:39 - 2016-07-25 13:39 - 00260720 _____ C:\WINDOWS\system32\ativvaxy_FJ_nd.dat
2016-07-25 13:39 - 2016-07-25 13:39 - 00234292 _____ C:\WINDOWS\system32\ativvaxy_cik.dat
2016-07-25 13:39 - 2016-07-25 13:39 - 00234032 _____ C:\WINDOWS\system32\ativvaxy_cik_nd.dat
2016-07-25 13:39 - 2016-07-25 13:39 - 00177280 _____ C:\WINDOWS\system32\ativce03.dat
2016-07-25 13:39 - 2016-07-25 13:39 - 00100816 _____ C:\WINDOWS\system32\ativce02.dat
2016-07-25 13:38 - 2016-07-25 13:38 - 00731440 _____ C:\WINDOWS\SysWOW64\atiapfxx.blb
2016-07-25 13:38 - 2016-07-25 13:38 - 00731440 _____ C:\WINDOWS\system32\atiapfxx.blb
2016-07-25 13:37 - 2016-07-25 13:37 - 00890373 _____ C:\WINDOWS\system32\amdicdxx.dat
2016-07-25 13:37 - 2016-07-25 13:37 - 00175584 _____ C:\WINDOWS\system32\amde31a.dat
2016-07-25 13:37 - 2016-07-25 13:37 - 00166624 _____ C:\WINDOWS\system32\amde34b.dat
2016-07-25 13:37 - 2016-07-25 13:37 - 00166624 _____ C:\WINDOWS\system32\amde34a.dat
2016-07-25 13:37 - 2016-07-25 13:37 - 00016827 _____ C:\WINDOWS\system32\AMDKernelEvents.man
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-08-20 22:53 - 2016-03-12 23:50 - 00000000 ____D C:\Program Files (x86)\Steam
2016-08-20 22:52 - 2016-07-16 13:45 - 00000000 ____D C:\WINDOWS\INF
2016-08-20 22:52 - 2016-04-13 20:45 - 00000000 ____D C:\ProgramData\Apple
2016-08-20 22:44 - 2016-07-17 00:20 - 00566938 _____ C:\WINDOWS\system32\perfh005.dat
2016-08-20 22:44 - 2016-07-17 00:20 - 00118676 _____ C:\WINDOWS\system32\perfc005.dat
2016-08-20 22:44 - 2016-03-12 22:03 - 01694816 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-08-20 22:37 - 2016-07-16 08:04 - 00131072 _____ C:\WINDOWS\system32\config\BBI
2016-08-20 22:26 - 2015-10-30 09:24 - 00000000 ___HD C:\WINDOWS\system32\GroupPolicy
2016-08-20 03:26 - 2016-03-13 00:16 - 00000000 ____D C:\Users\Ondra\AppData\Roaming\vlc
2016-08-19 21:53 - 2016-04-08 20:37 - 00000008 __RSH C:\ProgramData\ntuser.pol
2016-08-19 21:07 - 2016-04-11 12:30 - 00000000 ____D C:\Users\Ondra\AppData\Roaming\DesktopOK
2016-08-19 19:07 - 2016-07-16 13:47 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-08-19 19:07 - 2016-03-20 20:05 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2016-08-19 14:55 - 2016-03-12 23:52 - 00000000 ____D C:\Users\Ondra\AppData\Roaming\TS3Client
2016-08-19 14:51 - 2016-03-31 00:41 - 00007600 _____ C:\Users\Ondra\AppData\Local\Resmon.ResmonCfg
2016-08-19 14:37 - 2016-04-02 22:35 - 00000000 ____D C:\Program Files (x86)\Battlelog Web Plugins
2016-08-19 13:44 - 2016-07-16 13:47 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2016-08-18 23:03 - 2016-03-25 23:42 - 00000000 ____D C:\Users\Ondra\AppData\Local\Battle.net
2016-08-18 21:37 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-08-18 21:34 - 2016-03-25 23:42 - 00000000 ____D C:\Program Files (x86)\Battle.net
2016-08-17 14:46 - 2016-07-16 13:47 - 00000000 ___HD C:\Program Files\WindowsApps
2016-08-15 15:58 - 2016-03-13 12:50 - 00000000 ____D C:\Users\Ondra\Documents\My Games
2016-08-14 00:26 - 2016-03-12 23:32 - 00000000 ____D C:\Program Files (x86)\SpeedFan
2016-08-12 12:32 - 2016-06-01 15:51 - 00000000 ____D C:\Users\Ondra\Documents\The Witcher 3
2016-08-11 12:08 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\rescache
2016-08-10 19:22 - 2016-02-13 15:24 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-08-10 18:47 - 2016-07-16 13:47 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-08-10 18:47 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\lv-LV
2016-08-10 18:47 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\lt-LT
2016-08-10 18:47 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\et-EE
2016-08-10 18:47 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\es-MX
2016-08-10 18:47 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\en-GB
2016-08-10 18:47 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-08-10 18:47 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\ShellExperiences
2016-08-10 16:23 - 2016-07-16 13:36 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-08-10 16:22 - 2016-03-13 01:26 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-08-10 16:20 - 2016-03-13 01:26 - 147640136 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-08-08 09:29 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\appcompat
2016-08-07 22:14 - 2016-03-12 22:00 - 00000000 ____D C:\Users\Ondra\AppData\Local\Packages
2016-08-07 21:14 - 2016-07-16 13:49 - 00000000 ____D C:\WINDOWS\Setup
2016-08-07 21:14 - 2016-07-16 13:47 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template
2016-08-07 21:11 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2016-08-07 21:11 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\MUI
2016-08-07 21:11 - 2016-07-16 13:43 - 00471040 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnet.dll
2016-08-07 21:11 - 2016-07-16 13:43 - 00395264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnet.dll
2016-08-07 21:11 - 2016-07-16 13:43 - 00220672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplayx.dll
2016-08-07 21:11 - 2016-07-16 13:43 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnathlp.dll
2016-08-07 21:11 - 2016-07-16 13:43 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnathlp.dll
2016-08-07 21:11 - 2016-07-16 13:43 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpwsockx.dll
2016-08-07 21:11 - 2016-07-16 13:43 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnsvr.exe
2016-08-07 21:11 - 2016-07-16 13:43 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpmodemx.dll
2016-08-07 21:11 - 2016-07-16 13:43 - 00023040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnsvr.exe
2016-08-07 21:11 - 2016-07-16 13:43 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplaysvr.exe
2016-08-07 21:11 - 2016-07-16 13:43 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhupnp.dll
2016-08-07 21:11 - 2016-07-16 13:43 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhpast.dll
2016-08-07 21:11 - 2016-07-16 13:43 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhupnp.dll
2016-08-07 21:11 - 2016-07-16 13:43 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhpast.dll
2016-08-07 21:11 - 2016-07-16 13:43 - 00006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnlobby.dll
2016-08-07 21:11 - 2016-07-16 13:43 - 00006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnaddr.dll
2016-08-07 21:11 - 2016-07-16 13:43 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnlobby.dll
2016-08-07 21:11 - 2016-07-16 13:43 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnaddr.dll
2016-08-07 20:34 - 2016-03-12 22:01 - 00002387 _____ C:\Users\Ondra\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2016-08-07 20:34 - 2016-03-12 22:01 - 00000000 ___RD C:\Users\Ondra\OneDrive
2016-08-07 20:23 - 2016-07-16 13:47 - 00000000 ____D C:\ProgramData\USOPrivate
2016-08-07 20:23 - 2016-07-16 13:47 - 00000000 ____D C:\Program Files\Windows NT
2016-08-07 20:22 - 2016-07-16 13:47 - 00000000 __RHD C:\Users\Public\Libraries
2016-08-07 20:22 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase
2016-08-07 20:22 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\Registration
2016-08-07 20:22 - 2016-07-16 08:04 - 00032768 _____ C:\WINDOWS\system32\config\ELAM
2016-08-07 20:22 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2016-08-07 20:21 - 2016-07-20 15:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Guild Wars 2
2016-08-07 20:21 - 2016-07-13 20:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskInfo
2016-08-07 20:21 - 2016-07-07 12:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Plex Media Server
2016-08-07 20:21 - 2016-06-01 15:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Witcher® 3 - Wild Hunt [GOG.com]
2016-08-07 20:21 - 2016-05-28 20:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Topcon
2016-08-07 20:21 - 2016-05-01 10:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Overwatch
2016-08-07 20:21 - 2016-03-25 23:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net
2016-08-07 20:21 - 2016-03-20 20:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nástroje Microsoft Office 2016
2016-08-07 20:21 - 2016-03-13 11:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Xbox 360 Accessories
2016-08-07 20:21 - 2016-03-13 00:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2016-08-07 20:21 - 2016-03-13 00:15 - 00000000 ____D C:\Users\Ondra\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\uTorrent
2016-08-07 20:21 - 2016-03-12 23:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client
2016-08-07 20:21 - 2016-03-12 23:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ArcGIS
2016-08-07 20:21 - 2016-03-12 23:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2016-08-07 20:21 - 2016-03-12 23:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Unified Remote 3
2016-08-07 20:21 - 2016-03-12 23:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fraps
2016-08-07 20:21 - 2016-03-12 23:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
2016-08-07 20:21 - 2016-03-12 23:32 - 00000000 ____D C:\Users\Ondra\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpeedFan
2016-08-07 20:21 - 2016-03-12 23:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gyazo
2016-08-07 20:21 - 2016-03-12 23:29 - 00000000 ____D C:\Users\Ondra\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TechPowerUp GPU-Z
2016-08-07 20:21 - 2016-03-12 23:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2016-08-07 20:21 - 2016-03-12 22:21 - 00000000 ____D C:\Users\Ondra\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-08-07 20:21 - 2016-03-12 22:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-08-07 20:21 - 2016-03-12 22:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SAM CoDeC Pack
2016-08-07 20:20 - 2015-10-30 08:28 - 00000000 ____D C:\Users\Default.migrated
2016-08-07 20:17 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\spool
2016-08-07 20:17 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\NDF
2016-08-07 20:17 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\System
2016-08-07 20:17 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2016-08-07 20:17 - 2016-07-16 13:47 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-08-07 20:17 - 2016-07-09 12:58 - 00000000 ____D C:\WINDOWS\system32\appmgmt
2016-08-07 20:17 - 2016-05-11 10:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Trimble
2016-08-07 20:17 - 2016-04-17 15:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cisco
2016-08-07 20:17 - 2016-04-05 15:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SteelSeries
2016-08-07 20:17 - 2016-03-12 23:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Elaborate Bytes
2016-08-07 20:17 - 2016-03-12 23:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2016-08-07 20:17 - 2016-03-12 23:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
2016-08-07 20:17 - 2016-03-12 22:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Vulkan 1.0.3.1
2016-08-07 20:17 - 2016-03-12 22:01 - 00000000 ____D C:\WINDOWS\system32\SRSLabs
2016-08-07 20:16 - 2016-07-16 08:04 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2016-08-07 20:16 - 2016-03-29 11:43 - 00000000 ____D C:\Users\Ondra\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
2016-08-07 20:16 - 2016-03-12 22:36 - 00000000 ____D C:\Users\Ondra\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Hammer & Chisel, Inc
2016-08-07 20:15 - 2016-07-16 13:47 - 00000000 ___RD C:\WINDOWS\PrintDialog
2016-08-07 20:15 - 2016-07-16 13:47 - 00000000 ___RD C:\WINDOWS\MiracastView
2016-08-07 19:28 - 2016-03-12 23:38 - 00000000 ____D C:\Users\Ondra\AppData\Roaming\Riot Games
2016-08-03 20:10 - 2016-06-04 17:10 - 00000000 ____D C:\Users\Ondra\AppData\Roaming\TeamViewer
2016-08-03 16:08 - 2016-03-12 22:00 - 00000000 ____D C:\Users\Ondra\AppData\Local\TileDataLayer
2016-08-02 02:09 - 2016-07-07 12:30 - 00000000 ____D C:\Users\Ondra\AppData\Local\Plex Media Server
2016-08-01 22:58 - 2016-03-12 22:36 - 00002233 _____ C:\Users\Ondra\Desktop\Discord.lnk
2016-08-01 22:58 - 2016-03-12 22:36 - 00000000 ____D C:\Users\Ondra\AppData\Local\Discord
2016-08-01 20:30 - 2016-03-13 22:43 - 00111928 _____ C:\WINDOWS\SysWOW64\PnkBstrB.exe
2016-07-29 16:48 - 2016-03-13 22:43 - 00111928 _____ C:\WINDOWS\SysWOW64\PnkBstrB.ex0
2016-07-27 21:25 - 2016-03-13 00:58 - 00504488 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2016-07-25 22:56 - 2016-07-15 21:30 - 00149352 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiuxpag.dll
2016-07-25 22:56 - 2016-07-15 21:18 - 09310736 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiumdva.dll
2016-07-25 22:56 - 2016-07-15 21:18 - 00180432 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiuxp64.dll
2016-07-25 22:55 - 2016-07-15 21:29 - 10967952 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atidxx64.dll
2016-07-25 22:55 - 2016-07-15 21:18 - 09108624 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atidxx32.dll
2016-07-25 22:55 - 2016-07-15 21:18 - 01546848 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\aticfx64.dll
2016-07-25 22:55 - 2016-07-15 21:18 - 01272432 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\aticfx32.dll
2016-07-25 22:53 - 2016-07-15 21:27 - 00232472 _____ C:\WINDOWS\SysWOW64\GameManager32.dll
2016-07-25 22:53 - 2016-07-15 21:27 - 00012824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\detoured.dll
2016-07-25 22:52 - 2016-07-15 21:26 - 26717720 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\atikmdag.sys
2016-07-25 22:52 - 2016-07-15 21:26 - 00509464 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\atikmpag.sys
2016-07-23 20:46 - 2016-04-05 19:25 - 00000000 ____D C:\Users\Ondra\AppData\Roaming\steelseries-engine-3-client
==================== Files in the root of some directories =======
2016-08-20 23:00 - 2016-08-20 23:00 - 0029696 _____ () C:\Users\Ondra\AppData\Local\MSGBOX.EXE
2016-03-31 00:41 - 2016-08-19 14:51 - 0007600 _____ () C:\Users\Ondra\AppData\Local\Resmon.ResmonCfg
2016-03-12 23:24 - 2016-03-12 23:24 - 0000057 _____ () C:\ProgramData\Ament.ini
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2016-08-18 13:26
==================== End of FRST.txt ============================
Ran by Ondra (administrator) on DESKTOP-A9E1KAA (20-08-2016 23:00:50)
Running from C:\Users\Ondra\Desktop
Loaded Profiles: Ondra (Available Profiles: Ondra)
Platform: Windows 10 Education Version 1607 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Cisco Systems, Inc.) C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Advanced Micro Devices) C:\Program Files\AMD\{920DEC42-4CA5-4d1d-9487-67BE645CDDFC}\amdacpusrsvc.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
() C:\Windows\System32\PnkBstrA.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(VIA Technologies, Inc.) C:\Windows\System32\ViakaraokeSrv.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
(Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
(Nota Inc.) C:\Program Files (x86)\Gyazo\GyStation.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(SteelSeries ApS) C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.7.102.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Hammer & Chisel, Inc.) C:\Users\Ondra\AppData\Local\Discord\app-0.0.295\Discord.exe
(Hammer & Chisel, Inc.) C:\Users\Ondra\AppData\Local\Discord\app-0.0.295\Discord.exe
(Hammer & Chisel, Inc.) C:\Users\Ondra\AppData\Local\Discord\app-0.0.295\Discord.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Microsoft® Windows® Operating System) C:\Windows\System32\Taskmgr.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [Cm108Sound] => C:\Windows\Syswow64\cm108.dll [8757248 2013-01-16] (C-Media Corporation)
HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-09-30] (Microsoft Corporation)
HKLM\...\Run: [StartCN] => C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe [6626696 2016-07-18] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [VirtualCloneDrive] => C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [88984 2013-03-10] (Elaborate Bytes AG)
HKLM-x32\...\Run: [zenvpn] => C:\Program Files (x86)\ZenVPN OpenVPN bundle\bin\zenvpn.exe
HKLM-x32\...\Run: [Cisco AnyConnect Secure Mobility Agent for Windows] => C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe [766464 2016-02-29] (Cisco Systems, Inc.)
HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [4101576 2014-06-24] (Safer-Networking Ltd.)
Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
HKU\S-1-5-21-2735073394-199789404-1462047816-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8641240 2016-02-12] (Piriform Ltd)
HKU\S-1-5-21-2735073394-199789404-1462047816-1001\...\Run: [Gyazo] => C:\Program Files (x86)\Gyazo\GyStation.exe [3582240 2016-06-02] (Nota Inc.)
HKU\S-1-5-21-2735073394-199789404-1462047816-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [2857248 2016-08-16] (Valve Corporation)
HKU\S-1-5-21-2735073394-199789404-1462047816-1001\...\Run: [SpybotPostWindows10UpgradeReInstall] => C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe [1011200 2015-07-28] (Safer-Networking Ltd.)
HKU\S-1-5-21-2735073394-199789404-1462047816-1001\...\Run: [Ondra] => explorer.exe hxxp://sd-steam.info <===== ATTENTION
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SteelSeries Engine 3.lnk [2016-04-05]
ShortcutTarget: SteelSeries Engine 3.lnk -> C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe (SteelSeries ApS)
Startup: C:\Users\Ondra\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Sledovat výstrahy inkoustu - HP Deskjet 2050 J510 series.lnk [2016-08-20]
ShortcutTarget: Sledovat výstrahy inkoustu - HP Deskjet 2050 J510 series.lnk -> C:\Program Files\HP\HP Deskjet 2050 J510 series\Bin\HPStatusBL.dll (Hewlett-Packard Co.)
BootExecute: autocheck autochk * sdnclean64.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 8.8.8.8 8.8.4.4
Tcpip\..\Interfaces\{816540e8-cc6f-45f8-9e1d-76072b0caa7e}: [DhcpNameServer] 8.8.8.8 8.8.4.4
Tcpip\..\Interfaces\{e80366ae-28fe-42cb-8e1c-c4c54da8d895}: [DhcpNameServer] 10.8.0.1
Internet Explorer:
==================
SearchScopes: HKU\S-1-5-21-2735073394-199789404-1462047816-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2016-08-19] (Microsoft Corporation)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2016-08-19] (Microsoft Corporation)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2016-08-19] (Microsoft Corporation)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\Office16\GROOVEEX.DLL [2016-08-19] (Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-08-19] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-08-19] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-08-19] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-08-19] (Microsoft Corporation)
FireFox:
========
FF Plugin-x32: @esn/esnlaunch,version=2.3.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll [2013-09-16] (ESN Social Software AB)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2016-08-19] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2016-08-19] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-08-19] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-08-19] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-01-21] (VideoLAN)
Chrome:
=======
CHR Session Restore: Default -> is enabled.
CHR Profile: C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Momentum New Tab Page) - C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\abdholagkagimalmpmohnkmpcbjomlgp [2016-08-20]
CHR Extension: (Super Netflix) - C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\aioencjhbaolepcoappllicjebblphoc [2016-08-20]
CHR Extension: (Adblock Plus) - C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-08-20]
CHR Extension: (Foxtab Speed Dial) - C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\fcoecifcadmambfikillppkoafmgachp [2016-08-20]
CHR Extension: (AdBlock) - C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-08-20]
CHR Extension: (Unlimited Free VPN - Hola) - C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkojfkhlekighikafcpjkiklfbnlmeio [2016-08-20]
CHR Extension: (Steam Database) - C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\kdbmhfkmnlmbkgbabkdealhhbfhlmmon [2016-08-20]
CHR Extension: (Lightning Speed Dial) - C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\kddckpmlbneidbekmajhmhikeegjdgcd [2016-08-20]
CHR Extension: (Instair Speed Dial) - C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\kikeacjcceacohckgiajooneiabebfjj [2016-08-20]
CHR Extension: (Infinite HD App) - C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\laealigljflmglcgncipdbmbjgjdpiim [2016-08-20]
CHR Extension: (Twitch Now) - C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\nlmbdmpjmlijibeockamioakdpmhjnpk [2016-08-20]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-08-20]
CHR Extension: (Chrome Media Router) - C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-08-20]
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 amdacpusrsvc; C:\Program Files\AMD\{920DEC42-4CA5-4d1d-9487-67BE645CDDFC}\amdacpusrsvc.exe [121856 2016-07-18] (Advanced Micro Devices) [File not signed]
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2944768 2016-07-31] (Microsoft Corporation)
S3 EasyAntiCheat; C:\WINDOWS\SysWOW64\EasyAntiCheat.exe [227104 2016-08-09] (EasyAntiCheat Ltd)
R2 ekrn; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2542216 2016-06-10] (ESET)
S3 ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [160256 2011-08-30] (Intel Corporation) [File not signed]
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2122248 2016-06-10] (Electronic Arts)
S3 PAExec; C:\Windows\PAExec.exe [189112 2016-08-07] (Power Admin LLC)
R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76152 2016-04-03] ()
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2016-04-02] ()
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1738168 2014-06-24] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2088408 2014-06-27] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2014-04-25] (Safer-Networking Ltd.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2889896 2016-07-17] (Microsoft Corporation)
R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [46736 2015-09-11] (VIA Technologies, Inc.)
S3 vmicvss; C:\Windows\System32\icsvcext.dll [349696 2016-07-16] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103720 2016-07-16] (Microsoft Corporation)
S3 wisvc; C:\Windows\system32\flightsettings.dll [614912 2016-07-16] (Microsoft Corporation)
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 amdacpksd; C:\WINDOWS\system32\drivers\amdacpksd.sys [313760 2016-07-25] (Advanced Micro Devices)
S0 amdkmafd; C:\Windows\System32\drivers\amdkmafd.sys [40720 2015-07-28] (Advanced Micro Devices, Inc.)
R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWT6.sys [101376 2016-06-02] (Advanced Micro Devices)
R3 bcmsmbsp; C:\Windows\System32\drivers\bcmsmbsp.sys [53024 2015-07-10] (Broadcom Corporation.)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [263336 2016-06-28] (ESET)
R0 edevmon; C:\Windows\System32\DRIVERS\edevmon.sys [199328 2016-06-28] (ESET)
S0 eelam; C:\Windows\System32\DRIVERS\eelam.sys [15488 2016-06-28] (ESET)
R1 ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [197288 2016-06-28] (ESET)
R2 epfwwfpr; C:\Windows\system32\DRIVERS\epfwwfpr.sys [181416 2016-06-28] (ESET)
S3 GVTDrv64; C:\Windows\GVTDrv64.sys [30528 2016-07-04] ()
S3 Hamachi; C:\Windows\System32\drivers\Hamdrv.sys [45680 2016-07-06] (LogMeIn Inc.)
R3 int0800; C:\Windows\System32\drivers\flashud.sys [51712 2009-09-09] (Intel Corporation)
S3 NetAdapterCx; C:\Windows\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
R3 SaiK0728; C:\Windows\system32\DRIVERS\SaiK0728.sys [180896 2015-10-13] (Saitek)
R3 ssdevfactory; C:\Windows\System32\drivers\ssdevfactory.sys [40568 2015-10-03] (SteelSeries ApS)
R3 uvhid; C:\Windows\System32\drivers\uvhid.sys [25592 2015-11-11] (Windows (R) Win 7 DDK provider)
S3 vpnva; C:\Windows\System32\drivers\vpnva64-6.sys [52592 2015-12-23] (Cisco Systems, Inc.)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
NETSVC: shpamsvc -> C:\Windows\system32\Windows.SharedPC.AccountManager.dll (Microsoft Corporation)
NETSVC: wisvc -> C:\Windows\system32\flightsettings.dll (Microsoft Corporation)
NETSVC: WpnService -> C:\Windows\system32\WpnService.dll (Microsoft Corporation)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-08-20 23:00 - 2016-08-20 23:00 - 02396160 _____ (Farbar) C:\Users\Ondra\Desktop\FRST64.exe
2016-08-20 23:00 - 2016-08-20 23:00 - 00029696 _____ C:\Users\Ondra\AppData\Local\MSGBOX.EXE
2016-08-20 23:00 - 2016-08-20 23:00 - 00016667 _____ C:\Users\Ondra\Desktop\FRST.txt
2016-08-20 23:00 - 2016-08-20 23:00 - 00015327 _____ C:\Users\Ondra\Desktop\LM.bat
2016-08-20 23:00 - 2016-08-20 23:00 - 00000000 ____D C:\Users\Ondra\Desktop\FRST-OlderVersion
2016-08-20 22:36 - 2016-08-20 22:36 - 00001454 _____ C:\Users\Ondra\Desktop\JRT.txt
2016-08-20 22:29 - 2016-08-20 22:29 - 00000000 ____D C:\Users\Ondra\AppData\Roaming\discord
2016-08-20 22:28 - 2016-08-20 22:16 - 00024064 _____ C:\WINDOWS\zoek-delete.exe
2016-08-20 22:16 - 2016-08-20 22:26 - 00000000 ____D C:\zoek_backup
2016-08-20 22:15 - 2016-08-20 22:15 - 01610560 _____ (Malwarebytes) C:\Users\Ondra\Desktop\JRT.exe
2016-08-20 22:15 - 2016-08-20 22:14 - 01309184 _____ C:\Users\Ondra\Desktop\zoek.exe
2016-08-19 21:55 - 2016-08-20 22:29 - 00000992 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-08-19 21:55 - 2016-08-20 22:29 - 00000988 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-08-19 21:55 - 2016-08-19 21:55 - 00004050 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2016-08-19 21:55 - 2016-08-19 21:55 - 00003818 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2016-08-19 21:34 - 2016-08-20 23:00 - 00000000 ____D C:\FRST
2016-08-19 20:40 - 2016-08-19 20:40 - 00000222 _____ C:\Users\Ondra\Desktop\Deus Ex Mankind Divided.url
2016-08-19 19:16 - 2016-08-19 19:16 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-08-19 19:06 - 2016-08-19 19:14 - 00001319 _____ C:\Users\Ondra\Desktop\Nový textový dokument.txt
2016-08-19 19:06 - 2016-08-19 19:06 - 00001319 _____ C:\Users\Ondra\Desktop\AdwCleaner[S0].txt
2016-08-19 15:30 - 2016-08-19 20:23 - 00000000 ____D C:\AdwCleaner
2016-08-19 15:23 - 2016-08-19 15:23 - 00000000 ____D C:\Users\Ondra\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome
2016-08-19 15:14 - 2016-08-19 19:57 - 00000000 ____D C:\Users\Ondra\AppData\Local\Google
2016-08-19 15:14 - 2016-08-19 15:14 - 00002344 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-08-19 15:14 - 2016-08-19 15:14 - 00000000 ____D C:\Program Files (x86)\Google
2016-08-19 15:02 - 2016-08-19 15:24 - 00000000 ____D C:\Program Files\trend micro
2016-08-19 15:02 - 2016-08-19 15:02 - 00000000 ____D C:\rsit
2016-08-19 14:36 - 2016-08-19 14:36 - 00000000 ____D C:\KVRT_Data
2016-08-19 14:25 - 2016-08-19 14:25 - 00000000 ____D C:\Program Files\Common Files\AV
2016-08-19 14:20 - 2016-08-19 14:31 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2016-08-19 14:20 - 2016-08-19 14:25 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2016-08-19 14:20 - 2016-08-19 14:20 - 00001460 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk
2016-08-19 14:20 - 2016-08-19 14:20 - 00001448 _____ C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2016-08-19 14:20 - 2016-08-19 14:20 - 00000000 ____D C:\WINDOWS\System32\Tasks\Safer-Networking
2016-08-19 14:20 - 2016-08-19 14:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2
2016-08-19 14:20 - 2013-09-20 10:49 - 00021040 _____ (Safer Networking Limited) C:\WINDOWS\system32\sdnclean64.exe
2016-08-19 13:43 - 2016-08-19 13:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
2016-08-19 13:43 - 2016-08-19 13:43 - 00000000 ____D C:\ProgramData\ESET
2016-08-19 13:43 - 2016-08-19 13:43 - 00000000 ____D C:\Program Files\ESET
2016-08-16 13:08 - 2016-08-19 19:16 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-08-16 13:08 - 2016-08-16 13:08 - 00140672 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2016-08-16 13:08 - 2016-08-16 13:08 - 00065408 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2016-08-16 13:08 - 2016-08-16 13:08 - 00027008 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2016-08-15 22:20 - 2016-08-15 22:20 - 00000000 ____D C:\WINDOWS\LastGood.Tmp
2016-08-15 15:58 - 2016-08-15 15:58 - 00000000 ____D C:\ProgramData\Steam
2016-08-13 01:52 - 2016-08-13 01:52 - 00000000 ____D C:\ProgramData\SkidRow
2016-08-12 20:14 - 2016-08-12 20:19 - 00000000 ____D C:\Users\Ondra\AppData\Roaming\HelloGames
2016-08-10 12:01 - 2016-08-02 10:58 - 00168800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2016-08-10 12:01 - 2016-08-02 10:53 - 02745224 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-08-10 12:01 - 2016-08-02 10:52 - 00619368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-08-10 12:01 - 2016-08-02 10:48 - 22219328 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-08-10 12:01 - 2016-08-02 10:48 - 00241496 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2016-08-10 12:01 - 2016-08-02 10:44 - 00151232 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2016-08-10 12:01 - 2016-08-02 10:44 - 00114192 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2016-08-10 12:01 - 2016-08-02 10:23 - 22572032 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-08-10 12:01 - 2016-08-02 10:21 - 02755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2016-08-10 12:01 - 2016-08-02 10:21 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll
2016-08-10 12:01 - 2016-08-02 10:20 - 00210944 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2016-08-10 12:01 - 2016-08-02 10:20 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2016-08-10 12:01 - 2016-08-02 10:15 - 00231424 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2016-08-10 12:01 - 2016-08-02 10:15 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll
2016-08-10 12:01 - 2016-08-02 10:14 - 00289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeveloperOptionsSettingsHandlers.dll
2016-08-10 12:01 - 2016-08-02 10:13 - 01081856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2016-08-10 12:01 - 2016-08-02 10:12 - 00261120 _____ (Microsoft Corporation) C:\WINDOWS\system32\indexeddbserver.dll
2016-08-10 12:01 - 2016-08-02 10:11 - 00495104 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataSenseHandlers.dll
2016-08-10 12:01 - 2016-08-02 10:11 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-08-10 12:01 - 2016-08-02 10:10 - 00509952 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Bluetooth.dll
2016-08-10 12:01 - 2016-08-02 10:09 - 00496128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.UserAccountsHandlers.dll
2016-08-10 12:01 - 2016-08-02 10:07 - 23682048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-08-10 12:01 - 2016-08-02 10:07 - 09125888 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-08-10 12:01 - 2016-08-02 10:03 - 04749312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-08-10 12:01 - 2016-08-02 10:00 - 05511168 _____ (Microsoft Corporation) C:\WINDOWS\system32\aclui.dll
2016-08-10 12:01 - 2016-08-02 09:59 - 08124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-08-10 12:01 - 2016-08-02 09:58 - 01656320 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2016-08-10 12:01 - 2016-08-02 09:57 - 01491456 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-08-10 12:01 - 2016-08-02 09:56 - 06664192 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe
2016-08-10 12:01 - 2016-08-02 09:56 - 01785856 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-08-10 12:01 - 2016-08-02 09:56 - 00909312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2016-08-10 12:01 - 2016-08-02 09:55 - 03617280 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-08-10 12:01 - 2016-08-02 09:55 - 01508864 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-08-10 12:01 - 2016-08-02 09:52 - 00115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll
2016-08-10 12:01 - 2016-08-02 06:56 - 02251440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-08-10 12:01 - 2016-08-02 06:51 - 20965240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2016-08-10 12:01 - 2016-08-02 06:47 - 00079536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2016-08-10 12:01 - 2016-08-02 06:39 - 02755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2016-08-10 12:01 - 2016-08-02 06:37 - 00121344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll
2016-08-10 12:01 - 2016-08-02 06:37 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2016-08-10 12:01 - 2016-08-02 06:36 - 00150528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2016-08-10 12:01 - 2016-08-02 06:33 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Shell.Search.UriHandler.dll
2016-08-10 12:01 - 2016-08-02 06:30 - 00822784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2016-08-10 12:01 - 2016-08-02 06:28 - 19423232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2016-08-10 12:01 - 2016-08-02 06:27 - 07623168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2016-08-10 12:01 - 2016-08-02 06:26 - 19417600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-08-10 12:01 - 2016-08-02 06:26 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\indexeddbserver.dll
2016-08-10 12:01 - 2016-08-02 06:25 - 05398016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aclui.dll
2016-08-10 12:01 - 2016-08-02 06:25 - 01456640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2016-08-10 12:01 - 2016-08-02 06:23 - 06474752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspaint.exe
2016-08-10 12:01 - 2016-08-02 06:16 - 06044672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2016-08-10 12:01 - 2016-08-02 06:13 - 01600512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-08-10 12:01 - 2016-08-02 06:13 - 00712192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2016-08-10 12:01 - 2016-08-02 06:12 - 02999296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2016-08-10 12:01 - 2016-08-02 06:09 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offlinelsa.dll
2016-08-10 01:01 - 2016-08-10 17:21 - 00355064 _____ C:\WINDOWS\system32\Drivers\EasyAntiCheat.sys
2016-08-10 01:01 - 2016-08-09 21:28 - 00227104 _____ (EasyAntiCheat Ltd) C:\WINDOWS\SysWOW64\EasyAntiCheat.exe
2016-08-10 00:50 - 2016-08-10 01:00 - 00000000 ____D C:\Users\Ondra\AppData\Roaming\SpaceEngineers
2016-08-09 21:17 - 2016-08-09 21:17 - 00000222 _____ C:\Users\Ondra\Desktop\Shelter 2.url
2016-08-09 21:17 - 2016-08-09 21:17 - 00000222 _____ C:\Users\Ondra\Desktop\Rust.url
2016-08-09 21:16 - 2016-08-09 21:16 - 00000222 _____ C:\Users\Ondra\Desktop\Space Engineers.url
2016-08-09 21:08 - 2016-08-09 21:08 - 00000222 _____ C:\Users\Ondra\Desktop\KHOLAT.url
2016-08-09 21:05 - 2016-08-09 21:05 - 00000222 _____ C:\Users\Ondra\Desktop\Savage Lands.url
2016-08-08 15:02 - 2016-08-08 15:02 - 00003558 _____ C:\WINDOWS\System32\Tasks\Ondra
2016-08-07 23:25 - 2016-08-07 23:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Settings
2016-08-07 21:14 - 2016-08-19 14:55 - 00000000 ___DC C:\WINDOWS\Panther
2016-08-07 21:12 - 2016-08-07 21:12 - 02190688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-08-07 21:12 - 2016-08-07 21:12 - 01708544 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2016-08-07 21:12 - 2016-08-07 21:12 - 01461200 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2016-08-07 21:12 - 2016-08-07 21:12 - 01435896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2016-08-07 21:12 - 2016-08-07 21:12 - 01418304 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2016-08-07 21:12 - 2016-08-07 21:12 - 01265424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2016-08-07 21:12 - 2016-08-07 21:12 - 01260384 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2016-08-07 21:12 - 2016-08-07 21:12 - 00843104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2016-08-07 21:12 - 2016-08-07 21:12 - 00770048 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2016-08-07 21:12 - 2016-08-07 21:12 - 00658784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2016-08-07 21:12 - 2016-08-07 21:12 - 00402272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2016-08-07 21:12 - 2016-08-07 21:12 - 00389000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtapi.dll
2016-08-07 21:12 - 2016-08-07 21:12 - 00297552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wevtapi.dll
2016-08-07 21:12 - 2016-08-07 21:12 - 00227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2016-08-07 21:12 - 2016-08-07 21:12 - 00062816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2016-08-07 21:12 - 2016-08-07 21:12 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
2016-08-07 21:12 - 2016-08-07 21:12 - 00000000 ____D C:\Windows.old
2016-08-07 21:12 - 2016-08-07 21:12 - 00000000 ____D C:\Program Files\CMAK
2016-08-07 21:12 - 2016-08-07 21:12 - 00000000 ____D C:\Program Files (x86)\CMAK
2016-08-07 21:11 - 2016-08-07 21:11 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2016-08-07 21:11 - 2016-08-07 21:11 - 00000000 ____D C:\Program Files\Reference Assemblies
2016-08-07 21:11 - 2016-08-07 21:11 - 00000000 ____D C:\Program Files\MSBuild
2016-08-07 21:11 - 2016-08-07 21:11 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2016-08-07 21:11 - 2016-08-07 21:11 - 00000000 ____D C:\Program Files (x86)\MSBuild
2016-08-07 21:11 - 2016-05-25 15:31 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2016-08-07 21:11 - 2016-05-25 15:31 - 00124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2016-08-07 21:11 - 2016-05-25 15:31 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2016-08-07 21:11 - 2016-05-25 12:03 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2016-08-07 21:11 - 2016-05-25 12:03 - 00103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2016-08-07 21:11 - 2016-05-25 12:03 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2016-08-07 21:09 - 2016-08-07 21:13 - 00000000 ____D C:\Users\Ondra\AppData\Local\UnrealEngine
2016-08-07 21:09 - 2016-08-07 21:09 - 00000000 ____H C:\$WINRE_BACKUP_PARTITION.MARKER
2016-08-07 21:09 - 2016-08-07 21:09 - 00000000 ____D C:\Users\Ondra\AppData\Local\AbzuGame
2016-08-07 20:34 - 2016-08-07 20:34 - 00000000 ____D C:\ProgramData\Microsoft OneDrive
2016-08-07 20:33 - 2016-08-07 20:49 - 00000000 ____D C:\Users\Ondra\AppData\Local\ConnectedDevicesPlatform
2016-08-07 20:33 - 2016-08-07 20:33 - 00000020 ___SH C:\Users\Ondra\ntuser.ini
2016-08-07 20:23 - 2016-08-07 20:23 - 00000000 _SHDL C:\Users\Default\Šablony
2016-08-07 20:23 - 2016-08-07 20:23 - 00000000 _SHDL C:\Users\Default\Soubory cookie
2016-08-07 20:23 - 2016-08-07 20:23 - 00000000 _SHDL C:\Users\Default\Poslední
2016-08-07 20:23 - 2016-08-07 20:23 - 00000000 _SHDL C:\Users\Default\Okolní tiskárny
2016-08-07 20:23 - 2016-08-07 20:23 - 00000000 _SHDL C:\Users\Default\Okolní síť
2016-08-07 20:23 - 2016-08-07 20:23 - 00000000 _SHDL C:\Users\Default\Nabídka Start
2016-08-07 20:23 - 2016-08-07 20:23 - 00000000 _SHDL C:\Users\Default\Dokumenty
2016-08-07 20:23 - 2016-08-07 20:23 - 00000000 _SHDL C:\Users\Default\Documents\Obrázky
2016-08-07 20:23 - 2016-08-07 20:23 - 00000000 _SHDL C:\Users\Default\Documents\Hudba
2016-08-07 20:23 - 2016-08-07 20:23 - 00000000 _SHDL C:\Users\Default\Documents\Filmy
2016-08-07 20:23 - 2016-08-07 20:23 - 00000000 _SHDL C:\Users\Default\Data aplikací
2016-08-07 20:23 - 2016-08-07 20:23 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2016-08-07 20:23 - 2016-08-07 20:23 - 00000000 _SHDL C:\Users\Default\AppData\Local\Data aplikací
2016-08-07 20:23 - 2016-08-07 20:23 - 00000000 _SHDL C:\Users\Default User\Documents\Obrázky
2016-08-07 20:23 - 2016-08-07 20:23 - 00000000 _SHDL C:\Users\Default User\Documents\Hudba
2016-08-07 20:23 - 2016-08-07 20:23 - 00000000 _SHDL C:\Users\Default User\Documents\Filmy
2016-08-07 20:23 - 2016-08-07 20:23 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2016-08-07 20:23 - 2016-08-07 20:23 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Data aplikací
2016-08-07 20:23 - 2016-08-07 20:23 - 00000000 ____D C:\ProgramData\USOShared
2016-08-07 20:22 - 2016-08-20 22:38 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-08-07 20:22 - 2016-08-14 21:38 - 00003860 _____ C:\WINDOWS\System32\Tasks\ESET Windows 10 upgrade – Perform upgrade
2016-08-07 20:22 - 2016-08-07 23:26 - 00004296 _____ C:\WINDOWS\System32\Tasks\AMD Updater
2016-08-07 20:22 - 2016-08-07 20:22 - 00022924 _____ C:\WINDOWS\system32\emptyregdb.dat
2016-08-07 20:22 - 2016-08-07 20:22 - 00007623 _____ C:\WINDOWS\diagwrn.xml
2016-08-07 20:22 - 2016-08-07 20:22 - 00007623 _____ C:\WINDOWS\diagerr.xml
2016-08-07 20:22 - 2016-08-07 20:22 - 00002664 _____ C:\WINDOWS\System32\Tasks\GyazoUpdateTaskMachineDaily
2016-08-07 20:22 - 2016-08-07 20:22 - 00002524 _____ C:\WINDOWS\System32\Tasks\GyazoUpdateTaskMachine
2016-08-07 20:22 - 2016-08-07 20:22 - 00002218 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2016-08-07 20:20 - 2016-08-20 22:26 - 00000000 ____D C:\Users\Default\AppData\Local\Google
2016-08-07 20:20 - 2016-08-20 22:26 - 00000000 ____D C:\Users\Default User\AppData\Local\Google
2016-08-07 20:20 - 2016-08-07 20:20 - 00001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2016-08-07 20:16 - 2016-08-08 00:44 - 00000000 ____D C:\Users\Ondra
2016-08-07 20:16 - 2016-08-07 20:21 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2016-08-07 20:16 - 2016-08-07 20:16 - 00000000 _SHDL C:\Users\Ondra\Šablony
2016-08-07 20:16 - 2016-08-07 20:16 - 00000000 _SHDL C:\Users\Ondra\Soubory cookie
2016-08-07 20:16 - 2016-08-07 20:16 - 00000000 _SHDL C:\Users\Ondra\Poslední
2016-08-07 20:16 - 2016-08-07 20:16 - 00000000 _SHDL C:\Users\Ondra\Okolní tiskárny
2016-08-07 20:16 - 2016-08-07 20:16 - 00000000 _SHDL C:\Users\Ondra\Okolní síť
2016-08-07 20:16 - 2016-08-07 20:16 - 00000000 _SHDL C:\Users\Ondra\Nabídka Start
2016-08-07 20:16 - 2016-08-07 20:16 - 00000000 _SHDL C:\Users\Ondra\Dokumenty
2016-08-07 20:16 - 2016-08-07 20:16 - 00000000 _SHDL C:\Users\Ondra\Documents\Obrázky
2016-08-07 20:16 - 2016-08-07 20:16 - 00000000 _SHDL C:\Users\Ondra\Documents\Hudba
2016-08-07 20:16 - 2016-08-07 20:16 - 00000000 _SHDL C:\Users\Ondra\Documents\Filmy
2016-08-07 20:16 - 2016-08-07 20:16 - 00000000 _SHDL C:\Users\Ondra\Data aplikací
2016-08-07 20:16 - 2016-08-07 20:16 - 00000000 _SHDL C:\Users\Ondra\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2016-08-07 20:16 - 2016-08-07 20:16 - 00000000 _SHDL C:\Users\Ondra\AppData\Local\Data aplikací
2016-08-07 20:15 - 2016-08-20 22:37 - 00065536 _____ C:\WINDOWS\system32\spu_storage.bin
2016-08-07 20:15 - 2016-08-07 23:25 - 00000000 ____D C:\Program Files\AMD
2016-08-07 20:15 - 2016-08-07 20:15 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_SaiK0728_01009.Wdf
2016-08-07 20:15 - 2016-08-07 20:15 - 00000000 ____D C:\Program Files\VIA
2016-08-07 20:15 - 2016-08-07 20:15 - 00000000 ____D C:\Program Files\Common Files\ATI Technologies
2016-08-07 20:15 - 2016-08-07 20:15 - 00000000 _____ C:\WINDOWS\ativpsrm.bin
2016-08-07 20:15 - 2016-07-16 13:41 - 02716672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2016-08-07 20:14 - 2016-08-20 03:18 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2016-08-07 20:14 - 2016-08-10 19:22 - 00389512 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-08-07 20:14 - 2016-08-07 20:14 - 00000000 ____D C:\WINDOWS\ServiceProfiles
2016-08-07 20:01 - 2016-08-07 20:04 - 00000000 ___HD C:\$WINDOWS.~BT
2016-08-07 20:00 - 2016-08-07 20:01 - 00000036 _____ C:\WINDOWS\progress.ini
2016-08-07 19:57 - 2016-08-07 19:57 - 00000000 ___HD C:\$SysReset
2016-08-07 19:52 - 2016-08-07 20:32 - 00000000 ___HD C:\$GetCurrent
2016-08-07 19:51 - 2016-08-07 20:33 - 00000000 ____D C:\Windows10Upgrade
2016-08-07 19:51 - 2016-08-07 19:51 - 00000731 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pomocník při upgradu na Windows 10.lnk
2016-08-07 19:46 - 2016-08-07 19:46 - 00000000 ____D C:\Users\Ondra\Documents\League of Legends
2016-08-07 19:29 - 2016-08-07 20:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\League of Legends
2016-08-07 19:29 - 2016-08-07 19:29 - 00001585 _____ C:\Users\Public\Desktop\League of Legends.lnk
2016-08-07 19:29 - 2016-08-07 19:29 - 00000000 ____D C:\Riot Games
2016-08-07 19:13 - 2016-08-07 19:13 - 00000000 ____D C:\Users\Ondra\AppData\Roaming\ATI
2016-08-07 19:13 - 2016-08-07 19:13 - 00000000 ____D C:\ProgramData\ATI
2016-08-07 18:00 - 2016-08-07 18:00 - 00000000 ____D C:\Users\Ondra\AppData\Local\ATI
2016-08-07 17:57 - 2016-08-12 20:19 - 00000000 ____D C:\Users\Ondra\AppData\Local\AMD
2016-08-07 17:57 - 2016-08-07 17:57 - 00000000 ____D C:\Program Files (x86)\AMD
2016-08-07 17:57 - 2016-06-23 20:22 - 00264992 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2016-08-07 17:57 - 2016-06-23 20:21 - 00257824 _____ C:\WINDOWS\system32\vulkan-1.dll
2016-08-07 17:57 - 2016-06-23 20:21 - 00110880 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2016-08-07 17:57 - 2016-06-23 20:20 - 00125216 _____ C:\WINDOWS\system32\vulkaninfo.exe
2016-08-07 17:56 - 2016-08-07 23:21 - 00000000 ____D C:\AMD
2016-08-07 16:58 - 2016-08-07 17:53 - 00000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2016-08-03 15:55 - 2016-08-07 17:53 - 00189112 _____ (Power Admin LLC) C:\WINDOWS\PAExec.exe
2016-08-03 10:49 - 2016-08-19 13:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2016-08-02 18:45 - 2016-08-02 18:45 - 00000000 ____D C:\Users\Ondra\AppData\LocalLow\Weappy
2016-08-01 15:35 - 2016-08-01 15:35 - 00000000 ____D C:\Users\Ondra\Documents\Square Enix
2016-08-01 14:49 - 2016-08-01 14:49 - 00000000 ____D C:\Users\Ondra\AppData\Roaming\Frontier Developments
2016-08-01 14:49 - 2016-08-01 14:49 - 00000000 ____D C:\Users\Ondra\AppData\Local\Frontier Developments
2016-08-01 14:20 - 2016-08-01 14:20 - 00000000 ____D C:\Users\Ondra\AppData\Local\Frontier_Developments
2016-08-01 13:57 - 2016-08-01 13:57 - 00000222 _____ C:\Users\Ondra\Desktop\Just Cause 3.url
2016-07-28 13:09 - 2016-07-28 13:09 - 00000000 ____D C:\Users\Ondra\AppData\Local\LogMeIn
2016-07-28 13:09 - 2016-07-28 13:09 - 00000000 ____D C:\ProgramData\LogMeIn
2016-07-28 13:06 - 2016-07-28 13:06 - 00033344 _____ (LogMeIn, Inc.) C:\WINDOWS\system32\Drivers\hamachi.sys
2016-07-28 13:04 - 2016-07-28 20:04 - 00000000 ____D C:\Users\Ondra\AppData\Roaming\Seznam.cz
2016-07-28 13:04 - 2016-07-28 13:08 - 00000000 ____D C:\Users\Ondra\AppData\Roaming\Hamachi
2016-07-28 12:30 - 2016-07-28 12:30 - 00000000 ____D C:\Users\Ondra\Documents\Commandos II
2016-07-28 12:25 - 2016-07-28 12:25 - 00000220 _____ C:\Users\Ondra\Desktop\Commandos 2 Men of Courage.url
2016-07-27 12:37 - 2016-07-27 12:37 - 00000000 ____D C:\dev
2016-07-26 15:13 - 2016-07-26 15:13 - 00000000 ____D C:\Users\Ondra\AppData\Local\Fallout4
2016-07-26 15:04 - 2016-08-07 20:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\by.xatab
2016-07-26 15:04 - 2016-07-26 15:04 - 00000714 _____ C:\Users\Ondra\Desktop\Fallout 4.lnk
2016-07-25 22:56 - 2016-07-25 22:56 - 10284832 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiumd6a.dll
2016-07-25 22:56 - 2016-07-25 22:56 - 08864056 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiumd64.dll
2016-07-25 22:56 - 2016-07-25 22:56 - 07234256 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiumdag.dll
2016-07-25 22:55 - 2016-07-25 22:55 - 08653128 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdxc64.dll
2016-07-25 22:55 - 2016-07-25 22:55 - 07044704 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdxc32.dll
2016-07-25 22:55 - 2016-07-25 22:55 - 00474992 _____ C:\WINDOWS\system32\amdmiracast.dll
2016-07-25 22:55 - 2016-07-25 22:55 - 00160792 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiu9p64.dll
2016-07-25 22:55 - 2016-07-25 22:55 - 00151456 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdhcp64.dll
2016-07-25 22:55 - 2016-07-25 22:55 - 00135288 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdhcp32.dll
2016-07-25 22:55 - 2016-07-25 22:55 - 00133808 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiu9pag.dll
2016-07-25 22:55 - 2016-07-25 22:55 - 00119744 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atimpc64.dll
2016-07-25 22:55 - 2016-07-25 22:55 - 00119744 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdpcom64.dll
2016-07-25 22:55 - 2016-07-25 22:55 - 00102040 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atimpc32.dll
2016-07-25 22:55 - 2016-07-25 22:55 - 00102040 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdpcom32.dll
2016-07-25 22:54 - 2016-07-25 22:54 - 00155616 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdave64.dll
2016-07-25 22:54 - 2016-07-25 22:54 - 00134776 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdave32.dll
2016-07-25 22:53 - 2016-07-25 22:53 - 26632720 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atioglxx.dll
2016-07-25 22:53 - 2016-07-25 22:53 - 00874520 _____ (AMD) C:\WINDOWS\system32\coinst_16.30.dll
2016-07-25 22:53 - 2016-07-25 22:53 - 00279056 _____ (AMD) C:\WINDOWS\system32\atitmm64.dll
2016-07-25 22:53 - 2016-07-25 22:53 - 00267288 _____ C:\WINDOWS\system32\GameManager64.dll
2016-07-25 22:53 - 2016-07-25 22:53 - 00261656 _____ C:\WINDOWS\system32\clinfo.exe
2016-07-25 22:53 - 2016-07-25 22:53 - 00260112 _____ C:\WINDOWS\system32\hsa-thunk64.dll
2016-07-25 22:53 - 2016-07-25 22:53 - 00225808 _____ C:\WINDOWS\SysWOW64\hsa-thunk.dll
2016-07-25 22:53 - 2016-07-25 22:53 - 00151056 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mantle64.dll
2016-07-25 22:53 - 2016-07-25 22:53 - 00128528 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atisamu64.dll
2016-07-25 22:53 - 2016-07-25 22:53 - 00126488 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mantle32.dll
2016-07-25 22:53 - 2016-07-25 22:53 - 00121872 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mantleaxl64.dll
2016-07-25 22:53 - 2016-07-25 22:53 - 00110104 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atisamu32.dll
2016-07-25 22:53 - 2016-07-25 22:53 - 00012816 _____ (Microsoft Corporation) C:\WINDOWS\system32\detoured.dll
2016-07-25 22:52 - 2016-07-25 22:52 - 15720464 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\aticaldd64.dll
2016-07-25 22:52 - 2016-07-25 22:52 - 00513040 _____ (AMD) C:\WINDOWS\system32\atieclxx.exe
2016-07-25 22:52 - 2016-07-25 22:52 - 00451088 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atidemgy.dll
2016-07-25 22:52 - 2016-07-25 22:52 - 00278544 _____ (AMD) C:\WINDOWS\system32\atiesrxx.exe
2016-07-25 22:52 - 2016-07-25 22:52 - 00222736 _____ C:\WINDOWS\system32\atieah64.exe
2016-07-25 22:52 - 2016-07-25 22:52 - 00200720 _____ C:\WINDOWS\SysWOW64\atieah32.exe
2016-07-25 22:52 - 2016-07-25 22:52 - 00194064 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atig6txx.dll
2016-07-25 22:52 - 2016-07-25 22:52 - 00167952 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atigktxx.dll
2016-07-25 22:52 - 2016-07-25 22:52 - 00115216 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atig6pxx.dll
2016-07-25 22:52 - 2016-07-25 22:52 - 00102416 _____ (AMD) C:\WINDOWS\system32\atimuixx.dll
2016-07-25 22:52 - 2016-07-25 22:52 - 00099856 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiglpxx.dll
2016-07-25 22:52 - 2016-07-25 22:52 - 00099856 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiglpxx.dll
2016-07-25 22:52 - 2016-07-25 22:52 - 00071184 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\aticalrt64.dll
2016-07-25 22:52 - 2016-07-25 22:52 - 00060944 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\aticalrt.dll
2016-07-25 22:52 - 2016-07-25 22:52 - 00059920 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\ATIODCLI.exe
2016-07-25 22:51 - 2016-07-25 22:51 - 48806416 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\amdocl64.dll
2016-07-25 22:51 - 2016-07-25 22:51 - 14311440 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\aticaldd.dll
2016-07-25 22:51 - 2016-07-25 22:51 - 08827920 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdvlk64.dll
2016-07-25 22:51 - 2016-07-25 22:51 - 07084560 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdvlk32.dll
2016-07-25 22:51 - 2016-07-25 22:51 - 02369040 _____ C:\WINDOWS\system32\amdoclvp9lib64.dll
2016-07-25 22:51 - 2016-07-25 22:51 - 02279440 _____ C:\WINDOWS\SysWOW64\amdoclvp9lib32.dll
2016-07-25 22:51 - 2016-07-25 22:51 - 02138640 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amfrt64.dll
2016-07-25 22:51 - 2016-07-25 22:51 - 01828880 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amfrt32.dll
2016-07-25 22:51 - 2016-07-25 22:51 - 01318416 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiadlxx.dll
2016-07-25 22:51 - 2016-07-25 22:51 - 00985104 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxy.dll
2016-07-25 22:51 - 2016-07-25 22:51 - 00985104 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxx.dll
2016-07-25 22:51 - 2016-07-25 22:51 - 00394256 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiapfxx.exe
2016-07-25 22:51 - 2016-07-25 22:51 - 00064528 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\aticalcl64.dll
2016-07-25 22:51 - 2016-07-25 22:51 - 00057872 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\aticalcl.dll
2016-07-25 22:51 - 2016-07-25 22:51 - 00052240 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\ati2erec.dll
2016-07-25 22:50 - 2016-07-25 22:50 - 38257680 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\amdocl.dll
2016-07-25 22:50 - 2016-07-25 22:50 - 27480592 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\amdocl12cl64.dll
2016-07-25 22:50 - 2016-07-25 22:50 - 21632528 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\amdocl12cl.dll
2016-07-25 22:50 - 2016-07-25 22:50 - 00059408 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmmcl6.dll
2016-07-25 22:50 - 2016-07-25 22:50 - 00047120 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdmmcl.dll
2016-07-25 22:49 - 2016-07-25 22:49 - 08619024 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmantle64.dll
2016-07-25 22:49 - 2016-07-25 22:49 - 06947344 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdmantle32.dll
2016-07-25 22:49 - 2016-07-25 22:49 - 00742928 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdlvr64.dll
2016-07-25 22:49 - 2016-07-25 22:49 - 00618512 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdlvr32.dll
2016-07-25 22:49 - 2016-07-25 22:49 - 00313760 _____ (Advanced Micro Devices) C:\WINDOWS\system32\Drivers\amdacpksd.sys
2016-07-25 22:49 - 2016-07-25 22:49 - 00213520 _____ C:\WINDOWS\SysWOW64\amdgfxinfo32.dll
2016-07-25 22:49 - 2016-07-25 22:49 - 00193040 _____ C:\WINDOWS\system32\amdhdl64.dll
2016-07-25 22:49 - 2016-07-25 22:49 - 00173072 _____ C:\WINDOWS\SysWOW64\amdhdl32.dll
2016-07-25 22:49 - 2016-07-25 22:49 - 00104984 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2016-07-25 22:49 - 2016-07-25 22:49 - 00095760 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2016-07-25 22:49 - 2016-07-25 22:49 - 00075280 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmcl64.dll
2016-07-25 22:49 - 2016-07-25 22:49 - 00058896 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdmcl32.dll
2016-07-25 22:45 - 2016-07-25 22:45 - 32548376 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atio6axx.dll
2016-07-25 22:45 - 2016-07-25 22:45 - 00341520 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\ATIODE.exe
2016-07-25 22:45 - 2016-07-25 22:45 - 00283664 _____ C:\WINDOWS\system32\dgtrayicon.exe
2016-07-25 22:45 - 2016-07-25 22:45 - 00240664 _____ C:\WINDOWS\system32\amdgfxinfo64.dll
2016-07-25 22:45 - 2016-07-25 22:45 - 00100880 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mantleaxl32.dll
2016-07-25 13:40 - 2016-07-25 13:40 - 00149008 _____ C:\WINDOWS\system32\samu_krnl_ci.sbin
2016-07-25 13:40 - 2016-07-25 13:40 - 00117808 _____ C:\WINDOWS\system32\kapp_ci.sbin
2016-07-25 13:40 - 2016-07-25 13:40 - 00112336 _____ C:\WINDOWS\system32\kapp_si.sbin
2016-07-25 13:39 - 2016-07-25 13:39 - 03471376 _____ C:\WINDOWS\SysWOW64\atiumdva.cap
2016-07-25 13:39 - 2016-07-25 13:39 - 03437632 _____ C:\WINDOWS\system32\atiumd6a.cap
2016-07-25 13:39 - 2016-07-25 13:39 - 00368672 _____ C:\WINDOWS\system32\ativvaxy_el_nd.dat
2016-07-25 13:39 - 2016-07-25 13:39 - 00322736 _____ C:\WINDOWS\system32\ativvaxy_vi_nd.dat
2016-07-25 13:39 - 2016-07-25 13:39 - 00270912 _____ C:\WINDOWS\system32\ativvaxy_stn_nd.dat
2016-07-25 13:39 - 2016-07-25 13:39 - 00266816 _____ C:\WINDOWS\system32\ativvaxy_cz_nd.dat
2016-07-25 13:39 - 2016-07-25 13:39 - 00260980 _____ C:\WINDOWS\system32\ativvaxy_FJ.dat
2016-07-25 13:39 - 2016-07-25 13:39 - 00260720 _____ C:\WINDOWS\system32\ativvaxy_FJ_nd.dat
2016-07-25 13:39 - 2016-07-25 13:39 - 00234292 _____ C:\WINDOWS\system32\ativvaxy_cik.dat
2016-07-25 13:39 - 2016-07-25 13:39 - 00234032 _____ C:\WINDOWS\system32\ativvaxy_cik_nd.dat
2016-07-25 13:39 - 2016-07-25 13:39 - 00177280 _____ C:\WINDOWS\system32\ativce03.dat
2016-07-25 13:39 - 2016-07-25 13:39 - 00100816 _____ C:\WINDOWS\system32\ativce02.dat
2016-07-25 13:38 - 2016-07-25 13:38 - 00731440 _____ C:\WINDOWS\SysWOW64\atiapfxx.blb
2016-07-25 13:38 - 2016-07-25 13:38 - 00731440 _____ C:\WINDOWS\system32\atiapfxx.blb
2016-07-25 13:37 - 2016-07-25 13:37 - 00890373 _____ C:\WINDOWS\system32\amdicdxx.dat
2016-07-25 13:37 - 2016-07-25 13:37 - 00175584 _____ C:\WINDOWS\system32\amde31a.dat
2016-07-25 13:37 - 2016-07-25 13:37 - 00166624 _____ C:\WINDOWS\system32\amde34b.dat
2016-07-25 13:37 - 2016-07-25 13:37 - 00166624 _____ C:\WINDOWS\system32\amde34a.dat
2016-07-25 13:37 - 2016-07-25 13:37 - 00016827 _____ C:\WINDOWS\system32\AMDKernelEvents.man
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-08-20 22:53 - 2016-03-12 23:50 - 00000000 ____D C:\Program Files (x86)\Steam
2016-08-20 22:52 - 2016-07-16 13:45 - 00000000 ____D C:\WINDOWS\INF
2016-08-20 22:52 - 2016-04-13 20:45 - 00000000 ____D C:\ProgramData\Apple
2016-08-20 22:44 - 2016-07-17 00:20 - 00566938 _____ C:\WINDOWS\system32\perfh005.dat
2016-08-20 22:44 - 2016-07-17 00:20 - 00118676 _____ C:\WINDOWS\system32\perfc005.dat
2016-08-20 22:44 - 2016-03-12 22:03 - 01694816 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-08-20 22:37 - 2016-07-16 08:04 - 00131072 _____ C:\WINDOWS\system32\config\BBI
2016-08-20 22:26 - 2015-10-30 09:24 - 00000000 ___HD C:\WINDOWS\system32\GroupPolicy
2016-08-20 03:26 - 2016-03-13 00:16 - 00000000 ____D C:\Users\Ondra\AppData\Roaming\vlc
2016-08-19 21:53 - 2016-04-08 20:37 - 00000008 __RSH C:\ProgramData\ntuser.pol
2016-08-19 21:07 - 2016-04-11 12:30 - 00000000 ____D C:\Users\Ondra\AppData\Roaming\DesktopOK
2016-08-19 19:07 - 2016-07-16 13:47 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-08-19 19:07 - 2016-03-20 20:05 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2016-08-19 14:55 - 2016-03-12 23:52 - 00000000 ____D C:\Users\Ondra\AppData\Roaming\TS3Client
2016-08-19 14:51 - 2016-03-31 00:41 - 00007600 _____ C:\Users\Ondra\AppData\Local\Resmon.ResmonCfg
2016-08-19 14:37 - 2016-04-02 22:35 - 00000000 ____D C:\Program Files (x86)\Battlelog Web Plugins
2016-08-19 13:44 - 2016-07-16 13:47 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2016-08-18 23:03 - 2016-03-25 23:42 - 00000000 ____D C:\Users\Ondra\AppData\Local\Battle.net
2016-08-18 21:37 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-08-18 21:34 - 2016-03-25 23:42 - 00000000 ____D C:\Program Files (x86)\Battle.net
2016-08-17 14:46 - 2016-07-16 13:47 - 00000000 ___HD C:\Program Files\WindowsApps
2016-08-15 15:58 - 2016-03-13 12:50 - 00000000 ____D C:\Users\Ondra\Documents\My Games
2016-08-14 00:26 - 2016-03-12 23:32 - 00000000 ____D C:\Program Files (x86)\SpeedFan
2016-08-12 12:32 - 2016-06-01 15:51 - 00000000 ____D C:\Users\Ondra\Documents\The Witcher 3
2016-08-11 12:08 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\rescache
2016-08-10 19:22 - 2016-02-13 15:24 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-08-10 18:47 - 2016-07-16 13:47 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-08-10 18:47 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\lv-LV
2016-08-10 18:47 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\lt-LT
2016-08-10 18:47 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\et-EE
2016-08-10 18:47 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\es-MX
2016-08-10 18:47 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\en-GB
2016-08-10 18:47 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-08-10 18:47 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\ShellExperiences
2016-08-10 16:23 - 2016-07-16 13:36 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-08-10 16:22 - 2016-03-13 01:26 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-08-10 16:20 - 2016-03-13 01:26 - 147640136 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-08-08 09:29 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\appcompat
2016-08-07 22:14 - 2016-03-12 22:00 - 00000000 ____D C:\Users\Ondra\AppData\Local\Packages
2016-08-07 21:14 - 2016-07-16 13:49 - 00000000 ____D C:\WINDOWS\Setup
2016-08-07 21:14 - 2016-07-16 13:47 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template
2016-08-07 21:11 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2016-08-07 21:11 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\MUI
2016-08-07 21:11 - 2016-07-16 13:43 - 00471040 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnet.dll
2016-08-07 21:11 - 2016-07-16 13:43 - 00395264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnet.dll
2016-08-07 21:11 - 2016-07-16 13:43 - 00220672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplayx.dll
2016-08-07 21:11 - 2016-07-16 13:43 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnathlp.dll
2016-08-07 21:11 - 2016-07-16 13:43 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnathlp.dll
2016-08-07 21:11 - 2016-07-16 13:43 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpwsockx.dll
2016-08-07 21:11 - 2016-07-16 13:43 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnsvr.exe
2016-08-07 21:11 - 2016-07-16 13:43 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpmodemx.dll
2016-08-07 21:11 - 2016-07-16 13:43 - 00023040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnsvr.exe
2016-08-07 21:11 - 2016-07-16 13:43 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplaysvr.exe
2016-08-07 21:11 - 2016-07-16 13:43 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhupnp.dll
2016-08-07 21:11 - 2016-07-16 13:43 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhpast.dll
2016-08-07 21:11 - 2016-07-16 13:43 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhupnp.dll
2016-08-07 21:11 - 2016-07-16 13:43 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhpast.dll
2016-08-07 21:11 - 2016-07-16 13:43 - 00006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnlobby.dll
2016-08-07 21:11 - 2016-07-16 13:43 - 00006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnaddr.dll
2016-08-07 21:11 - 2016-07-16 13:43 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnlobby.dll
2016-08-07 21:11 - 2016-07-16 13:43 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnaddr.dll
2016-08-07 20:34 - 2016-03-12 22:01 - 00002387 _____ C:\Users\Ondra\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2016-08-07 20:34 - 2016-03-12 22:01 - 00000000 ___RD C:\Users\Ondra\OneDrive
2016-08-07 20:23 - 2016-07-16 13:47 - 00000000 ____D C:\ProgramData\USOPrivate
2016-08-07 20:23 - 2016-07-16 13:47 - 00000000 ____D C:\Program Files\Windows NT
2016-08-07 20:22 - 2016-07-16 13:47 - 00000000 __RHD C:\Users\Public\Libraries
2016-08-07 20:22 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase
2016-08-07 20:22 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\Registration
2016-08-07 20:22 - 2016-07-16 08:04 - 00032768 _____ C:\WINDOWS\system32\config\ELAM
2016-08-07 20:22 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2016-08-07 20:21 - 2016-07-20 15:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Guild Wars 2
2016-08-07 20:21 - 2016-07-13 20:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskInfo
2016-08-07 20:21 - 2016-07-07 12:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Plex Media Server
2016-08-07 20:21 - 2016-06-01 15:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Witcher® 3 - Wild Hunt [GOG.com]
2016-08-07 20:21 - 2016-05-28 20:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Topcon
2016-08-07 20:21 - 2016-05-01 10:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Overwatch
2016-08-07 20:21 - 2016-03-25 23:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net
2016-08-07 20:21 - 2016-03-20 20:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nástroje Microsoft Office 2016
2016-08-07 20:21 - 2016-03-13 11:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Xbox 360 Accessories
2016-08-07 20:21 - 2016-03-13 00:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2016-08-07 20:21 - 2016-03-13 00:15 - 00000000 ____D C:\Users\Ondra\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\uTorrent
2016-08-07 20:21 - 2016-03-12 23:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client
2016-08-07 20:21 - 2016-03-12 23:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ArcGIS
2016-08-07 20:21 - 2016-03-12 23:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2016-08-07 20:21 - 2016-03-12 23:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Unified Remote 3
2016-08-07 20:21 - 2016-03-12 23:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fraps
2016-08-07 20:21 - 2016-03-12 23:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
2016-08-07 20:21 - 2016-03-12 23:32 - 00000000 ____D C:\Users\Ondra\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpeedFan
2016-08-07 20:21 - 2016-03-12 23:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gyazo
2016-08-07 20:21 - 2016-03-12 23:29 - 00000000 ____D C:\Users\Ondra\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TechPowerUp GPU-Z
2016-08-07 20:21 - 2016-03-12 23:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2016-08-07 20:21 - 2016-03-12 22:21 - 00000000 ____D C:\Users\Ondra\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-08-07 20:21 - 2016-03-12 22:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-08-07 20:21 - 2016-03-12 22:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SAM CoDeC Pack
2016-08-07 20:20 - 2015-10-30 08:28 - 00000000 ____D C:\Users\Default.migrated
2016-08-07 20:17 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\spool
2016-08-07 20:17 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\NDF
2016-08-07 20:17 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\System
2016-08-07 20:17 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2016-08-07 20:17 - 2016-07-16 13:47 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-08-07 20:17 - 2016-07-09 12:58 - 00000000 ____D C:\WINDOWS\system32\appmgmt
2016-08-07 20:17 - 2016-05-11 10:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Trimble
2016-08-07 20:17 - 2016-04-17 15:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cisco
2016-08-07 20:17 - 2016-04-05 15:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SteelSeries
2016-08-07 20:17 - 2016-03-12 23:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Elaborate Bytes
2016-08-07 20:17 - 2016-03-12 23:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2016-08-07 20:17 - 2016-03-12 23:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
2016-08-07 20:17 - 2016-03-12 22:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Vulkan 1.0.3.1
2016-08-07 20:17 - 2016-03-12 22:01 - 00000000 ____D C:\WINDOWS\system32\SRSLabs
2016-08-07 20:16 - 2016-07-16 08:04 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2016-08-07 20:16 - 2016-03-29 11:43 - 00000000 ____D C:\Users\Ondra\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
2016-08-07 20:16 - 2016-03-12 22:36 - 00000000 ____D C:\Users\Ondra\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Hammer & Chisel, Inc
2016-08-07 20:15 - 2016-07-16 13:47 - 00000000 ___RD C:\WINDOWS\PrintDialog
2016-08-07 20:15 - 2016-07-16 13:47 - 00000000 ___RD C:\WINDOWS\MiracastView
2016-08-07 19:28 - 2016-03-12 23:38 - 00000000 ____D C:\Users\Ondra\AppData\Roaming\Riot Games
2016-08-03 20:10 - 2016-06-04 17:10 - 00000000 ____D C:\Users\Ondra\AppData\Roaming\TeamViewer
2016-08-03 16:08 - 2016-03-12 22:00 - 00000000 ____D C:\Users\Ondra\AppData\Local\TileDataLayer
2016-08-02 02:09 - 2016-07-07 12:30 - 00000000 ____D C:\Users\Ondra\AppData\Local\Plex Media Server
2016-08-01 22:58 - 2016-03-12 22:36 - 00002233 _____ C:\Users\Ondra\Desktop\Discord.lnk
2016-08-01 22:58 - 2016-03-12 22:36 - 00000000 ____D C:\Users\Ondra\AppData\Local\Discord
2016-08-01 20:30 - 2016-03-13 22:43 - 00111928 _____ C:\WINDOWS\SysWOW64\PnkBstrB.exe
2016-07-29 16:48 - 2016-03-13 22:43 - 00111928 _____ C:\WINDOWS\SysWOW64\PnkBstrB.ex0
2016-07-27 21:25 - 2016-03-13 00:58 - 00504488 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2016-07-25 22:56 - 2016-07-15 21:30 - 00149352 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiuxpag.dll
2016-07-25 22:56 - 2016-07-15 21:18 - 09310736 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiumdva.dll
2016-07-25 22:56 - 2016-07-15 21:18 - 00180432 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiuxp64.dll
2016-07-25 22:55 - 2016-07-15 21:29 - 10967952 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atidxx64.dll
2016-07-25 22:55 - 2016-07-15 21:18 - 09108624 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atidxx32.dll
2016-07-25 22:55 - 2016-07-15 21:18 - 01546848 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\aticfx64.dll
2016-07-25 22:55 - 2016-07-15 21:18 - 01272432 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\aticfx32.dll
2016-07-25 22:53 - 2016-07-15 21:27 - 00232472 _____ C:\WINDOWS\SysWOW64\GameManager32.dll
2016-07-25 22:53 - 2016-07-15 21:27 - 00012824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\detoured.dll
2016-07-25 22:52 - 2016-07-15 21:26 - 26717720 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\atikmdag.sys
2016-07-25 22:52 - 2016-07-15 21:26 - 00509464 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\atikmpag.sys
2016-07-23 20:46 - 2016-04-05 19:25 - 00000000 ____D C:\Users\Ondra\AppData\Roaming\steelseries-engine-3-client
==================== Files in the root of some directories =======
2016-08-20 23:00 - 2016-08-20 23:00 - 0029696 _____ () C:\Users\Ondra\AppData\Local\MSGBOX.EXE
2016-03-31 00:41 - 2016-08-19 14:51 - 0007600 _____ () C:\Users\Ondra\AppData\Local\Resmon.ResmonCfg
2016-03-12 23:24 - 2016-03-12 23:24 - 0000057 _____ () C:\ProgramData\Ament.ini
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2016-08-18 13:26
==================== End of FRST.txt ============================
Re: zodiac-game.info popup po spuštění pc
Domnívám se, že problém je stále v tomto řádku. :/
HKU\S-1-5-21-2735073394-199789404-1462047816-1001\...\Run: [Ondra] => explorer.exe hxxp://sd-steam.info <===== ATTENTION
HKU\S-1-5-21-2735073394-199789404-1462047816-1001\...\Run: [Ondra] => explorer.exe hxxp://sd-steam.info <===== ATTENTION
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: zodiac-game.info popup po spuštění pc
Ano, je. Pokud jsme ho odstranili a je tam opět, patrně jste si ho opět stáhl.
Otevřte poznámkový blok a zkopírujte do něj:
Je všeobecně známo, že Steam je tolerovaný šmejd (z mého PC by letěl velkým obloukem). Někdo si ho tam drží proto, že by bez něho nemohl hrát některé hry. Asi mu je přednější před bezpečností PC. Pak je to jeho věc. Zkuste ho alespoň přeinstalovat, když už ho musíte mít.
Otevřte poznámkový blok a zkopírujte do něj:
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
HKU\S-1-5-21-2735073394-199789404-1462047816-1001\...\Run: [Ondra] => explorer.exe hxxp://sd-steam.info <===== ATTENTION
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
C:\WINDOWS\LastGood.Tmp
End
Je všeobecně známo, že Steam je tolerovaný šmejd (z mého PC by letěl velkým obloukem). Někdo si ho tam drží proto, že by bez něho nemohl hrát některé hry. Asi mu je přednější před bezpečností PC. Pak je to jeho věc. Zkuste ho alespoň přeinstalovat, když už ho musíte mít.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: zodiac-game.info popup po spuštění pc
Pop up je zase zpět. Reinstall steamu nepomohl. Všiml jsem si ale podezřelé záležitosti. V náhodnou dobu mi na pc vyskočí jakoby příkazové okno a hned zmizí ( Jde o milisetinu sekundy), po vyskočení okna je pop up zpět.
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: zodiac-game.info popup po spuštění pc
Tady: https://translate.google.cz/translate?h ... rev=search jsem našel nějaký návod. Vyzkoušejte, ale nevím, jestli funguje. V logu kromě toho řádku není nic podezřelého vidět a klasické čističe to zatím neidentifikují. Je to poměrně nová věc.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: zodiac-game.info popup po spuštění pc
Tento návod už jsem také vyzkoušel, není v něm nic co jsme nevyzkoušeli. Nemám absolutní tušení co může pop-up spouštět. Nic jsem delší dobu neinstaloval. Zdá se mi také, že výkon pc se zhoršil.
Re: zodiac-game.info popup po spuštění pc
Ikdyž, teď jsem si vzpomněl, že jsem jednu věc udělal. Stáhl jsem wallpaper na plochu.
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: zodiac-game.info popup po spuštění pc
OK. Zkuste obnovu systému k datu, kdy korketně fungoval.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: zodiac-game.info popup po spuštění pc
Nepomohlo.
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: zodiac-game.info popup po spuštění pc
Poslední možnost: Udělejte sken AVPTool - http://www.viry.cz/forum/viewtopic.php?f=29&t=58179 . Stáhněte, spusťte a nechte pracovat. Co bude nalezeno, smažte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: zodiac-game.info popup po spuštění pc
Taky nic. Hádám, že jedinou možností zbývá počkat, zda-li někdo nepříjde s řešením, popřípadě kompletní formát pc. Každopádně moc děkuji za pomoc!
Přispějete na provoz fóra?