Trojan: FakeAlert
Napsal: 23 srp 2016 12:03
Ahoj kluci.
Byl jsem zasažen nějakým svinstvem a nedaří se mi ho vypudit.
Prosím o kontrolu logu.
Děkuji.
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 21-08-2016 01
Ran by Milan (administrator) on MILAN (23-08-2016 12:51:11)
Running from C:\Users\Milan\Downloads
Loaded Profiles: Milan (Available Profiles: Milan & Guest)
Platform: Windows 10 Pro Version 1607 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
() C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Pixart Imaging Inc) C:\Windows\System32\TiltWheelMouse.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.7.102.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8492800 2015-06-24] (Realtek Semiconductor)
HKLM\...\Run: [MouseDriver] => C:\WINDOWS\system32\TiltWheelMouse.exe [241152 2013-04-09] (Pixart Imaging Inc)
HKLM\...\Run: [WindowsDefender] => C:\Program Files\Windows Defender\MSASCuiL.exe [631808 2016-07-16] (Microsoft Corporation)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-11-04] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKU\S-1-5-21-2007596338-2558511808-3841995970-1001\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [23375200 2016-07-29] (Google)
HKU\S-1-5-21-2007596338-2558511808-3841995970-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [29502592 2016-07-14] (Skype Technologies S.A.)
HKU\S-1-5-21-2007596338-2558511808-3841995970-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8894680 2016-08-05] (Piriform Ltd)
HKU\S-1-5-21-2007596338-2558511808-3841995970-1001\...\Run: [Zoner Photo Studio Autoupdate] => D:\Zoner\Photo Studio 17\Program32\ZPSTRAY.EXE [563416 2015-07-12] (ZONER software)
HKU\S-1-5-21-2007596338-2558511808-3841995970-1001\...\Run: [DAEMON Tools Ultra Agent] => C:\Program Files\DAEMON Tools Ultra\DTAgent.exe [4343488 2016-07-29] (Disc Soft Ltd)
HKU\S-1-5-21-2007596338-2558511808-3841995970-1001\...\Run: [tsiVideo] => C:\Users\Milan\AppData\Local\Temp\mdi064.dll [1456128 2016-08-23] () <===== ATTENTION
HKU\S-1-5-21-2007596338-2558511808-3841995970-1001\...\RunOnce: [Uninstall C:\Users\Milan\AppData\Local\Microsoft\OneDrive\17.3.6302.0225_20\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Milan\AppData\Local\Microsoft\OneDrive\17.3.6302.0225_20\amd64"
HKU\S-1-5-21-2007596338-2558511808-3841995970-1001\...\MountPoints2: {9eda4b90-5b8f-11e6-8890-40167e655061} - "E:\setup.exe"
HKU\S-1-5-21-2007596338-2558511808-3841995970-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\scrnsave.scr [37376 2016-07-16] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-07-29] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-07-29] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-07-29] (Google)
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\Milan\AppData\Local\Microsoft\SkyDrive\17.3.1229.0918\amd64\SkyDriveShell64.dll [2014-10-29] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\Milan\AppData\Local\Microsoft\SkyDrive\17.3.1229.0918\amd64\SkyDriveShell64.dll [2014-10-29] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\Milan\AppData\Local\Microsoft\SkyDrive\17.3.1229.0918\amd64\SkyDriveShell64.dll [2014-10-29] (Microsoft Corporation)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\..\Interfaces\{9a8995cb-36f8-4629-8b1e-b3b0b01a28c3}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{b528cb77-3b49-4c87-8777-3330d959f622}: [NameServer] 8.8.8.8,8.8.4.4
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
SearchScopes: HKU\S-1-5-21-2007596338-2558511808-3841995970-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
DPF: HKLM-x32 {7530BFB8-7293-4D34-9923-61A11451AFC5} hxxp://download.eset.com/special/eos/OnlineScanner.cab
DPF: HKLM-x32 {D4B68B83-8710-488B-A692-D74B50BA558E} hxxp://ccfiles.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab
DPF: HKLM-x32 {E705A591-DA3C-4228-B0D5-A356DBA42FBF} hxxp://ccfiles.creative.com/Web/softwareupdate/su2/ocx/20015/CTSUEng.cab
DPF: HKLM-x32 {F6ACF75C-C32C-447B-9BEF-46B766368D29} hxxp://ccfiles.creative.com/Web/softwareupdate/ocx/121022/CTPID.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2016-02-01] (Skype Technologies)
Edge:
======
Edge Extension: Adblock Plus -> 10_EyeoGmbHAdblockPlus_d55gg7py3s0m0 => C:\Program Files\WindowsApps\EyeoGmbH.AdblockPlus_0.9.6.0_neutral__d55gg7py3s0m0 [2016-08-04]
FireFox:
========
FF ProfilePath: C:\Users\Milan\AppData\Roaming\Mozilla\Firefox\Profiles\r3jpb4vn.default
FF NewTab: about:newtab
FF Homepage: about:home
FF NetworkProxy: "backup.ftp", "83.234.14.185: "
FF NetworkProxy: "backup.ftp_port", 8080
FF NetworkProxy: "backup.socks", "83.234.14.185: "
FF NetworkProxy: "backup.socks_port", 8080
FF NetworkProxy: "backup.ssl", "83.234.14.185: "
FF NetworkProxy: "backup.ssl_port", 8080
FF NetworkProxy: "ftp", "149.156.112.55"
FF NetworkProxy: "ftp_port", 80
FF NetworkProxy: "gopher", ""
FF NetworkProxy: "gopher_port", 0
FF NetworkProxy: "http", "149.156.112.55"
FF NetworkProxy: "http_port", 80
FF NetworkProxy: "share_proxy_settings", true
FF NetworkProxy: "socks", "149.156.112.55"
FF NetworkProxy: "socks_port", 80
FF NetworkProxy: "ssl", "149.156.112.55"
FF NetworkProxy: "ssl_port", 80
FF NetworkProxy: "type", 4
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50428.0\npctrl.dll [2016-04-27] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> D:\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> D:\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2014-04-15] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2014-04-15] (Foxit Corporation)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2015-05-21] (Google)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-16] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-16] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.21.2 -> C:\WINDOWS\SysWOW64\npDeployJava1.dll [2013-06-17] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50428.0\npctrl.dll [2016-04-27] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-28] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-28] (Google Inc.)
FF Extension: Adblock Plus - C:\Users\Milan\AppData\Roaming\Mozilla\Firefox\Profiles\r3jpb4vn.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-05-02]
Chrome:
=======
CHR Profile: C:\Users\Milan\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Prezentace Google) - C:\Users\Milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-07-04]
CHR Extension: (Flash Video Downloader) - C:\Users\Milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aiimdkdngfcipjohbjenkahhlhccpdbc [2016-08-18]
CHR Extension: (Dokumenty Google) - C:\Users\Milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-07-04]
CHR Extension: (Disk Google) - C:\Users\Milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-07-04]
CHR Extension: (YouTube) - C:\Users\Milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-07-04]
CHR Extension: (Adblock Plus) - C:\Users\Milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-07-04]
CHR Extension: (Tabulky Google) - C:\Users\Milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-07-04]
CHR Extension: (Dokumenty Google offline) - C:\Users\Milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-07-04]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-07-04]
CHR Extension: (Gmail) - C:\Users\Milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-07-04]
CHR Extension: (Chrome Media Router) - C:\Users\Milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-08-19]
Opera:
=======
OPR Extension: (AdBlock) - C:\Users\Milan\AppData\Roaming\Opera Software\Opera Stable\Extensions\aobdicepooefnbaeokijohmhjlleamfj [2016-07-09]
OPR Extension: (FVD Video Downloader) - C:\Users\Milan\AppData\Roaming\Opera Software\Opera Stable\Extensions\neacgcjokggofibnbfapeaejhclmpple [2016-05-17]
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe [936728 2014-01-28] ()
S3 Disc Soft Ultra Bus Service; C:\Program Files\DAEMON Tools Ultra\DiscSoftBusService.exe [1449152 2016-07-29] (Disc Soft Ltd)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-16] (Intel Corporation)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1514464 2016-03-10] (Malwarebytes)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1136608 2016-03-10] (Malwarebytes)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2889896 2016-07-17] (Microsoft Corporation)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103720 2016-07-16] (Microsoft Corporation)
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S0 amdkmafd; C:\Windows\System32\drivers\amdkmafd.sys [21160 2012-09-23] (Advanced Micro Devices, Inc.)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2014-01-28] ()
R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWT6.sys [102912 2015-05-28] (Advanced Micro Devices)
R3 AU8168; C:\Windows\system32\DRIVERS\au630x64.sys [792648 2013-09-23] (Realtek )
S3 bthav; C:\Windows\system32\drivers\bthav.sys [40448 2008-07-10] (CSR, plc) [File not signed]
S3 BtHidBus; C:\Windows\System32\Drivers\BtHidBus.sys [25056 2011-12-21] (IVT Corporation.)
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283200 2012-12-22] (DT Soft Ltd)
R3 dtultrascsibus; C:\Windows\System32\drivers\dtultrascsibus.sys [30264 2016-08-06] (Disc Soft Ltd)
R3 dtultrausbbus; C:\Windows\System32\drivers\dtultrausbbus.sys [47672 2016-08-06] (Disc Soft Ltd)
R1 HWiNFO32; C:\WINDOWS\SysWoW64\drivers\HWiNFO64A.SYS [27552 2016-08-23] (REALiX(tm))
R3 i8042HDR; C:\Windows\system32\DRIVERS\i8042HDR.sys [15920 2009-08-14] (Windows (R) Codename Longhorn DDK provider)
S3 IvtAudioBusSrv; C:\Windows\System32\Drivers\IvtBtBus.sys [27256 2012-12-24] (IVT Corporation.)
S3 IvtPanBusSrv; C:\Windows\System32\Drivers\btnetBus.sys [31480 2012-12-24] (IVT Corporation.)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [27008 2016-03-10] (Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [192216 2016-08-23] (Malwarebytes)
R3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [65408 2016-03-10] (Malwarebytes Corporation)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-09-16] (Intel Corporation)
S3 NetAdapterCx; C:\Windows\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
S3 t_mouse.sys; C:\Windows\system32\DRIVERS\t_mouse.sys [6144 2013-04-09] ()
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-08-23 12:51 - 2016-08-23 12:51 - 00017749 _____ C:\Users\Milan\Downloads\FRST.txt
2016-08-23 12:46 - 2016-08-23 12:47 - 02396672 _____ (Farbar) C:\Users\Milan\Downloads\FRST64.exe
2016-08-23 11:15 - 2016-08-23 11:16 - 00000000 ____D C:\ProgramData\ProductData
2016-08-23 11:15 - 2016-08-23 11:15 - 00027552 _____ (REALiX(tm)) C:\WINDOWS\SysWOW64\Drivers\HWiNFO64A.SYS
2016-08-23 11:15 - 2016-08-23 11:15 - 00003006 _____ C:\WINDOWS\System32\Tasks\Driver Booster SkipUAC (Milan)
2016-08-23 11:15 - 2016-08-23 11:15 - 00000000 ____D C:\WINDOWS\IObit
2016-08-23 11:15 - 2016-08-23 11:15 - 00000000 ____D C:\Users\Milan\AppData\Roaming\IObit
2016-08-23 11:15 - 2016-08-23 11:15 - 00000000 ____D C:\Users\Milan\AppData\LocalLow\IObit
2016-08-23 11:15 - 2016-08-23 11:15 - 00000000 ____D C:\ProgramData\IObit
2016-08-23 11:14 - 2016-08-23 12:03 - 00000000 ____D C:\Users\Milan\AppData\Roaming\GameLauncher
2016-08-23 11:14 - 2016-08-23 11:14 - 00001075 _____ C:\Users\Milan\Desktop\GameLauncher.lnk
2016-08-23 11:14 - 2016-08-23 11:14 - 00000000 ____D C:\Users\Milan\AppData\Roaming\HPRewriter2
2016-08-23 07:52 - 2016-08-23 07:52 - 00000505 _____ C:\Users\Milan\Desktop\Programy a funkce – zástupce.lnk
2016-08-22 23:50 - 2016-08-22 23:50 - 00080647 _____ C:\Users\Milan\Downloads\Proforma_1516078558.pdf
2016-08-22 11:02 - 2016-08-22 11:02 - 51089877 _____ C:\Users\Milan\Downloads\siko-katalog-2016.zip
2016-08-21 09:26 - 2016-08-21 09:26 - 00051147 _____ C:\Users\Milan\Documents\Radky parabola - OMKO.pdf
2016-08-17 19:51 - 2016-08-17 19:51 - 09863520 _____ (TeamViewer GmbH) C:\Users\Milan\Downloads\TeamViewer_Setup_cs-iwl.exe
2016-08-14 21:30 - 2016-08-14 21:30 - 09863520 _____ (TeamViewer GmbH) C:\Users\Milan\Downloads\TeamViewer_Setup_cs-iuu.exe
2016-08-13 15:57 - 2016-08-02 10:58 - 00168800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2016-08-13 15:57 - 2016-08-02 10:53 - 02745224 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-08-13 15:57 - 2016-08-02 10:52 - 00619368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-08-13 15:57 - 2016-08-02 10:48 - 22219328 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-08-13 15:57 - 2016-08-02 10:48 - 00241496 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2016-08-13 15:57 - 2016-08-02 10:44 - 00151232 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2016-08-13 15:57 - 2016-08-02 10:44 - 00114192 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2016-08-13 15:57 - 2016-08-02 10:23 - 22572032 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-08-13 15:57 - 2016-08-02 10:21 - 02755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2016-08-13 15:57 - 2016-08-02 10:21 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll
2016-08-13 15:57 - 2016-08-02 10:20 - 00210944 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2016-08-13 15:57 - 2016-08-02 10:20 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2016-08-13 15:57 - 2016-08-02 10:15 - 00231424 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2016-08-13 15:57 - 2016-08-02 10:15 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll
2016-08-13 15:57 - 2016-08-02 10:14 - 00289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeveloperOptionsSettingsHandlers.dll
2016-08-13 15:57 - 2016-08-02 10:13 - 01081856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2016-08-13 15:57 - 2016-08-02 10:12 - 00261120 _____ (Microsoft Corporation) C:\WINDOWS\system32\indexeddbserver.dll
2016-08-13 15:57 - 2016-08-02 10:11 - 00495104 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataSenseHandlers.dll
2016-08-13 15:57 - 2016-08-02 10:11 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-08-13 15:57 - 2016-08-02 10:10 - 00509952 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Bluetooth.dll
2016-08-13 15:57 - 2016-08-02 10:09 - 00496128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.UserAccountsHandlers.dll
2016-08-13 15:57 - 2016-08-02 10:07 - 23682048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-08-13 15:57 - 2016-08-02 10:07 - 09125888 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-08-13 15:57 - 2016-08-02 10:03 - 04749312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-08-13 15:57 - 2016-08-02 10:00 - 05511168 _____ (Microsoft Corporation) C:\WINDOWS\system32\aclui.dll
2016-08-13 15:57 - 2016-08-02 09:59 - 08124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-08-13 15:57 - 2016-08-02 09:58 - 01656320 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2016-08-13 15:57 - 2016-08-02 09:57 - 01491456 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-08-13 15:57 - 2016-08-02 09:56 - 06664192 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe
2016-08-13 15:57 - 2016-08-02 09:56 - 01785856 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-08-13 15:57 - 2016-08-02 09:56 - 00909312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2016-08-13 15:57 - 2016-08-02 09:55 - 03617280 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-08-13 15:57 - 2016-08-02 09:55 - 01508864 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-08-13 15:57 - 2016-08-02 09:52 - 00115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll
2016-08-13 15:57 - 2016-08-02 06:56 - 02251440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-08-13 15:57 - 2016-08-02 06:51 - 20965240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2016-08-13 15:57 - 2016-08-02 06:47 - 00079536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2016-08-13 15:57 - 2016-08-02 06:39 - 02755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2016-08-13 15:57 - 2016-08-02 06:37 - 00121344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll
2016-08-13 15:57 - 2016-08-02 06:37 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2016-08-13 15:57 - 2016-08-02 06:36 - 00150528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2016-08-13 15:57 - 2016-08-02 06:33 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Shell.Search.UriHandler.dll
2016-08-13 15:57 - 2016-08-02 06:30 - 00822784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2016-08-13 15:57 - 2016-08-02 06:28 - 19423232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2016-08-13 15:57 - 2016-08-02 06:27 - 07623168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2016-08-13 15:57 - 2016-08-02 06:26 - 19417600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-08-13 15:57 - 2016-08-02 06:26 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\indexeddbserver.dll
2016-08-13 15:57 - 2016-08-02 06:25 - 05398016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aclui.dll
2016-08-13 15:57 - 2016-08-02 06:25 - 01456640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2016-08-13 15:57 - 2016-08-02 06:23 - 06474752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspaint.exe
2016-08-13 15:57 - 2016-08-02 06:16 - 06044672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2016-08-13 15:57 - 2016-08-02 06:13 - 01600512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-08-13 15:57 - 2016-08-02 06:13 - 00712192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2016-08-13 15:57 - 2016-08-02 06:12 - 02999296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2016-08-13 15:57 - 2016-08-02 06:09 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offlinelsa.dll
2016-08-07 06:49 - 2016-08-07 06:49 - 00036464 _____ C:\Users\Milan\Documents\Jízdenka 7.8.2016.pdf
2016-08-06 17:44 - 2016-08-06 17:44 - 00000000 ____D C:\Users\Milan\AppData\Local\Disc_Soft_Ltd
2016-08-06 14:59 - 2016-08-06 14:59 - 00047672 _____ (Disc Soft Ltd) C:\WINDOWS\system32\Drivers\dtultrausbbus.sys
2016-08-06 14:59 - 2016-08-06 14:59 - 00000000 ____D C:\Users\Public\Documents\Daemon Tools Images
2016-08-06 14:58 - 2016-08-06 15:00 - 00000000 ____D C:\Users\Milan\AppData\Roaming\DAEMON Tools Ultra
2016-08-06 14:58 - 2016-08-06 14:59 - 00000000 ____D C:\Program Files\DAEMON Tools Ultra
2016-08-06 14:58 - 2016-08-06 14:58 - 00030264 _____ (Disc Soft Ltd) C:\WINDOWS\system32\Drivers\dtultrascsibus.sys
2016-08-06 14:58 - 2016-08-06 14:58 - 00001823 _____ C:\Users\Public\Desktop\DAEMON Tools Ultra.lnk
2016-08-06 14:58 - 2016-08-06 14:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Ultra
2016-08-06 14:58 - 2016-08-06 14:58 - 00000000 ____D C:\ProgramData\DAEMON Tools Ultra
2016-08-03 20:23 - 2016-08-23 07:56 - 00000000 ___DC C:\WINDOWS\Panther
2016-08-03 20:20 - 2016-08-03 20:20 - 02190688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-08-03 20:20 - 2016-08-03 20:20 - 01708544 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2016-08-03 20:20 - 2016-08-03 20:20 - 01461200 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2016-08-03 20:20 - 2016-08-03 20:20 - 01435896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2016-08-03 20:20 - 2016-08-03 20:20 - 01418304 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2016-08-03 20:20 - 2016-08-03 20:20 - 01265424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2016-08-03 20:20 - 2016-08-03 20:20 - 01260384 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2016-08-03 20:20 - 2016-08-03 20:20 - 00843104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2016-08-03 20:20 - 2016-08-03 20:20 - 00770048 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2016-08-03 20:20 - 2016-08-03 20:20 - 00658784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2016-08-03 20:20 - 2016-08-03 20:20 - 00402272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2016-08-03 20:20 - 2016-08-03 20:20 - 00389000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtapi.dll
2016-08-03 20:20 - 2016-08-03 20:20 - 00297552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wevtapi.dll
2016-08-03 20:20 - 2016-08-03 20:20 - 00227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2016-08-03 20:20 - 2016-08-03 20:20 - 00062816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2016-08-03 20:20 - 2016-08-03 20:20 - 00000000 ____D C:\Program Files\CMAK
2016-08-03 20:20 - 2016-08-03 20:20 - 00000000 ____D C:\Program Files (x86)\CMAK
2016-08-03 20:19 - 2016-08-03 20:19 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
2016-08-03 20:17 - 2016-08-03 20:17 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2016-08-03 20:17 - 2016-08-03 20:17 - 00000000 ____D C:\Program Files\Reference Assemblies
2016-08-03 20:17 - 2016-08-03 20:17 - 00000000 ____D C:\Program Files\MSBuild
2016-08-03 20:17 - 2016-08-03 20:17 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2016-08-03 20:17 - 2016-08-03 20:17 - 00000000 ____D C:\Program Files (x86)\MSBuild
2016-08-03 20:17 - 2016-08-03 19:34 - 00000000 ____D C:\inetpub
2016-08-03 20:17 - 2016-05-25 15:31 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2016-08-03 20:17 - 2016-05-25 15:31 - 00124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2016-08-03 20:17 - 2016-05-25 15:31 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2016-08-03 20:17 - 2016-05-25 12:03 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2016-08-03 20:17 - 2016-05-25 12:03 - 00103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2016-08-03 20:17 - 2016-05-25 12:03 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2016-08-03 19:59 - 2016-08-03 19:59 - 00002426 _____ C:\Users\Milan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2016-08-03 19:59 - 2016-08-03 19:59 - 00000000 ___RD C:\Users\Milan\OneDrive
2016-08-03 19:59 - 2016-08-03 19:59 - 00000000 ____D C:\ProgramData\Microsoft OneDrive
2016-08-03 19:56 - 2016-08-03 20:13 - 00000000 ____D C:\Users\Milan\AppData\Local\ConnectedDevicesPlatform
2016-08-03 19:55 - 2016-08-03 19:55 - 00000020 ___SH C:\Users\Milan\ntuser.ini
2016-08-03 19:55 - 2016-08-03 19:55 - 00000000 _SHDL C:\Users\Default\Šablony
2016-08-03 19:55 - 2016-08-03 19:55 - 00000000 _SHDL C:\Users\Default\Soubory cookie
2016-08-03 19:55 - 2016-08-03 19:55 - 00000000 _SHDL C:\Users\Default\Poslední
2016-08-03 19:55 - 2016-08-03 19:55 - 00000000 _SHDL C:\Users\Default\Okolní tiskárny
2016-08-03 19:55 - 2016-08-03 19:55 - 00000000 _SHDL C:\Users\Default\Okolní síť
2016-08-03 19:55 - 2016-08-03 19:55 - 00000000 _SHDL C:\Users\Default\Nabídka Start
2016-08-03 19:55 - 2016-08-03 19:55 - 00000000 _SHDL C:\Users\Default\Dokumenty
2016-08-03 19:55 - 2016-08-03 19:55 - 00000000 _SHDL C:\Users\Default\Documents\Obrázky
2016-08-03 19:55 - 2016-08-03 19:55 - 00000000 _SHDL C:\Users\Default\Documents\Hudba
2016-08-03 19:55 - 2016-08-03 19:55 - 00000000 _SHDL C:\Users\Default\Documents\Filmy
2016-08-03 19:55 - 2016-08-03 19:55 - 00000000 _SHDL C:\Users\Default\Data aplikací
2016-08-03 19:55 - 2016-08-03 19:55 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2016-08-03 19:55 - 2016-08-03 19:55 - 00000000 _SHDL C:\Users\Default\AppData\Local\Data aplikací
2016-08-03 19:55 - 2016-08-03 19:55 - 00000000 _SHDL C:\Users\Default User\Documents\Obrázky
2016-08-03 19:55 - 2016-08-03 19:55 - 00000000 _SHDL C:\Users\Default User\Documents\Hudba
2016-08-03 19:55 - 2016-08-03 19:55 - 00000000 _SHDL C:\Users\Default User\Documents\Filmy
2016-08-03 19:55 - 2016-08-03 19:55 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2016-08-03 19:55 - 2016-08-03 19:55 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Data aplikací
2016-08-03 19:55 - 2016-08-03 19:55 - 00000000 ____D C:\ProgramData\USOShared
2016-08-03 19:53 - 2016-08-03 19:54 - 00011433 _____ C:\WINDOWS\diagwrn.xml
2016-08-03 19:53 - 2016-08-03 19:54 - 00011433 _____ C:\WINDOWS\diagerr.xml
2016-08-03 19:49 - 2016-08-03 19:49 - 00000000 ____D C:\WINDOWS\System32\Tasks\OfficeSoftwareProtectionPlatform
2016-08-03 19:48 - 2016-08-23 12:04 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-08-03 19:48 - 2016-08-05 17:15 - 00003950 _____ C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 1458479466
2016-08-03 19:48 - 2016-08-03 19:49 - 00003484 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2016-08-03 19:48 - 2016-08-03 19:49 - 00003416 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player PPAPI Notifier
2016-08-03 19:48 - 2016-08-03 19:49 - 00003334 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{07892968-663A-49AC-87CE-546425765F12}
2016-08-03 19:48 - 2016-08-03 19:49 - 00003260 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2016-08-03 19:48 - 2016-08-03 19:49 - 00003128 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2016-08-03 19:48 - 2016-08-03 19:49 - 00002940 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2007596338-2558511808-3841995970-1001
2016-08-03 19:48 - 2016-08-03 19:49 - 00002780 _____ C:\WINDOWS\System32\Tasks\Trigger KMS Activation
2016-08-03 19:48 - 2016-08-03 19:49 - 00002744 _____ C:\WINDOWS\System32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-2007596338-2558511808-3841995970-1001
2016-08-03 19:48 - 2016-08-03 19:49 - 00002296 _____ C:\WINDOWS\System32\Tasks\{2289670C-EA59-413A-8AD2-8C9026E30655}
2016-08-03 19:48 - 2016-08-03 19:49 - 00002266 _____ C:\WINDOWS\System32\Tasks\{A8B8B134-8C45-475E-A1A9-3008C07BB197}
2016-08-03 19:48 - 2016-08-03 19:49 - 00002164 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2016-08-03 19:48 - 2016-08-03 19:48 - 00000000 ____D C:\WINDOWS\System32\Tasks\NCH Software
2016-08-03 19:38 - 2016-08-03 19:38 - 00001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2016-08-03 19:38 - 2016-08-03 19:38 - 00000000 ____D C:\Users\Default\AppData\Roaming\ATI
2016-08-03 19:38 - 2016-08-03 19:38 - 00000000 ____D C:\Users\Default\AppData\Local\Microsoft Help
2016-08-03 19:38 - 2016-08-03 19:38 - 00000000 ____D C:\Users\Default\AppData\Local\Google
2016-08-03 19:38 - 2016-08-03 19:38 - 00000000 ____D C:\Users\Default\AppData\Local\ATI
2016-08-03 19:38 - 2016-08-03 19:38 - 00000000 ____D C:\Users\Default User\AppData\Roaming\ATI
2016-08-03 19:38 - 2016-08-03 19:38 - 00000000 ____D C:\Users\Default User\AppData\Local\Microsoft Help
2016-08-03 19:38 - 2016-08-03 19:38 - 00000000 ____D C:\Users\Default User\AppData\Local\Google
2016-08-03 19:38 - 2016-08-03 19:38 - 00000000 ____D C:\Users\Default User\AppData\Local\ATI
2016-08-03 19:34 - 2016-08-03 19:40 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2016-08-03 19:32 - 2016-08-23 12:36 - 00000000 ____D C:\Users\Milan
2016-08-03 19:32 - 2016-08-03 19:44 - 00000000 ____D C:\Users\Guest
2016-08-03 19:32 - 2016-08-03 19:32 - 00000000 _SHDL C:\Users\Milan\Šablony
2016-08-03 19:32 - 2016-08-03 19:32 - 00000000 _SHDL C:\Users\Milan\Soubory cookie
2016-08-03 19:32 - 2016-08-03 19:32 - 00000000 _SHDL C:\Users\Milan\Poslední
2016-08-03 19:32 - 2016-08-03 19:32 - 00000000 _SHDL C:\Users\Milan\Okolní tiskárny
2016-08-03 19:32 - 2016-08-03 19:32 - 00000000 _SHDL C:\Users\Milan\Okolní síť
2016-08-03 19:32 - 2016-08-03 19:32 - 00000000 _SHDL C:\Users\Milan\Nabídka Start
2016-08-03 19:32 - 2016-08-03 19:32 - 00000000 _SHDL C:\Users\Milan\Dokumenty
2016-08-03 19:32 - 2016-08-03 19:32 - 00000000 _SHDL C:\Users\Milan\Documents\Obrázky
2016-08-03 19:32 - 2016-08-03 19:32 - 00000000 _SHDL C:\Users\Milan\Documents\Hudba
2016-08-03 19:32 - 2016-08-03 19:32 - 00000000 _SHDL C:\Users\Milan\Documents\Filmy
2016-08-03 19:32 - 2016-08-03 19:32 - 00000000 _SHDL C:\Users\Milan\Data aplikací
2016-08-03 19:32 - 2016-08-03 19:32 - 00000000 _SHDL C:\Users\Milan\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2016-08-03 19:32 - 2016-08-03 19:32 - 00000000 _SHDL C:\Users\Milan\AppData\Local\Data aplikací
2016-08-03 19:32 - 2016-08-03 19:32 - 00000000 _SHDL C:\Users\Guest\Šablony
2016-08-03 19:32 - 2016-08-03 19:32 - 00000000 _SHDL C:\Users\Guest\Soubory cookie
2016-08-03 19:32 - 2016-08-03 19:32 - 00000000 _SHDL C:\Users\Guest\Poslední
2016-08-03 19:32 - 2016-08-03 19:32 - 00000000 _SHDL C:\Users\Guest\Okolní tiskárny
2016-08-03 19:32 - 2016-08-03 19:32 - 00000000 _SHDL C:\Users\Guest\Okolní síť
2016-08-03 19:32 - 2016-08-03 19:32 - 00000000 _SHDL C:\Users\Guest\Nabídka Start
2016-08-03 19:32 - 2016-08-03 19:32 - 00000000 _SHDL C:\Users\Guest\Dokumenty
2016-08-03 19:32 - 2016-08-03 19:32 - 00000000 _SHDL C:\Users\Guest\Documents\Obrázky
2016-08-03 19:32 - 2016-08-03 19:32 - 00000000 _SHDL C:\Users\Guest\Documents\Hudba
2016-08-03 19:32 - 2016-08-03 19:32 - 00000000 _SHDL C:\Users\Guest\Documents\Filmy
2016-08-03 19:32 - 2016-08-03 19:32 - 00000000 _SHDL C:\Users\Guest\Data aplikací
2016-08-03 19:32 - 2016-08-03 19:32 - 00000000 _SHDL C:\Users\Guest\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2016-08-03 19:32 - 2016-08-03 19:32 - 00000000 _SHDL C:\Users\Guest\AppData\Local\Data aplikací
2016-08-03 19:31 - 2016-08-16 14:56 - 01808146 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-08-03 19:31 - 2016-08-03 19:31 - 01375290 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI
2016-08-03 19:28 - 2016-08-03 19:40 - 00000000 ____D C:\Program Files\ATI Technologies
2016-08-03 19:28 - 2016-08-03 19:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2016-08-03 19:27 - 2016-08-03 19:40 - 00000000 ____D C:\Program Files\AMD
2016-08-03 19:27 - 2016-08-03 19:28 - 00000000 ____D C:\Program Files (x86)\ATI Technologies
2016-08-03 19:27 - 2016-08-03 19:27 - 00000000 ____D C:\ProgramData\Package Cache
2016-08-03 19:27 - 2016-08-03 19:27 - 00000000 ____D C:\Program Files\Common Files\ATI Technologies
2016-08-03 19:27 - 2016-08-03 19:27 - 00000000 _____ C:\WINDOWS\ativpsrm.bin
2016-08-03 19:27 - 2016-07-16 13:41 - 02716672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2016-08-03 19:26 - 2016-08-03 19:26 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_ASMBSW_01_11_00.Wdf
2016-08-03 19:26 - 2016-08-03 19:26 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
2016-08-03 19:26 - 2016-08-03 19:26 - 00000000 ____H C:\ProgramData\DP45977C.lfl
2016-08-03 19:26 - 2016-08-03 19:26 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2016-08-03 19:26 - 2016-08-03 19:26 - 00000000 ____D C:\WINDOWS\system32\DAX2
2016-08-03 19:26 - 2016-08-03 19:26 - 00000000 ____D C:\Program Files\Realtek
2016-08-03 19:26 - 2016-08-03 19:26 - 00000000 ____D C:\Program Files\ASUS
2016-08-03 19:26 - 2016-08-03 19:26 - 00000000 ____D C:\Program Files (x86)\ASUS
2016-08-03 19:26 - 2014-01-28 11:16 - 00028672 _____ (ASUSTek Computer Inc.) C:\WINDOWS\SysWOW64\AsIO.dll
2016-08-03 19:26 - 2014-01-28 11:16 - 00015232 _____ C:\WINDOWS\SysWOW64\Drivers\AsIO.sys
2016-08-03 19:24 - 2016-08-23 12:04 - 00363848 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-08-03 19:24 - 2016-08-23 10:32 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2016-08-03 19:24 - 2016-08-03 19:24 - 00000000 ____D C:\WINDOWS\ServiceProfiles
2016-07-30 12:44 - 2016-07-30 12:44 - 00000000 ____D C:\Users\Milan\AppData\Roaming\A
2016-07-30 12:09 - 2016-07-30 12:09 - 00000000 ____D C:\Users\Milan\Documents\Rockstar Games
2016-07-30 12:08 - 2016-07-30 12:08 - 00000000 ____D C:\ProgramData\Socialclub
2016-07-30 12:06 - 2016-08-23 10:50 - 00000000 ____D C:\Program Files\Rockstar Games
2016-07-30 12:06 - 2016-08-23 10:50 - 00000000 ____D C:\Program Files (x86)\Rockstar Games
2016-07-30 11:35 - 2016-07-30 11:35 - 00000407 _____ C:\Users\Public\Desktop\Grand Theft Auto V.lnk
2016-07-30 11:35 - 2016-07-30 11:35 - 00000407 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Grand Theft Auto V.lnk
2016-07-28 22:36 - 2016-08-03 18:41 - 00000972 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-07-28 22:36 - 2016-08-03 16:43 - 00000968 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-07-27 09:26 - 2016-07-27 09:26 - 03057285 _____ C:\Users\Milan\Downloads\oez_prirucka_elektrikare_web.pdf
2016-07-26 12:14 - 2016-07-26 12:14 - 00110484 _____ C:\Users\Milan\Documents\Spravujte své rezervace - Booking.pdf
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-08-23 12:51 - 2016-07-03 07:13 - 00000000 ____D C:\FRST
2016-08-23 12:43 - 2012-12-13 17:31 - 00000000 ____D C:\Users\Milan\AppData\Roaming\Skype
2016-08-23 12:36 - 2016-03-30 01:05 - 00000000 _____ C:\Users\Milan\AppData\Roaming\FileOut.cns
2016-08-23 12:36 - 2016-03-30 01:05 - 00000000 _____ C:\Users\Milan\AppData\Roaming\FileIn.cns
2016-08-23 12:17 - 2014-12-25 12:23 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-08-23 12:04 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\IME
2016-08-23 12:03 - 2016-07-16 08:04 - 00262144 _____ C:\WINDOWS\system32\config\BBI
2016-08-23 12:03 - 2012-12-13 17:25 - 00000000 ____D C:\Users\Milan\AppData\Roaming\Adobe
2016-08-23 11:20 - 2015-12-22 18:44 - 00000000 ____D C:\Users\Milan\AppData\Roaming\Kodi
2016-08-23 11:14 - 2012-12-13 17:33 - 00000000 ____D C:\Users\Milan\AppData\Local\Google
2016-08-23 10:54 - 2016-07-23 16:08 - 00000000 ____D C:\Program Files (x86)\Microsoft Games
2016-08-23 10:54 - 2016-07-16 13:45 - 00000000 ____D C:\WINDOWS\INF
2016-08-23 10:54 - 2016-04-01 00:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games
2016-08-23 10:54 - 2013-02-05 20:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2016-08-23 10:54 - 2012-12-29 20:10 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-08-23 10:52 - 2012-12-13 17:26 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-08-23 10:46 - 2013-08-18 09:59 - 00249856 ____N (Microsoft Corporation) C:\WINDOWS\Setup1.exe
2016-08-23 10:46 - 2013-08-18 09:59 - 00073216 _____ (Microsoft Corporation) C:\WINDOWS\ST6UNST.EXE
2016-08-23 07:56 - 2015-03-14 21:16 - 00000000 ____D C:\Users\Milan\AppData\Roaming\TeamViewer
2016-08-23 07:56 - 2014-12-26 17:42 - 00000000 ____D C:\Program Files (x86)\Steam
2016-08-23 07:56 - 2013-04-13 16:11 - 00000000 ____D C:\Users\Milan\AppData\Roaming\uTorrent
2016-08-23 07:56 - 2012-12-22 15:04 - 00000000 ____D C:\Users\Milan\AppData\Roaming\DAEMON Tools Lite
2016-08-23 07:54 - 2015-12-22 09:52 - 00000863 _____ C:\Users\Public\Desktop\CCleaner.lnk
2016-08-23 07:46 - 2016-07-16 13:47 - 00000000 ___HD C:\Program Files\WindowsApps
2016-08-23 07:46 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-08-22 13:03 - 2014-12-09 09:11 - 00000000 ____D C:\Users\Milan\AppData\Roaming\vlc
2016-08-22 08:04 - 2014-06-17 08:30 - 00000745 _____ C:\Users\Milan\Documents\moje účty na netu.zip
2016-08-22 07:26 - 2015-08-08 13:17 - 00002022 _____ C:\Users\Milan\Desktop\dreamboxEDIT.lnk
2016-08-22 07:26 - 2013-07-27 17:33 - 00000000 ____D C:\Program Files (x86)\dreamboxEDIT
2016-08-20 22:42 - 2012-12-14 05:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
2016-08-16 20:24 - 2015-04-11 08:28 - 00000000 ____D C:\Users\Milan\Documents\Euro Truck Simulator 2
2016-08-16 14:56 - 2016-07-17 00:25 - 00589686 _____ C:\WINDOWS\system32\perfh005.dat
2016-08-16 14:56 - 2016-07-17 00:25 - 00139318 _____ C:\WINDOWS\system32\perfc005.dat
2016-08-14 07:52 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\rescache
2016-08-14 07:19 - 2016-03-29 08:04 - 00002336 _____ C:\Users\Milan\Desktop\Google Chrome.lnk
2016-08-13 22:42 - 2016-03-29 07:54 - 00002272 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-08-13 22:42 - 2016-03-29 07:54 - 00002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-08-13 20:20 - 2015-12-20 08:22 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-08-13 20:19 - 2012-12-13 17:31 - 00000000 ____D C:\ProgramData\Skype
2016-08-13 17:06 - 2016-07-16 13:47 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-08-13 17:06 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\lv-LV
2016-08-13 17:06 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\lt-LT
2016-08-13 17:06 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\et-EE
2016-08-13 17:06 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\es-MX
2016-08-13 17:06 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\en-GB
2016-08-13 17:06 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-08-13 17:06 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\ShellExperiences
2016-08-13 16:38 - 2016-07-16 13:36 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-08-13 16:38 - 2013-08-15 09:15 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-08-13 16:33 - 2012-12-14 17:49 - 147640136 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-08-05 17:15 - 2016-03-20 15:11 - 00001120 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2016-08-05 17:15 - 2015-06-20 09:37 - 00000000 ____D C:\Program Files (x86)\Opera
2016-08-05 15:32 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\NDF
2016-08-04 04:44 - 2012-12-13 17:25 - 00000000 ____D C:\Users\Milan\AppData\Local\Packages
2016-08-04 04:31 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\appcompat
2016-08-03 20:23 - 2016-07-16 13:47 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template
2016-08-03 20:17 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2016-08-03 20:17 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\MUI
2016-08-03 19:55 - 2016-07-16 13:47 - 00000000 ____D C:\ProgramData\USOPrivate
2016-08-03 19:55 - 2016-07-16 13:47 - 00000000 ____D C:\Program Files\Windows NT
2016-08-03 19:55 - 2016-07-16 08:04 - 00032768 _____ C:\WINDOWS\system32\config\ELAM
2016-08-03 19:52 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase
2016-08-03 19:52 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\Registration
2016-08-03 19:52 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2016-08-03 19:49 - 2014-11-12 01:20 - 00023020 _____ C:\WINDOWS\system32\emptyregdb.dat
2016-08-03 19:48 - 2016-07-16 13:47 - 00000000 __RHD C:\Users\Public\Libraries
2016-08-03 19:40 - 2016-07-16 13:47 - 00000000 ___SD C:\WINDOWS\Downloaded Program Files
2016-08-03 19:40 - 2016-05-17 18:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2016-08-03 19:40 - 2016-04-30 10:52 - 00000000 ____D C:\Users\Milan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IrfanView
2016-08-03 19:40 - 2016-04-20 16:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HD Tune
2016-08-03 19:40 - 2016-03-29 07:58 - 00000000 ____D C:\Users\Milan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome
2016-08-03 19:40 - 2016-03-27 08:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Trackmania Turbo
2016-08-03 19:40 - 2016-02-14 22:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HD Tune Pro
2016-08-03 19:40 - 2016-02-01 09:57 - 00000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.2
2016-08-03 19:40 - 2015-12-22 18:41 - 00000000 ____D C:\Users\Milan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Kodi
2016-08-03 19:40 - 2015-12-22 09:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2016-08-03 19:40 - 2015-11-03 18:44 - 00000000 ____D C:\Users\Milan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows 7 USB DVD Download Tool
2016-08-03 19:40 - 2015-10-30 20:35 - 00000000 ____D C:\WINDOWS\ShellNew
2016-08-03 19:40 - 2015-09-20 09:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FastShare
2016-08-03 19:40 - 2015-05-03 08:39 - 00000000 ____D C:\Users\Milan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDownloader
2016-08-03 19:40 - 2015-01-02 10:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NEF to JPG
2016-08-03 19:40 - 2014-12-26 17:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2016-08-03 19:40 - 2014-12-25 12:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2016-08-03 19:40 - 2014-12-09 09:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2016-08-03 19:40 - 2014-09-16 11:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Assetto Corsa
2016-08-03 19:40 - 2014-09-10 20:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit Reader
2016-08-03 19:40 - 2014-07-27 17:25 - 00000000 ____D C:\Users\Milan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-08-03 19:40 - 2014-07-27 17:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-08-03 19:40 - 2014-04-27 12:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Recuva
2016-08-03 19:40 - 2014-04-12 22:29 - 00000000 ____D C:\Users\Milan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SDÍLEJ.CZ
2016-08-03 19:40 - 2014-03-16 21:03 - 00000000 ____D C:\Users\Milan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2016-08-03 19:40 - 2013-09-01 12:08 - 00000000 ____D C:\Users\Milan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\uTorrent
2016-08-03 19:40 - 2013-08-27 17:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DrEditHD
2016-08-03 19:40 - 2013-07-27 17:33 - 00000000 ____D C:\Users\Milan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\dreamboxEDIT
2016-08-03 19:40 - 2013-07-22 14:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2016-08-03 19:40 - 2013-04-20 07:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Euro Truck Simulator 2
2016-08-03 19:40 - 2013-03-14 05:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2016-08-03 19:40 - 2012-12-22 15:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
2016-08-03 19:40 - 2012-12-17 11:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PhotoScape
2016-08-03 19:40 - 2012-12-13 17:59 - 00000000 ____D C:\Users\Milan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Total Commander
2016-08-03 19:38 - 2016-07-16 13:47 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-08-03 19:38 - 2015-10-30 08:28 - 00000000 ____D C:\Users\Default.migrated
2016-08-03 19:36 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed
2016-08-03 19:36 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2016-08-03 19:36 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2016-08-03 19:36 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\SysWOW64\IME
2016-08-03 19:36 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\SysWOW64\et-EE
2016-08-03 19:36 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\SysWOW64\en-GB
2016-08-03 19:36 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\spool
2016-08-03 19:36 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-08-03 19:36 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\Macromed
2016-08-03 19:36 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\InputMethod
2016-08-03 19:36 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\IME
2016-08-03 19:36 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\WindowsInternal.Inbox.Shared
2016-08-03 19:36 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\WindowsInternal.Inbox.Media.Shared
2016-08-03 19:35 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2016-08-03 19:35 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2016-08-03 19:35 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\InputMethod
2016-08-03 19:35 - 2016-03-17 10:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
2016-08-03 19:35 - 2016-02-15 08:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Transcend
2016-08-03 19:35 - 2015-12-20 08:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2016-08-03 19:35 - 2014-10-29 09:09 - 00000000 ____D C:\WINDOWS\system32\AutoUpdateLicense
2016-08-03 19:35 - 2013-08-06 14:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MRP - Company
2016-08-03 19:35 - 2013-02-05 20:51 - 00000000 ____D C:\WINDOWS\system32\appmgmt
2016-08-03 19:34 - 2016-07-16 13:47 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-08-03 19:33 - 2015-03-08 12:43 - 00000000 ____D C:\Users\Milan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HWA
2016-08-03 19:33 - 2014-11-17 18:31 - 00000000 ____D C:\Users\Milan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Euro Truck Simulator 2 v1.13.3s (15 DLC)(2-click run)
2016-08-03 19:33 - 2014-11-17 18:31 - 00000000 ____D C:\Users\Milan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\1-click run
2016-08-03 19:32 - 2012-12-25 11:56 - 00000000 ____D C:\Users\Guest\AppData\Local\Packages
2016-08-03 19:31 - 2016-07-16 08:04 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2016-08-03 19:28 - 2016-07-16 13:47 - 00000000 ___RD C:\WINDOWS\PrintDialog
2016-08-03 19:28 - 2016-07-16 13:47 - 00000000 ___RD C:\WINDOWS\MiracastView
2016-08-03 19:27 - 2012-12-22 13:44 - 00000000 ____D C:\AMD
2016-08-03 19:05 - 2012-12-13 17:17 - 00008192 __RSH C:\BOOTSECT.BAK
2016-08-03 18:28 - 2016-04-29 08:33 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-08-01 17:51 - 2016-05-02 18:27 - 00000000 ____D C:\Users\Milan\Documents\Tabulky energií
2016-07-30 12:34 - 2016-04-29 08:33 - 00000958 _____ C:\WINDOWS\Tasks\Adobe Flash Player PPAPI Notifier.job
2016-07-30 12:09 - 2014-12-06 12:45 - 00000000 ____D C:\Users\Milan\AppData\Local\Rockstar Games
2016-07-27 21:25 - 2012-12-14 17:47 - 00504488 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2016-07-27 10:17 - 2016-06-05 10:39 - 00239616 ___SH C:\Users\Milan\Documents\Thumbs.db
==================== Files in the root of some directories =======
2016-03-30 01:05 - 2016-08-23 12:36 - 0000000 _____ () C:\Users\Milan\AppData\Roaming\FileIn.cns
2016-03-30 01:05 - 2016-08-23 12:36 - 0000000 _____ () C:\Users\Milan\AppData\Roaming\FileOut.cns
2013-06-09 15:35 - 2013-06-09 15:35 - 0000001 _____ () C:\Users\Milan\AppData\Local\llftool.4.25.agreement
2013-06-16 11:58 - 2013-06-16 11:58 - 0000019 _____ () C:\Users\Milan\AppData\Local\llftool.license
2012-12-20 16:56 - 2014-12-14 17:55 - 0007648 _____ () C:\Users\Milan\AppData\Local\resmon.resmoncfg
2016-08-03 19:26 - 2016-08-03 19:26 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
Files to move or delete:
====================
C:\Users\Milan\AppData\Local\Temp\mdi064.dll
Some files in TEMP:
====================
C:\Users\Milan\AppData\Local\Temp\mdi064.dll
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2016-08-21 20:23
==================== End of FRST.txt ============================
Byl jsem zasažen nějakým svinstvem a nedaří se mi ho vypudit.
Prosím o kontrolu logu.
Děkuji.
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 21-08-2016 01
Ran by Milan (administrator) on MILAN (23-08-2016 12:51:11)
Running from C:\Users\Milan\Downloads
Loaded Profiles: Milan (Available Profiles: Milan & Guest)
Platform: Windows 10 Pro Version 1607 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
() C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Pixart Imaging Inc) C:\Windows\System32\TiltWheelMouse.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.7.102.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8492800 2015-06-24] (Realtek Semiconductor)
HKLM\...\Run: [MouseDriver] => C:\WINDOWS\system32\TiltWheelMouse.exe [241152 2013-04-09] (Pixart Imaging Inc)
HKLM\...\Run: [WindowsDefender] => C:\Program Files\Windows Defender\MSASCuiL.exe [631808 2016-07-16] (Microsoft Corporation)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-11-04] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKU\S-1-5-21-2007596338-2558511808-3841995970-1001\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [23375200 2016-07-29] (Google)
HKU\S-1-5-21-2007596338-2558511808-3841995970-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [29502592 2016-07-14] (Skype Technologies S.A.)
HKU\S-1-5-21-2007596338-2558511808-3841995970-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8894680 2016-08-05] (Piriform Ltd)
HKU\S-1-5-21-2007596338-2558511808-3841995970-1001\...\Run: [Zoner Photo Studio Autoupdate] => D:\Zoner\Photo Studio 17\Program32\ZPSTRAY.EXE [563416 2015-07-12] (ZONER software)
HKU\S-1-5-21-2007596338-2558511808-3841995970-1001\...\Run: [DAEMON Tools Ultra Agent] => C:\Program Files\DAEMON Tools Ultra\DTAgent.exe [4343488 2016-07-29] (Disc Soft Ltd)
HKU\S-1-5-21-2007596338-2558511808-3841995970-1001\...\Run: [tsiVideo] => C:\Users\Milan\AppData\Local\Temp\mdi064.dll [1456128 2016-08-23] () <===== ATTENTION
HKU\S-1-5-21-2007596338-2558511808-3841995970-1001\...\RunOnce: [Uninstall C:\Users\Milan\AppData\Local\Microsoft\OneDrive\17.3.6302.0225_20\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Milan\AppData\Local\Microsoft\OneDrive\17.3.6302.0225_20\amd64"
HKU\S-1-5-21-2007596338-2558511808-3841995970-1001\...\MountPoints2: {9eda4b90-5b8f-11e6-8890-40167e655061} - "E:\setup.exe"
HKU\S-1-5-21-2007596338-2558511808-3841995970-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\scrnsave.scr [37376 2016-07-16] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-07-29] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-07-29] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-07-29] (Google)
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\Milan\AppData\Local\Microsoft\SkyDrive\17.3.1229.0918\amd64\SkyDriveShell64.dll [2014-10-29] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\Milan\AppData\Local\Microsoft\SkyDrive\17.3.1229.0918\amd64\SkyDriveShell64.dll [2014-10-29] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\Milan\AppData\Local\Microsoft\SkyDrive\17.3.1229.0918\amd64\SkyDriveShell64.dll [2014-10-29] (Microsoft Corporation)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\..\Interfaces\{9a8995cb-36f8-4629-8b1e-b3b0b01a28c3}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{b528cb77-3b49-4c87-8777-3330d959f622}: [NameServer] 8.8.8.8,8.8.4.4
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
SearchScopes: HKU\S-1-5-21-2007596338-2558511808-3841995970-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
DPF: HKLM-x32 {7530BFB8-7293-4D34-9923-61A11451AFC5} hxxp://download.eset.com/special/eos/OnlineScanner.cab
DPF: HKLM-x32 {D4B68B83-8710-488B-A692-D74B50BA558E} hxxp://ccfiles.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab
DPF: HKLM-x32 {E705A591-DA3C-4228-B0D5-A356DBA42FBF} hxxp://ccfiles.creative.com/Web/softwareupdate/su2/ocx/20015/CTSUEng.cab
DPF: HKLM-x32 {F6ACF75C-C32C-447B-9BEF-46B766368D29} hxxp://ccfiles.creative.com/Web/softwareupdate/ocx/121022/CTPID.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2016-02-01] (Skype Technologies)
Edge:
======
Edge Extension: Adblock Plus -> 10_EyeoGmbHAdblockPlus_d55gg7py3s0m0 => C:\Program Files\WindowsApps\EyeoGmbH.AdblockPlus_0.9.6.0_neutral__d55gg7py3s0m0 [2016-08-04]
FireFox:
========
FF ProfilePath: C:\Users\Milan\AppData\Roaming\Mozilla\Firefox\Profiles\r3jpb4vn.default
FF NewTab: about:newtab
FF Homepage: about:home
FF NetworkProxy: "backup.ftp", "83.234.14.185: "
FF NetworkProxy: "backup.ftp_port", 8080
FF NetworkProxy: "backup.socks", "83.234.14.185: "
FF NetworkProxy: "backup.socks_port", 8080
FF NetworkProxy: "backup.ssl", "83.234.14.185: "
FF NetworkProxy: "backup.ssl_port", 8080
FF NetworkProxy: "ftp", "149.156.112.55"
FF NetworkProxy: "ftp_port", 80
FF NetworkProxy: "gopher", ""
FF NetworkProxy: "gopher_port", 0
FF NetworkProxy: "http", "149.156.112.55"
FF NetworkProxy: "http_port", 80
FF NetworkProxy: "share_proxy_settings", true
FF NetworkProxy: "socks", "149.156.112.55"
FF NetworkProxy: "socks_port", 80
FF NetworkProxy: "ssl", "149.156.112.55"
FF NetworkProxy: "ssl_port", 80
FF NetworkProxy: "type", 4
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50428.0\npctrl.dll [2016-04-27] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> D:\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> D:\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2014-04-15] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2014-04-15] (Foxit Corporation)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2015-05-21] (Google)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-16] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-16] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.21.2 -> C:\WINDOWS\SysWOW64\npDeployJava1.dll [2013-06-17] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50428.0\npctrl.dll [2016-04-27] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-28] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-28] (Google Inc.)
FF Extension: Adblock Plus - C:\Users\Milan\AppData\Roaming\Mozilla\Firefox\Profiles\r3jpb4vn.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-05-02]
Chrome:
=======
CHR Profile: C:\Users\Milan\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Prezentace Google) - C:\Users\Milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-07-04]
CHR Extension: (Flash Video Downloader) - C:\Users\Milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aiimdkdngfcipjohbjenkahhlhccpdbc [2016-08-18]
CHR Extension: (Dokumenty Google) - C:\Users\Milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-07-04]
CHR Extension: (Disk Google) - C:\Users\Milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-07-04]
CHR Extension: (YouTube) - C:\Users\Milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-07-04]
CHR Extension: (Adblock Plus) - C:\Users\Milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-07-04]
CHR Extension: (Tabulky Google) - C:\Users\Milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-07-04]
CHR Extension: (Dokumenty Google offline) - C:\Users\Milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-07-04]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-07-04]
CHR Extension: (Gmail) - C:\Users\Milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-07-04]
CHR Extension: (Chrome Media Router) - C:\Users\Milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-08-19]
Opera:
=======
OPR Extension: (AdBlock) - C:\Users\Milan\AppData\Roaming\Opera Software\Opera Stable\Extensions\aobdicepooefnbaeokijohmhjlleamfj [2016-07-09]
OPR Extension: (FVD Video Downloader) - C:\Users\Milan\AppData\Roaming\Opera Software\Opera Stable\Extensions\neacgcjokggofibnbfapeaejhclmpple [2016-05-17]
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe [936728 2014-01-28] ()
S3 Disc Soft Ultra Bus Service; C:\Program Files\DAEMON Tools Ultra\DiscSoftBusService.exe [1449152 2016-07-29] (Disc Soft Ltd)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-16] (Intel Corporation)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1514464 2016-03-10] (Malwarebytes)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1136608 2016-03-10] (Malwarebytes)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2889896 2016-07-17] (Microsoft Corporation)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103720 2016-07-16] (Microsoft Corporation)
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S0 amdkmafd; C:\Windows\System32\drivers\amdkmafd.sys [21160 2012-09-23] (Advanced Micro Devices, Inc.)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2014-01-28] ()
R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWT6.sys [102912 2015-05-28] (Advanced Micro Devices)
R3 AU8168; C:\Windows\system32\DRIVERS\au630x64.sys [792648 2013-09-23] (Realtek )
S3 bthav; C:\Windows\system32\drivers\bthav.sys [40448 2008-07-10] (CSR, plc) [File not signed]
S3 BtHidBus; C:\Windows\System32\Drivers\BtHidBus.sys [25056 2011-12-21] (IVT Corporation.)
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283200 2012-12-22] (DT Soft Ltd)
R3 dtultrascsibus; C:\Windows\System32\drivers\dtultrascsibus.sys [30264 2016-08-06] (Disc Soft Ltd)
R3 dtultrausbbus; C:\Windows\System32\drivers\dtultrausbbus.sys [47672 2016-08-06] (Disc Soft Ltd)
R1 HWiNFO32; C:\WINDOWS\SysWoW64\drivers\HWiNFO64A.SYS [27552 2016-08-23] (REALiX(tm))
R3 i8042HDR; C:\Windows\system32\DRIVERS\i8042HDR.sys [15920 2009-08-14] (Windows (R) Codename Longhorn DDK provider)
S3 IvtAudioBusSrv; C:\Windows\System32\Drivers\IvtBtBus.sys [27256 2012-12-24] (IVT Corporation.)
S3 IvtPanBusSrv; C:\Windows\System32\Drivers\btnetBus.sys [31480 2012-12-24] (IVT Corporation.)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [27008 2016-03-10] (Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [192216 2016-08-23] (Malwarebytes)
R3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [65408 2016-03-10] (Malwarebytes Corporation)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-09-16] (Intel Corporation)
S3 NetAdapterCx; C:\Windows\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
S3 t_mouse.sys; C:\Windows\system32\DRIVERS\t_mouse.sys [6144 2013-04-09] ()
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-08-23 12:51 - 2016-08-23 12:51 - 00017749 _____ C:\Users\Milan\Downloads\FRST.txt
2016-08-23 12:46 - 2016-08-23 12:47 - 02396672 _____ (Farbar) C:\Users\Milan\Downloads\FRST64.exe
2016-08-23 11:15 - 2016-08-23 11:16 - 00000000 ____D C:\ProgramData\ProductData
2016-08-23 11:15 - 2016-08-23 11:15 - 00027552 _____ (REALiX(tm)) C:\WINDOWS\SysWOW64\Drivers\HWiNFO64A.SYS
2016-08-23 11:15 - 2016-08-23 11:15 - 00003006 _____ C:\WINDOWS\System32\Tasks\Driver Booster SkipUAC (Milan)
2016-08-23 11:15 - 2016-08-23 11:15 - 00000000 ____D C:\WINDOWS\IObit
2016-08-23 11:15 - 2016-08-23 11:15 - 00000000 ____D C:\Users\Milan\AppData\Roaming\IObit
2016-08-23 11:15 - 2016-08-23 11:15 - 00000000 ____D C:\Users\Milan\AppData\LocalLow\IObit
2016-08-23 11:15 - 2016-08-23 11:15 - 00000000 ____D C:\ProgramData\IObit
2016-08-23 11:14 - 2016-08-23 12:03 - 00000000 ____D C:\Users\Milan\AppData\Roaming\GameLauncher
2016-08-23 11:14 - 2016-08-23 11:14 - 00001075 _____ C:\Users\Milan\Desktop\GameLauncher.lnk
2016-08-23 11:14 - 2016-08-23 11:14 - 00000000 ____D C:\Users\Milan\AppData\Roaming\HPRewriter2
2016-08-23 07:52 - 2016-08-23 07:52 - 00000505 _____ C:\Users\Milan\Desktop\Programy a funkce – zástupce.lnk
2016-08-22 23:50 - 2016-08-22 23:50 - 00080647 _____ C:\Users\Milan\Downloads\Proforma_1516078558.pdf
2016-08-22 11:02 - 2016-08-22 11:02 - 51089877 _____ C:\Users\Milan\Downloads\siko-katalog-2016.zip
2016-08-21 09:26 - 2016-08-21 09:26 - 00051147 _____ C:\Users\Milan\Documents\Radky parabola - OMKO.pdf
2016-08-17 19:51 - 2016-08-17 19:51 - 09863520 _____ (TeamViewer GmbH) C:\Users\Milan\Downloads\TeamViewer_Setup_cs-iwl.exe
2016-08-14 21:30 - 2016-08-14 21:30 - 09863520 _____ (TeamViewer GmbH) C:\Users\Milan\Downloads\TeamViewer_Setup_cs-iuu.exe
2016-08-13 15:57 - 2016-08-02 10:58 - 00168800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2016-08-13 15:57 - 2016-08-02 10:53 - 02745224 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-08-13 15:57 - 2016-08-02 10:52 - 00619368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-08-13 15:57 - 2016-08-02 10:48 - 22219328 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-08-13 15:57 - 2016-08-02 10:48 - 00241496 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2016-08-13 15:57 - 2016-08-02 10:44 - 00151232 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2016-08-13 15:57 - 2016-08-02 10:44 - 00114192 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2016-08-13 15:57 - 2016-08-02 10:23 - 22572032 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-08-13 15:57 - 2016-08-02 10:21 - 02755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2016-08-13 15:57 - 2016-08-02 10:21 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll
2016-08-13 15:57 - 2016-08-02 10:20 - 00210944 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2016-08-13 15:57 - 2016-08-02 10:20 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2016-08-13 15:57 - 2016-08-02 10:15 - 00231424 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2016-08-13 15:57 - 2016-08-02 10:15 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll
2016-08-13 15:57 - 2016-08-02 10:14 - 00289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeveloperOptionsSettingsHandlers.dll
2016-08-13 15:57 - 2016-08-02 10:13 - 01081856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2016-08-13 15:57 - 2016-08-02 10:12 - 00261120 _____ (Microsoft Corporation) C:\WINDOWS\system32\indexeddbserver.dll
2016-08-13 15:57 - 2016-08-02 10:11 - 00495104 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataSenseHandlers.dll
2016-08-13 15:57 - 2016-08-02 10:11 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-08-13 15:57 - 2016-08-02 10:10 - 00509952 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Bluetooth.dll
2016-08-13 15:57 - 2016-08-02 10:09 - 00496128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.UserAccountsHandlers.dll
2016-08-13 15:57 - 2016-08-02 10:07 - 23682048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-08-13 15:57 - 2016-08-02 10:07 - 09125888 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-08-13 15:57 - 2016-08-02 10:03 - 04749312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-08-13 15:57 - 2016-08-02 10:00 - 05511168 _____ (Microsoft Corporation) C:\WINDOWS\system32\aclui.dll
2016-08-13 15:57 - 2016-08-02 09:59 - 08124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-08-13 15:57 - 2016-08-02 09:58 - 01656320 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2016-08-13 15:57 - 2016-08-02 09:57 - 01491456 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-08-13 15:57 - 2016-08-02 09:56 - 06664192 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe
2016-08-13 15:57 - 2016-08-02 09:56 - 01785856 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-08-13 15:57 - 2016-08-02 09:56 - 00909312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2016-08-13 15:57 - 2016-08-02 09:55 - 03617280 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-08-13 15:57 - 2016-08-02 09:55 - 01508864 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-08-13 15:57 - 2016-08-02 09:52 - 00115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll
2016-08-13 15:57 - 2016-08-02 06:56 - 02251440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-08-13 15:57 - 2016-08-02 06:51 - 20965240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2016-08-13 15:57 - 2016-08-02 06:47 - 00079536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2016-08-13 15:57 - 2016-08-02 06:39 - 02755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2016-08-13 15:57 - 2016-08-02 06:37 - 00121344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll
2016-08-13 15:57 - 2016-08-02 06:37 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2016-08-13 15:57 - 2016-08-02 06:36 - 00150528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2016-08-13 15:57 - 2016-08-02 06:33 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Shell.Search.UriHandler.dll
2016-08-13 15:57 - 2016-08-02 06:30 - 00822784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2016-08-13 15:57 - 2016-08-02 06:28 - 19423232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2016-08-13 15:57 - 2016-08-02 06:27 - 07623168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2016-08-13 15:57 - 2016-08-02 06:26 - 19417600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-08-13 15:57 - 2016-08-02 06:26 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\indexeddbserver.dll
2016-08-13 15:57 - 2016-08-02 06:25 - 05398016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aclui.dll
2016-08-13 15:57 - 2016-08-02 06:25 - 01456640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2016-08-13 15:57 - 2016-08-02 06:23 - 06474752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspaint.exe
2016-08-13 15:57 - 2016-08-02 06:16 - 06044672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2016-08-13 15:57 - 2016-08-02 06:13 - 01600512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-08-13 15:57 - 2016-08-02 06:13 - 00712192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2016-08-13 15:57 - 2016-08-02 06:12 - 02999296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2016-08-13 15:57 - 2016-08-02 06:09 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offlinelsa.dll
2016-08-07 06:49 - 2016-08-07 06:49 - 00036464 _____ C:\Users\Milan\Documents\Jízdenka 7.8.2016.pdf
2016-08-06 17:44 - 2016-08-06 17:44 - 00000000 ____D C:\Users\Milan\AppData\Local\Disc_Soft_Ltd
2016-08-06 14:59 - 2016-08-06 14:59 - 00047672 _____ (Disc Soft Ltd) C:\WINDOWS\system32\Drivers\dtultrausbbus.sys
2016-08-06 14:59 - 2016-08-06 14:59 - 00000000 ____D C:\Users\Public\Documents\Daemon Tools Images
2016-08-06 14:58 - 2016-08-06 15:00 - 00000000 ____D C:\Users\Milan\AppData\Roaming\DAEMON Tools Ultra
2016-08-06 14:58 - 2016-08-06 14:59 - 00000000 ____D C:\Program Files\DAEMON Tools Ultra
2016-08-06 14:58 - 2016-08-06 14:58 - 00030264 _____ (Disc Soft Ltd) C:\WINDOWS\system32\Drivers\dtultrascsibus.sys
2016-08-06 14:58 - 2016-08-06 14:58 - 00001823 _____ C:\Users\Public\Desktop\DAEMON Tools Ultra.lnk
2016-08-06 14:58 - 2016-08-06 14:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Ultra
2016-08-06 14:58 - 2016-08-06 14:58 - 00000000 ____D C:\ProgramData\DAEMON Tools Ultra
2016-08-03 20:23 - 2016-08-23 07:56 - 00000000 ___DC C:\WINDOWS\Panther
2016-08-03 20:20 - 2016-08-03 20:20 - 02190688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-08-03 20:20 - 2016-08-03 20:20 - 01708544 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2016-08-03 20:20 - 2016-08-03 20:20 - 01461200 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2016-08-03 20:20 - 2016-08-03 20:20 - 01435896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2016-08-03 20:20 - 2016-08-03 20:20 - 01418304 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2016-08-03 20:20 - 2016-08-03 20:20 - 01265424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2016-08-03 20:20 - 2016-08-03 20:20 - 01260384 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2016-08-03 20:20 - 2016-08-03 20:20 - 00843104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2016-08-03 20:20 - 2016-08-03 20:20 - 00770048 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2016-08-03 20:20 - 2016-08-03 20:20 - 00658784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2016-08-03 20:20 - 2016-08-03 20:20 - 00402272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2016-08-03 20:20 - 2016-08-03 20:20 - 00389000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtapi.dll
2016-08-03 20:20 - 2016-08-03 20:20 - 00297552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wevtapi.dll
2016-08-03 20:20 - 2016-08-03 20:20 - 00227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2016-08-03 20:20 - 2016-08-03 20:20 - 00062816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2016-08-03 20:20 - 2016-08-03 20:20 - 00000000 ____D C:\Program Files\CMAK
2016-08-03 20:20 - 2016-08-03 20:20 - 00000000 ____D C:\Program Files (x86)\CMAK
2016-08-03 20:19 - 2016-08-03 20:19 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
2016-08-03 20:17 - 2016-08-03 20:17 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2016-08-03 20:17 - 2016-08-03 20:17 - 00000000 ____D C:\Program Files\Reference Assemblies
2016-08-03 20:17 - 2016-08-03 20:17 - 00000000 ____D C:\Program Files\MSBuild
2016-08-03 20:17 - 2016-08-03 20:17 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2016-08-03 20:17 - 2016-08-03 20:17 - 00000000 ____D C:\Program Files (x86)\MSBuild
2016-08-03 20:17 - 2016-08-03 19:34 - 00000000 ____D C:\inetpub
2016-08-03 20:17 - 2016-05-25 15:31 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2016-08-03 20:17 - 2016-05-25 15:31 - 00124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2016-08-03 20:17 - 2016-05-25 15:31 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2016-08-03 20:17 - 2016-05-25 12:03 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2016-08-03 20:17 - 2016-05-25 12:03 - 00103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2016-08-03 20:17 - 2016-05-25 12:03 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2016-08-03 19:59 - 2016-08-03 19:59 - 00002426 _____ C:\Users\Milan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2016-08-03 19:59 - 2016-08-03 19:59 - 00000000 ___RD C:\Users\Milan\OneDrive
2016-08-03 19:59 - 2016-08-03 19:59 - 00000000 ____D C:\ProgramData\Microsoft OneDrive
2016-08-03 19:56 - 2016-08-03 20:13 - 00000000 ____D C:\Users\Milan\AppData\Local\ConnectedDevicesPlatform
2016-08-03 19:55 - 2016-08-03 19:55 - 00000020 ___SH C:\Users\Milan\ntuser.ini
2016-08-03 19:55 - 2016-08-03 19:55 - 00000000 _SHDL C:\Users\Default\Šablony
2016-08-03 19:55 - 2016-08-03 19:55 - 00000000 _SHDL C:\Users\Default\Soubory cookie
2016-08-03 19:55 - 2016-08-03 19:55 - 00000000 _SHDL C:\Users\Default\Poslední
2016-08-03 19:55 - 2016-08-03 19:55 - 00000000 _SHDL C:\Users\Default\Okolní tiskárny
2016-08-03 19:55 - 2016-08-03 19:55 - 00000000 _SHDL C:\Users\Default\Okolní síť
2016-08-03 19:55 - 2016-08-03 19:55 - 00000000 _SHDL C:\Users\Default\Nabídka Start
2016-08-03 19:55 - 2016-08-03 19:55 - 00000000 _SHDL C:\Users\Default\Dokumenty
2016-08-03 19:55 - 2016-08-03 19:55 - 00000000 _SHDL C:\Users\Default\Documents\Obrázky
2016-08-03 19:55 - 2016-08-03 19:55 - 00000000 _SHDL C:\Users\Default\Documents\Hudba
2016-08-03 19:55 - 2016-08-03 19:55 - 00000000 _SHDL C:\Users\Default\Documents\Filmy
2016-08-03 19:55 - 2016-08-03 19:55 - 00000000 _SHDL C:\Users\Default\Data aplikací
2016-08-03 19:55 - 2016-08-03 19:55 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2016-08-03 19:55 - 2016-08-03 19:55 - 00000000 _SHDL C:\Users\Default\AppData\Local\Data aplikací
2016-08-03 19:55 - 2016-08-03 19:55 - 00000000 _SHDL C:\Users\Default User\Documents\Obrázky
2016-08-03 19:55 - 2016-08-03 19:55 - 00000000 _SHDL C:\Users\Default User\Documents\Hudba
2016-08-03 19:55 - 2016-08-03 19:55 - 00000000 _SHDL C:\Users\Default User\Documents\Filmy
2016-08-03 19:55 - 2016-08-03 19:55 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2016-08-03 19:55 - 2016-08-03 19:55 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Data aplikací
2016-08-03 19:55 - 2016-08-03 19:55 - 00000000 ____D C:\ProgramData\USOShared
2016-08-03 19:53 - 2016-08-03 19:54 - 00011433 _____ C:\WINDOWS\diagwrn.xml
2016-08-03 19:53 - 2016-08-03 19:54 - 00011433 _____ C:\WINDOWS\diagerr.xml
2016-08-03 19:49 - 2016-08-03 19:49 - 00000000 ____D C:\WINDOWS\System32\Tasks\OfficeSoftwareProtectionPlatform
2016-08-03 19:48 - 2016-08-23 12:04 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-08-03 19:48 - 2016-08-05 17:15 - 00003950 _____ C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 1458479466
2016-08-03 19:48 - 2016-08-03 19:49 - 00003484 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2016-08-03 19:48 - 2016-08-03 19:49 - 00003416 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player PPAPI Notifier
2016-08-03 19:48 - 2016-08-03 19:49 - 00003334 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{07892968-663A-49AC-87CE-546425765F12}
2016-08-03 19:48 - 2016-08-03 19:49 - 00003260 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2016-08-03 19:48 - 2016-08-03 19:49 - 00003128 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2016-08-03 19:48 - 2016-08-03 19:49 - 00002940 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2007596338-2558511808-3841995970-1001
2016-08-03 19:48 - 2016-08-03 19:49 - 00002780 _____ C:\WINDOWS\System32\Tasks\Trigger KMS Activation
2016-08-03 19:48 - 2016-08-03 19:49 - 00002744 _____ C:\WINDOWS\System32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-2007596338-2558511808-3841995970-1001
2016-08-03 19:48 - 2016-08-03 19:49 - 00002296 _____ C:\WINDOWS\System32\Tasks\{2289670C-EA59-413A-8AD2-8C9026E30655}
2016-08-03 19:48 - 2016-08-03 19:49 - 00002266 _____ C:\WINDOWS\System32\Tasks\{A8B8B134-8C45-475E-A1A9-3008C07BB197}
2016-08-03 19:48 - 2016-08-03 19:49 - 00002164 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2016-08-03 19:48 - 2016-08-03 19:48 - 00000000 ____D C:\WINDOWS\System32\Tasks\NCH Software
2016-08-03 19:38 - 2016-08-03 19:38 - 00001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2016-08-03 19:38 - 2016-08-03 19:38 - 00000000 ____D C:\Users\Default\AppData\Roaming\ATI
2016-08-03 19:38 - 2016-08-03 19:38 - 00000000 ____D C:\Users\Default\AppData\Local\Microsoft Help
2016-08-03 19:38 - 2016-08-03 19:38 - 00000000 ____D C:\Users\Default\AppData\Local\Google
2016-08-03 19:38 - 2016-08-03 19:38 - 00000000 ____D C:\Users\Default\AppData\Local\ATI
2016-08-03 19:38 - 2016-08-03 19:38 - 00000000 ____D C:\Users\Default User\AppData\Roaming\ATI
2016-08-03 19:38 - 2016-08-03 19:38 - 00000000 ____D C:\Users\Default User\AppData\Local\Microsoft Help
2016-08-03 19:38 - 2016-08-03 19:38 - 00000000 ____D C:\Users\Default User\AppData\Local\Google
2016-08-03 19:38 - 2016-08-03 19:38 - 00000000 ____D C:\Users\Default User\AppData\Local\ATI
2016-08-03 19:34 - 2016-08-03 19:40 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2016-08-03 19:32 - 2016-08-23 12:36 - 00000000 ____D C:\Users\Milan
2016-08-03 19:32 - 2016-08-03 19:44 - 00000000 ____D C:\Users\Guest
2016-08-03 19:32 - 2016-08-03 19:32 - 00000000 _SHDL C:\Users\Milan\Šablony
2016-08-03 19:32 - 2016-08-03 19:32 - 00000000 _SHDL C:\Users\Milan\Soubory cookie
2016-08-03 19:32 - 2016-08-03 19:32 - 00000000 _SHDL C:\Users\Milan\Poslední
2016-08-03 19:32 - 2016-08-03 19:32 - 00000000 _SHDL C:\Users\Milan\Okolní tiskárny
2016-08-03 19:32 - 2016-08-03 19:32 - 00000000 _SHDL C:\Users\Milan\Okolní síť
2016-08-03 19:32 - 2016-08-03 19:32 - 00000000 _SHDL C:\Users\Milan\Nabídka Start
2016-08-03 19:32 - 2016-08-03 19:32 - 00000000 _SHDL C:\Users\Milan\Dokumenty
2016-08-03 19:32 - 2016-08-03 19:32 - 00000000 _SHDL C:\Users\Milan\Documents\Obrázky
2016-08-03 19:32 - 2016-08-03 19:32 - 00000000 _SHDL C:\Users\Milan\Documents\Hudba
2016-08-03 19:32 - 2016-08-03 19:32 - 00000000 _SHDL C:\Users\Milan\Documents\Filmy
2016-08-03 19:32 - 2016-08-03 19:32 - 00000000 _SHDL C:\Users\Milan\Data aplikací
2016-08-03 19:32 - 2016-08-03 19:32 - 00000000 _SHDL C:\Users\Milan\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2016-08-03 19:32 - 2016-08-03 19:32 - 00000000 _SHDL C:\Users\Milan\AppData\Local\Data aplikací
2016-08-03 19:32 - 2016-08-03 19:32 - 00000000 _SHDL C:\Users\Guest\Šablony
2016-08-03 19:32 - 2016-08-03 19:32 - 00000000 _SHDL C:\Users\Guest\Soubory cookie
2016-08-03 19:32 - 2016-08-03 19:32 - 00000000 _SHDL C:\Users\Guest\Poslední
2016-08-03 19:32 - 2016-08-03 19:32 - 00000000 _SHDL C:\Users\Guest\Okolní tiskárny
2016-08-03 19:32 - 2016-08-03 19:32 - 00000000 _SHDL C:\Users\Guest\Okolní síť
2016-08-03 19:32 - 2016-08-03 19:32 - 00000000 _SHDL C:\Users\Guest\Nabídka Start
2016-08-03 19:32 - 2016-08-03 19:32 - 00000000 _SHDL C:\Users\Guest\Dokumenty
2016-08-03 19:32 - 2016-08-03 19:32 - 00000000 _SHDL C:\Users\Guest\Documents\Obrázky
2016-08-03 19:32 - 2016-08-03 19:32 - 00000000 _SHDL C:\Users\Guest\Documents\Hudba
2016-08-03 19:32 - 2016-08-03 19:32 - 00000000 _SHDL C:\Users\Guest\Documents\Filmy
2016-08-03 19:32 - 2016-08-03 19:32 - 00000000 _SHDL C:\Users\Guest\Data aplikací
2016-08-03 19:32 - 2016-08-03 19:32 - 00000000 _SHDL C:\Users\Guest\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2016-08-03 19:32 - 2016-08-03 19:32 - 00000000 _SHDL C:\Users\Guest\AppData\Local\Data aplikací
2016-08-03 19:31 - 2016-08-16 14:56 - 01808146 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-08-03 19:31 - 2016-08-03 19:31 - 01375290 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI
2016-08-03 19:28 - 2016-08-03 19:40 - 00000000 ____D C:\Program Files\ATI Technologies
2016-08-03 19:28 - 2016-08-03 19:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2016-08-03 19:27 - 2016-08-03 19:40 - 00000000 ____D C:\Program Files\AMD
2016-08-03 19:27 - 2016-08-03 19:28 - 00000000 ____D C:\Program Files (x86)\ATI Technologies
2016-08-03 19:27 - 2016-08-03 19:27 - 00000000 ____D C:\ProgramData\Package Cache
2016-08-03 19:27 - 2016-08-03 19:27 - 00000000 ____D C:\Program Files\Common Files\ATI Technologies
2016-08-03 19:27 - 2016-08-03 19:27 - 00000000 _____ C:\WINDOWS\ativpsrm.bin
2016-08-03 19:27 - 2016-07-16 13:41 - 02716672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2016-08-03 19:26 - 2016-08-03 19:26 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_ASMBSW_01_11_00.Wdf
2016-08-03 19:26 - 2016-08-03 19:26 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
2016-08-03 19:26 - 2016-08-03 19:26 - 00000000 ____H C:\ProgramData\DP45977C.lfl
2016-08-03 19:26 - 2016-08-03 19:26 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2016-08-03 19:26 - 2016-08-03 19:26 - 00000000 ____D C:\WINDOWS\system32\DAX2
2016-08-03 19:26 - 2016-08-03 19:26 - 00000000 ____D C:\Program Files\Realtek
2016-08-03 19:26 - 2016-08-03 19:26 - 00000000 ____D C:\Program Files\ASUS
2016-08-03 19:26 - 2016-08-03 19:26 - 00000000 ____D C:\Program Files (x86)\ASUS
2016-08-03 19:26 - 2014-01-28 11:16 - 00028672 _____ (ASUSTek Computer Inc.) C:\WINDOWS\SysWOW64\AsIO.dll
2016-08-03 19:26 - 2014-01-28 11:16 - 00015232 _____ C:\WINDOWS\SysWOW64\Drivers\AsIO.sys
2016-08-03 19:24 - 2016-08-23 12:04 - 00363848 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-08-03 19:24 - 2016-08-23 10:32 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2016-08-03 19:24 - 2016-08-03 19:24 - 00000000 ____D C:\WINDOWS\ServiceProfiles
2016-07-30 12:44 - 2016-07-30 12:44 - 00000000 ____D C:\Users\Milan\AppData\Roaming\A
2016-07-30 12:09 - 2016-07-30 12:09 - 00000000 ____D C:\Users\Milan\Documents\Rockstar Games
2016-07-30 12:08 - 2016-07-30 12:08 - 00000000 ____D C:\ProgramData\Socialclub
2016-07-30 12:06 - 2016-08-23 10:50 - 00000000 ____D C:\Program Files\Rockstar Games
2016-07-30 12:06 - 2016-08-23 10:50 - 00000000 ____D C:\Program Files (x86)\Rockstar Games
2016-07-30 11:35 - 2016-07-30 11:35 - 00000407 _____ C:\Users\Public\Desktop\Grand Theft Auto V.lnk
2016-07-30 11:35 - 2016-07-30 11:35 - 00000407 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Grand Theft Auto V.lnk
2016-07-28 22:36 - 2016-08-03 18:41 - 00000972 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-07-28 22:36 - 2016-08-03 16:43 - 00000968 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-07-27 09:26 - 2016-07-27 09:26 - 03057285 _____ C:\Users\Milan\Downloads\oez_prirucka_elektrikare_web.pdf
2016-07-26 12:14 - 2016-07-26 12:14 - 00110484 _____ C:\Users\Milan\Documents\Spravujte své rezervace - Booking.pdf
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-08-23 12:51 - 2016-07-03 07:13 - 00000000 ____D C:\FRST
2016-08-23 12:43 - 2012-12-13 17:31 - 00000000 ____D C:\Users\Milan\AppData\Roaming\Skype
2016-08-23 12:36 - 2016-03-30 01:05 - 00000000 _____ C:\Users\Milan\AppData\Roaming\FileOut.cns
2016-08-23 12:36 - 2016-03-30 01:05 - 00000000 _____ C:\Users\Milan\AppData\Roaming\FileIn.cns
2016-08-23 12:17 - 2014-12-25 12:23 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-08-23 12:04 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\IME
2016-08-23 12:03 - 2016-07-16 08:04 - 00262144 _____ C:\WINDOWS\system32\config\BBI
2016-08-23 12:03 - 2012-12-13 17:25 - 00000000 ____D C:\Users\Milan\AppData\Roaming\Adobe
2016-08-23 11:20 - 2015-12-22 18:44 - 00000000 ____D C:\Users\Milan\AppData\Roaming\Kodi
2016-08-23 11:14 - 2012-12-13 17:33 - 00000000 ____D C:\Users\Milan\AppData\Local\Google
2016-08-23 10:54 - 2016-07-23 16:08 - 00000000 ____D C:\Program Files (x86)\Microsoft Games
2016-08-23 10:54 - 2016-07-16 13:45 - 00000000 ____D C:\WINDOWS\INF
2016-08-23 10:54 - 2016-04-01 00:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games
2016-08-23 10:54 - 2013-02-05 20:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2016-08-23 10:54 - 2012-12-29 20:10 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-08-23 10:52 - 2012-12-13 17:26 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-08-23 10:46 - 2013-08-18 09:59 - 00249856 ____N (Microsoft Corporation) C:\WINDOWS\Setup1.exe
2016-08-23 10:46 - 2013-08-18 09:59 - 00073216 _____ (Microsoft Corporation) C:\WINDOWS\ST6UNST.EXE
2016-08-23 07:56 - 2015-03-14 21:16 - 00000000 ____D C:\Users\Milan\AppData\Roaming\TeamViewer
2016-08-23 07:56 - 2014-12-26 17:42 - 00000000 ____D C:\Program Files (x86)\Steam
2016-08-23 07:56 - 2013-04-13 16:11 - 00000000 ____D C:\Users\Milan\AppData\Roaming\uTorrent
2016-08-23 07:56 - 2012-12-22 15:04 - 00000000 ____D C:\Users\Milan\AppData\Roaming\DAEMON Tools Lite
2016-08-23 07:54 - 2015-12-22 09:52 - 00000863 _____ C:\Users\Public\Desktop\CCleaner.lnk
2016-08-23 07:46 - 2016-07-16 13:47 - 00000000 ___HD C:\Program Files\WindowsApps
2016-08-23 07:46 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-08-22 13:03 - 2014-12-09 09:11 - 00000000 ____D C:\Users\Milan\AppData\Roaming\vlc
2016-08-22 08:04 - 2014-06-17 08:30 - 00000745 _____ C:\Users\Milan\Documents\moje účty na netu.zip
2016-08-22 07:26 - 2015-08-08 13:17 - 00002022 _____ C:\Users\Milan\Desktop\dreamboxEDIT.lnk
2016-08-22 07:26 - 2013-07-27 17:33 - 00000000 ____D C:\Program Files (x86)\dreamboxEDIT
2016-08-20 22:42 - 2012-12-14 05:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
2016-08-16 20:24 - 2015-04-11 08:28 - 00000000 ____D C:\Users\Milan\Documents\Euro Truck Simulator 2
2016-08-16 14:56 - 2016-07-17 00:25 - 00589686 _____ C:\WINDOWS\system32\perfh005.dat
2016-08-16 14:56 - 2016-07-17 00:25 - 00139318 _____ C:\WINDOWS\system32\perfc005.dat
2016-08-14 07:52 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\rescache
2016-08-14 07:19 - 2016-03-29 08:04 - 00002336 _____ C:\Users\Milan\Desktop\Google Chrome.lnk
2016-08-13 22:42 - 2016-03-29 07:54 - 00002272 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-08-13 22:42 - 2016-03-29 07:54 - 00002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-08-13 20:20 - 2015-12-20 08:22 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-08-13 20:19 - 2012-12-13 17:31 - 00000000 ____D C:\ProgramData\Skype
2016-08-13 17:06 - 2016-07-16 13:47 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-08-13 17:06 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\lv-LV
2016-08-13 17:06 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\lt-LT
2016-08-13 17:06 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\et-EE
2016-08-13 17:06 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\es-MX
2016-08-13 17:06 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\en-GB
2016-08-13 17:06 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-08-13 17:06 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\ShellExperiences
2016-08-13 16:38 - 2016-07-16 13:36 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-08-13 16:38 - 2013-08-15 09:15 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-08-13 16:33 - 2012-12-14 17:49 - 147640136 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-08-05 17:15 - 2016-03-20 15:11 - 00001120 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2016-08-05 17:15 - 2015-06-20 09:37 - 00000000 ____D C:\Program Files (x86)\Opera
2016-08-05 15:32 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\NDF
2016-08-04 04:44 - 2012-12-13 17:25 - 00000000 ____D C:\Users\Milan\AppData\Local\Packages
2016-08-04 04:31 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\appcompat
2016-08-03 20:23 - 2016-07-16 13:47 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template
2016-08-03 20:17 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2016-08-03 20:17 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\MUI
2016-08-03 19:55 - 2016-07-16 13:47 - 00000000 ____D C:\ProgramData\USOPrivate
2016-08-03 19:55 - 2016-07-16 13:47 - 00000000 ____D C:\Program Files\Windows NT
2016-08-03 19:55 - 2016-07-16 08:04 - 00032768 _____ C:\WINDOWS\system32\config\ELAM
2016-08-03 19:52 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase
2016-08-03 19:52 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\Registration
2016-08-03 19:52 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2016-08-03 19:49 - 2014-11-12 01:20 - 00023020 _____ C:\WINDOWS\system32\emptyregdb.dat
2016-08-03 19:48 - 2016-07-16 13:47 - 00000000 __RHD C:\Users\Public\Libraries
2016-08-03 19:40 - 2016-07-16 13:47 - 00000000 ___SD C:\WINDOWS\Downloaded Program Files
2016-08-03 19:40 - 2016-05-17 18:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2016-08-03 19:40 - 2016-04-30 10:52 - 00000000 ____D C:\Users\Milan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IrfanView
2016-08-03 19:40 - 2016-04-20 16:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HD Tune
2016-08-03 19:40 - 2016-03-29 07:58 - 00000000 ____D C:\Users\Milan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome
2016-08-03 19:40 - 2016-03-27 08:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Trackmania Turbo
2016-08-03 19:40 - 2016-02-14 22:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HD Tune Pro
2016-08-03 19:40 - 2016-02-01 09:57 - 00000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.2
2016-08-03 19:40 - 2015-12-22 18:41 - 00000000 ____D C:\Users\Milan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Kodi
2016-08-03 19:40 - 2015-12-22 09:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2016-08-03 19:40 - 2015-11-03 18:44 - 00000000 ____D C:\Users\Milan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows 7 USB DVD Download Tool
2016-08-03 19:40 - 2015-10-30 20:35 - 00000000 ____D C:\WINDOWS\ShellNew
2016-08-03 19:40 - 2015-09-20 09:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FastShare
2016-08-03 19:40 - 2015-05-03 08:39 - 00000000 ____D C:\Users\Milan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDownloader
2016-08-03 19:40 - 2015-01-02 10:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NEF to JPG
2016-08-03 19:40 - 2014-12-26 17:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2016-08-03 19:40 - 2014-12-25 12:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2016-08-03 19:40 - 2014-12-09 09:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2016-08-03 19:40 - 2014-09-16 11:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Assetto Corsa
2016-08-03 19:40 - 2014-09-10 20:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit Reader
2016-08-03 19:40 - 2014-07-27 17:25 - 00000000 ____D C:\Users\Milan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-08-03 19:40 - 2014-07-27 17:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-08-03 19:40 - 2014-04-27 12:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Recuva
2016-08-03 19:40 - 2014-04-12 22:29 - 00000000 ____D C:\Users\Milan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SDÍLEJ.CZ
2016-08-03 19:40 - 2014-03-16 21:03 - 00000000 ____D C:\Users\Milan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2016-08-03 19:40 - 2013-09-01 12:08 - 00000000 ____D C:\Users\Milan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\uTorrent
2016-08-03 19:40 - 2013-08-27 17:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DrEditHD
2016-08-03 19:40 - 2013-07-27 17:33 - 00000000 ____D C:\Users\Milan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\dreamboxEDIT
2016-08-03 19:40 - 2013-07-22 14:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2016-08-03 19:40 - 2013-04-20 07:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Euro Truck Simulator 2
2016-08-03 19:40 - 2013-03-14 05:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2016-08-03 19:40 - 2012-12-22 15:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
2016-08-03 19:40 - 2012-12-17 11:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PhotoScape
2016-08-03 19:40 - 2012-12-13 17:59 - 00000000 ____D C:\Users\Milan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Total Commander
2016-08-03 19:38 - 2016-07-16 13:47 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-08-03 19:38 - 2015-10-30 08:28 - 00000000 ____D C:\Users\Default.migrated
2016-08-03 19:36 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed
2016-08-03 19:36 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2016-08-03 19:36 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2016-08-03 19:36 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\SysWOW64\IME
2016-08-03 19:36 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\SysWOW64\et-EE
2016-08-03 19:36 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\SysWOW64\en-GB
2016-08-03 19:36 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\spool
2016-08-03 19:36 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-08-03 19:36 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\Macromed
2016-08-03 19:36 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\InputMethod
2016-08-03 19:36 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\IME
2016-08-03 19:36 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\WindowsInternal.Inbox.Shared
2016-08-03 19:36 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\WindowsInternal.Inbox.Media.Shared
2016-08-03 19:35 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2016-08-03 19:35 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2016-08-03 19:35 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\InputMethod
2016-08-03 19:35 - 2016-03-17 10:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
2016-08-03 19:35 - 2016-02-15 08:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Transcend
2016-08-03 19:35 - 2015-12-20 08:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2016-08-03 19:35 - 2014-10-29 09:09 - 00000000 ____D C:\WINDOWS\system32\AutoUpdateLicense
2016-08-03 19:35 - 2013-08-06 14:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MRP - Company
2016-08-03 19:35 - 2013-02-05 20:51 - 00000000 ____D C:\WINDOWS\system32\appmgmt
2016-08-03 19:34 - 2016-07-16 13:47 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-08-03 19:33 - 2015-03-08 12:43 - 00000000 ____D C:\Users\Milan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HWA
2016-08-03 19:33 - 2014-11-17 18:31 - 00000000 ____D C:\Users\Milan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Euro Truck Simulator 2 v1.13.3s (15 DLC)(2-click run)
2016-08-03 19:33 - 2014-11-17 18:31 - 00000000 ____D C:\Users\Milan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\1-click run
2016-08-03 19:32 - 2012-12-25 11:56 - 00000000 ____D C:\Users\Guest\AppData\Local\Packages
2016-08-03 19:31 - 2016-07-16 08:04 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2016-08-03 19:28 - 2016-07-16 13:47 - 00000000 ___RD C:\WINDOWS\PrintDialog
2016-08-03 19:28 - 2016-07-16 13:47 - 00000000 ___RD C:\WINDOWS\MiracastView
2016-08-03 19:27 - 2012-12-22 13:44 - 00000000 ____D C:\AMD
2016-08-03 19:05 - 2012-12-13 17:17 - 00008192 __RSH C:\BOOTSECT.BAK
2016-08-03 18:28 - 2016-04-29 08:33 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-08-01 17:51 - 2016-05-02 18:27 - 00000000 ____D C:\Users\Milan\Documents\Tabulky energií
2016-07-30 12:34 - 2016-04-29 08:33 - 00000958 _____ C:\WINDOWS\Tasks\Adobe Flash Player PPAPI Notifier.job
2016-07-30 12:09 - 2014-12-06 12:45 - 00000000 ____D C:\Users\Milan\AppData\Local\Rockstar Games
2016-07-27 21:25 - 2012-12-14 17:47 - 00504488 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2016-07-27 10:17 - 2016-06-05 10:39 - 00239616 ___SH C:\Users\Milan\Documents\Thumbs.db
==================== Files in the root of some directories =======
2016-03-30 01:05 - 2016-08-23 12:36 - 0000000 _____ () C:\Users\Milan\AppData\Roaming\FileIn.cns
2016-03-30 01:05 - 2016-08-23 12:36 - 0000000 _____ () C:\Users\Milan\AppData\Roaming\FileOut.cns
2013-06-09 15:35 - 2013-06-09 15:35 - 0000001 _____ () C:\Users\Milan\AppData\Local\llftool.4.25.agreement
2013-06-16 11:58 - 2013-06-16 11:58 - 0000019 _____ () C:\Users\Milan\AppData\Local\llftool.license
2012-12-20 16:56 - 2014-12-14 17:55 - 0007648 _____ () C:\Users\Milan\AppData\Local\resmon.resmoncfg
2016-08-03 19:26 - 2016-08-03 19:26 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
Files to move or delete:
====================
C:\Users\Milan\AppData\Local\Temp\mdi064.dll
Some files in TEMP:
====================
C:\Users\Milan\AppData\Local\Temp\mdi064.dll
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2016-08-21 20:23
==================== End of FRST.txt ============================
