Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 15-03-2017
Ran by Jarda (administrator) on JARDA-PC (31-03-2017 21:49:44)
Running from C:\Users\Jarda\Desktop
Loaded Profiles: Jarda (Available Profiles: Jarda)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 8 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool:
http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvscpapisvr.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(Autodesk Inc.) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe
(Gainward Co. Ltd.) C:\Program Files (x86)\EXPERTool\TBPanel.exe
(Advanced Micro Devices, Inc.) C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
() C:\Program Files (x86)\Genius\Maurus X\mousehid.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
() C:\Program Files (x86)\Genius\Maurus X\trayicon.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(IObit) C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Autodesk Inc.) C:\Windows\Temp\AdAppMgrUpdater.exe
(Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(Akamai Technologies, Inc.) C:\Users\Jarda\AppData\Local\Akamai\netsession_win.exe
(Akamai Technologies, Inc.) C:\Users\Jarda\AppData\Local\Akamai\netsession_win.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13671640 2014-04-10] (Realtek Semiconductor)
HKLM-x32\...\Run: [Maurus X] => C:\Program Files (x86)\Genius\Maurus X\mousehid.exe [309248 2013-01-25] ()
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [9080768 2016-11-16] (AVAST Software)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-10-19] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [Autodesk Desktop App] => C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe [721856 2016-07-01] (Autodesk, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-09-22] (Oracle Corporation)
HKU\S-1-5-21-3138392243-2369253255-3569490016-1000\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3019552 2017-03-23] (Valve Corporation)
HKU\S-1-5-21-3138392243-2369253255-3569490016-1000\...\Run: [TBPanel] => C:\Program Files (x86)\EXPERTool\TBPanel.exe [2173224 2013-11-08] (Gainward Co. Ltd.)
HKU\S-1-5-21-3138392243-2369253255-3569490016-1000\...\Run: [Akamai NetSession Interface] => C:\Users\Jarda\AppData\Local\Akamai\netsession_win.exe [4691384 2015-09-10] (Akamai Technologies, Inc.)
HKU\S-1-5-21-3138392243-2369253255-3569490016-1000\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [1283112 2016-02-02] (Autodesk, Inc.)
HKU\S-1-5-21-3138392243-2369253255-3569490016-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27545048 2017-03-14] (Skype Technologies S.A.)
HKU\S-1-5-21-3138392243-2369253255-3569490016-1000\...\Policies\Explorer: []
HKU\S-1-5-21-3138392243-2369253255-3569490016-1000\...\MountPoints2: {df188df3-831f-11e6-800e-806e6f6e6963} - D:\Run.exe
HKU\S-1-5-18\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [1283112 2016-02-02] (Autodesk, Inc.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2016-09-25] (AVAST Software)
ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\system32\AcSignIcon.dll [2016-02-07] (Autodesk, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\TP-LINK Wireless Configuration Utility.lnk [2016-09-25]
ShortcutTarget: TP-LINK Wireless Configuration Utility.lnk -> C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe ()
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{58793411-FF5D-4D5B-844A-B5D9E38471B6}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{DC085FE2-170B-44A6-9A80-2FF2EDD75F18}: [DhcpNameServer] 192.168.0.1
Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-3138392243-2369253255-3569490016-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://
www.google.cz/
BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll [2016-05-23] (IObit)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_111\bin\ssv.dll [2017-01-07] (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2016-10-24] (AVAST Software)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_111\bin\jp2ssv.dll [2017-01-07] (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-10-24] (AVAST Software)
Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2010-11-21] (Microsoft Corporation)
Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2010-11-21] (Microsoft Corporation)
Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2010-11-21] (Microsoft Corporation)
Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2010-11-21] (Microsoft Corporation)
FireFox:
========
FF HKLM\...\Firefox\Extensions: [
sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: (Avast SafePrice) - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2016-09-25]
FF HKLM\...\Firefox\Extensions: [
wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: (Avast Online Security) - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-09-25]
FF HKLM-x32\...\Firefox\Extensions: [
sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF HKLM-x32\...\Firefox\Extensions: [
wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Plugin: @java.com/DTPlugin,version=11.111.2 -> C:\Program Files\Java\jre1.8.0_111\bin\dtplugin\npDeployJava1.dll [2017-01-07] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.111.2 -> C:\Program Files\Java\jre1.8.0_111\bin\plugin2\npjp2.dll [2017-01-07] (Oracle Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-09-17] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-09-17] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-17] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-17] (Google Inc.)
Chrome:
=======
CHR HomePage: Default -> hxxp://websearch.amaizingsearches.info/?pid=1741&r=2014/05/06&hid=3946504954059386763&lg=EN&cc=CZ&unqvl=51
CHR StartupUrls: Default -> "hxxp://websearch.amaizingsearches.info/?pid=1741&r=2014/05/06&hid=3946504954059386763&lg=EN&cc=CZ&unqvl=51"
CHR Profile: C:\Users\Jarda\AppData\Local\Google\Chrome\User Data\Default [2017-03-31]
CHR Extension: (Dokumenty Google) - C:\Users\Jarda\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-09-25]
CHR Extension: (Disk Google) - C:\Users\Jarda\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-09-25]
CHR Extension: (YouTube) - C:\Users\Jarda\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-09-25]
CHR Extension: (Avast SafePrice) - C:\Users\Jarda\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2017-03-16]
CHR Extension: (Dokumenty Google offline) - C:\Users\Jarda\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-09-25]
CHR Extension: (Avast Online Security) - C:\Users\Jarda\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2017-03-03]
CHR Extension: (Zoom) - C:\Users\Jarda\AppData\Local\Google\Chrome\User Data\Default\Extensions\lajondecmobodlejlcjllhojikagldgd [2017-01-01]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Jarda\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-10]
CHR Extension: (Gmail) - C:\Users\Jarda\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-09-25]
CHR Extension: (Chrome Media Router) - C:\Users\Jarda\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-02-08]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdAppMgrSvc; C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe [1295376 2016-07-01] (Autodesk Inc.)
R2 AMD FUEL Service; C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe [351944 2015-10-19] (Advanced Micro Devices, Inc.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [197128 2016-09-25] (AVAST Software)
S2 IObitUnSvr; C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe [359200 2016-09-28] (IObit)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [462784 2017-01-20] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [462784 2017-01-20] (NVIDIA Corporation)
R2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [425408 2017-01-20] (NVIDIA Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-14] (Microsoft Corporation)
S2 NVIDIA Wireless Controller Service; "C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe" [X]
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AODDriver4.3; C:\Program Files\AMD\ATI.ACE\Fuel\amd64\AODDriver2.sys [59616 2014-02-11] (Advanced Micro Devices)
S3 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [37656 2016-09-25] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [37144 2016-09-25] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [108816 2016-09-25] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [103064 2016-09-25] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [74544 2016-09-25] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [969184 2016-09-25] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [513632 2016-09-25] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [163416 2016-09-25] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [293352 2016-10-13] (AVAST Software)
R2 npf; C:\Windows\System32\drivers\npf.sys [36600 2014-08-19] (Riverbed Technology, Inc.)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [27584 2017-01-20] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [46016 2017-01-20] (NVIDIA Corporation)
R3 nvvhci; C:\Windows\System32\DRIVERS\nvvhci.sys [57792 2017-01-20] (NVIDIA Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-03-31 21:49 - 2017-03-31 21:50 - 00015116 _____ C:\Users\Jarda\Desktop\FRST.txt
2017-03-31 21:48 - 2017-03-31 21:49 - 00000000 ____D C:\FRST
2017-03-31 21:48 - 2017-03-31 21:47 - 02424832 _____ (Farbar) C:\Users\Jarda\Desktop\FRST64.exe
2017-03-31 21:47 - 2017-03-31 21:47 - 02424832 _____ (Farbar) C:\Users\Jarda\Downloads\FRST64.exe
2017-03-30 13:03 - 2017-03-29 16:53 - 00079719 _____ C:\Users\Jarda\Desktop\KOC 5 – ložisko.bak
2017-03-30 12:41 - 2017-03-30 12:41 - 00157134 _____ C:\Users\Jarda\Desktop\2.D-KOC-05 BOČNICE.bak
2017-03-30 12:41 - 2017-03-30 12:41 - 00102896 _____ C:\Users\Jarda\Desktop\2.D-KOC-05 SESTAVA.bak
2017-03-29 18:26 - 2017-03-30 12:44 - 00000000 ____D C:\Users\Jarda\Desktop\ZNOJ-KOC
2017-03-29 18:26 - 2017-03-29 18:26 - 00152811 _____ C:\Users\Jarda\Desktop\KLADKA-VYKRES.bak
2017-03-29 18:15 - 2017-03-29 18:15 - 00098732 _____ C:\Users\Jarda\Downloads\KOC 5– čep (1).dwg
2017-03-29 18:15 - 2017-03-29 18:15 - 00079719 _____ C:\Users\Jarda\Downloads\KOC 5 – ložisko (1).dwg
2017-03-29 17:09 - 2017-03-30 13:03 - 00158252 _____ C:\Users\Jarda\Desktop\2.D-KOC-05 BOČNICE.dwg
2017-03-29 16:58 - 2017-03-30 13:01 - 00000000 ____D C:\Users\Jarda\Desktop\JANEČKA-KOC-05
2017-03-29 16:55 - 2017-03-29 16:55 - 00000192 ____H C:\Users\Jarda\Downloads\KOC 5– čep.dwl2
2017-03-29 16:55 - 2017-03-29 16:55 - 00000041 ____H C:\Users\Jarda\Downloads\KOC 5– čep.dwl
2017-03-29 16:54 - 2017-03-29 16:54 - 00098732 _____ C:\Users\Jarda\Desktop\KOC 5– čep.dwg
2017-03-29 16:54 - 2017-03-29 16:54 - 00089005 _____ C:\Users\Jarda\Desktop\KOC 5 – bočnice.dwg
2017-03-29 16:53 - 2017-03-30 13:03 - 00078405 _____ C:\Users\Jarda\Desktop\KOC 5 – ložisko.dwg
2017-03-29 16:51 - 2017-03-30 13:03 - 00103983 _____ C:\Users\Jarda\Desktop\2.D-KOC-05 SESTAVA.dwg
2017-03-29 16:14 - 2017-03-29 16:14 - 00120638 _____ C:\Users\Jarda\Desktop\KOC 5–Sestava.dwg
2017-03-28 16:58 - 2017-03-30 13:03 - 00154189 _____ C:\Users\Jarda\Desktop\KLADKA-VYKRES.dwg
2017-03-28 16:58 - 2017-03-28 16:58 - 00149489 _____ C:\Users\Jarda\Downloads\KLADKA-VYKRES.dwg
2017-03-28 16:58 - 2017-03-28 16:58 - 00086727 _____ C:\Users\Jarda\Downloads\Zvedák.dwg
2017-03-28 16:58 - 2017-03-28 16:58 - 00086727 _____ C:\Users\Jarda\Desktop\Zvedák.dwg
2017-03-27 12:38 - 2017-03-27 12:38 - 00116294 _____ C:\Users\Jarda\Downloads\uložené-nastaveín (1).dwg
2017-03-23 22:08 - 2017-03-23 22:08 - 00123771 _____ C:\Users\Jarda\Desktop\uložené-nastaveín.bak
2017-03-23 21:32 - 2017-03-27 16:39 - 00144140 _____ C:\Users\Jarda\Desktop\uložené-nastaveín.dwg
2017-03-23 21:32 - 2017-03-23 21:32 - 00116294 _____ C:\Users\Jarda\Downloads\uložené-nastaveín.dwg
2017-03-19 14:06 - 2017-02-28 19:06 - 00052180 _____ C:\Users\Jarda\Downloads\Výkres1.bak
2017-03-12 02:05 - 2017-03-12 02:05 - 00000000 ____D C:\Users\Jarda\AppData\Roaming\ATI
2017-03-12 02:05 - 2017-03-12 02:05 - 00000000 ____D C:\Users\Jarda\AppData\Local\ATI
2017-03-12 02:05 - 2017-03-12 02:05 - 00000000 ____D C:\Users\Jarda\AppData\Local\AMD
2017-03-12 02:05 - 2017-03-12 02:05 - 00000000 ____D C:\ProgramData\ATI
2017-03-10 19:30 - 2017-03-10 19:30 - 00000000 ___RD C:\Program Files (x86)\Skype
2017-03-10 19:30 - 2017-03-10 19:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2017-03-10 19:16 - 2017-03-10 19:16 - 00001024 _____ C:\.rnd
2017-03-10 19:16 - 2017-03-10 19:16 - 00000000 ____D C:\ProgramData\Paessler
2017-03-10 19:16 - 2017-03-10 19:16 - 00000000 ____D C:\Program Files\WinPcap
2017-03-10 19:13 - 2017-03-10 19:23 - 00000000 ____D C:\Program Files (x86)\PRTG Network Monitor
2017-03-10 19:12 - 2017-03-10 19:12 - 00000000 ____D C:\ProgramData\TEMP
2017-03-10 19:11 - 2017-03-10 19:11 - 00000000 ____D C:\Users\Jarda\Downloads\prtg
2017-03-10 19:04 - 2017-03-10 19:10 - 154012977 _____ C:\Users\Jarda\Downloads\prtg.zip
2017-03-07 22:34 - 2017-03-07 22:34 - 00001290 _____ C:\Users\Jarda\Downloads\Facebook message count.user.js
2017-03-06 22:26 - 2017-03-06 22:26 - 00004193 _____ C:\Users\Jarda\Downloads\config.rar
2017-03-05 18:54 - 2017-03-05 18:54 - 07487679 _____ C:\Users\Jarda\Downloads\Purista.zip
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-03-31 21:21 - 2016-09-26 16:51 - 00000000 ____D C:\Users\Jarda\AppData\Roaming\TS3Client
2017-03-31 19:30 - 2016-09-25 16:50 - 00000000 ____D C:\Program Files (x86)\Steam
2017-03-31 17:12 - 2016-10-19 17:00 - 00000000 ____D C:\Users\Jarda\AppData\Local\Akamai
2017-03-31 12:25 - 2016-09-25 17:15 - 00000000 ____D C:\ProgramData\NVIDIA
2017-03-31 12:23 - 2009-07-14 06:45 - 00021664 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-03-31 12:23 - 2009-07-14 06:45 - 00021664 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-03-31 12:17 - 2017-01-09 17:56 - 00000000 ____D C:\Users\Jarda\AppData\Roaming\Skype
2017-03-31 12:14 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-03-30 12:42 - 2009-07-14 07:32 - 00000000 ____D C:\Windows\system32\FxsTmp
2017-03-29 15:54 - 2011-04-12 10:34 - 00668138 _____ C:\Windows\system32\perfh005.dat
2017-03-29 15:54 - 2011-04-12 10:34 - 00140798 _____ C:\Windows\system32\perfc005.dat
2017-03-29 15:54 - 2009-07-14 07:13 - 01582262 _____ C:\Windows\system32\PerfStringBackup.INI
2017-03-29 15:54 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\inf
2017-03-28 16:51 - 2017-02-18 19:42 - 00000000 ____D C:\ProgramData\ProductData
2017-03-19 14:06 - 2017-02-28 19:06 - 00086048 _____ C:\Users\Jarda\Downloads\Výkres1.dwg
2017-03-15 21:01 - 2017-01-09 17:56 - 00000000 ____D C:\ProgramData\Skype
2017-03-12 16:35 - 2016-09-25 16:34 - 00004180 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2017-03-10 19:30 - 2016-09-25 17:14 - 00000000 ____D C:\ProgramData\Package Cache
==================== Files in the root of some directories =======
2017-02-01 17:07 - 2017-02-01 17:07 - 0000000 ____H () C:\Users\Jarda\AppData\Local\BITB73D.tmp
2017-02-01 17:07 - 2017-02-01 17:07 - 0000000 _____ () C:\Users\Jarda\AppData\Local\{846E733E-6D1F-47CC-BAE8-2AF94B5C25CC}
Some files in TEMP:
====================
2017-03-10 19:28 - 2017-03-15 21:00 - 14456872 _____ (Microsoft Corporation) C:\Users\Jarda\AppData\Local\Temp\vc_redist.x86.exe
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2016-09-25 14:59
==================== End of FRST.txt ============================
Přispějete na provoz fóra?