Vytvoření nového profilu na úkor původního ve Win Vista
Napsal: 11 dub 2016 18:08
Dobrý den, prosím o zkontrolování logu (viz. níže), po prvním zapnutí počítače se po přihlášení na vlastní účet objevili pouze programy, všechny složky zmizely. Počítač byl restartován a po dalším příhlášení (po každé heslem z původního/pravého profilu) naběhli windows jak čerstvě nainstalovaný/do tovarního nastavení.
Pro vyřešení jsme použili tento návod:
s chybou:
Zdroj: Microsoft-Windows-User Profiles Service
ID události: 1500
Návod nám pomohl navrátit profil do původního stavu, bez jakýkoliv ztrát. Ale doporučují zkontrolovat důkladně počítač na přítomnost virů. Z tohoto důvodu se radši obracím na odborníky.
_____________________________________________________________________________
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:10-04-2016 01
Ran by Martin (administrator) on MARTIN-PC (11-04-2016 18:48:23)
Running from C:\Users\Martin\Desktop
Loaded Profiles: Martin (Available Profiles: Martin)
Platform: Microsoft® Windows Vista™ Home Premium Service Pack 1 (X86) Language: Čeština (Česká republika)
Internet Explorer Version 7 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\System32\SLsvc.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Agere Systems) C:\Windows\System32\agrsmsvc.exe
(Autodesk, Inc.) C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Framework\Common\avgsvcx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Av\avgwdsvcx.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
() C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BkupTray.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Realtek Semiconductor) C:\Windows\RtHDVCpl.exe
(Arachnoid Biometrics Identification Group Corp.) C:\Program Files\Acer\Acer Bio Protection\PdtWzd.exe
(Dritek System Inc.) C:\Program Files\Launch Manager\LManager.exe
(Acer Incorporated) C:\Program Files\Acer\Empowering Technology\eAudio\eAudio.exe
(Egis Incorporated) C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSLoader.exe
() C:\Program Files\AVG Web TuneUp\vprot.exe
(NewTech Infosystems, Inc.) C:\Program Files\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe
(CANON INC.) C:\Program Files\Canon\Canon MF Network Scan Utility\CNMFSUT.EXE
(Egis Incorporated) C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe
(Microsoft Corporation) C:\Windows\ehome\ehtray.exe
(Microsoft Corporation) C:\Windows\ehome\ehmsas.exe
(Acer Incorporated) C:\Program Files\Acer\Acer VCM\AcerVCM.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
() C:\Program Files\KN_StrongDC\StrongDC.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Av\avgui.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Framework\Common\avguix.exe
() C:\Program Files\Acer\Acer Bio Protection\BASVC.exe
(Hewlett-Packard Company) C:\Program Files\Common Files\LightScribe\LSSrvc.exe
() C:\Acer\Mobility Center\MobilityService.exe
(NewTech InfoSystems, Inc.) C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
() C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
(Acer Incorporated) C:\Program Files\Acer\Acer VCM\RS_Service.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(AVG Secure Search) C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\3.5.0\ToolbarUpdater.exe
() C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\3.5.0\loggingserver.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\TeamViewer.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
() C:\Users\Martin\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Microsoft Corporation) C:\Windows\ehome\ehsched.exe
(Acer Inc.) C:\Program Files\Acer\Acer VCM\acp2HID.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\tv_w32.exe
(Realtek Semiconductor Corp.) C:\Users\Martin\AppData\Local\Temp\RtkBtMnt.exe
(Microsoft Corporation) C:\Windows\ehome\ehrecvr.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\TeamViewer_Desktop.exe
(Microsoft Corporation) C:\Windows\System32\wuauclt.exe
(forum.viry.cz) C:\Users\Martin\Desktop\FRSTLauncher (2).exe
(Microsoft Corporation) C:\Windows\System32\conime.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [Windows Defender] => C:\Program Files\Windows Defender\MSASCui.exe [1008184 2008-01-21] (Microsoft Corporation)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1037608 2008-02-22] (Synaptics, Inc.)
HKLM\...\Run: [Adobe Reader Speed Launcher] => "c:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
HKLM\...\Run: [BkupTray] => C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BkupTray.exe [34040 2008-04-06] ()
HKLM\...\Run: [NvCplDaemon] => RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
HKLM\...\Run: [NvMediaCenter] => RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
HKLM\...\Run: [RtHDVCpl] => C:\Windows\RtHDVCpl.exe [6111232 2008-04-25] (Realtek Semiconductor)
HKLM\...\Run: [ZPdtWzdVitaKey MC3000] => C:\Program Files\Acer\Acer Bio Protection\PdtWzd.exe [3667968 2013-08-21] (Arachnoid Biometrics Identification Group Corp.)
HKLM\...\Run: [LManager] => C:\Program Files\Launch Manager\LManager.exe [809480 2008-07-25] (Dritek System Inc.)
HKLM\...\Run: [eAudio] => C:\Program Files\Acer\Empowering Technology\eAudio\eAudio.exe [544768 2008-03-07] (Acer Incorporated)
HKLM\...\Run: [eDataSecurity Loader] => C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSloader.exe [526896 2008-03-04] (Egis Incorporated)
HKLM\...\Run: [ePower_DMC] => C:\Program Files\Acer\Empowering Technology\ePower\ePower_DMC.exe [397312 2008-04-30] (Acer Inc.)
HKLM\...\Run: [eRecoveryService] => [X]
HKLM\...\Run: [WarReg_PopUp] => C:\Program Files\Acer\WR_PopUp\WarReg_PopUp.exe [303104 2008-01-29] (Acer Incorporated)
HKLM\...\Run: [AVG_UI] => C:\Program Files\AVG\Av\avgui.exe [3930384 2016-04-06] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [seznam-listicka-distribuce] => C:\Program Files\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] ()
HKLM\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [383424 2012-02-06] (Autodesk, Inc.)
HKLM\...\Run: [PLFSetL] => C:\Windows\\PLFSetL.exe [94208 2007-07-05] (sonix)
HKLM\...\Run: [vProt] => C:\Program Files\AVG Web TuneUp\vprot.exe [2569104 2015-12-12] ()
HKLM\...\Run: [AvgUi] => C:\Program Files\AVG\Framework\Common\avguirnx.exe [186640 2016-03-23] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [MFNetworkScanUtility] => C:\Program Files\Canon\Canon MF Network Scan Utility\CNMFSUT.EXE [472728 2012-09-27] (CANON INC.)
Winlogon\Notify\AWinNotifyVitaKey MC3000: C:\Program Files\Acer\Acer Bio Protection\WinNotify.dll [2013-08-21] (Arachnoid Biometrics Identification Group Corp.)
HKU\S-1-5-21-3350998854-479706882-1242888818-1000\...\Run: [swg] => C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [68856 2013-08-21] (Google Inc.)
HKU\S-1-5-21-3350998854-479706882-1242888818-1000\...\Run: [ehTray.exe] => C:\Windows\ehome\ehTray.exe [125952 2008-01-21] (Microsoft Corporation)
HKU\S-1-5-21-3350998854-479706882-1242888818-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\DTLite.exe [3673184 2013-07-03] (Disc Soft Ltd)
HKU\S-1-5-21-3350998854-479706882-1242888818-1000\...\Run: [cz.seznam.software.autoupdate] => C:\Users\Martin\AppData\Roaming\Seznam.cz\szninstall.exe [1062472 2013-05-16] ()
HKU\S-1-5-21-3350998854-479706882-1242888818-1000\...\Run: [cz.seznam.software.szndesktop] => C:\Users\Martin\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [103080 2015-05-26] ()
HKU\S-1-5-21-3350998854-479706882-1242888818-1000\...\Policies\Explorer: []
HKU\S-1-5-21-3350998854-479706882-1242888818-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\ssText3d.scr [294912 2008-01-21] (Microsoft Corporation)
Lsa: [Notification Packages] scecli C:\Program Files\Acer\Acer Bio Protection\PwdFilter
ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\system32\AcSignIcon.dll [2012-02-07] (Autodesk, Inc.)
ShellIconOverlayIdentifiers: [egisPSDP] -> {30A0A3F6-38AC-4C53-BB8B-0D95238E25BA} => C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\PSDProtect.dll [2008-03-04] (Egis Incorporated)
ShellIconOverlayIdentifiers: [Správa překryvné ikony digitálních podpisů AutoCADu ] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\system32\AcSignIcon.dll [2012-02-07] (Autodesk, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Acer VCM.lnk [2013-08-21]
ShortcutTarget: Acer VCM.lnk -> C:\Program Files\Acer\Acer VCM\AcerVCM.exe (Acer Incorporated)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk [2013-08-21]
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
Startup: C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\KN StrongDC.lnk [2013-10-09]
ShortcutTarget: KN StrongDC.lnk -> C:\Program Files\KN_StrongDC\StrongDC.exe ()
Startup: C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk [2014-04-07]
ShortcutTarget: Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk -> C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Winsock: Catalog5 02 C:\Windows\system32\napinsp.dll [50176 2008-01-21] (Společnost Microsoft)
Tcpip\Parameters: [DhcpNameServer] 147.229.191.143 147.229.190.143
Tcpip\..\Interfaces\{2ED6FBC5-345F-479A-A56D-9ABE3131C80A}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{ACFC5B49-3F04-4E7B-889F-E5E55B079511}: [DhcpNameServer] 147.229.191.143 147.229.190.143
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0405&s=2&o=vp32&d=0813&m=aspire_5930
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0405&s=2&o=vp32&d=0813&m=aspire_5930
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
HKU\S-1-5-21-3350998854-479706882-1242888818-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0405&s=2&o=vp32&d=0813&m=aspire_5930
HKU\S-1-5-21-3350998854-479706882-1242888818-1000\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://global.acer.com
SearchScopes: HKLM -> DefaultScope {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={s ... lz=1I7ACAW
SearchScopes: HKLM -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={s ... lz=1I7ACAW
SearchScopes: HKU\S-1-5-21-3350998854-479706882-1242888818-1000 -> DefaultScope {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={s ... AW_csCZ550
SearchScopes: HKU\S-1-5-21-3350998854-479706882-1242888818-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?FORM=UP97DF&PC=UP97 ... -SearchBox
SearchScopes: HKU\S-1-5-21-3350998854-479706882-1242888818-1000 -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={s ... AW_csCZ550
BHO: No Name -> {02478D38-C3F9-4efb-9B51-7695ECA05670} -> No File
BHO: Adobe PDF Reader Link Helper -> {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -> c:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-23] (Adobe Systems Incorporated)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2015-12-22] (Google Inc.)
Toolbar: HKLM - No Name - {0BF43445-2F28-4351-9252-17FE6E806AA0} - No File
Toolbar: HKLM - Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll [2008-03-04] (Egis Incorporated.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2015-12-22] (Google Inc.)
Toolbar: HKU\S-1-5-21-3350998854-479706882-1242888818-1000 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2015-12-22] (Google Inc.)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - No File
Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files\Common Files\AVG Secure Search\ViProtocolInstaller\3.5.0\ViProtocol.dll [2015-12-12] (AVG Secure Search)
FireFox:
========
FF Plugin: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin -> C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\3.5.0\\npsitesafety.dll [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-02] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-02] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2013-07-31] (VideoLAN)
FF Plugin HKU\S-1-5-21-3350998854-479706882-1242888818-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Martin\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-09-02] (Unity Technologies ApS)
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2013-08-25] [not signed]
Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.cz/
CHR StartupUrls: Default -> "hxxps://mysearch.avg.com?cid={43B93626-EBBE-4DF3-AE46-CF3DCFD0B31E}&mid=706321003c9547d3beead154342bd3ac-55f608af86df0d7ed2b61160ea1c7eba84bb2472&lang=en&ds=AVG&coid=avgtbavg&pr=fr&d=2014-08-30 11:47:25&v=3.2.0.15&pid=wtu&sg=&sap=hp"
CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\49.0.2623.110\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\49.0.2623.110\ppGoogleNaClPluginChrome.dll => No File
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files\Google\Chrome\Application\49.0.2623.110\pdf.dll => No File
CHR Plugin: (Adobe Acrobat) - c:\Program Files\Adobe\Reader 8.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll => No File
CHR Profile: C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Dokumenty Google) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-05]
CHR Extension: (Disk Google) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-22]
CHR Extension: (Seznam Lištička - Email) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2015-02-17]
CHR Extension: (Seznam Lištička - Slovník) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2016-02-10]
CHR Extension: (YouTube) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-24]
CHR Extension: (Vyhledávání Google) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-28]
CHR Extension: (Dokumenty Google offline) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-15]
CHR Extension: (Black carbon + silver metal) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\lodhggoaglindpoejnjldimdlikkphph [2015-03-07]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-03]
CHR Extension: (Gmail) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-29]
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 Autodesk Content Service; C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe [19232 2012-01-31] (Autodesk, Inc.)
S2 AVGIDSAgent; C:\Program Files\AVG\Av\avgidsagent.exe [3993088 2016-04-06] (AVG Technologies CZ, s.r.o.)
R2 avgsvc; C:\Program Files\AVG\Framework\Common\avgsvcx.exe [886032 2016-03-23] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files\AVG\Av\avgwdsvcx.exe [593880 2016-04-06] (AVG Technologies CZ, s.r.o.)
R2 BUNAgentSvc; C:\Program Files\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe [16384 2008-03-03] (NewTech Infosystems, Inc.) [File not signed]
S2 ETService; C:\Program Files\Acer\Empowering Technology\Service\ETService.exe [24576 2008-03-21] () [File not signed]
S3 FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [1044816 2014-02-24] (Flexera Software, Inc.)
R2 IGBASVC; C:\Program Files\Acer\Acer Bio Protection\BASVC.exe [3517440 2013-08-21] () [File not signed]
R2 LightScribeService; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [61440 2007-01-17] (Hewlett-Packard Company) [File not signed]
R2 MobilityService; C:\Acer\Mobility Center\MobilityService.exe [110592 2007-12-06] () [File not signed]
R2 NTISchedulerSvc; C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [131072 2008-04-04] () [File not signed]
R2 RS_Service; C:\Program Files\Acer\Acer VCM\RS_Service.exe [233472 2008-01-10] (Acer Incorporated) [File not signed]
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [6942480 2016-03-02] (TeamViewer GmbH)
R2 vToolbarUpdater3.5.0; C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\3.5.0\ToolbarUpdater.exe [1829776 2015-12-12] (AVG Secure Search)
S2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [272952 2008-01-21] (Microsoft Corporation)
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R0 AlfaFF; C:\Windows\System32\Drivers\AlfaFF.sys [43184 2013-08-21] (Alfa Corporation)
R3 ATSWPDRV; C:\Windows\System32\DRIVERS\ATSwpDrv.sys [146944 2008-05-30] (AuthenTec, Inc.)
R1 Avgdiskx; C:\Windows\System32\DRIVERS\avgdiskx.sys [134944 2016-02-16] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdriverx.sys [251168 2016-03-08] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHX; C:\Windows\System32\DRIVERS\avgidshx.sys [207792 2016-01-26] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSShim; C:\Windows\System32\DRIVERS\avgidsshimx.sys [31664 2015-11-20] (AVG Technologies CZ, s.r.o.)
R1 Avgldx86; C:\Windows\System32\DRIVERS\avgldx86.sys [229296 2015-10-21] (AVG Technologies CZ, s.r.o.)
R0 Avglogx; C:\Windows\System32\DRIVERS\avglogx.sys [287008 2016-02-16] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx86; C:\Windows\System32\DRIVERS\avgmfx86.sys [189216 2016-03-07] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx86; C:\Windows\System32\DRIVERS\avgrkx86.sys [37296 2015-12-04] (AVG Technologies CZ, s.r.o.)
R0 Avgunivx; C:\Windows\System32\DRIVERS\avgunivx.sys [61216 2016-03-08] (AVG Technologies CZ, s.r.o.)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [243128 2013-09-15] (Disc Soft Ltd)
R0 FltMgr; C:\Windows\System32\drivers\fltmgr.sys [192056 2008-01-21] (Společnost Microsoft)
R2 int15; C:\Windows\system32\drivers\int15.sys [69632 2007-01-26] () [File not signed]
R3 Ltn_stk7070P; C:\Windows\System32\DRIVERS\Ltn_stk7070P.sys [542976 2008-02-04] (LiteOn)
R3 Ntfs; C:\Windows\system32\Drivers\Ntfs.sys [1081912 2008-01-21] (Společnost Microsoft)
S3 IpInIp; system32\DRIVERS\ipinip.sys [X]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X]
S3 SPLITCAM; system32\DRIVERS\splitcam.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-04-11 18:48 - 2016-04-11 18:49 - 00022279 _____ C:\Users\Martin\Desktop\FRST.txt
2016-04-11 18:47 - 2016-04-11 18:48 - 00000000 ____D C:\FRST
2016-04-11 18:22 - 2016-04-11 18:22 - 02895464 _____ (AVG Technologies) C:\Users\Martin\Downloads\AVG_Protection_Free_1143 (1).exe
2016-04-11 18:17 - 2016-04-11 18:18 - 00112640 _____ (forum.viry.cz) C:\Users\Martin\Desktop\FRSTLauncher (2).exe
2016-04-11 18:15 - 2016-04-11 18:15 - 00112640 _____ (forum.viry.cz) C:\Users\Martin\Downloads\Nepotvrzeno 924476.crdownload
2016-04-11 18:14 - 2016-04-11 18:14 - 00112640 _____ (forum.viry.cz) C:\Users\Martin\Downloads\Nepotvrzeno 543719.crdownload
2016-04-11 18:09 - 2016-04-11 18:35 - 00000000 ____D C:\Program Files\TeamViewer
2016-04-11 18:09 - 2016-04-11 18:09 - 00000844 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 11.lnk
2016-04-11 18:09 - 2016-04-11 18:09 - 00000832 _____ C:\Users\Public\Desktop\TeamViewer 11.lnk
2016-04-11 18:09 - 2016-04-11 18:09 - 00000000 ____D C:\Users\Martin\AppData\Roaming\TeamViewer
2016-04-11 18:03 - 2016-04-11 18:03 - 09790120 _____ (TeamViewer GmbH) C:\Users\Martin\Desktop\TeamViewer_Setup_cs.exe
2016-04-11 17:51 - 2016-04-11 17:52 - 01725952 _____ (Farbar) C:\Users\Martin\Desktop\FRST.exe
2016-04-10 13:15 - 2016-04-10 13:16 - 00175798 _____ C:\Windows\ntbtlog.txt
2016-04-10 12:49 - 2016-04-10 12:49 - 00000000 ____D C:\Windows\system32\%APPDATA%
2016-04-10 12:33 - 2016-04-10 12:33 - 00000000 ____D C:\Users\TEMP\AppData\Local\Autodesk
2016-04-10 12:32 - 2016-04-11 18:25 - 00000000 ____D C:\Users\TEMP\AppData\Local\Avg
2016-04-10 12:32 - 2016-04-10 12:32 - 00000000 ____D C:\Users\TEMP\AppData\Roaming\DAEMON Tools Lite
2016-04-10 12:32 - 2016-04-10 12:32 - 00000000 ____D C:\Users\TEMP\AppData\Roaming\AVG
2016-04-10 12:32 - 2016-04-10 12:32 - 00000000 ____D C:\Users\TEMP\AppData\LocalLow\AVG Web TuneUp
2016-04-10 12:31 - 2016-04-10 12:49 - 00000000 ____D C:\Users\TEMP
2016-04-10 12:31 - 2013-09-18 03:06 - 00000000 ____D C:\Users\TEMP\AppData\Local\Microsoft Help
2016-04-10 12:31 - 2013-09-13 19:56 - 00000000 ____D C:\Users\TEMP\AppData\Roaming\TuneUp Software
2016-04-10 12:31 - 2013-08-21 19:26 - 00000000 ____D C:\Users\TEMP\AppData\Roaming\Macromedia
2016-04-10 12:31 - 2006-11-02 14:37 - 00000000 ____D C:\Users\TEMP\AppData\Roaming\Media Center Programs
2016-04-08 20:15 - 2016-04-08 20:15 - 00449069 _____ C:\Users\Martin\Downloads\vz prot pridrznost + kotveni.pdf
2016-04-06 16:12 - 2016-04-06 16:12 - 00060172 _____ C:\Users\Martin\Downloads\9.3.rar
2016-04-06 15:35 - 2016-04-06 15:35 - 00231465 _____ C:\Users\Martin\Downloads\Dodatecne_informace_k_zadavacim_podminkam_4.pdf
2016-04-05 10:01 - 2016-04-05 10:01 - 00284672 _____ C:\Users\Martin\Downloads\polarni-graf-polarplots-excel.xls
2016-04-05 08:18 - 2016-04-05 08:18 - 00036352 _____ C:\Users\Martin\Downloads\12-2-Stanoveni-svetelneho-toku-bod-zdroje.xls
2016-04-04 17:49 - 2016-04-04 17:49 - 10597345 _____ C:\Users\Martin\Downloads\příklady.rar
2016-03-30 18:10 - 2016-03-30 18:11 - 00799744 _____ C:\Users\Martin\Downloads\kalkulator-pro-stanoveni-poctu-hmozdinek-v-etics.xls
2016-03-30 18:08 - 2016-03-30 18:08 - 00230400 _____ C:\Users\Martin\Downloads\kalkulator-oblasti.xls
2016-03-30 18:06 - 2016-03-30 18:06 - 00065024 _____ C:\Users\Martin\Downloads\vypocet-tloustky-izolace-kontaktni-fasady.xls
2016-03-29 20:59 - 2016-03-29 20:59 - 00697579 _____ C:\Users\Martin\Downloads\P1130956.jpeg
2016-03-29 13:29 - 2016-04-01 12:39 - 00332942 _____ C:\Users\Martin\Downloads\Protokol 1 moderni materiály.xlsx
2016-03-26 12:40 - 2016-03-26 12:40 - 00000000 ____D C:\ProgramData\Canon
2016-03-26 12:39 - 2016-03-26 12:39 - 00001857 _____ C:\Users\Public\Desktop\Canon MF Toolbox 4.9.lnk
2016-03-26 12:39 - 2016-03-26 12:39 - 00000000 ___HD C:\Windows\system32\CanonMF Uninstaller Information
2016-03-26 12:25 - 2016-03-26 12:40 - 00000000 ____D C:\Program Files\Canon
2016-03-26 12:25 - 2016-03-26 12:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon
2016-03-26 12:24 - 2014-03-04 11:50 - 00338944 _____ (CANON INC.) C:\Windows\system32\CNCC210.DLL
2016-03-26 12:24 - 2014-03-04 11:50 - 00138240 _____ (CANON INC.) C:\Windows\system32\CNCE210.DLL
2016-03-26 12:24 - 2014-03-04 11:50 - 00112640 _____ (CANON INC.) C:\Windows\system32\CNCL210.DLL
2016-03-26 12:24 - 2014-03-04 11:50 - 00112128 _____ (CANON INC.) C:\Windows\system32\CNCLSD48b.DLL
2016-03-26 12:24 - 2014-03-04 11:50 - 00100352 _____ (CANON INC.) C:\Windows\system32\CNCLSI48b.DLL
2016-03-26 12:24 - 2014-03-04 11:50 - 00090624 _____ (CANON INC.) C:\Windows\system32\CNCLST48b.DLL
2016-03-26 12:24 - 2014-03-04 11:50 - 00082432 _____ (CANON INC.) C:\Windows\system32\CNCI210.DLL
2016-03-26 12:24 - 2014-03-04 11:50 - 00073728 _____ (CANON INC.) C:\Windows\system32\CNCLSC48b.DLL
2016-03-26 12:24 - 2014-03-04 11:50 - 00066560 _____ (CANON INC.) C:\Windows\system32\CNCLSU48b.DLL
2016-03-26 12:24 - 2014-02-03 20:19 - 00000431 _____ C:\Windows\system32\CNCMFP48.INI
2016-03-26 12:23 - 2012-08-09 14:00 - 00679936 _____ (CANON INC.) C:\Windows\system32\CNAS0MOK.DLL
2016-03-26 12:22 - 2013-01-31 20:21 - 00195584 _____ (CANON INC.) C:\Windows\system32\CNCENPR.dll
2016-03-26 12:22 - 2013-01-31 20:21 - 00195584 _____ (CANON INC.) C:\Windows\system32\CNCENPM.dll
2016-03-26 12:22 - 2013-01-31 20:21 - 00105472 _____ (CANON INC.) C:\Windows\system32\CNCENPU.dll
2016-03-26 12:22 - 2009-06-12 00:47 - 00017861 _____ C:\Windows\system32\CNCENPMK.chm
2016-03-25 19:02 - 2016-03-25 19:02 - 10470243 _____ C:\Users\Martin\Downloads\administrativní budova
2016-03-25 18:57 - 2016-03-25 18:57 - 38695897 _____ C:\Users\Martin\Downloads\16865.zip
2016-03-25 18:12 - 2016-03-25 18:12 - 00041501 _____ C:\Users\Martin\Downloads\3SEATBENCH.dwg
2016-03-25 18:07 - 2016-03-25 18:07 - 00051225 _____ C:\Users\Martin\Downloads\bloky_zarizeni.zip
2016-03-25 17:45 - 2016-03-25 17:45 - 02339628 _____ C:\Users\Martin\Downloads\zařizovací-předměty.dwg
2016-03-25 13:44 - 2016-03-25 13:45 - 02729287 _____ C:\Users\Martin\Downloads\TL_strop.pdf
2016-03-25 13:44 - 2016-03-25 13:44 - 00930432 _____ C:\Users\Martin\Downloads\TL_strop PTH BN_scr.pdf
2016-03-23 20:46 - 2016-03-23 20:46 - 00091398 _____ C:\Users\Martin\Downloads\Materiály.rar
2016-03-23 14:38 - 2016-03-23 14:39 - 00113101 _____ C:\Users\Martin\Downloads\2.pdf
2016-03-22 11:17 - 2016-03-22 11:17 - 00705008 _____ C:\Users\Martin\Downloads\10101-v-2014.zip
2016-03-21 22:19 - 2016-03-24 12:55 - 00000164 _____ C:\Users\Martin\Desktop\brigáda.txt
2016-03-21 21:38 - 2016-03-21 21:38 - 00333030 _____ C:\Users\Martin\Downloads\HURDISrevize.pdf
2016-03-16 14:38 - 2016-03-16 14:41 - 61915869 _____ C:\Users\Martin\Downloads\CT52-Technika-prostředí.zip
2016-03-15 13:37 - 2016-03-15 13:37 - 00072704 _____ (lukeXprogramming) C:\Users\Martin\Downloads\interpolace.exe
2016-03-15 12:57 - 2016-03-15 12:59 - 34086249 _____ C:\Users\Martin\Downloads\FAST-trvale-udržitelná-výstavba-poslední-cvičení.rar
2016-03-15 12:49 - 2016-03-15 12:51 - 39559138 _____ C:\Users\Martin\Downloads\Trvale-Udržitelná-výstavba---SEMINARKA--A-.rar
2016-03-15 12:16 - 2016-03-15 12:45 - 524288000 _____ C:\Users\Martin\Downloads\Ch09.rar
2016-03-14 19:03 - 2016-03-14 19:03 - 04211678 _____ C:\Users\Martin\Downloads\objem_hmot (2).pdf
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-04-11 18:47 - 2008-05-09 10:18 - 00643336 _____ C:\Windows\system32\perfh005.dat
2016-04-11 18:47 - 2008-05-09 10:18 - 00136492 _____ C:\Windows\system32\perfc005.dat
2016-04-11 18:47 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\inf
2016-04-11 18:47 - 2006-11-02 12:33 - 01526914 _____ C:\Windows\system32\PerfStringBackup.INI
2016-04-11 18:45 - 2013-09-15 13:48 - 00000000 ____D C:\Users\Martin\AppData\Roaming\Seznam.cz
2016-04-11 18:41 - 2013-08-25 11:23 - 00092726 _____ C:\ProgramData\nvModes.dat
2016-04-11 18:41 - 2013-08-25 11:23 - 00092726 _____ C:\ProgramData\nvModes.001
2016-04-11 18:41 - 2006-11-02 14:37 - 00000000 ___RD C:\Users\Public\Recorded TV
2016-04-11 18:39 - 2013-08-21 19:40 - 00000936 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-04-11 18:39 - 2013-08-21 18:56 - 00102688 _____ C:\Users\Martin\AppData\Local\GDIPFONTCACHEV1.DAT
2016-04-11 18:39 - 2006-11-02 15:01 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-04-11 18:39 - 2006-11-02 14:47 - 00377872 _____ C:\Windows\system32\FNTCACHE.DAT
2016-04-11 18:39 - 2006-11-02 14:47 - 00003344 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2016-04-11 18:39 - 2006-11-02 14:47 - 00003344 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2016-04-11 18:38 - 2013-08-21 20:26 - 00000000 ____D C:\ProgramData\MFAData
2016-04-11 18:37 - 2006-11-02 15:01 - 00032622 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2016-04-11 18:36 - 2013-08-21 18:56 - 00000012 _____ C:\Windows\bthservsdp.dat
2016-04-11 18:31 - 2015-11-04 13:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2016-04-11 18:25 - 2013-08-21 19:40 - 00000940 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-04-11 18:23 - 2016-03-08 11:45 - 00000000 ____D C:\Users\Martin\AppData\Local\AvgSetupLog
2016-04-11 18:23 - 2013-11-14 22:37 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-04-11 18:12 - 2015-09-30 14:57 - 00000000 ____D C:\Users\Martin\Downloads\prospekty
2016-04-11 17:18 - 2014-03-06 22:21 - 00000000 ____D C:\Users\Martin\AppData\Local\Microsoft Games
2016-04-10 18:45 - 2013-08-21 19:13 - 00000000 _____ C:\Windows\system32\LogConfigTemp.xml
2016-04-10 15:52 - 2015-11-24 17:44 - 00000000 ____D C:\Users\Martin\Counter-Strike 1.6
2016-04-10 13:09 - 2013-12-14 17:17 - 00102688 _____ C:\Windows\system32\GDIPFONTCACHEV1.DAT
2016-04-08 03:23 - 2013-11-14 22:37 - 00797376 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2016-04-08 03:23 - 2013-11-14 22:37 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2016-04-08 03:12 - 2015-11-17 13:14 - 00000735 _____ C:\Users\Public\Desktop\AVG.lnk
2016-04-08 03:12 - 2015-11-17 13:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG Zen
2016-04-07 17:50 - 2016-02-08 19:45 - 00000000 ____D C:\Users\Martin\Desktop\Trvale udržitelná výstavba
2016-04-06 20:00 - 2016-02-08 19:45 - 00000000 ____D C:\Users\Martin\Desktop\Sanace a adaptace budov
2016-04-05 18:19 - 2016-02-08 19:45 - 00000000 ____D C:\Users\Martin\Desktop\Aplikovaná fyzika
2016-04-05 18:13 - 2016-02-08 19:45 - 00000000 ____D C:\Users\Martin\Desktop\Moderní stavební materiály
2016-04-05 16:49 - 2013-09-03 17:14 - 00000000 ____D C:\Users\Martin\Documents\Bluetooth Exchange Folder
2016-04-05 09:51 - 2014-02-24 16:52 - 00000851 _____ C:\Users\Public\Desktop\Half-Life.lnk
2016-04-01 12:46 - 2016-03-03 13:26 - 00000000 ____D C:\Users\Martin\Documents\TrackMania
2016-04-01 12:41 - 2016-03-03 13:27 - 00000000 ____D C:\ProgramData\TrackMania
2016-03-31 01:29 - 2013-08-21 20:10 - 00001987 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-03-31 01:29 - 2013-08-21 20:10 - 00001975 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-03-30 17:19 - 2016-02-22 18:22 - 00000000 ____D C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Tepelná technika
2016-03-30 17:19 - 2016-02-22 18:22 - 00000000 ____D C:\Program Files\Common Files\Svoboda Software
2016-03-30 09:05 - 2016-02-08 19:45 - 00000000 ____D C:\Users\Martin\Desktop\Diplomová práce
2016-03-30 08:24 - 2014-02-24 15:06 - 00000000 ____D C:\Users\Martin\AppData\Local\cache
2016-03-26 12:25 - 2013-08-21 18:54 - 00000000 ____D C:\Users\Martin
2016-03-26 12:25 - 2006-11-02 13:18 - 00000000 __RSD C:\Windows\Media
2016-03-25 17:38 - 2013-08-28 18:03 - 00000000 ____D C:\Users\Martin\AppData\Roaming\vlc
2016-03-16 19:48 - 2016-02-25 14:43 - 729513984 _____ C:\Users\Martin\Downloads\Zastav a nepřežiješ 2 - Vysoké napětí.avi
2016-03-14 15:57 - 2015-05-28 18:02 - 00000000 ____D C:\Users\Martin\Desktop\Bakalářská práce
==================== Files in the root of some directories =======
2015-03-23 10:22 - 2015-06-30 06:16 - 0000680 _____ () C:\Users\Martin\AppData\Local\d3d9caps.dat
2013-08-21 20:16 - 2013-09-14 22:59 - 0084480 _____ () C:\Users\Martin\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2013-08-21 19:11 - 2013-08-21 19:12 - 0091992 _____ () C:\Users\Martin\AppData\Local\edsinstaller.txt-20130821.log
2014-02-24 14:47 - 2014-02-24 14:47 - 0000147 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc
2013-08-25 11:23 - 2016-04-11 18:41 - 0092726 _____ () C:\ProgramData\nvModes.001
2013-08-25 11:23 - 2016-04-11 18:41 - 0092726 _____ () C:\ProgramData\nvModes.dat
Some files in TEMP:
====================
C:\Users\Martin\AppData\Local\Temp\AcDeltree.exe
C:\Users\Martin\AppData\Local\Temp\avguirn_08109488312.exe
C:\Users\Martin\AppData\Local\Temp\avguirn_081408812621.exe
C:\Users\Martin\AppData\Local\Temp\avguirn_081559190946.exe
C:\Users\Martin\AppData\Local\Temp\avguirn_081559538224.exe
C:\Users\Martin\AppData\Local\Temp\avguirn_08490291808.exe
C:\Users\Martin\AppData\Local\Temp\GeewaTreasureMastersIncTheLostCityCs_91.exe
C:\Users\Martin\AppData\Local\Temp\listicka-partner-13415-1.1.2-offline.exe
C:\Users\Martin\AppData\Local\Temp\RtkBtMnt.exe
C:\Users\Martin\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Martin\AppData\Local\Temp\Tsu4EB1C7EC.dll
C:\Users\Martin\AppData\Local\Temp\vlc-2.1.1-win32.exe
C:\Users\Martin\AppData\Local\Temp\_inst1.exe
C:\Users\TEMP\AppData\Local\Temp\RtkBtMnt.exe
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
==================== MBR and Partition Table ==================
==================== Scheduled Tasks (whitelisted) ==================
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
==================== Alternate Data Streams (whitelisted) ==================
==================== Security Center ==================
AV: AVG AntiVirus Free Edition (Disabled - Up to date) {4D41356F-32AD-7C42-C820-63775EE4F413}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: AVG AntiVirus Free Edition (Disabled - Up to date) {F620D48B-1497-73CC-F290-58052563BEAE}
FW: AVG Internet Security (Disabled) {757AB44A-78C2-7D1A-E37F-CA42A037B368}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\Martin\Desktop" je 10333 MB.
***** Startup Programs *****
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000
==================== End Of Log ==============================
Pro vyřešení jsme použili tento návod:
s chybou:
Zdroj: Microsoft-Windows-User Profiles Service
ID události: 1500
Návod nám pomohl navrátit profil do původního stavu, bez jakýkoliv ztrát. Ale doporučují zkontrolovat důkladně počítač na přítomnost virů. Z tohoto důvodu se radši obracím na odborníky.
_____________________________________________________________________________
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:10-04-2016 01
Ran by Martin (administrator) on MARTIN-PC (11-04-2016 18:48:23)
Running from C:\Users\Martin\Desktop
Loaded Profiles: Martin (Available Profiles: Martin)
Platform: Microsoft® Windows Vista™ Home Premium Service Pack 1 (X86) Language: Čeština (Česká republika)
Internet Explorer Version 7 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\System32\SLsvc.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Agere Systems) C:\Windows\System32\agrsmsvc.exe
(Autodesk, Inc.) C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Framework\Common\avgsvcx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Av\avgwdsvcx.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
() C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BkupTray.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Realtek Semiconductor) C:\Windows\RtHDVCpl.exe
(Arachnoid Biometrics Identification Group Corp.) C:\Program Files\Acer\Acer Bio Protection\PdtWzd.exe
(Dritek System Inc.) C:\Program Files\Launch Manager\LManager.exe
(Acer Incorporated) C:\Program Files\Acer\Empowering Technology\eAudio\eAudio.exe
(Egis Incorporated) C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSLoader.exe
() C:\Program Files\AVG Web TuneUp\vprot.exe
(NewTech Infosystems, Inc.) C:\Program Files\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe
(CANON INC.) C:\Program Files\Canon\Canon MF Network Scan Utility\CNMFSUT.EXE
(Egis Incorporated) C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe
(Microsoft Corporation) C:\Windows\ehome\ehtray.exe
(Microsoft Corporation) C:\Windows\ehome\ehmsas.exe
(Acer Incorporated) C:\Program Files\Acer\Acer VCM\AcerVCM.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
() C:\Program Files\KN_StrongDC\StrongDC.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Av\avgui.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Framework\Common\avguix.exe
() C:\Program Files\Acer\Acer Bio Protection\BASVC.exe
(Hewlett-Packard Company) C:\Program Files\Common Files\LightScribe\LSSrvc.exe
() C:\Acer\Mobility Center\MobilityService.exe
(NewTech InfoSystems, Inc.) C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
() C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
(Acer Incorporated) C:\Program Files\Acer\Acer VCM\RS_Service.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(AVG Secure Search) C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\3.5.0\ToolbarUpdater.exe
() C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\3.5.0\loggingserver.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\TeamViewer.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
() C:\Users\Martin\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Microsoft Corporation) C:\Windows\ehome\ehsched.exe
(Acer Inc.) C:\Program Files\Acer\Acer VCM\acp2HID.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\tv_w32.exe
(Realtek Semiconductor Corp.) C:\Users\Martin\AppData\Local\Temp\RtkBtMnt.exe
(Microsoft Corporation) C:\Windows\ehome\ehrecvr.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\TeamViewer_Desktop.exe
(Microsoft Corporation) C:\Windows\System32\wuauclt.exe
(forum.viry.cz) C:\Users\Martin\Desktop\FRSTLauncher (2).exe
(Microsoft Corporation) C:\Windows\System32\conime.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [Windows Defender] => C:\Program Files\Windows Defender\MSASCui.exe [1008184 2008-01-21] (Microsoft Corporation)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1037608 2008-02-22] (Synaptics, Inc.)
HKLM\...\Run: [Adobe Reader Speed Launcher] => "c:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
HKLM\...\Run: [BkupTray] => C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BkupTray.exe [34040 2008-04-06] ()
HKLM\...\Run: [NvCplDaemon] => RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
HKLM\...\Run: [NvMediaCenter] => RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
HKLM\...\Run: [RtHDVCpl] => C:\Windows\RtHDVCpl.exe [6111232 2008-04-25] (Realtek Semiconductor)
HKLM\...\Run: [ZPdtWzdVitaKey MC3000] => C:\Program Files\Acer\Acer Bio Protection\PdtWzd.exe [3667968 2013-08-21] (Arachnoid Biometrics Identification Group Corp.)
HKLM\...\Run: [LManager] => C:\Program Files\Launch Manager\LManager.exe [809480 2008-07-25] (Dritek System Inc.)
HKLM\...\Run: [eAudio] => C:\Program Files\Acer\Empowering Technology\eAudio\eAudio.exe [544768 2008-03-07] (Acer Incorporated)
HKLM\...\Run: [eDataSecurity Loader] => C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSloader.exe [526896 2008-03-04] (Egis Incorporated)
HKLM\...\Run: [ePower_DMC] => C:\Program Files\Acer\Empowering Technology\ePower\ePower_DMC.exe [397312 2008-04-30] (Acer Inc.)
HKLM\...\Run: [eRecoveryService] => [X]
HKLM\...\Run: [WarReg_PopUp] => C:\Program Files\Acer\WR_PopUp\WarReg_PopUp.exe [303104 2008-01-29] (Acer Incorporated)
HKLM\...\Run: [AVG_UI] => C:\Program Files\AVG\Av\avgui.exe [3930384 2016-04-06] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [seznam-listicka-distribuce] => C:\Program Files\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] ()
HKLM\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [383424 2012-02-06] (Autodesk, Inc.)
HKLM\...\Run: [PLFSetL] => C:\Windows\\PLFSetL.exe [94208 2007-07-05] (sonix)
HKLM\...\Run: [vProt] => C:\Program Files\AVG Web TuneUp\vprot.exe [2569104 2015-12-12] ()
HKLM\...\Run: [AvgUi] => C:\Program Files\AVG\Framework\Common\avguirnx.exe [186640 2016-03-23] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [MFNetworkScanUtility] => C:\Program Files\Canon\Canon MF Network Scan Utility\CNMFSUT.EXE [472728 2012-09-27] (CANON INC.)
Winlogon\Notify\AWinNotifyVitaKey MC3000: C:\Program Files\Acer\Acer Bio Protection\WinNotify.dll [2013-08-21] (Arachnoid Biometrics Identification Group Corp.)
HKU\S-1-5-21-3350998854-479706882-1242888818-1000\...\Run: [swg] => C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [68856 2013-08-21] (Google Inc.)
HKU\S-1-5-21-3350998854-479706882-1242888818-1000\...\Run: [ehTray.exe] => C:\Windows\ehome\ehTray.exe [125952 2008-01-21] (Microsoft Corporation)
HKU\S-1-5-21-3350998854-479706882-1242888818-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\DTLite.exe [3673184 2013-07-03] (Disc Soft Ltd)
HKU\S-1-5-21-3350998854-479706882-1242888818-1000\...\Run: [cz.seznam.software.autoupdate] => C:\Users\Martin\AppData\Roaming\Seznam.cz\szninstall.exe [1062472 2013-05-16] ()
HKU\S-1-5-21-3350998854-479706882-1242888818-1000\...\Run: [cz.seznam.software.szndesktop] => C:\Users\Martin\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [103080 2015-05-26] ()
HKU\S-1-5-21-3350998854-479706882-1242888818-1000\...\Policies\Explorer: []
HKU\S-1-5-21-3350998854-479706882-1242888818-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\ssText3d.scr [294912 2008-01-21] (Microsoft Corporation)
Lsa: [Notification Packages] scecli C:\Program Files\Acer\Acer Bio Protection\PwdFilter
ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\system32\AcSignIcon.dll [2012-02-07] (Autodesk, Inc.)
ShellIconOverlayIdentifiers: [egisPSDP] -> {30A0A3F6-38AC-4C53-BB8B-0D95238E25BA} => C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\PSDProtect.dll [2008-03-04] (Egis Incorporated)
ShellIconOverlayIdentifiers: [Správa překryvné ikony digitálních podpisů AutoCADu ] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\system32\AcSignIcon.dll [2012-02-07] (Autodesk, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Acer VCM.lnk [2013-08-21]
ShortcutTarget: Acer VCM.lnk -> C:\Program Files\Acer\Acer VCM\AcerVCM.exe (Acer Incorporated)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk [2013-08-21]
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
Startup: C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\KN StrongDC.lnk [2013-10-09]
ShortcutTarget: KN StrongDC.lnk -> C:\Program Files\KN_StrongDC\StrongDC.exe ()
Startup: C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk [2014-04-07]
ShortcutTarget: Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk -> C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Winsock: Catalog5 02 C:\Windows\system32\napinsp.dll [50176 2008-01-21] (Společnost Microsoft)
Tcpip\Parameters: [DhcpNameServer] 147.229.191.143 147.229.190.143
Tcpip\..\Interfaces\{2ED6FBC5-345F-479A-A56D-9ABE3131C80A}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{ACFC5B49-3F04-4E7B-889F-E5E55B079511}: [DhcpNameServer] 147.229.191.143 147.229.190.143
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0405&s=2&o=vp32&d=0813&m=aspire_5930
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0405&s=2&o=vp32&d=0813&m=aspire_5930
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
HKU\S-1-5-21-3350998854-479706882-1242888818-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0405&s=2&o=vp32&d=0813&m=aspire_5930
HKU\S-1-5-21-3350998854-479706882-1242888818-1000\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://global.acer.com
SearchScopes: HKLM -> DefaultScope {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={s ... lz=1I7ACAW
SearchScopes: HKLM -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={s ... lz=1I7ACAW
SearchScopes: HKU\S-1-5-21-3350998854-479706882-1242888818-1000 -> DefaultScope {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={s ... AW_csCZ550
SearchScopes: HKU\S-1-5-21-3350998854-479706882-1242888818-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?FORM=UP97DF&PC=UP97 ... -SearchBox
SearchScopes: HKU\S-1-5-21-3350998854-479706882-1242888818-1000 -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={s ... AW_csCZ550
BHO: No Name -> {02478D38-C3F9-4efb-9B51-7695ECA05670} -> No File
BHO: Adobe PDF Reader Link Helper -> {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -> c:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-23] (Adobe Systems Incorporated)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2015-12-22] (Google Inc.)
Toolbar: HKLM - No Name - {0BF43445-2F28-4351-9252-17FE6E806AA0} - No File
Toolbar: HKLM - Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll [2008-03-04] (Egis Incorporated.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2015-12-22] (Google Inc.)
Toolbar: HKU\S-1-5-21-3350998854-479706882-1242888818-1000 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2015-12-22] (Google Inc.)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - No File
Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files\Common Files\AVG Secure Search\ViProtocolInstaller\3.5.0\ViProtocol.dll [2015-12-12] (AVG Secure Search)
FireFox:
========
FF Plugin: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin -> C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\3.5.0\\npsitesafety.dll [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-02] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-02] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2013-07-31] (VideoLAN)
FF Plugin HKU\S-1-5-21-3350998854-479706882-1242888818-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Martin\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-09-02] (Unity Technologies ApS)
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2013-08-25] [not signed]
Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.cz/
CHR StartupUrls: Default -> "hxxps://mysearch.avg.com?cid={43B93626-EBBE-4DF3-AE46-CF3DCFD0B31E}&mid=706321003c9547d3beead154342bd3ac-55f608af86df0d7ed2b61160ea1c7eba84bb2472&lang=en&ds=AVG&coid=avgtbavg&pr=fr&d=2014-08-30 11:47:25&v=3.2.0.15&pid=wtu&sg=&sap=hp"
CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\49.0.2623.110\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\49.0.2623.110\ppGoogleNaClPluginChrome.dll => No File
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files\Google\Chrome\Application\49.0.2623.110\pdf.dll => No File
CHR Plugin: (Adobe Acrobat) - c:\Program Files\Adobe\Reader 8.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll => No File
CHR Profile: C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Dokumenty Google) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-05]
CHR Extension: (Disk Google) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-22]
CHR Extension: (Seznam Lištička - Email) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2015-02-17]
CHR Extension: (Seznam Lištička - Slovník) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2016-02-10]
CHR Extension: (YouTube) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-24]
CHR Extension: (Vyhledávání Google) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-28]
CHR Extension: (Dokumenty Google offline) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-15]
CHR Extension: (Black carbon + silver metal) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\lodhggoaglindpoejnjldimdlikkphph [2015-03-07]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-03]
CHR Extension: (Gmail) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-29]
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 Autodesk Content Service; C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe [19232 2012-01-31] (Autodesk, Inc.)
S2 AVGIDSAgent; C:\Program Files\AVG\Av\avgidsagent.exe [3993088 2016-04-06] (AVG Technologies CZ, s.r.o.)
R2 avgsvc; C:\Program Files\AVG\Framework\Common\avgsvcx.exe [886032 2016-03-23] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files\AVG\Av\avgwdsvcx.exe [593880 2016-04-06] (AVG Technologies CZ, s.r.o.)
R2 BUNAgentSvc; C:\Program Files\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe [16384 2008-03-03] (NewTech Infosystems, Inc.) [File not signed]
S2 ETService; C:\Program Files\Acer\Empowering Technology\Service\ETService.exe [24576 2008-03-21] () [File not signed]
S3 FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [1044816 2014-02-24] (Flexera Software, Inc.)
R2 IGBASVC; C:\Program Files\Acer\Acer Bio Protection\BASVC.exe [3517440 2013-08-21] () [File not signed]
R2 LightScribeService; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [61440 2007-01-17] (Hewlett-Packard Company) [File not signed]
R2 MobilityService; C:\Acer\Mobility Center\MobilityService.exe [110592 2007-12-06] () [File not signed]
R2 NTISchedulerSvc; C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [131072 2008-04-04] () [File not signed]
R2 RS_Service; C:\Program Files\Acer\Acer VCM\RS_Service.exe [233472 2008-01-10] (Acer Incorporated) [File not signed]
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [6942480 2016-03-02] (TeamViewer GmbH)
R2 vToolbarUpdater3.5.0; C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\3.5.0\ToolbarUpdater.exe [1829776 2015-12-12] (AVG Secure Search)
S2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [272952 2008-01-21] (Microsoft Corporation)
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R0 AlfaFF; C:\Windows\System32\Drivers\AlfaFF.sys [43184 2013-08-21] (Alfa Corporation)
R3 ATSWPDRV; C:\Windows\System32\DRIVERS\ATSwpDrv.sys [146944 2008-05-30] (AuthenTec, Inc.)
R1 Avgdiskx; C:\Windows\System32\DRIVERS\avgdiskx.sys [134944 2016-02-16] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdriverx.sys [251168 2016-03-08] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHX; C:\Windows\System32\DRIVERS\avgidshx.sys [207792 2016-01-26] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSShim; C:\Windows\System32\DRIVERS\avgidsshimx.sys [31664 2015-11-20] (AVG Technologies CZ, s.r.o.)
R1 Avgldx86; C:\Windows\System32\DRIVERS\avgldx86.sys [229296 2015-10-21] (AVG Technologies CZ, s.r.o.)
R0 Avglogx; C:\Windows\System32\DRIVERS\avglogx.sys [287008 2016-02-16] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx86; C:\Windows\System32\DRIVERS\avgmfx86.sys [189216 2016-03-07] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx86; C:\Windows\System32\DRIVERS\avgrkx86.sys [37296 2015-12-04] (AVG Technologies CZ, s.r.o.)
R0 Avgunivx; C:\Windows\System32\DRIVERS\avgunivx.sys [61216 2016-03-08] (AVG Technologies CZ, s.r.o.)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [243128 2013-09-15] (Disc Soft Ltd)
R0 FltMgr; C:\Windows\System32\drivers\fltmgr.sys [192056 2008-01-21] (Společnost Microsoft)
R2 int15; C:\Windows\system32\drivers\int15.sys [69632 2007-01-26] () [File not signed]
R3 Ltn_stk7070P; C:\Windows\System32\DRIVERS\Ltn_stk7070P.sys [542976 2008-02-04] (LiteOn)
R3 Ntfs; C:\Windows\system32\Drivers\Ntfs.sys [1081912 2008-01-21] (Společnost Microsoft)
S3 IpInIp; system32\DRIVERS\ipinip.sys [X]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X]
S3 SPLITCAM; system32\DRIVERS\splitcam.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-04-11 18:48 - 2016-04-11 18:49 - 00022279 _____ C:\Users\Martin\Desktop\FRST.txt
2016-04-11 18:47 - 2016-04-11 18:48 - 00000000 ____D C:\FRST
2016-04-11 18:22 - 2016-04-11 18:22 - 02895464 _____ (AVG Technologies) C:\Users\Martin\Downloads\AVG_Protection_Free_1143 (1).exe
2016-04-11 18:17 - 2016-04-11 18:18 - 00112640 _____ (forum.viry.cz) C:\Users\Martin\Desktop\FRSTLauncher (2).exe
2016-04-11 18:15 - 2016-04-11 18:15 - 00112640 _____ (forum.viry.cz) C:\Users\Martin\Downloads\Nepotvrzeno 924476.crdownload
2016-04-11 18:14 - 2016-04-11 18:14 - 00112640 _____ (forum.viry.cz) C:\Users\Martin\Downloads\Nepotvrzeno 543719.crdownload
2016-04-11 18:09 - 2016-04-11 18:35 - 00000000 ____D C:\Program Files\TeamViewer
2016-04-11 18:09 - 2016-04-11 18:09 - 00000844 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 11.lnk
2016-04-11 18:09 - 2016-04-11 18:09 - 00000832 _____ C:\Users\Public\Desktop\TeamViewer 11.lnk
2016-04-11 18:09 - 2016-04-11 18:09 - 00000000 ____D C:\Users\Martin\AppData\Roaming\TeamViewer
2016-04-11 18:03 - 2016-04-11 18:03 - 09790120 _____ (TeamViewer GmbH) C:\Users\Martin\Desktop\TeamViewer_Setup_cs.exe
2016-04-11 17:51 - 2016-04-11 17:52 - 01725952 _____ (Farbar) C:\Users\Martin\Desktop\FRST.exe
2016-04-10 13:15 - 2016-04-10 13:16 - 00175798 _____ C:\Windows\ntbtlog.txt
2016-04-10 12:49 - 2016-04-10 12:49 - 00000000 ____D C:\Windows\system32\%APPDATA%
2016-04-10 12:33 - 2016-04-10 12:33 - 00000000 ____D C:\Users\TEMP\AppData\Local\Autodesk
2016-04-10 12:32 - 2016-04-11 18:25 - 00000000 ____D C:\Users\TEMP\AppData\Local\Avg
2016-04-10 12:32 - 2016-04-10 12:32 - 00000000 ____D C:\Users\TEMP\AppData\Roaming\DAEMON Tools Lite
2016-04-10 12:32 - 2016-04-10 12:32 - 00000000 ____D C:\Users\TEMP\AppData\Roaming\AVG
2016-04-10 12:32 - 2016-04-10 12:32 - 00000000 ____D C:\Users\TEMP\AppData\LocalLow\AVG Web TuneUp
2016-04-10 12:31 - 2016-04-10 12:49 - 00000000 ____D C:\Users\TEMP
2016-04-10 12:31 - 2013-09-18 03:06 - 00000000 ____D C:\Users\TEMP\AppData\Local\Microsoft Help
2016-04-10 12:31 - 2013-09-13 19:56 - 00000000 ____D C:\Users\TEMP\AppData\Roaming\TuneUp Software
2016-04-10 12:31 - 2013-08-21 19:26 - 00000000 ____D C:\Users\TEMP\AppData\Roaming\Macromedia
2016-04-10 12:31 - 2006-11-02 14:37 - 00000000 ____D C:\Users\TEMP\AppData\Roaming\Media Center Programs
2016-04-08 20:15 - 2016-04-08 20:15 - 00449069 _____ C:\Users\Martin\Downloads\vz prot pridrznost + kotveni.pdf
2016-04-06 16:12 - 2016-04-06 16:12 - 00060172 _____ C:\Users\Martin\Downloads\9.3.rar
2016-04-06 15:35 - 2016-04-06 15:35 - 00231465 _____ C:\Users\Martin\Downloads\Dodatecne_informace_k_zadavacim_podminkam_4.pdf
2016-04-05 10:01 - 2016-04-05 10:01 - 00284672 _____ C:\Users\Martin\Downloads\polarni-graf-polarplots-excel.xls
2016-04-05 08:18 - 2016-04-05 08:18 - 00036352 _____ C:\Users\Martin\Downloads\12-2-Stanoveni-svetelneho-toku-bod-zdroje.xls
2016-04-04 17:49 - 2016-04-04 17:49 - 10597345 _____ C:\Users\Martin\Downloads\příklady.rar
2016-03-30 18:10 - 2016-03-30 18:11 - 00799744 _____ C:\Users\Martin\Downloads\kalkulator-pro-stanoveni-poctu-hmozdinek-v-etics.xls
2016-03-30 18:08 - 2016-03-30 18:08 - 00230400 _____ C:\Users\Martin\Downloads\kalkulator-oblasti.xls
2016-03-30 18:06 - 2016-03-30 18:06 - 00065024 _____ C:\Users\Martin\Downloads\vypocet-tloustky-izolace-kontaktni-fasady.xls
2016-03-29 20:59 - 2016-03-29 20:59 - 00697579 _____ C:\Users\Martin\Downloads\P1130956.jpeg
2016-03-29 13:29 - 2016-04-01 12:39 - 00332942 _____ C:\Users\Martin\Downloads\Protokol 1 moderni materiály.xlsx
2016-03-26 12:40 - 2016-03-26 12:40 - 00000000 ____D C:\ProgramData\Canon
2016-03-26 12:39 - 2016-03-26 12:39 - 00001857 _____ C:\Users\Public\Desktop\Canon MF Toolbox 4.9.lnk
2016-03-26 12:39 - 2016-03-26 12:39 - 00000000 ___HD C:\Windows\system32\CanonMF Uninstaller Information
2016-03-26 12:25 - 2016-03-26 12:40 - 00000000 ____D C:\Program Files\Canon
2016-03-26 12:25 - 2016-03-26 12:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon
2016-03-26 12:24 - 2014-03-04 11:50 - 00338944 _____ (CANON INC.) C:\Windows\system32\CNCC210.DLL
2016-03-26 12:24 - 2014-03-04 11:50 - 00138240 _____ (CANON INC.) C:\Windows\system32\CNCE210.DLL
2016-03-26 12:24 - 2014-03-04 11:50 - 00112640 _____ (CANON INC.) C:\Windows\system32\CNCL210.DLL
2016-03-26 12:24 - 2014-03-04 11:50 - 00112128 _____ (CANON INC.) C:\Windows\system32\CNCLSD48b.DLL
2016-03-26 12:24 - 2014-03-04 11:50 - 00100352 _____ (CANON INC.) C:\Windows\system32\CNCLSI48b.DLL
2016-03-26 12:24 - 2014-03-04 11:50 - 00090624 _____ (CANON INC.) C:\Windows\system32\CNCLST48b.DLL
2016-03-26 12:24 - 2014-03-04 11:50 - 00082432 _____ (CANON INC.) C:\Windows\system32\CNCI210.DLL
2016-03-26 12:24 - 2014-03-04 11:50 - 00073728 _____ (CANON INC.) C:\Windows\system32\CNCLSC48b.DLL
2016-03-26 12:24 - 2014-03-04 11:50 - 00066560 _____ (CANON INC.) C:\Windows\system32\CNCLSU48b.DLL
2016-03-26 12:24 - 2014-02-03 20:19 - 00000431 _____ C:\Windows\system32\CNCMFP48.INI
2016-03-26 12:23 - 2012-08-09 14:00 - 00679936 _____ (CANON INC.) C:\Windows\system32\CNAS0MOK.DLL
2016-03-26 12:22 - 2013-01-31 20:21 - 00195584 _____ (CANON INC.) C:\Windows\system32\CNCENPR.dll
2016-03-26 12:22 - 2013-01-31 20:21 - 00195584 _____ (CANON INC.) C:\Windows\system32\CNCENPM.dll
2016-03-26 12:22 - 2013-01-31 20:21 - 00105472 _____ (CANON INC.) C:\Windows\system32\CNCENPU.dll
2016-03-26 12:22 - 2009-06-12 00:47 - 00017861 _____ C:\Windows\system32\CNCENPMK.chm
2016-03-25 19:02 - 2016-03-25 19:02 - 10470243 _____ C:\Users\Martin\Downloads\administrativní budova
2016-03-25 18:57 - 2016-03-25 18:57 - 38695897 _____ C:\Users\Martin\Downloads\16865.zip
2016-03-25 18:12 - 2016-03-25 18:12 - 00041501 _____ C:\Users\Martin\Downloads\3SEATBENCH.dwg
2016-03-25 18:07 - 2016-03-25 18:07 - 00051225 _____ C:\Users\Martin\Downloads\bloky_zarizeni.zip
2016-03-25 17:45 - 2016-03-25 17:45 - 02339628 _____ C:\Users\Martin\Downloads\zařizovací-předměty.dwg
2016-03-25 13:44 - 2016-03-25 13:45 - 02729287 _____ C:\Users\Martin\Downloads\TL_strop.pdf
2016-03-25 13:44 - 2016-03-25 13:44 - 00930432 _____ C:\Users\Martin\Downloads\TL_strop PTH BN_scr.pdf
2016-03-23 20:46 - 2016-03-23 20:46 - 00091398 _____ C:\Users\Martin\Downloads\Materiály.rar
2016-03-23 14:38 - 2016-03-23 14:39 - 00113101 _____ C:\Users\Martin\Downloads\2.pdf
2016-03-22 11:17 - 2016-03-22 11:17 - 00705008 _____ C:\Users\Martin\Downloads\10101-v-2014.zip
2016-03-21 22:19 - 2016-03-24 12:55 - 00000164 _____ C:\Users\Martin\Desktop\brigáda.txt
2016-03-21 21:38 - 2016-03-21 21:38 - 00333030 _____ C:\Users\Martin\Downloads\HURDISrevize.pdf
2016-03-16 14:38 - 2016-03-16 14:41 - 61915869 _____ C:\Users\Martin\Downloads\CT52-Technika-prostředí.zip
2016-03-15 13:37 - 2016-03-15 13:37 - 00072704 _____ (lukeXprogramming) C:\Users\Martin\Downloads\interpolace.exe
2016-03-15 12:57 - 2016-03-15 12:59 - 34086249 _____ C:\Users\Martin\Downloads\FAST-trvale-udržitelná-výstavba-poslední-cvičení.rar
2016-03-15 12:49 - 2016-03-15 12:51 - 39559138 _____ C:\Users\Martin\Downloads\Trvale-Udržitelná-výstavba---SEMINARKA--A-.rar
2016-03-15 12:16 - 2016-03-15 12:45 - 524288000 _____ C:\Users\Martin\Downloads\Ch09.rar
2016-03-14 19:03 - 2016-03-14 19:03 - 04211678 _____ C:\Users\Martin\Downloads\objem_hmot (2).pdf
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-04-11 18:47 - 2008-05-09 10:18 - 00643336 _____ C:\Windows\system32\perfh005.dat
2016-04-11 18:47 - 2008-05-09 10:18 - 00136492 _____ C:\Windows\system32\perfc005.dat
2016-04-11 18:47 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\inf
2016-04-11 18:47 - 2006-11-02 12:33 - 01526914 _____ C:\Windows\system32\PerfStringBackup.INI
2016-04-11 18:45 - 2013-09-15 13:48 - 00000000 ____D C:\Users\Martin\AppData\Roaming\Seznam.cz
2016-04-11 18:41 - 2013-08-25 11:23 - 00092726 _____ C:\ProgramData\nvModes.dat
2016-04-11 18:41 - 2013-08-25 11:23 - 00092726 _____ C:\ProgramData\nvModes.001
2016-04-11 18:41 - 2006-11-02 14:37 - 00000000 ___RD C:\Users\Public\Recorded TV
2016-04-11 18:39 - 2013-08-21 19:40 - 00000936 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-04-11 18:39 - 2013-08-21 18:56 - 00102688 _____ C:\Users\Martin\AppData\Local\GDIPFONTCACHEV1.DAT
2016-04-11 18:39 - 2006-11-02 15:01 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-04-11 18:39 - 2006-11-02 14:47 - 00377872 _____ C:\Windows\system32\FNTCACHE.DAT
2016-04-11 18:39 - 2006-11-02 14:47 - 00003344 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2016-04-11 18:39 - 2006-11-02 14:47 - 00003344 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2016-04-11 18:38 - 2013-08-21 20:26 - 00000000 ____D C:\ProgramData\MFAData
2016-04-11 18:37 - 2006-11-02 15:01 - 00032622 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2016-04-11 18:36 - 2013-08-21 18:56 - 00000012 _____ C:\Windows\bthservsdp.dat
2016-04-11 18:31 - 2015-11-04 13:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2016-04-11 18:25 - 2013-08-21 19:40 - 00000940 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-04-11 18:23 - 2016-03-08 11:45 - 00000000 ____D C:\Users\Martin\AppData\Local\AvgSetupLog
2016-04-11 18:23 - 2013-11-14 22:37 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-04-11 18:12 - 2015-09-30 14:57 - 00000000 ____D C:\Users\Martin\Downloads\prospekty
2016-04-11 17:18 - 2014-03-06 22:21 - 00000000 ____D C:\Users\Martin\AppData\Local\Microsoft Games
2016-04-10 18:45 - 2013-08-21 19:13 - 00000000 _____ C:\Windows\system32\LogConfigTemp.xml
2016-04-10 15:52 - 2015-11-24 17:44 - 00000000 ____D C:\Users\Martin\Counter-Strike 1.6
2016-04-10 13:09 - 2013-12-14 17:17 - 00102688 _____ C:\Windows\system32\GDIPFONTCACHEV1.DAT
2016-04-08 03:23 - 2013-11-14 22:37 - 00797376 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2016-04-08 03:23 - 2013-11-14 22:37 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2016-04-08 03:12 - 2015-11-17 13:14 - 00000735 _____ C:\Users\Public\Desktop\AVG.lnk
2016-04-08 03:12 - 2015-11-17 13:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG Zen
2016-04-07 17:50 - 2016-02-08 19:45 - 00000000 ____D C:\Users\Martin\Desktop\Trvale udržitelná výstavba
2016-04-06 20:00 - 2016-02-08 19:45 - 00000000 ____D C:\Users\Martin\Desktop\Sanace a adaptace budov
2016-04-05 18:19 - 2016-02-08 19:45 - 00000000 ____D C:\Users\Martin\Desktop\Aplikovaná fyzika
2016-04-05 18:13 - 2016-02-08 19:45 - 00000000 ____D C:\Users\Martin\Desktop\Moderní stavební materiály
2016-04-05 16:49 - 2013-09-03 17:14 - 00000000 ____D C:\Users\Martin\Documents\Bluetooth Exchange Folder
2016-04-05 09:51 - 2014-02-24 16:52 - 00000851 _____ C:\Users\Public\Desktop\Half-Life.lnk
2016-04-01 12:46 - 2016-03-03 13:26 - 00000000 ____D C:\Users\Martin\Documents\TrackMania
2016-04-01 12:41 - 2016-03-03 13:27 - 00000000 ____D C:\ProgramData\TrackMania
2016-03-31 01:29 - 2013-08-21 20:10 - 00001987 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-03-31 01:29 - 2013-08-21 20:10 - 00001975 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-03-30 17:19 - 2016-02-22 18:22 - 00000000 ____D C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Tepelná technika
2016-03-30 17:19 - 2016-02-22 18:22 - 00000000 ____D C:\Program Files\Common Files\Svoboda Software
2016-03-30 09:05 - 2016-02-08 19:45 - 00000000 ____D C:\Users\Martin\Desktop\Diplomová práce
2016-03-30 08:24 - 2014-02-24 15:06 - 00000000 ____D C:\Users\Martin\AppData\Local\cache
2016-03-26 12:25 - 2013-08-21 18:54 - 00000000 ____D C:\Users\Martin
2016-03-26 12:25 - 2006-11-02 13:18 - 00000000 __RSD C:\Windows\Media
2016-03-25 17:38 - 2013-08-28 18:03 - 00000000 ____D C:\Users\Martin\AppData\Roaming\vlc
2016-03-16 19:48 - 2016-02-25 14:43 - 729513984 _____ C:\Users\Martin\Downloads\Zastav a nepřežiješ 2 - Vysoké napětí.avi
2016-03-14 15:57 - 2015-05-28 18:02 - 00000000 ____D C:\Users\Martin\Desktop\Bakalářská práce
==================== Files in the root of some directories =======
2015-03-23 10:22 - 2015-06-30 06:16 - 0000680 _____ () C:\Users\Martin\AppData\Local\d3d9caps.dat
2013-08-21 20:16 - 2013-09-14 22:59 - 0084480 _____ () C:\Users\Martin\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2013-08-21 19:11 - 2013-08-21 19:12 - 0091992 _____ () C:\Users\Martin\AppData\Local\edsinstaller.txt-20130821.log
2014-02-24 14:47 - 2014-02-24 14:47 - 0000147 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc
2013-08-25 11:23 - 2016-04-11 18:41 - 0092726 _____ () C:\ProgramData\nvModes.001
2013-08-25 11:23 - 2016-04-11 18:41 - 0092726 _____ () C:\ProgramData\nvModes.dat
Some files in TEMP:
====================
C:\Users\Martin\AppData\Local\Temp\AcDeltree.exe
C:\Users\Martin\AppData\Local\Temp\avguirn_08109488312.exe
C:\Users\Martin\AppData\Local\Temp\avguirn_081408812621.exe
C:\Users\Martin\AppData\Local\Temp\avguirn_081559190946.exe
C:\Users\Martin\AppData\Local\Temp\avguirn_081559538224.exe
C:\Users\Martin\AppData\Local\Temp\avguirn_08490291808.exe
C:\Users\Martin\AppData\Local\Temp\GeewaTreasureMastersIncTheLostCityCs_91.exe
C:\Users\Martin\AppData\Local\Temp\listicka-partner-13415-1.1.2-offline.exe
C:\Users\Martin\AppData\Local\Temp\RtkBtMnt.exe
C:\Users\Martin\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Martin\AppData\Local\Temp\Tsu4EB1C7EC.dll
C:\Users\Martin\AppData\Local\Temp\vlc-2.1.1-win32.exe
C:\Users\Martin\AppData\Local\Temp\_inst1.exe
C:\Users\TEMP\AppData\Local\Temp\RtkBtMnt.exe
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
==================== MBR and Partition Table ==================
==================== Scheduled Tasks (whitelisted) ==================
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
==================== Alternate Data Streams (whitelisted) ==================
==================== Security Center ==================
AV: AVG AntiVirus Free Edition (Disabled - Up to date) {4D41356F-32AD-7C42-C820-63775EE4F413}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: AVG AntiVirus Free Edition (Disabled - Up to date) {F620D48B-1497-73CC-F290-58052563BEAE}
FW: AVG Internet Security (Disabled) {757AB44A-78C2-7D1A-E37F-CA42A037B368}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\Martin\Desktop" je 10333 MB.
***** Startup Programs *****
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000
==================== End Of Log ==============================