Prosím o kontrolu logu

[predatorx21]

Dobrý den,prosím o kontrolu logu,přeji hezké odpoledne.

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:05-03-2016 01
Ran by Dominik (administrator) on DOMINIK-PC (07-07-2016 14:39:54)
Running from C:\Users\Dominik\Desktop
Loaded Profiles: Dominik (Available Profiles: Dominik)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Bitdefender) C:\Program Files (x86)\Bitdefender\Antivirus Free Edition\gzserv.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
() C:\Windows\System32\PnkBstrA.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(Bitdefender) C:\Program Files (x86)\Bitdefender\Antivirus Free Edition\gziface.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Power Software Ltd) C:\Program Files (x86)\PowerISO\PWRISOVM.EXE
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [6548112 2012-06-12] (Realtek Semiconductor)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2398776 2016-05-02] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [PWRISOVM.EXE] => C:\Program Files (x86)\PowerISO\PWRISOVM.EXE [337432 2013-10-23] (Power Software Ltd)
HKU\S-1-5-21-707951698-1732677806-592134114-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8455960 2015-08-20] (Piriform Ltd)
HKU\S-1-5-21-707951698-1732677806-592134114-1000\...\MountPoints2: I - I:\setup.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{0AA83DC0-B66F-43FD-9DAD-56EA86565672}: [DhcpNameServer] 192.168.0.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-707951698-1732677806-592134114-1000\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\ssv.dll [2016-03-12] (Oracle Corporation)
BHO-x32: Pomocná služba pro přihlášení k účtu Microsoft -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\jp2ssv.dll [2016-03-12] (Oracle Corporation)

FireFox:
========
FF ProfilePath: C:\Users\Dominik\AppData\Roaming\Mozilla\Firefox\Profiles\k63582xc.default
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_21_0_0_242.dll [2016-05-12] ()
FF Plugin: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelogx64.dll [2015-04-30] (EA Digital Illusions CE AB)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_242.dll [2016-05-12] ()
FF Plugin-x32: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelog.dll [2015-04-30] (EA Digital Illusions CE AB)
FF Plugin-x32: @java.com/DTPlugin,version=11.73.2 -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\dtplugin\npDeployJava1.dll [2016-03-12] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.73.2 -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\plugin2\npjp2.dll [2016-03-12] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-03-22] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-03-22] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-05-03] (Adobe Systems Inc.)
FF Extension: Default - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}.xpi [2016-06-11] [not signed]

Chrome:
=======
CHR Profile: C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Prezentace Google) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-03-17]
CHR Extension: (Dokumenty Google) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-03-17]
CHR Extension: (Disk Google) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-03-17]
CHR Extension: (YouTube) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-03-17]
CHR Extension: (Tabulky Google) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-03-17]
CHR Extension: (Dokumenty Google offline) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-18]
CHR Extension: (AdBlock) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-07-07]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-02]
CHR Extension: (Gmail) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-03-17]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1165368 2016-05-02] (NVIDIA Corporation)
R2 gzserv; C:\Program Files (x86)\Bitdefender\Antivirus Free Edition\gzserv.exe [79552 2016-06-15] (Bitdefender)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1136608 2016-03-10] (Malwarebytes)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1881144 2016-05-02] (NVIDIA Corporation)
R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [3634232 2016-05-02] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2522680 2016-05-02] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2122248 2016-06-12] (Electronic Arts)
R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76152 2016-04-02] ()
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2016-03-23] ()
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5702416 2015-09-11] (TeamViewer GmbH)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 avc3; C:\Windows\System32\DRIVERS\avc3.sys [718840 2016-02-25] (BitDefender)
U5 avchv; C:\Windows\System32\Drivers\avchv.sys [261056 2012-11-02] (BitDefender)
R3 avckf; C:\Windows\System32\DRIVERS\avckf.sys [593144 2013-04-17] (BitDefender)
R1 bdfwfpf; C:\Program Files (x86)\Bitdefender\Antivirus Free Edition\bdfwfpf.sys [121928 2013-07-02] (Bitdefender SRL)
S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
R1 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [148696 2013-04-22] (BitDefender LLC)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [27008 2016-03-10] (Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [192216 2016-07-07] (Malwarebytes)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64896 2016-03-10] (Malwarebytes Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [28216 2016-05-02] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [56384 2016-04-14] (NVIDIA Corporation)
R0 trufos; C:\Windows\System32\DRIVERS\trufos.sys [382536 2013-05-28] (BitDefender S.R.L.)
S3 MSICDSetup; \??\D:\CDriver64.sys [X]
S3 NTIOLib_1_0_C; \??\D:\NTIOLib_X64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-07-07 14:39 - 2016-07-07 14:39 - 00013376 _____ C:\Users\Dominik\Desktop\FRST.txt
2016-07-07 10:39 - 2016-07-07 11:55 - 00000000 ____D C:\Users\Dominik\Downloads\Arma 2 CZ titulky+dabing 1.05
2016-07-07 10:39 - 2016-07-07 10:39 - 00042085 _____ C:\Users\Dominik\Downloads\[CzT]Arma_2_CZ_titulky_dabing_1_05.torrent
2016-07-04 17:46 - 2016-07-04 17:46 - 00001046 _____ C:\Users\Dominik\Desktop\Hearts of Iron IV.lnk
2016-07-04 17:46 - 2016-07-04 17:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hearts of Iron IV
2016-07-04 17:43 - 2016-07-04 17:47 - 00000000 ____D C:\Program Files (x86)\Hearts of Iron IV
2016-07-04 17:32 - 2016-07-04 17:34 - 00000000 ____D C:\Users\Dominik\Downloads\Hearts of Iron IV
2016-07-04 17:32 - 2016-07-04 17:32 - 00039983 _____ C:\Users\Dominik\Downloads\[CzT]Hearts_of_Iron_IV_Field_Marshal_Edition_2016_.torrent
2016-07-03 17:14 - 2016-07-03 17:14 - 00000000 ____D C:\Windows\SysWOW64\xlive
2016-07-03 17:14 - 2016-07-03 17:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games for Windows Marketplace
2016-07-03 17:14 - 2016-07-03 17:14 - 00000000 ____D C:\Program Files (x86)\Microsoft Games for Windows - LIVE
2016-07-03 17:09 - 2016-07-03 17:09 - 00000000 ____D C:\Program Files (x86)\Codemasters
2016-07-03 15:42 - 2016-07-03 16:56 - 00000000 ____D C:\Users\Dominik\Downloads\Operation FlashpointRed River-RELOADED
2016-07-03 15:42 - 2016-07-03 15:42 - 00045625 _____ C:\Users\Dominik\Downloads\[CzT]Operation_Flashpoint_Red_River.torrent
2016-07-03 15:27 - 2016-07-03 15:27 - 00020825 _____ C:\Users\Dominik\Downloads\[CzT]Far_Cry_2_2008_CZ_ (1).torrent
2016-07-03 15:24 - 2016-07-03 15:24 - 00020824 _____ C:\Users\Dominik\Downloads\[CzT]Far_Cry_2_2008_CZ_.torrent
2016-07-03 15:22 - 2016-07-03 15:22 - 10711215 _____ C:\Users\Dominik\Downloads\DylansFC2Mod1.4.zip
2016-07-02 00:27 - 2016-07-02 00:28 - 00000006 _____ C:\Users\Dominik\Desktop\FILM DODÍVAT !
2016-07-01 21:31 - 2016-07-01 21:31 - 00049148 _____ C:\Users\Dominik\Downloads\[CzT]13_hodin_Tajni_vojaci_z_Benghazi_13_Hours_The_Secret_Soldiers_of_Benghazi_2016_CZ_EN_720pHD_ (1).torrent
2016-06-30 20:30 - 2016-06-30 20:30 - 00000000 ____D C:\Users\Dominik\AppData\Local\A
2016-06-30 20:16 - 2016-06-30 20:16 - 00000000 ____D C:\Users\Dominik\Documents\Rockstar Games
2016-06-30 20:16 - 2016-06-30 20:16 - 00000000 ____D C:\Users\Dominik\AppData\Local\Rockstar Games
2016-06-30 20:16 - 2016-06-30 20:16 - 00000000 ____D C:\ProgramData\Socialclub
2016-06-30 19:26 - 2016-06-30 20:30 - 00000000 ____D C:\Program Files (x86)\Grand Theft Auto V
2016-06-30 19:26 - 2016-06-30 20:11 - 00000892 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Grand Theft Auto V.lnk
2016-06-30 19:26 - 2016-06-30 20:11 - 00000880 _____ C:\Users\Public\Desktop\Grand Theft Auto V.lnk
2016-06-30 12:33 - 2016-06-30 12:33 - 00326464 _____ C:\Users\Dominik\Downloads\[CzT]Grand_Theft_Auto_V_v1_33_2015_CZ_ (1).torrent
2016-06-30 12:32 - 2016-06-30 12:32 - 00326464 _____ C:\Users\Dominik\Downloads\[CzT]Grand_Theft_Auto_V_v1_33_2015_CZ_.torrent
2016-06-29 21:02 - 2016-06-29 21:02 - 00073669 _____ C:\Users\Dominik\Downloads\[CzT]L_A_Noire_Kompletni_Edice_2011_2012_CZ_.torrent
2016-06-29 15:30 - 2016-06-29 15:30 - 00605037 _____ C:\Users\Dominik\Downloads\[CzT]Grand_Theft_Auto_V_2015_.torrent
2016-06-29 01:15 - 2016-06-29 01:15 - 00003158 _____ C:\Windows\System32\Tasks\{7AD7B501-2F55-4772-A186-E5E10DA5C94F}
2016-06-28 22:04 - 2016-06-28 22:04 - 00049148 _____ C:\Users\Dominik\Downloads\[CzT]13_hodin_Tajni_vojaci_z_Benghazi_13_Hours_The_Secret_Soldiers_of_Benghazi_2016_CZ_EN_720pHD_.torrent
2016-06-28 19:47 - 2016-06-28 19:47 - 00001638 _____ C:\Users\Public\Desktop\Firewatch.lnk
2016-06-26 23:47 - 2016-06-26 23:47 - 00243535 _____ C:\Users\Dominik\Downloads\Lovecraft-Howard-Phillips---Volani-Cthulhu.pdf
2016-06-26 01:51 - 2016-06-26 01:52 - 07975499 _____ C:\Users\Dominik\Downloads\call-of-cthulhu-graphic-novel.pdf
2016-06-24 20:23 - 2016-06-24 20:23 - 00000000 ____D C:\Users\Dominik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2016-06-22 21:26 - 2016-06-22 21:26 - 00048278 _____ C:\Users\Dominik\Downloads\CzTPan_prstenu_Dve_veze_The_Lord_of_the_Rings_The_Two_Towers_Extended_Edition_2002_CZ_EN_1080pHD_.torrent
2016-06-20 07:09 - 2016-06-20 09:43 - 1381720191 _____ C:\Users\Dominik\Downloads\Game-of-Thrones-S06E09-720p.HDTV.x264-AVS.mkv
2016-06-18 21:27 - 2016-06-18 21:27 - 00003106 _____ C:\Windows\System32\Tasks\{F7C16A01-ED1B-482C-8E26-3EB696385CB3}
2016-06-14 02:00 - 2016-06-14 02:00 - 00001169 _____ C:\tedt antivcir.txt
2016-06-11 08:51 - 2016-06-12 08:56 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-06-10 23:37 - 2016-06-10 23:37 - 00001119 _____ C:\Users\Dominik\Desktop\Game of Thrones Episode 6.lnk
2016-06-10 23:37 - 2016-06-10 23:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Game of Thrones Episode 6
2016-06-10 23:30 - 2016-06-11 21:04 - 00000000 ____D C:\Program Files (x86)\Game of Thrones Episode 6
2016-06-08 11:28 - 2016-06-08 11:28 - 00016331 _____ C:\Users\Dominik\Downloads\1f4165f64a2b44ea47f80af6832896e3.jpeg
2016-06-08 11:15 - 2016-06-08 11:15 - 02873300 _____ C:\Users\Dominik\Downloads\Martin-G.-R.---Pisen-ledu-a-ohne-2---Stret-kralu-2.pdf
2016-06-08 10:52 - 2016-06-08 10:52 - 01932922 _____ C:\Users\Dominik\Downloads\02.-Střet-Králů-I.pdf

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-07-07 14:39 - 2015-10-26 18:34 - 00000000 ____D C:\FRST
2016-07-07 14:35 - 2015-10-06 19:06 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-07-07 14:10 - 2016-04-25 15:43 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2016-07-07 13:16 - 2009-07-14 06:45 - 00021872 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-07-07 13:16 - 2009-07-14 06:45 - 00021872 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-07-07 13:08 - 2016-04-22 16:23 - 00000948 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-07-07 13:08 - 2015-10-29 19:45 - 00000000 ____D C:\ProgramData\NVIDIA
2016-07-07 13:08 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-07-07 13:07 - 2015-09-15 18:28 - 00000000 ____D C:\Nová složka
2016-07-06 23:43 - 2016-02-21 13:41 - 00002895 _____ C:\Users\Dominik\Desktop\Národní Socialismus.txt
2016-07-05 23:28 - 2015-09-19 20:01 - 00000000 ____D C:\Users\Dominik\AppData\Roaming\vlc
2016-07-04 17:47 - 2015-11-03 17:48 - 00000000 ____D C:\Users\Dominik\Documents\Paradox Interactive
2016-07-03 23:28 - 2016-02-27 15:40 - 00001576 _____ C:\Users\Dominik\Desktop\internetová stránka.txt
2016-07-03 17:18 - 2015-09-20 11:51 - 00000000 ____D C:\Users\Dominik\Documents\My Games
2016-07-03 17:14 - 2009-07-14 07:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2016-07-03 06:09 - 2015-09-27 20:38 - 00000000 ____D C:\Program Files (x86)\SpeedFan
2016-07-02 13:03 - 2016-03-11 10:49 - 00000000 ____D C:\Windows\Minidump
2016-07-02 13:03 - 2016-01-15 15:06 - 00000000 ____D C:\Users\Dominik\AppData\Local\CrashDumps
2016-07-01 21:45 - 2015-12-13 21:39 - 00000000 ____D C:\GOG Games
2016-06-30 22:40 - 2015-10-12 19:19 - 00282696 _____ C:\Windows\SysWOW64\PnkBstrB.xtr
2016-06-30 22:40 - 2015-09-25 17:42 - 00282696 _____ C:\Windows\SysWOW64\PnkBstrB.exe
2016-06-30 22:39 - 2015-09-25 17:42 - 00282696 _____ C:\Windows\SysWOW64\PnkBstrB.ex0
2016-06-30 20:15 - 2016-05-27 01:16 - 00000000 ____D C:\Users\Dominik\AppData\Roaming\A
2016-06-30 19:54 - 2016-03-12 19:36 - 00000000 ____D C:\Program Files (x86)\Rockstar Games
2016-06-30 19:53 - 2016-03-11 21:50 - 00000000 ____D C:\Program Files\Rockstar Games
2016-06-30 01:02 - 2015-09-18 18:24 - 00000000 ____D C:\Program Files (x86)\Steam
2016-06-29 00:33 - 2016-02-28 14:14 - 00000000 ____D C:\jap
2016-06-28 19:47 - 2015-10-04 22:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com
2016-06-27 23:19 - 2015-09-25 15:37 - 00000000 ____D C:\ProgramData\Origin
2016-06-26 02:20 - 2015-09-15 22:08 - 00000000 ____D C:\Users\Dominik\AppData\Roaming\Skype
2016-06-20 23:18 - 2016-05-21 18:54 - 00000000 ____D C:\Program Files (x86)\World of Warcraft Beta
2016-06-20 23:16 - 2016-03-07 11:17 - 00000000 ____D C:\Users\Dominik\AppData\Local\Battle.net
2016-06-20 23:16 - 2016-03-07 11:17 - 00000000 ____D C:\Program Files (x86)\Battle.net
2016-06-18 21:27 - 2015-09-15 22:08 - 00000000 ____D C:\ProgramData\Skype
2016-06-18 01:06 - 2016-04-22 16:23 - 00002195 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-06-18 01:06 - 2016-04-22 16:23 - 00002183 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-06-15 12:49 - 2015-10-21 20:28 - 00007602 _____ C:\Users\Dominik\AppData\Local\Resmon.ResmonCfg
2016-06-12 23:49 - 2016-05-04 15:07 - 00000000 ____D C:\ProgramData\EA Logs
2016-06-12 23:45 - 2015-09-25 15:37 - 00000000 ____D C:\Program Files (x86)\Origin
2016-06-12 08:56 - 2015-09-27 22:16 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-06-11 01:37 - 2016-02-12 01:00 - 00001960 _____ C:\Users\Dominik\Desktop\vyřivka,soukromy wellnes DULEŽITE !.txt
2016-06-10 01:11 - 2015-12-06 15:10 - 00002717 _____ C:\Users\Dominik\Desktop\Nový textový dokument (4).txt

==================== Files in the root of some directories =======

2015-10-11 11:33 - 2016-02-13 01:52 - 0001270 _____ () C:\Users\Dominik\AppData\Roaming\DOMINIK-PC.MTBF.txt
2015-10-11 11:34 - 2016-02-13 01:55 - 0000674 _____ () C:\Users\Dominik\AppData\Roaming\__AvidCloudManager.log
2015-10-11 11:34 - 2016-02-13 01:53 - 0000774 _____ () C:\Users\Dominik\AppData\Roaming\__AvidCloudManagerPrevious.log
2015-11-15 20:10 - 2015-11-15 20:10 - 0003584 _____ () C:\Users\Dominik\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2016-03-21 19:24 - 2016-03-21 19:24 - 0029696 _____ () C:\Users\Dominik\AppData\Local\MSGBOX.EXE
2016-02-23 18:32 - 2016-02-23 18:32 - 0000913 _____ () C:\Users\Dominik\AppData\Local\recently-used.xbel
2015-10-21 20:28 - 2016-06-15 12:49 - 0007602 _____ () C:\Users\Dominik\AppData\Local\Resmon.ResmonCfg
2015-11-02 22:23 - 2015-11-02 22:23 - 0000000 ___SH () C:\ProgramData\.rdata
2016-02-20 15:27 - 2016-02-20 15:27 - 0204321 _____ () C:\ProgramData\1455974741.bdinstall.bin
2016-02-24 16:36 - 2016-02-24 16:36 - 0037824 _____ () C:\ProgramData\1456324615.bdinstall.bin
2016-02-24 16:37 - 2016-02-24 16:37 - 0097271 _____ () C:\ProgramData\1456324617.bdinstall.bin
2016-02-24 16:38 - 2016-02-24 16:38 - 0108076 _____ () C:\ProgramData\1456324682.bdinstall.bin
2016-02-24 16:39 - 2016-02-24 16:39 - 0169149 _____ () C:\ProgramData\1456324742.bdinstall.bin

Some files in TEMP:
====================
C:\Users\Dominik\AppData\Local\Temp\AutoRun.exe
C:\Users\Dominik\AppData\Local\Temp\AutoRunGUI.dll
C:\Users\Dominik\AppData\Local\Temp\avguirn_081780269290.exe
C:\Users\Dominik\AppData\Local\Temp\avguirn_08700485427.exe
C:\Users\Dominik\AppData\Local\Temp\avguirn_08874911523.exe
C:\Users\Dominik\AppData\Local\Temp\avguirn_0895265570.exe
C:\Users\Dominik\AppData\Local\Temp\eauninstall.exe
C:\Users\Dominik\AppData\Local\Temp\jshortcut-3923951001676432855.dll
C:\Users\Dominik\AppData\Local\Temp\libeay32.dll
C:\Users\Dominik\AppData\Local\Temp\MP3_Launcher_1_36_0_0.exe
C:\Users\Dominik\AppData\Local\Temp\MP3_Patch_Update_1_0_0_78.exe
C:\Users\Dominik\AppData\Local\Temp\msvcr120.dll
C:\Users\Dominik\AppData\Local\Temp\nvSCPAPI.dll
C:\Users\Dominik\AppData\Local\Temp\nvSCPAPI64.dll
C:\Users\Dominik\AppData\Local\Temp\nvStInst.exe
C:\Users\Dominik\AppData\Local\Temp\sfamcc00001.dll
C:\Users\Dominik\AppData\Local\Temp\sfamcc00002.dll
C:\Users\Dominik\AppData\Local\Temp\sfextra.dll
C:\Users\Dominik\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Dominik\AppData\Local\Temp\sqlite3.dll
C:\Users\Dominik\AppData\Local\Temp\The Battle for Middle-earth_uninst.exe
C:\Users\Dominik\AppData\Local\Temp\ubi9F25.tmp.exe


==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2016-06-27 12:36

==================== End of FRST.txt ============================

[Márty84]

Zdravim

Mate nehezky zvyk cisteni nedokoncit. Ma tedy cenu log kontrolovat?

[predatorx21]

Dobrý den,moc se omlouvám už se to nebude opakovat.

[Márty84]

už se to nebude opakovat

To jsem zvedavy

Jde ciste jen o prevenci, nebo je i nejaky problem?

Stahnete AdwCleaner https://toolslib.net/downloads/finish/1/ a ulozte ho na plochu.
Ukoncete vsechny programy, jinak to AdwCleaner udela za vas.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce.
Kliknete na Scan a pockejte, az kontrola dobehne.
Pak kliknete na Cleaning
Program zacne pracovat (muze dojit k restartu pc) a vyplivne log (pripadne bude zde C:\AdwCleaner\AdwCleaner[C?].txt ). Ten mi sem zkopirujte.

Vidim tam MBAM, pokud jste nedelal, spustte test. Test nastavte podle tohoto navodu (cili Vlastni sken vsech disku) http://forum.viry.cz/viewtopic.php?f=29&t=144868 a dejte sem vysledky. Predem nic nemazte, miva obcas falesne detekce

[predatorx21]

# AdwCleaner v5.201 - Logfile created 09/07/2016 at 10:41:51
# Updated 30/06/2016 by ToolsLib
# Database : 2016-07-08.2 [Server]
# Operating system : Windows 7 Home Premium Service Pack 1 (X64)
# Username : Dominik - DOMINIK-PC
# Running from : C:\Users\Dominik\Downloads\adwcleaner_5.201.exe
# Option : Scan
# Support : https://toolslib.net/forum

***** [ Services ] *****


***** [ Folders ] *****


***** [ Files ] *****


***** [ DLL ] *****


***** [ WMI ] *****


***** [ Shortcuts ] *****


***** [ Scheduled tasks ] *****


***** [ Registry ] *****


***** [ Web browsers ] *****


*************************

C:\AdwCleaner\AdwCleaner[C1].txt - [3012 bytes] - [21/09/2015 23:45:11]
C:\AdwCleaner\AdwCleaner[C2].txt - [2461 bytes] - [07/10/2015 20:05:11]
C:\AdwCleaner\AdwCleaner[C3].txt - [2192 bytes] - [07/10/2015 21:33:17]
C:\AdwCleaner\AdwCleaner[C4].txt - [836 bytes] - [27/10/2015 13:01:12]
C:\AdwCleaner\AdwCleaner[S1].txt - [3544 bytes] - [21/09/2015 17:27:35]
C:\AdwCleaner\AdwCleaner[S2].txt - [2895 bytes] - [21/09/2015 23:44:45]
C:\AdwCleaner\AdwCleaner[S3].txt - [2293 bytes] - [07/10/2015 21:32:51]
C:\AdwCleaner\AdwCleaner[S4].txt - [2126 bytes] - [27/10/2015 13:00:03]
C:\AdwCleaner\AdwCleaner[S5].txt - [2040 bytes] - [29/10/2015 20:10:48]
C:\AdwCleaner\AdwCleaner[S6].txt - [1311 bytes] - [09/07/2016 10:41:51]

########## EOF - C:\AdwCleaner\AdwCleaner[S6].txt - [1384 bytes] ##########
Kontrola MBAM probíhá. Jinak mám trochu problémy s prohlížečem Google Chrome,občas mi jakoby problikávají stránky nebo vypadávají.

[Márty84]

Kontrola MBAM probíhá. Jinak mám trochu problémy s prohlížečem Google Chrome,občas mi jakoby problikávají stránky nebo vypadávají.

OK, procistime to a uvidime.

[predatorx21]

Malwarebytes Anti-Malware
www.malwarebytes.org

Datum skenování: 9.7.2016
Čas skenování: 10:45
Protokol: výsledky.txt
Správce: Ano

Verze: 2.2.1.1043
Databáze malwaru: v2016.07.09.05
Databáze rootkitů: v2016.05.27.01
Licence: Bezplatná verze
Ochrana proti malwaru: Vypnuto
Ochrana proti škodlivým webovým stránkám: Vypnuto
Ochrana programu: Vypnuto

OS: Windows 7 Service Pack 1
CPU: x64
Souborový systém: NTFS
Uživatel: Dominik

Typ skenu: Vlastní sken
Výsledek: Dokončeno
Prohledaných objektů: 1394922
Uplynulý čas: 3 hod, 17 min, 28 sek

Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Zapnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto

Procesy: 0
(Nenalezeny žádné škodlivé položky)

Moduly: 0
(Nenalezeny žádné škodlivé položky)

Klíče registru: 0
(Nenalezeny žádné škodlivé položky)

Hodnoty registru: 0
(Nenalezeny žádné škodlivé položky)

Data registru: 0
(Nenalezeny žádné škodlivé položky)

Složky: 0
(Nenalezeny žádné škodlivé položky)

Soubory: 4
RiskWare.GameHack, C:\Program Files (x86)\Layers of Fear\Layers Of Fear_Data\Plugins\steam_api64r.dll, , [cb2e2ff265351e186d3b2385f2129868],
RiskWare.GameHack, C:\Program Files (x86)\Layers of Fear\Layers Of Fear_Data\Plugins\steam_apir.dll, , [6099c25f7525c0762880ceda57adf50b],
RiskWare.GameHack, C:\Program Files (x86)\SEGA\Total War - SHOGUN 2\steam_api.dll, , [6099f72a61390c2afaae674143c148b8],
RiskWare.GameHack, C:\_OTM\Crack\steam_api64r.dll, , [08f10819d4c6102612961a8eba4ab24e],

Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)


(end)

[Márty84]

Nalezy nechte odstranit.

Dejte nove logy podle tohoto navodu http://forum.viry.cz/viewtopic.php?f=13&t=133100 - vypnete na chvili antivir, je mozne, ze to bude blokovat jako skodnou, ale pouzivame to porad, jedna se o falesny poplach
(Kdyby nesel Launcher stahnout, dejte logy jen ze samotneho FRST, tedy bez pouziti Launcheru)

[predatorx21]

can result of Farbar Recovery Scan Tool (FRST) (x64) Version: 10-07-2016 01
Ran by Dominik (administrator) on DOMINIK-PC (11-07-2016 11:17:40)
Running from C:\Users\Dominik\Downloads
Loaded Profiles: Dominik (Available Profiles: Dominik)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Bitdefender) C:\Program Files (x86)\Bitdefender\Antivirus Free Edition\gzserv.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
() C:\Windows\System32\PnkBstrA.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(Bitdefender) C:\Program Files (x86)\Bitdefender\Antivirus Free Edition\gziface.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Power Software Ltd) C:\Program Files (x86)\PowerISO\PWRISOVM.EXE
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [6548112 2012-06-12] (Realtek Semiconductor)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2398776 2016-05-02] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [PWRISOVM.EXE] => C:\Program Files (x86)\PowerISO\PWRISOVM.EXE [337432 2013-10-23] (Power Software Ltd)
HKU\S-1-5-21-707951698-1732677806-592134114-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8455960 2015-08-20] (Piriform Ltd)
HKU\S-1-5-21-707951698-1732677806-592134114-1000\...\MountPoints2: I - I:\setup.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{0AA83DC0-B66F-43FD-9DAD-56EA86565672}: [DhcpNameServer] 192.168.0.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-707951698-1732677806-592134114-1000\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\ssv.dll [2016-03-12] (Oracle Corporation)
BHO-x32: Pomocná služba pro přihlášení k účtu Microsoft -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\jp2ssv.dll [2016-03-12] (Oracle Corporation)

FireFox:
========
FF ProfilePath: C:\Users\Dominik\AppData\Roaming\Mozilla\Firefox\Profiles\k63582xc.default
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_21_0_0_242.dll [2016-05-12] ()
FF Plugin: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelogx64.dll [2015-04-30] (EA Digital Illusions CE AB)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_242.dll [2016-05-12] ()
FF Plugin-x32: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelog.dll [2015-04-30] (EA Digital Illusions CE AB)
FF Plugin-x32: @java.com/DTPlugin,version=11.73.2 -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\dtplugin\npDeployJava1.dll [2016-03-12] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.73.2 -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\plugin2\npjp2.dll [2016-03-12] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-03-22] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-03-22] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-05-03] (Adobe Systems Inc.)

Chrome:
=======
CHR Profile: C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Prezentace Google) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-03-17]
CHR Extension: (Dokumenty Google) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-03-17]
CHR Extension: (Disk Google) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-03-17]
CHR Extension: (YouTube) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-03-17]
CHR Extension: (Tabulky Google) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-03-17]
CHR Extension: (Dokumenty Google offline) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-18]
CHR Extension: (AdBlock) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-07-07]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-02]
CHR Extension: (Gmail) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-03-17]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1165368 2016-05-02] (NVIDIA Corporation)
R2 gzserv; C:\Program Files (x86)\Bitdefender\Antivirus Free Edition\gzserv.exe [79552 2016-06-15] (Bitdefender)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1136608 2016-03-10] (Malwarebytes)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1881144 2016-05-02] (NVIDIA Corporation)
R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [3634232 2016-05-02] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2522680 2016-05-02] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2122248 2016-06-12] (Electronic Arts)
R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76152 2016-04-02] ()
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2016-03-23] ()
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5702416 2015-09-11] (TeamViewer GmbH)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 avc3; C:\Windows\System32\DRIVERS\avc3.sys [718840 2016-02-25] (BitDefender)
U5 avchv; C:\Windows\System32\Drivers\avchv.sys [261056 2012-11-02] (BitDefender)
R3 avckf; C:\Windows\System32\DRIVERS\avckf.sys [593144 2013-04-17] (BitDefender)
R1 bdfwfpf; C:\Program Files (x86)\Bitdefender\Antivirus Free Edition\bdfwfpf.sys [121928 2013-07-02] (Bitdefender SRL)
S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
R1 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [148696 2013-04-22] (BitDefender LLC)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [27008 2016-03-10] (Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [192216 2016-07-11] (Malwarebytes)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64896 2016-03-10] (Malwarebytes Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [28216 2016-05-02] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [56384 2016-04-14] (NVIDIA Corporation)
R0 trufos; C:\Windows\System32\DRIVERS\trufos.sys [382536 2013-05-28] (BitDefender S.R.L.)
S3 MSICDSetup; \??\D:\CDriver64.sys [X]
S3 NTIOLib_1_0_C; \??\D:\NTIOLib_X64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-07-11 11:17 - 2016-07-11 11:17 - 00013152 _____ C:\Users\Dominik\Downloads\FRST.txt
2016-07-11 11:16 - 2016-07-11 11:16 - 02390528 _____ (Farbar) C:\Users\Dominik\Downloads\FRST64.exe
2016-07-11 11:16 - 2016-07-11 11:16 - 00112640 _____ (forum.viry.cz) C:\Users\Dominik\Downloads\Nepotvrzeno 17869.crdownload
2016-07-10 11:41 - 2016-07-10 14:22 - 00000000 ____D C:\Users\Dominik\Downloads\Prince of Persia - Warrior Within CZ
2016-07-10 11:41 - 2016-07-10 11:41 - 00014067 _____ C:\Users\Dominik\Downloads\[CzT]Prince_of_Persia_Warrior_Within_CZ.torrent
2016-07-09 23:28 - 2016-07-09 23:28 - 00000000 ____D C:\Users\Dominik\Downloads\Prince Of Persia 3 The Two Thrones
2016-07-09 23:27 - 2016-07-09 23:27 - 00021723 _____ C:\Users\Dominik\Downloads\[CzT]Prince_Of_Persia_The_Two_Thrones.torrent
2016-07-09 16:33 - 2016-07-09 16:33 - 00001624 _____ C:\výsledky.txt
2016-07-09 00:17 - 2016-07-09 00:20 - 59242820 _____ C:\Users\Dominik\Downloads\Roman-Skružny---Pravda-o-lži.rar
2016-07-08 22:14 - 2016-07-08 22:14 - 03712064 _____ C:\Users\Dominik\Downloads\adwcleaner_5.201.exe
2016-07-07 14:39 - 2016-07-07 14:40 - 00027006 _____ C:\Users\Dominik\Desktop\FRST.txt
2016-07-07 10:39 - 2016-07-07 11:55 - 00000000 ____D C:\Users\Dominik\Downloads\Arma 2 CZ titulky+dabing 1.05
2016-07-07 10:39 - 2016-07-07 10:39 - 00042085 _____ C:\Users\Dominik\Downloads\[CzT]Arma_2_CZ_titulky_dabing_1_05.torrent
2016-07-04 17:46 - 2016-07-04 17:46 - 00001046 _____ C:\Users\Dominik\Desktop\Hearts of Iron IV.lnk
2016-07-04 17:46 - 2016-07-04 17:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hearts of Iron IV
2016-07-04 17:43 - 2016-07-04 17:47 - 00000000 ____D C:\Program Files (x86)\Hearts of Iron IV
2016-07-04 17:32 - 2016-07-04 17:34 - 00000000 ____D C:\Users\Dominik\Downloads\Hearts of Iron IV
2016-07-04 17:32 - 2016-07-04 17:32 - 00039983 _____ C:\Users\Dominik\Downloads\[CzT]Hearts_of_Iron_IV_Field_Marshal_Edition_2016_.torrent
2016-07-03 17:14 - 2016-07-03 17:14 - 00000000 ____D C:\Windows\SysWOW64\xlive
2016-07-03 17:14 - 2016-07-03 17:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games for Windows Marketplace
2016-07-03 17:14 - 2016-07-03 17:14 - 00000000 ____D C:\Program Files (x86)\Microsoft Games for Windows - LIVE
2016-07-03 17:09 - 2016-07-03 17:09 - 00000000 ____D C:\Program Files (x86)\Codemasters
2016-07-03 15:42 - 2016-07-03 16:56 - 00000000 ____D C:\Users\Dominik\Downloads\Operation FlashpointRed River-RELOADED
2016-07-03 15:42 - 2016-07-03 15:42 - 00045625 _____ C:\Users\Dominik\Downloads\[CzT]Operation_Flashpoint_Red_River.torrent
2016-07-03 15:27 - 2016-07-03 15:27 - 00020825 _____ C:\Users\Dominik\Downloads\[CzT]Far_Cry_2_2008_CZ_ (1).torrent
2016-07-03 15:24 - 2016-07-03 15:24 - 00020824 _____ C:\Users\Dominik\Downloads\[CzT]Far_Cry_2_2008_CZ_.torrent
2016-07-03 15:22 - 2016-07-03 15:22 - 10711215 _____ C:\Users\Dominik\Downloads\DylansFC2Mod1.4.zip
2016-07-02 00:27 - 2016-07-02 00:28 - 00000006 _____ C:\Users\Dominik\Desktop\FILM DODÍVAT !
2016-07-01 21:31 - 2016-07-01 21:31 - 00049148 _____ C:\Users\Dominik\Downloads\[CzT]13_hodin_Tajni_vojaci_z_Benghazi_13_Hours_The_Secret_Soldiers_of_Benghazi_2016_CZ_EN_720pHD_ (1).torrent
2016-06-30 20:30 - 2016-06-30 20:30 - 00000000 ____D C:\Users\Dominik\AppData\Local\A
2016-06-30 20:16 - 2016-06-30 20:16 - 00000000 ____D C:\Users\Dominik\Documents\Rockstar Games
2016-06-30 20:16 - 2016-06-30 20:16 - 00000000 ____D C:\Users\Dominik\AppData\Local\Rockstar Games
2016-06-30 20:16 - 2016-06-30 20:16 - 00000000 ____D C:\ProgramData\Socialclub
2016-06-30 19:26 - 2016-06-30 20:30 - 00000000 ____D C:\Program Files (x86)\Grand Theft Auto V
2016-06-30 19:26 - 2016-06-30 20:11 - 00000892 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Grand Theft Auto V.lnk
2016-06-30 19:26 - 2016-06-30 20:11 - 00000880 _____ C:\Users\Public\Desktop\Grand Theft Auto V.lnk
2016-06-30 12:33 - 2016-06-30 12:33 - 00326464 _____ C:\Users\Dominik\Downloads\[CzT]Grand_Theft_Auto_V_v1_33_2015_CZ_ (1).torrent
2016-06-30 12:32 - 2016-06-30 12:32 - 00326464 _____ C:\Users\Dominik\Downloads\[CzT]Grand_Theft_Auto_V_v1_33_2015_CZ_.torrent
2016-06-29 21:02 - 2016-06-29 21:02 - 00073669 _____ C:\Users\Dominik\Downloads\[CzT]L_A_Noire_Kompletni_Edice_2011_2012_CZ_.torrent
2016-06-29 15:30 - 2016-06-29 15:30 - 00605037 _____ C:\Users\Dominik\Downloads\[CzT]Grand_Theft_Auto_V_2015_.torrent
2016-06-29 01:15 - 2016-06-29 01:15 - 00003158 _____ C:\Windows\System32\Tasks\{7AD7B501-2F55-4772-A186-E5E10DA5C94F}
2016-06-28 22:04 - 2016-06-28 22:04 - 00049148 _____ C:\Users\Dominik\Downloads\[CzT]13_hodin_Tajni_vojaci_z_Benghazi_13_Hours_The_Secret_Soldiers_of_Benghazi_2016_CZ_EN_720pHD_.torrent
2016-06-28 19:47 - 2016-06-28 19:47 - 00001638 _____ C:\Users\Public\Desktop\Firewatch.lnk
2016-06-26 23:47 - 2016-06-26 23:47 - 00243535 _____ C:\Users\Dominik\Downloads\Lovecraft-Howard-Phillips---Volani-Cthulhu.pdf
2016-06-26 01:51 - 2016-06-26 01:52 - 07975499 _____ C:\Users\Dominik\Downloads\call-of-cthulhu-graphic-novel.pdf
2016-06-24 20:23 - 2016-06-24 20:23 - 00000000 ____D C:\Users\Dominik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2016-06-22 21:26 - 2016-06-22 21:26 - 00048278 _____ C:\Users\Dominik\Downloads\CzTPan_prstenu_Dve_veze_The_Lord_of_the_Rings_The_Two_Towers_Extended_Edition_2002_CZ_EN_1080pHD_.torrent
2016-06-20 07:09 - 2016-06-20 09:43 - 1381720191 _____ C:\Users\Dominik\Downloads\Game-of-Thrones-S06E09-720p.HDTV.x264-AVS.mkv
2016-06-18 21:27 - 2016-06-18 21:27 - 00003106 _____ C:\Windows\System32\Tasks\{F7C16A01-ED1B-482C-8E26-3EB696385CB3}
2016-06-14 02:00 - 2016-06-14 02:00 - 00001169 _____ C:\tedt antivcir.txt
2016-06-11 08:51 - 2016-06-12 08:56 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-07-11 11:17 - 2015-10-26 18:34 - 00000000 ____D C:\FRST
2016-07-11 10:35 - 2015-10-06 19:06 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-07-11 10:19 - 2009-07-14 06:45 - 00021872 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-07-11 10:19 - 2009-07-14 06:45 - 00021872 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-07-11 09:39 - 2016-04-25 15:43 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2016-07-11 09:39 - 2016-04-22 16:23 - 00000948 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-07-11 09:38 - 2015-10-29 19:45 - 00000000 ____D C:\ProgramData\NVIDIA
2016-07-11 09:38 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-07-11 01:55 - 2015-09-15 18:28 - 00000000 ____D C:\Nová složka
2016-07-09 23:10 - 2015-09-15 22:08 - 00000000 ____D C:\Users\Dominik\AppData\Roaming\Skype
2016-07-09 13:54 - 2016-02-27 15:40 - 00001723 _____ C:\Users\Dominik\Desktop\internetová stránka.txt
2016-07-09 10:41 - 2015-09-21 17:27 - 00000000 ____D C:\AdwCleaner
2016-07-09 02:27 - 2015-09-18 18:24 - 00000000 ____D C:\Program Files (x86)\Steam
2016-07-08 23:12 - 2015-09-19 20:01 - 00000000 ____D C:\Users\Dominik\AppData\Roaming\vlc
2016-07-08 22:13 - 2016-02-21 13:41 - 00003046 _____ C:\Users\Dominik\Desktop\Národní Socialismus.txt
2016-07-08 21:11 - 2009-07-14 07:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2016-07-07 23:27 - 2015-09-27 20:38 - 00000000 ____D C:\Program Files (x86)\SpeedFan
2016-07-04 17:47 - 2015-11-03 17:48 - 00000000 ____D C:\Users\Dominik\Documents\Paradox Interactive
2016-07-03 17:18 - 2015-09-20 11:51 - 00000000 ____D C:\Users\Dominik\Documents\My Games
2016-07-02 13:03 - 2016-03-11 10:49 - 00000000 ____D C:\Windows\Minidump
2016-07-02 13:03 - 2016-01-15 15:06 - 00000000 ____D C:\Users\Dominik\AppData\Local\CrashDumps
2016-07-01 21:45 - 2015-12-13 21:39 - 00000000 ____D C:\GOG Games
2016-06-30 22:40 - 2015-10-12 19:19 - 00282696 _____ C:\Windows\SysWOW64\PnkBstrB.xtr
2016-06-30 22:40 - 2015-09-25 17:42 - 00282696 _____ C:\Windows\SysWOW64\PnkBstrB.exe
2016-06-30 22:39 - 2015-09-25 17:42 - 00282696 _____ C:\Windows\SysWOW64\PnkBstrB.ex0
2016-06-30 20:15 - 2016-05-27 01:16 - 00000000 ____D C:\Users\Dominik\AppData\Roaming\A
2016-06-30 19:54 - 2016-03-12 19:36 - 00000000 ____D C:\Program Files (x86)\Rockstar Games
2016-06-30 19:53 - 2016-03-11 21:50 - 00000000 ____D C:\Program Files\Rockstar Games
2016-06-29 00:33 - 2016-02-28 14:14 - 00000000 ____D C:\jap
2016-06-28 19:47 - 2015-10-04 22:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com
2016-06-27 23:19 - 2015-09-25 15:37 - 00000000 ____D C:\ProgramData\Origin
2016-06-20 23:18 - 2016-05-21 18:54 - 00000000 ____D C:\Program Files (x86)\World of Warcraft Beta
2016-06-20 23:16 - 2016-03-07 11:17 - 00000000 ____D C:\Users\Dominik\AppData\Local\Battle.net
2016-06-20 23:16 - 2016-03-07 11:17 - 00000000 ____D C:\Program Files (x86)\Battle.net
2016-06-18 21:27 - 2015-09-15 22:08 - 00000000 ____D C:\ProgramData\Skype
2016-06-18 01:06 - 2016-04-22 16:23 - 00002195 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-06-18 01:06 - 2016-04-22 16:23 - 00002183 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-06-15 12:49 - 2015-10-21 20:28 - 00007602 _____ C:\Users\Dominik\AppData\Local\Resmon.ResmonCfg
2016-06-12 23:49 - 2016-05-04 15:07 - 00000000 ____D C:\ProgramData\EA Logs
2016-06-12 23:45 - 2015-09-25 15:37 - 00000000 ____D C:\Program Files (x86)\Origin
2016-06-12 08:56 - 2015-09-27 22:16 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-06-11 21:04 - 2016-06-10 23:30 - 00000000 ____D C:\Program Files (x86)\Game of Thrones Episode 6
2016-06-11 01:37 - 2016-02-12 01:00 - 00001960 _____ C:\Users\Dominik\Desktop\vyřivka,soukromy wellnes DULEŽITE !.txt

==================== Files in the root of some directories =======

2015-10-11 11:33 - 2016-02-13 01:52 - 0001270 _____ () C:\Users\Dominik\AppData\Roaming\DOMINIK-PC.MTBF.txt
2015-10-11 11:34 - 2016-02-13 01:55 - 0000674 _____ () C:\Users\Dominik\AppData\Roaming\__AvidCloudManager.log
2015-10-11 11:34 - 2016-02-13 01:53 - 0000774 _____ () C:\Users\Dominik\AppData\Roaming\__AvidCloudManagerPrevious.log
2015-11-15 20:10 - 2015-11-15 20:10 - 0003584 _____ () C:\Users\Dominik\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2016-03-21 19:24 - 2016-03-21 19:24 - 0029696 _____ () C:\Users\Dominik\AppData\Local\MSGBOX.EXE
2016-02-23 18:32 - 2016-02-23 18:32 - 0000913 _____ () C:\Users\Dominik\AppData\Local\recently-used.xbel
2015-10-21 20:28 - 2016-06-15 12:49 - 0007602 _____ () C:\Users\Dominik\AppData\Local\Resmon.ResmonCfg
2015-11-02 22:23 - 2015-11-02 22:23 - 0000000 ___SH () C:\ProgramData\.rdata
2016-02-20 15:27 - 2016-02-20 15:27 - 0204321 _____ () C:\ProgramData\1455974741.bdinstall.bin
2016-02-24 16:36 - 2016-02-24 16:36 - 0037824 _____ () C:\ProgramData\1456324615.bdinstall.bin
2016-02-24 16:37 - 2016-02-24 16:37 - 0097271 _____ () C:\ProgramData\1456324617.bdinstall.bin
2016-02-24 16:38 - 2016-02-24 16:38 - 0108076 _____ () C:\ProgramData\1456324682.bdinstall.bin
2016-02-24 16:39 - 2016-02-24 16:39 - 0169149 _____ () C:\ProgramData\1456324742.bdinstall.bin

Some files in TEMP:
====================
C:\Users\Dominik\AppData\Local\Temp\AutoRun.exe
C:\Users\Dominik\AppData\Local\Temp\AutoRunGUI.dll
C:\Users\Dominik\AppData\Local\Temp\avguirn_081780269290.exe
C:\Users\Dominik\AppData\Local\Temp\avguirn_08700485427.exe
C:\Users\Dominik\AppData\Local\Temp\avguirn_08874911523.exe
C:\Users\Dominik\AppData\Local\Temp\avguirn_0895265570.exe
C:\Users\Dominik\AppData\Local\Temp\drm_dialogs.dll
C:\Users\Dominik\AppData\Local\Temp\eauninstall.exe
C:\Users\Dominik\AppData\Local\Temp\jshortcut-3923951001676432855.dll
C:\Users\Dominik\AppData\Local\Temp\MP3_Launcher_1_36_0_0.exe
C:\Users\Dominik\AppData\Local\Temp\MP3_Patch_Update_1_0_0_78.exe
C:\Users\Dominik\AppData\Local\Temp\nvSCPAPI.dll
C:\Users\Dominik\AppData\Local\Temp\nvSCPAPI64.dll
C:\Users\Dominik\AppData\Local\Temp\nvStInst.exe
C:\Users\Dominik\AppData\Local\Temp\sfamcc00001.dll
C:\Users\Dominik\AppData\Local\Temp\sfamcc00002.dll
C:\Users\Dominik\AppData\Local\Temp\sfextra.dll
C:\Users\Dominik\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Dominik\AppData\Local\Temp\The Battle for Middle-earth_uninst.exe
C:\Users\Dominik\AppData\Local\Temp\ubi9F25.tmp.exe


==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2016-07-07 15:09

==================== End of FRST.txt ============================

[Márty84]

To sice moc podle navodu nebylo, ale aspon tak.


Napiste mi velikost adresare plochy (C:\Users\Dominik\Plocha)



Presunte FRST na plochu, jinak to nebude fungovat!
Otevrete si poznamkovy blok a zkopirujte do nej tento skript

Kód: Vybrat vše

Start
CloseProcesses:
CreateRestorePoint:
Hosts:
EmptyTemp:
Reboot:
End

Vlevo nahore kliknete na napis Soubor
Kliknete na napis Ulozit jako...
Napiste spravne ten cerveny nazev fixlist a ulozte na plochu.
Vypnete antivir i dalsi pripadne zabezpeceni.
Spustte FRST jako spravce, kliknete na napis Fix a program vykona prikazy.
Po restartu pc by se mel objevit novy log - s nazvem fixlog, ten mi sem zase zkopirujte.

[predatorx21]

Fix result of Farbar Recovery Scan Tool (x64) Version:05-03-2016 01
Ran by Dominik (2016-07-11 12:36:07) Run:5
Running from C:\Users\Dominik\Desktop
Loaded Profiles: Dominik (Available Profiles: Dominik)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CloseProcesses:
CreateRestorePoint:
Hosts:
EmptyTemp:
Reboot:
End
*****************

Processes closed successfully.
Restore point was successfully created.
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.
EmptyTemp: => 1.6 GB temporary data Removed.


The system needed a reboot.

==== End of Fixlog 12:37:08 ====

[Márty84]

Napiste mi velikost adresare plochy (C:\Users\Dominik\Plocha)

Vsechny tyto programy - vcetne pripadne instalace - spoustejte jako spravce (kliknete na ne pravym mysidlem a zvolte - Spustit jako spravce)

DelFix https://toolslib.net/downloads/finish/2/

• Stahnete a spustte
• Ponechte zatrzitkou pouze u volby Remove disinfection tools
• Kliknete na Run

Stahnete Ccleaner http://www.filehippo.com/download_ccleaner a spustte.
Pri instalaci pozor na toolbar (ci jine doplnky), jestli vam nabidne jeho instalaci, tak zruste zatrzitko.
Po spusteni se ocitnete ve funkci Cistic. Vlevo je spousta zatrzitek. Pozor dejte hlavne na kos, pokud nechate zatrzene, vzdy ho vysype.
Dale, podle toho jak je nastaven, smaze vsechna hesla ulozena na netu!!! Takze jestli mate nastavene, at si pocitac hesla pamatuje (coz neni pro bezpecnost dobre), budete je muset pak napsat znova rucne (napr mail, facebook, ruzna fora atd.)
Kliknete na Analyzovat a az dokonci analyzu, kliknete na Spustit Cleaner.
Potom kliknete vlevo na funkci Registry
Kliknete na Hledej problemy, kdyz najde, kliknete na Opravit problemy. Nabidne Vam zalohu, tu udelejte a ulozte ji tak, at ji v pripade potreby najdete.
Funkce Nastroje umoznuje odinstalovani programu. Je dukladnejsi nez samotny windows!
(Pokud je v pc vice uzivatelskych uctu, pouzijte program i v nich)

Defragmentujte disk(y) (SSD Disky ne!)
Stahnete program Defraggler https://www.piriform.com/defraggler/download/standard
Pri instalaci opet pozor na toolbar a dalsi nesmysly.
Po nainstalovani program spustte a kliknete na Analyzovat, po analyze kliknete na Defragmentovat a programek odvede svou praci.




Pak napiste, jak to s pc vypada.

[predatorx21]

Vše sem udělal,pc se mi zdá být o něco rychlejší než předtím. velikost plochy 5,37 mb

[Márty84]

A co ten chrome? Nastala nejaka zmena?

[predatorx21]

Internetové stránky již neproblíkavají ani jinak "neblbnou." ale videa na youtube se začali kousat.