Preventivní kontrola

[predatorx21]

Dobrý den,prosím o preventivní kontrolu,přeji hezký den

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 26-02-2017
Ran by Dominik (administrator) on DOMINIK-PC (27-02-2017 17:11:55)
Running from C:\Users\Dominik\Desktop
Loaded Profiles: Dominik (Available Profiles: Dominik)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Bitdefender) C:\Program Files\Bitdefender\Antivirus Free Edition\gzserv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Bitdefender) C:\Program Files\Bitdefender\Antivirus Free Edition\gziface.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.32.7\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.32.7\GoogleCrashHandler64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Power Software Ltd) C:\Program Files (x86)\PowerISO\PWRISOVM.EXE
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\WINWORD.EXE
(Microsoft Corporation) C:\Windows\splwow64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Farbar) C:\Users\Dominik\Desktop\FRST64(1).exe

==================== Registry (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [6548112 2012-06-12] (Realtek Semiconductor)
HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [PWRISOVM.EXE] => C:\Program Files (x86)\PowerISO\PWRISOVM.EXE [406664 2016-05-25] (Power Software Ltd)
HKU\S-1-5-21-707951698-1732677806-592134114-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8455960 2015-08-20] (Piriform Ltd)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{0AA83DC0-B66F-43FD-9DAD-56EA86565672}: [DhcpNameServer] 192.168.0.1

Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-707951698-1732677806-592134114-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-707951698-1732677806-592134114-1000\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-707951698-1732677806-592134114-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
SearchScopes: HKU\S-1-5-21-707951698-1732677806-592134114-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\ssv.dll [2016-03-12] (Oracle Corporation)
BHO-x32: Pomocná služba pro přihlášení k účtu Microsoft -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\jp2ssv.dll [2016-03-12] (Oracle Corporation)

FireFox:
========
FF DefaultProfile: k63582xc.default
FF ProfilePath: C:\Users\Dominik\AppData\Roaming\Mozilla\Firefox\Profiles\k63582xc.default [2017-02-27]
FF NewTab: Mozilla\Firefox\Profiles\k63582xc.default -> about:newtab
FF Homepage: Mozilla\Firefox\Profiles\k63582xc.default -> about:home
FF Extension: (SHA-1 deprecation staged rollout) - C:\Users\Dominik\AppData\Roaming\Mozilla\Firefox\Profiles\k63582xc.default\features\{bdb8cb51-16bf-4a7b-ad2b-7c82e32fb5de}\disableSHA1rollout@mozilla.org.xpi [2017-02-25]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_21_0_0_242.dll [2016-05-12] ()
FF Plugin: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelogx64.dll [2015-04-30] (EA Digital Illusions CE AB)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_242.dll [2016-05-12] ()
FF Plugin-x32: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelog.dll [2015-04-30] (EA Digital Illusions CE AB)
FF Plugin-x32: @java.com/DTPlugin,version=11.73.2 -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\dtplugin\npDeployJava1.dll [2016-03-12] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.73.2 -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\plugin2\npjp2.dll [2016-03-12] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-02-09] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-02-09] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2017-02-21] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2017-02-21] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-12-23] (Adobe Systems Inc.)

Chrome:
=======
CHR Profile: C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default [2017-02-27]
CHR Extension: (Prezentace Google) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-07-16]
CHR Extension: (Dokumenty Google) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-07-16]
CHR Extension: (Disk Google) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-07-16]
CHR Extension: (YouTube) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-07-16]
CHR Extension: (Tabulky Google) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-07-16]
CHR Extension: (Dokumenty Google offline) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-07-16]
CHR Extension: (AdBlock) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-02-25]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-01-19]
CHR Extension: (Gmail) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-07-16]
CHR Extension: (Chrome Media Router) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-02-03]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [409128 2017-02-24] (EasyAntiCheat Ltd)
R2 gzserv; C:\Program Files\Bitdefender\Antivirus Free Edition\gzserv.exe [79552 2016-03-02] (Bitdefender)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [462784 2017-01-20] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [462784 2017-01-20] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [462784 2017-02-10] (NVIDIA Corporation)
R2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [425408 2017-01-20] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2121736 2017-02-01] (Electronic Arts)
S2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [2183696 2017-02-01] (Electronic Arts)
R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76152 2016-04-02] ()
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76152 2016-10-14] ()
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5702416 2015-09-11] (TeamViewer GmbH)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
S2 NVIDIA Wireless Controller Service; "C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe" [X]

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
R0 avc3; C:\Windows\System32\DRIVERS\avc3.sys [718840 2016-08-12] (BitDefender)
U5 avchv; C:\Windows\System32\Drivers\avchv.sys [261056 2012-11-02] (BitDefender)
R3 avckf; C:\Windows\System32\DRIVERS\avckf.sys [593144 2013-04-17] (BitDefender)
R1 bdfwfpf; C:\Program Files\Bitdefender\Antivirus Free Edition\bdfwfpf.sys [121928 2013-07-02] (Bitdefender SRL)
R1 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [148696 2013-04-22] (BitDefender LLC)
S3 MarvinBus; C:\Windows\System32\DRIVERS\MarvinBus64.sys [261120 2005-09-23] (Pinnacle Systems GmbH) [File not signed]
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [27584 2017-01-20] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [46016 2017-01-20] (NVIDIA Corporation)
R3 nvvhci; C:\Windows\System32\DRIVERS\nvvhci.sys [57792 2017-01-20] (NVIDIA Corporation)
R0 trufos; C:\Windows\System32\DRIVERS\trufos.sys [382536 2013-05-28] (BitDefender S.R.L.)
S3 MSICDSetup; \??\D:\CDriver64.sys [X]
S3 NTIOLib_1_0_C; \??\D:\NTIOLib_X64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-02-27 17:11 - 2017-02-27 17:12 - 00014598 _____ C:\Users\Dominik\Desktop\FRST.txt
2017-02-27 17:11 - 2017-02-27 17:11 - 02423296 _____ (Farbar) C:\Users\Dominik\Desktop\FRST64(1).exe
2017-02-24 17:19 - 2017-02-24 17:19 - 00000000 ____D C:\Users\Dominik\AppData\Roaming\EasyAntiCheat
2017-02-24 13:14 - 2017-02-24 13:14 - 00000234 _____ C:\Users\Dominik\Desktop\Ghost Recon Wildlands Open Beta.url
2017-02-24 13:14 - 2017-02-24 13:14 - 00000234 _____ C:\Users\Dominik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ghost Recon Wildlands Open Beta.url
2017-02-23 00:24 - 2017-02-23 00:24 - 00015376 _____ C:\Users\Dominik\Downloads\[CzT]C_C_Red_Alert_2_Yuri_s_Revenge.torrent
2017-02-22 14:05 - 2017-02-22 19:22 - 3704764416 _____ C:\Users\Dominik\Downloads\sr-boe19141918f.iso
2017-02-21 21:18 - 2017-02-21 21:18 - 00000000 ____D C:\Users\Dominik\AppData\Roaming\NVIDIA
2017-02-21 15:32 - 2017-02-21 15:32 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2017-02-21 15:32 - 2017-02-09 23:39 - 00134592 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2017-02-21 15:32 - 2017-01-26 01:13 - 00103936 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2017-02-21 15:32 - 2017-01-26 01:12 - 00326656 _____ C:\Windows\SysWOW64\vulkan-1.dll
2017-02-21 15:32 - 2017-01-26 01:09 - 00322560 _____ C:\Windows\system32\vulkan-1.dll
2017-02-21 15:32 - 2017-01-26 01:09 - 00118272 _____ C:\Windows\system32\vulkaninfo.exe
2017-02-21 15:31 - 2017-02-10 00:13 - 00001951 _____ C:\Windows\NvContainerRecovery.bat
2017-02-21 15:31 - 2017-02-09 23:57 - 07791217 _____ C:\Windows\system32\nvcoproc.bin
2017-02-21 15:31 - 2017-02-09 23:57 - 06403640 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2017-02-21 15:31 - 2017-02-09 23:57 - 02477504 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2017-02-21 15:31 - 2017-02-09 23:57 - 01764408 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2017-02-21 15:31 - 2017-02-09 23:57 - 00548288 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
2017-02-21 15:31 - 2017-02-09 23:57 - 00393784 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2017-02-21 15:31 - 2017-02-09 23:57 - 00083512 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
2017-02-21 15:31 - 2017-02-09 23:57 - 00071224 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2017-02-21 15:30 - 2017-02-10 01:52 - 40192056 _____ C:\Windows\system32\nvcompiler.dll
2017-02-21 15:30 - 2017-02-10 01:52 - 35272760 _____ C:\Windows\SysWOW64\nvcompiler.dll
2017-02-21 15:30 - 2017-02-10 01:52 - 34937280 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2017-02-21 15:30 - 2017-02-10 01:52 - 28212280 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2017-02-21 15:30 - 2017-02-10 01:52 - 19110088 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2017-02-21 15:30 - 2017-02-10 01:52 - 19006832 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2017-02-21 15:30 - 2017-02-10 01:52 - 16510160 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2017-02-21 15:30 - 2017-02-10 01:52 - 16398896 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2017-02-21 15:30 - 2017-02-10 01:52 - 14674896 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2017-02-21 15:30 - 2017-02-10 01:52 - 14373824 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2017-02-21 15:30 - 2017-02-10 01:52 - 13377072 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2017-02-21 15:30 - 2017-02-10 01:52 - 11122912 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2017-02-21 15:30 - 2017-02-10 01:52 - 11019704 _____ (NVIDIA Corporation) C:\Windows\system32\nvptxJitCompiler.dll
2017-02-21 15:30 - 2017-02-10 01:52 - 09305984 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2017-02-21 15:30 - 2017-02-10 01:52 - 08990072 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvptxJitCompiler.dll
2017-02-21 15:30 - 2017-02-10 01:52 - 04064088 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2017-02-21 15:30 - 2017-02-10 01:52 - 03627064 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2017-02-21 15:30 - 2017-02-10 01:52 - 03583560 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2017-02-21 15:30 - 2017-02-10 01:52 - 03187256 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2017-02-21 15:30 - 2017-02-10 01:52 - 01983424 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6437866.dll
2017-02-21 15:30 - 2017-02-10 01:52 - 01600056 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll
2017-02-21 15:30 - 2017-02-10 01:52 - 01589696 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6437866.dll
2017-02-21 15:30 - 2017-02-10 01:52 - 01051584 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2017-02-21 15:30 - 2017-02-10 01:52 - 00989120 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2017-02-21 15:30 - 2017-02-10 01:52 - 00961080 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2017-02-21 15:30 - 2017-02-10 01:52 - 00912440 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2017-02-21 15:30 - 2017-02-10 01:52 - 00687224 _____ (NVIDIA Corporation) C:\Windows\system32\nvfatbinaryLoader.dll
2017-02-21 15:30 - 2017-02-10 01:52 - 00611384 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2017-02-21 15:30 - 2017-02-10 01:52 - 00576192 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvfatbinaryLoader.dll
2017-02-21 15:30 - 2017-02-10 01:52 - 00504104 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2017-02-21 15:30 - 2017-02-10 01:52 - 00500792 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2017-02-21 15:30 - 2017-02-10 01:52 - 00492744 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2017-02-21 15:30 - 2017-02-10 01:52 - 00425288 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2017-02-21 15:30 - 2017-02-10 01:52 - 00408272 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2017-02-21 15:30 - 2017-02-10 01:52 - 00217528 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2017-02-21 15:30 - 2017-02-10 01:52 - 00170360 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2017-02-21 15:30 - 2017-02-10 01:52 - 00153184 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2017-02-21 15:30 - 2017-02-10 01:52 - 00148016 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2017-02-21 15:30 - 2017-02-10 01:52 - 00131720 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2017-02-21 15:30 - 2017-02-10 01:52 - 00047664 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2017-02-21 15:30 - 2017-02-10 01:52 - 00042606 _____ C:\Windows\system32\nvinfo.pb
2017-02-21 15:30 - 2017-02-10 01:52 - 00000669 _____ C:\Windows\SysWOW64\nv-vk32.json
2017-02-21 15:30 - 2017-02-10 01:52 - 00000669 _____ C:\Windows\system32\nv-vk64.json
2017-02-21 15:28 - 2017-02-21 15:28 - 00000000 ____D C:\NVIDIA
2017-02-21 15:24 - 2017-02-21 15:28 - 392628288 _____ (NVIDIA Corporation) C:\Users\Dominik\Downloads\378.66-desktop-win8-win7-64bit-international-whql.exe
2017-02-21 15:21 - 2017-02-10 01:52 - 00514616 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2017-02-21 15:21 - 2017-02-10 01:52 - 00418752 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2017-02-21 14:24 - 2017-02-21 14:24 - 00002267 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-02-21 14:24 - 2017-02-21 14:24 - 00002255 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-02-21 14:23 - 2017-02-21 14:23 - 01129376 _____ (Google Inc.) C:\Users\Dominik\Downloads\ChromeSetup.exe
2017-02-21 14:23 - 2017-02-21 14:23 - 00003384 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA1d28c45b2e01a7c
2017-02-21 14:23 - 2017-02-21 14:23 - 00003256 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore1d28c45b2916602
2017-02-21 14:19 - 2017-02-21 14:19 - 00000000 ____D C:\Users\Dominik\ansel
2017-02-21 13:59 - 2017-02-21 13:59 - 00004146 _____ C:\Windows\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-02-21 13:59 - 2017-01-20 14:36 - 00001951 _____ C:\Windows\NvTelemetryContainerRecovery.bat
2017-02-21 13:58 - 2017-01-20 19:39 - 00156608 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2017-02-21 13:58 - 2017-01-20 19:39 - 00124352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2017-02-21 13:58 - 2017-01-20 19:39 - 00057792 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvhci.sys
2017-02-21 13:58 - 2017-01-20 19:39 - 00046016 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2017-02-21 13:02 - 2017-02-21 13:02 - 00000942 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Assassins Creed IV Black Flag.lnk
2017-02-21 13:02 - 2017-02-21 13:02 - 00000930 _____ C:\Users\Public\Desktop\Assassins Creed IV Black Flag.lnk
2017-02-21 12:50 - 2017-02-21 13:35 - 00000000 ____D C:\Program Files (x86)\Assassins Creed IV Black Flag
2017-02-20 17:55 - 2017-02-20 17:55 - 00059677 _____ C:\Users\Dominik\Downloads\[CzT]Assassin_s_Creed_IV_Black_Flag_2013_CZ_.torrent
2017-02-19 23:12 - 2017-02-19 23:12 - 00018143 _____ C:\Users\Dominik\Downloads\[CzT]Battle_of_Empires_1914_1918_2015_.torrent
2017-02-15 01:37 - 2017-02-15 01:39 - 00002583 _____ C:\Users\Dominik\Desktop\DarthMod Empire.lnk
2017-02-15 01:37 - 2017-02-15 01:39 - 00000000 ____D C:\Users\Dominik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DarthMod Empire
2017-02-15 01:37 - 2017-02-15 01:37 - 00002635 _____ C:\Users\Dominik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DarthMod Empire.lnk
2017-02-14 23:28 - 2017-02-14 23:28 - 00000221 _____ C:\Users\Dominik\Desktop\Empire Total War.url
2017-02-14 20:09 - 2012-09-16 21:58 - 1016997827 _____ C:\Users\Dominik\Downloads\DarthMod_Empire_v8.0_Platinum.2
2017-02-14 17:28 - 2017-02-14 17:47 - 705861082 _____ C:\Users\Dominik\Downloads\CB2.2_Release_Pack.7z
2017-02-14 17:14 - 2017-02-14 17:14 - 21211340 _____ (DarthMod Productions) C:\Users\Dominik\Downloads\DarthMod_Empire_v8.0.1_Patch_Platinum_Final.exe
2017-02-14 17:13 - 2017-02-14 17:34 - 1017288122 _____ C:\Users\Dominik\Downloads\DarthMod_Empire_v8.0_Platinum.zip
2017-02-14 15:08 - 2017-02-14 17:13 - 2000000000 _____ (DarthMod Productions) C:\Users\Dominik\Downloads\DarthMod_Empire_v8.0_Platinum.exe
2017-02-13 18:22 - 2017-02-13 18:24 - 108692040 _____ C:\Users\Dominik\Downloads\ace3_3.8.0.zip
2017-02-13 18:06 - 2017-02-13 18:06 - 00412010 _____ C:\Users\Dominik\Downloads\Community-Base-addons-A3-version-3.1.2.161105.zip
2017-02-13 16:28 - 2017-02-13 16:33 - 00000000 ____D C:\Users\Dominik\Documents\Arma 3
2017-02-13 14:33 - 2017-02-13 14:33 - 00001009 _____ C:\Users\Dominik\Desktop\Arma 3 Apex.lnk
2017-02-13 14:33 - 2017-02-13 14:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Arma 3 Apex
2017-02-13 14:23 - 2017-02-13 18:24 - 00000000 ____D C:\Program Files (x86)\Arma 3 Apex
2017-02-13 14:21 - 2017-02-13 19:38 - 00000000 ____D C:\arma 3 savy
2017-02-12 00:57 - 2017-02-12 01:41 - 3882138960 _____ C:\Users\Dominik\Downloads\Se7en - Sedm (1995) 1080p Bluray.mkv
2017-02-12 00:57 - 2017-02-12 00:57 - 00059961 _____ C:\Users\Dominik\Downloads\[CzT]Sedm_Se7en_1995_CZ_EN_1080pHD_.torrent
2017-02-09 22:33 - 2017-02-09 22:41 - 205529575 _____ C:\Users\Dominik\Downloads\NIArms-AK-Rifles-version-2.1.7z
2017-02-09 22:33 - 2017-02-09 22:34 - 14991769 _____ C:\Users\Dominik\Downloads\NIArms-Core-version-1.1.7z
2017-02-09 00:23 - 2017-02-09 00:23 - 04015056 _____ C:\Users\Dominik\Downloads\adwcleaner_6.043 (1).exe
2017-02-09 00:22 - 2017-02-27 16:56 - 00000000 ____D C:\AdwCleaner
2017-02-07 16:05 - 2017-02-07 16:34 - 743393271 _____ C:\Users\Dominik\Downloads\Iraqi-Syrian-Conflict-version-9.0.7z
2017-02-07 10:44 - 2017-02-07 10:45 - 108696286 _____ C:\Users\Dominik\Downloads\ace3_3.8.3.zip
2017-02-07 10:44 - 2017-02-07 10:44 - 00412010 _____ C:\Users\Dominik\Downloads\CBA_A3_v3.1.2.161105.zip
2017-02-06 15:17 - 2017-02-06 19:14 - 2385903616 _____ C:\Users\Dominik\Downloads\codex-arma.3.apex.iso
2017-02-06 15:16 - 2017-02-06 15:16 - 00114246 _____ C:\Users\Dominik\Downloads\[CzT]Arma_3_Apex_2016_CZ_.torrent
2017-02-02 20:16 - 2017-02-02 20:16 - 00024623 _____ C:\Users\Dominik\Downloads\Vikings.S04E20.The.Reckoning.1080p.WEB-DL.DD5.1.H.264-DRACULA.srt
2017-02-02 14:00 - 2017-02-02 14:00 - 02420736 _____ (Farbar) C:\Users\Dominik\Downloads\FRST64.exe
2017-02-02 14:00 - 2017-02-02 14:00 - 00044985 _____ C:\Users\Dominik\Downloads\Addition.txt
2017-02-02 14:00 - 2017-02-02 14:00 - 00024807 _____ C:\Users\Dominik\Downloads\FRST.txt
2017-02-02 13:59 - 2017-02-27 17:11 - 00000000 ____D C:\FRST
2017-02-02 13:51 - 2017-02-02 13:51 - 00165888 _____ C:\Users\Dominik\Downloads\T-Cleaner.exe
2017-02-01 23:26 - 2017-02-01 23:26 - 00001203 _____ C:\Users\Public\Desktop\Resident Evil 7 Biohazard.lnk
2017-02-01 23:26 - 2017-02-01 23:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Resident Evil 7 Biohazard
2017-02-01 23:15 - 2017-02-01 23:31 - 00000000 ____D C:\Program Files (x86)\Resident Evil 7 Biohazard
2017-01-31 20:30 - 2017-01-31 20:30 - 00000000 ____D C:\FreeRapid-0.9u4
2017-01-31 20:25 - 2017-01-31 20:25 - 17403694 _____ C:\Users\Dominik\Downloads\FreeRapid-0.9u4.zip
2017-01-30 22:18 - 2017-01-30 22:18 - 00000000 ____D C:\Users\Dominik\AppData\Roaming\VitySoft
2017-01-30 22:18 - 2017-01-30 22:18 - 00000000 ____D C:\Users\Dominik\.objectdb
2017-01-30 19:25 - 2017-01-30 19:25 - 04015056 _____ C:\Users\Dominik\Downloads\adwcleaner_6.043.exe
2017-01-30 12:16 - 2017-01-30 12:16 - 00117966 _____ C:\Users\Dominik\Downloads\[SkT]Resident_Evil_7__Biohazard_(2017).torrent

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-02-27 17:10 - 2016-11-19 13:32 - 00000000 ____D C:\Users\Dominik\AppData\LocalLow\Mozilla
2017-02-27 16:59 - 2016-11-07 08:39 - 00000000 ____D C:\Users\Dominik\Documents\FRST-OlderVersion
2017-02-27 16:47 - 2009-07-14 05:45 - 00021872 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-02-27 16:47 - 2009-07-14 05:45 - 00021872 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-02-27 12:25 - 2015-10-29 18:45 - 00000000 ____D C:\ProgramData\NVIDIA
2017-02-27 07:24 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-02-26 16:29 - 2017-01-20 01:09 - 00000806 _____ C:\Users\Dominik\Desktop\Nový textový dokument.txt
2017-02-24 22:07 - 2015-10-28 13:25 - 00000000 ____D C:\Users\Dominik\AppData\Local\Ubisoft Game Launcher
2017-02-24 17:19 - 2015-09-20 10:51 - 00000000 ____D C:\Users\Dominik\Documents\My Games
2017-02-24 13:43 - 2016-11-13 17:07 - 00409128 _____ (EasyAntiCheat Ltd) C:\Windows\SysWOW64\EasyAntiCheat.exe
2017-02-23 22:37 - 2015-09-18 17:24 - 00000000 ____D C:\Program Files (x86)\Steam
2017-02-23 19:30 - 2016-10-14 16:34 - 00281032 _____ C:\Windows\SysWOW64\PnkBstrB.exe
2017-02-23 19:30 - 2015-10-12 18:19 - 00281032 _____ C:\Windows\SysWOW64\PnkBstrB.xtr
2017-02-23 02:47 - 2016-10-16 15:02 - 00000000 ____D C:\Users\Dominik\AppData\Roaming\uTorrent
2017-02-22 16:11 - 2015-09-27 12:49 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-02-21 23:09 - 2015-09-19 19:01 - 00000000 ____D C:\Users\Dominik\AppData\Roaming\vlc
2017-02-21 22:21 - 2015-09-25 16:42 - 00281032 _____ C:\Windows\SysWOW64\PnkBstrB.ex0
2017-02-21 15:40 - 2015-09-15 15:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2017-02-21 15:32 - 2015-09-15 15:33 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2017-02-21 15:32 - 2015-09-15 15:32 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2017-02-21 15:32 - 2015-09-15 15:32 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2017-02-21 15:32 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf
2017-02-21 15:31 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\Help
2017-02-21 14:24 - 2015-09-15 16:05 - 00000000 ____D C:\Program Files (x86)\Google
2017-02-21 14:19 - 2015-09-15 15:22 - 00000000 ____D C:\Users\Dominik
2017-02-21 14:02 - 2011-04-12 09:34 - 00668866 _____ C:\Windows\system32\perfh005.dat
2017-02-21 14:02 - 2011-04-12 09:34 - 00141526 _____ C:\Windows\system32\perfc005.dat
2017-02-21 14:02 - 2009-07-14 06:13 - 01584554 _____ C:\Windows\system32\PerfStringBackup.INI
2017-02-21 13:59 - 2016-11-07 18:49 - 00003742 _____ C:\Windows\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-02-21 13:59 - 2016-11-07 18:49 - 00001412 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2017-02-21 13:59 - 2016-11-07 18:48 - 00003738 _____ C:\Windows\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-02-21 13:59 - 2016-11-07 18:48 - 00003738 _____ C:\Windows\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-02-21 13:59 - 2016-11-07 18:48 - 00003730 _____ C:\Windows\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-02-21 13:59 - 2016-11-07 18:48 - 00003554 _____ C:\Windows\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-02-21 13:59 - 2016-11-07 18:48 - 00003494 _____ C:\Windows\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-02-21 13:59 - 2015-09-15 16:58 - 00000000 ____D C:\Users\Dominik\AppData\Local\NVIDIA Corporation
2017-02-21 13:59 - 2015-09-15 16:58 - 00000000 ____D C:\Users\Dominik\AppData\Local\NVIDIA
2017-02-21 13:38 - 2016-09-10 16:21 - 00000000 ____D C:\Users\Dominik\Documents\Assassin's Creed IV Black Flag
2017-02-21 13:38 - 2015-11-23 17:14 - 00000000 ____D C:\ProgramData\Orbit
2017-02-20 23:07 - 2016-04-25 14:43 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2017-02-18 18:09 - 2016-03-12 16:03 - 00000000 ____D C:\Users\Dominik\AppData\Local\Arma 3
2017-02-15 01:08 - 2009-07-14 06:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2017-02-14 14:56 - 2016-09-05 16:03 - 00000000 ____D C:\Program Files (x86)\World of Warcraft
2017-02-14 14:53 - 2016-07-11 12:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ubisoft
2017-02-14 14:53 - 2015-10-28 13:13 - 00000000 ____D C:\Program Files (x86)\Ubisoft
2017-02-14 14:53 - 2015-09-15 15:59 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2017-02-14 14:52 - 2015-09-21 23:25 - 00000000 ____D C:\Nová složka (2)
2017-02-13 18:55 - 2016-08-04 19:40 - 00000000 ____D C:\Users\Dominik\AppData\Local\CrashDumps
2017-02-07 15:50 - 2017-01-13 23:29 - 00000000 ____D C:\Blair Witch
2017-02-06 22:19 - 2016-08-21 21:03 - 00000000 ____D C:\Program Files (x86)\Rise of the Tomb Raider
2017-02-02 01:22 - 2015-09-25 14:37 - 00000000 ____D C:\ProgramData\Origin
2017-02-02 01:21 - 2015-09-25 14:39 - 00000000 ____D C:\Users\Dominik\AppData\Roaming\Origin
2017-02-01 23:36 - 2015-11-13 14:41 - 00000000 ____D C:\Fraps
2017-02-01 19:07 - 2015-09-25 14:37 - 00000000 ____D C:\Program Files (x86)\Origin
2017-02-01 12:12 - 2009-07-14 03:34 - 00000215 _____ C:\Windows\system.ini
2017-01-29 10:01 - 2016-11-18 11:15 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2017-01-29 10:01 - 2015-09-27 21:16 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service

==================== Files in the root of some directories =======

2016-09-04 21:01 - 2016-09-04 21:07 - 0000000 _____ () C:\Program Files (x86)\ToDownloadBase.db
2016-02-23 17:32 - 2016-02-23 17:32 - 0000913 _____ () C:\Users\Dominik\AppData\Local\recently-used.xbel
2015-10-21 19:28 - 2016-09-28 09:12 - 0007602 _____ () C:\Users\Dominik\AppData\Local\Resmon.ResmonCfg
2016-10-14 16:37 - 2016-10-14 16:37 - 0000000 ___SH () C:\ProgramData\.rdata

Some files in TEMP:
====================
2016-11-07 22:05 - 2016-10-25 21:00 - 0747648 _____ (NVIDIA Corporation) C:\Users\Dominik\AppData\Local\Temp\nvSCPAPI.dll
2016-11-07 22:05 - 2017-02-09 23:39 - 0868152 _____ (NVIDIA Corporation) C:\Users\Dominik\AppData\Local\Temp\nvSCPAPI64.dll
2017-02-21 14:08 - 2012-07-25 07:14 - 0604008 _____ (NVIDIA Corporation) C:\Users\Dominik\AppData\Local\Temp\nvStInst.exe
2016-11-07 18:48 - 2016-10-25 21:18 - 1137208 _____ (NVIDIA Corporation) C:\Users\Dominik\AppData\Local\Temp\NvTelemetry.dll
2016-11-07 18:48 - 2016-10-25 21:18 - 0218680 _____ (NVIDIA Corporation) C:\Users\Dominik\AppData\Local\Temp\NvTelemetryAPI32.dll
2016-11-07 18:48 - 2016-10-25 21:18 - 0270392 _____ (NVIDIA Corporation) C:\Users\Dominik\AppData\Local\Temp\NvTelemetryAPI64.dll

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2017-02-22 10:08

==================== End of FRST.txt ============================

[sorcer]

Dobrý den,

1) Zde je ke stahnutí AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/
2) Utilitu uložte na plochu
3) Mate-li spuštěné, ukončete všechny otevřené programy
4) Následně klikněte nejprve na Skenování a poté Čistění
5) Po dokončení skenováni se objeví log, který sem vložte

[predatorx21]

# AdwCleaner v6.043 - Log vytvořen 27/02/2017 v 22:03:36
# Aktualizováno dne 27/01/2017 z Malwarebytes
# Databáze : 2017-02-27.1 [Místní]
# Operační systém : Windows 7 Home Premium Service Pack 1 (X64)
# Uživatelské jméno : Dominik - DOMINIK-PC
# Spuštěno z : C:\Users\Dominik\Downloads\adwcleaner_6.043 (1).exe
# Mod: Čištění
# Podpora : https://www.malwarebytes.com/support



***** [ Služby ] *****



***** [ Složky ] *****



***** [ Soubory ] *****



***** [ DLL ] *****



***** [ WMI ] *****



***** [ Zástupci ] *****



***** [ Naplánované úlohy ] *****



***** [ Registry ] *****



***** [ Prohlížeče ] *****



*************************

:: "Tracing" klíče smazány
:: Winsock nastavení vyčištěno

*************************

C:\AdwCleaner\AdwCleaner[C0].txt - [827 Bajty] - [27/02/2017 22:03:36]
C:\AdwCleaner\AdwCleaner[S0].txt - [1396 Bajty] - [09/02/2017 00:28:08]
C:\AdwCleaner\AdwCleaner[S1].txt - [1469 Bajty] - [09/02/2017 19:39:16]
C:\AdwCleaner\AdwCleaner[S2].txt - [1544 Bajty] - [10/02/2017 11:42:55]
C:\AdwCleaner\AdwCleaner[S3].txt - [1617 Bajty] - [12/02/2017 11:15:36]
C:\AdwCleaner\AdwCleaner[S4].txt - [1688 Bajty] - [20/02/2017 15:30:35]
C:\AdwCleaner\AdwCleaner[S5].txt - [1761 Bajty] - [26/02/2017 17:18:48]
C:\AdwCleaner\AdwCleaner[S6].txt - [1834 Bajty] - [27/02/2017 16:56:37]
C:\AdwCleaner\AdwCleaner[S7].txt - [1909 Bajty] - [27/02/2017 22:03:10]

########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [1483 Bajty] ##########

[sorcer]

Proveďte prosím sken FRST. http://forum.viry.cz/viewtopic.php?f=24&t=132509

Log z FRST i Addition vložte sem, do Vašeho topicu.

Při varování u stahování FRSTLauncheru, vyberte v pravém dolním rohu Ignorovat

Lépe vypnouti antivir, některé detekují utilitu jako závadnou, ač není!

Nepůjde-li Vám Launcher stáhnout, vytvořte logy, použitím samotného FRST (bez Launcheru)

[predatorx21]

FRST
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 26-02-2017
Ran by Dominik (administrator) on DOMINIK-PC (28-02-2017 19:21:04)
Running from C:\Users\Dominik\Desktop
Loaded Profiles: Dominik (Available Profiles: Dominik)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Bitdefender) C:\Program Files\Bitdefender\Antivirus Free Edition\gzserv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe
(Power Software Ltd) C:\Program Files (x86)\PowerISO\PWRISOVM.EXE
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.32.7\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.32.7\GoogleCrashHandler64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Bitdefender) C:\Program Files\Bitdefender\Antivirus Free Edition\gziface.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Farbar) C:\Users\Dominik\Desktop\FRST64(1).exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [6548112 2012-06-12] (Realtek Semiconductor)
HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [PWRISOVM.EXE] => C:\Program Files (x86)\PowerISO\PWRISOVM.EXE [406664 2016-05-25] (Power Software Ltd)
HKU\S-1-5-21-707951698-1732677806-592134114-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8455960 2015-08-20] (Piriform Ltd)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{0AA83DC0-B66F-43FD-9DAD-56EA86565672}: [DhcpNameServer] 192.168.0.1

Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-707951698-1732677806-592134114-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-707951698-1732677806-592134114-1000\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-707951698-1732677806-592134114-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
SearchScopes: HKU\S-1-5-21-707951698-1732677806-592134114-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\ssv.dll [2016-03-12] (Oracle Corporation)
BHO-x32: Pomocná služba pro přihlášení k účtu Microsoft -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\jp2ssv.dll [2016-03-12] (Oracle Corporation)

FireFox:
========
FF DefaultProfile: k63582xc.default
FF ProfilePath: C:\Users\Dominik\AppData\Roaming\Mozilla\Firefox\Profiles\k63582xc.default [2017-02-28]
FF NewTab: Mozilla\Firefox\Profiles\k63582xc.default -> about:newtab
FF Homepage: Mozilla\Firefox\Profiles\k63582xc.default -> about:home
FF Extension: (SHA-1 deprecation staged rollout) - C:\Users\Dominik\AppData\Roaming\Mozilla\Firefox\Profiles\k63582xc.default\features\{bdb8cb51-16bf-4a7b-ad2b-7c82e32fb5de}\disableSHA1rollout@mozilla.org.xpi [2017-02-25]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_21_0_0_242.dll [2016-05-12] ()
FF Plugin: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelogx64.dll [2015-04-30] (EA Digital Illusions CE AB)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_242.dll [2016-05-12] ()
FF Plugin-x32: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelog.dll [2015-04-30] (EA Digital Illusions CE AB)
FF Plugin-x32: @java.com/DTPlugin,version=11.73.2 -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\dtplugin\npDeployJava1.dll [2016-03-12] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.73.2 -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\plugin2\npjp2.dll [2016-03-12] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-02-09] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-02-09] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2017-02-21] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2017-02-21] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-12-23] (Adobe Systems Inc.)

Chrome:
=======
CHR Profile: C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default [2017-02-28]
CHR Extension: (Prezentace Google) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-07-16]
CHR Extension: (Dokumenty Google) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-07-16]
CHR Extension: (Disk Google) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-07-16]
CHR Extension: (YouTube) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-07-16]
CHR Extension: (Tabulky Google) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-07-16]
CHR Extension: (Dokumenty Google offline) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-07-16]
CHR Extension: (AdBlock) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-02-25]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-01-19]
CHR Extension: (Gmail) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-07-16]
CHR Extension: (Chrome Media Router) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-02-03]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [409128 2017-02-24] (EasyAntiCheat Ltd)
R2 gzserv; C:\Program Files\Bitdefender\Antivirus Free Edition\gzserv.exe [79552 2016-03-02] (Bitdefender)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [462784 2017-01-20] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [462784 2017-01-20] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [462784 2017-02-10] (NVIDIA Corporation)
R2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [425408 2017-01-20] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2121736 2017-02-01] (Electronic Arts)
S2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [2183696 2017-02-01] (Electronic Arts)
R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76152 2016-04-02] ()
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76152 2016-10-14] ()
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5702416 2015-09-11] (TeamViewer GmbH)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
S2 NVIDIA Wireless Controller Service; "C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe" [X]

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
R0 avc3; C:\Windows\System32\DRIVERS\avc3.sys [718840 2016-08-12] (BitDefender)
U5 avchv; C:\Windows\System32\Drivers\avchv.sys [261056 2012-11-02] (BitDefender)
R3 avckf; C:\Windows\System32\DRIVERS\avckf.sys [593144 2013-04-17] (BitDefender)
R1 bdfwfpf; C:\Program Files\Bitdefender\Antivirus Free Edition\bdfwfpf.sys [121928 2013-07-02] (Bitdefender SRL)
R1 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [148696 2013-04-22] (BitDefender LLC)
S3 MarvinBus; C:\Windows\System32\DRIVERS\MarvinBus64.sys [261120 2005-09-23] (Pinnacle Systems GmbH) [File not signed]
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [27584 2017-01-20] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [46016 2017-01-20] (NVIDIA Corporation)
R3 nvvhci; C:\Windows\System32\DRIVERS\nvvhci.sys [57792 2017-01-20] (NVIDIA Corporation)
R0 trufos; C:\Windows\System32\DRIVERS\trufos.sys [382536 2013-05-28] (BitDefender S.R.L.)
S3 MSICDSetup; \??\D:\CDriver64.sys [X]
S3 NTIOLib_1_0_C; \??\D:\NTIOLib_X64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-02-27 17:12 - 2017-02-27 17:12 - 00044562 _____ C:\Users\Dominik\Desktop\Addition.txt
2017-02-27 17:11 - 2017-02-28 19:21 - 00014534 _____ C:\Users\Dominik\Desktop\FRST.txt
2017-02-27 17:11 - 2017-02-27 17:11 - 02423296 _____ (Farbar) C:\Users\Dominik\Desktop\FRST64(1).exe
2017-02-24 17:19 - 2017-02-24 17:19 - 00000000 ____D C:\Users\Dominik\AppData\Roaming\EasyAntiCheat
2017-02-24 13:14 - 2017-02-24 13:14 - 00000234 _____ C:\Users\Dominik\Desktop\Ghost Recon Wildlands Open Beta.url
2017-02-24 13:14 - 2017-02-24 13:14 - 00000234 _____ C:\Users\Dominik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ghost Recon Wildlands Open Beta.url
2017-02-23 00:24 - 2017-02-23 00:24 - 00015376 _____ C:\Users\Dominik\Downloads\[CzT]C_C_Red_Alert_2_Yuri_s_Revenge.torrent
2017-02-22 14:05 - 2017-02-22 19:22 - 3704764416 _____ C:\Users\Dominik\Downloads\sr-boe19141918f.iso
2017-02-21 21:18 - 2017-02-21 21:18 - 00000000 ____D C:\Users\Dominik\AppData\Roaming\NVIDIA
2017-02-21 15:32 - 2017-02-21 15:32 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2017-02-21 15:32 - 2017-02-09 23:39 - 00134592 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2017-02-21 15:32 - 2017-01-26 01:13 - 00103936 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2017-02-21 15:32 - 2017-01-26 01:12 - 00326656 _____ C:\Windows\SysWOW64\vulkan-1.dll
2017-02-21 15:32 - 2017-01-26 01:09 - 00322560 _____ C:\Windows\system32\vulkan-1.dll
2017-02-21 15:32 - 2017-01-26 01:09 - 00118272 _____ C:\Windows\system32\vulkaninfo.exe
2017-02-21 15:31 - 2017-02-10 00:13 - 00001951 _____ C:\Windows\NvContainerRecovery.bat
2017-02-21 15:31 - 2017-02-09 23:57 - 07791217 _____ C:\Windows\system32\nvcoproc.bin
2017-02-21 15:31 - 2017-02-09 23:57 - 06403640 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2017-02-21 15:31 - 2017-02-09 23:57 - 02477504 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2017-02-21 15:31 - 2017-02-09 23:57 - 01764408 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2017-02-21 15:31 - 2017-02-09 23:57 - 00548288 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
2017-02-21 15:31 - 2017-02-09 23:57 - 00393784 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2017-02-21 15:31 - 2017-02-09 23:57 - 00083512 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
2017-02-21 15:31 - 2017-02-09 23:57 - 00071224 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2017-02-21 15:30 - 2017-02-10 01:52 - 40192056 _____ C:\Windows\system32\nvcompiler.dll
2017-02-21 15:30 - 2017-02-10 01:52 - 35272760 _____ C:\Windows\SysWOW64\nvcompiler.dll
2017-02-21 15:30 - 2017-02-10 01:52 - 34937280 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2017-02-21 15:30 - 2017-02-10 01:52 - 28212280 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2017-02-21 15:30 - 2017-02-10 01:52 - 19110088 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2017-02-21 15:30 - 2017-02-10 01:52 - 19006832 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2017-02-21 15:30 - 2017-02-10 01:52 - 16510160 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2017-02-21 15:30 - 2017-02-10 01:52 - 16398896 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2017-02-21 15:30 - 2017-02-10 01:52 - 14674896 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2017-02-21 15:30 - 2017-02-10 01:52 - 14373824 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2017-02-21 15:30 - 2017-02-10 01:52 - 13377072 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2017-02-21 15:30 - 2017-02-10 01:52 - 11122912 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2017-02-21 15:30 - 2017-02-10 01:52 - 11019704 _____ (NVIDIA Corporation) C:\Windows\system32\nvptxJitCompiler.dll
2017-02-21 15:30 - 2017-02-10 01:52 - 09305984 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2017-02-21 15:30 - 2017-02-10 01:52 - 08990072 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvptxJitCompiler.dll
2017-02-21 15:30 - 2017-02-10 01:52 - 04064088 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2017-02-21 15:30 - 2017-02-10 01:52 - 03627064 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2017-02-21 15:30 - 2017-02-10 01:52 - 03583560 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2017-02-21 15:30 - 2017-02-10 01:52 - 03187256 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2017-02-21 15:30 - 2017-02-10 01:52 - 01983424 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6437866.dll
2017-02-21 15:30 - 2017-02-10 01:52 - 01600056 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll
2017-02-21 15:30 - 2017-02-10 01:52 - 01589696 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6437866.dll
2017-02-21 15:30 - 2017-02-10 01:52 - 01051584 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2017-02-21 15:30 - 2017-02-10 01:52 - 00989120 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2017-02-21 15:30 - 2017-02-10 01:52 - 00961080 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2017-02-21 15:30 - 2017-02-10 01:52 - 00912440 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2017-02-21 15:30 - 2017-02-10 01:52 - 00687224 _____ (NVIDIA Corporation) C:\Windows\system32\nvfatbinaryLoader.dll
2017-02-21 15:30 - 2017-02-10 01:52 - 00611384 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2017-02-21 15:30 - 2017-02-10 01:52 - 00576192 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvfatbinaryLoader.dll
2017-02-21 15:30 - 2017-02-10 01:52 - 00504104 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2017-02-21 15:30 - 2017-02-10 01:52 - 00500792 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2017-02-21 15:30 - 2017-02-10 01:52 - 00492744 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2017-02-21 15:30 - 2017-02-10 01:52 - 00425288 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2017-02-21 15:30 - 2017-02-10 01:52 - 00408272 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2017-02-21 15:30 - 2017-02-10 01:52 - 00217528 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2017-02-21 15:30 - 2017-02-10 01:52 - 00170360 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2017-02-21 15:30 - 2017-02-10 01:52 - 00153184 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2017-02-21 15:30 - 2017-02-10 01:52 - 00148016 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2017-02-21 15:30 - 2017-02-10 01:52 - 00131720 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2017-02-21 15:30 - 2017-02-10 01:52 - 00047664 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2017-02-21 15:30 - 2017-02-10 01:52 - 00042606 _____ C:\Windows\system32\nvinfo.pb
2017-02-21 15:30 - 2017-02-10 01:52 - 00000669 _____ C:\Windows\SysWOW64\nv-vk32.json
2017-02-21 15:30 - 2017-02-10 01:52 - 00000669 _____ C:\Windows\system32\nv-vk64.json
2017-02-21 15:28 - 2017-02-21 15:28 - 00000000 ____D C:\NVIDIA
2017-02-21 15:24 - 2017-02-21 15:28 - 392628288 _____ (NVIDIA Corporation) C:\Users\Dominik\Downloads\378.66-desktop-win8-win7-64bit-international-whql.exe
2017-02-21 15:21 - 2017-02-10 01:52 - 00514616 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2017-02-21 15:21 - 2017-02-10 01:52 - 00418752 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2017-02-21 14:24 - 2017-02-21 14:24 - 00002267 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-02-21 14:24 - 2017-02-21 14:24 - 00002255 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-02-21 14:23 - 2017-02-21 14:23 - 01129376 _____ (Google Inc.) C:\Users\Dominik\Downloads\ChromeSetup.exe
2017-02-21 14:23 - 2017-02-21 14:23 - 00003384 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA1d28c45b2e01a7c
2017-02-21 14:23 - 2017-02-21 14:23 - 00003256 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore1d28c45b2916602
2017-02-21 14:19 - 2017-02-21 14:19 - 00000000 ____D C:\Users\Dominik\ansel
2017-02-21 13:59 - 2017-02-21 13:59 - 00004146 _____ C:\Windows\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-02-21 13:59 - 2017-01-20 14:36 - 00001951 _____ C:\Windows\NvTelemetryContainerRecovery.bat
2017-02-21 13:58 - 2017-01-20 19:39 - 00156608 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2017-02-21 13:58 - 2017-01-20 19:39 - 00124352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2017-02-21 13:58 - 2017-01-20 19:39 - 00057792 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvhci.sys
2017-02-21 13:58 - 2017-01-20 19:39 - 00046016 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2017-02-21 13:02 - 2017-02-21 13:02 - 00000942 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Assassins Creed IV Black Flag.lnk
2017-02-21 13:02 - 2017-02-21 13:02 - 00000930 _____ C:\Users\Public\Desktop\Assassins Creed IV Black Flag.lnk
2017-02-21 12:50 - 2017-02-21 13:35 - 00000000 ____D C:\Program Files (x86)\Assassins Creed IV Black Flag
2017-02-20 17:55 - 2017-02-20 17:55 - 00059677 _____ C:\Users\Dominik\Downloads\[CzT]Assassin_s_Creed_IV_Black_Flag_2013_CZ_.torrent
2017-02-19 23:12 - 2017-02-19 23:12 - 00018143 _____ C:\Users\Dominik\Downloads\[CzT]Battle_of_Empires_1914_1918_2015_.torrent
2017-02-15 01:37 - 2017-02-15 01:39 - 00002583 _____ C:\Users\Dominik\Desktop\DarthMod Empire.lnk
2017-02-15 01:37 - 2017-02-15 01:39 - 00000000 ____D C:\Users\Dominik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DarthMod Empire
2017-02-15 01:37 - 2017-02-15 01:37 - 00002635 _____ C:\Users\Dominik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DarthMod Empire.lnk
2017-02-14 23:28 - 2017-02-14 23:28 - 00000221 _____ C:\Users\Dominik\Desktop\Empire Total War.url
2017-02-14 20:09 - 2012-09-16 21:58 - 1016997827 _____ C:\Users\Dominik\Downloads\DarthMod_Empire_v8.0_Platinum.2
2017-02-14 17:28 - 2017-02-14 17:47 - 705861082 _____ C:\Users\Dominik\Downloads\CB2.2_Release_Pack.7z
2017-02-14 17:14 - 2017-02-14 17:14 - 21211340 _____ (DarthMod Productions) C:\Users\Dominik\Downloads\DarthMod_Empire_v8.0.1_Patch_Platinum_Final.exe
2017-02-14 17:13 - 2017-02-14 17:34 - 1017288122 _____ C:\Users\Dominik\Downloads\DarthMod_Empire_v8.0_Platinum.zip
2017-02-14 15:08 - 2017-02-14 17:13 - 2000000000 _____ (DarthMod Productions) C:\Users\Dominik\Downloads\DarthMod_Empire_v8.0_Platinum.exe
2017-02-13 18:22 - 2017-02-13 18:24 - 108692040 _____ C:\Users\Dominik\Downloads\ace3_3.8.0.zip
2017-02-13 18:06 - 2017-02-13 18:06 - 00412010 _____ C:\Users\Dominik\Downloads\Community-Base-addons-A3-version-3.1.2.161105.zip
2017-02-13 16:28 - 2017-02-13 16:33 - 00000000 ____D C:\Users\Dominik\Documents\Arma 3
2017-02-13 14:33 - 2017-02-13 14:33 - 00001009 _____ C:\Users\Dominik\Desktop\Arma 3 Apex.lnk
2017-02-13 14:33 - 2017-02-13 14:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Arma 3 Apex
2017-02-13 14:23 - 2017-02-13 18:24 - 00000000 ____D C:\Program Files (x86)\Arma 3 Apex
2017-02-13 14:21 - 2017-02-13 19:38 - 00000000 ____D C:\arma 3 savy
2017-02-12 00:57 - 2017-02-12 01:41 - 3882138960 _____ C:\Users\Dominik\Downloads\Se7en - Sedm (1995) 1080p Bluray.mkv
2017-02-12 00:57 - 2017-02-12 00:57 - 00059961 _____ C:\Users\Dominik\Downloads\[CzT]Sedm_Se7en_1995_CZ_EN_1080pHD_.torrent
2017-02-09 22:33 - 2017-02-09 22:41 - 205529575 _____ C:\Users\Dominik\Downloads\NIArms-AK-Rifles-version-2.1.7z
2017-02-09 22:33 - 2017-02-09 22:34 - 14991769 _____ C:\Users\Dominik\Downloads\NIArms-Core-version-1.1.7z
2017-02-09 00:23 - 2017-02-09 00:23 - 04015056 _____ C:\Users\Dominik\Downloads\adwcleaner_6.043 (1).exe
2017-02-09 00:22 - 2017-02-27 22:03 - 00000000 ____D C:\AdwCleaner
2017-02-07 16:05 - 2017-02-07 16:34 - 743393271 _____ C:\Users\Dominik\Downloads\Iraqi-Syrian-Conflict-version-9.0.7z
2017-02-07 10:44 - 2017-02-07 10:45 - 108696286 _____ C:\Users\Dominik\Downloads\ace3_3.8.3.zip
2017-02-07 10:44 - 2017-02-07 10:44 - 00412010 _____ C:\Users\Dominik\Downloads\CBA_A3_v3.1.2.161105.zip
2017-02-06 15:17 - 2017-02-06 19:14 - 2385903616 _____ C:\Users\Dominik\Downloads\codex-arma.3.apex.iso
2017-02-06 15:16 - 2017-02-06 15:16 - 00114246 _____ C:\Users\Dominik\Downloads\[CzT]Arma_3_Apex_2016_CZ_.torrent
2017-02-02 20:16 - 2017-02-02 20:16 - 00024623 _____ C:\Users\Dominik\Downloads\Vikings.S04E20.The.Reckoning.1080p.WEB-DL.DD5.1.H.264-DRACULA.srt
2017-02-02 14:00 - 2017-02-02 14:00 - 02420736 _____ (Farbar) C:\Users\Dominik\Downloads\FRST64.exe
2017-02-02 14:00 - 2017-02-02 14:00 - 00044985 _____ C:\Users\Dominik\Downloads\Addition.txt
2017-02-02 14:00 - 2017-02-02 14:00 - 00024807 _____ C:\Users\Dominik\Downloads\FRST.txt
2017-02-02 13:59 - 2017-02-28 19:21 - 00000000 ____D C:\FRST
2017-02-02 13:51 - 2017-02-02 13:51 - 00165888 _____ C:\Users\Dominik\Downloads\T-Cleaner.exe
2017-02-01 23:26 - 2017-02-01 23:26 - 00001203 _____ C:\Users\Public\Desktop\Resident Evil 7 Biohazard.lnk
2017-02-01 23:26 - 2017-02-01 23:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Resident Evil 7 Biohazard
2017-02-01 23:15 - 2017-02-01 23:31 - 00000000 ____D C:\Program Files (x86)\Resident Evil 7 Biohazard
2017-01-31 20:30 - 2017-01-31 20:30 - 00000000 ____D C:\FreeRapid-0.9u4
2017-01-31 20:25 - 2017-01-31 20:25 - 17403694 _____ C:\Users\Dominik\Downloads\FreeRapid-0.9u4.zip
2017-01-30 22:18 - 2017-01-30 22:18 - 00000000 ____D C:\Users\Dominik\AppData\Roaming\VitySoft
2017-01-30 22:18 - 2017-01-30 22:18 - 00000000 ____D C:\Users\Dominik\.objectdb
2017-01-30 19:25 - 2017-01-30 19:25 - 04015056 _____ C:\Users\Dominik\Downloads\adwcleaner_6.043.exe
2017-01-30 12:16 - 2017-01-30 12:16 - 00117966 _____ C:\Users\Dominik\Downloads\[SkT]Resident_Evil_7__Biohazard_(2017).torrent

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-02-28 19:19 - 2016-11-19 13:32 - 00000000 ____D C:\Users\Dominik\AppData\LocalLow\Mozilla
2017-02-28 12:57 - 2016-08-04 19:40 - 00000000 ____D C:\Users\Dominik\AppData\Local\CrashDumps
2017-02-28 12:25 - 2015-10-29 18:45 - 00000000 ____D C:\ProgramData\NVIDIA
2017-02-28 10:35 - 2009-07-14 05:45 - 00021872 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-02-28 10:35 - 2009-07-14 05:45 - 00021872 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-02-28 10:20 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-02-28 02:20 - 2015-09-27 19:38 - 00000000 ____D C:\Program Files (x86)\SpeedFan
2017-02-27 19:10 - 2017-01-20 01:09 - 00000857 _____ C:\Users\Dominik\Desktop\Nový textový dokument.txt
2017-02-27 16:59 - 2016-11-07 08:39 - 00000000 ____D C:\Users\Dominik\Documents\FRST-OlderVersion
2017-02-24 22:07 - 2015-10-28 13:25 - 00000000 ____D C:\Users\Dominik\AppData\Local\Ubisoft Game Launcher
2017-02-24 17:19 - 2015-09-20 10:51 - 00000000 ____D C:\Users\Dominik\Documents\My Games
2017-02-24 13:43 - 2016-11-13 17:07 - 00409128 _____ (EasyAntiCheat Ltd) C:\Windows\SysWOW64\EasyAntiCheat.exe
2017-02-23 22:37 - 2015-09-18 17:24 - 00000000 ____D C:\Program Files (x86)\Steam
2017-02-23 19:30 - 2016-10-14 16:34 - 00281032 _____ C:\Windows\SysWOW64\PnkBstrB.exe
2017-02-23 19:30 - 2015-10-12 18:19 - 00281032 _____ C:\Windows\SysWOW64\PnkBstrB.xtr
2017-02-23 02:47 - 2016-10-16 15:02 - 00000000 ____D C:\Users\Dominik\AppData\Roaming\uTorrent
2017-02-22 16:11 - 2015-09-27 12:49 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-02-21 23:09 - 2015-09-19 19:01 - 00000000 ____D C:\Users\Dominik\AppData\Roaming\vlc
2017-02-21 22:21 - 2015-09-25 16:42 - 00281032 _____ C:\Windows\SysWOW64\PnkBstrB.ex0
2017-02-21 15:40 - 2015-09-15 15:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2017-02-21 15:32 - 2015-09-15 15:33 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2017-02-21 15:32 - 2015-09-15 15:32 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2017-02-21 15:32 - 2015-09-15 15:32 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2017-02-21 15:32 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf
2017-02-21 15:31 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\Help
2017-02-21 14:24 - 2015-09-15 16:05 - 00000000 ____D C:\Program Files (x86)\Google
2017-02-21 14:19 - 2015-09-15 15:22 - 00000000 ____D C:\Users\Dominik
2017-02-21 14:02 - 2011-04-12 09:34 - 00668866 _____ C:\Windows\system32\perfh005.dat
2017-02-21 14:02 - 2011-04-12 09:34 - 00141526 _____ C:\Windows\system32\perfc005.dat
2017-02-21 14:02 - 2009-07-14 06:13 - 01584554 _____ C:\Windows\system32\PerfStringBackup.INI
2017-02-21 13:59 - 2016-11-07 18:49 - 00003742 _____ C:\Windows\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-02-21 13:59 - 2016-11-07 18:49 - 00001412 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2017-02-21 13:59 - 2016-11-07 18:48 - 00003738 _____ C:\Windows\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-02-21 13:59 - 2016-11-07 18:48 - 00003738 _____ C:\Windows\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-02-21 13:59 - 2016-11-07 18:48 - 00003730 _____ C:\Windows\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-02-21 13:59 - 2016-11-07 18:48 - 00003554 _____ C:\Windows\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-02-21 13:59 - 2016-11-07 18:48 - 00003494 _____ C:\Windows\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-02-21 13:59 - 2015-09-15 16:58 - 00000000 ____D C:\Users\Dominik\AppData\Local\NVIDIA Corporation
2017-02-21 13:59 - 2015-09-15 16:58 - 00000000 ____D C:\Users\Dominik\AppData\Local\NVIDIA
2017-02-21 13:38 - 2016-09-10 16:21 - 00000000 ____D C:\Users\Dominik\Documents\Assassin's Creed IV Black Flag
2017-02-21 13:38 - 2015-11-23 17:14 - 00000000 ____D C:\ProgramData\Orbit
2017-02-20 23:07 - 2016-04-25 14:43 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2017-02-18 18:09 - 2016-03-12 16:03 - 00000000 ____D C:\Users\Dominik\AppData\Local\Arma 3
2017-02-15 01:08 - 2009-07-14 06:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2017-02-14 14:56 - 2016-09-05 16:03 - 00000000 ____D C:\Program Files (x86)\World of Warcraft
2017-02-14 14:53 - 2016-07-11 12:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ubisoft
2017-02-14 14:53 - 2015-10-28 13:13 - 00000000 ____D C:\Program Files (x86)\Ubisoft
2017-02-14 14:53 - 2015-09-15 15:59 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2017-02-14 14:52 - 2015-09-21 23:25 - 00000000 ____D C:\Nová složka (2)
2017-02-07 15:50 - 2017-01-13 23:29 - 00000000 ____D C:\Blair Witch
2017-02-06 22:19 - 2016-08-21 21:03 - 00000000 ____D C:\Program Files (x86)\Rise of the Tomb Raider
2017-02-02 01:22 - 2015-09-25 14:37 - 00000000 ____D C:\ProgramData\Origin
2017-02-02 01:21 - 2015-09-25 14:39 - 00000000 ____D C:\Users\Dominik\AppData\Roaming\Origin
2017-02-01 23:36 - 2015-11-13 14:41 - 00000000 ____D C:\Fraps
2017-02-01 19:07 - 2015-09-25 14:37 - 00000000 ____D C:\Program Files (x86)\Origin
2017-02-01 12:12 - 2009-07-14 03:34 - 00000215 _____ C:\Windows\system.ini
2017-01-29 10:01 - 2016-11-18 11:15 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2017-01-29 10:01 - 2015-09-27 21:16 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service

==================== Files in the root of some directories =======

2016-09-04 21:01 - 2016-09-04 21:07 - 0000000 _____ () C:\Program Files (x86)\ToDownloadBase.db
2016-02-23 17:32 - 2016-02-23 17:32 - 0000913 _____ () C:\Users\Dominik\AppData\Local\recently-used.xbel
2015-10-21 19:28 - 2016-09-28 09:12 - 0007602 _____ () C:\Users\Dominik\AppData\Local\Resmon.ResmonCfg
2016-10-14 16:37 - 2016-10-14 16:37 - 0000000 ___SH () C:\ProgramData\.rdata

Some files in TEMP:
====================
2016-11-07 22:05 - 2016-10-25 21:00 - 0747648 _____ (NVIDIA Corporation) C:\Users\Dominik\AppData\Local\Temp\nvSCPAPI.dll
2016-11-07 22:05 - 2017-02-09 23:39 - 0868152 _____ (NVIDIA Corporation) C:\Users\Dominik\AppData\Local\Temp\nvSCPAPI64.dll
2017-02-21 14:08 - 2012-07-25 07:14 - 0604008 _____ (NVIDIA Corporation) C:\Users\Dominik\AppData\Local\Temp\nvStInst.exe
2016-11-07 18:48 - 2016-10-25 21:18 - 1137208 _____ (NVIDIA Corporation) C:\Users\Dominik\AppData\Local\Temp\NvTelemetry.dll
2016-11-07 18:48 - 2016-10-25 21:18 - 0218680 _____ (NVIDIA Corporation) C:\Users\Dominik\AppData\Local\Temp\NvTelemetryAPI32.dll
2016-11-07 18:48 - 2016-10-25 21:18 - 0270392 _____ (NVIDIA Corporation) C:\Users\Dominik\AppData\Local\Temp\NvTelemetryAPI64.dll
2017-02-28 02:20 - 2017-02-28 02:20 - 0192512 _____ () C:\Users\Dominik\AppData\Local\Temp\sfamcc00001.dll

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2017-02-22 10:08

==================== End of FRST.txt ============================

Ad

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 26-02-2017
Ran by Dominik (28-02-2017 19:21:40)
Running from C:\Users\Dominik\Desktop
Windows 7 Home Premium Service Pack 1 (X64) (2015-09-15 14:22:13)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-707951698-1732677806-592134114-500 - Administrator - Disabled)
Dominik (S-1-5-21-707951698-1732677806-592134114-1000 - Administrator - Enabled) => C:\Users\Dominik
Guest (S-1-5-21-707951698-1732677806-592134114-501 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Bitdefender Antivirus Free Edition (Enabled - Up to date) {3FB17364-4FCC-0FA7-6BBF-973897395371}
AS: Bitdefender Antivirus Free Edition (Enabled - Up to date) {84D09280-69F6-0029-510F-AC4AECBE19CC}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 15.023.20070 - Adobe Systems Incorporated)
Adobe Flash Player 21 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 21.0.0.242 - Adobe Systems Incorporated)
Aktualizace NVIDIA 23.23.0.0 (Version: 23.23.0.0 - NVIDIA Corporation) Hidden
Ansel (Version: 378.66 - NVIDIA Corporation) Hidden
Arma 3 Apex (HKLM-x32\...\Arma 3 Apex_is1) (Version: - )
Ashampoo Burning Studio 6 FREE v.6.84 (HKLM-x32\...\{91B33C97-3ED1-03EA-A67B-244AA4D7B559}_is1) (Version: 6.8.4 - Ashampoo GmbH & Co. KG)
Assassin's Creed Brotherhood (HKLM-x32\...\{BE4BA698-8533-4F77-9559-C7F3F78C0B05}) (Version: 1.00 - Ubisoft)
Assassin's Creed III (HKLM-x32\...\Uplay Install 54) (Version: - Ubisoft)
Assassins Creed IV Black Flag (HKLM-x32\...\QXNzYXNzaW5zQ3JlZWRJVkJsYWNrRmxhZw==_is1) (Version: 1 - )
Assassin's Creed Rogue (HKLM-x32\...\Uplay Install 895) (Version: - Ubisoft)
Autumn Aurora 2 for S.T.A.L.K.E.R - Shadow of Chernobyl (HKLM-x32\...\Autumn Aurora 2.1_is1) (Version: - )
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.6.0.0 - Electronic Arts)
Battlefield 4™ (HKLM-x32\...\{ABADE36E-EC37-413B-8179-B432AD3FACE7}) (Version: 1.7.2.45672 - Electronic Arts)
Bitdefender Antivirus Free Edition (HKLM\...\BitDefender Gonzales) (Version: 1.0.21.1109 - Bitdefender)
Blitzkrieg Mod version 4.9.3 (HKLM-x32\...\{81EC7B6D-B297-4820-B5BE-5A2373725158}_is1) (Version: 4.9.3 - Blitzkrieg Mod Team)
Canon MG5100 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG5100_series) (Version: - )
CCleaner (HKLM\...\CCleaner) (Version: 5.09 - Piriform)
CPUID CPU-Z 1.78 (HKLM\...\CPUID CPU-Z_is1) (Version: - )
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Darkest Hour (HKLM-x32\...\{09D5819F-0F1A-4480-A112-B5CCA58D9773}_is1) (Version: - Darkest Hour Team)
DarthMod Empire (HKLM-x32\...\DarthMod Empire8.0 Platinum) (Version: 8.0 Platinum - )
DarthMod Empire (HKLM-x32\...\DarthMod Empire8.0.1 Platinum) (Version: 8.0.1 Platinum - )
Empire: Total War (HKLM\...\Steam App 10500) (Version: - The Creative Assembly)
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version: - )
Europa Universalis IV (HKLM-x32\...\Europa Universalis IV_is1) (Version: - Paradox Interactive)
Far Cry 4 (HKLM-x32\...\RmFyQ3J5NA==_is1) (Version: 1 - )
Firestorm Launcher version 1.3 (HKLM-x32\...\{008D5963-9A73-4472-8C16-A5BF04491B9D}_is1) (Version: 1.3 - Firestorm)
Firewatch (HKLM-x32\...\1459256379_is1) (Version: 2.0.0.3 - GOG.com)
Fotogalerie (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fraps (HKLM-x32\...\Fraps) (Version: - )
German Soldiers Mod Fields of Honor XII (HKLM-x32\...\{5510B41F-4C23-4742-B8EA-7FEA80F50152}_is1) (Version: - German Soldiers)
Ghost Recon Wildlands Beta (HKLM-x32\...\Uplay Install 2970) (Version: - Ubisoft)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 56.0.2924.87 - Google Inc.)
Google Update Helper (x32 Version: 1.3.21.99 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.32.7 - Google Inc.) Hidden
Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment)
Hearts of Iron IV (HKLM-x32\...\Hearts of Iron IV_is1) (Version: - )
Java 8 Update 73 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218073F0}) (Version: 8.0.730.2 - Oracle Corporation)
Layers of Fear (HKLM\...\bGF5ZXJzb2ZmZWFy_is1) (Version: 1 - )
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
League of Legends (x32 Version: 3.0.1 - Riot Games) Hidden
Malwarebytes Anti-Malware verze 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Men of War: Assault Squad 2 (HKLM-x32\...\TWVub2ZXYXJBc3NhdWx0U3F1YWQy_is1) (Version: 1 - )
Microsoft .NET Framework 4.5.2 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}) (Version: 3.5.92.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{67F42018-F647-4D3C-BE62-F8CB4FE2FCD5}) (Version: 3.5.67.0 - Microsoft Corporation)
Microsoft Chart Controls for Microsoft .NET Framework 3.5 (KB2500170) (HKLM-x32\...\{41785C66-90F2-40CE-8CB5-1C94BFC97280}) (Version: 3.5.30730.0 - Microsoft Corporation)
Microsoft Office 2010 pro studenty a domácnosti (HKLM-x32\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24210 (HKLM-x32\...\{f144e08f-9cbe-4f09-9a8c-f2b858b7ee7f}) (Version: 14.0.24210.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24210 (HKLM-x32\...\{23658c02-145e-483d-ba6b-1eb82c580529}) (Version: 14.0.24210.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 51.0.1 (x86 cs) (HKLM-x32\...\Mozilla Firefox 51.0.1 (x86 cs)) (Version: 51.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 51.0.1.6234 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
NVIDIA GeForce Experience 3.3.0.95 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.3.0.95 - NVIDIA Corporation)
NVIDIA Ovladač 3D Vision 378.66 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 378.66 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.34.21 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.21 - NVIDIA Corporation)
NVIDIA Ovladač řídící jednotky 3D Vision 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 378.66 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 378.66 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
NvNodejs (Version: 3.3.0.95 - NVIDIA Corporation) Hidden
NvTelemetry (Version: 2.3.5.0 - NVIDIA Corporation) Hidden
NvvHci (Version: 2.02.0.5 - NVIDIA Corporation) Hidden
Origin (HKLM-x32\...\Origin) (Version: 10.4.2.12697 - Electronic Arts, Inc.)
Ovládací panel NVIDIA 378.66 (Version: 378.66 - NVIDIA Corporation) Hidden
PowerISO (HKLM-x32\...\PowerISO) (Version: 6.6 - Power Software Ltd)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.994 - Even Balance, Inc.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.53.216.2012 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6657 - Realtek Semiconductor Corp.)
Resident Evil 7 Biohazard (HKLM-x32\...\{1ECBF8F3-7079-44CA-AD32-B2AECBCF636F}_is1) (Version: - Capcom)
Rising Storm/Red Orchestra 2 Multiplayer (HKLM-x32\...\Steam App 35450) (Version: - Tripwire Interactive)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.5.8 - Rockstar Games)
S.T.A.L.K.E.R. - Shadow of Chernobyl [v1.0006] (HKLM-x32\...\S.T.A.L.K.E.R. - Shadow of Chernobyl_is1) (Version: 1.0006 - THQ)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
SHIELD Streaming (Version: 7.1.0351 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 3.3.0.95 - NVIDIA Corporation) Hidden
Skype™ 7.10 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.10.101 - Skype Technologies S.A.)
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version: - )
Squad (HKLM\...\Steam App 393380) (Version: - Offworld Industries)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamViewer 10 (HKLM-x32\...\TeamViewer) (Version: 10.0.47484 - TeamViewer)
The Witcher 3 - Wild Hunt (HKLM-x32\...\1207664643_is1) (Version: 1.0.0.0 - GOG.com)
TopStyle 5 (HKLM-x32\...\TopStyle5_is1) (Version: 5.0 - topstyle4.com)
Total Commander (Remove or Repair) (HKLM-x32\...\Totalcmd) (Version: 8.51 - Ghisler Software GmbH)
Total War - SHOGUN 2 (HKLM-x32\...\Total War - SHOGUN 2_is1) (Version: - )
Uplay (HKLM-x32\...\Uplay) (Version: 26.1 - Ubisoft)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
Vulkan Run Time Libraries 1.0.39.1 (HKLM\...\VulkanRT1.0.39.1) (Version: 1.0.39.1 - LunarG, Inc.)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinRAR 5.21 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0116E732-D69D-43DF-8EED-0C501EF98514} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-01-20] (NVIDIA Corporation)
Task: {03655018-1272-45AD-96D1-8C2FD16EA08E} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-08-20] (Piriform Ltd)
Task: {1126BE25-F36C-4AF3-B1B4-6BD6305B8300} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-01-20] (NVIDIA Corporation)
Task: {2A50825D-2969-4377-919A-F8AE54B0469A} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-12-19] (Adobe Systems Incorporated)
Task: {2F57269B-1E09-4E2D-AB1E-B0FDAC7D279C} - \Microsoft\Windows\WindowsBackup\ConfigNotification -> No File <==== ATTENTION
Task: {340B06A9-7CBD-4F55-A733-2E0068761E21} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-02-21] (Google Inc.)
Task: {3B579DA3-99C1-4D99-8CF7-DB065681E98B} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2016-03-05] (AVAST Software)
Task: {3DA22A1A-D177-4095-BC29-1D670DD1EEE3} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-05-12] (Adobe Systems Incorporated)
Task: {3FFCA63C-4468-42BC-9CAF-E9C847ECAA65} - System32\Tasks\{7AD7B501-2F55-4772-A186-E5E10DA5C94F} => pcalua.exe -a C:\Users\Dominik\Downloads\FireWatch_CZ_V1.1.exe -d C:\Users\Dominik\Downloads
Task: {54857ADD-03D3-41E2-BEEC-7B549DB940D6} - System32\Tasks\{F7C16A01-ED1B-482C-8E26-3EB696385CB3} => Chrome.exe hxxp://ui.skype.com/ui/0/7.24.0.104/cs/abandoninstall?page=tsProgressBar
Task: {65A17ADD-0703-45E0-88E9-283D3C2B8533} - System32\Tasks\GoogleUpdateTaskMachineCore1d28c45b2916602 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-02-21] (Google Inc.)
Task: {6A073F9C-F886-4BBD-B9E0-6562DEC94E44} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-01-20] (NVIDIA Corporation)
Task: {6FC1BACF-A30A-4CFC-B83D-D28B17DAF946} - \Microsoft\Windows\Windows Activation Technologies\ValidationTask -> No File <==== ATTENTION
Task: {75E5A425-49B2-44D2-848F-2B29C671922A} - \Microsoft\Windows\Windows Activation Technologies\ValidationTaskDeadline -> No File <==== ATTENTION
Task: {7B2DCD0F-D67B-4396-B585-1CA1D8A8199C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-02-21] (Google Inc.)
Task: {847AF145-F8EA-4F62-92C4-1A2818B85BDD} - System32\Tasks\GoogleUpdateTaskMachineUA1d28c45b2e01a7c => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-02-21] (Google Inc.)
Task: {ABEAFDA3-9341-483D-9ACF-17D612E69D08} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-01-20] (NVIDIA Corporation)
Task: {AC4E5ACF-89F7-4220-BA21-81EE183975E2} - \Microsoft\Windows\Application Experience\AitAgent -> No File <==== ATTENTION
Task: {B77EEA87-371F-48EF-8A59-0D8CBC925AB1} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-01-20] (NVIDIA Corporation)
Task: {C542D393-A2C1-4896-ADDA-5D89405F100F} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-01-20] (NVIDIA Corporation)
Task: {C777D054-B7DB-4D95-8DBF-EF373DE7D114} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-01-20] (NVIDIA Corporation)
Task: {CEE64558-E1A7-4D9D-80A7-2001912BE5B5} - \Microsoft\Windows\MemoryDiagnostic\CorruptionDetector -> No File <==== ATTENTION
Task: {FA2BC0A6-8D4B-458A-85C8-2B8C72487513} - \Microsoft\Windows\MemoryDiagnostic\DecompressionFailureDetector -> No File <==== ATTENTION

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

==================== Loaded Modules (Whitelisted) ==============

2016-08-11 18:18 - 2013-03-19 10:07 - 00712288 _____ () C:\Program Files\Bitdefender\Antivirus Free Edition\sqlite3.dll
2016-08-11 18:18 - 2013-09-03 12:29 - 00111832 _____ () C:\Program Files\Bitdefender\Antivirus Free Edition\BDMetrics.dll
2017-02-21 15:31 - 2017-02-09 23:57 - 00134712 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-11-07 18:48 - 2017-01-20 19:39 - 01147328 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2016-11-07 18:48 - 2017-01-20 19:39 - 04489152 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\Poco.dll
2015-08-24 19:28 - 2015-08-24 19:28 - 00047104 _____ () C:\Program Files\CCleaner\lang\lang-1029.dll
2016-10-14 16:34 - 2016-10-14 16:34 - 00076152 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2017-02-21 14:24 - 2017-02-01 10:47 - 02459992 _____ () C:\Program Files (x86)\Google\Chrome\Application\56.0.2924.87\libglesv2.dll
2017-02-21 14:24 - 2017-02-01 10:47 - 00099672 _____ () C:\Program Files (x86)\Google\Chrome\Application\56.0.2924.87\libegl.dll
2015-09-15 16:58 - 2017-01-20 19:39 - 00018880 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2016-11-07 18:48 - 2017-01-20 19:39 - 00900032 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
2016-11-07 18:48 - 2017-01-20 19:39 - 03774400 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\Poco.dll
2016-11-07 18:48 - 2017-01-20 19:38 - 64245184 _____ () C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\libcef.dll
2016-11-07 18:48 - 2017-01-20 14:36 - 00338488 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVAccountAPINode.node
2016-11-07 18:48 - 2017-01-20 14:36 - 00254008 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\DriverInstall.node
2016-11-07 18:48 - 2017-01-20 14:36 - 02808888 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\Downloader.node
2016-11-07 18:48 - 2017-01-20 14:36 - 00384568 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGameShareAPINode.node
2016-11-07 18:48 - 2017-01-20 14:36 - 00537656 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvSpCapsAPINode.node
2016-11-07 18:48 - 2017-01-20 14:36 - 00468024 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGalleryAPINode.node
2016-11-07 18:48 - 2017-01-20 14:36 - 01066552 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvCameraAPINode.node
2017-02-21 13:59 - 2017-01-20 14:36 - 01014840 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvSDKAPINode.node

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\ProgramData\.rdata:X [526]
AlternateDataStreams: C:\Users\Dominik\Desktop\FRST64(1).exe:BDU [0]
AlternateDataStreams: C:\Users\Dominik\Downloads\378.66-desktop-win8-win7-64bit-international-whql.exe:BDU [0]
AlternateDataStreams: C:\Users\Dominik\Downloads\adwcleaner_5.112 (1).exe:BDU [0]
AlternateDataStreams: C:\Users\Dominik\Downloads\adwcleaner_5.201.exe:BDU [0]
AlternateDataStreams: C:\Users\Dominik\Downloads\adwcleaner_6.020 (1).exe:BDU [0]
AlternateDataStreams: C:\Users\Dominik\Downloads\adwcleaner_6.020.exe:BDU [0]
AlternateDataStreams: C:\Users\Dominik\Downloads\adwcleaner_6.043 (1).exe:BDU [0]
AlternateDataStreams: C:\Users\Dominik\Downloads\adwcleaner_6.043.exe:BDU [0]
AlternateDataStreams: C:\Users\Dominik\Downloads\ChromeSetup.exe:BDU [0]
AlternateDataStreams: C:\Users\Dominik\Downloads\cpu-z_1.78-en.exe:BDU [0]
AlternateDataStreams: C:\Users\Dominik\Downloads\DarthMod_Empire_v8.0.1_Patch_Platinum_Final.exe:BDU [0]
AlternateDataStreams: C:\Users\Dominik\Downloads\DarthMod_Empire_v8.0_Platinum.exe:BDU [0]
AlternateDataStreams: C:\Users\Dominik\Downloads\FirestormLauncherSetup.exe:BDU [0]
AlternateDataStreams: C:\Users\Dominik\Downloads\FRST64.exe:BDU [0]
AlternateDataStreams: C:\Users\Dominik\Downloads\GeForce_Experience_v3.1.0.52.exe:BDU [0]
AlternateDataStreams: C:\Users\Dominik\Downloads\GSM_Fields_of_Honor_XII_Installer_09.10.16.exe:BDU [0]
AlternateDataStreams: C:\Users\Dominik\Downloads\Hearthstone-Setup.exe:BDU [0]
AlternateDataStreams: C:\Users\Dominik\Downloads\official_patch_soc-win-10005_10006.exe:BDU [0]
AlternateDataStreams: C:\Users\Dominik\Downloads\PowerISO6.exe:BDU [0]
AlternateDataStreams: C:\Users\Dominik\Downloads\stk-cz-10005.exe:BDU [0]
AlternateDataStreams: C:\Users\Dominik\Downloads\stk-multi-patch.exe:BDU [0]
AlternateDataStreams: C:\Users\Dominik\Downloads\stk-ww-0-3.exe:BDU [0]
AlternateDataStreams: C:\Users\Dominik\Downloads\T-Cleaner.exe:BDU [0]
AlternateDataStreams: C:\Users\Dominik\Downloads\TopStyle50 (1).exe:BDU [0]
AlternateDataStreams: C:\Users\Dominik\Downloads\UplayInstaller.exe:BDU [0]
AlternateDataStreams: C:\Users\Dominik\Downloads\uTorrent221.exe:BDU [0]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:34 - 2017-01-30 19:48 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts

127.0.0.1 localhost

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-707951698-1732677806-592134114-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Dominik\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [TCP Query User{B8F60387-51CE-495B-BD5A-FAA838F86B59}C:\program files (x86)\origin games\battlefield 4\bf4.exe] => (Allow) C:\program files (x86)\origin games\battlefield 4\bf4.exe
FirewallRules: [UDP Query User{125348E6-BDD7-4753-84C6-319D63915E89}C:\program files (x86)\origin games\battlefield 4\bf4.exe] => (Allow) C:\program files (x86)\origin games\battlefield 4\bf4.exe
FirewallRules: [{872F23F6-1FBC-4B91-A4B1-9FD05D3AE1B8}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{474D72BF-680F-435C-A29A-75C078FB7CD8}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{BBA14E4E-0AB1-4E6B-835D-C284BBE93BD9}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{7166EEB7-CBFD-40FD-97BA-33CFC49FA544}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{A24F7428-AB72-4592-83E7-32C85F5ABCF9}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{1A347A5A-8402-4C3E-8AD3-BF2855A4C705}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [TCP Query User{59A4B271-60EA-49DC-8EE1-4B502F8AF437}C:\program files (x86)\men of war assault squad 2\mowas_2.exe] => (Block) C:\program files (x86)\men of war assault squad 2\mowas_2.exe
FirewallRules: [UDP Query User{8636A817-5260-4361-934C-9184B694A896}C:\program files (x86)\men of war assault squad 2\mowas_2.exe] => (Block) C:\program files (x86)\men of war assault squad 2\mowas_2.exe
FirewallRules: [TCP Query User{F44127D0-711C-4264-9600-DE16A64A6444}C:\program files (x86)\origin games\battlefield 3\bf3.exe] => (Allow) C:\program files (x86)\origin games\battlefield 3\bf3.exe
FirewallRules: [UDP Query User{F3F5D543-DE37-4CB7-810C-3F89D441B638}C:\program files (x86)\origin games\battlefield 3\bf3.exe] => (Allow) C:\program files (x86)\origin games\battlefield 3\bf3.exe
FirewallRules: [TCP Query User{DB4E71C3-0D9B-43F8-89E7-DD5E43D81A03}C:\program files (x86)\sega\total war - shogun 2\shogun2.exe] => (Allow) C:\program files (x86)\sega\total war - shogun 2\shogun2.exe
FirewallRules: [UDP Query User{69D7D5A9-1105-4312-88CA-EC9529AD294F}C:\program files (x86)\sega\total war - shogun 2\shogun2.exe] => (Allow) C:\program files (x86)\sega\total war - shogun 2\shogun2.exe
FirewallRules: [TCP Query User{4DBE2AC0-3327-45BC-B0E3-F36979A2240E}C:\program files (x86)\ubisoft\assassin's creed brotherhood\acbsp.exe] => (Block) C:\program files (x86)\ubisoft\assassin's creed brotherhood\acbsp.exe
FirewallRules: [UDP Query User{E6490D7B-C250-4AA3-8281-FE39F5BC0DA3}C:\program files (x86)\ubisoft\assassin's creed brotherhood\acbsp.exe] => (Block) C:\program files (x86)\ubisoft\assassin's creed brotherhood\acbsp.exe
FirewallRules: [TCP Query User{353B44AF-8AE5-41CD-AE40-293A5F678336}C:\program files (x86)\steam\steamapps\common\red orchestra 2\binaries\win32\rogame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\red orchestra 2\binaries\win32\rogame.exe
FirewallRules: [UDP Query User{517276A0-D16E-414C-BD61-1CDE70D59455}C:\program files (x86)\steam\steamapps\common\red orchestra 2\binaries\win32\rogame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\red orchestra 2\binaries\win32\rogame.exe
FirewallRules: [TCP Query User{B6BD6357-CE52-48B6-AF4F-5566E0BC8BE8}C:\program files (x86)\far cry 4\bin\farcry4.exe] => (Block) C:\program files (x86)\far cry 4\bin\farcry4.exe
FirewallRules: [UDP Query User{E2C54888-F580-4F32-AEE7-D366949BA299}C:\program files (x86)\far cry 4\bin\farcry4.exe] => (Block) C:\program files (x86)\far cry 4\bin\farcry4.exe
FirewallRules: [{1EBA6A3A-1424-4FF4-BA21-2B75540F03A5}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{86C5C2AD-1B0C-4E87-A989-78BF117AB2B6}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{53566127-CADE-4A14-B47E-AA44B3996F63}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{8D49D40A-4946-4D54-A876-25B840076F29}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [TCP Query User{91163EE6-8421-41A2-A80D-9DF41FB4814C}C:\users\dominik\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\dominik\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [UDP Query User{03739224-F3EC-4BD1-B4CA-C49DAE1F5F4B}C:\users\dominik\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\dominik\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [TCP Query User{A3984D61-55DC-406D-8932-9DA2399A1165}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [UDP Query User{2A53658D-4612-4F5F-BF06-9A78F788F0B7}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [{62D7836A-F3EB-497C-92D6-C5606F1F1458}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Squad\squad_launcher.exe
FirewallRules: [{CE544D35-F1D3-4BD4-8B41-0C8212B637A9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Squad\squad_launcher.exe
FirewallRules: [TCP Query User{E0546BC9-52E1-47CB-8009-6A525CBC5FF6}C:\program files (x86)\steam\steamapps\common\squad\squad\binaries\win64\squad.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\squad\squad\binaries\win64\squad.exe
FirewallRules: [UDP Query User{7BC3AA0B-755A-40D0-82EA-739BBAC13C6A}C:\program files (x86)\steam\steamapps\common\squad\squad\binaries\win64\squad.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\squad\squad\binaries\win64\squad.exe
FirewallRules: [{A1E2CC12-26CD-4BFE-94AF-6E019BE7E6BA}] => (Allow) C:\Program Files (x86)\THQ\S.T.A.L.K.E.R. - Shadow of Chernobyl\bin\XR_3DA.exe
FirewallRules: [{FF7C1B7C-AEBB-4E79-91CE-8F4EA8C5A7CC}] => (Allow) C:\Program Files (x86)\THQ\S.T.A.L.K.E.R. - Shadow of Chernobyl\bin\XR_3DA.exe
FirewallRules: [{B910E7D1-A3FE-4A91-8831-F6D20A3871DA}] => (Allow) C:\Program Files (x86)\THQ\S.T.A.L.K.E.R. - Shadow of Chernobyl\bin\dedicated\XR_3DA.exe
FirewallRules: [{2CD9E187-2C3B-4179-95E6-4EF5163BFCC8}] => (Allow) C:\Program Files (x86)\THQ\S.T.A.L.K.E.R. - Shadow of Chernobyl\bin\dedicated\XR_3DA.exe
FirewallRules: [{BD5D4653-CC2E-43B9-A5EF-B5212EE5CFF6}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{2FA04901-BB0F-4E2C-82DD-94B6C67B8954}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [TCP Query User{F20BFEE9-A0BF-4A58-9E9A-40160209CB0B}C:\program files (x86)\java\jre1.8.0_73\launch4j-tmp\frd.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_73\launch4j-tmp\frd.exe
FirewallRules: [UDP Query User{13032450-203B-4F02-BE2B-0C8A0E052B8E}C:\program files (x86)\java\jre1.8.0_73\launch4j-tmp\frd.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_73\launch4j-tmp\frd.exe
FirewallRules: [{F5484EEA-BEAB-4CE9-A44B-38C23021B8FE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Empire Total War\Empire.exe
FirewallRules: [{FB9BE972-F0B6-403D-9624-BB66E1DA9047}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Empire Total War\Empire.exe
FirewallRules: [{92D9F2CF-1CB6-469D-B308-CBB4B2000BAB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{F2F7C46F-6AB7-4080-B43A-9426BBFA90E1}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{607FB61B-7807-49A6-AD93-4053514DA6CB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{B144838C-623D-40E3-ACED-D2D61659A212}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{0A7C18EE-B5A6-4C80-8CDF-17EF2F5FD79C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{0D172E0D-803B-47AA-9BB5-B9F54545C2F4}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{B140CBCD-F22B-48B9-BBE6-BD2C84D3D8FE}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Ghost Recon Wildlands Beta\GRW.exe

==================== Restore Points =========================

17-02-2017 11:42:07 Naplánovaný kontrolní bod
24-02-2017 12:21:15 Naplánovaný kontrolní bod
24-02-2017 17:17:01 Nainstalováno rozhraní DirectX
24-02-2017 17:18:10 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030

==================== Faulty Device Manager Devices =============

Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Řadič USB (Universal Serial Bus)
Description: Řadič USB (Universal Serial Bus)
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (02/28/2017 12:57:00 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Darkest Hour.exe, verze: 1.0.4.0, časové razítko: 0x54cd5bd7
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000
ID chybujícího procesu: 0x1338
Čas spuštění chybující aplikace: 0x01d291aa67889e77
Cesta k chybující aplikaci: C:\Darkest Hour\Darkest Hour.exe
Cesta k chybujícímu modulu: unknown
ID zprávy: 02d0b4c5-fdad-11e6-8099-d43d7e343acc

Error: (02/28/2017 10:21:38 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (02/28/2017 07:34:03 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (02/27/2017 10:06:17 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (02/27/2017 07:25:48 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (02/26/2017 10:23:50 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (02/25/2017 01:03:17 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (02/25/2017 10:14:34 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (02/24/2017 10:38:44 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (02/23/2017 09:12:03 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.


System errors:
=============
Error: (02/28/2017 10:20:50 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Origin Web Helper Service neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Error: (02/28/2017 10:20:50 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Origin Web Helper Service bylo dosaženo časového limitu (30000 ms).

Error: (02/28/2017 07:33:16 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Origin Web Helper Service neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Error: (02/28/2017 07:33:16 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Origin Web Helper Service bylo dosaženo časového limitu (30000 ms).

Error: (02/27/2017 10:05:22 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Origin Web Helper Service neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Error: (02/27/2017 10:05:22 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Origin Web Helper Service bylo dosaženo časového limitu (30000 ms).

Error: (02/27/2017 10:03:35 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Office Software Protection Platform byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (02/27/2017 10:03:35 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Služba Windows Media Player Network Sharing byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 30000 milisekund: Restartovat službu.

Error: (02/27/2017 10:03:35 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Windows Search byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 30000 milisekund: Restartovat službu.

Error: (02/27/2017 10:03:34 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Windows Live ID Sign-in Assistant byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 10000 milisekund: Restartovat službu.


CodeIntegrity:
===================================
Date: 2017-02-01 12:11:05.541
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2017-02-01 12:11:05.526
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2017-02-01 12:11:05.479
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2017-02-01 12:11:05.448
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2017-01-30 19:47:34.750
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2017-01-30 19:47:34.719
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


==================== Memory info ===========================

Processor: Intel(R) Core(TM) i5-3450 CPU @ 3.10GHz
Percentage of memory in use: 49%
Total physical RAM: 8125.51 MB
Available physical RAM: 4120.85 MB
Total Virtual: 16249.21 MB
Available Virtual: 11726.77 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:931.41 GB) (Free:213.48 GB) NTFS ==>[drive with boot components (obtained from BCD)]

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: EE0E4755)
Partition 1: (Active) - (Size=931.4 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================

[sorcer]

1) Obsah fixu níže, nakopírujte do Notepadu + uložte jej jako: fixlist.txt
2) Soubor uložte na stejné místo, kde má aktuálně utilitu FRST

Kód: Vybrat vše

Start
CreateRestorePoint:
EmptyTemp:
CloseProcesses:
Hosts:

HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-707951698-1732677806-592134114-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION

S2 NVIDIA Wireless Controller Service; "C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe" [X]
S3 MSICDSetup; \??\D:\CDriver64.sys [X]
S3 NTIOLib_1_0_C; \??\D:\NTIOLib_X64.sys [X]

Task: {2F57269B-1E09-4E2D-AB1E-B0FDAC7D279C} - \Microsoft\Windows\WindowsBackup\ConfigNotification -> No File <==== ATTENTION
Task: {6FC1BACF-A30A-4CFC-B83D-D28B17DAF946} - \Microsoft\Windows\Windows Activation Technologies\ValidationTask -> No File <==== ATTENTION
Task: {75E5A425-49B2-44D2-848F-2B29C671922A} - \Microsoft\Windows\Windows Activation Technologies\ValidationTaskDeadline -> No File <==== ATTENTION
Task: {AC4E5ACF-89F7-4220-BA21-81EE183975E2} - \Microsoft\Windows\Application Experience\AitAgent -> No File <==== ATTENTION
Task: {CEE64558-E1A7-4D9D-80A7-2001912BE5B5} - \Microsoft\Windows\MemoryDiagnostic\CorruptionDetector -> No File <==== ATTENTION
Task: {FA2BC0A6-8D4B-458A-85C8-2B8C72487513} - \Microsoft\Windows\MemoryDiagnostic\DecompressionFailureDetector -> No File <==== ATTENTION

AlternateDataStreams: C:\ProgramData\.rdata:X [526]
AlternateDataStreams: C:\Users\Dominik\Desktop\FRST64(1).exe:BDU [0]
AlternateDataStreams: C:\Users\Dominik\Downloads\378.66-desktop-win8-win7-64bit-international-whql.exe:BDU [0]
AlternateDataStreams: C:\Users\Dominik\Downloads\adwcleaner_5.112 (1).exe:BDU [0]
AlternateDataStreams: C:\Users\Dominik\Downloads\adwcleaner_5.201.exe:BDU [0]
AlternateDataStreams: C:\Users\Dominik\Downloads\adwcleaner_6.020 (1).exe:BDU [0]
AlternateDataStreams: C:\Users\Dominik\Downloads\adwcleaner_6.020.exe:BDU [0]
AlternateDataStreams: C:\Users\Dominik\Downloads\adwcleaner_6.043 (1).exe:BDU [0]
AlternateDataStreams: C:\Users\Dominik\Downloads\adwcleaner_6.043.exe:BDU [0]
AlternateDataStreams: C:\Users\Dominik\Downloads\ChromeSetup.exe:BDU [0]
AlternateDataStreams: C:\Users\Dominik\Downloads\cpu-z_1.78-en.exe:BDU [0]
AlternateDataStreams: C:\Users\Dominik\Downloads\DarthMod_Empire_v8.0.1_Patch_Platinum_Final.exe:BDU [0]
AlternateDataStreams: C:\Users\Dominik\Downloads\DarthMod_Empire_v8.0_Platinum.exe:BDU [0]
AlternateDataStreams: C:\Users\Dominik\Downloads\FirestormLauncherSetup.exe:BDU [0]
AlternateDataStreams: C:\Users\Dominik\Downloads\FRST64.exe:BDU [0]
AlternateDataStreams: C:\Users\Dominik\Downloads\GeForce_Experience_v3.1.0.52.exe:BDU [0]
AlternateDataStreams: C:\Users\Dominik\Downloads\GSM_Fields_of_Honor_XII_Installer_09.10.16.exe:BDU [0]
AlternateDataStreams: C:\Users\Dominik\Downloads\Hearthstone-Setup.exe:BDU [0]
AlternateDataStreams: C:\Users\Dominik\Downloads\official_patch_soc-win-10005_10006.exe:BDU [0]
AlternateDataStreams: C:\Users\Dominik\Downloads\PowerISO6.exe:BDU [0]
AlternateDataStreams: C:\Users\Dominik\Downloads\stk-cz-10005.exe:BDU [0]
AlternateDataStreams: C:\Users\Dominik\Downloads\stk-multi-patch.exe:BDU [0]
AlternateDataStreams: C:\Users\Dominik\Downloads\stk-ww-0-3.exe:BDU [0]
AlternateDataStreams: C:\Users\Dominik\Downloads\T-Cleaner.exe:BDU [0]
AlternateDataStreams: C:\Users\Dominik\Downloads\TopStyle50 (1).exe:BDU [0]
AlternateDataStreams: C:\Users\Dominik\Downloads\UplayInstaller.exe:BDU [0]
AlternateDataStreams: C:\Users\Dominik\Downloads\uTorrent221.exe:BDU [0]

END

3) Spusťte FRST a kliněte na tlačítko FIX
4) Restartujte PC.
5) Sledujte PC, jak se chová
5) Obsah FIXLOGU postněte sem do Vašeho topicu

[predatorx21]

Fix result of Farbar Recovery Scan Tool (x64) Version: 26-02-2017
Ran by Dominik (04-03-2017 14:22:55) Run:1
Running from C:\Users\Dominik\Desktop
Loaded Profiles: Dominik (Available Profiles: Dominik)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CreateRestorePoint:
EmptyTemp:
CloseProcesses:
Hosts:

HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-707951698-1732677806-592134114-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION

S2 NVIDIA Wireless Controller Service; "C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe" [X]
S3 MSICDSetup; \??\D:\CDriver64.sys [X]
S3 NTIOLib_1_0_C; \??\D:\NTIOLib_X64.sys [X]

Task: {2F57269B-1E09-4E2D-AB1E-B0FDAC7D279C} - \Microsoft\Windows\WindowsBackup\ConfigNotification -> No File <==== ATTENTION
Task: {6FC1BACF-A30A-4CFC-B83D-D28B17DAF946} - \Microsoft\Windows\Windows Activation Technologies\ValidationTask -> No File <==== ATTENTION
Task: {75E5A425-49B2-44D2-848F-2B29C671922A} - \Microsoft\Windows\Windows Activation Technologies\ValidationTaskDeadline -> No File <==== ATTENTION
Task: {AC4E5ACF-89F7-4220-BA21-81EE183975E2} - \Microsoft\Windows\Application Experience\AitAgent -> No File <==== ATTENTION
Task: {CEE64558-E1A7-4D9D-80A7-2001912BE5B5} - \Microsoft\Windows\MemoryDiagnostic\CorruptionDetector -> No File <==== ATTENTION
Task: {FA2BC0A6-8D4B-458A-85C8-2B8C72487513} - \Microsoft\Windows\MemoryDiagnostic\DecompressionFailureDetector -> No File <==== ATTENTION

AlternateDataStreams: C:\ProgramData\.rdata:X [526]
AlternateDataStreams: C:\Users\Dominik\Desktop\FRST64(1).exe:BDU [0]
AlternateDataStreams: C:\Users\Dominik\Downloads\378.66-desktop-win8-win7-64bit-international-whql.exe:BDU [0]
AlternateDataStreams: C:\Users\Dominik\Downloads\adwcleaner_5.112 (1).exe:BDU [0]
AlternateDataStreams: C:\Users\Dominik\Downloads\adwcleaner_5.201.exe:BDU [0]
AlternateDataStreams: C:\Users\Dominik\Downloads\adwcleaner_6.020 (1).exe:BDU [0]
AlternateDataStreams: C:\Users\Dominik\Downloads\adwcleaner_6.020.exe:BDU [0]
AlternateDataStreams: C:\Users\Dominik\Downloads\adwcleaner_6.043 (1).exe:BDU [0]
AlternateDataStreams: C:\Users\Dominik\Downloads\adwcleaner_6.043.exe:BDU [0]
AlternateDataStreams: C:\Users\Dominik\Downloads\ChromeSetup.exe:BDU [0]
AlternateDataStreams: C:\Users\Dominik\Downloads\cpu-z_1.78-en.exe:BDU [0]
AlternateDataStreams: C:\Users\Dominik\Downloads\DarthMod_Empire_v8.0.1_Patch_Platinum_Final.exe:BDU [0]
AlternateDataStreams: C:\Users\Dominik\Downloads\DarthMod_Empire_v8.0_Platinum.exe:BDU [0]
AlternateDataStreams: C:\Users\Dominik\Downloads\FirestormLauncherSetup.exe:BDU [0]
AlternateDataStreams: C:\Users\Dominik\Downloads\FRST64.exe:BDU [0]
AlternateDataStreams: C:\Users\Dominik\Downloads\GeForce_Experience_v3.1.0.52.exe:BDU [0]
AlternateDataStreams: C:\Users\Dominik\Downloads\GSM_Fields_of_Honor_XII_Installer_09.10.16.exe:BDU [0]
AlternateDataStreams: C:\Users\Dominik\Downloads\Hearthstone-Setup.exe:BDU [0]
AlternateDataStreams: C:\Users\Dominik\Downloads\official_patch_soc-win-10005_10006.exe:BDU [0]
AlternateDataStreams: C:\Users\Dominik\Downloads\PowerISO6.exe:BDU [0]
AlternateDataStreams: C:\Users\Dominik\Downloads\stk-cz-10005.exe:BDU [0]
AlternateDataStreams: C:\Users\Dominik\Downloads\stk-multi-patch.exe:BDU [0]
AlternateDataStreams: C:\Users\Dominik\Downloads\stk-ww-0-3.exe:BDU [0]
AlternateDataStreams: C:\Users\Dominik\Downloads\T-Cleaner.exe:BDU [0]
AlternateDataStreams: C:\Users\Dominik\Downloads\TopStyle50 (1).exe:BDU [0]
AlternateDataStreams: C:\Users\Dominik\Downloads\UplayInstaller.exe:BDU [0]
AlternateDataStreams: C:\Users\Dominik\Downloads\uTorrent221.exe:BDU [0]

END
*****************

Restore point was successfully created.
Processes closed successfully.
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer => key removed successfully
HKU\S-1-5-21-707951698-1732677806-592134114-1000\SOFTWARE\Policies\Microsoft\Internet Explorer => key removed successfully
HKLM\System\CurrentControlSet\Services\NVIDIA Wireless Controller Service => key removed successfully
NVIDIA Wireless Controller Service => service removed successfully
HKLM\System\CurrentControlSet\Services\MSICDSetup => key removed successfully
MSICDSetup => service removed successfully
HKLM\System\CurrentControlSet\Services\NTIOLib_1_0_C => key removed successfully
NTIOLib_1_0_C => service removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{2F57269B-1E09-4E2D-AB1E-B0FDAC7D279C} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2F57269B-1E09-4E2D-AB1E-B0FDAC7D279C} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\WindowsBackup\ConfigNotification => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{6FC1BACF-A30A-4CFC-B83D-D28B17DAF946} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6FC1BACF-A30A-4CFC-B83D-D28B17DAF946} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Windows Activation Technologies\ValidationTask => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{75E5A425-49B2-44D2-848F-2B29C671922A} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{75E5A425-49B2-44D2-848F-2B29C671922A} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Windows Activation Technologies\ValidationTaskDeadline => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{AC4E5ACF-89F7-4220-BA21-81EE183975E2} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{AC4E5ACF-89F7-4220-BA21-81EE183975E2} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Application Experience\AitAgent => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{CEE64558-E1A7-4D9D-80A7-2001912BE5B5} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CEE64558-E1A7-4D9D-80A7-2001912BE5B5} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\MemoryDiagnostic\CorruptionDetector => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{FA2BC0A6-8D4B-458A-85C8-2B8C72487513} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FA2BC0A6-8D4B-458A-85C8-2B8C72487513} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\MemoryDiagnostic\DecompressionFailureDetector => key removed successfully
C:\ProgramData\.rdata => ":X" ADS removed successfully.
C:\Users\Dominik\Desktop\FRST64(1).exe => ":BDU" ADS removed successfully.
C:\Users\Dominik\Downloads\378.66-desktop-win8-win7-64bit-international-whql.exe => ":BDU" ADS removed successfully.
C:\Users\Dominik\Downloads\adwcleaner_5.112 (1).exe => ":BDU" ADS removed successfully.
C:\Users\Dominik\Downloads\adwcleaner_5.201.exe => ":BDU" ADS removed successfully.
C:\Users\Dominik\Downloads\adwcleaner_6.020 (1).exe => ":BDU" ADS removed successfully.
C:\Users\Dominik\Downloads\adwcleaner_6.020.exe => ":BDU" ADS removed successfully.
C:\Users\Dominik\Downloads\adwcleaner_6.043 (1).exe => ":BDU" ADS removed successfully.
C:\Users\Dominik\Downloads\adwcleaner_6.043.exe => ":BDU" ADS removed successfully.
C:\Users\Dominik\Downloads\ChromeSetup.exe => ":BDU" ADS removed successfully.
C:\Users\Dominik\Downloads\cpu-z_1.78-en.exe => ":BDU" ADS removed successfully.
C:\Users\Dominik\Downloads\DarthMod_Empire_v8.0.1_Patch_Platinum_Final.exe => ":BDU" ADS removed successfully.
C:\Users\Dominik\Downloads\DarthMod_Empire_v8.0_Platinum.exe => ":BDU" ADS removed successfully.
C:\Users\Dominik\Downloads\FirestormLauncherSetup.exe => ":BDU" ADS removed successfully.
C:\Users\Dominik\Downloads\FRST64.exe => ":BDU" ADS removed successfully.
C:\Users\Dominik\Downloads\GeForce_Experience_v3.1.0.52.exe => ":BDU" ADS removed successfully.
C:\Users\Dominik\Downloads\GSM_Fields_of_Honor_XII_Installer_09.10.16.exe => ":BDU" ADS removed successfully.
C:\Users\Dominik\Downloads\Hearthstone-Setup.exe => ":BDU" ADS removed successfully.
C:\Users\Dominik\Downloads\official_patch_soc-win-10005_10006.exe => ":BDU" ADS removed successfully.
C:\Users\Dominik\Downloads\PowerISO6.exe => ":BDU" ADS removed successfully.
C:\Users\Dominik\Downloads\stk-cz-10005.exe => ":BDU" ADS removed successfully.
C:\Users\Dominik\Downloads\stk-multi-patch.exe => ":BDU" ADS removed successfully.
C:\Users\Dominik\Downloads\stk-ww-0-3.exe => ":BDU" ADS removed successfully.
C:\Users\Dominik\Downloads\T-Cleaner.exe => ":BDU" ADS removed successfully.
C:\Users\Dominik\Downloads\TopStyle50 (1).exe => ":BDU" ADS removed successfully.
C:\Users\Dominik\Downloads\UplayInstaller.exe => ":BDU" ADS removed successfully.
C:\Users\Dominik\Downloads\uTorrent221.exe => ":BDU" ADS removed successfully.

=========== EmptyTemp: ==========

BITS transfer queue => 12582912 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 58710411 B
Java, Flash, Steam htmlcache => 487929209 B
Windows/system/drivers => 3988988 B
Edge => 0 B
Chrome => 886442845 B
Firefox => 375941606 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 128 B
systemprofile32 => 0 B
LocalService => 0 B
NetworkService => 0 B
Dominik => 356343769 B
UpdatusUser => 0 B

RecycleBin => 26663892759 B
EmptyTemp: => 26.9 GB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 14:23:48 ====

[sorcer]

Nyni prosím proveďte Sken a vložte log z programu MBAM.

Návod zde: http://forum.viry.cz/viewtopic.php?f=29&t=144868

[predatorx21]

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 9.3.2017
Scan Time: 16:41
Logfile: mmmmmm.txt
Administrator: Yes

Version: 2.2.1.1043
Malware Database: v2017.03.09.04
Rootkit Database: v2017.02.27.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled

OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: Dominik

Scan Type: Custom Scan
Result: Completed
Objects Scanned: 1143451
Time Elapsed: 2 hr, 57 min, 50 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 0
(No malicious items detected)

Registry Values: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Folders: 0
(No malicious items detected)

Files: 0
(No malicious items detected)

Physical Sectors: 0
(No malicious items detected)


(end)

[sorcer]

Pc je nyni ciste. Mate nejake dalsi potize?

[predatorx21]

Děkuji za pomoc ale mám ještě jeden problém a to že se mi dlouho načítají stránky prohlížeče a třeba fcb je občas dost zasekaný.(Chrom.)

[sorcer]

Toto se děje i skrze jiný webový prohlížeč (Internet Explorer/Firefox/Opera atp.) ?
Pouze v případě tohoto pc?
Nebo i u jiných zařízení (tablet, mobilní telefon apod.) ?
Pc máte připojeno bezdrátově (wifi/wlan) nebo drátově (kabel přímo do pc)