VIRY.CZ

Dobrý den,rád bych poprosil o kontrolu,děkuji.

can result of Farbar Recovery Scan Tool (FRST) (x64) Version: 04-11-2016
Ran by Dominik (administrator) on DOMINIK-PC (07-11-2016 08:39:20)
Running from C:\Users\Dominik\Desktop
Loaded Profiles: Dominik (Available Profiles: Dominik)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Bitdefender) C:\Program Files\Bitdefender\Antivirus Free Edition\gzserv.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvscpapisvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(Bitdefender) C:\Program Files\Bitdefender\Antivirus Free Edition\gziface.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Power Software Ltd) C:\Program Files (x86)\PowerISO\PWRISOVM.EXE
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registry (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [6548112 2012-06-12] (Realtek Semiconductor)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2397120 2016-06-14] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\nvspcap64.dll [1767944 2016-06-14] (NVIDIA Corporation)
HKLM-x32\...\Run: [PWRISOVM.EXE] => C:\Program Files (x86)\PowerISO\PWRISOVM.EXE [337432 2013-10-23] (Power Software Ltd)
HKU\S-1-5-21-707951698-1732677806-592134114-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8455960 2015-08-20] (Piriform Ltd)
HKU\S-1-5-21-707951698-1732677806-592134114-1000\...\MountPoints2: I - I:\setup.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{0AA83DC0-B66F-43FD-9DAD-56EA86565672}: [DhcpNameServer] 192.168.0.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-707951698-1732677806-592134114-1000\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKU\S-1-5-21-707951698-1732677806-592134114-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\ssv.dll [2016-03-12] (Oracle Corporation)
BHO-x32: Pomocná služba pro přihlášení k účtu Microsoft -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\jp2ssv.dll [2016-03-12] (Oracle Corporation)

FireFox:
========
FF DefaultProfile: k63582xc.default
FF ProfilePath: C:\Users\Dominik\AppData\Roaming\Mozilla\Firefox\Profiles\k63582xc.default [2016-11-06]
FF NewTab: Mozilla\Firefox\Profiles\k63582xc.default -> about:newtab
FF Homepage: Mozilla\Firefox\Profiles\k63582xc.default -> about:home
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_21_0_0_242.dll [2016-05-12] ()
FF Plugin: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelogx64.dll [2015-04-30] (EA Digital Illusions CE AB)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_242.dll [2016-05-12] ()
FF Plugin-x32: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelog.dll [2015-04-30] (EA Digital Illusions CE AB)
FF Plugin-x32: @java.com/DTPlugin,version=11.73.2 -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\dtplugin\npDeployJava1.dll [2016-03-12] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.73.2 -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\plugin2\npjp2.dll [2016-03-12] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-08-25] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-08-25] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-28] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-28] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-10-01] (Adobe Systems Inc.)

Chrome:
=======
CHR Profile: C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default [2016-11-07]
CHR Extension: (Prezentace Google) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-07-16]
CHR Extension: (Dokumenty Google) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-07-16]
CHR Extension: (Disk Google) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-07-16]
CHR Extension: (YouTube) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-07-16]
CHR Extension: (Tabulky Google) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-07-16]
CHR Extension: (Dokumenty Google offline) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-07-16]
CHR Extension: (AdBlock) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-10-21]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-07-16]
CHR Extension: (Gmail) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-07-16]
CHR Extension: (Chrome Media Router) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-10-26]

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1163712 2016-06-14] (NVIDIA Corporation)
R2 gzserv; C:\Program Files\Bitdefender\Antivirus Free Edition\gzserv.exe [79552 2016-03-02] (Bitdefender)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1879488 2016-06-14] (NVIDIA Corporation)
R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [3632576 2016-06-14] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2521024 2016-06-14] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2142728 2016-10-14] (Electronic Arts)
S2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [2209296 2016-10-14] (Electronic Arts)
R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76152 2016-04-02] ()
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76152 2016-10-14] ()
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5702416 2015-09-11] (TeamViewer GmbH)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 avc3; C:\Windows\System32\DRIVERS\avc3.sys [718840 2016-08-12] (BitDefender)
U5 avchv; C:\Windows\System32\Drivers\avchv.sys [261056 2012-11-02] (BitDefender)
R3 avckf; C:\Windows\System32\DRIVERS\avckf.sys [593144 2013-04-17] (BitDefender)
R1 bdfwfpf; C:\Program Files\Bitdefender\Antivirus Free Edition\bdfwfpf.sys [121928 2013-07-02] (Bitdefender SRL)
S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
R1 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [148696 2013-04-22] (BitDefender LLC)
S3 MarvinBus; C:\Windows\System32\DRIVERS\MarvinBus64.sys [261120 2005-09-23] (Pinnacle Systems GmbH) [File not signed]
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [26560 2016-06-14] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [56384 2016-04-14] (NVIDIA Corporation)
R0 trufos; C:\Windows\System32\DRIVERS\trufos.sys [382536 2013-05-28] (BitDefender S.R.L.)
S3 MSICDSetup; \??\D:\CDriver64.sys [X]
S3 NTIOLib_1_0_C; \??\D:\NTIOLib_X64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-11-07 08:39 - 2016-11-07 08:39 - 00000000 ____D C:\Users\Dominik\Desktop\FRST-OlderVersion
2016-11-06 17:16 - 2016-11-06 17:16 - 00000000 ____D C:\Users\Dominik\Downloads\Call of Duty Modern Warfare Remastered
2016-11-05 10:55 - 2016-11-06 17:11 - 00000000 ____D C:\Users\Dominik\Downloads\Call.of.Duty.Infinite.Warfare-RELOADED
2016-11-05 10:52 - 2016-11-05 10:52 - 00646215 _____ C:\Users\Dominik\Downloads\Call-of-Duty---Infinite-Warfare-(2016)-SKTORRENT.EU.torrent
2016-11-01 19:10 - 2016-11-01 22:57 - 2175872441 _____ C:\Users\Dominik\Downloads\The.Conjuring.2.2016.1080p.BluRay.DD5.1.x264-VietHD.mkv
2016-11-01 19:09 - 2016-11-01 19:09 - 00072320 _____ C:\Users\Dominik\Downloads\[CzT]V_zajeti_demonu_2_The_Conjuring_2_2016_1080pHD_.torrent
2016-11-01 18:23 - 2016-11-01 18:23 - 00353629 _____ C:\Users\Dominik\Downloads\Jak-správně-prezentovat2.pdf
2016-11-01 17:04 - 2016-11-01 17:05 - 00073745 _____ C:\Users\Dominik\Downloads\[CzT]Pad_Londyna_London_Has_Fallen_2016_CZ_1080pHD_.torrent
2016-10-25 21:15 - 2016-10-25 21:15 - 00012935 _____ C:\Users\Dominik\Downloads\[CzT]Vikings_S04E10_The_Last_Ship_TvRip_720p_.torrent
2016-10-25 19:49 - 2016-10-25 19:49 - 00019604 _____ C:\Users\Dominik\Downloads\[CzT]Vikings_S04E09_Death_All_Round_TvRip_720p_.torrent
2016-10-25 16:54 - 2016-10-25 16:54 - 00018169 _____ C:\Users\Dominik\Downloads\[CzT]Vikings_S04E08_Portage_TvRip_720p_.torrent
2016-10-25 15:59 - 2016-10-25 15:59 - 00012789 _____ C:\Users\Dominik\Downloads\[CzT]Vikings_S04E07_The_Profit_and_the_Loss_TvRip_720p_.torrent
2016-10-25 12:48 - 2016-10-25 12:48 - 00017801 _____ C:\Users\Dominik\Downloads\[CzT]Vikings_S04E05_Promised_WebRip_1080p_ (1).torrent
2016-10-25 12:24 - 2016-10-25 12:24 - 00017802 _____ C:\Users\Dominik\Downloads\[CzT]Vikings_S04E05_Promised_WebRip_1080p_.torrent
2016-10-25 12:20 - 2016-10-25 12:20 - 00034193 _____ C:\Users\Dominik\Downloads\[CzT]Vikings_S04E05_Promised_TvRip_720p_.torrent
2016-10-25 12:20 - 2016-10-25 12:20 - 00020328 _____ C:\Users\Dominik\Downloads\[CzT]Vikings_S04E06_What_Might_Have_Been_TvRip_720p_.torrent
2016-10-25 12:04 - 2016-10-25 12:04 - 00017390 _____ C:\Users\Dominik\Downloads\[CzT]Vikings_S04E04_Yol_TVRip_720p_.torrent
2016-10-24 20:11 - 2016-10-24 20:11 - 00018403 _____ C:\Users\Dominik\Downloads\[CzT]Vikings_S04E04_Yol_TVRip_1080p_.torrent
2016-10-24 16:01 - 2016-10-24 16:01 - 00017462 _____ C:\Users\Dominik\Downloads\[CzT]Vikings_S04E03_Mercy_WebRip_1080p_.torrent
2016-10-24 15:33 - 2016-10-24 15:33 - 00020522 _____ C:\Users\Dominik\Downloads\[CzT]Vikings_S04E03_Mercy_TVRip_720p_.torrent
2016-10-24 11:52 - 2016-10-24 11:52 - 00011787 _____ C:\Users\Dominik\Downloads\[CzT]Vikings_S04E02_Kill_the_Queen_WebRip_720p_.torrent
2016-10-24 10:42 - 2016-10-24 10:42 - 00011898 _____ C:\Users\Dominik\Downloads\[CzT]Vikings_S04E01_A_Good_Treaso_TvRip_720p_.torrent
2016-10-24 10:41 - 2016-10-24 10:41 - 00012436 _____ C:\Users\Dominik\Downloads\[CzT]Vikingove_Vikings_4_serie_EN_.torrent
2016-10-23 17:02 - 2016-10-23 17:02 - 03910208 _____ C:\Users\Dominik\Downloads\adwcleaner_6.030.exe
2016-10-22 18:03 - 2016-10-23 08:44 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-10-19 23:03 - 2016-10-19 23:03 - 00013894 _____ C:\Users\Dominik\Downloads\[CzT]Vikings_3_serie_720p_WebRip_.torrent
2016-10-19 22:52 - 2016-10-19 22:52 - 00059410 _____ C:\Users\Dominik\Downloads\[CzT]Thor_Temny_svet_Thor_The_Dark_World_2013_CZ_EN_1080pHD_.torrent
2016-10-18 17:12 - 2016-10-18 17:12 - 00002427 _____ C:\Users\Dominik\Documents\PRMumbleCertificateBackup.p12
2016-10-18 17:12 - 2016-10-18 17:12 - 00000000 ____D C:\Users\Dominik\AppData\Roaming\Project Reality
2016-10-16 15:02 - 2016-11-06 17:28 - 00000000 ____D C:\Users\Dominik\AppData\Roaming\uTorrent
2016-10-16 15:02 - 2016-10-16 15:02 - 02168712 _____ (emc) C:\Users\Dominik\Downloads\uTorrent221.exe
2016-10-16 15:01 - 2016-10-16 15:01 - 00042085 _____ C:\Users\Dominik\Downloads\[CzT]Arma_2_CZ_titulky_dabing_1_05.torrent
2016-10-16 12:29 - 2016-10-16 12:29 - 00007722 _____ C:\Users\Dominik\Downloads\Potvrzení-o-absolvované-exkurzi.odt
2016-10-14 19:02 - 2016-10-14 19:02 - 00000000 ____D C:\Users\Dominik\.QtWebEngineProcess
2016-10-14 19:02 - 2016-10-14 19:02 - 00000000 ____D C:\Users\Dominik\.Origin
2016-10-14 16:38 - 2016-10-14 16:38 - 00000000 ____D C:\Users\Dominik\AppData\Local\Project Reality
2016-10-14 16:37 - 2016-10-14 16:37 - 00000000 ___SH C:\ProgramData\.rdata
2016-10-14 16:35 - 2016-10-14 21:32 - 00000000 ____D C:\Users\Dominik\Documents\ProjectReality
2016-10-14 16:34 - 2016-10-19 11:31 - 00226168 _____ C:\Windows\SysWOW64\PnkBstrB.exe
2016-10-14 16:34 - 2016-10-14 16:34 - 00076152 _____ C:\Windows\SysWOW64\PnkBstrA.exe
2016-10-14 16:32 - 2016-10-14 16:32 - 00001598 _____ C:\Users\Public\Desktop\Project Reality BF2.lnk
2016-10-14 16:32 - 2016-10-14 16:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Project Reality
2016-10-14 16:25 - 2016-10-14 16:25 - 00000000 ____D C:\Program Files (x86)\Project Reality
2016-10-14 13:09 - 2016-10-16 14:42 - 00000000 ____D C:\Users\Dominik\Documents\ArmA 2
2016-10-14 13:09 - 2016-10-14 13:09 - 00000000 ____D C:\Users\Dominik\AppData\Local\ArmA 2
2016-10-14 12:32 - 2016-10-14 12:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bohemia Interactive
2016-10-14 12:25 - 2016-10-14 12:25 - 00000000 ____D C:\Program Files\Bohemia Interactive
2016-10-14 12:15 - 2016-10-14 12:15 - 00036941 _____ C:\Users\Dominik\Downloads\prbf2_1.3.5.0_full.iso (1).torrent
2016-10-13 15:55 - 2016-10-13 16:06 - 19463303 _____ C:\Users\Dominik\Downloads\AC.IV.BF.CRACKONLY.RELOADED.rar
2016-10-10 10:55 - 2016-10-10 13:03 - 245188627 _____ C:\Users\Dominik\Downloads\Warcraft.2016.1080p.CZ.AC3.x264-HdF.mkv
2016-10-09 15:51 - 2016-10-09 15:51 - 00105465 _____ C:\Users\Dominik\Downloads\Mafia.III-CODEX.torrent

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-11-07 08:39 - 2016-09-29 11:45 - 00013063 _____ C:\Users\Dominik\Desktop\FRST.txt
2016-11-07 08:39 - 2016-07-11 10:16 - 02410496 _____ (Farbar) C:\Users\Dominik\Desktop\FRST64.exe
2016-11-07 08:39 - 2015-10-26 17:34 - 00000000 ____D C:\FRST
2016-11-07 07:59 - 2009-07-14 05:45 - 00021872 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-11-07 07:59 - 2009-07-14 05:45 - 00021872 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-11-07 07:53 - 2011-04-12 09:34 - 00668866 _____ C:\Windows\system32\perfh005.dat
2016-11-07 07:53 - 2011-04-12 09:34 - 00141526 _____ C:\Windows\system32\perfc005.dat
2016-11-07 07:53 - 2009-07-14 06:13 - 01584554 _____ C:\Windows\system32\PerfStringBackup.INI
2016-11-07 07:53 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf
2016-11-07 07:46 - 2015-10-29 18:45 - 00000000 ____D C:\ProgramData\NVIDIA
2016-11-07 07:46 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-11-06 23:54 - 2015-09-21 16:27 - 00000000 ____D C:\AdwCleaner
2016-11-06 23:39 - 2016-04-25 14:43 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2016-11-06 22:07 - 2015-09-15 16:05 - 00000000 ____D C:\Users\Dominik\AppData\Local\Google
2016-11-06 13:50 - 2016-08-25 20:53 - 00000000 ____D C:\FRST-OlderVersion
2016-11-06 02:23 - 2016-07-11 11:34 - 00003734 _____ C:\Users\Dominik\Desktop\Nový textový dokument (8).txt
2016-11-05 21:28 - 2015-09-27 12:49 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-11-05 00:59 - 2015-09-19 19:01 - 00000000 ____D C:\Users\Dominik\AppData\Roaming\vlc
2016-11-03 22:37 - 2015-09-19 19:01 - 00000000 ____D C:\Users\Dominik\AppData\Roaming\dvdcss
2016-11-02 15:48 - 2016-08-04 19:40 - 00000000 ____D C:\Users\Dominik\AppData\Local\CrashDumps
2016-10-25 15:41 - 2016-04-22 15:23 - 00002195 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-10-25 15:41 - 2016-04-22 15:23 - 00002183 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-10-23 08:44 - 2015-09-27 21:16 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-10-19 14:32 - 2015-09-25 14:39 - 00000000 ____D C:\Users\Dominik\AppData\Roaming\Origin
2016-10-19 11:31 - 2015-09-25 16:42 - 00214392 _____ C:\Windows\SysWOW64\PnkBstrB.ex0
2016-10-19 11:26 - 2015-09-25 14:37 - 00000000 ____D C:\ProgramData\Origin
2016-10-17 10:56 - 2015-11-13 14:41 - 00000000 ____D C:\Fraps
2016-10-17 06:46 - 2009-07-14 06:08 - 00032566 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2016-10-16 15:02 - 2015-09-18 15:08 - 00000918 _____ C:\Users\Dominik\Desktop\µTorrent.lnk
2016-10-14 19:02 - 2015-09-25 14:37 - 00000000 ____D C:\Program Files (x86)\Origin
2016-10-14 19:02 - 2015-09-15 15:22 - 00000000 ____D C:\Users\Dominik
2016-10-14 18:02 - 2015-09-15 17:28 - 00000000 ____D C:\Nová složka
2016-10-13 14:08 - 2015-09-27 12:50 - 00004476 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task

==================== Files in the root of some directories =======

2016-09-04 21:01 - 2016-09-04 21:07 - 0000000 _____ () C:\Program Files (x86)\ToDownloadBase.db
2016-08-25 20:52 - 2016-09-21 17:29 - 0029696 _____ () C:\Users\Dominik\AppData\Local\MSGBOX.EXE
2016-02-23 17:32 - 2016-02-23 17:32 - 0000913 _____ () C:\Users\Dominik\AppData\Local\recently-used.xbel
2015-10-21 19:28 - 2016-09-28 09:12 - 0007602 _____ () C:\Users\Dominik\AppData\Local\Resmon.ResmonCfg
2016-10-14 16:37 - 2016-10-14 16:37 - 0000000 ___SH () C:\ProgramData\.rdata
2016-08-11 18:14 - 2016-08-11 18:15 - 0101114 _____ () C:\ProgramData\1470935671.bdinstall.bin
2016-08-11 18:18 - 2016-08-11 18:18 - 0198197 _____ () C:\ProgramData\1470935869.bdinstall.bin

Some files in TEMP:
====================
C:\Users\Dominik\AppData\Local\Temp\nvSCPAPI.dll
C:\Users\Dominik\AppData\Local\Temp\nvSCPAPI64.dll
C:\Users\Dominik\AppData\Local\Temp\nvStInst.exe
C:\Users\Dominik\AppData\Local\Temp\sfamcc00001.dll
C:\Users\Dominik\AppData\Local\Temp\sfamcc00002.dll
C:\Users\Dominik\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Dominik\AppData\Local\Temp\ubi90F8.tmp.exe
C:\Users\Dominik\AppData\Local\Temp\ubi9CA5.tmp.exe


==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2016-11-05 12:02

==================== End of FRST.txt ============================

Zdravím, smaž nepotřebné soubory

pomocí CCleaneru

návod :

Čistič - tady vyčistíš PC od nepotřebných souborů a vysypeš Koš

Registry - tady vyčistíš registry (před použitím doporučuji udělat jejich zálohu kterou CCleaner nabízí)

čištění registru je třeba několikrát zopakovat !

Nástroje - tady lze odinstalovat programy, upravit co se spustí po Startu systému a obnovit systém


Stáhni a spusť AdwCleaner,

ukonči všechny programy včetně prohlížeče a dvojklikem jej spusť,

objeví se okno kde vlevo nahoře klikni na Scan.

Po dokončení skenu klikni na Clean,

proběhne restart PC kdy dojde ke smazání nepořádku.

Po té mi sem zkopíruj Report.


Nakonec použij Mbam z mého podpisu a dej mi sem z něj log po smazání nepořádku.

# AdwCleaner v6.030 - Logfile created 08/11/2016 at 23:22:44
# Updated on 19/10/2016 by Malwarebytes
# Database : 2016-11-08.1 [Server]
# Operating System : Windows 7 Home Premium Service Pack 1 (X64)
# Username : Dominik - DOMINIK-PC
# Running from : C:\Users\Dominik\Downloads\adwcleaner_6.030.exe
# Mode: Clean
# Support : hxxps://www.malwarebytes.com/support



***** [ Services ] *****



***** [ Folders ] *****



***** [ Files ] *****



***** [ DLL ] *****



***** [ WMI ] *****



***** [ Shortcuts ] *****



***** [ Scheduled Tasks ] *****



***** [ Registry ] *****



***** [ Web browsers ] *****



*************************

:: "Tracing" keys deleted
:: Winsock settings cleared

*************************

C:\AdwCleaner\AdwCleaner[C10].txt - [779 Bytes] - [08/11/2016 23:22:44]
C:\AdwCleaner\AdwCleaner[C1].txt - [3012 Bytes] - [21/09/2015 22:45:11]
C:\AdwCleaner\AdwCleaner[C2].txt - [2461 Bytes] - [07/10/2015 19:05:11]
C:\AdwCleaner\AdwCleaner[C3].txt - [2192 Bytes] - [07/10/2015 20:33:17]
C:\AdwCleaner\AdwCleaner[C4].txt - [836 Bytes] - [27/10/2015 12:01:12]
C:\AdwCleaner\AdwCleaner[C5].txt - [2017 Bytes] - [26/08/2016 11:22:13]
C:\AdwCleaner\AdwCleaner[C6].txt - [1863 Bytes] - [28/08/2016 10:13:27]
C:\AdwCleaner\AdwCleaner[C7].txt - [2163 Bytes] - [21/09/2016 19:05:28]
C:\AdwCleaner\AdwCleaner[C8].txt - [2776 Bytes] - [04/10/2016 15:18:20]
C:\AdwCleaner\AdwCleaner[C9].txt - [2605 Bytes] - [05/10/2016 17:47:15]
C:\AdwCleaner\AdwCleaner[S10].txt - [2251 Bytes] - [15/09/2016 11:05:43]
C:\AdwCleaner\AdwCleaner[S11].txt - [2331 Bytes] - [21/09/2016 19:05:19]
C:\AdwCleaner\AdwCleaner[S12].txt - [2792 Bytes] - [29/09/2016 11:36:45]
C:\AdwCleaner\AdwCleaner[S13].txt - [2866 Bytes] - [04/10/2016 15:18:01]
C:\AdwCleaner\AdwCleaner[S14].txt - [2699 Bytes] - [05/10/2016 10:37:56]
C:\AdwCleaner\AdwCleaner[S15].txt - [2773 Bytes] - [05/10/2016 17:46:52]
C:\AdwCleaner\AdwCleaner[S16].txt - [2916 Bytes] - [10/10/2016 15:23:38]
C:\AdwCleaner\AdwCleaner[S17].txt - [2990 Bytes] - [10/10/2016 17:02:51]
C:\AdwCleaner\AdwCleaner[S18].txt - [3064 Bytes] - [10/10/2016 23:38:30]
C:\AdwCleaner\AdwCleaner[S19].txt - [3138 Bytes] - [11/10/2016 22:21:15]
C:\AdwCleaner\AdwCleaner[S1].txt - [3544 Bytes] - [21/09/2015 16:27:35]
C:\AdwCleaner\AdwCleaner[S20].txt - [3212 Bytes] - [14/10/2016 12:06:06]
C:\AdwCleaner\AdwCleaner[S21].txt - [3286 Bytes] - [14/10/2016 14:32:53]
C:\AdwCleaner\AdwCleaner[S22].txt - [3374 Bytes] - [23/10/2016 17:04:03]
C:\AdwCleaner\AdwCleaner[S23].txt - [3448 Bytes] - [01/11/2016 21:12:27]
C:\AdwCleaner\AdwCleaner[S24].txt - [3522 Bytes] - [05/11/2016 20:56:37]
C:\AdwCleaner\AdwCleaner[S25].txt - [3596 Bytes] - [06/11/2016 23:54:25]
C:\AdwCleaner\AdwCleaner[S26].txt - [3670 Bytes] - [07/11/2016 22:38:50]
C:\AdwCleaner\AdwCleaner[S27].txt - [3744 Bytes] - [08/11/2016 20:24:18]
C:\AdwCleaner\AdwCleaner[S28].txt - [3818 Bytes] - [08/11/2016 23:22:19]
C:\AdwCleaner\AdwCleaner[S2].txt - [2895 Bytes] - [21/09/2015 22:44:45]
C:\AdwCleaner\AdwCleaner[S3].txt - [2293 Bytes] - [07/10/2015 20:32:51]
C:\AdwCleaner\AdwCleaner[S4].txt - [2126 Bytes] - [27/10/2015 12:00:03]
C:\AdwCleaner\AdwCleaner[S5].txt - [2040 Bytes] - [29/10/2015 19:10:48]
C:\AdwCleaner\AdwCleaner[S6].txt - [1463 Bytes] - [09/07/2016 09:41:51]
C:\AdwCleaner\AdwCleaner[S7].txt - [4587 Bytes] - [26/08/2016 11:15:25]
C:\AdwCleaner\AdwCleaner[S8].txt - [2030 Bytes] - [28/08/2016 10:13:07]
C:\AdwCleaner\AdwCleaner[S9].txt - [2176 Bytes] - [31/08/2016 17:12:51]

########## EOF - C:\AdwCleaner\AdwCleaner[C10].txt - [3571 Bytes] ##########
Ještě sem zapoměl dodat že poslední dobou mám celkem zasekaný prohlížeč - Google Chrome.

Stáhni a ulož na plochu ComboFix,

spusť aplikaci jako Administrátor a povol instalaci Konzole pro zotavení - Recovery Console.

Poté se zobrazí okno s licenčními podmínkami které potvrdíš kliknutím na ANO,

pak ještě jednou klik na ANO a už to jede.

Celá akce trvá okolo 10 minut ale může i déle, během skenu se nepokoušej spouštět nic jiného.

Při skenovaní může být PC i restartováno nelekat se.

Upozornění: po dobu skenu vypni rezidentní štít Antiviru a AntiSpy programu,

protože Combofix se pokouší napadené soubory smazat a tyto programy mu můžou bránit.

Po dokončení skenu nebo následném restartu aplikace vytvoří log, uložený na C:/Combofix.txt

(při opakovaném použití jsou logy číslovány Combofix2.txt atd.), jeho obsah zkopíruj sem.


V případě nejasností je ZDE obrázkový návod.