Prosím o kontrolu, vytížení RAM Vyřešeno

[jaro3]

ComboFix se odinstaluje takto:
Start-Spustit a zadej ComboFix /Uninstall

Vyčisti systém CCleanerem

Stáhni si OTC

na plochu. Poklepej na něj. Potom klikni na Clean up!.
Restartuj PC , pokud Ti bude doporučeno.

Prosím stáhni příslušnou verzi programu pro Tvůj systém 32-bit/64-bit FarbarRecovery Scan Tool (FrSt)
32bit.:
http://www.bleepingcomputer.com/downloa ... ool/dl/81/
64bit.:
http://www.bleepingcomputer.com/downloa ... ool/dl/82/
a ulož jej na plochu. ,pak spusť FrSt.
Potvrď způsob užití.
Neměň žádné z výchozích nastavení a klikni na položku „Scan“ („Skenovat“) .Když je skenování dokončeno, ukážou se dva logy = FRST.txt a Addition.txt a uloží se na ploše.Prosím zkopíruj sem celý jejich obsah.

[Reklama]

[Marťan]

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 17-12-2016
Ran by Martys (administrator) on MARTYS-PC (21-12-2016 19:32:17)
Running from C:\Users\Martys\Desktop
Loaded Profiles: Martys (Available Profiles: Martys)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 9 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgrsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgcsrva.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Samsung) C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AllShareFrameworkManagerDMS.exe
(Samsung) C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AllShareFrameworkDMS.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Samsung Electronics Co.,Ltd) C:\Program Files\Samsung\Samsung Link\Samsung Link Tray Agent.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
() C:\Program Files (x86)\MultiScreen\MultiScreen.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Logitech, Inc.) C:\Program Files\Logitech\SetPoint\SetPoint.exe
(Clarus, Inc.) C:\Program Files (x86)\Samsung Drive Manager\ABRTMon.exe
(Dropbox, Inc.) C:\Users\Martys\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
(Clarus, Inc.) C:\Program Files (x86)\Samsung Drive Manager\Drive Manager.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgui.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
() C:\Program Files\Logitech\SetPoint\x86\SetPoint32.exe
(Logitech, Inc.) C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgwdsvca.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Samsung Electronics Co.,Ltd) C:\Program Files\Samsung\Samsung Link\Samsung Link.exe
(Samsung Electronics Co.,Ltd) C:\Program Files\Samsung\Samsung Link\Samsung Link.exe
(DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe
(Clarus, Inc.) C:\Program Files (x86)\Samsung Drive Manager\SZDrvSvc.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesService64.exe
() C:\Program Files (x86)\Acronis\DiskDirector\OSS\reinstall_svc.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgnsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgemca.exe
(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesApp64.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Disc Soft Ltd) C:\Program Files (x86)\DAEMON Tools Lite\DTShellHlp.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [6548112 2012-06-12] (Realtek Semiconductor)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2531472 2014-12-13] (NVIDIA Corporation)
HKLM\...\Run: [CanonMyPrinter] => C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2184520 2009-03-24] (CANON INC.)
HKLM\...\Run: [CanonSolutionMenu] => C:\Program Files (x86)\Canon\SolutionMenu\CNSLMAIN.exe [767312 2009-03-18] (CANON INC.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [Samsung Link] => C:\Program Files\Samsung\Samsung Link\Samsung Link Tray Agent.exe [608456 2016-03-03] (Samsung Electronics Co.,Ltd)
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [91520 2010-03-13] (Microsoft Corporation)
HKLM-x32\...\Run: [KiesTrayAgent] => C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [311616 2014-04-23] (Samsung Electronics Co., Ltd.)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Clarus Drive Manager] => C:\Program Files (x86)\Samsung Drive Manager\Drive Manager.exe [8135744 2013-12-18] (Clarus, Inc.)
HKLM-x32\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [240400 2016-12-06] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [AVG_UI] => C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [240400 2016-12-06] (AVG Technologies CZ, s.r.o.)
Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.)
HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\...\Run: [ASUSPRP] => C:\Program Files (x86)\ASUS\APRP\APRP.EXE [3330800 2011-11-21] (ASUSTek Computer Inc.)
HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\...\Run: [MultiScreen] => C:\Program Files (x86)\MultiScreen\MultiScreen.exe [303104 2009-08-11] ()
HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\...\Run: [LightScribe Control Panel] => C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2736128 2011-06-20] (Hewlett-Packard Company)
HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3675352 2013-10-28] (Disc Soft Ltd)
HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\...\Run: [Dropbox Update] => C:\Users\Martys\AppData\Local\Dropbox\Update\DropboxUpdate.exe [143144 2016-12-14] (Dropbox, Inc.)
HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9288408 2016-12-06] (Piriform Ltd)
HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\Ribbons.scr [241664 2010-11-20] (Microsoft Corporation)
ShellIconOverlayIdentifiers: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Martys\AppData\Roaming\Dropbox\bin\DropboxExt64.3.0.dll [2016-12-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Martys\AppData\Roaming\Dropbox\bin\DropboxExt64.3.0.dll [2016-12-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Martys\AppData\Roaming\Dropbox\bin\DropboxExt64.3.0.dll [2016-12-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Martys\AppData\Roaming\Dropbox\bin\DropboxExt64.3.0.dll [2016-12-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Martys\AppData\Roaming\Dropbox\bin\DropboxExt64.3.0.dll [2016-12-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Martys\AppData\Roaming\Dropbox\bin\DropboxExt64.3.0.dll [2016-12-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Martys\AppData\Roaming\Dropbox\bin\DropboxExt64.3.0.dll [2016-12-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Martys\AppData\Roaming\Dropbox\bin\DropboxExt64.3.0.dll [2016-12-12] (Dropbox, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\GIGABYTE OC_GURU.lnk [2015-03-15]
ShortcutTarget: GIGABYTE OC_GURU.lnk -> C:\Program Files (x86)\GIGABYTE\GIGABYTE OC_GURU II\OC_GURU.exe (GIGABYTE Technology Co.,Ltd.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Logitech SetPoint.lnk [2014-03-08]
ShortcutTarget: Logitech SetPoint.lnk -> C:\Program Files\Logitech\SetPoint\SetPoint.exe (Logitech, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Samsung Drive Manager Real-Time.lnk [2015-02-03]
ShortcutTarget: Samsung Drive Manager Real-Time.lnk -> C:\Program Files (x86)\Samsung Drive Manager\ABRTMon.exe (Clarus, Inc.)
Startup: C:\Users\Martys\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk [2016-12-16]
ShortcutTarget: Dropbox.lnk -> C:\Users\Martys\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
BootExecute: autocheck autochk * sdnclean64.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 213.155.229.197 213.155.255.12
Tcpip\..\Interfaces\{7807FB52-31AD-4D76-B787-FC6CE19C599D}: [DhcpNameServer] 213.155.229.197 213.155.255.12

Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dl ... r=iesearch
SearchScopes: HKU\S-1-5-21-2131128835-2277457285-3308782453-1000 -> DefaultScope {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-2131128835-2277457285-3308782453-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation)
BHO: Skype add-on for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2013-11-20] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)
BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2012-06-14] (CANON INC.)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-05-07] (Oracle Corporation)
BHO-x32: Skype Browser Helper -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2013-11-20] (Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-05-07] (Oracle Corporation)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2012-06-14] (CANON INC.)
Toolbar: HKU\S-1-5-21-2131128835-2277457285-3308782453-1000 -> No Name - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - No File
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2013-11-20] (Microsoft Corporation)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2013-11-20] (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)

FireFox:
========
FF ProfilePath: C:\Users\Martys\AppData\Roaming\Mozilla\Firefox\Profiles\qbvf5u47.default [2016-12-21]
FF Extension: (Battlefield Play4Free) - C:\Users\Martys\AppData\Roaming\Mozilla\Firefox\Profiles\qbvf5u47.default\Extensions\battlefieldplay4free@ea.com [2014-04-20] [not signed]
FF Extension: (Personas Plus) - C:\Users\Martys\AppData\Roaming\Mozilla\Firefox\Profiles\qbvf5u47.default\Extensions\personas@christopher.beard.xpi [2016-12-14]
FF Extension: (Firesizer) - C:\Users\Martys\AppData\Roaming\Mozilla\Firefox\Profiles\qbvf5u47.default\Extensions\{04426594-bce6-4705-b811-bcdba2fd9c7b}.xpi [2016-05-16]
FF Extension: (Forecastfox) - C:\Users\Martys\AppData\Roaming\Mozilla\Firefox\Profiles\qbvf5u47.default\Extensions\{0538E3E3-7E9B-4d49-8831-A227C80A7AD3} [2016-05-16]
FF Extension: (Flagfox) - C:\Users\Martys\AppData\Roaming\Mozilla\Firefox\Profiles\qbvf5u47.default\Extensions\{1018e4d6-728f-4b20-ad56-37578a4de76b}.xpi [2016-12-14]
FF Extension: (DownloadHelper) - C:\Users\Martys\AppData\Roaming\Mozilla\Firefox\Profiles\qbvf5u47.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [2015-06-06]
FF Extension: (Adblock Plus) - C:\Users\Martys\AppData\Roaming\Mozilla\Firefox\Profiles\qbvf5u47.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-11-26]
FF Extension: (No Name) - C:\Users\Martys\AppData\Roaming\Mozilla\Firefox\Profiles\qbvf5u47.default\extensions\default_newtabff@gmail.com [not found]
FF Extension: (No Name) - C:\Users\Martys\AppData\Roaming\Mozilla\Firefox\Profiles\qbvf5u47.default\extensions\avg@toolbar.xpi [not found]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_24_0_0_186.dll [2016-12-14] ()
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll [2014-02-13] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_24_0_0_186.dll [2016-12-14] ()
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL [2009-03-27] (CANON INC.)
FF Plugin-x32: @java.com/DTPlugin,version=10.60.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll [2014-05-07] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.60.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll [2014-05-07] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll [2014-02-13] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @Nero.com/KM -> C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL [2013-08-20] (Nero AG)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2014-12-13] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2014-12-13] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-17] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-17] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VLC\npvlc.dll [2014-02-05] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2012-09-23] (Adobe Systems Inc.)

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Martys\AppData\Local\Google\Chrome\User Data\Default [2016-12-21]
CHR Extension: (Prezentace Google) - C:\Users\Martys\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-12-18]
CHR Extension: (Dokumenty Google) - C:\Users\Martys\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-12-18]
CHR Extension: (Disk Google) - C:\Users\Martys\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-12-18]
CHR Extension: (YouTube) - C:\Users\Martys\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-12-18]
CHR Extension: (Tabulky Google) - C:\Users\Martys\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-12-18]
CHR Extension: (Dokumenty Google offline) - C:\Users\Martys\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-12-18]
CHR Extension: (Forza 6 Tribute New Tab Gallery) - C:\Users\Martys\AppData\Local\Google\Chrome\User Data\Default\Extensions\lkbjbkkflbahkadecofjicepefaccanf [2016-12-20]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Martys\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-12-18]
CHR Extension: (Gmail) - C:\Users\Martys\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-12-18]
CHR Extension: (Chrome Media Router) - C:\Users\Martys\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-12-18]

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AllShare Framework DMS; C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AllShareFrameworkManagerDMS.exe [404360 2013-12-21] (Samsung) [File not signed]
S3 AvgAMPS; C:\Program Files (x86)\AVG\Av\avgamps.exe [647864 2016-11-02] (AVG Technologies CZ, s.r.o.)
S2 AVGIDSAgent; C:\Program Files (x86)\AVG\Av\avgidsagenta.exe [5337696 2016-11-02] (AVG Technologies CZ, s.r.o.)
R2 avgsvc; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [1146128 2016-12-06] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files (x86)\AVG\Av\avgwdsvca.exe [727512 2016-11-02] (AVG Technologies CZ, s.r.o.)
S4 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1363616 2014-01-03] (Microsoft Corporation)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1148560 2014-12-13] (NVIDIA Corporation)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [69632 2005-11-14] (Macrovision Corporation) [File not signed]
S4 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [116104 2009-02-10] ()
S4 LightScribeService; C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [73728 2011-06-20] (Hewlett-Packard Company) [File not signed]
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [4317648 2016-11-29] (Malwarebytes)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1701520 2014-12-13] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [19823248 2014-12-13] (NVIDIA Corporation)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [75136 2014-05-29] ()
R2 Samsung Link Service; C:\Program Files\Samsung\Samsung Link\Samsung Link.exe [617160 2016-03-03] (Samsung Electronics Co.,Ltd)
R2 Správce výběru OS; C:\Program Files (x86)\Acronis\DiskDirector\OSS\reinstall_svc.exe [2156952 2010-07-07] ()
R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2014-10-13] (DEVGURU Co., LTD.)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
R2 SZDrvSvc; C:\Program Files (x86)\Samsung Drive Manager\SZDrvSvc.exe [18432 2013-12-18] (Clarus, Inc.) [File not signed]
R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesService64.exe [2072896 2011-10-20] (TuneUp Software)
S3 TunngleService; C:\Program Files (x86)\Tunngle\TnglCtrl.exe [792016 2015-02-09] (Tunngle.net GmbH) [File not signed]
S4 UleadBurningHelper; C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe [49152 2006-09-28] (Ulead Systems, Inc.) [File not signed]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-14] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
R1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [163072 2016-05-13] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [312576 2016-10-17] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [267008 2016-10-05] (AVG Technologies CZ, s.r.o.)
R1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [267520 2016-10-19] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [360736 2016-02-16] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [254208 2016-09-26] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [52992 2016-06-01] (AVG Technologies CZ, s.r.o.)
R1 Avgtdia; C:\Windows\System32\DRIVERS\avgtdia.sys [299264 2016-07-27] (AVG Technologies CZ, s.r.o.)
R0 avguniva; C:\Windows\System32\DRIVERS\avguniva.sys [77056 2016-06-20] (AVG Technologies CZ, s.r.o.)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2014-03-07] (Disc Soft Ltd)
S3 GPCIDrv; C:\Program Files (x86)\GIGABYTE\GIGABYTE OC_GURU II\GPCIDrv64.sys [14376 2010-02-04] ()
R1 HWiNFO32; C:\Windows\system32\drivers\HWiNFO64A.SYS [31648 2014-03-22] (REALiX(tm))
R3 mdf16; C:\Program Files (x86)\Samsung Drive Manager\mdf16.sys [20400 2012-06-21] ()
R3 mvd23; C:\Program Files (x86)\Samsung Drive Manager\mvd23.sys [99248 2012-06-21] ()
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2014-12-13] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [38032 2014-11-22] (NVIDIA Corporation)
R3 subvgaproduct64; C:\Windows\System32\DRIVERS\subvga64.sys [5120 2014-12-29] (Windows (R) Win 7 DDK provider)
R3 tap0901t; C:\Windows\System32\DRIVERS\tap0901t.sys [31232 2009-09-16] (Tunngle.net)
R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesDriver64.sys [11856 2011-10-20] (TuneUp Software)
S3 cpuz130; \??\C:\Users\Martys\AppData\Local\Temp\cpuz130\cpuz_x64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-12-21 19:32 - 2016-12-21 19:33 - 00025823 _____ C:\Users\Martys\Desktop\FRST.txt
2016-12-21 19:32 - 2016-12-21 19:32 - 00000000 ____D C:\FRST
2016-12-21 19:31 - 2016-12-21 19:31 - 02420224 _____ (Farbar) C:\Users\Martys\Desktop\FRST64.exe
2016-12-21 19:16 - 2016-12-21 19:16 - 00040710 _____ C:\Users\Martys\Desktop\cc_20161221_191619.reg
2016-12-21 19:16 - 2016-12-21 19:16 - 00018170 _____ C:\Users\Martys\Desktop\cc_20161221_191639.reg
2016-12-21 19:15 - 2016-12-21 19:15 - 00000822 _____ C:\Users\Public\Desktop\CCleaner.lnk
2016-12-21 19:15 - 2016-12-21 19:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2016-12-21 19:13 - 2016-12-21 19:14 - 08803648 _____ (Piriform Ltd) C:\Users\Martys\Downloads\ccsetup525.exe
2016-12-21 03:11 - 2016-12-21 03:11 - 04095511 _____ C:\Users\Martys\Downloads\V_-_Bangkok_Massage.wmv
2016-12-21 03:10 - 2016-12-21 03:10 - 03925803 _____ C:\Users\Martys\Downloads\Agata.wmv
2016-12-21 01:09 - 2016-12-21 01:09 - 01472937 _____ C:\Users\Martys\Downloads\20656928_cc082f0b7b6ed5b7d83f61fd19f102f115de30da (1).cab
2016-12-21 01:08 - 2016-12-21 01:08 - 01570899 _____ C:\Users\Martys\Downloads\20656929_ce9bb23845f18c7ed66d07d417969c567a61d223 (1).cab
2016-12-21 01:08 - 2016-12-21 01:08 - 01472937 _____ C:\Users\Martys\Downloads\20656928_cc082f0b7b6ed5b7d83f61fd19f102f115de30da.cab
2016-12-21 01:03 - 2016-12-21 01:03 - 01570899 _____ C:\Users\Martys\Downloads\20656929_ce9bb23845f18c7ed66d07d417969c567a61d223.cab
2016-12-21 00:04 - 2016-12-21 00:04 - 00000512 _____ C:\Users\Martys\Desktop\MBR.dat
2016-12-20 05:35 - 2010-07-28 00:52 - 00000990 _____ C:\Users\Martys\Desktop\youtube (2).txt
2016-12-20 04:34 - 2016-12-20 04:56 - 940408648 _____ C:\Users\Martys\Downloads\Revenant Zmrtvychvstani 2015 (CZ DAB) DVDrip.avi
2016-12-20 04:32 - 2016-12-20 05:18 - 2307481407 _____ C:\Users\Martys\Downloads\The Prodigy - Live at Rock am Ring.mkv
2016-12-20 04:32 - 2016-12-20 05:18 - 2147483647 _____ C:\Users\Martys\Downloads\DJ. Tiesto - Full Discography.rar
2016-12-20 04:17 - 2016-12-20 04:43 - 1013697172 _____ C:\Users\Martys\Downloads\Dvojí obvinění =1999-DVD-CZ.avi
2016-12-20 04:16 - 2016-12-20 04:54 - 1478689366 _____ C:\Users\Martys\Downloads\Parfém - Příběh vraha CZ.avi
2016-12-20 04:16 - 2016-12-20 04:32 - 732303976 _____ C:\Users\Martys\Downloads\Navzdy Mlada (Lovestruck The Musical) 2013 SUPER KVALITA (SVK DAB).avi
2016-12-20 04:15 - 2016-12-20 04:41 - 1042691106 _____ C:\Users\Martys\Downloads\Vrah přes inzerát =2011-TV-CZ.avi
2016-12-20 04:15 - 2016-12-20 04:26 - 537702400 _____ C:\Users\Martys\Downloads\bratrstvo-ticha.akawahad.cz by zld.avi
2016-12-20 04:14 - 2016-12-20 04:44 - 1127719982 _____ C:\Users\Martys\Downloads\Cizinec v nás =2013-DVD-CZ.avi
2016-12-20 01:32 - 2016-12-21 19:12 - 00000000 ____D C:\Windows\erdnt
2016-12-20 01:29 - 2016-12-20 01:29 - 00000000 ____D C:\Users\Martys\Desktop\backups
2016-12-20 01:16 - 2016-12-20 01:16 - 00004102 _____ C:\Users\Martys\Desktop\rk_F882.tmp.txt
2016-12-18 22:29 - 2016-12-18 22:11 - 00024064 _____ C:\Windows\zoek-delete.exe
2016-12-18 22:11 - 2016-12-18 22:27 - 00000000 ____D C:\zoek_backup
2016-12-18 11:20 - 2016-12-20 00:24 - 00028272 _____ C:\Windows\system32\Drivers\TrueSight.sys
2016-12-18 11:20 - 2016-12-18 22:06 - 00000000 ____D C:\ProgramData\RogueKiller
2016-12-18 11:18 - 2016-12-18 11:18 - 25553992 _____ C:\Users\Martys\Desktop\RogueKillerX64.exe
2016-12-16 09:21 - 2016-12-16 09:21 - 00000000 ____D C:\ProgramData\Sophos
2016-12-16 09:21 - 2016-12-16 09:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sophos
2016-12-16 09:21 - 2016-12-16 09:21 - 00000000 ____D C:\Program Files (x86)\Sophos
2016-12-16 09:18 - 2016-12-16 09:19 - 158300208 _____ (Sophos Limited) C:\Users\Martys\Downloads\Sophos Virus Removal Tool.exe
2016-12-16 08:44 - 2016-12-16 08:44 - 00000000 ____D C:\Users\Martys\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2016-12-15 18:29 - 2016-12-15 18:29 - 00176064 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMChameleon.sys
2016-12-15 18:29 - 2016-12-15 18:29 - 00102856 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys
2016-12-15 18:29 - 2016-12-15 18:29 - 00081696 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
2016-12-15 18:28 - 2016-12-18 22:35 - 00250816 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2016-12-15 18:28 - 2016-12-15 18:28 - 00043968 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2016-12-15 18:28 - 2016-12-15 18:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2016-12-15 18:28 - 2016-12-15 18:28 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-12-15 18:28 - 2016-12-15 18:28 - 00000000 ____D C:\Program Files\Malwarebytes
2016-12-15 18:28 - 2016-11-29 06:27 - 00077408 _____ C:\Windows\system32\Drivers\mbae64.sys
2016-12-15 18:05 - 2016-12-16 08:38 - 00000000 ____D C:\AdwCleaner
2016-12-15 17:37 - 2016-12-15 17:37 - 51969976 _____ (Malwarebytes ) C:\Users\Martys\Downloads\mb3-setup-consumer-3.0.4.1269.exe
2016-12-15 17:07 - 2016-12-20 23:49 - 00000000 ____D C:\Users\Martys\AppData\Local\Apps\2.0
2016-12-15 17:07 - 2016-12-20 05:18 - 00000000 ____D C:\Users\Martys\AppData\Local\Adobe
2016-12-15 17:04 - 2016-12-15 17:04 - 00448512 _____ (OldTimer Tools) C:\Users\Martys\Downloads\TFC.exe
2016-12-15 16:59 - 2016-12-15 17:00 - 00050688 _____ (Atribune.org) C:\Users\Martys\Downloads\ATF-Cleaner.exe
2016-12-15 10:19 - 2016-12-15 10:19 - 00000000 ____D C:\Users\Martys\AppData\Local\Chromium
2016-12-15 10:00 - 2016-12-15 10:09 - 2484559255 _____ C:\Users\Martys\Downloads\Scooter - Live In Hamburg @ O2 World 2012 FULL CONCERT!!!!!!(720p_H.264-AAC).mp4
2016-12-15 09:57 - 2016-12-15 10:00 - 728502047 _____ C:\Users\Martys\Downloads\Osvícení - The Shining (1980) DVDRip + titulky, no pass.zip
2016-12-14 18:33 - 2016-12-14 18:33 - 00388608 _____ (Trend Micro Inc.) C:\Users\Martys\Desktop\HijackThis.exe
2016-12-14 17:24 - 2016-12-15 17:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2016-12-14 17:11 - 2016-12-21 00:04 - 00003600 _____ C:\Windows\System32\Tasks\AVG EUpdate Task

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-12-21 19:31 - 2009-07-14 05:45 - 00014416 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-12-21 19:31 - 2009-07-14 05:45 - 00014416 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-12-21 19:24 - 2015-03-27 18:48 - 00000000 ___RD C:\Users\Martys\Dropbox
2016-12-21 19:21 - 2014-05-03 01:18 - 00000000 ____D C:\ProgramData\NVIDIA
2016-12-21 19:21 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-12-21 19:15 - 2014-08-11 16:37 - 00000000 ____D C:\Program Files (x86)\Steam
2016-12-21 19:15 - 2014-04-05 13:11 - 00000000 ____D C:\Users\Martys\AppData\Roaming\TeamViewer
2016-12-21 19:15 - 2014-03-06 00:09 - 00002774 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2016-12-21 19:15 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf
2016-12-21 19:14 - 2015-06-18 14:10 - 00000922 _____ C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-2131128835-2277457285-3308782453-1000UA.job
2016-12-21 19:14 - 2014-06-06 19:38 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-12-21 19:04 - 2014-03-06 01:09 - 00000000 ____D C:\ProgramData\MFAData
2016-12-21 18:57 - 2014-05-03 01:11 - 00000000 ____D C:\Users\Martys\AppData\Local\Google
2016-12-21 06:32 - 2009-07-14 06:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2016-12-20 23:41 - 2009-07-14 03:34 - 00000215 _____ C:\Windows\system.ini
2016-12-20 10:40 - 2015-11-03 17:34 - 00000000 ____D C:\Users\Martys\AppData\Local\Deployment
2016-12-20 01:21 - 2014-03-08 15:06 - 00000000 ____D C:\Users\Martys\Desktop\Antivir,atd
2016-12-19 23:11 - 2009-07-14 16:18 - 00666406 _____ C:\Windows\system32\perfh005.dat
2016-12-19 23:11 - 2009-07-14 16:18 - 00140102 _____ C:\Windows\system32\perfc005.dat
2016-12-19 23:11 - 2009-07-14 06:13 - 01577410 _____ C:\Windows\system32\PerfStringBackup.INI
2016-12-19 01:39 - 2014-11-18 19:11 - 00000000 ____D C:\Users\Martys\AppData\Local\Avg
2016-12-18 22:26 - 2014-05-03 00:57 - 00000000 ____D C:\Users\Martys
2016-12-18 17:13 - 2015-06-18 14:10 - 00000870 _____ C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-2131128835-2277457285-3308782453-1000Core.job
2016-12-17 06:59 - 2014-05-03 11:18 - 00003384 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2016-12-17 06:59 - 2014-05-03 11:18 - 00003256 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2016-12-16 08:45 - 2015-03-27 18:45 - 00000000 ____D C:\Users\Martys\AppData\Roaming\Dropbox
2016-12-15 16:40 - 2015-11-29 19:14 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2016-12-15 10:19 - 2015-03-28 16:19 - 00000000 ____D C:\Users\Martys\AppData\Local\Steam
2016-12-15 09:28 - 2014-07-27 22:23 - 00000000 ____D C:\Program Files (x86)\Pandora Recovery
2016-12-15 03:00 - 2014-05-03 11:18 - 00002195 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-12-15 03:00 - 2014-05-03 11:18 - 00002183 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-12-14 18:14 - 2014-06-06 19:38 - 00003852 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2016-12-14 18:14 - 2014-05-03 11:12 - 00802904 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-12-14 18:14 - 2014-05-03 11:12 - 00144472 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-12-14 18:08 - 2015-11-29 19:14 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2016-12-14 17:59 - 2014-04-05 11:49 - 00000000 ____D C:\ProgramData\VSO
2016-12-14 17:59 - 2014-03-14 18:00 - 00000000 ____D C:\Users\Martys\AppData\Roaming\Winamp
2016-12-14 17:59 - 2014-03-07 12:43 - 00000000 ____D C:\Users\Martys\AppData\Roaming\Vso
2016-12-14 17:30 - 2016-06-15 14:20 - 00000984 _____ C:\Users\Public\Desktop\AVG.lnk
2016-12-14 17:30 - 2016-06-15 14:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG Zen
2016-12-14 17:09 - 2015-06-18 14:10 - 00003894 _____ C:\Windows\System32\Tasks\DropboxUpdateTaskUserS-1-5-21-2131128835-2277457285-3308782453-1000UA
2016-12-14 17:09 - 2015-06-18 14:10 - 00003498 _____ C:\Windows\System32\Tasks\DropboxUpdateTaskUserS-1-5-21-2131128835-2277457285-3308782453-1000Core
2016-12-14 17:09 - 2015-06-18 14:10 - 00000000 ____D C:\Users\Martys\AppData\Local\Dropbox
2016-12-14 17:06 - 2016-06-15 14:57 - 00000000 ____D C:\Users\Martys\Desktop\Camera

==================== Files in the root of some directories =======

2014-03-07 12:43 - 2014-04-05 11:49 - 0099384 _____ () C:\Users\Martys\AppData\Roaming\inst.exe
2014-03-07 12:43 - 2014-04-05 11:49 - 0007859 _____ () C:\Users\Martys\AppData\Roaming\pcouffin.cat
2014-03-07 12:43 - 2014-04-05 11:49 - 0001167 _____ () C:\Users\Martys\AppData\Roaming\pcouffin.inf
2014-03-07 12:43 - 2014-04-05 11:49 - 0082816 _____ (VSO Software) C:\Users\Martys\AppData\Roaming\pcouffin.sys
2014-03-07 12:44 - 2016-01-31 10:40 - 0000668 _____ () C:\Users\Martys\AppData\Roaming\vso_ts_preview.xml
2014-04-04 22:14 - 2014-04-04 22:14 - 0003584 _____ () C:\Users\Martys\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-06-15 09:58 - 2015-05-30 09:02 - 0149888 _____ () C:\Users\Martys\AppData\Local\MRDownloader.err
2014-05-28 23:28 - 2015-06-19 15:51 - 0001120 _____ () C:\Users\Martys\AppData\Local\MRDownloader.nast
2016-01-08 23:45 - 2016-01-08 23:45 - 0007605 _____ () C:\Users\Martys\AppData\Local\Resmon.ResmonCfg

Files to move or delete:
====================
C:\Users\Martys\derrr.dat


==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2016-06-27 10:40

==================== End of FRST.txt ============================

[Marťan]

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 17-12-2016
Ran by Martys (21-12-2016 19:33:27)
Running from C:\Users\Martys\Desktop
Windows 7 Home Premium Service Pack 1 (X64) (2014-05-02 23:56:17)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2131128835-2277457285-3308782453-500 - Administrator - Disabled)
Guest (S-1-5-21-2131128835-2277457285-3308782453-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2131128835-2277457285-3308782453-1006 - Limited - Enabled)
Martys (S-1-5-21-2131128835-2277457285-3308782453-1000 - Administrator - Enabled) => C:\Users\Martys

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: AVG AntiVirus Free Edition (Enabled - Up to date) {4D41356F-32AD-7C42-C820-63775EE4F413}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: AVG AntiVirus Free Edition (Enabled - Up to date) {F620D48B-1497-73CC-F290-58052563BEAE}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

3DMark03 (HKLM-x32\...\{FF35F637-72B9-43BE-A281-06EB2854393A}) (Version: 3.6.2 - Futuremark Corporation)
3DMark06 (HKLM-x32\...\{7F3AD00A-1819-4B15-BB7D-08B3586336D7}) (Version: 1.2.0 - Futuremark Corporation)
abgx360 v1.0.6 (HKLM-x32\...\abgx360) (Version: - )
Acronis Disk Director Home (HKLM-x32\...\{9CCC78EF-027E-40E0-9B61-39932C65E3FE}) (Version: 11.0.216 - Acronis)
Adobe Flash Player 24 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 24.0.0.186 - Adobe Systems Incorporated)
Adobe Flash Player 24 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 24.0.0.186 - Adobe Systems Incorporated)
Adobe Photoshop CS6 (HKLM-x32\...\{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 - Adobe Systems Incorporated)
Adobe Reader XI - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AB0000000001}) (Version: 11.0.00 - Adobe Systems Incorporated)
Aktualizace NVIDIA 16.18.9 (Version: 16.18.9 - NVIDIA Corporation) Hidden
AllShare Framework DMS (HKLM\...\{83232C27-8C3F-44A5-9EB2-BB7161228ADD}) (Version: 1.3.23 - Samsung)
AMD Catalyst Install Manager (HKLM\...\{AD2B0230-7DFC-E8C6-D1F9-0C946101DF27}) (Version: 3.0.864.0 - Advanced Micro Devices, Inc.)
Amnesia - The Dark Descent (HKLM-x32\...\{54B7A3C7-0940-4C16-A509-FC3C3758D22A}_is1) (Version: 1.0.0 - Frictional Games)
Asmedia ASM104x USB 3.0 Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.16.2.0 - Asmedia Technology)
Assassin's Creed (HKLM-x32\...\{8CFA9151-6404-409A-AF22-4632D04582FD}) (Version: 1.01 - Ubisoft)
ASUS Product Register Program (HKLM-x32\...\{49BE9B8A-E858-4533-A74A-64306C13DB59}) (Version: 1.0.014 - ASUS)
AVG (HKLM\...\AvgZen) (Version: 1.113.2.50020 - AVG Technologies)
AVG (Version: 16.131.7924 - AVG Technologies) Hidden
AVG 2016 (Version: 16.0.4739 - AVG Technologies) Hidden
AVG Protection (HKLM\...\AVG) (Version: 2016.131.7924 - AVG Technologies)
AVG Zen (Version: 1.113.1 - AVG Technologies) Hidden
Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version: 1.3.5.0 - Canon Inc.)
Canon Inkjet Printer/Scanner/Fax Extended Survey Program (HKLM-x32\...\CANONIJPLM100) (Version: - )
Canon MP Navigator EX 3.0 (HKLM-x32\...\MP Navigator EX 3.0) (Version: - )
Canon MP270 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP270_series) (Version: - )
Canon Utilities Easy-PhotoPrint EX (HKLM-x32\...\Easy-PhotoPrint EX) (Version: - )
Canon Utilities My Printer (HKLM-x32\...\CanonMyPrinter) (Version: - )
Canon Utilities Solution Menu (HKLM-x32\...\CanonSolutionMenu) (Version: - )
CCleaner (HKLM\...\CCleaner) (Version: 5.25 - Piriform)
CDDRV_Installer (Version: 4.60 - Logitech) Hidden
CDex - Open Source Digital Audio CD Extractor (HKLM-x32\...\CDex) (Version: 1.70.5.2014 - Georgy Berdyshev)
ConvertXtoDVD 3.0.0.1 (HKLM-x32\...\{76C24F39-B161-498F-BD8B-C64789812D13}_is1) (Version: 3.0.0.1 - )
CPUID CPU-Z 1.68 (HKLM\...\CPUID CPU-Z_is1) (Version: - )
CPUID HWMonitor 1.24 (HKLM\...\CPUID HWMonitor_is1) (Version: - )
CrystalDiskMark 3.0.2f (HKLM\...\CrystalDiskMark_is1) (Version: 3.0.2f - Crystal Dew World)
Čeština do hry South Park: Klacek Pravdy verze 1.0 (HKLM-x32\...\{C1EA3034-6A86-4C18-A91F-SPSOTCZ7E0FE}_is1) (Version: 1.0 - Ubisoft)
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.48.1.0347 - Disc Soft Ltd)
Dazzle Video Capture DVC100 X64 Driver 1.06 (HKLM-x32\...\{BFF23267-1D19-444E-93E2-E5059BE805EA}) (Version: 1.06.0000 - Pinnacle)
Defraggler (HKLM\...\Defraggler) (Version: 2.17 - Piriform)
Dropbox (HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\...\Dropbox) (Version: 16.4.29 - Dropbox, Inc.)
DupDetector 3.302 (HKLM-x32\...\DupDetector_is1) (Version: - Prismatic Software)
erLT (x32 Version: 1.20.0137 - Logitech, Inc.) Hidden
EVEREST Ultimate Edition v5.50 (HKLM-x32\...\EVEREST Ultimate Edition_is1) (Version: 5.50 - Lavalys, Inc.)
EZCast (HKLM-x32\...\{74CECDD9-4B8E-4AE3-9571-8070A17F3C34}) (Version: 1.3.0.6 - Actions-Micro)
FMW 1 (Version: 1.143.3 - AVG Technologies) Hidden
FormatFactory 3.3.1.0 (HKLM-x32\...\FormatFactory) (Version: 3.3.1.0 - Format Factory)
Futuremark SystemInfo (HKLM-x32\...\{BEE64C14-BEF1-4610-8A68-A16EAA47B882}) (Version: 3.21.2.1 - Futuremark Corporation)
GIGABYTE OC_GURU II (HKLM-x32\...\InstallShield_{5588D686-D23B-4C9D-BDFA-2A7875CD3722}) (Version: 1.44.0000 - GIGABYTE Technology Co.,Ltd.)
GIGABYTE OC_GURU II (x32 Version: 1.44.0000 - GIGABYTE Technology Co.,Ltd.) Hidden
Google Chrome (HKLM-x32\...\{E1AA8B0F-1176-36F1-8A91-AA19CF39C2F6}) (Version: 55.0.2883.87 - Google, Inc.)
Google Update Helper (x32 Version: 1.3.24.7 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.32.7 - Google Inc.) Hidden
Half-Life 2 (HKLM-x32\...\Steam App 220) (Version: - Valve)
Half-Life 2: Episode One (HKLM-x32\...\Steam App 380) (Version: - Valve)
Half-Life 2: Episode Two (HKLM-x32\...\Steam App 420) (Version: - Valve)
Half-Life 2: Lost Coast (HKLM-x32\...\Steam App 340) (Version: - Valve)
Hatred (HKLM-x32\...\SGF0cmVk_is1) (Version: 1 - )
HD Tune 2.55 (HKLM-x32\...\HD Tune_is1) (Version: - EFD Software)
HWiNFO64 Version 4.36 (HKLM\...\HWiNFO64_is1) (Version: 4.36 - Martin Malík - REALiX)
Chivalry: Medieval Warfare (HKLM-x32\...\Steam App 219640) (Version: - Torn Banner Studios)
Image ReSizer 1.6 (HKLM-x32\...\{CE17A4F4-F6C1-4876-AE7A-53210A0CCBB2}_is1) (Version: 1.6.0 - 3twists Software)
ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.6.0 - LIGHTNING UK!)
Java 7 Update 60 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217051FF}) (Version: 7.0.600 - Oracle)
KhalInstallWrapper (Version: 2.00.0000 - Logitech) Hidden
K-Lite Codec Pack 9.3.0 (Basic) (HKLM-x32\...\KLiteCodecPack_is1) (Version: 9.3.0 - )
LightScribe Diagnostic Utility (HKLM-x32\...\{B48BFBB8-01E5-4011-B204-A4A86949EC92}) (Version: 1.18.16.1 - LightScribe)
LightScribe System Software (HKLM-x32\...\{2FA75B40-17C9-4D22-88CA-80A5D52FAB13}) (Version: 1.18.24.1 - LightScribe)
LightScribe Template Labeler (HKLM-x32\...\{8A03241E-7A3C-401D-B0CE-B3096F50AE6F}) (Version: 1.18.27.10 - LightScribe)
Logitech SetPoint (HKLM-x32\...\{F29B21BD-CAA6-445F-8EF7-A7E2B9D8B14E}) (Version: 4.80 - Logitech)
Malwarebytes verze 3.0.4.1269 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.0.4.1269 - Malwarebytes)
MegaTrainer eXperience V1.2.6.9 (HKLM-x32\...\MegaTrainer eXperience_is1) (Version: - )
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30320 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile CSY Language Pack (HKLM\...\Microsoft .NET Framework 4 Client Profile CSY Language Pack) (Version: 4.0.30320 - Microsoft Corporation)
Microsoft .NET Framework 4 Extended (HKLM\...\Microsoft .NET Framework 4 Extended) (Version: 4.0.30320 - Microsoft Corporation)
Microsoft .NET Framework 4 Extended CSY Language Pack (HKLM\...\Microsoft .NET Framework 4 Extended CSY Language Pack) (Version: 4.0.30320 - Microsoft Corporation)
Microsoft DirectX SDK (June 2010) (HKLM-x32\...\Microsoft DirectX SDK (June 2010)) (Version: 9.29.1962.0 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUSR) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation)
Microsoft SQL Server Compact 4.0 x64 CSY (HKLM\...\{0A8A841B-29C4-4947-BF59-241216B4D904}) (Version: 4.0.8482.1 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
MozBackup 1.5.1 (HKLM-x32\...\MozBackup) (Version: - Pavel Cvrcek)
Mozilla Firefox 29.0.1 (x86 cs) (HKLM-x32\...\Mozilla Firefox 29.0.1 (x86 cs)) (Version: 29.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
MultiScreen (HKLM-x32\...\{E36E864B-BFB6-440A-9A23-2B0BEDE59A92}) (Version: 1.00.0000 - Samsung Electronics Ltd.)
My Pictures 3D 1.1 (HKLM-x32\...\My Pictures 3D_is1) (Version: - )
NAVIGON Fresh 3.5.1 (HKLM-x32\...\NAVIGON Fresh) (Version: 3.5.1 - NAVIGON)
Nero 2014 (HKLM-x32\...\{9642EA87-3714-49A6-9E70-325CB18E6DE5}) (Version: 15.0.02500 - Nero AG)
No More Room in Hell (HKLM-x32\...\Steam App 224260) (Version: - No More Room in Hell Team)
NVIDIA GeForce Experience 2.1.5 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.1.5 - NVIDIA Corporation)
NVIDIA Ovladač 3D Vision 347.09 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 347.09 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.33.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.33.0 - NVIDIA Corporation)
NVIDIA Ovladač řídící jednotky 3D Vision 347.09 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 347.09 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 347.09 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 347.09 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.14.0702 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.14.0702 - NVIDIA Corporation)
OCCT 4.4.0 (HKLM-x32\...\OCCT) (Version: 4.4.0 - Ocbase.com)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
Origin (HKLM-x32\...\Origin) (Version: 9.4.7.2799 - Electronic Arts, Inc.)
Ovládací panel NVIDIA 347.09 (Version: 347.09 - NVIDIA Corporation) Hidden
PandoraRecovery (Remove Only) (HKLM-x32\...\PandoraRecovery) (Version: - )
Patch testing for Chivalry (HKLM-x32\...\Steam App 232210) (Version: - )
PCMSCAN (HKLM-x32\...\{979B748C-6095-4A5A-BC7B-C15E720529D6}) (Version: 2.4.12 - Palmer Performance Engineering)
PDF Settings CS6 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
Photo! 3D Album and Photo! 3D ScreenSaver 1.2 (HKLM-x32\...\My Pictures Editor_is1) (Version: - )
Pinnacle Studio 17 (HKLM-x32\...\{3DA8F808-72E2-4361-82EC-433081D23005}) (Version: 17.0.1.134 - Corel Corporation)
Pinnale Systems Software Keys (HKLM-x32\...\{616CD10B-1EC7-41D2-8C14-3ECE93E7AEE9}_is1) (Version: - VPP TEAM)
Portal (HKLM-x32\...\Steam App 400) (Version: - Valve)
Prerequisite installer (x32 Version: 15.0.0005 - Nero AG) Hidden
Puran File Recovery 1.2 (HKLM\...\Puran File Recovery_is1) (Version: - Puran Software)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.61.612.2012 - Realtek)
Realtek Ethernet Diagnostic Utility (HKLM-x32\...\{DADC7AB0-E554-4705-9F6A-83EA82ED708E}) (Version: 1.00.0000 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6657 - Realtek Semiconductor Corp.)
Red Orchestra 2 Heroes of Stalingrad (HKLM-x32\...\Red Orchestra 2 Heroes of Stalingrad_is1) (Version: - )
Registrace uživatele zařízení Canon MP270 series (HKLM-x32\...\Registrace uživatele zařízení Canon MP270 series) (Version: - )
Resident Evil HD Remaster (HKLM-x32\...\Resident Evil HD Remaster_is1) (Version: - )
Rollcage (HKLM-x32\...\{FED32578-E15E-4574-878D-D9F58F59D26B}) (Version: 1.3.7 - Psygnosis)
Samsung Drive Manager (HKLM-x32\...\{9F1A6A24-4901-42F6-A355-5DD2B82E62AE}) (Version: 1.0.172 - Clarus, Inc.)
Samsung Kies (HKLM-x32\...\InstallShield_{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.6.2.14014_7 - Samsung Electronics Co., Ltd.)
Samsung Kies (x32 Version: 2.6.2.14014_7 - Samsung Electronics Co., Ltd.) Hidden
Samsung Kies3 (HKLM-x32\...\InstallShield_{88547073-C566-4895-9005-EBE98EA3F7C7}) (Version: 3.2.15024.8 - Samsung Electronics Co., Ltd.)
Samsung Kies3 (x32 Version: 3.2.15024.8 - Samsung Electronics Co., Ltd.) Hidden
Samsung Link 2.0.0.1603031617 (HKLM\...\8474-7877-9059-0204) (Version: 2.0.0.1603031617 - Samsung Electronics Co.,Ltd)
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.49.0 - SAMSUNG Electronics Co., Ltd.)
Samsung_MonSetup (HKLM-x32\...\{8EA79DBF-D637-448A-89D6-410A087A4493}) (Version: 1.00.0000 - Samsung)
SDÍLEJ.CZ Manager (HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\...\69f070f18ade444c) (Version: 0.0.1.42 - SDÍLEJ.CZ)
SHIELD Streaming (Version: 3.1.3000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 16.18.9 - NVIDIA Corporation) Hidden
Skype Click to Call (HKLM-x32\...\{BB285C9F-C821-4770-8970-56C4AB52C87E}) (Version: 7.0.14735.1561 - Microsoft Corporation)
Skype™ 6.22 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 6.22.107 - Skype Technologies S.A.)
SMI Grabber Device (HKLM-x32\...\{B03B98E3-2795-48F6-BA33-793BBF5DF685}) (Version: 1.0.0.29 - Somagic)
Sniper Elite III - Afrika verze 1.10 (HKLM-x32\...\{8D04A927-FA0A-4188-9B3A-FB66B1E48FFD}_is1) (Version: 1.10 - )
Sophos Virus Removal Tool (HKLM-x32\...\{B829E117-D072-41EA-9606-9826A38D34C1}) (Version: 2.5.6 - Sophos Limited)
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version: - )
Steam (HKLM-x32\...\Steam) (Version: - Valve Corporation)
Stronghold Crusader 2 (HKLM-x32\...\Stronghold Crusader 2_is1) (Version: - )
Stronghold Crusader Extreme HD (HKLM-x32\...\GOGPACKSTRONGHOLDCRUSADERHD_is1) (Version: 2.0.0.6 - GOG.com)
Stronghold HD (HKLM-x32\...\{C917BA70-28A3-4C74-B163-41FD8C8E1A5A}) (Version: 1.30.0004 - Firefly Studios)
Team Fortress 2 (HKLM-x32\...\Steam App 440) (Version: - Valve)
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.13 - TeamSpeak Systems GmbH)
TeamViewer 9 (HKLM-x32\...\TeamViewer 9) (Version: 9.0.27339 - TeamViewer)
The KMPlayer (remove only) (HKLM-x32\...\The KMPlayer) (Version: 3.8.0.118 - PandoraTV)
Torrent Harvester (HKLM-x32\...\Torrent Harvester) (Version: - )
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.50 - Ghisler Software GmbH)
Total Uninstall 6.1.0 (HKLM\...\Total Uninstall 6_is1) (Version: 6.1.0 - Gavrila Martau)
TuneUp Utilities 2012 (HKLM-x32\...\TuneUp Utilities 2012) (Version: 12.0.2030.10 - TuneUp Software)
TuneUp Utilities 2012 (x32 Version: 12.0.2030.10 - TuneUp Software) Hidden
TuneUp Utilities Language Pack (en-US) (x32 Version: 12.0.2030.10 - TuneUp Software) Hidden
Tunngle (HKLM-x32\...\Tunngle_is1) (Version: 5.2 - Tunngle.net GmbH)
Ulead VideoStudio SE DVD (HKLM-x32\...\{8F8D9297-FDD2-405A-97E7-E52C7B2F97B3}) (Version: 10.0 - Ulead Systems)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player 2.1.3 (HKLM-x32\...\VLC media player) (Version: 2.1.3 - VideoLAN)
VSO ConvertXToDVD (HKLM-x32\...\{CE1F93C0-4353-4C9D-84DA-AB4E7C63ED32}_is1) (Version: 5.0.0.33 - VSO-Software SARL)
War Thunder (HKLM-x32\...\Steam App 236390) (Version: - Gaijin Entertainment)
Webshare uploader (HKLM-x32\...\WebshareDLC) (Version: - Webshare)
Winamp (HKLM-x32\...\Winamp) (Version: 5.66 - Nullsoft, Inc)
WinRAR 5.01 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
World of Warships (HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C814eu}_is1) (Version: - Wargaming.net)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2131128835-2277457285-3308782453-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Martys\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2131128835-2277457285-3308782453-1000_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\Martys\AppData\Roaming\Dropbox\bin\DropboxExt64.3.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2131128835-2277457285-3308782453-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Martys\AppData\Roaming\Dropbox\bin\DropboxExt64.3.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2131128835-2277457285-3308782453-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Martys\AppData\Roaming\Dropbox\bin\DropboxExt64.3.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2131128835-2277457285-3308782453-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Martys\AppData\Roaming\Dropbox\bin\DropboxExt64.3.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2131128835-2277457285-3308782453-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Martys\AppData\Roaming\Dropbox\bin\DropboxExt64.3.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2131128835-2277457285-3308782453-1000_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Martys\AppData\Roaming\Dropbox\bin\DropboxExt64.3.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2131128835-2277457285-3308782453-1000_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Martys\AppData\Roaming\Dropbox\bin\DropboxExt64.3.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2131128835-2277457285-3308782453-1000_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Martys\AppData\Roaming\Dropbox\bin\DropboxExt64.3.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2131128835-2277457285-3308782453-1000_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Martys\AppData\Roaming\Dropbox\bin\DropboxExt64.3.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2131128835-2277457285-3308782453-1000_Classes\CLSID\{FB314EE1-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Martys\AppData\Roaming\Dropbox\bin\DropboxExt64.3.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2131128835-2277457285-3308782453-1000_Classes\CLSID\{FB314EE2-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Martys\AppData\Roaming\Dropbox\bin\DropboxExt64.3.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2131128835-2277457285-3308782453-1000_Classes\CLSID\{FBC9D74C-AF55-4309-9FB2-C426E071637F}\InprocServer32 -> C:\Users\Martys\AppData\Roaming\Dropbox\bin\DropboxExt64.3.0.dll (Dropbox, Inc.)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0EB99F56-CDFC-47F3-AD94-7C7A92612F7A} - System32\Tasks\{530CE87B-3538-4D62-B46B-91CAAB144F06} => pcalua.exe -a D:\Hry\Uninstaller.exe -d D:\Hry
Task: {10FEBC30-8818-4A65-8C07-F426B6B9AF86} - System32\Tasks\{CC1E3A4C-4674-4791-82ED-E0CC37CAE6F2} => D:\Hry\Grand Theft Auto IV\GTAIV.exe
Task: {1F175A07-4232-4A7B-8ABC-04FC8E5585A1} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-12-02] (Google Inc.)
Task: {2099636C-E9CC-4EF1-9AE9-740D899967A1} - System32\Tasks\{8365A4F8-C88F-4669-A52D-A1E85DE9AF22} => pcalua.exe -a "F:\OBDII On PC software\scantool_net113win\scantool_net113win.exe" -d "F:\OBDII On PC software\scantool_net113win"
Task: {73AE571F-BC46-409B-B6F6-A6684B15A651} - System32\Tasks\{79E5A4C2-617A-47E6-9E1D-40A01B2E34E6} => D:\Hry\Stronghold\Stronghold.exe [2013-11-01] ()
Task: {75ECA292-8BF9-4546-A3EA-AD285AF23084} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-2131128835-2277457285-3308782453-1000Core => C:\Users\Martys\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2016-12-14] (Dropbox, Inc.)
Task: {7F6A7438-8F2D-482F-BB36-AEC4DB23F04D} - System32\Tasks\{741FC4DC-37F7-4AB2-B68F-6A84FF976976} => D:\Hry\Grand Theft Auto IV\GTAIV.exe
Task: {7F7A154A-A664-4687-B613-CE242777D14C} - System32\Tasks\{7021D46B-A7A0-4450-9A63-04629FDB7890} => D:\Hry\Stronghold Crusader.exe
Task: {8AB15B42-CC78-4E33-A6C2-0A1285964BBB} - System32\Tasks\{18183E7D-7702-47B9-8544-5773EB6233BE} => pcalua.exe -a E:\monsetup.exe -d E:\
Task: {900E7F2B-A887-4454-941A-9E0547F308C9} - System32\Tasks\{79899FCE-DB4E-4F27-8F2E-C70FE053AA25} => C:\Program Files (x86)\Pinnacle\Studio 17\programs\PinnacleStudio.EXE [2013-11-07] (Pinnacle)
Task: {91FD64C8-0494-4466-9F35-86660F1FCD09} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-12-02] (Google Inc.)
Task: {A631E2E9-F4EB-4BDA-B08C-3A54280E4FB1} - System32\Tasks\AVG EUpdate Task => avgsetupx.exe
Task: {ADB598DD-DF8C-4C87-804A-89AB6807A00D} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-2131128835-2277457285-3308782453-1000UA => C:\Users\Martys\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2016-12-14] (Dropbox, Inc.)
Task: {ADC875BF-01E0-4635-8D49-0F62834724C7} - System32\Tasks\Adobe online update program => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-09-23] (Adobe Systems Incorporated)
Task: {BFA30143-2CDC-42E1-ACFF-2C04F9D9D34D} - System32\Tasks\Java Update Scheduler => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2014-05-07] (Oracle Corporation)
Task: {C6C61DDB-75E5-4582-827B-48EC27633CDE} - System32\Tasks\{3BB29E29-89E2-4D7E-87D1-20C4E5C58DBA} => D:\Hry\Stronghold\Stronghold.exe [2013-11-01] ()
Task: {CD28FA94-5664-42C7-ADB8-B527929FD2F9} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-12-14] (Adobe Systems Incorporated)
Task: {D4C6E57B-6468-4E29-9DA6-4DAF784DE697} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-12-06] (Piriform Ltd)
Task: {DAB24538-6ABB-4F45-8D82-B2D4D1EBF30D} - System32\Tasks\{40ED30C1-922E-4BEF-A76D-F09C985F970D} => pcalua.exe -a C:\Users\Martys\AppData\Local\Temp\Rar$EXa0.477\DRIVER\SETUP.EXE -d C:\Users\Martys\AppData\Local\Temp\Rar$EXa0.477\DRIVER <==== ATTENTION
Task: {E3A7D4C3-0038-4E3C-961D-93EAF04F2BE5} - System32\Tasks\{D6D98709-5979-4818-B7DF-7C5A0297ABCC} => D:\Hry\Stronghold\Stronghold.exe [2013-11-01] ()
Task: {E8A6BC36-040D-42D7-BEB7-F58B75595487} - System32\Tasks\Nero\Nero Info => C:\Program Files (x86)\Common Files\Nero\Nero Info\NeroInfo.exe [2013-08-20] (Nero AG)
Task: {EA10E55E-68D6-4C48-AEBD-89C6EE90C742} - System32\Tasks\{CF7222DB-83A4-4D01-A7CF-CA483951D7D5} => D:\Hry\Grand Theft Auto IV\GTAIV.exe
Task: {EE5264F2-B73B-4624-AEA3-07744B6A318D} - System32\Tasks\{91873097-9570-4935-A5BD-A587293D815C} => D:\Hry\Stronghold Crusader.exe

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-2131128835-2277457285-3308782453-1000Core.job => C:\Users\Martys\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-2131128835-2277457285-3308782453-1000UA.job => C:\Users\Martys\AppData\Local\Dropbox\Update\DropboxUpdate.exe

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

==================== Loaded Modules (Whitelisted) ==============

2014-05-03 01:18 - 2014-12-13 09:03 - 00117576 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2010-01-30 02:40 - 2010-01-30 02:40 - 04254560 _____ () C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF
2015-02-14 14:38 - 2016-03-03 16:17 - 00025088 _____ () C:\Program Files\Samsung\Samsung Link\JniSys.dll
2015-02-14 14:38 - 2016-03-03 16:17 - 00049664 _____ () C:\Program Files\Samsung\Samsung Link\JniIO.dll
2013-12-21 11:25 - 2013-12-21 11:25 - 00036864 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\64bit\JNIInterface.dll
2013-12-21 11:26 - 2013-12-21 11:26 - 00144384 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\64bit\ASFAPI.dll
2013-12-21 11:27 - 2013-12-21 11:27 - 00018944 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\64bit\MediaDB_Manager.dll
2013-10-22 09:52 - 2013-10-22 09:52 - 00030720 _____ () C:\Windows\system32\MediaDB64.dll
2013-10-22 09:52 - 2013-10-22 09:52 - 00908800 _____ () C:\Windows\system32\ContentDirectoryPresenter64.dll
2013-12-21 11:27 - 2013-12-21 11:27 - 00521728 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\64bit\DMS_Manager.dll
2013-07-23 19:19 - 2013-07-23 19:19 - 00049152 _____ () C:\Windows\system32\boost_date_time-vc90-mt-1_47.dll
2013-07-23 19:19 - 2013-07-23 19:19 - 00016896 _____ () C:\Windows\system32\boost_system-vc90-mt-1_47.dll
2013-07-23 19:19 - 2013-07-23 19:19 - 00058880 _____ () C:\Windows\system32\boost_thread-vc90-mt-1_47.dll
2013-07-23 19:19 - 2013-07-23 19:19 - 00299520 _____ () C:\Windows\system32\boost_serialization-vc90-mt-1_47.dll
2014-03-06 13:00 - 2009-08-11 13:57 - 00303104 _____ () C:\Program Files (x86)\MultiScreen\MultiScreen.exe
2014-03-08 02:34 - 2009-07-20 12:35 - 00018960 _____ () C:\Program Files\Logitech\SetPoint\khalwrapper.dll
2014-03-08 02:34 - 2009-07-20 04:00 - 00077824 _____ () C:\Program Files\Logitech\SetPoint\x86\SetPoint32.exe
2016-12-06 15:09 - 2016-12-06 15:09 - 00061440 _____ () C:\Program Files\CCleaner\lang\lang-1029.dll
2014-04-20 15:55 - 2014-05-29 22:49 - 00075136 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2015-02-14 14:38 - 2016-03-03 16:17 - 02513920 _____ () C:\Program Files\Samsung\Samsung Link\scone_proxy.dll
2015-02-14 14:38 - 2016-03-03 16:17 - 02436096 _____ () C:\Program Files\Samsung\Samsung Link\scone_stub.dll
2016-12-20 23:50 - 2016-12-20 23:50 - 00669696 _____ () C:\Windows\Temp\sqlite-3.7.151-amd64-sqlitejdbc.dll
2010-07-07 15:17 - 2010-07-07 15:17 - 02156952 _____ () C:\Program Files (x86)\Acronis\DiskDirector\OSS\reinstall_svc.exe
2013-12-11 16:46 - 2013-12-11 16:46 - 01114624 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\DMSManager.dll
2013-10-22 09:48 - 2013-10-22 09:48 - 00707072 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\ContentDirectoryPresenter.dll
2013-10-24 16:53 - 2013-10-24 16:53 - 00107008 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\DCMCDP.dll
2013-12-11 16:46 - 2013-12-11 16:46 - 00102400 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\FolderCDP.dll
2013-12-11 16:46 - 2013-12-11 16:46 - 00077312 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\MetadataFramework.dll
2013-02-14 19:42 - 2013-02-14 19:42 - 00520234 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\sqlite3.dll
2013-02-14 19:42 - 2013-02-14 19:42 - 00450560 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\MoodExtractor.dll
2013-02-14 19:42 - 2013-02-14 19:42 - 05717504 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\DCMImgExtractor.dll
2013-10-25 19:48 - 2013-10-25 19:48 - 00028672 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AutoChaptering.dll
2013-02-14 19:42 - 2013-02-14 19:42 - 00147456 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\libexpat.dll
2013-10-25 19:48 - 2013-10-25 19:48 - 00012288 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\VideoThumb.dll
2013-02-14 19:42 - 2013-02-14 19:42 - 04671488 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\avcodec-52.dll
2013-02-14 19:42 - 2013-02-14 19:42 - 00070656 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\avutil-50.dll
2013-02-14 19:42 - 2013-02-14 19:42 - 00686080 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\avformat-52.dll
2013-02-14 19:42 - 2013-02-14 19:42 - 00152064 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\swscale-0.dll
2013-10-25 19:49 - 2013-10-25 19:49 - 00028160 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AudioExtractor.dll
2013-10-25 19:48 - 2013-10-25 19:48 - 00064000 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\ID3Driver.dll
2013-02-14 19:42 - 2013-02-14 19:42 - 00366592 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\tag.dll
2013-10-25 19:48 - 2013-10-25 19:48 - 00289792 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\libThumbnail.dll
2013-10-25 19:48 - 2013-10-25 19:48 - 00023040 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\RichInfoDriver.dll
2013-12-11 16:45 - 2013-12-11 16:45 - 00017920 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\VideoExtractor.dll
2013-10-25 19:53 - 2013-10-25 19:53 - 00117248 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\ThumbnailMaker.dll
2013-10-25 19:53 - 2013-10-25 19:53 - 01033728 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\ImageMagickWrapper.dll
2013-12-11 16:45 - 2013-12-11 16:45 - 00134144 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\VideoMetadataDriver.dll
2013-10-25 19:48 - 2013-10-25 19:48 - 00290816 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\libKeyFrame.dll
2013-10-25 19:48 - 2013-10-25 19:48 - 00024064 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\SECMetaDriver.dll
2013-10-25 19:53 - 2013-10-25 19:53 - 00012288 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\ImageExtractor.dll
2013-10-25 19:48 - 2013-10-25 19:48 - 00024064 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\photoDriver.dll
2013-02-14 19:42 - 2013-02-14 19:42 - 00399826 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\libexif-12.dll.dll
2013-10-25 19:48 - 2013-10-25 19:48 - 00013824 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\TextExtractor.dll
2013-10-24 16:53 - 2013-10-24 16:53 - 00032768 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\Autobackup.dll
2013-04-19 16:38 - 2013-04-19 16:38 - 00055808 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\RosettaAllShare.dll
2013-07-23 19:18 - 2013-07-23 19:18 - 00227840 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\boost_serialization-vc90-mt-1_47.dll
2013-07-23 19:18 - 2013-07-23 19:18 - 00038912 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\boost_date_time-vc90-mt-1_47.dll
2013-07-23 19:18 - 2013-07-23 19:18 - 00012800 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\boost_system-vc90-mt-1_47.dll
2013-07-23 19:18 - 2013-07-23 19:18 - 00046592 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\boost_thread-vc90-mt-1_47.dll
2013-02-14 19:42 - 2013-02-14 19:42 - 00044032 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\us.dll
2014-03-06 13:00 - 2009-08-11 13:54 - 00094208 _____ () C:\Program Files (x86)\MultiScreen\TitleBar.dll
2014-03-06 13:00 - 2009-08-11 13:54 - 00053248 _____ () C:\Program Files (x86)\MultiScreen\SmartMouseDll.dll
2014-03-06 13:00 - 2009-08-11 13:56 - 00053248 _____ () C:\Program Files (x86)\MultiScreen\MGResEng.dll
2016-12-14 17:06 - 2016-11-11 21:36 - 00035792 _____ () C:\Users\Martys\AppData\Roaming\Dropbox\bin\_multiprocessing.pyd
2016-12-14 17:06 - 2016-11-11 21:36 - 00100296 _____ () C:\Users\Martys\AppData\Roaming\Dropbox\bin\_ctypes.pyd
2016-12-14 17:06 - 2016-11-11 21:36 - 00018888 _____ () C:\Users\Martys\AppData\Roaming\Dropbox\bin\select.pyd
2016-12-14 17:06 - 2016-12-12 15:17 - 00019760 _____ () C:\Users\Martys\AppData\Roaming\Dropbox\bin\tornado.speedups.pyd
2016-12-14 17:06 - 2016-11-11 21:36 - 00694224 _____ () C:\Users\Martys\AppData\Roaming\Dropbox\bin\unicodedata.pyd
2016-12-16 08:44 - 2016-12-12 15:16 - 00020816 _____ () C:\Users\Martys\AppData\Roaming\Dropbox\bin\cryptography.hazmat.bindings._constant_time.pyd
2016-12-14 17:06 - 2016-11-11 21:37 - 00123856 _____ () C:\Users\Martys\AppData\Roaming\Dropbox\bin\_cffi_backend.pyd
2016-12-16 08:44 - 2016-12-12 15:16 - 01682760 _____ () C:\Users\Martys\AppData\Roaming\Dropbox\bin\cryptography.hazmat.bindings._openssl.pyd
2016-12-16 08:44 - 2016-12-12 15:16 - 00020808 _____ () C:\Users\Martys\AppData\Roaming\Dropbox\bin\cryptography.hazmat.bindings._padding.pyd
2016-12-16 08:44 - 2016-11-11 21:36 - 00145864 _____ () C:\Users\Martys\AppData\Roaming\Dropbox\bin\pyexpat.pyd
2016-12-16 08:44 - 2016-11-11 21:37 - 00019408 _____ () C:\Users\Martys\AppData\Roaming\Dropbox\bin\faulthandler.pyd
2016-12-16 08:44 - 2016-11-11 21:36 - 00116688 _____ () C:\Users\Martys\AppData\Roaming\Dropbox\bin\pywintypes27.dll
2016-12-14 17:06 - 2016-11-11 21:38 - 00105928 _____ () C:\Users\Martys\AppData\Roaming\Dropbox\bin\win32api.pyd
2016-12-14 17:06 - 2016-12-12 15:17 - 00021312 _____ () C:\Users\Martys\AppData\Roaming\Dropbox\bin\winffi.crt.compiled._winffi_crt.pyd
2016-12-16 08:44 - 2016-12-12 15:16 - 00052024 _____ () C:\Users\Martys\AppData\Roaming\Dropbox\bin\psutil._psutil_windows.pyd
2016-12-16 08:44 - 2016-12-12 15:16 - 00038696 _____ () C:\Users\Martys\AppData\Roaming\Dropbox\bin\fastpath.pyd
2016-12-16 08:44 - 2016-11-11 21:36 - 00392144 _____ () C:\Users\Martys\AppData\Roaming\Dropbox\bin\pythoncom27.dll
2016-12-16 08:44 - 2016-11-11 21:38 - 00020936 _____ () C:\Users\Martys\AppData\Roaming\Dropbox\bin\mmapfile.pyd
2016-12-14 17:06 - 2016-11-11 21:38 - 00024528 _____ () C:\Users\Martys\AppData\Roaming\Dropbox\bin\win32event.pyd
2016-12-14 17:06 - 2016-11-11 21:39 - 00116176 _____ () C:\Users\Martys\AppData\Roaming\Dropbox\bin\win32security.pyd
2016-12-14 17:06 - 2016-12-12 15:17 - 00381752 _____ () C:\Users\Martys\AppData\Roaming\Dropbox\bin\win32com.shell.shell.pyd
2016-12-14 17:06 - 2016-11-11 21:38 - 00124880 _____ () C:\Users\Martys\AppData\Roaming\Dropbox\bin\win32file.pyd
2016-12-14 17:06 - 2016-12-12 15:17 - 00025424 _____ () C:\Users\Martys\AppData\Roaming\Dropbox\bin\winffi.kernel32.compiled._winffi_kernel32.pyd
2016-12-14 17:06 - 2016-11-11 21:38 - 00024016 _____ () C:\Users\Martys\AppData\Roaming\Dropbox\bin\win32clipboard.pyd
2016-12-14 17:06 - 2016-11-11 21:38 - 00175560 _____ () C:\Users\Martys\AppData\Roaming\Dropbox\bin\win32gui.pyd
2016-12-14 17:06 - 2016-11-11 21:38 - 00030160 _____ () C:\Users\Martys\AppData\Roaming\Dropbox\bin\win32pipe.pyd
2016-12-14 17:06 - 2016-11-11 21:39 - 00043472 _____ () C:\Users\Martys\AppData\Roaming\Dropbox\bin\win32process.pyd
2016-12-14 17:06 - 2016-11-11 21:39 - 00048592 _____ () C:\Users\Martys\AppData\Roaming\Dropbox\bin\win32service.pyd
2016-12-14 17:06 - 2016-11-11 21:38 - 00057808 _____ () C:\Users\Martys\AppData\Roaming\Dropbox\bin\win32evtlog.pyd
2016-12-14 17:06 - 2016-11-11 21:39 - 00024016 _____ () C:\Users\Martys\AppData\Roaming\Dropbox\bin\win32profile.pyd
2016-12-16 08:44 - 2016-12-12 15:16 - 00246592 _____ () C:\Users\Martys\AppData\Roaming\Dropbox\bin\breakpad.client.windows.handler.pyd
2016-12-16 08:44 - 2016-12-12 15:16 - 00026456 _____ () C:\Users\Martys\AppData\Roaming\Dropbox\bin\dropbox.infinite.win.compiled._driverinstallation.pyd
2016-12-14 17:06 - 2016-11-11 21:37 - 00241104 _____ () C:\Users\Martys\AppData\Roaming\Dropbox\bin\_jpegtran.pyd
2016-12-16 08:44 - 2016-12-12 15:16 - 00020280 _____ () C:\Users\Martys\AppData\Roaming\Dropbox\bin\cpuid.compiled._cpuid.pyd
2016-12-14 17:06 - 2016-11-11 21:39 - 00028616 _____ () C:\Users\Martys\AppData\Roaming\Dropbox\bin\win32ts.pyd
2016-12-14 17:06 - 2016-12-12 15:17 - 00023376 _____ () C:\Users\Martys\AppData\Roaming\Dropbox\bin\winscreenshot.compiled._CaptureScreenshot.pyd
2016-12-14 17:06 - 2016-12-12 15:17 - 00020800 _____ () C:\Users\Martys\AppData\Roaming\Dropbox\bin\winffi.iphlpapi._winffi_iphlpapi.pyd
2016-12-14 17:06 - 2016-12-12 15:17 - 00019776 _____ () C:\Users\Martys\AppData\Roaming\Dropbox\bin\winffi.winerror._winffi_winerror.pyd
2016-12-14 17:06 - 2016-12-12 15:17 - 00020800 _____ () C:\Users\Martys\AppData\Roaming\Dropbox\bin\winffi.wininet._winffi_wininet.pyd
2016-12-14 17:06 - 2016-11-11 21:39 - 00350152 _____ () C:\Users\Martys\AppData\Roaming\Dropbox\bin\winxpgui.pyd
2016-12-14 17:06 - 2016-12-12 15:17 - 00022352 _____ () C:\Users\Martys\AppData\Roaming\Dropbox\bin\winverifysignature.compiled._VerifySignature.pyd
2016-12-16 08:44 - 2016-12-12 15:16 - 00024392 _____ () C:\Users\Martys\AppData\Roaming\Dropbox\bin\librsyncffi.compiled._librsyncffi.pyd
2016-12-16 08:44 - 2016-11-11 21:35 - 00036296 _____ () C:\Users\Martys\AppData\Roaming\Dropbox\bin\librsync.dll
2016-12-16 08:44 - 2016-12-12 15:16 - 00084280 _____ () C:\Users\Martys\AppData\Roaming\Dropbox\bin\dropbox_sqlite_ext.DLL
2016-12-16 08:44 - 2016-12-12 15:16 - 01826096 _____ () C:\Users\Martys\AppData\Roaming\Dropbox\bin\PyQt5.QtCore.pyd
2016-12-14 17:06 - 2016-11-11 21:37 - 00083912 _____ () C:\Users\Martys\AppData\Roaming\Dropbox\bin\sip.pyd
2016-12-16 08:44 - 2016-12-12 15:16 - 00531248 _____ () C:\Users\Martys\AppData\Roaming\Dropbox\bin\PyQt5.QtNetwork.pyd
2016-12-16 08:44 - 2016-12-12 15:17 - 03928880 _____ () C:\Users\Martys\AppData\Roaming\Dropbox\bin\PyQt5.QtWidgets.pyd
2016-12-16 08:44 - 2016-12-12 15:16 - 01972528 _____ () C:\Users\Martys\AppData\Roaming\Dropbox\bin\PyQt5.QtGui.pyd
2016-12-16 08:44 - 2016-12-12 15:17 - 00133424 _____ () C:\Users\Martys\AppData\Roaming\Dropbox\bin\PyQt5.QtWebKit.pyd
2016-12-16 08:44 - 2016-12-12 15:17 - 00224056 _____ () C:\Users\Martys\AppData\Roaming\Dropbox\bin\PyQt5.QtWebKitWidgets.pyd
2016-12-16 08:44 - 2016-12-12 15:16 - 00207672 _____ () C:\Users\Martys\AppData\Roaming\Dropbox\bin\PyQt5.QtPrintSupport.pyd
2016-12-14 17:06 - 2016-12-12 15:17 - 00020288 _____ () C:\Users\Martys\AppData\Roaming\Dropbox\bin\winffi.user32._winffi_user32.pyd
2016-12-16 08:44 - 2016-11-11 21:42 - 00017864 _____ () C:\Users\Martys\AppData\Roaming\Dropbox\bin\libEGL.dll
2016-12-16 08:44 - 2016-11-11 21:42 - 01631184 _____ () C:\Users\Martys\AppData\Roaming\Dropbox\bin\libGLESv2.dll
2016-12-16 08:44 - 2016-12-12 15:16 - 00042808 _____ () C:\Users\Martys\AppData\Roaming\Dropbox\bin\PyQt5.QtWebChannel.pyd
2016-12-16 08:44 - 2016-12-12 15:17 - 00171320 _____ () C:\Users\Martys\AppData\Roaming\Dropbox\bin\PyQt5.QtWebEngineWidgets.pyd
2016-12-16 08:44 - 2016-12-12 15:16 - 00357680 _____ () C:\Users\Martys\AppData\Roaming\Dropbox\bin\PyQt5.QtQml.pyd
2016-12-14 17:06 - 2016-11-11 21:39 - 00060880 _____ () C:\Users\Martys\AppData\Roaming\Dropbox\bin\win32print.pyd
2016-12-14 17:06 - 2016-12-12 15:17 - 00024904 _____ () C:\Users\Martys\AppData\Roaming\Dropbox\bin\winffi.winhttp.compiled._winffi_winhttp.pyd
2016-12-16 08:44 - 2016-12-12 15:16 - 00546096 _____ () C:\Users\Martys\AppData\Roaming\Dropbox\bin\PyQt5.QtQuick.pyd
2010-01-30 02:41 - 2010-01-30 02:41 - 04254560 _____ () C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
2016-12-14 17:11 - 2016-12-14 17:11 - 48920064 _____ () C:\Program Files (x86)\AVG\UiDll\2623\libcef.dll
2016-12-15 03:00 - 2016-12-08 08:29 - 01829208 _____ () C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\libglesv2.dll
2016-12-15 03:00 - 2016-12-08 08:29 - 00085848 _____ () C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\libegl.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\ProgramData\TEMP:8927A071 [412]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE restricted site: HKU\.DEFAULT\...\007guard.com -> install.007guard.com
IE restricted site: HKU\.DEFAULT\...\008i.com -> 008i.com
IE restricted site: HKU\.DEFAULT\...\008k.com -> www.008k.com
IE restricted site: HKU\.DEFAULT\...\00hq.com -> www.00hq.com
IE restricted site: HKU\.DEFAULT\...\010402.com -> 010402.com
IE restricted site: HKU\.DEFAULT\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\.DEFAULT\...\0scan.com -> www.0scan.com
IE restricted site: HKU\.DEFAULT\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\.DEFAULT\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\.DEFAULT\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\.DEFAULT\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\.DEFAULT\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\.DEFAULT\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\.DEFAULT\...\10sek.com -> www.10sek.com
IE restricted site: HKU\.DEFAULT\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\.DEFAULT\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\.DEFAULT\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\.DEFAULT\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\.DEFAULT\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\.DEFAULT\...\123simsen.com -> www.123simsen.com

There are 7866 more sites.

IE trusted site: HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\...\localhost -> localhost
IE restricted site: HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\...\007guard.com -> install.007guard.com
IE restricted site: HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\...\008k.com -> www.008k.com
IE restricted site: HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\...\00hq.com -> www.00hq.com
IE restricted site: HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\...\010402.com -> 010402.com
IE restricted site: HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\...\0scan.com -> www.0scan.com
IE restricted site: HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\...\10sek.com -> www.10sek.com
IE restricted site: HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\...\123simsen.com -> www.123simsen.com

There are 7864 more sites.


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:34 - 2016-12-20 23:41 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts

127.0.0.1 localhost

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Martys\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 213.155.229.197 - 213.155.255.12
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

[Marťan]

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{78997440-8EE8-40A4-A8D3-D9F47DAE9707}] => C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{F8C3AA62-B627-4BD4-B043-8CFDA4CC8EF0}] => C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{34E8F699-DDF0-4CC5-9DCE-5CD9A6051990}] => C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{9019CF02-5988-4C2B-B208-6A51B1B4CEB7}] => C:\Program Files (x86)\Nero\Nero Blu-ray Player\Blu-rayPlayer.exe
FirewallRules: [{0FC75816-F412-4FC2-AC45-2BFD3730F89A}] => C:\Program Files (x86)\Nero\Nero Blu-ray Player\Blu-rayPlayer.exe
FirewallRules: [{21507C46-0B33-4307-879A-5291D49629AF}] => C:\Program Files (x86)\Nero\KM\NMDllHost.exe
FirewallRules: [{96BA9243-EE8E-44E9-9974-AB3C5FBA2AA8}] => C:\Program Files (x86)\Nero\KM\NMDllHost.exe
FirewallRules: [{16F431F0-E927-4250-9E61-6EA6F710D265}] => C:\Program Files (x86)\Winamp\winamp.exe
FirewallRules: [{82340C4B-8569-4D7B-A101-D407BE1D55B2}] => C:\Program Files (x86)\Winamp\winamp.exe
FirewallRules: [{839331F1-DCDB-4E05-B114-83D32A42E43C}] => C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
FirewallRules: [{7650548F-5D26-4B3C-B8A0-871E07240F86}] => C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
FirewallRules: [{03FA0B4A-33DC-4764-B312-89A6DD638441}] => C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
FirewallRules: [{193EC909-AB31-4564-A8F9-8C3CD0E24194}] => C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
FirewallRules: [{C72CBE97-BBD0-497D-997A-A9DBD2690A0F}] => C:\Program Files (x86)\Pinnacle\Studio 17\programs\RM.exe
FirewallRules: [{5EBD5FF2-D64B-480E-8785-9BADF6346D4B}] => C:\Program Files (x86)\Pinnacle\Studio 17\programs\RM.exe
FirewallRules: [{016D3B7C-075F-46F6-9703-1CC62D11B015}] => C:\Program Files (x86)\Pinnacle\Studio 17\programs\NGStudio.exe
FirewallRules: [{4E8B28A2-78C9-4988-B222-A6748CEF90C5}] => C:\Program Files (x86)\Pinnacle\Studio 17\programs\NGStudio.exe
FirewallRules: [{E789E886-BED5-40EF-8143-7BC8E28E7C1E}] => C:\Program Files (x86)\Pinnacle\Studio 17\programs\UMI.exe
FirewallRules: [{7F7E21B8-81AC-45AA-A7E9-954449BA5B1A}] => C:\Program Files (x86)\Pinnacle\Studio 17\programs\UMI.exe
FirewallRules: [{6F651630-8B24-4F71-999C-5DC76BFDD027}] => C:\Users\Martys\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{ECEFDAF5-536B-4BE3-9C6D-FA0805721334}] => C:\Users\Martys\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{8EE695AC-CF18-449F-ADB5-C1B22B11B22A}] => C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{6785CE28-2FA6-48E2-B35D-B23DB4E75FA5}] => C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{5E7F8366-02C5-43F9-85B6-8D63FA890FED}] => C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{0DD62779-1312-45EE-BF65-BED134A054C9}] => C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{22C4919A-15BC-47A8-AF2C-148981558BC6}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{B60F58F9-9944-4CAE-9C45-A15E1F8FC285}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{9426674F-D6A4-4C07-8A38-BB884B41ED0A}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{243C7946-CD91-43E2-A943-D7E0A53F1E36}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{C331D153-88E2-4DF0-95AE-BCE8A2BF1132}] => D:\Hry\Assassin's Creed\AssassinsCreed_Dx9.exe
FirewallRules: [{35461BBE-D827-4D61-827D-119908F4205D}] => D:\Hry\Assassin's Creed\AssassinsCreed_Dx9.exe
FirewallRules: [{86E0293E-ED0C-4DF8-B0FC-83500B54D523}] => D:\Hry\Assassin's Creed\AssassinsCreed_Dx10.exe
FirewallRules: [{91E5D3B6-3ACB-4A14-B256-F5ABF6A973D0}] => D:\Hry\Assassin's Creed\AssassinsCreed_Dx10.exe
FirewallRules: [{B059A4DD-A731-4B83-96D5-F487FCC2AAEC}] => D:\Hry\Assassin's Creed\AssassinsCreed_Launcher.exe
FirewallRules: [{C2432971-7612-4769-855A-F891A1D79C0A}] => D:\Hry\Assassin's Creed\AssassinsCreed_Launcher.exe
FirewallRules: [{A9C10808-D0C0-4BAE-A0A5-21651305400F}] => C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{B93A37B1-4622-44CE-8FA7-1FA841530BB1}] => C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{E4430B9C-4697-43EA-8D1B-D365C7242816}] => D:\Hry\SteamLibrary\SteamApps\common\War Thunder\launcher.exe
FirewallRules: [{72108FCE-141B-4BD6-B631-0A3045E5713A}] => D:\Hry\SteamLibrary\SteamApps\common\War Thunder\launcher.exe
FirewallRules: [{85F380F9-0059-4B61-9D33-6497EE7B5783}] => C:\Program Files\Samsung\Samsung Link\Samsung Link Tray Agent.exe
FirewallRules: [{D4C2511C-8689-49E2-A09D-4393DF37DBDD}] => C:\Program Files\Samsung\Samsung Link\Samsung Link.exe
FirewallRules: [{520CE306-AAF9-46CE-9A4F-E8896AB3DA40}] => C:\Program Files\Samsung\Samsung Link\Samsung Link Tray Agent.exe
FirewallRules: [{734FD1DE-1BCC-4DA8-8373-A151FDC14792}] => C:\Program Files\Samsung\Samsung Link\Samsung Link.exe
FirewallRules: [{19D52879-0A28-4927-9E4E-C38799D249C7}] => C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AllShareFrameworkDMS.exe
FirewallRules: [{F50DCDBA-6EB4-40A1-BFAB-A429F2AA1837}] => C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AllShareFrameworkDMS.exe
FirewallRules: [{663B1725-6D24-4E45-A63D-3333C58E0811}] => LPort=8743
FirewallRules: [{820D2491-11C6-4855-AA79-D35D0245C17A}] => LPort=8643
FirewallRules: [{B9ADDDDC-6426-4EC7-9CDB-39D1C42B172D}] => LPort=7676
FirewallRules: [{A860DF7B-6EFD-4456-9579-A0CE286C323D}] => LPort=7679
FirewallRules: [{793E2A45-4B9C-49CB-8F84-AE0509D44A28}] => LPort=24234
FirewallRules: [{73B780C4-93E4-4AEA-A4CE-7B6A75F77DB9}] => LPort=7900
FirewallRules: [{932694FC-97FC-4366-ADCC-E79C0CB5E6E7}] => LPort=1900
FirewallRules: [{7963FFF4-F688-419E-B595-3BCA25ADBAA4}] => C:\Program Files\Samsung\Samsung Link\Samsung Link.exe
FirewallRules: [{0D3F1314-F455-4AF6-8EC6-A2AFAC70F8C7}] => C:\Program Files\Samsung\Samsung Link\Samsung Link Tray Agent.exe
FirewallRules: [{C246E5F5-03C1-41E7-B972-A108C046AE95}] => C:\Program Files\Samsung\Samsung Link\Samsung Link Tray Agent.exe
FirewallRules: [{B5F83384-50FA-43B5-A4B5-3B2EFE4CD196}] => C:\Program Files\Samsung\Samsung Link\Samsung Link.exe
FirewallRules: [{DC927B02-E783-4C32-9951-8F57A099E96D}] => D:\Hry\Stronghold\stronghold.exe
FirewallRules: [{261D535B-369E-47FE-917B-A1D024CA38FA}] => C:\Program Files\Samsung\Samsung Link\Samsung Link Tray Agent.exe
FirewallRules: [{7676BB09-919E-4B24-A213-88E765B7B9EA}] => C:\Program Files\Samsung\Samsung Link\Samsung Link.exe
FirewallRules: [{990701EF-2847-4A93-8801-1B83E38EF8B2}] => C:\Program Files\Samsung\Samsung Link\Samsung Link.exe
FirewallRules: [{132F5965-E0C0-431D-8C8C-82315DBACC7A}] => C:\Program Files\Samsung\Samsung Link\Samsung Link Tray Agent.exe
FirewallRules: [{431DE7D1-AD65-4324-8B3C-8B8DE676398D}] => C:\Users\Martys\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{61E33ED1-F08F-47D3-A7EC-8839C73BF920}] => C:\Users\Martys\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [TCP Query User{7997ABD7-2856-407D-AF38-707694E58DA1}C:\users\martys\appdata\roaming\dropbox\bin\dropbox.exe] => C:\users\martys\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [UDP Query User{DDD1E289-03E3-4671-87CB-63703BCF31EE}C:\users\martys\appdata\roaming\dropbox\bin\dropbox.exe] => C:\users\martys\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [{146DF4FD-04E9-4D29-9F97-D9FBD9EE3A60}] => C:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [{28497535-1680-467F-8FE9-6DAC0D2BBC50}] => C:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [{3C29778E-6A1D-4BA4-885E-67FC0A6D218C}] => C:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [{3FA75805-59ED-4AD6-926E-C56E3798A298}] => C:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [{2FF7B7A3-B489-48E2-8084-CFC27A469F5A}] => D:\Hry\Stronghold Crusader Extreme HD\Stronghold Crusader.exe
FirewallRules: [{131E0A75-435D-448D-8A24-9305B1F75F04}] => D:\Hry\Stronghold Crusader Extreme HD\Stronghold Crusader.exe
FirewallRules: [{646BE58E-DAD8-48F2-84A3-330E33183C85}] => D:\Hry\Stronghold Crusader Extreme HD\Stronghold Crusader.exe
FirewallRules: [{07FB7B8B-9336-45A2-A43F-85BA52819B82}] => D:\Hry\Stronghold Crusader Extreme HD\Stronghold Crusader.exe
FirewallRules: [{26560775-8568-4E3F-BAF4-A0EF9FEC1BE1}] => C:\Users\Martys\AppData\Roaming\uTorrent\utorrent.exe
FirewallRules: [{E8A6013C-9095-498E-8F67-D5847CEC96D3}] => C:\Users\Martys\AppData\Roaming\uTorrent\utorrent.exe
FirewallRules: [{D37DDD12-3321-439C-AD3A-547A13A0A0EA}] => C:\Users\Martys\AppData\Roaming\uTorrent\utorrent.exe
FirewallRules: [{C4CAEA1C-7B82-48A4-AF58-1894D7DA5365}] => C:\Users\Martys\AppData\Roaming\uTorrent\utorrent.exe
FirewallRules: [{9C744B39-4377-40ED-928A-2BC594C32A2B}] => D:\Hry\Stronghold Crusader Extreme HD\Stronghold Crusader.exe
FirewallRules: [{C4CD9D8E-7C29-4D51-A735-3FB7CE6078FA}] => D:\Hry\Stronghold Crusader Extreme HD\Stronghold Crusader.exe
FirewallRules: [{EC50E916-855F-4EBB-8D52-8602BBB1B64C}] => D:\Hry\SteamLibrary\SteamApps\common\nmrih\sdk\hl2.exe
FirewallRules: [{D2B9B2E4-A858-400D-870C-C6F0E982F586}] => D:\Hry\SteamLibrary\SteamApps\common\nmrih\sdk\hl2.exe
FirewallRules: [{31B422ED-9AB3-4E91-B80C-DDCE9FA7898A}] => D:\Hry\SteamLibrary\SteamApps\common\Team Fortress 2\hl2.exe
FirewallRules: [{7C68A57E-BB51-4860-B114-354C94392424}] => D:\Hry\SteamLibrary\SteamApps\common\Team Fortress 2\hl2.exe
FirewallRules: [{75DA3ABA-4562-4946-8A20-D0BDCC926150}] => D:\Hry\SteamLibrary\SteamApps\common\Portal\hl2.exe
FirewallRules: [{FBB09F8B-EB68-488D-9378-5637F4E72069}] => D:\Hry\SteamLibrary\SteamApps\common\Portal\hl2.exe
FirewallRules: [{D2CC72FA-2AA8-41D8-9A7C-8F67CE1E178A}] => D:\Hry\SteamLibrary\SteamApps\common\Half-Life 2\hl2.exe
FirewallRules: [{C5452E04-8EA1-4900-B181-7CC666A885F6}] => D:\Hry\SteamLibrary\SteamApps\common\Half-Life 2\hl2.exe
FirewallRules: [{5E460228-26A3-45C3-BD7A-1E5312DC17A4}] => D:\Hry\World_of_Warships\WoWSLauncher.exe
FirewallRules: [{90878D0C-FD29-4DCB-B374-A149B9BB91C1}] => D:\Hry\World_of_Warships\WoWSLauncher.exe
FirewallRules: [{6F2DAB55-D0AC-4F84-9679-00B98475C828}] => D:\Hry\World_of_Warships\worldofwarships.exe
FirewallRules: [{A9397F71-4492-4672-83B5-F4BC3DDCCA50}] => D:\Hry\World_of_Warships\worldofwarships.exe
FirewallRules: [{42EB54FB-12DC-43D9-9C62-5FDCFFD3AFEE}] => D:\Hry\SteamLibrary\SteamApps\common\chivalrymedievalwarfarebeta\Binaries\Win64\CMW.exe
FirewallRules: [{6876C976-501E-4406-9DA9-01DE4E590EBF}] => D:\Hry\SteamLibrary\SteamApps\common\chivalrymedievalwarfarebeta\Binaries\Win64\CMW.exe
FirewallRules: [{BE68961F-437A-47DD-A403-1632ED11EE16}] => D:\Hry\SteamLibrary\SteamApps\common\chivalrymedievalwarfarebeta\CDW\Binaries\Win64\CDW.exe
FirewallRules: [{46C8C31A-B2C1-4BC2-ADC4-3F7BF9BE9717}] => D:\Hry\SteamLibrary\SteamApps\common\chivalrymedievalwarfarebeta\CDW\Binaries\Win64\CDW.exe
FirewallRules: [{AE45E862-9448-4399-BE4A-F94833D7703D}] => D:\Hry\SteamLibrary\SteamApps\common\chivalrymedievalwarfarebeta\Binaries\Win32\CMW.exe
FirewallRules: [{CFFCFF3F-9216-4FFB-97CC-368249915F88}] => D:\Hry\SteamLibrary\SteamApps\common\chivalrymedievalwarfarebeta\Binaries\Win32\CMW.exe
FirewallRules: [{9D347CCC-9374-4A5F-AD50-F9F17B9259F3}] => D:\Hry\SteamLibrary\SteamApps\common\chivalrymedievalwarfarebeta\CDW\Binaries\Win32\CDW.exe
FirewallRules: [{7AE957BF-6D3F-4A62-BB14-A36A9B87752A}] => D:\Hry\SteamLibrary\SteamApps\common\chivalrymedievalwarfarebeta\CDW\Binaries\Win32\CDW.exe
FirewallRules: [{68D1419F-5491-4E87-B510-CB6D556C646F}] => D:\Hry\SteamLibrary\SteamApps\common\chivalrymedievalwarfarebeta\ChivLauncher.exe
FirewallRules: [{70A02ACC-1477-4795-B273-21280CCE3B0A}] => D:\Hry\SteamLibrary\SteamApps\common\chivalrymedievalwarfarebeta\ChivLauncher.exe
FirewallRules: [{E978754F-7AD6-4402-BA34-29D1B29E9E31}] => D:\Hry\SteamLibrary\SteamApps\common\chivalrymedievalwarfare\Binaries\Win64\CMW.exe
FirewallRules: [{28A027F6-97DE-410E-8A6B-E872B745DD2E}] => D:\Hry\SteamLibrary\SteamApps\common\chivalrymedievalwarfare\Binaries\Win64\CMW.exe
FirewallRules: [{4EBB7CB1-86AE-4CE0-876A-428DE9E90B9E}] => D:\Hry\SteamLibrary\SteamApps\common\chivalrymedievalwarfare\CDW\Binaries\Win64\CDW.exe
FirewallRules: [{56E27359-9870-4DCF-A378-991F2F1AE1BE}] => D:\Hry\SteamLibrary\SteamApps\common\chivalrymedievalwarfare\CDW\Binaries\Win64\CDW.exe
FirewallRules: [{0BD9F7A6-0BF6-48A9-B89B-821A3327CD0B}] => D:\Hry\SteamLibrary\SteamApps\common\chivalrymedievalwarfare\Binaries\Win32\CMW.exe
FirewallRules: [{21368C02-8379-4FC5-8736-08A0FDBE120A}] => D:\Hry\SteamLibrary\SteamApps\common\chivalrymedievalwarfare\Binaries\Win32\CMW.exe
FirewallRules: [{26DE82FF-E28B-4B28-A63A-2E6C0EE3550A}] => D:\Hry\SteamLibrary\SteamApps\common\chivalrymedievalwarfare\CDW\Binaries\Win32\CDW.exe
FirewallRules: [{A4807949-707C-4C5D-B0C1-8748DA0F1F57}] => D:\Hry\SteamLibrary\SteamApps\common\chivalrymedievalwarfare\CDW\Binaries\Win32\CDW.exe
FirewallRules: [{CFAAF85E-C9DF-4CE6-9720-8E5881D961C5}] => D:\Hry\SteamLibrary\SteamApps\common\chivalrymedievalwarfare\ChivLauncher.exe
FirewallRules: [{C3A185AD-9DDF-4231-9A55-B14D17022DFC}] => D:\Hry\SteamLibrary\SteamApps\common\chivalrymedievalwarfare\ChivLauncher.exe
FirewallRules: [{ECA80055-0F99-406B-8A51-355AF15A5028}] => C:\Program Files\Samsung\Samsung Link\Samsung Link.exe
FirewallRules: [{4A595E10-BB9D-4E0D-B56E-0EC1A8396834}] => C:\Program Files\Samsung\Samsung Link\Samsung Link Tray Agent.exe
FirewallRules: [{68658347-E667-433C-B6EB-CAAAF5D2118B}] => C:\Program Files\Samsung\Samsung Link\Samsung Link Tray Agent.exe
FirewallRules: [{561C55AD-869E-493D-B037-9332EEE49AEC}] => C:\Program Files\Samsung\Samsung Link\Samsung Link.exe
FirewallRules: [{B273A40E-11DE-43F9-A97E-E4A4859119AE}] => C:\Program Files (x86)\AVG\Av\avgmfapx.exe
FirewallRules: [{D0551737-2532-45B3-87FC-ADBB3EBE97AC}] => C:\Program Files (x86)\AVG\Av\avgmfapx.exe
FirewallRules: [TCP Query User{223A7289-7FFA-40EF-B214-6590F6CF4A9C}D:\hry\steamlibrary\steamapps\common\war thunder\win64\aces.exe] => D:\hry\steamlibrary\steamapps\common\war thunder\win64\aces.exe
FirewallRules: [UDP Query User{B8BE316A-E748-4B18-AC84-96F7F9D680BF}D:\hry\steamlibrary\steamapps\common\war thunder\win64\aces.exe] => D:\hry\steamlibrary\steamapps\common\war thunder\win64\aces.exe
FirewallRules: [{6813C715-07A0-4408-95A6-9D78F46107AB}] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{F0226A3B-B1C9-4C0B-AC12-3E3B17E21694}] => C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{9DF7B3BB-9BCE-4D05-A9E0-F1366891C8D7}] => C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{F2D2C74E-C01F-4377-B9C8-09F83166C99F}] => C:\Program Files (x86)\AVG\Av\avgnsa.exe
FirewallRules: [{E4B31E15-5134-4AEA-A4CA-A2A4664D308E}] => C:\Program Files (x86)\AVG\Av\avgnsa.exe
FirewallRules: [{9A74FCA3-8008-47BB-BFFA-D025BE42EB25}] => C:\Program Files (x86)\AVG\Av\avgemca.exe
FirewallRules: [{66D39D58-899C-410F-B3ED-A49BE31296B8}] => C:\Program Files (x86)\AVG\Av\avgemca.exe

==================== Restore Points =========================

21-12-2016 19:12:24 ComboFix created restore point

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (12/21/2016 04:07:28 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Generování kontextu aktivace pro C:\Program Files (x86)\Common Files\Acronis\DiskDirector\WinPE\Files\mmsBundle.dll se nezdařilo.
Závislé sestavení Microsoft.VC80.CRT,processorArchitecture="x86",type="win32",version="8.0.50727.762" nelze najít.
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.

Error: (12/21/2016 04:07:18 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Generování kontextu aktivace pro C:\Program Files (x86)\Common Files\Acronis\DiskDirector\WinPE\Files\ManagementConsole.exe se nezdařilo.
Závislé sestavení Microsoft.VC80.CRT,processorArchitecture="x86",type="win32",version="8.0.50727.762" nelze najít.
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.

Error: (12/21/2016 04:06:42 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Generování kontextu aktivace pro C:\Program Files (x86)\Common Files\Acronis\DiskDirector\WinPE\Files\RecoveryExpert.exe se nezdařilo.
Závislé sestavení Microsoft.VC80.CRT,processorArchitecture="x86",type="win32",version="8.0.50727.762" nelze najít.
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.

Error: (12/21/2016 04:04:38 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Generování kontextu aktivace pro C:\Program Files (x86)\Common Files\Acronis\DiskDirector\WinPE\Files\systeminfo.exe se nezdařilo.
Závislé sestavení Microsoft.VC80.CRT,processorArchitecture="x86",type="win32",version="8.0.50727.762" nelze najít.
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.

Error: (12/20/2016 03:19:47 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Generování kontextu aktivace pro C:\Program Files (x86)\Common Files\Acronis\DiskDirector\WinPE\Files\mmsBundle.dll se nezdařilo.
Závislé sestavení Microsoft.VC80.CRT,processorArchitecture="x86",type="win32",version="8.0.50727.762" nelze najít.
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.

Error: (12/20/2016 03:19:33 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Generování kontextu aktivace pro C:\Program Files (x86)\Common Files\Acronis\DiskDirector\WinPE\Files\ManagementConsole.exe se nezdařilo.
Závislé sestavení Microsoft.VC80.CRT,processorArchitecture="x86",type="win32",version="8.0.50727.762" nelze najít.
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.

Error: (12/20/2016 03:18:56 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Generování kontextu aktivace pro C:\Program Files (x86)\Common Files\Acronis\DiskDirector\WinPE\Files\RecoveryExpert.exe se nezdařilo.
Závislé sestavení Microsoft.VC80.CRT,processorArchitecture="x86",type="win32",version="8.0.50727.762" nelze najít.
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.

Error: (12/20/2016 03:16:31 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Generování kontextu aktivace pro C:\Program Files (x86)\Common Files\Acronis\DiskDirector\WinPE\Files\systeminfo.exe se nezdařilo.
Závislé sestavení Microsoft.VC80.CRT,processorArchitecture="x86",type="win32",version="8.0.50727.762" nelze najít.
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.

Error: (12/19/2016 11:15:44 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Generování kontextu aktivace pro C:\Program Files (x86)\Common Files\Acronis\DiskDirector\WinPE\Files\mmsBundle.dll se nezdařilo.
Závislé sestavení Microsoft.VC80.CRT,processorArchitecture="x86",type="win32",version="8.0.50727.762" nelze najít.
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.

Error: (12/19/2016 11:15:30 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Generování kontextu aktivace pro C:\Program Files (x86)\Common Files\Acronis\DiskDirector\WinPE\Files\ManagementConsole.exe se nezdařilo.
Závislé sestavení Microsoft.VC80.CRT,processorArchitecture="x86",type="win32",version="8.0.50727.762" nelze najít.
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.


System errors:
=============
Error: (12/21/2016 07:22:51 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Byla přijata následující výstraha o závažné chybě: 40.

Error: (12/21/2016 07:22:51 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Byla přijata následující výstraha o závažné chybě: 40.

Error: (12/21/2016 07:22:39 PM) (Source: Service Control Manager) (EventID: 7006) (User: )
Description: Volání ScRegSetValueExW skončilo neúspěšné pro FailureActions s touto chybou:
Přístup byl odepřen.

Error: (12/21/2016 07:21:57 PM) (Source: Service Control Manager) (EventID: 7006) (User: )
Description: Volání ScRegSetValueExW skončilo neúspěšné pro FailureActions s touto chybou:
Přístup byl odepřen.

Error: (12/21/2016 07:21:56 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba AVGIDSAgent neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Error: (12/21/2016 07:21:56 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby AVGIDSAgent bylo dosaženo časového limitu (30000 ms).

Error: (12/21/2016 07:04:26 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Byla přijata následující výstraha o závažné chybě: 40.

Error: (12/21/2016 07:04:26 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Byla přijata následující výstraha o závažné chybě: 40.

Error: (12/21/2016 07:04:24 PM) (Source: Service Control Manager) (EventID: 7006) (User: )
Description: Volání ScRegSetValueExW skončilo neúspěšné pro FailureActions s touto chybou:
Přístup byl odepřen.

Error: (12/21/2016 07:03:43 PM) (Source: Service Control Manager) (EventID: 7006) (User: )
Description: Volání ScRegSetValueExW skončilo neúspěšné pro FailureActions s touto chybou:
Přístup byl odepřen.


CodeIntegrity:
===================================
Date: 2016-12-20 23:36:42.645
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2016-12-20 23:36:42.614
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2016-12-20 23:36:42.567
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2016-12-20 23:36:42.536
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2016-12-20 23:29:24.970
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2016-12-20 23:29:24.924
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2016-12-20 23:29:24.877
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2016-12-20 23:29:24.846
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2016-12-20 02:16:21.560
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2016-12-20 02:16:21.529
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


==================== Memory info ===========================

Processor: AMD Athlon(tm) X4 740 Quad Core Processor
Percentage of memory in use: 86%
Total physical RAM: 4048.01 MB
Available physical RAM: 531.83 MB
Total Virtual: 8094.21 MB
Available Virtual: 4032.61 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:195.21 GB) (Free:82.23 GB) NTFS
Drive d: () (Fixed) (Total:736.2 GB) (Free:89.98 GB) NTFS
Drive e: (Místní disk) (Fixed) (Total:232.88 GB) (Free:37.51 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or (Size: 931.5 GB) (Disk ID: 8121C4B6)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=195.2 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=736.2 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (Size: 232.9 GB) (Disk ID: 11C711C6)
Partition 1: (Active) - (Size=232.9 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================

[jaro3]

Prosím, postupuj následujícím způsobem:
Otevřít poznámkový blok (Start => Všechny programy => Příslušenství => Poznámkový blok).
Prosím, zkopíruj do něj celý obsah níže.

Kód: Vybrat vše

Start
CloseProcesses:
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
SearchScopes: HKU\S-1-5-21-2131128835-2277457285-3308782453-1000 -> DefaultScope {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-2131128835-2277457285-3308782453-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
FF Extension: (No Name) - C:\Users\Martys\AppData\Roaming\Mozilla\Firefox\Profiles\qbvf5u47.default\extensions\default_newtabff@gmail.com [not found]
FF Extension: (No Name) - C:\Users\Martys\AppData\Roaming\Mozilla\Firefox\Profiles\qbvf5u47.default\extensions\avg@toolbar.xpi [not found]
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
S3 cpuz130; \??\C:\Users\Martys\AppData\Local\Temp\cpuz130\cpuz_x64.sys [X]
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
D C:\Program Files (x86)\Spybot - Search & Destroy 2
C:\ProgramData\Spybot - Search & Destroy
C:\Users\Martys\derrr.dat
Task: {DAB24538-6ABB-4F45-8D82-B2D4D1EBF30D} - System32\Tasks\{40ED30C1-922E-4BEF-A76D-F09C985F970D} => pcalua.exe -a C:\Users\Martys\AppData\Local\Temp\Rar$EXa0.477\DRIVER <==== ATTENTION
IE restricted site: HKU\.DEFAULT\...\007guard.com -> install.007guard.com
IE restricted site: HKU\.DEFAULT\...\008i.com -> 008i.com
IE restricted site: HKU\.DEFAULT\...\008k.com -> www.008k.com
IE restricted site: HKU\.DEFAULT\...\00hq.com -> www.00hq.com
IE restricted site: HKU\.DEFAULT\...\010402.com -> 010402.com
IE restricted site: HKU\.DEFAULT\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\.DEFAULT\...\0scan.com -> www.0scan.com
IE restricted site: HKU\.DEFAULT\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\.DEFAULT\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\.DEFAULT\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\.DEFAULT\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\.DEFAULT\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\.DEFAULT\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\.DEFAULT\...\10sek.com -> www.10sek.com
IE restricted site: HKU\.DEFAULT\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\.DEFAULT\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\.DEFAULT\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\.DEFAULT\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\.DEFAULT\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\.DEFAULT\...\123simsen.com -> www.123simsen.com

There are 7866 more sites.

IE trusted site: HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\...\localhost -> localhost
IE restricted site: HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\...\007guard.com -> install.007guard.com
IE restricted site: HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\...\008k.com -> www.008k.com
IE restricted site: HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\...\00hq.com -> www.00hq.com
IE restricted site: HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\...\010402.com -> 010402.com
IE restricted site: HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\...\0scan.com -> www.0scan.com
IE restricted site: HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\...\10sek.com -> www.10sek.com
IE restricted site: HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\...\123simsen.com -> www.123simsen.com

EmptyTemp:
End

(Můžeš použít funkci „vybrat vše“, klepni pravým tlačítkem myši na levé horní políčko v otevřeném poznámkovém bloku a zvol „ Vložit“).

Ulož jej na na plochu jako fixlist.txt


Spusťt FRST a stiskni tlačítko „Fix“ (Opravit) jen jednou a čekej.
Nástroj vypracuje log na ploše (Fixlog.txt), prosím zkopíruj sem celý jeho obsah.

Aktualizuj javu:
http://www.oracle.com/technetwork/java/ ... 33155.html
Java SE Runtime Environment 8

Klikni na Accept License Agreement
Vyber si OS (Windows nebo Windows x64, Offline Installation)
jre-8-windows-i586-p.exe nebo
jre-8-windows-x64.exe
Stáhni ( download) a nainstaluj.
Ostatní javy odeber v přidat/odebrat programy.


TuneUp Utilities 2012--- to bych odinstaloval.

[Marťan]

Fix result of Farbar Recovery Scan Tool (x64) Version: 17-12-2016
Ran by Martys (21-12-2016 20:36:58) Run:1
Running from C:\Users\Martys\Desktop
Loaded Profiles: Martys (Available Profiles: Martys)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CloseProcesses:
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
SearchScopes: HKU\S-1-5-21-2131128835-2277457285-3308782453-1000 -> DefaultScope {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-2131128835-2277457285-3308782453-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
FF Extension: (No Name) - C:\Users\Martys\AppData\Roaming\Mozilla\Firefox\Profiles\qbvf5u47.default\extensions\default_newtabff@gmail.com [not found]
FF Extension: (No Name) - C:\Users\Martys\AppData\Roaming\Mozilla\Firefox\Profiles\qbvf5u47.default\extensions\avg@toolbar.xpi [not found]
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
S3 cpuz130; \??\C:\Users\Martys\AppData\Local\Temp\cpuz130\cpuz_x64.sys [X]
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
D C:\Program Files (x86)\Spybot - Search & Destroy 2
C:\ProgramData\Spybot - Search & Destroy
C:\Users\Martys\derrr.dat
Task: {DAB24538-6ABB-4F45-8D82-B2D4D1EBF30D} - System32\Tasks\{40ED30C1-922E-4BEF-A76D-F09C985F970D} => pcalua.exe -a C:\Users\Martys\AppData\Local\Temp\Rar$EXa0.477\DRIVER <==== ATTENTION
IE restricted site: HKU\.DEFAULT\...\007guard.com -> install.007guard.com
IE restricted site: HKU\.DEFAULT\...\008i.com -> 008i.com
IE restricted site: HKU\.DEFAULT\...\008k.com -> www.008k.com
IE restricted site: HKU\.DEFAULT\...\00hq.com -> www.00hq.com
IE restricted site: HKU\.DEFAULT\...\010402.com -> 010402.com
IE restricted site: HKU\.DEFAULT\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\.DEFAULT\...\0scan.com -> www.0scan.com
IE restricted site: HKU\.DEFAULT\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\.DEFAULT\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\.DEFAULT\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\.DEFAULT\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\.DEFAULT\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\.DEFAULT\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\.DEFAULT\...\10sek.com -> www.10sek.com
IE restricted site: HKU\.DEFAULT\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\.DEFAULT\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\.DEFAULT\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\.DEFAULT\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\.DEFAULT\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\.DEFAULT\...\123simsen.com -> www.123simsen.com

There are 7866 more sites.

IE trusted site: HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\...\localhost -> localhost
IE restricted site: HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\...\007guard.com -> install.007guard.com
IE restricted site: HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\...\008k.com -> www.008k.com
IE restricted site: HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\...\00hq.com -> www.00hq.com
IE restricted site: HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\...\010402.com -> 010402.com
IE restricted site: HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\...\0scan.com -> www.0scan.com
IE restricted site: HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\...\10sek.com -> www.10sek.com
IE restricted site: HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\...\123simsen.com -> www.123simsen.com

EmptyTemp:
End
*****************

Processes closed successfully.
"HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer" => key removed successfully
"HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\SOFTWARE\Policies\Microsoft\Internet Explorer" => key removed successfully
HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully
"HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66}" => key removed successfully
HKCR\CLSID\{012E1000-F331-11DB-8314-0800200C9A66} => key not found.
C:\Users\Martys\AppData\Roaming\Mozilla\Firefox\Profiles\qbvf5u47.default\extensions\default_newtabff@gmail.com => path removed successfully
C:\Users\Martys\AppData\Roaming\Mozilla\Firefox\Profiles\qbvf5u47.default\extensions\avg@toolbar.xpi => path removed successfully
"HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE" => key removed successfully
"HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE" => key removed successfully
cpuz130 => service removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
D C:\Program Files (x86)\Spybot - Search & Destroy 2 => Error: No automatic fix found for this entry.
C:\ProgramData\Spybot - Search & Destroy => moved successfully
C:\Users\Martys\derrr.dat => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{DAB24538-6ABB-4F45-8D82-B2D4D1EBF30D}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DAB24538-6ABB-4F45-8D82-B2D4D1EBF30D}" => key removed successfully
C:\Windows\System32\Tasks\{40ED30C1-922E-4BEF-A76D-F09C985F970D} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{40ED30C1-922E-4BEF-A76D-F09C985F970D}" => key removed successfully
"HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\007guard.com" => key removed successfully
"HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\008i.com" => key removed successfully
"HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\008k.com" => key removed successfully
"HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\00hq.com" => key removed successfully
"HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\010402.com" => key removed successfully
"HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\032439.com" => key removed successfully
"HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\0scan.com" => key removed successfully
"HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\1-2005-search.com" => key removed successfully
"HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\1-domains-registrations.com" => key removed successfully
"HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\1000gratisproben.com" => key removed successfully
"HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\1001namen.com" => key removed successfully
"HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\100888290cs.com" => key removed successfully
"HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\100sexlinks.com" => key removed successfully
"HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\10sek.com" => key removed successfully
"HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\12-26.net" => key removed successfully
"HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\12-27.net" => key removed successfully
"HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\123fporn.info" => key removed successfully
"HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\123haustiereundmehr.com" => key removed successfully
"HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\123moviedownload.com" => key removed successfully
"HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\123simsen.com" => key removed successfully
There are 7866 more sites. => Error: No automatic fix found for this entry.
"HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\localhost" => key removed successfully
"HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\007guard.com" => key removed successfully
"HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\008i.com" => key removed successfully
"HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\008k.com" => key removed successfully
"HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\00hq.com" => key removed successfully
"HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\010402.com" => key removed successfully
"HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\032439.com" => key removed successfully
"HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\0scan.com" => key removed successfully
"HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\1-2005-search.com" => key removed successfully
"HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\1-domains-registrations.com" => key removed successfully
"HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\1000gratisproben.com" => key removed successfully
"HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\1001namen.com" => key removed successfully
"HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\100888290cs.com" => key removed successfully
"HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\100sexlinks.com" => key removed successfully
"HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\10sek.com" => key removed successfully
"HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\12-26.net" => key removed successfully
"HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\12-27.net" => key removed successfully
"HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\123fporn.info" => key removed successfully
"HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\123haustiereundmehr.com" => key removed successfully
"HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\123moviedownload.com" => key removed successfully
"HKU\S-1-5-21-2131128835-2277457285-3308782453-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\123simsen.com" => key removed successfully

=========== EmptyTemp: ==========

BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 6485884 B
Java, Flash, Steam htmlcache => 383413177 B
Windows/system/drivers => 669958 B
Edge => 0 B
Chrome => 33442875 B
Firefox => 3112671 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 33058 B
Public => 0 B
ProgramData => 0 B
systemprofile => 66228 B
systemprofile32 => 66660 B
LocalService => 33125 B
NetworkService => 33125 B
Martys => 18590142 B
UpdatusUser => 0 B

RecycleBin => 0 B
EmptyTemp: => 433.3 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 20:37:21 ====

[Marťan]

Java a Tune Ap jsem tedy odinstaloval.

[jaro3]

Aktualizuj javu

Co problémy?

[Marťan]

Javu jsem aktualizoval ze stránky cos mi tu napsal. Problémy nejsou, jen vytížení RAM je pořád cca 70%. Nevím možná to tak je když mám jen 4GB RAM. Ještě bych měl dotaz, je dobrý windows firewall nebo je lepší jej zakázat a mít jiný, a když jo můžeš mi nějaký doporučit? Vím že kdysi jak jsem měl ještě Win XP že stál za nic, teď nevím jak to je.

[jaro3]

4GB je málo , já mám 6GB na win7 x64 a mám vytíženost 39%.
Firewall používám ten z windows , jinak zkus Comodo firewall.

Pokud nejsou problémy , je to vše a můžeš dát vyřešeno , zelenou fajfku.

[Marťan]

OK, díky moc. Je to určitě lepší. Dnes jdu pro RAM co jsem koupil synu k vánocům, ji zkusím prvně přidat k té mojí a uvidím.
Ještě jednou děkuji.

[Orcus]

Vyčisti systém CCleanerem

====================================================

Stáhni si zde DelFix
https://toolslib.net/downloads/viewdownload/2-delfix/

ulož si soubor na plochu.
Poklepáním na ikonu spusť nástroj Delfix.exe
( Ve Windows Vista, Windows 7 a 8, musíš spustit soubor pravým tlačítkem myši -> Spustit jako správce .
V hlavním menu, zkontroluj tyto možnosti - Odstranění dezinfekce nástrojů (Remove desinfection tools) – Vyčistit body obnovy (Purge System Restore) .
Poté klikněte na tlačítko Spustit (Run) a nech nástroj dělat svoji práci.

Poté se zpráva se otevře (DelFix.txt). Vlož celý obsah zprávy sem. Jinak je zpráva zde: C: \ DelFix.txt

Za nás je to vše a můžeš dát vyřešeno , zelenou fajfku.