Zpomalený notebook, Esent spadl

[Paveja]

Prosím o kontrolu:

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:21-05-2016
Ran by KM (administrator) on KM-NTB (21-05-2016 23:04:55)
Running from C:\Users\KM\Downloads
Loaded Profiles: KM & Guest (Available Profiles: KM & Guest)
Platform: Microsoft® Windows Vista™ Business Service Pack 2 (X86) Language: Čeština (Česká republika)
Internet Explorer Version 9 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\System32\SLsvc.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Arachnoid Biometrics Identification Group Corp.) C:\Program Files\Acer\Acer Bio Protection\CompPtcVUI.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Teruten) C:\Windows\System32\FsUsbExService.Exe
(Hewlett-Packard Company) C:\Program Files\HP\Common\HPSupportSolutionsFrameworkService.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
() C:\Program Files\Acer\Acer Bio Protection\BASVC.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\VS7DEBUG\mdm.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Reimage®) C:\Program Files\Reimage\Reimage Protector\ReiGuard.exe
(TomTom) C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
(Reimage®) C:\Program Files\Reimage\Reimage Protector\ReiSystem.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avmailc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avwebgrd.exe
(Microsoft Corporation) C:\Windows\System32\conime.exe
(Avira Operations GmbH & Co. KG) C:\ProgramData\Avira\AntiVir Desktop\TEMP\SELFUPDATE\update.exe
(Avira Operations GmbH & Co. KG) C:\ProgramData\Avira\AntiVir Desktop\TEMP\SELFUPDATE\updrgui.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
(Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\calc.exe
(Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe
(Microsoft Corporation) C:\Windows\System32\wuauclt.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\update.exe
(reimage) C:\Program Files\Reimage\Reimage Repair\Reimage.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [avgnt] => C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [704512 2015-03-17] (Avira Operations GmbH & Co. KG)
Winlogon\Notify\AWinNotifyVitaKey MC3000: C:\Program Files\Acer\Acer Bio Protection\WinNotify.dll [2009-06-10] (Arachnoid Biometrics Identification Group Corp.)
HKU\S-1-5-21-3309511818-1420203638-3002059093-1000\...\Run: [WMPNSCFG] => C:\Program Files\Windows Media Player\WMPNSCFG.exe [202240 2008-01-19] (Microsoft Corporation)
HKU\S-1-5-21-3309511818-1420203638-3002059093-1000\...\Run: [GoogleChromeAutoLaunch_43FFAC4A1726B38F4A69481AE36D8B32] => C:\Program Files\Google\Chrome\Application\chrome.exe [874648 2016-04-06] (Google Inc.)
HKU\S-1-5-21-3309511818-1420203638-3002059093-1000\...\MountPoints2: {7c7ae73e-5726-11de-a532-00238b1eb737} - F:\InstallSeagateManager.exe
HKU\S-1-5-21-3309511818-1420203638-3002059093-1000\...\MountPoints2: {916b83e1-79aa-11de-a98a-00238b1eb737} - F:\setupSNK.exe
HKU\S-1-5-21-3309511818-1420203638-3002059093-1000\...\InprocServer32: [Default-pngfilt] <==== ATTENTION

HKU\S-1-5-18\...\Run: [KSS] => "C:\Program Files\Kaspersky Lab\Kaspersky Security Scan\kss.exe" autorun
Lsa: [Notification Packages] scecli C:\Program Files\Acer\Acer Bio Protection\PwdFilter
ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\system32\AcSignIcon.dll [2010-02-09] (Autodesk, Inc.)
Startup: C:\Users\KM\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk [2014-09-19]
ShortcutTarget: Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk -> C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)
GroupPolicyScripts: Restriction <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Winsock: Catalog5 02 C:\Windows\system32\napinsp.dll [50176 2008-01-19] (Společnost Microsoft)
Winsock: Catalog9 01 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [507984 2015-03-17] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 02 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [507984 2015-03-17] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 03 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [507984 2015-03-17] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 04 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [507984 2015-03-17] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 05 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [507984 2015-03-17] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 06 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [507984 2015-03-17] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 07 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [507984 2015-03-17] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 08 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [507984 2015-03-17] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 20 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [507984 2015-03-17] (Avira Operations GmbH & Co. KG)
Hosts: 127.0.0.1 localhost
Tcpip\Parameters: [DhcpNameServer] 84.21.97.129 84.16.96.2
Tcpip\..\Interfaces\{0FDB7A69-6B82-41B2-90B5-71BF9EB42327}: [DhcpNameServer] 84.21.97.129 84.16.96.2
Tcpip\..\Interfaces\{7CC26F06-026F-4884-8B0B-763AAA8C3636}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{CA569B12-81A1-42C1-A558-7EA940BB499B}: [DhcpNameServer] 84.21.97.129 84.16.96.2

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://search.avira.net/#web/result?source=art&q=
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://search.avira.net/#web/result?source=art&q=
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxps://search.avira.net/#web/result?source=art&q=
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxps://search.avira.net/#web/result?source=art&q=
HKU\S-1-5-21-3309511818-1420203638-3002059093-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://search.avira.net/#web/result?source=art&q=
HKU\S-1-5-21-3309511818-1420203638-3002059093-1000\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxps://search.avira.net/#web/result?source=art&q=
HKU\S-1-5-21-3309511818-1420203638-3002059093-1000\Software\Microsoft\Internet Explorer\Main,ICQ Search = hxxp://search.icq.com/search/results.php?q={searchTerms}&ch_id=osd
HKU\S-1-5-21-3309511818-1420203638-3002059093-1000\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://toolbar.inbox.com/search/dispatcher.aspx?tp=aus&qkw=%s&tbid=%tb_id&%language
HKU\S-1-5-21-3309511818-1420203638-3002059093-1000\Software\Microsoft\Internet Explorer\Main,Backup.Old.Start Page = hxxp://mystart.incredibar.com/mb119?a=6R8k6YSyiF&i=26
HKU\S-1-5-21-3309511818-1420203638-3002059093-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxps://search.avira.net/#web/result?source=art&q=
URLSearchHook: HKLM -> Default = {855F3B16-6D32-4fe6-8A56-BBB695989046}
URLSearchHook: HKLM - (No Name) - {855F3B16-6D32-4fe6-8A56-BBB695989046} - No File
URLSearchHook: HKU\S-1-5-21-3309511818-1420203638-3002059093-1000 - (No Name) - {D3D233D5-9F6D-436C-B6C7-E63F77503B30} - No File
URLSearchHook: HKU\S-1-5-21-3309511818-1420203638-3002059093-1000 - (No Name) - {50fafaf0-70a9-419d-a109-fa4b4ffd4e37} - No File
SearchScopes: HKLM -> DefaultScope value is missing
SearchScopes: HKLM -> {CCC7A320-B3CA-4199-B1A6-9F516DD69829} URL = hxxp://www.webhledani.cz/results.aspx?i=39&tp= ... earchTerms}
SearchScopes: HKU\S-1-5-21-3309511818-1420203638-3002059093-1000 -> DefaultScope {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxps://isearch.avg.com/search?cid={48904EDE-85C5-4D46-9ED4-A541D347795C}&mid=6d0ecbffd638987b58ee11a702f483e6-ad12a5eba6cda33de8ce03307f3930f0bd5a7333&lang=cs&ds=AVG&pr=fr&d=2012-02-05 10:26:10&v=12.2.5.32&sap=dsp&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3309511818-1420203638-3002059093-1000 -> Backup.Old.DefaultScope {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
SearchScopes: HKU\S-1-5-21-3309511818-1420203638-3002059093-1000 -> {483830EE-A4CD-4b71-B0A3-3D82E62A6909} URL =
SearchScopes: HKU\S-1-5-21-3309511818-1420203638-3002059093-1000 -> {5ADBF998-319C-488B-88C1-D1B3C242C19C} URL = hxxp://download.seznam.cz/vyhledavani/opensearch/seznam-cz.xml?sourceid=IE_5
SearchScopes: HKU\S-1-5-21-3309511818-1420203638-3002059093-1000 -> {6552C7DD-90A4-4387-B795-F8F96747DE19} URL = hxxp://search.icq.com/search/results.php?q={searchTerms}&ch_id=osd
SearchScopes: HKU\S-1-5-21-3309511818-1420203638-3002059093-1000 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.google.com/search?q={sear
SearchScopes: HKU\S-1-5-21-3309511818-1420203638-3002059093-1000 -> {6B059F35-4DC7-C17D-7443-5F39BF23779E} URL = hxxp://search.babylon.com/?q={searchTerms}&AF=109130&babsrc=SP_ss&mntrId=e4e76bf400000000000000238b1eb737
SearchScopes: HKU\S-1-5-21-3309511818-1420203638-3002059093-1000 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxps://isearch.avg.com/search?cid={48904EDE-85C5-4D46-9ED4-A541D347795C}&mid=6d0ecbffd638987b58ee11a702f483e6-ad12a5eba6cda33de8ce03307f3930f0bd5a7333&lang=cs&ds=AVG&pr=fr&d=2012-02-05 10:26:10&v=12.2.5.32&sap=dsp&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3309511818-1420203638-3002059093-1000 -> {BE9654C9-9D79-42ec-B55A-3CAEB12DBF58} URL = hxxp://www.icq.com/search/results.php?q={searc ... &ch_id=osd
SearchScopes: HKU\S-1-5-21-3309511818-1420203638-3002059093-1000 -> {C04B7D22-5AEC-4561-8F49-27F6269208F6} URL = hxxp://toolbar.inbox.com/search/dispatcher.aspx?tp=bs&qkw={searchTerms}&tbid=80093&lng=cs
SearchScopes: HKU\S-1-5-21-3309511818-1420203638-3002059093-1000 -> {CCC7A320-B3CA-4199-B1A6-9F516DD69829} URL = hxxp://www.webhledani.cz/results.aspx?i=39&tp= ... earchTerms}
SearchScopes: HKU\S-1-5-21-3309511818-1420203638-3002059093-501 -> DefaultScope {E4014C5A-BECB-4198-A7EA-B1E1DCE2AF89} URL = hxxp://download.seznam.cz/vyhledavani/opensearch/seznam-cz.xml?sourceid=IE_5
SearchScopes: HKU\S-1-5-21-3309511818-1420203638-3002059093-501 -> {E4014C5A-BECB-4198-A7EA-B1E1DCE2AF89} URL = hxxp://download.seznam.cz/vyhledavani/opensearch/seznam-cz.xml?sourceid=IE_5
BHO: XTTBPos00 Class -> {055FD26D-3A88-4e15-963D-DC8493744B1D} -> C:\Program Files\ICQToolbar\toolbaru.dll [2006-12-25] (IE Toolbar)
BHO: AVG Safe Search -> {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} -> No File
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll [2012-11-07] (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll [2012-11-07] (Oracle Corporation)
Toolbar: HKU\.DEFAULT -> No Name - {50FAFAF0-70A9-419D-A109-FA4B4FFD4E37} - No File
Toolbar: HKU\.DEFAULT -> No Name - {A1E75A0E-4397-4BA8-BB50-E19FB66890F4} - No File
Toolbar: HKU\S-1-5-21-3309511818-1420203638-3002059093-1000 -> No Name - {E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - No File
Toolbar: HKU\S-1-5-21-3309511818-1420203638-3002059093-1000 -> No Name - {D7E97865-918F-41E4-9CD0-25AB1C574CE8} - No File
Toolbar: HKU\S-1-5-21-3309511818-1420203638-3002059093-1000 -> No Name - {50FAFAF0-70A9-419D-A109-FA4B4FFD4E37} - No File
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_37-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_37-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_37-windows-i586.cab
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2009-02-26] (Microsoft Corporation)
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - No File

FireFox:
========
FF Plugin: @devalvr.com/DevalVR 3D plugin,version=1.0,application/x-devalvrx -> C:\ProgramData\DevalVR\npdevalvr.dll [2015-12-19] (www.devalvr.com)
FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll [2015-05-21] (Google)
FF Plugin: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files\Google\Picasa3\npPicasa3.dll [2015-10-13] (Google, Inc.)
FF Plugin: @java.com/DTPlugin,version=10.9.2 -> C:\Windows\system32\npDeployJava1.dll [2012-11-07] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.9.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2012-11-07] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin: @Skype Technologies S.A..com/Skype Web Plugin -> C:\Program Files\SkypeWebPlugin\3.2.0.23388\npSkypeWebPlugin.dll [2014-11-03] (Skype)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-02-27] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.0 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-02-27] (VideoLAN)
FF Plugin HKU\S-1-5-21-3309511818-1420203638-3002059093-1000: @autodesk.com/DWF -> C:\Program Files\Autodesk\Autodesk Design Review Browser Add-on v1.2\npADRdwf.dll [2011-01-24] (Autodesk)
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2009-07-27] [not signed]

Chrome:
=======
CHR Profile: C:\Users\KM\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Prezentace Google) - C:\Users\KM\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-02-24]
CHR Extension: (Dokumenty Google) - C:\Users\KM\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-02-24]
CHR Extension: (Disk Google) - C:\Users\KM\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-02-24]
CHR Extension: (YouTube) - C:\Users\KM\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-02-24]
CHR Extension: (Vyhledávání Google) - C:\Users\KM\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-02-24]
CHR Extension: (Tabulky Google) - C:\Users\KM\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-02-24]
CHR Extension: (Dokumenty Google offline) - C:\Users\KM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-18]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\KM\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-02]
CHR Extension: (Gmail) - C:\Users\KM\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-02-24]
CHR HKLM\...\Chrome\Extension: [${CHROME_KEY}] - C:\Program Files\Incredibar.com\incredibar\1.5.3.27\incredibar.crx <not found>
CHR HKLM\...\Chrome\Extension: [cgpnojibjokpoghebklhkdeijehkohhb] - C:\Users\KM\AppData\Local\Temp\ccex.crx <not found>
CHR HKLM\...\Chrome\Extension: [jfmjfhklogoienhpfnppmbcbjfjnkonk] - <no Path\update_url>
CHR HKLM\...\Chrome\Extension: [kkfggacklibaabdomphfdpcodjgihgon] - C:\Program Files\LSHunter.TV\stv10.crx <not found>
CHR HKLM\...\Chrome\Extension: [ogccgbmabaphcakpiclgcnmcnimhokcj] - C:\Windows\System32\jmdp\SweetNT.crx <not found>
CHR HKLM\...\Chrome\Extension: [pgafcinpmmpklohkojmllohdhomoefph] - C:\ProgramData\Browser Manager\2.3.796.11\{16cdff19-861d-48e3-a751-d99a27784753}\browsemngr.crx <not found>

Opera:
=======
StartMenuInternet: (HKLM) Operabeta - C:\Program Files\Opera Next\Launcher.exe

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AntiVirMailService; C:\Program Files\Avira\AntiVir Desktop\avmailc.exe [804600 2015-03-17] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [432888 2015-03-17] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [432888 2015-03-17] (Avira Operations GmbH & Co. KG)
R2 AntiVirWebService; C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE [992504 2015-03-17] (Avira Operations GmbH & Co. KG)
R2 EvtEng; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [860160 2008-10-16] (Intel(R) Corporation) [File not signed]
R2 FsUsbExService; C:\Windows\system32\FsUsbExService.Exe [233472 2009-03-31] (Teruten) [File not signed]
S2 gupdate1c9e9f03895f7a8; C:\Program Files\Google\Update\GoogleUpdate.exe [144200 2015-08-29] (Google Inc.)
R3 hpqcxs08; C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll [225280 2007-03-13] (Hewlett-Packard Co.) [File not signed]
R2 hpqddsvc; C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll [131072 2007-03-13] (Hewlett-Packard Co.) [File not signed]
R2 HPSupportSolutionsFrameworkService; C:\Program Files\Hp\Common\HPSupportSolutionsFrameworkService.exe [89840 2015-03-28] (Hewlett-Packard Company)
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
R2 IGBASVC; C:\Program Files\Acer\Acer Bio Protection\BASVC.exe [3435008 2009-06-10] () [File not signed]
R2 MDM; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [335872 2006-10-26] (Microsoft Corporation) [File not signed]
S2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [44032 2010-08-06] (Hewlett-Packard) [File not signed]
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [53760 2010-08-06] (Hewlett-Packard) [File not signed]
R2 RegSrvc; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [466944 2008-10-16] (Intel(R) Corporation) [File not signed]
R2 ReimageRealTimeProtector; C:\Program Files\Reimage\Reimage Protector\ReiGuard.exe [6324208 2015-08-19] (Reimage®)
S3 ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [430592 2008-04-07] (Nokia.) [File not signed]
R3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [272952 2008-01-19] (Microsoft Corporation)
S2 Browser Manager; C:\ProgramData\Browser Manager\2.3.796.11\{16cdff19-861d-48e3-a751-d99a27784753}\browsemngr.exe [X]

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 AlfaFF; C:\Windows\System32\Drivers\AlfaFF.sys [43184 2009-06-10] (Alfa Corporation)
R3 ATSWPDRV; C:\Windows\System32\DRIVERS\ATSwpDrv.sys [146688 2008-04-25] (AuthenTec, Inc.)
U2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [105864 2015-03-17] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [136216 2015-03-17] (Avira Operations GmbH & Co. KG)
U4 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [37352 2015-03-17] (Avira Operations GmbH & Co. KG)
S3 AX88772; C:\Windows\System32\DRIVERS\ax88772.sys [63104 2013-08-13] (ASIX Electronics Corp.)
S3 EsgScanner; C:\Windows\System32\DRIVERS\EsgScanner.sys [19984 2016-01-24] ()
R0 FltMgr; C:\Windows\System32\drivers\fltmgr.sys [190424 2009-04-11] (Společnost Microsoft)
R3 FsUsbExDisk; C:\Windows\system32\FsUsbExDisk.SYS [36608 2009-03-31] () [File not signed]
R2 Int15; C:\Windows\System32\drivers\int15.sys [69632 2007-01-26] () [File not signed]
R3 LVUSBSta; C:\Windows\System32\drivers\lvusbsta.sys [22016 2005-01-31] (Logitech Inc.)
S3 MOSUMAC; C:\Windows\System32\DRIVERS\MOSUMAC.SYS [41472 2008-01-18] (--)
S3 MREMP50; C:\Program Files\Common Files\Motive\MREMP50.sys [21248 2008-03-29] (Printing Communications Assoc., Inc. (PCAUSA)) [File not signed]
S3 MRESP50; C:\Program Files\Common Files\Motive\MRESP50.sys [20096 2008-03-29] (Printing Communications Assoc., Inc. (PCAUSA)) [File not signed]
R3 Ntfs; C:\Windows\system32\Drivers\Ntfs.sys [1082232 2013-03-03] (Společnost Microsoft)
S3 PID_0928; C:\Windows\System32\DRIVERS\LV561AV.SYS [211712 2005-01-31] (Logitech Inc.)
R1 ssmdrv; C:\Windows\System32\DRIVERS\ssmdrv.sys [28520 2015-03-17] (Avira GmbH)
S3 ss_bbus; C:\Windows\System32\DRIVERS\ss_bbus.sys [90112 2009-03-20] (MCCI)
S3 ss_bmdfl; C:\Windows\System32\DRIVERS\ss_bmdfl.sys [14976 2009-03-20] (MCCI Corporation)
S3 ss_bmdm; C:\Windows\System32\DRIVERS\ss_bmdm.sys [121856 2009-03-20] (MCCI Corporation)
S4 blbdrive; \SystemRoot\system32\drivers\blbdrive.sys [X]
R3 cpuz134; \??\C:\Users\KM\AppData\Local\Temp\cpuz134\cpuz134_x32.sys [X]
S3 IpInIp; system32\DRIVERS\ipinip.sys [X]
S3 MREMP50a64; \??\C:\PROGRA~1\COMMON~1\Motive\MREMP50a64.SYS [X]
S3 MREMPR5; \??\C:\PROGRA~1\COMMON~1\Motive\MREMPR5.SYS [X]
S3 MRENDIS5; \??\C:\PROGRA~1\COMMON~1\Motive\MRENDIS5.SYS [X]
S3 MRESP50a64; \??\C:\PROGRA~1\COMMON~1\Motive\MRESP50a64.SYS [X]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X]
U3 TrueSight; \??\C:\Windows\system32\TrueSight.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-05-21 23:04 - 2016-05-21 23:05 - 00024673 _____ C:\Users\KM\Downloads\FRST.txt
2016-05-21 23:04 - 2016-05-21 23:04 - 00000000 ____D C:\Users\KM\Downloads\FRST-OlderVersion
2016-05-21 23:04 - 2016-05-21 23:04 - 00000000 ____D C:\FRST
2016-05-21 22:54 - 2016-05-21 23:04 - 01733120 _____ (Farbar) C:\Users\KM\Downloads\FRST.exe
2016-05-20 20:07 - 2016-05-20 20:08 - 02318252 _____ C:\Users\KM\Desktop\techničák0001.pdf
2016-05-20 19:21 - 2016-05-20 19:29 - 171981248 _____ C:\Users\KM\Downloads\AIO_CDB_Full_Non-Network_csy_NB (1).exe
2016-05-20 18:42 - 2016-05-20 18:42 - 00336680 _____ (Igor Pavlov) C:\Users\KM\Downloads\scanjet_vista_tablet_patch.exe
2016-05-20 17:45 - 2016-05-20 17:45 - 00000221 _____ C:\Windows\NCLogConfig.ini
2016-05-19 15:48 - 2016-05-19 15:48 - 00474624 _____ C:\Users\KM\Downloads\Hypokalkulaka_15022016-kopie.xlsm
2016-05-19 15:48 - 2016-05-19 15:48 - 00474624 _____ C:\Users\KM\Downloads\Hypokalkulaka_15022016-kopie (1).xlsm
2016-05-18 21:11 - 2016-05-18 21:11 - 00865969 _____ C:\Users\KM\Downloads\vy_32_inovace_ov_1u_le_17_17.pptx
2016-05-18 21:09 - 2016-05-18 21:09 - 00448366 _____ C:\Users\KM\Downloads\vy_32_inovace_ov_1u_le_17_07.pptx
2016-05-18 21:07 - 2016-05-18 21:07 - 01499768 _____ C:\Users\KM\Downloads\vy_32_inovace_ov_1u_le_17_06.pptx
2016-05-18 21:05 - 2016-05-18 21:05 - 01712610 _____ C:\Users\KM\Downloads\vy_32_inovace_ov_1u_le_17_04.pptx
2016-05-18 21:03 - 2016-05-18 21:03 - 01820325 _____ C:\Users\KM\Downloads\vy_32_inovace_ov_1u_le_17_03.pptx
2016-05-18 20:57 - 2016-05-18 20:57 - 01121903 _____ C:\Users\KM\Downloads\vy_32_inovace_ov_1u_le_17_01.pptx
2016-05-18 17:08 - 2016-05-18 17:08 - 00000000 _____ C:\Windows\system32\reimage.rep
2016-05-18 15:44 - 2016-05-18 16:10 - 00000000 ____D C:\ReimageUndo
2016-05-18 15:44 - 2016-05-18 15:47 - 54956032 _____ C:\HKEY_LOCAL_MACHINE_COMPONENTS
2016-05-18 15:44 - 2016-05-18 15:44 - 00012304 _____ C:\Windows\system32\Native.exe
2016-05-18 15:43 - 2016-05-18 15:44 - 15704064 _____ C:\HKEY_LOCAL_MACHINE_SYSTEM
2016-05-18 13:52 - 2016-05-21 22:29 - 00000000 ____D C:\rei
2016-05-18 13:52 - 2016-05-21 22:28 - 00001889 _____ C:\Users\Public\Desktop\PC Scan & Repair by Reimage.lnk
2016-05-18 13:52 - 2016-05-18 13:52 - 00000000 ____D C:\ProgramData\Reimage Protector
2016-05-18 13:52 - 2016-05-18 13:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Reimage Repair
2016-05-18 13:52 - 2016-05-18 13:52 - 00000000 ____D C:\Program Files\Reimage
2016-05-18 13:51 - 2016-05-21 22:29 - 00000167 _____ C:\Windows\Reimage.ini
2016-05-18 13:51 - 2016-05-18 13:51 - 00768248 _____ (Reimage®) C:\Users\KM\Desktop\ReimageRepair.exe
2016-05-17 14:35 - 2016-05-17 14:35 - 00212161 _____ C:\Users\KM\Downloads\prilohy_25490.zip
2016-05-16 05:36 - 2016-05-16 05:36 - 00215179 _____ C:\Users\KM\Downloads\VY_32_INOVACE_TRZK_14.pdf
2016-05-16 05:34 - 2016-05-16 05:34 - 00315091 _____ C:\Users\KM\Downloads\VY_32_INOVACE_TRZK_11.pdf
2016-05-15 20:43 - 2016-05-15 20:43 - 00363627 _____ C:\Users\KM\Downloads\VY_32_INOVACE_TRZK_09.pdf
2016-05-15 20:41 - 2016-05-15 20:41 - 00545427 _____ C:\Users\KM\Downloads\VY_32_INOVACE_TRZK_07 (1).pdf
2016-05-15 20:40 - 2016-05-15 20:41 - 00545427 _____ C:\Users\KM\Downloads\VY_32_INOVACE_TRZK_07.pdf
2016-05-15 20:39 - 2016-05-15 20:39 - 00476744 _____ C:\Users\KM\Downloads\VY_32_INOVACE_TRZK_05.pdf
2016-05-15 20:37 - 2016-05-15 20:37 - 00351441 _____ C:\Users\KM\Downloads\VY_32_INOVACE_TRZK_03 (1).pdf
2016-05-15 20:36 - 2016-05-15 20:36 - 00351441 _____ C:\Users\KM\Downloads\VY_32_INOVACE_TRZK_03.pdf
2016-05-15 20:31 - 2016-05-15 20:31 - 01156608 _____ C:\Users\KM\Downloads\VY_32_INOVACE_TRZK_02 (1).pps
2016-05-15 20:24 - 2016-05-15 20:24 - 00518562 _____ C:\Users\KM\Downloads\VY_32_INOVACE_TRZK_02.pdf
2016-05-15 20:21 - 2016-05-15 20:22 - 01156608 _____ C:\Users\KM\Downloads\VY_32_INOVACE_TRZK_02.pps
2016-05-12 14:17 - 2016-05-12 14:17 - 00086756 _____ C:\Users\KM\Downloads\CS40010066638407 (2).pdf
2016-05-12 14:15 - 2016-05-12 14:15 - 00086779 _____ C:\Users\KM\Downloads\CS40010066638408 (1).pdf
2016-05-12 14:09 - 2016-05-12 14:09 - 00460119 _____ C:\Users\KM\Downloads\CS40010070960867.pdf
2016-05-11 12:43 - 2016-05-11 12:43 - 00422019 _____ C:\Users\KM\Downloads\0000000410465003_20151231_D_001_000_R_C.pdf
2016-05-11 12:43 - 2016-05-11 12:43 - 00264755 _____ C:\Users\KM\Downloads\0000000410465003_20141231_D_001_000_R_C (2).pdf
2016-05-11 12:43 - 2016-05-11 12:43 - 00264755 _____ C:\Users\KM\Downloads\0000000410465003_20141231_D_001_000_R_C (1).pdf
2016-05-11 12:40 - 2016-05-11 12:40 - 00166156 _____ C:\Users\KM\Downloads\0000000410465003_20131231_D_001_000_R_C (2).pdf
2016-05-07 20:11 - 2016-05-07 20:11 - 00239964 _____ C:\Users\KM\Downloads\Potvrzení platebního příkazu.pdf
2016-05-02 13:57 - 2016-05-02 14:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2016-05-02 13:57 - 2016-05-02 13:57 - 00000000 ____D C:\Users\KM\AppData\Roaming\Avira
2016-05-02 13:56 - 2015-03-17 13:02 - 00028520 _____ (Avira GmbH) C:\Windows\system32\Drivers\ssmdrv.sys
2016-05-02 13:56 - 2015-03-17 13:01 - 00136216 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2016-05-02 13:56 - 2015-03-17 13:01 - 00105864 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2016-05-02 13:56 - 2015-03-17 13:01 - 00037352 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2016-04-28 14:44 - 2016-04-28 14:44 - 00016458 _____ C:\Users\KM\Downloads\duben_16.xlsx
2016-04-28 14:44 - 2016-04-28 14:44 - 00016458 _____ C:\Users\KM\Downloads\duben_16 (1).xlsx
2016-04-24 20:20 - 2016-04-24 20:20 - 00000000 ____D C:\Users\KM\AppData\LocalLow\Oracle

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-05-21 22:58 - 2016-01-28 17:39 - 00000000 ____D C:\Users\KM\AppData\Roaming\Skype
2016-05-21 22:43 - 2013-10-10 22:34 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-05-21 22:42 - 2009-07-26 08:27 - 00000940 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-05-21 22:25 - 2009-06-10 17:39 - 00047842 _____ C:\ProgramData\nvModes.dat
2016-05-21 22:25 - 2009-06-10 16:04 - 00047842 _____ C:\ProgramData\nvModes.001
2016-05-21 08:06 - 2006-11-02 14:47 - 00004512 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2016-05-21 08:06 - 2006-11-02 14:47 - 00004512 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2016-05-21 05:42 - 2009-07-26 08:27 - 00000936 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-05-20 19:53 - 2015-04-08 19:38 - 00001793 _____ C:\Users\Public\Desktop\HP Print and Scan Doctor.lnk
2016-05-20 19:51 - 2015-04-09 16:07 - 00162758 _____ C:\Windows\hpoins19.dat
2016-05-20 19:13 - 2013-09-06 16:57 - 00000000 ____D C:\Program Files\Opera Next
2016-05-20 18:33 - 2009-06-10 16:15 - 00000000 ____D C:\ProgramData\HP
2016-05-20 17:57 - 2013-11-11 15:54 - 00000374 _____ C:\Windows\system32\Drivers\etc\hosts.ics
2016-05-20 17:56 - 2006-11-02 15:01 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-05-20 17:53 - 2009-06-10 12:19 - 00000012 _____ C:\Windows\bthservsdp.dat
2016-05-20 17:53 - 2006-11-02 15:01 - 00032592 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2016-05-20 13:57 - 2015-05-18 14:51 - 00001784 _____ C:\Windows\system32\ScanResults.xml
2016-05-20 13:53 - 2015-05-18 14:45 - 00000464 _____ C:\Windows\system32\ScannerSettings
2016-05-19 18:52 - 2014-03-03 17:11 - 00125952 _____ C:\Users\KM\Desktop\PODILOVE_FONDY.xls
2016-05-19 18:00 - 2007-01-08 23:12 - 00648580 _____ C:\Windows\system32\perfh005.dat
2016-05-19 18:00 - 2007-01-08 23:12 - 00139170 _____ C:\Windows\system32\perfc005.dat
2016-05-19 18:00 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\inf
2016-05-19 18:00 - 2006-11-02 12:33 - 01541346 _____ C:\Windows\system32\PerfStringBackup.INI
2016-05-18 14:10 - 2014-12-01 20:38 - 00000000 ____D C:\Users\KM\AppData\Roaming\Solvusoft
2016-05-18 08:14 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\spool
2016-05-16 22:23 - 2009-06-10 16:28 - 00000680 _____ C:\Users\KM\AppData\Local\d3d9caps.dat
2016-05-16 05:40 - 2013-07-18 06:45 - 00000000 ____D C:\Windows\system32\MRT
2016-05-16 05:06 - 2006-11-02 12:24 - 136686448 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe
2016-05-15 19:56 - 2013-09-06 14:57 - 00000000 ____D C:\ProgramData\Avira
2016-05-15 19:41 - 2013-10-27 09:51 - 00000000 ____D C:\Users\Guest
2016-05-15 19:41 - 2009-06-10 16:28 - 00000000 ____D C:\Users\KM
2016-05-15 19:41 - 2006-11-02 14:37 - 00000000 ____D C:\Windows\ShellNew
2016-05-15 19:41 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\PolicyDefinitions
2016-05-15 19:40 - 2011-01-29 21:24 - 00000000 ____D C:\ProgramData\FLEXnet
2016-05-15 19:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\Msdtc
2016-05-15 19:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\rescache
2016-05-15 19:39 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\registration
2016-05-11 21:04 - 2016-03-02 11:25 - 00000000 ____D C:\Users\KM\AppData\Local\CrashDumps
2016-05-10 08:04 - 2006-11-02 12:23 - 00000254 _____ C:\Windows\win.ini
2016-05-09 20:04 - 2016-01-29 21:33 - 00000000 ___RD C:\Program Files\Skype
2016-05-09 20:04 - 2009-06-12 17:16 - 00000000 ____D C:\ProgramData\Skype
2016-05-08 06:01 - 2016-04-08 07:43 - 00000958 _____ C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job
2016-05-05 13:45 - 2009-06-16 18:29 - 00049152 _____ C:\Users\KM\Desktop\spotreba.xls
2016-05-02 13:52 - 2016-01-21 14:48 - 00000000 ____D C:\Users\KM\AppData\Roaming\Enigma Software Group
2016-05-02 13:37 - 2013-11-18 17:25 - 00000000 ____D C:\Program Files\LogMeIn Rescue Calling Card
2016-04-27 13:20 - 2016-02-10 18:47 - 00329595 _____ C:\acadminidump.dmp
2016-04-21 15:05 - 2009-10-03 09:24 - 00374944 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe

==================== Files in the root of some directories =======

2013-09-04 21:57 - 2013-09-06 08:00 - 0000004 _____ () C:\Users\KM\AppData\Roaming\settings.ini
2013-11-27 15:46 - 2013-11-27 15:46 - 0024206 _____ () C:\Users\KM\AppData\Roaming\UserTile.png
2009-06-10 16:28 - 2016-05-16 22:23 - 0000680 _____ () C:\Users\KM\AppData\Local\d3d9caps.dat
2009-06-10 12:11 - 2016-04-08 16:19 - 0029696 _____ () C:\Users\KM\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2009-10-07 20:42 - 2009-10-07 20:42 - 0004096 ____H () C:\Users\KM\AppData\Local\keyfile3.drm
2009-06-10 16:16 - 2016-05-20 19:51 - 0021395 _____ () C:\ProgramData\hpzinstall.log
2009-06-10 16:04 - 2016-05-21 22:25 - 0047842 _____ () C:\ProgramData\nvModes.001
2009-06-10 17:39 - 2016-05-21 22:25 - 0047842 _____ () C:\ProgramData\nvModes.dat

Files to move or delete:
====================
C:\Users\KM\AppData\Roaming\settings.ini


Some files in TEMP:
====================
C:\Users\KM\AppData\Local\Temp\avgnt.exe
C:\Users\KM\AppData\Local\Temp\HPPSdr.exe
C:\Users\KM\AppData\Local\Temp\IHU8AC1.tmp.exe
C:\Users\KM\AppData\Local\Temp\IHUACF1.tmp.exe
C:\Users\KM\AppData\Local\Temp\ReimagePackage.exe
C:\Users\KM\AppData\Local\Temp\ReimageRepair.exe
C:\Users\KM\AppData\Local\Temp\RtkBtMnt.exe


==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2016-05-21 06:07

==================== End of FRST.txt ============================

[Márty84]

Zdravim


Stahnete AdwCleaner https://toolslib.net/downloads/finish/1/ a ulozte ho na plochu.
Ukoncete vsechny programy, jinak to AdwCleaner udela za vas.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce.
Kliknete na Scan a pockejte, az kontrola dobehne.
Pak kliknete na Cleaning
Program zacne pracovat (muze dojit k restartu pc) a vyplivne log (pripadne bude zde C:\AdwCleaner\AdwCleaner[C?].txt ). Ten mi sem zkopirujte.


Udelejte kontrolu s MBAM. Test nastavte podle tohoto navodu (cili Vlastni sken vsech disku) http://forum.viry.cz/viewtopic.php?f=29&t=144868 a dejte sem vysledky. Predem nic nemazte, miva obcas falesne detekce

[Márty84]

# AdwCleaner v5.117 - Log soubor vytvořen 22/05/2016 o 07:15:44
# Aktualizováno 15/05/2016 by Xplode
# Databáze : 2016-05-15.2 [Server]
# Operační systém : Windows Vista (TM) Business Service Pack 2 (X86)
# Jméno uživatele : KM - KM-NTB
# Spuštěno z : C:\Users\KM\Downloads\adwcleaner_5.117.exe
# Volba : Čištění
# Podpora : http://toolslib.net/forum

***** [ Služby ] *****

[-] Služba smazáno : Browser Manager
[-] Služba smazáno : ReimageRealTimeProtector

***** [ Složky ] *****

[-] Složka smazáno : C:\rei
[-] Složka smazáno : C:\ReimageUndo
[-] Složka smazáno : C:\ProgramData\Ask
[-] Složka smazáno : C:\ProgramData\ICQ\ICQToolbar
[-] Složka smazáno : C:\ProgramData\Reimage Protector
[#] Složka smazáno : C:\ProgramData\Application Data\Ask
[#] Složka smazáno : C:\ProgramData\Application Data\ICQ\ICQToolbar
[#] Složka smazáno : C:\ProgramData\Application Data\Reimage Protector
[-] Složka smazáno : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileViewPro
[-] Složka smazáno : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\reimage repair
[-] Složka smazáno : C:\Program Files\FileViewPro
[-] Složka smazáno : C:\Program Files\ICQ6Toolbar
[-] Složka smazáno : C:\Program Files\icqtoolbar
[-] Složka smazáno : C:\Program Files\Reimage
[-] Složka smazáno : C:\Users\KM\FlvPlayer
[-] Složka smazáno : C:\Users\KM\AppData\Local\apn
[-] Složka smazáno : C:\Users\KM\AppData\LocalLow\AlterGeo
[-] Složka smazáno : C:\Users\KM\AppData\LocalLow\AVG Security Toolbar
[-] Složka smazáno : C:\Users\KM\AppData\Roaming\Solvusoft
[-] Složka smazáno : C:\Users\KM\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\LSHunter.TV

***** [ Soubory ] *****

[-] Soubor smazáno : C:\Users\Public\Desktop\PC Scan & Repair by Reimage.lnk
[-] Soubor smazáno : C:\Windows\Reimage.ini
[-] Soubor smazáno : C:\Windows\system32\reimage.rep
[-] Soubor smazáno : C:\Users\KM\AppData\Local\Temp\ReimageRepair.exe
[-] Soubor smazáno : C:\Users\KM\Desktop\ReimageRepair.exe

***** [ DLLs ] *****


***** [ WMI ] *****


***** [ Zástupci ] *****


***** [ Naplánované úkoly ] *****

[-] Úkol smazáno : Browser Manager
[-] Úkol smazáno : Express Files Updater
[-] Úkol smazáno : IHUninstallTrackingTASK
[-] Úkol smazáno : Reimage Reminder
[-] Úkol smazáno : ReimageUpdater
[-] Úkol smazáno : Reimage Reminder
[-] Úkol smazáno : ReimageUpdater

***** [ Registr ] *****

[-] Hodnota smazáno : HKCU\Software\Microsoft\Internet Explorer\Main [Backup.old.Start Page]
[-] Hodnota smazáno : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\AppID\REI_AxControl.DLL
[-] Klávesa smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\Reimage.exe
[-] Klávesa smazáno : HKCU\Software\e28bdeb26eba45
[-] Klávesa smazáno : HKCU\Software\XTTB00001
[-] Klávesa smazáno : HKLM\SOFTWARE\e28bdeb26eba45
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\ToolBand.XTTBPos00
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\ToolBand.XTTBPos00.1
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\XTTB00001.IEToolbar
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\XTTB00001.IEToolbar.1
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\XTTB00001.XTTB00001
[-] Klávesa smazáno : HKLM\SOFTWARE\Google\Chrome\Extensions\kkfggacklibaabdomphfdpcodjgihgon
[-] Klávesa smazáno : HKLM\SOFTWARE\Google\Chrome\Extensions\ogccgbmabaphcakpiclgcnmcnimhokcj
[-] Klávesa smazáno : HKLM\SOFTWARE\Google\Chrome\Extensions\pgafcinpmmpklohkojmllohdhomoefph
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\Prod.cap
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\REI_AxControl.ReiEngine
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\REI_AxControl.ReiEngine.1
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\Search.BrowserWndAPI
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\Search.BrowserWndAPI.1
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\Search.PugiObj
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\AppID\{C007DADD-132A-624C-088E-59EE6CF0711F}
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\AppID\{28FF42B8-A0DA-4BE5-9B81-E26DD59B350A}
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\CLSID\{055FD26D-3A88-4E15-963D-DC8493744B1D}
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\CLSID\{4BD2D6C3-31DC-B947-23D0-DC52EC4F0C4C}
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\CLSID\{BC9FD17D-30F6-4464-9E53-596A90AFF023}
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\CLSID\{CC5AD34C-6F10-4CB3-B74A-C2DD4D5060A3}
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\CLSID\{10ECCE17-29B5-4880-A8F5-EAD298611484}
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\CLSID\{801B440B-1EE3-49B0-B05D-2AB076D4E8CB}
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\CLSID\{0C1284BA-4F3A-41C6-94B5-77446F5948A9}
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\CLSID\{3CCC052E-BDEE-408A-BEA7-90914EF2964B}
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\CLSID\{61F47056-E400-43D3-AF1E-AB7DFFD4C4AD}
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\CLSID\{E2B98EEA-EE55-4E9B-A8C1-6E5288DF785A}
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\CLSID\{63EDCDD3-8AFC-4358-A90F-F7FB8F5C64FF}
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\CLSID\{BD5843ED-13C4-4EFF-ACE9-56CEE22BC087}
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\Interface\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\Interface\{BD51A48E-EB5F-4454-8774-EF962DF64546}
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\TypeLib\{13ABD093-D46F-40DF-A608-47E162EC799D}
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\TypeLib\{FA6468D2-FAA4-4951-A53B-2A5CF9CC0A36}
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\TypeLib\{E716F183-5AD7-11DC-9670-00508DC0D496}
[-] Klávesa smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{055FD26D-3A88-4E15-963D-DC8493744B1D}
[-] Klávesa smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
[-] Klávesa smazáno : HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{055FD26D-3A88-4E15-963D-DC8493744B1D}
[-] Klávesa smazáno : HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0C9F4179-6CE2-4C6A-A3E5-67FF3592A12E}
[-] Klávesa smazáno : HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
[-] Klávesa smazáno : HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{6E13DDE1-2B6E-46CE-8B66-DC8BF36F6B99}
[-] Klávesa smazáno : HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{855F3B16-6D32-4FE6-8A56-BBB695989046}
[-] Klávesa smazáno : HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
[-] Klávesa smazáno : HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{98889811-442D-49DD-99D7-DC866BE87DBC}
[-] Klávesa smazáno : HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A1E75A0E-4397-4BA8-BB50-E19FB66890F4}
[-] Klávesa smazáno : HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F9639E4A-801B-4843-AEE3-03D9DA199E77}
[-] Klávesa smazáno : HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{055FD26D-3A88-4E15-963D-DC8493744B1D}
[-] Klávesa smazáno : HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0C9F4179-6CE2-4C6A-A3E5-67FF3592A12E}
[-] Klávesa smazáno : HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
[-] Klávesa smazáno : HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{6E13DDE1-2B6E-46CE-8B66-DC8BF36F6B99}
[-] Klávesa smazáno : HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{855F3B16-6D32-4FE6-8A56-BBB695989046}
[-] Klávesa smazáno : HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233}
[-] Klávesa smazáno : HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{98889811-442D-49DD-99D7-DC866BE87DBC}
[-] Klávesa smazáno : HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A1E75A0E-4397-4BA8-BB50-E19FB66890F4}
[-] Klávesa smazáno : HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{F9639E4A-801B-4843-AEE3-03D9DA199E77}
[-] Klávesa smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{055FD26D-3A88-4E15-963D-DC8493744B1D}
[-] Klávesa smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
[-] Klávesa smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{055FD26D-3A88-4E15-963D-DC8493744B1D}
[-] Klávesa smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{97F2FF5B-260C-4CCF-834A-2DDA4E29E39E}
[-] Klávesa smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{10ECCE17-29B5-4880-A8F5-EAD298611484}
[-] Klávesa smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D3D233D5-9F6D-436C-B6C7-E63F77503B30}
[-] Klávesa smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D7E97865-918F-41E4-9CD0-25AB1C574CE8}
[-] Klávesa smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D3D233D5-9F6D-436C-B6C7-E63F77503B30}
[-] Klávesa smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D7E97865-918F-41E4-9CD0-25AB1C574CE8}
[-] Hodnota smazáno : HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{A1E75A0E-4397-4BA8-BB50-E19FB66890F4}]
[-] Hodnota smazáno : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D7E97865-918F-41E4-9CD0-25AB1C574CE8}]
[-] Hodnota smazáno : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}]
[-] Hodnota smazáno : HKU\.DEFAULT\Software\Microsoft\Internet Explorer\URLSearchHooks [{855F3B16-6D32-4FE6-8A56-BBB695989046}]
[-] Hodnota smazáno : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{D3D233D5-9F6D-436C-B6C7-E63F77503B30}]
[-] Hodnota smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{855F3B16-6D32-4FE6-8A56-BBB695989046}]
[-] Klávesa smazáno : HKCU\Software\Headlight
[-] Klávesa smazáno : HKCU\Software\Reimage
[-] Klávesa smazáno : HKCU\Software\reimagerepair
[-] Klávesa smazáno : HKCU\Software\YahooPartnerToolbar
[-] Klávesa smazáno : HKCU\Software\Local AppWizard-Generated Applications\Reimage - Windows Problem Relief.
[-] Klávesa smazáno : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\ICQ\ICQToolbar
[-] Klávesa smazáno : HKU\.DEFAULT\Software\Microsoft\Internet Explorer\LowRegistry\ICQ\ICQToolbar
[-] Klávesa smazáno : HKCU\Software\AppDataLow\Software\AVG Security Toolbar
[-] Klávesa smazáno : HKLM\SOFTWARE\BFlix
[-] Klávesa smazáno : HKLM\SOFTWARE\ICQ\ICQToolbar
[-] Klávesa smazáno : HKLM\SOFTWARE\Reimage
[-] Klávesa smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Reimage Repair
[-] Klávesa smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{15D2D75C-9CB2-4EFD-BAD7-B9B4CB4BC693}
[-] Klávesa smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{612AD33D-9824-4E87-8396-92374E91C4BB}_is1
[-] Klávesa smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{79A765E1-C399-405B-85AF-466F52E918B0}
[-] Klávesa smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
[-] Klávesa smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\1ClickDownload
[-] Klávesa smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\AVG Secure Search
[-] Klávesa smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\BabylonToolbar
[-] Klávesa smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\BFlix
[-] Klávesa smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\ExpressFiles
[-] Klávesa smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\FileViewPro_is1
[-] Klávesa smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Funmoods
[-] Klávesa smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\incredibar
[-] Klávesa smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Reimage Repair
[-] Klávesa smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\SweetIM Bundle by SweetPacks
[-] Klávesa smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\WinThruster_is1
[-] Klávesa smazáno : HKU\.DEFAULT\Software\AVG Secure Search
[-] Klávesa smazáno : HKU\.DEFAULT\Software\BFlix
[-] Klávesa smazáno : HKU\.DEFAULT\Software\ICQ\ICQToolbar
[-] Klávesa smazáno : HKU\.DEFAULT\Software\IGearSettings
[-] Klávesa smazáno : HKU\.DEFAULT\Software\AppDataLow\Software\AVG Security Toolbar
[-] Klávesa smazáno : HKCU\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-3309511818-1420203638-3002059093-1000\Software\AVG Secure Search
[-] Klávesa smazáno : HKCU\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-3309511818-1420203638-3002059093-1000\Software\AVG Security Toolbar
[-] Klávesa smazáno : HKCU\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-3309511818-1420203638-3002059093-1000\Software\ICQ\ICQToolbar
[-] Klávesa smazáno : HKCU\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-3309511818-1420203638-3002059093-1000\Software\SweetIM
[-] Klávesa smazáno : HKU\S-1-5-21-3309511818-1420203638-3002059093-501\Software\AppDataLow\Software\AVG Security Toolbar
[-] Klávesa smazáno : HKU\S-1-5-21-3309511818-1420203638-3002059093-501\Software\AppDataLow\Software\Conduit
[-] Klávesa smazáno : HKU\S-1-5-21-3309511818-1420203638-3002059093-501\Software\AppDataLow\Software\ConduitSearchScopes
[-] Klávesa smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0E12F736682067FDE4D1158D5940A82E
[-] Klávesa smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1A24B5BB8521B03E0C8D908F5ABC0AE6
[-] Klávesa smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2B0D56C4F4C46D844A57FFED6F0D2852
[-] Klávesa smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\49D4375FE41653242AEA4C969E4E65E0
[-] Klávesa smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6AA0923513360135B272E8289C5F13FA
[-] Klávesa smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6F7467AF8F29C134CBBAB394ECCFDE96
[-] Klávesa smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\922525DCC5199162F8935747CA3D8E59
[-] Klávesa smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BCDA179D619B91648538E3394CAC94CC
[-] Klávesa smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D677B1A9671D4D4004F6F2A4469E86EA
[-] Klávesa smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DD1402A9DD4215A43ABDE169A41AFA0E
[-] Klávesa smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E36E114A0EAD2AD46B381D23AD69CDDF
[-] Klávesa smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EF8E618DB3AEDFBB384561B5C548F65E
[-] Data Obnoveno : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]
[-] Data Obnoveno : HKCU\Software\Microsoft\Internet Explorer\Main [Search Bar]
[-] Data Obnoveno : HKCU\Software\Microsoft\Internet Explorer\Main [Backup.Old.Start Page]
[-] Data Obnoveno : HKU\S-1-5-21-3309511818-1420203638-3002059093-1000\Software\Microsoft\Internet Explorer\Main [ICQ Search]
[-] Data Obnoveno : HKU\S-1-5-21-3309511818-1420203638-3002059093-1000\Software\Microsoft\Internet Explorer\Main [Search Bar]
[-] Data Obnoveno : HKU\S-1-5-21-3309511818-1420203638-3002059093-1000\Software\Microsoft\Internet Explorer\Main [Backup.Old.Start Page]
[-] Klávesa smazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}
[-] Klávesa smazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6B059F35-4DC7-C17D-7443-5F39BF23779E}
[-] Klávesa smazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
[-] Data Obnoveno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes [DefaultScope]
[-] Klávesa smazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{BE9654C9-9D79-42ec-B55A-3CAEB12DBF58}
[-] Klávesa smazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{C04B7D22-5AEC-4561-8F49-27F6269208F6}
[-] Data Obnoveno : HKU\S-1-5-21-3309511818-1420203638-3002059093-1000\Software\Microsoft\Internet Explorer\SearchScopes [DefaultScope]

***** [ Webové prohlížeče ] *****


*************************

:: "Tracing" odstraněných kláves
:: Nastavení Winsock odstraněno

*************************

C:\AdwCleaner\AdwCleaner[C1].txt - [18226 bytes] - [22/05/2016 07:15:44]
C:\AdwCleaner\AdwCleaner[S1].txt - [22346 bytes] - [22/05/2016 07:11:25]

########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [18374 bytes] ##########

[Márty84]

Dobrý den,

provedl jsem dle pokynu sken AdwCleaner a log přikládám. Poté jsem provedl kontrolu MBAM a notes spadl, musel jsem v nouzovém režimu restartovat z bodu obnovení. Prosím o radu, co s tím dál.

Děkuji předem.

Priste piste normalne do tematu, jinak v tom je chaos.
Provedte sken s MBAM v nouzovem rezimu.



17.7. pro neaktivitu http://forum.viry.cz/viewtopic.php?f=12&t=123975