VIRY.CZ

Logfile of random's system information tool 1.14 (written by random/random)
Run by Libor at 2016-11-02 19:01:07
Microsoft Windows 10 Home
System drive C: has 218 GB (36%) free of 610 GB
Total RAM: 3955 MB (35% free)
X64

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:01:13, on 2.11.2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.14393.0000)
Boot mode: Normal

Running processes:
C:\Users\Libor\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe
C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files\trend micro\Libor_RSITx64.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_101\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Logitech SetPoint - {AF949550-9094-4807-95EC-D1C317803333} - C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_101\bin\jp2ssv.dll
O3 - Toolbar: Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [TWebCamera] "C:\Program Files (x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe" autorun
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [PMBVolumeWatcher] C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe
O4 - HKLM\..\Run: [CanonSolutionMenuEx] C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE /logon
O4 - HKLM\..\Run: [ToshibaServiceStation] "C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe" /hide:60
O4 - HKLM\..\Run: [IJNetworkScanUtility] C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Libor\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-276332642-1909207443-117345979-1002\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime (User 'Klárka')
O4 - Global Startup: Bluetooth Monitor.lnk = ?
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Office12\EXCEL.EXE/3000
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - (no file)
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {55A2C0CD-3DE8-4264-9637-A0B40B05714E} (Mail Migration) - https://col430-sec.mail.live.com/mail/M ... =464607530
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\WINDOWS\system32\atiesrxx.exe (file missing)
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: ESET HTTP Server (EHttpSrv) - ESET - C:\Program Files\ESET\ESET Endpoint Antivirus\ehttpsrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Endpoint Antivirus\x86\ekrn.exe
O23 - Service: ESET SHA Service (eshasrv) - ESET - C:\Program Files\ESET\ESET Endpoint Antivirus\eshasrv.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Canon Inkjet Printer/Scanner/Fax Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @mqutil.dll,-6102 (MSMQ) - Unknown owner - C:\WINDOWS\system32\mqsvc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: PMBDeviceInfoProvider - Sony Corporation - C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: TeamViewer 10 (TeamViewer) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service: TEMPRO Service (TemproMonitoringService) - Toshiba Europe GmbH - C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: TMachInfo - TOSHIBA Corporation - C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
O23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
O23 - Service: TOSHIBA HDD SSD Alert Service - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
O23 - Service: TPCH Service (TPCHSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 12356 bytes

======Enumerating Processes======

Nedaří se mi poslat celý log. Můžu dát do přílohy?

Zdravím!
Pro čištění desítek potřebuji log FRST: http://forum.viry.cz/viewtopic.php?f=13&t=133100 . Pokud se nevejde, dejte buď do více postů, nebo do přílohy. Tu budete muset zabalit do raru.

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 30-10-2016
Ran by Libor (02-11-2016 21:39:23)
Running from C:\Users\Libor\Desktop
Windows 10 Home Version 1607 (X64) (2016-10-04 18:42:49)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-276332642-1909207443-117345979-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-276332642-1909207443-117345979-503 - Limited - Disabled)
Guest (S-1-5-21-276332642-1909207443-117345979-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-276332642-1909207443-117345979-1006 - Limited - Enabled)
Klárka (S-1-5-21-276332642-1909207443-117345979-1002 - Administrator - Enabled) => C:\Users\Klárka
Libor (S-1-5-21-276332642-1909207443-117345979-1007 - Administrator - Enabled) => C:\Users\Libor
Lucka (S-1-5-21-276332642-1909207443-117345979-1004 - Administrator - Enabled) => C:\Users\Lucka
Mamka (S-1-5-21-276332642-1909207443-117345979-1003 - Administrator - Enabled) => C:\Users\Mamka

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: ESET Endpoint Antivirus 6.1.2227.3 (Enabled - Up to date) {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

2007 Microsoft Office Suite Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0012-0000-0000-0000000FF1CE}_STANDARD_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
2007 Microsoft Office Suite Service Pack 3 (SP3) (x32 Version: - Microsoft) Hidden
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 15.020.20039 - Adobe Systems Incorporated)
Adobe Flash Player 23 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 23.0.0.185 - Adobe Systems Incorporated)
Aktualizace produktu Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0405-0000-0000000FF1CE}_STANDARD_{0A1FAC46-B899-421D-B1A2-470896DC45DB}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0405-0000-0000000FF1CE}_STANDARD_{5260BB53-C1F7-4A3B-9AEB-3EC9B37FF194}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0405-0000-0000000FF1CE}_STANDARD_{E68DD413-B834-4923-8181-0A03B7555187}) (Version: - Microsoft)
AMD Catalyst Control Center (HKLM-x32\...\WUCCCApp) (Version: 1.00.0000 - AMD)
AMD Catalyst Install Manager (HKLM\...\{79E9FC36-6AC7-73DA-B9D4-B4389F135833}) (Version: 8.0.911.0 - Advanced Micro Devices, Inc.)
Angry Birds Breakfast 1 (HKLM-x32\...\{A2A84F3C-2273-4F05-8A41-D0C5FA271651}) (Version: 1.0.16 - Rovio Entertainment Ltd.)
Apple Mobile Device Support (HKLM\...\{C4123106-B685-48E6-B9BD-E4F911841EB4}) (Version: 8.1.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Balíček ovladače systému Windows - Nokia pccsmcfd LegacyDriver (05/31/2012 7.1.2.0) (HKLM\...\62BBD193ADFDBB228C7E1ADB56463F5732FF7F6F) (Version: 05/31/2012 7.1.2.0 - Nokia)
Bluetooth Monitor 4 (HKLM-x32\...\{61539202-097E-487E-9237-B291AB56D54C}) (Version: 4.04.000 - TOSHIBA)
Bluetooth Stack for Windows by Toshiba (HKLM\...\{CEBB6BFB-D708-4F99-A633-BC2600E01EF6}) (Version: v9.10.32(T) - TOSHIBA CORPORATION)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Boris Graffiti (HKLM-x32\...\{262BF2CD-601D-4F43-919C-4B00B1D1F338}) (Version: 5.20.200 - Boris FX, Inc.)
Broadcom 802.11 Network Adapter (HKLM\...\Broadcom 802.11 Network Adapter) (Version: 5.60.48.42 - Broadcom Corporation)
Canon Easy-PhotoPrint EX (HKLM-x32\...\Easy-PhotoPrint EX) (Version: - )
Canon Easy-PhotoPrint Pro - Pro9000 series Extention Data (HKLM-x32\...\Canon Easy-PhotoPrint Pro - Pro9000 series Extention Data) (Version: - )
Canon Easy-PhotoPrint Pro - Pro9500 series Extention Data (HKLM-x32\...\Canon Easy-PhotoPrint Pro - Pro9500 series Extention Data) (Version: - )
Canon Easy-PhotoPrint Pro (HKLM-x32\...\Easy-PhotoPrint Pro) (Version: - )
Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version: 1.3.5.0 - Canon Inc.)
Canon IJ Network Scan Utility (HKLM-x32\...\Canon_IJ_Network_Scan_UTILITY) (Version: - )
Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version: 3.1.1 - Canon Inc.)
Canon Inkjet Printer/Scanner/Fax Extended Survey Program (HKLM-x32\...\CANONIJPLM100) (Version: - )
Canon MG6100 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG6100_series) (Version: - Canon Inc.)
Canon MP Navigator EX 4.0 (HKLM-x32\...\MP Navigator EX 4.0) (Version: - )
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: - )
Canon Solution Menu EX (HKLM-x32\...\CanonSolutionMenuEX) (Version: - )
CCleaner (HKLM\...\CCleaner) (Version: 5.20 - Piriform)
CD-LabelPrint (HKLM-x32\...\MediaNavigation.CDLabelPrint) (Version: - )
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
eReg (x32 Version: 1.20.138.34 - Logitech, Inc.) Hidden
ESET Endpoint Antivirus (HKLM\...\{5254951E-0594-4FDE-AA60-1AB50AF1DAB3}) (Version: 6.1.2227.3 - ESET, spol. s r.o.)
Fotogalerie (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
FreeMind (HKLM-x32\...\B991B020-2968-11D8-AF23-444553540000_is1) (Version: 1.0.1 - )
Google Earth (HKLM-x32\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 53.0.2785.143 - Google Inc.)
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.7619.1252 - Google Inc.)
Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden
Google+ Auto Backup (HKLM-x32\...\{A50DE037-B5C0-4C8A-8049-B0C576B313D1}) (Version: 1.0.21.81 - Google)
ICQ7M (HKLM-x32\...\{781B39EC-2E18-41FC-9B00-B84E4FFCA85F}) (Version: 7.8 - ICQ)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 6.0.0.1179 - Intel Corporation)
Intel(R) Turbo Boost Technology Driver (HKLM-x32\...\{D6C630BF-8DBB-4042-8562-DC9A52CB6E7E}) (Version: 01.01.01.1007 - Intel Corporation)
iTunes (HKLM\...\{93F2A022-6C37-48B8-B241-FFABD9F60C30}) (Version: 12.1.2.27 - Apple Inc.)
Java 8 Update 101 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180101F0}) (Version: 8.0.1010.13 - Oracle Corporation)
Java 8 Update 101 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180101F0}) (Version: 8.0.1010.13 - Oracle Corporation)
Junk Mail filter update (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
K-Lite Codec Pack 9.4.0 (64-bit) (HKLM\...\KLiteCodecPack64_is1) (Version: 9.4.0 - )
K-Lite Mega Codec Pack 9.4.0 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 9.4.0 - )
Logitech SetPoint 6.65 (HKLM\...\sp6) (Version: 6.65.62 - Logitech)
Magic Bullet Looks Studio (HKLM-x32\...\Magic Bullet Looks Studio) (Version: - )
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-0081-0405-0000-0000000FF1CE}) (Version: 14.0.6123.5001 - Microsoft Corporation)
Microsoft Office Standard 2007 (HKLM-x32\...\STANDARD) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50901.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{4fcf070a-daac-45e9-a8b0-6850941f7ed8}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
MSVC80_x64_v2 (Version: 1.0.3.0 - Nokia) Hidden
MSVC80_x86_v2 (x32 Version: 1.0.3.0 - Nokia) Hidden
MSVC90_x64 (Version: 1.0.1.2 - Nokia) Hidden
MSVC90_x86 (x32 Version: 1.0.1.2 - Nokia) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Na scéně(TM) (HKLM-x32\...\{25F2658C-9F46-4DF6-8D5C-61B4CAC04E5F}) (Version: 1.00.0000 - )
Nokia Connectivity Cable Driver (HKLM-x32\...\{29373274-977E-413C-A4DE-DC0F8E80C429}) (Version: 7.1.172.0 - Nokia)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
Ovladače videa společnosti Pinnacle (HKLM\...\{5EB90C06-964F-4195-B83E-BD7E55C88415}) (Version: 12.00.0017 - Pinnacle Systems)
PC Connectivity Solution (HKLM-x32\...\{6D01D1B1-17BD-4F10-BB11-F08F0C47D42B}) (Version: 12.0.109.0 - Nokia)
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 1.9.3 - pdfforge)
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9 - Google, Inc.)
Pinnacle Instant DVD Recorder (HKLM-x32\...\{C1212AE3-DBB9-4365-8473-F8ABC7B06BBB}) (Version: 2.5.0.090 - Pinnacle Systems)
Pinnacle Studio 12 (HKLM-x32\...\{D041EB9E-890A-4098-8F94-51DA194AC72A}) (Version: 12.0.0.6163 - Pinnacle Systems)
Pinnacle Studio 12 Ultimate Plugins (HKLM-x32\...\{D1860E6E-520E-4380-8433-E58E8F88B473}) (Version: 12.0.0.0 - Pinnacle Systems)
PMB (HKLM-x32\...\{B6A98E5F-D6A7-46FB-9E9D-1F7BF443491C}) (Version: 5.2.00.03250 - Sony Corporation)
Podpora aplikací Apple (32bitová) (HKLM-x32\...\{AFA1153A-F547-409B-B837-3A0D6C5A3FEC}) (Version: 3.1.3 - Apple Inc.)
Podpora aplikací Apple (64bitová) (HKLM\...\{D7B824DE-DA32-4772-9E5E-39C5158136A7}) (Version: 3.1.3 - Apple Inc.)
proDAD Vitascene 1.0 (HKLM-x32\...\proDAD-Vitascene-1.0) (Version: - )
QuickTime 7 (HKLM-x32\...\{3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}) (Version: 7.76.80.95 - Apple Inc.)
Realtek Ethernet Controller Driver For Windows 7 (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.13.112.2010 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7404 - Realtek Semiconductor Corp.)
Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.7600.30111 - Realtek Semiconductor Corp.)
Registrace uživatele zařízení Canon MG6100 series (HKLM-x32\...\Registrace uživatele zařízení Canon MG6100 series) (Version: - )
Skype Click to Call (HKLM-x32\...\{B6CF2967-C81E-40C0-9815-C05774FEF120}) (Version: 6.13.13771 - Skype Technologies S.A.)
Skype™ 7.8 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.8.102 - Skype Technologies S.A.)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.0.8.1 - Synaptics Incorporated)
TeamViewer 10 (HKLM-x32\...\TeamViewer) (Version: 10.0.43174 - TeamViewer)
The Sims™ 3 (HKLM-x32\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}) (Version: 1.0.631 - Electronic Arts)
Toshiba Assist (HKLM-x32\...\{1B87C40B-A60B-4EF3-9A68-706CF4B69978}) (Version: 3.00.11 - TOSHIBA CORPORATION)
TOSHIBA ConfigFree (HKLM-x32\...\{80F696E0-AB85-433E-99E3-8CC6D98CF167}) (Version: 8.0.35 - TOSHIBA CORPORATION)
TOSHIBA PC Health Monitor (HKLM\...\{9DECD0F9-D3E8-48B0-A390-1CF09F54E3A4}) (Version: 1.6.0.64 - TOSHIBA Corporation)
TOSHIBA ReelTime (HKLM-x32\...\InstallShield_{A0E99122-25C1-4CA4-9063-499A2A814EB6}) (Version: 1.6.06.64 - TOSHIBA Corporation)
TOSHIBA Service Station (HKLM-x32\...\{AC6569FA-6919-442A-8552-073BE69E247A}) (Version: 2.2.15.0 - TOSHIBA)
Toshiba TEMPRO (HKLM-x32\...\{E4C7D9D7-19D4-4623-AF0C-EA313C466411}) (Version: 5.0.0 - Toshiba Europe GmbH)
TOSHIBA Value Added Package (HKLM-x32\...\InstallShield_{066CFFF8-12BF-4390-A673-75F95EFF188E}) (Version: 1.3.19.64 - TOSHIBA Corporation)
TOSHIBA Web Camera Application (HKLM-x32\...\{5E6F6CF3-BACC-4144-868C-E14622C658F3}) (Version: 1.1.1.15 - TOSHIBA Corporation)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.01 - Ghisler Software GmbH)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0012-0000-0000-0000000FF1CE}_STANDARD_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Utility Common Driver (x32 Version: 1.0.52.1C - TOSHIBA) Hidden
Visual Studio 2010 x64 Redistributables (HKLM\...\{21B133D6-5979-47F0-BE1C-F6A6B304693F}) (Version: 13.0.0.1 - AVG Technologies)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player 2.0.7 (HKLM-x32\...\VLC media player) (Version: 2.0.7 - VideoLAN)
Výstraha HDD/SSD TOSHIBA (HKLM-x32\...\InstallShield_{D4322448-B6AF-4316-B859-D8A0E84DCB38}) (Version: 3.1.64.6 - TOSHIBA Corporation)
Výstraha HDD/SSD TOSHIBA (Version: 3.1.64.6 - TOSHIBA Corporation) Hidden
Výstraha HDD/SSD TOSHIBA (x32 Version: 3.1.64.6 - TOSHIBA Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinRAR 4.20 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-276332642-1909207443-117345979-1003_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Mamka\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\FileCoAuth.exe (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-276332642-1909207443-117345979-1007_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Libor\AppData\Local\Microsoft\OneDrive\17.3.6517.0809_1\FileCoAuth.exe (Microsoft Corporation)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {01F2CC66-4931-41D3-B843-7E3C56DA962E} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
Task: {0304D8B8-5C05-4DFF-94A1-EDBA082B5DE9} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {0492B4D7-B056-410C-B737-BB749F53F040} - System32\Tasks\{5B55120C-7708-45DD-9C6C-006ED09C7F3E} => D:\O2ADSLCD.exe
Task: {0648D70C-E9D2-42C4-8791-9D303AE306F8} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {075CF4FB-20A9-4142-B7E1-FF70C5A061FA} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe
Task: {08300B11-2088-43AB-8B59-994F6AFF7F4A} - System32\Tasks\{C6215EC0-6BA5-405F-99C0-3E079C897A4B} => C:\Users\Libor\Downloads\OneDriveSetup.exe [2014-08-31] (Microsoft Corporation)
Task: {0A130004-7778-4AE0-9148-2D9E2DA7848E} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {10070ECC-DAB9-4807-832C-A5D87EDCEA13} - System32\Tasks\{A390831C-D470-4745-B2FE-C073CBB943F8} => pcalua.exe -a C:\Users\Libor\AppData\Local\Temp\TC20090500A.temp\TVAP\setup.exe -d C:\Users\Libor\AppData\Local\Temp\TC20090500A.temp\TVAP <==== ATTENTION
Task: {1038118F-CB46-4ADF-BA7F-89C3EC820475} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {1AB0D4C1-EEDD-47C1-AD8F-D1305539EB52} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
Task: {209FA2D5-E004-496C-80B4-A7736242F8F3} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {2376254B-C749-4F0D-A9B7-E83232C086D7} - System32\Tasks\{1C292653-4690-4EAB-87B2-C16B8BFAADC8} => C:\Users\Libor\Downloads\OneDriveSetup (1).exe [2015-04-24] (Microsoft Corporation)
Task: {279802B4-23ED-4601-9D78-12BE194BDFDC} - System32\Tasks\{AA3F652B-EF93-47E2-B7AD-636BF96B8093} => pcalua.exe -a D:\Install.exe -d D:\
Task: {2930A3F1-E181-4049-B4B5-41CCD5FE3751} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-07-13] (Piriform Ltd)
Task: {29BC3B71-9E6F-4D95-824A-882D5E8D8941} - System32\Tasks\{2E59717C-C322-4DB7-AC18-F8F5594DBC4D} => C:\Users\Libor\Downloads\OneDriveSetup (1).exe [2015-04-24] (Microsoft Corporation)
Task: {2CA4EA49-761F-44C6-B48F-4FBB00FC0BE0} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {2CD0D89B-1CAD-413C-A895-5C4E05524577} - System32\Tasks\{26A27CBD-E9E5-4519-8783-7ABB36A69D01} => C:\Program Files (x86)\Microsoft OneDrive\OneDriveSetup.exe [2015-12-23] (Microsoft Corporation)
Task: {2CE09946-B4BF-4A66-8185-89B75A746C2F} - System32\Tasks\{39A5E09D-DB15-4D2E-84C7-4DA1C1182C22} => pcalua.exe -a C:\Users\Klárka\AppData\Local\Temp\Temp1_bios-20120207150117.zip\BIOS_V230_WIN.exe <==== ATTENTION
Task: {2D4AE5EE-1F2F-470F-811A-7B3CA1E53A06} - System32\Tasks\{26463B64-5923-42CD-BB0B-363641B1D1A0} => C:\Users\Libor\Downloads\OneDriveSetup (2).exe [2015-12-23] (Microsoft Corporation)
Task: {334416ED-38D7-4635-8CE9-C0FEBC6F33B6} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {352A5F8B-26FC-494C-A8E8-77BFDD94FDAD} - System32\Tasks\{2E96ED0C-7E1B-4B89-BA40-8EDE32717FFA} => C:\Program Files (x86)\Microsoft OneDrive\OneDriveSetup.exe [2015-12-23] (Microsoft Corporation)
Task: {36246310-C506-45C5-A97A-355C51AD87EB} - System32\Tasks\{936363DD-D12F-42CB-A4EC-F3509E81E924} => C:\Program Files (x86)\Microsoft OneDrive\OneDriveSetup.exe [2015-12-23] (Microsoft Corporation)
Task: {369B2666-6BE4-4B4C-A4D5-EEE424B13B40} - System32\Tasks\{EA59E12C-03AF-4EF7-A8AB-0E6753623A35} => D:\McciInitializerBootstrapper.exe
Task: {36D68D91-43BF-4FD7-B1D5-4D3FEFC53A05} - System32\Tasks\{942C10A9-AF5F-43D0-BD31-DAA6154C21EC} => pcalua.exe -a "C:\Users\Klárka\AppData\Local\Temp\Temp1_bios-20120207150117 (1).zip\BIOS_V230_WIN.exe" <==== ATTENTION
Task: {39137013-7BCD-4CF5-8D22-25977E3DCDB0} - System32\Tasks\{F911DF75-6C81-40EF-BE73-88C9AF6F9CA0} => C:\Users\Libor\Downloads\OneDriveSetup (1).exe [2015-04-24] (Microsoft Corporation)
Task: {3B528BD0-2696-4FEF-A99E-16C91B60CA7E} - System32\Tasks\{3426EE79-41D3-4A93-86F0-93109DF31A67} => C:\Users\Libor\Downloads\OneDriveSetup (1).exe [2015-04-24] (Microsoft Corporation)
Task: {3DD003A3-5CCD-4CA2-A2A2-300AB827D835} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {3F43F57C-C82E-4B53-9933-513B5C373924} - \AmiUpdXp -> No File <==== ATTENTION
Task: {436F3DF3-3C39-42F6-9860-903DD7CE0D43} - System32\Tasks\{1BEE5AC5-6DB8-4852-9335-58C22854955E} => D:\McciInitializerBootstrapper.exe
Task: {460D68B9-60C7-4B03-A6AA-0C9360F50565} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {48C4888A-BC0D-462F-95A8-A0AA9C6FEA97} - System32\Tasks\{91ACB00F-B081-4FC1-AAD6-733213CF77AE} => C:\Users\Libor\Downloads\OneDriveSetup (2).exe [2015-12-23] (Microsoft Corporation)
Task: {4B5BCA83-3764-44CB-ADCE-EEEFAFE9F2AE} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {4C57529F-E1A8-4484-81D6-0470CE6AF7D7} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {501480D6-57D1-43AD-B8E3-F0CB2CBCDF3F} - System32\Tasks\{C2BBD471-3839-4EC9-85F9-6E0DE1BE7E45} => C:\Users\Libor\Downloads\OneDriveSetup (1).exe [2015-04-24] (Microsoft Corporation)
Task: {5209C0CA-263E-4C90-AB2A-7517B9427DAA} - System32\Tasks\{4A9ABA96-E126-4B40-AA1B-C952C5C772E4} => C:\Users\Libor\Downloads\OneDriveSetup (2).exe [2015-12-23] (Microsoft Corporation)
Task: {52DAF4C7-CC6D-4D20-8010-CEE8185285A4} - System32\Tasks\{4714FBAB-FAFE-40A2-88F5-31D77E56469A} => C:\Program Files (x86)\Microsoft OneDrive\OneDriveSetup.exe [2015-12-23] (Microsoft Corporation)
Task: {5751EF40-EEF4-47B1-B96E-53D7E0359709} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {5CD62503-888D-41A0-B730-2BB1C4338713} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {6837C6C8-B0DF-464E-A4C3-4E909CC1AA3A} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-276332642-1909207443-117345979-1000UA => C:\Users\Libor\AppData\Local\Google\Update\GoogleUpdate.exe
Task: {69F20569-9F96-44D2-B9D9-88A1583F5089} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {70C122D7-0AD6-42E2-AAD5-CF46281FF1AC} - System32\Tasks\{4E65E661-F12A-498E-BAFA-C2F9C527788A} => C:\Program Files (x86)\Microsoft OneDrive\OneDriveSetup.exe [2015-12-23] (Microsoft Corporation)
Task: {74CA1858-BA67-4563-ADF1-B003F4405C1F} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {784812AA-699B-4EDB-9F4E-E37BBA746099} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-10-13] (Adobe Systems Incorporated)
Task: {7A16584B-4019-4DFD-9F75-A7707BE27CD4} - System32\Tasks\{223BA351-5FBA-47D3-A4B1-B2DCF41A716C} => C:\Users\Libor\Downloads\OneDriveSetup (2).exe [2015-12-23] (Microsoft Corporation)
Task: {8309964E-E116-4AA2-9B5C-26F7A440E5D7} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {84671323-862B-4E1C-B74F-32AB77147DD8} - System32\Tasks\{7D6E7064-295E-452D-9548-2F5FC6F558D5} => C:\Users\Libor\Downloads\OneDriveSetup (2).exe [2015-12-23] (Microsoft Corporation)
Task: {88E3A497-A852-465C-9C97-12D083BC1FA9} - System32\Tasks\{B27D3AC8-74AB-4C92-862A-E59DA9F137AE} => C:\Program Files (x86)\Microsoft OneDrive\OneDriveSetup.exe [2015-12-23] (Microsoft Corporation)
Task: {8B046348-4613-4222-BC8C-C2864414634E} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {8E279167-F7A1-498D-8ACE-86DB3579455A} - System32\Tasks\{7DEF5258-8142-4955-ACB3-54905CF25FF2} => C:\Users\Libor\Downloads\OneDriveSetup.exe [2014-08-31] (Microsoft Corporation)
Task: {8E510EAB-61E7-4BC4-ABBF-310F5373DD47} - System32\Tasks\Toshiba\CommonNotifier => C:\Program Files (x86)\Toshiba TEMPRO\Toshiba.Tempro.UI.CommonNotifier.exe [2015-11-17] (Toshiba Europe GmbH)
Task: {8EC2E094-C344-43A6-8AB2-6E44D3A0DA87} - System32\Tasks\{B07F8617-AC1C-4B97-804E-44CD33C58D1F} => pcalua.exe -a "C:\Users\Libor\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\N8LLXXWE\wlsetup-web (1).exe" -d C:\Users\Libor\Desktop
Task: {8F122D42-6D94-47FB-AC79-E1127270AB66} - System32\Tasks\{FA76BB90-6BFC-475C-9F9B-297DA5B49FD9} => C:\Users\Libor\Downloads\OneDriveSetup.exe [2014-08-31] (Microsoft Corporation)
Task: {988765CD-853D-44F5-9629-41599B266EE6} - System32\Tasks\{8C44DA8B-648D-4E64-A66F-66948C3DBC25} => C:\Users\Libor\Downloads\OneDriveSetup (2).exe [2015-12-23] (Microsoft Corporation)
Task: {99B38E83-9EAB-4C1A-A851-FBC342E2AB72} - System32\Tasks\{972D9414-3C48-4CC0-A9E1-4E38F8DEA031} => C:\Users\Libor\Downloads\OneDriveSetup (2).exe [2015-12-23] (Microsoft Corporation)
Task: {9FA19B4A-8414-47FC-B043-908B98628150} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {A2B3A638-33C7-4D10-932D-F77EA33AB4A7} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {A350ACAC-98D4-4AF7-AF11-F7D0E83F5300} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {A8A37857-D7DB-4B21-BA58-0FCDA358B5ED} - System32\Tasks\{1972BA7A-859C-455B-B08F-45B7A3FC973B} => C:\Users\Libor\Downloads\OneDriveSetup (2).exe [2015-12-23] (Microsoft Corporation)
Task: {B0A12EE8-6F6B-4302-B3E6-2D988F6C42C1} - System32\Tasks\{3B1D8ED6-9784-4D3F-9896-E6E10D2591C7} => Iexplore.exe hxxp://ui.skype.com/ui/0/7.4.0.102/cs/abandoninstall?page=tsProgressBar
Task: {B1D6AC1F-9BA8-46AC-92CE-3DE4A5EB2598} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {B6DB5C4C-02DB-4E23-B44E-D107A3F37136} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {B875B849-69B1-44AC-8944-DD90CE999F51} - System32\Tasks\{A4464448-99E1-42A9-9EBD-66CCA9253EE3} => C:\Program Files (x86)\Microsoft OneDrive\OneDriveSetup.exe [2015-12-23] (Microsoft Corporation)
Task: {B94F6A4D-BF8C-4F5E-81EB-CE6D2936ABBC} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {BA99AC79-0009-4503-9BA0-639A8AF0A40A} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {BADA2930-1AB9-4F23-8D60-75D8C561AA74} - System32\Tasks\{5373431C-024D-48AE-9C9A-2D1C6C92D81D} => C:\Users\Libor\Downloads\OneDriveSetup.exe [2014-08-31] (Microsoft Corporation)
Task: {BC3355F7-71DB-43EB-8198-B0775D3841AD} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {BF852515-83A4-474B-81F5-17617A5318F6} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {C189A565-7ABB-4805-959F-15753727FC16} - System32\Tasks\{7ED8C0B7-9F36-46F4-B37A-1D2A53324C87} => C:\Program Files (x86)\Microsoft OneDrive\OneDriveSetup.exe [2015-12-23] (Microsoft Corporation)
Task: {C1E05CDB-53C4-43D4-B867-3777C6A62535} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {C20F59B0-FE8C-4978-8305-C565179344D8} - System32\Tasks\{DF68AE95-0B26-4E4A-8F56-4D844C07F140} => C:\Program Files (x86)\Microsoft OneDrive\OneDriveSetup.exe [2015-12-23] (Microsoft Corporation)
Task: {C382A0F5-2DE8-4667-864E-3CF223CC21EE} - System32\Tasks\{02F0194C-F997-43BA-9E12-E2957EC3532B} => C:\Users\Libor\Downloads\OneDriveSetup.exe [2014-08-31] (Microsoft Corporation)
Task: {CA9A9A74-47A6-49D3-85F2-205B6B4255AD} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {CE338A54-F88E-464D-9E90-22B2201F9C41} - System32\Tasks\{7FFA6DDE-11E9-4116-AF67-708C72E92711} => C:\Users\Libor\Downloads\OneDriveSetup (2).exe [2015-12-23] (Microsoft Corporation)
Task: {CF625304-0589-4B52-A24F-BBF475A05BA4} - \ConfigFree Startup Programs -> No File <==== ATTENTION
Task: {CFBD5488-A2A2-4E66-A67D-E35945B77D51} - System32\Tasks\{B9AB9055-381E-4353-894C-5147D0870D21} => C:\Program Files (x86)\Microsoft OneDrive\OneDriveSetup.exe [2015-12-23] (Microsoft Corporation)
Task: {D431ABF2-27B7-49F5-B35F-ADDBB0CD7107} - System32\Tasks\{212BDBC4-C74B-49DF-8F2F-2287C459F00B} => C:\Users\Libor\Downloads\OneDriveSetup.exe [2014-08-31] (Microsoft Corporation)
Task: {DB3ACADA-65CF-4459-A473-1F00DF77F2A2} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\System32\browserchoice.exe
Task: {DC3CA387-1B7B-4457-8EAC-FD17281A1EE0} - System32\Tasks\{4D7DAC98-B3A9-4900-A6B9-0E6C309619E1} => C:\Users\Libor\Downloads\OneDriveSetup (2).exe [2015-12-23] (Microsoft Corporation)
Task: {DE515603-86E6-4283-8BCC-0F95D0B0331B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {DF057C8D-A759-4E0F-B4DB-A7B3D7332B05} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-09-16] (Adobe Systems Incorporated)
Task: {E0E20104-54D1-4B27-A436-545541B0F8FE} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
Task: {E42A1EB1-B270-4917-8CDA-03BF93C9386C} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
Task: {E5E91339-1DC5-4F29-9AD1-D3664F6BE3CA} - System32\Tasks\{79AF5B59-CF8C-4EC2-BBC6-905F345A15E0} => C:\Users\Libor\Downloads\OneDriveSetup (1).exe [2015-04-24] (Microsoft Corporation)
Task: {E8777D22-7E05-43BD-80AF-7F4FDA53364B} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {EE959F58-754B-4F59-89D5-18C0DDA8D4BE} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe
Task: {F4525C7D-9921-4BF7-BF67-6DBE6CEC0BA1} - System32\Tasks\{070453CF-F851-4957-80E8-8719C2C4F76F} => C:\Users\Libor\Downloads\OneDriveSetup (2).exe [2015-12-23] (Microsoft Corporation)
Task: {F45AA561-48E6-43A3-8E45-4AFCA420E0C9} - \Microsoft\Windows\Setup\gwx\rundetector -> No File <==== ATTENTION
Task: {F574A2E8-EEC2-482A-8119-1CBAFCA94423} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {F6F7856C-CF74-4E25-8119-478E242E3D7A} - System32\Tasks\{1C2A19DC-F671-4ABF-A926-3BD8051265AA} => C:\Users\Libor\Downloads\OneDriveSetup (1).exe [2015-04-24] (Microsoft Corporation)
Task: {FAC37ACF-ED9F-46FE-BC91-E59B890E3237} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {FDF5DD2C-8623-4E54-B448-CD77B62C4C38} - System32\Tasks\OneDrive Standalone Update Task => C:\Users\Libor\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\OneDriveStandaloneUpdater.exe [2016-08-27] (Microsoft Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

==================== Loaded Modules (Whitelisted) ==============

2016-07-16 12:42 - 2016-07-16 12:42 - 00231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2016-10-12 16:56 - 2016-09-15 18:25 - 02681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2013-12-29 17:40 - 2010-04-05 11:55 - 00116104 _____ () C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
2015-02-13 04:20 - 2015-02-13 04:20 - 00085832 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2015-02-13 04:20 - 2015-02-13 04:20 - 01346344 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2016-10-12 16:56 - 2016-09-15 18:25 - 02681200 _____ () C:\WINDOWS\SYSTEM32\CoreUIComponents.dll
2016-09-12 14:23 - 2016-09-12 14:23 - 01864384 _____ () C:\Users\Mamka\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\amd64\ClientTelemetry.dll
2016-10-04 19:39 - 2016-10-04 19:39 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2016-10-12 16:54 - 2016-10-05 10:35 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2016-10-28 08:12 - 2016-10-15 04:41 - 09760256 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-10-28 08:12 - 2016-10-15 04:34 - 01401344 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-10-28 08:12 - 2016-10-15 04:34 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2016-10-28 08:12 - 2016-10-15 04:34 - 02424832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-10-28 08:12 - 2016-10-15 04:38 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2010-04-07 16:07 - 2010-04-07 16:07 - 09468728 _____ () C:\Program Files\TOSHIBA\FlashCards\BlackPng.dll
2009-11-03 13:26 - 2009-11-03 13:26 - 00053560 _____ () C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnZ.dll
2010-03-03 14:15 - 2010-03-03 14:15 - 00019256 _____ () C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF10.dll
2010-03-03 14:15 - 2010-03-03 14:15 - 00019256 _____ () C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF11.dll
2013-07-30 20:49 - 2009-06-22 13:40 - 00022328 _____ () C:\Program Files\TOSHIBA CORPORATION\Toshiba Assist\NotifyX.dll
2009-03-12 19:08 - 2009-03-12 19:08 - 00048640 _____ () C:\Program Files (x86)\Toshiba\PCDiag\NotifyPCD.dll
2010-02-05 16:44 - 2010-02-05 16:44 - 00079192 _____ () C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosIPCWraper.dll
2016-10-04 19:49 - 2016-10-04 19:49 - 01864384 _____ () C:\Users\Libor\AppData\Local\Microsoft\OneDrive\17.3.6517.0809_1\amd64\ClientTelemetry.dll
2016-10-21 17:31 - 2016-10-21 17:32 - 00072192 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.8.197.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2016-10-21 17:31 - 2016-10-21 17:32 - 00178176 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.8.197.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2016-10-21 17:31 - 2016-10-21 17:32 - 35253760 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.8.197.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2016-07-13 20:42 - 2016-07-13 20:42 - 00050688 _____ () C:\Program Files\CCleaner\lang\lang-1029.dll
2016-09-12 14:23 - 2016-09-12 14:23 - 01383616 _____ () C:\Users\Mamka\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\ClientTelemetry.dll
2016-09-12 14:23 - 2016-09-12 14:23 - 00118976 _____ () C:\Users\Mamka\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\FileSyncViews.dll
2016-10-04 19:48 - 2016-10-04 19:49 - 01383616 _____ () C:\Users\Libor\AppData\Local\Microsoft\OneDrive\17.3.6517.0809_1\ClientTelemetry.dll
2016-10-04 19:50 - 2016-10-04 19:50 - 00118976 _____ () C:\Users\Libor\AppData\Local\Microsoft\OneDrive\17.3.6517.0809_1\FileSyncViews.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-276332642-1909207443-117345979-1007\...\amazon.com -> hxxps://amazon.com

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:34 - 2013-12-30 14:25 - 00000027 ____A C:\WINDOWS\system32\Drivers\etc\hosts

127.0.0.1 localhost

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-276332642-1909207443-117345979-1003\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg
HKU\S-1-5-21-276332642-1909207443-117345979-1007\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\windows\img0.jpg
DNS Servers: 10.0.0.138
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

MSCONFIG\startupreg: EvtMgr6 => C:\Program Files\Logitech\SetPointP\SetPoint.exe /launchGaming
MSCONFIG\startupreg: QuickTime Task => "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
MSCONFIG\startupreg: seznam-listicka-distribuce => "C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
MSCONFIG\startupreg: StartCCC => "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
HKLM\...\StartupApproved\Run32: => "CanonSolutionMenuEx"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [MSMQ-In-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-In-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [WCF-NetTcpActivator-In-TCP-64bit] => (Allow) LPort=808
FirewallRules: [UDP Query User{A1444234-63B8-4FC2-9D11-7DEEB1185E9F}C:\program files (x86)\pinnacle\studio 12\programs\studio.exe] => (Allow) C:\program files (x86)\pinnacle\studio 12\programs\studio.exe
FirewallRules: [TCP Query User{D2CEE62E-A674-4808-8845-0979B6879F0C}C:\program files (x86)\pinnacle\studio 12\programs\studio.exe] => (Allow) C:\program files (x86)\pinnacle\studio 12\programs\studio.exe
FirewallRules: [{61AC81A1-7148-4216-8C53-013E22CF20CA}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{5B34CA22-03F8-4B65-B682-AF2B32686086}] => (Allow) C:\Program Files (x86)\ICQ7M\ICQ.exe
FirewallRules: [{CCA07850-7E1A-4E9C-A094-6A5F9CC2478B}] => (Allow) C:\Program Files (x86)\ICQ7M\ICQ.exe
FirewallRules: [{41959CDF-DDCB-4B0B-BB75-C0912FA01620}] => (Allow) C:\Program Files (x86)\ICQ7M\ICQ.exe
FirewallRules: [{0E1EEB9F-7CEA-4DC4-A1F3-DAC0817D04C4}] => (Allow) C:\Program Files (x86)\ICQ7M\ICQ.exe
FirewallRules: [{2B5471F0-648C-489B-859B-7EDFDDC057CA}] => (Allow) C:\Program Files (x86)\ICQ7M\ICQ.exe
FirewallRules: [{936BFDF3-9F8E-419D-89E0-0F437D9E0968}] => (Allow) C:\Program Files (x86)\ICQ7M\ICQ.exe
FirewallRules: [{C2FFF39C-8FF6-4A87-9BAA-8B176440A109}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{A583D349-155E-4631-A138-03A412A458DD}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{EDDF86C4-C85C-4F15-B158-CAA6C11669A9}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{CC6BF812-C294-4AC2-8060-BA98CB909996}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{57C8D773-A4CE-470B-8725-4777A5FBF54D}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{3F42876B-72C8-4D03-9671-B585BA8CDAF0}] => (Allow) LPort=2869
FirewallRules: [{5FDB71B5-0617-44DA-9C64-D41FE3795B63}] => (Allow) LPort=1900
FirewallRules: [{45BD3C7F-427E-455E-B682-0E1F82C6DC5B}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [TCP Query User{28B909B4-9E0F-4D5E-84E5-2CF8325D7135}C:\program files (x86)\microsoft office\office12\outlook.exe] => (Block) C:\program files (x86)\microsoft office\office12\outlook.exe
FirewallRules: [UDP Query User{E42842BB-BEB1-4C68-BD9C-BB77A161D32B}C:\program files (x86)\microsoft office\office12\outlook.exe] => (Block) C:\program files (x86)\microsoft office\office12\outlook.exe
FirewallRules: [{27C8FCDA-BE96-487D-B4A2-60DFFDC51ADA}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{27993726-5185-424B-9064-656F504400B7}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{AECCFB2E-B8BD-4AFC-9D67-32BEA3D0A8A6}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{DBD37716-F911-4F37-AC1C-AF136CFA0202}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{28C5947B-4288-46D7-B265-3DA4E6F28D60}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{4723F59F-4A90-4407-BF27-D360EA092ABF}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 12\Programs\RM.exe
FirewallRules: [{C6598020-A038-4755-A2E7-5C329D3268B4}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 12\Programs\RM.exe
FirewallRules: [{2146F69E-DA39-4E7D-9812-59977F155283}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 12\Programs\Studio.exe
FirewallRules: [{F19DD3A2-B1B5-4699-AAEF-FA4BBAF2528E}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 12\Programs\Studio.exe
FirewallRules: [{4A566D80-633E-45F2-A40E-66D5B8A035B2}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 12\Programs\umi.exe
FirewallRules: [{19AEB28C-A0B2-4610-A7F7-BC91712583C2}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 12\Programs\umi.exe
FirewallRules: [{D25BC806-E185-42E0-8727-C9395D49B18E}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Restore Points =========================

28-10-2016 08:17:55 Windows Update
31-10-2016 17:20:56 Windows Update
31-10-2016 17:23:08 Windows Update

==================== Faulty Device Manager Devices =============

Name: TOSHIBA x64 ACPI-Compliant Value Added Logical and General Purpose Device
Description: TOSHIBA x64 ACPI-Compliant Value Added Logical and General Purpose Device
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: TOSHIBA
Service: TVALZ
Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19)
Resolution: A registry problem was detected.
This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options:
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver.


==================== Event log errors: =========================

Application errors:
==================
Error: (11/02/2016 09:40:59 PM) (Source: SecurityCenter) (EventID: 16) (User: )
Description: Při aktualizaci stavu na SECURITY_PRODUCT_STATE_ON došlo k chybě (chyba %3).

Error: (11/02/2016 09:40:54 PM) (Source: SecurityCenter) (EventID: 16) (User: )
Description: Při aktualizaci stavu na SECURITY_PRODUCT_STATE_ON došlo k chybě (chyba %3).

Error: (11/02/2016 09:40:49 PM) (Source: SecurityCenter) (EventID: 16) (User: )
Description: Při aktualizaci stavu na SECURITY_PRODUCT_STATE_ON došlo k chybě (chyba %3).

Error: (11/02/2016 09:40:44 PM) (Source: SecurityCenter) (EventID: 16) (User: )
Description: Při aktualizaci stavu na SECURITY_PRODUCT_STATE_ON došlo k chybě (chyba %3).

Error: (11/02/2016 09:40:39 PM) (Source: SecurityCenter) (EventID: 16) (User: )
Description: Při aktualizaci stavu na SECURITY_PRODUCT_STATE_ON došlo k chybě (chyba %3).

Error: (11/02/2016 09:40:34 PM) (Source: SecurityCenter) (EventID: 16) (User: )
Description: Při aktualizaci stavu na SECURITY_PRODUCT_STATE_ON došlo k chybě (chyba %3).

Error: (11/02/2016 09:40:29 PM) (Source: SecurityCenter) (EventID: 16) (User: )
Description: Při aktualizaci stavu na SECURITY_PRODUCT_STATE_ON došlo k chybě (chyba %3).

Error: (11/02/2016 09:40:24 PM) (Source: SecurityCenter) (EventID: 16) (User: )
Description: Při aktualizaci stavu na SECURITY_PRODUCT_STATE_ON došlo k chybě (chyba %3).

Error: (11/02/2016 09:40:19 PM) (Source: SecurityCenter) (EventID: 16) (User: )
Description: Při aktualizaci stavu na SECURITY_PRODUCT_STATE_ON došlo k chybě (chyba %3).

Error: (11/02/2016 09:40:14 PM) (Source: SecurityCenter) (EventID: 16) (User: )
Description: Při aktualizaci stavu na SECURITY_PRODUCT_STATE_ON došlo k chybě (chyba %3).


System errors:
=============
Error: (11/02/2016 09:25:15 PM) (Source: DCOM) (EventID: 10010) (User: TOSHIBA)
Description: Server {45CC1698-D1CF-417B-BC32-80EB79E05EF1} se v daném časovém limitu neregistroval u služby DCOM.

Error: (11/02/2016 09:23:16 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba TPCH Service byla neočekávaně ukončena. Tento stav nastal již 2krát.

Error: (11/02/2016 09:23:16 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{3185A766-B338-11E4-A71E-12E3F512A338}
a APPID
{7006698D-2974-4091-A424-85DD0B909E23}
uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (11/02/2016 09:21:00 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
a APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (11/02/2016 09:21:00 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
a APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (11/02/2016 09:21:00 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
a APPID
{F72671A9-012C-4725-9D2F-2A4D32D65169}
uživateli NT AUTHORITY\SYSTEM (SID: S-1-5-18) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (11/02/2016 09:11:11 PM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 4

Error: (11/02/2016 08:31:45 PM) (Source: DCOM) (EventID: 10010) (User: Toshiba)
Description: Server {45CC1698-D1CF-417B-BC32-80EB79E05EF1} se v daném časovém limitu neregistroval u služby DCOM.

Error: (11/02/2016 08:30:02 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba TPCH Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (11/02/2016 08:26:05 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
a APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.


CodeIntegrity:
===================================
Date: 2016-11-01 19:39:32.472
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2016-11-01 19:36:28.803
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2016-11-01 19:28:53.164
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2016-11-01 19:12:59.222
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2016-11-01 19:12:53.905
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2016-11-01 19:12:49.198
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2016-11-01 19:12:45.386
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2016-11-01 19:12:40.330
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2016-11-01 19:12:36.343
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2016-10-31 20:24:15.899
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.


==================== Memory info ===========================

Processor: Intel(R) Core(TM) i5 CPU M 460 @ 2.53GHz
Percentage of memory in use: 55%
Total physical RAM: 3954.67 MB
Available physical RAM: 1768.42 MB
Total Virtual: 7922.67 MB
Available Virtual: 5241.32 MB

==================== Drives ================================

Drive c: (WINDOWS) (Fixed) (Total:595.34 GB) (Free:211.58 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 596.2 GB) (Disk ID: 23728765)
Partition 1: (Active) - (Size=400 MB) - (Type=27)
Partition 2: (Not Active) - (Size=595.3 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=450 MB) - (Type=27)

==================== End of Addition.txt ============================

Ještě by tam měl být log FRST. Toto je pouze Addition.

aaaha, zabalit.

Přesně tak. Otevřte poznámkový blok a zkopírujte do něj:

Start
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [598552 2016-06-22] (Oracle Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-276332642-1909207443-117345979-1007\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-23] (Google Inc.)
C:\Program Files (x86)\Google\Google Toolbar
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-23] (Google Inc.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-23] (Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-23] (Google Inc.)
U3 idsvc; no ImagePath
C:\WINDOWS\system32\ApnDatabase.xml
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-276332642-1909207443-117345979-1000UA
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
C:\WINDOWS\System32\Tasks\{B07F8617-AC1C-4B97-804E-44CD33C58D1F}
C:\WINDOWS\System32\Tasks\{A390831C-D470-4745-B2FE-C073CBB943F8}
C:\WINDOWS\System32\Tasks\{942C10A9-AF5F-43D0-BD31-DAA6154C21EC}
C:\WINDOWS\System32\Tasks\{39A5E09D-DB15-4D2E-84C7-4DA1C1182C22}
C:\WINDOWS\System32\Tasks\{3B1D8ED6-9784-4D3F-9896-E6E10D2591C7}
C:\WINDOWS\System32\Tasks\{AA3F652B-EF93-47E2-B7AD-636BF96B8093}
C:\WINDOWS\System32\Tasks\{DF68AE95-0B26-4E4A-8F56-4D844C07F140}
C:\WINDOWS\System32\Tasks\{B9AB9055-381E-4353-894C-5147D0870D21}
C:\WINDOWS\System32\Tasks\{B27D3AC8-74AB-4C92-862A-E59DA9F137AE}
C:\WINDOWS\System32\Tasks\{A4464448-99E1-42A9-9EBD-66CCA9253EE3}
C:\WINDOWS\System32\Tasks\{936363DD-D12F-42CB-A4EC-F3509E81E924}
C:\WINDOWS\System32\Tasks\{7ED8C0B7-9F36-46F4-B37A-1D2A53324C87}
C:\WINDOWS\System32\Tasks\{4E65E661-F12A-498E-BAFA-C2F9C527788A}
C:\WINDOWS\System32\Tasks\{4714FBAB-FAFE-40A2-88F5-31D77E56469A}
C:\WINDOWS\System32\Tasks\{2E96ED0C-7E1B-4B89-BA40-8EDE32717FFA}
C:\WINDOWS\System32\Tasks\{26A27CBD-E9E5-4519-8783-7ABB36A69D01}
C:\WINDOWS\System32\Tasks\{F911DF75-6C81-40EF-BE73-88C9AF6F9CA0}
C:\WINDOWS\System32\Tasks\{C2BBD471-3839-4EC9-85F9-6E0DE1BE7E45}
C:\WINDOWS\System32\Tasks\{972D9414-3C48-4CC0-A9E1-4E38F8DEA031}
C:\WINDOWS\System32\Tasks\{91ACB00F-B081-4FC1-AAD6-733213CF77AE}
C:\WINDOWS\System32\Tasks\{8C44DA8B-648D-4E64-A66F-66948C3DBC25}
C:\WINDOWS\System32\Tasks\{7FFA6DDE-11E9-4116-AF67-708C72E92711}
C:\WINDOWS\System32\Tasks\{7D6E7064-295E-452D-9548-2F5FC6F558D5}
C:\WINDOWS\System32\Tasks\{79AF5B59-CF8C-4EC2-BBC6-905F345A15E0}
C:\WINDOWS\System32\Tasks\{4D7DAC98-B3A9-4900-A6B9-0E6C309619E1}
C:\WINDOWS\System32\Tasks\{4A9ABA96-E126-4B40-AA1B-C952C5C772E4}
C:\WINDOWS\System32\Tasks\{3426EE79-41D3-4A93-86F0-93109DF31A67}
C:\WINDOWS\System32\Tasks\{2E59717C-C322-4DB7-AC18-F8F5594DBC4D}
C:\WINDOWS\System32\Tasks\{26463B64-5923-42CD-BB0B-363641B1D1A0}
C:\WINDOWS\System32\Tasks\{223BA351-5FBA-47D3-A4B1-B2DCF41A716C}
C:\WINDOWS\System32\Tasks\{1C2A19DC-F671-4ABF-A926-3BD8051265AA}
C:\WINDOWS\System32\Tasks\{1C292653-4690-4EAB-87B2-C16B8BFAADC8}
C:\WINDOWS\System32\Tasks\{1972BA7A-859C-455B-B08F-45B7A3FC973B}
C:\WINDOWS\System32\Tasks\{070453CF-F851-4957-80E8-8719C2C4F76F}
C:\WINDOWS\System32\Tasks\{FA76BB90-6BFC-475C-9F9B-297DA5B49FD9}
C:\WINDOWS\System32\Tasks\{C6215EC0-6BA5-405F-99C0-3E079C897A4B}
C:\WINDOWS\System32\Tasks\{7DEF5258-8142-4955-ACB3-54905CF25FF2}
C:\WINDOWS\System32\Tasks\{5373431C-024D-48AE-9C9A-2D1C6C92D81D}
C:\WINDOWS\System32\Tasks\{212BDBC4-C74B-49DF-8F2F-2287C459F00B}
C:\WINDOWS\System32\Tasks\{02F0194C-F997-43BA-9E12-E2957EC3532B}
C:\WINDOWS\System32\Tasks\{EA59E12C-03AF-4EF7-A8AB-0E6753623A35}
C:\WINDOWS\System32\Tasks\{1BEE5AC5-6DB8-4852-9335-58C22854955E}
C:\WINDOWS\System32\Tasks\{5B55120C-7708-45DD-9C6C-006ED09C7F3E}
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
C:\Users\Klárka\AppData\Local\Temp
Task: {0A130004-7778-4AE0-9148-2D9E2DA7848E} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {10070ECC-DAB9-4807-832C-A5D87EDCEA13} - System32\Tasks\{A390831C-D470-4745-B2FE-C073CBB943F8} => pcalua.exe -a C:\Users\Libor\AppData\Local\Temp\TC20090500A.temp\TVAP\setup.exe -d C:\Users\Libor\AppData\Local\Temp\TC20090500A.temp\TVAP <==== ATTENTION
Task: {1038118F-CB46-4ADF-BA7F-89C3EC820475} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {1AB0D4C1-EEDD-47C1-AD8F-D1305539EB52} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
Task: {2CA4EA49-761F-44C6-B48F-4FBB00FC0BE0} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {2CE09946-B4BF-4A66-8185-89B75A746C2F} - System32\Tasks\{39A5E09D-DB15-4D2E-84C7-4DA1C1182C22} => pcalua.exe -a C:\Users\Klárka\AppData\Local\Temp\Temp1_bios-20120207150117.zip\BIOS_V230_WIN.exe <==== ATTENTION
Task: {36D68D91-43BF-4FD7-B1D5-4D3FEFC53A05} - System32\Tasks\{942C10A9-AF5F-43D0-BD31-DAA6154C21EC} => pcalua.exe -a "C:\Users\Klárka\AppData\Local\Temp\Temp1_bios-20120207150117 (1).zip\BIOS_V230_WIN.exe" <==== ATTENTION
Task: {3DD003A3-5CCD-4CA2-A2A2-300AB827D835} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {3F43F57C-C82E-4B53-9933-513B5C373924} - \AmiUpdXp -> No File <==== ATTENTION
Task: {4B5BCA83-3764-44CB-ADCE-EEEFAFE9F2AE} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
ask: {5CD62503-888D-41A0-B730-2BB1C4338713} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {6837C6C8-B0DF-464E-A4C3-4E909CC1AA3A} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-276332642-1909207443-117345979-1000UA => C:\Users\Libor\AppData\Local\Google\Update\GoogleUpdate.exe
Task: {69F20569-9F96-44D2-B9D9-88A1583F5089} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {8309964E-E116-4AA2-9B5C-26F7A440E5D7} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
ask: {BA99AC79-0009-4503-9BA0-639A8AF0A40A} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {BC3355F7-71DB-43EB-8198-B0775D3841AD} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {CA9A9A74-47A6-49D3-85F2-205B6B4255AD} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {CF625304-0589-4B52-A24F-BBF475A05BA4} - \ConfigFree Startup Programs -> No File <==== ATTENTION
Task: {E8777D22-7E05-43BD-80AF-7F4FDA53364B} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {F45AA561-48E6-43A3-8E45-4AFCA420E0C9} - \Microsoft\Windows\Setup\gwx\rundetector -> No File <==== ATTENTION
Task: {FAC37ACF-ED9F-46FE-BC91-E59B890E3237} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
End

Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Díky, posílám fix log

Fix result of Farbar Recovery Scan Tool (x64) Version: 30-10-2016
Ran by Libor (03-11-2016 07:13:52) Run:2
Running from C:\Users\Libor\Desktop
Loaded Profiles: Mamka & Libor (Available Profiles: Klárka & Mamka & Lucka & Libor & DefaultAppPool)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [598552 2016-06-22] (Oracle Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-276332642-1909207443-117345979-1007\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-23] (Google Inc.)
C:\Program Files (x86)\Google\Google Toolbar
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-23] (Google Inc.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-23] (Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-23] (Google Inc.)
U3 idsvc; no ImagePath
C:\WINDOWS\system32\ApnDatabase.xml
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-276332642-1909207443-117345979-1000UA
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
C:\WINDOWS\System32\Tasks\{B07F8617-AC1C-4B97-804E-44CD33C58D1F}
C:\WINDOWS\System32\Tasks\{A390831C-D470-4745-B2FE-C073CBB943F8}
C:\WINDOWS\System32\Tasks\{942C10A9-AF5F-43D0-BD31-DAA6154C21EC}
C:\WINDOWS\System32\Tasks\{39A5E09D-DB15-4D2E-84C7-4DA1C1182C22}
C:\WINDOWS\System32\Tasks\{3B1D8ED6-9784-4D3F-9896-E6E10D2591C7}
C:\WINDOWS\System32\Tasks\{AA3F652B-EF93-47E2-B7AD-636BF96B8093}
C:\WINDOWS\System32\Tasks\{DF68AE95-0B26-4E4A-8F56-4D844C07F140}
C:\WINDOWS\System32\Tasks\{B9AB9055-381E-4353-894C-5147D0870D21}
C:\WINDOWS\System32\Tasks\{B27D3AC8-74AB-4C92-862A-E59DA9F137AE}
C:\WINDOWS\System32\Tasks\{A4464448-99E1-42A9-9EBD-66CCA9253EE3}
C:\WINDOWS\System32\Tasks\{936363DD-D12F-42CB-A4EC-F3509E81E924}
C:\WINDOWS\System32\Tasks\{7ED8C0B7-9F36-46F4-B37A-1D2A53324C87}
C:\WINDOWS\System32\Tasks\{4E65E661-F12A-498E-BAFA-C2F9C527788A}
C:\WINDOWS\System32\Tasks\{4714FBAB-FAFE-40A2-88F5-31D77E56469A}
C:\WINDOWS\System32\Tasks\{2E96ED0C-7E1B-4B89-BA40-8EDE32717FFA}
C:\WINDOWS\System32\Tasks\{26A27CBD-E9E5-4519-8783-7ABB36A69D01}
C:\WINDOWS\System32\Tasks\{F911DF75-6C81-40EF-BE73-88C9AF6F9CA0}
C:\WINDOWS\System32\Tasks\{C2BBD471-3839-4EC9-85F9-6E0DE1BE7E45}
C:\WINDOWS\System32\Tasks\{972D9414-3C48-4CC0-A9E1-4E38F8DEA031}
C:\WINDOWS\System32\Tasks\{91ACB00F-B081-4FC1-AAD6-733213CF77AE}
C:\WINDOWS\System32\Tasks\{8C44DA8B-648D-4E64-A66F-66948C3DBC25}
C:\WINDOWS\System32\Tasks\{7FFA6DDE-11E9-4116-AF67-708C72E92711}
C:\WINDOWS\System32\Tasks\{7D6E7064-295E-452D-9548-2F5FC6F558D5}
C:\WINDOWS\System32\Tasks\{79AF5B59-CF8C-4EC2-BBC6-905F345A15E0}
C:\WINDOWS\System32\Tasks\{4D7DAC98-B3A9-4900-A6B9-0E6C309619E1}
C:\WINDOWS\System32\Tasks\{4A9ABA96-E126-4B40-AA1B-C952C5C772E4}
C:\WINDOWS\System32\Tasks\{3426EE79-41D3-4A93-86F0-93109DF31A67}
C:\WINDOWS\System32\Tasks\{2E59717C-C322-4DB7-AC18-F8F5594DBC4D}
C:\WINDOWS\System32\Tasks\{26463B64-5923-42CD-BB0B-363641B1D1A0}
C:\WINDOWS\System32\Tasks\{223BA351-5FBA-47D3-A4B1-B2DCF41A716C}
C:\WINDOWS\System32\Tasks\{1C2A19DC-F671-4ABF-A926-3BD8051265AA}
C:\WINDOWS\System32\Tasks\{1C292653-4690-4EAB-87B2-C16B8BFAADC8}
C:\WINDOWS\System32\Tasks\{1972BA7A-859C-455B-B08F-45B7A3FC973B}
C:\WINDOWS\System32\Tasks\{070453CF-F851-4957-80E8-8719C2C4F76F}
C:\WINDOWS\System32\Tasks\{FA76BB90-6BFC-475C-9F9B-297DA5B49FD9}
C:\WINDOWS\System32\Tasks\{C6215EC0-6BA5-405F-99C0-3E079C897A4B}
C:\WINDOWS\System32\Tasks\{7DEF5258-8142-4955-ACB3-54905CF25FF2}
C:\WINDOWS\System32\Tasks\{5373431C-024D-48AE-9C9A-2D1C6C92D81D}
C:\WINDOWS\System32\Tasks\{212BDBC4-C74B-49DF-8F2F-2287C459F00B}
C:\WINDOWS\System32\Tasks\{02F0194C-F997-43BA-9E12-E2957EC3532B}
C:\WINDOWS\System32\Tasks\{EA59E12C-03AF-4EF7-A8AB-0E6753623A35}
C:\WINDOWS\System32\Tasks\{1BEE5AC5-6DB8-4852-9335-58C22854955E}
C:\WINDOWS\System32\Tasks\{5B55120C-7708-45DD-9C6C-006ED09C7F3E}
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
C:\Users\Klárka\AppData\Local\Temp
Task: {0A130004-7778-4AE0-9148-2D9E2DA7848E} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {10070ECC-DAB9-4807-832C-A5D87EDCEA13} - System32\Tasks\{A390831C-D470-4745-B2FE-C073CBB943F8} => pcalua.exe -a C:\Users\Libor\AppData\Local\Temp\TC20090500A.temp\TVAP\setup.exe -d C:\Users\Libor\AppData\Local\Temp\TC20090500A.temp\TVAP <==== ATTENTION
Task: {1038118F-CB46-4ADF-BA7F-89C3EC820475} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {1AB0D4C1-EEDD-47C1-AD8F-D1305539EB52} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
Task: {2CA4EA49-761F-44C6-B48F-4FBB00FC0BE0} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {2CE09946-B4BF-4A66-8185-89B75A746C2F} - System32\Tasks\{39A5E09D-DB15-4D2E-84C7-4DA1C1182C22} => pcalua.exe -a C:\Users\Klárka\AppData\Local\Temp\Temp1_bios-20120207150117.zip\BIOS_V230_WIN.exe <==== ATTENTION
Task: {36D68D91-43BF-4FD7-B1D5-4D3FEFC53A05} - System32\Tasks\{942C10A9-AF5F-43D0-BD31-DAA6154C21EC} => pcalua.exe -a "C:\Users\Klárka\AppData\Local\Temp\Temp1_bios-20120207150117 (1).zip\BIOS_V230_WIN.exe" <==== ATTENTION
Task: {3DD003A3-5CCD-4CA2-A2A2-300AB827D835} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {3F43F57C-C82E-4B53-9933-513B5C373924} - \AmiUpdXp -> No File <==== ATTENTION
Task: {4B5BCA83-3764-44CB-ADCE-EEEFAFE9F2AE} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
ask: {5CD62503-888D-41A0-B730-2BB1C4338713} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {6837C6C8-B0DF-464E-A4C3-4E909CC1AA3A} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-276332642-1909207443-117345979-1000UA => C:\Users\Libor\AppData\Local\Google\Update\GoogleUpdate.exe
Task: {69F20569-9F96-44D2-B9D9-88A1583F5089} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {8309964E-E116-4AA2-9B5C-26F7A440E5D7} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
ask: {BA99AC79-0009-4503-9BA0-639A8AF0A40A} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {BC3355F7-71DB-43EB-8198-B0775D3841AD} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {CA9A9A74-47A6-49D3-85F2-205B6B4255AD} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {CF625304-0589-4B52-A24F-BBF475A05BA4} - \ConfigFree Startup Programs -> No File <==== ATTENTION
Task: {E8777D22-7E05-43BD-80AF-7F4FDA53364B} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {F45AA561-48E6-43A3-8E45-4AFCA420E0C9} - \Microsoft\Windows\Setup\gwx\rundetector -> No File <==== ATTENTION
Task: {FAC37ACF-ED9F-46FE-BC91-E59B890E3237} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
End
*****************

HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched => value removed successfully
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00avast" => key removed successfully
HKCR\CLSID\{472083B0-C522-11CF-8763-00608CC02F24} => key not found.
"HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer" => key removed successfully
"HKU\S-1-5-21-276332642-1909207443-117345979-1007\SOFTWARE\Policies\Microsoft\Internet Explorer" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}" => key removed successfully
"HKCR\CLSID\{AA58ED58-01DD-4d91-8333-CF10577473F7}" => key removed successfully
C:\Program Files (x86)\Google\Google Toolbar => moved successfully
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}" => key removed successfully
"HKCR\Wow6432Node\CLSID\{AA58ED58-01DD-4d91-8333-CF10577473F7}" => key removed successfully
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{2318C2B1-4965-11d4-9B18-009027A5CD4F} => value removed successfully
"HKCR\CLSID\{2318C2B1-4965-11d4-9B18-009027A5CD4F}" => key removed successfully
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{2318C2B1-4965-11d4-9B18-009027A5CD4F} => value removed successfully
"HKCR\Wow6432Node\CLSID\{2318C2B1-4965-11d4-9B18-009027A5CD4F}" => key removed successfully
idsvc => service removed successfully
C:\WINDOWS\system32\ApnDatabase.xml => moved successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-276332642-1909207443-117345979-1000UA => moved successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
C:\WINDOWS\System32\Tasks\{B07F8617-AC1C-4B97-804E-44CD33C58D1F} => moved successfully
C:\WINDOWS\System32\Tasks\{A390831C-D470-4745-B2FE-C073CBB943F8} => moved successfully
C:\WINDOWS\System32\Tasks\{942C10A9-AF5F-43D0-BD31-DAA6154C21EC} => moved successfully
C:\WINDOWS\System32\Tasks\{39A5E09D-DB15-4D2E-84C7-4DA1C1182C22} => moved successfully
C:\WINDOWS\System32\Tasks\{3B1D8ED6-9784-4D3F-9896-E6E10D2591C7} => moved successfully
C:\WINDOWS\System32\Tasks\{AA3F652B-EF93-47E2-B7AD-636BF96B8093} => moved successfully
C:\WINDOWS\System32\Tasks\{DF68AE95-0B26-4E4A-8F56-4D844C07F140} => moved successfully
C:\WINDOWS\System32\Tasks\{B9AB9055-381E-4353-894C-5147D0870D21} => moved successfully
C:\WINDOWS\System32\Tasks\{B27D3AC8-74AB-4C92-862A-E59DA9F137AE} => moved successfully
C:\WINDOWS\System32\Tasks\{A4464448-99E1-42A9-9EBD-66CCA9253EE3} => moved successfully
C:\WINDOWS\System32\Tasks\{936363DD-D12F-42CB-A4EC-F3509E81E924} => moved successfully
C:\WINDOWS\System32\Tasks\{7ED8C0B7-9F36-46F4-B37A-1D2A53324C87} => moved successfully
C:\WINDOWS\System32\Tasks\{4E65E661-F12A-498E-BAFA-C2F9C527788A} => moved successfully
C:\WINDOWS\System32\Tasks\{4714FBAB-FAFE-40A2-88F5-31D77E56469A} => moved successfully
C:\WINDOWS\System32\Tasks\{2E96ED0C-7E1B-4B89-BA40-8EDE32717FFA} => moved successfully
C:\WINDOWS\System32\Tasks\{26A27CBD-E9E5-4519-8783-7ABB36A69D01} => moved successfully
C:\WINDOWS\System32\Tasks\{F911DF75-6C81-40EF-BE73-88C9AF6F9CA0} => moved successfully
C:\WINDOWS\System32\Tasks\{C2BBD471-3839-4EC9-85F9-6E0DE1BE7E45} => moved successfully
C:\WINDOWS\System32\Tasks\{972D9414-3C48-4CC0-A9E1-4E38F8DEA031} => moved successfully
C:\WINDOWS\System32\Tasks\{91ACB00F-B081-4FC1-AAD6-733213CF77AE} => moved successfully
C:\WINDOWS\System32\Tasks\{8C44DA8B-648D-4E64-A66F-66948C3DBC25} => moved successfully
C:\WINDOWS\System32\Tasks\{7FFA6DDE-11E9-4116-AF67-708C72E92711} => moved successfully
C:\WINDOWS\System32\Tasks\{7D6E7064-295E-452D-9548-2F5FC6F558D5} => moved successfully
C:\WINDOWS\System32\Tasks\{79AF5B59-CF8C-4EC2-BBC6-905F345A15E0} => moved successfully
C:\WINDOWS\System32\Tasks\{4D7DAC98-B3A9-4900-A6B9-0E6C309619E1} => moved successfully
C:\WINDOWS\System32\Tasks\{4A9ABA96-E126-4B40-AA1B-C952C5C772E4} => moved successfully
C:\WINDOWS\System32\Tasks\{3426EE79-41D3-4A93-86F0-93109DF31A67} => moved successfully
C:\WINDOWS\System32\Tasks\{2E59717C-C322-4DB7-AC18-F8F5594DBC4D} => moved successfully
C:\WINDOWS\System32\Tasks\{26463B64-5923-42CD-BB0B-363641B1D1A0} => moved successfully
C:\WINDOWS\System32\Tasks\{223BA351-5FBA-47D3-A4B1-B2DCF41A716C} => moved successfully
C:\WINDOWS\System32\Tasks\{1C2A19DC-F671-4ABF-A926-3BD8051265AA} => moved successfully
C:\WINDOWS\System32\Tasks\{1C292653-4690-4EAB-87B2-C16B8BFAADC8} => moved successfully
C:\WINDOWS\System32\Tasks\{1972BA7A-859C-455B-B08F-45B7A3FC973B} => moved successfully
C:\WINDOWS\System32\Tasks\{070453CF-F851-4957-80E8-8719C2C4F76F} => moved successfully
C:\WINDOWS\System32\Tasks\{FA76BB90-6BFC-475C-9F9B-297DA5B49FD9} => moved successfully
C:\WINDOWS\System32\Tasks\{C6215EC0-6BA5-405F-99C0-3E079C897A4B} => moved successfully
C:\WINDOWS\System32\Tasks\{7DEF5258-8142-4955-ACB3-54905CF25FF2} => moved successfully
C:\WINDOWS\System32\Tasks\{5373431C-024D-48AE-9C9A-2D1C6C92D81D} => moved successfully
C:\WINDOWS\System32\Tasks\{212BDBC4-C74B-49DF-8F2F-2287C459F00B} => moved successfully
C:\WINDOWS\System32\Tasks\{02F0194C-F997-43BA-9E12-E2957EC3532B} => moved successfully
C:\WINDOWS\System32\Tasks\{EA59E12C-03AF-4EF7-A8AB-0E6753623A35} => moved successfully
C:\WINDOWS\System32\Tasks\{1BEE5AC5-6DB8-4852-9335-58C22854955E} => moved successfully
C:\WINDOWS\System32\Tasks\{5B55120C-7708-45DD-9C6C-006ED09C7F3E} => moved successfully
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => moved successfully
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => moved successfully
C:\Users\Klárka\AppData\Local\Temp => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{0A130004-7778-4AE0-9148-2D9E2DA7848E}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0A130004-7778-4AE0-9148-2D9E2DA7848E}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Logon-5d" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{10070ECC-DAB9-4807-832C-A5D87EDCEA13}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{10070ECC-DAB9-4807-832C-A5D87EDCEA13}" => key removed successfully
C:\WINDOWS\System32\Tasks\{A390831C-D470-4745-B2FE-C073CBB943F8} => not found.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{A390831C-D470-4745-B2FE-C073CBB943F8}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{1038118F-CB46-4ADF-BA7F-89C3EC820475}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1038118F-CB46-4ADF-BA7F-89C3EC820475}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{1AB0D4C1-EEDD-47C1-AD8F-D1305539EB52}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1AB0D4C1-EEDD-47C1-AD8F-D1305539EB52}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{2CA4EA49-761F-44C6-B48F-4FBB00FC0BE0}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2CA4EA49-761F-44C6-B48F-4FBB00FC0BE0}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxcontent" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{2CE09946-B4BF-4A66-8185-89B75A746C2F}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2CE09946-B4BF-4A66-8185-89B75A746C2F}" => key removed successfully
C:\WINDOWS\System32\Tasks\{39A5E09D-DB15-4D2E-84C7-4DA1C1182C22} => not found.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{39A5E09D-DB15-4D2E-84C7-4DA1C1182C22}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{36D68D91-43BF-4FD7-B1D5-4D3FEFC53A05}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{36D68D91-43BF-4FD7-B1D5-4D3FEFC53A05}" => key removed successfully
C:\WINDOWS\System32\Tasks\{942C10A9-AF5F-43D0-BD31-DAA6154C21EC} => not found.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{942C10A9-AF5F-43D0-BD31-DAA6154C21EC}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3DD003A3-5CCD-4CA2-A2A2-300AB827D835}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3DD003A3-5CCD-4CA2-A2A2-300AB827D835}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{3F43F57C-C82E-4B53-9933-513B5C373924}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3F43F57C-C82E-4B53-9933-513B5C373924}" => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AmiUpdXp => key not found.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{4B5BCA83-3764-44CB-ADCE-EEEFAFE9F2AE}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4B5BCA83-3764-44CB-ADCE-EEEFAFE9F2AE}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\launchtrayprocess" => key removed successfully
ask: {5CD62503-888D-41A0-B730-2BB1C4338713} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.) => Error: No automatic fix found for this entry.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{6837C6C8-B0DF-464E-A4C3-4E909CC1AA3A}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6837C6C8-B0DF-464E-A4C3-4E909CC1AA3A}" => key removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-276332642-1909207443-117345979-1000UA => not found.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskUserS-1-5-21-276332642-1909207443-117345979-1000UA" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{69F20569-9F96-44D2-B9D9-88A1583F5089}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{69F20569-9F96-44D2-B9D9-88A1583F5089}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{8309964E-E116-4AA2-9B5C-26F7A440E5D7}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8309964E-E116-4AA2-9B5C-26F7A440E5D7}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d" => key removed successfully
ask: {BA99AC79-0009-4503-9BA0-639A8AF0A40A} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION => Error: No automatic fix found for this entry.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{BC3355F7-71DB-43EB-8198-B0775D3841AD}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BC3355F7-71DB-43EB-8198-B0775D3841AD}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{CA9A9A74-47A6-49D3-85F2-205B6B4255AD}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CA9A9A74-47A6-49D3-85F2-205B6B4255AD}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{CF625304-0589-4B52-A24F-BBF475A05BA4}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CF625304-0589-4B52-A24F-BBF475A05BA4}" => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ConfigFree Startup Programs => key not found.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E8777D22-7E05-43BD-80AF-7F4FDA53364B}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E8777D22-7E05-43BD-80AF-7F4FDA53364B}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfig" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F45AA561-48E6-43A3-8E45-4AFCA420E0C9}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F45AA561-48E6-43A3-8E45-4AFCA420E0C9}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\rundetector" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{FAC37ACF-ED9F-46FE-BC91-E59B890E3237}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FAC37ACF-ED9F-46FE-BC91-E59B890E3237}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime" => key removed successfully
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => not found.
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => not found.

==== End of Fixlog 07:13:57 ====

Smazáno. Nastala nějaká změna?

Je to o dost lepší, ale stále to není ono. Pamět běží na cca 50% i když se nic neděje. Po spuštění či zadání nějaké operace nabíhá disk na 100% ale odezvy jsou docela dlouhé. Jakoby paměť nepomáhala nebo co... Podobné problémy jsem měl před lety, nakonec úplně odešel disk

...procesor není vytížen

Udělejte ještě kompletní sken MBAM: http://www.malwarebytes.org/mbam.php a dejte log. Předem nic nemažte.

ok, posílám

Malwarebytes Anti-Malware
www.malwarebytes.org

Datum skenování: 3.11.2016
Čas skenování: 19:57
Protokol: malw.txt
Správce: Ano

Verze: 2.2.1.1043
Databáze malwaru: v2016.11.03.14
Databáze rootkitů: v2016.10.31.01
Licence: Zkušební verze
Ochrana proti malwaru: Zapnuto
Ochrana proti škodlivým webovým stránkám: Zapnuto
Ochrana programu: Vypnuto

OS: Windows 10
CPU: x64
Souborový systém: NTFS
Uživatel: Libor

Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 559456
Uplynulý čas: 40 min, 26 sek

Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristika: Zapnuto
PUP: Varovat
PUM: Zapnuto

Procesy: 0
(Nenalezeny žádné škodlivé položky)

Moduly: 0
(Nenalezeny žádné škodlivé položky)

Klíče registru: 1
PUP.Optional.SpyHunter, HKLM\SOFTWARE\ENIGMASOFTWAREGROUP\SpyHunter, , [a74315a6495162d4acbe709733d256aa],

Hodnoty registru: 0
(Nenalezeny žádné škodlivé položky)

Data registru: 0
(Nenalezeny žádné škodlivé položky)

Složky: 2
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter, , [2dbdc0fb9cfec274a463a1666b9ad42c],
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter\Log, , [2dbdc0fb9cfec274a463a1666b9ad42c],

Soubory: 11
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter\INSTALL.LOG, , [2dbdc0fb9cfec274a463a1666b9ad42c],
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter\cos.dat, , [2dbdc0fb9cfec274a463a1666b9ad42c],
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter\gas.dat, , [2dbdc0fb9cfec274a463a1666b9ad42c],
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter\gil.dat, , [2dbdc0fb9cfec274a463a1666b9ad42c],
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter\safeol.dat, , [2dbdc0fb9cfec274a463a1666b9ad42c],
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter\scanlog.log, , [2dbdc0fb9cfec274a463a1666b9ad42c],
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter\shortcuts.txt, , [2dbdc0fb9cfec274a463a1666b9ad42c],
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter\supportlog.txt, , [2dbdc0fb9cfec274a463a1666b9ad42c],
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter\Log\SpyHunter4_20131228_130838.log, , [2dbdc0fb9cfec274a463a1666b9ad42c],
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter\Log\SpyHunter4_20131228_142621.log, , [2dbdc0fb9cfec274a463a1666b9ad42c],
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter\Log\SpyHunter4_20131231_174156.log, , [2dbdc0fb9cfec274a463a1666b9ad42c],

Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)


(end)

Všechny nálezy smažte.

Ok, smazáno