VIRY.CZ

dobry Den prosim o pomoc s Ntb je desne pomaly ,a prevazne prohlizec seka se a je pomaly(pripojeni internetu je dobre jinej stroj a tam to bezi suprove)
FRST scan
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 05-06-2017
Ran by p.Martina (administrator) on PMARTINA-PC (06-06-2017 20:04:25)
Running from C:\Users\p.Martina\Desktop
Loaded Profiles: p.Martina (Available Profiles: p.Martina & DefaultAppPool)
Platform: Microsoft Windows 10 Pro Version 1511 (X86) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
() C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jucheck.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Oracle Corporation) C:\Program Files\Java\jre1.8.0_65\bin\javaw.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\WINDOWS\System32\browser_broker.exe
(Microsoft Corporation) C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCui.exe
(Microsoft Corporation) C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe

==================== Registry (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [GrooveMonitor] => C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [597040 2015-10-06] (Oracle Corporation)
HKLM\...\Run: [RzWizard] => C:\Program Files\Razer\RzWizard\RzWizard.exe [263112 2016-03-23] (Razer Inc.)
HKLM\...\Run: [Malwarebytes TrayApp] => C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe [3146704 2017-05-09] (Malwarebytes)
HKU\S-1-5-21-528259500-889367275-2168026962-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [6628056 2016-01-15] (Piriform Ltd)
HKU\S-1-5-21-528259500-889367275-2168026962-1000\...\MountPoints2: {1bbb54a0-e920-11e6-86dc-001eec538b51} - "E:\HiSuiteDownLoader.exe"

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{6f01c5af-451c-42a1-a5c3-b2882a965a38}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{934d0345-7222-42ef-84a7-7cb90703b68c}: [DhcpNameServer] 192.168.0.1

Internet Explorer:
==================
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_65\bin\ssv.dll [2015-11-18] (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_65\bin\jp2ssv.dll [2015-11-18] (Oracle Corporation)
DPF: {4F29DE54-5EB7-4D76-B610-A86B5CD2A234}
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2009-02-26] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\p.Martina\AppData\Roaming\Mozilla\Firefox\Profiles\iwjz5abn.default [2017-06-06]
FF SelectedSearchEngine: Mozilla\Firefox\Profiles\iwjz5abn.default -> My Way
FF Homepage: Mozilla\Firefox\Profiles\iwjz5abn.default -> seznam.cz
FF Extension: (Forecastfox) - C:\Users\p.Martina\AppData\Roaming\Mozilla\Firefox\Profiles\iwjz5abn.default\Extensions\{0538E3E3-7E9B-4d49-8831-A227C80A7AD3} [2015-12-15]
FF Extension: (Oskar) - C:\Users\p.Martina\AppData\Roaming\Mozilla\Firefox\Profiles\iwjz5abn.default\Extensions\{5b175400-2368-11de-8c30-0800200c9a66} [2011-02-02] [not signed]
FF Extension: (DownloadHelper) - C:\Users\p.Martina\AppData\Roaming\Mozilla\Firefox\Profiles\iwjz5abn.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [2015-06-10]
FF Extension: (AmbientFox) - C:\Users\p.Martina\AppData\Roaming\Mozilla\Firefox\Profiles\iwjz5abn.default\Extensions\{c8f71e5b-88f8-42a7-98bb-e4c506161de9} [2011-02-08] [not signed]
FF SearchPlugin: C:\Users\p.Martina\AppData\Roaming\Mozilla\Firefox\Profiles\iwjz5abn.default\searchplugins\Retrogamer_2z.xml [2011-07-04]
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\mall-cz.xml [2011-04-04]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_25_0_0_171.dll [2017-05-11] ()
FF Plugin: @java.com/DTPlugin,version=11.65.2 -> C:\Program Files\Java\jre1.8.0_65\bin\dtplugin\npDeployJava1.dll [2015-11-18] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.65.2 -> C:\Program Files\Java\jre1.8.0_65\bin\plugin2\npjp2.dll [2015-11-18] (Oracle Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-05-05] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-05-05] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\NPOFF12.DLL [2006-10-26] (Microsoft Corporation)

Chrome:
=======
CHR DefaultProfile: Profile 1
CHR HomePage: Profile 1 -> hxxps://www.seznam.cz/
CHR StartupUrls: Profile 1 -> "hxxps://www.seznam.cz/"
CHR Profile: C:\Users\p.Martina\AppData\Local\Google\Chrome\User Data\Default [2017-06-04]
CHR Extension: (Prezentace Google) - C:\Users\p.Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-01-29]
CHR Extension: (Dokumenty Google) - C:\Users\p.Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-01-29]
CHR Extension: (Disk Google) - C:\Users\p.Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-01-29]
CHR Extension: (YouTube) - C:\Users\p.Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-01-29]
CHR Extension: (Vyhledávání Google) - C:\Users\p.Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-01-29]
CHR Extension: (Tabulky Google) - C:\Users\p.Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-01-29]
CHR Extension: (Dokumenty Google offline) - C:\Users\p.Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-01-29]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\p.Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-01-29]
CHR Extension: (Gmail) - C:\Users\p.Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-01-29]
CHR Profile: C:\Users\p.Martina\AppData\Local\Google\Chrome\User Data\Profile 1 [2017-06-06]
CHR Extension: (Prezentace Google) - C:\Users\p.Martina\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-01-29]
CHR Extension: (Dokumenty Google) - C:\Users\p.Martina\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2016-01-29]
CHR Extension: (Disk Google) - C:\Users\p.Martina\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-01-29]
CHR Extension: (YouTube) - C:\Users\p.Martina\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-01-29]
CHR Extension: (Vyhledávání Google) - C:\Users\p.Martina\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-01-29]
CHR Extension: (Tabulky Google) - C:\Users\p.Martina\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-01-29]
CHR Extension: (Dokumenty Google offline) - C:\Users\p.Martina\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-17]
CHR Extension: (AdBlock) - C:\Users\p.Martina\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-04-21]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\p.Martina\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-15]
CHR Extension: (Gmail) - C:\Users\p.Martina\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-01-29]
CHR Extension: (Chrome Media Router) - C:\Users\p.Martina\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-05-26]
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [3398608 2017-05-09] (Malwarebytes)
S2 RzWizardService; C:\Program Files\Razer\RzWizard\RzWizardService.exe [376272 2016-03-23] (Razer Inc.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [280376 2015-10-30] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23264 2016-09-07] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 BCM43XX; C:\WINDOWS\System32\drivers\bcmwl63l.sys [4715008 2015-10-30] (Broadcom Corporation)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae.sys [59936 2017-06-06] ()
R2 MBAMChameleon; C:\WINDOWS\system32\drivers\MBAMChameleon.sys [162208 2017-06-05] (Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\system32\drivers\farflt.sys [97208 2017-06-06] (Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\drivers\mbam.sys [39840 2017-06-06] (Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [220576 2017-06-06] (Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\drivers\mwac.sys [74656 2017-06-06] (Malwarebytes)
R1 MpKsl347aafb3; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{02E59C75-718B-4BB6-8CD4-2491752E89AA}\MpKsl347aafb3.sys [39168 2017-06-05] (Microsoft Corporation)
R1 MpKsl6646ed31; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{59F601AF-3FD3-44E7-92B4-D297F835EDED}\MpKsl6646ed31.sys [39168 2017-02-05] (Microsoft Corporation)
R2 SecDrv; C:\WINDOWS\system32\drivers\SECDRV.SYS [12400 2016-02-22] (Macrovision Europe Ltd) [File not signed]
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [37400 2015-10-30] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [246104 2015-10-30] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [98648 2015-10-30] (Microsoft Corporation)
S3 WUDFWpdMtp; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [163328 2015-10-30] (Microsoft Corporation)
U3 idsvc; no ImagePath
U3 wpcsvc; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-06-06 20:04 - 2017-06-06 20:05 - 00013254 _____ C:\Users\p.Martina\Desktop\FRST.txt
2017-06-06 20:03 - 2017-06-06 20:04 - 01774080 _____ (Farbar) C:\Users\p.Martina\Desktop\FRST.exe
2017-06-06 20:01 - 2017-06-06 20:01 - 00000721 _____ C:\Users\p.Martina\Desktop\OSType.txt
2017-06-06 20:00 - 2017-06-06 20:02 - 00015327 _____ C:\Users\p.Martina\Desktop\LM.bat
2017-06-06 19:46 - 2017-06-06 19:46 - 00000000 ____D C:\Users\p.Martina\AppData\Roaming\VitySoft
2017-06-06 19:46 - 2017-06-06 19:46 - 00000000 ____D C:\Users\p.Martina\.objectdb
2017-06-06 19:44 - 2017-03-22 21:54 - 00000000 ____D C:\Users\p.Martina\Desktop\FreeRapid
2017-06-06 19:43 - 2017-06-06 19:47 - 16723996 _____ C:\Users\p.Martina\Desktop\FreeRapid.rar
2017-06-05 17:04 - 2017-06-05 17:04 - 00162208 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMChameleon.sys
2017-06-05 17:03 - 2017-06-06 05:02 - 00074656 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2017-06-05 17:03 - 2017-06-06 03:54 - 00220576 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2017-06-05 17:03 - 2017-06-06 03:54 - 00097208 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2017-06-05 17:03 - 2017-06-06 03:54 - 00039840 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2017-06-05 17:03 - 2017-06-06 00:25 - 00059936 _____ C:\WINDOWS\system32\Drivers\mbae.sys
2017-06-05 17:03 - 2017-06-05 17:03 - 00002093 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2017-06-05 17:03 - 2017-06-05 17:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2017-06-05 17:02 - 2017-06-05 17:02 - 00000000 ____D C:\Program Files\Malwarebytes
2017-06-05 16:58 - 2017-06-05 17:02 - 64025992 _____ (Malwarebytes ) C:\Users\p.Martina\Desktop\mb3-setup-consumer-3.1.2.1733-1.0.139-1.0.2060.exe
2017-06-05 16:51 - 2017-06-05 16:59 - 04110280 _____ C:\Users\p.Martina\Desktop\adwcleaner_6.047.exe
2017-05-30 10:18 - 2017-05-30 10:18 - 00678382 _____ C:\Users\p.Martina\Desktop\smlouva.pdf

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-06-06 20:04 - 2014-03-21 17:13 - 00000000 ____D C:\FRST
2017-06-06 20:02 - 2014-03-21 17:03 - 00029696 _____ C:\Users\p.Martina\AppData\Local\MSGBOX.EXE
2017-06-06 19:46 - 2016-01-29 14:25 - 00000000 ____D C:\Users\p.Martina
2017-06-06 05:41 - 2011-02-02 12:15 - 00000000 ____D C:\Users\p.Martina\AppData\Roaming\vlc
2017-06-06 03:58 - 2016-01-29 14:24 - 01996112 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-06-06 03:58 - 2015-10-30 17:08 - 00830550 _____ C:\WINDOWS\system32\perfh005.dat
2017-06-06 03:58 - 2015-10-30 17:08 - 00185322 _____ C:\WINDOWS\system32\perfc005.dat
2017-06-06 03:58 - 2015-10-30 07:47 - 00000000 ____D C:\WINDOWS\INF
2017-06-06 03:56 - 2015-10-30 07:48 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-06-06 03:53 - 2016-01-29 14:40 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-06-05 17:02 - 2015-08-20 16:26 - 00000000 ____D C:\AdwCleaner
2017-06-05 17:02 - 2014-06-13 10:09 - 00000000 ____D C:\ProgramData\Malwarebytes
2017-06-04 21:00 - 2015-10-30 07:48 - 00000000 ___HD C:\Program Files\WindowsApps
2017-05-30 22:45 - 2011-02-02 12:04 - 00456360 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2017-05-25 09:07 - 2016-01-29 15:14 - 00002218 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-05-25 09:07 - 2016-01-29 15:14 - 00002206 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-05-11 09:04 - 2017-04-13 11:06 - 05821944 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerInstaller.exe
2017-05-11 09:04 - 2015-10-30 07:48 - 00000000 ____D C:\WINDOWS\system32\Macromed

==================== Files in the root of some directories =======

2012-12-17 11:25 - 2017-05-05 08:35 - 0001291 _____ () C:\Users\p.Martina\AppData\Roaming\mainhst.zgh
2014-03-21 17:03 - 2017-06-06 20:02 - 0029696 _____ () C:\Users\p.Martina\AppData\Local\MSGBOX.EXE

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2017-06-02 09:16

==================== End of FRST.txt ============================

plus addition :
Additional scan result of Farbar Recovery Scan Tool (x86) Version: 05-06-2017
Ran by p.Martina (06-06-2017 20:06:09)
Running from C:\Users\p.Martina\Desktop
Microsoft Windows 10 Pro Version 1511 (X86) (2016-01-29 12:49:01)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-528259500-889367275-2168026962-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-528259500-889367275-2168026962-503 - Limited - Disabled)
Guest (S-1-5-21-528259500-889367275-2168026962-501 - Limited - Disabled)
p.Martina (S-1-5-21-528259500-889367275-2168026962-1000 - Administrator - Enabled) => C:\Users\p.Martina

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Flash Player 25 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 25.0.0.171 - Adobe Systems Incorporated)
Aktualizace produktu Microsoft Office Excel 2007 Help (KB963678) (HKLM\...\{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{0A1FAC46-B899-421D-B1A2-470896DC45DB}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM\...\{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{5260BB53-C1F7-4A3B-9AEB-3EC9B37FF194}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Word 2007 Help (KB963665) (HKLM\...\{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{E68DD413-B834-4923-8181-0A03B7555187}) (Version: - Microsoft)
aTube Catcher (HKLM\...\aTube Catcher) (Version: 2.9.1341 - DsNET Corp)
Battle.net (HKLM\...\Battle.net) (Version: - Blizzard Entertainment)
Battlefield 1942 (HKLM\...\{698D7E61-E4BF-4CA6-8A09-CF6BDBFDEF65}) (Version: - )
Battlefield 2(TM) (HKLM\...\{04858915-9F49-4B2A-AED4-DC49A7DE6A7B}) (Version: - )
Call of Duty (HKLM\...\Call of Duty) (Version: - )
Call of Duty(R) 2 (HKLM\...\InstallShield_{D0A05794-48C2-4424-A15A-9F20FCFDD374}) (Version: 1.00.0000 - Activision)
Call of Duty(R) 2 (Version: 1.00.0000 - Activision) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.14 - Piriform)
Disciples 2 (HKLM\...\InstallShield_{CA67FB1D-A367-4883-9004-435BAB1ECAAB}) (Version: 1.00.0000 - Strategy First)
Disciples 2 (Version: 1.00.0000 - Strategy First) Hidden
FlatOut2 (HKLM\...\{C884B05A-F5D9-4AE4-9D84-E6BD9F6E7890}) (Version: 1.00.0000 - Empire Interactive)
Foxit Reader (HKLM\...\Foxit Reader) (Version: - )
Google Chrome (HKLM\...\Google Chrome) (Version: 58.0.3029.110 - Google Inc.)
Google Update Helper (Version: 1.3.33.5 - Google Inc.) Hidden
Hearthstone (HKLM\...\Hearthstone) (Version: - Blizzard Entertainment)
Heroes of Might and Magic III Complete NO CD CRACK version for Windows (HKLM\...\{3CECE1B1-337B-42C4-87C2- DCAC9CB096A}_is1) (Version: for Windows - )
Intel(R) Graphics Media Accelerator Driver (HKLM\...\HDMI) (Version: 8.15.10.1930 - Intel Corporation)
Intel(R) TV Wizard (HKLM\...\TVWiz) (Version: - Intel Corporation)
Java 8 Update 65 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218065F0}) (Version: 8.0.650.17 - Oracle Corporation)
Malwarebytes verze 3.1.2.1733 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.1.2.1733 - Malwarebytes)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office Enterprise 2007 (HKLM\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML4 Parser (HKLM\...\{01501EBA-EC35-4F9F-8889-3BE346E5DA13}) (Version: 1.0.0 - Microsoft Game Studios)
Skype Click to Call (HKLM\...\{873F8E7C-10E6-449F-BD7E-5FBA7C8E1C9B}) (Version: 8.5.0.9167 - Microsoft Corporation)
Skype™ 7.21 (HKLM\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.21.100 - Skype Technologies S.A.)
SLOW-PCfighter (Version: 1.1.76 - SPAMfighter ApS) Hidden
Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.1 - VideoLAN)
WinRAR (HKLM\...\WinRAR archiver) (Version: - )
ZipGenius 6 (6.0.3.1150) (HKLM\...\{EC3B598C-1151-4191-B5B4-A9072ADE6259}_is1) (Version: 6.0 - M.Dev Software)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0E6F16AE-BE03-4D98-A32D-CD732464BCB3} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {0F7E8A6D-754E-49EE-82CA-B09998FFC690} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => %SystemRoot%\ehome\ehPrivJob.exe
Task: {1F04D2A0-24CE-49FE-9EF1-AE8DBA7205BE} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => %SystemRoot%\ehome\mcupdate.exe
Task: {22AF5467-F1EC-4A99-89FD-54F9D28A74E4} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => %windir%\ehome\MCUpdate.exe
Task: {26A227C5-52E8-4A1B-B911-5529491250B5} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => %SystemRoot%\ehome\ehPrivJob.exe
Task: {2C446FE0-E879-40E4-B377-C374C3E9C10A} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {2F05CFD8-6CDA-4472-BC1B-96B261F20883} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2017-05-11] (Adobe Systems Incorporated)
Task: {3984837C-FBA7-4C9F-B8A8-02698A0845AD} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {3D4FB35E-E3C1-4F52-8E6B-73CEE2591E8B} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => %SystemRoot%\ehome\mcupdate.exe
Task: {3FF05A09-7A10-4268-B766-FC26231C8512} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {40FE3052-BCB2-4F0C-A1B8-D602D380CAA1} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => %SystemRoot%\ehome\ehPrivJob.exe
Task: {412BEDC3-0AEB-425A-A001-27B91E71AB67} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => %SystemRoot%\ehome\ehPrivJob.exe
Task: {4E911FBC-94AC-48F9-A4B7-28BCC5535FD5} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => %SystemRoot%\ehome\mcupdate.exe
Task: {56EF0833-F603-4B6F-9107-BEA88AE8D726} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => %SystemRoot%\ehome\ehPrivJob.exe
Task: {5CBB256D-3960-428F-95D8-F15867DB19D5} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => %SystemRoot%\ehome\ehPrivJob.exe
Task: {6372C128-1C4F-427B-AB9D-6CFF7A22F75E} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {65A99DCA-FE1E-4277-B554-31455486F1B7} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-01-15] (Piriform Ltd)
Task: {6A2726CA-5FDD-4EEB-84FF-F261EEFAA4D2} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {709480C3-EC55-4B7C-BBAD-6A89B1F63908} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {73B4824A-6C0D-4D14-BCC2-C093A5CE4ADC} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2016-01-29] (Google Inc.)
Task: {7DCAA941-797C-4352-8EA0-A4126BA8FADD} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {84D16EC7-510C-4FAB-AC2B-531070037A38} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => %SystemRoot%\ehome\ehPrivJob.exe
Task: {8DE6C86E-AA42-4FF3-9F7B-1F130760298E} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => %SystemRoot%\ehome\ehPrivJob.exe
Task: {9409A777-BE19-4E43-850A-9186DBEB1B46} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => %SystemRoot%\ehome\mcupdate.exe
Task: {98E6F5D8-4F80-4992-8D89-3162AE3FDFBE} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => %SystemRoot%\ehome\ehPrivJob.exe
Task: {9BADCFDC-BEC2-4EAD-96F7-5358558245AD} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {A1B72008-0A95-4850-AB0C-F9086EDD996C} - \Microsoft\Windows\Setup\GWXTriggers\Logon-URT -> No File <==== ATTENTION
Task: {A4DD62C7-183E-462E-9F5C-B0DFE26018FC} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => %SystemRoot%\ehome\ehPrivJob.exe
Task: {AD5DF446-DFF3-46C5-B3A2-A577A457D132} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => %SystemRoot%\ehome\ehPrivJob.exe
Task: {B039427D-341B-4B8F-B4E0-F74D5EFCC56A} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => %SystemRoot%\ehome\ehrec.exe
Task: {CB73FC19-C1CF-4FEE-A828-73C0F915C08F} - System32\Tasks\Microsoft\Microsoft Antimalware\Microsoft Antimalware Scheduled Scan => c:\Program Files\Microsoft Security Client\MpCmdRun.exe
Task: {CB7E75C0-9EA7-4886-A670-41659D7E9DDC} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {DEF0E44C-BE94-4D4D-AE59-D2F551CCFD5F} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {E8CA87CC-8A5E-4C69-8D0D-E9B008B5F3A4} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {EEC21879-BBE6-4F28-9DC9-001AB17C61AE} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => %SystemRoot%\ehome\mcupdate.exe
Task: {EF38EB59-5D2F-4687-A7E0-D0A9755E792E} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => %SystemRoot%\ehome\mcupdate.exe
Task: {EF419AA0-7AC9-4EE5-B63B-228B95AE8236} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => %SystemRoot%\ehome\mcupdate.exe
Task: {FC1B7407-EA09-488B-BC3E-96E197844F60} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => %SystemRoot%\ehome\ehPrivJob.exe
Task: {FDC414A9-38AF-4EBE-928C-467FEBCC6F15} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => %SystemRoot%\ehome\ehPrivJob.exe
Task: {FE2D019B-AE4D-44DB-81E9-28443092BD13} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2016-01-29] (Google Inc.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

ShortcutWithArgument: C:\Users\p.Martina\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\69639df789022856\Google Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory="Profile 1"

==================== Loaded Modules (Whitelisted) ==============

2017-06-05 17:03 - 2017-06-06 00:24 - 01728968 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\MwacLib.dll
2015-10-30 07:44 - 2015-10-30 07:44 - 00149504 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2016-09-15 10:30 - 2016-09-07 07:39 - 01862000 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2011-02-02 12:16 - 2007-09-20 19:34 - 00129024 _____ () C:\Program Files\WinRAR\rarext.dll
2011-02-02 12:16 - 2007-10-02 16:41 - 00319488 _____ () C:\Program Files\WinRAR\rarlng.dll
2016-06-03 09:05 - 2016-06-03 09:06 - 00144384 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
2016-06-03 09:05 - 2016-06-03 09:06 - 00141312 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeBackgroundTasks.dll
2016-06-03 09:05 - 2016-06-03 09:06 - 22284800 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkyWrap.dll
2016-02-08 11:32 - 2015-12-07 06:11 - 00070656 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll
2016-07-15 09:35 - 2016-07-01 05:31 - 00316416 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2016-09-15 10:28 - 2016-09-07 06:14 - 05340160 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-09-15 10:27 - 2016-09-07 06:10 - 00471552 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-09-15 10:28 - 2016-09-07 06:10 - 02366976 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-09-15 10:28 - 2016-09-07 06:14 - 02657280 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2016-01-15 22:44 - 2016-01-15 22:44 - 00047616 _____ () C:\Program Files\CCleaner\lang\lang-1029.dll
2017-05-25 09:07 - 2017-05-09 10:12 - 02864984 _____ () C:\Program Files\Google\Chrome\Application\58.0.3029.110\libglesv2.dll
2017-05-25 09:07 - 2017-05-09 10:12 - 00087384 _____ () C:\Program Files\Google\Chrome\Application\58.0.3029.110\libegl.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:04 - 2015-08-20 18:40 - 00000826 _____ C:\WINDOWS\system32\Drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-528259500-889367275-2168026962-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\p.Martina\AppData\Local\Microsoft\Windows\Themes\Homer and a Donut\DesktopBackground\Homer_04.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{9F7C6CB1-2B5A-4FF0-8495-65F210E3D534}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
FirewallRules: [UDP Query User{D6B404F9-2046-4A6D-984A-6C38F6BBA560}C:\program files\empire interactive\flatout2\flatout2.exe] => (Allow) C:\program files\empire interactive\flatout2\flatout2.exe
FirewallRules: [TCP Query User{1C3C490C-A5E6-48ED-BE40-AE6FB37201B9}C:\program files\empire interactive\flatout2\flatout2.exe] => (Allow) C:\program files\empire interactive\flatout2\flatout2.exe
FirewallRules: [UDP Query User{58FC4367-273E-4FA4-A310-FC4A4547008F}C:\program files\activision\call of duty 2\cod2mp_s.exe] => (Allow) C:\program files\activision\call of duty 2\cod2mp_s.exe
FirewallRules: [TCP Query User{DE04C9AE-7A01-4A0E-8A18-7D2F50B8D826}C:\program files\activision\call of duty 2\cod2mp_s.exe] => (Allow) C:\program files\activision\call of duty 2\cod2mp_s.exe
FirewallRules: [UDP Query User{E450F8D4-25D7-48E2-9A2B-E8FA332041B8}C:\program files\call of duty\codmp.exe] => (Allow) C:\program files\call of duty\codmp.exe
FirewallRules: [TCP Query User{D025FD06-CDB4-4283-9F7F-B44F33C2BBD6}C:\program files\call of duty\codmp.exe] => (Allow) C:\program files\call of duty\codmp.exe
FirewallRules: [UDP Query User{1C443010-5165-4C4E-A7C1-0BEC9E63CEB6}C:\program files\disciples 2\discipl2.exe] => (Block) C:\program files\disciples 2\discipl2.exe
FirewallRules: [TCP Query User{62484036-B1CD-4815-8757-4897839B960A}C:\program files\disciples 2\discipl2.exe] => (Block) C:\program files\disciples 2\discipl2.exe
FirewallRules: [{A7E3590C-8D84-41A7-AB5E-EB22EF1B494F}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe
FirewallRules: [{6D52982C-368E-4F54-9532-C85EFB054B7A}] => (Allow) C:\Program Files\EA GAMES\Battlefield 2\BF2.exe
FirewallRules: [{3EDCE04C-337A-4589-B4C5-F9F649D22ACC}] => (Allow) C:\Program Files\EA GAMES\Battlefield 2\BF2.exe
FirewallRules: [{504D5871-6481-42D4-9A43-0A3A5142517C}] => (Allow) C:\Program Files\EA GAMES\Battlefield 2\BF2.exe
FirewallRules: [{D6300AE4-61F6-415E-8E5A-341049ACFA57}] => (Allow) C:\Program Files\EA GAMES\Battlefield 2\BF2.exe
FirewallRules: [TCP Query User{071C5CF3-50CF-48EB-8197-A478A227982D}C:\program files\hearthstone\hearthstone.exe] => (Allow) C:\program files\hearthstone\hearthstone.exe
FirewallRules: [UDP Query User{96838755-8A99-4EED-9903-BF88754CE670}C:\program files\hearthstone\hearthstone.exe] => (Allow) C:\program files\hearthstone\hearthstone.exe
FirewallRules: [{BA842077-11F3-43C5-B186-A04368755087}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe
FirewallRules: [TCP Query User{82EF43AB-6323-4752-9C78-0621442363E9}C:\program files\java\jre1.8.0_65\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_65\bin\javaw.exe
FirewallRules: [UDP Query User{0A2A2F6A-DD9A-4751-9D3D-230AF63F7277}C:\program files\java\jre1.8.0_65\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_65\bin\javaw.exe

==================== Restore Points =========================

05-05-2017 09:12:29 Naplánovaný kontrolní bod
25-05-2017 09:45:48 Naplánovaný kontrolní bod
02-06-2017 09:28:35 Naplánovaný kontrolní bod

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (06/06/2017 12:23:50 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: pMartina-PC)
Description: Aplikaci Microsoft.Windows.Photos_8wekyb3d8bbwe!App se nepovedlo aktivovat, protože došlo k chybě: -2144927141. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.

Error: (06/05/2017 08:25:03 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: pMartina-PC)
Description: Aplikaci Microsoft.Windows.Photos_8wekyb3d8bbwe!App se nepovedlo aktivovat, protože došlo k chybě: -2147023170. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.

Error: (06/05/2017 08:12:00 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: pMartina-PC)
Description: Aplikaci Microsoft.Windows.Photos_8wekyb3d8bbwe!App se nepovedlo aktivovat, protože došlo k chybě: -2144927141. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.

Error: (06/05/2017 08:11:39 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: pMartina-PC)
Description: Aplikaci Microsoft.Windows.Photos_8wekyb3d8bbwe!App se nepovedlo aktivovat, protože došlo k chybě: -2144927142. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.

Error: (06/05/2017 08:11:23 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2486) (User: pMartina-PC)
Description: Aplikace Microsoft.Windows.Photos_17.313.10010.0_x86__8wekyb3d8bbwe+App se nespustila ve stanovenou dobu.

Error: (06/05/2017 07:26:53 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: pMartina-PC)
Description: Aplikaci Microsoft.Windows.Photos_8wekyb3d8bbwe!App se nepovedlo aktivovat, protože došlo k chybě: -2144927141. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.

Error: (06/05/2017 07:04:30 PM) (Source: ESENT) (EventID: 470) (User: )
Description: svchost (916) SRUJet: Databáze C:\WINDOWS\system32\SRU\SRUDB.dat je částečně připojená. Fáze připojení: 3. Chyba: -1011

Error: (06/05/2017 07:04:29 PM) (Source: ESENT) (EventID: 481) (User: )
Description: svchost (916) SRUJet: Pokus o čtení ze souboru C:\WINDOWS\system32\SRU\SRUDB.dat na posunu 69632 (0x0000000000011000) o 4096 (0x00001000) bajtů po 0.621 sekundách selhal. Došlo k systémové chybě 8 (0x00000008): Ke zpracování tohoto příkazu není dostatečný prostor. . Operace čtení selže a dojde k chybě -1011 (0xfffffc0d). Pokud s tím budou dál problémy, může být soubor poškozený a budete ho možná muset obnovit z předchozí zálohy.

Error: (06/05/2017 07:04:29 PM) (Source: ESENT) (EventID: 481) (User: )
Description: svchost (916) SRUJet: Pokus o čtení ze souboru C:\WINDOWS\system32\SRU\SRUDB.dat na posunu 65536 (0x0000000000010000) o 4096 (0x00001000) bajtů po 0.619 sekundách selhal. Došlo k systémové chybě 8 (0x00000008): Ke zpracování tohoto příkazu není dostatečný prostor. . Operace čtení selže a dojde k chybě -1011 (0xfffffc0d). Pokud s tím budou dál problémy, může být soubor poškozený a budete ho možná muset obnovit z předchozí zálohy.

Error: (06/05/2017 07:04:29 PM) (Source: ESENT) (EventID: 481) (User: )
Description: svchost (916) SRUJet: Pokus o čtení ze souboru C:\WINDOWS\system32\SRU\SRUDB.dat na posunu 61440 (0x000000000000f000) o 4096 (0x00001000) bajtů po 0.618 sekundách selhal. Došlo k systémové chybě 8 (0x00000008): Ke zpracování tohoto příkazu není dostatečný prostor. . Operace čtení selže a dojde k chybě -1011 (0xfffffc0d). Pokud s tím budou dál problémy, může být soubor poškozený a budete ho možná muset obnovit z předchozí zálohy.


System errors:
=============
Error: (06/06/2017 06:03:50 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Přístup k uživatelským datům_2e195 byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 10000 milisekund: Restartovat službu.

Error: (06/06/2017 06:03:50 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Úložiště uživatelských dat_2e195 byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 10000 milisekund: Restartovat službu.

Error: (06/06/2017 06:03:50 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Data kontaktů_2e195 byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 10000 milisekund: Restartovat službu.

Error: (06/06/2017 06:03:50 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Hostitel synchronizace_2e195 byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 10000 milisekund: Restartovat službu.

Error: (06/06/2017 03:54:04 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba RzWizardService neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Error: (06/06/2017 03:54:04 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby RzWizardService bylo dosaženo časového limitu (30000 ms).

Error: (06/06/2017 03:53:31 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Služba NetTcpActivator závisí na službě NetTcpPortSharing, která neuspěla při spuštění v důsledku následující chyby:
Zvolenou službu nelze spustit, protože není povolena nebo s ní není spojeno žádné povolené zařízení.

Error: (06/06/2017 12:23:50 AM) (Source: DCOM) (EventID: 10010) (User: pMartina-PC)
Description: Server App.AppXy9rh3t8m2jfpvhhxp6y2ksgeq77vymbq.mca se v daném časovém limitu neregistroval u služby DCOM.

Error: (06/05/2017 08:12:00 PM) (Source: DCOM) (EventID: 10010) (User: pMartina-PC)
Description: Server App se v daném časovém limitu neregistroval u služby DCOM.

Error: (06/05/2017 07:26:53 PM) (Source: DCOM) (EventID: 10010) (User: pMartina-PC)
Description: Server App.AppXy9rh3t8m2jfpvhhxp6y2ksgeq77vymbq.mca se v daném časovém limitu neregistroval u služby DCOM.


CodeIntegrity:
===================================
Date: 2017-02-06 16:59:17.975
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2017-02-05 12:59:42.881
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2017-02-01 17:17:19.692
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2017-01-30 15:26:37.504
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2017-01-10 10:05:52.364
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2017-01-04 09:37:44.107
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2016-11-28 08:24:13.412
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-11-24 10:04:41.994
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume1\Windows\assembly\GAC\Microsoft.StdFormat\7.0.3300.0__b03f5f7f11d50a3a\Microsoft.StdFormat.dll that did not meet the Microsoft signing level requirements.

Date: 2016-11-24 10:04:41.738
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume1\Windows\assembly\GAC\ADODB\7.0.3300.0__b03f5f7f11d50a3a\ADODB.dll that did not meet the Microsoft signing level requirements.

Date: 2016-11-24 10:04:41.327
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume1\Windows\assembly\GAC\MSDATASRC\7.0.3300.0__b03f5f7f11d50a3a\MSDATASRC.dll that did not meet the Microsoft signing level requirements.


==================== Memory info ===========================

Processor: Intel(R) Celeron(R) CPU 560 @ 2.13GHz
Percentage of memory in use: 71%
Total physical RAM: 2037.99 MB
Available physical RAM: 578.88 MB
Total Virtual: 4085.99 MB
Available Virtual: 2262.34 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:148.6 GB) (Free:86.1 GB) NTFS ==>[drive with boot components (obtained from BCD)]

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 149.1 GB) (Disk ID: 9BDF173A)
Partition 1: (Active) - (Size=148.6 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=450 MB) - (Type=27)

==================== End of Addition.txt ============================

Zdravím!
Spusťte tuto utilitu:

Stáhněte AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan<(hledání) a pak na >Clean< (mazání).
Proběhne skenováni a pak se objeví log, který sem vložte.

dobre Rano tady je log
# AdwCleaner v6.047 - Log vytvořen 07/06/2017 v 05:44:50
# Aktualizováno dne 19/05/2017 z Malwarebytes
# Databáze : 2017-06-06.1 [Místní]
# Operační systém : Windows 10 Pro (X86)
# Uživatelské jméno : p.Martina - PMARTINA-PC
# Spuštěno z : C:\Users\p.Martina\Desktop\adwcleaner_6.047.exe
# Mod: Skenování
# Podpora : https://www.malwarebytes.com/support



***** [ Služby ] *****

Nebyly nalezeny žádné škodlivé služby.


***** [ Složky ] *****

Nebyly nalezeny žádné škodlivé složky.


***** [ Soubory ] *****

Nebyly nalezeny žádné škodlivé soubory.


***** [ DLL ] *****

Nebyly nalezeny žádné škodlivé DLL.


***** [ WMI ] *****

Nebyly nalezeny žádné škodlivé klíče.


***** [ Zástupci ] *****

Žádný infikovaný zástupce nenalezen.


***** [ Naplánované úlohy ] *****

Žádná nebezpečná úloha nenalezena.


***** [ Registry ] *****

Nebyly nalezeny žádné škodlivé položky registru.


***** [ Internetové prohlížeče ] *****

Nebyly nalezeny žádné škodlivé položky prohlížeče Firefox.
Nebyly nalezeny žádné škodlivé položky prohlížeče Chromium.

*************************

C:\AdwCleaner\AdwCleaner[S0].txt - [1223 Bajty] - [07/06/2017 05:44:50]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [1296 Bajty] ##########

Toto je OK. Otevřte poznámkový blok a zkopírujte do něj:

Start
Task: {0E6F16AE-BE03-4D98-A32D-CD732464BCB3} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {2C446FE0-E879-40E4-B377-C374C3E9C10A} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {3984837C-FBA7-4C9F-B8A8-02698A0845AD} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {3FF05A09-7A10-4268-B766-FC26231C8512} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {6372C128-1C4F-427B-AB9D-6CFF7A22F75E} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {6372C128-1C4F-427B-AB9D-6CFF7A22F75E} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {65A99DCA-FE1E-4277-B554-31455486F1B7} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-01-15] (Piriform Ltd)
Task: {6A2726CA-5FDD-4EEB-84FF-F261EEFAA4D2} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {709480C3-EC55-4B7C-BBAD-6A89B1F63908} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {73B4824A-6C0D-4D14-BCC2-C093A5CE4ADC} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2016-01-29] (Google Inc.)
Task: {7DCAA941-797C-4352-8EA0-A4126BA8FADD} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {9BADCFDC-BEC2-4EAD-96F7-5358558245AD} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {A1B72008-0A95-4850-AB0C-F9086EDD996C} - \Microsoft\Windows\Setup\GWXTriggers\Logon-URT -> No File <==== ATTENTION
Task: {CB7E75C0-9EA7-4886-A670-41659D7E9DDC} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {DEF0E44C-BE94-4D4D-AE59-D2F551CCFD5F} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {E8CA87CC-8A5E-4C69-8D0D-E9B008B5F3A4} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {FE2D019B-AE4D-44DB-81E9-28443092BD13} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2016-01-29] (Google Inc.)
HKU\S-1-5-21-528259500-889367275-2168026962-1000\...\MountPoints2: {1bbb54a0-e920-11e6-86dc-001eec538b51} - "E:\HiSuiteDownLoader.exe"
FF SelectedSearchEngine: Mozilla\Firefox\Profiles\iwjz5abn.default -> My Way
U3 idsvc; no ImagePath
U3 wpcsvc; no ImagePath

EmptyTemp:
End

Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Dobry den tady je log z fixu
ix result of Farbar Recovery Scan Tool (x86) Version: 07-06-2017
Ran by p.Martina (07-06-2017 17:35:19) Run:1
Running from C:\Users\p.Martina\Desktop
Loaded Profiles: p.Martina (Available Profiles: p.Martina & DefaultAppPool)
Boot Mode: Normal

==============================================

fixlist content:
*****************
Start
Task: {0E6F16AE-BE03-4D98-A32D-CD732464BCB3} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {2C446FE0-E879-40E4-B377-C374C3E9C10A} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {3984837C-FBA7-4C9F-B8A8-02698A0845AD} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {3FF05A09-7A10-4268-B766-FC26231C8512} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {6372C128-1C4F-427B-AB9D-6CFF7A22F75E} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {6372C128-1C4F-427B-AB9D-6CFF7A22F75E} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {65A99DCA-FE1E-4277-B554-31455486F1B7} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-01-15] (Piriform Ltd)
Task: {6A2726CA-5FDD-4EEB-84FF-F261EEFAA4D2} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {709480C3-EC55-4B7C-BBAD-6A89B1F63908} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {73B4824A-6C0D-4D14-BCC2-C093A5CE4ADC} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2016-01-29] (Google Inc.)
Task: {7DCAA941-797C-4352-8EA0-A4126BA8FADD} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {9BADCFDC-BEC2-4EAD-96F7-5358558245AD} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {A1B72008-0A95-4850-AB0C-F9086EDD996C} - \Microsoft\Windows\Setup\GWXTriggers\Logon-URT -> No File <==== ATTENTION
Task: {CB7E75C0-9EA7-4886-A670-41659D7E9DDC} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {DEF0E44C-BE94-4D4D-AE59-D2F551CCFD5F} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {E8CA87CC-8A5E-4C69-8D0D-E9B008B5F3A4} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {FE2D019B-AE4D-44DB-81E9-28443092BD13} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2016-01-29] (Google Inc.)
HKU\S-1-5-21-528259500-889367275-2168026962-1000\...\MountPoints2: {1bbb54a0-e920-11e6-86dc-001eec538b51} - "E:\HiSuiteDownLoader.exe"
FF SelectedSearchEngine: Mozilla\Firefox\Profiles\iwjz5abn.default -> My Way
U3 idsvc; no ImagePath
U3 wpcsvc; no ImagePath

EmptyTemp:
End
*****************

HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{0E6F16AE-BE03-4D98-A32D-CD732464BCB3} => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0E6F16AE-BE03-4D98-A32D-CD732464BCB3} => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Time-5d => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{2C446FE0-E879-40E4-B377-C374C3E9C10A} => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2C446FE0-E879-40E4-B377-C374C3E9C10A} => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3984837C-FBA7-4C9F-B8A8-02698A0845AD} => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3984837C-FBA7-4C9F-B8A8-02698A0845AD} => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3FF05A09-7A10-4268-B766-FC26231C8512} => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3FF05A09-7A10-4268-B766-FC26231C8512} => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{6372C128-1C4F-427B-AB9D-6CFF7A22F75E} => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6372C128-1C4F-427B-AB9D-6CFF7A22F75E} => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6372C128-1C4F-427B-AB9D-6CFF7A22F75E} => key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{65A99DCA-FE1E-4277-B554-31455486F1B7} => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{65A99DCA-FE1E-4277-B554-31455486F1B7} => key removed successfully.
C:\Windows\System32\Tasks\CCleanerSkipUAC => moved successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\CCleanerSkipUAC => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{6A2726CA-5FDD-4EEB-84FF-F261EEFAA4D2} => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6A2726CA-5FDD-4EEB-84FF-F261EEFAA4D2} => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{709480C3-EC55-4B7C-BBAD-6A89B1F63908} => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{709480C3-EC55-4B7C-BBAD-6A89B1F63908} => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{73B4824A-6C0D-4D14-BCC2-C093A5CE4ADC} => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{73B4824A-6C0D-4D14-BCC2-C093A5CE4ADC} => key removed successfully.
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{7DCAA941-797C-4352-8EA0-A4126BA8FADD} => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7DCAA941-797C-4352-8EA0-A4126BA8FADD} => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfig => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{9BADCFDC-BEC2-4EAD-96F7-5358558245AD} => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9BADCFDC-BEC2-4EAD-96F7-5358558245AD} => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\launchtrayprocess => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{A1B72008-0A95-4850-AB0C-F9086EDD996C} => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A1B72008-0A95-4850-AB0C-F9086EDD996C} => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Logon-URT => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{CB7E75C0-9EA7-4886-A670-41659D7E9DDC} => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CB7E75C0-9EA7-4886-A670-41659D7E9DDC} => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxcontent => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{DEF0E44C-BE94-4D4D-AE59-D2F551CCFD5F} => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DEF0E44C-BE94-4D4D-AE59-D2F551CCFD5F} => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{E8CA87CC-8A5E-4C69-8D0D-E9B008B5F3A4} => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E8CA87CC-8A5E-4C69-8D0D-E9B008B5F3A4} => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Logon-5d => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{FE2D019B-AE4D-44DB-81E9-28443092BD13} => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FE2D019B-AE4D-44DB-81E9-28443092BD13} => key removed successfully.
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore => key removed successfully.
HKU\S-1-5-21-528259500-889367275-2168026962-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{1bbb54a0-e920-11e6-86dc-001eec538b51} => key removed successfully.
HKCR\CLSID\{1bbb54a0-e920-11e6-86dc-001eec538b51} => key not found.
Firefox SelectedSearchEngine removed successfully.
HKLM\System\CurrentControlSet\Services\idsvc => key removed successfully.
idsvc => service removed successfully.
HKLM\System\CurrentControlSet\Services\wpcsvc => key removed successfully.
wpcsvc => service removed successfully.

=========== EmptyTemp: ==========

BITS transfer queue => 0 B
DOMStoree, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 10052055 B
Java, Flash, Steam htmlcache => 506 B
Windows/system/drivers => 917274 B
Edge => 26654576 B
Chrome => 406334943 B
Firefox => 65035091 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 16674 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 128 B
LocalService => 66886 B
NetworkService => 44707240 B
p.Martina => 18149310 B
DefaultAppPool => 16674 B

RecycleBin => 45198799 B
EmptyTemp: => 588.6 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 17:36:06 ====

Smazáno. Nastala nějaká změna?

obavam se ze ne porad je to zasekane , hlavne prohlizec

Zkusíme prohlížeče vyčistit. Spusťte postupně tyto utility:

1. Stahnete Zoek.exe http://download.bleepingcomputer.com/smeenk/zoek.exe a ulozte jej na plochu

Pokud pouzivate Win Vista ci W7, kliknete na Zoek pravym a dejte Run As Administrator ci Spustit jako spravce
Do okna vlozte skript nize

autoclean;
resethosts;
emptyclsid;
IEdefaults;
FFdefaults;
CHRdefaults;
emptyIEcache;
emptyFFcache;
emptyCHRcache;
emptyalltemp;
emptyflash;
emptyjava;
emptyrecycle.bin;

Nasledne kliknete na Run Script
PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem.

a

2. Junkware removal tool: http://thisisudax.org/downloads/JRT.exe
•Ulozte nejlepe na plochu
•Po spusteni se zobrazi licencni podminky, stisknete libovolnou klavesu
•Probehne vytvoreni zalohy a nasledne prohledavani
•Probehne skenovani a pak se objevi log, pripadne bude ulozen v c:\JRT jako JRT.txt, ten sem vlozte.

dobry den tady vkladam logy, situace je porad skoro stejna asi , pripadami mi to ze je to o neco malo rychleji ale porad zasekane
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.1.3 (04.10.2017)
Operating System: Windows 10 Pro x86
Ran by p.Martina (Administrator) on źt 08.06.2017 at 16:54:21,95
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




File System: 0




Registry: 0





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on źt 08.06.2017 at 17:03:37,25
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

a Zoek
Zoek.exe v5.0.0.1 Updated 27-09-2015
Tool run by p.Martina on st 07.06.2017 at 20:01:09,22.
Microsoft Windows 10 Pro 10.0.10586 x86
Running in: Normal Mode No Internet Access Detected
Launched: C:\Users\p.Martina\Desktop\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

7.6.2017 20:03:40 Zoek.exe System Restore Point Created Successfully.

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

127.0.0.1 localhost

==== Empty Folders Check ======================

C:\Program Files\Malwarebytes' Anti-Malware deleted successfully
C:\Program Files\MSXML 4.0 deleted successfully
C:\Program Files\Razer deleted successfully
C:\PROGRA~2\CanonEPP deleted successfully
C:\PROGRA~2\CanonIJEPPEX2 deleted successfully
C:\PROGRA~2\Comms deleted successfully
C:\PROGRA~2\SoftwareDistribution deleted successfully
C:\Users\DefaultAppPool\AppData\LocalLow deleted successfully
C:\Users\p.Martina\AppData\Local\ActiveSync deleted successfully
C:\Users\p.Martina\AppData\Local\Adobe deleted successfully
C:\Users\p.Martina\AppData\Local\NetworkTiles deleted successfully
C:\Users\p.Martina\AppData\Local\PeerDistRepub deleted successfully
C:\Users\p.Martina\AppData\Local\Skype deleted successfully
C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\PeerDistPub deleted successfully
C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\PeerDistRepub deleted successfully
C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\NetworkTiles deleted successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-528259500-889367275-2168026962-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} deleted successfully
HKEY_USERS\S-1-5-21-528259500-889367275-2168026962-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} deleted successfully
HKEY_USERS\S-1-5-21-528259500-889367275-2168026962-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9} deleted successfully
HKEY_USERS\S-1-5-21-528259500-889367275-2168026962-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9} deleted successfully
HKEY_USERS\S-1-5-21-528259500-889367275-2168026962-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{21347690-EC41-4F9A-8887-1F4AEE672439} deleted successfully

==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================


==== FireFox Fix ======================

Deleted from C:\Users\PF96F~1.MAR\AppData\Roaming\Mozilla\Firefox\Profiles\iwjz5abn.default\prefs.js:
user_pref("browser.startup.homepage", "seznam.cz");

Added to C:\Users\PF96F~1.MAR\AppData\Roaming\Mozilla\Firefox\Profiles\iwjz5abn.default\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

ProfilePath: C:\Users\PF96F~1.MAR\AppData\Roaming\Mozilla\Firefox\Profiles\iwjz5abn.default

user.js not found
---- Lines ffxtbr modified from prefs.js ----

user_pref("extensions.enabledItems", "{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23,{0538E3E3-7E9B-4d49-8831-A227C80A7AD3}:2.0.2,{b9db16a4-6edc-47ec-a
---- FireFox user.js and prefs.js backups ----

prefs_07.06.2017_2112_.backup

==== Deleting Files \ Folders ======================

C:\Program Files\Razer not found
C:\Program Files\Empire Interactive deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk deleted
C:\Users\p.Martina\AppData\Local\MSGBOX.EXE deleted
"C:\Windows\Installer\22c10.msi" deleted

==== Firefox Start and Search pages ======================

ProfilePath: C:\Users\PF96F~1.MAR\AppData\Roaming\Mozilla\Firefox\Profiles\iwjz5abn.default
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

==== Firefox Extensions ======================

ProfilePath: C:\Users\PF96F~1.MAR\AppData\Roaming\Mozilla\Firefox\Profiles\iwjz5abn.default
- DownloadHelper - C:\Users\p.Martina\AppData\Roaming\Mozilla\Firefox\Profiles\iwjz5abn.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
- Forecastfox - C:\Users\p.Martina\AppData\Roaming\Mozilla\Firefox\Profiles\iwjz5abn.default\extensions\{0538E3E3-7E9B-4d49-8831-A227C80A7AD3}
- Forecastfox - %ProfilePath%\extensions\{0538E3E3-7E9B-4d49-8831-A227C80A7AD3}
- Oskar - %ProfilePath%\extensions\{5b175400-2368-11de-8c30-0800200c9a66}
- DownloadHelper - %ProfilePath%\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
- AmbientFox - %ProfilePath%\extensions\{c8f71e5b-88f8-42a7-98bb-e4c506161de9}

AppDir: C:\Program Files\Mozilla Firefox
- Default - %AppDir%\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================

Profilepath: C:\Users\p.Martina\AppData\Roaming\Mozilla\Firefox\Profiles\iwjz5abn.default
52CE0DBFD9738AE528CF525A0367EBEB - C:\Program Files\VideoLAN\VLC\npvlc.dll - VLC Web Plugin


==== Chromium Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
lifbcibllhkdhoafpjfnlhfpfgnpldfl - No path found[]

Chrome Media Router - p.Martina\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm
Chrome Media Router - PF96F~1.MAR\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTer ... ORM=IESR02"

==== Reset Google Chrome ======================

C:\Users\p.Martina\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\p.Martina\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences was reset successfully
C:\Users\p.Martina\AppData\Local\Google\Chrome\User Data\Profile 1\Preferences was reset successfully
C:\Users\p.Martina\AppData\Local\Google\Chrome\User Data\Profile 1\Secure Preferences was reset successfully
C:\Users\PF96F~1.MAR\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\PF96F~1.MAR\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences was reset successfully
C:\Users\PF96F~1.MAR\AppData\Local\Google\Chrome\User Data\Profile 1\Preferences was reset successfully
C:\Users\PF96F~1.MAR\AppData\Local\Google\Chrome\User Data\Profile 1\Secure Preferences was reset successfully
C:\Users\p.Martina\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
C:\Users\p.Martina\AppData\Local\Google\Chrome\User Data\Profile 1\Web Data was reset successfully
C:\Users\p.Martina\AppData\Local\Google\Chrome\User Data\Profile 1\Web Data-journal was reset successfully
C:\Users\PF96F~1.MAR\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
C:\Users\PF96F~1.MAR\AppData\Local\Google\Chrome\User Data\Profile 1\Web Data was reset successfully
C:\Users\PF96F~1.MAR\AppData\Local\Google\Chrome\User Data\Profile 1\Web Data-journal was reset successfully

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\6A9D33DA0433CEC43BD5C43FF04EE2CD deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\TVWiz deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{AD33D9A6-3340-4CEC-B35D-4CF30FE42EDC} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\6A9D33DA0433CEC43BD5C43FF04EE2CD deleted successfully

==== Empty IE Cache ======================

C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\DefaultAppPool\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\p.Martina\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\PF96F~1.MAR\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\p.Martina\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Users\PF96F~1.MAR\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

C:\Users\p.Martina\AppData\Local\Google\Chrome\User Data\Profile 1\Cache emptied successfully
C:\Users\PF96F~1.MAR\AppData\Local\Google\Chrome\User Data\Profile 1\Cache emptied successfully

==== Empty All Flash Cache ======================

No Flash Cache Found

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=24 folders=3 3096391934 bytes)

==== Empty Temp Folders ======================

C:\WINDOWS\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\WINDOWS\Temp successfully emptied
C:\Users\PF96F~1.MAR\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied
C:\RECYCLER successfully emptied

==== EOF on źt 08.06.2017 at 5:44:12,64 ======================

Změnilo se něco nyní?

je to o trosicku lepsi, ale i tak dost zakousane, neni to zpusobene tim ze je ten NTB prilis slaby na Win 10?

Dělo to určitě není (obzvláště procesor), nicméně by win10 na něm fungovat měl. Zkuste ještě defragmentovat disk.

defragmentace hotova,ale bouzel nicemu nepomohla

Koukneme na samotný disk. Stáhněte, nainstalujte a spusťte CrystalDiskInfo: http://www.stahuj.centrum.cz/utility_a_ ... ldiskinfo/ a přes Úpravy>kopírovat sem dejte log.