prosim o kontrolu eset hlasi duplic IP v síti a blokuje každou minutu komunikaci

[Kat1]

Prosím o kontrolu a radu, které programy jsou nepotřebné. Nový PC, potřebuji ho opravdu jen na internet a sem tam nějaký dokument. Mám k němu externí HDD. Jsou zde předinst. programy, které ani nepotřebuji, ale nevím co mohu smazat. Eset mi každou chvilku blokuje příchozí komunikaci a hlásí dupl. IP v síti.
Předem děkuji za pomoc.
K.
Vkládám logy

WinPatrol [FREE Edition] installed, running WinPatrol v33.6.2015.1 - WinPatrol Explorer v33.6.2015.1
Scan saved at 0:14:59 AM, on 10/27/2016
Platform: Windows 8.1 Tablet PC Edition Home Edition
Windows x64 Version 6.3 Build 9600 2
Browser: Internet Explorer - Internet Explorer version 11.00.10240.16384
MSIE: Internet Explorer (11.00.10240.16384)
Boot mode: Normal

Running processes:
C:\PROGRAM FILES (X86)\COMMON FILES\MICROSOFT SHARED\Ink\TabTip32.exe
C:\PROGRAM FILES (X86)\Acer\AOP FRAMEWORK\BACKGROUNDAGENT.EXE
C:\PROGRAM FILES (X86)\Acer\abDocs\ABDOCSDLLLOADERMONITOR.EXE
C:\PROGRAM FILES (X86)\Acer\ACER PORTAL\ACERPORTAL.EXE
C:\PROGRAM FILES (X86)\INTERNET EXPLORER\iexplore.exe
C:\Windows\SysWOW64\dllhost.exe
C:\Users\katsa\AppData\Local\MICROSOFT\Windows\INETCACHE\IE\SVJUE84D\ESETONLINESCANNER_ENU.EXE
C:\PROGRAM FILES (X86)\Ruiware\WINPATROL\WINPATROL.EXE
C:\PROGRAM FILES (X86)\Ruiware\WINPATROL\WINPATROLEX.EXE
C:\Windows\SysWOW64\notepad.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer15.msn.com/?pc=ACTE
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://acer15.msn.com/?pc=ACTE
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
O4 - HKLM\..\Run: [RTHDVCPL]C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
O4 - HKCU\..\Run: [OneDrive]C:\Users\katsa\AppData\Local\Microsoft\OneDrive\OneDrive.exe /background
O4 - HKU\..\Run: [abDocsDllLoader]C:\Program Files (x86)\Acer\abDocs\abDocsDllLoader.exe
O4 - HKU\..\Run: [isa]C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
O11 - Options group: [Accelerated graphics] Accelerated graphics - C:\Windows\System32
O11 - Options group: [Path not f] Path not f - No path available
O23 - Service: Amazon 1Button App Service - Amazon Inc. - C:\PROGRAM FILES (X86)\Amazon\AMAZON1BUTTONAPP\AMAZON1BUTTONSERVICE64.EXE
O23 - Service: CCDMonitorService - Acer Incorporated - C:\PROGRAM FILES (X86)\Acer\AOP FRAMEWORK\CCDMONITORSERVICE.EXE
O23 - Service: Intel(R) Content Protection HECI Service - Intel Corporation - C:\Windows\SysWOW64\INTELCPHECISVC.EXE
O23 - Service: DESlock+ Service - DESlock Limited. - C:\PROGRAM FILES\ESET\ESET SECURE DATA\dlpsrv.exe
O23 - Service: ESET Service - ESET - C:\PROGRAM FILES\ESET\ESET SMART SECURITY PREMIUM\ekrn.exe
O23 - Service: ePower Service - Acer Incorporated - C:\PROGRAM FILES\Acer\ACER POWER MANAGEMENT\EPOWERSVC.EXE
O23 - Service: ESIF Upper Framework Service - Intel Corporation - C:\Windows\SysWOW64\esif_uf.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log - Intel(R) Corporation - C:\PROGRAM FILES\Intel\WiFi\bin\EvtEng.exe
O23 - Service: Intel Bluetooth Service - Intel Corporation - C:\PROGRAM FILES (X86)\Intel\BLUETOOTH\UTILITIES\ibtsiva.exe
O23 - Service: Intel(R) HD Graphics Control Panel Service - Intel Corporation - C:\WINDOWS\SYSTEM32\IGFXCUISERVICE.EXE
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\PROGRAM FILES\Intel\TXE COMPONENTS\TCS\SOCKETHECISERVER.EXE
O23 - Service: Intel(R) Security Assist - Intel - C:\PROGRAM FILES (X86)\Intel\INTEL(R) SECURITY ASSIST\isa.exe
O23 - Service: Intel(R) Security Assist Helper - - C:\PROGRAM FILES (X86)\Intel\INTEL(R) SECURITY ASSIST\ISAHELPERSERVICE.EXE
O23 - Service: Intel(R) Dynamic Application Loader Host Interface - Intel Corporation - C:\PROGRAM FILES (X86)\Intel\TXE COMPONENTS\DAL\JHI_SERVICE.EXE
O23 - Service: Mozilla Maintenance Service - Mozilla Foundation - C:\PROGRAM FILES (X86)\MOZILLA MAINTENANCE SERVICE\MAINTENANCESERVICE.EXE
O23 - Service: Wireless PAN DHCP Server - - C:\PROGRAM FILES\Intel\WiFi\bin\PANDHCPDNS.EXE
O23 - Service: Quick Access Local Service - Acer Incorporated - C:\PROGRAM FILES\Acer\ACER QUICK ACCESS\QALSvc.exe
O23 - Service: Quick Access Service - Acer Incorporated - C:\PROGRAM FILES\Acer\ACER QUICK ACCESS\QASvc.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service - Intel(R) Corporation - C:\PROGRAM FILES\COMMON FILES\Intel\WIRELESSCOMMON\RegSrvc.exe
O23 - Service: Reimage Real Time Protector - Reimage® - C:\PROGRAM FILES\Reimage\REIMAGE PROTECTOR\ReiGuard.exe
O23 - Service: User Experience Improvement Program - acer - C:\PROGRAM FILES\Acer\USER EXPERIENCE IMPROVEMENT PROGRAM\FRAMEWORK\UBTSERVICE.EXE
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service - Intel® Corporation - C:\PROGRAM FILES\Intel\WiFi\bin\ZEROCONFIGSERVICE.EXE

--- Additional WinPatrol Info ---
Default Browser: Internet Explorer - Internet Explorer version 11.00.10240.16384
MSIE: Internet Explorer (11.00.10240.16384)
Firefox 38.0.1 installed in C:\Program Files (x86)\Mozilla Firefox.
44 IE Cookies in Folder: C:\Users\katsa\AppData\Local\Microsoft\Windows\INetCookies\
4 Mozilla Cookies in Folder: C:\Users\katsa\AppData\Roaming\Mozilla\FireFox\Profiles\n1n83s74.default

WP00 - HKLM\CS1: BootExecute = autocheck autochk *
WP00 - HKLM\CCS: BootExecute = autocheck autochk *
WP01 - HKLM\CS1: PendingFileRenameOperations = \??\C:\Users\katsa\AppData\Local\Temp\TsuCE1E321F.dll
WP01 - HKLM\CCS: PendingFileRenameOperations = \??\C:\Users\katsa\AppData\Local\Temp\TsuCE1E321F.dll
WP02 - HKLM\CCS: Command = C:\Windows\system32\cmd.exe


WP08 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\DefaultPrefix: Default = http://
WP08 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\Prefixes: www = http://


WP16 - ActiveX: {25336920-03F9-11CF-8FD0-00AA00686F13} [HTML Document] C:\Windows\System32\mshtml.dll 11.00.10240.16942
WP16 - ActiveX: {2933BF90-7B36-11D2-B20E-00C04F983E60} [XML DOM Document] C:\Windows\System32\msxml3.dll 8.110.10240.17113
WP16 - ActiveX: {6BF52A52-394A-11D3-B153-00C04F79FAA6} [Windows Media Player] C:\Windows\System32\wmp.dll 12.0.10240.17146
WP16 - ActiveX: {8856F961-340A-11D0-A96B-00C04FD705A2} [Microsoft Web Browser] C:\Windows\System32\ieframe.dll 11.00.10240.16766
WP16 - ActiveX: {BD6ECB00-7C4A-4F97-B425-44117F2A7AAE} [The Amazon 1Button App for Internet Explorer] C:\PROGRAM FILES (X86)\Amazon\AMAZON1BUTTONAPP\AMAZONAPPIE64.DLL 2.3.4
WP16 - ActiveX: {D27CDB6E-AE6D-11CF-96B8-444553540000} [Shockwave Flash Object] C:\Windows\System32\Macromed\Flash\Flash.ocx 23,0,0,185
WP16 - ActiveX: {05589fa1-c356-11ce-bf01-00aa0055595a} [ActiveMovieControl Object] C:\Windows\System32\wmpdxm.dll 12.0.10240.17146
WP16 - ActiveX: {52A2AAAE-085D-4187-97EA-8C30DB990436} [HHCtrl Object] C:\Windows\System32\hhctrl.ocx 10.0.10240.16384
WP16 - ActiveX: {54CE37E0-9834-41ae-9896-4DAB69DC022B} [Microsoft RDP Client Control (redistributable) - version 5a] C:\Windows\System32\mstscax.dll 10.0.10240.16384

WP32 - Hidden File: C:\bootmgr
WP32 - Hidden File: C:\BOOTNXT
WP32 - Hidden File: C:\hiberfil.sys
WP32 - Hidden File: C:\pagefile.sys
WP32 - Hidden File: C:\swapfile.sys
WP32 - Hidden File: C:\Windows\WindowsShell.Manifest

WP33 - File Type .AVI: [Video Clip]C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:8 /Open %L
WP33 - File Type .BAT: [Windows Batch File]%1 %*
WP33 - File Type .CAB: [Cabinet File]C:\Windows\Explorer.exe /idlist,%I,%L
WP33 - File Type .CAT: [Security Catalog]C:\Windows\system32\rundll32.exe cryptext.dll,CryptExtOpenCAT %1
WP33 - File Type .CHM: [Compiled HTML Help file]C:\Windows\hh.exe %1
WP33 - File Type .COM: [MS-DOS Application]%1 %*
WP33 - File Type .CMD: [Windows Command Script]%1 %*
WP33 - File Type .DOC: [Microsoft Office]C:\PROGRA~2\MICROS~1\Office15\FIRSTRUN.EXE /OEMTA %1
WP33 - File Type .EXE: [Application]%1 %*
WP33 - File Type .INF: [Setup Information]C:\Windows\system32\NOTEPAD.EXE %1
WP33 - File Type .JS: [JavaScript File]C:\Windows\System32\WScript.exe %1 %*
WP33 - File Type .LOG: [Text Document]C:\Windows\system32\NOTEPAD.EXE %1
WP33 - File Type .MSI: [Windows Installer Package]C:\Windows\System32\msiexec.exe /i %1 %*
WP33 - File Type .MSG: [Microsoft Office]C:\PROGRA~2\MICROS~1\Office15\FIRSTRUN.EXE /OEMTA %1
WP33 - File Type .MID: [MIDI Sequence]C:\Program Files (x86)\Windows Media Player\wmplayer.exe /Open %L
WP33 - File Type .MP3: [MP3 Format Sound]C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:6 /Open %L
WP33 - File Type .PIF: [Shortcut to MS-DOS Program]%1 %*
WP33 - File Type .REG: [Registration Entries]regedit.exe %1
WP33 - File Type .RTF: [Rich Text Document]C:\Program Files (x86)\Windows NT\Accessories\WORDPAD.EXE %1
WP33 - File Type .SCR: [Screen saver]%1 /S
WP33 - File Type .TXT: [Text Document]C:\Windows\system32\NOTEPAD.EXE %1
WP33 - File Type .URL: [Operační systém Microsoft® Windows®]C:\Windows\System32\rundll32.exe C:\Windows\System32\ieframe.dll,OpenURL %l
WP33 - File Type .VBS: [VBScript Script File]C:\Windows\System32\WScript.exe %1 %*
WP33 - File Type .VBE: [VBScript Encoded File]C:\Windows\System32\WScript.exe %1 %*
WP33 - File Type .WSF: [Windows Script File]C:\Windows\System32\WScript.exe %1 %*
WP33 - File Type .WSH: [Windows Script Host Settings File]C:\Windows\System32\WScript.exe %1 %*
WP33 - File Type .XLS: [Microsoft Office]C:\PROGRA~2\MICROS~1\Office15\FIRSTRUN.EXE /OEMTA %1

Memory currently in use: 92%
Physical Memory Free: 150,216 KB
Paging File Free: 857,808 KB
Virtual Memory Free: 1,907,748 KB


--
End of file

[Reklama]

[Kat1]

Ještě poznámka, v PC nepotřebuji žádnou vzdálenou správu, sdílení atd

[Kat1]

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 0:25:20, on 27.10.2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10240.17146)

FIREFOX: 38.0.1 (x86 en-US)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe
C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe
C:\Program Files (x86)\Acer\abDocs\abDocsDllLoaderMonitor.exe
C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Windows\SysWOW64\DllHost.exe
C:\Users\katsa\AppData\Local\Microsoft\Windows\INetCache\IE\SVJUE84D\esetonlinescanner_enu.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files (x86)\Ruiware\WinPatrol\WinPatrol.exe
C:\Users\katsa\Desktop\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer15.msn.com/?pc=ACTE
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://acer15.msn.com/?pc=ACTE
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O4 - HKLM\..\Run: [abDocsDllLoader] C:\Program Files (x86)\Acer\abDocs\abDocsDllLoader.exe
O4 - HKLM\..\Run: [isa] C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
O4 - HKCU\..\Run: [OneDrive] "C:\Users\katsa\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://help.eset.com (HKLM)
O15 - ESC Trusted Zone: http://help.eset.com (HKLM)
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: CCDMonitorService - Acer Incorporated - C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\Windows\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: DESlock+ Service (dlpsrv) - DESlock Limited. - C:\Program Files\ESET\ESET Secure Data\dlpsrv.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security Premium\ekrn.exe
O23 - Service: ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
O23 - Service: @oem7.inf,%ServiceDisplayName%;ESIF Upper Framework Service (esifsvc) - Intel Corporation - C:\Windows\SysWOW64\esif_uf.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Intel Bluetooth Service (ibtsiva) - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\utilities\ibtsiva.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService2.0.0.0) - Unknown owner - C:\Windows\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe
O23 - Service: Intel(R) Security Assist - Unknown owner - C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
O23 - Service: Intel(R) Security Assist Helper (isaHelperSvc) - Unknown owner - C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\TXE Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\System32\ngcsvc.dll,-100 (NgcSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Quick Access Local Service (QALSvc) - Acer Incorporated - C:\Program Files\Acer\Acer Quick Access\QALSvc.exe
O23 - Service: Quick Access Service (QASvc) - Acer Incorporated - C:\Program Files\Acer\Acer Quick Access\QASvc.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: Reimage Real Time Protector (ReimageRealTimeProtector) - Reimage® - C:\Program Files\Reimage\Reimage Protector\ReiGuard.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\Windows\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: User Experience Improvement Program (UEIPSvc) - acer - C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe

--
End of file - 9102 bytes

[jaro3]

máš veřejnou IP adresu? Nemáš na to připojen mobil? Jiné zařízení?

Zavři ostatní aplikace a prohlížeče, odpoj se od netu a fixni v HJT:
Návod

Kód: Vybrat vše

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=

Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
-Když používáš Firefox (Mozzila), klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
-Když používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected. Poté klikni na Main (hlavní stránku ) a klikni na Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranění historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit dočasné soubory Windows, vysypat koš atd.
- Pokud používáš jen Google Chrome , tak ATF nemusíš použít.


Stáhni si TFC
http://www.geekstogo.com/forum/files/fi ... -oldtimer/
Otevři soubor a zavři všechny ostatní okna, Klikni na Start k zahájení procesu. Program by neměl trvat dlouho.
Poté by se měl PC restartovat, pokud ne , proveď sám.

Stáhni AdwCleaner (by Xplode)
http://www.bleepingcomputer.com/download/adwcleaner/

Ulož si ho na svojí plochu
Ukonči všechny programy , okna a prohlížeče
Spusť program poklepáním a klikni na „Scan“
Po skenu klikni na „Logfile“ ,objeví se okno „Log Manager“ a pak poklepej na odpovídající log , který se otevře. ( jinak je uložen systémovem disku jako C:\AdwCleaner [C?].txt ), jeho obsah sem celý vlož.

Stáhni si Malwarebytes' Anti-Malware
- Při instalaci odeber zatržítko u „Povolit bezplatnou zkušební verzi Malwarebytes' Anti-Malware Premium“
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Aktualizace Malwarebytes' Anti-Malware a Spustit aplikaci Malwarebytes' Anti-Malware, pokud jo tak klikni na tlačítko konec
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a klikni na Skenovat nyní a
- po proběhnutí programu se ti objeví hláška vpravo dole tak klikni na Uložit výsledky a vyber zkopírovat do schránky a vlož sem celý log.
-jinak se log nachází zde: C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\Logs

- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(zatím nic nemaž!).

Pokud budou problémy , spusť v nouz. režimu.

[Kat1]

¨# AdwCleaner v6.030 - Log soubor vytvořen 27/10/2016 na 22:23:53
# Aktualizováno dne 19/10/2016 z Malwarebytes
# Databáze : 2016-10-27.1 [Server]
# Operační systém : Windows 10 Home (X64)
# Uživatelské jméno : Kata - DESKTOP-86EG2A2
# Beží od : C:\Users\katsa\Downloads\AdwCleaner.exe
# Mod: Skenování
# Podpora : https://www.malwarebytes.com/support



***** [ Služby ] *****

SLužba nalezena: ReimageRealTimeProtector
SLužba nalezena: Amazon 1Button App Service


***** [ Adresáře ] *****

Složka nalezena: C:\Program Files\Reimage
Složka nalezena: C:\Program Files\Booking.com
Složka nalezena: C:\Program Files\DriverSetupUtility
Složka nalezena: C:\rei
Složka nalezena: C:\ProgramData\Reimage Protector
Složka nalezena: C:\ProgramData\SecTaskMan
Složka nalezena: C:\ProgramData\DriverSetupUtility
Složka nalezena: C:\ProgramData\Application Data\Reimage Protector
Složka nalezena: C:\ProgramData\Application Data\SecTaskMan
Složka nalezena: C:\ProgramData\Application Data\DriverSetupUtility
Složka nalezena: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\reimage repair
Složka nalezena: C:\Program Files (x86)\Amazon\Amazon1ButtonApp
Složka nalezena: C:\Users\katsa\AppData\Roaming\Mozilla\Firefox\Profiles\n1n83s74.default\extensions\abb@amazon.com


***** [ Soubory ] *****

Soubor nalezen: C:\Users\Public\Desktop\PC Scan & Repair by Reimage.lnk
Soubor nalezen: C:\Users\Public\Desktop\Booking.com.lnk
Soubor nalezen: C:\Windows\Reimage.ini


***** [ DLL ] *****

Nebyly nalezeny žádné škodlivé DLL soubory.


***** [ WMI ] *****

Nebyly nalezeny žádné škodlivé klíče.


***** [ Zástupce ] *****

Žádné infikovaný zástupce nenalezen.


***** [ Plánovač úloh ] *****

Úkol nalezen: Reimage Reminder
Úkol nalezen: ReimageUpdater
Úkol nalezen: Reimage Reminder
Úkol nalezen: ReimageUpdater
Úkol nalezen: Software Update Application


***** [ Registry ] *****

Klíč nalezen: HKLM\SOFTWARE\Classes\Amazon1ButtonBrowserHelper.Amazon1ButtonBHO
Klíč nalezen: HKLM\SOFTWARE\Classes\Amazon1ButtonRuntime.Amazon1ButtonRuntime
Klíč nalezen: HKLM\SOFTWARE\Classes\Amazon1ButtonRuntime.AmazonRuntimeServer
Klíč nalezen: HKLM\SOFTWARE\Classes\AmazonAppIE.AppGateway
Klíč nalezen: HKLM\SOFTWARE\Classes\AmazonAppIE.GadgetGateway
Klíč nalezen: HKLM\SOFTWARE\Classes\REI_AxControl.ReiEngine
Klíč nalezen: HKLM\SOFTWARE\Classes\REI_AxControl.ReiEngine.1
Klíč nalezen: [x64] HKLM\SOFTWARE\Classes\Amazon1ButtonBrowserHelper.Amazon1ButtonBHO
Klíč nalezen: [x64] HKLM\SOFTWARE\Classes\Amazon1ButtonRuntime.Amazon1ButtonRuntime
Klíč nalezen: [x64] HKLM\SOFTWARE\Classes\Amazon1ButtonRuntime.AmazonRuntimeServer
Klíč nalezen: [x64] HKLM\SOFTWARE\Classes\AmazonAppIE.AppGateway
Klíč nalezen: [x64] HKLM\SOFTWARE\Classes\AmazonAppIE.GadgetGateway
Klíč nalezen: [x64] HKLM\SOFTWARE\Classes\REI_AxControl.ReiEngine
Klíč nalezen: [x64] HKLM\SOFTWARE\Classes\REI_AxControl.ReiEngine.1
Klíč nalezen: HKLM\SOFTWARE\Classes\AppID\{28FF42B8-A0DA-4BE5-9B81-E26DD59B350A}
Klíč nalezen: HKLM\SOFTWARE\Classes\AppID\{7F46C358-270D-4791-A579-AD1DDA1A3F7B}
Klíč nalezen: HKLM\SOFTWARE\Classes\CLSID\{BAC72C85-CEC6-4B86-AF06-FA20C259FAB8}
Klíč nalezen: HKLM\SOFTWARE\Classes\CLSID\{BD6ECB00-7C4A-4F97-B425-44117F2A7AAE}
Klíč nalezen: HKLM\SOFTWARE\Classes\CLSID\{6557DB6C-EFE1-45AC-92A6-FBB1554B7502}
Klíč nalezen: HKLM\SOFTWARE\Classes\CLSID\{E4ADC61E-D06A-4E0E-8582-78C809CC8450}
Klíč nalezen: HKLM\SOFTWARE\Classes\Interface\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}
Klíč nalezen: HKLM\SOFTWARE\Classes\Interface\{BD51A48E-EB5F-4454-8774-EF962DF64546}
Klíč nalezen: HKLM\SOFTWARE\Classes\Interface\{7BCA6879-A9F8-47DE-AE05-F5CE7EA3A474}
Klíč nalezen: HKLM\SOFTWARE\Classes\TypeLib\{FA6468D2-FAA4-4951-A53B-2A5CF9CC0A36}
Klíč nalezen: HKLM\SOFTWARE\Classes\TypeLib\{ADF1FA2A-6EAA-4A97-A55F-3C8B92843EF5}
Klíč nalezen: HKLM\SOFTWARE\Classes\TypeLib\{EB2BEAEF-150C-4DE4-9D09-F16403C22769}
Klíč nalezen: HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BD6ECB00-7C4A-4F97-B425-44117F2A7AAE}
Klíč nalezen: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BD6ECB00-7C4A-4F97-B425-44117F2A7AAE}
Klíč nalezen: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{10ECCE17-29B5-4880-A8F5-EAD298611484}
Klíč nalezen: HKU\S-1-5-21-3329389640-1170051626-684001770-1001\Software\Reimage
Klíč nalezen: HKU\S-1-5-21-3329389640-1170051626-684001770-1001\Software\Local AppWizard-Generated Applications\Reimage - Windows Problem Relief.
Klíč nalezen: HKCU\Software\Reimage
Klíč nalezen: HKCU\Software\Local AppWizard-Generated Applications\Reimage - Windows Problem Relief.
Klíč nalezen: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{B6DCCCD3-520D-4485-B642-FCC136CE12C3}
Klíč nalezen: [x64] HKCU\Software\Reimage
Klíč nalezen: [x64] HKCU\Software\Local AppWizard-Generated Applications\Reimage - Windows Problem Relief.
Klíč nalezen: [x64] HKLM\SOFTWARE\Reimage
Klíč nalezen: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Reimage Repair
Klíč nalezen: HKLM\SOFTWARE\Classes\Installer\Features\3DCCCD6BD02558446B24CF1C63EC213C
Klíč nalezen: HKLM\SOFTWARE\Classes\Installer\Features\A38C15B2D5649AE4C9CDE19DE50DA96C
Klíč nalezen: HKLM\SOFTWARE\Classes\Installer\Products\3DCCCD6BD02558446B24CF1C63EC213C
Klíč nalezen: HKLM\SOFTWARE\Classes\Installer\Products\A38C15B2D5649AE4C9CDE19DE50DA96C
Klíč nalezen: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\3DCCCD6BD02558446B24CF1C63EC213C
Klíč nalezen: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A38C15B2D5649AE4C9CDE19DE50DA96C
Klíč nalezen: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\3DCCCD6BD02558446B24CF1C63EC213C
Klíč nalezen: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A38C15B2D5649AE4C9CDE19DE50DA96C
Klíč nalezen: [x64] HKLM\SOFTWARE\Classes\Installer\Features\3DCCCD6BD02558446B24CF1C63EC213C
Klíč nalezen: [x64] HKLM\SOFTWARE\Classes\Installer\Features\A38C15B2D5649AE4C9CDE19DE50DA96C
Klíč nalezen: [x64] HKLM\SOFTWARE\Classes\Installer\Products\3DCCCD6BD02558446B24CF1C63EC213C
Klíč nalezen: [x64] HKLM\SOFTWARE\Classes\Installer\Products\A38C15B2D5649AE4C9CDE19DE50DA96C
Klíč nalezen: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\amazonbrowserapp.com
Klíč nalezen: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\analytics.app.amazonbrowserapp.com
Klíč nalezen: [x64] HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\amazonbrowserapp.com
Klíč nalezen: [x64] HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\analytics.app.amazonbrowserapp.com
Klíč nalezen: HKLM\SOFTWARE\Classes\AppID\REI_AxControl.DLL
Klíč nalezen: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\Reimage.exe
Klíč nalezen: HKLM\SOFTWARE\Classes\AppID\OverlayIcon.DLL


***** [ Internetové prohlížeče ] *****

Nebyly nalezeny žádné škodlivé položky prohlížeče Firefox báze.
Nebyly nalezeny žádné škodlivé položky prohlížeče Chromium báze.

*************************

C:\AdwCleaner\AdwCleaner[S0].txt - [7318 Bajtů] - [27/10/2016 22:23:53]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [7392 Bajtů] ##########

[Kat1]

Malwarebytes Anti-Malware
www.malwarebytes.org

Datum skenování: 27.10.2016
Čas skenování: 22:39
Protokol: mblog.txt
Správce: Ano

Verze: 2.2.1.1043
Databáze malwaru: v2016.10.27.08
Databáze rootkitů: v2016.09.26.02
Licence: Bezplatná verze
Ochrana proti malwaru: Vypnuto
Ochrana proti škodlivým webovým stránkám: Vypnuto
Ochrana programu: Vypnuto

OS: Windows 10
CPU: x64
Souborový systém: NTFS
Uživatel: Kata

Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 285639
Uplynulý čas: 6 min, 42 sek

Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto

Procesy: 2
PUP.Optional.Reimage, C:\Program Files\Reimage\Reimage Protector\ReiGuard.exe, 2164, , [34003965c5d543f36afeb3434bb9867a]
PUP.Optional.Reimage, C:\Program Files\Reimage\Reimage Protector\ReiSystem.exe, 2696, , [7eb60b93b8e273c35f09b83e3aca2fd1]

Moduly: 0
(Nenalezeny žádné škodlivé položky)

Klíče registru: 90
PUP.Optional.Reimage, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\ReimageRealTimeProtector, , [34003965c5d543f36afeb3434bb9867a],
PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\APPID\{28FF42B8-A0DA-4BE5-9B81-E26DD59B350A}, , [ae86b5e90d8db482fb40aa6048bdb749],
PUP.Optional.Reimage, HKLM\SOFTWARE\WOW6432NODE\CLASSES\APPID\{28FF42B8-A0DA-4BE5-9B81-E26DD59B350A}, , [ae86b5e90d8db482fb40aa6048bdb749],
PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\WOW6432NODE\APPID\{28FF42B8-A0DA-4BE5-9B81-E26DD59B350A}, , [ae86b5e90d8db482fb40aa6048bdb749],
PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\CLSID\{10ECCE17-29B5-4880-A8F5-EAD298611484}, , [c56fa7f7debc84b23b451adc0cf86f91],
PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\CLSID\{801B440B-1EE3-49B0-B05D-2AB076D4E8CB}, , [c56fa7f7debc84b23b451adc0cf86f91],
PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\TYPELIB\{FA6468D2-FAA4-4951-A53B-2A5CF9CC0A36}, , [c56fa7f7debc84b23b451adc0cf86f91],
PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\INTERFACE\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}, , [c56fa7f7debc84b23b451adc0cf86f91],
PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\INTERFACE\{BD51A48E-EB5F-4454-8774-EF962DF64546}, , [c56fa7f7debc84b23b451adc0cf86f91],
PUP.Optional.Reimage, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}, , [c56fa7f7debc84b23b451adc0cf86f91],
PUP.Optional.Reimage, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{BD51A48E-EB5F-4454-8774-EF962DF64546}, , [c56fa7f7debc84b23b451adc0cf86f91],
PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}, , [c56fa7f7debc84b23b451adc0cf86f91],
PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{BD51A48E-EB5F-4454-8774-EF962DF64546}, , [c56fa7f7debc84b23b451adc0cf86f91],
PUP.Optional.Reimage, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{FA6468D2-FAA4-4951-A53B-2A5CF9CC0A36}, , [c56fa7f7debc84b23b451adc0cf86f91],
PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\WOW6432NODE\TYPELIB\{FA6468D2-FAA4-4951-A53B-2A5CF9CC0A36}, , [c56fa7f7debc84b23b451adc0cf86f91],
PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\REI_AxControl.ReiEngine.1, , [c56fa7f7debc84b23b451adc0cf86f91],
PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\REI_AxControl.ReiEngine, , [c56fa7f7debc84b23b451adc0cf86f91],
PUP.Optional.Reimage, HKLM\SOFTWARE\WOW6432NODE\CLASSES\REI_AxControl.ReiEngine, , [c56fa7f7debc84b23b451adc0cf86f91],
PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\WOW6432NODE\REI_AxControl.ReiEngine, , [c56fa7f7debc84b23b451adc0cf86f91],
PUP.Optional.Reimage, HKLM\SOFTWARE\WOW6432NODE\CLASSES\REI_AxControl.ReiEngine.1, , [c56fa7f7debc84b23b451adc0cf86f91],
PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\WOW6432NODE\REI_AxControl.ReiEngine.1, , [c56fa7f7debc84b23b451adc0cf86f91],
PUP.Optional.Reimage, HKU\S-1-5-21-3329389640-1170051626-684001770-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{10ECCE17-29B5-4880-A8F5-EAD298611484}, , [c56fa7f7debc84b23b451adc0cf86f91],
PUP.Optional.Reimage, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\Reimage Repair, , [bf7518869901fa3c0a61ac4a6a9a18e8],
PUP.Optional.Amazon1Button.AppFlsh, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{BAC72C85-CEC6-4B86-AF06-FA20C259FAB8}, , [a68e376745551f17b9bbc746d72e26da],
PUP.Optional.Amazon1Button.AppFlsh, HKLM\SOFTWARE\CLASSES\TYPELIB\{921462B2-5269-45A2-AA8D-F8F7A3690255}, , [a68e376745551f17b9bbc746d72e26da],
PUP.Optional.Amazon1Button.AppFlsh, HKLM\SOFTWARE\CLASSES\INTERFACE\{FD1B7376-A344-48BD-857D-C87B4D8502EF}, , [a68e376745551f17b9bbc746d72e26da],
PUP.Optional.Amazon1Button.AppFlsh, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{FD1B7376-A344-48BD-857D-C87B4D8502EF}, , [a68e376745551f17b9bbc746d72e26da],
PUP.Optional.Amazon1Button.AppFlsh, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{FD1B7376-A344-48BD-857D-C87B4D8502EF}, , [a68e376745551f17b9bbc746d72e26da],
PUP.Optional.Amazon1Button.AppFlsh, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{921462B2-5269-45A2-AA8D-F8F7A3690255}, , [a68e376745551f17b9bbc746d72e26da],
PUP.Optional.Amazon1Button.AppFlsh, HKLM\SOFTWARE\CLASSES\WOW6432NODE\TYPELIB\{921462B2-5269-45A2-AA8D-F8F7A3690255}, , [a68e376745551f17b9bbc746d72e26da],
PUP.Optional.Amazon1Button.AppFlsh, HKLM\SOFTWARE\CLASSES\Amazon1ButtonBrowserHelper.Amazon1ButtonBHO, , [a68e376745551f17b9bbc746d72e26da],
PUP.Optional.Amazon1Button.AppFlsh, HKLM\SOFTWARE\WOW6432NODE\CLASSES\Amazon1ButtonBrowserHelper.Amazon1ButtonBHO, , [a68e376745551f17b9bbc746d72e26da],
PUP.Optional.Amazon1Button.AppFlsh, HKLM\SOFTWARE\CLASSES\WOW6432NODE\Amazon1ButtonBrowserHelper.Amazon1ButtonBHO, , [a68e376745551f17b9bbc746d72e26da],
PUP.Optional.Amazon1Button.AppFlsh, HKLM\SOFTWARE\CLASSES\CLSID\{BAC72C85-CEC6-4B86-AF06-FA20C259FAB8}, , [a68e376745551f17b9bbc746d72e26da],
PUP.Optional.Amazon1Button.AppFlsh, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{BAC72C85-CEC6-4B86-AF06-FA20C259FAB8}, , [a68e376745551f17b9bbc746d72e26da],
PUP.Optional.Amazon1Button.AppFlsh, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{6557DB6C-EFE1-45AC-92A6-FBB1554B7502}, , [a68e376745551f17b9bbc746d72e26da],
PUP.Optional.Amazon1Button.AppFlsh, HKLM\SOFTWARE\CLASSES\TYPELIB\{48DDEC26-CEC3-478E-9566-0842DAF10CEA}, , [a68e376745551f17b9bbc746d72e26da],
PUP.Optional.Amazon1Button.AppFlsh, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{6B7479D5-C493-40F0-99B6-BFC901980034}, , [a68e376745551f17b9bbc746d72e26da],
PUP.Optional.Amazon1Button.AppFlsh, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{BFF94CF8-2D3B-4B2F-BB83-3600280AFEBA}, , [a68e376745551f17b9bbc746d72e26da],
PUP.Optional.Amazon1Button.AppFlsh, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{6B7479D5-C493-40F0-99B6-BFC901980034}, , [a68e376745551f17b9bbc746d72e26da],
PUP.Optional.Amazon1Button.AppFlsh, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{BFF94CF8-2D3B-4B2F-BB83-3600280AFEBA}, , [a68e376745551f17b9bbc746d72e26da],
PUP.Optional.Amazon1Button.AppFlsh, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{48DDEC26-CEC3-478E-9566-0842DAF10CEA}, , [a68e376745551f17b9bbc746d72e26da],
PUP.Optional.Amazon1Button.AppFlsh, HKLM\SOFTWARE\CLASSES\WOW6432NODE\TYPELIB\{48DDEC26-CEC3-478E-9566-0842DAF10CEA}, , [a68e376745551f17b9bbc746d72e26da],
PUP.Optional.Amazon1Button.AppFlsh, HKLM\SOFTWARE\CLASSES\Amazon1ButtonRuntime.Amazon1ButtonRuntime, , [a68e376745551f17b9bbc746d72e26da],
PUP.Optional.Amazon1Button.AppFlsh, HKLM\SOFTWARE\CLASSES\Amazon1ButtonRuntime.AmazonRuntimeServer, , [a68e376745551f17b9bbc746d72e26da],
PUP.Optional.Amazon1Button.AppFlsh, HKLM\SOFTWARE\WOW6432NODE\CLASSES\Amazon1ButtonRuntime.Amazon1ButtonRuntime, , [a68e376745551f17b9bbc746d72e26da],
PUP.Optional.Amazon1Button.AppFlsh, HKLM\SOFTWARE\WOW6432NODE\CLASSES\Amazon1ButtonRuntime.AmazonRuntimeServer, , [a68e376745551f17b9bbc746d72e26da],
PUP.Optional.Amazon1Button.AppFlsh, HKLM\SOFTWARE\CLASSES\WOW6432NODE\Amazon1ButtonRuntime.Amazon1ButtonRuntime, , [a68e376745551f17b9bbc746d72e26da],
PUP.Optional.Amazon1Button.AppFlsh, HKLM\SOFTWARE\CLASSES\WOW6432NODE\Amazon1ButtonRuntime.AmazonRuntimeServer, , [a68e376745551f17b9bbc746d72e26da],
PUP.Optional.Amazon1Button.AppFlsh, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{6557DB6C-EFE1-45AC-92A6-FBB1554B7502}, , [a68e376745551f17b9bbc746d72e26da],
PUP.Optional.Amazon1Button.AppFlsh, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\Amazon 1Button App Service, , [a68e376745551f17b9bbc746d72e26da],
PUP.Optional.Amazon1Button.AppFlsh, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{BD6ECB00-7C4A-4F97-B425-44117F2A7AAE}, , [a68e376745551f17b9bbc746d72e26da],
PUP.Optional.Amazon1Button.AppFlsh, HKLM\SOFTWARE\CLASSES\TYPELIB\{EB2BEAEF-150C-4DE4-9D09-F16403C22769}, , [a68e376745551f17b9bbc746d72e26da],
PUP.Optional.Amazon1Button.AppFlsh, HKLM\SOFTWARE\CLASSES\INTERFACE\{3268A00F-D329-42E1-ABF0-E78D5656BA2A}, , [a68e376745551f17b9bbc746d72e26da],
PUP.Optional.Amazon1Button.AppFlsh, HKLM\SOFTWARE\CLASSES\INTERFACE\{571139B2-8D93-4B29-9AA9-496EF27D6AF8}, , [a68e376745551f17b9bbc746d72e26da],
PUP.Optional.Amazon1Button.AppFlsh, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{3268A00F-D329-42E1-ABF0-E78D5656BA2A}, , [a68e376745551f17b9bbc746d72e26da],
PUP.Optional.Amazon1Button.AppFlsh, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{571139B2-8D93-4B29-9AA9-496EF27D6AF8}, , [a68e376745551f17b9bbc746d72e26da],
PUP.Optional.Amazon1Button.AppFlsh, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{3268A00F-D329-42E1-ABF0-E78D5656BA2A}, , [a68e376745551f17b9bbc746d72e26da],
PUP.Optional.Amazon1Button.AppFlsh, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{571139B2-8D93-4B29-9AA9-496EF27D6AF8}, , [a68e376745551f17b9bbc746d72e26da],
PUP.Optional.Amazon1Button.AppFlsh, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{EB2BEAEF-150C-4DE4-9D09-F16403C22769}, , [a68e376745551f17b9bbc746d72e26da],
PUP.Optional.Amazon1Button.AppFlsh, HKLM\SOFTWARE\CLASSES\WOW6432NODE\TYPELIB\{EB2BEAEF-150C-4DE4-9D09-F16403C22769}, , [a68e376745551f17b9bbc746d72e26da],
PUP.Optional.Amazon1Button.AppFlsh, HKLM\SOFTWARE\CLASSES\AmazonAppIE.AppGateway, , [a68e376745551f17b9bbc746d72e26da],
PUP.Optional.Amazon1Button.AppFlsh, HKLM\SOFTWARE\WOW6432NODE\CLASSES\AmazonAppIE.AppGateway, , [a68e376745551f17b9bbc746d72e26da],
PUP.Optional.Amazon1Button.AppFlsh, HKLM\SOFTWARE\CLASSES\WOW6432NODE\AmazonAppIE.AppGateway, , [a68e376745551f17b9bbc746d72e26da],
PUP.Optional.Amazon1Button.AppFlsh, HKLM\SOFTWARE\CLASSES\CLSID\{BD6ECB00-7C4A-4F97-B425-44117F2A7AAE}, , [a68e376745551f17b9bbc746d72e26da],
PUP.Optional.Amazon1Button.AppFlsh, HKLM\SOFTWARE\CLASSES\CLSID\{E4ADC61E-D06A-4E0E-8582-78C809CC8450}, , [a68e376745551f17b9bbc746d72e26da],
PUP.Optional.Amazon1Button.AppFlsh, HKLM\SOFTWARE\CLASSES\AmazonAppIE.GadgetGateway, , [a68e376745551f17b9bbc746d72e26da],
PUP.Optional.Amazon1Button.AppFlsh, HKLM\SOFTWARE\WOW6432NODE\CLASSES\AmazonAppIE.GadgetGateway, , [a68e376745551f17b9bbc746d72e26da],
PUP.Optional.Amazon1Button.AppFlsh, HKLM\SOFTWARE\CLASSES\WOW6432NODE\AmazonAppIE.GadgetGateway, , [a68e376745551f17b9bbc746d72e26da],
PUP.Optional.Amazon1Button.AppFlsh, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{E4ADC61E-D06A-4E0E-8582-78C809CC8450}, , [a68e376745551f17b9bbc746d72e26da],
PUP.Optional.Amazon1Button.AppFlsh, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{E4ADC61E-D06A-4E0E-8582-78C809CC8450}, , [a68e376745551f17b9bbc746d72e26da],
PUP.Optional.Amazon1Button.AppFlsh, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{BD6ECB00-7C4A-4F97-B425-44117F2A7AAE}, , [a68e376745551f17b9bbc746d72e26da],
PUP.Optional.Amazon1Button.AppFlsh, HKU\S-1-5-18\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{BD6ECB00-7C4A-4F97-B425-44117F2A7AAE}, , [a68e376745551f17b9bbc746d72e26da],
PUP.Optional.Amazon1Button.AppFlsh, HKU\S-1-5-21-3329389640-1170051626-684001770-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{BD6ECB00-7C4A-4F97-B425-44117F2A7AAE}, , [a68e376745551f17b9bbc746d72e26da],
PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\APPID\REI_AxControl.DLL, , [ee468e108812db5b89eb0de9e61ea060],
PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\TYPELIB\{FA6468D2-FAA4-4951-A53B-2A5CF9CC0A36}\1.0, , [300469352a7078be043ccf3b19ec8c74],
PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\WOW6432NODE\APPID\REI_AxControl.DLL, , [49ebd6c8990178be670dfafc0103e31d],
PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\WOW6432NODE\TYPELIB\{FA6468D2-FAA4-4951-A53B-2A5CF9CC0A36}\1.0, , [0c28eeb06e2c1b1b79c75daddb2a24dc],
PUP.Optional.Reimage, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{57D9CA41-46DF-4806-ACED-6D313A4F10E5}, , [a88cb2ec5b3f61d507b916f3a85d5ca4],
PUP.Optional.Reimage, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{D1F87215-BA93-4AB8-B342-9727570F7BAC}, , [87adb5e9f8a2b87e6d51fd0c25e038c8],
PUP.Optional.Reimage, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Reimage Reminder, , [8ca85945cbcfa88e03ba75945aabdf21],
PUP.Optional.Reimage, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\ReimageUpdater, , [b67e5f3f9901f6403e815dac4fb6fb05],
PUP.Optional.Reimage, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\APP PATHS\REIMAGE.EXE, , [eb49534be6b461d5a7d46b8bcd3747b9],
PUP.Optional.Reimage, HKLM\SOFTWARE\REIMAGE\Reimage Repair, , [191bcdd1d6c4ed49562935e21ee756aa],
PUP.Optional.Reimage, HKLM\SOFTWARE\REIMAGE\REIMAGE PROTECTOR, , [2212108ef7a3e25496af878356af53ad],
PUP.Optional.Reimage, HKLM\SOFTWARE\WOW6432NODE\CLASSES\APPID\REI_AxControl.DLL, , [13213767821869cd413327cffb09ea16],
PUP.Optional.Reimage, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{FA6468D2-FAA4-4951-A53B-2A5CF9CC0A36}\1.0, , [86ae5b43c9d1fa3c07393dcd16eff808],
PUP.Optional.Reimage, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\APP PATHS\REIMAGE.EXE, , [de56b6e80793fa3ca6d5f105d52f1be5],
PUP.Optional.Reimage, HKU\S-1-5-21-3329389640-1170051626-684001770-1001\SOFTWARE\LOCAL APPWIZARD-GENERATED APPLICATIONS\Reimage - Windows Problem Relief., , [270d851958423204f58934c26f95bb45],
PUP.Optional.Reimage, HKU\S-1-5-21-3329389640-1170051626-684001770-1001\SOFTWARE\REIMAGE\PC REPAIR, , [35ff8519d2c8c472631c1adcc73dd030],

Hodnoty registru: 9
PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\TYPELIB\{FA6468D2-FAA4-4951-A53B-2A5CF9CC0A36}\1.0, REI_AxControl 1.0 Type Library, , [300469352a7078be043ccf3b19ec8c74]
PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\WOW6432NODE\TYPELIB\{FA6468D2-FAA4-4951-A53B-2A5CF9CC0A36}\1.0, REI_AxControl 1.0 Type Library, , [0c28eeb06e2c1b1b79c75daddb2a24dc]
PUP.Optional.Reimage, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{57D9CA41-46DF-4806-ACED-6D313A4F10E5}|Path, \ReimageUpdater, , [a88cb2ec5b3f61d507b916f3a85d5ca4]
PUP.Optional.Reimage, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{D1F87215-BA93-4AB8-B342-9727570F7BAC}|Path, \Reimage Reminder, , [87adb5e9f8a2b87e6d51fd0c25e038c8]
PUP.Optional.Reimage, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\APP PATHS\REIMAGE.EXE, C:\Program Files\Reimage\Reimage Repair\Reimage.exe, , [eb49534be6b461d5a7d46b8bcd3747b9]
PUP.Optional.Reimage, HKLM\SOFTWARE\REIMAGE\REIMAGE PROTECTOR|CflPath, C:\ProgramData\Reimage Protector\cfl.rei, , [2212108ef7a3e25496af878356af53ad]
PUP.Optional.Reimage, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{FA6468D2-FAA4-4951-A53B-2A5CF9CC0A36}\1.0, REI_AxControl 1.0 Type Library, , [86ae5b43c9d1fa3c07393dcd16eff808]
PUP.Optional.Reimage, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\APP PATHS\REIMAGE.EXE, C:\Program Files\Reimage\Reimage Repair\Reimage.exe, , [de56b6e80793fa3ca6d5f105d52f1be5]
PUP.Optional.Reimage, HKU\S-1-5-21-3329389640-1170051626-684001770-1001\SOFTWARE\REIMAGE\PC REPAIR|QuitMessage, , , [35ff8519d2c8c472631c1adcc73dd030]

Data registru: 0
(Nenalezeny žádné škodlivé položky)

Složky: 24
PUP.Optional.Reimage, C:\Program Files\Reimage\Reimage Repair, , [bf7518869901fa3c0a61ac4a6a9a18e8],
PUP.Optional.Reimage, C:\Program Files\Reimage\Reimage Repair\Microsoft.VC90.CRT, , [bf7518869901fa3c0a61ac4a6a9a18e8],
PUP.Optional.Reimage, C:\Program Files\Reimage, , [bf7518869901fa3c0a61ac4a6a9a18e8],
PUP.Optional.Reimage, C:\Program Files\Reimage\Reimage Protector, , [bf7518869901fa3c0a61ac4a6a9a18e8],
PUP.Optional.Reimage, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Reimage Repair, , [5ed6dfbf7525e0562349b640f60ed729],
PUP.Optional.Reimage, C:\ProgramData\Reimage Protector, , [87adcdd1e2b8a1952f3e7581857fb44c],
PUP.Optional.Reimage, C:\ProgramData\Reimage Protector\Results, , [87adcdd1e2b8a1952f3e7581857fb44c],
PUP.Optional.Reimage, C:\rei\AV, , [0e260c92f0aa59ddc8a66c8a5aaa6898],
PUP.Optional.Reimage, C:\rei\AV\Microsoft.VC90.CRT, , [0e260c92f0aa59ddc8a66c8a5aaa6898],
PUP.Optional.Reimage, C:\rei, , [0e260c92f0aa59ddc8a66c8a5aaa6898],
PUP.Optional.Reimage, C:\rei\Results, , [0e260c92f0aa59ddc8a66c8a5aaa6898],
PUP.Optional.Reimage, C:\rei\Results\EXE1.8.4.8, , [0e260c92f0aa59ddc8a66c8a5aaa6898],
PUP.Optional.Reimage, C:\rei\Results\EXE1.8.4.8\RUN20161025_1928, , [0e260c92f0aa59ddc8a66c8a5aaa6898],
PUP.Optional.Reimage, C:\rei\Temp, , [0e260c92f0aa59ddc8a66c8a5aaa6898],
PUP.Optional.Reimage, C:\rei\Temp\20161025_1928, , [0e260c92f0aa59ddc8a66c8a5aaa6898],
PUP.Optional.Reimage, C:\rei\Temp\20161025_1928\DownloaderTemp, , [0e260c92f0aa59ddc8a66c8a5aaa6898],
PUP.Optional.Amazon1Button.AppFlsh, C:\Program Files (x86)\Amazon\Amazon1ButtonApp, , [a68e376745551f17b9bbc746d72e26da],
PUP.Optional.AmazonTB, C:\Users\katsa\AppData\Roaming\Mozilla\Firefox\Profiles\n1n83s74.default\jetpack\abb@amazon.com, , [b3818915cccece685c544666c0426f91],
PUP.Optional.AmazonTB, C:\Users\katsa\AppData\Roaming\Mozilla\Firefox\Profiles\n1n83s74.default\jetpack\abb@amazon.com\simple-storage, , [b3818915cccece685c544666c0426f91],
PUP.Optional.Booking, C:\Program Files\Booking.COM, , [d85cedb16c2e072f1a9c10a934d00ef2],
PUP.Optional.Booking, C:\Program Files\Booking.COM\Booking.com.lnk, , [d85cedb16c2e072f1a9c10a934d00ef2],
PUP.Optional.Booking, C:\Program Files\Booking.COM\Booking.ico, , [d85cedb16c2e072f1a9c10a934d00ef2],
PUP.Optional.Booking, C:\Program Files\Booking.COM\StartURL.exe, , [d85cedb16c2e072f1a9c10a934d00ef2],
PUP.Optional.Booking, C:\Program Files\Booking.COM\Version.txt, , [d85cedb16c2e072f1a9c10a934d00ef2],

Soubory: 79
PUP.Optional.Reimage, C:\Program Files\Reimage\Reimage Protector\ReiGuard.exe, , [34003965c5d543f36afeb3434bb9867a],
PUP.Optional.Reimage, C:\Program Files\Reimage\Reimage Protector\ReiSystem.exe, , [7eb60b93b8e273c35f09b83e3aca2fd1],
PUP.Optional.Reimage, C:\Program Files\Reimage\Reimage Repair\REI_Axcontrol.dll, , [c56fa7f7debc84b23b451adc0cf86f91],
PUP.Optional.Reimage, C:\Users\katsa\Downloads\ReimageRepair (1).exe, , [6fc5a1fdb1e9082e125646b008fc13ed],
PUP.Optional.Reimage, C:\Users\katsa\Downloads\ReimageRepair.exe, , [ad878717a1f90e289bcd44b2b25221df],
PUP.Optional.AmazonTB, C:\Users\katsa\AppData\Roaming\Mozilla\Firefox\Profiles\n1n83s74.default\extensions\abb@amazon.com.xpi, , [9f9576281b7f7db927ac85112ad913ed],
PUP.Optional.Booking, C:\Users\Public\Desktop\Booking.com.lnk, , [0232f1ad663447efb10c04b54cb88779],
PUP.Optional.Reimage, C:\Users\Public\Desktop\PC Scan & Repair by Reimage.lnk, , [80b48717188242f45515ad4935cf13ed],
PUP.Optional.Reimage, C:\Program Files\Reimage\Reimage Repair\Reimageicon.ico, , [bf7518869901fa3c0a61ac4a6a9a18e8],
PUP.Optional.Reimage, C:\Program Files\Reimage\Reimage Repair\LZMA.EXE, , [bf7518869901fa3c0a61ac4a6a9a18e8],
PUP.Optional.Reimage, C:\Program Files\Reimage\Reimage Repair\Reimage Repair.url, , [bf7518869901fa3c0a61ac4a6a9a18e8],
PUP.Optional.Reimage, C:\Program Files\Reimage\Reimage Repair\Reimage.exe, , [bf7518869901fa3c0a61ac4a6a9a18e8],
PUP.Optional.Reimage, C:\Program Files\Reimage\Reimage Repair\ReimageReminder.exe, , [bf7518869901fa3c0a61ac4a6a9a18e8],
PUP.Optional.Reimage, C:\Program Files\Reimage\Reimage Repair\ReimageRepair.exe, , [bf7518869901fa3c0a61ac4a6a9a18e8],
PUP.Optional.Reimage, C:\Program Files\Reimage\Reimage Repair\ReimageSafeMode.exe, , [bf7518869901fa3c0a61ac4a6a9a18e8],
PUP.Optional.Reimage, C:\Program Files\Reimage\Reimage Repair\Reimage_SafeMode.ico, , [bf7518869901fa3c0a61ac4a6a9a18e8],
PUP.Optional.Reimage, C:\Program Files\Reimage\Reimage Repair\Reimage_uninstall.ico, , [bf7518869901fa3c0a61ac4a6a9a18e8],
PUP.Optional.Reimage, C:\Program Files\Reimage\Reimage Repair\Reimage_website.ico, , [bf7518869901fa3c0a61ac4a6a9a18e8],
PUP.Optional.Reimage, C:\Program Files\Reimage\Reimage Repair\REI_AVIRA.exe, , [bf7518869901fa3c0a61ac4a6a9a18e8],
PUP.Optional.Reimage, C:\Program Files\Reimage\Reimage Repair\REI_AxControl.inf, , [bf7518869901fa3c0a61ac4a6a9a18e8],
PUP.Optional.Reimage, C:\Program Files\Reimage\Reimage Repair\REI_Axcontrol.lza, , [bf7518869901fa3c0a61ac4a6a9a18e8],
PUP.Optional.Reimage, C:\Program Files\Reimage\Reimage Repair\REI_Engine.dll, , [bf7518869901fa3c0a61ac4a6a9a18e8],
PUP.Optional.Reimage, C:\Program Files\Reimage\Reimage Repair\REI_Engine.lza, , [bf7518869901fa3c0a61ac4a6a9a18e8],
PUP.Optional.Reimage, C:\Program Files\Reimage\Reimage Repair\REI_SupportInfoTool.exe, , [bf7518869901fa3c0a61ac4a6a9a18e8],
PUP.Optional.Reimage, C:\Program Files\Reimage\Reimage Repair\savapi3.dll, , [bf7518869901fa3c0a61ac4a6a9a18e8],
PUP.Optional.Reimage, C:\Program Files\Reimage\Reimage Repair\uninst.exe, , [bf7518869901fa3c0a61ac4a6a9a18e8],
PUP.Optional.Reimage, C:\Program Files\Reimage\Reimage Repair\version.rei, , [bf7518869901fa3c0a61ac4a6a9a18e8],
PUP.Optional.Reimage, C:\Program Files\Reimage\Reimage Repair\Microsoft.VC90.CRT\Microsoft.VC90.CRT.manifest, , [bf7518869901fa3c0a61ac4a6a9a18e8],
PUP.Optional.Reimage, C:\Program Files\Reimage\Reimage Repair\Microsoft.VC90.CRT\msvcr90.dll, , [bf7518869901fa3c0a61ac4a6a9a18e8],
PUP.Optional.Reimage, C:\Program Files\Reimage\Reimage Protector\ProtectorUpdater.exe, , [bf7518869901fa3c0a61ac4a6a9a18e8],
PUP.Optional.Reimage, C:\Program Files\Reimage\Reimage Protector\ReiProtectorM.exe, , [bf7518869901fa3c0a61ac4a6a9a18e8],
PUP.Optional.Reimage, C:\Program Files\Reimage\Reimage Protector\ReiScanner.exe, , [bf7518869901fa3c0a61ac4a6a9a18e8],
PUP.Optional.Reimage, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Reimage Repair\Reimage Repair.lnk, , [5ed6dfbf7525e0562349b640f60ed729],
PUP.Optional.Reimage, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Reimage Repair\Help & Support.lnk, , [5ed6dfbf7525e0562349b640f60ed729],
PUP.Optional.Reimage, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Reimage Repair\Run in safe mode.lnk, , [5ed6dfbf7525e0562349b640f60ed729],
PUP.Optional.Reimage, C:\ProgramData\Reimage Protector\cfl.rei, , [87adcdd1e2b8a1952f3e7581857fb44c],
PUP.Optional.Reimage, C:\ProgramData\Reimage Protector\Results\ProtectorPackage.log, , [87adcdd1e2b8a1952f3e7581857fb44c],
PUP.Optional.Reimage, C:\ProgramData\Reimage Protector\Results\ProtectorUpdater.log, , [87adcdd1e2b8a1952f3e7581857fb44c],
PUP.Optional.Reimage, C:\ProgramData\Reimage Protector\Results\ScanAgent.log, , [87adcdd1e2b8a1952f3e7581857fb44c],
PUP.Optional.Reimage, C:\ProgramData\Reimage Protector\Results\ScanAgentDebugRepair.log, , [87adcdd1e2b8a1952f3e7581857fb44c],
PUP.Optional.Reimage, C:\ProgramData\Reimage Protector\Results\scan_agent_result_log.txt, , [87adcdd1e2b8a1952f3e7581857fb44c],
PUP.Optional.Reimage, C:\rei\AV\HBEDV.KEY, , [0e260c92f0aa59ddc8a66c8a5aaa6898],
PUP.Optional.Reimage, C:\rei\AV\avupdate.conf, , [0e260c92f0aa59ddc8a66c8a5aaa6898],
PUP.Optional.Reimage, C:\rei\AV\avupdate.exe, , [0e260c92f0aa59ddc8a66c8a5aaa6898],
PUP.Optional.Reimage, C:\rei\AV\avupdate_msg.avr, , [0e260c92f0aa59ddc8a66c8a5aaa6898],
PUP.Optional.Reimage, C:\rei\AV\savapi3_restart.exe, , [0e260c92f0aa59ddc8a66c8a5aaa6898],
PUP.Optional.Reimage, C:\rei\AV\savapi3_start.exe, , [0e260c92f0aa59ddc8a66c8a5aaa6898],
PUP.Optional.Reimage, C:\rei\AV\savapi3_stop.exe, , [0e260c92f0aa59ddc8a66c8a5aaa6898],
PUP.Optional.Reimage, C:\rei\AV\Microsoft.VC90.CRT\Microsoft.VC90.CRT.manifest, , [0e260c92f0aa59ddc8a66c8a5aaa6898],
PUP.Optional.Reimage, C:\rei\AV\Microsoft.VC90.CRT\msvcr90.dll, , [0e260c92f0aa59ddc8a66c8a5aaa6898],
PUP.Optional.Reimage, C:\rei\cfl.rei, , [0e260c92f0aa59ddc8a66c8a5aaa6898],
PUP.Optional.Reimage, C:\rei\rei1848nvt.ini, , [0e260c92f0aa59ddc8a66c8a5aaa6898],
PUP.Optional.Reimage, C:\rei\reimage.qsr, , [0e260c92f0aa59ddc8a66c8a5aaa6898],
PUP.Optional.Reimage, C:\rei\SupportInfoTool.ini, , [0e260c92f0aa59ddc8a66c8a5aaa6898],
PUP.Optional.Reimage, C:\rei\Results\EXE1.8.4.8\RUN20161025_1928\debug-repair-2.log, , [0e260c92f0aa59ddc8a66c8a5aaa6898],
PUP.Optional.Reimage, C:\rei\Results\EXE1.8.4.8\RUN20161025_1928\debug-repair.log, , [0e260c92f0aa59ddc8a66c8a5aaa6898],
PUP.Optional.Reimage, C:\rei\Results\EXE1.8.4.8\RUN20161025_1928\Info_EnvironmentVars.res, , [0e260c92f0aa59ddc8a66c8a5aaa6898],
PUP.Optional.Reimage, C:\rei\Results\EXE1.8.4.8\RUN20161025_1928\Info_Installed.rec, , [0e260c92f0aa59ddc8a66c8a5aaa6898],
PUP.Optional.Reimage, C:\rei\Results\EXE1.8.4.8\RUN20161025_1928\JunkScanRes.xml, , [0e260c92f0aa59ddc8a66c8a5aaa6898],
PUP.Optional.Reimage, C:\rei\Results\EXE1.8.4.8\RUN20161025_1928\out.log, , [0e260c92f0aa59ddc8a66c8a5aaa6898],
PUP.Optional.Reimage, C:\rei\Results\EXE1.8.4.8\RUN20161025_1928\RegistryScanRes.xml, , [0e260c92f0aa59ddc8a66c8a5aaa6898],
PUP.Optional.Reimage, C:\rei\Temp\20161025_1928\ApplicationList.ini, , [0e260c92f0aa59ddc8a66c8a5aaa6898],
PUP.Optional.Reimage, C:\Windows\System32\Tasks\Reimage Reminder, , [5ada8f0f52482b0b9ad5cd2944c0ba46],
PUP.Optional.Reimage, C:\Windows\System32\Tasks\ReimageUpdater, , [61d3d3cb633737ffed845c9a71930bf5],
PUP.Optional.Amazon1Button.AppFlsh, C:\Program Files (x86)\Amazon\Amazon1ButtonApp\Amazon1ButtonBrowserHelper.dll, , [a68e376745551f17b9bbc746d72e26da],
PUP.Optional.Amazon1Button.AppFlsh, C:\Program Files (x86)\Amazon\Amazon1ButtonApp\Amazon1ButtonBrowserHelper64.dll, , [a68e376745551f17b9bbc746d72e26da],
PUP.Optional.Amazon1Button.AppFlsh, C:\Program Files (x86)\Amazon\Amazon1ButtonApp\Amazon1ButtonRuntime.dll, , [a68e376745551f17b9bbc746d72e26da],
PUP.Optional.Amazon1Button.AppFlsh, C:\Program Files (x86)\Amazon\Amazon1ButtonApp\Amazon1ButtonService64.Exe, , [a68e376745551f17b9bbc746d72e26da],
PUP.Optional.Amazon1Button.AppFlsh, C:\Program Files (x86)\Amazon\Amazon1ButtonApp\AmazonAppIE.dll, , [a68e376745551f17b9bbc746d72e26da],
PUP.Optional.Amazon1Button.AppFlsh, C:\Program Files (x86)\Amazon\Amazon1ButtonApp\AmazonAppIE64.dll, , [a68e376745551f17b9bbc746d72e26da],
PUP.Optional.Amazon1Button.AppFlsh, C:\Program Files (x86)\Amazon\Amazon1ButtonApp\AmazonExtIE.dll, , [a68e376745551f17b9bbc746d72e26da],
PUP.Optional.Amazon1Button.AppFlsh, C:\Program Files (x86)\Amazon\Amazon1ButtonApp\AmazonExtIE64.dll, , [a68e376745551f17b9bbc746d72e26da],
PUP.Optional.Reimage, C:\Windows\Temp\reimage.log, , [2c08b1eda7f366d07d012ae83acb1ce4],
PUP.Optional.AmazonTB, C:\Users\katsa\AppData\Roaming\Mozilla\Firefox\Profiles\n1n83s74.default\jetpack\abb@amazon.com\simple-storage\store.json, , [b3818915cccece685c544666c0426f91],
PUP.Optional.Booking, C:\Program Files\Booking.COM\Booking.com.lnk, , [d85cedb16c2e072f1a9c10a934d00ef2],
PUP.Optional.Booking, C:\Program Files\Booking.COM\Booking.ico, , [d85cedb16c2e072f1a9c10a934d00ef2],
PUP.Optional.Booking, C:\Program Files\Booking.COM\StartURL.exe, , [d85cedb16c2e072f1a9c10a934d00ef2],
PUP.Optional.Booking, C:\Program Files\Booking.COM\Version.txt, , [d85cedb16c2e072f1a9c10a934d00ef2],
PUP.Optional.SpeedItUp, C:\Windows\Reimage.ini, , [0232c2dce0ba6acc546c7985b94bf30d],

Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)


(end)

[jaro3]

Spusť znovu AdwCleaner (u Windows Vista či Windows7, klikni na AdwCleaner pravým a vyber „Spustit jako správce“
klikni na „Scan“, po prohledání klikni na „ Clean“

Program provede opravu, po automatickém restartu klikni na „Log Manager“ a pak poklepej na odpovídají log, (C:\AdwCleaner [C?].txt) , jeho obsah sem celý vlož.

Stáhni si Junkware Removal Tool by Thisisu
http://www.bleepingcomputer.com/downloa ... oval-tool/
na svojí plochu.

Deaktivuj si svůj antivirový program. Pravým tl. myši klikni na JRT.exe a vyber „spustit jako správce“. Pro pokračování budeš vyzván ke stisknutí jakékoliv klávesy. Na nějakou klikni.
Začne skenování programu. Skenování může trvat dloho , podle množství nákaz. Po ukončení skenu se objeví log (JRT.txt) , který se uloží na ploše.
Zkopíruj sem prosím celý jeho obsah.

. spusť znovu Malwarebytes' Anti-Malware a dej Skenovat nyní
- po proběhnutí programu se ti objeví hláška tak klikni na „Vše do karantény(smazat vybrané)“ a na „Exportovat záznam“ a vyber „textový soubor“ , soubor nějak pojmenuj a někam ho ulož. Zkopíruj se celý obsah toho logu.

Sophos Virus Removal Tool je praktický softwarový nástroj, který by mohl odstranit infekce, které antivirový program nedetekuje .
Stáhněte si ho zde z některého odkazu:
http://www.majorgeeks.com/mg/get/sophos ... ool,1.html
http://www.majorgeeks.com/mg/getmirror/ ... ool,1.html
http://www.majorgeeks.com/mg/getmirror/ ... ool,2.html

Viry mohou zpomalit počítač, nebo se snaží ukrást vaše data, a ani nevíte , že je máte. Co potřebujete, je rychlý a snadný způsob, jak je najít a zbavit se jich, pokud již máte antivirový program v počítači nainstalován , můžete nainstalovat i nástroj Sophos Virus Removal , který identifikuje a vyčistí zbylé infekce, které mohl Váš antivirový program přehlédnout.
K použití Sophos Virus Removal Tool na něj poklepejte a stiskněte tlačítko „Start scanning“ . Pak bude Sophos Virus Removal Tool vyhledávat a odstraňovat viry, které najde. Může být vyžadován restart.

Stáhni si RogueKiller by Adlice Software
32bit.:
http://www.adlice.com/download/roguekil ... HlwZT14ODY

64bit.:
http://www.adlice.com/download/roguekil ... HlwZT14NjQ
na svojí plochu.
- Zavři všechny ostatní programy a prohlížeče.
- Pro OS Vista a win7,8,10 spusť program RogueKiller.exe jako správce , u XP poklepáním.
- klikni na „Start Scan“. V novém okně nic neměň a klikni dole na „Start Scan“
- Program skenuje procesy PC. Po proskenování klikni na „Open Report “ , v okně pak na „Open TXT“ a celý obsah logu sem zkopíruj.
Pokud je program blokován , zkus ho spustit několikrát. Pokud dále program nepůjde spustit a pracovat, přejmenuj ho na winlogon.exe.
-pokud bude mít log více než 60.000 znaků , rozděl ho a vlož do více příspěvků

[Kat1]

Děkuji, jdu na to.
Ještě jedna věc, je to uplně novy PC, jsem připojena k domaci siti, kde jsou připojena i dalších zařízení. (dcery PC, další PC, který slouží jen jako mediacentr. pro videa...) Jen asi u tří mi Eset hlásí nebezpečnou komunikaci a po kontrole routeru mi Eset hlassi toto:
! Otevřené síťové služby! Na Vašem routeru jsou povoleny síťové služby, které mohou ostatní zneužít. Může se jednat o chybnou konfiguraci nebo je váš router kompromitován. Zkontrolujte konfiguraci svého routeru. Port :23, Služba: TELNET, TCP.
Vložím logy dle instrukcí. Zatím děkuji

[Kat1]

# AdwCleaner v6.030 - Log soubor vytvořen 28/10/2016 na 13:53:51
# Aktualizováno dne 19/10/2016 z Malwarebytes
# Databáze : 2016-10-28.1 [Server]
# Operační systém : Windows 10 Home (X64)
# Uživatelské jméno : Kata - DESKTOP-86EG2A2
# Beží od : C:\Users\katsa\Desktop\PC H\AdwCleaner.exe
# Mod: Čištění
# Podpora : hxxps://www.malwarebytes.com/support



***** [ Služby ] *****

[-] Služby smazány:ReimageRealTimeProtector
[-] Služby smazány:Amazon 1Button App Service


***** [ Adresáře ] *****

[-] Adresář smazán:C:\Program Files\Reimage
[-] Adresář smazán:C:\Program Files\Booking.com
[-] Adresář smazán:C:\Program Files\DriverSetupUtility
[-] Adresář smazán:C:\rei
[-] Adresář smazán:C:\ProgramData\Reimage Protector
[-] Adresář smazán:C:\ProgramData\SecTaskMan
[-] Adresář smazán:C:\ProgramData\DriverSetupUtility
[#] Adresář nelze smazat:C:\ProgramData\Application Data\Reimage Protector
[#] Adresář nelze smazat:C:\ProgramData\Application Data\SecTaskMan
[#] Adresář nelze smazat:C:\ProgramData\Application Data\DriverSetupUtility
[-] Adresář smazán:C:\ProgramData\Microsoft\Windows\Start Menu\Programs\reimage repair
[-] Adresář smazán:C:\Program Files (x86)\Amazon\Amazon1ButtonApp


***** [ Soubory ] *****

[-] Soubor smazán:C:\Users\Public\Desktop\PC Scan & Repair by Reimage.lnk
[-] Soubor smazán:C:\Users\Public\Desktop\Booking.com.lnk
[-] Soubor smazán:C:\Windows\Reimage.ini
[-] Soubor smazán:C:\Users\katsa\AppData\Roaming\Mozilla\Firefox\Profiles\n1n83s74.default\extensions\abb@amazon.com.xpi


***** [ DLL ] *****



***** [ WMI ] *****



***** [ Zástupce ] *****



***** [ Plánovač úloh ] *****



***** [ Registry ] *****

[-] Klíč smazán:HKLM\SOFTWARE\Classes\Amazon1ButtonBrowserHelper.Amazon1ButtonBHO
[-] Klíč smazán:HKLM\SOFTWARE\Classes\Amazon1ButtonRuntime.Amazon1ButtonRuntime
[-] Klíč smazán:HKLM\SOFTWARE\Classes\Amazon1ButtonRuntime.AmazonRuntimeServer
[-] Klíč smazán:HKLM\SOFTWARE\Classes\AmazonAppIE.AppGateway
[-] Klíč smazán:HKLM\SOFTWARE\Classes\AmazonAppIE.GadgetGateway
[-] Klíč smazán:HKLM\SOFTWARE\Classes\REI_AxControl.ReiEngine
[-] Klíč smazán:HKLM\SOFTWARE\Classes\REI_AxControl.ReiEngine.1
[#] Klíč smazán po restartování:[x64] HKLM\SOFTWARE\Classes\Amazon1ButtonBrowserHelper.Amazon1ButtonBHO
[#] Klíč smazán po restartování:[x64] HKLM\SOFTWARE\Classes\Amazon1ButtonRuntime.Amazon1ButtonRuntime
[#] Klíč smazán po restartování:[x64] HKLM\SOFTWARE\Classes\Amazon1ButtonRuntime.AmazonRuntimeServer
[#] Klíč smazán po restartování:[x64] HKLM\SOFTWARE\Classes\AmazonAppIE.AppGateway
[#] Klíč smazán po restartování:[x64] HKLM\SOFTWARE\Classes\AmazonAppIE.GadgetGateway
[#] Klíč smazán po restartování:[x64] HKLM\SOFTWARE\Classes\REI_AxControl.ReiEngine
[#] Klíč smazán po restartování:[x64] HKLM\SOFTWARE\Classes\REI_AxControl.ReiEngine.1
[-] Klíč smazán:HKLM\SOFTWARE\Classes\AppID\{28FF42B8-A0DA-4BE5-9B81-E26DD59B350A}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\AppID\{7F46C358-270D-4791-A579-AD1DDA1A3F7B}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\CLSID\{BAC72C85-CEC6-4B86-AF06-FA20C259FAB8}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\CLSID\{BD6ECB00-7C4A-4F97-B425-44117F2A7AAE}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\CLSID\{6557DB6C-EFE1-45AC-92A6-FBB1554B7502}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\CLSID\{E4ADC61E-D06A-4E0E-8582-78C809CC8450}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\Interface\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\Interface\{BD51A48E-EB5F-4454-8774-EF962DF64546}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\Interface\{7BCA6879-A9F8-47DE-AE05-F5CE7EA3A474}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\TypeLib\{FA6468D2-FAA4-4951-A53B-2A5CF9CC0A36}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\TypeLib\{ADF1FA2A-6EAA-4A97-A55F-3C8B92843EF5}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\TypeLib\{EB2BEAEF-150C-4DE4-9D09-F16403C22769}
[-] Klíč smazán:HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BD6ECB00-7C4A-4F97-B425-44117F2A7AAE}
[-] Klíč smazán:HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BD6ECB00-7C4A-4F97-B425-44117F2A7AAE}
[-] Klíč smazán:HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{10ECCE17-29B5-4880-A8F5-EAD298611484}
[-] Klíč smazán:HKU\S-1-5-21-3329389640-1170051626-684001770-1001\Software\Reimage
[-] Klíč smazán:HKU\S-1-5-21-3329389640-1170051626-684001770-1001\Software\Local AppWizard-Generated Applications\Reimage - Windows Problem Relief.
[#] Klíč smazán po restartování:HKCU\Software\Reimage
[#] Klíč smazán po restartování:HKCU\Software\Local AppWizard-Generated Applications\Reimage - Windows Problem Relief.
[-] Klíč smazán:HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{B6DCCCD3-520D-4485-B642-FCC136CE12C3}
[#] Klíč smazán po restartování:[x64] HKCU\Software\Reimage
[#] Klíč smazán po restartování:[x64] HKCU\Software\Local AppWizard-Generated Applications\Reimage - Windows Problem Relief.
[-] Klíč smazán:[x64] HKLM\SOFTWARE\Reimage
[-] Klíč smazán:[x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Reimage Repair
[-] Klíč smazán:HKLM\SOFTWARE\Classes\Installer\Features\3DCCCD6BD02558446B24CF1C63EC213C
[-] Klíč smazán:HKLM\SOFTWARE\Classes\Installer\Features\A38C15B2D5649AE4C9CDE19DE50DA96C
[-] Klíč smazán:HKLM\SOFTWARE\Classes\Installer\Products\3DCCCD6BD02558446B24CF1C63EC213C
[-] Klíč smazán:HKLM\SOFTWARE\Classes\Installer\Products\A38C15B2D5649AE4C9CDE19DE50DA96C
[-] Klíč smazán:[x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\3DCCCD6BD02558446B24CF1C63EC213C
[-] Klíč smazán:[x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A38C15B2D5649AE4C9CDE19DE50DA96C
[#] Klíč smazán po restartování:[x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\3DCCCD6BD02558446B24CF1C63EC213C
[#] Klíč smazán po restartování:[x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A38C15B2D5649AE4C9CDE19DE50DA96C
[#] Klíč smazán po restartování:[x64] HKLM\SOFTWARE\Classes\Installer\Features\3DCCCD6BD02558446B24CF1C63EC213C
[#] Klíč smazán po restartování:[x64] HKLM\SOFTWARE\Classes\Installer\Features\A38C15B2D5649AE4C9CDE19DE50DA96C
[#] Klíč smazán po restartování:[x64] HKLM\SOFTWARE\Classes\Installer\Products\3DCCCD6BD02558446B24CF1C63EC213C
[#] Klíč smazán po restartování:[x64] HKLM\SOFTWARE\Classes\Installer\Products\A38C15B2D5649AE4C9CDE19DE50DA96C
[-] Klíč smazán:HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\amazonbrowserapp.com
[-] Klíč smazán:HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\analytics.app.amazonbrowserapp.com
[#] Klíč smazán po restartování:[x64] HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\amazonbrowserapp.com
[#] Klíč smazán po restartování:[x64] HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\analytics.app.amazonbrowserapp.com
[-] Klíč smazán:HKLM\SOFTWARE\Classes\AppID\REI_AxControl.DLL
[-] Klíč smazán:HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\Reimage.exe
[-] Klíč smazán:HKLM\SOFTWARE\Classes\AppID\OverlayIcon.DLL


***** [ Prohlížeče ] *****



*************************

:: "Tracing" klíč smazán
:: Winsock nastavení vyčištěno

*************************

C:\AdwCleaner\AdwCleaner[C0].txt - [7540 Bajtů] - [28/10/2016 13:53:51]
C:\AdwCleaner\AdwCleaner[S0].txt - [7556 Bajtů] - [27/10/2016 22:23:53]
C:\AdwCleaner\AdwCleaner[S1].txt - [7635 Bajtů] - [28/10/2016 13:51:30]

########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [7762 Bajtů] ##########

[Kat1]

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.0.9 (09.30.2016)
Operating System: Windows 10 Home x64
Ran by Kata (Administrator) on 28.10.2016 at 14:04:51,09
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




File System: 0




Registry: 1

Successfully deleted: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{62521ACA-0F8D-471D-9AD4-4A5320AAD957} (Registry Key)




~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 28.10.2016 at 14:08:30,18
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

[Kat1]

Malwarebytes Anti-Malware
www.malwarebytes.org

Datum skenování: 28.10.2016
Čas skenování: 14:17
Protokol: mbscan.txt
Správce: Ano

Verze: 2.2.1.1043
Databáze malwaru: v2016.10.28.07
Databáze rootkitů: v2016.09.26.02
Licence: Bezplatná verze
Ochrana proti malwaru: Vypnuto
Ochrana proti škodlivým webovým stránkám: Vypnuto
Ochrana programu: Vypnuto

OS: Windows 10
CPU: x64
Souborový systém: NTFS
Uživatel: Kata

Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 285375
Uplynulý čas: 7 min, 29 sek

Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto

Procesy: 0
(Nenalezeny žádné škodlivé položky)

Moduly: 0
(Nenalezeny žádné škodlivé položky)

Klíče registru: 2
PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\CLSID\{10ECCE17-29B5-4880-A8F5-EAD298611484}, Do karantény, [abecc4dab7e3f93d4937fbfbe81c8c74],
PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\CLSID\{801B440B-1EE3-49B0-B05D-2AB076D4E8CB}, Do karantény, [ecab6638b8e2b185f68b43b319eba759],

Hodnoty registru: 0
(Nenalezeny žádné škodlivé položky)

Data registru: 0
(Nenalezeny žádné škodlivé položky)

Složky: 2
PUP.Optional.AmazonTB, C:\Users\katsa\AppData\Roaming\Mozilla\Firefox\Profiles\n1n83s74.default\jetpack\abb@amazon.com, Do karantény, [0b8cdfbf7921b2846947d7d510f2b34d],
PUP.Optional.AmazonTB, C:\Users\katsa\AppData\Roaming\Mozilla\Firefox\Profiles\n1n83s74.default\jetpack\abb@amazon.com\simple-storage, Do karantény, [0b8cdfbf7921b2846947d7d510f2b34d],

Soubory: 4
PUP.Optional.Reimage, C:\Users\katsa\Downloads\ReimageRepair (1).exe, Do karantény, [6334613d2c6e7eb83b2dc82ee91b30d0],
PUP.Optional.Reimage, C:\Users\katsa\Downloads\ReimageRepair.exe, Do karantény, [8a0d6638efabb185fb6de0162dd752ae],
PUP.Optional.Reimage, C:\Windows\Temp\reimage.log, Do karantény, [1582fda1e2b89f9788f6d83a51b4eb15],
PUP.Optional.AmazonTB, C:\Users\katsa\AppData\Roaming\Mozilla\Firefox\Profiles\n1n83s74.default\jetpack\abb@amazon.com\simple-storage\store.json, Do karantény, [0b8cdfbf7921b2846947d7d510f2b34d],

Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)


(end)

[Kat1]

RogueKiller V12.7.4.0 (x64) [Oct 24 2016] (Free) by Adlice Software
mail : http://www.adlice.com/contact/
Feedback : http://forum.adlice.com
Webová stránka : http://www.adlice.com/download/roguekiller/
Blog : http://www.adlice.com

Operační systém : Windows 10 (10.0.10240) 64 bits version
Spuštěno : Normální režim
Uživatel : Kata [Práva správce]
Started from : C:\Users\katsa\Desktop\RogueKillerX64.exe
Mód : Prohledat -- Datum : 10/28/2016 17:39:02 (Duration : 00:33:06)

¤¤¤ Procesy : 0 ¤¤¤

¤¤¤ Registry : 9 ¤¤¤
[PUP] (X64) HKEY_CLASSES_ROOT\CLSID\{BAC72C85-CEC6-4B86-AF06-FA20C259FAB8} (C:\Program Files (x86)\Amazon\Amazon1ButtonApp\Amazon1ButtonBrowserHelper64.dll) -> Nalezeno
[PUP] (X64) HKEY_CLASSES_ROOT\CLSID\{BD6ECB00-7C4A-4F97-B425-44117F2A7AAE} (C:\Program Files (x86)\Amazon\Amazon1ButtonApp\AmazonAppIE64.dll) -> Nalezeno
[PUM.HomePage] (X64) HKEY_USERS\S-1-5-21-3329389640-1170051626-684001770-1001\Software\Microsoft\Internet Explorer\Main | Start Page : http://acer15.msn.com/?pc=ACTE -> Nalezeno
[PUM.HomePage] (X86) HKEY_USERS\S-1-5-21-3329389640-1170051626-684001770-1001\Software\Microsoft\Internet Explorer\Main | Start Page : http://acer15.msn.com/?pc=ACTE -> Nalezeno
[PUM.HomePage] (X64) HKEY_USERS\S-1-5-21-3329389640-1170051626-684001770-1001\Software\Microsoft\Internet Explorer\Main | Default_Page_URL : http://acer15.msn.com/?pc=ACTE -> Nalezeno
[PUM.HomePage] (X86) HKEY_USERS\S-1-5-21-3329389640-1170051626-684001770-1001\Software\Microsoft\Internet Explorer\Main | Default_Page_URL : http://acer15.msn.com/?pc=ACTE -> Nalezeno
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters | DhcpNameServer : 10.0.0.138 ([]) -> Nalezeno
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{364100f9-acc4-4a55-a2f1-024d157ac6fc} | DhcpNameServer : 192.18.128.24 ([United States]) -> Nalezeno
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{44be4530-bf95-42eb-a6dd-3e2e1d363bcf} | DhcpNameServer : 10.0.0.138 ([]) -> Nalezeno

¤¤¤ Úlohy : 0 ¤¤¤

¤¤¤ Soubory : 0 ¤¤¤

¤¤¤ WMI : 0 ¤¤¤

¤¤¤ Soubor HOSTS : 0 ¤¤¤

¤¤¤ Antirootkit : 0 (Driver: Nahrán) ¤¤¤

¤¤¤ Webové prohlížeče : 1 ¤¤¤
[PUP][FIREFX:Addon] n1n83s74.default : Amazon Assistant for Firefox [abb@amazon.com] -> Nalezeno

¤¤¤ Kontrola MBR : ¤¤¤
+++++ PhysicalDrive0: Hynix HBG4e +++++
--- User ---
[MBR] 2965a66a5f6aa2dfcbcf7a829ff62499
[BSP] af3cfc53a4b23753efaf943ddc91a04f : Empty|VT.Unknown MBR Code
Partition table:
0 - [MAN-MOUNT] EFI system partition | Offset (sectors): 2048 | Size: 100 MB
1 - [MAN-MOUNT] Microsoft reserved partition | Offset (sectors): 206848 | Size: 16 MB
2 - Basic data partition | Offset (sectors): 239616 | Size: 29206 MB
3 - [SYSTEM][MAN-MOUNT] Basic data partition | Offset (sectors): 60053504 | Size: 500 MB
User = LL1 ... OK
Error reading LL2 MBR! ([1] Nesprávná funkce. )