Počítač se neuvěřitelně zasekává,nereaguje a neodpovídá !

[TrolLCZE]

Napsal jsem ten samý topic pro jistotu ještě na forum viry.cz mám postupovat podle nich, říkají abych udělal log z FRSTLauncheru :) mám to udělat nebo se mám držet vašimi kroky ?

[Reklama]

[jerabina]

Je nesmysl postupovat podle 2 fór .. Jestli souhlasíte, dočistil bych to tady, když jsme tu začali ... Na FRST se také časem dostane pokud bude potřeba.

Zavři všechny programy a prohlížeče. Deaktivuj antivir a firewall.
Prosím, odpoj všechny USB (kromě myši s klávesnice) nebo externí disky z počítače před spuštěním tohoto programu.
Spusť znovu RogueKiller ( Pro Windows Vista nebo Windows 7, klepni pravým a vyber "Spustit jako správce", ve Windows XP poklepej ke spuštění).
- Počkej, až Prescan dokončí práci...
- Pak klikni na "Prohledat " ,po jeho skončení:
- V záložkách (Registry , Tasks , Web Browser apod.) vše zatrhni (dej zatržítka)
(musíš dát myší zatržítko do toho čtverečku vlevo od registru ap.)
- Klikni na "Smazat"
- Počkej, dokud Status box nezobrazí " Mazání dokončeno "
- Klikni na "Zpráva " a zkopíruj a vlož obsah té zprávy prosím sem. Log je možno nalézt v RKreport [číslo]. txt na ploše.
- Zavři RogueKiller

Vypni antivir
Stáhni
Zoek.exe

a uloz si ho na plochu.
Zavři všechny ostatní programy , okna i prohlížeče.
Spusť Zoek.exe ( u win vista , win7, 8 klikni na něj pravým a vyber : „Spustit jako správce“
- pozor , náběh programu může trvat déle.

Do okna programu vlož skript níže:

Kód: Vybrat vše

autoclean;
emptyclsid;
iedefaults;
FFdefaults;
CHRdefaults;
emptyalltemp;
resethosts;

klikni na Run Script
Program provede sken , opravu, sken i oprava může trvat i více minut ,je třeba posečkat do konce. Do okna neklikej!
Program nabídne restart , potvrď .

Po restartu se může nějaký čas ukázat pouze černá plocha , to je normální. Je třeba počkat až se vytvoří log. Ten si můžeš uložit třeba do dokumentů , jinak se sám ukládá do:
C:\zoek-results.log
Zkopíruj sem celý obsah toho logu.

Vlož nový log z HJT + informuj o problémech.

[TrolLCZE]

Zde je log z RogueKiller omlouvám se za čas ale docela dlouho to trvalo :)

RogueKiller V10.6.5.0 (x64) [May 20 2015] by Adlice Software
mail : http://www.adlice.com/contact/
Feedback : http://forum.adlice.com
Website : http://www.adlice.com/softwares/roguekiller/
Blog : http://www.adlice.com

Operating System : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Started in : Normal mode
User : Lukin [Administrator]
Started from : C:\Program Files\RogueKiller\RogueKiller.exe
Mode : Scan -- Date : 05/23/2015 15:48:53

¤¤¤ Processes : 0 ¤¤¤

¤¤¤ Registry : 17 ¤¤¤
[PUM.Orphan] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad | WebCheck : {E6FB5E20-DE35-11CF-9C87-00AA005127ED} -> Found
[PUM.Orphan] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad | WebCheck : {E6FB5E20-DE35-11CF-9C87-00AA005127ED} -> Found
[PUM.Orphan] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ SkyDrive1 | (default) : {F241C880-6982-4CE5-8CF7-7085BA96DA5A} -> Found
[PUM.Orphan] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ SkyDrive2 | (default) : {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} -> Found
[PUM.Orphan] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ SkyDrive3 | (default) : {BBACC218-34EA-4666-9D7A-C78F2274A524} -> Found
[PUM.Orphan] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ SkyDrive1 | (default) : {F241C880-6982-4CE5-8CF7-7085BA96DA5A} -> Found
[PUM.Orphan] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ SkyDrive2 | (default) : {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} -> Found
[PUM.Orphan] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ SkyDrive3 | (default) : {BBACC218-34EA-4666-9D7A-C78F2274A524} -> Found
[PUM.Orphan] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> Found
[PUM.Orphan] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9} -> Found
[PUM.Orphan] (X86) HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{92780B25-18CC-41C8-B9BE-3C9C571A8263} | CLSID : {E0DD6CAB-2D10-11D2-8F1A-0000F87ABD16} -> Found
[PUP] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run | vProt : "C:\Program Files (x86)\AVG SafeGuard toolbar\vprot.exe" [x] -> Found
[PUP] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run | ApnTBMon : "C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe" [x] -> Found
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> Found
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> Found
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> Found
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> Found

¤¤¤ Tasks : 0 ¤¤¤

¤¤¤ Files : 0 ¤¤¤

¤¤¤ Hosts File : 0 ¤¤¤

¤¤¤ Antirootkit : 1 (Driver: Loaded) ¤¤¤
[IRP:Addr(Hook.IRP)] \SystemRoot\System32\drivers\mountmgr.sys - IRP_MJ_CREATE[0] : C:\Windows\System32\drivers\ataport.sys @ 0xc21878

¤¤¤ Web browsers : 0 ¤¤¤

¤¤¤ MBR Check : ¤¤¤
+++++ PhysicalDrive0: WDC WD3200BEVT-22A23T0 ATA Device +++++
--- User ---
[MBR] b73036e31826a14203719c5712146334
[BSP] 29d3db720601a3df0c29ff17eba5b97b : Windows Vista/7/8 MBR Code
Partition table:
0 - [XXXXXX] ACER (0x27) [VISIBLE] Offset (sectors): 2048 | Size: 15000 MB
1 - [ACTIVE] ACER (0x27) [VISIBLE] Offset (sectors): 30722048 | Size: 100 MB
2 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 30926848 | Size: 70000 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
3 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 174286848 | Size: 220143 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
User = LL1 ... OK
User = LL2 ... OK


============================================
RKreport_SCN_05232015_115234.log


TOTO JE K SCANU Z REGISTRŮ

[TrolLCZE]

TOTO JE SCAN TASKS NIC MI TO NENAŠLO ALE POSÍLÁM LOG
RogueKiller V10.6.5.0 (x64) [May 20 2015] by Adlice Software
mail : http://www.adlice.com/contact/
Feedback : http://forum.adlice.com
Website : http://www.adlice.com/softwares/roguekiller/
Blog : http://www.adlice.com

Operating System : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Started in : Normal mode
User : Lukin [Administrator]
Started from : C:\Program Files\RogueKiller\RogueKiller.exe
Mode : Scan -- Date : 05/23/2015 16:03:52

¤¤¤ Processes : 0 ¤¤¤

¤¤¤ Registry : 0 ¤¤¤

¤¤¤ Tasks : 0 ¤¤¤

¤¤¤ Files : 0 ¤¤¤

¤¤¤ Hosts File : 0 ¤¤¤

¤¤¤ Antirootkit : 0 (Driver: Loaded) ¤¤¤

¤¤¤ Web browsers : 0 ¤¤¤

¤¤¤ MBR Check : ¤¤¤
+++++ PhysicalDrive0: WDC WD3200BEVT-22A23T0 ATA Device +++++
--- User ---
[MBR] b73036e31826a14203719c5712146334
[BSP] 29d3db720601a3df0c29ff17eba5b97b : Windows Vista/7/8 MBR Code
Partition table:
0 - [XXXXXX] ACER (0x27) [VISIBLE] Offset (sectors): 2048 | Size: 15000 MB
1 - [ACTIVE] ACER (0x27) [VISIBLE] Offset (sectors): 30722048 | Size: 100 MB
2 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 30926848 | Size: 70000 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
3 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 174286848 | Size: 220143 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
User = LL1 ... OK
User = LL2 ... OK


============================================
RKreport_SCN_05232015_115234.log - RKreport_SCN_05232015_154853.log - RKreport_DEL_05232015_155344.log - RKreport_DEL_05232015_155359.log
RKreport_DEL_05232015_155408.log

[TrolLCZE]

TOT JE POSLEDNÍ LOG :) INTERNET BROWSER OPĚT NENAŠEL CHYBU

Feedback : http://forum.adlice.com
Website : http://www.adlice.com/softwares/roguekiller/
Blog : http://www.adlice.com

Operating System : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Started in : Normal mode
User : Lukin [Administrator]
Started from : C:\Program Files\RogueKiller\RogueKiller.exe
Mode : Scan -- Date : 05/23/2015 16:11:12

¤¤¤ Processes : 0 ¤¤¤

¤¤¤ Registry : 0 ¤¤¤

¤¤¤ Tasks : 0 ¤¤¤

¤¤¤ Files : 0 ¤¤¤

¤¤¤ Hosts File : 0 ¤¤¤

¤¤¤ Antirootkit : 0 (Driver: Loaded) ¤¤¤

¤¤¤ Web browsers : 0 ¤¤¤

¤¤¤ MBR Check : ¤¤¤
+++++ PhysicalDrive0: WDC WD3200BEVT-22A23T0 ATA Device +++++
--- User ---
[MBR] b73036e31826a14203719c5712146334
[BSP] 29d3db720601a3df0c29ff17eba5b97b : Windows Vista/7/8 MBR Code
Partition table:
0 - [XXXXXX] ACER (0x27) [VISIBLE] Offset (sectors): 2048 | Size: 15000 MB
1 - [ACTIVE] ACER (0x27) [VISIBLE] Offset (sectors): 30722048 | Size: 100 MB
2 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 30926848 | Size: 70000 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
3 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 174286848 | Size: 220143 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
User = LL1 ... OK
User = LL2 ... OK


============================================
RKreport_SCN_05232015_115234.log - RKreport_SCN_05232015_154853.log - RKreport_DEL_05232015_155344.log - RKreport_DEL_05232015_155359.log
RKreport_DEL_05232015_155408.log - RKreport_SCN_05232015_160352.log

[jerabina]

Dobrý, tak ještě prosím Zoek + nový log z HJT

[TrolLCZE]

HJT - Můžu se zeptat co ta zkratka znamená ? nevím co to je myslíš ten HiJackTool ?

[TrolLCZE]

Tady je Zoek


Zoek.exe v5.0.0.0 Updated 04-May-2015
Tool run by Lukin on so 23.05.2015 at 16:17:07,69.
Microsoft Windows 7 Ultimate 6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Lukin\Downloads\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

23.5.2015 16:19:53 Zoek.exe System Restore Point Created Successfully.

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

# localhost name resolution is handled within DNS itself.
127.0.0.1 localhost
::1 localhost

==== Empty Folders Check ======================

C:\PROGRA~2\Seznam.cz deleted successfully
C:\PROGRA~2\COMMON~1\Symantec Shared deleted successfully
C:\PROGRA~3\Oracle deleted successfully
C:\PROGRA~3\{01BD4FC9-2F86-4706-A62E-774BB7E9D308} deleted successfully
C:\Users\Lenka\AppData\Roaming\spidla deleted successfully
C:\Users\Lenka\AppData\Roaming\Windows Live Writer deleted successfully
C:\Users\Lukin\AppData\Roaming\Publish Providers deleted successfully
C:\Users\Lenka\AppData\Local\dumps deleted successfully
C:\Users\Lukin\AppData\Local\WMTools Downloaded Files deleted successfully

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================


==== Deleting Files \ Folders ======================

C:\PROGRA~2\Seznam.cz not found
C:\PROGRA~3\{01BD4FC9-2F86-4706-A62E-774BB7E9D308} not found
C:\PROGRA~3\Špidla Data Processing, s.r.o not found
C:\extensions.sqlite deleted
C:\extensions.ini deleted
C:\found.000 deleted
C:\PROGRA~3\InstallMate deleted
C:\PROGRA~3\Package Cache deleted
C:\windows\sysWoW64\config\systemprofile\AppData\LocalLow\AVG SafeGuard toolbar deleted
C:\windows\SysNative\config\systemprofile\Searches deleted
C:\windows\SysNative\GroupPolicy\Machine deleted
C:\windows\SysNative\GroupPolicy\User deleted
C:\windows\SysNative\GroupPolicy\GPT.INI deleted
C:\windows\Syswow64\GroupPolicy\gpt.ini deleted
C:\Users\Lenka\Documents\Optimizer Pro deleted
"C:\PROGRA~3\chccaanobeielkcgjmmdidnefjdkibag\chccaanobeielkcgjmmdidnefjdkibag.crx" deleted
"C:\PROGRA~3\chccaanobeielkcgjmmdidnefjdkibag\update.xml" deleted
"C:\PROGRA~3\chccaanobeielkcgjmmdidnefjdkibag" deleted

==== Chromium Look ======================

Google Chrome Version: 43.0.2357.65

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
lifbcibllhkdhoafpjfnlhfpfgnpldfl - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx[14.07.2014 18:22]

Angry Birds - Lenka\AppData\Local\Google\Chrome\User Data\Default\Extensions\aknpkdffaafgjchaibgeefbgmgeghloj
Windows 8 Modern UI - Lenka\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcoamefecbfbadpnhnlbbkndnhdibgge
Bookmark Manager - Lukin\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmlllbghnfkpflemihljekbapjopfjik
Ask Toolbar - C:\windows\sysWoW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajpkhjdkhhnkmgfjodbkfpbmibkkk
BetterSurf Plus V1 - C:\windows\sysWoW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajadlheagenmmedmhaoafgkdenfilcme
Webexp Enhanced - C:\windows\sysWoW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\cimfjifjpkgekabopkgchpihgijpijlh
BetterSrf - C:\windows\sysWoW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\poheodfamflhhhdcmjfeggbgigeefaco

==== Chromium Startpages ======================

C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Preferences
"homepage": "https://www.seznam.cz/",
"startup_urls": [ "http://www.windowsxlive.net/", "https://www.seznam.cz/" ]

C:\Users\Lukin\AppData\Local\Google\Chrome\User Data\Default\Preferences
8782671","location":10,"manifest":{"app":{"background":{"scripts":["craw_background.js"]}},"current_locale":"cs","default_locale":"en","description":"Peněženka Google pro digitální zboží","display_in_launcher":false,"display_in_new_tab_page":false,"icons":{"128":"images/icon_128.png","16":"images/icon_16.png"},"key":"MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCrKfMnLqViEyokd1wk57FxJtW2XXpGXzIHBzv9vQI/01UsuP0IV5/lj0wx7zJ/xcibUgDeIxobvv9XD+zO1MdjMWuqJFcKuSS4Suqkje6u+pMrTSGOSHq1bmBVh0kpToN8YoJs/P/yrRd7FEtAXTaFTGxQL4C385MeXSjaQfiRiQIDAQAB","manifest_version":2,"minimum_chrome_version":"29","name":"Peněženka Google","oauth2":{"auto_approve":true,"client_id":"203784468217.apps.googleusercontent.com","scopes":["https://www.googleapis.com/auth/sierra","https://www.googleapis.com/auth/sierrasandbox","https://www.googleapis.com/auth/chromewebstore","https://www.googleapis.com/auth/chromewebstore.readonly"]},"permissions":["identity","webview","https://wallet.google.com/","https://wallet-web.sandbox.google.com/","https://www.google.com/","https://www.googleapis.com/*"],"update_url":"https://clients2.google.com/service/update2/crx","version":"0.1.1.0"},"path":"nmmhkkegccagdldgiimedpiccmgmieda\\0.1.1.0_0","preferences":{},"regular_only_preferences":{},"running":false,"state":1,"was_installed_by_default":true,"was_installed_by_oem":false},"pafkbggdmjlpgkdkcbjmhmfcdpncadgh":{"active_permissions":{"api":["alarms","gcm","identity","metricsPrivate","notifications","storage","tabs","webstorePrivate"],"explicit_host":["*://*.google.com/*","*://*.gstatic.com/*","https://*.googleapis.com/*","https://*.googleusercontent.com/*"],"manifest_permissions":[]},"content_settings":[],"creation_flags":1,"events":["alarms.onAlarm","gcm.onMessage","identity.onSignInChanged","notifications.onButtonClicked","notifications.onClicked","notifications.onClosed","notifications.onPermissionLevelChanged","notifications.onShowSettings","pushMessaging.onMessage","runtime.onInstalled","runtime.onStartup","runtime.onSuspend","storage.onChanged"],"from_bookmark":false,"from_webstore":false,"incognito_content_settings":[],"incognito_preferences":{},"initial_keybindings_set":true,"install_time":"13050673009007140","location":5,"manifest":{"background":{"persistent":false,"scripts":["utility.js","cards.js","background.js"]},"description":"Integrates Google Now into Chrome.","icons":{"128":"images/icon128.png","16":"images/icon16.png","48":"images/icon48.png"},"key":"MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkhqJr32OFD/bMXW4Md7jMfd7LbwHXVc6x5bBQG5U+dloofoxrICDR20yur/40mQ8O//0sS1b8srvbab1CRlSrxoNCr9T80NAkfzx0gHyVS+p1Zow+1FzLMu9PiGwwFyN80HIB7GI/dIa0wC9K/2OrrzcHEhVH96DacTtWQqjfDVtZPjT7Xwv23dgoWcpbkRC86jMJot3dmX9xnn0KzoVc9gDOHSIkBLbkkr6Sp3LGXCCM4L0DJgxdFwaLr5WBzgC3y5x0/wwPIwN4PtIaK3BhH6njlksfnKwwIJ9iRT41V4BqbWu4mszO/7VJ3HJyw2DBpIc2grU9ZRRxrV3fRQG4wIDAQAB","manifest_version":2,"name":"Google Now","oauth2":{"auto_approve":true,"scopes":["https://www.googleapis.com/auth/googlenow"]},"optional_permissions":["background"],"permissions":["alarms","identity","metricsPrivate","notifications","pushMessaging","storage","tabs","webstorePrivate","\u003Call_urls>"],"version":"1.2.0.1"},"path":"C:\\Program Files (x86)\\Google\\Chrome\\Application\\36.0.1985.125\\resources\\google_now","preferences":{},"regular_only_preferences":{},"was_installed_by_default":false,"was_installed_by_oem":false}}},"pinned_tabs":[],"protection":{"macs":{"browser":{"show_home_button":"C79E3ED2779505245779CFD6E98E12100DF2AD47925D7BBF90AC3BF42F9E3CA8"},"default_search_provider":{"keyword":"682FA481F16A230F77119D83FB3A4968741358F7B72539ECEBFFF8E0FE9F86D2","name":"30FF0DB17DDB7C1CF35916453398AC8AB1B0F124722530F75CEF2B061FCFB246","search_url":"849B486C24A20F43724CBEBCD5BD408397C42821B537FF1EC9D176D8412A222F"},"default_search_provider_data":{"template_url_data":"A026773F67F1D7A7F29A5CD5C62B80BD01E1D5095E99831FAD11C5F780E7A8E4"},"extensions":{"settings":{"aaaajpkhjdkhhnkmgfjodbkfpbmibkkk":"BF9719F4A5C042311BEF9C5C0C67B8F7115A93D36726B04EAC7377576B5AA29A","ahfgeienlihckogmohjhadlkjgocpleb":"AED6BCF1C9A042EB72615749BAB7DDAE46F767AEBFBF2A32D3D87D97455E6A2D","bepbmhgboaologfdajaanbcjmnhjmhfn":"F54822CEAC8E6F9564CCB99C4069804B229F775791B665330FBF104D78A2E6FD","eemcgdkfndhakfknompkggombfjjjeno":"E02303898559408626EDB14603A265A901EAB510EF08F6FEC663EE019A29A50C","ennkphjdgehloodpbhlhldgbnhmacadg":"B47190A73929091051904067AFD10E21710C4D6F1258428C02C4C4ACC1090E6B","gfdkimpbcpahaombhbimeihdjnejgicl":"587D9FF2D19F19B6FB16900DC32AADDF4E4C525D1539DF8E076482EA2B2A8F6E","gmlllbghnfkpflemihljekbapjopfjik":"49BDA1E32A5989663403C35A4F0B1CDBEC655D5DDDA9713FBA1620DFF7C5A620","kmendfapggjehodndflmmgagdbamhnfd":"580DCB472CC3BCE362A811E940466BF967DE5C38F01C796AC7C233D9DBF35556","lifbcibllhkdhoafpjfnlhfpfgnpldfl":"69A37364F5FDB4261B91469311DFFC17CCCE389C5389D93D677512C1C43E5EFE","mfehgcgbbipciphmccgaenjidiccnmng":"5B451B3947AA820F1895369748A0C950C432CF13ABC8D1D00448BA0A6969117E","mgndgikekgjfcpckkfioiadnlibdjbkf":"9F7CC5133E9BB3236F0CF0594AD11C3922A460D8ED572F3CA696F72D51E8FF9E","mhjfbmdgcfjbbpaeojofohoefgiehjai":"E741A646FF9AEDF157BD5B045602E5805080762F52B203BFDF30BBDFD66EE4C1","neajdppkdcdipfabeoofebfddakdcjhd":"D8A113D0EE68443AD718E47B70BECE7466E1BFC26B6CE417B7713C200A5CB348","nkeimhogjdpnpccoofpliimaahmaaome":"E8C0B351871D253F6F9F805D709C97A3292BAD47B7119647DFCFA50C13684A30","nmmhkkegccagdldgiimedpiccmgmieda":"7AD7C991C6F3F750893BAD683B15D8CC372450DF92B5D5CC8FAAA6078E18BDBA","pafkbggdmjlpgkdkcbjmhmfcdpncadgh":"F9C2B060D93B52F5AA5C40DBA0EC7BCC11C0B296C1F5E31D27467A449A901A27"}},"google":{"services":{"last_username":"C9A79074DF28951D4062E6F3911D3220F61EA9EFAA307CEF438B231F83E60232","username":"5DED5E4E6121B7F3D00E3834E6DD1067C2F0CE6095A79F300942EFB054E91B61"}},"homepage":"36133847C97448E122442AEE8737F7334D61A06FA7C19FA5EBC368CA6DC718FF","homepage_is_newtabpage":"F4AF2D6C9E8C45086B13C9367FD8645CA6E3381430BCFB75215DA94D851DDDE3","pinned_tabs":"6DC0AB7DBB8270501860D7D6368FEDF686C9C3819E5384FBA9E36E82641B0DFB","prefs":{"preference_reset_time":"FA1C041F8498D1513109A1085EF3CB4B395756BF85AFAA34087B512506D39301"},"profile":{"reset_prompt_memento":"C1C96EC3D8873E51FCA1A84630B608DD35460B9AF0C704D5285106D847415766"},"safebrowsing":{"incidents_sent":"BE58BC104AF005D71908D5F7E6CDEAFBE6313049282C309B744BAF13812C662D"},"search_provider_overrides":"01DFD1636473234EC3C813C1E7CEA758385AD6B7E46C6A6459051C675DFAC972","session":{"restore_on_startup":"2D22AC8424C7D27C4BBBE680E397F8DB353679336DD0F6052374C4825983CA16","startup_urls":"FACCA72EFA00607916B2568B40151BEF23B97CFFFB5289A4471145615A0F5302"},"software_reporter":{"prompt_reason":"D8A6150D598A1799108965C6EC1DF81950C89C2AC48FB4E336E7E725F6326E9D","prompt_seed":"1DE44FF0E3923137B83D2C3303280AD6E7556C945331B741F77F4A075D0F2818","prompt_version":"0249B2A6A73546E7A9909C9989F0426EE0881A6ADDE701FE9880AD0576155406"},"sync":{"remaining_rollback_tries":"A6695136D0900602880BFC56661488A6FF29F3DD0A6BBAE6AEC00BDF4192FE93"}},"super_mac":"CA80EF017ACE125410851B0B1DB6939C308EC79159577F731E7C6671FE5DE594"},"sync":{"remaining_rollback_tries":0}}


==== Chromium Fix ======================

C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Extensions\aknpkdffaafgjchaibgeefbgmgeghloj deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcoamefecbfbadpnhnlbbkndnhdibgge deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda deleted successfully
C:\Users\Lukin\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmlllbghnfkpflemihljekbapjopfjik deleted successfully
C:\windows\sysWoW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajpkhjdkhhnkmgfjodbkfpbmibkkk deleted successfully
C:\windows\sysWoW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajadlheagenmmedmhaoafgkdenfilcme deleted successfully
C:\windows\sysWoW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake deleted successfully
C:\windows\sysWoW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf deleted successfully
C:\windows\sysWoW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo deleted successfully
C:\windows\sysWoW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\cimfjifjpkgekabopkgchpihgijpijlh deleted successfully
C:\windows\sysWoW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf deleted successfully
C:\windows\sysWoW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda deleted successfully
C:\windows\sysWoW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia deleted successfully
C:\windows\sysWoW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\poheodfamflhhhdcmjfeggbgigeefaco deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-devtools_devtools_0.localstorage deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-devtools_devtools_0.localstorage-journal deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_eemcgdkfndhakfknompkggombfjjjeno_0.localstorage deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_lkcajlljkgjiipcbfpjkpljjpdgigffa_0.localstorage deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_pafkbggdmjlpgkdkcbjmhmfcdpncadgh_0.localstorage deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_pafkbggdmjlpgkdkcbjmhmfcdpncadgh_0.localstorage-journal deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_ad.doubleclick.net_0.localstorage deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_ad.doubleclick.net_0.localstorage-journal deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_c.betrad.com_0.localstorage deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_c.betrad.com_0.localstorage-journal deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_chrome.google.com_0.localstorage deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_chrome.google.com_0.localstorage-journal deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_clients5.google.com_0.localstorage deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_clients5.google.com_0.localstorage-journal deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_connexity.net_0.localstorage deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_connexity.net_0.localstorage-journal deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_cs.wikipedia.org_0.localstorage deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_cs.wikipedia.org_0.localstorage-journal deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_email.seznam.cz_0.localstorage deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_email.seznam.cz_0.localstorage-journal deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_en.wikipedia.org_0.localstorage deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_en.wikipedia.org_0.localstorage-journal deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_login.szn.cz_0.localstorage deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_login.szn.cz_0.localstorage-journal deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_ls.hit.gemius.pl_0.localstorage deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_ls.hit.gemius.pl_0.localstorage-journal deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_plus.google.com_0.localstorage deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_plus.google.com_0.localstorage-journal deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_twitter.com_0.localstorage deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_twitter.com_0.localstorage-journal deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.email.cz_0.localstorage deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.email.cz_0.localstorage-journal deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.facebook.com_0.localstorage deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.facebook.com_0.localstorage-journal deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.google.com_0.localstorage deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.nn.cz_0.localstorage deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.nn.cz_0.localstorage-journal deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.performax.cz_0.localstorage deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.performax.cz_0.localstorage-journal deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.seznam.cz_0.localstorage deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.seznam.cz_0.localstorage-journal deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.youtube-nocookie.com_0.localstorage deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.youtube-nocookie.com_0.localstorage-journal deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.youtube.com_0.localstorage deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.youtube.com_0.localstorage-journal deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_c.betrad.com_0.localstorage deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_c.betrad.com_0.localstorage-journal deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_connexity.net_0.localstorage deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_connexity.net_0.localstorage-journal deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_cs.wikipedia.org_0.localstorage deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_cs.wikipedia.org_0.localstorage-journal deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_data.idnes.cz_0.localstorage deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_data.idnes.cz_0.localstorage-journal deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_en.wikipedia.org_0.localstorage deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_en.wikipedia.org_0.localstorage-journal deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_encyklopedie.seznam.cz_0.localstorage deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_encyklopedie.seznam.cz_0.localstorage-journal deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_eshop.tescoma.cz_0.localstorage deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_eshop.tescoma.cz_0.localstorage-journal deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_jizdnirady.idnes.cz_0.localstorage deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_jizdnirady.idnes.cz_0.localstorage-journal deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_ls.hit.gemius.pl_0.localstorage deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_ls.hit.gemius.pl_0.localstorage-journal deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_pocasi.seznam.cz_0.localstorage deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_pocasi.seznam.cz_0.localstorage-journal deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_recepty.chytrazena.cz_0.localstorage deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_recepty.chytrazena.cz_0.localstorage-journal deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_regiojet.cz_0.localstorage deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_regiojet.cz_0.localstorage-journal deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_rejstrik.finance.cz_0.localstorage deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_rejstrik.finance.cz_0.localstorage-journal deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_s7.addthis.com_0.localstorage deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_s7.addthis.com_0.localstorage-journal deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_search.seznam.cz_0.localstorage deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_search.seznam.cz_0.localstorage-journal deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_stat.cncenter.cz_0.localstorage deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_stat.cncenter.cz_0.localstorage-journal deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_superkancl.cz_0.localstorage deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_superkancl.cz_0.localstorage-journal deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_svobodnenoviny.eu_0.localstorage deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_svobodnenoviny.eu_0.localstorage-journal deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_technet.idnes.cz_0.localstorage deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_technet.idnes.cz_0.localstorage-journal deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_tema.novinky.cz_0.localstorage deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_tema.novinky.cz_0.localstorage-journal deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_videa.seznam.cz_0.localstorage deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_videa.seznam.cz_0.localstorage-journal deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_video.emerse.com_0.localstorage deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_video.emerse.com_0.localstorage-journal deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.blesk.cz_0.localstorage deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.blesk.cz_0.localstorage-journal deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.ceskatelevize.cz_0.localstorage deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.ceskatelevize.cz_0.localstorage-journal deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.databazeknih.cz_0.localstorage deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.databazeknih.cz_0.localstorage-journal deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.firmy.cz_0.localstorage deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.firmy.cz_0.localstorage-journal deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.labuznik.cz_0.localstorage deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.labuznik.cz_0.localstorage-journal deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.novinky.cz_0.localstorage deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.novinky.cz_0.localstorage-journal deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.obrazky.cz_0.localstorage deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.obrazky.cz_0.localstorage-journal deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.parlamentnilisty.cz_0.localstorage deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.parlamentnilisty.cz_0.localstorage-journal deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.performax.cz_0.localstorage deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.performax.cz_0.localstorage-journal deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.pidak.cz_0.localstorage deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.pidak.cz_0.localstorage-journal deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.praha-levne.cz_0.localstorage deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.praha-levne.cz_0.localstorage-journal deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.prozeny.cz_0.localstorage deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.prozeny.cz_0.localstorage-journal deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.recepty.cz_0.localstorage deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.recepty.cz_0.localstorage-journal deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.seminka-chilli.cz_0.localstorage deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.seminka-chilli.cz_0.localstorage-journal deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.spektrumzdravi.cz_0.localstorage deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.spektrumzdravi.cz_0.localstorage-journal deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.super.cz_0.localstorage deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.super.cz_0.localstorage-journal deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.svetkolemnas.info_0.localstorage deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.svetkolemnas.info_0.localstorage-journal deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.svobodny-vysilac.cz_0.localstorage deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.svobodny-vysilac.cz_0.localstorage-journal deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.timetape.com_0.localstorage deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.timetape.com_0.localstorage-journal deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.topsleva.cz_0.localstorage deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.topsleva.cz_0.localstorage-journal deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.tradicnirecepty.cz_0.localstorage deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.tradicnirecepty.cz_0.localstorage-journal deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.ustream.tv_0.localstorage deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.ustream.tv_0.localstorage-journal deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.vitalia.cz_0.localstorage deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.vitalia.cz_0.localstorage-journal deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.zbozi.cz_0.localstorage deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.zbozi.cz_0.localstorage-journal deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_zpravy.aktualne.cz_0.localstorage deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_zpravy.aktualne.cz_0.localstorage-journal deleted successfully
C:\Users\Lukin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-devtools_devtools_0.localstorage deleted successfully
C:\Users\Lukin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-devtools_devtools_0.localstorage-journal deleted successfully
C:\Users\Lukin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_pafkbggdmjlpgkdkcbjmhmfcdpncadgh_0.localstorage deleted successfully
C:\Users\Lukin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_ls.hit.gemius.pl_0.localstorage deleted successfully
C:\Users\Lukin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_ls.hit.gemius.pl_0.localstorage-journal deleted successfully
C:\Users\Lukin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.facebook.com_0.localstorage deleted successfully
C:\Users\Lukin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.facebook.com_0.localstorage-journal deleted successfully
C:\Users\Lukin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.google.cz_0.localstorage deleted successfully
C:\Users\Lukin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.google.cz_0.localstorage-journal deleted successfully
C:\Users\Lukin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.seznam.cz_0.localstorage deleted successfully
C:\Users\Lukin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.seznam.cz_0.localstorage-journal deleted successfully
C:\Users\Lukin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.youtube.com_0.localstorage deleted successfully
C:\Users\Lukin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.youtube.com_0.localstorage-journal deleted successfully
C:\Users\Lukin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_ls.hit.gemius.pl_0.localstorage deleted successfully
C:\Users\Lukin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_ls.hit.gemius.pl_0.localstorage-journal deleted successfully
C:\Users\Lukin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_reklama2.viry.cz_0.localstorage deleted successfully
C:\Users\Lukin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_reklama2.viry.cz_0.localstorage-journal deleted successfully
C:\Users\Lukin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_secure-us.imrworldwide.com_0.localstorage deleted successfully
C:\Users\Lukin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_secure-us.imrworldwide.com_0.localstorage-journal deleted successfully
C:\Users\Lukin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_sourceforge.net_0.localstorage deleted successfully
C:\Users\Lukin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_sourceforge.net_0.localstorage-journal deleted successfully
C:\Users\Lukin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.avg.com_0.localstorage deleted successfully
C:\Users\Lukin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.avg.com_0.localstorage-journal deleted successfully
C:\Users\Lukin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.bleepingcomputer.com_0.localstorage deleted successfully
C:\Users\Lukin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.bleepingcomputer.com_0.localstorage-journal deleted successfully
C:\Users\Lukin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.viry.cz_0.localstorage deleted successfully
C:\Users\Lukin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.viry.cz_0.localstorage-journal deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\databases\http_b.topkontakt.cz_0 deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\databases\http_jizdnirady.idnes.cz_0 deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\databases\http_recepty.chytrazena.cz_0 deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\databases\http_rejstrik.finance.cz_0 deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\databases\http_technet.idnes.cz_0 deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\databases\http_www.abclinuxu.cz_0 deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\databases\http_www.databazeknih.cz_0 deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\databases\http_www.labuznik.cz_0 deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\databases\http_www.spektrumzdravi.cz_0 deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\databases\http_www.tradicnirecepty.cz_0 deleted successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\pafkbggdmjlpgkdkcbjmhmfcdpncadgh deleted successfully
C:\Users\Lukin\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\pafkbggdmjlpgkdkcbjmhmfcdpncadgh deleted successfully

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Old Start Page"="http://www.google.com"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Old Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"
{4C5E455B-6C4A-4864-BEF7-EBEDFC4EDFDC} Seznam TV Program Url="http://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_13415"
{A81EE3F1-DE96-4E85-BC13-317EFBA1294D} Unknown Url="Not_Found"

==== Reset Google Chrome ======================

C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Preferences.bad was reset successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences was reset successfully
C:\Users\Lukin\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\Lukin\AppData\Local\Google\Chrome\User Data\Default\Preferences.bad was reset successfully
C:\Users\Lukin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences was reset successfully
C:\windows\sysWoW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
C:\Users\Lukin\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
C:\Users\Lukin\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal was reset successfully
C:\windows\sysWoW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
C:\windows\sysWoW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal was reset successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-3936453156-2587301128-1927816067-1003\Software\Microsoft\Internet Explorer\SearchScopes\{A81EE3F1-DE96-4E85-BC13-317EFBA1294D} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{A81EE3F1-DE96-4E85-BC13-317EFBA1294D} deleted successfully

==== Deleting CLSID Registry Values ======================


==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\Software\wow6432node\Policies\Google deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0 deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cz.seznam.software.szndesktop deleted successfully

==== Empty IE Cache ======================

C:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Lukin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Lukin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\windows\serviceprofiles\Localservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
C:\Users\Lukin\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
C:\windows\sysWoW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

No Flash Cache Found

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=1048 folders=609 38227395 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Lenka\AppData\Local\Temp emptied successfully
C:\Users\Lukin\AppData\Local\Temp will be emptied at reboot
C:\windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\windows\Temp successfully emptied
C:\Users\Lukin\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on so 23.05.2015 at 17:18:13,75 ======================

[TrolLCZE]

Tady je ještě jednou ten log z HiJackThis


Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:26:21, on 23.5.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17801)


Boot mode: Normal

Running processes:
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\Lukin\Downloads\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O1 - Hosts: ::1 localhost
O2 - BHO: Pomocná služba pro přihlášení k účtu Microsoft - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "C:\windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "C:\windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: AVG Firewall (avgfws) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2014\avgfws.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 6732 bytes

[jerabina]

Zavři ostatní programy/prohlížeče, odpoj se od internetu a v HJT fixni:
NÁVOD

Kód: Vybrat vše

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O1 - Hosts: ::1 localhost
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "C:\windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "C:\windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')

Stáhni si zde DelFix
https://toolslib.net/downloads/viewdownload/2-delfix/

ulož si soubor na plochu.
Poklepáním na ikonu spusť nástroj Delfix.exe
( Ve Windows Vista, Windows 7 a 8, musíš spustit soubor pravým tlačítkem myši -> Spustit jako správce .
V hlavním menu, zkontroluj tyto možnosti - Odstranění dezinfekce nástrojů (Remove desinfection tools) – Vyčistit body obnovy (Purge System Restore) .
Poté klikněte na tlačítko Spustit (Run) a nech nástroj dělat svoji práci.

Poté se zpráva se otevře (DelFix.txt). Vlož celý obsah zprávy sem. Jinak je zpráva zde:
v C: \ DelFix.txt

Co problémy?

[TrolLCZE]

Tak jsem dal fixnout vše co jsi řekl ale zapoměl jsem se odpojit z internetu a seklo se to v polovině už jsem se odpojit ale stále lag ? vadí to co mám teď dělat ?

[jerabina]

Normálně vypni HJT, odpoj se od internetu, spusť HJT znovu a fixni to znova.