
Otwórz notatnik systemowy i wklej:

CustomCLSID: HKU\S-1-5-21-4224411601-1902314495-2284845242-1000_Classes\CLSID\{1FF94622-64A5-2E70-AB57-A37AEF698354}\InprocServer32 -> Brak ścieżki do pliku
CustomCLSID: HKU\S-1-5-21-4224411601-1902314495-2284845242-1000_Classes\CLSID\{2EF94622-64A5-2E70-AB57-A37AEF698354}\InprocServer32 -> Brak ścieżki do pliku
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> Brak pliku
ContextMenuHandlers4: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} =>  -> Brak pliku
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> Brak pliku
ContextMenuHandlers6: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} =>  -> Brak pliku
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500936 2015-05-26] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [37296 2012-01-03] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [843712 2012-01-02] (Adobe Systems Incorporated)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Ograniczenia <==== UWAGA
HKU\S-1-5-21-4224411601-1902314495-2284845242-1000\...\MountPoints2: F - F:\_AUTORUN\AUTORUN.EXE
HKU\S-1-5-21-4224411601-1902314495-2284845242-1000\...\MountPoints2: {2dff0069-9415-11e7-9855-b46d83c602db} - F:\SETUP.EXE
HKU\S-1-5-21-4224411601-1902314495-2284845242-1000\...\MountPoints2: {31dfa38f-80fb-11e7-a5a8-e140379e55cd} - F:\HiSuiteDownLoader.exe
GroupPolicy: Ograniczenia - Chrome <==== UWAGA
S3 AcpiXFakeKey; Brak ImagePath
S3 AcpiXFakeKey; Brak ImagePath
S3 MpKslFakeKy; Brak ImagePath
2017-10-01 12:08 - 2011-06-26 08:45 - 000256000 _____ C:\Windows\PEV.exe
2017-10-01 12:08 - 2010-11-07 19:20 - 000208896 _____ C:\Windows\MBR.exe
2017-10-01 12:08 - 2009-04-20 06:56 - 000060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2017-10-01 12:08 - 2000-08-31 02:00 - 000518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2017-10-01 12:08 - 2000-08-31 02:00 - 000406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2017-10-01 12:08 - 2000-08-31 02:00 - 000098816 _____ C:\Windows\sed.exe
2017-10-01 12:08 - 2000-08-31 02:00 - 000080412 _____ C:\Windows\grep.exe
2017-10-01 12:08 - 2000-08-31 02:00 - 000068096 _____ C:\Windows\zip.exe
2017-10-01 10:11 - 2017-08-20 23:53 - 000000000 ____D C:\AdwCleaner
EmptyTemp:

Plik zapisz pod nazwą fixlist.txt i umieść obok FRST w tym samym folderze. 
Uruchom jako administrator FRST i kliknij w Fix/Napraw.