VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

prosim o preventivku

https://forum.viry.cz:443/viewtopic.php?t=150293

Stránka 1 z 1

prosim o preventivku

Napsal: 15 říj 2016 17:59
od XFR
zdravim, prosim o kontrolu logu, dakujem.

Your message contains 133879 characters. The maximum number of allowed characters is 100000.
--> priloha
dakujem

Re: prosim o preventivku

Napsal: 16 říj 2016 09:35
od Rudy
Zdravím!
Spusťte tuto utilitu:
Stáhněte AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.

Re: prosim o preventivku

Napsal: 16 říj 2016 10:00
od XFR
ahoj, stiahol som, spustil som... ked dam scan dokonci sa :

ked dam CLEAN - BSOD - SYSTEM_SERVICE_EXCEPTION

Re: prosim o preventivku

Napsal: 16 říj 2016 14:37
od Rudy
Zkuste to v nouz. režimu.

Re: prosim o preventivku

Napsal: 16 říj 2016 15:07
od XFR
ok, tam to islo:

# AdwCleaner v6.021 - Logfile created 16/10/2016 at 16:05:53
# Updated on 06/10/2016 by ToolsLib
# Database : 2016-10-15.3 [Local]
# Operating System : Windows 10 Pro (X64)
# Username : x8-f0Rc3-u - X8-F0RC3
# Running from : C:\Users\x8-f0Rc3-u\Desktop\adwcleaner_6.021.exe
# Mode: Clean
# Support : https://toolslib.net/forum



***** [ Services ] *****



***** [ Folders ] *****

[-] Folder deleted: C:\Users\x8-f0Rc3-u\AppData\LocalLow\SimplyTech
[-] Folder deleted: C:\Users\x8-f0Rc3-u\AppData\Roaming\ExpressFiles
[-] Folder deleted: C:\Users\x8-f0Rc3-u\AppData\Roaming\goforfiles
[-] Folder deleted: C:\Users\x8-f0Rc3-u\AppData\Roaming\SimplyTech
[#] Folder deleted on reboot: C:\Users\x8-f0Rc3-u\AppData\Roaming\GoforFiles
[-] Folder deleted: C:\ProgramData\apn
[#] Folder deleted on reboot: C:\ProgramData\Application Data\apn


***** [ Files ] *****

[-] File deleted: C:\WINDOWS\launcher.exe
[-] File deleted: C:\Users\x8-f0Rc3-u\AppData\Roaming\Mozilla\Firefox\Profiles\m26wfwpz.default-1367097575091\foxydeal.sqlite


***** [ DLL ] *****



***** [ WMI ] *****



***** [ Shortcuts ] *****



***** [ Scheduled Tasks ] *****



***** [ Registry ] *****

[-] Key deleted: HKU\S-1-5-21-3701770153-2548552580-3916188043-1001\Software\Classes\TornTvDownloader.File
[#] Key deleted on reboot: HKCU\Software\Classes\TornTvDownloader.File
[#] Key deleted on reboot: [x64] HKCU\Software\Classes\TornTvDownloader.File
[-] Key deleted: HKCU\Software\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
[-] Key deleted: HKLM\SOFTWARE\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
[-] Key deleted: HKLM\SOFTWARE\Classes\Interface\{FA7B2795-C0C8-4A58-8672-3F8D80CC0270}
[-] Key deleted: HKLM\SOFTWARE\Classes\Interface\{47A1DF02-BCE4-40C3-AE47-E3EA09A65E4A}
[-] Key deleted: HKLM\SOFTWARE\Classes\TypeLib\{1112F282-7099-4624-A439-DB29D6551552}
[-] Key deleted: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7825CFB6-490A-436B-9F26-4A7B5CFC01A9}
[-] Key deleted: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7825CFB6-490A-436B-9F26-4A7B5CFC01A9}
[-] Key deleted: HKU\S-1-5-21-3701770153-2548552580-3916188043-1001\Software\APN PIP
[-] Key deleted: HKU\S-1-5-21-3701770153-2548552580-3916188043-1001\Software\ExpressFiles
[-] Key deleted: HKU\S-1-5-21-3701770153-2548552580-3916188043-1001\Software\GoforFiles
[-] Key deleted: HKU\S-1-5-21-3701770153-2548552580-3916188043-1001\Software\ParetoLogic
[-] Key deleted: HKU\S-1-5-21-3701770153-2548552580-3916188043-1001\Software\AppDataLow\Software\simplytech
[#] Key deleted on reboot: HKU\S-1-5-21-3701770153-2548552580-3916188043-1001\Software\AppDataLow\Software\SIMPLYTECH
[#] Key deleted on reboot: HKCU\Software\APN PIP
[#] Key deleted on reboot: HKCU\Software\ExpressFiles
[#] Key deleted on reboot: HKCU\Software\GoforFiles
[#] Key deleted on reboot: HKCU\Software\ParetoLogic
[#] Key deleted on reboot: HKCU\Software\AppDataLow\Software\simplytech
[#] Key deleted on reboot: HKCU\Software\AppDataLow\Software\SIMPLYTECH
[-] Key deleted: HKLM\SOFTWARE\Conduit
[-] Key deleted: HKLM\SOFTWARE\ExpressFiles
[-] Key deleted: HKLM\SOFTWARE\GoforFiles
[-] Key deleted: HKLM\SOFTWARE\PIP
[#] Key deleted on reboot: [x64] HKCU\Software\APN PIP
[#] Key deleted on reboot: [x64] HKCU\Software\ExpressFiles
[#] Key deleted on reboot: [x64] HKCU\Software\GoforFiles
[#] Key deleted on reboot: [x64] HKCU\Software\ParetoLogic
[#] Key deleted on reboot: [x64] HKCU\Software\AppDataLow\Software\simplytech
[#] Key deleted on reboot: [x64] HKCU\Software\AppDataLow\Software\SIMPLYTECH
[-] Key deleted: [x64] HKLM\SOFTWARE\Tarma Installer
[-] Data restored: HKLM\SOFTWARE\Classes\SOFTWARE\Microsoft\Internet Explorer\SearchURI [(Default)]
[-] Data restored: HKLM\SOFTWARE\Classes\SOFTWARE\Microsoft\Internet Explorer\SearchUrl [(Default)]
[-] Data restored: [x64] HKLM\SOFTWARE\Classes\SOFTWARE\Microsoft\Internet Explorer\SearchURI [(Default)]
[-] Data restored: [x64] HKLM\SOFTWARE\Classes\SOFTWARE\Microsoft\Internet Explorer\SearchUrl [(Default)]
[-] Key deleted: HKU\S-1-5-21-3701770153-2548552580-3916188043-1001\Software\Microsoft\Internet Explorer\SearchScopes\{728DCA1F-B6F6-400A-B70A-3A85421BB68E}
[#] Key deleted on reboot: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{728DCA1F-B6F6-400A-B70A-3A85421BB68E}
[-] Value deleted: HKLM\SOFTWARE\Classes\SOFTWARE\Microsoft\Internet Explorer\SearchScopes [DisplayName]
[-] Value deleted: HKLM\SOFTWARE\Classes\SOFTWARE\Microsoft\Internet Explorer\SearchScopes [URL]
[-] Value deleted: HKLM\SOFTWARE\Classes\SOFTWARE\Microsoft\Internet Explorer\SearchScopes [TopResultURLFallback]
[#] Key deleted on reboot: [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{728DCA1F-B6F6-400A-B70A-3A85421BB68E}
[#] Value deleted on reboot: [x64] HKLM\SOFTWARE\Classes\SOFTWARE\Microsoft\Internet Explorer\SearchScopes [DisplayName]
[#] Value deleted on reboot: [x64] HKLM\SOFTWARE\Classes\SOFTWARE\Microsoft\Internet Explorer\SearchScopes [URL]
[#] Value deleted on reboot: [x64] HKLM\SOFTWARE\Classes\SOFTWARE\Microsoft\Internet Explorer\SearchScopes [TopResultURLFallback]


***** [ Web browsers ] *****

[-] Chrome preferences cleaned:
[-] [C:\Users\x8-f0Rc3-u\AppData\Local\Google\Chrome\User Data\Default] [extension] Deleted: ppdjnkblmcjfnlogjjhpigpdgpcgdpll


*************************

:: "Tracing" keys deleted
:: Winsock settings cleared

*************************

C:\AdwCleaner\AdwCleaner[C0].txt - [5480 Bytes] - [16/10/2016 16:05:53]
C:\AdwCleaner\AdwCleaner[S0].txt - [5916 Bytes] - [16/10/2016 10:49:27]
C:\AdwCleaner\AdwCleaner[S1].txt - [5989 Bytes] - [16/10/2016 10:51:41]
C:\AdwCleaner\AdwCleaner[S2].txt - [6062 Bytes] - [16/10/2016 10:54:17]
C:\AdwCleaner\AdwCleaner[S3].txt - [6135 Bytes] - [16/10/2016 10:58:23]
C:\AdwCleaner\AdwCleaner[S4].txt - [6207 Bytes] - [16/10/2016 16:05:46]

########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [5918 Bytes] ##########

Re: prosim o preventivku

Napsal: 16 říj 2016 16:47
od Rudy
Dejte nový log FRST.

Re: prosim o preventivku

Napsal: 16 říj 2016 17:29
od XFR
ok, opat v prilohe.

Re: prosim o preventivku

Napsal: 16 říj 2016 18:08
od Rudy
Otevřte poznámkový blok a zkopírujte do něj:
Start
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [598552 2016-06-22] (Oracle Corporation)
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => No File
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => No File
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => No File
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => No File
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => No File
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => No File
GroupPolicy: Restriction <======= ATTENTION
GroupPolicyScripts: Restriction <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION
CHR HKU\S-1-5-21-3701770153-2548552580-3916188043-1001\SOFTWARE\Policies\Google: Restriction <======= ATTENTION
SearchScopes: HKLM-x32 -> DefaultScope {728DCA1F-B6F6-400A-B70A-3A85421BB68E} URL =
SearchScopes: HKU\S-1-5-21-3701770153-2548552580-3916188043-1001 -> {3AA532A7-EFCB-46AE-96D2-6B9E0EB5AE4A} URL =
SearchScopes: HKU\S-1-5-21-3701770153-2548552580-3916188043-1001 -> {80c554b9-c7f8-4a21-9471-06d606da78a2} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKU\S-1-5-21-3701770153-2548552580-3916188043-1001 -> {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\53.0.2785.143\ppGoogleNaClPluginChrome.dll => No File
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\53.0.2785.143\pdf.dll => No File
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll => No File
CHR Plugin: (Java(TM) Platform SE 7 U25) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll => No File
CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll => No File
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll => No File
CHR Plugin: (Java Deployment Toolkit 7.0.250.17) - C:\Windows\SysWOW64\npDeployJava1.dll => No File
C:\WINDOWS\system32\ApnDatabase.xml
C:\Users\x8-f0Rc3-u\AppData\Local\Temp
Task: {0F118E9D-F9CC-46BD-94A3-24392B1373F9} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {1B3824FE-6C39-44DF-B4E0-799FA49A70A2} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {3FA3CCB1-70A0-4550-9B25-F37EC591521E} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {4A25FAEA-BF02-4DB8-9192-8F67C2D5072D} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {594AC2CC-4098-4E1A-8CC2-CF8B25BB4AE7} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {6B71E482-B055-4E5E-BC79-FE7388FC6D37} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {901F4497-9064-4255-BD5B-934A3ADFBBCD} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
Task: {CA08E0AC-444C-41E7-AA8F-76F96D53901C} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {CF2067D0-D712-4C87-B0D1-0FB98AE5CBB0} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {ED62D095-5F5B-40C2-B4B2-8B27D9FA7341} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {F2CDAF00-6063-4143-A13A-74191F7DD2C6} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-3701770153-2548552580-3916188043-1001Core.job => C:\Users\x8-f0Rc3-u\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-3701770153-2548552580-3916188043-1001UA.job => C:\Users\x8-f0Rc3-u\AppData\Local\Google\Update\GoogleUpdate.exe
AlternateDataStreams: C:\WimMount:$WIMMOUNTDATA [626]
AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxldtlfudivq`qsp`27hfm [0]
End
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Z logu:
Velikost slozky "C:\Users\x8-f0Rc3-u\Desktop" je 13687 MB.
To je příliš mnoho a může to zpomalovat start systému. Vytvořte v C:\Users\x8-f0Rc3-u novou složku, do které přesuňte všechna data z plochy (kromě zástupců). Na plochu si pak dejte zástupce té složka pro snazší přístup.

Re: prosim o preventivku

Napsal: 18 říj 2016 19:26
od XFR
zdravim opat, dakujem za rady

toto je fixlog (je to OK ked vsetky bezi v safe mode ? lebo inak mam ten BSOD)

Fix result of Farbar Recovery Scan Tool (x64) Version: 17-10-2016
Ran by x8-f0Rc3-u (18-10-2016 20:24:21) Run:1
Running from C:\Users\x8-f0Rc3-u\Desktop
Loaded Profiles: x8-f0Rc3-u (Available Profiles: x8-f0Rc3-u)
Boot Mode: Safe Mode (with Networking)
==============================================

fixlist content:
*****************
Start
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [598552 2016-06-22] (Oracle Corporation)
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => No File
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => No File
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => No File
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => No File
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => No File
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => No File
GroupPolicy: Restriction <======= ATTENTION
GroupPolicyScripts: Restriction <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION
CHR HKU\S-1-5-21-3701770153-2548552580-3916188043-1001\SOFTWARE\Policies\Google: Restriction <======= ATTENTION
SearchScopes: HKLM-x32 -> DefaultScope {728DCA1F-B6F6-400A-B70A-3A85421BB68E} URL =
SearchScopes: HKU\S-1-5-21-3701770153-2548552580-3916188043-1001 -> {3AA532A7-EFCB-46AE-96D2-6B9E0EB5AE4A} URL =
SearchScopes: HKU\S-1-5-21-3701770153-2548552580-3916188043-1001 -> {80c554b9-c7f8-4a21-9471-06d606da78a2} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKU\S-1-5-21-3701770153-2548552580-3916188043-1001 -> {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\53.0.2785.143\ppGoogleNaClPluginChrome.dll => No File
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\53.0.2785.143\pdf.dll => No File
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll => No File
CHR Plugin: (Java(TM) Platform SE 7 U25) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll => No File
CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll => No File
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll => No File
CHR Plugin: (Java Deployment Toolkit 7.0.250.17) - C:\Windows\SysWOW64\npDeployJava1.dll => No File
C:\WINDOWS\system32\ApnDatabase.xml
C:\Users\x8-f0Rc3-u\AppData\Local\Temp
Task: {0F118E9D-F9CC-46BD-94A3-24392B1373F9} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {1B3824FE-6C39-44DF-B4E0-799FA49A70A2} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {3FA3CCB1-70A0-4550-9B25-F37EC591521E} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {4A25FAEA-BF02-4DB8-9192-8F67C2D5072D} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {594AC2CC-4098-4E1A-8CC2-CF8B25BB4AE7} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {6B71E482-B055-4E5E-BC79-FE7388FC6D37} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {901F4497-9064-4255-BD5B-934A3ADFBBCD} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
Task: {CA08E0AC-444C-41E7-AA8F-76F96D53901C} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {CF2067D0-D712-4C87-B0D1-0FB98AE5CBB0} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {ED62D095-5F5B-40C2-B4B2-8B27D9FA7341} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {F2CDAF00-6063-4143-A13A-74191F7DD2C6} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-3701770153-2548552580-3916188043-1001Core.job => C:\Users\x8-f0Rc3-u\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-3701770153-2548552580-3916188043-1001UA.job => C:\Users\x8-f0Rc3-u\AppData\Local\Google\Update\GoogleUpdate.exe
AlternateDataStreams: C:\WimMount:$WIMMOUNTDATA [626]
AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxldtlfudivq`qsp`27hfm [0]
End
*****************

HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ => value removed successfully
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched => value removed successfully
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive5" => key removed successfully
HKCR\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => key not found.
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive1" => key removed successfully
HKCR\Wow6432Node\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524} => key not found.
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive2" => key removed successfully
HKCR\Wow6432Node\CLSID\{5AB7172C-9C11-405C-8DD5-AF20F3606282} => key not found.
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive3" => key removed successfully
HKCR\Wow6432Node\CLSID\{A78ED123-AB77-406B-9962-2A5D9D2F7F30} => key not found.
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive4" => key removed successfully
HKCR\Wow6432Node\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A} => key not found.
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive5" => key removed successfully
HKCR\Wow6432Node\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => key not found.
C:\WINDOWS\system32\GroupPolicy\Machine => moved successfully
C:\WINDOWS\system32\GroupPolicy\GPT.ini => moved successfully
C:\WINDOWS\SysWOW64\GroupPolicy\GPT.ini => moved successfully
"C:\WINDOWS\system32\GroupPolicy\Machine" => not found.
"HKLM\SOFTWARE\Policies\Google" => key removed successfully
"HKU\S-1-5-21-3701770153-2548552580-3916188043-1001\SOFTWARE\Policies\Google" => key removed successfully
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value restored successfully
"HKU\S-1-5-21-3701770153-2548552580-3916188043-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{3AA532A7-EFCB-46AE-96D2-6B9E0EB5AE4A}" => key removed successfully
HKCR\CLSID\{3AA532A7-EFCB-46AE-96D2-6B9E0EB5AE4A} => key not found.
"HKU\S-1-5-21-3701770153-2548552580-3916188043-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{80c554b9-c7f8-4a21-9471-06d606da78a2}" => key removed successfully
HKCR\CLSID\{80c554b9-c7f8-4a21-9471-06d606da78a2} => key not found.
"HKU\S-1-5-21-3701770153-2548552580-3916188043-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}" => key removed successfully
HKCR\CLSID\{afdbddaa-5d3f-42ee-b79c-185a7020515b} => key not found.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Local Page => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Local Page => value restored successfully
C:\Program Files (x86)\Google\Chrome\Application\53.0.2785.143\ppGoogleNaClPluginChrome.dll => not found.
C:\Program Files (x86)\Google\Chrome\Application\53.0.2785.143\pdf.dll => not found.
C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll => not found.
C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll => not found.
C:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll => not found.
C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll => not found.
C:\Windows\SysWOW64\npDeployJava1.dll => not found.
C:\WINDOWS\system32\ApnDatabase.xml => moved successfully
C:\Users\x8-f0Rc3-u\AppData\Local\Temp => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{0F118E9D-F9CC-46BD-94A3-24392B1373F9}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0F118E9D-F9CC-46BD-94A3-24392B1373F9}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{1B3824FE-6C39-44DF-B4E0-799FA49A70A2}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1B3824FE-6C39-44DF-B4E0-799FA49A70A2}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\launchtrayprocess" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3FA3CCB1-70A0-4550-9B25-F37EC591521E}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3FA3CCB1-70A0-4550-9B25-F37EC591521E}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfig" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{4A25FAEA-BF02-4DB8-9192-8F67C2D5072D}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4A25FAEA-BF02-4DB8-9192-8F67C2D5072D}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxcontent" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{594AC2CC-4098-4E1A-8CC2-CF8B25BB4AE7}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{594AC2CC-4098-4E1A-8CC2-CF8B25BB4AE7}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Logon-5d" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{6B71E482-B055-4E5E-BC79-FE7388FC6D37}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6B71E482-B055-4E5E-BC79-FE7388FC6D37}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{901F4497-9064-4255-BD5B-934A3ADFBBCD}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{901F4497-9064-4255-BD5B-934A3ADFBBCD}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{CA08E0AC-444C-41E7-AA8F-76F96D53901C}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CA08E0AC-444C-41E7-AA8F-76F96D53901C}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{CF2067D0-D712-4C87-B0D1-0FB98AE5CBB0}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CF2067D0-D712-4C87-B0D1-0FB98AE5CBB0}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Time-5d" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{ED62D095-5F5B-40C2-B4B2-8B27D9FA7341}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{ED62D095-5F5B-40C2-B4B2-8B27D9FA7341}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F2CDAF00-6063-4143-A13A-74191F7DD2C6}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F2CDAF00-6063-4143-A13A-74191F7DD2C6}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d" => key removed successfully
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => moved successfully
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => moved successfully
C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-3701770153-2548552580-3916188043-1001Core.job => moved successfully
C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-3701770153-2548552580-3916188043-1001UA.job => moved successfully
C:\WimMount => ":$WIMMOUNTDATA" ADS removed successfully.
C:\ProgramData\Reprise => ":wupeogjxldtlfudivq`qsp`27hfm" ADS removed successfully.


The system needed a reboot.

==== End of Fixlog 20:24:22 ====

Re: prosim o preventivku

Napsal: 18 říj 2016 20:00
od Rudy
To je OK. Vše smazáno, log by již měl být OK.

Re: prosim o preventivku

Napsal: 18 říj 2016 20:47
od XFR
ok dakujem :happy:

je vsetko OK ?
(okrem tej velkosti desktopu)

Re: prosim o preventivku

Napsal: 18 říj 2016 21:06
od Rudy
Není-li jiný problém, je to vše. :)

Re: prosim o preventivku

Napsal: 19 říj 2016 19:05
od XFR
dakujem za pomoc.

Re: prosim o preventivku

Napsal: 19 říj 2016 20:02
od Rudy
Nemáte zač! :)
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz