VIRY.CZ

Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi

Start

CloseProcesses:
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
Task: {1A384F47-BF86-4D1B-8993-007AC653B221} - System32\Tasks\GoogleUpdateTaskMachineCore{662369AB-3AAB-4411-A862-01D14DE0D212} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [162080 2023-10-31] (Google LLC -> Google LLC)
Task: {926505EF-4170-45F2-BD28-9C59370443A1} - System32\Tasks\GoogleUpdateTaskMachineUA{27623E21-82A4-46F0-8FE3-460C46720CB8} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [162080 2023-10-31] (Google LLC -> Google LLC)
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => %SystemRoot%\System32\MbaeParserTask.exe (No File)
Task: {B34DFB71-5CC2-4E3F-86C8-E2D5FF2481CC} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_AC => %systemroot%\system32\MusNotification.exe /RunOnAC RebootDialog (No File)
Task: {3E00D11A-894F-4D4C-8184-FA9DB48752A2} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_Battery => %systemroot%\system32\MusNotification.exe /RunOnBattery RebootDialog (No File)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (No File)
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA{27623E21-82A4-46F0-8FE3-460C46720CB8}
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore{662369AB-3AAB-4411-A862-01D14DE0D212}
C:\Users\mstuk_r6futcn\AppData\Roaming\SaraBat.bat
CustomCLSID: HKU\S-1-5-21-2773700826-1739663033-2017712385-1002_Classes\CLSID\{566579db-89b5-49f7-9f3a-fde0cd6af858}\InprocServer32 -> C:\Program Files\Mozilla Thunderbird\notificationserver.dll => No File
FirewallRules: [UDP Query User{A84380D8-5F17-489F-AD77-6A2DE72C5377}C:\xampp\mysql\bin\mysqld.exe] => (Allow) C:\xampp\mysql\bin\mysqld.exe => No File
FirewallRules: [TCP Query User{8DCA28E9-8EFB-4EE6-A16C-E3F31B5368FE}C:\xampp\mysql\bin\mysqld.exe] => (Allow) C:\xampp\mysql\bin\mysqld.exe => No File
FirewallRules: [UDP Query User{33CB272A-E42E-4098-9F6A-A55724C282AC}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe => No File
FirewallRules: [TCP Query User{7A80444E-4A94-4FE5-8738-C79089185217}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe => No File
FirewallRules: [{130FD4F1-9BAD-444D-A494-3AA9EDCD8A1F}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe => No File
FirewallRules: [{0CE8F9CA-5D5A-4C66-B93C-DF9D2A8F1A28}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\ElementsPanelDaemon.exe => No File

EmptyTemp:
End