Prosím o kontrolu logu Vyřešeno

[pakalcz]

All processes killed
========== OTL ==========
No active process named explorer.exe was found!
No active process named firefox.exe was found!
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}\ not found.
Prefs.js: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:52.0.2 removed from extensions.enabledAddons
64bit-Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@adobe.com/FlashPlayer\ deleted successfully.
Registry key HKEY_CURRENT_USER\Software\MozillaPlugins\@tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf\ deleted successfully.
C:\Users\Doma\AppData\Roaming\Mozilla\Extensions folder moved successfully.
C:\Users\Doma\AppData\Roaming\Mozilla\Firefox\extensions\staged\{7b8a500a-a464-4624-bd4f-73eaafe0f766}\modules folder moved successfully.
C:\Users\Doma\AppData\Roaming\Mozilla\Firefox\extensions\staged\{7b8a500a-a464-4624-bd4f-73eaafe0f766}\META-INF folder moved successfully.
C:\Users\Doma\AppData\Roaming\Mozilla\Firefox\extensions\staged\{7b8a500a-a464-4624-bd4f-73eaafe0f766}\chrome\content folder moved successfully.
C:\Users\Doma\AppData\Roaming\Mozilla\Firefox\extensions\staged\{7b8a500a-a464-4624-bd4f-73eaafe0f766}\chrome folder moved successfully.
C:\Users\Doma\AppData\Roaming\Mozilla\Firefox\extensions\staged\{7b8a500a-a464-4624-bd4f-73eaafe0f766} folder moved successfully.
C:\Users\Doma\AppData\Roaming\Mozilla\Firefox\extensions\staged folder moved successfully.
C:\Users\Doma\AppData\Roaming\Mozilla\Firefox\extensions folder moved successfully.
Folder C:\Users\Doma\AppData\Roaming\Mozilla\Firefox\extensions\staged\ not found.
C:\Users\Doma\AppData\Roaming\Mozilla\Firefox\Profiles\ct5piiwa.default\extensions folder moved successfully.
C:\Users\Doma\AppData\Roaming\Mozilla\Firefox\Profiles\ct5piiwa.default\features\{30e87b15-1c2a-4b46-b732-a38255b4e277}\deployment-checker@mozilla.org.xpi moved successfully.
C:\Users\Doma\AppData\Roaming\Mozilla\Firefox\Profiles\ct5piiwa.default\features\{30e87b15-1c2a-4b46-b732-a38255b4e277}\disable-prefetch@mozilla.org.xpi moved successfully.
C:\Users\Doma\AppData\Roaming\Mozilla\Firefox\Profiles\ct5piiwa.default\features\{30e87b15-1c2a-4b46-b732-a38255b4e277}\e10srollout@mozilla.org.xpi moved successfully.
C:\Users\Doma\AppData\Roaming\Mozilla\Firefox\Profiles\ct5piiwa.default\features\{8827bf3b-d816-43f5-a8f5-a05d3ed25cbc}\disable-prefetch@mozilla.org.xpi moved successfully.
C:\Users\Doma\AppData\Roaming\Mozilla\Firefox\Profiles\ct5piiwa.default\features\{8827bf3b-d816-43f5-a8f5-a05d3ed25cbc}\e10srollout@mozilla.org.xpi moved successfully.
C:\Users\Doma\AppData\Roaming\Mozilla\Firefox\Profiles\ct5piiwa.default\features\{9257cba6-3947-4f94-aa1a-c59075e4c4a7}\e10srollout@mozilla.org.xpi moved successfully.
C:\Program Files (x86)\Mozilla Firefox\browser\extensions folder moved successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoActiveDesktop deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoActiveDesktopChanges deleted successfully.
Registry value HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoSimpleNetIDList deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\Prefixes\\gopher|:gopher:// /E : value set successfully!
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\vw-wi\ deleted successfully.
File Protocol\Handler\vw-wi - No CLSID value found not found.
64bit-Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.
C:\WINDOWS\assembly\Desktop.ini moved successfully.
File EY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64 not found.
File EY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] not found.
File EY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64 not found.
File EY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] not found.
File EY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64 not found.
File EY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] not found.
Folder EY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64\ not found.
Folder EY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]\ not found.
Folder EY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64\ not found.
Folder EY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]\ not found.
========== FILES ==========
File\Folder C:\WINDOWS\System32\*.tmp not found.
File\Folder C:\WINDOWS\*.tmp not found.
File\Folder C:\WINDOWS\system32\*.tmp.dll not found.
File\Folder C:\WINDOWS\System32\dllcache\*.tmp not found.
File\Folder C:\WINDOWS\system32\SET*.tmp not found.
File\Folder C:\WINDOWS\system32\DUMP*.tmp not found.
File\Folder c:\windows\Tasks\*.job not found.
File\Folder C:\*.tmp not found.
File\Folder C:\WINDOWS\System32\drivers\*.tmp not found.
File\Folder C:\Program Files\*.tmp not found.
File\Folder C:\Documents and Settings\All Users\Data aplikací\*.tmp not found.
File\Folder C:\Windows\SysNative\drivers\*.tmp not found.
File\Folder C:\Windows\SysWow64\drivers\*.tmp not found.
File\Folder C:\Program Files (x86)\*.tmp not found.
File\Folder C:\Windows\SysWow64\*.tmp not found.
File\Folder C:\Windows\SysNative\*.tmp not found.
File\Folder C:\Program Files (x86)\*.tmp not found.
C:\ProgramData\Avg\Subscriptions folder moved successfully.
C:\ProgramData\Avg\Persistent Data\Antivirus\Logs folder moved successfully.
C:\ProgramData\Avg\Persistent Data\Antivirus folder moved successfully.
C:\ProgramData\Avg\Persistent Data folder moved successfully.
C:\ProgramData\Avg folder moved successfully.
========== REGISTRY ==========
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default.migrated

User: Doma
->Temp folder emptied: 981518018 bytes
->Temporary Internet Files folder emptied: 1933407 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 146056058 bytes
->Google Chrome cache emptied: 0 bytes
->Flash cache emptied: 814 bytes

User: Public

User: WOUTempAdmin

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 504928 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 0 bytes
%systemroot%\sysnative\config\systemprofile\AppData\LocalLow\Sun\Java\Deployment folder emptied: 0 bytes
RecycleBin emptied: 271446929 bytes

Total Files Cleaned = 1 337,00 mb


OTL by OldTimer - Version 3.2.69.0 log created on 04102017_064050

Files\Folders moved on Reboot...
C:\Users\Doma\AppData\Local\Microsoft\Windows\INetCache\counters.dat moved successfully.
C:\WINDOWS\temp\TmpFile1 moved successfully.

PendingFileRenameOperations files...

Registry entries deleted on Reboot...

[Reklama]

[jaro3]

Co problémy?

[pakalcz]

Tak, jak jsem napsal výše, Č, Ď, Ť, ť, ď...píše správně, ani ten Esetem zachycený podezřelý bootnet se již neobjevil. Podle mého mínění se zdá být vše OK.
Rozhodně moc děkuji za spolupráci a čas Vás všech, kteří jste se mi věnovali. Moc DÍKY!

[jaro3]

Spusť OTL a klikni na Vyčisti.

Stáhni si zde DelFix
https://toolslib.net/downloads/viewdownload/2-delfix/

ulož si soubor na plochu.
Poklepáním na ikonu spusť nástroj Delfix.exe
( Ve Windows Vista, Windows 7 a 8, musíš spustit soubor pravým tlačítkem myši -> Spustit jako správce .
V hlavním menu, zkontroluj tyto možnosti - Odstranění dezinfekce nástrojů (Remove desinfection tools) – Vyčistit body obnovy (Purge System Restore)
Poté klikněte na tlačítko Spustit (Run) a nech nástroj dělat svoji práci

Poté se zpráva se otevře (DelFix.txt). Vlož celý obsah zprávy sem.Jinak je zpráva zde:
v C: \ DelFix.txt

Pokud nejsou problémy , je to vše a můžeš dát vyřešeno , zelenou fajfku.

[pakalcz]

# DelFix v1.013 - Logfile created 11/04/2017 at 16:00:09
# Updated 17/04/2016 by Xplode
# Username : Doma - DOMA-PC
# Operating System : Windows 10 Pro (64 bits)

~ Removing disinfection tools ...

Deleted : C:\zoek_backup
Deleted : C:\AdwCleaner
Deleted : C:\zoek-results.log
Deleted : C:\zoek-results2017-03-29-112831.log
Deleted : C:\zoek-results2017-03-30-130720.log
Deleted : C:\zoek-results2017-03-31-095545.log
Deleted : C:\zoek-results2017-03-31-151602.log
Deleted : C:\Users\Doma\Desktop\Addition.txt
Deleted : C:\Users\Doma\Desktop\AdwCleaner.exe
Deleted : C:\Users\Doma\Desktop\AdwCleaner[C0].txt
Deleted : C:\Users\Doma\Desktop\JRT.exe
Deleted : C:\Users\Doma\Desktop\JRT.txt
Deleted : C:\Users\Doma\Desktop\hijackthis.exe
Deleted : C:\Users\Doma\Desktop\MBR.dat
Deleted : C:\Users\Doma\Desktop\RogueKillerX64.exe
Deleted : C:\Users\Doma\Desktop\TFC.exe
Deleted : C:\Users\Doma\Desktop\zoek-results.txt
Deleted : C:\Users\Doma\Desktop\zoek.exe
Deleted : HKLM\SOFTWARE\TrendMicro\Hijackthis

~ Cleaning system restore ...

Deleted : RP #47 [JRT Pre-Junkware Removal | 03/26/2017 11:24:47]
Deleted : RP #48 [Installed Sophos Virus Removal Tool. | 03/26/2017 12:22:12]
Deleted : RP #51 [Naplánovaný kontrolní bod | 04/03/2017 09:51:55]
Deleted : RP #56 [Windows Update | 04/10/2017 19:58:35]

New restore point created !

########## - EOF - ##########


Po vyčištění OTL a po DelFixu nespustím prohlížeč Microsoft Edge, prohledání (lupa na liště), Store a nezobrazuje se nabídka start. ?

[jaro3]

To je zajímavý , vše bylo OK a pak se použil jen program na vyčištění od použitých nástrojů..
Neinstaloval si něco?

Zkusil si několikrát restart?
Pokud ano , tak zvol poslední známou konfiguraci či bod obnovy.

[pakalcz]

Poslední konfigurace v nabídce vůbec není, bod obnovy taky ne. Odinstaluju akt. Office, které tam naběhly. Restarty nepomohly ani odpojení od el. sítě. Ostatní prohlížeče fungují krom Edge. Zítra budu na pc, tak uvidím.

[jaro3]

Ok , zkoušel si Edge přeinstalovat/opravit?

[pakalcz]

Pokusy o opravy systému selhaly, po aktualizaci systému Windows 10 Creators update 1703 vše šlape, jak Start, Store, tak i Edge. Děkuju za spolupráci.