PC Zaseknutí, Pípání "kontrola logu"

[jerabina]

Ten Junkware Removal Tool udělej znovu prosím.

Zavři všechny programy a prohlížeče. Deaktivuj antivir a firewall.
Prosím, odpoj všechny USB (kromě myši s klávesnice) nebo externí disky z počítače před spuštěním tohoto programu.
Spusť znovu RogueKiller ( Pro Windows Vista nebo Windows 7, klepni pravým a vyber "Spustit jako správce", ve Windows XP poklepej ke spuštění).
- Počkej, až Prescan dokončí práci...
- Pak klikni na "Prohledat " ,po jeho skončení:
- V záložkách (Registry , Tasks , Web Browser apod.) vše zatrhni (dej zatržítka)
(musíš dát myší zatržítko do toho čtverečku vlevo od registru ap.)
- Klikni na "Smazat"
- Počkej, dokud Status box nezobrazí " Mazání dokončeno "
- Klikni na "Zpráva " a zkopíruj a vlož obsah té zprávy prosím sem. Log je možno nalézt v RKreport [číslo]. txt na ploše.
- Zavři RogueKiller

Vypni antivir
Stáhni
Zoek.exe

a uloz si ho na plochu.
Zavři všechny ostatní programy , okna i prohlížeče.
Spusť Zoek.exe ( u win vista , win7, 8 klikni na něj pravým a vyber : „Spustit jako správce“
- pozor , náběh programu může trvat déle.

Do okna programu vlož skript níže:

Kód: Vybrat vše

autoclean;
emptyclsid;
iedefaults;
FFdefaults;
CHRdefaults;
emptyalltemp;
resethosts;

klikni na Run Script
Program provede sken , opravu, sken i oprava může trvat i více minut ,je třeba posečkat do konce. Do okna neklikej!
Program nabídne restart , potvrď .

Po restartu se může nějaký čas ukázat pouze černá plocha , to je normální. Je třeba počkat až se vytvoří log. Ten si můžeš uložit třeba do dokumentů , jinak se sám ukládá do:
C:\zoek-results.log
Zkopíruj sem celý obsah toho logu.

Vlož nový log z HJT + informuj o problémech.

[Reklama]

[adamczech]

Getting user folders.

Stopping running processes.

Emptying Temp folders.


User: adam
->Temp folder emptied: 1953022 bytes
->Temporary Internet Files folder emptied: 39245337 bytes
->Java cache emptied: 0 bytes
->Google Chrome cache emptied: 301367666 bytes
->Flash cache emptied: 1180 bytes

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Public

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 0 bytes

Emptying RecycleBin. Do not interrupt.

RecycleBin emptied: 0 bytes
Process complete!

Total Files Cleaned = 327,00 mb

[adamczech]

stím RogueKiller si nějak nevím rady :(

[adamczech]

Zoek.exe v5.0.0.0 Updated 04-May-2015
Tool run by adam on Łt 07. 07. 2015 at 21:45:08,85.
Microsoft Windows 8.1 6.3.9600 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\adam\Desktop\zoek.exe [Scan all users] [Script inserted]

==== Older Logs ======================

==== Reset Hosts File ======================


==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\HssTrayService deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Eventlog\Application\HssWd deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\HssWd deleted successfully

==== Deleting Files \ Folders ======================

C:\PROGRA~2\Hotspot Shield deleted
C:\Users\adam\AppData\Roaming\Hotspot Shield deleted
C:\PROGRA~3\Hotspot Shield deleted
C:\PROGRA~3\Package Cache deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hotspot Shield deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk deleted
C:\Windows\SysNative\config\systemprofile\Searches deleted

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"online_banking_69A4E213815F42BD863D889007201D82@kaspersky.com"="C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.1\FFExt\online_banking@kaspersky.com" [03. 07. 2015 14:32]

==== Chromium Look ======================

Google Chrome Version: 43.0.2357.130

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
dbhjdbfgekjfcfkkfjjmlmojhbllhbho - https://chrome.google.com/webstore/deta ... ojhbllhbho[]

WOT - adam\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhmmomiinigofkjcapegjjndpbikblnp
SIH - adam\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmeakgjggjdlcpncigglobpjbkabhmjl

==== Chromium Startpages ======================

C:\Users\adam\AppData\Local\Google\Chrome\User Data\Default\Preferences
",\"vendor_id\":\"63\",\"width_microns\":322000},{\"custom_display_name\":\"A5 Extra\",\"height_microns\":235000,\"name\":\"ISO_A5_EXTRA\",\"vendor_id\":\"64\",\"width_microns\":174000},{\"custom_display_name\":\"B5 (ISO) Extra\",\"height_microns\":276000,\"name\":\"ISO_B5_EXTRA\",\"vendor_id\":\"65\",\"width_microns\":201000},{\"custom_display_name\":\"A2\",\"height_microns\":594000,\"name\":\"ISO_A2\",\"vendor_id\":\"66\",\"width_microns\":420000},{\"custom_display_name\":\"Japonská dvojitá pohlednice\",\"height_microns\":200000,\"name\":\"JPN_OUFUKU\",\"vendor_id\":\"69\",\"width_microns\":148000},{\"custom_display_name\":\"A6\",\"height_microns\":148000,\"name\":\"ISO_A6\",\"vendor_id\":\"70\",\"width_microns\":105000},{\"custom_display_name\":\"Japonská obálka Kaku č. 2\",\"height_microns\":332000,\"name\":\"JPN_KAKU2\",\"vendor_id\":\"71\",\"width_microns\":240000},{\"custom_display_name\":\"Japonská obálka Kaku č. 3\",\"height_microns\":277000,\"vendor_id\":\"72\",\"width_microns\":216000},{\"custom_display_name\":\"Japonská obálka Chou č. 3\",\"height_microns\":235000,\"name\":\"JPN_CHOU3\",\"vendor_id\":\"73\",\"width_microns\":120000},{\"custom_display_name\":\"Japonská obálka Chou č. 4\",\"height_microns\":205000,\"name\":\"JPN_CHOU4\",\"vendor_id\":\"74\",\"width_microns\":90000},{\"custom_display_name\":\"B6 (JIS)\",\"height_microns\":182000,\"name\":\"JIS_B6\",\"vendor_id\":\"88\",\"width_microns\":128000},{\"custom_display_name\":\"12×11\",\"height_microns\":304900,\"name\":\"NA_11X12\",\"vendor_id\":\"90\",\"width_microns\":279500},{\"custom_display_name\":\"Japonská obálka You 4\",\"height_microns\":235000,\"name\":\"JPN_YOU4\",\"vendor_id\":\"91\",\"width_microns\":105000},{\"custom_display_name\":\"Obálka PRC č. 1\",\"height_microns\":165000,\"name\":\"PRC_1\",\"vendor_id\":\"96\",\"width_microns\":102000},{\"custom_display_name\":\"Obálka PRC č. 4\",\"height_microns\":208000,\"name\":\"PRC_4\",\"vendor_id\":\"99\",\"width_microns\":110000},{\"custom_display_name\":\"Obálka PRC č. 6\",\"height_microns\":230000,\"name\":\"PRC_6\",\"vendor_id\":\"101\",\"width_microns\":120000},{\"custom_display_name\":\"Obálka PRC č. 7\",\"height_microns\":230000,\"name\":\"PRC_7\",\"vendor_id\":\"102\",\"width_microns\":160000},{\"custom_display_name\":\"Obálka PRC č. 8\",\"height_microns\":309000,\"name\":\"PRC_8\",\"vendor_id\":\"103\",\"width_microns\":120000}]},\"page_orientation\":{\"option\":[{\"is_default\":true,\"type\":\"PORTRAIT\"},{\"type\":\"LANDSCAPE\"},{\"type\":\"AUTO\"}]},\"supported_content_type\":[{\"content_type\":\"application/pdf\"}]},\"version\":\"1.0\"},\"selectedDestinationName\":\"Microsoft XPS Document Writer\",\"selectedDestinationExtensionId\":\"\",\"selectedDestinationExtensionName\":\"\",\"mediaSize\":{\"custom_display_name\":\"A4\",\"height_microns\":297000,\"is_default\":true,\"name\":\"ISO_A4\",\"vendor_id\":\"9\",\"width_microns\":210000}}"}},"profile":{"avatar_index":0,"content_settings":{"clear_on_exit_migrated":true,"exceptions":{"app_banner":{},"auto_select_certificate":{},"automatic_downloads":{},"cookies":{},"fullscreen":{"https://[*.]www.youtube.com:443,*":{"setting":1}},"geolocation":{},"images":{},"javascript":{},"media_stream":{},"media_stream_camera":{},"media_stream_mic":{},"metro_switch_to_desktop":{},"midi_sysex":{},"mixed_script":{},"mouselock":{},"notifications":{},"plugins":{},"popups":{},"ppapi_broker":{},"protocol_handlers":{},"push_messaging":{},"ssl_cert_decisions":{}},"pattern_pairs":{"https://[*.]www.youtube.com:443,*":{"fullscreen":1}},"pref_version":1},"exit_type":"Crashed","exited_cleanly":true,"icon_version":3,"is_managed":false,"managed_user_id":"","migrated_content_settings_exceptions":true,"migrated_default_content_settings":true,"migrated_default_media_stream_content_settings":true,"name":"První uživatel","per_host_zoom_levels":{}},"protection":{"macs":{}},"selectfile":{"last_directory":"C:\\Users\\adam\\Desktop"},"session":{"restore_on_startup_migrated":true,"startup_urls_migration_time":"13080132700950041"},"sync_promo":{"show_on_first_run_allowed":false},"translate_accepted_count":{"en":0,"sk":0},"translate_blocked_languages":["cs"],"translate_denied_count":{"en":1,"sk":1},"translate_last_denied_time":1435666420669.965,"translate_too_often_denied":true,"translate_whitelists":{}}
70617B41D65E32C407D47B556998AD3A699003BFA6122758","name":"52BDA7434B848895BF5154981F75A3CD00C3CA1A3BD5E0F41DA39EAC77B2FC2C","search_url":"D3A68964467FE9BA34F2AA4D8B233916C6100EE42377042D77DC32B6276FC57A"},"default_search_provider_data":{"template_url_data":"B0B8ACB809AB0FB2BECCC959F75F55BE7CC33CFAA74A610FE64965D274D91D83"},"extensions":{"settings":{"ahfgeienlihckogmohjhadlkjgocpleb":"DA30DA5C85A955F78570F3953A72CB39C1F9D175400A4DA26152BFACEF3C3025","bepbmhgboaologfdajaanbcjmnhjmhfn":"8DFB326F5F9BCBC66EAC33BCAC2AA2AF8B237E050657AC7EA25868A165159394","bhmmomiinigofkjcapegjjndpbikblnp":"7249627483699FB8973C40FC0AA16C1F35723E9482EB30B9B9EA6DA57BE3D631","cmeakgjggjdlcpncigglobpjbkabhmjl":"4A05552500F97862D2F0927AF5BFEFF41B89376A51650E6F4F4B95F99DD1A9CE","dbhjdbfgekjfcfkkfjjmlmojhbllhbho":"7AE0BFAFF830B5B2C92F87ECEF47A64CA216AB1127EA07D930067E423556B023","eemcgdkfndhakfknompkggombfjjjeno":"ED430362236F776FE92B84A6268C883B369052E2435DAE790A68095AAB50D986","ennkphjdgehloodpbhlhldgbnhmacadg":"38B88CCDA63C859CE5D35C9EBBBF54112388235A57B0BFAF5EC62D271905159F","gfdkimpbcpahaombhbimeihdjnejgicl":"26E08D158A3E874F2E695B4A38076F7160C22819D8D64724E874058D0466945F","kmendfapggjehodndflmmgagdbamhnfd":"5DF219EB62F829844BE58772CCFABBA6825858C175051E983C0220E5BF8B6A04","mfehgcgbbipciphmccgaenjidiccnmng":"406AF593511A7937E299FD22B6DBFD1D0439D024871B519BD1B62CEBB0C6461C","mgndgikekgjfcpckkfioiadnlibdjbkf":"C27DBB1317DCD1C659F735CA742F85954B829C67B9FA0EED402FC4E097E92EB9","mhjfbmdgcfjbbpaeojofohoefgiehjai":"2610DCBF5D19E2D9AC53162993C3F22875FECEB3470C03E7077A836C93709A23","neajdppkdcdipfabeoofebfddakdcjhd":"976963EEC542DCF9A47EE4C87A78BFDA22951299E69AFAD81F0C3B79F125DA84","nkeimhogjdpnpccoofpliimaahmaaome":"CF0EB00C74C31D5A32AF92E964F2363A5BCD951D023F9B05032193B247AF01EF","nmmhkkegccagdldgiimedpiccmgmieda":"BB27EE824FB789BDE438513DA4D58E1D21E28C322F940B0AE199B07FCA1A2B1E","pafkbggdmjlpgkdkcbjmhmfcdpncadgh":"378DF08596C42F9F563CE389D51D0A37C8E1375EEAE2A6E1E8D3DE36E85FACE9"}},"google":{"services":{"last_username":"BEACC3D40200F09C14248E4764015FFF4B229A997C2F7758A53F28053BF38B8F","username":"8E01C319AB03A408D3CBC3FDE89BEEE490A2E59C8EC2C8A9B2A0EDC3B3758501"}},"homepage":"C80022DD8AAB5B694B472769ABC27E78FC7D45706055227184EA6C3C80278856","homepage_is_newtabpage":"2E4AFDF148C02E45C82B0AE42EE7347687C03E0DF4BA216D44CE33B192AE3B4E","pinned_tabs":"6E64645C99644EEFABEA7B1BAFA947C42CE3D564742692D50608C768A4AF94F0","prefs":{"preference_reset_time":"86A3C78ECF80FF34FC4E2A6A8603A44E87BFAE3DA66805FA2DE503D613C154C5"},"profile":{"reset_prompt_memento":"DF28F13BA776DCB9DC8BAD4DEB5FE345DFF35464C0AB0BDF869A8AE7D7013590"},"safebrowsing":{"incidents_sent":"25FAD82C3A699AF55FBE6AFEEF2069784AD4B7AA9A8AEE91F0FC47E8BE02272D"},"search_provider_overrides":"A81FA55ACDF5FD3C3F866FD2661406187F3D6441AC944508208624E6E8506497","session":{"restore_on_startup":"2EF447B688E120B31FC175970388C7CB37707960E7408102F7F0B1DA8125709D","startup_urls":"AF58F47F9FE3ECDA7A1BC481F19969771457274AD85E6A2687A007E368371C30"},"software_reporter":{"prompt_reason":"D29513D566ACB4D93C71203427EAA2BDB4DF216DD262B720C3ED14067871822E","prompt_seed":"7BA776F9D7FBB1F611EAED5F46B6F05352D8760121E4771ABAF5D6D2EB926373","prompt_version":"86A3DDE094EFBA07BFAB465A15FBD00419FC59457391CDE50E4471BD204F31A4"},"sync":{"remaining_rollback_tries":"4C17EF33267DF38CBB36D9CB3C0893F9AB908B84F8537BD18F6FEEB583C0479A"}},"super_mac":"4AA41CA8C0111CE0713A965E3B21AB335A84F82634182AA4381D5B433004A695"},"session":{"startup_urls":["http://www.google.com/"]}}


==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/p/?LinkId=255141"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/p/?LinkId=255141"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"

==== Reset Google Chrome ======================

C:\Users\adam\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\adam\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences was reset successfully
C:\Users\adam\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
C:\Users\adam\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal was reset successfully

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\HotspotShield deleted successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\adam\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Users\adam\AppData\Local\Microsoft\Windows\INetCache\IE\BEAPVLZ6 will be deleted at reboot
C:\Users\adam\AppData\Local\Microsoft\Windows\INetCache\IE\J9W48VIH will be deleted at reboot
C:\Users\adam\AppData\Local\Microsoft\Windows\INetCache\IE\JCCA2NS9 will be deleted at reboot
C:\Users\adam\AppData\Local\Microsoft\Windows\INetCache\IE\MSV5D6TD will be deleted at reboot

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

C:\Users\adam\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

No Java Cache Found

==== C:\zoek_backup content ======================

C:\zoek_backup (files=265 folders=61 51618200 bytes)

==== Empty Temp Folders ======================

C:\Users\adam\AppData\Local\Temp will be emptied at reboot
C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\adam\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Users\adam\AppData\Local\Microsoft\Windows\INetCache\IE\BEAPVLZ6" not found
"C:\Users\adam\AppData\Local\Microsoft\Windows\INetCache\IE\J9W48VIH" not found
"C:\Users\adam\AppData\Local\Microsoft\Windows\INetCache\IE\JCCA2NS9" not found
"C:\Users\adam\AppData\Local\Microsoft\Windows\INetCache\IE\MSV5D6TD" not found

==== EOF on Łt 07. 07. 2015 at 21:57:04,28 ======================

[adamczech]

informace o problémech, zatím je vše OK žádný crash akorát zkoušel jsem heavyload test v bsod sekci a PC se mi zasekl ale nebylo to tak jako předtím..
Mohl jsem jít do správce uloh a tam např vypínat procesy ale když sem se chtěl odhlásit tak se mi to zaseklo a musel jsem to zase natrvdo :(...

[adamczech]

Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 22:00:27, on 7. 7. 2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17840)


Boot mode: Normal

Running processes:
C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.1\avpui.exe
C:\Program Files (x86)\Steam\Steam.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\PROGRA~2\Raptr\raptr_im.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\adam\Downloads\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: ContentBlockerBrowserHelperObject - {03C04F0A-E2A3-4F7F-BA30-BFA06FFD1358} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.1\IEExt\ie_plugin.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll
O2 - BHO: VirtualKeyboardBrowserHelperObject - {B5D5BB14-C8E2-478D-9C97-574AC10AF9E8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.1\IEExt\ie_plugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll
O2 - BHO: Safe Money Plugin - {E3D96E85-529D-4269-AC6A-97CF9E2221E3} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.1\IEExt\ie_plugin.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [Raptr] C:\PROGRA~2\Raptr\raptrstub.exe --startup
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [SandboxieControl] "C:\Program Files\Sandboxie\SbieCtrl.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite Automount] "C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_8D10E1676597F4FC1374B4572ED3AE1B] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window
O4 - Global Startup: GIGABYTE OC_GURU.lnk = C:\Program Files (x86)\GIGABYTE\GIGABYTE OC_GURU II\OC_GURU.exe
O9 - Extra button: Virtual Keyboard - {09A10376-994C-4BBF-9121-F50CF7BA237E} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.1\IEExt\ie_plugin.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://*.hola.org
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Kaspersky Anti-Virus Service 15.0.1 (AVP15.0.1) - Kaspersky Lab ZAO - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.1\avp.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\Windows\system32\igfxCUIService.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Sandboxie Service (SbieSvc) - Sandboxie Holdings, LLC - C:\Program Files\Sandboxie\SbieSvc.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 9062 bytes

[Orcus]

Vypni rezidentní štít antiviru a antispywaru
Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
Pokud bude po kontrole problém spustit aplikace nebo bude vyskakovat hláška o pokusu použít neplatnou operaci na klíč registru, který je označen pro odstranění, stačí restartovat počítač.

Pokud budou problémy , spusť v nouz. režimu.

[adamczech]

Combofix, this operation system is not supported!

[adamczech]

Momentálně se mi PC znova jen tak vypl,
Budto nějaky problemy s PC
nebo mam nějaky prach v case na to tlačítko force off

[jaro3]

ComboFix se odinstaluje takto:
Start-Spustit a zadej ComboFix /Uninstall

Vyčisti systém CCleanerem

Stáhni si OTC

na plochu. Poklepej na něj. Potom klikni na Clean up!.
Restartuj PC , pokud Ti bude doporučeno.


Prosím stáhni příslušnou verzi programu pro Tvůj systém 32-bit/64-bit FarbarRecovery Scan Tool (FrSt)
32bit.:
http://www.bleepingcomputer.com/downloa ... ool/dl/81/
64bit.:
http://www.bleepingcomputer.com/downloa ... ool/dl/82/
a ulož jej na plochu. ,pak spusť FrSt.
Potvrď způsob užití.
Neměň žádné z výchozích nastavení a klikni na položku „Scan“ („Skenovat“) .Když je skenování dokončeno, ukážou se dva logy = FRST.txt a Addition.txt a uloží se na ploše.Prosím zkopíruj sem celý jejich obsah.