Prosím kontrolu logu

[jaro3]

Odinstaluj:
IObit\Advanced SystemCare ( pokud najdeš)



Prosím, postupuj následujícím způsobem:
Otevřít poznámkový blok (Start => Všechny programy => Příslušenství => Poznámkový blok).
Prosím, zkopíruj do něj celý obsah níže.

Kód: Vybrat vše

Start
CloseProcesses:
Task: {07E03A9D-4DA8-422C-9A64-BDFDB59AFDB9} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {112496DF-FBF6-4CCB-BC87-16FB08439EBF} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {179D7ECE-D5DC-4953-AB44-BF67009267DF} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
Task: {1FC46C8D-D4F8-4F0F-8AE4-D196A1B34E3B} - \ASC9_PerformanceMonitor -> No File <==== ATTENTION
Task: {27B76B41-C566-4D99-B3CA-B80A792960F5} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {2DCBE731-7EA3-488F-88BD-A25D66B64AD7} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {314D70C1-D6A3-4D75-8484-CF34CD5C649F} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {33F25940-E262-468D-A94F-C8318C246A5B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-03-10] (Google Inc.)
Task: {4EFC6C86-9106-4D04-9915-58BB23C3480C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-03-10] (Google Inc.)
Task: {5727C547-72FE-443C-893E-FF39AF60C97F} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {8C242566-D067-4AB5-91CF-EC3E47777085} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {915BA3EF-C726-407F-82F3-0AC98F667BA6} - \Microsoft\Windows\Setup\gwx\rundetector -> No File <==== ATTENTION
Task: {B8E1F239-DC6C-405B-96CB-ABCA8BCD72E2} - System32\Tasks\ASC9_SkipUac_Béďa => C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe
Task: {CCD2C03D-4E04-4B31-B1C3-1228CE70633A} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {D34539CC-9F39-47ED-B53E-C6F32A185F26} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {D446B80D-5C08-4AD7-8281-73B5424BF177} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {E5BE0886-160B-4FA9-AB54-7151878CFC0B} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {F9A426FC-F836-4D55-BC75-2DE17A21E7DB} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: C:\WINDOWS\Tasks\ASC9_SkipUac_Béďa.job => C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
IE restricted site: HKU\S-1-5-21-2979737218-4224468862-3874295616-1003\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-2979737218-4224468862-3874295616-1003\...\008k.com -> 008k.com
IE restricted site: HKU\S-1-5-21-2979737218-4224468862-3874295616-1003\...\00hq.com -> 00hq.com
IE restricted site: HKU\S-1-5-21-2979737218-4224468862-3874295616-1003\...\0190-dialers.com -> 0190-dialers.com
IE restricted site: HKU\S-1-5-21-2979737218-4224468862-3874295616-1003\...\01i.info -> 01i.info
IE restricted site: HKU\S-1-5-21-2979737218-4224468862-3874295616-1003\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com
IE restricted site: HKU\S-1-5-21-2979737218-4224468862-3874295616-1003\...\05p.com -> 05p.com
IE restricted site: HKU\S-1-5-21-2979737218-4224468862-3874295616-1003\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com
IE restricted site: HKU\S-1-5-21-2979737218-4224468862-3874295616-1003\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com
IE restricted site: HKU\S-1-5-21-2979737218-4224468862-3874295616-1003\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com
IE restricted site: HKU\S-1-5-21-2979737218-4224468862-3874295616-1003\...\0calories.net -> 0calories.net
IE restricted site: HKU\S-1-5-21-2979737218-4224468862-3874295616-1003\...\0cj.net -> 0cj.net
IE restricted site: HKU\S-1-5-21-2979737218-4224468862-3874295616-1003\...\0scan.com -> 0scan.com
IE restricted site: HKU\S-1-5-21-2979737218-4224468862-3874295616-1003\...\1-britney-spears-nude.com -> 1-britney-spears-nude.com
IE restricted site: HKU\S-1-5-21-2979737218-4224468862-3874295616-1003\...\1-domains-registrations.com -> 1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-2979737218-4224468862-3874295616-1003\...\1-se.com -> 1-se.com
IE restricted site: HKU\S-1-5-21-2979737218-4224468862-3874295616-1003\...\1001movie.com -> 1001movie.com
IE restricted site: HKU\S-1-5-21-2979737218-4224468862-3874295616-1003\...\1001night.biz -> 1001night.biz
IE restricted site: HKU\S-1-5-21-2979737218-4224468862-3874295616-1003\...\100gal.net -> 100gal.net
IE restricted site: HKU\S-1-5-21-2979737218-4224468862-3874295616-1003\...\100sexlinks.com -> 100sexlinks.com
HKLM-x32\...\RunOnce: [DeleteOnReboot] => C:\Users\BA6F6E~1\AppData\Local\Temp\DeleteOnReboot.bat <===== ATTENTION
HKU\S-1-5-21-2979737218-4224468862-3874295616-1003\...\RunOnce: [NetworkResetPostReboot] => netsh.exe trace postreset
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
SearchScopes: HKU\S-1-5-21-2979737218-4224468862-3874295616-1003 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
2016-10-12 12:14 - 2016-10-12 12:14 - 00000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2016-09-25 03:56 - 2016-09-25 03:56 - 00003488 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2016-09-25 03:56 - 2016-09-25 03:56 - 00003264 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
C:\ProgramData\DP45977C.lfl
2016-09-25 03:30 - 2016-07-10 13:36 - 00000252 _____ C:\WINDOWS\Tasks\ASC9_SkipUac_Béďa.job
2016-09-25 03:18 - 2016-07-29 00:13 - 00000976 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-09-25 00:18 - 2016-07-29 00:13 - 00000972 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job

EmptyTemp:
End

(Můžeš použít funkci „vybrat vše“, klepni pravým tlačítkem myši na levé horní políčko v otevřeném poznámkovém bloku a zvol „ Vložit“).

Ulož jej na na plochu jako fixlist.txt


Spusťt FRST a stiskni tlačítko „Fix“ (Opravit) jen jednou a čekej.
Nástroj vypracuje log na ploše (Fixlog.txt), prosím zkopíruj sem celý jeho obsah.

[Reklama]

[WarCake]

Iobit Advance SystemCare jsem odinstaloval už na začátku problému, teď už by tam nemělo být nic


Fix result of Farbar Recovery Scan Tool (x64) Version: 16-10-2016
Ran by Béďa (16-10-2016 16:20:54) Run:1
Running from C:\Users\Béďa\Desktop
Loaded Profiles: Béďa (Available Profiles: Béďa)
Boot Mode: Safe Mode (with Networking)
==============================================

fixlist content:
*****************
Start
CloseProcesses:
Task: {07E03A9D-4DA8-422C-9A64-BDFDB59AFDB9} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {112496DF-FBF6-4CCB-BC87-16FB08439EBF} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {179D7ECE-D5DC-4953-AB44-BF67009267DF} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
Task: {1FC46C8D-D4F8-4F0F-8AE4-D196A1B34E3B} - \ASC9_PerformanceMonitor -> No File <==== ATTENTION
Task: {27B76B41-C566-4D99-B3CA-B80A792960F5} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {2DCBE731-7EA3-488F-88BD-A25D66B64AD7} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {314D70C1-D6A3-4D75-8484-CF34CD5C649F} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {33F25940-E262-468D-A94F-C8318C246A5B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-03-10] (Google Inc.)
Task: {4EFC6C86-9106-4D04-9915-58BB23C3480C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-03-10] (Google Inc.)
Task: {5727C547-72FE-443C-893E-FF39AF60C97F} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {8C242566-D067-4AB5-91CF-EC3E47777085} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {915BA3EF-C726-407F-82F3-0AC98F667BA6} - \Microsoft\Windows\Setup\gwx\rundetector -> No File <==== ATTENTION
Task: {B8E1F239-DC6C-405B-96CB-ABCA8BCD72E2} - System32\Tasks\ASC9_SkipUac_Béďa => C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe
Task: {CCD2C03D-4E04-4B31-B1C3-1228CE70633A} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {D34539CC-9F39-47ED-B53E-C6F32A185F26} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {D446B80D-5C08-4AD7-8281-73B5424BF177} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {E5BE0886-160B-4FA9-AB54-7151878CFC0B} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {F9A426FC-F836-4D55-BC75-2DE17A21E7DB} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: C:\WINDOWS\Tasks\ASC9_SkipUac_Béďa.job => C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
IE restricted site: HKU\S-1-5-21-2979737218-4224468862-3874295616-1003\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-2979737218-4224468862-3874295616-1003\...\008k.com -> 008k.com
IE restricted site: HKU\S-1-5-21-2979737218-4224468862-3874295616-1003\...\00hq.com -> 00hq.com
IE restricted site: HKU\S-1-5-21-2979737218-4224468862-3874295616-1003\...\0190-dialers.com -> 0190-dialers.com
IE restricted site: HKU\S-1-5-21-2979737218-4224468862-3874295616-1003\...\01i.info -> 01i.info
IE restricted site: HKU\S-1-5-21-2979737218-4224468862-3874295616-1003\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com
IE restricted site: HKU\S-1-5-21-2979737218-4224468862-3874295616-1003\...\05p.com -> 05p.com
IE restricted site: HKU\S-1-5-21-2979737218-4224468862-3874295616-1003\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com
IE restricted site: HKU\S-1-5-21-2979737218-4224468862-3874295616-1003\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com
IE restricted site: HKU\S-1-5-21-2979737218-4224468862-3874295616-1003\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com
IE restricted site: HKU\S-1-5-21-2979737218-4224468862-3874295616-1003\...\0calories.net -> 0calories.net
IE restricted site: HKU\S-1-5-21-2979737218-4224468862-3874295616-1003\...\0cj.net -> 0cj.net
IE restricted site: HKU\S-1-5-21-2979737218-4224468862-3874295616-1003\...\0scan.com -> 0scan.com
IE restricted site: HKU\S-1-5-21-2979737218-4224468862-3874295616-1003\...\1-britney-spears-nude.com -> 1-britney-spears-nude.com
IE restricted site: HKU\S-1-5-21-2979737218-4224468862-3874295616-1003\...\1-domains-registrations.com -> 1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-2979737218-4224468862-3874295616-1003\...\1-se.com -> 1-se.com
IE restricted site: HKU\S-1-5-21-2979737218-4224468862-3874295616-1003\...\1001movie.com -> 1001movie.com
IE restricted site: HKU\S-1-5-21-2979737218-4224468862-3874295616-1003\...\1001night.biz -> 1001night.biz
IE restricted site: HKU\S-1-5-21-2979737218-4224468862-3874295616-1003\...\100gal.net -> 100gal.net
IE restricted site: HKU\S-1-5-21-2979737218-4224468862-3874295616-1003\...\100sexlinks.com -> 100sexlinks.com
HKLM-x32\...\RunOnce: [DeleteOnReboot] => C:\Users\BA6F6E~1\AppData\Local\Temp\DeleteOnReboot.bat <===== ATTENTION
HKU\S-1-5-21-2979737218-4224468862-3874295616-1003\...\RunOnce: [NetworkResetPostReboot] => netsh.exe trace postreset
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
SearchScopes: HKU\S-1-5-21-2979737218-4224468862-3874295616-1003 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
2016-10-12 12:14 - 2016-10-12 12:14 - 00000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2016-09-25 03:56 - 2016-09-25 03:56 - 00003488 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2016-09-25 03:56 - 2016-09-25 03:56 - 00003264 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
C:\ProgramData\DP45977C.lfl
2016-09-25 03:30 - 2016-07-10 13:36 - 00000252 _____ C:\WINDOWS\Tasks\ASC9_SkipUac_Béďa.job
2016-09-25 03:18 - 2016-07-29 00:13 - 00000976 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-09-25 00:18 - 2016-07-29 00:13 - 00000972 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job

EmptyTemp:
End
*****************

Processes closed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{07E03A9D-4DA8-422C-9A64-BDFDB59AFDB9}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{07E03A9D-4DA8-422C-9A64-BDFDB59AFDB9}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Logon-5d" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{112496DF-FBF6-4CCB-BC87-16FB08439EBF}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{112496DF-FBF6-4CCB-BC87-16FB08439EBF}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxcontent" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{179D7ECE-D5DC-4953-AB44-BF67009267DF}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{179D7ECE-D5DC-4953-AB44-BF67009267DF}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{1FC46C8D-D4F8-4F0F-8AE4-D196A1B34E3B}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1FC46C8D-D4F8-4F0F-8AE4-D196A1B34E3B}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ASC9_PerformanceMonitor" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{27B76B41-C566-4D99-B3CA-B80A792960F5}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{27B76B41-C566-4D99-B3CA-B80A792960F5}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\launchtrayprocess" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{2DCBE731-7EA3-488F-88BD-A25D66B64AD7}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2DCBE731-7EA3-488F-88BD-A25D66B64AD7}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{314D70C1-D6A3-4D75-8484-CF34CD5C649F}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{314D70C1-D6A3-4D75-8484-CF34CD5C649F}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{33F25940-E262-468D-A94F-C8318C246A5B}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{33F25940-E262-468D-A94F-C8318C246A5B}" => key removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{4EFC6C86-9106-4D04-9915-58BB23C3480C}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4EFC6C86-9106-4D04-9915-58BB23C3480C}" => key removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{5727C547-72FE-443C-893E-FF39AF60C97F}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5727C547-72FE-443C-893E-FF39AF60C97F}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{8C242566-D067-4AB5-91CF-EC3E47777085}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8C242566-D067-4AB5-91CF-EC3E47777085}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{915BA3EF-C726-407F-82F3-0AC98F667BA6}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{915BA3EF-C726-407F-82F3-0AC98F667BA6}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\rundetector" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B8E1F239-DC6C-405B-96CB-ABCA8BCD72E2}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B8E1F239-DC6C-405B-96CB-ABCA8BCD72E2}" => key removed successfully
C:\WINDOWS\System32\Tasks\ASC9_SkipUac_Béďa => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ASC9_SkipUac_Béďa" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{CCD2C03D-4E04-4B31-B1C3-1228CE70633A}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CCD2C03D-4E04-4B31-B1C3-1228CE70633A}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfig" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D34539CC-9F39-47ED-B53E-C6F32A185F26}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D34539CC-9F39-47ED-B53E-C6F32A185F26}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Time-5d" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D446B80D-5C08-4AD7-8281-73B5424BF177}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D446B80D-5C08-4AD7-8281-73B5424BF177}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E5BE0886-160B-4FA9-AB54-7151878CFC0B}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E5BE0886-160B-4FA9-AB54-7151878CFC0B}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F9A426FC-F836-4D55-BC75-2DE17A21E7DB}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F9A426FC-F836-4D55-BC75-2DE17A21E7DB}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime" => key removed successfully
C:\WINDOWS\Tasks\ASC9_SkipUac_Béďa.job => moved successfully
C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => moved successfully
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => moved successfully
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => moved successfully
"HKU\S-1-5-21-2979737218-4224468862-3874295616-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\008i.com" => key removed successfully
"HKU\S-1-5-21-2979737218-4224468862-3874295616-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\008k.com" => key removed successfully
"HKU\S-1-5-21-2979737218-4224468862-3874295616-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\00hq.com" => key removed successfully
"HKU\S-1-5-21-2979737218-4224468862-3874295616-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\0190-dialers.com" => key removed successfully
"HKU\S-1-5-21-2979737218-4224468862-3874295616-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\01i.info" => key removed successfully
"HKU\S-1-5-21-2979737218-4224468862-3874295616-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\02pmnzy5eo29bfk4.com" => key removed successfully
"HKU\S-1-5-21-2979737218-4224468862-3874295616-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\05p.com" => key removed successfully
"HKU\S-1-5-21-2979737218-4224468862-3874295616-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\07ic5do2myz3vzpk.com" => key removed successfully
"HKU\S-1-5-21-2979737218-4224468862-3874295616-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\08nigbmwk43i01y6.com" => key removed successfully
"HKU\S-1-5-21-2979737218-4224468862-3874295616-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\093qpeuqpmz6ebfa.com" => key removed successfully
"HKU\S-1-5-21-2979737218-4224468862-3874295616-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\0calories.net" => key removed successfully
"HKU\S-1-5-21-2979737218-4224468862-3874295616-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\0cj.net" => key removed successfully
"HKU\S-1-5-21-2979737218-4224468862-3874295616-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\0scan.com" => key removed successfully
"HKU\S-1-5-21-2979737218-4224468862-3874295616-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\1-britney-spears-nude.com" => key removed successfully
"HKU\S-1-5-21-2979737218-4224468862-3874295616-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\1-domains-registrations.com" => key removed successfully
"HKU\S-1-5-21-2979737218-4224468862-3874295616-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\1-se.com" => key removed successfully
"HKU\S-1-5-21-2979737218-4224468862-3874295616-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\1001movie.com" => key removed successfully
"HKU\S-1-5-21-2979737218-4224468862-3874295616-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\1001night.biz" => key removed successfully
"HKU\S-1-5-21-2979737218-4224468862-3874295616-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\100gal.net" => key removed successfully
"HKU\S-1-5-21-2979737218-4224468862-3874295616-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\100sexlinks.com" => key removed successfully
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\RunOnce\\DeleteOnReboot => value removed successfully
HKU\S-1-5-21-2979737218-4224468862-3874295616-1003\Software\Microsoft\Windows\CurrentVersion\RunOnce\\NetworkResetPostReboot => value removed successfully
"HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer" => key removed successfully
"HKU\S-1-5-21-2979737218-4224468862-3874295616-1003\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66}" => key removed successfully
HKCR\CLSID\{012E1000-F331-11DB-8314-0800200C9A66} => key not found.
"C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job" => not found.
"C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA" => not found.
"C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore" => not found.
C:\ProgramData\DP45977C.lfl => moved successfully
"C:\WINDOWS\Tasks\ASC9_SkipUac_Béďa.job" => not found.
"C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job" => not found.
"C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job" => not found.

=========== EmptyTemp: ==========

BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 18632907 B
Java, Flash, Steam htmlcache => 154788533 B
Windows/system/drivers => 0 B
Edge => 125553 B
Chrome => 316341411 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 755924 B
NetworkService => 12786 B
Béďa => 3289573 B

RecycleBin => 0 B
EmptyTemp: => 471.1 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 16:21:17 ====

[jaro3]

Co problémy?

[WarCake]

Po restartu se pořád objevím v nouzovým režimu.

[jaro3]

Sophos Virus Removal Tool je praktický softwarový nástroj, který by mohl odstranit infekce, které antivirový program nedetekuje .
Stáhněte si ho zde z některého odkazu:
http://www.majorgeeks.com/mg/get/sophos ... ool,1.html
http://www.majorgeeks.com/mg/getmirror/ ... ool,1.html
http://www.majorgeeks.com/mg/getmirror/ ... ool,2.html

Viry mohou zpomalit počítač, nebo se snaží ukrást vaše data, a ani nevíte , že je máte. Co potřebujete, je rychlý a snadný způsob, jak je najít a zbavit se jich, pokud již máte antivirový program v počítači nainstalován , můžete nainstalovat i nástroj Sophos Virus Removal , který identifikuje a vyčistí zbylé infekce, které mohl Váš antivirový program přehlédnout.
K použití Sophos Virus Removal Tool na něj poklepejte a stiskněte tlačítko „Start scanning“ . Pak bude Sophos Virus Removal Tool vyhledávat a odstraňovat viry, které najde. Může být vyžadován restart.

Stáhni si Zemana AntiMalware Free z tohoto odkazu:
https://www.zemana.com/Download/AntiMal ... .Setup.exe
a ulož si ho na plochu.
Poklepej na tento soubor na ploše a postupuj podle pokynů k instalaci programu.
Přijmi licenci k používání programu EULA , pokud se nabídne.
Pokud je k dispozici aktualizace programu , klepni na tlačítko „Update now“ ( aktualizovat nyní).
Na konci klepni na tlačítko Nastavení (ozubené kolo v rohu)> Advanced> ""
- "Přečetl jsem si upozornění a chci pokračovat stejně .....
Zaškrtnutí Auto Launch
Nezaškrtnutí Auto upload
Zaškrtnutí All Browser Extensions (Všechna rozšíření prohlížeče)
Inteligentní nastavení skenování jako náhrada za hloubkové prověření
Zavři všechny otevřené soubory, složky a prohlížeče
Klepni na tlačítko Scan now (Skenovat) a začne sken hrozeb.
Když je skenování dokončeno, objeví se tisková zpráva , zkopíruj sem celý obsah té zprávy.

Stáhni si BootSafe
https://www.foolishit.com/bootsafe/

- stáhneš ho, spustíš a zvolíš možnost Safe Mode - Minimal
- klikneš na tlačítko Reboot
V normální režimu použij BootSafe

[WarCake]

Mám problém, ty první dvě instalačky mě nejdou nainstalovat, napíšemě to, že nelze nainstalovat v nouzovém režimu, ať zkusím najet do bodu obnovení, kdy mě fungoval PC, ale to byla jedna z pvních věcí co jsem udělal, bod obnovy selhal hned ze začátku. Mám tedy rovnou přeskočit k programu BoosSafe?

[jaro3]

Ano , použij BootSafe.

[WarCake]

Pánové, děkuji za vaši ochotu mě pomoci s problémem který jsem měl, včera mě to už tak nasralo, že jsem to odnesl do firmy kde pracuji a dal to ajťákovi co pro nás pracuje, Wokna mám už v cajku, na sprosťáka se to přeinstalovalo a je klid a říkal ať už se nehrabu v BIOSu, bylo to nějaký dojebaný, ale já tam nešahal.
V každým případě ještě jednou moc děkuji za vaši ochotu mě pomoci

[Orcus]

OK, můžeš označit jako vyřešené.