Prosím o kontrolu logu

Zpráva

#16 Příspěvek od **altrok** » 02 srp 2017 09:47

Prvni tri nalezy jsou jiz v karantene AdwCleaneru, zbyle tri polozky odstrante/presunte do karanteny. Nasledne vypnete real-time ochranu Malwarebytes Anti-Malware, protoze muze kolidovat s Avirou

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avira Antivirus (Enabled - Up to date) {B3F630BD-538D-1B4A-14FA-14B63235278F}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AS: Avira Antivirus (Enabled - Up to date) {0897D159-75B7-14C4-2E4A-2FC449B26D32}
AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

Znovu spustte FRST.exe/FRST64.exe
stisknete Ctrl + y (obe klavesy zaroven)
otevre se fixlist.txt, do nejz vlozte obsah bileho pole nize
stisknete Ctrl + s (ulozite zmeny), pote fixlist zavrete
kliknete na tlacitko Fix

po restartu bude vedle FRST vytvoren fixlog, jehoz obsah vlozte do pristi odpovedi

Kód: Vybrat vše

Start
CreateRestorePoint:
CloseProcesses:
File: C:\Users\89vision\AppData\Roaming\32fc64ef45174b2eaaa4e2c55c06ac16\vaiB5BnoCBMA.exe
2017-07-18 23:22 - 2017-07-18 23:22 - 006948656 _____ (AVAST Software) C:\Users\Public\Desktop\avast_free_antivirus_setup_online.exe
2017-07-18 23:22 - 2017-07-18 23:22 - 006948656 _____ (AVAST Software) C:\Users\89vision\Downloads\avast_free_antivirus_setup_online.exe
CMD: type "C:\Users\89vision\AppData\Roaming\32fc64ef45174b2eaaa4e2c55c06ac16\vaiB5BnoCBMA.exe.config"
Folder: C:\Program Files\PureTimMash
Folder: C:\Users\89vision\AppData\LocalLow\TMasech
End

Sergeii · #17 Příspěvek od **Sergeii** » 03 srp 2017 21:17

Fix result of Farbar Recovery Scan Tool (x64) Version: 31-07-2017
Ran by 89vision (03-08-2017 22:15:17) Run:2
Running from C:\Users\89vision\Desktop
Loaded Profiles: 89vision (Available Profiles: 89vision)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CreateRestorePoint:
CloseProcesses:
File: C:\Users\89vision\AppData\Roaming\32fc64ef45174b2eaaa4e2c55c06ac16\vaiB5BnoCBMA.exe
2017-07-18 23:22 - 2017-07-18 23:22 - 006948656 _____ (AVAST Software) C:\Users\Public\Desktop\avast_free_antivirus_setup_online.exe
2017-07-18 23:22 - 2017-07-18 23:22 - 006948656 _____ (AVAST Software) C:\Users\89vision\Downloads\avast_free_antivirus_setup_online.exe
CMD: type "C:\Users\89vision\AppData\Roaming\32fc64ef45174b2eaaa4e2c55c06ac16\vaiB5BnoCBMA.exe.config"
Folder: C:\Program Files\PureTimMash
Folder: C:\Users\89vision\AppData\LocalLow\TMasech
End
*****************

Restore point was successfully created.
Processes closed successfully.

========================= File: C:\Users\89vision\AppData\Roaming\32fc64ef45174b2eaaa4e2c55c06ac16\vaiB5BnoCBMA.exe ========================

"C:\Users\89vision\AppData\Roaming\32fc64ef45174b2eaaa4e2c55c06ac16\vaiB5BnoCBMA.exe" => not found.
====== End of File: ======

C:\Users\Public\Desktop\avast_free_antivirus_setup_online.exe => moved successfully
C:\Users\89vision\Downloads\avast_free_antivirus_setup_online.exe => moved successfully

========= type "C:\Users\89vision\AppData\Roaming\32fc64ef45174b2eaaa4e2c55c06ac16\vaiB5BnoCBMA.exe.config" =========

<?xml version="1.0" encoding="utf-8" ?>
<configuration>
<startup useLegacyV2RuntimeActivationPolicy="true">
<system.xml.serialization>
<xmlSerializer useLegacySerializerGeneration="true"/>
</system.xml.serialization>
<supportedRuntime version="v2.0.50727"/>
<supportedRuntime version="v4.0" sku =".NETFramework,Version=v4.0,Profile=Client" />
<supportedRuntime version="v4.0" sku =".NETFramework,Version=v4.0" />
<supportedRuntime version="v4.0" sku =".NETFramework,Version=v4.0.1,Profile=Client" />
<supportedRuntime version="v4.0" sku =".NETFramework,Version=v4.0.1" />
<supportedRuntime version="v4.0" sku =".NETFramework,Version=v4.0.2,Profile=Client" />
<supportedRuntime version="v4.0" sku =".NETFramework,Version=v4.0.2" />
<supportedRuntime version="v4.0" sku =".NETFramework,Version=v4.0.3,Profile=Client" />
<supportedRuntime version="v4.0" sku =".NETFramework,Version=v4.0.3" />
<supportedRuntime version="v4.0" sku =".NETFramework,Version=v4.5" />
</startup>
<runtime>
<NetFx40_LegacySecurityPolicy enabled="true"/>
</runtime>
<system.net>
<settings>
<httpWebRequest useUnsafeHeaderParsing = "true" />
</settings>
</system.net>
</configuration>

========= End of CMD: =========

========================= Folder: C:\Program Files\PureTimMash ========================

2017-07-18 19:45 - 2017-07-19 00:43 - 000041163 _____ () C:\Program Files\PureTimMash\1589942560
2017-07-18 19:46 - 2015-06-01 08:51 - 000000041 _____ () C:\Program Files\PureTimMash\162360935

====== End of Folder: ======

========================= Folder: C:\Users\89vision\AppData\LocalLow\TMasech ========================

not found.

====== End of Folder: ======

The system needed a reboot.

==== End of Fixlog 22:15:23 ====

#18 Příspěvek od **altrok** » 04 srp 2017 13:33

Znovu spustte FRST.exe/FRST64.exe
stisknete Ctrl + y (obe klavesy zaroven)
otevre se fixlist.txt, do nejz vlozte obsah bileho pole nize
stisknete Ctrl + s (ulozite zmeny), pote fixlist zavrete
kliknete na tlacitko Fix

vedle FRST bude vytvoren fixlog, jehoz obsah vlozte do pristi odpovedi

Kód: Vybrat vše

Start
File: C:\Program Files\PureTimMash\1589942560
File: C:\Program Files\PureTimMash\162360935
End

Sergeii · #19 Příspěvek od **Sergeii** » 04 srp 2017 18:28

díky díky - fixlog

Fix result of Farbar Recovery Scan Tool (x64) Version: 31-07-2017
Ran by 89vision (04-08-2017 19:27:39) Run:3
Running from C:\Users\89vision\Desktop
Loaded Profiles: 89vision (Available Profiles: 89vision)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
File: C:\Program Files\PureTimMash\1589942560
File: C:\Program Files\PureTimMash\162360935
End
*****************

========================= File: C:\Program Files\PureTimMash\1589942560 ========================

File not signed
MD5: 11616A683D19A2E052FC4AF4658F9B30
Creation and modification date: 2017-07-18 19:45 - 2017-07-19 00:43
Size: 000041163
Attributes: ----A
Company Name:
Internal Name:
Original Name:
Product:
Description:
File Version:
Product Version:
Copyright:

====== End of File: ======

========================= File: C:\Program Files\PureTimMash\162360935 ========================

File not signed
MD5: FBDF7C471E67F674AE2AD7E4B912FADD
Creation and modification date: 2017-07-18 19:46 - 2015-06-01 08:51
Size: 000000041
Attributes: ----A
Company Name:
Internal Name:
Original Name:
Product:
Description:
File Version:
Product Version:
Copyright:

====== End of File: ======

==== End of Fixlog 19:27:39 ====

#20 Příspěvek od **altrok** » 05 srp 2017 10:24

Pozorujete na PC nejake konkretni problemy?

Otestujte na virustotal.com C:\Program Files\PureTimMash\1589942560 - pokud uz byl soubor otestovany, zvolte Reanalyse. Do pristiho prispevku dejte link (odkaz) s vysledky analyzy.

VIRY.CZ

Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu