Kontrola logu

Zpráva

benda · #16 Příspěvek od **benda** » 10 úno 2014 19:32

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 10-02-2014
Ran by Pavel Benes at 2014-02-10 19:28:28 Run:1
Running from C:\Users\Pavel Benes\Desktop
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
Start
HKLM\...\Run: [AdobeAAMUpdater-1.0] - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [444904 2012-09-20] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe [40312 2013-12-18] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [CLMLServer_For_P2G8] - C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [111120 2012-06-08] (CyberLink)
HKLM-x32\...\Run: [CLVirtualDrive] - C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [491120 2012-07-12] (CyberLink Corp.)
HKLM-x32\...\Run: [RemoteControl10] - C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [97392 2012-08-15] (CyberLink Corp.)
HKLM-x32\...\Run: [AllShareAgent] - C:\Program Files (x86)\Samsung\AllShare\AllShareAgent.exe [285072 2012-01-19] (Samsung Electronics Co., Ltd.)
HKLM-x32\...\Run: [QuickTime Task] - C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2013-05-01] (Apple Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKU\S-1-5-21-3271643648-1942493767-3156359935-1002\...\Run: [TomTomHOME.exe] - C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe [248208 2013-08-27] (TomTom)
HKU\S-1-5-21-3271643648-1942493767-3156359935-1002\...\Run: [SUPERAntiSpyware] - C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [6563096 2013-12-20] (SUPERAntiSpyware)

SearchScopes: HKLM - DefaultScope {07E38654-341B-4EAD-AAE3-A520E40289C4} URL = http://www.bing.com/search?q={searchTer ... &pc=MASMJS
SearchScopes: HKLM - {07E38654-341B-4EAD-AAE3-A520E40289C4} URL = http://www.bing.com/search?q={searchTer ... &pc=MASMJS
SearchScopes: HKLM-x32 - {07E38654-341B-4EAD-AAE3-A520E40289C4} URL = http://www.bing.com/search?q={searchTer ... &pc=MASMJS
SearchScopes: HKCU - DefaultScope {07E38654-341B-4EAD-AAE3-A520E40289C4} URL =

FF Extension: Ads Removal - C:\Users\Pavel Benes\AppData\Roaming\Mozilla\Firefox\Profiles\g4frkyr9.default\Extensions\adsremoval@adsremoval.net [2013-12-16]
FF Extension: 7Go - C:\Users\Pavel Benes\AppData\Roaming\Mozilla\Firefox\Profiles\g4frkyr9.default\Extensions\7go@7go.com.xpi [2014-01-03]

CHR HKLM-x32\...\Chrome\Extension: [oejkcgajlodefenbbjdnaiahmbnnoole] - C:\Program Files (x86)\adawaretb\chrome-newtab-search.crx [2013-08-26]
CHR HKCU\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

S2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2151200 2013-12-03] (IObit)
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 SBIOSIO; \??\C:\Windows\Temp\SBIOSIO64.SYS [X]
S3 TVICPORT; \??\C:\windows\system32\DRIVERS\TVICPORT.SYS [X]

2014-02-04 21:42 - 2014-02-04 21:42 - 00004862 _____ () C:\Users\Pavel Benes\Desktop\Rkill.txt
2014-02-04 21:42 - 2014-02-04 21:42 - 00000000 ____D () C:\Users\Pavel Benes\Desktop\rkill
2014-02-08 13:17 - 2014-02-08 13:17 - 00112640 _____ (forum.viry.cz) C:\Users\Pavel Benes\Desktop\FRSTLauncher.exe
C:\ProgramData\ECReset_Partition.bat
C:\ProgramData\ExpressCacheRun.exe
C:\ProgramData\MakeMarkerFile.exe
C:\Users\EasySurvey\EasySurvey.exe
c:\programdata\Microsoft\Windows\Start Menu\Programs\StartUp\McAfee Security Scan Plus.lnk
c:\windows\Tasks\Adobe Flash Player Updater.job
c:\windows\Tasks\Driver Booster Update.job
c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
c:\program files (x86)\IObit\Driver Booster
c:\program files (x86)\IObit\LiveUpdate

Hosts:
CMD: shutdown /r /f /t 2

End
*****************

HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\AdobeAAMUpdater-1.0 => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Adobe Reader Speed Launcher => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Adobe ARM => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\CLMLServer_For_P2G8 => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\CLVirtualDrive => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\RemoteControl10 => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\AllShareAgent => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\QuickTime Task => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched => Value deleted successfully.
HKU\S-1-5-21-3271643648-1942493767-3156359935-1002\Software\Microsoft\Windows\CurrentVersion\Run\\TomTomHOME.exe => Value deleted successfully.
HKU\S-1-5-21-3271643648-1942493767-3156359935-1002\Software\Microsoft\Windows\CurrentVersion\Run\\SUPERAntiSpyware => Value deleted successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{07E38654-341B-4EAD-AAE3-A520E40289C4} => Key deleted successfully.
HKCR\CLSID\{07E38654-341B-4EAD-AAE3-A520E40289C4} => Key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{07E38654-341B-4EAD-AAE3-A520E40289C4} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{07E38654-341B-4EAD-AAE3-A520E40289C4} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value deleted successfully.
C:\Users\Pavel Benes\AppData\Roaming\Mozilla\Firefox\Profiles\g4frkyr9.default\Extensions\adsremoval@adsremoval.net => Moved successfully.
C:\Users\Pavel Benes\AppData\Roaming\Mozilla\Firefox\Profiles\g4frkyr9.default\Extensions\7go@7go.com.xpi => Moved successfully.
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\oejkcgajlodefenbbjdnaiahmbnnoole => Key deleted successfully.
"C:\Program Files (x86)\adawaretb\chrome-newtab-search.crx" => File/Directory not found.
HKCU\SOFTWARE\Policies\Google => Key deleted successfully.
LiveUpdateSvc => Service deleted successfully.
catchme => Service deleted successfully.
SBIOSIO => Service deleted successfully.
TVICPORT => Service deleted successfully.
C:\Users\Pavel Benes\Desktop\Rkill.txt => Moved successfully.
C:\Users\Pavel Benes\Desktop\rkill => Moved successfully.
"C:\Users\Pavel Benes\Desktop\FRSTLauncher.exe" => File/Directory not found.
C:\ProgramData\ECReset_Partition.bat => Moved successfully.
C:\ProgramData\ExpressCacheRun.exe => Moved successfully.
C:\ProgramData\MakeMarkerFile.exe => Moved successfully.
C:\Users\EasySurvey\EasySurvey.exe => Moved successfully.
c:\programdata\Microsoft\Windows\Start Menu\Programs\StartUp\McAfee Security Scan Plus.lnk => Moved successfully.
c:\windows\Tasks\Adobe Flash Player Updater.job => Moved successfully.
c:\windows\Tasks\Driver Booster Update.job => Moved successfully.
c:\windows\Tasks\GoogleUpdateTaskMachineCore.job => Moved successfully.
c:\windows\Tasks\GoogleUpdateTaskMachineUA.job => Moved successfully.
c:\program files (x86)\IObit\Driver Booster => Moved successfully.
c:\program files (x86)\IObit\LiveUpdate => Moved successfully.
"C:\Windows\System32\Drivers\etc\hosts" => Could not move.
Could not reset Hosts.

========= shutdown /r /f /t 2 =========

========= End of CMD: =========

==== End of Fixlog ====

#17 Příspěvek od **vyosek** » 11 úno 2014 07:47

Tak jeste uklidime

T-Cleaner http://vyosek.tym.cz/pro_usery/T-Cleaner.exe

Stahnete a spustte
Pro potvrzeni volby mackejte A, Enter
Po pouziti utilitu smazte
Antiviry touhou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)

OTC http://oldtimer.geekstogo.com/OTC.exe

Stahnete a spustte
Kliknete na CleanUp a potvrdte YES
Program uklidi a restartuje PC

TFC http://oldtimer.geekstogo.com/TFC.exe

Stahnete a spustte
Kliknete na Start a potvrdte OK
Program uklidi a restartuje pc
Po pouziti utilitu smazte

Stahnete Ccleaner http://forum.viry.cz/viewtopic.php?t=7478
Panel čistič

Vse nechte jak je, jen dejte Analyzovat a pote Spustit CCleaner

Panel registry

dejte Hledej problémy
nasledne Opravit problémy - zalohu registru doporucuji udelat, opravte vsechny problemy
postup opakujte dokud nebude bez problemu - vetsinou cca 3x

Panel nástroje

Zde muzete odinstalovat nepotrebne programy

CCleaner doporucuji pouzivat cca jednou za tyden

A pokud nejsou problemy ci dotazy, je to z me strany vse

benda · #18 Příspěvek od **benda** » 13 úno 2014 16:59

Moc děkuji za pomoc. Nyní vše funguje tak jak má. Hnedka vám jdu alespoň něco málo přispět

#19 Příspěvek od **vyosek** » 15 úno 2014 08:16

Nemate zac, rad jsem pomohl

Zase nekdy Obrázek

Za podporu fora jmenem celeho tymu dekuji

A na zaklade Pravidla o zamykani temat

VIRY.CZ

Kontrola logu

Re: Kontrola logu

Re: Kontrola logu

Re: Kontrola logu

Re: Kontrola logu