Rozsekaný PC

[adedvade1]

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 15-02-2015
Ran by Adam at 2015-02-15 19:36:48 Run:1
Running from C:\Users\Adam\Desktop
Loaded Profiles: Adam (Available profiles: Adam)
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
Start
HKU\S-1-5-21-898189633-4014198124-770947749-1002\...\MountPoints2: {399fb78c-4402-11e4-be72-e0db55aa06a7} - "F:\setup.exe"
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
C:\Program Files (x86)\Skype\Toolbars
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
CHR HKU\S-1-5-21-898189633-4014198124-770947749-1002\...\Chrome\Extension: [fkkcgfbgohboipdhliafmacjnhjbhmim] - No Path
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - No Path
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [Not Found]
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1390176 2014-07-14] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1767520 2014-07-14] (Microsoft Corporation)
C:\WINDOWS\System32\Tasks\{E8939146-AC9F-44BF-9D0F-2049BF3A1100}
C:\WINDOWS\system32\ApnDatabase.xml
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
C:\Users\Adam\AppData\Local\Temp
End
*****************

"HKU\S-1-5-21-898189633-4014198124-770947749-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{399fb78c-4402-11e4-be72-e0db55aa06a7}" => Key deleted successfully.
HKCR\CLSID\{399fb78c-4402-11e4-be72-e0db55aa06a7} => Key not found.
"HKLM\SOFTWARE\Policies\Google" => Key deleted successfully.
HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}" => Key deleted successfully.
"HKCR\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}" => Key deleted successfully.
C:\Program Files (x86)\Skype\Toolbars => Moved successfully.
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}" => Key deleted successfully.
"HKCR\Wow6432Node\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}" => Key deleted successfully.
"HKCR\PROTOCOLS\Handler\skypec2c" => Key deleted successfully.
"HKCR\CLSID\{91774881-D725-4E58-B298-07617B9B86A8}" => Key deleted successfully.
HKCR\Wow6432Node\PROTOCOLS\Handler\skypec2c => Key not found.
"HKCR\Wow6432Node\CLSID\{91774881-D725-4E58-B298-07617B9B86A8}" => Key deleted successfully.
"HKU\S-1-5-21-898189633-4014198124-770947749-1002\SOFTWARE\Google\Chrome\Extensions\fkkcgfbgohboipdhliafmacjnhjbhmim" => Key deleted successfully.
"HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\fheoggkfdfchfphceeifdbepaooicaho" => Key deleted successfully.
"HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl" => Key deleted successfully.
c2cautoupdatesvc => Unable to stop service
c2cautoupdatesvc => Service deleted successfully.
c2cpnrsvc => Unable to stop service
c2cpnrsvc => Service deleted successfully.
C:\WINDOWS\System32\Tasks\{E8939146-AC9F-44BF-9D0F-2049BF3A1100} => Moved successfully.
C:\WINDOWS\system32\ApnDatabase.xml => Moved successfully.
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => Moved successfully.
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => Moved successfully.
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => Moved successfully.
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => Moved successfully.

"C:\Users\Adam\AppData\Local\Temp" directory move:

C:\Users\Adam\AppData\Local\Temp\adwcleaner.db => Moved successfully.
C:\Users\Adam\AppData\Local\Temp\AdwCleaner.jpg => Moved successfully.
C:\Users\Adam\AppData\Local\Temp\B160189F-5487-4E89-8476-241231F738D0.Repair.Admin.1.etl => Moved successfully.
Could not move "C:\Users\Adam\AppData\Local\Temp\CCDash.log" => Scheduled to move on reboot.
C:\Users\Adam\AppData\Local\Temp\CCDBootLog.log => Moved successfully.
C:\Users\Adam\AppData\Local\Temp\Cleaning.ico => Moved successfully.
C:\Users\Adam\AppData\Local\Temp\EULA.txt => Moved successfully.
Could not move "C:\Users\Adam\AppData\Local\Temp\JETA9DC.tmp" => Scheduled to move on reboot.
C:\Users\Adam\AppData\Local\Temp\MDNS_LOG_00_44.txt => Moved successfully.
C:\Users\Adam\AppData\Local\Temp\MDNS_LOG_05_29.txt => Moved successfully.
C:\Users\Adam\AppData\Local\Temp\MDNS_LOG_23_37.txt => Moved successfully.
C:\Users\Adam\AppData\Local\Temp\MDNS_LOG_25_21.txt => Moved successfully.
C:\Users\Adam\AppData\Local\Temp\MDNS_LOG_29_28.txt => Moved successfully.
C:\Users\Adam\AppData\Local\Temp\MDNS_LOG_29_51.txt => Moved successfully.
C:\Users\Adam\AppData\Local\Temp\MDNS_LOG_31_37.txt => Moved successfully.
Could not move "C:\Users\Adam\AppData\Local\Temp\MDNS_LOG_38_51.txt" => Scheduled to move on reboot.
C:\Users\Adam\AppData\Local\Temp\MDNS_LOG_41_56.txt => Moved successfully.
C:\Users\Adam\AppData\Local\Temp\MDNS_LOG_53_01.txt => Moved successfully.
C:\Users\Adam\AppData\Local\Temp\MDNS_LOG_57_10.txt => Moved successfully.
C:\Users\Adam\AppData\Local\Temp\MDNS_LOG_58_51.txt => Moved successfully.
C:\Users\Adam\AppData\Local\Temp\Quarantine.exe => Moved successfully.
C:\Users\Adam\AppData\Local\Temp\Report.ico => Moved successfully.
C:\Users\Adam\AppData\Local\Temp\Scan.ico => Moved successfully.
C:\Users\Adam\AppData\Local\Temp\sqlite3.dll => Moved successfully.
C:\Users\Adam\AppData\Local\Temp\StructuredQuery.log => Moved successfully.
C:\Users\Adam\AppData\Local\Temp\Uninstall.ico => Moved successfully.
C:\Users\Adam\AppData\Local\Temp\winstore.log => Moved successfully.
C:\Users\Adam\AppData\Local\Temp\wmplog00.sqm => Moved successfully.
C:\Users\Adam\AppData\Local\Temp\~97F6.tmp => Moved successfully.
C:\Users\Adam\AppData\Local\Temp\NVIDIA Corporation\NV_Cache\440ec2b251141faab5a5e914d6bdbb9e_fce8395f8fd8a878_a4b25972e4779d76_0_0.bin => Moved successfully.
C:\Users\Adam\AppData\Local\Temp\NVIDIA Corporation\NV_Cache\440ec2b251141faab5a5e914d6bdbb9e_fce8395f8fd8a878_a4b25972e4779d76_0_0.toc => Moved successfully.
C:\Users\Adam\AppData\Local\Temp\NVIDIA Corporation\NV_Cache\440ec2b251141faab5a5e914d6bdbb9e_fce8395f8fd8a878_a4b25972e4779d76_0_1.bin => Moved successfully.
C:\Users\Adam\AppData\Local\Temp\NVIDIA Corporation\NV_Cache\440ec2b251141faab5a5e914d6bdbb9e_fce8395f8fd8a878_a4b25972e4779d76_0_1.toc => Moved successfully.
C:\Users\Adam\AppData\Local\Temp\NVIDIA Corporation\NV_Cache\440ec2b251141faab5a5e914d6bdbb9e_fce8395f8fd8a878_a4b25972e4779d76_0_2.bin => Moved successfully.
Could not move "C:\Users\Adam\AppData\Local\Temp" directory. => Scheduled to move on reboot.


=> Result of Scheduled Files to move (Boot Mode: Normal) (Date&Time: 2015-02-15 19:37:50)<=

C:\Users\Adam\AppData\Local\Temp\CCDash.log => Is moved successfully.
C:\Users\Adam\AppData\Local\Temp\JETA9DC.tmp => Is moved successfully.
C:\Users\Adam\AppData\Local\Temp\MDNS_LOG_38_51.txt => Is moved successfully.
C:\Users\Adam\AppData\Local\Temp => Moved successfully.

==== End of Fixlog 19:37:50 ====

[Rudy]

Smazáno. Nastala nějaká změna?

[adedvade1]

Behom dneška nastal ešte jeden problém a to:
http://uloz.to/xosn92uS/bez-nazvu-png,
riešil som to pomocou https://support.microsoft.com/kb/2519899/cs
a nepomohlo, dá sa s tým robiť niečo takto cez net alebo mi doporučujete radšej vyhľadať servisnú pomoc, resp. preinštalovanie systému?
Chcem sa opýtať či náhodou neviete či záruka Dell Next Businness Day vzťahuje aj na takéto softvérové problémy- zavírenie PC. Vyčistené Cclenerom, prejdené Malawrebytes, nenašlo nič, prebehol som to aj eset online scanner a McAfee ktorú som dostal k PC na rok zadarmo, takisto nič. ...

[Rudy]

Zkuste to opravit pomocí FixIt: http://support2.microsoft.com/fixit/cs-cz , nebo win8manager: http://www.yamicsoft.com/windows8manager/ .

[adedvade1]

http://uloz.to/xhd6QtX8/bez-nazvu-png pomocou win8manager
a pomocou fix it ani neviem čo mám hľadať

[Rudy]

Opravu aktualizací. Pokud to nepůjde, dejte log ComboFix:

Stahnete a ulozte nejlepe na plochu ComboFix: http://download.bleepingcomputer.com/sUBs/ComboFix.exe

pote spustte aplikaci pod uctem s administratorskym opravnenim

hned po startu se zobrazi obrazovka s licencnimi podminkami, pokracujte kliknutim na tlacitko Ano.

v klidu si postavte na kafe (cela akce trva cca. 5-10 minut, nekdy i dele - dle toho, o jak rychly stroj se

jedna a kolika soubory se skener bude muset prodirat), behem skenu se nepokousejte spoustet zadne jine

aplikace ani nic jineho

behem skenovani nepropadejte panice, vas stroj muze byt restartovan (predevsim pri prvni aplikaci skeneru)

upozorneni: pokud pouzivate antispyware s rezidentnim stitem, prepnete jeho rezidentni stit do Install Mode,

pripadne jej po dobu skenu uplne deaktivujte, protoze dochazi pri skenu a vymazu pripadneho malware k

nezadoucim kolizim s rezidentem antispyware.

[adedvade1]

1.http://uloz.to/xgDorqpk/bez-nazvu-png cez fixit...

2.môžem sa ešte opýtať " pokud pouzivate antispyware s rezidentnim stitem, prepnete jeho rezidentni stit do Install Mode" ktoré to sú? nemám ani tušenie...
nechcem to pokaziť ešte viac ako to je...

3.postupne prichádzam na ďalšie veci čo niesu z pc v poriadku http://uloz.to/xh2V5LMs/desktop-rar, nedá sa zapnúť firewall, neukazuje aké je v PC ram a procesor...
nefungujú mi programovateľné tlačidlá na notebooku /DELL INSPIRON/, a neviem an čo všetko som ešte neprišiel...

[adedvade1]

pomohlo by toto sem? http://windows.microsoft.com/sk-sk/wind ... h-reset-pc
okrem bakalárskej práce v notebooku nemám nič za čím by som smútil, takže rozmýšľam nad preinštalovaním, len chcem vedieť či to pomôže...

[Rudy]

1. musíte hledat FixIT, určený pro váš oper. systém.
2. Obnova systému samozřejmě může pomoci.

[adedvade1]

Zajtra to preinštalujem a dám vedieť ako to dopadlo...

[Rudy]

OK.

[adedvade1]

preinštalovanie pomohlo, PC už ide pekne, nepreřažuje sa, len sa chcem spýtař na toto sem, je to na C http://uloz.to/xa43J9Fm/bez-nazvu-png, a nemám k tomu prístup, je to v poriadku?

[adedvade1]

???

[Rudy]

Je to v pořádku, jde o zálohu systému. K ní má přístup pouze systém.

[adedvade1]

Ďakujem, kľudne možme lock