Preventivní kontrola

[Roli]

Ještě tohle fixni v HJT :

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com?SearchSource= ... =CT3072253
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

HJT najdeš zde :

C:\Program Files\trend micro\Monča.exe

Jak na to jsem již psal.


Znovu stáhni a spusť OTMoveIt

do levého okna aplikace pod Paste Instructions for Items to be Moved zkopíruj tento text:

Kód: Vybrat vše

:processes
explorer.exe       

:files 
C:\*.tmp
C:\WINDOWS\System32\*.tmp
C:\WINDOWS\*.tmp
C:\Users\Monča\AppData\Roaming\Mozilla\Firefox\Profiles\olfeyqby.default\searchplugins\askcom.xml
C:\Users\Monča\AppData\Roaming\Mozilla\Firefox\Profiles\olfeyqby.default\searchplugins\conduit.xml
C:\Users\Monča\AppData\Roaming\Mozilla\Firefox\Profiles\olfeyqby.default\searchplugins\daemon-search.xml
C:\Users\Monča\AppData\Roaming\Mozilla\Firefox\Profiles\olfeyqby.default\searchplugins\icqplugin-1.xml
C:\Users\Monča\AppData\Roaming\Mozilla\Firefox\Profiles\olfeyqby.default\searchplugins\icqplugin-2.xml
C:\Users\Monča\AppData\Roaming\Mozilla\Firefox\Profiles\olfeyqby.default\searchplugins\icqplugin.xml
C:\32788R22FWJFW
C:\ComboFix – zástupce.lnk

:reg
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{AEB6717E-7E19-11d0-97EE-00C04FD91972}"=-

:commands
[purity]
[emptytemp]
[start explorer]

klikni na MoveIt! a v pravém zeleném okně aplikace se Ti objeví info o provedene akci, obsah okna zkopíruj sem,

pokud aplikace bude požadovat restart, klikni na YES

v tom případě sem chci zkopírovat obsah logu uloženého na C:\_OTMoveIt\MovedFiles\

[Dr.Monca]

All processes killed
========== PROCESSES ==========
No active process named explorer.exe was found!
========== FILES ==========
File/Folder C:\*.tmp not found.
File/Folder C:\WINDOWS\System32\*.tmp not found.
File/Folder C:\WINDOWS\*.tmp not found.
C:\Users\Monča\AppData\Roaming\Mozilla\Firefox\Profiles\olfeyqby.default\searchplugins\askcom.xml moved successfully.
C:\Users\Monča\AppData\Roaming\Mozilla\Firefox\Profiles\olfeyqby.default\searchplugins\conduit.xml moved successfully.
C:\Users\Monča\AppData\Roaming\Mozilla\Firefox\Profiles\olfeyqby.default\searchplugins\daemon-search.xml moved successfully.
C:\Users\Monča\AppData\Roaming\Mozilla\Firefox\Profiles\olfeyqby.default\searchplugins\icqplugin-1.xml moved successfully.
C:\Users\Monča\AppData\Roaming\Mozilla\Firefox\Profiles\olfeyqby.default\searchplugins\icqplugin-2.xml moved successfully.
C:\Users\Monča\AppData\Roaming\Mozilla\Firefox\Profiles\olfeyqby.default\searchplugins\icqplugin.xml moved successfully.
C:\32788R22FWJFW folder moved successfully.
C:\ComboFix – zástupce.lnk moved successfully.
========== REGISTRY ==========
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks\\{AEB6717E-7E19-11d0-97EE-00C04FD91972} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{AEB6717E-7E19-11d0-97EE-00C04FD91972}\ not found.
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Guest
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->FireFox cache emptied: 0 bytes

User: MONLA
->Temp folder emptied: 0 bytes

User: MonÄŤa
->Temp folder emptied: 0 bytes

User: Monča
->Temp folder emptied: 113700 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 258007631 bytes
->Flash cache emptied: 3093 bytes

User: Public
->Temp folder emptied: 0 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 2060 bytes
%systemroot%\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 33170 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 246,00 mb


OTM by OldTimer - Version 3.1.19.0 log created on 05202012_082922

Files moved on Reboot...

Registry entries deleted on Reboot...

[Roli]

Znovu spusť OTMoveIt a nahoře v aplikaci klini na CleanUP!

tímto po sobě uklidí.


Defragmentuj disk buď integrovaným windows nástrojem,

nebo jinou aplikací, například Defragglerem


Pak dej vědět jaký je stav PC.

[Dr.Monca]

Asi je to už v pořádku, děkuji.

[Roli]

Není zač.