VIRY.CZ

Ne, byly, ted uz ne.. takze je zakrok hotov? Dekuji moc

Neni to hotovo, i drobnosti je treba resit. Kde mam ten log z OTM? Uz jste ho spoustel? Pokud jste ho jeste nespoustel, tak nakopirujte jeste pod slovo :services toto X6va011
Takze to bude vypadat takto

:services
X6va011
AdobeARMservice
BBUpdate
NAUpdate
BBSvc

Tady to je :

All processes killed
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 56468 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: Public

User: UpdatusUser
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 56468 bytes

User: Vítek
->Temp folder emptied: 90126058 bytes
->Temporary Internet Files folder emptied: 379028309 bytes
->Flash cache emptied: 61100 bytes

User: V�tek

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 126737167 bytes
%systemroot%\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 33170 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 33170 bytes
RecycleBin emptied: 247116 bytes

Total Files Cleaned = 569,00 mb


[EMPTYFLASH]

User: All Users

User: Default
->Flash cache emptied: 0 bytes

User: Default User
->Flash cache emptied: 0 bytes

User: Public

User: UpdatusUser
->Flash cache emptied: 0 bytes

User: Vítek
->Flash cache emptied: 0 bytes

User: V�tek

Total Flash Files Cleaned = 0,00 mb

Restore point Set: OTM Restore Point
C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully
========== SERVICES/DRIVERS ==========
Error: Unable to stop service X6va011!
Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\X6va011 deleted successfully.
Service AdobeARMservice stopped successfully!
Service AdobeARMservice deleted successfully!
Service BBUpdate stopped successfully!
Service BBUpdate deleted successfully!
Service NAUpdate stopped successfully!
Service NAUpdate deleted successfully!
Service BBSvc stopped successfully!
Service BBSvc deleted successfully!
========== FILES ==========
File/Folder C:\Windows\system32\*.tmp.dll not found.
File/Folder C:\Windows\system32\SET*.tmp not found.
File/Folder C:\Windows\*.tmp not found.
File/Folder C:\Windows\SysWOW64\Drivers\X6va011 not found.
========== REGISTRY ==========
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks\\{b6ac5e3c-5ceb-4e72-b451-f0e1ba983c14} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{b6ac5e3c-5ceb-4e72-b451-f0e1ba983c14}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9030D464-4C02-4ABF-8ECC-5164760863C6}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9030D464-4C02-4ABF-8ECC-5164760863C6}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar\\{8dcb7100-df86-4384-8842-8fa844297b3f} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8dcb7100-df86-4384-8842-8fa844297b3f}\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\IgfxTray not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\AdobeAAMUpdater-1.0 not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\DAEMON Tools Lite deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run\\Adobe ARM deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run\\LManager deleted successfully.

OTM by OldTimer - Version 3.1.21.0 log created on 12312012_004942

Files moved on Reboot...
C:\Users\Vítek\AppData\Local\Temp\Rar$EX00.412\tv_x64.dll moved successfully.
C:\Users\Vítek\AppData\Local\Temp\Rar$EX00.106\tv_x64.dll moved successfully.
C:\Users\Vítek\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
C:\Users\Vítek\AppData\Local\Temp\MMDUtl.log moved successfully.
C:\Users\Vítek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\VDWTMT20\afr[1].htm moved successfully.
C:\Users\Vítek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\VDWTMT20\afr[3].htm moved successfully.
C:\Users\Vítek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\VDWTMT20\viewtopic[2].htm moved successfully.
C:\Users\Vítek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\VDWTMT20\viewtopic[3].htm moved successfully.
C:\Users\Vítek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\MSIMGSIZ.DAT moved successfully.
C:\Users\Vítek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\YYOHZB87\home[1].htm moved successfully.
File C:\Users\Vítek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\YYOHZB87\xd_arbiter[1].htm not found!
File C:\Users\Vítek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\YYOHZB87\xd_arbiter[2].htm not found!
File C:\Users\Vítek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\P1FAD1EV\xd_arbiter[1].htm not found!
C:\Users\Vítek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\L5C8L11S\ads-in-client[4].js moved successfully.
C:\Users\Vítek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\235EGL78\facebook[1].htm moved successfully.
File move failed. C:\Windows\temp\dsiwmis.log scheduled to be moved on reboot.
File move failed. C:\Windows\temp\LMutilps32.log scheduled to be moved on reboot.

Registry entries deleted on Reboot...

A jeste si dame jeden sken a pokud tam nebude nic vazneho, bude uz posledni


Stahnete RogueKiller http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe , ulozte ho na plochu, kliknete na nej pravym mysidlem a levym na Spustit jako spravce.
Probehne kratoucky testik a pak se zpristupni vpravo nahore tlacitko Prohledat. Na to kliknete a probehne dalsi test.
Po dokonceni kliknete na napis Zprava a objevi se log. Ten mi sem vlozte

Omlouvám se ale anitvirus mi tento soubor odstranil. Říká že neni bezpečný..
Mám Antivirus vypnout?

Je to samozrejme falesny poplach, ten program tu pouzivame porad. Bud vypnout, nebo dat do vyjimek. Ale radeji na chvili vypnout, at mu nebrani v cinnosti

Píše to, že tato aplikace není platná Win32 .

Coze? A spoustite to jako spravce?


V tom pripade


Pokud nemate, zazalohujte si dulezita data (fotky, dokumenty, atd.)

Nepouzivejte ComboFix bez predchozi domluvy! Je to poruseni pravidel fora a ztratite tim narok na pomoc!

Stahnete ComboFix http://download.bleepingcomputer.com/sUBs/ComboFix.exe a ulozte ho na plochu.
Vypnete antivir i dalsi pripadne zabezpeceni.
Kliknete na ComboFix pravym mysidlem a levym na Spustit jako spravce
Odsouhlaste licencni podminky a nechte program pracovat. Jestli vam nabidne instalaci Konzoly pro zotaveni, souhlaste.
Po dobu skenu nic nespoustejte, nikam neklikejte.
Po dokonceni skenovani (muze dojit i k restartu pc) by se mel vytvorit log, ktery bude umisteny zde C:\ComboFix.txt
Jeho obsah sem zkopirujte

Kdyby po restartu nenabehl windows, restartujte znovu, mackejte klavesu F8 a zvolte - Posledni znama funkcni konfigurace
Kdyz windows nabehne, ale pri spousteni programu bude hlasena chyba, staci restartovat pc a bude to v poradku

Mam zazalohovanej notebook na 5 diskach, ale co kdyby jsem proste ten notebook pomocí těch disků obnovil tak jak byl z vyroby byla by to nejjednoduší cesta ne? na tom notebooku toho moc nemam protoze je uplne nový. ?

Na peti? Co jste tam smankote vsechno mel?


Tak jako muzete ho obnovit do tovarniho stavu. Vetsinou ma notas recovery partition, ktera se spousti nekterou klavesou. Zalezi na vas. Ale dejte teda vedet, jake je konecne rozhodnuti, at vim, jestli to tu mam sledovat, nebo uzavrit

Ano na pěti pomocí programu Packard Bell Recovery Managment. Udělám tu zálohu. Teda pokud se ten vir nebude vracet?

Nemel by se vracet. A kdyby nahodou ano, ozvete se. Nejak ho najdem a snad i zabijem.

Takze tema muzeme uzavrit, nebo jeste ne?

Ano, můžeme ho uzavřít.
Děkuji za spolupráci

Tak jo

Nemate vubec zac. Mejte se