VIRY.CZ

Malwarebytes Anti-Malware (Zkušební verze Malwarebytes Anti-Malware.) 1.70.0.1100
www.malwarebytes.org

Verze: v2013.02.21.03

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
TomSatr :: TOMSATR-PC [administrátor]

Ochrana: Povolena

21.2.2013 8:35:34
MBAM-log-2013-02-21 (10-18-28).txt

Typ: Kompletní kontrola (C:\|)
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 502951
Uplynulý čas: 1 hodin, 27 minut, 23 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 7
C:\Program Files (x86)\Illustrate\dBpowerAMP\Crack.exe (RiskWare.Tool.CK) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Zoner\Photo Studio 12\Program\zoner.photo.studio.v12.0.1.1.professional.czech-patch.exe (PUP.Hacktool.Patcher) -> Nebyla provedena žádná instrukce.
C:\Users\TomSatr\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\54CQJ5TI\update_3061_4887[1].exe (PUP.ToolBarInstaller) -> Nebyla provedena žádná instrukce.
C:\Users\TomSatr\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ALMF3PUK\5116667d5b1a7[1].exe (Adware.MultiPlug) -> Nebyla provedena žádná instrukce.
C:\Users\TomSatr\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ALMF3PUK\51166700554cb[1].exe (Adware.MultiPlug) -> Nebyla provedena žádná instrukce.
C:\Users\TomSatr\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\D2JBX0ZL\agent_setup[1].exe (PUP.Offerware) -> Nebyla provedena žádná instrukce.
C:\Users\TomSatr\AppData\Roaming\GeoGet\script\aDrakeSync\hstart.exe (PUP.HiddenStart.H) -> Nebyla provedena žádná instrukce.

(konec)

Nalezy smazte, objevi s elog, ten rad uvidim

Malwarebytes Anti-Malware (Zkušební verze Malwarebytes Anti-Malware.) 1.70.0.1100
www.malwarebytes.org

Verze: v2013.02.21.03

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
TomSatr :: TOMSATR-PC [administrátor]

Ochrana: Povolena

21.2.2013 8:35:34
mbam-log-2013-02-21 (08-35-34).txt

Typ: Kompletní kontrola (C:\|)
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 502951
Uplynulý čas: 1 hodin, 27 minut, 23 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 7
C:\Program Files (x86)\Illustrate\dBpowerAMP\Crack.exe (RiskWare.Tool.CK) -> Přesun do karantény a smazání se zdařilo.
C:\Program Files (x86)\Zoner\Photo Studio 12\Program\zoner.photo.studio.v12.0.1.1.professional.czech-patch.exe (PUP.Hacktool.Patcher) -> Přesun do karantény a smazání se zdařilo.
C:\Users\TomSatr\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\54CQJ5TI\update_3061_4887[1].exe (PUP.ToolBarInstaller) -> Přesun do karantény a smazání se zdařilo.
C:\Users\TomSatr\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ALMF3PUK\5116667d5b1a7[1].exe (Adware.MultiPlug) -> Přesun do karantény a smazání se zdařilo.
C:\Users\TomSatr\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ALMF3PUK\51166700554cb[1].exe (Adware.MultiPlug) -> Přesun do karantény a smazání se zdařilo.
C:\Users\TomSatr\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\D2JBX0ZL\agent_setup[1].exe (PUP.Offerware) -> Přesun do karantény a smazání se zdařilo.
C:\Users\TomSatr\AppData\Roaming\GeoGet\script\aDrakeSync\hstart.exe (PUP.HiddenStart.H) -> Přesun do karantény a smazání se zdařilo.

(konec)

Pokud tam bude i priste takova sbirka nelegalniho SW, tak bude pomoc odmitnuta

Spustte znovu OTL

Pokud pouzivate Win Vista ci W7, kliknete na OTL pravym a dejte Run As Administrator ci Spustit jako spravce
Do spodniho okenka Vlastni skenovani/opravy vlozte skript nize

Kód: Vybrat vše

:otl
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
IE - HKLM\..\URLSearchHook: - No CLSID value found
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKU\S-1-5-21-2860777064-1590632525-2448073043-1000\..\URLSearchHook: - No CLSID value found
IE - HKU\S-1-5-21-2860777064-1590632525-2448073043-1000\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-21-2860777064-1590632525-2448073043-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?FORM=WLETDF&PC=WLEM&q={searchTerms}&src=IE-SearchBox
IE - HKU\S-1-5-21-2860777064-1590632525-2448073043-1000\..\SearchScopes\{B914523F-77C2-46D3-9D12-E4A06474E8B1}: "URL" = http://search.yahoo.com/search?fr=chr-g ... =937811&p={searchTerms}
FF - prefs.js..browser.search.param.yahoo-fr: "chr-greentree_ff&ilc=12&type=937811"
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O16 - DPF: {0E5F0222-96B9-11D3-8997-00104BD12D94} http://utilities.pcpitstop.com/Nirvana/ ... cmatic.cab (Reg Error: Key error.)
O18:64bit: - Protocol\Handler\grooveLocalGWS - No CLSID value found
O18:64bit: - Protocol\Handler\livecall - No CLSID value found
O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
O18:64bit: - Protocol\Handler\msnim - No CLSID value found
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[2 C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp -> ]
[1 C:\Windows\Installer\*.tmp files -> C:\Windows\Installer\*.tmp -> ]
[1 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]
[1 C:\Windows\SysWOW64\*.tmp files -> C:\Windows\SysWOW64\*.tmp -> ]
[1 C:\Windows\temp\_avast_\*.tmp files -> C:\Windows\temp\_avast_\*.tmp -> ]
[2013.02.19 19:58:13 | 000,000,914 | ---- | M] () -- C:\Windows\Tasks\Adobe Flash Player Updater.job
[2013.02.17 12:18:02 | 000,000,256 | ---- | M] () -- C:\Windows\Tasks\Epson Printer Software Downloader.job
[2013.02.19 18:46:24 | 000,000,948 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
[2013.02.19 20:04:02 | 000,000,952 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
[2013.02.19 18:46:16 | 000,000,420 | -H-- | M] () -- C:\Windows\Tasks\schedule!3036567561.job
@Alternate Data Stream - 6144 bytes -> C:\Windows\Cursors\arrow_n.cur:NEDTA.DAT
@Alternate Data Stream - 1369 bytes -> C:\ProgramData\Microsoft:beH8hlj41Fueksse4gt6Prr0
@Alternate Data Stream - 1357 bytes -> C:\ProgramData\Microsoft:3dgjQeQwZISTPGhn84N8YZ
@Alternate Data Stream - 1349 bytes -> C:\Program Files\Common Files\System:e1FlRXjmi4lKiIFlT9BsHg8up7
@Alternate Data Stream - 112 bytes -> C:\ProgramData\TEMP:D1B5B4F1

:reg
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"7F172F519EF36A003432FE3964427657773D38CE._service_run"=-
"LogitechSoftwareUpdate"=-
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"FlashPlayerUpdate"=-
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\7F172F519EF36A003432FE3964427657773D38CE._service_run]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS5.5ServiceManager]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS5ServiceManager]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AlcoholAutomount]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EEventManager]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesAirMessage]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesPreload]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesTrayAgent]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TomTomHOME.exe]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Logitech Desktop Messenger.lnk]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"=-
"Adobe ARM"=-
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=""

:files
c:\STAHOVÁN\*crack*.*
c:\Users\TomSatr\Downloads\*crack*.*
c:\Users\All Users\Microsoft\Windows\Start Menu\Programs\*crack*.*
c:\Users\TomSatr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\*crack*.*
c:\STAHOVÁN\*keygen*.*
%windir%\system32\*.tmp.dll /s
%windir%\system32\SET*.tmp /s
%windir%\*.tmp

:commands
[RESETHOSTS]
[EMPTYTEMP]
[EMPTYFLASH]
[EMPTYJAVA]

Nasledne kliknete na Opravit
PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem

All processes killed
========== OTL ==========
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Local Page| /E : value set successfully!
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\ deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Registry value HKEY_USERS\S-1-5-21-2860777064-1590632525-2448073043-1000\Software\Microsoft\Internet Explorer\URLSearchHooks\\ deleted successfully.
HKEY_USERS\S-1-5-21-2860777064-1590632525-2448073043-1000\Software\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry key HKEY_USERS\S-1-5-21-2860777064-1590632525-2448073043-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Registry key HKEY_USERS\S-1-5-21-2860777064-1590632525-2448073043-1000\Software\Microsoft\Internet Explorer\SearchScopes\{B914523F-77C2-46D3-9D12-E4A06474E8B1}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B914523F-77C2-46D3-9D12-E4A06474E8B1}\ not found.
Prefs.js: "chr-greentree_ff&ilc=12&type=937811" removed from browser.search.param.yahoo-fr
Registry key HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Restrictions\ deleted successfully.
Starting removal of ActiveX control {0E5F0222-96B9-11D3-8997-00104BD12D94}
C:\Windows\Downloaded Program Files\PCMatic.inf not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{0E5F0222-96B9-11D3-8997-00104BD12D94}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0E5F0222-96B9-11D3-8997-00104BD12D94}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{0E5F0222-96B9-11D3-8997-00104BD12D94}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0E5F0222-96B9-11D3-8997-00104BD12D94}\ not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\grooveLocalGWS\ deleted successfully.
File Protocol\Handler\grooveLocalGWS - No CLSID value found not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\livecall\ deleted successfully.
File Protocol\Handler\livecall - No CLSID value found not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\ms-help\ deleted successfully.
File Protocol\Handler\ms-help - No CLSID value found not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\msnim\ deleted successfully.
File Protocol\Handler\msnim - No CLSID value found not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\skype4com\ deleted successfully.
File Protocol\Handler\skype4com - No CLSID value found not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\wlmailhtml\ deleted successfully.
File Protocol\Handler\wlmailhtml - No CLSID value found not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\wlpg\ deleted successfully.
File Protocol\Handler\wlpg - No CLSID value found not found.
C:\Windows\22B3AE667A374118BADB3680C15CA366.TMP\WiseCustomCall.dll deleted successfully.
C:\Windows\22B3AE667A374118BADB3680C15CA366.TMP\WiseCustomCalla.dll deleted successfully.
C:\Windows\22B3AE667A374118BADB3680C15CA366.TMP\WiseCustomCalla2.dll deleted successfully.
C:\Windows\22B3AE667A374118BADB3680C15CA366.TMP\WiseCustomCalla21.dll deleted successfully.
C:\Windows\22B3AE667A374118BADB3680C15CA366.TMP\WiseCustomCalla31.exe deleted successfully.
C:\Windows\22B3AE667A374118BADB3680C15CA366.TMP\WiseCustomCalla32.dll deleted successfully.
C:\Windows\22B3AE667A374118BADB3680C15CA366.TMP\WiseCustomCalla33.dll deleted successfully.
C:\Windows\22B3AE667A374118BADB3680C15CA366.TMP\WiseCustomCalla34.dll deleted successfully.
C:\Windows\22B3AE667A374118BADB3680C15CA366.TMP\WiseCustomCalla36.dll deleted successfully.
C:\Windows\22B3AE667A374118BADB3680C15CA366.TMP\WiseCustomCalla36.exe deleted successfully.
C:\Windows\22B3AE667A374118BADB3680C15CA366.TMP\WiseData.ini deleted successfully.
C:\Windows\22B3AE667A374118BADB3680C15CA366.TMP folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAPA987.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAPAA71.tmp folder deleted successfully.
C:\Windows\Installer\MSI2105.tmp deleted successfully.
C:\Windows\System32\SET3A11.tmp deleted successfully.
C:\Windows\Tasks\Adobe Flash Player Updater.job moved successfully.
C:\Windows\Tasks\Epson Printer Software Downloader.job moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job moved successfully.
C:\Windows\Tasks\schedule!3036567561.job moved successfully.
ADS C:\Windows\Cursors\arrow_n.cur:NEDTA.DAT deleted successfully.
ADS C:\ProgramData\Microsoft:beH8hlj41Fueksse4gt6Prr0 deleted successfully.
ADS C:\ProgramData\Microsoft:3dgjQeQwZISTPGhn84N8YZ deleted successfully.
ADS C:\Program Files\Common Files\System:e1FlRXjmi4lKiIFlT9BsHg8up7 deleted successfully.
ADS C:\ProgramData\TEMP:D1B5B4F1 deleted successfully.
========== REGISTRY ==========
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\7F172F519EF36A003432FE3964427657773D38CE._service_run deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\LogitechSoftwareUpdate deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce\\FlashPlayerUpdate not found.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\7F172F519EF36A003432FE3964427657773D38CE._service_run\ not found.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM\ not found.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS5.5ServiceManager\ not found.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS5ServiceManager\ not found.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AlcoholAutomount\ not found.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EEventManager\ not found.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesAirMessage\ not found.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesPreload\ not found.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesTrayAgent\ not found.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TomTomHOME.exe\ not found.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Logitech Desktop Messenger.lnk\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run\\Adobe ARM deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\\"AppInit_DLLs"|"" /E : value set successfully!
========== FILES ==========
c:\STAHOVÁN\HDD Low Level Format Tool 4.25 Pro Premier Crack+Instructions.1.torrent moved successfully.
c:\STAHOVÁN\Modern Combat 4 Zero Hour (v1.0.0)-CrackLords-Black_Hawk-2.ipa moved successfully.
c:\STAHOVÁN\Modern Combat 4 Zero Hour (v1.0.0)-CrackLords-Black_Hawk-2.ipa.1.torrent moved successfully.
c:\Users\TomSatr\Downloads\[isoHunt] Google Earth Pro 6.0.0.1735 (GPS 3D Support) Cracked Ultimate.torrent moved successfully.
c:\Users\TomSatr\Downloads\[isoHunt] Google Earth Pro 6.0.0.1735 (GPS 3D Support) Cracked version 2k12.torrent moved successfully.
File\Folder c:\Users\All Users\Microsoft\Windows\Start Menu\Programs\*crack*.* not found.
File\Folder c:\Users\TomSatr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\*crack*.* not found.
File\Folder c:\STAHOVÁN\*keygen*.* not found.
File/Folder C:\Windows\system32\*.tmp.dll not found.
File/Folder C:\Windows\system32\SET*.tmp not found.
File/Folder C:\Windows\*.tmp not found.
========== COMMANDS ==========
C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully

[EMPTYTEMP]

User: All Users

User: AppData
->Temp folder emptied: 0 bytes

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: HLAVA
->Temp folder emptied: 0 bytes

User: Public
->Temp folder emptied: 0 bytes

User: TomSatr
->Temp folder emptied: 4300624 bytes
->Temporary Internet Files folder emptied: 265375495 bytes
->Java cache emptied: 1900673 bytes
->FireFox cache emptied: 256903120 bytes
->Google Chrome cache emptied: 222175087 bytes
->Opera cache emptied: 0 bytes
->Flash cache emptied: 5566 bytes

User: UpdatusUser
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 6614 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 50507 bytes
RecycleBin emptied: 1281573 bytes

Total Files Cleaned = 717.00 mb

[EMPTYFLASH]

User: All Users

User: AppData

User: Default
->Flash cache emptied: 0 bytes

User: Default User
->Flash cache emptied: 0 bytes

User: HLAVA

User: Public

User: TomSatr
->Flash cache emptied: 0 bytes

User: UpdatusUser

Total Flash Files Cleaned = 0.00 mb

[EMPTYJAVA]

User: All Users

User: AppData

User: Default

User: Default User

User: HLAVA

User: Public

User: TomSatr
->Java cache emptied: 0 bytes

User: UpdatusUser

Total Java Files Cleaned = 0.00 mb

OTL by OldTimer - Version 3.2.69.0 log created on 02212013_120229

Files\Folders moved on Reboot...
C:\Users\TomSatr\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
C:\Users\TomSatr\AppData\Local\Temp\FXSTIFFDebugLogFile.txt moved successfully.
C:\Users\TomSatr\AppData\Local\Mozilla\Firefox\Profiles\p9edemwl.default\startupCache\startupCache.4.little moved successfully.
File\Folder C:\Users\TomSatr\AppData\Local\Mozilla\Firefox\Profiles\p9edemwl.default\Cache.Trash4447\7\E6\90C1Bd01 not found!
File\Folder C:\Users\TomSatr\AppData\Local\Mozilla\Firefox\Profiles\p9edemwl.default\Cache.Trash4447\7\E6\90C1Bm01 not found!
C:\Users\TomSatr\AppData\Local\Mozilla\Firefox\Profiles\p9edemwl.default\Cache\_CACHE_001_ moved successfully.
C:\Users\TomSatr\AppData\Local\Mozilla\Firefox\Profiles\p9edemwl.default\Cache\_CACHE_002_ moved successfully.
C:\Users\TomSatr\AppData\Local\Mozilla\Firefox\Profiles\p9edemwl.default\Cache\_CACHE_003_ moved successfully.
C:\Users\TomSatr\AppData\Local\Mozilla\Firefox\Profiles\p9edemwl.default\Cache\_CACHE_MAP_ moved successfully.
C:\Users\TomSatr\AppData\Local\Mozilla\Firefox\Profiles\p9edemwl.default\_CACHE_CLEAN_ moved successfully.
File move failed. C:\Windows\temp\_avast_\Webshlock.txt scheduled to be moved on reboot.

PendingFileRenameOperations files...

Registry entries deleted on Reboot...

Fajn, jak se chova PC

Beze změn , v tom prohlížeči je to OK - Claro search . ...Beze změn,mám na mysli k horšímu.

O ktrey prohlizec se jedna

...špatně jsem se vyádřil. Je to v pořádku. bylo to ve Firefoxu. Trochu jste mě zaskočil tím SW

Tak jeste uklidime

T-Cleaner http://vyosek.ic.cz/pro_usery/T-Cleaner.exe

Stahnete a spustte
Pro potvrzeni volby mackejte A, Enter
Po pouziti utilitu smazte
Antiviry touhou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)

OTC http://oldtimer.geekstogo.com/OTC.exe

Stahnete a spustte
Kliknete na CleanUp a potvrdte YES
Program uklidi a restartuje PC

TFC http://oldtimer.geekstogo.com/TFC.exe

Stahnete a spustte
Kliknete na Start a potvrdte OK
Program uklidi a restartuje pc
Po pouziti utilitu smazte

Stahnete Ccleaner http://forum.viry.cz/viewtopic.php?t=7478
Panel èistiè

Vse nechte jak je, jen dejte Analyzovat a pote Spustit CCleaner

Panel registry

dejte Hledej problémy
nasledne Opravit problémy - zalohu registru doporucuji udelat, opravte vsechny problemy
postup opakujte dokud nebude bez problemu - vetsinou cca 3x

Panel nástroje

Zde muzete odinstalovat nepotrebne programy

CCleaner doporucuji pouzivat cca jednou za tyden

A pokud nejsou problemy ci dotazy, je to z me strany vse

CCleaner používám čast,ale nemohu stále opravit toto :

Problém ActiveX/COM InProcServer32\C:\Windows\SysWOW64\wpcmig.dll HKCR\CLSID\{343D770D-7788-47c2-B62A-B7C4CED925CB}
Problém ActiveX/COM InProcServer32\C:\Windows\SysWOW64\wpcumi.dll HKCR\CLSID\{DFA14C43-F385-4170-99CC-1B7765FA0E4A}

Obcas se stane ze CC nemuze neco odstranit, mozna by se daly zmenit prava na ten klic nebo tak, ale dle meho je to zbytecne - neni to nejaka velka chyba, jen maly pozustatek a neplatny zaznam v registru

OK . Uklizeno . Všiml jsem si teď ,že mi to ,,vyčistilo i některé oficiální programy,takže je budu muset přeinstalovat. Jen se ještě zeptám :
to co jsem dával jako opravu tím skriptem byl ten sw o kterém jste mi psal ?

jedná se o to,že některé věci z toho seznamu (tedy skriptu) jsou oficiální distribucí např,samsungu KIES.Nebo je tam Alcohol 120 ten sice znám ,ale v PC ho vůbec nemám nainstalovaný tak by mě jen zajímalo kde se tam ocitl.

Jake programy Vam to odstranilo - ja jsem spise omezil zbytecnosti po startu, zadne programy jsem nemazal, oni v PC jsou, jen se nespusti hned po startu = start systemu je rychlejsi

Mate tam spousteu nelegalniho SW (cracky, keygeny apod) - toto na foru netolerujem - jednak cracky\keygeny jsou zdrojem haveti a dale nase forum nepodporuje piratsky SW

Musel jsem přeinstalovat Samsung Kies,už je to dobrý.něco to muselo upravit nebo vymazat,protože mi to odstranilo i konu z plochy .
Mažu co se dá - cracky a keygeny.Některé jsou v balíkách se staženým SW , něco je tam aniž bych o tom věděl.Třeba zrovna ten alcohol.Vůbec ho nemám nainstalovaný a ani když dám hledat tak ho v PC nenajdu.
Pár věcí co jsem našel jsem odinstaloval a složky vymazal.

Dá se to nějak prozkoumat abych viděl co je ještě smazat.Když dám do vyhledávání crack,nebo keygen,tak mi to už nic nenajde.

VIRY.CZ

Prosba o kontrolu a radu jak se zbavit Claro Search

Re: Prosba o kontrolu a radu jak se zbavit Claro Search

Re: Prosba o kontrolu a radu jak se zbavit Claro Search

Re: Prosba o kontrolu a radu jak se zbavit Claro Search

Re: Prosba o kontrolu a radu jak se zbavit Claro Search

Re: Prosba o kontrolu a radu jak se zbavit Claro Search

Re: Prosba o kontrolu a radu jak se zbavit Claro Search

Re: Prosba o kontrolu a radu jak se zbavit Claro Search

Re: Prosba o kontrolu a radu jak se zbavit Claro Search

Re: Prosba o kontrolu a radu jak se zbavit Claro Search

Re: Prosba o kontrolu a radu jak se zbavit Claro Search

Re: Prosba o kontrolu a radu jak se zbavit Claro Search

Re: Prosba o kontrolu a radu jak se zbavit Claro Search

Re: Prosba o kontrolu a radu jak se zbavit Claro Search

Re: Prosba o kontrolu a radu jak se zbavit Claro Search

Re: Prosba o kontrolu a radu jak se zbavit Claro Search