VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

prosím o kontrolu logu

https://forum.viry.cz:443/viewtopic.php?t=134882

Stránka 2 z 2

Re: prosím o kontrolu logu

Napsal: 25 pro 2013 15:52
od adams
Zdravim, ako to vyzera s logom z frst?

Re: prosím o kontrolu logu

Napsal: 25 pro 2013 19:53
od vyosek
:arrow: Uvedomte si prosim, jake je datum...

:arrow: Tvorba fixlistu pro FRST
  • Spustte poznamkovy blok (Start-spustit-notepad)
  • Zkopirujte skript nize

  • Kód: Vybrat vše

    Start
HKLM\...\Run: [RecGuard] - C:\WINDOWS\SMINST\Recguard.exe [1187840 2005-10-11] ()
HKLM\...\Run: [ISUSPM Startup] - C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
HKLM\...\Run: [ISUSScheduler] - "C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\issch.exe" -start
HKCU\...\Run: [Google Update] - C:\Documents and Settings\Robko\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe [136176 2010-09-26] (Google Inc.)
HKCU\...\Run: [WMPNSCFG] - C:\Program Files\Windows Media Player\wmpnscfg.exe [204288 2007-01-05] (Microsoft Corporation)
MountPoints2: D - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL Info.exe protect.ed 480 480
MountPoints2: {3b74e390-3c62-11dc-8b31-000d18015461} - F:\LaunchU3.exe -a
MountPoints2: {5a71ef78-0f6d-11e1-baab-000d18015461} - G:\LaunchU3.exe -a
HKU\Default User\...\Run: [MSMSGS] - C:\Program Files\Messenger\msmsgs.exe [ 2008-04-14] (Microsoft Corporation)
HKU\Default User\...\RunOnce: [NeroHomeFirstStart] - C:\Program Files\Common Files\Ahead\Lib\NMFirstStart.exe [ 2006-10-09] (Nero AG)
HKU\Ľudka\...\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] - C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe [ 2006-10-09] (Nero AG)
HKU\Ľudka\...\Run: [WMPNSCFG] - C:\Program Files\Windows Media Player\wmpnscfg.exe [ 2007-01-05] (Microsoft Corporation)
HKU\Ľudka\...\Run: [Google Update] - C:\Documents and Settings\Robko\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe [ 2010-09-26] (Google Inc.)
HKU\Ľudka\...\Run: [{E611B760-A7BF-7B3C-99AB-83DD1DEFEBF4}] - "C:\Documents and Settings\Robko\Data aplikací\Zisy\olatq.exe"

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.sk/
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie
HKCU\Software\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
SearchScopes: HKLM - DefaultScope value is missing.

FF NetworkProxy: "autoconfig_url", "AT+CGDCONT=1,\"IP\",\"INTERNET\""

S3 UIUSys; system32\DRIVERS\UIUSYS.SYS [x]
S3 Usblink; System32\Drivers\ulink.sys [x]
U3 abqdbxwj; No ImagePath

C:\Documents and Settings\Robko\Data aplikací\Zisy
C:\Documents and Settings\Robko\Local Settings\Temp\01365924046921.exe
C:\Documents and Settings\Robko\Local Settings\Temp\01365924046937.exe
C:\Documents and Settings\Robko\Local Settings\Temp\DevSetup32.dll
C:\Documents and Settings\Robko\Local Settings\Temp\DevSetup64.dll
C:\Documents and Settings\Robko\Local Settings\Temp\dotnet2.0.exe
C:\Documents and Settings\Robko\Local Settings\Temp\DriverInstall32.exe
C:\Documents and Settings\Robko\Local Settings\Temp\DriverInstall64.exe
C:\Documents and Settings\Robko\Local Settings\Temp\GUR2.exe
C:\Documents and Settings\Robko\Local Settings\Temp\hpzmsi01.exe
C:\Documents and Settings\Robko\Local Settings\Temp\hpzscr01.exe
C:\Documents and Settings\Robko\Local Settings\Temp\i4jdel0.exe
C:\Documents and Settings\Robko\Local Settings\Temp\KillProcess.exe
C:\Documents and Settings\Robko\Local Settings\Temp\MSETUP4.EXE
C:\Documents and Settings\Robko\Local Settings\Temp\Quarantine.exe
C:\Documents and Settings\Robko\Local Settings\Temp\SkypeSetup.exe
C:\Documents and Settings\Robko\Local Settings\Temp\vlc-2.0.5-win32.exe
C:\Documents and Settings\Robko\Local Settings\Temp\{35D45CCB-ED27-4775-BA8F-11F28D00E664}-GoogleUpdateSetup.exe
C:\Documents and Settings\Robko\Local Settings\Temp\{5ACD9FCC-65DD-472A-9A86-4F679F3B28AD}-GoogleUpdateSetup.exe

End
  • Ulozte vytvoreny TXT jako fixlist.txt
  • Presunte vytvoreny fixlist vedle FRST
:arrow: Spustte znovu FRST.exe
  • Kliknete na Fix
  • Probehne oprava a vytvori log Fixlog.txt
:arrow: Restart PC a dejte mi sem fixlog.txt

Re: prosím o kontrolu logu

Napsal: 27 pro 2013 16:06
od adams
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 27-12-2013
Ran by Robko at 2013-12-27 15:58:43 Run:1
Running from C:\Documents and Settings\Robko\Plocha
Boot Mode: Normal

==============================================

Content of fixlist:
*****************
Start
HKLM\...\Run: [RecGuard] - C:\WINDOWS\SMINST\Recguard.exe [1187840 2005-10-11] ()
HKLM\...\Run: [ISUSPM Startup] - C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
HKLM\...\Run: [ISUSScheduler] - "C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\issch.exe" -start
HKCU\...\Run: [Google Update] - C:\Documents and Settings\Robko\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe [136176 2010-09-26] (Google Inc.)
HKCU\...\Run: [WMPNSCFG] - C:\Program Files\Windows Media Player\wmpnscfg.exe [204288 2007-01-05] (Microsoft Corporation)
MountPoints2: D - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL Info.exe protect.ed 480 480
MountPoints2: {3b74e390-3c62-11dc-8b31-000d18015461} - F:\LaunchU3.exe -a
MountPoints2: {5a71ef78-0f6d-11e1-baab-000d18015461} - G:\LaunchU3.exe -a
HKU\Default User\...\Run: [MSMSGS] - C:\Program Files\Messenger\msmsgs.exe [ 2008-04-14] (Microsoft Corporation)
HKU\Default User\...\RunOnce: [NeroHomeFirstStart] - C:\Program Files\Common Files\Ahead\Lib\NMFirstStart.exe [ 2006-10-09] (Nero AG)
HKU\Ľudka\...\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] - C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe [ 2006-10-09] (Nero AG)
HKU\Ľudka\...\Run: [WMPNSCFG] - C:\Program Files\Windows Media Player\wmpnscfg.exe [ 2007-01-05] (Microsoft Corporation)
HKU\Ľudka\...\Run: [Google Update] - C:\Documents and Settings\Robko\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe [ 2010-09-26] (Google Inc.)
HKU\Ľudka\...\Run: [{E611B760-A7BF-7B3C-99AB-83DD1DEFEBF4}] - "C:\Documents and Settings\Robko\Data aplikací\Zisy\olatq.exe"

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.sk/
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie
HKCU\Software\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://www.google.com/search?q={searchT ... f8&oe=utf8
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
SearchScopes: HKLM - DefaultScope value is missing.

FF NetworkProxy: "autoconfig_url", "AT+CGDCONT=1,\"IP\",\"INTERNET\""

S3 UIUSys; system32\DRIVERS\UIUSYS.SYS [x]
S3 Usblink; System32\Drivers\ulink.sys [x]
U3 abqdbxwj; No ImagePath

C:\Documents and Settings\Robko\Data aplikací\Zisy
C:\Documents and Settings\Robko\Local Settings\Temp\01365924046921.exe
C:\Documents and Settings\Robko\Local Settings\Temp\01365924046937.exe
C:\Documents and Settings\Robko\Local Settings\Temp\DevSetup32.dll
C:\Documents and Settings\Robko\Local Settings\Temp\DevSetup64.dll
C:\Documents and Settings\Robko\Local Settings\Temp\dotnet2.0.exe
C:\Documents and Settings\Robko\Local Settings\Temp\DriverInstall32.exe
C:\Documents and Settings\Robko\Local Settings\Temp\DriverInstall64.exe
C:\Documents and Settings\Robko\Local Settings\Temp\GUR2.exe
C:\Documents and Settings\Robko\Local Settings\Temp\hpzmsi01.exe
C:\Documents and Settings\Robko\Local Settings\Temp\hpzscr01.exe
C:\Documents and Settings\Robko\Local Settings\Temp\i4jdel0.exe
C:\Documents and Settings\Robko\Local Settings\Temp\KillProcess.exe
C:\Documents and Settings\Robko\Local Settings\Temp\MSETUP4.EXE
C:\Documents and Settings\Robko\Local Settings\Temp\Quarantine.exe
C:\Documents and Settings\Robko\Local Settings\Temp\SkypeSetup.exe
C:\Documents and Settings\Robko\Local Settings\Temp\vlc-2.0.5-win32.exe
C:\Documents and Settings\Robko\Local Settings\Temp\{35D45CCB-ED27-4775-BA8F-11F28D00E664}-GoogleUpdateSetup.exe
C:\Documents and Settings\Robko\Local Settings\Temp\{5ACD9FCC-65DD-472A-9A86-4F679F3B28AD}-GoogleUpdateSetup.exe

End
*****************

HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\RecGuard => Value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\ISUSPM Startup => Value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\ISUSScheduler => Value deleted successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\Google Update => Value deleted successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\WMPNSCFG => Value deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\D => Key deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{3b74e390-3c62-11dc-8b31-000d18015461} => Key deleted successfully.
HKCR\CLSID\{3b74e390-3c62-11dc-8b31-000d18015461} => Key not found.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{5a71ef78-0f6d-11e1-baab-000d18015461} => Key deleted successfully.
HKCR\CLSID\{5a71ef78-0f6d-11e1-baab-000d18015461} => Key not found.
HKU\Default User\Software\Microsoft\Windows\CurrentVersion\Run\\MSMSGS => Value deleted successfully.
HKU\Default User\Software\Microsoft\Windows\CurrentVersion\RunOnce\\NeroHomeFirstStart => Value deleted successfully.
HKU\Ľudka\Software\Microsoft\Windows\CurrentVersion\Run\\BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA} => Value deleted successfully.
HKU\Ľudka\Software\Microsoft\Windows\CurrentVersion\Run\\WMPNSCFG => Value deleted successfully.
HKU\Ľudka\Software\Microsoft\Windows\CurrentVersion\Run\\Google Update => Value deleted successfully.
HKU\Ľudka\Software\Microsoft\Windows\CurrentVersion\Run\\{E611B760-A7BF-7B3C-99AB-83DD1DEFEBF4} => Value deleted successfully.
HKCU\Software\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
HKCU\Software\Microsoft\Internet Explorer\Main\\Search Bar => Value deleted successfully.
HKCU\Software\Microsoft\Internet Explorer\Main\\SearchMigratedDefaultURL => Value deleted successfully.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Local Page => Value was restored successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.
Firefox Proxy settings were reset.
UIUSys => Service deleted successfully.
Usblink => Service deleted successfully.
abqdbxwj => Service not found.
C:\Documents and Settings\Robko\Data aplikací\Zisy => Moved successfully.
C:\Documents and Settings\Robko\Local Settings\Temp\01365924046921.exe => Moved successfully.
C:\Documents and Settings\Robko\Local Settings\Temp\01365924046937.exe => Moved successfully.
C:\Documents and Settings\Robko\Local Settings\Temp\DevSetup32.dll => Moved successfully.
C:\Documents and Settings\Robko\Local Settings\Temp\DevSetup64.dll => Moved successfully.
C:\Documents and Settings\Robko\Local Settings\Temp\dotnet2.0.exe => Moved successfully.
C:\Documents and Settings\Robko\Local Settings\Temp\DriverInstall32.exe => Moved successfully.
C:\Documents and Settings\Robko\Local Settings\Temp\DriverInstall64.exe => Moved successfully.
C:\Documents and Settings\Robko\Local Settings\Temp\GUR2.exe => Moved successfully.
C:\Documents and Settings\Robko\Local Settings\Temp\hpzmsi01.exe => Moved successfully.
C:\Documents and Settings\Robko\Local Settings\Temp\hpzscr01.exe => Moved successfully.
C:\Documents and Settings\Robko\Local Settings\Temp\i4jdel0.exe => Moved successfully.
C:\Documents and Settings\Robko\Local Settings\Temp\KillProcess.exe => Moved successfully.
C:\Documents and Settings\Robko\Local Settings\Temp\MSETUP4.EXE => Moved successfully.
C:\Documents and Settings\Robko\Local Settings\Temp\Quarantine.exe => Moved successfully.
C:\Documents and Settings\Robko\Local Settings\Temp\SkypeSetup.exe => Moved successfully.
C:\Documents and Settings\Robko\Local Settings\Temp\vlc-2.0.5-win32.exe => Moved successfully.
C:\Documents and Settings\Robko\Local Settings\Temp\{35D45CCB-ED27-4775-BA8F-11F28D00E664}-GoogleUpdateSetup.exe => Moved successfully.
C:\Documents and Settings\Robko\Local Settings\Temp\{5ACD9FCC-65DD-472A-9A86-4F679F3B28AD}-GoogleUpdateSetup.exe => Moved successfully.

==== End of Fixlog ====

sorry že som to tak súril

Re: prosím o kontrolu logu

Napsal: 27 pro 2013 23:11
od vyosek
Tak jeste uklidime :James008:

:arrow: T-Cleaner http://vyosek.tym.cz/pro_usery/T-Cleaner.exe
  • Stahnete a spustte
  • Pro potvrzeni volby mackejte A, Enter
  • Po pouziti utilitu smazte
  • Antiviry touhou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)
:arrow: OTC http://oldtimer.geekstogo.com/OTC.exe
  • Stahnete a spustte
  • Kliknete na CleanUp a potvrdte YES
  • Program uklidi a restartuje PC

:arrow: TFC http://oldtimer.geekstogo.com/TFC.exe
  • Stahnete a spustte
  • Kliknete na Start a potvrdte OK
  • Program uklidi a restartuje pc
  • Po pouziti utilitu smazte
:arrow: Stahnete Ccleaner http://forum.viry.cz/viewtopic.php?t=7478
Panel čistič
  • Vse nechte jak je, jen dejte Analyzovat a pote Spustit CCleaner
Panel registry
  • dejte Hledej problémy
  • nasledne Opravit problémy - zalohu registru doporucuji udelat, opravte vsechny problemy
  • postup opakujte dokud nebude bez problemu - vetsinou cca 3x
Panel nástroje
  • Zde muzete odinstalovat nepotrebne programy
CCleaner doporucuji pouzivat cca jednou za tyden

:arrow: A pokud nejsou problemy ci dotazy, je to z me strany vse :|
Všechny časy jsou v UTC+01:00
Stránka 2 z 2

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz