VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Pomooooc, vir INTERPOL.. nejde niiic

https://forum.viry.cz:443/viewtopic.php?t=138283

Stránka 2 z 2

Re: Pomooooc, vir INTERPOL.. nejde niiic

Napsal: 28 kvě 2014 20:36
od Duge77
ten log ze zoek jsem vložil omylem... omluva.. platné poslední dva logy

Re: Pomooooc, vir INTERPOL.. nejde niiic

Napsal: 28 kvě 2014 22:54
od vyosek
:arrow: Nic se nedeje, Zoek jsem odmazl, at se nam neplete :James008:

:arrow: Tvorba fixlistu pro FRST
  • Spustte poznamkovy blok (Start-spustit-notepad)
  • Zkopirujte skript nize

  • Kód: Vybrat vše

    Start
HKU\S-1-5-21-1078081533-515967899-839522115-1003\...\Run: [Facebook Update] => C:\Documents and Settings\Uživatel\Local Settings\Data aplikací\Facebook\Update\FacebookUpdate.exe [138096 2013-10-22] (Facebook Inc.)
HKU\S-1-5-21-1078081533-515967899-839522115-1003\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [19875432 2013-06-21] (Skype Technologies S.A.)
HKLM\...\Run: [] => [X]

URLSearchHook: ATTENTION ==> Default URLSearchHook is missing.
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}
SearchScopes: HKCU - {BD9B1D2B-C0D0-414b-B40A-BB11E76BB981} URL = http://www.google.com/cse?cx=partner-pu ... e=UTF-8&q={searchTerms}&sa=Search&siteurl=www.google.com%2Fcse%2Fhome%3Fcx%3Dpartner-pub-3794288947762788%3A4067623346

CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2013-10-09]

2014-05-28 21:28 - 2014-05-28 21:28 - 00012267 _____ () C:\Documents and Settings\Uživatel\Plocha\FRST.txt
2014-05-28 21:26 - 2014-05-28 21:26 - 00029696 _____ () C:\Documents and Settings\Uživatel\Local Settings\Data aplikací\MSGBOX.EXE
2014-05-28 21:26 - 2014-05-28 21:26 - 00015327 _____ () C:\Documents and Settings\Uživatel\Plocha\LM.bat
2014-05-28 21:25 - 2014-05-28 21:25 - 00112640 _____ (forum.viry.cz) C:\Documents and Settings\Uživatel\Plocha\FRSTLauncher.exe
2014-05-28 21:04 - 2014-05-28 20:55 - 00024064 _____ () C:\WINDOWS\zoek-delete.exe
2014-05-28 20:57 - 2014-05-28 21:05 - 00006895 _____ () C:\zoek-results.log
2014-05-28 20:52 - 2014-05-28 21:01 - 00000000 ____D () C:\zoek_backup
2014-05-28 20:46 - 2014-05-28 21:19 - 00000000 ____D () C:\Documents and Settings\Uživatel\Plocha\ANTIVIR PGM
2014-05-28 20:42 - 2014-05-28 20:43 - 00000000 ____D () C:\AdwCleaner
2014-05-28 20:42 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\WINDOWS\system32\sqlite3.dll
2014-05-28 20:35 - 2014-05-28 20:35 - 00000000 ____D () C:\WINDOWS\ERUNT
2014-05-28 20:17 - 2014-05-28 20:18 - 00000000 ____D () C:\rsit
2014-05-28 20:17 - 2014-05-28 20:18 - 00000000 ____D () C:\Program Files\trend micro
2014-05-28 20:09 - 2014-05-28 20:09 - 00030976 _____ () C:\WINDOWS\system32\Drivers\hitmanpro37.sys
2014-05-28 20:08 - 2014-05-28 20:08 - 00010114 _____ () C:\WINDOWS\system32\.crusader
2014-05-28 20:00 - 2014-05-28 20:08 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\HitmanPro
2014-05-28 20:08 - 2014-05-28 20:00 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\HitmanPro


AlternateDataStreams: C:\Documents and Settings\All Users\Data aplikací\TEMP:A31FAD21

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\avast! Emergency Update.job => C:\Program Files\Alwil Software\Avast5\AvastEmUpdate.exe
Task: C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-1078081533-515967899-839522115-1003Core.job => C:\Documents and Settings\U~ivatel\Local Settings\Data aplikací\Facebook\Update\FacebookUpdate.exe
Task: C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-1078081533-515967899-839522115-1003UA.job => C:\Documents and Settings\U~ivatel\Local Settings\Data aplikací\Facebook\Update\FacebookUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\User_Feed_Synchronization-{4CBC6D9E-9EC3-422A-AAB4-9E6B1B69A8AA}.job => C:\WINDOWS\system32\msfeedssync.exe

Hosts:
End
  • Ulozte vytvoreny TXT jako fixlist.txt
  • Presunte vytvoreny fixlist vedle FRST
:arrow: Spustte znovu FRST.exe
  • Kliknete na Fix
  • Probehne oprava a vytvori log Fixlog.txt
:arrow: Restart PC a dejte mi sem fixlog.txt

Re: Pomooooc, vir INTERPOL.. nejde niiic

Napsal: 29 kvě 2014 06:27
od Duge77
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version:25-05-2014 02
Ran by Uživatel at 2014-05-29 07:26:27 Run:1
Running from C:\Documents and Settings\Uživatel\Plocha
Boot Mode: Normal

==============================================

Content of fixlist:
*****************
Start
HKU\S-1-5-21-1078081533-515967899-839522115-1003\...\Run: [Facebook Update] => C:\Documents and Settings\Uživatel\Local Settings\Data aplikací\Facebook\Update\FacebookUpdate.exe [138096 2013-10-22] (Facebook Inc.)
HKU\S-1-5-21-1078081533-515967899-839522115-1003\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [19875432 2013-06-21] (Skype Technologies S.A.)
HKLM\...\Run: [] => [X]

URLSearchHook: ATTENTION ==> Default URLSearchHook is missing.
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = http://www.google.com/search?q={searchT ... {startPage}
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = http://www.google.com/search?q={searchT ... {startPage}
SearchScopes: HKCU - {BD9B1D2B-C0D0-414b-B40A-BB11E76BB981} URL = http://www.google.com/cse?cx=partner-pu ... e=UTF-8&q={searchTerms}&sa=Search&siteurl=www.google.com%2Fcse%2Fhome%3Fcx%3Dpartner-pub-3794288947762788%3A4067623346

CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2013-10-09]

2014-05-28 21:28 - 2014-05-28 21:28 - 00012267 _____ () C:\Documents and Settings\Uživatel\Plocha\FRST.txt
2014-05-28 21:26 - 2014-05-28 21:26 - 00029696 _____ () C:\Documents and Settings\Uživatel\Local Settings\Data aplikací\MSGBOX.EXE
2014-05-28 21:26 - 2014-05-28 21:26 - 00015327 _____ () C:\Documents and Settings\Uživatel\Plocha\LM.bat
2014-05-28 21:25 - 2014-05-28 21:25 - 00112640 _____ (forum.viry.cz) C:\Documents and Settings\Uživatel\Plocha\FRSTLauncher.exe
2014-05-28 21:04 - 2014-05-28 20:55 - 00024064 _____ () C:\WINDOWS\zoek-delete.exe
2014-05-28 20:57 - 2014-05-28 21:05 - 00006895 _____ () C:\zoek-results.log
2014-05-28 20:52 - 2014-05-28 21:01 - 00000000 ____D () C:\zoek_backup
2014-05-28 20:46 - 2014-05-28 21:19 - 00000000 ____D () C:\Documents and Settings\Uživatel\Plocha\ANTIVIR PGM
2014-05-28 20:42 - 2014-05-28 20:43 - 00000000 ____D () C:\AdwCleaner
2014-05-28 20:42 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\WINDOWS\system32\sqlite3.dll
2014-05-28 20:35 - 2014-05-28 20:35 - 00000000 ____D () C:\WINDOWS\ERUNT
2014-05-28 20:17 - 2014-05-28 20:18 - 00000000 ____D () C:\rsit
2014-05-28 20:17 - 2014-05-28 20:18 - 00000000 ____D () C:\Program Files\trend micro
2014-05-28 20:09 - 2014-05-28 20:09 - 00030976 _____ () C:\WINDOWS\system32\Drivers\hitmanpro37.sys
2014-05-28 20:08 - 2014-05-28 20:08 - 00010114 _____ () C:\WINDOWS\system32\.crusader
2014-05-28 20:00 - 2014-05-28 20:08 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\HitmanPro
2014-05-28 20:08 - 2014-05-28 20:00 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\HitmanPro


AlternateDataStreams: C:\Documents and Settings\All Users\Data aplikací\TEMP:A31FAD21

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\avast! Emergency Update.job => C:\Program Files\Alwil Software\Avast5\AvastEmUpdate.exe
Task: C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-1078081533-515967899-839522115-1003Core.job => C:\Documents and Settings\U~ivatel\Local Settings\Data aplikací\Facebook\Update\FacebookUpdate.exe
Task: C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-1078081533-515967899-839522115-1003UA.job => C:\Documents and Settings\U~ivatel\Local Settings\Data aplikací\Facebook\Update\FacebookUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\User_Feed_Synchronization-{4CBC6D9E-9EC3-422A-AAB4-9E6B1B69A8AA}.job => C:\WINDOWS\system32\msfeedssync.exe

Hosts:
End
*****************

HKU\S-1-5-21-1078081533-515967899-839522115-1003\Software\Microsoft\Windows\CurrentVersion\Run\\Facebook Update => Value deleted successfully.
HKU\S-1-5-21-1078081533-515967899-839522115-1003\Software\Microsoft\Windows\CurrentVersion\Run\\Skype => Value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\ => Value deleted successfully.
Default URLSearchHook was restored successfully .
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value deleted successfully.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{6A1806CD-94D4-4689-BA73-E35EA1EA9990} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{BD9B1D2B-C0D0-414b-B40A-BB11E76BB981} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{BD9B1D2B-C0D0-414b-B40A-BB11E76BB981} => Key not found.
HKLM\SOFTWARE\Google\Chrome\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl => Key deleted successfully.
C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx => Moved successfully.
C:\Documents and Settings\Uživatel\Plocha\FRST.txt => Moved successfully.
C:\Documents and Settings\Uživatel\Local Settings\Data aplikací\MSGBOX.EXE => Moved successfully.
C:\Documents and Settings\Uživatel\Plocha\LM.bat => Moved successfully.
"C:\Documents and Settings\Uživatel\Plocha\FRSTLauncher.exe" => File/Directory not found.
C:\WINDOWS\zoek-delete.exe => Moved successfully.
C:\zoek-results.log => Moved successfully.
C:\zoek_backup => Moved successfully.
C:\Documents and Settings\Uživatel\Plocha\ANTIVIR PGM => Moved successfully.
C:\AdwCleaner => Moved successfully.
C:\WINDOWS\system32\sqlite3.dll => Moved successfully.
C:\WINDOWS\ERUNT => Moved successfully.
C:\rsit => Moved successfully.
C:\Program Files\trend micro => Moved successfully.
C:\WINDOWS\system32\Drivers\hitmanpro37.sys => Moved successfully.
C:\WINDOWS\system32\.crusader => Moved successfully.
C:\Documents and Settings\All Users\Data aplikací\HitmanPro => Moved successfully.
"C:\Documents and Settings\All Users\Data aplikací\HitmanPro" => File/Directory not found.
C:\Documents and Settings\All Users\Data aplikací\TEMP => ":A31FAD21" ADS removed successfully.
C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => Moved successfully.
C:\WINDOWS\Tasks\avast! Emergency Update.job => Moved successfully.
C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-1078081533-515967899-839522115-1003Core.job => Moved successfully.
C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-1078081533-515967899-839522115-1003UA.job => Moved successfully.
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => Moved successfully.
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => Moved successfully.
C:\WINDOWS\Tasks\User_Feed_Synchronization-{4CBC6D9E-9EC3-422A-AAB4-9E6B1B69A8AA}.job => Moved successfully.
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.

==== End of Fixlog ====

Re: Pomooooc, vir INTERPOL.. nejde niiic

Napsal: 29 kvě 2014 21:45
od vyosek
Tak jeste uklidime :James008:

:arrow: T-Cleaner http://vyosek.tym.cz/pro_usery/T-Cleaner.exe
  • Stahnete a spustte
  • Pro potvrzeni volby mackejte A, Enter
  • Po pouziti utilitu smazte
  • Antiviry touhou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)
:arrow: OTC http://oldtimer.geekstogo.com/OTC.exe
  • Stahnete a spustte
  • Kliknete na CleanUp a potvrdte YES
  • Program uklidi a restartuje PC

:arrow: TFC http://oldtimer.geekstogo.com/TFC.exe
  • Stahnete a spustte
  • Kliknete na Start a potvrdte OK
  • Program uklidi a restartuje pc
  • Po pouziti utilitu smazte
:arrow: Stahnete Ccleaner http://forum.viry.cz/viewtopic.php?t=7478
Panel čistič
  • Vse nechte jak je, jen dejte Analyzovat a pote Spustit CCleaner
Panel registry
  • dejte Hledej problémy
  • nasledne Opravit problémy - zalohu registru doporucuji udelat, opravte vsechny problemy
  • postup opakujte dokud nebude bez problemu - vetsinou cca 3x
Panel nástroje
  • Zde muzete odinstalovat nepotrebne programy
CCleaner doporucuji pouzivat cca jednou za tyden

:arrow: A pokud nejsou problemy ci dotazy, je to z me strany vse :|

Re: Pomooooc, vir INTERPOL.. nejde niiic

Napsal: 30 kvě 2014 18:15
od Duge77
Tak vše jsem udělal, jede všechno ok, jste opravdu profíci a je vidět, že víte co děláte.. takže moc moc děkuju, jsem moc rád. že jste tu .. ještě jednou díky... :thumbsup: :thumbsup: :James008: :worship: :worship:

Re: Pomooooc, vir INTERPOL.. nejde niiic

Napsal: 30 kvě 2014 18:23
od vyosek
Nemate zac, rad jsem pomohl :worship: Zase nekdy Obrázek

A na zaklade Pravidla o zamykani temat :lock:
Všechny časy jsou v UTC+01:00
Stránka 2 z 2

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz