Re: Rozsekaný PC
Napsal: 15 úno 2015 19:39
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 15-02-2015
Ran by Adam at 2015-02-15 19:36:48 Run:1
Running from C:\Users\Adam\Desktop
Loaded Profiles: Adam (Available profiles: Adam)
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
Start
HKU\S-1-5-21-898189633-4014198124-770947749-1002\...\MountPoints2: {399fb78c-4402-11e4-be72-e0db55aa06a7} - "F:\setup.exe"
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
C:\Program Files (x86)\Skype\Toolbars
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
CHR HKU\S-1-5-21-898189633-4014198124-770947749-1002\...\Chrome\Extension: [fkkcgfbgohboipdhliafmacjnhjbhmim] - No Path
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - No Path
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [Not Found]
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1390176 2014-07-14] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1767520 2014-07-14] (Microsoft Corporation)
C:\WINDOWS\System32\Tasks\{E8939146-AC9F-44BF-9D0F-2049BF3A1100}
C:\WINDOWS\system32\ApnDatabase.xml
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
C:\Users\Adam\AppData\Local\Temp
End
*****************
"HKU\S-1-5-21-898189633-4014198124-770947749-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{399fb78c-4402-11e4-be72-e0db55aa06a7}" => Key deleted successfully.
HKCR\CLSID\{399fb78c-4402-11e4-be72-e0db55aa06a7} => Key not found.
"HKLM\SOFTWARE\Policies\Google" => Key deleted successfully.
HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}" => Key deleted successfully.
"HKCR\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}" => Key deleted successfully.
C:\Program Files (x86)\Skype\Toolbars => Moved successfully.
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}" => Key deleted successfully.
"HKCR\Wow6432Node\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}" => Key deleted successfully.
"HKCR\PROTOCOLS\Handler\skypec2c" => Key deleted successfully.
"HKCR\CLSID\{91774881-D725-4E58-B298-07617B9B86A8}" => Key deleted successfully.
HKCR\Wow6432Node\PROTOCOLS\Handler\skypec2c => Key not found.
"HKCR\Wow6432Node\CLSID\{91774881-D725-4E58-B298-07617B9B86A8}" => Key deleted successfully.
"HKU\S-1-5-21-898189633-4014198124-770947749-1002\SOFTWARE\Google\Chrome\Extensions\fkkcgfbgohboipdhliafmacjnhjbhmim" => Key deleted successfully.
"HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\fheoggkfdfchfphceeifdbepaooicaho" => Key deleted successfully.
"HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl" => Key deleted successfully.
c2cautoupdatesvc => Unable to stop service
c2cautoupdatesvc => Service deleted successfully.
c2cpnrsvc => Unable to stop service
c2cpnrsvc => Service deleted successfully.
C:\WINDOWS\System32\Tasks\{E8939146-AC9F-44BF-9D0F-2049BF3A1100} => Moved successfully.
C:\WINDOWS\system32\ApnDatabase.xml => Moved successfully.
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => Moved successfully.
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => Moved successfully.
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => Moved successfully.
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => Moved successfully.
"C:\Users\Adam\AppData\Local\Temp" directory move:
C:\Users\Adam\AppData\Local\Temp\adwcleaner.db => Moved successfully.
C:\Users\Adam\AppData\Local\Temp\AdwCleaner.jpg => Moved successfully.
C:\Users\Adam\AppData\Local\Temp\B160189F-5487-4E89-8476-241231F738D0.Repair.Admin.1.etl => Moved successfully.
Could not move "C:\Users\Adam\AppData\Local\Temp\CCDash.log" => Scheduled to move on reboot.
C:\Users\Adam\AppData\Local\Temp\CCDBootLog.log => Moved successfully.
C:\Users\Adam\AppData\Local\Temp\Cleaning.ico => Moved successfully.
C:\Users\Adam\AppData\Local\Temp\EULA.txt => Moved successfully.
Could not move "C:\Users\Adam\AppData\Local\Temp\JETA9DC.tmp" => Scheduled to move on reboot.
C:\Users\Adam\AppData\Local\Temp\MDNS_LOG_00_44.txt => Moved successfully.
C:\Users\Adam\AppData\Local\Temp\MDNS_LOG_05_29.txt => Moved successfully.
C:\Users\Adam\AppData\Local\Temp\MDNS_LOG_23_37.txt => Moved successfully.
C:\Users\Adam\AppData\Local\Temp\MDNS_LOG_25_21.txt => Moved successfully.
C:\Users\Adam\AppData\Local\Temp\MDNS_LOG_29_28.txt => Moved successfully.
C:\Users\Adam\AppData\Local\Temp\MDNS_LOG_29_51.txt => Moved successfully.
C:\Users\Adam\AppData\Local\Temp\MDNS_LOG_31_37.txt => Moved successfully.
Could not move "C:\Users\Adam\AppData\Local\Temp\MDNS_LOG_38_51.txt" => Scheduled to move on reboot.
C:\Users\Adam\AppData\Local\Temp\MDNS_LOG_41_56.txt => Moved successfully.
C:\Users\Adam\AppData\Local\Temp\MDNS_LOG_53_01.txt => Moved successfully.
C:\Users\Adam\AppData\Local\Temp\MDNS_LOG_57_10.txt => Moved successfully.
C:\Users\Adam\AppData\Local\Temp\MDNS_LOG_58_51.txt => Moved successfully.
C:\Users\Adam\AppData\Local\Temp\Quarantine.exe => Moved successfully.
C:\Users\Adam\AppData\Local\Temp\Report.ico => Moved successfully.
C:\Users\Adam\AppData\Local\Temp\Scan.ico => Moved successfully.
C:\Users\Adam\AppData\Local\Temp\sqlite3.dll => Moved successfully.
C:\Users\Adam\AppData\Local\Temp\StructuredQuery.log => Moved successfully.
C:\Users\Adam\AppData\Local\Temp\Uninstall.ico => Moved successfully.
C:\Users\Adam\AppData\Local\Temp\winstore.log => Moved successfully.
C:\Users\Adam\AppData\Local\Temp\wmplog00.sqm => Moved successfully.
C:\Users\Adam\AppData\Local\Temp\~97F6.tmp => Moved successfully.
C:\Users\Adam\AppData\Local\Temp\NVIDIA Corporation\NV_Cache\440ec2b251141faab5a5e914d6bdbb9e_fce8395f8fd8a878_a4b25972e4779d76_0_0.bin => Moved successfully.
C:\Users\Adam\AppData\Local\Temp\NVIDIA Corporation\NV_Cache\440ec2b251141faab5a5e914d6bdbb9e_fce8395f8fd8a878_a4b25972e4779d76_0_0.toc => Moved successfully.
C:\Users\Adam\AppData\Local\Temp\NVIDIA Corporation\NV_Cache\440ec2b251141faab5a5e914d6bdbb9e_fce8395f8fd8a878_a4b25972e4779d76_0_1.bin => Moved successfully.
C:\Users\Adam\AppData\Local\Temp\NVIDIA Corporation\NV_Cache\440ec2b251141faab5a5e914d6bdbb9e_fce8395f8fd8a878_a4b25972e4779d76_0_1.toc => Moved successfully.
C:\Users\Adam\AppData\Local\Temp\NVIDIA Corporation\NV_Cache\440ec2b251141faab5a5e914d6bdbb9e_fce8395f8fd8a878_a4b25972e4779d76_0_2.bin => Moved successfully.
Could not move "C:\Users\Adam\AppData\Local\Temp" directory. => Scheduled to move on reboot.
=> Result of Scheduled Files to move (Boot Mode: Normal) (Date&Time: 2015-02-15 19:37:50)<=
C:\Users\Adam\AppData\Local\Temp\CCDash.log => Is moved successfully.
C:\Users\Adam\AppData\Local\Temp\JETA9DC.tmp => Is moved successfully.
C:\Users\Adam\AppData\Local\Temp\MDNS_LOG_38_51.txt => Is moved successfully.
C:\Users\Adam\AppData\Local\Temp => Moved successfully.
==== End of Fixlog 19:37:50 ====
Ran by Adam at 2015-02-15 19:36:48 Run:1
Running from C:\Users\Adam\Desktop
Loaded Profiles: Adam (Available profiles: Adam)
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
Start
HKU\S-1-5-21-898189633-4014198124-770947749-1002\...\MountPoints2: {399fb78c-4402-11e4-be72-e0db55aa06a7} - "F:\setup.exe"
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
C:\Program Files (x86)\Skype\Toolbars
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
CHR HKU\S-1-5-21-898189633-4014198124-770947749-1002\...\Chrome\Extension: [fkkcgfbgohboipdhliafmacjnhjbhmim] - No Path
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - No Path
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [Not Found]
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1390176 2014-07-14] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1767520 2014-07-14] (Microsoft Corporation)
C:\WINDOWS\System32\Tasks\{E8939146-AC9F-44BF-9D0F-2049BF3A1100}
C:\WINDOWS\system32\ApnDatabase.xml
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
C:\Users\Adam\AppData\Local\Temp
End
*****************
"HKU\S-1-5-21-898189633-4014198124-770947749-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{399fb78c-4402-11e4-be72-e0db55aa06a7}" => Key deleted successfully.
HKCR\CLSID\{399fb78c-4402-11e4-be72-e0db55aa06a7} => Key not found.
"HKLM\SOFTWARE\Policies\Google" => Key deleted successfully.
HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}" => Key deleted successfully.
"HKCR\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}" => Key deleted successfully.
C:\Program Files (x86)\Skype\Toolbars => Moved successfully.
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}" => Key deleted successfully.
"HKCR\Wow6432Node\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}" => Key deleted successfully.
"HKCR\PROTOCOLS\Handler\skypec2c" => Key deleted successfully.
"HKCR\CLSID\{91774881-D725-4E58-B298-07617B9B86A8}" => Key deleted successfully.
HKCR\Wow6432Node\PROTOCOLS\Handler\skypec2c => Key not found.
"HKCR\Wow6432Node\CLSID\{91774881-D725-4E58-B298-07617B9B86A8}" => Key deleted successfully.
"HKU\S-1-5-21-898189633-4014198124-770947749-1002\SOFTWARE\Google\Chrome\Extensions\fkkcgfbgohboipdhliafmacjnhjbhmim" => Key deleted successfully.
"HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\fheoggkfdfchfphceeifdbepaooicaho" => Key deleted successfully.
"HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl" => Key deleted successfully.
c2cautoupdatesvc => Unable to stop service
c2cautoupdatesvc => Service deleted successfully.
c2cpnrsvc => Unable to stop service
c2cpnrsvc => Service deleted successfully.
C:\WINDOWS\System32\Tasks\{E8939146-AC9F-44BF-9D0F-2049BF3A1100} => Moved successfully.
C:\WINDOWS\system32\ApnDatabase.xml => Moved successfully.
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => Moved successfully.
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => Moved successfully.
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => Moved successfully.
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => Moved successfully.
"C:\Users\Adam\AppData\Local\Temp" directory move:
C:\Users\Adam\AppData\Local\Temp\adwcleaner.db => Moved successfully.
C:\Users\Adam\AppData\Local\Temp\AdwCleaner.jpg => Moved successfully.
C:\Users\Adam\AppData\Local\Temp\B160189F-5487-4E89-8476-241231F738D0.Repair.Admin.1.etl => Moved successfully.
Could not move "C:\Users\Adam\AppData\Local\Temp\CCDash.log" => Scheduled to move on reboot.
C:\Users\Adam\AppData\Local\Temp\CCDBootLog.log => Moved successfully.
C:\Users\Adam\AppData\Local\Temp\Cleaning.ico => Moved successfully.
C:\Users\Adam\AppData\Local\Temp\EULA.txt => Moved successfully.
Could not move "C:\Users\Adam\AppData\Local\Temp\JETA9DC.tmp" => Scheduled to move on reboot.
C:\Users\Adam\AppData\Local\Temp\MDNS_LOG_00_44.txt => Moved successfully.
C:\Users\Adam\AppData\Local\Temp\MDNS_LOG_05_29.txt => Moved successfully.
C:\Users\Adam\AppData\Local\Temp\MDNS_LOG_23_37.txt => Moved successfully.
C:\Users\Adam\AppData\Local\Temp\MDNS_LOG_25_21.txt => Moved successfully.
C:\Users\Adam\AppData\Local\Temp\MDNS_LOG_29_28.txt => Moved successfully.
C:\Users\Adam\AppData\Local\Temp\MDNS_LOG_29_51.txt => Moved successfully.
C:\Users\Adam\AppData\Local\Temp\MDNS_LOG_31_37.txt => Moved successfully.
Could not move "C:\Users\Adam\AppData\Local\Temp\MDNS_LOG_38_51.txt" => Scheduled to move on reboot.
C:\Users\Adam\AppData\Local\Temp\MDNS_LOG_41_56.txt => Moved successfully.
C:\Users\Adam\AppData\Local\Temp\MDNS_LOG_53_01.txt => Moved successfully.
C:\Users\Adam\AppData\Local\Temp\MDNS_LOG_57_10.txt => Moved successfully.
C:\Users\Adam\AppData\Local\Temp\MDNS_LOG_58_51.txt => Moved successfully.
C:\Users\Adam\AppData\Local\Temp\Quarantine.exe => Moved successfully.
C:\Users\Adam\AppData\Local\Temp\Report.ico => Moved successfully.
C:\Users\Adam\AppData\Local\Temp\Scan.ico => Moved successfully.
C:\Users\Adam\AppData\Local\Temp\sqlite3.dll => Moved successfully.
C:\Users\Adam\AppData\Local\Temp\StructuredQuery.log => Moved successfully.
C:\Users\Adam\AppData\Local\Temp\Uninstall.ico => Moved successfully.
C:\Users\Adam\AppData\Local\Temp\winstore.log => Moved successfully.
C:\Users\Adam\AppData\Local\Temp\wmplog00.sqm => Moved successfully.
C:\Users\Adam\AppData\Local\Temp\~97F6.tmp => Moved successfully.
C:\Users\Adam\AppData\Local\Temp\NVIDIA Corporation\NV_Cache\440ec2b251141faab5a5e914d6bdbb9e_fce8395f8fd8a878_a4b25972e4779d76_0_0.bin => Moved successfully.
C:\Users\Adam\AppData\Local\Temp\NVIDIA Corporation\NV_Cache\440ec2b251141faab5a5e914d6bdbb9e_fce8395f8fd8a878_a4b25972e4779d76_0_0.toc => Moved successfully.
C:\Users\Adam\AppData\Local\Temp\NVIDIA Corporation\NV_Cache\440ec2b251141faab5a5e914d6bdbb9e_fce8395f8fd8a878_a4b25972e4779d76_0_1.bin => Moved successfully.
C:\Users\Adam\AppData\Local\Temp\NVIDIA Corporation\NV_Cache\440ec2b251141faab5a5e914d6bdbb9e_fce8395f8fd8a878_a4b25972e4779d76_0_1.toc => Moved successfully.
C:\Users\Adam\AppData\Local\Temp\NVIDIA Corporation\NV_Cache\440ec2b251141faab5a5e914d6bdbb9e_fce8395f8fd8a878_a4b25972e4779d76_0_2.bin => Moved successfully.
Could not move "C:\Users\Adam\AppData\Local\Temp" directory. => Scheduled to move on reboot.
=> Result of Scheduled Files to move (Boot Mode: Normal) (Date&Time: 2015-02-15 19:37:50)<=
C:\Users\Adam\AppData\Local\Temp\CCDash.log => Is moved successfully.
C:\Users\Adam\AppData\Local\Temp\JETA9DC.tmp => Is moved successfully.
C:\Users\Adam\AppData\Local\Temp\MDNS_LOG_38_51.txt => Is moved successfully.
C:\Users\Adam\AppData\Local\Temp => Moved successfully.
==== End of Fixlog 19:37:50 ====
