VIRY.CZ

Fix result of Farbar Recovery Scan Tool (x86) Version:27-01-2016
Ran by Viera (2016-02-03 21:00:43) Run:1
Running from C:\Users\Viera\Desktop
Loaded Profiles: Viera (Available Profiles: Viera)
Boot Mode: Normal

==============================================

fixlist content:
*****************
Start
CloseProcesses:
CreateRestorePoint:

HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1022152 2014-12-19] (Adobe Systems Incorporated)
HKLM\...\Run: [QuickTime Task] => C:\Program Files\QuickTime\QTTask.exe [421888 2013-05-01] (Apple Inc.)

HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-3725892672-3043224248-1115301474-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://fr.msn.com/
SearchScopes: HKLM -> DefaultScope value is missing

FF Extension: Gamers Unite! Snag Bar - C:\Users\Viera\AppData\Roaming\Mozilla\Firefox\Profiles\j5a98b64.default\Extensions\{afe43e80-0abc-4df2-81a0-3fe44b74abe8}.xpi [2015-06-25] [not signed]
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird => not found

S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [X]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-09-24 81088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-07 144200]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-07 144200]

2016-01-14 18:08 - 2016-01-14 15:04 - 00024064 _____ C:\Windows\zoek-delete.exe
2016-01-14 15:05 - 2016-01-14 17:59 - 00000000 ____D C:\zoek_backup
2016-01-13 10:47 - 2016-01-13 10:49 - 22908888 _____ (Malwarebytes ) C:\Users\Viera\Downloads\mbam-setup-2.2.0.1024.exe
2016-01-13 10:49 - 2013-04-06 12:28 - 00000000 ____D C:\ProgramData\Malwarebytes

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe

DeleteKey: HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite
DeleteKey: HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched

Hosts:
EmptyTemp:
Reboot:
End
*****************

Processes closed successfully.
Restore point was successfully created.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\Adobe ARM => value removed successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\QuickTime Task => value removed successfully.
"HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer" => key removed successfully.
"HKU\S-1-5-21-3725892672-3043224248-1115301474-1000\SOFTWARE\Policies\Microsoft\Internet Explorer" => key removed successfully.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Start Page => value restored successfully
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value restored successfully
C:\Users\Viera\AppData\Roaming\Mozilla\Firefox\Profiles\j5a98b64.default\Extensions\{afe43e80-0abc-4df2-81a0-3fe44b74abe8}.xpi => moved successfully
HKLM\Software\Mozilla\Thunderbird\Extensions\\eplgTb@eset.com => value removed successfully.
catchme => service removed successfully.
MBAMSwissArmy => service removed successfully.
AdobeARMservice => service removed successfully.
gupdate => service removed successfully.
gupdatem => service removed successfully.
C:\Windows\zoek-delete.exe => moved successfully
C:\zoek_backup => moved successfully
C:\Users\Viera\Downloads\mbam-setup-2.2.0.1024.exe => moved successfully
C:\ProgramData\Malwarebytes => moved successfully
C:\Windows\Tasks\Adobe Flash Player Updater.job => moved successfully
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => moved successfully
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => moved successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite => key removed successfully.
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched => key removed successfully.
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.
EmptyTemp: => 106.7 MB temporary data Removed.


The system needed a reboot.

==== End of Fixlog 21:04:44 ====

Aktualizácie neboli robené od oktobra lebo notebook sa dosť dlho nepoužíval. Predvčerom som ich dala spustiť dôležitých bolo asi 70 a len donekonečna ťahalo a nič. tak som včera skúsila vybrať len tri a stále ťahalo a ked som večer vypínala tak na mňa vybehlo ze nevypínajte pocitac a tie tri prešli takže neviem celkom ako to je.

Vsechny tyto programy - vcetne pripadne instalace - spoustejte jako spravce (kliknete na ne pravym mysidlem a zvolte - Spustit jako spravce)

vyosek píše: DelFix https://toolslib.net/downloads/finish/2/

• Stahnete a spustte
• Ponechte zatrzitkou pouze u volby Remove disinfection tools
• Kliknete na Run

Stahnete Ccleaner http://www.filehippo.com/download_ccleaner a spustte.
Pri instalaci pozor na toolbar (ci jine doplnky), jestli vam nabidne jeho instalaci, tak zruste zatrzitko.
Po spusteni se ocitnete ve funkci Cistic. Vlevo je spousta zatrzitek. Pozor dejte hlavne na kos, pokud nechate zatrzene, vzdy ho vysype.
Dale, podle toho jak je nastaven, smaze vsechna hesla ulozena na netu!!! Takze jestli mate nastavene, at si pocitac hesla pamatuje (coz neni pro bezpecnost dobre), budete je muset pak napsat znova rucne (napr mail, facebook, ruzna fora atd.)
Kliknete na Analyzovat a az dokonci analyzu, kliknete na Spustit Cleaner.
Potom kliknete vlevo na funkci Registry
Kliknete na Hledej problemy, kdyz najde, kliknete na Opravit problemy. Nabidne Vam zalohu, tu udelejte a ulozte ji tak, at ji v pripade potreby najdete.
Funkce Nastroje umoznuje odinstalovani programu. Je dukladnejsi nez samotny windows!
(Pokud je v pc vice uzivatelskych uctu, pouzijte program i v nich)

Defragmentujte disk(y) (SSD Disky ne!)
Stahnete program Defraggler https://www.piriform.com/defraggler/download/standard
Pri instalaci opet pozor na toolbar a dalsi nesmysly.
Po nainstalovani program spustte a kliknete na Analyzovat, po analyze kliknete na Defragmentovat a programek odvede svou praci.




Pak napiste, jak to s pc vypada a jestli se nainstalovaly zase nejake aktualizace.

# DelFix v1.011 - Logfile created 04/02/2016 at 14:09:13
# Updated 18/08/2015 by Xplode
# Username : Viera - MAREK
# Operating System : Windows Vista (TM) Home Premium Service Pack 2 (32 bits)

~ Removing disinfection tools ...

Deleted : C:\RSIT
Deleted : C:\FRST
Deleted : C:\AdwCleaner
Deleted : C:\zoek-results.log
Deleted : C:\Users\Viera\Desktop\Addition.txt
Deleted : C:\Users\Viera\Desktop\adwcleaner_5.031.exe
Deleted : C:\Users\Viera\Desktop\Fixlog.txt
Deleted : C:\Users\Viera\Desktop\FRST.exe
Deleted : C:\Users\Viera\Desktop\FRST.txt
Deleted : C:\Users\Viera\Desktop\FRSTLauncher.exe
Deleted : C:\Users\Viera\Desktop\JRT.exe
Deleted : C:\Users\Viera\Desktop\RSIT.exe
Deleted : C:\Users\Viera\Desktop\zoek.exe
Deleted : HKCU\Software\USBFix
Deleted : HKLM\SOFTWARE\AdwCleaner
Deleted : HKLM\SOFTWARE\Swearware
Deleted : HKLM\SOFTWARE\TrendMicro\Hijackthis
Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Hijackthis
Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\HijackThis.exe

########## - EOF - ##########

Stale neni hotovo?



17.7. pro neaktivitu http://forum.viry.cz/viewtopic.php?f=12&t=123975