VIRY.CZ

Logy jsou v příloze

Start -> vepiste cmd

• na vysledek vyhledavani kliknete pravym a zvolte Spustit jako spravce
• do spusteneho okna vepiste: sfc /scannow
• a odentrujte

Nejsem si jisty neskodnosti tohoto souboru: C:\ProgramData\Package Cache\{2A002F88-FD5D-379B-A350-A25D84AF128B}v14.0.25420\packages\VisualC_D14\VC_IDE.Base\VC_IDE_Base.dll
https://virustotal.com/cs/file/77a81a05 ... /analysis/
a na nej navazane sluzby "MVCSrv". Proto tuto sluzbu fixlistem pouze zakazeme.

• Do Poznamkoveho bloku (Start -> spustit -> notepad) zkopirujte obsah bileho pole
• ulozte na plochu jako fixlist (Typ souboru: Textovy dokument)
• znovu spustte FRST a kliknete na Fix
• po restartu bude na plose ulozen fixlog, jehoz obsah vlozte do pristi odpovedi

  Kód: Vybrat vše

  Start
  CreateRestorePoint:
  CloseProcesses:
  CHR StartupUrls: Profile 2 -> "hxxp://google.cz/","hxxp://www.youndoo.com/?z=44f9003ff9077c5193633d1g6zbbbt4zagcebqet0c&from=bcn&uid=LITEONITXLMT-128M3M_002220101270&type=hp","hxxp://www.startpageing123.com/?type=hp&ts=1490774500&z=8966150fa7ea9a0d0cdc021gazetae9m8mbz9zct9t&from=che0812&uid=LITEONITXLMT-128M3M_002220101270","hxxp://www.ourluckysites.com/?type=hp&ts=1491385430&z=c5970e285664023e2684ec1g6z4tegec7b1w9z2c5g&from=che0812&uid=LITEONITXLMT-128M3M_002220101270"
  CHR Profile: C:\Users\Pepi\AppData\Local\Google\Chrome\User Data\ChromeDefaultData [2017-04-05] <==== ATTENTION
  DisableService: MVCSrv
  2017-04-05 16:05 - 2017-04-06 15:01 - 00000000 _____ C:\Users\Public\Documents\temp.dat
  2017-04-04 17:50 - 2017-04-04 17:50 - 00000000 ____D C:\Program Files (x86)\temp
  EmptyTemp:
  End

Zde je log:

Fix result of Farbar Recovery Scan Tool (x64) Version: 15-03-2017
Ran by Pepi (07-04-2017 09:57:25) Run:2
Running from C:\Users\Pepi\Desktop
Loaded Profiles: Pepi (Available Profiles: Pepi & Administrator)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CreateRestorePoint:
CloseProcesses:
CHR StartupUrls: Profile 2 -> "hxxp://google.cz/","hxxp://www.youndoo.com/?z=44f9003ff9077c519363 ... 2220101270"
CHR Profile: C:\Users\Pepi\AppData\Local\Google\Chrome\User Data\ChromeDefaultData [2017-04-05] <==== ATTENTION
DisableService: MVCSrv
2017-04-05 16:05 - 2017-04-06 15:01 - 00000000 _____ C:\Users\Public\Documents\temp.dat
2017-04-04 17:50 - 2017-04-04 17:50 - 00000000 ____D C:\Program Files (x86)\temp
EmptyTemp:
End
*****************

Restore point was successfully created.
Processes closed successfully.
Chrome StartupUrls => removed successfully
C:\Users\Pepi\AppData\Local\Google\Chrome\User Data\ChromeDefaultData => moved successfully
MVCSrv => service was disabled
C:\Users\Public\Documents\temp.dat => moved successfully
C:\Program Files (x86)\temp => moved successfully

=========== EmptyTemp: ==========

BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 16074962 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 615921 B
Edge => 8704 B
Chrome => 481456066 B
Firefox => 10365294 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 128 B
systemprofile32 => 128 B
LocalService => 1634 B
NetworkService => 0 B
Pepi => 48863850 B
Administrator => 21391325 B

RecycleBin => 0 B
EmptyTemp: => 552 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 09:57:47 ====

Doporucuji nainstalovat antivir. Zde si muzete vybrat https://forum.viry.cz/viewtopic.php?f=1 ... &start=225

Pak uz jen uklidime.

• Stahnete a spustte DelFix - https://toolslib.net/downloads/viewdownload/2-delfix/
• Oznacte jen moznost "Remove disinfection tools"
• kliknete na Run

A pokud nejsou dotazy ci jine problemy, je to ode mne vse.