VIRY.CZ

Musel jsem na chvilu odbehnout, tak log az nyni

.

Zoek.exe v5.0.0.0 Updated 04-May-2015
Tool run by Jobran on Łt 25. 08. 2015 at 10:07:03,04.
Microsoft Windows 8.1 6.3.9600 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Jobran\Downloads\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

25. 8. 2015 10:08:52 Zoek.exe System Restore Point Created Successfully.

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

127.0.0.1 localhost

==== Empty Folders Check ======================

C:\PROGRA~2\LEGO Company deleted successfully
C:\PROGRA~2\MarkAny deleted successfully
C:\PROGRA~2\Samsung deleted successfully
C:\PROGRA~2\Seznam.cz deleted successfully
C:\Program Files\Blender Foundation deleted successfully
C:\Program Files\Google deleted successfully
C:\Users\Jobran\AppData\Roaming\Awesomium deleted successfully
C:\Users\Jobran\AppData\Roaming\Seznam.cz deleted successfully
C:\Users\Jobran\AppData\Local\CrashDumps deleted successfully
C:\Users\Jobran\AppData\Local\EmieBrowserModeList deleted successfully
C:\Users\Jobran\AppData\Local\EmieSiteList deleted successfully
C:\Users\Jobran\AppData\Local\EmieUserList deleted successfully
C:\Users\Jobran\AppData\Local\Samsung deleted successfully
C:\Users\Jobran\AppData\Local\Unity deleted successfully
C:\Users\Jobran\AppData\Local\WarThunder deleted successfully
C:\Users\Sara\AppData\Local\VirtualStore deleted successfully

==== Deleting CLSID Registry Keys ======================

==== Deleting CLSID Registry Values ======================

==== Deleting Services ======================

==== Deleting Files \ Folders ======================

C:\PROGRA~2\LEGO Company not found
C:\PROGRA~2\MarkAny not found
C:\PROGRA~2\Samsung not found
C:\PROGRA~2\Seznam.cz not found
C:\PROGRA~2\Minimal Bookmarks Tree deleted
C:\PROGRA~2\New Tab Clock deleted
C:\PROGRA~2\Show Apps in new tab deleted
C:\PROGRA~2\Sticky Contest deleted
C:\PROGRA~2\Use VLC for YouTube deleted
C:\PROGRA~2\Whopping Ring deleted
C:\PROGRA~2\Chrome deleted
C:\PROGRA~3\Package Cache deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk deleted
C:\WINDOWS\SysNative\config\systemprofile\Searches deleted

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"wrc@avast.com"="C:\Program Files\AVAST Software\Avast\WebRep\FF" [24. 08. 2015 19:12]

==== Fake Chromium Profiles Check ======================

Fake profile C:\Users\Sara\AppData\Local\Google\Chrome deleted

==== Chromium Look ======================

Google Chrome Version: 44.0.2403.157

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
dnligehkhogpcngalffdoomehjcbecna - No path found[]
gehmndecgbcffhmfjkenpamdgechcgpe - No path found[]
gomekmidlodglbbmalcneegieacbdmki - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[24. 08. 2015 19:12]

AdBlock - Jobran\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom
Avast Online Security - Jobran\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="https://www.google.com/?trackid=sp-006"
"Search Page"="https://www.google.com/search?trackid=s ... earchTerms}"
"Search Bar"="https://www.google.com/?trackid=sp-006"
"Use Search Asst"="yes"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Start Page"="https://www.google.com/?trackid=sp-006"
"Search Page"="https://www.google.com/search?trackid=s ... earchTerms}"
"Search Bar"="https://www.google.com/?trackid=sp-006"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
"Start Page"="https://www.google.com/?trackid=sp-006"
"Search Page"="https://www.google.com/search?trackid=s ... earchTerms}"
"Search Bar"="https://www.google.com/?trackid=sp-006"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Bar"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Start Page"="https://www.google.com/?trackid=sp-006"
"Use Search Asst"="no"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Bar"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Bar"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{E9410C70-B6AE-41FF-AB71-32F4B279EA5F}"
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTer ... ORM=IE8SRC"
{33BB0A4E-99AF-4226-BDF6-49120163DE86} Bing Url="http://www.bing.com/search?q={searchTer ... ORM=IESR02"
{DC2D76FB-00EA-42D7-B299-861B0D034154} Seznam TV Program Url="http://tv.seznam.cz/hledej?w={searchTer ... arch_14875"
{E9410C70-B6AE-41FF-AB71-32F4B279EA5F} Google Url="https://www.google.com/search?trackid=s ... earchTerms}"

==== Reset Google Chrome ======================

C:\Users\Jobran\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\Jobran\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences was reset successfully
C:\Users\Jobran\AppData\Roaming\Opera Software\Opera Stable\Preferences was reset successfully
C:\Users\Jobran\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
C:\Users\Jobran\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal was reset successfully
C:\Users\Jobran\AppData\Roaming\Opera Software\Opera Stable\Web Data was reset successfully

==== Empty IE Cache ======================

C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Jobran\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\Jobran\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\Jobran\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Users\Jobran\AppData\Local\Microsoft\Windows\INetCache\Low\IE emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

C:\Users\Jobran\AppData\Local\Opera Software\Opera Stable\Cache emptied successfully
C:\Users\Jobran\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=208 folders=39 496065046 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Jobran\AppData\Local\Temp will be emptied at reboot
C:\Users\Sara\AppData\Local\Temp emptied successfully
C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\WINDOWS\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\WINDOWS\Temp successfully emptied
C:\Users\Jobran\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on Łt 25. 08. 2015 at 13:58:14,50 ======================

Znovu pouzijte DelFix...

vyosek píše: DelFix https://toolslib.net/downloads/finish/2/
Stahnete a spustte jako spravce

Ponechte zatrzitkou pouze u volby Remove disinfection tools

Kliknete na Run

Jak to s pec vypada?

No je to daleko lepsi nez predtim

.

Nainstaloval jsem ji tam AVAST pro aspon castecnou budouci eliminaci.

Mockrat dekuji a jeste jeden podstatny dotaz. Co jsem dluzen?:)

To jsem rad, ze se to zlepsilo.

Avast je dobra volba

Nemate zac!

Dluzen nejste nic, nedelame to pro penize

Kdybyste na tom ale treval

, muzete podporit forum http://forum.viry.cz/viewtopic.php?f=7&t=78175

Pokud byste mel jeste pc nejakou dobu k dispozici, udelejte jeste sken s OTL...

Stahnete OTL http://oldtimer.geekstogo.com/OTL.exe a ulozte na plochu.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce
Oznacte polozky (dejte tam zatrzitka) Pro všechny uživatele, Kontrola na havěť "LOP" a Kontrola na havěť "Purity"
Do spodniho okna vlozte nasledujici text

Kód: Vybrat vše

CREATERESTOREPOINT

netsvcs
drivers32
savembr:0

/md5start
adp3132.sys
AGP440.sys
ahcix86.sys
ahcix86s.sys
atapi.sys
autochk.exe
cdrom.sys
cngaudit.dll
cryptsvc.dll
eNetHook.dll
eventlog.dll
explorer.exe
hal.dll
Changer.sys
iaStor.sys
iastorv.sys
IdeChnDr.sys
isapnp.sys
JakNDis.sys
KR10N.sys
logevent.dll
lsass.exe
mv61xx.sys
ndis.sys
netlogon.dll
ntelogon.dll
nvata.sys
nvatabus.sys
nvgts.sys
nvraid.sys
nvrd32.sys
nvstor.sys
nvstor32.sys
scecli.dll
sceclt.dll
smss.exe
svchost.exe
symmpi.sys
tcpip.sys
userinit.exe
vaxscsi.sys
viamraid.sys
viasraid.sys
ViPrt.sys
winlogon.exe
ws2_32.dll
/md5stop

%systemroot%*.* /U /s
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
%SYSTEMDRIVE%\*.exe

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s
reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c

type c:\boot.ini >> test.txt /c
%SystemDrive%\PhysicalMBR.bin /md5

*crack* /s
*keygen* /s
*AntiWPA* /s
*loader* /s
*minodlogin* /s
*tnod* /s
*AutoKMS* /s
*activator* /s
*serial* /s
*w7lxe* /s

Kliknete na Prohledat
Po skenu se vytvori dva logy (OTL.Txt a Extras.txt), oba sem vlozte (kdyz budou dlouhe, rozdelte je do vice prispevku).

Bohuzel notebooky jsou jiz pryc....mockrat dekuji.

Na donate se podivam, jak se vratim z dovolene, ted odjizdim...

Tak preji pohodovou cestu, prijemny pobyt a hlavne stastny navrat

Za pripadny prispevek dekujeme

Mejte se a treba zase nekdy

VIRY.CZ

pomaly notebook

Re: pomaly notebook

Re: pomaly notebook

Re: pomaly notebook

Re: pomaly notebook

Re: pomaly notebook

Re: pomaly notebook