Odinstalování Yontoo LLC 1.12.02

[cigter]

Dobrý den,
dnes jsem po dlouhé době šla zkontrolovat, co vše za programy mám v pc. Našla jsem tam tedy opravdu hodně virů, i když nemám ponětí, kde se tam vzali, asi jako všichni. Asi ten největší problém je pro mě Yontoo LLC 1.12.02. Odinstalovat nejde a nějaké čistící programy mi jsou k ničemu. Radši se zde ptám na radu, jelikož jsem opravdu velký amatér a nemám ponětí, co s tím + si nechci ještě více uškodit. Prosím o trpělivost a o pomoc. Počítač už mi reaguje jen výjimečně, hlavně co se týče pak s připojením k internetu a mám ho teprve chvíli. Děkuji

[Rudy]

Zdravím!
Zkuste tento postup: http://forum.viry.cz/viewtopic.php?f=24&t=132509 .

[cigter]

Dobrý den,
udělala jsem, jak se píše v návodu.
Ale píše mi zde, že má zpráva obsahuje více znaků, než je povoleno. Mohu log přiložit jako přílohu, nebo to mám poslat nadvakrát?
Hodně dlouhou dobu měl notebook půjčený známý, jelikož jsem využívala jiný a nevím, co tam dělal, že je tam těch virů tolik.

Děkuji.

[Rudy]

Milerád se na to podívám, winrar mi ale píše, že archiv je poškozen.

[cigter]

Děkuji, tak tady je druhý pokus.

[Rudy]

Teď je to OK. Otevřte poznámkový blok a zkopírujte do něj:

Start
C:\Users\Tereza\AppData\Local\iLivid
HKU\S-1-5-21-3183168421-3275855651-560329424-1001\...\Run: [AdobeBridge] - [X]
HKU\S-1-5-21-3183168421-3275855651-560329424-1001\...\Run: [Pokki] - C:\windows\system32\rundll32.exe "%LOCALAPPDATA%\Pokki\Engine\Launcher.dll",RunLaunchPlatform
HKU\S-1-5-21-3183168421-3275855651-560329424-1001\...\Run: [BackgroundContainer] - "C:\windows\SysWOW64\Rundll32.exe" "C:\Users\Tereza\AppData\Local\Conduit\BackgroundContainer\BackgroundContainer.dll",DllRun <===== ATTENTION
HKU\S-1-5-21-3183168421-3275855651-560329424-1001\...\Run: [iLivid] - C:\Users\Tereza\AppData\Local\iLivid\iLivid.exe [6827008 2013-09-08] (Bandoo Media Inc.)
C:\Program Files (x86)\Movies Toolbar
AppInit_DLLs: C:\PROGRA~2\MOVIES~1\Datamngr\x64\mgrldr.dll => C:\Program Files (x86)\Movies Toolbar\Datamngr\x64\mgrldr.dll [24064 2013-12-23] ()
IFEO\delta babylon.exe: [Debugger] tasklist.exe
IFEO\delta tb.exe: [Debugger] tasklist.exe
IFEO\delta2.exe: [Debugger] tasklist.exe
IFEO\deltainstaller.exe: [Debugger] tasklist.exe
IFEO\deltasetup.exe: [Debugger] tasklist.exe
IFEO\deltatb.exe: [Debugger] tasklist.exe
IFEO\deltatb_2501-c733154b.exe: [Debugger] tasklist.exe
IFEO\rjatydimofu.exe: [Debugger] tasklist.exe
IFEO\sweetimsetup.exe: [Debugger] tasklist.exe
IFEO\tbdelta.exetoolbar783881609.exe: [Debugger] tasklist.exe
Startup: C:\Users\Tereza\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MyPC Backup.lnk
ShortcutTarget: MyPC Backup.lnk -> C:\Program Files (x86)\MyPC Backup\MyPC Backup.exe (MyPCBackup.com)
HKLM\...\AppCertDlls: [x86] -> C:\Program Files (x86)\Movies Toolbar\Datamngr\apcrtldr.dll [485376 2013-12-23] () <===== ATTENTION
HKLM\...\AppCertDlls: [x64] -> C:\Program Files (x86)\Movies Toolbar\Datamngr\x64\apcrtldr.dll [658432 2013-12-23] () <===== ATTENTION
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.search.ask.com/?o=APN10645A& ... 81-221&t=4
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://do-search.com/?type=hp&ts=138446 ... AREEMBAREX
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.certified-toolbar.com?si= ... bs=true&q=
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.certified-toolbar.com?si= ... bs=true&q=
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.certified-toolbar.com?si= ... bs=true&q=
HKCU\Software\Microsoft\Internet Explorer\Main,Start Default_Page_URL = http://search.certified-toolbar.com?si= ... e&tid=2958
HKCU\Software\Microsoft\Internet Explorer\Main,bProtector Start Page = http://mixidj.delta-search.com/?affID=1 ... E54381044A
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://do-search.com/web/?type=ds&ts=13 ... earchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://do-search.com/?type=hp&ts=138446 ... AREEMBAREX
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://do-search.com/?type=hp&ts=138446 ... AREEMBAREX
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://do-search.com/web/?type=ds&ts=13 ... earchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://do-search.com/web/?type=ds&ts=13 ... earchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://do-search.com/?type=hp&ts=138446 ... AREEMBAREX
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://do-search.com/?type=hp&ts=138446 ... AREEMBAREX
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://do-search.com/web/?type=ds&ts=13 ... earchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Default_Page_URL = http://search.certified-toolbar.com?si= ... e&tid=2958
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Bar = http://search.certified-toolbar.com?si= ... bs=true&q=
URLSearchHook: HKLM-x32 - Default Value = {74198672-5F7D-4FE9-A611-4AC1D5A66A15}
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe http://do-search.com/?type=sc&ts=138446 ... AREEMBAREX
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://do-search.com/web/?type=ds&ts=13 ... earchTerms}
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://start.funmoods.com/results.php?f ... r=68951051
SearchScopes: HKLM - {2fa28606-de77-4029-af96-b231e3b8f827} URL = http://eu.ask.com/web?q={searchterms}&l=dis&o=CMNTDF
SearchScopes: HKLM - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://do-search.com/web/?type=ds&ts=13 ... earchTerms}
SearchScopes: HKLM - {9BB47C17-9C68-4BB3-B188-DD9AF0FD21} URL = http://dts.search-results.com/sr?src=ie ... earchTerms}
SearchScopes: HKLM - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = http://dts.search.ask.com/sr?src=ieb&gc ... earchTerms}
SearchScopes: HKLM-x32 - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://do-search.com/web/?type=ds&ts=13 ... earchTerms}
SearchScopes: HKLM-x32 - Backup.Old.DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
SearchScopes: HKLM-x32 - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://start.funmoods.com/results.php?f ... r=68951051
SearchScopes: HKLM-x32 - {2fa28606-de77-4029-af96-b231e3b8f827} URL = http://eu.ask.com/web?q={searchterms}&l=dis&o=CMNTDF
SearchScopes: HKLM-x32 - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://do-search.com/web/?type=ds&ts=13 ... earchTerms}
SearchScopes: HKLM-x32 - {9BB47C17-9C68-4BB3-B188-DD9AF0FD21} URL = http://dts.search-results.com/sr?src=ie ... earchTerms}
SearchScopes: HKLM-x32 - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = http://dts.search.ask.com/sr?src=ieb&gc ... earchTerms}
SearchScopes: HKLM-x32 - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = http://search.sweetim.com/search.asp?sr ... E543815DFA}
SearchScopes: HKLM-x32 - {BB74DE59-BC4C-4172-9AC4-73315F71CFFE} URL = http://websearch.good-results.info/?l=1 ... g=EN&cc=CZ
SearchScopes: HKLM-x32 - {cf6e4b1c-dbde-457e-9cef-ab8ecac8a5e8} URL = http://search.mywebsearch.com/mywebsear ... earchTerms}
SearchScopes: HKLM-x32 - {EEE6C360-6118-11DC-9C72-001320C79847} URL = http://search.certified-toolbar.com?si= ... earchTerms}
SearchScopes: HKCU - DefaultScope {6A0182D7-5153-426C-BB46-107E8FBFEBCB} URL = http://search.ividi.org/?q={searchTerms ... lt=3&r=760
SearchScopes: HKCU - Backup.Old.DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
SearchScopes: HKCU - bProtectorDefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://start.funmoods.com/results.php?f ... r=68951051
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://mixidj.delta-search.com/?q={sear ... E54381044A
SearchScopes: HKCU - {0F5BE342-B81A-3578-D5B0-522C89A7463A} URL = http://blekko.com/ws/?source=5f97ddbe&t ... rms}&r=290
SearchScopes: HKCU - {2fa28606-de77-4029-af96-b231e3b8f827} URL = http://eu.ask.com/web?q={searchterms}&l=dis&o=CMNTDF
SearchScopes: HKCU - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://do-search.com/web/?type=ds&ts=13 ... earchTerms}
SearchScopes: HKCU - {587361CE-D492-4DEA-BC39-0AC89ADB2122} URL = http://search.conduit.com/ResultsExt.as ... 4989912150
SearchScopes: HKCU - {6A0182D7-5153-426C-BB46-107E8FBFEBCB} URL = http://search.ividi.org/?q={searchTerms ... lt=3&r=760
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = http://www.google.com/search?q={sear
SearchScopes: HKCU - {784DAB5D-7B36-404B-94C0-63E0D2117239} URL = http://blekko.com/ws/?source=5f97ddbe&t ... rms}&r=290
SearchScopes: HKCU - {9BB47C17-9C68-4BB3-B188-DD9AF0FD21} URL = http://dts.search-results.com/sr?src=ie ... earchTerms}
SearchScopes: HKCU - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = http://dts.search.ask.com/sr?src=ieb&gc ... earchTerms}
SearchScopes: HKCU - {BB74DE59-BC4C-4172-9AC4-73315F71CFFE} URL = http://websearch.good-results.info/?l=1 ... g=EN&cc=CZ
SearchScopes: HKCU - {cf6e4b1c-dbde-457e-9cef-ab8ecac8a5e8} URL = http://search.mywebsearch.com/mywebsear ... earchTerms}
SearchScopes: HKCU - {EEE6C360-6118-11DC-9C72-001320C79847} URL = http://search.certified-toolbar.com?si= ... earchTerms}
BHO: Complitly - {0FB6A909-6086-458F-BD92-1F8EE10042A0} - C:\Users\Tereza\AppData\Roaming\Complitly\64\Complitly64.dll (SimplyGen)
BHO: Speed Test 127 - {11C8C9C0-D918-44C0-8B5E-D297DA42F2C7} - C:\Program Files (x86)\Speed Test 127\ScriptHost64.dll (BestOffers)
BHO-x32: Certified Toolbar - {0de094f5-e894-48c7-b16f-338d64674721} - C:\Users\Tereza\AppData\Roaming\CertifiedToolbar\CertifiedToolbar.dll (Simplytech Ltd.)
BHO-x32: Complitly - {0FB6A909-6086-458F-BD92-1F8EE10042A0} - C:\Users\Tereza\AppData\Roaming\Complitly\Complitly.dll (SimplyGen)
BHO-x32: Speed Test 127 - {11C8C9C0-D918-44C0-8B5E-D297DA42F2C7} - C:\Program Files (x86)\Speed Test 127\ScriptHost.dll (BestOffers)
BHO-x32: Speed Analysis 2 - {18DBB6CE-3148-4FEC-B481-103CB3290427} - C:\Program Files (x86)\Speed Analysis 2\ScriptHost.dll (SpeedAnalysis.com)
BHO-x32: Browse2save - {1DEBBCD8-6C0F-1EAE-7AD7-910646E16CDF} - C:\ProgramData\Browse2save\511a67d435012.dll ()
BHO-x32: Toolbar BHO - {312f84fb-8970-4fd3-bddb-7012eac4afc9} - C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin\4zbar.dll (MindSpark)
BHO-x32: Search-Results Toolbar - {31d8407c-62e4-4125-a4a9-717efb1a56ae} - C:\PROGRA~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\searchresultsDx.dll No File
BHO-x32: Movies Toolbar (Dist. by Bandoo Media, Inc.) - {3d86a75b-cb6b-4764-885d-ca6336f04ba2} - C:\Program Files (x86)\Movies Toolbar\Datamngr\SRTOOL~1\IE\searchresultsDx.dll ()
BHO-x32: Search-NewTab - {4FE96FA2-EC9C-4651-CA98-02AB29BA4B15} - C:\ProgramData\Search-NewTab\511a686845b95.dll ()
BHO-x32: Funmoods Helper Object - {75EBB0AA-4214-4CB4-90EC-E3E07ECD04F7} - C:\PROGRA~2\Funmoods\1.5.23.22\bh\escort.dll No File
BHO-x32: express-files Toolbar - {88ac3cb6-596b-4217-964c-b6757ef9602d} - C:\Program Files (x86)\express-files\prxtbexp0.dll (Conduit Ltd.)
BHO-x32: ividi Helper Object - {8B8B2E80-1444-451D-AC8E-EB9A847F3887} - C:\Program Files (x86)\Unitech LLC\ividi\1.8.23.0\bh\ividi.dll (Unitech LLC)
BHO-x32: Zula Games - {A9337080-7CBF-4E3E-80C1-3867BEDD88E0} - C:\Program Files (x86)\Zula Games\ScriptHost.dll (ZulaGames.com)
BHO-x32: Blekko Search Bar Helper Object - {BAE35237-8D73-44D0-905C-8A95EA1E7E69} - C:\Program Files (x86)\blekko\spamfreesearch\1.8.3.9\bh\spamfreesearch.dll (Montera Technologeis LTD)
BHO-x32: Search Assistant BHO - {c547c6c2-561b-4169-a2a5-20ba771ca93b} - C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin\4zSrcAs.dll (MindSpark)
BHO-x32: SweetPacks Browser Helper - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
Toolbar: HKLM-x32 - Funmoods Toolbar - {A4C272EC-ED9E-4ACE-A6F2-9558C7F29EF3} - C:\PROGRA~2\Funmoods\1.5.23.22\escorTlbr.dll No File
Toolbar: HKLM-x32 - SweetPacks Toolbar for Internet Explorer - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
Toolbar: HKLM-x32 - Search-Results Toolbar - {31d8407c-62e4-4125-a4a9-717efb1a56ae} - C:\PROGRA~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\searchresultsDx.dll No File
Toolbar: HKLM-x32 - Certified Toolbar - {0de094f5-e894-48c7-b16f-338d64674721} - C:\Users\Tereza\AppData\Roaming\CertifiedToolbar\CertifiedToolbar.dll (Simplytech Ltd.)
Toolbar: HKLM-x32 - express-files Toolbar - {88ac3cb6-596b-4217-964c-b6757ef9602d} - C:\Program Files (x86)\express-files\prxtbexp0.dll (Conduit Ltd.)
Toolbar: HKLM-x32 - Blekko Search Bar Toolbar - {EECF410C-006C-4A05-AD13-6741A0814DBF} - C:\Program Files (x86)\blekko\spamfreesearch\1.8.3.9\spamfreesearchTlbr.dll (Montera Technologeis LTD)
Toolbar: HKLM-x32 - Movies Toolbar (Dist. by Bandoo Media, Inc.) - {3d86a75b-cb6b-4764-885d-ca6336f04ba2} - C:\Program Files (x86)\Movies Toolbar\Datamngr\SRTOOL~1\IE\searchresultsDx.dll ()
Toolbar: HKCU - No Name - {EEE6C35B-6118-11DC-9C72-001320C79847} - No File
Toolbar: HKCU - No Name - {88AC3CB6-596B-4217-964C-B6757EF9602D} - No File
Toolbar: HKCU - No Name - {E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - No File
FF Plugin: @microsoft.com/GENUINE - disabled No File
CHR HomePage: hxxp://www.search.ask.com/?o=APN10645A&gct=hp& ... 81-221&t=4
CHR DefaultSearchKeyword: ask.com
CHR DefaultSearchProvider: Ask.com
CHR DefaultSearchURL: http://dts.search.ask.com/sr?src=crb&gc ... earchTerms}
CHR DefaultNewTabURL:
CHR Plugin: (Funmoods) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\Default\Extensions\bbjciahceamgodcoidkjpchnokgfpphh\2.1.3_0\resources/fm.dll No File
CHR Plugin: (MindSpark Toolbar Platform Plugin Stub) - C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin\NP4zStub.dll (MindSpark)
CHR Extension: (Movies Toolbar) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob [2014-01-13]
CHR Extension: (Torntv V6.0) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahmilhmcinpmpohfoiccaplbhgelbnim [2014-01-13]
CHR Extension: (webaSave) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\Default\Extensions\aolchjffndjplbbkgodfllmhhmjkaejh [2014-02-05]
CHR Extension: (Funmoods Chat) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\Default\Extensions\bbjciahceamgodcoidkjpchnokgfpphh [2013-06-07]
CHR Extension: (MixiDJ Toolbar) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\Default\Extensions\boipimhfjpakfgckhbljjengakjhkcbp [2013-06-07]
CHR Extension: (Funmoods) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpglkicenollcignonpgiafdgfeehoj [2013-06-07]
CHR Extension: (Complitly plugin for chrome) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\Default\Extensions\dlfienamagdnkekbbbocojppncdambda [2013-06-07]
CHR Extension: (Delta Toolbar) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde [2013-06-07]
CHR Extension: (Zula Games) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\Default\Extensions\gflandjopdloblmlcoiidmncpinmmacn [2013-10-03]
CHR Extension: (Best Flash Play) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\Default\Extensions\idknbmbdnapjicclomlijcgfpikmndhd [2014-02-09]
CHR Extension: (express-files) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\Default\Extensions\iibmmjhgclhlahmjniokmhleigemjpbh [2013-03-01]
CHR Extension: (Speed Test 127) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\Default\Extensions\jljheddigenhleadfofeccneimcmlefp [2014-01-07]
CHR Extension: (Certified Toolbar) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\Default\Extensions\kcmilhmkaganinonedmjidmceoppaajg [2013-06-07]
CHR Extension: (iVidi Chrome Toolbar) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpdhgpkkloealnjnmepfhanpcleldbef [2013-11-02]
CHR Extension: (YTBBookMark) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\Default\Extensions\ngfeanndfopjacjoljilfpkackilmecn [2014-02-09]
CHR Extension: (YTBookMarak) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\Default\Extensions\nliceebglhlmcaljchmoocpphildngpj [2014-02-05]
CHR Extension: (websaave) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjicodglmbnabgdhgfdokapnfgkbkahg [2014-02-09]
CHR Extension: (uCoz Safe authorization) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\Default\Extensions\pldhclmeakjgffefknnkjoeomfjeclmm [2014-02-05]
CHR HKLM\...\Chrome\Extension: [bbjciahceamgodcoidkjpchnokgfpphh] - C:\Users\Tereza\AppData\Local\funmoods.crx [2012-10-18]
CHR HKLM\...\Chrome\Extension: [cjpglkicenollcignonpgiafdgfeehoj] - C:\Users\Tereza\AppData\Local\funmoods-speeddial.crx [2012-10-18]
CHR HKCU\...\Chrome\Extension: [bbjciahceamgodcoidkjpchnokgfpphh] - C:\Users\Tereza\AppData\Local\funmoods.crx [2012-10-18]
CHR HKCU\...\Chrome\Extension: [cjpglkicenollcignonpgiafdgfeehoj] - C:\Users\Tereza\AppData\Local\funmoods-speeddial.crx [2012-10-18]
CHR HKCU\...\Chrome\Extension: [iibmmjhgclhlahmjniokmhleigemjpbh] - C:\Users\Tereza\AppData\Local\CRE\iibmmjhgclhlahmjniokmhleigemjpbh.crx [2013-02-21]
CHR HKCU\...\Chrome\Extension: [lelcohngbjgpiibagnfmncojacafbbpg] - C:\Users\Tereza\AppData\Roaming\Seznam.cz\bin\Partner-1.0.3.crx [2014-02-11]
CHR HKLM-x32\...\Chrome\Extension: [aaaaabcbmongicmdegkmmfgdickgnnob] - C:\Users\Tereza\AppData\Local\ilividmoviestoolbarha\GC\toolbar.crx [2013-08-20]
CHR HKLM-x32\...\Chrome\Extension: [bbjciahceamgodcoidkjpchnokgfpphh] - C:\Users\Tereza\AppData\Local\funmoods.crx [2012-10-18]
CHR HKLM-x32\...\Chrome\Extension: [boipimhfjpakfgckhbljjengakjhkcbp] - C:\Users\Tereza\AppData\Roaming\CRMixiDJTB\mixiDJ.crx [2013-02-05]
CHR HKLM-x32\...\Chrome\Extension: [cjpglkicenollcignonpgiafdgfeehoj] - C:\Users\Tereza\AppData\Local\funmoods-speeddial.crx [2012-10-18]
CHR HKLM-x32\...\Chrome\Extension: [dgjkhjdcljddbedokogakmmdjgnbeanf] - C:\Users\Tereza\AppData\Roaming\SpeedAnalysis2\SpeedAnalysis.crx [2013-06-11]
CHR HKLM-x32\...\Chrome\Extension: [dlfienamagdnkekbbbocojppncdambda] - C:\Program Files (x86)\Complitly\chrome\ComplitlyChrome.crx [2012-12-15]
CHR HKLM-x32\...\Chrome\Extension: [eooncjejnppfjjklapaamhcdmjbilmde] - C:\Users\Tereza\AppData\Roaming\BabSolution\CR\Delta.crx [2013-03-04]
CHR HKLM-x32\...\Chrome\Extension: [gflandjopdloblmlcoiidmncpinmmacn] - C:\Users\Tereza\AppData\Roaming\zulagames\zulagames.crx [2013-07-01]
CHR HKLM-x32\...\Chrome\Extension: [iibmmjhgclhlahmjniokmhleigemjpbh] - C:\Users\Tereza\AppData\Local\CRE\iibmmjhgclhlahmjniokmhleigemjpbh.crx [2013-02-21]
CHR HKLM-x32\...\Chrome\Extension: [jbpkiefagocgkmemidfngdkamloieekf] - C:\Program Files (x86)\TornTV.com\torn11.crx [2013-02-21]
CHR HKLM-x32\...\Chrome\Extension: [jcdgjdiieiljkfkdcloehkohchhpekkn] - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\Default\External Extensions\{EEE6C373-6118-11DC-9C72-001320C79847}\SweetFB.crx [2012-12-12]
CHR HKLM-x32\...\Chrome\Extension: [jljheddigenhleadfofeccneimcmlefp] - C:\Users\Tereza\AppData\Roaming\speedtest4354\speedtest4354.crx [2013-12-19]
CHR HKLM-x32\...\Chrome\Extension: [kcmilhmkaganinonedmjidmceoppaajg] - C:\Program Files (x86)\CertifiedToolbar\chrome\CertifiedToolbar.crx [2012-12-15]
CHR HKLM-x32\...\Chrome\Extension: [kpdhgpkkloealnjnmepfhanpcleldbef] - C:\Program Files (x86)\Unitech LLC\ividi\1.8.23.0\ividi.crx [2013-07-25]
CHR HKLM-x32\...\Chrome\Extension: [ogccgbmabaphcakpiclgcnmcnimhokcj] - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\Default\External Extensions\{EEE6C373-6118-11DC-9C72-001320C79847}\SweetNT.crx [2012-12-12]
S1 abgmjsyq; \??\C:\windows\system32\drivers\abgmjsyq.sys [X]
S1 jpkoqvra; \??\C:\windows\system32\drivers\jpkoqvra.sys [X]
S1 jzrotrle; \??\C:\windows\system32\drivers\jzrotrle.sys [X]
S1 MpKslcbd32cc3; \??\c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{0812CEB6-DDA1-4871-834C-04E26C15FE03}\MpKslcbd32cc3.sys [X]
S1 qgyqewzn; \??\C:\windows\system32\drivers\qgyqewzn.sys [X]
S3 STHDA; system32\DRIVERS\stwrt64.sys [X]
C:\windows\Tasks\Funmoods.job
C:\windows\System32\Tasks\GoogleUpdateTaskMachineUA
C:\windows\System32\Tasks\GoogleUpdateTaskMachineCore
C:\Program Files (x86)\TornTV.com
C:\Users\Administrator\AppData\Local\Torch
C:\Users\Tereza\AppData\Local\Temp
Task: C:\windows\Tasks\Funmoods.job => C:\Users\Tereza\AppData\Roaming\Funmoods\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
Task: C:\windows\Tasks\PC Performer_DEFAULT.job => C:\Program Files (x86)\PC Performer\PCPerformer.exe <==== ATTENTION
Task: C:\windows\Tasks\PC Performer_UPDATES.job => C:\Program Files (x86)\PC Performer\PCPerformer.exe <==== ATTENTION
Task: C:\windows\Tasks\schedule!3036567561.job => C:\ProgramData\BetterSoft\OptimizerPro\OptimizerPro.exe <==== ATTENTION
Task: C:\windows\Tasks\Torntv V6.0-chromeinstaller.job => C:\Program Files (x86)\Torntv V6.0\Torntv V6.0-chromeinstaller.exe <==== ATTENTION
End

Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte. Nejsem si ale jist, zda to pomůže, takto zaplevelený komp jsem už dlouho nevděl.

[cigter]

Dobrý den ok, udělám. No, já také ne! Je to hrůza, mu to asi bylo celkem jednom. že prý nestahoval nic, co by ho mohlo poškodit, a já se pak divím, že je pc jako šnek. Stejně si myslím, že ho budu muset zavést k nějakému specialistovi. Teď se snažím vyřešit to nejhorší :p

[cernohous13]

Jen poznámka - ke specialistovi zaveď známého - u Rudyho je PC v dobrých rukách

[Rudy]

...že prý nestahoval nic...

Hlavně nečetl instalační okna a nezrušil instalace různých "bonusů", které si lze nainstalovat s freewarovým softem a Klikal na vše, co viděl.

[cigter]

No mě to teda pobavilo. A kolik mám teď v pc prohlížečů, a všeho možnýho! Je to prostě konec. Než si všechny ty mé viry postupně odinstaluju... Já opravdu nevím, no. Tady je to asi jak se říká: Za dobrotu na žebrotu :p
V příloze posílám ten Fixlog.
Děkuji!

[Rudy]

FRST smazal, co měl. Nyní ještě spusťte toto:

Stáhněte AdwCleaner http://www.stahuj.centrum.cz/utility_a_ ... dwcleaner/
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve >Scan< a potom na >Clean< (smazat)
Proběhne skenováni a pak se objeví log, který sem vložte.

[cigter]

Děkuji! Tady posílám log. Podle všeho by to mělo být pryč.

[Rudy]

Mělo by. PC se již zrychlil?

[cigter]

Ano, a to velmi výrazně! Nevím, jak vám poděkovat. Je alespoň trochu použitelný. Teď jen prozkoumat a odinstalovat všechny programy, které jsou nepotřebné, mnou nevyužívané a mohly by zpomalovat pc.

[Rudy]

Zbytečné programy určitě odinstalujte. Doproučuji občas použít čistič CCleaner: http://forum.viry.cz/viewtopic.php?f=46&t=7478 . Můžete ho mít trvale nainstalován a tak 1x za měsíc ho použít. Zbaví vás minimálně všech zbytečností. Nemáte zač!