VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Preventivní kontrola - Capkova

https://forum.viry.cz:443/viewtopic.php?t=150881

Stránka 1 z 1

Preventivní kontrola - Capkova

Napsal: 17 pro 2016 11:02
od bt2000
Prosím o preventivní kontrolu - logy v příloze

Re: Preventivní kontrola - Capkova

Napsal: 18 pro 2016 11:22
od Rudy
Zdravím!
Spusťte tuto utilitu:
Stáhněte AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan<(hledání) a pak na >Clean< (mazání).
Proběhne skenováni a pak se objeví log, který sem vložte.

Re: Preventivní kontrola - Capkova

Napsal: 18 pro 2016 11:49
od bt2000
# AdwCleaner v6.041 - Log vytvořen 18/12/2016 v 11:40:42
# Aktualizováno dne 16/12/2016 z Malwarebytes
# Databáze : 2016-12-18.1 [Server]
# Operační systém : Windows 10 Home (X64)
# Uživatelské jméno : Sedlaček - ASUS
# Spuštěno z : C:\Users\Sedlaček\Desktop\adwcleaner_6.041.exe
# Mod: Čištění
# Podpora : https://www.malwarebytes.com/support



***** [ Služby ] *****



***** [ Složky ] *****

[-] Složka smazána: C:\Users\Sedlaček\AppData\Local\Google\Chrome\User Data\Default\Extensions\fcfenmboojpjinhpgggodefccipikbpd


***** [ Soubory ] *****

[-] Soubor smazán: C:\Users\Sedlaček\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_fcfenmboojpjinhpgggodefccipikbpd_0.localstorage


***** [ DLL ] *****



***** [ WMI ] *****



***** [ Zástupci ] *****



***** [ Naplánované úlohy ] *****



***** [ Registry ] *****

[-] Klíč smazán: HKCU\Software\Google\Chrome\Extensions\fcfenmboojpjinhpgggodefccipikbpd
[#] Klíč smazán po restartu: [x64] HKCU\Software\Google\Chrome\Extensions\fcfenmboojpjinhpgggodefccipikbpd


***** [ Prohlížeče ] *****

[-] [C:\Users\Sedlaček\AppData\Local\Google\Chrome\User Data\Default] [extension] Smazáno: fcfenmboojpjinhpgggodefccipikbpd


*************************

:: "Tracing" klíče smazány
:: Winsock nastavení vyčištěno

*************************

C:\AdwCleaner\AdwCleaner[C0].txt - [1420 Bajty] - [18/12/2016 11:40:42]
C:\AdwCleaner\AdwCleaner[S0].txt - [1775 Bajty] - [18/12/2016 11:39:48]

########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [1566 Bajty] ##########

Re: Preventivní kontrola - Capkova

Napsal: 18 pro 2016 12:54
od Rudy
Dejte nový log FRST.

Re: Preventivní kontrola - Capkova

Napsal: 18 pro 2016 13:44
od bt2000
Logy v příloze

Re: Preventivní kontrola - Capkova

Napsal: 18 pro 2016 14:51
od Rudy
Otevřte poznámkový blok a zkopírujte do něj:
Start
HKU\S-1-5-21-2578024147-1570284710-126567171-1001\...\Run: [BingSvc] => C:\Users\Sedlaček\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2015-11-15] (© 2015 Microsoft Corporation)
C:\Users\SedlaÄŤek\AppData\Local\Microsoft\BingSvc
SearchScopes: HKU\S-1-5-21-2578024147-1570284710-126567171-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2578024147-1570284710-126567171-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - No File
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - No File
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - No File
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx <not found>
C:\Users\SedlaÄŤek\AppData\Local\Temp
Task: {1A03CE5F-5631-4AF2-8605-26B4119F7566} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {3279AD53-4C02-4CB0-BA51-1F44331E71B0} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {340FF102-D980-4245-9E34-DA98B5539889} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {4AB5BDCB-6579-4F5F-AA88-341EB4DD0F1A} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {662C9B9F-9E8D-4C15-936D-03A0AA8D0617} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {6B874DBA-3B11-4E99-85E5-4079D084E862} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {80A00D43-A4DE-4365-9116-3EDCE5261D9B} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
Task: {81EA80B1-025F-4E62-85CA-ECC7B84898C1} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {CE04A22A-4A9D-465B-991F-50611BC89469} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {F9F00238-4140-4C87-A4FA-D71DF0FC76A2} - \GenericSettingsHandler\Windows-Credentials\RetrySyncTask_for_S-1-5-21-2578024147-1570284710-126567171-1005 -> No File <==== ATTENTION

EmptyTemp:
End
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Re: Preventivní kontrola - Capkova

Napsal: 18 pro 2016 15:09
od bt2000
Fix result of Farbar Recovery Scan Tool (x64) Version: 17-12-2016
Ran by Sedlaček (18-12-2016 14:59:58) Run:2
Running from C:\Users\Sedlaček\Desktop
Loaded Profiles: Sedlaček (Available Profiles: Sedlaček & Lida & Administrator)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
HKU\S-1-5-21-2578024147-1570284710-126567171-1001\...\Run: [BingSvc] => C:\Users\Sedlaček\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2015-11-15] (© 2015 Microsoft Corporation)
C:\Users\SedlaÄŤek\AppData\Local\Microsoft\BingSvc
SearchScopes: HKU\S-1-5-21-2578024147-1570284710-126567171-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2578024147-1570284710-126567171-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - No File
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - No File
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - No File
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx <not found>
C:\Users\SedlaÄŤek\AppData\Local\Temp
Task: {1A03CE5F-5631-4AF2-8605-26B4119F7566} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {3279AD53-4C02-4CB0-BA51-1F44331E71B0} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {340FF102-D980-4245-9E34-DA98B5539889} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {4AB5BDCB-6579-4F5F-AA88-341EB4DD0F1A} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {662C9B9F-9E8D-4C15-936D-03A0AA8D0617} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {6B874DBA-3B11-4E99-85E5-4079D084E862} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {80A00D43-A4DE-4365-9116-3EDCE5261D9B} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
Task: {81EA80B1-025F-4E62-85CA-ECC7B84898C1} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {CE04A22A-4A9D-465B-991F-50611BC89469} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {F9F00238-4140-4C87-A4FA-D71DF0FC76A2} - \GenericSettingsHandler\Windows-Credentials\RetrySyncTask_for_S-1-5-21-2578024147-1570284710-126567171-1005 -> No File <==== ATTENTION

EmptyTemp:
End
*****************

HKU\S-1-5-21-2578024147-1570284710-126567171-1001\Software\Microsoft\Windows\CurrentVersion\Run\\BingSvc => value not found.
"C:\Users\SedlaÄŤek\AppData\Local\Microsoft\BingSvc" => not found.
HKU\S-1-5-21-2578024147-1570284710-126567171-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value not found.
HKU\S-1-5-21-2578024147-1570284710-126567171-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => key not found.
HKCR\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => key not found.
HKCR\PROTOCOLS\Handler\dssrequest => key not found.
HKCR\CLSID\{5513F07E-936B-4E52-9B00-067394E91CC5} => key not found.
HKCR\PROTOCOLS\Handler\sacore => key not found.
HKCR\CLSID\{5513F07E-936B-4E52-9B00-067394E91CC5} => key not found.
HKCR\PROTOCOLS\Filter\application/x-mfe-ipt => key not found.
HKCR\CLSID\{3EF5086B-5478-4598-A054-786C45D75692} => key not found.
HKLM\SOFTWARE\Google\Chrome\Extensions\fheoggkfdfchfphceeifdbepaooicaho => key not found.
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\eofcbnmajmjmplflapaojjnihcjkigck => key not found.
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\fheoggkfdfchfphceeifdbepaooicaho => key not found.
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\gomekmidlodglbbmalcneegieacbdmki => key not found.
"C:\Users\SedlaÄŤek\AppData\Local\Temp" => not found.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{1A03CE5F-5631-4AF2-8605-26B4119F7566}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1A03CE5F-5631-4AF2-8605-26B4119F7566}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3279AD53-4C02-4CB0-BA51-1F44331E71B0}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3279AD53-4C02-4CB0-BA51-1F44331E71B0}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{340FF102-D980-4245-9E34-DA98B5539889}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{340FF102-D980-4245-9E34-DA98B5539889}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfig" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{4AB5BDCB-6579-4F5F-AA88-341EB4DD0F1A}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4AB5BDCB-6579-4F5F-AA88-341EB4DD0F1A}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{662C9B9F-9E8D-4C15-936D-03A0AA8D0617}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{662C9B9F-9E8D-4C15-936D-03A0AA8D0617}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{6B874DBA-3B11-4E99-85E5-4079D084E862}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6B874DBA-3B11-4E99-85E5-4079D084E862}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\launchtrayprocess" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{80A00D43-A4DE-4365-9116-3EDCE5261D9B}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{80A00D43-A4DE-4365-9116-3EDCE5261D9B}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{81EA80B1-025F-4E62-85CA-ECC7B84898C1}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{81EA80B1-025F-4E62-85CA-ECC7B84898C1}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxcontent" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{CE04A22A-4A9D-465B-991F-50611BC89469}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CE04A22A-4A9D-465B-991F-50611BC89469}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Logon-5d" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F9F00238-4140-4C87-A4FA-D71DF0FC76A2}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F9F00238-4140-4C87-A4FA-D71DF0FC76A2}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GenericSettingsHandler\Windows-Credentials\RetrySyncTask_for_S-1-5-21-2578024147-1570284710-126567171-1005" => key removed successfully

=========== EmptyTemp: ==========

BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 20220366 B
Java, Flash, Steam htmlcache => 728 B
Windows/system/drivers => 138184 B
Edge => 1395 B
Chrome => 360448 B
Firefox => 0 B
Opera => 19620573 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 4948 B
NetworkService => 6008 B
Sedlaček => 5178644 B
Lida => 27477989 B
Administrator => 13952 B

RecycleBin => 0 B
EmptyTemp: => 69.6 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 15:00:19 ====

Re: Preventivní kontrola - Capkova

Napsal: 18 pro 2016 16:12
od Rudy
Smazáno. Log by již měl být OK.

Re: Preventivní kontrola - Capkova

Napsal: 18 pro 2016 16:44
od bt2000
Děkuji za rady

Re: Preventivní kontrola - Capkova

Napsal: 18 pro 2016 17:55
od Rudy
Rádo se stalo! :)
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz