VIRY.CZ

Děkuji

Zdravím!
Dal jste 2x log Addition. Potřeboval bych ještě vidět log FRST (na ploše v souboru frst.txt). Děkuji.

OK. Spusťte tuto utilitu:

Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi

Nenabídlo to čištění ale karanténu. Po restartu LOG


# -------------------------------
# Malwarebytes AdwCleaner 8.0.7.0
# -------------------------------
# Build: 07-22-2020
# Database: 2020-07-20.1 (Local)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 10-06-2020
# Duration: 00:00:01
# OS: Windows 10 Home
# Cleaned: 7
# Failed: 0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

No malicious folders cleaned.

***** [ Files ] *****

Deleted C:\Windows\System32\drivers\swdumon.sys

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

Deleted HKLM\Software\Wow6432Node\SlimWare Utilities Inc

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

Deleted webssearches
Deleted webssearches
Deleted webssearches
Deleted webssearches
Deleted yessearches

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Hosts File Entries ] *****

No malicious hosts file entries cleaned.

***** [ Preinstalled Software ] *****

No Preinstalled Software cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [6948 octets] - [05/10/2020 18:19:42]
AdwCleaner[C00].txt - [6991 octets] - [05/10/2020 18:20:59]
AdwCleaner[S01].txt - [1812 octets] - [06/10/2020 18:35:39]
AdwCleaner[C01].txt - [1870 octets] - [06/10/2020 18:37:26]
AdwCleaner[S02].txt - [1844 octets] - [06/10/2020 18:44:22]
AdwCleaner[C02].txt - [1942 octets] - [06/10/2020 18:44:32]
AdwCleaner[S03].txt - [2056 octets] - [06/10/2020 19:02:35]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C03].txt ##########

Rovnou dávám nový FRST a Addition

Otevřte poznámkový blok a zkopírujte do něj:

Start

CloseProcesses:
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {462ADF1F-39E7-4EB3-9486-A0D32ACFDAA9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-07-23] (Google LLC -> Google LLC)
Task: {F86FD006-05A0-4380-AD6B-4631E15AFF08} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-07-23] (Google LLC -> Google LLC)
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
FirewallRules: [{7348F1C9-92B6-4D89-A6AF-F4006E26B110}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe => No File
FirewallRules: [{B551E73C-677D-4B69-96C3-09BEBEF1D509}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{BBAE7613-1C1D-4E9F-BFA6-DB8930A0DE0B}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{A71B18C1-6587-49FD-90AE-3BE76711B875}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{9DF7AECE-43F1-4DDD-8B5B-A71A83E34EF2}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
C:\Program Files (x86)\Bonjour

EmptyTemp:
End

Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

ix result of Farbar Recovery Scan Tool (x64) Version: 04-10-2020
Ran by Richard (06-10-2020 20:06:56) Run:1
Running from C:\Users\Acer\Desktop
Loaded Profiles: Richard & 42060
Boot Mode: Normal
==============================================

fixlist content:
*****************
CloseProcesses:
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {462ADF1F-39E7-4EB3-9486-A0D32ACFDAA9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-07-23] (Google LLC -> Google LLC)
Task: {F86FD006-05A0-4380-AD6B-4631E15AFF08} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-07-23] (Google LLC -> Google LLC)
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
FirewallRules: [{7348F1C9-92B6-4D89-A6AF-F4006E26B110}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe => No File
FirewallRules: [{B551E73C-677D-4B69-96C3-09BEBEF1D509}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{BBAE7613-1C1D-4E9F-BFA6-DB8930A0DE0B}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{A71B18C1-6587-49FD-90AE-3BE76711B875}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{9DF7AECE-43F1-4DDD-8B5B-A71A83E34EF2}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
C:\Program Files (x86)\Bonjour

EmptyTemp:
End
*****************

Processes closed successfully.
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{462ADF1F-39E7-4EB3-9486-A0D32ACFDAA9}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{462ADF1F-39E7-4EB3-9486-A0D32ACFDAA9}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{F86FD006-05A0-4380-AD6B-4631E15AFF08}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F86FD006-05A0-4380-AD6B-4631E15AFF08}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA" => not found
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore" => not found
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{7348F1C9-92B6-4D89-A6AF-F4006E26B110}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B551E73C-677D-4B69-96C3-09BEBEF1D509}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{BBAE7613-1C1D-4E9F-BFA6-DB8930A0DE0B}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{A71B18C1-6587-49FD-90AE-3BE76711B875}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{9DF7AECE-43F1-4DDD-8B5B-A71A83E34EF2}" => removed successfully
C:\Program Files (x86)\Bonjour => moved successfully

=========== EmptyTemp: ==========

BITS transfer queue => 7888896 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 71103169 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 7935318 B
Edge => 0 B
Chrome => 31980071 B
Firefox => 0 B
Opera => 5507054 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 41008 B
NetworkService => 41008 B
Acer => 242958334 B
42060 => 242994089 B

RecycleBin => 6963 B
EmptyTemp: => 582.2 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 20:07:12 ====

Smazáno. Nastala nějaká změna?

Zdá se že rychlost se zlepšila. Ale stále je při načítání stránek Rozpoznávání hostitele...a trvá to. Vyzkoušel jsem už dost návodů a nic...

OK. Zkuste obnovu systému k datu, kdy korektně fungoval.

Hmmm. díky, ale bod obnovení je 13.10. jiný tam není...

Tohlá má něco společného s nastavením připojení, hlavně DNS serveru. Zkontrolujte, zda ho máte správně nastavené podle smlouvy o připojení k internetu. Sice nejsem síťař, ale nic jiného se s tím asi dělat nedá.

To už proběhlo....začne to po restartu znova...a DNS zustané správně. Přesto moc děkuji za čas a energii!:)))))