Podzimní preventivní prohlídka Vyřešeno

[behavioralista]

FRST Log:
Fix result of Farbar Recovery Scan Tool (x64) Version:04-11-2015
Ran by CZC Počítač (2015-11-05 19:35:41) Run:1
Running from C:\Users\CZC Počítač\Desktop
Loaded Profiles: CZC Počítač (Available Profiles: CZC Počítač)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CloseProcesses:
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-207758930-3829721579-1519529356-1001\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-207758930-3829721579-1519529356-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
Toolbar: HKLM - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - No File
FF Plugin-x32: @omaha.maxiget.com/Maxiget Updater;version=3 -> C:\Program Files (x86)\Maxiget\Updater\70.3.27.7017\npMaxigetUpdater3.dll [No File]
FF Plugin-x32: @omaha.maxiget.com/Maxiget Updater;version=9 -> C:\Program Files (x86)\Maxiget\Updater\70.3.27.7017\npMaxigetUpdater3.dll [No File]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [No File]
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [No File]
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
Task: {0C6A0C39-51C3-4E8A-BCE3-DA867FC5799C} - \SMupdate1 -> No File <==== ATTENTION
Task: {380D5126-3E10-4963-826D-CF8D55A3E162} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: {48869E9C-C457-4260-8AED-717F374CC30F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: {5868B80D-D3DA-46DF-88E7-1D9EE44A35CB} - \ShopperProJSUpd -> No File <==== ATTENTION
Task: {7D71BCBD-38DF-45DD-BE57-B9FCEF262E98} - \ShopperPro -> No File <==== ATTENTION
Task: {9DCD7A7F-E365-4AFA-B723-D77B2A2A1C56} - System32\Tasks\{DCA8A217-87D8-49F5-91DC-D09397EB39D2} => pcalua.exe -a "C:\Users\CZC Počítač\AppData\Roaming\mystartsearch\UninstallManager.exe" -c -ptid=cvs
Task: {C0A2FBED-22D8-4D0A-8659-CC4DE3DA0EB5} - \SPDriver -> No File <==== ATTENTION

EmptyTemp:
End
*****************

Processes closed successfully.
"HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer" => key removed successfully
"HKU\S-1-5-21-207758930-3829721579-1519529356-1001\SOFTWARE\Policies\Microsoft\Internet Explorer" => key removed successfully
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully
"HKU\S-1-5-21-207758930-3829721579-1519529356-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66}" => key removed successfully
HKCR\CLSID\{012E1000-F331-11DB-8314-0800200C9A66} => key not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} => value removed successfully
HKCR\CLSID\{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} => key not found.
"HKLM\Software\Wow6432Node\MozillaPlugins\@omaha.maxiget.com/Maxiget Updater;version=3" => key removed successfully
"HKLM\Software\Wow6432Node\MozillaPlugins\@omaha.maxiget.com/Maxiget Updater;version=9" => key removed successfully
"HKLM\Software\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3" => key removed successfully
"HKLM\Software\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9" => key removed successfully
catchme => service not found.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{0C6A0C39-51C3-4E8A-BCE3-DA867FC5799C}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0C6A0C39-51C3-4E8A-BCE3-DA867FC5799C}" => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\SMupdate1 => key not found.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{380D5126-3E10-4963-826D-CF8D55A3E162}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{380D5126-3E10-4963-826D-CF8D55A3E162}" => key removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{48869E9C-C457-4260-8AED-717F374CC30F}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{48869E9C-C457-4260-8AED-717F374CC30F}" => key removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{5868B80D-D3DA-46DF-88E7-1D9EE44A35CB}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5868B80D-D3DA-46DF-88E7-1D9EE44A35CB}" => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ShopperProJSUpd => key not found.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{7D71BCBD-38DF-45DD-BE57-B9FCEF262E98}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7D71BCBD-38DF-45DD-BE57-B9FCEF262E98}" => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ShopperPro => key not found.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{9DCD7A7F-E365-4AFA-B723-D77B2A2A1C56}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9DCD7A7F-E365-4AFA-B723-D77B2A2A1C56}" => key removed successfully
C:\Windows\System32\Tasks\{DCA8A217-87D8-49F5-91DC-D09397EB39D2} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{DCA8A217-87D8-49F5-91DC-D09397EB39D2}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{C0A2FBED-22D8-4D0A-8659-CC4DE3DA0EB5}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C0A2FBED-22D8-4D0A-8659-CC4DE3DA0EB5}" => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\SPDriver => key not found.
EmptyTemp: => 161.7 MB temporary data Removed.


The system needed a reboot.

==== End of Fixlog 19:35:45 ====

[Reklama]

[Orcus]

Nějaké problémy?

[behavioralista]

Je to asi v pořádku.Nicméně dotaz:Ten RogueKiller můžu používat i já sám jen tak nebo pouze zde dle rádce?

[jaro3]

Moc se neplete , ale raději s rádcem.

Stáhni si zde DelFix
https://toolslib.net/downloads/viewdownload/2-delfix/

ulož si soubor na plochu.
Poklepáním na ikonu spusť nástroj Delfix.exe
( Ve Windows Vista, Windows 7 a 8, musíš spustit soubor pravým tlačítkem myši -> Spustit jako správce .
V hlavním menu, zkontroluj tyto možnosti - Odstranění dezinfekce nástrojů (Remove desinfection tools) – Vyčistit body obnovy (Purge System Restore)
Poté klikněte na tlačítko Spustit (Run) a nech nástroj dělat svoji práci

Poté se zpráva se otevře (DelFix.txt). Vlož celý obsah zprávy sem.Jinak je zpráva zde:
v C: \ DelFix.txt

Pokud nejsou problémy , je to vše a můžeš dát vyřešeno , zelenou fajfku.

[behavioralista]

# DelFix v1.011 - Logfile created 06/11/2015 at 19:01:04
# Updated 18/08/2015 by Xplode
# Username : CZC Počítač - CZCPOČÍTAČ-PC
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)

~ Removing disinfection tools ...

Deleted : C:\FRST
Deleted : C:\Users\CZC Počítač\Desktop\adwcleaner_5.017.exe
Deleted : C:\Users\CZC Počítač\Desktop\aswmbr.exe
Deleted : C:\Users\CZC Počítač\Desktop\FRST64.exe
Deleted : C:\Users\CZC Počítač\Desktop\JRT.exe
Deleted : C:\Users\CZC Počítač\Desktop\RogueKillerX64.exe
Deleted : C:\Users\CZC Počítač\Desktop\TFC.exe
Deleted : C:\Users\CZC Počítač\Desktop\zoek.exe
Deleted : HKLM\SOFTWARE\Swearware
Deleted : HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ASWMBR

~ Cleaning system restore ...

Deleted : RP #457 [Naplánovaný kontrolní bod | 11/05/2015 16:43:48]

New restore point created !

########## - EOF - ##########

[behavioralista]

Děkuji za asistenci.