OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\Jirka\Plocha
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
1,50 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 66,77% Memory free
3,35 Gb Paging File | 2,87 Gb Available in Paging File | 85,74% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 44,38 Gb Total Space | 4,95 Gb Free Space | 11,14% Space Free | Partition Type: NTFS
Drive D: | 44,87 Gb Total Space | 17,17 Gb Free Space | 38,26% Space Free | Partition Type: NTFS
Computer Name: JIRKA-85CEBE16B | User Name: Jirka | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.url [@ = InternetShortcut] -- rundll32.exe ieframe.dll,OpenURL %l
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
InternetShortcut [open] -- rundll32.exe ieframe.dll,OpenURL %l
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [Winamp.Bookmark] -- "C:\Program Files\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)
Directory [Winamp.Enqueue] -- "C:\Program Files\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)
Directory [Winamp.Play] -- "C:\Program Files\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
========== System Restore Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 4
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 0
"DoNotAllowExceptions" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"8508:TCP" = 8508:TCP:*:Enabled:BitComet 8508 TCP
"8508:UDP" = 8508:UDP:*:Enabled:BitComet 8508 UDP
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
"C:\Program Files\Veetle\Player\VeetleNet.exe" = C:\Program Files\Veetle\Player\VeetleNet.exe:*:Enabled:VeetleNet -- ()
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
"C:\Program Files\Winamp\winamp.exe" = C:\Program Files\Winamp\winamp.exe:*:Enabled:Winamp -- (Nullsoft, Inc.)
"C:\Program Files\Vuze\Azureus.exe" = C:\Program Files\Vuze\Azureus.exe:*:Enabled:Azureus / Vuze -- (Vuze Inc.)
"C:\Program Files\Common Files\Ahead\Nero Web\SetupX.exe" = C:\Program Files\Common Files\Ahead\Nero Web\SetupX.exe:*:Enabled:Nero ProductSetup -- (Nero AG)
"C:\Program Files\Veetle\Player\VeetleNet.exe" = C:\Program Files\Veetle\Player\VeetleNet.exe:*:Enabled:VeetleNet -- ()
"C:\Program Files\Skype\Phone\Skype.exe" = C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype -- (Skype Technologies S.A.)
"C:\Program Files\AVG\AVG2013\avgnsx.exe" = C:\Program Files\AVG\AVG2013\avgnsx.exe:*:Enabled:Webový štít -- (AVG Technologies CZ, s.r.o.)
"C:\Program Files\AVG\AVG2013\avgdiagex.exe" = C:\Program Files\AVG\AVG2013\avgdiagex.exe:*:Enabled:AVG Diagnostika 2013 -- (AVG Technologies CZ, s.r.o.)
"C:\Program Files\AVG\AVG2013\avgmfapx.exe" = C:\Program Files\AVG\AVG2013\avgmfapx.exe:*:Enabled:Instalátor AVG -- (AVG Technologies CZ, s.r.o.)
"C:\Program Files\AVG\AVG2013\avgemcx.exe" = C:\Program Files\AVG\AVG2013\avgemcx.exe:*:Enabled:Obecná kontrola pošty -- (AVG Technologies CZ, s.r.o.)
"C:\Program Files\PANDORA.TV\PanService\PanProcess.exe" = C:\Program Files\PANDORA.TV\PanService\PanProcess.exe:*:Enabled:PanProcess -- (PandoraTV)
"C:\Program Files\PANDORA.TV\PanService\PandoraService.exe" = C:\Program Files\PANDORA.TV\PanService\PandoraService.exe:*:Enabled:PandoraService -- (Pandora.TV)
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{15B70821-7893-4607-805A-BB80F3EA8279}" = Acer Empowering Technology framework
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{26A24AE4-039D-4CA4-87B4-2F83217000FF}" = Java(TM) 7
"{350C9405-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{3F4EC965-28EF-45C3-B063-04B25D4E9679}" = WIDCOMM Bluetooth Software
"{40261D0A-A385-4C1A-A7DE-5F270D9B1029}" = Nero 7 Ultra Edition
"{446472DE-79C0-4708-B06E-0F8FAFDA6918}" = AVG 2013
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}" = PowerDVD
"{86D4B82A-ABED-442A-BE86-96357B70F4FE}" = Ask Toolbar
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{90280405-6000-11D3-8CFE-0050048383C9}" = Microsoft Office XP Professional s aplikací FrontPage
"{A0F925BF-5C55-44C2-A4E7-5A4C59791C29}" = mDriver
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-7AD7-1029-7B44-AA1000000001}" = Adobe Reader X (10.1.4) - Czech
"{DE5EB975-946C-4ADF-ABCC-3609BCEBF978}" = AVG 2013
"{EE7257A2-39A2-4D2F-9DAC-F9F25B8AE1D8}" = Skype™ 5.10
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{FF6F491D-BC82-4DCC-A72F-1824957C6466}" = TIxx21
"4F6D5E84-5826-4394-9F40-3A9A19165651_is1" = Pandora Service
"8461-7759-5462-8226" = Vuze
"AcerOrbiCamDrv" = ##CAMERADRIVERNAME##
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"All ATI Software" = Softarová utilita ATI - Odinstalovat
"ATI Display Driver" = ATI Display Driver
"AVG" = AVG 2013
"AVG Secure Search" = AVG Security Toolbar
"CCleaner" = CCleaner
"CNXT_MODEM_HDAUDIO_AcrS1025" = HDAUDIO Soft Data Fax Modem with SmartCP
"DefaultTab" = DefaultTab
"Google Chrome" = Google Chrome
"ie8" = Windows Internet Explorer 8
"InstallShield_{15B70821-7893-4607-805A-BB80F3EA8279}" = Acer Empowering Technology framework
"InstallShield_{FF6F491D-BC82-4DCC-A72F-1824957C6466}" = Texas Instruments PCIxx21/x515 drivers.
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware verze 1.65.1.1000
"Mozilla Firefox 16.0.2 (x86 cs)" = Mozilla Firefox 16.0.2 (x86 cs)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"Pokřivený svět: Město stínů" = Pokřivený svět: Město stínů
"ProInst" = Software Intel(R) PROSet/Wireless
"SpeedFan" = SpeedFan (remove only)
"The KMPlayer" = The KMPlayer (remove only)
"Veetle TV" = Veetle TV
"Winamp" = Winamp
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0
========== HKEY_CURRENT_USER Uninstall List ==========
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Winamp Detect" = Winamp Detector Plug-in
========== Last 20 Event Log Errors ==========
[ Application Events ]
Error - 19.11.2012 17:27:54 | Computer Name = JIRKA-85CEBE16B | Source = PandoraService.exe | ID = 0
Description =
Error - 19.11.2012 17:35:27 | Computer Name = JIRKA-85CEBE16B | Source = PandoraService.exe | ID = 0
Description =
Error - 19.11.2012 17:56:18 | Computer Name = JIRKA-85CEBE16B | Source = PandoraService.exe | ID = 0
Description =
Error - 19.11.2012 18:00:17 | Computer Name = JIRKA-85CEBE16B | Source = PandoraService.exe | ID = 0
Description =
Error - 19.11.2012 18:11:43 | Computer Name = JIRKA-85CEBE16B | Source = PandoraService.exe | ID = 0
Description =
Error - 20.11.2012 20:41:47 | Computer Name = JIRKA-85CEBE16B | Source = PandoraService.exe | ID = 0
Description =
Error - 21.11.2012 6:40:31 | Computer Name = JIRKA-85CEBE16B | Source = PandoraService.exe | ID = 0
Description =
Error - 21.11.2012 13:14:21 | Computer Name = JIRKA-85CEBE16B | Source = PandoraService.exe | ID = 0
Description =
Error - 22.11.2012 2:37:12 | Computer Name = JIRKA-85CEBE16B | Source = PandoraService.exe | ID = 0
Description =
Error - 22.11.2012 6:44:33 | Computer Name = JIRKA-85CEBE16B | Source = PandoraService.exe | ID = 0
Description =
[ System Events ]
Error - 21.11.2012 13:14:35 | Computer Name = JIRKA-85CEBE16B | Source = Service Control Manager | ID = 7006
Description = Volání ScRegSetValueExW skončilo neúspěšné pro FailureActions s touto
chybou: %%5
Error - 22.11.2012 2:37:40 | Computer Name = JIRKA-85CEBE16B | Source = Service Control Manager | ID = 7006
Description = Volání ScRegSetValueExW skončilo neúspěšné pro FailureActions s touto
chybou: %%5
Error - 22.11.2012 2:37:40 | Computer Name = JIRKA-85CEBE16B | Source = Service Control Manager | ID = 7006
Description = Volání ScRegSetValueExW skončilo neúspěšné pro FailureActions s touto
chybou: %%5
Error - 22.11.2012 4:01:13 | Computer Name = JIRKA-85CEBE16B | Source = Service Control Manager | ID = 7006
Description = Volání ScRegSetValueExW skončilo neúspěšné pro FailureActions s touto
chybou: %%5
Error - 22.11.2012 4:01:13 | Computer Name = JIRKA-85CEBE16B | Source = Service Control Manager | ID = 7006
Description = Volání ScRegSetValueExW skončilo neúspěšné pro FailureActions s touto
chybou: %%5
Error - 22.11.2012 6:09:37 | Computer Name = JIRKA-85CEBE16B | Source = Service Control Manager | ID = 7006
Description = Volání ScRegSetValueExW skončilo neúspěšné pro FailureActions s touto
chybou: %%5
Error - 22.11.2012 6:09:37 | Computer Name = JIRKA-85CEBE16B | Source = Service Control Manager | ID = 7006
Description = Volání ScRegSetValueExW skončilo neúspěšné pro FailureActions s touto
chybou: %%5
Error - 22.11.2012 6:27:00 | Computer Name = JIRKA-85CEBE16B | Source = Service Control Manager | ID = 7034
Description = Služba AVGIDSAgent byla neočekávaně ukončena. Tento stav nastal již
1krát.
Error - 22.11.2012 6:45:15 | Computer Name = JIRKA-85CEBE16B | Source = Service Control Manager | ID = 7006
Description = Volání ScRegSetValueExW skončilo neúspěšné pro FailureActions s touto
chybou: %%5
Error - 22.11.2012 6:45:15 | Computer Name = JIRKA-85CEBE16B | Source = Service Control Manager | ID = 7006
Description = Volání ScRegSetValueExW skončilo neúspěšné pro FailureActions s touto
chybou: %%5
< End of report >
Nejde obnovení systému Vyřešeno
-
jaro3
- člen Security týmu
-
Guru Level 15
- Příspěvky: 43298
- Registrován: červen 07
- Bydliště: Jižní Čechy
- Pohlaví:
- Stav:
Offline
Re: Nejde obnovení systému
Poklepej na ikonu OTL na ploše.Ujisti se , že máš všechny ostatní aplikace a prohlížeče zavřeny.
Pod Vlastní skenování/opravy do okénka vlož následující text, zobrazený zeleně:
Poté klikni nahoře na Opravit. Nech program nerušeně běžet, na konci se provede restart PC.
Po restartu se objeví log , prosím zkopíruj sem celý jeho obsah.
Drive C: | 44,38 Gb Total Space | 4,95 Gb Free Space | 11,14% Space Free | Partition Type: NTFS
Máš málo místa na disku!! Měl bys mít alespoň 15% volného místa , není kam ukládat body obnovy , i když si měl obnovení systému vypnutej.
Něco odinstaluj , něco smaž!
Pod Vlastní skenování/opravy do okénka vlož následující text, zobrazený zeleně:
Kód: Vybrat vše
:OTL
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
SRV - (HidServ) -- %SystemRoot%\System32\hidserv.dll File not found
SRV - (AppMgmt) -- %SystemRoot%\System32\appmgmts.dll File not found
DRV - (WDICA) -- File not found
DRV - (s24trans) -- system32\DRIVERS\s24trans.sys File not found
DRV - (PDRFRAME) -- File not found
DRV - (PDRELI) -- File not found
DRV - (PDFRAME) -- File not found
DRV - (PDCOMP) -- File not found
DRV - (PCIDump) -- File not found
DRV - (lbrtfdc) -- File not found
DRV - (i2omgmt) -- File not found
DRV - (Changer) -- File not found
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}
IE - HKCU\..\SearchScopes,DefaultScope = {0DA4D042-27C1-474D-8FFC-BED934B9EBFA}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
IE - HKCU\..\SearchScopes\{0DA4D042-27C1-474D-8FFC-BED934B9EBFA}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7GGHP_csCZ475
IE - HKCU\..\SearchScopes\{33874215-4469-43b4-a53f-bec24c7884ee}: "URL" = http://search.seznam.cz/?q={searchTerms}&sourceid=IE_5
IE - HKCU\..\SearchScopes\{45662fe4-70e0-449b-ab0f-205497e7cb74}: "URL" = http://www.mapy.cz/?query={searchTerms}&sourceid=IE_5
IE - HKCU\..\SearchScopes\{4B84182C-BAE4-4B9D-A62D-A1661D0C262F}: "URL" = http://websearch.ask.com/redirect?clien ... src=crm&q={searchTerms}&locale=en_NL&apn_ptnrs=^RY&apn_dtid=^YYYYYY^V2^NL&apn_uid=6285494d-2882-4f59-b703-2dbdab7ca7e0&apn_sauid=D374BCEB-D645-4F8C-ADAA-35C7C6A0F280
IE - HKCU\..\SearchScopes\{775793df-8901-4566-b578-9f0c19c2af7c}: "URL" = http://www.zbozi.cz/?q={searchTerms}&r=campmoz&sourceid=IE_5
IE - HKCU\..\SearchScopes\{8b4d634f-3de9-4a67-bf5a-7e8f9120ffaa}: "URL" = http://www.firmy.cz/phr/{searchTerms}?sourceid=IE_5
IE - HKCU\..\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}: "URL" = http://isearch.avg.com/search?cid={93DA1225-32D3-4178-9594-155D845CB2A2}&mid=0cdf79bd580e47d18b96d15a44e0fc7c-0463141f8c5d71847f559762ff48303a81052c9b&lang=cs&ds=AVG&pr=pr&d=2012-11-17 22:57:29&v=13.2.0.4&sap=dsp&q={searchTerms}
IE - HKCU\..\SearchScopes\{AB77CB6B-D4D6-454F-891C-8A9442B4135C}: "URL" = http://www.mysearchresults.com/search?&c=3507&t=07&q={searchTerms}
IE - HKCU\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2504091
IE - HKCU\..\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}: "URL" = http://search.gboxapp.com/?q={searchTerms}
FF - prefs.js..browser.search.order.1: "GadgetBox"
FF - prefs.js..browser.search.order.1,S: S", "GadgetBox"
FF - prefs.js..browser.search.selectedEngine,S: S", "GadgetBox"
FF - prefs.js..extensions.enabledAddons: {972ce4c6-7e08-4474-a285-3208198ce6fd}:16.0.2
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll File not found
[2012.03.04 13:25:45 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Jirka\Data aplikací\Mozilla\Extensions
[2012.03.18 09:25:37 | 000,000,000 | ---D | M] (Vuze Remote Community Toolbar) -- C:\Documents and Settings\Jirka\Data aplikací\Mozilla\Firefox\Profiles\lf53qnty.default\extensions\{ba14329e-9550-4989-b3f2-9732e92d17cc}
[2012.03.26 16:49:49 | 000,000,000 | ---D | M] (TheBflix) -- C:\Documents and Settings\Jirka\Data aplikací\Mozilla\Firefox\Profiles\lf53qnty.default\extensions\info@bflix.info
[2012.11.17 22:46:28 | 000,000,000 | ---D | M] (KMPlayer Toolbar) -- C:\Documents and Settings\Jirka\Data aplikací\Mozilla\Firefox\Profiles\lf53qnty.default\extensions\toolbar@ask.com
[2012.11.15 12:26:31 | 000,022,389 | ---- | M] () (No name found) -- C:\Documents and Settings\Jirka\Data aplikací\Mozilla\Firefox\Profiles\lf53qnty.default\extensions\addon@defaulttab.com.xpi
[2012.11.17 17:05:57 | 000,189,128 | ---- | M] () (No name found) -- C:\Documents and Settings\Jirka\Data aplikací\Mozilla\Firefox\Profiles\lf53qnty.default\extensions\{EEE6C361-6118-11DC-9C72-001320C79847}.xpi
[2012.11.15 12:16:22 | 000,002,335 | ---- | M] () -- C:\Documents and Settings\Jirka\Data aplikací\Mozilla\Firefox\Profiles\lf53qnty.default\searchplugins\askcom.xml
[2012.09.26 20:01:24 | 000,000,487 | ---- | M] () -- C:\Documents and Settings\Jirka\Data aplikací\Mozilla\Firefox\Profiles\lf53qnty.default\searchplugins\GadgetBox.xml
[2012.04.02 18:43:24 | 000,003,915 | ---- | M] () -- C:\Documents and Settings\Jirka\Data aplikací\Mozilla\Firefox\Profiles\lf53qnty.default\searchplugins\sweetim.xml
[2012.11.17 22:08:21 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\JIRKA\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\LF53QNTY.DEFAULT\EXTENSIONS\ADDON@DEFAULTTAB.COM.XPI
CHR - homepage: http://www.mysearchresults.com/?c=3507&t=07
CHR - homepage: http://www.mysearchresults.com/?c=3507&t=07
CHR - Extension: SweetIM for Facebook = C:\Documents and Settings\Jirka\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn\1.0.0.0_0\
CHR - Extension: KMPlayer Toolbar = C:\Documents and Settings\Jirka\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\aaaaoggiphohkihibdkcnhnokmkfmhnj\7.17.0.0_0\
CHR - Extension: SweetIM for Facebook = C:\Documents and Settings\Jirka\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn\1.0.0.0_0\Copy of
CHR - Extension: SweetIM for Facebook = C:\Documents and Settings\Jirka\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn\1.0.0.0_0\
O1 HOSTS File: ([2012.11.21 18:14:54 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O18 - Protocol\Handler\ipp - No CLSID value found
O18 - Protocol\Handler\linkscanner - No CLSID value found
O18 - Protocol\Handler\msdaipp - No CLSID value found
[2012.11.18 23:38:21 | 000,311,938 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2012.11.18 23:38:21 | 000,310,228 | ---- | M] () -- C:\WINDOWS\System32\perfh005.dat
[2012.11.18 23:38:21 | 000,046,394 | ---- | M] () -- C:\WINDOWS\System32\perfc005.dat
[2012.11.18 23:38:21 | 000,040,326 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
:Files
C:\WINDOWS\System32\*.tmp
C:\WINDOWS\*.tmp
C:\WINDOWS\system32\*.tmp.dll
C:\WINDOWS\System32\dllcache\*.tmp
C:\WINDOWS\system32\SET*.tmp
C:\WINDOWS\system32\DUMP*.tmp
c:\windows\Tasks\*.job
C:\*.tmp
C:\WINDOWS\System32\drivers\*.tmp
C:\Documents and Settings\All Users\Data aplikací\*.tmp
C:\Documents and Settings\Jirka\Local Settings\Data aplikací\AskToolbar
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
C:\Documents and Settings\Jirka\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
C:\WINDOWS\_delis32.ini
:Reg
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
""=""%1" %*"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" =-
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" =-
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{86D4B82A-ABED-442A-BE86-96357B70F4FE}" =-
:Commands
[purity]
[emptytemp]
[start explorer]
[Reboot]
Poté klikni nahoře na Opravit. Nech program nerušeně běžet, na konci se provede restart PC.
Po restartu se objeví log , prosím zkopíruj sem celý jeho obsah.
Drive C: | 44,38 Gb Total Space | 4,95 Gb Free Space | 11,14% Space Free | Partition Type: NTFS
Máš málo místa na disku!! Měl bys mít alespoň 15% volného místa , není kam ukládat body obnovy , i když si měl obnovení systému vypnutej.
Něco odinstaluj , něco smaž!
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Re: Nejde obnovení systému
nechal jsem OTL nerušeně běžet,ale během dvou hodin se to ani nehlo ,tak jsem musel pc vypnout na tvrdo
-
jaro3
- člen Security týmu
-
Guru Level 15
- Příspěvky: 43298
- Registrován: červen 07
- Bydliště: Jižní Čechy
- Pohlaví:
- Stav:
Offline
Re: Nejde obnovení systému
Zkus ho v nouz. režimu..
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Re: Nejde obnovení systému
Error: Unable to interpret <PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)> in the current context!
Error: Unable to interpret <PRC - C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)> in the current context!
Error: Unable to interpret <SRV - (HidServ) -- %SystemRoot%\System32\hidserv.dll File not found> in the current context!
Error: Unable to interpret <SRV - (AppMgmt) -- %SystemRoot%\System32\appmgmts.dll File not found> in the current context!
Error: Unable to interpret <DRV - (WDICA) -- File not found> in the current context!
Error: Unable to interpret <DRV - (s24trans) -- system32\DRIVERS\s24trans.sys File not found> in the current context!
Error: Unable to interpret <DRV - (PDRFRAME) -- File not found> in the current context!
Error: Unable to interpret <DRV - (PDRELI) -- File not found> in the current context!
Error: Unable to interpret <DRV - (PDFRAME) -- File not found> in the current context!
Error: Unable to interpret <DRV - (PDCOMP) -- File not found> in the current context!
Error: Unable to interpret <DRV - (PCIDump) -- File not found> in the current context!
Error: Unable to interpret <DRV - (lbrtfdc) -- File not found> in the current context!
Error: Unable to interpret <DRV - (i2omgmt) -- File not found> in the current context!
Error: Unable to interpret <DRV - (Changer) -- File not found> in the current context!
Error: Unable to interpret <IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}> in the current context!
Error: Unable to interpret <IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}> in the current context!
Error: Unable to interpret <IE - HKCU\..\SearchScopes,DefaultScope = {0DA4D042-27C1-474D-8FFC-BED934B9EBFA}> in the current context!
Error: Unable to interpret <IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC> in the current context!
Error: Unable to interpret <IE - HKCU\..\SearchScopes\{0DA4D042-27C1-474D-8FFC-BED934B9EBFA}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7GGHP_csCZ475> in the current context!
Error: Unable to interpret <IE - HKCU\..\SearchScopes\{33874215-4469-43b4-a53f-bec24c7884ee}: "URL" = http://search.seznam.cz/?q={searchTerms}&sourceid=IE_5> in the current context!
Error: Unable to interpret <IE - HKCU\..\SearchScopes\{45662fe4-70e0-449b-ab0f-205497e7cb74}: "URL" = http://www.mapy.cz/?query={searchTerms}&sourceid=IE_5> in the current context!
Error: Unable to interpret <IE - HKCU\..\SearchScopes\{4B84182C-BAE4-4B9D-A62D-A1661D0C262F}: "URL" = http://websearch.ask.com/redirect?clien ... src=crm&q={searchTerms}&locale=en_NL&apn_ptnrs=^RY&apn_dtid=^YYYYYY^V2^NL&apn_uid=6285494d-2882-4f59-b703-2dbdab7ca7e0&apn_sauid=D374BCEB-D645-4F8C-ADAA-35C7C6A0F280> in the current context!
Error: Unable to interpret <IE - HKCU\..\SearchScopes\{775793df-8901-4566-b578-9f0c19c2af7c}: "URL" = http://www.zbozi.cz/?q={searchTerms}&r=campmoz&sourceid=IE_5> in the current context!
Error: Unable to interpret <IE - HKCU\..\SearchScopes\{8b4d634f-3de9-4a67-bf5a-7e8f9120ffaa}: "URL" = http://www.firmy.cz/phr/{searchTerms}?sourceid=IE_5> in the current context!
Error: Unable to interpret <IE - HKCU\..\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}: "URL" = http://isearch.avg.com/search?cid={93DA1225-32D3-4178-9594-155D845CB2A2}&mid=0cdf79bd580e47d18b96d15a44e0fc7c-0463141f8c5d71847f559762ff48303a81052c9b&lang=cs&ds=AVG&pr=pr&d=2012-11-17 22:57:29&v=13.2.0.4&sap=dsp&q={searchTerms}> in the current context!
Error: Unable to interpret <IE - HKCU\..\SearchScopes\{AB77CB6B-D4D6-454F-891C-8A9442B4135C}: "URL" = http://www.mysearchresults.com/search?&c=3507&t=07&q={searchTerms}> in the current context!
Error: Unable to interpret <IE - HKCU\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2504091> in the current context!
Error: Unable to interpret <IE - HKCU\..\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}: "URL" = http://search.gboxapp.com/?q={searchTerms}> in the current context!
Error: Unable to interpret <FF - prefs.js..browser.search.order.1: "GadgetBox"> in the current context!
Error: Unable to interpret <FF - prefs.js..browser.search.order.1,S: S", "GadgetBox"> in the current context!
Error: Unable to interpret <FF - prefs.js..browser.search.selectedEngine,S: S", "GadgetBox"> in the current context!
Error: Unable to interpret <FF - prefs.js..extensions.enabledAddons: {972ce4c6-7e08-4474-a285-3208198ce6fd}:16.0.2> in the current context!
Error: Unable to interpret <FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll File not found> in the current context!
Error: Unable to interpret <FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll File not found> in the current context!
Error: Unable to interpret <[2012.03.04 13:25:45 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Jirka\Data aplikací\Mozilla\Extensions> in the current context!
Error: Unable to interpret <[2012.03.18 09:25:37 | 000,000,000 | ---D | M] (Vuze Remote Community Toolbar) -- C:\Documents and Settings\Jirka\Data aplikací\Mozilla\Firefox\Profiles\lf53qnty.default\extensions\{ba14329e-9550-4989-b3f2-9732e92d17cc}> in the current context!
Error: Unable to interpret <[2012.03.26 16:49:49 | 000,000,000 | ---D | M] (TheBflix) -- C:\Documents and Settings\Jirka\Data aplikací\Mozilla\Firefox\Profiles\lf53qnty.default\extensions\info@bflix.info> in the current context!
Error: Unable to interpret <[2012.11.17 22:46:28 | 000,000,000 | ---D | M] (KMPlayer Toolbar) -- C:\Documents and Settings\Jirka\Data aplikací\Mozilla\Firefox\Profiles\lf53qnty.default\extensions\toolbar@ask.com> in the current context!
Error: Unable to interpret <[2012.11.15 12:26:31 | 000,022,389 | ---- | M] () (No name found) -- C:\Documents and Settings\Jirka\Data aplikací\Mozilla\Firefox\Profiles\lf53qnty.default\extensions\addon@defaulttab.com.xpi> in the current context!
Error: Unable to interpret <[2012.11.17 17:05:57 | 000,189,128 | ---- | M] () (No name found) -- C:\Documents and Settings\Jirka\Data aplikací\Mozilla\Firefox\Profiles\lf53qnty.default\extensions\{EEE6C361-6118-11DC-9C72-001320C79847}.xpi> in the current context!
Error: Unable to interpret <[2012.11.15 12:16:22 | 000,002,335 | ---- | M] () -- C:\Documents and Settings\Jirka\Data aplikací\Mozilla\Firefox\Profiles\lf53qnty.default\searchplugins\askcom.xml> in the current context!
Error: Unable to interpret <[2012.09.26 20:01:24 | 000,000,487 | ---- | M] () -- C:\Documents and Settings\Jirka\Data aplikací\Mozilla\Firefox\Profiles\lf53qnty.default\searchplugins\GadgetBox.xml> in the current context!
Error: Unable to interpret <[2012.04.02 18:43:24 | 000,003,915 | ---- | M] () -- C:\Documents and Settings\Jirka\Data aplikací\Mozilla\Firefox\Profiles\lf53qnty.default\searchplugins\sweetim.xml> in the current context!
Error: Unable to interpret <[2012.11.17 22:08:21 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions> in the current context!
Error: Unable to interpret <File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\JIRKA\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\LF53QNTY.DEFAULT\EXTENSIONS\ADDON@DEFAULTTAB.COM.XPI> in the current context!
Error: Unable to interpret <CHR - homepage: http://www.mysearchresults.com/?c=3507&t=07> in the current context!
Error: Unable to interpret <CHR - homepage: http://www.mysearchresults.com/?c=3507&t=07> in the current context!
Error: Unable to interpret <CHR - Extension: SweetIM for Facebook = C:\Documents and Settings\Jirka\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn\1.0.0.0_0\> in the current context!
Error: Unable to interpret <CHR - Extension: KMPlayer Toolbar = C:\Documents and Settings\Jirka\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\aaaaoggiphohkihibdkcnhnokmkfmhnj\7.17.0.0_0\> in the current context!
Error: Unable to interpret <CHR - Extension: SweetIM for Facebook = C:\Documents and Settings\Jirka\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn\1.0.0.0_0\Copy of > in the current context!
Error: Unable to interpret <CHR - Extension: SweetIM for Facebook = C:\Documents and Settings\Jirka\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn\1.0.0.0_0\> in the current context!
Error: Unable to interpret <O1 HOSTS File: ([2012.11.21 18:14:54 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts> in the current context!
Error: Unable to interpret <O1 - Hosts: 127.0.0.1 localhost> in the current context!
Error: Unable to interpret <O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present> in the current context!
Error: Unable to interpret <O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present> in the current context!
Error: Unable to interpret <O18 - Protocol\Handler\ipp - No CLSID value found> in the current context!
Error: Unable to interpret <O18 - Protocol\Handler\linkscanner - No CLSID value found> in the current context!
Error: Unable to interpret <O18 - Protocol\Handler\msdaipp - No CLSID value found> in the current context!
Error: Unable to interpret <[2012.11.18 23:38:21 | 000,311,938 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat> in the current context!
Error: Unable to interpret <[2012.11.18 23:38:21 | 000,310,228 | ---- | M] () -- C:\WINDOWS\System32\perfh005.dat> in the current context!
Error: Unable to interpret <[2012.11.18 23:38:21 | 000,046,394 | ---- | M] () -- C:\WINDOWS\System32\perfc005.dat> in the current context!
Error: Unable to interpret <[2012.11.18 23:38:21 | 000,040,326 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat> in the current context!
========== FILES ==========
C:\WINDOWS\System32\CONFIG.TMP moved successfully.
C:\WINDOWS\msdownld.tmp folder moved successfully.
C:\WINDOWS\SET3.tmp moved successfully.
C:\WINDOWS\SET4.tmp moved successfully.
C:\WINDOWS\SET8.tmp moved successfully.
File\Folder C:\WINDOWS\system32\*.tmp.dll not found.
File\Folder C:\WINDOWS\System32\dllcache\*.tmp not found.
File\Folder C:\WINDOWS\system32\SET*.tmp not found.
File\Folder C:\WINDOWS\system32\DUMP*.tmp not found.
c:\windows\Tasks\Adobe Flash Player Updater.job moved successfully.
File\Folder C:\*.tmp not found.
File\Folder C:\WINDOWS\System32\drivers\*.tmp not found.
File\Folder C:\Documents and Settings\All Users\Data aplikací\*.tmp not found.
C:\Documents and Settings\Jirka\Local Settings\Data aplikací\AskToolbar\APNU folder moved successfully.
C:\Documents and Settings\Jirka\Local Settings\Data aplikací\AskToolbar folder moved successfully.
File\Folder [4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] not found.
File\Folder [1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] not found.
C:\Documents and Settings\Jirka\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini moved successfully.
C:\WINDOWS\_delis32.ini moved successfully.
========== REGISTRY ==========
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command\\""|""%1" %*" /E : value set successfully!
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\\FirstRunDisabled deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore\\DisableSR deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\\{86D4B82A-ABED-442A-BE86-96357B70F4FE} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{86D4B82A-ABED-442A-BE86-96357B70F4FE}\ not found.
========== COMMANDS ==========
[EMPTYTEMP]
User: All Users
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 67 bytes
User: Jirka
->Temp folder emptied: 1077026 bytes
->Temporary Internet Files folder emptied: 258102635 bytes
->FireFox cache emptied: 64971666 bytes
->Google Chrome cache emptied: 0 bytes
->Flash cache emptied: 2648 bytes
User: LocalService
->Temp folder emptied: 66016 bytes
->Temporary Internet Files folder emptied: 33170 bytes
User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 90905 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 33170 bytes
RecycleBin emptied: 333 bytes
Total Files Cleaned = 309,00 mb
OTL by OldTimer - Version 3.2.69.0 log created on 11232012_121948
Files\Folders moved on Reboot...
PendingFileRenameOperations files...
Registry entries deleted on Reboot...
Error: Unable to interpret <PRC - C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)> in the current context!
Error: Unable to interpret <SRV - (HidServ) -- %SystemRoot%\System32\hidserv.dll File not found> in the current context!
Error: Unable to interpret <SRV - (AppMgmt) -- %SystemRoot%\System32\appmgmts.dll File not found> in the current context!
Error: Unable to interpret <DRV - (WDICA) -- File not found> in the current context!
Error: Unable to interpret <DRV - (s24trans) -- system32\DRIVERS\s24trans.sys File not found> in the current context!
Error: Unable to interpret <DRV - (PDRFRAME) -- File not found> in the current context!
Error: Unable to interpret <DRV - (PDRELI) -- File not found> in the current context!
Error: Unable to interpret <DRV - (PDFRAME) -- File not found> in the current context!
Error: Unable to interpret <DRV - (PDCOMP) -- File not found> in the current context!
Error: Unable to interpret <DRV - (PCIDump) -- File not found> in the current context!
Error: Unable to interpret <DRV - (lbrtfdc) -- File not found> in the current context!
Error: Unable to interpret <DRV - (i2omgmt) -- File not found> in the current context!
Error: Unable to interpret <DRV - (Changer) -- File not found> in the current context!
Error: Unable to interpret <IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}> in the current context!
Error: Unable to interpret <IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}> in the current context!
Error: Unable to interpret <IE - HKCU\..\SearchScopes,DefaultScope = {0DA4D042-27C1-474D-8FFC-BED934B9EBFA}> in the current context!
Error: Unable to interpret <IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC> in the current context!
Error: Unable to interpret <IE - HKCU\..\SearchScopes\{0DA4D042-27C1-474D-8FFC-BED934B9EBFA}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7GGHP_csCZ475> in the current context!
Error: Unable to interpret <IE - HKCU\..\SearchScopes\{33874215-4469-43b4-a53f-bec24c7884ee}: "URL" = http://search.seznam.cz/?q={searchTerms}&sourceid=IE_5> in the current context!
Error: Unable to interpret <IE - HKCU\..\SearchScopes\{45662fe4-70e0-449b-ab0f-205497e7cb74}: "URL" = http://www.mapy.cz/?query={searchTerms}&sourceid=IE_5> in the current context!
Error: Unable to interpret <IE - HKCU\..\SearchScopes\{4B84182C-BAE4-4B9D-A62D-A1661D0C262F}: "URL" = http://websearch.ask.com/redirect?clien ... src=crm&q={searchTerms}&locale=en_NL&apn_ptnrs=^RY&apn_dtid=^YYYYYY^V2^NL&apn_uid=6285494d-2882-4f59-b703-2dbdab7ca7e0&apn_sauid=D374BCEB-D645-4F8C-ADAA-35C7C6A0F280> in the current context!
Error: Unable to interpret <IE - HKCU\..\SearchScopes\{775793df-8901-4566-b578-9f0c19c2af7c}: "URL" = http://www.zbozi.cz/?q={searchTerms}&r=campmoz&sourceid=IE_5> in the current context!
Error: Unable to interpret <IE - HKCU\..\SearchScopes\{8b4d634f-3de9-4a67-bf5a-7e8f9120ffaa}: "URL" = http://www.firmy.cz/phr/{searchTerms}?sourceid=IE_5> in the current context!
Error: Unable to interpret <IE - HKCU\..\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}: "URL" = http://isearch.avg.com/search?cid={93DA1225-32D3-4178-9594-155D845CB2A2}&mid=0cdf79bd580e47d18b96d15a44e0fc7c-0463141f8c5d71847f559762ff48303a81052c9b&lang=cs&ds=AVG&pr=pr&d=2012-11-17 22:57:29&v=13.2.0.4&sap=dsp&q={searchTerms}> in the current context!
Error: Unable to interpret <IE - HKCU\..\SearchScopes\{AB77CB6B-D4D6-454F-891C-8A9442B4135C}: "URL" = http://www.mysearchresults.com/search?&c=3507&t=07&q={searchTerms}> in the current context!
Error: Unable to interpret <IE - HKCU\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2504091> in the current context!
Error: Unable to interpret <IE - HKCU\..\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}: "URL" = http://search.gboxapp.com/?q={searchTerms}> in the current context!
Error: Unable to interpret <FF - prefs.js..browser.search.order.1: "GadgetBox"> in the current context!
Error: Unable to interpret <FF - prefs.js..browser.search.order.1,S: S", "GadgetBox"> in the current context!
Error: Unable to interpret <FF - prefs.js..browser.search.selectedEngine,S: S", "GadgetBox"> in the current context!
Error: Unable to interpret <FF - prefs.js..extensions.enabledAddons: {972ce4c6-7e08-4474-a285-3208198ce6fd}:16.0.2> in the current context!
Error: Unable to interpret <FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll File not found> in the current context!
Error: Unable to interpret <FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll File not found> in the current context!
Error: Unable to interpret <[2012.03.04 13:25:45 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Jirka\Data aplikací\Mozilla\Extensions> in the current context!
Error: Unable to interpret <[2012.03.18 09:25:37 | 000,000,000 | ---D | M] (Vuze Remote Community Toolbar) -- C:\Documents and Settings\Jirka\Data aplikací\Mozilla\Firefox\Profiles\lf53qnty.default\extensions\{ba14329e-9550-4989-b3f2-9732e92d17cc}> in the current context!
Error: Unable to interpret <[2012.03.26 16:49:49 | 000,000,000 | ---D | M] (TheBflix) -- C:\Documents and Settings\Jirka\Data aplikací\Mozilla\Firefox\Profiles\lf53qnty.default\extensions\info@bflix.info> in the current context!
Error: Unable to interpret <[2012.11.17 22:46:28 | 000,000,000 | ---D | M] (KMPlayer Toolbar) -- C:\Documents and Settings\Jirka\Data aplikací\Mozilla\Firefox\Profiles\lf53qnty.default\extensions\toolbar@ask.com> in the current context!
Error: Unable to interpret <[2012.11.15 12:26:31 | 000,022,389 | ---- | M] () (No name found) -- C:\Documents and Settings\Jirka\Data aplikací\Mozilla\Firefox\Profiles\lf53qnty.default\extensions\addon@defaulttab.com.xpi> in the current context!
Error: Unable to interpret <[2012.11.17 17:05:57 | 000,189,128 | ---- | M] () (No name found) -- C:\Documents and Settings\Jirka\Data aplikací\Mozilla\Firefox\Profiles\lf53qnty.default\extensions\{EEE6C361-6118-11DC-9C72-001320C79847}.xpi> in the current context!
Error: Unable to interpret <[2012.11.15 12:16:22 | 000,002,335 | ---- | M] () -- C:\Documents and Settings\Jirka\Data aplikací\Mozilla\Firefox\Profiles\lf53qnty.default\searchplugins\askcom.xml> in the current context!
Error: Unable to interpret <[2012.09.26 20:01:24 | 000,000,487 | ---- | M] () -- C:\Documents and Settings\Jirka\Data aplikací\Mozilla\Firefox\Profiles\lf53qnty.default\searchplugins\GadgetBox.xml> in the current context!
Error: Unable to interpret <[2012.04.02 18:43:24 | 000,003,915 | ---- | M] () -- C:\Documents and Settings\Jirka\Data aplikací\Mozilla\Firefox\Profiles\lf53qnty.default\searchplugins\sweetim.xml> in the current context!
Error: Unable to interpret <[2012.11.17 22:08:21 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions> in the current context!
Error: Unable to interpret <File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\JIRKA\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\LF53QNTY.DEFAULT\EXTENSIONS\ADDON@DEFAULTTAB.COM.XPI> in the current context!
Error: Unable to interpret <CHR - homepage: http://www.mysearchresults.com/?c=3507&t=07> in the current context!
Error: Unable to interpret <CHR - homepage: http://www.mysearchresults.com/?c=3507&t=07> in the current context!
Error: Unable to interpret <CHR - Extension: SweetIM for Facebook = C:\Documents and Settings\Jirka\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn\1.0.0.0_0\> in the current context!
Error: Unable to interpret <CHR - Extension: KMPlayer Toolbar = C:\Documents and Settings\Jirka\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\aaaaoggiphohkihibdkcnhnokmkfmhnj\7.17.0.0_0\> in the current context!
Error: Unable to interpret <CHR - Extension: SweetIM for Facebook = C:\Documents and Settings\Jirka\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn\1.0.0.0_0\Copy of > in the current context!
Error: Unable to interpret <CHR - Extension: SweetIM for Facebook = C:\Documents and Settings\Jirka\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn\1.0.0.0_0\> in the current context!
Error: Unable to interpret <O1 HOSTS File: ([2012.11.21 18:14:54 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts> in the current context!
Error: Unable to interpret <O1 - Hosts: 127.0.0.1 localhost> in the current context!
Error: Unable to interpret <O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present> in the current context!
Error: Unable to interpret <O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present> in the current context!
Error: Unable to interpret <O18 - Protocol\Handler\ipp - No CLSID value found> in the current context!
Error: Unable to interpret <O18 - Protocol\Handler\linkscanner - No CLSID value found> in the current context!
Error: Unable to interpret <O18 - Protocol\Handler\msdaipp - No CLSID value found> in the current context!
Error: Unable to interpret <[2012.11.18 23:38:21 | 000,311,938 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat> in the current context!
Error: Unable to interpret <[2012.11.18 23:38:21 | 000,310,228 | ---- | M] () -- C:\WINDOWS\System32\perfh005.dat> in the current context!
Error: Unable to interpret <[2012.11.18 23:38:21 | 000,046,394 | ---- | M] () -- C:\WINDOWS\System32\perfc005.dat> in the current context!
Error: Unable to interpret <[2012.11.18 23:38:21 | 000,040,326 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat> in the current context!
========== FILES ==========
C:\WINDOWS\System32\CONFIG.TMP moved successfully.
C:\WINDOWS\msdownld.tmp folder moved successfully.
C:\WINDOWS\SET3.tmp moved successfully.
C:\WINDOWS\SET4.tmp moved successfully.
C:\WINDOWS\SET8.tmp moved successfully.
File\Folder C:\WINDOWS\system32\*.tmp.dll not found.
File\Folder C:\WINDOWS\System32\dllcache\*.tmp not found.
File\Folder C:\WINDOWS\system32\SET*.tmp not found.
File\Folder C:\WINDOWS\system32\DUMP*.tmp not found.
c:\windows\Tasks\Adobe Flash Player Updater.job moved successfully.
File\Folder C:\*.tmp not found.
File\Folder C:\WINDOWS\System32\drivers\*.tmp not found.
File\Folder C:\Documents and Settings\All Users\Data aplikací\*.tmp not found.
C:\Documents and Settings\Jirka\Local Settings\Data aplikací\AskToolbar\APNU folder moved successfully.
C:\Documents and Settings\Jirka\Local Settings\Data aplikací\AskToolbar folder moved successfully.
File\Folder [4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] not found.
File\Folder [1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] not found.
C:\Documents and Settings\Jirka\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini moved successfully.
C:\WINDOWS\_delis32.ini moved successfully.
========== REGISTRY ==========
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command\\""|""%1" %*" /E : value set successfully!
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\\FirstRunDisabled deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore\\DisableSR deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\\{86D4B82A-ABED-442A-BE86-96357B70F4FE} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{86D4B82A-ABED-442A-BE86-96357B70F4FE}\ not found.
========== COMMANDS ==========
[EMPTYTEMP]
User: All Users
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 67 bytes
User: Jirka
->Temp folder emptied: 1077026 bytes
->Temporary Internet Files folder emptied: 258102635 bytes
->FireFox cache emptied: 64971666 bytes
->Google Chrome cache emptied: 0 bytes
->Flash cache emptied: 2648 bytes
User: LocalService
->Temp folder emptied: 66016 bytes
->Temporary Internet Files folder emptied: 33170 bytes
User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 90905 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 33170 bytes
RecycleBin emptied: 333 bytes
Total Files Cleaned = 309,00 mb
OTL by OldTimer - Version 3.2.69.0 log created on 11232012_121948
Files\Folders moved on Reboot...
PendingFileRenameOperations files...
Registry entries deleted on Reboot...
-
jaro3
- člen Security týmu
-
Guru Level 15
- Příspěvky: 43298
- Registrován: červen 07
- Bydliště: Jižní Čechy
- Pohlaví:
- Stav:
Offline
Re: Nejde obnovení systému
Kouknui se zda máš zapnuto nyní obnovení systému a jsou ještě nějaké problémy?
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Re: Nejde obnovení systému
nevím jak poznám,že mám zaplé obnovení systému,ono se to předtím normálně rozběhlo,ale neprovedly se žádné změny,jinak žádné problémy teď nemám a to obnovení bych zkusil později a zkusím se vrátit třeba do dnešního dne
Re: Nejde obnovení systému
koukl jsem do něho a je tam jen dnešní den jako bod obnovy,zpátky se nejde nikam vrátit
-
Žbeky
- Moderátor
-
Guru Level 13
- Příspěvky: 22288
- Registrován: květen 08
- Bydliště: Vsetín - Pardubice
- Pohlaví:
- Stav:
Offline
Re: Nejde obnovení systému
Pokud jsou předchozí body obnovy smazané (mazal je pravděpodobně i CCleaner), tak si je systém z prstu těžko vycucá.
Pokud nejsou problémy, můžeš dát vyřešeno
Pokud nejsou problémy, můžeš dát vyřešeno
V SZ řeším jen záležitosti týkající se fóra. Na prosby a žádosti o technickou podporu nereaguji. Díky za pochopení.
HiJackThis + návod - HW Monitor - Jak označit příspěvek za vyřešený - Pravidla fóra
HiJackThis + návod - HW Monitor - Jak označit příspěvek za vyřešený - Pravidla fóra
Re: Nejde obnovení systému Vyřešeno
a já myslel,že by je z toho prstu vycucat mohl....:-)) Pánové ,díky moc........dám vyřešeno
Kdo je online
Uživatelé prohlížející si toto fórum: Žádní registrovaní uživatelé a 92 hostů