Prosim o kontrolu

Zpráva

markus1766 · #1 Příspěvek od **markus1766** » 13 úno 2014 18:10

Essentials mi po pripojení HDD do USB hlási vir,všetko vymaže,
prosím pozrite sa mi na to ďakujem

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 12-02-2014 01
Ran by Miro Markus Marko (administrator) on PC on 13-02-2014 17:56:21
Running from C:\Users\Miro Markus Marko\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: 041B
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCService.exe
(Microsoft Corporation) c:\Program Files\Microsoft Security Client\MsMpEng.exe
(IObit) C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
() C:\Program Files (x86)\OScam\bin\oscamsvc.exe
() C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
(Microsoft Corporation) C:\windows\System32\alg.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Lenovo (Beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(CyberLink) C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe
(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\utility.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Microsoft Corporation) C:\Windows\WindowsMobile\wmdc.exe
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCTray.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Lenovo) C:\Program Files (x86)\Lenovo\VeriFace\PManage.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare 7\Asc.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Ashampoo GmbH & Co. KG) C:\Program Files (x86)\Ashampoo\Ashampoo Photo Commander 10\apc.exe
(Microsoft Corporation) C:\windows\system32\mfpmp.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) c:\Program Files\Microsoft Security Client\NisSrv.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Google Inc.) C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe
(Microsoft Corporation) c:\Program Files\Microsoft Security Client\MpCmdRun.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2741544 2011-04-08] (Synaptics Incorporated)
HKLM\...\Run: [Lenovo EE Boot Optimizer] - C:\Program Files (x86)\Lenovo\Boot Optimizer\PopWnd.exe [114688 2012-08-21] (Lenovo)
HKLM\...\Run: [Energy Management] - C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [9753024 2012-08-21] (Lenovo (Beijing) Limited)
HKLM\...\Run: [EnergyUtility] - C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [5908928 2012-08-21] (Lenovo(beijing) Limited)
HKLM\...\Run: [MSC] - c:\Program Files\Microsoft Security Client\msseces.exe [1266912 2013-10-23] (Microsoft Corporation)
HKLM\...\Run: [Windows Mobile Device Center] - C:\Windows\WindowsMobile\wmdc.exe [660360 2007-05-31] (Microsoft Corporation)
HKLM-x32\...\Run: [IAStorIcon] - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [283160 2011-02-18] (Intel Corporation)
HKLM-x32\...\Run: [VeriFaceManager] - C:\Program Files (x86)\Lenovo\VeriFace\PManage.exe [329056 2012-08-21] (Lenovo)
HKLM-x32\...\Run: [GrooveMonitor] - C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
Winlogon\Notify\igfxcui: C:\windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-4156330298-3057586047-1619611713-1000\...\Run: [swg] - C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2012-08-21] (Google Inc.)
HKU\S-1-5-21-4156330298-3057586047-1619611713-1000\...\Run: [Advanced SystemCare 7] - C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCTray.exe [2283296 2013-10-28] (IObit)
HKU\S-1-5-21-4156330298-3057586047-1619611713-1000\...\MountPoints2: I - I:\Setup.exe
HKU\S-1-5-21-4156330298-3057586047-1619611713-1000\...\MountPoints2: J - J:\Setup.exe
HKU\S-1-5-21-4156330298-3057586047-1619611713-1000\...\MountPoints2: {7aac9c99-96d1-11e2-9135-b888e3780847} - E:\Setup.exe
HKU\S-1-5-21-4156330298-3057586047-1619611713-1000\...\MountPoints2: {7aac9ca0-96d1-11e2-9135-b888e3780847} - G:\Setup.exe

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://www.lenovo.com
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com/ig/redirectdomain ... &bmod=LENN
HKLM\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://www.lenovo.com/
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://www.lenovo.com/
SearchScopes: HKCU - DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = http://www.google.com/search?sourceid=i ... NN_skSK511
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = http://www.google.com/search?sourceid=i ... NN_skSK511
BHO: ExplorerWnd Helper - {10921475-03CE-4E04-90CE-E2E7EF20C814} - C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll (IObit)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO-x32: Advanced SystemCare Browser Protection - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - C:\Program Files (x86)\IObit\Surfing Protection\BrowerProtect\ASCPlugin_Protection.dll (IObit)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 94.229.39.166

Chrome:
=======
CHR Plugin: (Shockwave Flash) - C:\Users\Miro Markus Marko\AppData\Local\Google\Chrome\User Data\PepperFlash\11.7.700.225\pepflashplayer.dll No File
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.102\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.102\pdf.dll ()
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll No File
CHR Plugin: (Java(TM) Platform SE 7 U21) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (VLC Web Plugin) - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
CHR Plugin: (Windows Live Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (Java Deployment Toolkit 7.0.210.11) - C:\windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
CHR Plugin: (Silverlight Plug-In) - c:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll No File
CHR Extension: (DBankPlugin) - C:\Users\Miro Markus Marko\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpphgmdbhahgadoggfojpaljepicgfpd [2013-03-15]
CHR Extension: (uTorrentControl_v2) - C:\Users\Miro Markus Marko\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejpbbhjlbipncjklfjjaedaieimbmdda [2013-06-15]
CHR Extension: (AdBlock) - C:\Users\Miro Markus Marko\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2013-07-31]
CHR Extension: (Advanced SystemCare Surfing Protection) - C:\Users\Miro Markus Marko\AppData\Local\Google\Chrome\User Data\Default\Extensions\nfengeggddojhakldhlpjdlddgkkjkdd [2014-01-22]
CHR Extension: (Peňaženka Google) - C:\Users\Miro Markus Marko\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-25]
CHR HKCU\...\Chrome\Extension: [ejpbbhjlbipncjklfjjaedaieimbmdda] - C:\Users\Miro Markus Marko\AppData\Local\CRE\ejpbbhjlbipncjklfjjaedaieimbmdda.crx [2012-11-19]
CHR HKLM-x32\...\Chrome\Extension: [dpphgmdbhahgadoggfojpaljepicgfpd] - C:\Users\Miro Markus Marko\AppData\Roaming\DBankPlugin\DBankPluginChrome.crx [2013-03-15]
CHR HKLM-x32\...\Chrome\Extension: [ejpbbhjlbipncjklfjjaedaieimbmdda] - C:\Users\Miro Markus Marko\AppData\Local\CRE\ejpbbhjlbipncjklfjjaedaieimbmdda.crx [2012-11-19]
CHR HKLM-x32\...\Chrome\Extension: [nfengeggddojhakldhlpjdlddgkkjkdd] - C:\Program Files (x86)\IObit\Surfing Protection\BrowerProtect\ASC_GhromePlugin.crx [2013-12-06]

==================== Services (Whitelisted) =================

R2 AdvancedSystemCareService7; C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCService.exe [878368 2013-10-25] (IObit)
R2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2151200 2013-10-25] (IObit)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [23808 2013-10-23] (Microsoft Corporation)
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [348376 2013-10-23] (Microsoft Corporation)
R2 oscamsvc; C:\Program Files (x86)\OScam\bin\oscamsvc.exe [314880 2011-07-02] ()
R2 PassThru Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [166912 2012-10-08] ()

==================== Drivers (Whitelisted) ====================

R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [248240 2013-09-27] (Microsoft Corporation)
R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [134944 2013-09-27] (Microsoft Corporation)
U3 BcmSqlStartupSvc;
U2 CLKMSVC10_3A60B698;
U2 CLKMSVC10_C3B3B687;
U2 DriverService;
U2 iATAgentService;
U2 idealife Update Service;
U3 IGRS;
U2 IviRegMgr;
U2 nvUpdatusService;
U2 Oasis2Service;
U2 PCCarerService;
U2 ReadyComm.DirectRouter;
U2 RichVideo;
U2 RtLedService;
U2 SeaPort;
U2 SoftwareService;
U3 SQLWriter;
U2 Stereo Service;

==================== NetSvcs (Whitelisted) ===================

==================== One Month Created Files and Folders ========

2014-02-13 17:56 - 2014-02-13 17:56 - 00013039 _____ () C:\Users\Miro Markus Marko\Desktop\FRST.txt
2014-02-13 17:56 - 2014-02-13 17:56 - 00000000 ____D () C:\FRST
2014-02-13 17:50 - 2014-02-13 17:50 - 00112640 _____ (forum.viry.cz) C:\Users\Miro Markus Marko\Desktop\FRSTLauncher.exe
2014-02-13 17:43 - 2014-02-13 17:43 - 02152448 _____ (Farbar) C:\Users\Miro Markus Marko\Desktop\FRST64.exe
2014-02-13 16:04 - 2014-02-13 16:04 - 00000000 ____D () C:\Users\Miro Markus Marko\AppData\Local\{56D5472E-52CF-4B07-AEBD-1003CEDE3170}
2014-02-13 15:17 - 2014-02-13 15:17 - 00001244 _____ () C:\Users\Public\Desktop\Ashampoo Photo Commander 10.lnk
2014-02-13 15:17 - 2014-02-13 15:17 - 00000214 _____ () C:\Users\Public\Desktop\Your Software Deals.url
2014-02-13 15:17 - 2014-02-13 15:17 - 00000000 ____D () C:\Users\Miro Markus Marko\AppData\Roaming\Ashampoo
2014-02-13 15:17 - 2014-02-13 15:17 - 00000000 ____D () C:\Users\Miro Markus Marko\AppData\Local\ashampoo
2014-02-13 15:16 - 2014-02-13 15:17 - 00000000 ____D () C:\ProgramData\Ashampoo
2014-02-13 15:16 - 2014-02-13 15:16 - 00000000 ____D () C:\Program Files (x86)\Ashampoo
2014-02-12 20:19 - 2014-02-12 20:19 - 00000000 ____D () C:\Users\Miro Markus Marko\AppData\Local\AskPartnerNetwork
2014-02-11 19:00 - 2014-02-11 17:28 - 1631471896 _____ () C:\Users\Miro Markus Marko\Desktop\Discovery HD.ts
2014-02-08 22:36 - 2014-02-08 22:49 - 00000000 ____D () C:\Users\Miro Markus Marko\Desktop\laurinka2
2014-02-08 21:57 - 2014-02-13 14:45 - 00000000 ____D () C:\Program Files (x86)\PhotoFiltre
2014-02-08 21:31 - 2014-02-08 21:31 - 00000000 ____D () C:\ProgramData\AskPartnerNetwork
2014-02-08 21:31 - 2014-02-08 21:31 - 00000000 ____D () C:\ProgramData\APN
2014-02-08 21:31 - 2014-02-08 21:31 - 00000000 ____D () C:\Program Files (x86)\AskPartnerNetwork
2014-02-08 16:34 - 2014-02-13 14:45 - 00000000 ____D () C:\Users\Miro Markus Marko\Desktop\OBRIK on-line úprava obrázků_files
2014-02-08 16:34 - 2014-02-08 16:34 - 00012467 _____ () C:\Users\Miro Markus Marko\Desktop\OBRIK on-line úprava obrázků.htm
2014-02-08 16:05 - 2014-02-10 07:57 - 00000000 ____D () C:\Users\Miro Markus Marko\Desktop\laurinka
2014-02-08 12:12 - 2014-02-08 12:13 - 1130182680 _____ () C:\Users\Miro Markus Marko\Desktop\Iron Man 3 (02).ts
2014-02-08 12:01 - 2014-02-08 12:27 - 00000000 ____D () C:\Users\Miro Markus Marko\Documents\VideoReDo
2014-02-08 12:00 - 2014-02-13 14:45 - 00000000 ____D () C:\Program Files (x86)\VideoReDoTVSuite4
2014-02-08 12:00 - 2014-02-11 19:50 - 00000000 ____D () C:\Users\Miro Markus Marko\AppData\Roaming\VideoReDo-TVSuite4
2014-02-08 11:37 - 2014-02-07 13:35 - 1507725784 _____ () C:\Users\Miro Markus Marko\Desktop\Iron Man 3.ts
2014-02-07 07:53 - 2014-02-07 06:20 - 1039704860 _____ () C:\Users\Miro Markus Marko\Desktop\20140207 0705 - HBO HD - Smrt jÃ sluÅ¡Ã.ts
2014-02-05 21:32 - 2014-02-05 21:32 - 71147520 _____ () C:\windows\system32\config\SOFTWARE.iodefrag.bak
2014-02-05 21:32 - 2014-02-05 21:32 - 00704512 _____ () C:\windows\system32\config\DEFAULT.iodefrag.bak
2014-02-05 21:32 - 2014-02-05 21:32 - 00057344 _____ () C:\windows\system32\config\SAM.iodefrag.bak
2014-02-05 21:32 - 2014-02-05 21:32 - 00024576 _____ () C:\windows\system32\config\SECURITY.iodefrag.bak
2014-02-05 21:32 - 2014-02-05 21:32 - 00000000 _____ () C:\asc_rdflag
2014-02-05 20:50 - 2014-02-13 14:45 - 00000000 ____D () C:\Users\Miro Markus Marko\AppData\Roaming\newnext.me
2014-02-05 20:50 - 2014-02-05 20:54 - 00000000 ____D () C:\Users\Miro Markus Marko\AppData\Local\Mobogenie
2014-02-05 20:50 - 2014-02-05 20:53 - 00000000 ____D () C:\Users\Miro Markus Marko\AppData\Local\cache
2014-02-05 20:50 - 2014-02-05 20:50 - 00000000 ____D () C:\Users\Miro Markus Marko\Documents\Mobogenie
2014-02-05 20:50 - 2014-02-05 20:50 - 00000000 ____D () C:\Users\Miro Markus Marko\.android
2014-02-05 20:50 - 2014-02-05 20:50 - 00000000 _____ () C:\Users\Miro Markus Marko\daemonprocess.txt
2014-02-05 20:49 - 2014-02-13 14:46 - 00000000 ____D () C:\Program Files (x86)\Surftastic
2014-02-05 20:48 - 2014-02-13 14:45 - 00000000 ____D () C:\Users\Miro Markus Marko\AppData\Local\SwvUpdater
2014-02-05 20:31 - 2014-02-05 20:31 - 00000000 ____D () C:\ProgramData\ClubSanDisk
2014-02-05 20:02 - 2014-02-05 20:09 - 00000000 ____D () C:\Program Files (x86)\DriverToolkit
2014-02-05 20:02 - 2014-02-05 20:02 - 00000000 ____D () C:\Users\Miro Markus Marko\AppData\Local\DriverToolkit
2014-02-02 07:16 - 2014-02-02 07:16 - 00000000 ____D () C:\Users\Miro Markus Marko\Desktop\enigma2
2014-01-22 21:55 - 2014-01-22 21:56 - 00000000 ____D () C:\Users\Miro Markus Marko\Desktop\Kováčové zápisky
2014-01-22 21:28 - 2014-02-13 14:45 - 00000000 ____D () C:\Extracted
2014-01-15 17:06 - 2013-11-27 02:41 - 00343040 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbhub.sys
2014-01-15 17:06 - 2013-11-27 02:41 - 00325120 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbport.sys
2014-01-15 17:06 - 2013-11-27 02:41 - 00099840 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbccgp.sys
2014-01-15 17:06 - 2013-11-27 02:41 - 00053248 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbehci.sys
2014-01-15 17:06 - 2013-11-27 02:41 - 00030720 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbuhci.sys
2014-01-15 17:06 - 2013-11-27 02:41 - 00025600 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbohci.sys
2014-01-15 17:06 - 2013-11-27 02:41 - 00007808 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbd.sys
2014-01-15 17:06 - 2013-11-26 12:40 - 00376768 _____ (Microsoft Corporation) C:\windows\system32\Drivers\netio.sys
2014-01-15 17:06 - 2013-11-26 11:32 - 03156480 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys

==================== One Month Modified Files and Folders =======

2014-02-13 17:56 - 2014-02-13 17:56 - 00013039 _____ () C:\Users\Miro Markus Marko\Desktop\FRST.txt
2014-02-13 17:56 - 2014-02-13 17:56 - 00000000 ____D () C:\FRST
2014-02-13 17:52 - 2012-08-21 09:13 - 02035588 _____ () C:\windows\WindowsUpdate.log
2014-02-13 17:50 - 2014-02-13 17:50 - 00112640 _____ (forum.viry.cz) C:\Users\Miro Markus Marko\Desktop\FRSTLauncher.exe
2014-02-13 17:43 - 2014-02-13 17:43 - 02152448 _____ (Farbar) C:\Users\Miro Markus Marko\Desktop\FRST64.exe
2014-02-13 17:41 - 2013-07-09 05:45 - 00000936 _____ () C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-02-13 17:30 - 2009-07-14 06:13 - 00782510 _____ () C:\windows\system32\PerfStringBackup.INI
2014-02-13 16:04 - 2014-02-13 16:04 - 00000000 ____D () C:\Users\Miro Markus Marko\AppData\Local\{56D5472E-52CF-4B07-AEBD-1003CEDE3170}
2014-02-13 15:17 - 2014-02-13 15:17 - 00001244 _____ () C:\Users\Public\Desktop\Ashampoo Photo Commander 10.lnk
2014-02-13 15:17 - 2014-02-13 15:17 - 00000214 _____ () C:\Users\Public\Desktop\Your Software Deals.url
2014-02-13 15:17 - 2014-02-13 15:17 - 00000000 ____D () C:\Users\Miro Markus Marko\AppData\Roaming\Ashampoo
2014-02-13 15:17 - 2014-02-13 15:17 - 00000000 ____D () C:\Users\Miro Markus Marko\AppData\Local\ashampoo
2014-02-13 15:17 - 2014-02-13 15:16 - 00000000 ____D () C:\ProgramData\Ashampoo
2014-02-13 15:16 - 2014-02-13 15:16 - 00000000 ____D () C:\Program Files (x86)\Ashampoo
2014-02-13 14:57 - 2009-07-14 04:20 - 00000000 ____D () C:\windows\system32\NDF
2014-02-13 14:56 - 2013-03-17 20:45 - 00000430 _____ () C:\windows\system32\Drivers\etc\hosts.ics
2014-02-13 14:54 - 2013-12-06 18:20 - 00002209 _____ () C:\Users\Public\Desktop\Advanced SystemCare 7.lnk
2014-02-13 14:54 - 2009-07-14 05:45 - 00021280 ____H () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-02-13 14:54 - 2009-07-14 05:45 - 00021280 ____H () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-02-13 14:48 - 2012-08-21 09:53 - 00000000 ____D () C:\ProgramData\VeriFace
2014-02-13 14:47 - 2012-11-26 17:11 - 01083400 _____ () C:\FaceProv.log
2014-02-13 14:47 - 2012-08-21 10:03 - 00461071 _____ () C:\windows\system32\fastboot.set
2014-02-13 14:46 - 2014-02-05 20:49 - 00000000 ____D () C:\Program Files (x86)\Surftastic
2014-02-13 14:46 - 2013-07-09 05:45 - 00000932 _____ () C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-02-13 14:46 - 2012-11-26 17:13 - 00000000 ____D () C:\Users\Miro Markus Marko
2014-02-13 14:46 - 2009-07-14 06:08 - 00000006 ____H () C:\windows\Tasks\SA.DAT
2014-02-13 14:45 - 2014-02-08 21:57 - 00000000 ____D () C:\Program Files (x86)\PhotoFiltre
2014-02-13 14:45 - 2014-02-08 16:34 - 00000000 ____D () C:\Users\Miro Markus Marko\Desktop\OBRIK on-line úprava obrázků_files
2014-02-13 14:45 - 2014-02-08 12:00 - 00000000 ____D () C:\Program Files (x86)\VideoReDoTVSuite4
2014-02-13 14:45 - 2014-02-05 20:50 - 00000000 ____D () C:\Users\Miro Markus Marko\AppData\Roaming\newnext.me
2014-02-13 14:45 - 2014-02-05 20:48 - 00000000 ____D () C:\Users\Miro Markus Marko\AppData\Local\SwvUpdater
2014-02-13 14:45 - 2014-01-22 21:28 - 00000000 ____D () C:\Extracted
2014-02-13 14:45 - 2013-08-06 11:52 - 00000000 ____D () C:\Users\Miro Markus Marko\Desktop\Dream Hyperion
2014-02-13 14:45 - 2013-06-23 13:04 - 00000000 ____D () C:\Program Files (x86)\OScam
2014-02-13 14:45 - 2012-12-28 09:40 - 00000000 ____D () C:\Users\Miro Markus Marko\AppData\Roaming\dvdcss
2014-02-13 14:45 - 2012-12-01 11:54 - 00000000 ____D () C:\Users\Miro Markus Marko\AppData\Roaming\vlc
2014-02-13 14:45 - 2012-11-26 17:13 - 00000000 ____D () C:\Users\Miro Markus Marko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lenovo
2014-02-13 14:45 - 2011-09-29 04:37 - 00000000 ___RD () C:\Users\Public\Recorded TV
2014-02-13 14:45 - 2009-07-14 04:20 - 00000000 ____D () C:\windows\SysWOW64\sk-SK
2014-02-13 14:45 - 2009-07-14 04:20 - 00000000 ____D () C:\windows\system32\sk-SK
2014-02-13 14:45 - 2009-07-14 04:20 - 00000000 ____D () C:\windows\rescache
2014-02-13 14:45 - 2009-07-14 04:20 - 00000000 ____D () C:\windows\AppCompat
2014-02-13 14:44 - 2009-07-14 04:20 - 00000000 ____D () C:\windows\registration
2014-02-12 20:19 - 2014-02-12 20:19 - 00000000 ____D () C:\Users\Miro Markus Marko\AppData\Local\AskPartnerNetwork
2014-02-11 19:50 - 2014-02-08 12:00 - 00000000 ____D () C:\Users\Miro Markus Marko\AppData\Roaming\VideoReDo-TVSuite4
2014-02-11 17:28 - 2014-02-11 19:00 - 1631471896 _____ () C:\Users\Miro Markus Marko\Desktop\Discovery HD.ts
2014-02-11 14:37 - 2013-11-24 11:00 - 00000000 ____D () C:\Users\Miro Markus Marko\AppData\Roaming\Vso
2014-02-11 14:37 - 2012-12-10 17:42 - 00000000 ____D () C:\windows\Minidump
2014-02-10 07:57 - 2014-02-08 16:05 - 00000000 ____D () C:\Users\Miro Markus Marko\Desktop\laurinka
2014-02-09 13:30 - 2013-11-24 11:00 - 00001189 _____ () C:\Users\Miro Markus Marko\AppData\Roaming\vso_ts_preview.xml
2014-02-08 22:49 - 2014-02-08 22:36 - 00000000 ____D () C:\Users\Miro Markus Marko\Desktop\laurinka2
2014-02-08 21:31 - 2014-02-08 21:31 - 00000000 ____D () C:\ProgramData\AskPartnerNetwork
2014-02-08 21:31 - 2014-02-08 21:31 - 00000000 ____D () C:\ProgramData\APN
2014-02-08 21:31 - 2014-02-08 21:31 - 00000000 ____D () C:\Program Files (x86)\AskPartnerNetwork
2014-02-08 16:34 - 2014-02-08 16:34 - 00012467 _____ () C:\Users\Miro Markus Marko\Desktop\OBRIK on-line úprava obrázků.htm
2014-02-08 12:27 - 2014-02-08 12:01 - 00000000 ____D () C:\Users\Miro Markus Marko\Documents\VideoReDo
2014-02-08 12:13 - 2014-02-08 12:12 - 1130182680 _____ () C:\Users\Miro Markus Marko\Desktop\Iron Man 3 (02).ts
2014-02-07 13:35 - 2014-02-08 11:37 - 1507725784 _____ () C:\Users\Miro Markus Marko\Desktop\Iron Man 3.ts
2014-02-07 06:20 - 2014-02-07 07:53 - 1039704860 _____ () C:\Users\Miro Markus Marko\Desktop\20140207 0705 - HBO HD - Smrt jÃ sluÅ¡Ã.ts
2014-02-05 21:32 - 2014-02-05 21:32 - 71147520 _____ () C:\windows\system32\config\SOFTWARE.iodefrag.bak
2014-02-05 21:32 - 2014-02-05 21:32 - 00704512 _____ () C:\windows\system32\config\DEFAULT.iodefrag.bak
2014-02-05 21:32 - 2014-02-05 21:32 - 00057344 _____ () C:\windows\system32\config\SAM.iodefrag.bak
2014-02-05 21:32 - 2014-02-05 21:32 - 00024576 _____ () C:\windows\system32\config\SECURITY.iodefrag.bak
2014-02-05 21:32 - 2014-02-05 21:32 - 00000000 _____ () C:\asc_rdflag
2014-02-05 20:54 - 2014-02-05 20:50 - 00000000 ____D () C:\Users\Miro Markus Marko\AppData\Local\Mobogenie
2014-02-05 20:53 - 2014-02-05 20:50 - 00000000 ____D () C:\Users\Miro Markus Marko\AppData\Local\cache
2014-02-05 20:50 - 2014-02-05 20:50 - 00000000 ____D () C:\Users\Miro Markus Marko\Documents\Mobogenie
2014-02-05 20:50 - 2014-02-05 20:50 - 00000000 ____D () C:\Users\Miro Markus Marko\.android
2014-02-05 20:50 - 2014-02-05 20:50 - 00000000 _____ () C:\Users\Miro Markus Marko\daemonprocess.txt
2014-02-05 20:31 - 2014-02-05 20:31 - 00000000 ____D () C:\ProgramData\ClubSanDisk
2014-02-05 20:09 - 2014-02-05 20:02 - 00000000 ____D () C:\Program Files (x86)\DriverToolkit
2014-02-05 20:02 - 2014-02-05 20:02 - 00000000 ____D () C:\Users\Miro Markus Marko\AppData\Local\DriverToolkit
2014-02-02 11:37 - 2013-11-17 12:15 - 00000000 ____D () C:\Users\Miro Markus Marko\Desktop\spark
2014-02-02 10:41 - 2013-08-03 16:59 - 00000000 ____D () C:\Users\Miro Markus Marko\Desktop\vsetky enigmy
2014-02-02 07:59 - 2012-11-28 18:09 - 00000000 ____D () C:\Users\Miro Markus Marko\Desktop\Zuzanka
2014-02-02 07:16 - 2014-02-02 07:16 - 00000000 ____D () C:\Users\Miro Markus Marko\Desktop\enigma2
2014-01-29 07:44 - 2012-08-21 10:02 - 00002195 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-01-26 16:46 - 2013-07-07 07:52 - 00000000 ____D () C:\Users\Miro Markus Marko\Downloads\G I Joe
2014-01-26 16:46 - 2013-03-03 09:30 - 00000000 ____D () C:\Users\Miro Markus Marko\Downloads\Lordi + Metal Church
2014-01-26 16:45 - 2013-04-14 09:14 - 00000000 ____D () C:\Users\Miro Markus Marko\Downloads\db
2014-01-26 16:43 - 2013-10-10 15:54 - 00000000 ___RD () C:\Users\Miro Markus Marko\Downloads\1111
2014-01-24 16:08 - 2013-12-06 18:20 - 00000000 ____D () C:\ProgramData\ProductData
2014-01-22 21:56 - 2014-01-22 21:55 - 00000000 ____D () C:\Users\Miro Markus Marko\Desktop\Kováčové zápisky
2014-01-19 08:33 - 2010-11-21 04:27 - 00270496 ____N (Microsoft Corporation) C:\windows\system32\MpSigStub.exe
2014-01-16 18:23 - 2009-07-14 05:45 - 00430792 _____ () C:\windows\system32\FNTCACHE.DAT
2014-01-15 21:46 - 2013-07-11 18:24 - 00000000 ____D () C:\windows\system32\MRT
2014-01-15 21:46 - 2012-11-27 15:21 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-01-15 21:44 - 2012-11-26 17:45 - 86054176 _____ (Microsoft Corporation) C:\windows\system32\MRT.exe

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

LastRegBack: 2014-02-08 08:54

==================== End Of Log ============================

markus1766 · #2 Příspěvek od **markus1766** » 13 úno 2014 18:19

Prikladá screen

#3 Příspěvek od **JaRon** » 14 úno 2014 08:15

odinstaluj Advanced SystemCare 7 a uz to tam NIKDY neinstaluj
+
prescanuj PC s MBAM - kompletna kontrola

markus1766 · #4 Příspěvek od **markus1766** » 14 úno 2014 19:10

Advanced odinštalovaný, MBAM kompletná kontrola spravená.
Mám spraviť ešte dáky log?
ďakujem

#5 Příspěvek od **JaRon** » 15 úno 2014 10:47

dufam, ze co mbam nasiel si dal odstranit ,,,
+
pouzi este http://forum.viry.cz/viewtopic.php?f=24&t=102308

markus1766 · #6 Příspěvek od **markus1766** » 15 úno 2014 13:10

log mbam v prílohe +USBFix

############################## | UsbFix V 7.134 | [Deletion]

User: Miro Markus Marko (Administrator) # PC
Updated 06/09/2013 by El Desaparecido
Started at 12:42:53 | 15/02/2014

Website: http://www.sosvirus.net/
Upload Malware: http://www.sosvirus.net/upload_malware.php
Contact: eldesaparecido@sosvirus.net

PC: LENOVO (20079 ) (x64-based PC)
CPU: Intel(R) Celeron(R) CPU B820 @ 1.70GHz (1700)
RAM -> [Total : 4040 | Free : 2201]
BIOS: InsydeH2O Version 03.60.4240CN32WW(V2.18)
BOOT: Normal boot

OS: Microsoft Windows 7 Home Premium (6.1.7601 64-Bit) # Service Pack 1
WB: Windows Internet Explorer 11.0.9600.16518

SC: Security Center Service [Enabled]
WU: Windows Update Service [Enabled]
AV: Microsoft Security Essentials [(!) Disabled | Updated]
FW: Windows FireWall Service [Enabled]

C:\ (%systemdrive%) -> Fixed drive # 422 Gb (185 Mb free - 44%) [] # NTFS
D:\ -> Fixed drive # 29 Gb (27 Mb free - 92%) [LENOVO] # NTFS
E:\ -> Removable drive # 7 Gb (7 Mb free - 99%) [KINGSTON] # FAT32
F:\ -> CD-ROM
H:\ -> Removable drive # 4 Gb (2 Mb free - 43%) [] # FAT32

################## | El Desaparecido Section |

HKLM\SOFTWARE | Run : [IAStorIcon] - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
HKLM\SOFTWARE | Run : [VeriFaceManager] - C:\Program Files (x86)\Lenovo\VeriFace\PManage.exe
HKLM\SOFTWARE | Run : [GrooveMonitor] - "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
HKLM\SOFTWARE | Run : [Adobe ARM] - "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
HKLM\SOFTWARE\wow6432Node | Run : [IAStorIcon] - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
HKLM\SOFTWARE\wow6432Node | Run : [VeriFaceManager] - C:\Program Files (x86)\Lenovo\VeriFace\PManage.exe
HKLM\SOFTWARE\wow6432Node | Run : [GrooveMonitor] - "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
HKLM\SOFTWARE\wow6432Node | Run : [Adobe ARM] - "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
HKLM\SOFTWARE | RunOnce : [] -
HKLM\SOFTWARE\wow6432Node | RunOnce : [] -
HKU\S-1-5-19\SOFTWARE | Run : [Sidebar] - %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
HKU\S-1-5-20\SOFTWARE | Run : [Sidebar] - %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
HKU\S-1-5-21-4156330298-3057586047-1619611713-1000\SOFTWARE | Run : [swg] - "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
HKU\S-1-5-19\SOFTWARE | RunOnce : [mctadmin] - C:\Windows\System32\mctadmin.exe
HKU\S-1-5-20\SOFTWARE | RunOnce : [mctadmin] - C:\Windows\System32\mctadmin.exe

################## | Stopped processes |

Stopped! c:\Program Files\Microsoft Security Client\MsMpEng.exe (836)
Stopped! C:\windows\System32\spoolsv.exe (1344)
Stopped! C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (1492)
Stopped! C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe (1548)
Stopped! C:\Program Files (x86)\OScam\bin\oscamsvc.exe (1684)
Stopped! C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe (1728)
Stopped! C:\windows\System32\alg.exe (2032)
Stopped! C:\windows\system32\taskhost.exe (2944)
Stopped! C:\windows\Explorer.EXE (3060)
Stopped! C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (2512)
Stopped! C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe (2540)
Stopped! C:\Program Files (x86)\Lenovo\Energy Management\utility.exe (2548)
Stopped! C:\Windows\System32\igfxtray.exe (2712)
Stopped! C:\Windows\System32\hkcmd.exe (2772)
Stopped! C:\Windows\System32\igfxpers.exe (2140)
Stopped! C:\Program Files\Microsoft Security Client\msseces.exe (2840)
Stopped! C:\Windows\WindowsMobile\wmdc.exe (2600)
Stopped! C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (3164)
Stopped! C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (3308)
Stopped! C:\Program Files (x86)\Lenovo\VeriFace\PManage.exe (3316)
Stopped! C:\windows\system32\SearchIndexer.exe (3452)
Stopped! C:\Program Files\Windows Media Player\wmpnetwk.exe (3628)
Stopped! C:\windows\system32\taskeng.exe (2852)
Stopped! C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe (2112)
Stopped! C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (2392)
Stopped! C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (944)
Stopped! C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (3924)
Stopped! C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe (1632)
Stopped! C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (756)
Stopped! C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (3404)
Stopped! C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (3108)
Stopped! C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (632)
Stopped! C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (2232)
Stopped! C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (4152)
Stopped! C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (3052)
Stopped! C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (3596)
Stopped! C:\windows\system32\taskeng.exe (2348)
Stopped! C:\windows\System32\WUDFHost.exe (4908)

################## | Files # Infected Folders |

Deleted ! H:\.wftfiles\wft.js
Deleted ! H:\format.vbs

(!) Temporary files deleted.

################## | Registry |

################## | Mountpoints2 |

################## | Listing |

[01/10/2013 - 19:35:11 | SHD ] C:\$Recycle.Bin
[17/12/2013 - 16:09:31 | D ] C:\4bdb0806263d4df45153ef1d
[05/02/2014 - 21:32:29 | N | 0] C:\asc_rdflag
[05/01/2002 - 02:18:20 | N | 84992] C:\atl70.dll
[14/07/2009 - 06:08:56 | SHD ] C:\Documents and Settings
[13/02/2014 - 14:45:22 | D ] C:\Extracted
[15/02/2014 - 07:12:07 | N | 1105233] C:\FaceProv.log
[27/11/2012 - 15:49:08 | D ] C:\flexlm
[13/02/2014 - 17:57:19 | D ] C:\FRST
[30/12/2013 - 09:11:45 | D ] C:\Golden Media SPARK Reloaded
[15/02/2014 - 07:11:17 | ASH | 3177074688] C:\hiberfil.sys
[26/11/2012 - 18:12:08 | D ] C:\Intel
[14/02/2014 - 19:57:25 | D ] C:\Markus
[27/11/2012 - 15:20:44 | RHD ] C:\MSOCache
[08/10/2013 - 16:52:34 | D ] C:\origo
[15/02/2014 - 07:11:20 | ASH | 4236099584] C:\pagefile.sys
[28/11/2012 - 20:19:38 | D ] C:\PerfLogs
[26/12/2013 - 09:46:38 | D ] C:\Program Files
[14/02/2014 - 20:01:35 | D ] C:\Program Files (x86)
[14/02/2014 - 20:01:35 | HD ] C:\ProgramData
[16/12/2012 - 15:55:50 | D ] C:\Rbackup
[26/11/2012 - 17:11:11 | SHD ] C:\Recovery
[15/02/2014 - 07:01:03 | SHD ] C:\System Volume Information
[27/11/2012 - 15:57:58 | D ] C:\totalcmd
[15/02/2014 - 12:45:51 | D ] C:\UsbFix
[14/02/2014 - 07:20:20 | N | 8835] C:\UsbFix [Clean 2] PC.txt
[14/02/2014 - 17:01:07 | N | 8397] C:\UsbFix [Clean 4] PC.txt
[15/02/2014 - 12:46:08 | A | 6942] C:\UsbFix [Clean 5] PC.txt
[21/08/2012 - 09:47:10 | D ] C:\UserGuidePDF
[26/11/2012 - 17:13:08 | D ] C:\Users
[14/02/2014 - 15:37:07 | D ] C:\Windows
[26/11/2012 - 17:15:49 | SHD ] D:\$RECYCLE.BIN
[21/08/2012 - 10:02:59 | D ] D:\Application
[14/02/2014 - 17:01:07 | RASHD ] D:\Autorun.inf
[21/08/2012 - 10:05:38 | D ] D:\drivers
[21/08/2012 - 09:11:35 | SHD ] D:\System Volume Information
[13/02/2014 - 14:45:28 | D ] E:\Dream Hyperion
[29/11/2013 - 16:29:44 | D ] E:\kup
[14/02/2014 - 17:01:08 | RASHD ] E:\Autorun.inf
[16/01/2011 - 13:39:38 | D ] H:\Private
[16/01/2011 - 21:32:54 | SHD ] H:\system
[18/01/2011 - 09:15:40 | D ] H:\Sounds
[19/01/2011 - 22:07:02 | D ] H:\cities
[14/01/2011 - 20:12:40 | D ] H:\pb
[14/01/2011 - 20:12:42 | D ] H:\lifeblog
[16/09/2011 - 17:42:58 | D ] H:\Images
[16/09/2011 - 17:30:26 | D ] H:\Videos
[01/01/2008 - 09:23:24 | N | 161] H:\qf
[15/01/2011 - 00:47:08 | D ] H:\Others
[01/01/2009 - 14:25:42 | D ] H:\Games
[14/01/2011 - 17:52:26 | D ] H:\Hudba
[10/05/2013 - 22:53:50 | D ] H:\Sygic
[10/05/2013 - 23:03:16 | D ] H:\LoquendoTTS
[05/08/2013 - 10:48:26 | D ] H:\dreamDroid
[01/01/2009 - 14:25:44 | D ] H:\Installs
[28/08/2009 - 10:10:00 | N | 74902] H:\DevIcon.fil
[28/08/2009 - 10:10:00 | N | 1579] H:\DevLogo.fil
[02/01/2009 - 09:36:44 | D ] H:\sys
[20/01/2011 - 15:00:34 | N | 0] H:\358307031591842.ndif
[02/01/2009 - 09:36:52 | D ] H:\resource
[19/01/2011 - 19:13:20 | N | 2641] H:\audio_plugin_archive.txt
[19/01/2011 - 20:16:24 | N | 384] H:\HX_AudioController_4_0.cfg
[25/01/2011 - 13:54:02 | N | 124] H:\HXMDEngine_3_2.cfg
[19/01/2011 - 19:13:18 | N | 1362] H:\hxmetadata_archive.txt
[01/01/2009 - 13:57:04 | N | 1964] H:\hxthumbnail_archive.txt
[25/01/2011 - 13:54:26 | N | 126] H:\HXTNEngine_3_2.cfg
[19/01/2011 - 18:48:34 | N | 24339] H:\MdfPluginArchive.txt
[19/01/2011 - 18:48:34 | N | 5266] H:\plugin_archive.txt
[26/01/2011 - 10:29:04 | N | 423] H:\R1_Mobile_4_0.cfg
[02/08/2009 - 08:45:00 | D ] H:\data
[01/01/2010 - 00:01:00 | N | 0] H:\GT-E2550.samsung
[01/01/2010 - 00:01:00 | D ] H:\Music
[01/01/2010 - 00:01:00 | D ] H:\Other files
[01/01/2010 - 18:29:00 | N | 20] H:\mm_sec.dat
[01/01/2008 - 09:18:24 | D ] H:\My Videos
[15/09/2011 - 16:27:46 | D ] H:\LOST.DIR
[08/02/2014 - 09:58:00 | D ] H:\.android_secure
[10/05/2013 - 22:17:36 | D ] H:\Android
[14/02/2014 - 09:14:42 | D ] H:\DCIM
[05/01/2014 - 13:42:16 | D ] H:\.bookmark_thumb1
[22/01/2014 - 11:35:32 | D ] H:\download
[16/09/2011 - 20:06:14 | D ] H:\rosie_scroll
[18/09/2011 - 13:40:14 | D ] H:\media
[21/09/2011 - 19:11:30 | D ] H:\downloads
[25/06/2013 - 20:09:12 | D ] H:\.fdhttpd
[23/11/2011 - 21:42:54 | D ] H:\Notifications
[20/09/2011 - 20:04:44 | D ] H:\Alarms
[12/11/2011 - 19:54:30 | D ] H:\Ringtones
[11/05/2013 - 07:44:14 | N | 90] H:\.cntrsa1
[08/10/2011 - 18:56:10 | N | 40] H:\.cntrsa
[09/10/2011 - 19:02:42 | D ] H:\doodlemobile_platform
[11/11/2011 - 13:13:54 | D ] H:\.ringtonetrimmer
[06/02/2014 - 13:02:06 | D ] H:\.data
[27/12/2011 - 23:10:30 | D ] H:\ZombieBooth
[08/02/2012 - 14:26:02 | D ] H:\picture
[02/02/2012 - 16:47:46 | D ] H:\.quickoffice
[07/02/2012 - 18:52:52 | D ] H:\.wftfiles
[08/02/2012 - 12:40:46 | N | 97514] H:\pcsc_pcsc_00001.vcf
[05/07/2012 - 19:04:32 | D ] H:\temp
[22/04/2012 - 22:05:06 | D ] H:\openfeint
[26/05/2012 - 13:13:34 | N | 15] H:\.stngs
[12/06/2012 - 10:09:14 | D ] H:\droidhen
[03/07/2012 - 07:33:38 | D ] H:\Pictures
[06/07/2012 - 18:28:44 | D ] H:\.FxCameraTmp
[14/10/2013 - 17:56:18 | D ] H:\bugreports
[02/02/2013 - 20:00:44 | D ] H:\.dmplatform
[04/03/2013 - 19:27:52 | D ] H:\My Documents
[10/05/2013 - 21:03:18 | D ] H:\MoreExchange

################## | Vaccin |

C:\Autorun.inf -> Vaccine created by UsbFix (El Desaparecido)
D:\Autorun.inf -> Vaccine created by UsbFix (El Desaparecido)
E:\Autorun.inf -> Vaccine created by UsbFix (El Desaparecido)
H:\Autorun.inf -> Vaccine created by UsbFix (El Desaparecido)

################## | E.O.F | http://www.sosvirus.net |

#7 Příspěvek od **JaRon** » 16 úno 2014 17:56

MBAM mozes odinstalovat
je este nejaky problem

markus1766 · #8 Příspěvek od **markus1766** » 16 úno 2014 20:09

vyzerá to v poriadku

ďakujem za pomoc ste super

#9 Příspěvek od **JaRon** » 17 úno 2014 07:03

rado sa stalo

VIRY.CZ

Prosim o kontrolu

Prosim o kontrolu

Re: Prosim o kontrolu

Re: Prosim o kontrolu

Re: Prosim o kontrolu

Re: Prosim o kontrolu

Re: Prosim o kontrolu

Re: Prosim o kontrolu

Re: Prosim o kontrolu

Re: Prosim o kontrolu