Zavirovaný systém - uhorisko

[uhorisko]

Zdravím. Mám rovnaký problém. Vytvoril som aj usb cez HitmanPro ale bez výsledne. Viete pomôcť?

[vyosek]

Zdravim

Zkuste tedy toto http://forum.viry.cz/viewtopic.php?f=24&t=130783

[uhorisko]

Zdravím, log s FRST :
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 17-04-2014 01
Ran by Matus (administrator) on MATUS-PC on 19-04-2014 14:44:42
Running from G:\
Windows 7 Ultimate Service Pack 1 (X64) OS Language: 041B
Internet Explorer Version 10
Boot Mode: Safe Mode (minimal)

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(Microsoft Corporation) C:\Windows\system32\cmd.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [Nvtmru] => "C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe"
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2234144 2014-01-21] (NVIDIA Corporation)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [926896 2012-09-23] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [3764024 2013-12-22] (AVAST Software)
HKLM-x32\...\Run: [NBKeyScan] => C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBKeyScan.exe [1836328 2007-09-20] (Nero AG)
HKU\S-1-5-21-1994680380-1796185773-3098935487-1000\...\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] => C:\Program Files (x86)\Common Files\Nero\Lib\NMBgMonitor.exe [202024 2007-10-23] (Nero AG)
HKU\S-1-5-21-1994680380-1796185773-3098935487-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3675352 2013-10-28] (Disc Soft Ltd)
HKU\S-1-5-21-1994680380-1796185773-3098935487-1000\...\Run: [EA Core] => "C:\Program Files (x86)\Electronic Arts\EADM\Core.exe" -silent
HKU\S-1-5-21-1994680380-1796185773-3098935487-1000\...\Winlogon: [Shell] "C:\Users\Matus\AppData\Local\Temp\Rar$EXa0.544\Battlefield 4 Multiplayer Patcher.exe" [639112 2014-01-25] (Askarali Azimov) <==== ATTENTION

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x5AA043017EFECE01
SearchScopes: HKCU - {54BFFA2E-80CC-4E35-A982-D79FCC5AF375} URL = http://tv.seznam.cz/hledej?w={searchTer ... arch_13415
BHO: iWebar - {11111111-1111-1111-1111-110311551110} - C:\Program Files (x86)\iWebar\iWebar-bho64.dll No File
BHO: Sense - {11111111-1111-1111-1111-110411821192} - C:\Program Files (x86)\Sense\Sense-bho64.dll No File
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO: Shopper Pro - {A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C} - C:\ProgramData\ShopperPro\ShopperPro64.dll No File
BHO: Skype add-on for Internet Explorer - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
BHO-x32: iWebar - {11111111-1111-1111-1111-110311551110} - C:\Program Files (x86)\iWebar\iWebar-bho.dll No File
BHO-x32: Sense - {11111111-1111-1111-1111-110411821192} - C:\Program Files (x86)\Sense\Sense-bho.dll No File
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO-x32: Shopper Pro - {A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C} - C:\ProgramData\ShopperPro\ShopperPro.dll No File
BHO-x32: Skype Browser Helper - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
Toolbar: HKLM - avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM-x32 - avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: ubisoft.com/uplaypc - C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2013-12-22]

Chrome:
=======
CHR Extension: (iWebar) - C:\Users\Matus\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam [2014-04-07]
CHR Extension: (avast! Online Security) - C:\Users\Matus\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2013-12-24]
CHR Extension: (Skype Click to Call) - C:\Users\Matus\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2014-01-05]
CHR Extension: (Peňaženka Google) - C:\Users\Matus\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-12-23]
CHR Extension: (ShopperPro) - C:\Users\Matus\AppData\Local\Google\Chrome\User Data\Default\Extensions\ojhagnahfpegocdhlopgljpaafeogmcc [2014-04-07]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2013-12-22]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2014-03-03]
CHR HKLM-x32\...\Chrome\Extension: [ojhagnahfpegocdhlopgljpaafeogmcc] - C:\Program Files (x86)\ShopperPro\ShopperPro.crx [2014-03-03]

==================== Services (Whitelisted) =================

S2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2013-12-22] (AVAST Software)
S2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1363584 2014-03-03] (Microsoft Corporation)
S2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1748608 2014-03-03] (Microsoft Corporation)
S2 Nero BackItUp Scheduler 3; C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBService.exe [853288 2007-09-20] (Nero AG)
S3 NMIndexingService; C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexingService.exe [382248 2007-10-23] (Nero AG)
S2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1593632 2014-01-21] (NVIDIA Corporation)
S2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [16939296 2014-01-21] (NVIDIA Corporation)
S2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [75136 2014-03-24] ()
S2 DCE; C:\Program Files\DCE\dce.exe [X]

==================== Drivers (Whitelisted) ====================

S2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [78648 2013-12-22] (AVAST Software)
S1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [92544 2013-12-22] (AVAST Software)
S0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2013-12-22] ()
S1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1034464 2013-12-22] (AVAST Software)
S1 aswSP; C:\Windows\system32\drivers\aswSP.sys [422216 2013-12-22] (AVAST Software)
S3 aswStm; C:\Windows\system32\drivers\aswStm.sys [79672 2013-12-22] (AVAST Software)
S0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [207904 2013-12-22] ()
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2014-01-30] (Disc Soft Ltd)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [8192 2005-03-29] ()
S3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [39200 2013-12-27] (NVIDIA Corporation)
S3 VGPU; System32\drivers\rdvgkmd.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-04-19 14:44 - 2014-04-19 14:44 - 00000000 ____D () C:\FRST
2014-04-18 20:05 - 2014-04-18 20:05 - 00003224 ____N () C:\bootsqm.dat
2014-04-18 20:05 - 2014-04-18 20:05 - 00000000 __SHD () C:\found.000
2014-04-17 12:27 - 2014-01-25 13:57 - 00000496 _____ () C:\Users\Matus\Desktop\Read me.txt
2014-04-17 12:27 - 2013-11-04 22:54 - 10236045 _____ () C:\Users\Matus\Desktop\ucx.dll
2014-04-17 11:00 - 2014-04-17 11:49 - 00007464 _____ () C:\Users\Matus\Documents\TombRaider.log
2014-04-14 16:10 - 2014-04-14 16:10 - 00001001 _____ () C:\Users\Matus\Desktop\HMA.lnk
2014-04-14 14:35 - 2014-04-14 14:36 - 00000000 ____D () C:\Users\Matus\Documents\Battlefield 4
2014-04-14 14:34 - 2014-04-14 14:34 - 00000650 _____ () C:\Users\Public\Desktop\Battlefield 4.lnk
2014-04-14 14:34 - 2014-04-14 14:34 - 00000634 _____ () C:\Users\Public\Desktop\Battlefield 4(64 bit).lnk
2014-04-14 14:33 - 2014-04-14 14:34 - 00000000 ____D () C:\ProgramData\Package Cache
2014-04-14 14:32 - 2014-04-14 14:32 - 00018473 _____ () C:\Windows\DirectX.log
2014-04-14 13:18 - 2014-04-14 13:20 - 00000000 ____D () C:\Users\Matus\Documents\FIFA 14
2014-04-11 23:31 - 2014-04-11 23:31 - 00001174 _____ () C:\Users\Matus\Desktop\mafia2 - odkaz.lnk
2014-04-11 22:14 - 2010-09-17 17:03 - 00000000 ____D () C:\Users\Matus\Desktop\CrackFix - SKIDROW
2014-04-11 22:14 - 2010-09-17 17:03 - 00000000 ____D () C:\Users\Matus\Desktop\Crack v3 - CFB
2014-04-11 14:27 - 2014-04-11 14:27 - 00010313 _____ () C:\Users\Matus\Downloads\Zadanie _6_Hubinová.xlsx
2014-04-11 14:26 - 2014-04-11 14:26 - 00014553 _____ () C:\Users\Matus\Downloads\Zadanie_6_Durekova.xlsx
2014-04-11 14:23 - 2014-04-11 14:23 - 00133581 _____ () C:\Users\Matus\Downloads\Zadanie_5_ Hubinová.xlsx
2014-04-09 13:04 - 2014-04-09 13:04 - 00000967 _____ () C:\Users\Public\Desktop\The Sims™ 2 Sídla a zahrady Kolekce.lnk
2014-04-09 13:04 - 2014-04-09 13:04 - 00000368 _____ () C:\Users\Public\Desktop\www.thesims3.com.lnk
2014-04-09 12:44 - 2014-04-09 12:46 - 00000000 ___RD () C:\Users\Matus\Desktop\Torrent
2014-04-09 12:25 - 2014-04-09 12:25 - 00000917 _____ () C:\Users\Public\Desktop\The Sims 2 Ve světě podnikání.lnk
2014-04-09 11:44 - 2014-04-09 11:44 - 00003750 _____ () C:\Windows\System32\Tasks\DCEWelcome
2014-04-08 21:07 - 2014-04-08 21:07 - 00000980 _____ () C:\Users\Public\Desktop\The Sims™ 2 Pro luxusní život - Kolekce.lnk
2014-04-08 11:44 - 2014-04-19 14:28 - 00006927 _____ () C:\Windows\setupact.log
2014-04-08 11:44 - 2014-04-08 11:44 - 00000000 _____ () C:\Windows\setuperr.log
2014-04-07 16:57 - 2014-04-07 16:57 - 00000000 ____D () C:\Users\Public\Documents\EA Games
2014-04-07 16:50 - 2014-04-07 16:50 - 00000989 _____ () C:\Users\Public\Desktop\The Sims™ 2 Double Deluxe.lnk
2014-04-07 16:49 - 2014-04-07 16:49 - 00000000 ____D () C:\Users\Matus\Documents\EA Games
2014-04-06 21:35 - 2014-04-06 21:35 - 00000000 ____D () C:\Users\Matus\AppData\Local\SniperV2
2014-04-06 21:34 - 2014-04-17 11:00 - 00000000 ____D () C:\Users\Matus\AppData\Local\SKIDROW
2014-03-29 00:14 - 2014-03-29 00:14 - 00000000 ____D () C:\Users\Matus\AppData\Roaming\Macromedia
2014-03-27 12:20 - 2014-03-27 12:31 - 00000000 ____D () C:\ProgramData\Origin
2014-03-27 12:20 - 2014-03-27 12:20 - 00000000 ____D () C:\Users\Matus\AppData\Roaming\Origin
2014-03-27 11:52 - 2014-04-05 21:34 - 00000000 ____D () C:\ProgramData\Electronic Arts
2014-03-27 11:50 - 2014-03-27 12:19 - 00000000 ____D () C:\Program Files (x86)\Electronic Arts
2014-03-27 11:50 - 2014-03-27 11:50 - 00000000 ____D () C:\Windows\SysWOW64\Macromed
2014-03-27 00:09 - 2014-03-27 00:09 - 00001496 _____ () C:\Users\Matus\Desktop\Matúš.lnk
2014-03-24 22:06 - 2014-03-24 22:07 - 00000000 ____D () C:\Users\Matus\Desktop\Nový priečinok
2014-03-24 15:33 - 2014-03-24 15:33 - 00000000 ____D () C:\Users\Matus\Desktop\audi
2014-03-23 14:01 - 2014-03-24 22:31 - 00000000 ____D () C:\Users\Matus\AppData\Local\Ubisoft Game Launcher
2014-03-23 13:58 - 2014-03-24 18:52 - 00000000 ____D () C:\ProgramData\Ubisoft
2014-03-23 13:58 - 2014-03-23 13:58 - 00000000 ____D () C:\Users\Matus\AppData\Roaming\Ubisoft
2014-03-23 13:57 - 2014-03-23 13:57 - 00000000 ____D () C:\Program Files (x86)\Ubisoft
2014-03-23 13:56 - 2008-10-15 07:22 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll
2014-03-23 13:56 - 2008-10-15 07:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll
2014-03-23 13:56 - 2008-10-15 07:22 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll
2014-03-23 13:56 - 2008-10-15 07:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll
2014-03-23 13:56 - 2008-10-15 07:22 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll
2014-03-23 13:56 - 2008-10-15 07:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll

==================== One Month Modified Files and Folders =======

2014-04-19 14:44 - 2014-04-19 14:44 - 00000000 ____D () C:\FRST
2014-04-19 14:35 - 2009-07-14 06:45 - 00026352 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-04-19 14:35 - 2009-07-14 06:45 - 00026352 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-04-19 14:31 - 2014-03-19 18:02 - 00213448 _____ () C:\Windows\WindowsUpdate.log
2014-04-19 14:28 - 2014-04-08 11:44 - 00006927 _____ () C:\Windows\setupact.log
2014-04-19 14:28 - 2013-12-25 16:15 - 00002260 _____ () C:\Windows\Tasks\iWebar-firefoxinstaller.job
2014-04-19 14:28 - 2013-12-25 16:15 - 00001592 _____ () C:\Windows\Tasks\iWebar-updater.job
2014-04-19 14:28 - 2013-12-25 16:15 - 00001494 _____ () C:\Windows\Tasks\iWebar-codedownloader.job
2014-04-19 14:28 - 2013-12-25 16:15 - 00001394 _____ () C:\Windows\Tasks\iWebar-enabler.job
2014-04-19 14:28 - 2013-12-25 16:14 - 00002230 _____ () C:\Windows\Tasks\iWebar-chromeinstaller.job
2014-04-19 14:28 - 2013-12-25 02:23 - 00002256 _____ () C:\Windows\Tasks\Sense-firefoxinstaller.job
2014-04-19 14:28 - 2013-12-25 02:23 - 00001488 _____ () C:\Windows\Tasks\Sense-codedownloader.job
2014-04-19 14:28 - 2013-12-23 20:26 - 00000930 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-04-19 14:28 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-04-19 14:27 - 2013-12-19 20:13 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-04-19 10:01 - 2009-07-14 07:13 - 00781298 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-04-19 09:49 - 2013-12-23 20:26 - 00000934 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-04-18 20:05 - 2014-04-18 20:05 - 00003224 ____N () C:\bootsqm.dat
2014-04-18 20:05 - 2014-04-18 20:05 - 00000000 __SHD () C:\found.000
2014-04-18 17:46 - 2013-12-25 16:14 - 00000000 ____D () C:\Program Files (x86)\iWebar
2014-04-18 17:46 - 2013-12-25 02:23 - 00000000 ____D () C:\Program Files (x86)\Sense
2014-04-18 17:46 - 2013-12-25 00:14 - 00000000 ____D () C:\ProgramData\ShopperPro
2014-04-18 17:46 - 2013-12-25 00:13 - 00000000 ____D () C:\Program Files (x86)\ShopperPro
2014-04-18 17:13 - 2013-12-25 00:13 - 00000000 ____D () C:\Program Files\DCE
2014-04-17 13:23 - 2013-12-22 14:10 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-04-17 11:49 - 2014-04-17 11:00 - 00007464 _____ () C:\Users\Matus\Documents\TombRaider.log
2014-04-17 11:00 - 2014-04-06 21:34 - 00000000 ____D () C:\Users\Matus\AppData\Local\SKIDROW
2014-04-17 01:15 - 2014-01-04 23:13 - 00000000 ____D () C:\Users\Matus\AppData\Roaming\Skype
2014-04-16 20:43 - 2013-12-27 16:58 - 00000000 ____D () C:\Users\Matus\Desktop\mama
2014-04-14 16:10 - 2014-04-14 16:10 - 00001001 _____ () C:\Users\Matus\Desktop\HMA.lnk
2014-04-14 14:36 - 2014-04-14 14:35 - 00000000 ____D () C:\Users\Matus\Documents\Battlefield 4
2014-04-14 14:34 - 2014-04-14 14:34 - 00000650 _____ () C:\Users\Public\Desktop\Battlefield 4.lnk
2014-04-14 14:34 - 2014-04-14 14:34 - 00000634 _____ () C:\Users\Public\Desktop\Battlefield 4(64 bit).lnk
2014-04-14 14:34 - 2014-04-14 14:33 - 00000000 ____D () C:\ProgramData\Package Cache
2014-04-14 14:32 - 2014-04-14 14:32 - 00018473 _____ () C:\Windows\DirectX.log
2014-04-14 13:20 - 2014-04-14 13:18 - 00000000 ____D () C:\Users\Matus\Documents\FIFA 14
2014-04-11 23:31 - 2014-04-11 23:31 - 00001174 _____ () C:\Users\Matus\Desktop\mafia2 - odkaz.lnk
2014-04-11 14:27 - 2014-04-11 14:27 - 00010313 _____ () C:\Users\Matus\Downloads\Zadanie _6_Hubinová.xlsx
2014-04-11 14:26 - 2014-04-11 14:26 - 00014553 _____ () C:\Users\Matus\Downloads\Zadanie_6_Durekova.xlsx
2014-04-11 14:23 - 2014-04-11 14:23 - 00133581 _____ () C:\Users\Matus\Downloads\Zadanie_5_ Hubinová.xlsx
2014-04-10 01:54 - 2013-12-25 00:12 - 00000000 ____D () C:\Users\Matus\AppData\Roaming\uTorrent
2014-04-09 13:04 - 2014-04-09 13:04 - 00000967 _____ () C:\Users\Public\Desktop\The Sims™ 2 Sídla a zahrady Kolekce.lnk
2014-04-09 13:04 - 2014-04-09 13:04 - 00000368 _____ () C:\Users\Public\Desktop\www.thesims3.com.lnk
2014-04-09 12:46 - 2014-04-09 12:44 - 00000000 ___RD () C:\Users\Matus\Desktop\Torrent
2014-04-09 12:25 - 2014-04-09 12:25 - 00000917 _____ () C:\Users\Public\Desktop\The Sims 2 Ve světě podnikání.lnk
2014-04-09 12:25 - 2013-12-23 21:45 - 00000000 ____D () C:\Users\Matus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2014-04-09 11:44 - 2014-04-09 11:44 - 00003750 _____ () C:\Windows\System32\Tasks\DCEWelcome
2014-04-08 21:07 - 2014-04-08 21:07 - 00000980 _____ () C:\Users\Public\Desktop\The Sims™ 2 Pro luxusní život - Kolekce.lnk
2014-04-08 21:05 - 2014-01-30 11:21 - 00000000 ____D () C:\Users\Matus\AppData\Roaming\DAEMON Tools Lite
2014-04-08 16:38 - 2013-12-12 17:20 - 00000000 ___RD () C:\Users\Matus\Desktop\Aďuš
2014-04-08 11:44 - 2014-04-08 11:44 - 00000000 _____ () C:\Windows\setuperr.log
2014-04-07 16:57 - 2014-04-07 16:57 - 00000000 ____D () C:\Users\Public\Documents\EA Games
2014-04-07 16:50 - 2014-04-07 16:50 - 00000989 _____ () C:\Users\Public\Desktop\The Sims™ 2 Double Deluxe.lnk
2014-04-07 16:49 - 2014-04-07 16:49 - 00000000 ____D () C:\Users\Matus\Documents\EA Games
2014-04-07 12:07 - 2013-12-23 21:45 - 00000000 ____D () C:\Users\Matus\AppData\Roaming\NVIDIA
2014-04-06 23:04 - 2013-12-26 11:53 - 00000069 _____ () C:\Windows\NeroDigital.ini
2014-04-06 21:35 - 2014-04-06 21:35 - 00000000 ____D () C:\Users\Matus\AppData\Local\SniperV2
2014-04-06 21:32 - 2013-12-21 20:54 - 00000000 ____D () C:\Windows\SysWOW64\directx
2014-04-05 21:34 - 2014-03-27 11:52 - 00000000 ____D () C:\ProgramData\Electronic Arts
2014-04-05 21:33 - 2013-12-27 18:12 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-04-04 14:53 - 2013-12-23 21:23 - 00000000 ____D () C:\Users\Matus\Documents\Euro Truck Simulator 2
2014-04-03 20:38 - 2014-02-10 23:49 - 00000000 ____D () C:\ProgramData\Codemasters
2014-04-03 20:38 - 2013-12-12 17:26 - 00000000 ____D () C:\Users\Matus\Documents\My Games
2014-03-30 21:58 - 2013-12-19 20:06 - 00000000 ____D () C:\Users\Matus\AppData\Roaming\vlc
2014-03-29 00:14 - 2014-03-29 00:14 - 00000000 ____D () C:\Users\Matus\AppData\Roaming\Macromedia
2014-03-28 10:43 - 2013-12-23 20:26 - 00003930 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-03-28 10:43 - 2013-12-23 20:26 - 00003678 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-03-27 12:31 - 2014-03-27 12:20 - 00000000 ____D () C:\ProgramData\Origin
2014-03-27 12:24 - 2009-07-14 05:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared
2014-03-27 12:20 - 2014-03-27 12:20 - 00000000 ____D () C:\Users\Matus\AppData\Roaming\Origin
2014-03-27 12:19 - 2014-03-27 11:50 - 00000000 ____D () C:\Program Files (x86)\Electronic Arts
2014-03-27 12:04 - 2014-02-14 13:10 - 00000000 ____D () C:\Windows\system32\appmgmt
2014-03-27 11:50 - 2014-03-27 11:50 - 00000000 ____D () C:\Windows\SysWOW64\Macromed
2014-03-27 00:09 - 2014-03-27 00:09 - 00001496 _____ () C:\Users\Matus\Desktop\Matúš.lnk
2014-03-24 22:31 - 2014-03-23 14:01 - 00000000 ____D () C:\Users\Matus\AppData\Local\Ubisoft Game Launcher
2014-03-24 22:07 - 2014-03-24 22:06 - 00000000 ____D () C:\Users\Matus\Desktop\Nový priečinok
2014-03-24 18:52 - 2014-03-23 13:58 - 00000000 ____D () C:\ProgramData\Ubisoft
2014-03-24 18:51 - 2014-03-16 15:20 - 00189248 _____ () C:\Windows\SysWOW64\PnkBstrB.exe
2014-03-24 18:51 - 2014-03-16 15:20 - 00075136 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2014-03-24 15:33 - 2014-03-24 15:33 - 00000000 ____D () C:\Users\Matus\Desktop\audi
2014-03-23 13:58 - 2014-03-23 13:58 - 00000000 ____D () C:\Users\Matus\AppData\Roaming\Ubisoft
2014-03-23 13:57 - 2014-03-23 13:57 - 00000000 ____D () C:\Program Files (x86)\Ubisoft
2014-03-23 11:19 - 2014-03-16 15:20 - 00291944 _____ () C:\Windows\SysWOW64\PnkBstrB.xtr
2014-03-20 22:51 - 2013-12-26 16:50 - 00000000 ____D () C:\Users\Matus\Downloads\GTA

Some content of TEMP:
====================
C:\Users\Matus\AppData\Local\Temp\AutoRun.exe
C:\Users\Matus\AppData\Local\Temp\AutoRunGUI.dll
C:\Users\Matus\AppData\Local\Temp\comver.dll
C:\Users\Matus\AppData\Local\Temp\drm_dyndata_7360010.dll
C:\Users\Matus\AppData\Local\Temp\drm_dyndata_7400008.dll
C:\Users\Matus\AppData\Local\Temp\VP6Install.exe
C:\Users\Matus\AppData\Local\Temp\VP6VFW.dll


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-04-11 10:18

==================== End Of Log ============================

[vyosek]

Jen se zeptam pouzivate legalni operacni system, nejvyssi licence Ultimate zrovna neni bezna domaci verze

[uhorisko]

Zdravim. Ano system je legalny, je tam nalepka na boku skrinky.

[vyosek]

Stahnete Malwarebytes' Anti-Malware (zkracene MBAM) http://forum.viry.cz/viewtopic.php?f=29&t=115222

• Provedte aktualizaci
• Provedte uplny sken - nic nemazte
• MBAM miva obcas falesne detekce, proto vlozte log do prispevku a pockejte na posouzeni

[uhorisko]

Ospravedlňujem sa ale musel som to surne ešte v deň podania logu vyriešiť ale aj tak Vám patrí obrovská vďaka.

Podla logu som odstránil tento exáč :
HKU\S-1-5-21-1994680380-1796185773-3098935487-1000\...\Winlogon: [Shell] "C:\Users\Matus\AppData\Local\Temp\Rar$EXa0.544\Battlefield 4 Multiplayer Patcher.exe" [639112 2014-01-25] (Askarali Azimov) <==== ATTENTION

Počítač sa už potom normálne spustil, prekontroloval som cez Mbam. Pc ide znovu jak hodinky.

Ďakujem mockrát

[vyosek]

Pokud budete priste potrebovat akutni pomoc, tak muzete vyuzit nasi sluzby www.neslape.cz


Nemate zac, rad jsem pomohl Zase nekdy

A na zaklade Pravidla o zamykani temat