Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Zavirovaný počítač

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpovědět
Zpráva
Autor
Jandaskunk
Návštěvník
Návštěvník
Příspěvky: 76
Registrován: 16 črc 2007 17:49

Re: Zavirovaný počítač

#16 Příspěvek od Jandaskunk »

Odinstaloval jsem ještě nějaké nepotřebné a divné věci (toolbary, convertery, kodeky atd.)...stále nefunguje přihlašování na seznam email přes Internet Explorer (přes Chrome jde). FRST dám zas až se tam dostanu (zkusím zítra).
Nahoru
Jandaskunk
Návštěvník
Návštěvník
Příspěvky: 76
Registrován: 16 črc 2007 17:49

Re: Zavirovaný počítač

#17 Příspěvek od Jandaskunk »

Log FRST:

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:15-07-2014 01
Ran by Olina (administrator) on OLINA-PC on 15-07-2014 20:09:46
Running from C:\Users\Olina\Desktop
Platform: Microsoft Windows 7 Ultimate Service Pack 1 (X86) OS Language: Čeština (Česká republika)
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\VS7DEBUG\mdm.exe
(Nitro PDF Software) C:\Program Files\Nitro PDF\Reader 2\NitroPDFReaderDriverService2.exe
(PC Tools) C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
(PS Media s.r.o.) C:\Windows\System32\ssins.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(WildTangent, Inc.) C:\Windows\wt\updater\wcmdmgr.exe
(PC Tools) C:\Program Files\Common Files\PC Tools\sMonitor\SSDMonitor.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(CANON INC.) C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
(CANON INC.) C:\Program Files\Canon\Solution Menu EX\CNSEMAIN.EXE
(Nokia) C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(DT Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTLite.exe
() C:\Program Files\Seznam.cz\bin\postak.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Nero AG) C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe
(Nokia) C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe
() C:\Users\Olina\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
() C:\Program Files\Verbatim GREEN BUTTON\GREEN BUTTON.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
(Nero AG) C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
(Nokia) C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
(Nokia) C:\Program Files\PC Connectivity Solution\Transports\NclRSSrv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(forum.viry.cz) C:\Users\Olina\Desktop\FRSTLauncher.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [GrooveMonitor] => C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM\...\Run: [wcmdmgr] => C:\Windows\wt\updater\wcmdmgrl.exe [20480 2001-01-25] (WildTangent, Inc.)
HKLM\...\Run: [AppleSyncNotifier] => C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe [59240 2011-10-06] (Apple Inc.)
HKLM\...\Run: [APSDaemon] => C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [43848 2014-02-12] (Apple Inc.)
HKLM\...\Run: [NBAgent] => C:\Program Files\Nero\Nero BackItUp & Burn\Nero BackItUp\NBAgent.exe [1086760 2010-03-14] (Nero AG)
HKLM\...\Run: [SSDMonitor] => C:\Program Files\Common Files\PC Tools\sMonitor\SSDMonitor.exe [103896 2011-12-12] (PC Tools)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM\...\Run: [seznam-listicka-distribuce] => C:\Program Files\Seznam.cz\distribution\szninstall.exe [1009288 2012-09-13] ()
HKLM\...\Run: [CanonMyPrinter] => C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2516296 2010-03-25] (CANON INC.)
HKLM\...\Run: [CanonSolutionMenuEx] => C:\Program Files\Canon\Solution Menu EX\CNSEMAIN.EXE [1185112 2010-04-02] (CANON INC.)
HKLM\...\Run: [NokiaMServer] => C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer /watchfiles startup
HKLM\...\Run: [NSU_agent] => C:\Program Files\Nokia\Nokia Software Updater\nsu3ui_agent.exe [190768 2012-02-28] ()
HKLM\...\Run: [QuickTime Task] => C:\Program Files\QuickTime\QTTask.exe [421888 2014-01-17] (Apple Inc.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [4086432 2014-07-10] (AVAST Software)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [152392 2014-05-26] (Apple Inc.)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [256896 2014-05-07] (Oracle Corporation)
HKU\S-1-5-21-1503038219-2209986198-3904582108-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\DTLite.exe [357696 2010-04-01] (DT Soft Ltd)
HKU\S-1-5-21-1503038219-2209986198-3904582108-1000\...\Run: [Seznam Postak] => C:\Program Files\Seznam.cz\bin\postak.exe [491040 2012-01-10] ()
HKU\S-1-5-21-1503038219-2209986198-3904582108-1000\...\Run: [IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] => C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe [1840424 2008-06-24] (Nero AG)
HKU\S-1-5-21-1503038219-2209986198-3904582108-1000\...\Run: [cz.seznam.software.autoupdate] => C:\Users\Olina\AppData\Roaming\Seznam.cz\szninstall.exe [1062472 2013-05-16] ()
HKU\S-1-5-21-1503038219-2209986198-3904582108-1000\...\Run: [cz.seznam.software.szndesktop] => C:\Users\Olina\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [92664 2013-04-12] ()
HKU\S-1-5-21-1503038219-2209986198-3904582108-1000\...\Run: [PC Suite Tray] => C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe [1516632 2012-06-26] (Nokia)
HKU\S-1-5-21-1503038219-2209986198-3904582108-1000\...\Policies\Explorer: [NoInstrumentation] 1
Startup: C:\Users\Olina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Canon IJ Status Monitor Canon MG5100 series Printer.lnk
ShortcutTarget: Canon IJ Status Monitor Canon MG5100 series Printer.lnk -> C:\Users\Olina\cnmss Canon MG5100 series Printer (Local).dll,SMStarterEntryPoint USB003;Canon MG5100 series Printer;cnmss Canon MG5100 series Printer (Local).dll;Canon IJ Status Monitor Canon MG5100 series Printer.lnk (No File)
Startup: C:\Users\Olina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Verbatim GREEN BUTTON.lnk
ShortcutTarget: Verbatim GREEN BUTTON.lnk -> C:\Program Files\Verbatim GREEN BUTTON\GREEN BUTTON.exe ()
Startup: C:\Users\Olina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk
ShortcutTarget: Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk -> C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)
ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll (AVAST Software)
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
SearchScopes: HKLM - {cf6e4b1c-dbde-457e-9cef-ab8ecac8a5e8} URL = http://search.tb.ask.com/search/GGmain. ... earchTerms}
SearchScopes: HKCU - DefaultScope {CE5E2AEB-E064-4253-BA07-862628C4AAA9} URL = http://tv.seznam.cz/hledej?w={searchTer ... ckSearch_5
SearchScopes: HKCU - {037db157-7261-400b-b1b5-4166534ffa7f} URL = http://www.mapy.cz/?query={searchTerms} ... ckSearch_5
SearchScopes: HKCU - {1E4F5427-AC90-46AA-8D1B-F4B9603BB4A0} URL = http://slovnik.seznam.cz/?q={searchTerm ... ckSearch_5
SearchScopes: HKCU - {46021CE9-6563-4104-BB39-013D1A27B4A2} URL = http://slovnik.seznam.cz/?q={searchTerm ... ckSearch_5
SearchScopes: HKCU - {54bd7988-69b0-4a01-a935-b9b83816d170} URL = http://www.firmy.cz/phr/{searchTerms}?s ... ckSearch_5
SearchScopes: HKCU - {75b4241f-171e-44a3-bf44-23613b6e3e03} URL =
SearchScopes: HKCU - {811254b1-0f8b-4eeb-907d-9729ebb7b925} URL = http://www.zbozi.cz/?q={searchTerms}&r= ... ckSearch_5
SearchScopes: HKCU - {B7163427-6F80-4208-9A61-8DCA06B982D6} URL = http://encyklopedie.seznam.cz/search?q= ... ckSearch_5
SearchScopes: HKCU - {C8E421F2-BCF2-447E-97BD-A962B4760E37} URL = http://www.novinky.cz/hledej?w={searchT ... ckSearch_5
SearchScopes: HKCU - {CE5E2AEB-E064-4253-BA07-862628C4AAA9} URL = http://tv.seznam.cz/hledej?w={searchTer ... ckSearch_5
SearchScopes: HKCU - {cf6e4b1c-dbde-457e-9cef-ab8ecac8a5e8} URL = http://search.tb.ask.com/search/GGmain. ... earchTerms}
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll (CANON INC.)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Windows Live Messenger Companion Helper -> {9FDDE16B-836F-4806-AB1F-1455CBEFF289} -> C:\Program Files\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
BHO: Ukazatel S-Rank -> {EA837F48-5AD1-443E-AE34-FFE03CBF3099} -> C:\Program Files\Seznam.cz\core.3.dll No File
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.)
Toolbar: HKCU - No Name - {34AB3C4C-DA1A-4067-96F4-31452C7CFE65} - No File
Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
Toolbar: HKCU - No Name - {30CEEEA2-3742-40E4-85DD-812BF1CBB83D} - No File
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
Winsock: Catalog5 09 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Tcpip\..\Interfaces\{04CF6973-9595-4074-AEB5-475D3D633C6D}: [NameServer]82.100.26.35,82.100.26.1

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32.dll ()
FF Plugin: @adobe.com/ShockwavePlayer - C:\Windows\system32\Adobe\Director\np32dsw_1200112.dll (Adobe Systems, Inc.)
FF Plugin: @Apple.com/iTunes,version=1.0 - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin: @canon.com/EPPEX - C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.)
FF Plugin: @Google.com/GoogleEarthPlugin - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin: @google.com/npPicasa3,version=3.0.0 - C:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF Plugin: @microsoft.com/GENUINE - C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.0.4 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.3 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin: NitroPDF - C:\Program Files\Nitro PDF\Reader 2\npnitromozilla.dll ( )
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Olina\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-05-15]

Chrome:
=======
CHR HomePage: hxxp://www.google.com/
CHR NewTab: "chrome-extension://olfeabkoenfaoljndfecamgilllcpiak/core/chrome/content/speedDial/speedDial.html"
CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\35.0.1916.153\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\35.0.1916.153\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files\Google\Chrome\Application\35.0.1916.153\pdf.dll ()
CHR Plugin: (Babylon Chrome Plugin) - C:\Users\Olina\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhkplhfnhceodhffomolpfigojocbpcb\1.0_0\BabylonChromePI.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 11.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files\QuickTime\plugins\npqtplugin.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files\QuickTime\plugins\npqtplugin2.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files\QuickTime\plugins\npqtplugin3.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files\QuickTime\plugins\npqtplugin4.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files\QuickTime\plugins\npqtplugin5.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files\QuickTime\plugins\npqtplugin6.dll No File
CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files\QuickTime\plugins\npqtplugin7.dll No File
CHR Plugin: (Google Earth Plugin) - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
CHR Plugin: (Picasa) - C:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.)
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll No File
CHR Plugin: (Java(TM) Platform SE 7 U15) - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll No File
CHR Plugin: (McAfee Security Scanner +) - C:\Program Files\McAfee Security Scan\3.0.318\npMcAfeeMss.dll No File
CHR Plugin: (Nitro PDF Plug-In) - C:\Program Files\Nitro PDF\Reader 2\npnitromozilla.dll ( )
CHR Plugin: (iTunes Application Detector) - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
CHR Plugin: (Shockwave for Director) - C:\Windows\system32\Adobe\Director\np32dsw.dll No File
CHR Plugin: (Shockwave Flash) - C:\Windows\system32\Macromed\Flash\NPSWF32.dll ()
CHR Plugin: (Windows Activation Technologies) - C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
CHR Plugin: (Java Deployment Toolkit 7.0.150.3) - C:\Windows\system32\npDeployJava1.dll No File
CHR Plugin: (Silverlight Plug-In) - c:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll No File
CHR Extension: (Seznam Lištička - Email) - C:\Users\Olina\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2014-07-09]
CHR Extension: (Peněženka Google) - C:\Users\Olina\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-10-15]
CHR Extension: (Seznam Lištička - Rychlá volba) - C:\Users\Olina\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2013-03-09]
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-07-10]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

========================== Services (Whitelisted) =================

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-07-10] (AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [106488 2014-07-10] (AVAST Software)
R2 MDM; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [335872 2006-10-26] (Microsoft Corporation) [File not signed]
R2 NitroReaderDriverReadSpool2; C:\Program Files\Nitro PDF\Reader 2\NitroPDFReaderDriverService2.exe [196912 2011-06-21] (Nitro PDF Software)
R2 PCToolsSSDMonitorSvc; C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe [793048 2011-12-12] (PC Tools)
R2 ssinstall; C:\Windows\System32\ssins.exe [2324216 2014-05-29] (PS Media s.r.o.)

==================== Drivers (Whitelisted) ====================

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [24184 2014-07-10] ()
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [26136 2014-07-10] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [67824 2014-07-10] (AVAST Software)
R0 aswNdisFlt; C:\Windows\System32\DRIVERS\aswNdisFlt.sys [270752 2014-07-10] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [81768 2014-07-10] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\Drivers\aswRvrt.sys [49944 2014-07-10] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [779536 2014-07-10] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [414520 2014-07-10] (AVAST Software)
S2 aswStm; C:\Windows\system32\drivers\aswStm.sys [71944 2014-07-10] (AVAST Software)
R0 aswVmm; C:\Windows\system32\Drivers\aswVmm.sys [192352 2014-07-10] ()
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [5810 2004-08-13] ()
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [691696 2010-09-19] () [File not signed]
U3 ar93el6q; C:\Windows\system32\Drivers\ar93el6q.sys [0 ] (Microsoft Corporation)
S3 catchme; \??\C:\Users\Olina\AppData\Local\Temp\catchme.sys [X]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-07-15 20:09 - 2014-07-15 20:10 - 00019267 _____ () C:\Users\Olina\Desktop\FRST.txt
2014-07-15 20:09 - 2014-07-15 20:09 - 00000000 ____D () C:\FRST
2014-07-15 20:07 - 2014-07-15 20:07 - 00112640 _____ (forum.viry.cz) C:\Users\Olina\Desktop\FRSTLauncher.exe
2014-07-15 20:06 - 2014-07-15 20:06 - 01077248 _____ (Farbar) C:\Users\Olina\Desktop\FRST.exe
2014-07-10 17:27 - 2014-07-10 17:27 - 00002059 _____ () C:\Users\Public\Desktop\avast! Internet Security.lnk
2014-07-10 17:26 - 2014-07-10 17:25 - 00026136 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2014-07-10 17:25 - 2014-07-10 17:25 - 00270752 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNdisFlt.sys
2014-07-10 17:25 - 2014-07-10 17:25 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-07-10 17:18 - 2014-07-10 17:18 - 00018612 _____ () C:\ComboFix.txt
2014-07-10 17:00 - 2014-07-10 17:18 - 00000000 ____D () C:\Qoobox
2014-07-10 17:00 - 2011-06-26 08:45 - 00256000 _____ () C:\Windows\PEV.exe
2014-07-10 17:00 - 2010-11-07 19:20 - 00208896 _____ () C:\Windows\MBR.exe
2014-07-10 17:00 - 2009-04-20 06:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2014-07-10 17:00 - 2000-08-31 02:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2014-07-10 17:00 - 2000-08-31 02:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2014-07-10 17:00 - 2000-08-31 02:00 - 00098816 _____ () C:\Windows\sed.exe
2014-07-10 17:00 - 2000-08-31 02:00 - 00080412 _____ () C:\Windows\grep.exe
2014-07-10 17:00 - 2000-08-31 02:00 - 00068096 _____ () C:\Windows\zip.exe
2014-07-10 16:59 - 2014-07-10 17:16 - 00000000 ____D () C:\Windows\erdnt
2014-07-10 16:48 - 2014-07-10 16:48 - 05217324 ____R (Swearware) C:\Users\Olina\Desktop\ComboFix.exe
2014-07-09 07:35 - 2014-07-09 07:36 - 08172032 _____ () C:\Users\Olina\Downloads\Argentina 1.pps
2014-07-09 07:06 - 2014-06-20 21:39 - 00240824 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-07-09 07:06 - 2014-06-19 02:16 - 17276416 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-07-09 07:06 - 2014-06-19 01:56 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-07-09 07:06 - 2014-06-19 01:56 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-07-09 07:06 - 2014-06-19 01:38 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-07-09 07:06 - 2014-06-19 01:37 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-07-09 07:06 - 2014-06-19 01:36 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-07-09 07:06 - 2014-06-19 01:35 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-07-09 07:06 - 2014-06-19 01:32 - 02179072 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-07-09 07:06 - 2014-06-19 01:28 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-07-09 07:06 - 2014-06-19 01:28 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-07-09 07:06 - 2014-06-19 01:25 - 00442368 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-07-09 07:06 - 2014-06-19 01:23 - 00112128 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-07-09 07:06 - 2014-06-19 01:23 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-07-09 07:06 - 2014-06-19 01:22 - 00592896 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-07-09 07:06 - 2014-06-19 01:16 - 00646144 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-07-09 07:06 - 2014-06-19 01:12 - 00367616 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-07-09 07:06 - 2014-06-19 01:06 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-07-09 07:06 - 2014-06-19 01:01 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-07-09 07:06 - 2014-06-19 00:59 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-07-09 07:06 - 2014-06-19 00:58 - 00239616 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-07-09 07:06 - 2014-06-19 00:52 - 04254720 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-07-09 07:06 - 2014-06-19 00:52 - 00595968 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-07-09 07:06 - 2014-06-19 00:49 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-07-09 07:06 - 2014-06-19 00:46 - 01068032 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-07-09 07:06 - 2014-06-19 00:45 - 01964544 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-07-09 07:06 - 2014-06-19 00:35 - 11742208 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-07-09 07:06 - 2014-06-19 00:13 - 01791488 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-07-09 07:06 - 2014-06-19 00:09 - 01139200 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-07-09 07:06 - 2014-06-19 00:07 - 00704512 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-07-09 07:05 - 2014-06-18 03:51 - 00646144 _____ (Microsoft Corporation) C:\Windows\system32\osk.exe
2014-07-09 07:05 - 2014-06-18 02:52 - 02350080 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-07-09 07:04 - 2014-06-30 03:40 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-07-09 07:04 - 2014-06-30 03:36 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-07-09 07:04 - 2014-06-06 11:44 - 00509440 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2014-07-09 07:04 - 2014-06-05 16:26 - 01059840 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-07-09 07:04 - 2014-05-30 09:52 - 00550912 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-07-09 07:04 - 2014-05-30 09:52 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2014-07-09 07:04 - 2014-05-30 09:52 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-07-09 07:04 - 2014-05-30 09:52 - 00220160 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2014-07-09 07:04 - 2014-05-30 09:52 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2014-07-09 07:04 - 2014-05-30 09:52 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-07-09 07:04 - 2014-05-30 09:52 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-07-09 07:04 - 2014-05-30 08:36 - 00338944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2014-07-08 22:01 - 2014-07-08 22:02 - 08564670 _____ () C:\Users\Olina\Downloads\Bezděkov 1.zip
2014-07-08 21:59 - 2014-07-08 21:59 - 12777608 _____ () C:\Users\Olina\Downloads\Bezděkov3.zip
2014-07-08 20:48 - 2014-07-10 17:20 - 00110296 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-07-08 20:48 - 2014-07-08 20:48 - 00001064 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-07-08 20:48 - 2014-07-08 20:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-07-08 20:48 - 2014-07-08 20:48 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-07-08 20:48 - 2014-07-08 20:48 - 00000000 ____D () C:\Program Files\Malwarebytes Anti-Malware
2014-07-08 20:48 - 2014-05-12 07:26 - 00051928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-07-08 20:48 - 2014-05-12 07:25 - 00074456 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-07-08 20:48 - 2014-05-12 07:25 - 00023256 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-07-08 20:46 - 2014-07-08 20:47 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Olina\Downloads\mbam-setup-2.0.2.1012.exe
2014-07-07 16:36 - 2014-07-07 16:36 - 00000000 ____D () C:\Users\Olina\AppData\Local\VideoDownloadConverter_4z
2014-07-07 16:36 - 2014-07-07 16:36 - 00000000 ____D () C:\Users\Olina\AppData\Local\IAC
2014-06-15 17:36 - 2014-06-15 17:36 - 00000000 ____D () C:\Program Files\Common Files\Java
2014-06-15 07:20 - 2014-06-15 07:20 - 00001154 _____ () C:\Users\Public\Desktop\aTube Catcher.lnk
2014-06-15 07:20 - 2014-06-15 07:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\aTube Catcher

==================== One Month Modified Files and Folders =======

2014-07-15 20:10 - 2014-07-15 20:09 - 00019267 _____ () C:\Users\Olina\Desktop\FRST.txt
2014-07-15 20:10 - 2009-07-14 06:34 - 00017360 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-07-15 20:10 - 2009-07-14 06:34 - 00017360 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-07-15 20:09 - 2014-07-15 20:09 - 00000000 ____D () C:\FRST
2014-07-15 20:07 - 2014-07-15 20:07 - 00112640 _____ (forum.viry.cz) C:\Users\Olina\Desktop\FRSTLauncher.exe
2014-07-15 20:06 - 2014-07-15 20:06 - 01077248 _____ (Farbar) C:\Users\Olina\Desktop\FRST.exe
2014-07-15 20:01 - 2010-09-10 22:32 - 01207722 _____ () C:\Windows\WindowsUpdate.log
2014-07-15 20:00 - 2013-03-09 16:19 - 00000000 ____D () C:\Users\Olina\AppData\Roaming\Seznam.cz
2014-07-15 19:55 - 2014-05-29 14:11 - 00000000 _____ () C:\Windows\system32\sinstall.log
2014-07-15 19:55 - 2010-12-28 18:37 - 00000934 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-07-15 19:55 - 2009-07-14 06:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-07-15 19:55 - 2009-07-14 06:39 - 00087827 _____ () C:\Windows\setupact.log
2014-07-15 14:39 - 2010-12-28 18:37 - 00000938 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-07-15 11:15 - 2012-04-07 08:53 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-07-15 09:18 - 2010-09-10 22:40 - 01593310 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-07-15 06:53 - 2012-08-11 13:52 - 00000000 ____D () C:\ProgramData\TEMP
2014-07-15 06:33 - 2013-03-09 16:29 - 00000000 ____D () C:\Users\Olina\AppData\Roaming\vlc
2014-07-15 06:31 - 2010-09-26 12:25 - 00000000 ____D () C:\Program Files\Google
2014-07-15 06:31 - 2010-09-19 20:04 - 00167970 _____ () C:\Windows\PFRO.log
2014-07-14 19:04 - 2010-12-28 18:37 - 00000000 ____D () C:\ProgramData\Google
2014-07-14 19:04 - 2010-09-26 12:25 - 00000000 ____D () C:\Users\Olina\AppData\Local\Google
2014-07-14 18:55 - 2013-04-06 12:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVS4YOU
2014-07-14 18:55 - 2013-04-06 12:58 - 00000000 ____D () C:\Program Files\Common Files\AVSMedia
2014-07-14 18:55 - 2013-04-06 12:58 - 00000000 ____D () C:\Program Files\AVS4YOU
2014-07-14 18:31 - 2010-09-10 22:33 - 00000000 ____D () C:\Users\Olina
2014-07-14 18:31 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\wfp
2014-07-14 18:30 - 2014-05-15 20:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast
2014-07-14 18:30 - 2014-05-15 20:40 - 00000000 ____D () C:\Program Files\AVAST Software
2014-07-14 18:30 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\NDF
2014-07-14 18:30 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\rescache
2014-07-14 18:30 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\registration
2014-07-10 17:27 - 2014-07-10 17:27 - 00002059 _____ () C:\Users\Public\Desktop\avast! Internet Security.lnk
2014-07-10 17:26 - 2014-05-15 20:43 - 00414520 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2014-07-10 17:25 - 2014-07-10 17:26 - 00026136 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2014-07-10 17:25 - 2014-07-10 17:25 - 00270752 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNdisFlt.sys
2014-07-10 17:25 - 2014-07-10 17:25 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-07-10 17:25 - 2014-05-15 20:43 - 00779536 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys
2014-07-10 17:25 - 2014-05-15 20:43 - 00276432 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-07-10 17:25 - 2014-05-15 20:43 - 00192352 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2014-07-10 17:25 - 2014-05-15 20:43 - 00081768 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2014-07-10 17:25 - 2014-05-15 20:43 - 00071944 _____ (AVAST Software) C:\Windows\system32\Drivers\aswstm.sys
2014-07-10 17:25 - 2014-05-15 20:43 - 00067824 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-07-10 17:25 - 2014-05-15 20:43 - 00049944 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2014-07-10 17:25 - 2014-05-15 20:43 - 00024184 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2014-07-10 17:20 - 2014-07-08 20:48 - 00110296 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-07-10 17:18 - 2014-07-10 17:18 - 00018612 _____ () C:\ComboFix.txt
2014-07-10 17:18 - 2014-07-10 17:00 - 00000000 ____D () C:\Qoobox
2014-07-10 17:18 - 2009-07-14 04:37 - 00000000 __RHD () C:\Users\Default
2014-07-10 17:18 - 2009-07-14 04:37 - 00000000 ___RD () C:\Users\Public
2014-07-10 17:16 - 2014-07-10 16:59 - 00000000 ____D () C:\Windows\erdnt
2014-07-10 17:13 - 2009-07-14 04:04 - 00000215 _____ () C:\Windows\system.ini
2014-07-10 17:12 - 2009-07-14 04:03 - 70778880 _____ () C:\Windows\system32\config\software.bak
2014-07-10 17:12 - 2009-07-14 04:03 - 14942208 _____ () C:\Windows\system32\config\system.bak
2014-07-10 17:12 - 2009-07-14 04:03 - 00524288 _____ () C:\Windows\system32\config\default.bak
2014-07-10 17:12 - 2009-07-14 04:03 - 00262144 _____ () C:\Windows\system32\config\security.bak
2014-07-10 17:12 - 2009-07-14 04:03 - 00262144 _____ () C:\Windows\system32\config\sam.bak
2014-07-10 16:48 - 2014-07-10 16:48 - 05217324 ____R (Swearware) C:\Users\Olina\Desktop\ComboFix.exe
2014-07-10 16:40 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\L2Schemas
2014-07-09 12:58 - 2009-07-14 06:33 - 00430264 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-07-09 12:57 - 2014-05-06 18:15 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-07-09 12:57 - 2009-07-14 11:21 - 00000000 ____D () C:\Program Files\Windows Journal
2014-07-09 12:07 - 2013-08-14 07:57 - 00000000 ____D () C:\Windows\system32\MRT
2014-07-09 12:04 - 2010-09-28 06:59 - 93585272 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-07-09 12:04 - 2010-09-19 13:54 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-07-09 07:36 - 2014-07-09 07:35 - 08172032 _____ () C:\Users\Olina\Downloads\Argentina 1.pps
2014-07-09 07:15 - 2012-04-07 08:53 - 00699056 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2014-07-09 07:15 - 2011-07-18 07:36 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2014-07-08 22:02 - 2014-07-08 22:01 - 08564670 _____ () C:\Users\Olina\Downloads\Bezděkov 1.zip
2014-07-08 21:59 - 2014-07-08 21:59 - 12777608 _____ () C:\Users\Olina\Downloads\Bezděkov3.zip
2014-07-08 21:16 - 2011-09-07 15:02 - 00000000 ____D () C:\ProgramData\Symantec
2014-07-08 21:16 - 2011-09-07 15:02 - 00000000 ____D () C:\ProgramData\Norton
2014-07-08 21:15 - 2013-10-31 08:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Comodo
2014-07-08 21:15 - 2013-10-31 08:38 - 00000000 ____D () C:\Program Files\Comodo
2014-07-08 20:48 - 2014-07-08 20:48 - 00001064 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-07-08 20:48 - 2014-07-08 20:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-07-08 20:48 - 2014-07-08 20:48 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-07-08 20:48 - 2014-07-08 20:48 - 00000000 ____D () C:\Program Files\Malwarebytes Anti-Malware
2014-07-08 20:47 - 2014-07-08 20:46 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Olina\Downloads\mbam-setup-2.0.2.1012.exe
2014-07-07 16:36 - 2014-07-07 16:36 - 00000000 ____D () C:\Users\Olina\AppData\Local\VideoDownloadConverter_4z
2014-07-07 16:36 - 2014-07-07 16:36 - 00000000 ____D () C:\Users\Olina\AppData\Local\IAC
2014-06-30 03:40 - 2014-07-09 07:04 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-06-30 03:36 - 2014-07-09 07:04 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-06-25 06:39 - 2014-05-17 12:01 - 00000000 ____D () C:\Users\Olina\AppData\Roaming\Nico Mak Computing
2014-06-25 06:39 - 2014-05-17 12:01 - 00000000 ____D () C:\Program Files\WinZip Registry Optimizer
2014-06-20 21:39 - 2014-07-09 07:06 - 00240824 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-06-19 02:16 - 2014-07-09 07:06 - 17276416 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-06-19 01:56 - 2014-07-09 07:06 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-06-19 01:56 - 2014-07-09 07:06 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-06-19 01:38 - 2014-07-09 07:06 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-06-19 01:37 - 2014-07-09 07:06 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-06-19 01:36 - 2014-07-09 07:06 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-06-19 01:35 - 2014-07-09 07:06 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-06-19 01:32 - 2014-07-09 07:06 - 02179072 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-06-19 01:28 - 2014-07-09 07:06 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-06-19 01:28 - 2014-07-09 07:06 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-06-19 01:25 - 2014-07-09 07:06 - 00442368 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-06-19 01:23 - 2014-07-09 07:06 - 00112128 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-06-19 01:23 - 2014-07-09 07:06 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-06-19 01:22 - 2014-07-09 07:06 - 00592896 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-06-19 01:16 - 2014-07-09 07:06 - 00646144 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-06-19 01:12 - 2014-07-09 07:06 - 00367616 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-06-19 01:06 - 2014-07-09 07:06 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-06-19 01:01 - 2014-07-09 07:06 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-06-19 00:59 - 2014-07-09 07:06 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-06-19 00:58 - 2014-07-09 07:06 - 00239616 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-06-19 00:52 - 2014-07-09 07:06 - 04254720 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-06-19 00:52 - 2014-07-09 07:06 - 00595968 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-06-19 00:49 - 2014-07-09 07:06 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-06-19 00:46 - 2014-07-09 07:06 - 01068032 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-06-19 00:45 - 2014-07-09 07:06 - 01964544 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-06-19 00:35 - 2014-07-09 07:06 - 11742208 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-06-19 00:13 - 2014-07-09 07:06 - 01791488 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-06-19 00:09 - 2014-07-09 07:06 - 01139200 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-06-19 00:07 - 2014-07-09 07:06 - 00704512 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-06-18 03:51 - 2014-07-09 07:05 - 00646144 _____ (Microsoft Corporation) C:\Windows\system32\osk.exe
2014-06-18 02:52 - 2014-07-09 07:05 - 02350080 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-06-15 17:36 - 2014-06-15 17:36 - 00000000 ____D () C:\Program Files\Common Files\Java
2014-06-15 08:46 - 2011-07-21 11:05 - 00000069 _____ () C:\Windows\NeroDigital.ini
2014-06-15 07:20 - 2014-06-15 07:20 - 00001154 _____ () C:\Users\Public\Desktop\aTube Catcher.lnk
2014-06-15 07:20 - 2014-06-15 07:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\aTube Catcher
2014-06-15 07:20 - 2011-07-26 07:51 - 00002080 _____ () C:\Users\Public\Desktop\Video Search.lnk

Files to move or delete:
====================
C:\Users\Olina\cnmss Canon MG5100 series Printer (Local).dll


Some content of TEMP:
====================
C:\Users\Olina\AppData\Local\Temp\NEventMessages.dll


==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed



===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================



==================== MBR and Partition Table ==================


==================== Scheduled Tasks (whitelisted) ==================

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe

==================== Alternate Data Streams (whitelisted) ==================

AlternateDataStreams: C:\ProgramData\TEMP:D1B5B4F1
AlternateDataStreams: C:\Users\Olina\Documents\registrace do sportisima.eml:OECustomProperty
AlternateDataStreams: C:\Users\Olina\AppData\Roaming\Microsoft\Windows\Start Menu\Seznam.cz.website:DESTICON_email1229235768
AlternateDataStreams: C:\Users\Olina\AppData\Roaming\Microsoft\Windows\Start Menu\Seznam.cz.website:DESTICON_firmy-216282473
AlternateDataStreams: C:\Users\Olina\AppData\Roaming\Microsoft\Windows\Start Menu\Seznam.cz.website:DESTICON_novinky-1609642764
AlternateDataStreams: C:\Users\Olina\AppData\Roaming\Microsoft\Windows\Start Menu\Seznam.cz.website:DESTICON_prozeny771666966
AlternateDataStreams: C:\Users\Olina\AppData\Roaming\Microsoft\Windows\Start Menu\Seznam.cz.website:DESTICON_sport6476750
AlternateDataStreams: C:\Users\Olina\AppData\Roaming\Microsoft\Windows\Start Menu\Seznam.cz.website:DESTICON_stream1444311432
AlternateDataStreams: C:\Users\Olina\AppData\Roaming\Microsoft\Windows\Start Menu\Seznam.cz.website:DESTICON_super-41222104

==================== Security Center ==================

AV: avast! Antivirus (Disabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Disabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
FW: avast! Antivirus (Disabled) {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}



===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)


***** Velikost "Plochy" *****

Velikost slozky "C:\Users\Olina\Desktop" je 7407 MB.


***** Startup Programs *****


***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]


***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR"=dword:00000000
"Generalize_DisableSR"=dword:00000000


==================== End Of Log ==============================
Nahoru
Uživatelský avatar
motji
VIP
VIP
Příspěvky: 23302
Registrován: 23 říj 2008 08:02

Re: Zavirovaný počítač

#18 Příspěvek od motji »

Otevřete notepad a vložte do něj:
AlternateDataStreams: C:\ProgramData\TEMP:D1B5B4F1
AlternateDataStreams: C:\Users\Olina\Documents\registrace do sportisima.eml:OECustomProperty
AlternateDataStreams: C:\Users\Olina\AppData\Roaming\Microsoft\Windows\Start Menu\Seznam.cz.website:DESTICON_email1229235768
AlternateDataStreams: C:\Users\Olina\AppData\Roaming\Microsoft\Windows\Start Menu\Seznam.cz.website:DESTICON_firmy-216282473
AlternateDataStreams: C:\Users\Olina\AppData\Roaming\Microsoft\Windows\Start Menu\Seznam.cz.website:DESTICON_novinky-1609642764
AlternateDataStreams: C:\Users\Olina\AppData\Roaming\Microsoft\Windows\Start Menu\Seznam.cz.website:DESTICON_prozeny771666966
AlternateDataStreams: C:\Users\Olina\AppData\Roaming\Microsoft\Windows\Start Menu\Seznam.cz.website:DESTICON_sport6476750
AlternateDataStreams: C:\Users\Olina\AppData\Roaming\Microsoft\Windows\Start Menu\Seznam.cz.website:DESTICON_stream1444311432
AlternateDataStreams: C:\Users\Olina\AppData\Roaming\Microsoft\Windows\Start Menu\Seznam.cz.website:DESTICON_super-41222104
SearchScopes: HKLM - {cf6e4b1c-dbde-457e-9cef-ab8ecac8a5e8} URL = http://search.tb.ask.com/search/GGmain. ... earchTerms}
SearchScopes: HKCU - {cf6e4b1c-dbde-457e-9cef-ab8ecac8a5e8} URL = http://search.tb.ask.com/search/GGmain. ... earchTerms}
Toolbar: HKCU - No Name - {34AB3C4C-DA1A-4067-96F4-31452C7CFE65} - No File
Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
Toolbar: HKCU - No Name - {30CEEEA2-3742-40E4-85DD-812BF1CBB83D} - No File
HKU\S-1-5-21-1503038219-2209986198-3904582108-1000\...\Run: [cz.seznam.software.autoupdate] => C:\Users\Olina\AppData\Roaming\Seznam.cz\szninstall.exe [1062472 2013-05-16] ()
HKU\S-1-5-21-1503038219-2209986198-3904582108-1000\...\Run: [cz.seznam.software.szndesktop] => C:\Users\Olina\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [92664 2013-04-12] ()
HKLM\...\Run: [seznam-listicka-distribuce] => C:\Program Files\Seznam.cz\distribution\szninstall.exe [1009288 2012-09-13] ()

-Uložte jako fixlist.txt vedle Frstu.
-spusťte Frst a klikněte na fix.
-vyskočí na Vás log, vložte ho zde :)
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data :!:
Chcete podpořit naše forum? Informace zde

Obrázek

K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Nahoru
Jandaskunk
Návštěvník
Návštěvník
Příspěvky: 76
Registrován: 16 črc 2007 17:49

Re: Zavirovaný počítač

#19 Příspěvek od Jandaskunk »

Log (jsem zapomněl na Avast a mrcha mi odstranil FRSTLauncher):

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version:24-07-2014 01
Ran by Olina at 2014-07-24 20:36:40 Run:1
Running from C:\Users\Olina\Desktop
Boot Mode: Normal

==============================================

Content of fixlist:
*****************
AlternateDataStreams: C:\ProgramData\TEMP:D1B5B4F1
AlternateDataStreams: C:\Users\Olina\Documents\registrace do sportisima.eml:OECustomProperty
AlternateDataStreams: C:\Users\Olina\AppData\Roaming\Microsoft\Windows\Start Menu\Seznam.cz.website:DESTICON_email1229235768
AlternateDataStreams: C:\Users\Olina\AppData\Roaming\Microsoft\Windows\Start Menu\Seznam.cz.website:DESTICON_firmy-216282473
AlternateDataStreams: C:\Users\Olina\AppData\Roaming\Microsoft\Windows\Start Menu\Seznam.cz.website:DESTICON_novinky-1609642764
AlternateDataStreams: C:\Users\Olina\AppData\Roaming\Microsoft\Windows\Start Menu\Seznam.cz.website:DESTICON_prozeny771666966
AlternateDataStreams: C:\Users\Olina\AppData\Roaming\Microsoft\Windows\Start Menu\Seznam.cz.website:DESTICON_sport6476750
AlternateDataStreams: C:\Users\Olina\AppData\Roaming\Microsoft\Windows\Start Menu\Seznam.cz.website:DESTICON_stream1444311432
AlternateDataStreams: C:\Users\Olina\AppData\Roaming\Microsoft\Windows\Start Menu\Seznam.cz.website:DESTICON_super-41222104
SearchScopes: HKLM - {cf6e4b1c-dbde-457e-9cef-ab8ecac8a5e8} URL = http://search.tb.ask.com/search/GGmain. ... earchTerms}
SearchScopes: HKCU - {cf6e4b1c-dbde-457e-9cef-ab8ecac8a5e8} URL = http://search.tb.ask.com/search/GGmain. ... earchTerms}
Toolbar: HKCU - No Name - {34AB3C4C-DA1A-4067-96F4-31452C7CFE65} - No File
Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
Toolbar: HKCU - No Name - {30CEEEA2-3742-40E4-85DD-812BF1CBB83D} - No File
HKU\S-1-5-21-1503038219-2209986198-3904582108-1000\...\Run: [cz.seznam.software.autoupdate] => C:\Users\Olina\AppData\Roaming\Seznam.cz\szninstall.exe [1062472 2013-05-16] ()
HKU\S-1-5-21-1503038219-2209986198-3904582108-1000\...\Run: [cz.seznam.software.szndesktop] => C:\Users\Olina\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [92664 2013-04-12] ()
HKLM\...\Run: [seznam-listicka-distribuce] => C:\Program Files\Seznam.cz\distribution\szninstall.exe [1009288 2012-09-13] ()

*****************

C:\ProgramData\TEMP => ":D1B5B4F1" ADS removed successfully.
C:\Users\Olina\Documents\registrace do sportisima.eml => ":OECustomProperty" ADS removed successfully.
C:\Users\Olina\AppData\Roaming\Microsoft\Windows\Start Menu\Seznam.cz.website => ":DESTICON_email1229235768" ADS removed successfully.
C:\Users\Olina\AppData\Roaming\Microsoft\Windows\Start Menu\Seznam.cz.website => ":DESTICON_firmy-216282473" ADS removed successfully.
C:\Users\Olina\AppData\Roaming\Microsoft\Windows\Start Menu\Seznam.cz.website => ":DESTICON_novinky-1609642764" ADS removed successfully.
C:\Users\Olina\AppData\Roaming\Microsoft\Windows\Start Menu\Seznam.cz.website => ":DESTICON_prozeny771666966" ADS removed successfully.
C:\Users\Olina\AppData\Roaming\Microsoft\Windows\Start Menu\Seznam.cz.website => ":DESTICON_sport6476750" ADS removed successfully.
C:\Users\Olina\AppData\Roaming\Microsoft\Windows\Start Menu\Seznam.cz.website => ":DESTICON_stream1444311432" ADS removed successfully.
C:\Users\Olina\AppData\Roaming\Microsoft\Windows\Start Menu\Seznam.cz.website => ":DESTICON_super-41222104" ADS removed successfully.
"HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{cf6e4b1c-dbde-457e-9cef-ab8ecac8a5e8}" => Key deleted successfully.
"HKCR\CLSID\{cf6e4b1c-dbde-457e-9cef-ab8ecac8a5e8}" => Key not found.
"HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{cf6e4b1c-dbde-457e-9cef-ab8ecac8a5e8}" => Key deleted successfully.
"HKCR\CLSID\{cf6e4b1c-dbde-457e-9cef-ab8ecac8a5e8}" => Key not found.
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{34AB3C4C-DA1A-4067-96F4-31452C7CFE65} => value deleted successfully.
"HKCR\CLSID\{34AB3C4C-DA1A-4067-96F4-31452C7CFE65}" => Key not found.
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F} => value deleted successfully.
"HKCR\CLSID\{2318C2B1-4965-11D4-9B18-009027A5CD4F}" => Key not found.
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{30CEEEA2-3742-40E4-85DD-812BF1CBB83D} => value deleted successfully.
"HKCR\CLSID\{30CEEEA2-3742-40E4-85DD-812BF1CBB83D}" => Key not found.
HKU\S-1-5-21-1503038219-2209986198-3904582108-1000\Software\Microsoft\Windows\CurrentVersion\Run\\cz.seznam.software.autoupdate => value deleted successfully.
HKU\S-1-5-21-1503038219-2209986198-3904582108-1000\Software\Microsoft\Windows\CurrentVersion\Run\\cz.seznam.software.szndesktop => value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\seznam-listicka-distribuce => value deleted successfully.

==== End of Fixlog ====
Nahoru
Uživatelský avatar
motji
VIP
VIP
Příspěvky: 23302
Registrován: 23 říj 2008 08:02

Re: Zavirovaný počítač

#20 Příspěvek od motji »

Teď to vypadá jak?
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data :!:
Chcete podpořit naše forum? Informace zde

Obrázek

K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Nahoru
Jandaskunk
Návštěvník
Návštěvník
Příspěvky: 76
Registrován: 16 črc 2007 17:49

Re: Zavirovaný počítač

#21 Příspěvek od Jandaskunk »

Stále se nejde přihlásit na seznam přes Explorer
Nahoru
Jandaskunk
Návštěvník
Návštěvník
Příspěvky: 76
Registrován: 16 črc 2007 17:49

Re: Zavirovaný počítač

#22 Příspěvek od Jandaskunk »

Ještě jsem zapomněl napsat, že při přihlašování a psaní hesla se objeví v řádku takový "oko", na který když kliknu, tak se objeví heslo. To tam prý předtím nebylo. Tak nevím jestli to má tak seznam nebo jak...
Nahoru
Uživatelský avatar
motji
VIP
VIP
Příspěvky: 23302
Registrován: 23 říj 2008 08:02

Re: Zavirovaný počítač

#23 Příspěvek od motji »

Zkoušel jste explorer přeinstalovat?
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data :!:
Chcete podpořit naše forum? Informace zde

Obrázek

K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Nahoru
Jandaskunk
Návštěvník
Návštěvník
Příspěvky: 76
Registrován: 16 črc 2007 17:49

Re: Zavirovaný počítač

#24 Příspěvek od Jandaskunk »

Nezkoušel, popravdě jsem to nikdy nedělal. V programech (v ovládacích panelech) nemůžu najít odinstalačku a ve složce taky není. Je na to potřeba DVD Windows, nebo to jde dělat nějak jinak?

EDIT: Nějaký návod jsem našel na webu microsoftu, tak to zkusím.
Nahoru
Uživatelský avatar
motji
VIP
VIP
Příspěvky: 23302
Registrován: 23 říj 2008 08:02

Re: Zavirovaný počítač

#25 Příspěvek od motji »

Zkuste podle toho návodu :)
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data :!:
Chcete podpořit naše forum? Informace zde

Obrázek

K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Nahoru
Odpovědět

Zpět na „Řešení problémů, logy“