VIRY.CZ

Zdravím, dnes jsem si stáhl jeden program z uložto.cz a při následné instalaci se mi na celé obrazovce objevil text, že mi PC zablokovala PČR a mám přes PaySafe Card zaplatit pokutu 2000kč. Viz obrázek: http://www.windroid.cz/wp-content/uploads/policie.jpg. S PC nejde manipulovat, jen spustit a vypnout, při přihlášení na účet se mi to objeví znova a když se PC pokusím spustit v nouzovém režimu tak se vypne. Už jsem prolezl hodně diskuzí, ale nikde jsem nenašel řešení. Zkoušel jsem to opravit i pomocí AVG Rescue CD, ale také bez úspěchu.
Proto vás prosím o rady.
Děkuju

Zdravím!
Postupujte podle tohoto návodu: http://forum.viry.cz/viewtopic.php?f=24&t=130783 .

Tak jsem to vyzkoušel, vše běželo přesně jak mělo, ale po opětovném spuštění PC problém přetrvává..

Tohle je ten log:

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 05-08-2013
Ran by SYSTEM on 06-08-2013 10:42:48
Running from F:\
Windows 7 Home Premium Service Pack 1 (X64) OS Language: Czech
Internet Explorer Version 10
Boot Mode: Recovery

The current controlset is ControlSet001
ATTENTION!:=====> FRST is updated to run from normal or Safe mode to produce a full FRST.txt log and an extra Addition.txt log.

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [ISW] - C:\Program Files\CheckPoint\ZAForceField\ForceField.exe [1127592 2012-11-22] (Check Point Software Technologies)
HKLM\...\RunOnce: [*Restore] - C:\Windows\system32\rstrui.exe /RUNONCE [296960 2010-11-21] (Microsoft Corporation)
HKLM-x32\...\Run: [ZoneAlarm] - C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe [73832 2013-01-29] (Check Point Software Technologies LTD)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AVG_UI] - C:\Program Files (x86)\AVG\AVG2013\avgui.exe [4411440 2013-07-01] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [vProt] - C:\Program Files (x86)\AVG Secure Search\vprot.exe [2285232 2013-07-29] ()
HKLM-x32\...\Run: [4StoryPrePatch] - C:\HRY\4Story_CZ\PrePatch.exe [327680 2013-02-19] (Zemi Interactive Inc.)
HKLM-x32\...\Run: [] - [x]
HKLM-x32\...\Run: [ApnUpdater] - C:\Program Files (x86)\Ask.com\Updater\Updater.exe [1646216 2013-03-31] (Ask)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [253816 2013-03-12] (Oracle Corporation)
HKLM-x32\...\Run: [NtVdmSrv] - C:\Windows\inf\ntvdm.vbe [1219 2013-06-20] ()
HKLM-x32\...\Run: [Printsrv] - c:\Windows\System32\Printing_Admin_Scripts\en-US\pubpr.vbs [x]
HKU\Uživatel\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3672640 2013-03-14] (Disc Soft Ltd)
HKU\Uživatel\...\Winlogon: [Shell] cmd.exe [345088 2010-11-21] (Microsoft Corporation) <==== ATTENTION
HKU\Uživatel\...\Command Processor: "C:\Users\UIVATE~1\AppData\Local\Temp\6C7E.tmp.exe" <===== ATTENTION!
Startup: C:\Users\Uživatel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\dejehuea.lnk
ShortcutTarget: dejehuea.lnk -> (No File)

==================== Services (Whitelisted) =================

S2 avgwd; C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe [283136 2013-07-23] (AVG Technologies CZ, s.r.o.)
S2 IswSvc; C:\Program Files\CheckPoint\ZAForceField\IswSvc.exe [828072 2012-11-22] (Check Point Software Technologies)
S2 PnkBstrA; C:\Windows\SysWow64\PnkBstrA.exe [66872 2013-05-04] ()
S2 PnkBstrB; C:\Windows\SysWow64\PnkBstrB.exe [107832 2013-05-04] ()
S2 pr2agqwb; C:\Windows\system32\pr2agqwb.exe [777576 2007-11-14] (Cyanide)
S2 vsmon; C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe [2447888 2013-01-29] (Check Point Software Technologies LTD)
S2 vToolbarUpdater15.4.0; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\15.4.0\ToolbarUpdater.exe [1616048 2013-07-29] (AVG Secure Search)

==================== Drivers (Whitelisted) ====================

S0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [71480 2013-07-20] (AVG Technologies CZ, s.r.o.)
S0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [311608 2013-07-20] (AVG Technologies CZ, s.r.o.)
S1 Avgtdia; C:\Windows\System32\DRIVERS\avgtdia.sys [240952 2013-03-21] (AVG Technologies CZ, s.r.o.)
S1 avgtp; C:\Windows\system32\drivers\avgtpx64.sys [45856 2013-07-29] (AVG Technologies)
S1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2013-03-15] (DT Soft Ltd)
S2 ISWKL; C:\Program Files\CheckPoint\ZAForceField\ISWKL.sys [33712 2012-11-22] (Check Point Software Technologies)
S0 pe3agqwb; C:\Windows\System32\drivers\pe3agqwb.sys [72296 2007-11-14] (Cyanide)
S0 ps7agqwb; C:\Windows\System32\drivers\ps7agqwb.sys [102000 2007-11-14] (Cyanide)
S1 Vsdatant; C:\Windows\System32\DRIVERS\vsdatant.sys [450136 2012-12-13] (Check Point Software Technologies LTD)
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [x]

==================== NetSvcs (Whitelisted) ===================

==================== One Month Created Files and Folders ========

2013-08-06 01:03 - 2013-08-06 01:03 - 00000036 _____ C:\Program Files (x86)\.directory
2013-08-06 00:10 - 2013-08-06 00:10 - 00003216 ____N C:\bootsqm.dat
2013-08-06 00:05 - 2013-08-06 00:05 - 00000000 __SHD C:\found.002
2013-08-05 23:13 - 2013-08-05 23:13 - 00000048 _____ C:\.directory
2013-08-05 23:08 - 2013-08-06 01:05 - 00000000 ____D C:\Kaspersky Rescue Disk 10.0
2013-08-05 20:49 - 2013-08-05 20:49 - 00000000 __SHD C:\found.001
2013-08-05 14:57 - 2013-08-05 14:57 - 00107791 _____ C:\Users\Uživatel\AppData\Local\2433f433
2013-08-05 14:57 - 2013-08-05 14:57 - 00107760 _____ C:\ProgramData\2433f433
2013-08-05 14:57 - 2013-08-05 14:57 - 00107742 _____ C:\Users\Uživatel\AppData\Roaming\2433f433
2013-08-05 14:57 - 2013-08-05 14:57 - 00001035 _____ C:\Users\Uživatel\Desktop\KMPlayer.lnk
2013-08-05 14:56 - 2013-08-05 14:56 - 25454320 _____ C:\Users\Uživatel\Downloads\KM-Player-3.4.0.55-(update-2013)-by-nečum.exe
2013-08-05 14:51 - 2013-08-05 14:51 - 00000000 ____D C:\Users\Uživatel\Desktop\Dexter
2013-08-05 14:44 - 2013-08-05 14:47 - 468308820 _____ C:\Users\Uživatel\Downloads\Dexter.S08E06.PROPER.HDTV.XviD-AFG-+-CzSub.rar
2013-08-04 11:16 - 2013-08-04 11:16 - 00000640 _____ C:\Users\Uživatel\Desktop\Loki.lnk
2013-08-03 11:57 - 2013-08-03 12:07 - 1185148367 _____ C:\Users\Uživatel\Downloads\Robin-Hood-_2010_.AVI
2013-08-02 19:43 - 2013-08-02 19:50 - 807174998 _____ C:\Users\Uživatel\Downloads\Pad-Bileho-domu-2013-Cz.-tit.-avi..avi
2013-07-31 19:58 - 2013-07-31 19:58 - 00000000 ____D C:\Program Files (x86)\Grinding Gear Games
2013-07-31 19:57 - 2013-07-31 19:57 - 07172096 _____ C:\Users\Uživatel\Downloads\PathOfExileInstaller.msi
2013-07-31 17:34 - 2013-05-24 18:11 - 00003835 _____ C:\Users\Uživatel\Desktop\reloaded.nfo
2013-07-31 17:32 - 2013-07-31 17:32 - 00000565 _____ C:\Windows\wmsetup.log
2013-07-31 17:31 - 2013-07-31 17:31 - 00018587 _____ C:\Windows\DirectX.log
2013-07-31 17:30 - 2013-07-31 17:30 - 00000932 _____ C:\Users\Public\Desktop\Call of Juarez Gunslinger.lnk
2013-07-31 17:28 - 2013-07-31 17:30 - 00000000 ____D C:\Program Files (x86)\Call of Juarez Gunslinger
2013-07-31 12:59 - 2013-07-31 13:35 - 200310881 _____ C:\Users\Uživatel\Downloads\Call.of.Juarez.Gunslinger-RELOADED.rar
2013-07-31 11:38 - 2013-08-06 00:26 - 00002128 _____ C:\Windows\setupact.log
2013-07-31 11:38 - 2013-07-31 11:38 - 00000000 _____ C:\Windows\setuperr.log
2013-07-31 11:34 - 2013-07-31 11:34 - 00045833 _____ C:\Users\Uživatel\Downloads\Dexter.S08E05.HDTV.XviD-AFG.srt
2013-07-31 11:33 - 2013-07-31 11:33 - 00046095 _____ C:\Users\Uživatel\Downloads\Dexter.S08E05.720p.HDTV.x264-IMMERSE.srt
2013-07-31 11:20 - 2013-07-31 11:20 - 00046095 _____ C:\Users\Uživatel\Downloads\Dexter.S08E05.HDTV.x264-ASAP.srt
2013-07-31 11:09 - 2013-07-31 11:19 - 1042322512 _____ C:\Users\Uživatel\Downloads\Dexter.S08E05.720p.HDTV.x264-IMMERSE.avi.mkv
2013-07-30 16:48 - 2013-07-30 16:49 - 00000000 ____D C:\Users\Uživatel\Desktop\jjj
2013-07-30 16:14 - 2013-07-31 11:28 - 157489070 _____ C:\Users\Uživatel\Downloads\EC 25.-26.7. 2013 part 1.rar
2013-07-29 17:01 - 2013-07-29 17:23 - 1469191602 _____ C:\Users\Uživatel\Downloads\Kralovstvi-nebeske.avi
2013-07-20 00:51 - 2013-07-20 00:51 - 00311608 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\System32\Drivers\avgloga.sys
2013-07-20 00:50 - 2013-07-20 00:50 - 00071480 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\System32\Drivers\avgidsha.sys
2013-07-19 19:27 - 2013-07-19 19:33 - 731013119 _____ C:\Users\Uživatel\Downloads\Star-Trek-CZ-2009.avi
2013-07-18 21:00 - 2013-07-18 21:10 - 1131601796 _____ C:\Users\Uživatel\Downloads\Jursky-Park-3.cz.avi
2013-07-18 18:54 - 2013-07-18 19:13 - 2239971328 _____ C:\Users\Uživatel\Downloads\G.I.JOE-2-Odveta---CZ-dvdrip.avi
2013-07-17 21:02 - 2013-07-17 21:18 - 1531635882 _____ C:\Users\Uživatel\Downloads\Oko.dravce.2008-cz.avi
2013-07-17 19:51 - 2013-07-17 19:52 - 04463512 _____ (AVG Technologies) C:\Users\Uživatel\Downloads\avg_isct_stb_all_2013_3349.exe
2013-07-16 10:06 - 2013-07-16 10:06 - 00000983 _____ C:\Users\Uživatel\Desktop\Cheat Engine.lnk
2013-07-16 10:06 - 2007-12-26 16:30 - 01970176 _____ C:\Windows\SysWOW64\d3dx9.dll
2013-07-16 10:06 - 2007-12-26 16:30 - 00679936 _____ (Generated by JEDI) C:\Windows\SysWOW64\D3DX81ab.dll
2013-07-16 10:05 - 2013-07-16 10:06 - 03689060 _____ C:\Users\Uživatel\Downloads\Cheat_Engine_5.4.rar
2013-07-15 17:17 - 2013-07-16 09:48 - 00000000 ____D C:\Users\Uživatel\Documents\call of juarez
2013-07-15 16:55 - 2013-07-15 16:55 - 00184886 _____ C:\Users\Uživatel\Downloads\call-of-juarez-multiplayer-hacky-big-jump-a-dalsi-od-smekina.zip
2013-07-15 16:51 - 2013-07-15 16:51 - 00000000 ____D C:\Users\Uživatel\Documents\My Cheat Tables
2013-07-15 16:32 - 2013-07-15 16:32 - 00001468 _____ C:\Users\Uživatel\Desktop\Cheat Engine – zástupce.lnk
2013-07-15 16:30 - 2013-07-15 16:31 - 07379519 _____ C:\Users\Uživatel\Downloads\Cheat-Engine-6.2.rar
2013-07-15 16:25 - 2013-07-15 16:25 - 00000000 ____D C:\Users\Uživatel\Desktop\Injector,BigJump,Ammo hackl,wallhack flyhack,speedhack by !-WW-!m!Kopec
2013-07-15 16:20 - 2013-07-29 12:31 - 00000000 ____D C:\Users\Uživatel\Desktop\filmy na HDD
2013-07-15 09:31 - 2013-07-15 10:00 - 1891786752 _____ C:\Users\Uživatel\Downloads\Jursky.park.II.1997.480p.DVDRip.XviD.AC3.CZ.-calibrum2.avi
2013-07-15 09:31 - 2013-07-15 09:54 - 1323330890 _____ C:\Users\Uživatel\Downloads\JURSKY-PARK-1.avi
2013-07-12 19:38 - 2013-07-12 19:38 - 02466248 _____ (Check Point Software Technologies LTD) C:\Users\Uživatel\Downloads\zafwSetupWeb_110_768_000.exe
2013-07-12 19:36 - 2013-07-12 19:38 - 146304784 _____ (AVG Technologies) C:\Users\Uživatel\Downloads\avg_isct_x86_all_2013_3349a6461.exe
2013-07-11 18:28 - 2013-07-11 18:41 - 1073690624 _____ C:\Users\Uživatel\Downloads\Kill-Bill-2.avi
2013-07-11 13:05 - 2013-07-11 13:05 - 00684323 _____ C:\Users\Uživatel\Downloads\SGCraft-0.5.2-mc1.5.1.jar
2013-07-10 23:29 - 2013-06-12 00:43 - 14329856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-07-10 23:29 - 2013-06-12 00:43 - 02877440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-07-10 23:29 - 2013-06-12 00:43 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-07-10 23:29 - 2013-06-12 00:43 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-07-10 23:29 - 2013-06-12 00:43 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-07-10 23:29 - 2013-06-12 00:43 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-07-10 23:29 - 2013-06-12 00:43 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-07-10 23:29 - 2013-06-12 00:42 - 13760512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-07-10 23:29 - 2013-06-12 00:42 - 02046976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-07-10 23:29 - 2013-06-12 00:42 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-07-10 23:29 - 2013-06-12 00:42 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-07-10 23:29 - 2013-06-12 00:42 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-07-10 23:29 - 2013-06-12 00:42 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-07-10 23:29 - 2013-06-12 00:26 - 02241024 _____ (Microsoft Corporation) C:\Windows\System32\wininet.dll
2013-07-10 23:29 - 2013-06-12 00:26 - 01365504 _____ (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2013-07-10 23:29 - 2013-06-12 00:26 - 00051712 _____ (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe
2013-07-10 23:29 - 2013-06-12 00:25 - 19238912 _____ (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2013-07-10 23:29 - 2013-06-12 00:25 - 15404032 _____ (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2013-07-10 23:29 - 2013-06-12 00:25 - 03958784 _____ (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2013-07-10 23:29 - 2013-06-12 00:25 - 02648576 _____ (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2013-07-10 23:29 - 2013-06-12 00:25 - 00855552 _____ (Microsoft Corporation) C:\Windows\System32\jscript.dll
2013-07-10 23:29 - 2013-06-12 00:25 - 00603136 _____ (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2013-07-10 23:29 - 2013-06-12 00:25 - 00526336 _____ (Microsoft Corporation) C:\Windows\System32\ieui.dll
2013-07-10 23:29 - 2013-06-12 00:25 - 00136704 _____ (Microsoft Corporation) C:\Windows\System32\iesysprep.dll
2013-07-10 23:29 - 2013-06-12 00:25 - 00067072 _____ (Microsoft Corporation) C:\Windows\System32\iesetup.dll
2013-07-10 23:29 - 2013-06-12 00:25 - 00053248 _____ (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2013-07-10 23:29 - 2013-06-12 00:25 - 00039936 _____ (Microsoft Corporation) C:\Windows\System32\iernonce.dll
2013-07-10 23:29 - 2013-06-11 23:51 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-07-10 23:29 - 2013-06-11 23:50 - 00089600 _____ (Microsoft Corporation) C:\Windows\System32\RegisterIEPKEYs.exe
2013-07-10 23:29 - 2013-06-07 04:22 - 02706432 _____ (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2013-07-10 23:29 - 2013-06-07 03:37 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-07-10 23:25 - 2013-07-10 23:25 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2013-07-10 23:25 - 2013-07-10 23:25 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2013-07-10 22:38 - 2013-07-10 22:40 - 177516376 _____ C:\Users\Uživatel\Downloads\Simpsonovi_24x04_Deda_na_uteku_XVID_CZ.avi
2013-07-10 22:17 - 2013-07-10 22:20 - 175604534 _____ C:\Users\Uživatel\Downloads\Simpsonovi.24x02.Specialni.carodejnicky.dil.XXIII.DVB-T.XviD.CZ.avi
2013-07-10 22:16 - 2013-07-10 22:18 - 171684472 _____ C:\Users\Uživatel\Downloads\Simpsonovi.24x03.Deti.jako.smeti.DVB-T.XviD.CZ.avi
2013-07-10 10:44 - 2013-06-05 04:34 - 03153920 _____ (Microsoft Corporation) C:\Windows\System32\win32k.sys
2013-07-10 10:44 - 2013-06-04 07:00 - 00624128 _____ (Microsoft Corporation) C:\Windows\System32\qedit.dll
2013-07-10 10:44 - 2013-06-04 05:53 - 00509440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2013-07-10 10:44 - 2013-05-06 07:03 - 01887744 _____ (Microsoft Corporation) C:\Windows\System32\WMVDECOD.DLL
2013-07-10 10:44 - 2013-05-06 05:56 - 01620480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2013-07-10 10:44 - 2013-04-10 00:34 - 01247744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2013-07-10 10:44 - 2013-04-02 23:51 - 01643520 _____ (Microsoft Corporation) C:\Windows\System32\DWrite.dll
2013-07-08 21:30 - 2013-07-08 21:39 - 981513568 _____ C:\Users\Uživatel\Downloads\Proklety-Ostrov-cz-dabing.avi
2013-07-08 20:54 - 2013-07-08 20:54 - 00484992 _____ C:\Users\Uživatel\Downloads\Minecraft.exe
2013-07-08 20:52 - 2013-07-08 20:52 - 00234010 _____ C:\Windows\SysWOW64\poclbm130302GeForce GTX 550 Tigv1w256l4.bin
2013-07-08 20:52 - 2013-07-08 20:52 - 00000000 ____D C:\Program Files (x86)\Minecraft 1.5.2 plna hra
2013-07-08 20:52 - 2013-07-08 20:52 - 00000000 ____D C:\Program Files (x86)\Company
2013-07-08 20:52 - 2013-07-08 20:52 - 00000000 _____ C:\Users\Uživatel\regbcm
2013-07-08 20:51 - 2013-07-08 20:52 - 14856963 _____ ( ) C:\Users\Uživatel\Downloads\Minecraft-1.5.2-plna-hra.exe
2013-07-08 20:46 - 2013-07-08 20:51 - 482332672 _____ C:\Users\Uživatel\Downloads\Dexter-s08e02-CZ-titulky.avi
2013-07-08 16:58 - 2013-07-08 17:04 - 731539456 _____ C:\Users\Uživatel\Downloads\valkyra-2008-dvdrip-xvid-cz-sk4te.avi
117

==================== One Month Modified Files and Folders =======

2013-08-06 01:13 - 2013-08-06 01:13 - 00000000 ____D C:\FRST
2013-08-06 01:05 - 2013-08-05 23:08 - 00000000 ____D C:\Kaspersky Rescue Disk 10.0
2013-08-06 01:03 - 2013-08-06 01:03 - 00000036 _____ C:\Program Files (x86)\.directory
2013-08-06 00:29 - 2013-03-11 12:40 - 01254031 _____ C:\Windows\WindowsUpdate.log
2013-08-06 00:26 - 2013-07-31 11:38 - 00002128 _____ C:\Windows\setupact.log
2013-08-06 00:26 - 2013-06-19 15:49 - 00000382 _____ C:\Windows\Tasks\SmartPCFix Task.job
2013-08-06 00:26 - 2013-05-17 16:52 - 00000500 _____ C:\Windows\Tasks\ParetoLogic Update Version3 Startup Task.job
2013-08-06 00:26 - 2013-03-15 17:09 - 00000952 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-08-06 00:26 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-08-06 00:10 - 2013-08-06 00:10 - 00003216 ____N C:\bootsqm.dat
2013-08-06 00:05 - 2013-08-06 00:05 - 00000000 __SHD C:\found.002
2013-08-05 23:13 - 2013-08-05 23:13 - 00000048 _____ C:\.directory
2013-08-05 20:49 - 2013-08-05 20:49 - 00000000 __SHD C:\found.001
2013-08-05 20:45 - 2013-03-11 12:52 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-08-05 20:34 - 2013-03-15 17:09 - 00000956 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-08-05 20:22 - 2009-07-14 05:45 - 00021872 ____H C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-08-05 20:22 - 2009-07-14 05:45 - 00021872 ____H C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-08-05 14:57 - 2013-08-05 14:57 - 00107791 _____ C:\Users\Uživatel\AppData\Local\2433f433
2013-08-05 14:57 - 2013-08-05 14:57 - 00107760 _____ C:\ProgramData\2433f433
2013-08-05 14:57 - 2013-08-05 14:57 - 00107742 _____ C:\Users\Uživatel\AppData\Roaming\2433f433
2013-08-05 14:57 - 2013-08-05 14:57 - 00001035 _____ C:\Users\Uživatel\Desktop\KMPlayer.lnk
2013-08-05 14:56 - 2013-08-05 14:56 - 25454320 _____ C:\Users\Uživatel\Downloads\KM-Player-3.4.0.55-(update-2013)-by-nečum.exe
2013-08-05 14:51 - 2013-08-05 14:51 - 00000000 ____D C:\Users\Uživatel\Desktop\Dexter
2013-08-05 14:47 - 2013-08-05 14:44 - 468308820 _____ C:\Users\Uživatel\Downloads\Dexter.S08E06.PROPER.HDTV.XviD-AFG-+-CzSub.rar
2013-08-05 09:22 - 2013-03-15 18:04 - 00000000 ___RD C:\Users\Uživatel\Desktop\hry
2013-08-05 09:21 - 2013-05-17 16:38 - 00000000 ____D C:\ProgramData\MFAData
2013-08-04 18:42 - 2013-03-15 17:21 - 00000000 ____D C:\HRY
2013-08-04 17:00 - 2013-05-17 16:52 - 00000474 _____ C:\Windows\Tasks\ParetoLogic Registration3.job
2013-08-04 11:16 - 2013-08-04 11:16 - 00000640 _____ C:\Users\Uživatel\Desktop\Loki.lnk
2013-08-04 10:00 - 2013-03-11 12:54 - 00000000 ____D C:\Users\Uživatel\AppData\Local\Adobe
2013-08-04 09:52 - 2013-03-11 12:52 - 00692104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-08-04 09:52 - 2013-03-11 12:52 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-08-04 09:52 - 2013-03-11 12:52 - 00003852 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-08-04 00:03 - 2013-03-15 19:56 - 00000000 ____D C:\Users\Uživatel\AppData\Roaming\Skype
2013-08-03 21:45 - 2013-06-26 12:05 - 00000000 ____D C:\Users\Uživatel\Desktop\Ekura
2013-08-03 12:07 - 2013-08-03 11:57 - 1185148367 _____ C:\Users\Uživatel\Downloads\Robin-Hood-_2010_.AVI
2013-08-02 19:50 - 2013-08-02 19:43 - 807174998 _____ C:\Users\Uživatel\Downloads\Pad-Bileho-domu-2013-Cz.-tit.-avi..avi
2013-08-02 18:46 - 2013-06-09 11:29 - 00000000 ____D C:\Users\Uživatel\AppData\Roaming\.minecraft
2013-08-01 17:36 - 2013-03-15 17:10 - 00002183 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2013-07-31 19:58 - 2013-07-31 19:58 - 00000000 ____D C:\Program Files (x86)\Grinding Gear Games
2013-07-31 19:58 - 2013-03-15 18:20 - 00000000 ____D C:\Users\Uživatel\Documents\My Games
2013-07-31 19:57 - 2013-07-31 19:57 - 07172096 _____ C:\Users\Uživatel\Downloads\PathOfExileInstaller.msi
2013-07-31 17:32 - 2013-07-31 17:32 - 00000565 _____ C:\Windows\wmsetup.log
2013-07-31 17:31 - 2013-07-31 17:31 - 00018587 _____ C:\Windows\DirectX.log
2013-07-31 17:30 - 2013-07-31 17:30 - 00000932 _____ C:\Users\Public\Desktop\Call of Juarez Gunslinger.lnk
2013-07-31 17:30 - 2013-07-31 17:28 - 00000000 ____D C:\Program Files (x86)\Call of Juarez Gunslinger
2013-07-31 13:44 - 2013-03-15 17:43 - 00000000 ____D C:\Users\Uživatel\AppData\Roaming\DAEMON Tools Lite
2013-07-31 13:35 - 2013-07-31 12:59 - 200310881 _____ C:\Users\Uživatel\Downloads\Call.of.Juarez.Gunslinger-RELOADED.rar
2013-07-31 11:40 - 2013-03-15 18:54 - 00000000 ____D C:\Users\Uživatel\AppData\Roaming\Media Player Classic
2013-07-31 11:38 - 2013-07-31 11:38 - 00000000 _____ C:\Windows\setuperr.log
2013-07-31 11:34 - 2013-07-31 11:34 - 00045833 _____ C:\Users\Uživatel\Downloads\Dexter.S08E05.HDTV.XviD-AFG.srt
2013-07-31 11:33 - 2013-07-31 11:33 - 00046095 _____ C:\Users\Uživatel\Downloads\Dexter.S08E05.720p.HDTV.x264-IMMERSE.srt
2013-07-31 11:28 - 2013-07-30 16:14 - 157489070 _____ C:\Users\Uživatel\Downloads\EC 25.-26.7. 2013 part 1.rar
2013-07-31 11:20 - 2013-07-31 11:20 - 00046095 _____ C:\Users\Uživatel\Downloads\Dexter.S08E05.HDTV.x264-ASAP.srt
2013-07-31 11:19 - 2013-07-31 11:09 - 1042322512 _____ C:\Users\Uživatel\Downloads\Dexter.S08E05.720p.HDTV.x264-IMMERSE.avi.mkv
2013-07-30 16:49 - 2013-07-30 16:48 - 00000000 ____D C:\Users\Uživatel\Desktop\jjj
2013-07-29 18:52 - 2013-06-26 15:13 - 00003715 _____ C:\Program Files (x86)\Mozilla Firefoxavg-secure-search.xml
2013-07-29 18:51 - 2013-05-17 16:43 - 00045856 _____ (AVG Technologies) C:\Windows\System32\Drivers\avgtpx64.sys
2013-07-29 18:51 - 2013-05-17 16:42 - 00000000 ____D C:\Program Files (x86)\AVG Secure Search
2013-07-29 17:23 - 2013-07-29 17:01 - 1469191602 _____ C:\Users\Uživatel\Downloads\Kralovstvi-nebeske.avi
2013-07-29 12:32 - 2013-03-15 17:05 - 00000000 ___RD C:\Users\Uživatel\Desktop\Údržba a bezpečnost
2013-07-29 12:31 - 2013-07-15 16:20 - 00000000 ____D C:\Users\Uživatel\Desktop\filmy na HDD
2013-07-20 09:20 - 2013-03-15 19:56 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-07-20 00:51 - 2013-07-20 00:51 - 00311608 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\System32\Drivers\avgloga.sys
2013-07-20 00:50 - 2013-07-20 00:50 - 00071480 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\System32\Drivers\avgidsha.sys
2013-07-19 19:33 - 2013-07-19 19:27 - 731013119 _____ C:\Users\Uživatel\Downloads\Star-Trek-CZ-2009.avi
2013-07-18 21:10 - 2013-07-18 21:00 - 1131601796 _____ C:\Users\Uživatel\Downloads\Jursky-Park-3.cz.avi
2013-07-18 19:13 - 2013-07-18 18:54 - 2239971328 _____ C:\Users\Uživatel\Downloads\G.I.JOE-2-Odveta---CZ-dvdrip.avi
2013-07-17 21:18 - 2013-07-17 21:02 - 1531635882 _____ C:\Users\Uživatel\Downloads\Oko.dravce.2008-cz.avi
2013-07-17 19:53 - 2013-05-17 16:41 - 00000000 ____D C:\ProgramData\AVG2013
2013-07-17 19:52 - 2013-07-17 19:51 - 04463512 _____ (AVG Technologies) C:\Users\Uživatel\Downloads\avg_isct_stb_all_2013_3349.exe
2013-07-16 13:11 - 2013-03-28 19:36 - 00000000 ____D C:\Program Files (x86)\QuadCoreM2
2013-07-16 10:06 - 2013-07-16 10:06 - 00000983 _____ C:\Users\Uživatel\Desktop\Cheat Engine.lnk
2013-07-16 10:06 - 2013-07-16 10:05 - 03689060 _____ C:\Users\Uživatel\Downloads\Cheat_Engine_5.4.rar
2013-07-16 09:48 - 2013-07-15 17:17 - 00000000 ____D C:\Users\Uživatel\Documents\call of juarez
2013-07-16 09:44 - 2009-07-14 05:45 - 00330168 _____ C:\Windows\System32\FNTCACHE.DAT
2013-07-15 17:20 - 2013-03-11 12:54 - 00072224 _____ C:\Users\Uživatel\AppData\Local\GDIPFONTCACHEV1.DAT
2013-07-15 16:55 - 2013-07-15 16:55 - 00184886 _____ C:\Users\Uživatel\Downloads\call-of-juarez-multiplayer-hacky-big-jump-a-dalsi-od-smekina.zip
2013-07-15 16:51 - 2013-07-15 16:51 - 00000000 ____D C:\Users\Uživatel\Documents\My Cheat Tables
2013-07-15 16:36 - 2013-03-15 17:43 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2013-07-15 16:32 - 2013-07-15 16:32 - 00001468 _____ C:\Users\Uživatel\Desktop\Cheat Engine – zástupce.lnk
2013-07-15 16:31 - 2013-07-15 16:30 - 07379519 _____ C:\Users\Uživatel\Downloads\Cheat-Engine-6.2.rar
2013-07-15 16:25 - 2013-07-15 16:25 - 00000000 ____D C:\Users\Uživatel\Desktop\Injector,BigJump,Ammo hackl,wallhack flyhack,speedhack by !-WW-!m!Kopec
2013-07-15 16:25 - 2013-06-23 16:51 - 00000000 ____D C:\Users\Uživatel\AppData\Roaming\uTorrent
2013-07-15 16:25 - 2013-03-11 12:32 - 00000000 ____D C:\Windows\Panther
2013-07-15 10:00 - 2013-07-15 09:31 - 1891786752 _____ C:\Users\Uživatel\Downloads\Jursky.park.II.1997.480p.DVDRip.XviD.AC3.CZ.-calibrum2.avi
2013-07-15 09:54 - 2013-07-15 09:31 - 1323330890 _____ C:\Users\Uživatel\Downloads\JURSKY-PARK-1.avi
2013-07-12 19:38 - 2013-07-12 19:38 - 02466248 _____ (Check Point Software Technologies LTD) C:\Users\Uživatel\Downloads\zafwSetupWeb_110_768_000.exe
2013-07-12 19:38 - 2013-07-12 19:36 - 146304784 _____ (AVG Technologies) C:\Users\Uživatel\Downloads\avg_isct_x86_all_2013_3349a6461.exe
2013-07-12 18:29 - 2013-03-15 17:09 - 00003952 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2013-07-12 18:29 - 2013-03-15 17:09 - 00003700 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2013-07-11 20:44 - 2011-04-12 09:34 - 00666406 _____ C:\Windows\System32\perfh005.dat
2013-07-11 20:44 - 2011-04-12 09:34 - 00140102 _____ C:\Windows\System32\perfc005.dat
2013-07-11 20:44 - 2009-07-14 06:13 - 01577410 _____ C:\Windows\System32\PerfStringBackup.INI
2013-07-11 18:41 - 2013-07-11 18:28 - 1073690624 _____ C:\Users\Uživatel\Downloads\Kill-Bill-2.avi
2013-07-11 13:05 - 2013-07-11 13:05 - 00684323 _____ C:\Users\Uživatel\Downloads\SGCraft-0.5.2-mc1.5.1.jar
2013-07-11 08:09 - 2011-04-12 09:45 - 00000000 ____D C:\Program Files\Windows Journal
2013-07-11 08:09 - 2009-07-14 06:32 - 00000000 ____D C:\Program Files\Windows Defender
2013-07-11 08:09 - 2009-07-14 06:32 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2013-07-10 23:30 - 2013-03-11 14:06 - 78185248 _____ (Microsoft Corporation) C:\Windows\System32\MRT.exe
2013-07-10 23:25 - 2013-07-10 23:25 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2013-07-10 23:25 - 2013-07-10 23:25 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2013-07-10 22:40 - 2013-07-10 22:38 - 177516376 _____ C:\Users\Uživatel\Downloads\Simpsonovi_24x04_Deda_na_uteku_XVID_CZ.avi
2013-07-10 22:20 - 2013-07-10 22:17 - 175604534 _____ C:\Users\Uživatel\Downloads\Simpsonovi.24x02.Specialni.carodejnicky.dil.XXIII.DVB-T.XviD.CZ.avi
2013-07-10 22:18 - 2013-07-10 22:16 - 171684472 _____ C:\Users\Uživatel\Downloads\Simpsonovi.24x03.Deti.jako.smeti.DVB-T.XviD.CZ.avi
2013-07-08 21:39 - 2013-07-08 21:30 - 981513568 _____ C:\Users\Uživatel\Downloads\Proklety-Ostrov-cz-dabing.avi
2013-07-08 21:12 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\LiveKernelReports
2013-07-08 20:54 - 2013-07-08 20:54 - 00484992 _____ C:\Users\Uživatel\Downloads\Minecraft.exe
2013-07-08 20:52 - 2013-07-08 20:52 - 00234010 _____ C:\Windows\SysWOW64\poclbm130302GeForce GTX 550 Tigv1w256l4.bin
2013-07-08 20:52 - 2013-07-08 20:52 - 00000000 ____D C:\Program Files (x86)\Minecraft 1.5.2 plna hra
2013-07-08 20:52 - 2013-07-08 20:52 - 00000000 ____D C:\Program Files (x86)\Company
2013-07-08 20:52 - 2013-07-08 20:52 - 00000000 _____ C:\Users\Uživatel\regbcm
2013-07-08 20:52 - 2013-07-08 20:51 - 14856963 _____ ( ) C:\Users\Uživatel\Downloads\Minecraft-1.5.2-plna-hra.exe
2013-07-08 20:52 - 2013-03-11 12:39 - 00000000 ____D C:\users\Uživatel
2013-07-08 20:52 - 2011-04-12 09:34 - 00000000 ____D C:\Windows\SysWOW64\Printing_Admin_Scripts
2013-07-08 20:51 - 2013-07-08 20:46 - 482332672 _____ C:\Users\Uživatel\Downloads\Dexter-s08e02-CZ-titulky.avi
2013-07-08 17:04 - 2013-07-08 16:58 - 731539456 _____ C:\Users\Uživatel\Downloads\valkyra-2008-dvdrip-xvid-cz-sk4te.avi

Files to move or delete:
====================
C:\Users\UIVATE~1\AppData\Local\Temp\6C7E.tmp.exe

==================== Known DLLs (Whitelisted) ================

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

==================== EXE ASSOCIATION =====================

HKLM\...\.exe: exefile => OK
HKLM\...\exefile\DefaultIcon: %1 => OK
HKLM\...\exefile\open\command: "%1" %* => OK

==================== Restore Points =========================

Restore point made on: 2013-07-31 17:30:48
Restore point made on: 2013-07-31 19:58:07
Restore point made on: 2013-07-31 22:06:53
Restore point made on: 2013-08-01 13:46:58
Restore point made on: 2013-08-01 21:32:31
Restore point made on: 2013-08-02 13:00:35
Restore point made on: 2013-08-02 13:17:32
Restore point made on: 2013-08-02 22:16:07
Restore point made on: 2013-08-03 12:43:37
Restore point made on: 2013-08-04 00:07:19
Restore point made on: 2013-08-04 18:42:37
Restore point made on: 2013-08-04 20:08:37

==================== Memory info ===========================

Percentage of memory in use: 16%
Total physical RAM: 4078.53 MB
Available physical RAM: 3413.3 MB
Total Pagefile: 4076.73 MB
Available Pagefile: 3399 MB
Total Virtual: 8192 MB
Available Virtual: 8191.86 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:931.41 GB) (Free:583.5 GB) NTFS (Disk=0 Partition=2)
Drive f: (ADAS) (Removable) (Total:14.9 GB) (Free:14.12 GB) FAT32 (Disk=1 Partition=1)
Drive x: (Boot) (Fixed) (Total:0.03 GB) (Free:0.03 GB) NTFS
Drive y: (Rezervováno systémem) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS (Disk=0 Partition=1) ==>[System with boot components (obtained from reading drive)]

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 932 GB) (Disk ID: 04DBC250)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=931 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (Size: 15 GB) (Disk ID: C3072E18)
Partition 1: (Active) - (Size=15 GB) - (Type=0C)

LastRegBack: 2013-07-13 20:49

==================== End Of Log ============================

Připojte flešku do funkčního PC a spusťte poznámkový blok. Zkopírujte do něj:

2013-08-05 14:57 - 2013-08-05 14:57 - 00107760 _____ C:\ProgramData\2433f433
2013-08-05 14:57 - 2013-08-05 14:57 - 00107791 _____ C:\Users\Uživatel\AppData\Local\2433f433
2013-08-05 14:57 - 2013-08-05 14:57 - 00107742 _____ C:\Users\Uživatel\AppData\Roaming\2433f433
CMD: del C:\Users\UIVATE~1\AppData\Local\Temp\6C7E.tmp.exe
CMD: del C:\Windows\inf\ntvdm.vbe
CMD: del C:\Program Files (x86)\Ask.com
CMD: del C:\Users\Uživatel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\dejehuea.lnk

Uložte jako fixlist.txt a přesuňte ho do stejného adresáře, jako FRST. Spusťte na napadeném PC v řádkovém režimu a Spusťte FRST. Klikněte na >Fix<. Fixlist bude načten a provede mazání. Pak zkuste nastartovat PC alespoň do nouz. režimu.

Včera jsem chtil virus se stejným obrázkem.
Problém je v tom, že se mi nedaří dostat z nouzového režimu. Vždy mi to nabídne abych si vybral operační system a pak se to omluví, že to nelze spustit, no a pokud dám spustit klasiku tak skončím u obrázku.Co tedy dál?
Jště jsem zapomněl dodat že PC moc nerozumím.

2Milda13: Založte si,prosím, vlastní topic. U nás se nevstupuje do cizích vláken. Děkujeme.

Omlouvám se, nechtěl jsem zavádět z důvodu spamu úplně stejný topic.

VIRY.CZ

VIRUS POLICIE

VIRUS POLICIE

Re: VIRUS POLICIE

Re: VIRUS POLICIE

Re: VIRUS POLICIE

Re: VIRUS POLICIE

Re: VIRUS POLICIE

Re: VIRUS POLICIE

Re: VIRUS POLICIE

Re: VIRUS POLICIE