Blackbox fix isdone.dll - virus (blíže v textu)

[krampusak]

Ahoj,
situace k popukání. Pokoušel jsem se nainstalovat Mafia II crack od Black Box, vyhazovalo to chyby až jsem se prokousal k programu, který by je měl opravit. Po spuštění programu se začal vypínat PC a po zapnutí se dostanu jen do výchozího profilu uživatele systému. Profil se identifikuje jako můj, ale plocha je prázdná, ve všech programech není nic a skoro nic nejde spustit. Kopie Windows se hlásí jako neoriginální (originální je). Chrome, Opera, Firefox nejdou spustit, jediný prohlížeč funguje IE. Stahovat z netu nejde. Většina stránek nelze otevřít. Body obnovení neexistují.
K souboru, který vše odstartoval, jsem se dostal po zadání "isdone.dll blackbox fix". Bohužel už nemůžu přiložit odkaz na konkrétní stránku, nyní se na ni nemůžu dostat. Většina programů, které jsem používal na vypořádání se s havětí nejde spustit. Ty co jdou, většinou podivně končí dřív, než by splnily svoji funkci. FRST spustit lze, ale log se mi zdá poněkud chudý...
Pomůmže někdo v zoufalý situaci?
V procesech se mi potuluje conhost.exe, kterým si nejsem moc jistej... ukončit nejde
Jediný vyhledávač funguje bing

Přikládám log z FRST

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 25-02-2015 01
Ran by uživatel (administrator) on PC on 26-02-2015 19:17:54
Running from C:\Utils & Tools\Anti - vir, malware, kill
Loaded Profiles: False (Available profiles: ) <==== ATTENTION (Temporary Profile?)
Platform: Windows 7 Professional Service Pack 1 (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)



==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dl ... ar=msnhome
URLSearchHook: HKLM-x32 - (No Name) - {31264a33-a653-46c4-af49-1232c59a7da5} - No File
SearchScopes: HKLM-x32 -> DefaultScope value is missing.
BHO-x32: HP Print Enhancer -> {0347C33E-8762-4905-BF09-768834316C61} -> C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)
BHO-x32: MSS+ Identifier -> {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} -> C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll (McAfee, Inc.)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: HP Smart BHO Class -> {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} -> C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
Toolbar: HKLM-x32 - No Name - {31264a33-a653-46c4-af49-1232c59a7da5} - No File
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_305.dll ()
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_305.dll ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF HKLM-x32\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2013-05-13]

Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [bopakagnckmlgajfccecajhnimjiiedh] - http://clients2.google.com/service/update2/crx

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== Files in the root of some directories =======

2014-01-30 23:48 - 2014-01-29 11:48 - 0000044 ____H () C:\Program Files (x86)\49dc48f5.tmp

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-02-23 20:58

==================== End Of Log ============================

[krampusak]

dohledal jsem soubor, který to odstartoval... v příloze

[altrok]

Zdravim

Az narazite na crack, kterej bude obsahovat kryptovir, pak se teprv budete divit...

Udelejte FRST log v nouzovem rezimu.

[krampusak]

přikládám FRST z nouzového režimu


Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 25-02-2015 01
Ran by uživatel (administrator) on PC on 27-02-2015 08:05:07
Running from C:\Utils & Tools\Anti - vir, malware, kill
Loaded Profiles: False (Available profiles: ) <==== ATTENTION (Temporary Profile?)
Platform: Windows 7 Professional Service Pack 1 (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: IE)
Boot Mode: Safe Mode (minimal)
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12446824 2012-01-31] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1156712 2011-11-15] (Realtek Semiconductor)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2847016 2011-11-10] (Synaptics Incorporated)
HKLM\...\Run: [Energy Management] => C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [8071680 2013-03-28] (Lenovo (Beijing) Limited)
HKLM\...\Run: [EnergyUtility] => C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [6193152 2013-03-28] (Lenovo(beijing) Limited)
HKLM\...\Run: [SynLenovoGestureMgr] => C:\Program Files\Synaptics\SynTP\SynLenovoGestureMgr.exe [408872 2011-11-10] (Synaptics)
HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [1332296 2015-01-30] (Microsoft Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2461504 2014-09-17] (NVIDIA Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated)
HKLM\...\Run: [SpywareTerminatorShield] => C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorShield.exe [2777296 2012-09-07] (Crawler.com)
HKLM\...\Run: [SpywareTerminatorUpdater] => C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe [3681688 2014-05-13] (Crawler.com)
HKLM-x32\...\Run: [Dolby Home Theater v4] => C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe [506712 2011-06-01] (Dolby Laboratories Inc.)
HKLM-x32\...\Run: [MuteSync] => c:\Program Files (x86)\Lenovo\Lenovo MuteSync\MuteSync.exe [343040 2012-02-03] (Lenovo)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291608 2012-01-27] (Intel Corporation)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [SteelSeries World of Warcraft Cataclysm MMO Gaming Mouse] => C:\Program Files (x86)\SteelSeries\World of Warcraft Cataclysm MMO Gaming Mouse\WoWMHID2.exe [1993216 2011-08-18] (SteelSeries)
HKLM-x32\...\Run: [Lenovo EasyCamera_Monitor] => C:\Program Files (x86)\Lenovo EasyCamera\monitor.exe [258936 2012-02-06] ()
HKLM-x32\...\Run: [4-Day Forecast] => C:\Program Files (x86)\4-Day Forecast\4-Day Forecast\4-Day Forecast.exe [1060864 2008-11-10] ()
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
Winlogon\Notify\igfxcui: igfxdev.dll [X]
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [174856 2014-09-14] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [156840 2014-09-14] (NVIDIA Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dl ... ar=msnhome
URLSearchHook: HKLM-x32 - (No Name) - {31264a33-a653-46c4-af49-1232c59a7da5} - No File
SearchScopes: HKLM-x32 -> DefaultScope value is missing.
BHO-x32: HP Print Enhancer -> {0347C33E-8762-4905-BF09-768834316C61} -> C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)
BHO-x32: MSS+ Identifier -> {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} -> C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll (McAfee, Inc.)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: HP Smart BHO Class -> {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} -> C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
Toolbar: HKLM-x32 - No Name - {31264a33-a653-46c4-af49-1232c59a7da5} - No File

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_305.dll ()
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_305.dll ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF HKLM-x32\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2013-05-13]

Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [bopakagnckmlgajfccecajhnimjiiedh] - http://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S2 BstHdAndroidSvc; C:\Program Files (x86)\BlueStacks\HD-Service.exe [393032 2013-06-19] (BlueStack Systems, Inc.)
S2 BstHdLogRotatorSvc; C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [384840 2013-06-19] (BlueStack Systems, Inc.)
S2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1149760 2014-09-17] (NVIDIA Corporation)
S2 HPSLPSVC; C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL [1039360 2010-10-22] (Hewlett-Packard Co.) [File not signed]
S2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [318568 2014-10-20] (Intel Corporation)
S2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [128280 2012-02-08] ()
S2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [161560 2012-02-08] (Intel Corporation)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe [289256 2014-04-09] (McAfee, Inc.)
S2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [23784 2015-01-30] (Microsoft Corporation)
S2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [File not signed]
S3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [366512 2015-01-30] (Microsoft Corporation)
S2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1796928 2014-09-17] (NVIDIA Corporation)
S2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [19440960 2014-09-17] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [1910128 2015-02-09] (Electronic Arts)
S2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [File not signed]
S2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2013-04-18] ()
S2 ReimageRealTimeProtector; C:\Program Files\Reimage\Reimage Protector\ReiGuard.exe [7410024 2015-01-14] (Reimage®)
S2 ST2012_Svc; C:\Program Files (x86)\Spyware Terminator\st_rsser64.exe [1148664 2012-09-07] (Crawler.com)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
S2 TBSrv; C:\Program Files (x86)\Tbccint\ToolbarService\ToolbarService.exe [350528 2014-04-10] (ClientConnect Ltd.)
S2 Themes; C:\Windows\system32\themeservice.dll [44544 2013-04-19] (Microsoft Corporation) [File not signed]
S2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S3 AndNetDiag; C:\Windows\System32\DRIVERS\lgandnetdiag64.sys [29184 2012-07-03] (LG Electronics Inc.)
S3 ANDNetModem; C:\Windows\System32\DRIVERS\lgandnetmodem64.sys [36352 2012-07-03] (LG Electronics Inc.)
S3 andnetndis; C:\Windows\System32\DRIVERS\lgandnetndis64.sys [93184 2012-07-04] (LG Electronics Inc.)
S2 BstHdDrv; C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [70984 2013-06-19] (BlueStack Systems)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2014-07-27] (Disc Soft Ltd)
S2 eusk2par; C:\Windows\SysWOW64\Drivers\eusk2par.sys [16695 2003-06-06] (EUTRON) [File not signed]
S0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [274696 2014-11-15] (Microsoft Corporation)
S2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [124560 2014-11-15] (Microsoft Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [20288 2014-09-17] (NVIDIA Corporation)
S3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [38048 2014-09-04] (NVIDIA Corporation)
S1 PCLEPCI; C:\Windows\SysWOW64\drivers\pclepci.sys [14165 2005-02-09] (Pinnacle Systems GmbH) [File not signed]
S3 SPUVCbv; C:\Windows\System32\Drivers\usbvideo.sys [185344 2013-07-12] (Microsoft Corporation)
S2 sp_rsdrv2; C:\Windows\System32\DRIVERS\stflt.sys [51496 2014-07-27] (Windows (R) Win 7 DDK provider)
R3 SSMO3v2Filter; C:\Windows\System32\drivers\MO3v2Driver.sys [23040 2010-11-22] (Sagatek Co. Ltd.)
S3 ASAPIW2K; \??\C:\Windows\SysWOW64\Drivers\asapiW2k.sys [X]
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 cpuz134; \??\C:\Users\UIVATE~1\AppData\Local\Temp\cpuz134\cpuz134_x64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-02-27 08:05 - 2015-02-27 08:05 - 00000479 _____ () \FRST\users00
2015-02-27 08:04 - 2015-02-27 08:04 - 00014660 ___SH () C:\Help_MValidator.H1D
2015-02-26 22:00 - 2015-02-26 22:00 - 00000000 ____D () C:\Windows\system32\%ProgramData%
2015-02-26 21:43 - 2015-02-26 21:43 - 00000000 __SHD () \$RECYCLE.BIN\S-1-5-21-1961715016-426344146-3009594823-1000
2015-02-26 20:49 - 2015-02-26 20:49 - 00000000 ____D () C:\Comodo
2015-02-26 20:49 - 2015-02-26 20:49 - 00000000 ____D () \Comodo\Installer
2015-02-26 20:22 - 2015-02-26 20:49 - 00000000 ____D () C:\Windows\system32\%LOCALAPPDATA%
2015-02-26 19:47 - 2015-02-26 21:21 - 2382364672 ___SH () \System Volume Information\{a3b699f9-bdde-11e4-b0cb-20689dd0d0bc}{3808876b-c176-4e48-b7ae-04046e6cc752}
2015-02-26 19:47 - 2015-02-26 19:47 - 00065536 ___SH () \System Volume Information\{3808876b-c176-4e48-b7ae-04046e6cc752}
2015-02-26 19:47 - 2015-02-26 19:47 - 00027224 _____ () \Qoobox\ComboFix5.txt
2015-02-26 19:46 - 2015-02-26 19:46 - 00000000 ____D () \Qoobox\TestC
2015-02-26 19:46 - 2015-02-26 19:46 - 00000000 ____D () \Qoobox\Test
2015-02-26 19:46 - 2015-02-26 19:46 - 00000000 ____D () \Qoobox\LastRun
2015-02-26 18:33 - 2015-02-27 08:04 - 00507668 ___SH () C:\Help_MTOC_help.H1H
2015-02-26 18:33 - 2015-02-27 08:04 - 00411308 ___SH () C:\Help_MKWD_BestBet.H1W
2015-02-26 18:33 - 2015-02-27 08:04 - 00222716 ___SH () C:\Help_MKWD_AssetId.H1W
2015-02-26 18:33 - 2015-02-26 18:33 - 00000000 ___SH () C:\Help_MValidator.Lck
2015-02-26 18:29 - 2015-02-26 18:29 - 00000000 ____D () \Microsoft\Windows
2015-02-26 18:24 - 2015-02-27 07:55 - 00298786 _____ () C:\Windows\SysWOW64\Config.xml
2015-02-26 18:24 - 2015-02-27 07:55 - 00000262 _____ () C:\Windows\SysWOW64\FWVersion.xml
2015-02-26 18:24 - 2015-02-26 18:24 - 00008764 _____ () C:\Windows\SysWOW64\switchboard.xml
2015-02-26 18:24 - 2015-02-26 18:24 - 00000244 _____ () C:\Windows\SysWOW64\switchboard.ini
2015-02-26 18:24 - 2015-02-26 18:24 - 00000000 ____D () C:\Windows\SysWOW64\%LOCALAPPDATA%
2015-02-26 18:24 - 2015-02-26 18:24 - 00000000 ____D () \NVIDIA Corporation\Shield Apps
2015-02-26 18:24 - 2015-02-26 18:24 - 00000000 _____ () C:\Windows\SysWOW64\launch.switchboard
2015-02-26 18:23 - 2015-02-26 18:24 - 00000000 ____D () C:\NVIDIA Corporation
2015-02-26 18:23 - 2015-02-26 18:23 - 00005845 _____ () \Windows\brndlog.txt
2015-02-26 18:23 - 2015-02-26 18:23 - 00002077 _____ () C:\Windows\SysWOW64\debug.log
2015-02-26 18:23 - 2015-02-26 18:23 - 00000000 ___HD () \Program Files\Uninstall Information
2015-02-26 18:23 - 2015-02-26 18:23 - 00000000 ____D () \NVIDIA Corporation\NetService
2015-02-26 18:15 - 2015-02-26 18:21 - 00002250 _____ () \rei\reimage.qsr
2015-02-26 18:14 - 2015-02-26 18:14 - 00003744 _____ () \rei\rei1808.ini
2015-02-26 18:14 - 2015-02-26 18:14 - 00000000 ____D () \rei\Temp
2015-02-26 18:14 - 2015-02-26 18:14 - 00000000 ____D () \rei\Results
2015-02-26 18:13 - 2015-02-26 18:15 - 00000000 ____D () C:\rei
2015-02-26 18:13 - 2015-02-26 18:13 - 00924064 _____ () \rei\cfl.rei
2015-02-26 18:13 - 2015-02-26 18:13 - 00004268 _____ () C:\Windows\System32\Tasks\ReimageUpdater
2015-02-26 18:13 - 2015-02-26 18:13 - 00000000 ____D () C:\Program Files\Reimage
2015-02-26 18:13 - 2015-02-26 18:13 - 00000000 ____D () \rei\AV
2015-02-26 18:13 - 2015-02-26 18:13 - 00000000 ____D () \Program Files\Reimage
2015-02-26 18:11 - 2015-02-26 18:15 - 00000156 _____ () C:\Windows\Reimage.ini
2015-02-26 18:11 - 2015-02-26 18:15 - 00000156 _____ () \Windows\Reimage.ini
2015-02-26 17:04 - 2013-09-24 12:09 - 00456704 _____ (FragSoft) C:\Windows\system32\ISDonebackup.dll
2015-02-26 17:04 - 2013-09-24 12:09 - 00456704 _____ (FragSoft) C:\Windows\system32\ISDone.dll
2015-02-26 13:42 - 2015-02-26 13:42 - 00000000 ____D () C:\Program Files (x86)\Microsoft Game Studios
2015-02-26 13:42 - 2015-02-26 13:42 - 00000000 ____D () \Program Files (x86)\Microsoft Game Studios
2015-02-26 13:20 - 2015-02-26 17:32 - 00000000 ____D () \Stažené filmy\Mafia II [EGN] [PL] [ALL DLC] [ADDONS]
2015-02-26 11:29 - 2015-01-09 00:44 - 00419936 _____ () C:\Windows\SysWOW64\locale.nls
2015-02-26 11:29 - 2015-01-09 00:43 - 00419936 _____ () C:\Windows\system32\locale.nls
2015-02-25 13:56 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll
2015-02-25 13:56 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll
2015-02-25 13:56 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll
2015-02-25 12:21 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll
2015-02-25 12:21 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll
2015-02-25 12:21 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll
2015-02-25 12:21 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
2015-02-25 12:21 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll
2015-02-25 12:21 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll
2015-02-25 06:19 - 2015-02-25 06:20 - 00000000 ____D () \Games\Need for Speed Shift
2015-02-25 06:19 - 2015-02-25 06:19 - 00000000 ____D () \Stažené filmy\Magic.In.The.Moonlight.2014.DVDRip.XviD.AC3-UT
2015-02-24 13:09 - 2015-02-26 16:00 - 00000000 ____D () C:\Program Files (x86)\Black_Box
2015-02-24 13:09 - 2015-02-26 16:00 - 00000000 ____D () \Program Files (x86)\Black_Box
2015-02-24 13:05 - 2015-02-24 13:05 - 00000000 ___HD () C:\Windows\msdownld.tmp
2015-02-24 13:05 - 2015-02-24 13:05 - 00000000 ___HD () \Windows\msdownld.tmp
2015-02-24 12:21 - 2015-02-25 06:17 - 00000000 ____D () \Stažené filmy\Chaos.Theory.2008.720p.BluRay.x264-PFa [PublicHD]
2015-02-24 12:20 - 2015-02-24 12:51 - 00000000 ____D () \Stažené filmy\Class.Enemy.Razredni.Sovraznik.2013.SLOVENiAN.DVDRip.XviD-DrSi
2015-02-24 12:18 - 2015-02-27 00:05 - 00000000 ____D () \Stažené filmy\x - Wild.2014.DVDScr.XVID.AC3.HQ.Hive-CM8
2015-02-22 21:23 - 2015-02-23 22:23 - 00000000 ____D () \Games\Pinball.FX2-SKIDROW
2015-02-22 21:08 - 2015-02-22 21:17 - 00000000 ____D () \Games\Mafia II - Black Box
2015-02-22 21:01 - 2015-02-23 23:54 - 00000000 ____D () \Games\[R.G. Mechanics] GRID Autosport
2015-02-22 20:58 - 2015-02-23 23:45 - 00000000 ____D () \Games\Superstars.V8.NC
2015-02-19 10:40 - 2015-02-22 20:48 - 00058653 _____ () \Scenes\54DB1F18_0007_01.scn
2015-02-18 17:43 - 2015-02-18 17:43 - 00000000 ____D () \EMCOMP\Ceníky 2015
2015-02-18 10:34 - 2015-02-18 11:48 - 00000000 ____D () \Stažené filmy\x - The.Hunger.Games.Mockingjay.Part.1.2014.HDRip.XviD-EVO
2015-02-16 12:43 - 2015-02-18 10:34 - 00000000 ____D () \Stažené filmy\x - Holocaust.Night.Will.Fall.2014.PROPER.HDTV.x264-BATV[ettv]
2015-02-15 22:19 - 2015-02-18 10:34 - 00000000 ____D () \Stažené filmy\x - Need.For.Speed.2014.BDRip.x264-SPARKS[et]
2015-02-13 12:23 - 2015-01-23 05:42 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-02-13 12:23 - 2015-01-23 05:41 - 06041600 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-02-13 12:23 - 2015-01-23 04:43 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2015-02-13 12:23 - 2015-01-23 04:17 - 04300800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-02-11 17:04 - 2015-02-11 19:40 - 00000000 ____D () \Utils & Tools\Naši kuchyně
2015-02-11 10:41 - 2015-02-11 20:38 - 00045462 _____ () \Scenes\54DB1F18_0006_01.scn
2015-02-11 10:21 - 2015-02-22 20:48 - 00002793 _____ () \Scenes\Key1502.log
2015-02-11 05:29 - 2015-02-04 04:16 - 00894976 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2015-02-11 05:29 - 2015-02-04 04:16 - 00762368 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2015-02-11 05:29 - 2015-02-04 04:16 - 00609280 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2015-02-11 05:29 - 2015-02-04 04:16 - 00414720 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2015-02-11 05:29 - 2015-02-04 04:16 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2015-02-11 05:29 - 2015-02-04 04:16 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2015-02-11 05:29 - 2015-02-04 04:13 - 01098752 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2015-02-11 05:29 - 2015-01-28 00:36 - 01239720 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2015-02-11 05:29 - 2015-01-10 07:48 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-02-11 05:29 - 2015-01-10 07:48 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-02-11 05:29 - 2015-01-10 07:48 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-02-11 05:29 - 2015-01-10 07:48 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-02-11 05:29 - 2015-01-10 07:48 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-02-11 05:29 - 2015-01-10 07:48 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-02-11 05:29 - 2015-01-10 07:48 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-02-11 05:29 - 2015-01-10 07:27 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-02-11 05:29 - 2015-01-10 07:27 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2015-02-11 05:29 - 2015-01-10 07:27 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-02-11 05:29 - 2015-01-10 07:27 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2015-02-11 05:29 - 2015-01-10 07:27 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2015-02-11 05:29 - 2015-01-10 07:27 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2015-02-11 05:29 - 2015-01-10 07:27 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2015-02-11 05:28 - 2015-01-15 09:14 - 00155072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-02-11 05:28 - 2015-01-15 09:14 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-02-11 05:28 - 2015-01-15 09:09 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-02-11 05:28 - 2015-01-15 09:09 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-02-11 05:28 - 2015-01-15 09:09 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-02-11 05:28 - 2015-01-15 09:09 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-02-11 05:28 - 2015-01-15 09:09 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-02-11 05:28 - 2015-01-15 09:08 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2015-02-11 05:28 - 2015-01-15 09:06 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-02-11 05:28 - 2015-01-15 09:06 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2015-02-11 05:28 - 2015-01-15 09:04 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-02-11 05:28 - 2015-01-15 08:42 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2015-02-11 05:28 - 2015-01-15 08:42 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2015-02-11 05:28 - 2015-01-15 08:41 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2015-02-11 05:28 - 2015-01-15 08:39 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2015-02-11 05:28 - 2015-01-15 08:39 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2015-02-11 05:28 - 2015-01-15 08:37 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2015-02-11 05:28 - 2015-01-15 05:22 - 00458824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2015-02-11 05:28 - 2015-01-14 06:47 - 00389808 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-02-11 05:28 - 2015-01-14 06:09 - 00342712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-02-11 05:28 - 2015-01-13 04:10 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2015-02-11 05:28 - 2015-01-13 03:49 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2015-02-11 05:28 - 2015-01-12 04:09 - 25056256 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-02-11 05:28 - 2015-01-12 04:05 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-02-11 05:28 - 2015-01-12 04:05 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2015-02-11 05:28 - 2015-01-12 03:49 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-02-11 05:28 - 2015-01-12 03:48 - 02885632 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-02-11 05:28 - 2015-01-12 03:48 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-02-11 05:28 - 2015-01-12 03:48 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2015-02-11 05:28 - 2015-01-12 03:47 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-02-11 05:28 - 2015-01-12 03:40 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-02-11 05:28 - 2015-01-12 03:39 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-02-11 05:28 - 2015-01-12 03:36 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-02-11 05:28 - 2015-01-12 03:34 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-02-11 05:28 - 2015-01-12 03:34 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2015-02-11 05:28 - 2015-01-12 03:25 - 19740160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-02-11 05:28 - 2015-01-12 03:25 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2015-02-11 05:28 - 2015-01-12 03:21 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2015-02-11 05:28 - 2015-01-12 03:21 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-02-11 05:28 - 2015-01-12 03:13 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-02-11 05:28 - 2015-01-12 03:08 - 00503296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-02-11 05:28 - 2015-01-12 03:08 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-02-11 05:28 - 2015-01-12 03:07 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-02-11 05:28 - 2015-01-12 03:07 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2015-02-11 05:28 - 2015-01-12 03:07 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2015-02-11 05:28 - 2015-01-12 03:05 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2015-02-11 05:28 - 2015-01-12 03:04 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-02-11 05:28 - 2015-01-12 03:02 - 02277888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-02-11 05:28 - 2015-01-12 03:00 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2015-02-11 05:28 - 2015-01-12 02:59 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2015-02-11 05:28 - 2015-01-12 02:57 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2015-02-11 05:28 - 2015-01-12 02:55 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2015-02-11 05:28 - 2015-01-12 02:48 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-02-11 05:28 - 2015-01-12 02:48 - 00718848 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-02-11 05:28 - 2015-01-12 02:46 - 02125824 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-02-11 05:28 - 2015-01-12 02:46 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2015-02-11 05:28 - 2015-01-12 02:45 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2015-02-11 05:28 - 2015-01-12 02:43 - 14401024 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-02-11 05:28 - 2015-01-12 02:40 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2015-02-11 05:28 - 2015-01-12 02:36 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2015-02-11 05:28 - 2015-01-12 02:35 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-02-11 05:28 - 2015-01-12 02:33 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-02-11 05:28 - 2015-01-12 02:27 - 02358272 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-02-11 05:28 - 2015-01-12 02:23 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-02-11 05:28 - 2015-01-12 02:23 - 00688640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-02-11 05:28 - 2015-01-12 02:22 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2015-02-11 05:28 - 2015-01-12 02:14 - 12829184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-02-11 05:28 - 2015-01-12 02:14 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-02-11 05:28 - 2015-01-12 02:02 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-02-11 05:28 - 2015-01-12 02:00 - 01888256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-02-11 05:28 - 2015-01-12 01:56 - 01307136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-02-11 05:28 - 2015-01-12 01:55 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-02-11 05:28 - 2014-12-12 06:31 - 01480192 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2015-02-11 05:28 - 2014-12-12 06:07 - 01174528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2015-02-11 05:28 - 2014-11-26 04:53 - 00861696 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2015-02-11 05:28 - 2014-11-26 04:32 - 00571904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2015-02-11 05:27 - 2015-01-14 07:09 - 05554112 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-02-11 05:27 - 2015-01-14 07:05 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-02-11 05:27 - 2015-01-14 07:05 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-02-11 05:27 - 2015-01-14 07:04 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-02-11 05:27 - 2015-01-14 06:44 - 03972544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2015-02-11 05:27 - 2015-01-14 06:44 - 03917760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2015-02-11 05:27 - 2015-01-14 06:41 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2015-02-11 05:27 - 2014-12-08 04:09 - 00406528 _____ (Microsoft Corporation) C:\Windows\system32\scesrv.dll
2015-02-11 05:27 - 2014-12-08 03:46 - 00308224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scesrv.dll
2015-02-11 05:26 - 2015-01-09 03:03 - 03201536 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-02-10 12:59 - 2015-02-10 12:59 - 01166259 _____ () \Stažené filmy\GONG.mp3
2015-02-07 22:35 - 2015-02-08 09:58 - 00000000 ____D () \Stažené filmy\x - Chasing Maveric (2012)
2015-02-07 22:32 - 2015-02-08 09:56 - 00000000 ____D () \Stažené filmy\zz - The.Ides.Of.March.2011.720p.BRRip.x264-x0r
2015-02-07 19:52 - 2015-02-15 13:37 - 00000000 ____D () C:\Windows\SysWOW64\SupportAppPBHostless Modem
2015-02-07 19:52 - 2015-02-15 13:37 - 00000000 ____D () C:\Program Files (x86)\Hostless Modem
2015-02-07 19:52 - 2015-02-15 13:37 - 00000000 ____D () \Program Files (x86)\Hostless Modem
2015-02-05 17:07 - 2015-02-05 17:52 - 00000000 ____D () \Stažené filmy\Quando.Eu.Era.Vivo.NACIONAL.DVDRip.XviD-AFTP
2015-02-04 15:51 - 2015-02-08 10:58 - 00000000 ____D () \Hudba\Runnig songs
2015-02-04 15:48 - 2015-02-04 15:52 - 00000000 ____D () \Hudba\A$AP Rocky - Goldie
2015-02-04 10:30 - 2015-02-04 10:30 - 00000000 ____D () \Hudba\motivacni_hudba
2015-02-03 19:02 - 2015-02-03 19:04 - 00000000 ____D () \Hudba\Iron_Maiden--From_Fear_to_Eternity_(Best_of_1990-2010)-2CD-2011-OMA
2015-02-03 18:40 - 2015-02-03 18:40 - 00000000 ____D () \Hudba\Iron Maiden- Run to the Hills single 2002

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-02-27 08:05 - 2014-10-13 14:13 - 00000000 ____D () C:\FRST
2015-02-27 08:05 - 2014-10-11 12:41 - 00000000 ____D () \Utils & Tools\Anti - vir, malware, kill
2015-02-27 08:04 - 2014-10-14 19:14 - 00000000 ____D () \Windows\temp
2015-02-27 08:04 - 2014-10-14 18:57 - 00756674 _____ () \Windows\ntbtlog.txt
2015-02-27 08:04 - 2009-07-14 06:38 - 00067584 ____S () \Windows\bootstat.dat
2015-02-27 08:03 - 2014-03-24 19:37 - 00155607 _____ () C:\Windows\setupact.log
2015-02-27 08:03 - 2014-03-24 19:37 - 00155607 _____ () \Windows\setupact.log
2015-02-27 08:03 - 2013-04-16 12:50 - 00000948 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-02-27 08:03 - 2013-03-19 22:25 - 25427968 _____ () \System Volume Information\Syscache.hve
2015-02-27 08:03 - 2013-03-19 22:25 - 00262144 ___SH () \System Volume Information\Syscache.hve.LOG1
2015-02-27 08:03 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-02-27 08:03 - 2009-07-14 05:45 - 00031904 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-02-27 08:03 - 2009-07-14 05:45 - 00031904 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-02-27 08:03 - 2009-07-14 04:20 - 00000000 ____D () \Windows\System32
2015-02-27 00:06 - 2013-05-20 14:28 - 00000000 ____D () C:\Stažené filmy
2015-02-27 00:06 - 2013-03-19 22:27 - 01837279 _____ () C:\Windows\WindowsUpdate.log
2015-02-27 00:06 - 2013-03-19 22:27 - 01837279 _____ () \Windows\WindowsUpdate.log
2015-02-26 23:58 - 2013-04-17 06:59 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-02-26 23:07 - 2013-04-16 12:50 - 00000952 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-02-26 21:32 - 2013-04-17 06:52 - 00000000 ____D () C:\Program Files (x86)\Opera
2015-02-26 21:32 - 2013-04-17 06:52 - 00000000 ____D () \Program Files (x86)\Opera
2015-02-26 21:20 - 2014-10-15 13:52 - 00092888 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-02-26 19:47 - 2014-10-13 18:29 - 00000000 ____D () C:\Qoobox
2015-02-26 19:47 - 2013-03-28 15:48 - 00000000 __SHD () \System Volume Information\SPP
2015-02-26 19:47 - 2010-11-21 10:27 - 00672370 _____ () C:\Windows\system32\perfh005.dat
2015-02-26 19:47 - 2010-11-21 10:27 - 00142934 _____ () C:\Windows\system32\perfc005.dat
2015-02-26 19:47 - 2009-07-14 06:13 - 01593142 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-02-26 19:47 - 2009-07-14 04:20 - 00000000 ____D () \Windows\inf
2015-02-26 19:18 - 2014-10-13 14:13 - 00000000 ____D () \FRST\Logs
2015-02-26 18:56 - 2013-03-28 16:12 - 00000000 ____D () C:\Program Files (x86)\WinRAR
2015-02-26 18:56 - 2013-03-28 16:12 - 00000000 ____D () \Program Files (x86)\WinRAR
2015-02-26 18:24 - 2009-07-14 04:20 - 00000000 ____D () \Windows\SysWOW64
2015-02-26 18:23 - 2009-07-14 06:09 - 00000000 ____D () C:\Windows\System32\Tasks\WPD
2015-02-26 18:03 - 2013-04-18 13:14 - 00000000 ____D () C:\Games
2015-02-26 17:41 - 2009-07-14 04:20 - 00000000 ____D () \Windows\Microsoft.NET
2015-02-26 17:40 - 2009-07-14 06:08 - 00032570 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2015-02-26 13:02 - 2013-03-19 22:25 - 00000000 ____D () \Windows\Prefetch
2015-02-26 11:55 - 2009-07-14 04:20 - 00000000 ____D () \Windows\winsxs
2015-02-25 17:41 - 2013-03-19 22:25 - 00020480 ___SH () \System Volume Information\tracking.log
2015-02-25 13:56 - 2014-05-07 20:32 - 00037015 _____ () C:\Windows\DirectX.log
2015-02-25 13:56 - 2014-05-07 20:32 - 00037015 _____ () \Windows\DirectX.log
2015-02-25 13:15 - 2013-04-17 08:16 - 00000000 ____D () C:\Program Files (x86)\R.G. Mechanics
2015-02-25 13:15 - 2013-04-17 08:16 - 00000000 ____D () \Program Files (x86)\R.G. Mechanics
2015-02-25 12:22 - 2013-03-28 15:46 - 00000000 __SHD () \Windows\Installer
2015-02-25 06:22 - 2013-04-18 17:39 - 00000000 ___RD () C:\Utils & Tools
2015-02-24 16:13 - 2015-01-17 23:48 - 00003818 _____ () C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1421534880
2015-02-24 13:06 - 2013-04-18 22:27 - 00000000 ____D () C:\Windows\SysWOW64\directx
2015-02-24 12:35 - 2013-10-15 13:01 - 00000000 ____D () \ŠKOLA\!Mgr
2015-02-22 20:48 - 2014-05-26 20:10 - 00019557 _____ () \KD\Space.ini
2015-02-22 20:48 - 2014-05-26 20:10 - 00011264 ____S () \Scenes\scenes.lst
2015-02-22 20:48 - 2014-05-26 20:10 - 00000000 ____D () C:\KD
2015-02-22 20:48 - 2009-07-14 03:34 - 00000825 _____ () C:\Windows\win.ini
2015-02-22 20:48 - 2009-07-14 03:34 - 00000825 _____ () \Windows\win.ini
2015-02-22 20:39 - 2014-05-26 20:12 - 00000143 _____ () \KD\ADMIN.ini
2015-02-22 12:29 - 2013-04-18 23:16 - 00000000 ____D () C:\R.G. Catalyst
2015-02-19 10:40 - 2014-05-26 20:10 - 00000000 ____D () C:\Scenes
2015-02-18 17:43 - 2013-04-18 13:30 - 00000000 ___RD () C:\EMCOMP
2015-02-18 11:34 - 2013-08-19 17:19 - 00000000 ___RD () \ŠKOLA\Diplomová práce
2015-02-14 10:55 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\rescache
2015-02-14 10:55 - 2009-07-14 04:20 - 00000000 ____D () \Windows\rescache
2015-02-12 16:15 - 2009-07-14 05:45 - 05045952 _____ () C:\Windows\system32\FNTCACHE.DAT
2015-02-12 16:12 - 2014-12-12 23:36 - 00000000 ____D () C:\Windows\system32\appraiser
2015-02-12 16:12 - 2014-05-07 05:33 - 00000000 ___SD () C:\Windows\system32\CompatTel
2015-02-12 16:12 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2015-02-12 16:12 - 2009-07-14 04:20 - 00000000 ____D () \Windows\PolicyDefinitions
2015-02-12 16:12 - 2009-07-14 04:20 - 00000000 ____D () \Program Files\Internet Explorer
2015-02-12 16:12 - 2009-07-14 04:20 - 00000000 ____D () \Program Files (x86)\Internet Explorer
2015-02-12 15:20 - 2013-11-18 06:46 - 00000000 ____D () \ŠKOLA\Seminárky Bc
2015-02-12 08:03 - 2013-04-16 13:39 - 00001912 _____ () C:\Windows\epplauncher.mif
2015-02-12 08:03 - 2013-04-16 13:39 - 00001912 _____ () \Windows\epplauncher.mif
2015-02-12 08:03 - 2013-04-16 13:39 - 00000000 ____D () C:\Program Files\Microsoft Security Client
2015-02-12 08:03 - 2013-04-16 13:39 - 00000000 ____D () C:\Program Files (x86)\Microsoft Security Client
2015-02-12 08:03 - 2013-04-16 13:39 - 00000000 ____D () \Program Files\Microsoft Security Client
2015-02-12 08:03 - 2013-04-16 13:39 - 00000000 ____D () \Program Files (x86)\Microsoft Security Client
2015-02-12 08:02 - 2013-08-09 09:18 - 00000000 ____D () C:\Windows\system32\MRT
2015-02-12 07:51 - 2013-04-16 12:11 - 116773704 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-02-10 22:55 - 2014-07-26 21:27 - 00000000 ____D () C:\Program Files (x86)\Origin
2015-02-10 22:55 - 2014-07-26 21:27 - 00000000 ____D () \Program Files (x86)\Origin
2015-02-08 11:23 - 2013-06-26 08:39 - 00000000 ____D () C:\Hudba
2015-02-08 11:11 - 2013-06-26 08:52 - 00000000 ____D () \Hudba\Superhits Of The 90's
2015-02-08 11:11 - 2013-06-26 08:49 - 00000000 ____D () \Hudba\MATRIX RELOADED - Soundtrack
2015-02-08 11:11 - 2013-06-26 08:48 - 00000000 ____D () \Hudba\Lenny Kravitz - Greatest Hits
2015-02-08 11:01 - 2013-06-26 08:46 - 00000000 ____D () \Hudba\Chumbawamba - Tubthumper
2015-02-08 10:54 - 2013-06-26 08:50 - 00000000 ____D () \Hudba\Need for Speed Underground - Soundtrack
2015-02-08 10:50 - 2013-06-26 08:46 - 00000000 ____D () \Hudba\HITS OF THE 80´s-Various Artist
2015-02-08 10:44 - 2013-06-29 11:38 - 00000000 ____D () \Hudba\Guano Apes - Bel Air (2011)
2015-02-08 10:42 - 2013-06-26 08:41 - 00000000 ____D () \Hudba\Avril Lavigne - Let go
2015-02-08 10:30 - 2013-06-29 11:38 - 00000000 ____D () \Hudba\Guano Apes - Lost (T)apes (2006)
2015-02-07 20:02 - 2013-04-16 12:50 - 00003948 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-02-07 20:02 - 2013-04-16 12:50 - 00003696 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-02-07 20:02 - 2009-07-14 04:20 - 00000000 ____D () \Windows\Tasks
2015-02-05 14:58 - 2015-01-25 07:58 - 17191600 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe
2015-02-05 14:58 - 2013-04-17 06:59 - 00701616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-02-05 14:58 - 2013-04-17 06:59 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-02-05 14:58 - 2013-04-17 06:59 - 00003852 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-02-04 22:47 - 2013-06-01 12:41 - 00000000 ____D () C:\Program Files (x86)\MPC-HC
2015-02-04 22:47 - 2013-06-01 12:41 - 00000000 ____D () \Program Files (x86)\MPC-HC
2015-02-01 19:15 - 2014-03-25 06:26 - 00029606 _____ () C:\Windows\PFRO.log
2015-02-01 19:15 - 2014-03-25 06:26 - 00029606 _____ () \Windows\PFRO.log
2015-01-31 08:33 - 2013-05-16 21:05 - 00000000 ____D () C:\Fotky
2015-01-28 08:00 - 2013-09-03 13:43 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2015-01-28 08:00 - 2013-09-03 13:43 - 00000000 ____D () \Program Files (x86)\Mozilla Maintenance Service

==================== Files in the root of some directories =======

2014-01-30 23:48 - 2014-01-29 11:48 - 0000044 ____H () C:\Program Files (x86)\49dc48f5.tmp

Files to move or delete:
====================
\Games\update-unreal3.bat
\KD\Dv.dll
\KD\Dw32.dll
\KD\kd.EXE
\KD\netviewerK.exe
\KD\Ok.dll
\KD\Ord_std.dll
\KD\Psapi.dll
\KD\Sdiline.exe
\KD\Skeyinst.dll
\KD\spr32d60.dll
\KD\UNWISE.EXE
\KD\Vc4_jpeg.dll
\KD\Vc4_nu.dll
\KD\Vc4_tiff.dll
\KD\vc4_zlib.dll
\rei\cpuidsdk.dll
\totalcmd\NOCLOSE64.EXE
\totalcmd\TCLZMA64.DLL
\totalcmd\TCMADM64.EXE
\totalcmd\TCMDX32.EXE
\totalcmd\TCUNIN64.EXE
\totalcmd\TCUNZL64.DLL
\totalcmd\TcUsbRun.exe
\totalcmd\TOTALCMD64.EXE
\totalcmd\UNRAR64.DLL
\totalcmd\WCMICONS.DLL
\totalcmd\WCMZIP64.DLL
\Windows\bfsvc.exe
\Windows\bootstat.dat
\Windows\explorer.exe
\Windows\FreeMem.exe
\Windows\fveupdate.exe
\Windows\HelpPane.exe
\Windows\hh.exe
\Windows\hpoins43.dat
\Windows\hpomdl43.dat
\Windows\notepad.exe
\Windows\regedit.exe
\Windows\RtlExUpd.dll
\Windows\splwow64.exe
\Windows\SPRemove_x64.exe
\Windows\twain.dll
\Windows\twain_32.dll
\Windows\twunk_16.exe
\Windows\twunk_32.exe
\Windows\unvise32.exe
\Windows\un_dext.exe
\Windows\winhlp32.exe
\Windows\write.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-02-23 20:58

==================== End Of Log ============================

[altrok]

Ach jo, co jste tam s tim ComboFixem provadel... FRST log je ted k prdu... mimochodem se jedna o poruseni pravidel fora... nevim kolikrat jste ho spoustel a jestli jste pouzival i prepinac, takze vlozte obsahy logu z ComboFixu, ktere mate k dispozici od 25.2.2015.


V jinem PC stahnete MBAM 2.0, pak ho napr. pomoci flashky presunte do tohoto PC a v nouzovem rezimu se siti ho nainstalujte, aktualizujte virovou databazi a pustte aspon sken hrozeb. http://www.bleepingcomputer.com/downloa ... i-malware/

[krampusak]

combofix jsem spustil omylem a za jeho běhu ho ukončil. V místě, kdy se pokoušel vytvořit bod obnovení. Neproběhl, ale v logu je po něm památka... existuje jeden log z combofix, datovaný jako soubor k 26.2., ale obsahuje staré data z dřívějších spuštění, t.j. rok 2014. Spouštěcí soubor "zmizel", prostě není...
Nově stažený combofix stojí na vytváření bodu obnovení - dál nejede.

Mban jsem stáhl a pokusil se dle instrukcí nainstalovat, ale bohužel nelze. Vyhazuje chybu v samém začátku instalace.
Starý mban, který mám v PC nainstalovaný, při kliknutí na "scan" vyhodí chybu

Po pravdě řečeno, než se to pokoušet složitě několik dní vyřešit, klidně bych přeinstaloval systém, ale když spustím Lenovo recovery přes příslušnou klávesu, tak po zvolení opravy mi to místo variant rovnou skočí do systému a celé recovery je ignorováno...

[altrok]

combofix jsem spustil omylem a za jeho běhu ho ukončil.

Ted si fakt myslim, ze si ze me jenom delate srandu

Starý mban, který mám v PC nainstalovaný, při kliknutí na "scan" vyhodí chybu

V normalnim i nouzovem rezimu? Zkuste v normalnim aktualizovat virovou databazi, pak v nouzovem rezimu (bez site) pustit sken jestli se taky kousne.


Skocte do nouzoveho rezimu s prikazovym radkem (at nic nebrani v cinnosti), vepiste: rstrui.exe a zkontrolujte jestli existuje drivejsi bod obnoveni. Pokud existuje, provedte obnovu k nekteremu z existujicich.

Po pravdě řečeno, než se to pokoušet složitě několik dní vyřešit, klidně bych přeinstaloval systém, ale když spustím Lenovo recovery přes příslušnou klávesu, tak po zvolení opravy mi to místo variant rovnou skočí do systému a celé recovery je ignorováno...

Muzete stahnout ciste iso, vypalit bootovatelne CD (nebo bootovatelnou flash) a nabootovat a nainstalovat to z ni.

Kolik mate v PC disku a oddilu? Z logu to neni patrne a hlavne to ani FRST nemohl spravne urcit... bud je system tak silene nakopnuty nebo napadeny hnusnou haveti (priklanim se k prvnimu).

[krampusak]

s combofixem si srandu nedělám. Pustil jsem ho a když vytvářel bod obnovení, tak ho zavřel. Při druhém pokusu jsem ve stejném bodě čekal, ale dál se stejně nepohnul, čili jsem ho zase zavřel.

mban nejede ani v jednom režimu. Sice si zaktualizuje databázi, ale pak vyhodí hlášku, že se vyskytla chyba a scan nemůže pokračovat.

dřívější bod obnovení byla první věc, kterou jsem zkoušel, ale bohužel není dostupný žádný.

právě tahám ISO Windows, to mi přijde jako nejrychlejší cesta k cíli.

Díky za ochotu a snahu pomoc a pro případné sběratele, virus je v příloze u prvního příspěvku

[altrok]

OK, nemate zac.