# DelFix v1.013 - Logfile created 01/08/2016 at 09:53:48
# Updated 17/04/2016 by Xplode
# Username : Hrstka - LENOVO-PC
# Operating System : Windows 8.1 Connected (64 bits)
~ Removing disinfection tools ...
Deleted : C:\FRST
Deleted : C:\zoek_backup
Deleted : C:\AdwCleaner
Deleted : C:\zoek-results.log
Deleted : C:\Users\Hrstka\Desktop\Addition.txt
Deleted : C:\Users\Hrstka\Desktop\AdwCleaner.exe
Deleted : C:\Users\Hrstka\Desktop\Fixlog.txt
Deleted : C:\Users\Hrstka\Desktop\FRST.txt
Deleted : C:\Users\Hrstka\Desktop\FRST64.exe
Deleted : C:\Users\Hrstka\Desktop\JRT.exe
Deleted : C:\Users\Hrstka\Desktop\hijackthis.exe
Deleted : C
:\Users\Hrstka\Desktop\hijackthis.log
Deleted : C:\Users\Hrstka\Desktop\RogueKillerX64.exe
Deleted : C:\Users\Hrstka\Desktop\zoek.exe
Deleted : HKLM\SOFTWARE\OldTimer Tools
Deleted : HKLM\SOFTWARE\TrendMicro\Hijackthis
~ Cleaning system restore ...
Deleted : RP #56 [Configured Lenovo Updates | 07/29/2016 14:58:49]
Deleted : RP #57 [JRT Pre-Junkware Removal | 07/30/2016 08:37:20]
Deleted : RP #58 [zoek.exe restore point | 07/31/2016 10:29:44]
New restore point created !
########## - EOF - ##########
Kontrola logu, zavirovaný PC Win32/filecoder Vyřešeno
Re: Kontrola logu, zavirovaný PC Win32/filecoder
Vše vypadá v pořádku.
Anitivir mi však stále nachází viry podobného typu, na který byl dělaný sken z vašich doporučených aplikací., viz. příloha.
Zjistil jsem, že jich tam jsou stovky. Stejný typ viru mi blokuje spuštění Excelu a Wordu.
Anitivir mi však stále nachází viry podobného typu, na který byl dělaný sken z vašich doporučených aplikací., viz. příloha.
Zjistil jsem, že jich tam jsou stovky. Stejný typ viru mi blokuje spuštění Excelu a Wordu.
-
jaro3
- člen Security týmu
-
Guru Level 15
- Příspěvky: 43072
- Registrován: červen 07
- Bydliště: Jižní Čechy
- Pohlaví:
- Stav:
Offline
Re: Kontrola logu, zavirovaný PC Win32/filecoder
Dva z těch souborů jsem Ti dával testovat , a byly OK..
Zkontroluj tedy všechny:
2016-03-30 04:26 - 2016-03-30 05:28 - 0038534 _____ () C:\Users\Hrstka\AppData\Roaming\+REcovER+bnevw+.png
2016-03-31 20:27 - 2016-03-31 21:06 - 0038534 _____ () C:\Users\Hrstka\AppData\Roaming\+REcovER+gwyfd+.png
2016-03-30 07:59 - 2016-03-30 08:36 - 0038534 _____ () C:\Users\Hrstka\AppData\Roaming\+REcovER+qoynb+.png
2016-03-31 12:29 - 2016-03-31 13:06 - 0038534 _____ () C:\Users\Hrstka\AppData\Roaming\+REcovER+vkmgi+.png
2013-10-02 04:55 - 2013-10-02 04:55 - 0000210 _____ () C:\Users\Hrstka\AppData\Roaming\15.gif
2013-10-02 04:55 - 2013-10-02 04:55 - 0001074 _____ () C:\Users\Hrstka\AppData\Roaming\admon.textlabel.xml
2014-05-08 07:44 - 2014-05-08 07:44 - 0004218 _____ () C:\Users\Hrstka\AppData\Roaming\Adobe-CNS1-1
2014-05-08 06:05 - 2014-05-08 06:05 - 0000524 _____ () C:\Users\Hrstka\AppData\Roaming\BMY brown 3.ADO
2014-05-08 07:44 - 2014-05-08 07:44 - 0000197 _____ () C:\Users\Hrstka\AppData\Roaming\bn_IN.aff
2014-05-08 07:44 - 2014-05-08 07:44 - 0004389 _____ () C:\Users\Hrstka\AppData\Roaming\da.pak
2015-02-26 18:00 - 2015-02-26 18:00 - 0002460 _____ () C:\Users\Hrstka\AppData\Roaming\DDVClean.mof
2015-05-20 03:28 - 2015-05-20 03:28 - 0000579 _____ () C:\Users\Hrstka\AppData\Roaming\dell_connect.png
2013-10-02 04:56 - 2013-10-02 04:56 - 0000923 _____ () C:\Users\Hrstka\AppData\Roaming\ebnf.table.border.xml
2015-05-20 03:28 - 2015-05-20 03:28 - 0000778 _____ () C:\Users\Hrstka\AppData\Roaming\email.png
2013-10-02 04:56 - 2013-10-02 04:56 - 0001079 _____ () C:\Users\Hrstka\AppData\Roaming\emphasis.propagates.style.xml
2015-05-20 03:28 - 2015-05-20 03:28 - 0000382 _____ () C:\Users\Hrstka\AppData\Roaming\EngineLoggerConfig.xml
2013-10-02 04:55 - 2013-10-02 04:55 - 0000071 _____ () C:\Users\Hrstka\AppData\Roaming\external-link.gif
2014-05-08 07:44 - 2014-05-08 07:44 - 0001820 _____ () C:\Users\Hrstka\AppData\Roaming\f3.png
1998-06-12 01:00 - 1998-06-12 01:00 - 0004988 _____ () C:\Users\Hrstka\AppData\Roaming\FootmanBioecology.e
2013-10-02 04:56 - 2013-10-02 04:56 - 0001461 _____ () C:\Users\Hrstka\AppData\Roaming\footnote.sep.leader.properties.xml
2014-05-08 07:44 - 2014-05-08 07:44 - 0002642 _____ () C:\Users\Hrstka\AppData\Roaming\grmphon.env
2015-05-20 03:28 - 2015-05-20 03:28 - 0001684 _____ () C:\Users\Hrstka\AppData\Roaming\help_disabled.png
2013-10-02 04:56 - 2013-10-02 04:56 - 0000944 _____ () C:\Users\Hrstka\AppData\Roaming\html.stylesheet.type.xml
2013-10-02 04:56 - 2013-10-02 04:56 - 0000937 _____ () C:\Users\Hrstka\AppData\Roaming\htmlhelp.title.xml
1992-11-17 02:00 - 1992-11-17 02:00 - 1776947 _____ () C:\Users\Hrstka\AppData\Roaming\Introvert.U
2015-05-20 03:28 - 2015-05-20 03:28 - 0004345 _____ () C:\Users\Hrstka\AppData\Roaming\irda.png
2015-03-24 07:39 - 2015-03-24 07:39 - 0001109 _____ () C:\Users\Hrstka\AppData\Roaming\LICENSE.md
2013-10-02 04:56 - 2013-10-02 04:56 - 0001828 _____ () C:\Users\Hrstka\AppData\Roaming\man.output.lang.in.name.enabled.xml
2013-10-02 04:56 - 2013-10-02 04:56 - 0001536 _____ () C:\Users\Hrstka\AppData\Roaming\man.subheading.divider.xml
2009-06-10 23:06 - 2009-06-10 23:06 - 0002899 _____ () C:\Users\Hrstka\AppData\Roaming\Memories_buttonClear.png
2015-05-20 03:28 - 2015-05-20 03:28 - 0004576 _____ () C:\Users\Hrstka\AppData\Roaming\memory-reader.png
2015-05-20 03:28 - 2015-05-20 03:28 - 0004355 _____ () C:\Users\Hrstka\AppData\Roaming\mouse.png
2009-06-10 23:06 - 2009-06-10 23:06 - 0004515 _____ () C:\Users\Hrstka\AppData\Roaming\nav_rightarrow.png
2013-10-02 04:56 - 2013-10-02 04:56 - 0000888 _____ () C:\Users\Hrstka\AppData\Roaming\no.up.image.xml
2013-10-02 04:55 - 2013-10-02 04:55 - 0003157 _____ () C:\Users\Hrstka\AppData\Roaming\package-frame.html
2015-05-20 03:28 - 2015-05-20 03:28 - 0001264 _____ () C:\Users\Hrstka\AppData\Roaming\pcdrantenna.p5m
2015-05-20 03:28 - 2015-05-20 03:28 - 0002611 _____ () C:\Users\Hrstka\AppData\Roaming\pcdrbattery.p5m
2015-05-20 03:28 - 2015-05-20 03:28 - 0002510 _____ () C:\Users\Hrstka\AppData\Roaming\pcdrscsi2.p5m
2015-05-20 03:28 - 2015-05-20 03:28 - 0000193 _____ () C:\Users\Hrstka\AppData\Roaming\PCDR_HUD_4_3.scheme
2013-10-02 04:55 - 2013-10-02 04:55 - 0001172 _____ () C:\Users\Hrstka\AppData\Roaming\PlanDrawer.java
2014-05-08 06:08 - 2014-05-08 06:08 - 0001630 _____ () C:\Users\Hrstka\AppData\Roaming\Plastic - Polished Alumide.3PP
2013-10-02 04:56 - 2013-10-02 04:56 - 0001024 _____ () C:\Users\Hrstka\AppData\Roaming\procedure.properties.xml
2013-10-02 04:55 - 2013-10-02 04:55 - 0000101 _____ () C:\Users\Hrstka\AppData\Roaming\r1.m
2015-05-20 03:28 - 2015-05-20 03:28 - 0003993 _____ () C:\Users\Hrstka\AppData\Roaming\RB_Disabled.png
2015-05-20 03:28 - 2015-05-20 03:28 - 0001720 _____ () C:\Users\Hrstka\AppData\Roaming\redshd.png
2015-05-20 03:28 - 2015-05-20 03:28 - 0003111 _____ () C:\Users\Hrstka\AppData\Roaming\refresh_12.png
2015-05-20 03:28 - 2015-05-20 03:28 - 0003983 _____ () C:\Users\Hrstka\AppData\Roaming\RF_Enabled.png
2013-10-02 04:56 - 2013-10-02 04:56 - 0002707 _____ () C:\Users\Hrstka\AppData\Roaming\SequenceFrequency.mm
2012-02-22 22:54 - 2012-02-22 22:54 - 0002388 _____ () C:\Users\Hrstka\AppData\Roaming\settings.xml
2013-10-02 04:56 - 2013-10-02 04:56 - 0001068 _____ () C:\Users\Hrstka\AppData\Roaming\shade.verbatim.xml
2013-10-02 04:55 - 2013-10-02 04:55 - 0000104 _____ () C:\Users\Hrstka\AppData\Roaming\SimpleDocument.xml
2013-10-02 04:56 - 2013-10-02 04:56 - 0000975 _____ () C:\Users\Hrstka\AppData\Roaming\subscript.properties.xml
2015-05-20 03:28 - 2015-05-20 03:28 - 0002786 _____ () C:\Users\Hrstka\AppData\Roaming\sysinfofilter_ax_dell.xml
2015-05-20 03:28 - 2015-05-20 03:28 - 0001769 _____ () C:\Users\Hrstka\AppData\Roaming\systemTools.png
2015-05-20 03:28 - 2015-05-20 03:28 - 0000816 _____ () C:\Users\Hrstka\AppData\Roaming\toast_good.png
2013-10-02 04:56 - 2013-10-02 04:56 - 0000840 _____ () C:\Users\Hrstka\AppData\Roaming\toc.image.xml
2015-05-20 03:28 - 2015-05-20 03:28 - 0004090 _____ () C:\Users\Hrstka\AppData\Roaming\tutorials_icon.png
2015-05-20 03:14 - 2015-05-20 03:14 - 0000095 _____ () C:\Users\Hrstka\AppData\Roaming\tweakChkDsk_pt-pt.p5p
2015-05-20 03:14 - 2015-05-20 03:14 - 0001933 _____ () C:\Users\Hrstka\AppData\Roaming\tweakNetworkingManual_de.p5p
2015-05-20 03:28 - 2015-05-20 03:28 - 0000415 _____ () C:\Users\Hrstka\AppData\Roaming\VertexOutputTexturelessInstanced.hlsli
2013-10-02 04:56 - 2013-10-02 04:56 - 0001366 _____ () C:\Users\Hrstka\AppData\Roaming\wordml.template.xml
2016-04-02 02:14 - 2016-04-02 02:14 - 0009238 _____ () C:\Users\Hrstka\AppData\Roaming\{RecOveR}-vhlln__.Htm
2016-04-02 02:14 - 2016-04-02 02:14 - 0082893 _____ () C:\Users\Hrstka\AppData\Roaming\{RecOveR}-vhlln__.Png
2016-04-10 07:00 - 2016-04-10 07:00 - 0009238 _____ () C:\Users\Hrstka\AppData\Roaming\{RecOveR}-yjdwn__.Htm
2016-04-10 07:00 - 2016-04-10 07:00 - 0081953 _____ () C:\Users\Hrstka\AppData\Roaming\{RecOveR}-yjdwn__.Png
2016-03-30 04:26 - 2016-03-30 05:28 - 0038534 _____ () C:\Users\Hrstka\AppData\Roaming\Microsoft\+REcovER+bnevw+.png
2016-03-30 04:26 - 2016-03-30 05:28 - 0001046 _____ () C:\Users\Hrstka\AppData\Roaming\Microsoft\+REcovER+bnevw+.txt
2016-03-31 20:27 - 2016-03-31 21:06 - 0038534 _____ () C:\Users\Hrstka\AppData\Roaming\Microsoft\+REcovER+gwyfd+.png
2016-03-31 20:27 - 2016-03-31 21:06 - 0001046 _____ () C:\Users\Hrstka\AppData\Roaming\Microsoft\+REcovER+gwyfd+.txt
2016-03-30 07:59 - 2016-03-30 08:36 - 0038534 _____ () C:\Users\Hrstka\AppData\Roaming\Microsoft\+REcovER+qoynb+.png
2016-03-30 07:59 - 2016-03-30 08:36 - 0001046 _____ () C:\Users\Hrstka\AppData\Roaming\Microsoft\+REcovER+qoynb+.txt
2016-03-31 12:29 - 2016-03-31 13:06 - 0038534 _____ () C:\Users\Hrstka\AppData\Roaming\Microsoft\+REcovER+vkmgi+.png
2016-03-31 12:29 - 2016-03-31 13:06 - 0001046 _____ () C:\Users\Hrstka\AppData\Roaming\Microsoft\+REcovER+vkmgi+.txt
2016-04-02 02:14 - 2016-04-02 02:14 - 0009238 _____ () C:\Users\Hrstka\AppData\Roaming\Microsoft\{RecOveR}-vhlln__.Htm
2016-04-02 02:14 - 2016-04-02 02:14 - 0082893 _____ () C:\Users\Hrstka\AppData\Roaming\Microsoft\{RecOveR}-vhlln__.Png
2016-04-02 02:14 - 2016-04-02 02:14 - 0002818 _____ () C:\Users\Hrstka\AppData\Roaming\Microsoft\{RecOveR}-vhlln__.Txt
2016-04-10 07:00 - 2016-04-10 07:00 - 0009238 _____ () C:\Users\Hrstka\AppData\Roaming\Microsoft\{RecOveR}-yjdwn__.Htm
2016-04-10 07:00 - 2016-04-10 07:00 - 0081953 _____ () C:\Users\Hrstka\AppData\Roaming\Microsoft\{RecOveR}-yjdwn__.Png
2016-04-10 07:00 - 2016-04-10 07:00 - 0002818 _____ () C:\Users\Hrstka\AppData\Roaming\Microsoft\{RecOveR}-yjdwn__.Txt
2016-04-02 02:05 - 2016-04-02 02:17 - 0009238 _____ () C:\Users\Hrstka\AppData\Local\{RecOveR}-vhlln__.Htm
2016-04-02 02:05 - 2016-04-02 02:17 - 0082893 _____ () C:\Users\Hrstka\AppData\Local\{RecOveR}-vhlln__.Png
2016-04-02 02:05 - 2016-04-02 02:17 - 0002818 _____ () C:\Users\Hrstka\AppData\Local\{RecOveR}-vhlln__.Txt
2016-04-10 06:51 - 2016-04-10 06:58 - 0009238 _____ () C:\Users\Hrstka\AppData\Local\{RecOveR}-yjdwn__.Htm
2016-04-10 06:51 - 2016-04-10 06:58 - 0081953 _____ () C:\Users\Hrstka\AppData\Local\{RecOveR}-yjdwn__.Png
2016-04-10 06:51 - 2016-04-10 06:58 - 0002818 _____ () C:\Users\Hrstka\AppData\Local\{RecOveR}-yjdwn__.Txt
2016-03-30 02:35 - 2016-03-30 02:35 - 0038534 _____ () C:\ProgramData\+REcovER+bnevw+.png
2016-04-05 06:40 - 2016-04-05 06:41 - 0038534 _____ () C:\ProgramData\+REcovER+crmkj+.png
2016-03-31 19:57 - 2016-03-31 19:58 - 0038534 _____ () C:\ProgramData\+REcovER+gwyfd+.png
2016-03-30 07:32 - 2016-03-30 07:32 - 0038534 _____ () C:\ProgramData\+REcovER+qoynb+.png
2016-03-31 12:01 - 2016-03-31 12:01 - 0038534 _____ () C:\ProgramData\+REcovER+vkmgi+.png
2014-10-13 21:32 - 2014-10-13 21:32 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2016-04-02 02:04 - 2016-04-02 02:05 - 0009238 _____ () C:\ProgramData\{RecOveR}-vhlln__.Htm
2016-04-02 02:04 - 2016-04-02 02:05 - 0082893 _____ () C:\ProgramData\{RecOveR}-vhlln__.Png
2016-04-10 06:50 - 2016-04-10 06:50 - 0009238 _____ () C:\ProgramData\{RecOveR}-yjdwn__.Htm
2016-04-10 06:50 - 2016-04-10 06:50 - 0081953 _____ () C:\ProgramData\{RecOveR}-yjdwn__.Png
Zkontroluj tedy všechny:
2016-03-30 04:26 - 2016-03-30 05:28 - 0038534 _____ () C:\Users\Hrstka\AppData\Roaming\+REcovER+bnevw+.png
2016-03-31 20:27 - 2016-03-31 21:06 - 0038534 _____ () C:\Users\Hrstka\AppData\Roaming\+REcovER+gwyfd+.png
2016-03-30 07:59 - 2016-03-30 08:36 - 0038534 _____ () C:\Users\Hrstka\AppData\Roaming\+REcovER+qoynb+.png
2016-03-31 12:29 - 2016-03-31 13:06 - 0038534 _____ () C:\Users\Hrstka\AppData\Roaming\+REcovER+vkmgi+.png
2013-10-02 04:55 - 2013-10-02 04:55 - 0000210 _____ () C:\Users\Hrstka\AppData\Roaming\15.gif
2013-10-02 04:55 - 2013-10-02 04:55 - 0001074 _____ () C:\Users\Hrstka\AppData\Roaming\admon.textlabel.xml
2014-05-08 07:44 - 2014-05-08 07:44 - 0004218 _____ () C:\Users\Hrstka\AppData\Roaming\Adobe-CNS1-1
2014-05-08 06:05 - 2014-05-08 06:05 - 0000524 _____ () C:\Users\Hrstka\AppData\Roaming\BMY brown 3.ADO
2014-05-08 07:44 - 2014-05-08 07:44 - 0000197 _____ () C:\Users\Hrstka\AppData\Roaming\bn_IN.aff
2014-05-08 07:44 - 2014-05-08 07:44 - 0004389 _____ () C:\Users\Hrstka\AppData\Roaming\da.pak
2015-02-26 18:00 - 2015-02-26 18:00 - 0002460 _____ () C:\Users\Hrstka\AppData\Roaming\DDVClean.mof
2015-05-20 03:28 - 2015-05-20 03:28 - 0000579 _____ () C:\Users\Hrstka\AppData\Roaming\dell_connect.png
2013-10-02 04:56 - 2013-10-02 04:56 - 0000923 _____ () C:\Users\Hrstka\AppData\Roaming\ebnf.table.border.xml
2015-05-20 03:28 - 2015-05-20 03:28 - 0000778 _____ () C:\Users\Hrstka\AppData\Roaming\email.png
2013-10-02 04:56 - 2013-10-02 04:56 - 0001079 _____ () C:\Users\Hrstka\AppData\Roaming\emphasis.propagates.style.xml
2015-05-20 03:28 - 2015-05-20 03:28 - 0000382 _____ () C:\Users\Hrstka\AppData\Roaming\EngineLoggerConfig.xml
2013-10-02 04:55 - 2013-10-02 04:55 - 0000071 _____ () C:\Users\Hrstka\AppData\Roaming\external-link.gif
2014-05-08 07:44 - 2014-05-08 07:44 - 0001820 _____ () C:\Users\Hrstka\AppData\Roaming\f3.png
1998-06-12 01:00 - 1998-06-12 01:00 - 0004988 _____ () C:\Users\Hrstka\AppData\Roaming\FootmanBioecology.e
2013-10-02 04:56 - 2013-10-02 04:56 - 0001461 _____ () C:\Users\Hrstka\AppData\Roaming\footnote.sep.leader.properties.xml
2014-05-08 07:44 - 2014-05-08 07:44 - 0002642 _____ () C:\Users\Hrstka\AppData\Roaming\grmphon.env
2015-05-20 03:28 - 2015-05-20 03:28 - 0001684 _____ () C:\Users\Hrstka\AppData\Roaming\help_disabled.png
2013-10-02 04:56 - 2013-10-02 04:56 - 0000944 _____ () C:\Users\Hrstka\AppData\Roaming\html.stylesheet.type.xml
2013-10-02 04:56 - 2013-10-02 04:56 - 0000937 _____ () C:\Users\Hrstka\AppData\Roaming\htmlhelp.title.xml
1992-11-17 02:00 - 1992-11-17 02:00 - 1776947 _____ () C:\Users\Hrstka\AppData\Roaming\Introvert.U
2015-05-20 03:28 - 2015-05-20 03:28 - 0004345 _____ () C:\Users\Hrstka\AppData\Roaming\irda.png
2015-03-24 07:39 - 2015-03-24 07:39 - 0001109 _____ () C:\Users\Hrstka\AppData\Roaming\LICENSE.md
2013-10-02 04:56 - 2013-10-02 04:56 - 0001828 _____ () C:\Users\Hrstka\AppData\Roaming\man.output.lang.in.name.enabled.xml
2013-10-02 04:56 - 2013-10-02 04:56 - 0001536 _____ () C:\Users\Hrstka\AppData\Roaming\man.subheading.divider.xml
2009-06-10 23:06 - 2009-06-10 23:06 - 0002899 _____ () C:\Users\Hrstka\AppData\Roaming\Memories_buttonClear.png
2015-05-20 03:28 - 2015-05-20 03:28 - 0004576 _____ () C:\Users\Hrstka\AppData\Roaming\memory-reader.png
2015-05-20 03:28 - 2015-05-20 03:28 - 0004355 _____ () C:\Users\Hrstka\AppData\Roaming\mouse.png
2009-06-10 23:06 - 2009-06-10 23:06 - 0004515 _____ () C:\Users\Hrstka\AppData\Roaming\nav_rightarrow.png
2013-10-02 04:56 - 2013-10-02 04:56 - 0000888 _____ () C:\Users\Hrstka\AppData\Roaming\no.up.image.xml
2013-10-02 04:55 - 2013-10-02 04:55 - 0003157 _____ () C:\Users\Hrstka\AppData\Roaming\package-frame.html
2015-05-20 03:28 - 2015-05-20 03:28 - 0001264 _____ () C:\Users\Hrstka\AppData\Roaming\pcdrantenna.p5m
2015-05-20 03:28 - 2015-05-20 03:28 - 0002611 _____ () C:\Users\Hrstka\AppData\Roaming\pcdrbattery.p5m
2015-05-20 03:28 - 2015-05-20 03:28 - 0002510 _____ () C:\Users\Hrstka\AppData\Roaming\pcdrscsi2.p5m
2015-05-20 03:28 - 2015-05-20 03:28 - 0000193 _____ () C:\Users\Hrstka\AppData\Roaming\PCDR_HUD_4_3.scheme
2013-10-02 04:55 - 2013-10-02 04:55 - 0001172 _____ () C:\Users\Hrstka\AppData\Roaming\PlanDrawer.java
2014-05-08 06:08 - 2014-05-08 06:08 - 0001630 _____ () C:\Users\Hrstka\AppData\Roaming\Plastic - Polished Alumide.3PP
2013-10-02 04:56 - 2013-10-02 04:56 - 0001024 _____ () C:\Users\Hrstka\AppData\Roaming\procedure.properties.xml
2013-10-02 04:55 - 2013-10-02 04:55 - 0000101 _____ () C:\Users\Hrstka\AppData\Roaming\r1.m
2015-05-20 03:28 - 2015-05-20 03:28 - 0003993 _____ () C:\Users\Hrstka\AppData\Roaming\RB_Disabled.png
2015-05-20 03:28 - 2015-05-20 03:28 - 0001720 _____ () C:\Users\Hrstka\AppData\Roaming\redshd.png
2015-05-20 03:28 - 2015-05-20 03:28 - 0003111 _____ () C:\Users\Hrstka\AppData\Roaming\refresh_12.png
2015-05-20 03:28 - 2015-05-20 03:28 - 0003983 _____ () C:\Users\Hrstka\AppData\Roaming\RF_Enabled.png
2013-10-02 04:56 - 2013-10-02 04:56 - 0002707 _____ () C:\Users\Hrstka\AppData\Roaming\SequenceFrequency.mm
2012-02-22 22:54 - 2012-02-22 22:54 - 0002388 _____ () C:\Users\Hrstka\AppData\Roaming\settings.xml
2013-10-02 04:56 - 2013-10-02 04:56 - 0001068 _____ () C:\Users\Hrstka\AppData\Roaming\shade.verbatim.xml
2013-10-02 04:55 - 2013-10-02 04:55 - 0000104 _____ () C:\Users\Hrstka\AppData\Roaming\SimpleDocument.xml
2013-10-02 04:56 - 2013-10-02 04:56 - 0000975 _____ () C:\Users\Hrstka\AppData\Roaming\subscript.properties.xml
2015-05-20 03:28 - 2015-05-20 03:28 - 0002786 _____ () C:\Users\Hrstka\AppData\Roaming\sysinfofilter_ax_dell.xml
2015-05-20 03:28 - 2015-05-20 03:28 - 0001769 _____ () C:\Users\Hrstka\AppData\Roaming\systemTools.png
2015-05-20 03:28 - 2015-05-20 03:28 - 0000816 _____ () C:\Users\Hrstka\AppData\Roaming\toast_good.png
2013-10-02 04:56 - 2013-10-02 04:56 - 0000840 _____ () C:\Users\Hrstka\AppData\Roaming\toc.image.xml
2015-05-20 03:28 - 2015-05-20 03:28 - 0004090 _____ () C:\Users\Hrstka\AppData\Roaming\tutorials_icon.png
2015-05-20 03:14 - 2015-05-20 03:14 - 0000095 _____ () C:\Users\Hrstka\AppData\Roaming\tweakChkDsk_pt-pt.p5p
2015-05-20 03:14 - 2015-05-20 03:14 - 0001933 _____ () C:\Users\Hrstka\AppData\Roaming\tweakNetworkingManual_de.p5p
2015-05-20 03:28 - 2015-05-20 03:28 - 0000415 _____ () C:\Users\Hrstka\AppData\Roaming\VertexOutputTexturelessInstanced.hlsli
2013-10-02 04:56 - 2013-10-02 04:56 - 0001366 _____ () C:\Users\Hrstka\AppData\Roaming\wordml.template.xml
2016-04-02 02:14 - 2016-04-02 02:14 - 0009238 _____ () C:\Users\Hrstka\AppData\Roaming\{RecOveR}-vhlln__.Htm
2016-04-02 02:14 - 2016-04-02 02:14 - 0082893 _____ () C:\Users\Hrstka\AppData\Roaming\{RecOveR}-vhlln__.Png
2016-04-10 07:00 - 2016-04-10 07:00 - 0009238 _____ () C:\Users\Hrstka\AppData\Roaming\{RecOveR}-yjdwn__.Htm
2016-04-10 07:00 - 2016-04-10 07:00 - 0081953 _____ () C:\Users\Hrstka\AppData\Roaming\{RecOveR}-yjdwn__.Png
2016-03-30 04:26 - 2016-03-30 05:28 - 0038534 _____ () C:\Users\Hrstka\AppData\Roaming\Microsoft\+REcovER+bnevw+.png
2016-03-30 04:26 - 2016-03-30 05:28 - 0001046 _____ () C:\Users\Hrstka\AppData\Roaming\Microsoft\+REcovER+bnevw+.txt
2016-03-31 20:27 - 2016-03-31 21:06 - 0038534 _____ () C:\Users\Hrstka\AppData\Roaming\Microsoft\+REcovER+gwyfd+.png
2016-03-31 20:27 - 2016-03-31 21:06 - 0001046 _____ () C:\Users\Hrstka\AppData\Roaming\Microsoft\+REcovER+gwyfd+.txt
2016-03-30 07:59 - 2016-03-30 08:36 - 0038534 _____ () C:\Users\Hrstka\AppData\Roaming\Microsoft\+REcovER+qoynb+.png
2016-03-30 07:59 - 2016-03-30 08:36 - 0001046 _____ () C:\Users\Hrstka\AppData\Roaming\Microsoft\+REcovER+qoynb+.txt
2016-03-31 12:29 - 2016-03-31 13:06 - 0038534 _____ () C:\Users\Hrstka\AppData\Roaming\Microsoft\+REcovER+vkmgi+.png
2016-03-31 12:29 - 2016-03-31 13:06 - 0001046 _____ () C:\Users\Hrstka\AppData\Roaming\Microsoft\+REcovER+vkmgi+.txt
2016-04-02 02:14 - 2016-04-02 02:14 - 0009238 _____ () C:\Users\Hrstka\AppData\Roaming\Microsoft\{RecOveR}-vhlln__.Htm
2016-04-02 02:14 - 2016-04-02 02:14 - 0082893 _____ () C:\Users\Hrstka\AppData\Roaming\Microsoft\{RecOveR}-vhlln__.Png
2016-04-02 02:14 - 2016-04-02 02:14 - 0002818 _____ () C:\Users\Hrstka\AppData\Roaming\Microsoft\{RecOveR}-vhlln__.Txt
2016-04-10 07:00 - 2016-04-10 07:00 - 0009238 _____ () C:\Users\Hrstka\AppData\Roaming\Microsoft\{RecOveR}-yjdwn__.Htm
2016-04-10 07:00 - 2016-04-10 07:00 - 0081953 _____ () C:\Users\Hrstka\AppData\Roaming\Microsoft\{RecOveR}-yjdwn__.Png
2016-04-10 07:00 - 2016-04-10 07:00 - 0002818 _____ () C:\Users\Hrstka\AppData\Roaming\Microsoft\{RecOveR}-yjdwn__.Txt
2016-04-02 02:05 - 2016-04-02 02:17 - 0009238 _____ () C:\Users\Hrstka\AppData\Local\{RecOveR}-vhlln__.Htm
2016-04-02 02:05 - 2016-04-02 02:17 - 0082893 _____ () C:\Users\Hrstka\AppData\Local\{RecOveR}-vhlln__.Png
2016-04-02 02:05 - 2016-04-02 02:17 - 0002818 _____ () C:\Users\Hrstka\AppData\Local\{RecOveR}-vhlln__.Txt
2016-04-10 06:51 - 2016-04-10 06:58 - 0009238 _____ () C:\Users\Hrstka\AppData\Local\{RecOveR}-yjdwn__.Htm
2016-04-10 06:51 - 2016-04-10 06:58 - 0081953 _____ () C:\Users\Hrstka\AppData\Local\{RecOveR}-yjdwn__.Png
2016-04-10 06:51 - 2016-04-10 06:58 - 0002818 _____ () C:\Users\Hrstka\AppData\Local\{RecOveR}-yjdwn__.Txt
2016-03-30 02:35 - 2016-03-30 02:35 - 0038534 _____ () C:\ProgramData\+REcovER+bnevw+.png
2016-04-05 06:40 - 2016-04-05 06:41 - 0038534 _____ () C:\ProgramData\+REcovER+crmkj+.png
2016-03-31 19:57 - 2016-03-31 19:58 - 0038534 _____ () C:\ProgramData\+REcovER+gwyfd+.png
2016-03-30 07:32 - 2016-03-30 07:32 - 0038534 _____ () C:\ProgramData\+REcovER+qoynb+.png
2016-03-31 12:01 - 2016-03-31 12:01 - 0038534 _____ () C:\ProgramData\+REcovER+vkmgi+.png
2014-10-13 21:32 - 2014-10-13 21:32 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2016-04-02 02:04 - 2016-04-02 02:05 - 0009238 _____ () C:\ProgramData\{RecOveR}-vhlln__.Htm
2016-04-02 02:04 - 2016-04-02 02:05 - 0082893 _____ () C:\ProgramData\{RecOveR}-vhlln__.Png
2016-04-10 06:50 - 2016-04-10 06:50 - 0009238 _____ () C:\ProgramData\{RecOveR}-yjdwn__.Htm
2016-04-10 06:50 - 2016-04-10 06:50 - 0081953 _____ () C:\ProgramData\{RecOveR}-yjdwn__.Png
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Re: Kontrola logu, zavirovaný PC Win32/filecoder Vyřešeno
Vše je již OK. Antivir některé vyléčil a ty co nešly smazal.
Děkuji za pomoc.
Děkuji za pomoc.
Kdo je online
Uživatelé prohlížející si toto fórum: Žádní registrovaní uživatelé a 5 hostů