[Rozwiązano] Zablokowano podejrzaną próbę logowania.

Question

[Rozwiązano] Zablokowano podejrzaną próbę logowania.

Suchysdl 28 Cze 2014 19:59 2712 13

Zamknięty | Nowy temat

#1 28 Cze 2014 19:59

Suchysdl Suchysdl

Poziom 14

#1 28 Cze 2014 19:59

Witam,wszedłem na swojego e-maila i ujrzałem taką wiadomość:o
Czy ja mam jakiegoś keyloggera na lapku czy jak ?
Witaj Karol,

Ktoś ostatnio użył Twojego hasła, by zalogować się na Twoje konto Google – suchysdl(malpa)gmail.com.

Zablokowaliśmy próbę logowania na wypadek, gdyby ktoś chciał się włamać na konto. Sprawdź te informacje:

sobota, 28 czerwiec 2014 14:56:55 UTC
Adres IP: 37.228.203.0
Lokalizacja: Dublin, Dublin City, Irlandia

Jeśli nie rozpoznajesz tej próby logowania, ktoś inny mógł próbować dostać się na Twoje konto. Jak najszybciej zaloguj się i zresetuj hasło.

Zamknięty | Nowy temat

actin · Answer 1 · 2014-06-28T20:39:24+02:00

#2 28 Cze 2014 20:39

actin actin

Poziom 33

#2 28 Cze 2014 20:39

Użyj Spy Remover i wykonaj skan systemu.

Suchysdl · Answer 2 · 2014-06-28T21:07:51+02:00

#3 28 Cze 2014 21:07

Suchysdl Suchysdl

Poziom 14

#3 28 Cze 2014 21:07

Objects scanned: 3
I to już? tylko to wystarczylo zrobic?

mackos_2 · Answer 3 · 2014-06-28T23:32:31+02:00

Użyj AdwCleaner ( http://www.bleepingcomputer.com/download/adwcleaner/ ) funkcja: Scan/Szukaj i Clean/Usuń.

Zrób pełne skanowanie przy pomocy Mbam i usuń to co wykryje ( http://www.malwarebytes.org/ ).

Dodaj oba logi z FRST.

Suchysdl · Answer 4 · 2014-06-29T01:07:10+02:00

Additional:

Spoiler:

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 28-06-2014 02
Ran by Karol at 2014-06-29 00:32:04
Running from C:\Users\Karol\Downloads
Boot Mode: Normal
==========================================================

==================== Security Center ========================

AV: AVG Internet Security 2014 (Enabled - Up to date) {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: AVG Internet Security 2014 (Enabled - Up to date) {B5F5C120-2089-702E-0001-553BB0D5A664}
FW: AVG Internet Security 2014 (Enabled) {36AFA1E1-4CDC-7EF8-11EE-C77C3581ABA2}

==================== Installed Programs ======================

µTorrent (HKCU\...\uTorrent) (Version: 3.4.2.31893 - BitTorrent Inc.)
Adobe Flash Player 13 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 13.0.0.214 - Adobe Systems Incorporated)
Adobe Reader XI - Polish (HKLM-x32\...\{AC76BA86-7AD7-1045-7B44-AB0000000001}) (Version: 11.0.00 - Adobe Systems Incorporated)
Advanced Spyware Remover (HKLM-x32\...\Advanced Spyware Remover_is1) (Version: 1.0 - IObit)
ALLMediaServer (HKLM-x32\...\{FE77909E-B782-4554-A92A-4D887CEF0ACC}_is1) (Version: 0.95 - ALLCinema Ltd.)
ALLPlayer Pilot (HKLM-x32\...\{146BDBDD-ACD9-4B04-A286-C27471841E8E}_is1) (Version: 1.1 - ALLPlayer Group, Ltd.)
ALLPlayer V5.X (HKLM-x32\...\ALLPlayer_is1) (Version: - ALLPlayer Group, Ltd.)
AVG 2014 (HKLM\...\AVG) (Version: 2014.0.4592 - AVG Technologies)
AVG 2014 (Version: 14.0.3972 - AVG Technologies) Hidden
AVG 2014 (Version: 14.0.4592 - AVG Technologies) Hidden
best-markit (HKLM-x32\...\4B4DDA08-A9F6-73B3-CE45-3894054A0528) (Version: - best-markit-software)
CCleaner (HKLM\...\CCleaner) (Version: 4.06 - Piriform)
CrystalDiskInfo 6.1.14 (HKLM-x32\...\CrystalDiskInfo_is1) (Version: 6.1.14 - Crystal Dew World)
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd)
Dell NetReady Setup (HKLM-x32\...\{B3B8A116-A659-47F4-9824-8D7F998C3796}) (Version: 1.0.10.1 - Dell)
Dell System Detect (HKCU\...\9204f5692a8faf3b) (Version: 5.4.0.4 - Dell)
Dell Wireless HSPA Mini-Card Drivers (HKLM-x32\...\{9D583F01-A973-4B04-90BD-FB7886779090}) (Version: 7.1.1.1 - Dell)
DW WLAN Card Utility (HKLM\...\DW WLAN Card Utility) (Version: 5.100.82.142 - Dell Inc.)
Entity Framework Designer for Visual Studio 2012 - enu (HKLM-x32\...\{32136776-FE3F-453D-80DA-CDD993BDB2A3}) (Version: 11.1.20810.00 - Microsoft Corporation)
GG (HKCU\...\GG) (Version: 11 - GG Network S.A.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 35.0.1916.153 - Google Inc.)
Google Update Helper (x32 Version: 1.3.24.15 - Google Inc.) Hidden
IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6428.0 - IDT)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.2867 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Java 7 Update 51 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217045FF}) (Version: 7.0.510 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
LG United Mobile Drivers (HKLM-x32\...\{C2944BE7-9BFF-4EF0-A362-CB3281B7C50D}) (Version: 3.6.0.0 - LG Electronics)
Malwarebytes Anti-Malware wersja 2.0.2.1012 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
Math Problem Solver (HKCU\...\Math Problem Solver) (Version: - )
Media View (HKLM-x32\...\MediaViewV1alpha1566) (Version: 1.1 - Media View) <==== ATTENTION
Media View (HKLM-x32\...\MediaViewV1alpha3755) (Version: 1.1 - Media View) <==== ATTENTION
Media Watch (HKLM-x32\...\MediaWatchV1home3719) (Version: 1.1 - Media Watch) <==== ATTENTION
Microsoft .NET Framework 1.1 (HKLM-x32\...\{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}) (Version: 1.1.4322 - Microsoft)
Microsoft .NET Framework 4 Multi-Targeting Pack (x32 Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5 Multi-Targeting Pack (HKLM-x32\...\{5CBFF3F3-2D40-34EE-BCA5-A95BC19E400D}) (Version: 4.5.50709 - Microsoft Corporation)
Microsoft .NET Framework 4.5 SDK (HKLM-x32\...\{1948E039-EC79-4591-951D-9867A8C14C90}) (Version: 4.5.50709 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (PLK) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Polski) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1045) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Help Viewer 2.0 (HKLM-x32\...\Microsoft Help Viewer 2.0) (Version: 2.0.50727 - Microsoft Corporation)
Microsoft Help Viewer 2.0 (x32 Version: 2.0.50727 - Microsoft Corporation) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (x32 Version: - Microsoft) Hidden
Microsoft Office Access MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Access Setup Metadata MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Enterprise 2007 Trial (HKLM-x32\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Office Excel MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Groove MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Groove Setup Metadata MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (x32 Version: - Microsoft) Hidden
Microsoft Office Publisher MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Command Line Utilities (HKLM\...\{9D573E71-1077-4C7E-B4DB-4E22A5D2B48B}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2012 Data-Tier App Framework (HKLM\...\{36E619BC-A234-4EC3-849B-779A7C865A45}) (Version: 11.0.2316.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Data-Tier App Framework (HKLM-x32\...\{FBA6F90E-36EC-4FC9-9B25-3834E3BD46A8}) (Version: 11.0.2316.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Express LocalDB (HKLM\...\{13D558FE-A863-402C-B115-160007277033}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2012 Management Objects (HKLM-x32\...\{DA1C1761-5F4F-4332-AB9D-29EDF3F8EA0A}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2012 Management Objects (x64) (HKLM\...\{FA0A244E-F3C2-4589-B42A-3D522DE79A42}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2012 Native Client (HKLM\...\{49D665A2-4C2A-476E-9AB8-FCC425F526FC}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2012 Transact-SQL Compiler Service (HKLM\...\{BEB0F91E-F2EA-48A1-B938-7857ABF2A93D}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2012 Transact-SQL ScriptDom (HKLM\...\{0E8670B8-3965-4930-ADA6-570348B67153}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2012 T-SQL Language Service (HKLM-x32\...\{6D6D43E5-218C-4B05-92D3-2240810F4760}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server Compact 4.0 SP1 x64 ENU (HKLM\...\{78909610-D229-459C-A936-25D92283D3FD}) (Version: 4.0.8876.1 - Microsoft Corporation)
Microsoft SQL Server Data Tools - enu (11.1.20828.01) (HKLM-x32\...\{4F2B8233-35EE-4197-8C3B-EACCBF712029}) (Version: 11.1.20828.01 - Microsoft Corporation)
Microsoft SQL Server Data Tools Build Utilities - enu (11.1.20828.01) (HKLM-x32\...\{FAE0523E-08A4-4717-8E8E-6EC6F32CBE88}) (Version: 11.1.20828.01 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2012 (HKLM-x32\...\{E2082604-4BA5-44BB-BBFB-AF0F3CB8C6AB}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2012 (x64) (HKLM\...\{F1949145-EB64-4DE7-9D81-E6D27937146C}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
NapiProjekt 2.0.0 (build 2151) (HKLM-x32\...\NapiProjekt_is1) (Version: - )
Network System Driver (HKLM-x32\...\inethnfd) (Version: 1.0.0.3001 - ) <==== ATTENTION
PremiumSoft Navicat 11.0 for MySQL (HKLM-x32\...\PremiumSoft Navicat for MySQL_is1) (Version: 11.0.8 - PremiumSoft CyberTech Ltd.)
Prerequisites for SSDT (HKLM-x32\...\{9169C939-ED01-446A-BD0C-29873BAF4E48}) (Version: 11.0.2100.60 - Microsoft Corporation)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.986 - Even Balance, Inc.)
Remere's Map Editor (HKLM-x32\...\{0C0FE292-E7D0-4938-AA41-E6E5F72D21BC}) (Version: 2.2 - Remere)
Testy Bplus 5.1.3.69 (HKLM-x32\...\{81999787-A518-4218-86D5-C5D25E6808F5}_is1) (Version: 5.1.3.69 - Grupa IMAGE sp. z o.o.)
Tibia (HKLM-x32\...\Tibia_is1) (Version: 8.60 - CipSoft GmbH)
Update for (KB2504637) (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637) (Version: 1 - Microsoft Corporation)
Update for Microsoft Office 2007 Help for Common Features (KB963673) (HKLM-x32\...\{90120000-006E-0409-0000-0000000FF1CE}_ENTERPRISE_{AB365889-0395-4FAD-B702-CA5985D53D42}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{90120000-002A-0000-1000-0000000FF1CE}_ENTERPRISE_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version: - Microsoft)
Update for Microsoft Office Access 2007 Help (KB963663) (HKLM-x32\...\{90120000-0015-0409-0000-0000000FF1CE}_ENTERPRISE_{6B76A18A-AA1E-42AB-A7AD-6C84BBB43987}) (Version: - Microsoft)
Update for Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0409-0000-0000000FF1CE}_ENTERPRISE_{199DF7B6-169C-448C-B511-1054101BE9C9}) (Version: - Microsoft)
Update for Microsoft Office Infopath 2007 Help (KB963662) (HKLM-x32\...\{90120000-0044-0409-0000-0000000FF1CE}_ENTERPRISE_{716B81B8-B13C-41DF-8EAC-7A2F656CAB63}) (Version: - Microsoft)
Update for Microsoft Office OneNote 2007 Help (KB963670) (HKLM-x32\...\{90120000-00A1-0409-0000-0000000FF1CE}_ENTERPRISE_{2744EF05-38E1-4D5D-B333-E021EDAEA245}) (Version: - Microsoft)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition (HKLM-x32\...\{90120000-001A-0409-0000-0000000FF1CE}_ENTERPRISE_{ED38F8A3-4F61-494E-8BCA-E3AC7760C924}) (Version: - Microsoft)
Update for Microsoft Office Outlook 2007 Help (KB963677) (HKLM-x32\...\{90120000-001A-0409-0000-0000000FF1CE}_ENTERPRISE_{0451F231-E3E3-4943-AB9F-58EB96171784}) (Version: - Microsoft)
Update for Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0409-0000-0000000FF1CE}_ENTERPRISE_{397B1D4F-ED7B-4ACA-A637-43B670843876}) (Version: - Microsoft)
Update for Microsoft Office Publisher 2007 Help (KB963667) (HKLM-x32\...\{90120000-0019-0409-0000-0000000FF1CE}_ENTERPRISE_{2E40DE55-B289-4C8B-8901-5D369B16814F}) (Version: - Microsoft)
Update for Microsoft Office Script Editor Help (KB963671) (HKLM-x32\...\{90120000-006E-0409-0000-0000000FF1CE}_ENTERPRISE_{CD11C6A2-FFC6-4271-8EAB-79C3582F505C}) (Version: - Microsoft)
Update for Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0409-0000-0000000FF1CE}_ENTERPRISE_{80E762AA-C921-4839-9D7D-DB62A72C0726}) (Version: - Microsoft)
Update for Microsoft Visual Studio 2012 (KB2781514) (HKLM-x32\...\{56ef8912-352f-4fab-9c73-6f1c92a7127f}) (Version: 11.0.51219 - Microsoft Corporation)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
WinRAR 5.00 (64-bitowy) (HKLM\...\WinRAR archiver) (Version: 5.00.0 - win.rar GmbH)
WinRAR 5.01 (32-bitowy) (HKLM-x32\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)

==================== Restore Points =========================

14-06-2014 01:00:15 Windows Update
15-06-2014 14:33:09 Installed LG United Mobile Drivers.
27-06-2014 17:02:38 Installed Remere's Map Editor
28-06-2014 15:06:02 Instalacja pakietu sterownika urządzenia: DT Soft Ltd Urządzenia systemowe
28-06-2014 15:29:48 Zainstalowany program DirectX

==================== Hosts content: ==========================

2009-07-14 04:34 - 2014-02-06 20:12 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost

==================== Scheduled Tasks (whitelisted) =============

Task: {04D01045-EC24-47EE-944B-7EC4B4C8EF37} - System32\Tasks\best-markit_wd => C:\Program Files (x86)\best-markit\best-markitDoQtxw.exe
Task: {059C9AE3-DA8A-4BA7-BA4C-8C408AB23940} - System32\Tasks\Math Problem Solver CPU => C:\Users\Karol\AppData\Local\Math Problem Solver\cpu\Solve.exe [2014-01-23] () <==== ATTENTION
Task: {42FABEC9-8799-42E0-BFB7-C935AD0506EC} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-10-06] (Google Inc.)
Task: {5C1FD316-E52E-4849-8098-1F82A8BBE684} - \DealPlyLiveUpdateTaskMachineUA No Task File <==== ATTENTION
Task: {692B2094-D806-47C8-9A98-5E7635D8A6F9} - \DealPlyLiveUpdateTaskMachineCore No Task File <==== ATTENTION
Task: {7D66CE46-3E97-4DA4-8C61-AC7758F4C42C} - \GoforFilesUpdate No Task File <==== ATTENTION
Task: {85E39D7C-415D-4347-8FD8-303D28BC09FE} - \BitGuard No Task File <==== ATTENTION
Task: {8C2810A9-AAEF-4427-B23B-2EBBEF45CEE4} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-10-06] (Google Inc.)
Task: {9F0F3ECC-2C3C-43A7-ADAB-FCEF8FE6369E} - System32\Tasks\Math Problem Solver Optimize => C:\Users\Karol\AppData\Local\Math Problem Solver\Optimize.exe [2014-01-20] () <==== ATTENTION
Task: {9F195681-3EB5-4F69-9128-F697E43EF698} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-05-18] (Adobe Systems Incorporated)
Task: {A617F268-612F-412D-AA57-6A9CC0503DE6} - \AmiUpdXp No Task File <==== ATTENTION
Task: {AC445468-0C8D-4095-A114-306057D5444A} - System32\Tasks\Games\UpdateCheck_S-1-5-21-2485980081-3737532992-1299750299-1000
Task: {B7412B8E-65DD-4321-8A46-CD4EE1E23C57} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-09-19] (Piriform Ltd)
Task: {BDCE1254-2788-4D80-BE71-E84ACB023C26} - System32\Tasks\best-markit Update => C:\Program Files (x86)\best-markit\best-markitJ62.exe
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\best-markit Update.job => C:\Program Files (x86)\best-markit\best-markitJ62.exe
Task: C:\Windows\Tasks\best-markit_wd.job => C:\Program Files (x86)\best-markit\best-markitDoQtxw.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2013-10-07 00:59 - 2012-11-07 10:45 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2014-06-20 16:28 - 2014-06-20 16:28 - 00179712 _____ () C:\Windows\SysWOW64\nethtsrv.exe
2014-02-01 17:58 - 2014-02-01 17:58 - 00066872 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2014-06-20 16:28 - 2014-06-20 16:28 - 00162304 _____ () C:\Windows\SysWOW64\netupdsrv.exe
2014-06-13 22:15 - 2014-06-05 15:58 - 00716616 _____ () C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\libglesv2.dll
2014-06-13 22:15 - 2014-06-05 15:58 - 00126280 _____ () C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\libegl.dll
2014-06-20 16:28 - 2014-06-20 16:28 - 00108544 _____ () C:\Windows\SysWOW64\hfnapi.dll
2014-06-20 16:27 - 2014-06-20 16:27 - 00249856 _____ () C:\Windows\SysWOW64\hfpapi.dll
2013-10-07 00:36 - 2011-07-13 11:10 - 00065576 ____R () C:\Program Files (x86)\Dell\Dell WWAN\WMCore\MBMDebug.dll
2014-06-28 20:45 - 2009-02-12 15:26 - 00044032 _____ () C:\Program Files (x86)\IObit\Advanced Spyware Remover\madDisAsm_.bpl
2014-06-28 20:45 - 2009-02-12 15:26 - 00167424 _____ () C:\Program Files (x86)\IObit\Advanced Spyware Remover\madBasic_.bpl
2014-06-13 22:15 - 2014-06-05 15:58 - 04217672 _____ () C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\pdf.dll
2014-06-13 22:15 - 2014-06-05 15:58 - 00414536 _____ () C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\ppGoogleNaClPluginChrome.dll
2014-06-13 22:15 - 2014-06-05 15:58 - 01732424 _____ () C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\ffmpegsumo.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\ProgramData\TEMP:6BE50C2B

==================== Safe Mode (whitelisted) ===================

==================== EXE Association (whitelisted) =============

==================== MSCONFIG/TASK MANAGER disabled items =========

==================== Faulty Device Manager Devices =============

Name: Teredo Tunneling Pseudo-Interface
Description: Karta tunelowania Teredo firmy Microsoft
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Kontroler magistrali zarządzania systemem
Description: Kontroler magistrali zarządzania systemem
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Kontroler Uniwersalnej magistrali szeregowej (USB)
Description: Kontroler Uniwersalnej magistrali szeregowej (USB)
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: nethfdrv
Description: nethfdrv
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: nethfdrv
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

==================== Event log errors: =========================

Application errors:
==================
Error: (06/29/2014 00:27:10 AM) (Source: NetHttpService) (EventID: 0) (User: )
Description: NetHttpServiceNetHttpService Failed to connect to driver

Error: (06/29/2014 00:22:54 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nazwa aplikacji powodującej błąd: fffplayer32.exe, wersja: 0.0.0.0, sygnatura czasowa: 0x486a1f93
Nazwa modułu powodującego błąd: bigbox.mfx, wersja: 1.0.0.0, sygnatura czasowa: 0x44ec8bd9
Kod wyjątku: 0x40000015
Przesunięcie błędu: 0x00006991
Identyfikator procesu powodującego błąd: 0x15c8
Godzina uruchomienia aplikacji powodującej błąd: 0xfffplayer32.exe0
Ścieżka aplikacji powodującej błąd: fffplayer32.exe1
Ścieżka modułu powodującego błąd: fffplayer32.exe2
Identyfikator raportu: fffplayer32.exe3

Error: (06/29/2014 00:22:18 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nazwa aplikacji powodującej błąd: Explorer.EXE, wersja: 6.1.7601.17567, sygnatura czasowa: 0x4d672ee4
Nazwa modułu powodującego błąd: wwanapi.dll, wersja: 6.1.7600.16385, sygnatura czasowa: 0x4a5be0a8
Kod wyjątku: 0xc0000005
Przesunięcie błędu: 0x00000000000333eb
Identyfikator procesu powodującego błąd: 0x804
Godzina uruchomienia aplikacji powodującej błąd: 0xExplorer.EXE0
Ścieżka aplikacji powodującej błąd: Explorer.EXE1
Ścieżka modułu powodującego błąd: Explorer.EXE2
Identyfikator raportu: Explorer.EXE3

Error: (06/29/2014 00:21:59 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/28/2014 11:03:11 PM) (Source: NetHttpService) (EventID: 0) (User: )
Description: NetHttpServiceNetHttpService Failed to connect to driver

Error: (06/28/2014 10:59:07 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/28/2014 10:05:24 PM) (Source: NetHttpService) (EventID: 0) (User: )
Description: NetHttpServiceNetHttpService Failed to connect to driver

Error: (06/28/2014 09:59:33 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/28/2014 03:57:14 PM) (Source: NetHttpService) (EventID: 0) (User: )
Description: NetHttpServiceNetHttpService Failed to connect to driver

Error: (06/28/2014 03:46:27 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

System errors:
=============
Error: (06/29/2014 00:27:10 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Nie można uruchomić usługi nethfdrv z powodu następującego błędu:
%%2

Error: (06/29/2014 00:26:45 AM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Usługa Windows Update zawiesiła się podczas uruchamiania.

Error: (06/29/2014 00:21:39 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Nie można załadować następujących sterowników startu rozruchowego lub systemowego:
nethfdrv

Error: (06/29/2014 00:21:03 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Nie można uruchomić usługi lirsgt z powodu następującego błędu:
%%577

Error: (06/29/2014 00:20:52 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Nie można uruchomić usługi atksgt z powodu następującego błędu:
%%577

Error: (06/28/2014 11:05:08 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Usługa Windows Update zawiesiła się podczas uruchamiania.

Error: (06/28/2014 11:03:11 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Nie można uruchomić usługi nethfdrv z powodu następującego błędu:
%%2

Error: (06/28/2014 11:01:48 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Nie można uruchomić usługi Usługa Google Update (gupdate) z powodu następującego błędu:
%%1053

Error: (06/28/2014 11:01:48 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Upłynął limit czasu (30000 ms) podczas oczekiwania na połączenie się z usługą Usługa Google Update (gupdate).

Error: (06/28/2014 10:59:06 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Nie można załadować następujących sterowników startu rozruchowego lub systemowego:
nethfdrv

Microsoft Office Sessions:
=========================
Error: (06/29/2014 00:27:10 AM) (Source: NetHttpService) (EventID: 0) (User: )
Description: NetHttpServiceNetHttpService Failed to connect to driver

Error: (06/29/2014 00:22:54 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: fffplayer32.exe0.0.0.0486a1f93bigbox.mfx1.0.0.044ec8bd9400000150000699115c801cf931f6bec8262C:\Program Files\Common Files\Flash Player\fffplayer32.exeC:\Users\Karol\AppData\Local\Temp\mrt6315.tmp\bigbox.mfxbf3d974c-ff12-11e3-83a2-028037ec0200

Error: (06/29/2014 00:22:18 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Explorer.EXE6.1.7601.175674d672ee4wwanapi.dll6.1.7600.163854a5be0a8c000000500000000000333eb80401cf931e95f5ca86C:\Windows\Explorer.EXEC:\Windows\system32\wwanapi.dlla98c999c-ff12-11e3-83a2-028037ec0200

Error: (06/29/2014 00:21:59 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/28/2014 11:03:11 PM) (Source: NetHttpService) (EventID: 0) (User: )
Description: NetHttpServiceNetHttpService Failed to connect to driver

Error: (06/28/2014 10:59:07 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/28/2014 10:05:24 PM) (Source: NetHttpService) (EventID: 0) (User: )
Description: NetHttpServiceNetHttpService Failed to connect to driver

Error: (06/28/2014 09:59:33 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/28/2014 03:57:14 PM) (Source: NetHttpService) (EventID: 0) (User: )
Description: NetHttpServiceNetHttpService Failed to connect to driver

Error: (06/28/2014 03:46:27 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

CodeIntegrity Errors:
===================================
Date: 2014-06-29 00:21:03.299
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\lirsgt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2014-06-29 00:21:03.242
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\lirsgt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2014-06-29 00:20:52.774
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\atksgt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2014-06-29 00:20:52.414
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\atksgt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2014-06-28 22:56:38.915
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\lirsgt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2014-06-28 22:56:38.462
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\lirsgt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2014-06-28 22:55:17.998
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\atksgt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2014-06-28 22:55:17.888
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\atksgt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2014-06-28 21:59:08.486
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\lirsgt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2014-06-28 21:59:08.455
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\lirsgt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

==================== Memory info ===========================

Percentage of memory in use: 67%
Total physical RAM: 2945.24 MB
Available physical RAM: 945.48 MB
Total Pagefile: 5888.66 MB
Available Pagefile: 3829.38 MB
Total Virtual: 8192 MB
Available Virtual: 8191.84 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:100 GB) (Free:6.55 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: () (Fixed) (Total:124.11 GB) (Free:95.33 GB) NTFS
Drive f: (Crysis 3) (CDROM) (Total:7.45 GB) (Free:0 GB) CDFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 224 GB) (Disk ID: F2A21183)
Partition 1: (Active) - (Size=100 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=124 GB) - (Type=07 NTFS)

==================== End Of Log ============================

Dodano po 23 [minuty]:

FRST:

Spoiler:

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 28-06-2014 02
Ran by Karol (administrator) on KAROL-KOMPUTER on 29-06-2014 00:30:21
Running from C:\Users\Karol\Downloads
Platform: Windows 7 Professional Service Pack 1 (X64) OS Language: Polski (Polska)
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-f...utorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgrsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgcsrva.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Dell Inc.) C:\Program Files\Dell\DW WLAN Card\WLTRYSVC.EXE
(Dell Inc.) C:\Program Files\Dell\DW WLAN Card\BCMWLTRY.EXE
(IObit) C:\Program Files (x86)\IObit\Advanced Spyware Remover\ASRsrv.exe
(Dell Inc.) C:\Program Files\Dell\DW WLAN Card\WLTRAY.EXE
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(BitTorrent Inc.) C:\Users\Karol\AppData\Roaming\uTorrent\uTorrent.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgui.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgfws.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe
() C:\Windows\SysWOW64\nethtsrv.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
() C:\Windows\SysWOW64\netupdsrv.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Ericsson AB) C:\Program Files (x86)\Dell\Dell WWAN\WMCore\mini_WMCore.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgnsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgemca.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(IObit) C:\Program Files (x86)\IObit\Advanced Spyware Remover\ASRtray.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgcsrva.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Crystal Dew World) C:\Program Files (x86)\CrystalDiskInfo\DiskInfo.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Farbar) C:\Users\Karol\Downloads\FRST64 (1).exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [Broadcom Wireless Manager UI] => C:\Program Files\Dell\DW WLAN Card\WLTRAY.exe [7470592 2012-06-14] (Dell Inc.)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1664000 2012-09-20] (IDT, Inc.)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [926896 2012-09-23] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AVG_UI] => C:\Program Files (x86)\AVG\AVG2014\avgui.exe [5181456 2014-05-13] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [fst_en_2] => [X]
HKLM-x32\...\Run: [Adobe Ga

Dodano po 5 [minuty]:

A tu masz log z mab

Spoiler:

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 2014-06-29
Scan Time: 00:48:54
Logfile: df.txt
Administrator: Yes

Version: 2.00.2.1012
Malware Database: v2014.06.28.05
Rootkit Database: v2014.06.23.02
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled

OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: Karol

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 281362
Time Elapsed: 17 min, 3 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

Processes: 2
PUP.Optional.Amonetize, C:\Windows\SysWOW64\nethtsrv.exe, 4888, Delete-on-Reboot, [32a31a63e19a0432b4833161c938966a]
PUP.Optional.Amonetize, C:\Windows\SysWOW64\netupdsrv.exe, 256, Delete-on-Reboot, [a92c235ac4b76fc7c771830f12ef629e]

Modules: 0
(No malicious items detected)

Registry Keys: 48
PUP.Optional.Amonetize, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\NetHttpService, Quarantined, [32a31a63e19a0432b4833161c938966a],
PUP.Optional.Amonetize, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\ServiceUpdater, Quarantined, [a92c235ac4b76fc7c771830f12ef629e],
PUP.Optional.MediaBuzz.A, HKLM\SOFTWARE\WOW6432NODE\MediaBuzzV1mode4717, Quarantined, [389d225b1863ba7c15113a83c33fbe42],
PUP.Optional.MediaView.A, HKLM\SOFTWARE\WOW6432NODE\MediaViewV1alpha1566, Quarantined, [29ace994d2a9d56178ef8f3a3bc7e917],
PUP.Optional.MediaView.A, HKLM\SOFTWARE\WOW6432NODE\MediaViewV1alpha3755, Quarantined, [34a1512c1566fd395314cffa1fe3867a],
PUP.Optional.MediaWatch.A, HKLM\SOFTWARE\WOW6432NODE\MediaWatchV1home3719, Quarantined, [8e47bebf156694a2af0f946d0ff55aa6],
PUP.Optional.RichMediaView.A, HKLM\SOFTWARE\WOW6432NODE\RichMediaViewV1release3, Quarantined, [478ef489bac17fb7ba7e7e392bd7718f],
PUP.Optional.BestMarkIt.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\best_markit, Quarantined, [1fb665183447e3533a012f95be44b24e],
PUP.Optional.BestMarkIt.A, HKU\S-1-5-21-2485980081-3737532992-1299750299-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\best_markit, Quarantined, [ba1ba6d797e45adc2714a91ba75b6c94],
PUP.Optional.MediaBuzz.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{eb2df54b-4832-44c1-8d68-56a75da9d5cc}, Quarantined, [2ea75f1eabd0e6507e5b019f34ce10f0],
PUP.Optional.MediaBuzz.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{2ccd11e0-f4fe-4135-85cc-bcebb5fb871c}, Quarantined, [2ea75f1eabd0e6507e5b019f34ce10f0],
PUP.Optional.MediaBuzz.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{43E6EE01-9C40-45CE-BDFA-A809B0960DA4}, Quarantined, [2ea75f1eabd0e6507e5b019f34ce10f0],
PUP.Optional.MediaBuzz.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{43E6EE01-9C40-45CE-BDFA-A809B0960DA4}, Quarantined, [2ea75f1eabd0e6507e5b019f34ce10f0],
PUP.Optional.MediaBuzz.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{2ccd11e0-f4fe-4135-85cc-bcebb5fb871c}, Quarantined, [2ea75f1eabd0e6507e5b019f34ce10f0],
PUP.Optional.MediaBuzz.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{EB2DF54B-4832-44C1-8D68-56A75DA9D5CC}, Quarantined, [2ea75f1eabd0e6507e5b019f34ce10f0],
PUP.Optional.MediaBuzz.A, HKU\S-1-5-21-2485980081-3737532992-1299750299-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{EB2DF54B-4832-44C1-8D68-56A75DA9D5CC}, Quarantined, [2ea75f1eabd0e6507e5b019f34ce10f0],
PUP.Optional.MediaBuzz.A, HKU\S-1-5-21-2485980081-3737532992-1299750299-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{EB2DF54B-4832-44C1-8D68-56A75DA9D5CC}, Quarantined, [2ea75f1eabd0e6507e5b019f34ce10f0],
PUP.Optional.MediaWatch.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{3b607cbf-04b6-4e3d-9962-7242a9549a74}, Quarantined, [5a7b5627512af34334fae6a911f3748c],
PUP.Optional.MediaWatch.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{3B607CBF-04B6-4E3D-9962-7242A9549A74}, Quarantined, [5a7b5627512af34334fae6a911f3748c],
PUP.Optional.MediaWatch.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{b7cdde6f-6e96-4144-ad23-384c52610d24}, Quarantined, [5a7b5627512af34334fae6a911f3748c],
PUP.Optional.MediaWatch.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{BC84B893-6096-4663-BDED-0BEE5314B1BC}, Quarantined, [5a7b5627512af34334fae6a911f3748c],
PUP.Optional.MediaWatch.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{BC84B893-6096-4663-BDED-0BEE5314B1BC}, Quarantined, [5a7b5627512af34334fae6a911f3748c],
PUP.Optional.MediaWatch.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{b7cdde6f-6e96-4144-ad23-384c52610d24}, Quarantined, [5a7b5627512af34334fae6a911f3748c],
PUP.Optional.MediaWatch.A, HKU\S-1-5-21-2485980081-3737532992-1299750299-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{3B607CBF-04B6-4E3D-9962-7242A9549A74}, Quarantined, [5a7b5627512af34334fae6a911f3748c],
PUP.Optional.MediaWatch.A, HKU\S-1-5-21-2485980081-3737532992-1299750299-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{3B607CBF-04B6-4E3D-9962-7242A9549A74}, Quarantined, [5a7b5627512af34334fae6a911f3748c],
PUP.Optional.MediaView.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{55ec8fae-9763-4ab3-b0f6-f49f2b4f532c}, Quarantined, [ece9cab3314a7bbb05e97f0f838130d0],
PUP.Optional.MediaView.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{55EC8FAE-9763-4AB3-B0F6-F49F2B4F532C}, Quarantined, [ece9cab3314a7bbb05e97f0f838130d0],
PUP.Optional.MediaView.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{94912010-727a-4981-bc1d-ef36c7bbef6d}, Quarantined, [ece9cab3314a7bbb05e97f0f838130d0],
PUP.Optional.MediaView.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{73BAE20D-785C-4E89-91FE-42C685913FEB}, Quarantined, [ece9cab3314a7bbb05e97f0f838130d0],
PUP.Optional.MediaView.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{73BAE20D-785C-4E89-91FE-42C685913FEB}, Quarantined, [ece9cab3314a7bbb05e97f0f838130d0],
PUP.Optional.MediaView.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{94912010-727a-4981-bc1d-ef36c7bbef6d}, Quarantined, [ece9cab3314a7bbb05e97f0f838130d0],
PUP.Optional.MediaView.A, HKU\S-1-5-21-2485980081-3737532992-1299750299-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{55EC8FAE-9763-4AB3-B0F6-F49F2B4F532C}, Quarantined, [ece9cab3314a7bbb05e97f0f838130d0],
PUP.Optional.MediaView.A, HKU\S-1-5-21-2485980081-3737532992-1299750299-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{55EC8FAE-9763-4AB3-B0F6-F49F2B4F532C}, Quarantined, [ece9cab3314a7bbb05e97f0f838130d0],
PUP.Optional.ReMarkIt.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{7A9CAD0B-E35C-B7B1-B047-00B1386E87D5}, Quarantined, [ebeabac3cfac9c9ac9d2f993719322de],
PUP.Optional.ReMarkIt.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{7A9CAD0B-E35C-B7B1-B047-00B1386E87D5}, Quarantined, [ebeabac3cfac9c9ac9d2f993719322de],
PUP.Optional.ReMarkIt.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{47733550-E9B2-5B3D-4505-1F2B3D30195F}, Quarantined, [ebeabac3cfac9c9ac9d2f993719322de],
PUP.Optional.ReMarkIt.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{426BC7F0-B7F3-E43A-BFAA-33FB7185FB3E}, Quarantined, [ebeabac3cfac9c9ac9d2f993719322de],
PUP.Optional.ReMarkIt.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{47733550-E9B2-5B3D-4505-1F2B3D30195F}, Quarantined, [ebeabac3cfac9c9ac9d2f993719322de],
PUP.Optional.ReMarkIt.A, HKU\S-1-5-21-2485980081-3737532992-1299750299-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{7A9CAD0B-E35C-B7B1-B047-00B1386E87D5}, Quarantined, [ebeabac3cfac9c9ac9d2f993719322de],
PUP.Optional.ReMarkIt.A, HKU\S-1-5-21-2485980081-3737532992-1299750299-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{7A9CAD0B-E35C-B7B1-B047-00B1386E87D5}, Quarantined, [ebeabac3cfac9c9ac9d2f993719322de],
PUP.Optional.MediaView.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{e8a41c28-fab2-4e09-aaf2-8a89363c5134}, Quarantined, [e1f45a235526e2546985e5a9d62e6f91],
PUP.Optional.MediaView.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{E8A41C28-FAB2-4E09-AAF2-8A89363C5134}, Quarantined, [e1f45a235526e2546985e5a9d62e6f91],
PUP.Optional.MediaView.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{4bc4d232-2474-4bea-b326-44efceabacb0}, Quarantined, [e1f45a235526e2546985e5a9d62e6f91],
PUP.Optional.MediaView.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{7AE42211-BFCD-466F-AE0C-17C012B9B453}, Quarantined, [e1f45a235526e2546985e5a9d62e6f91],
PUP.Optional.MediaView.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{7AE42211-BFCD-466F-AE0C-17C012B9B453}, Quarantined, [e1f45a235526e2546985e5a9d62e6f91],
PUP.Optional.MediaView.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{4bc4d232-2474-4bea-b326-44efceabacb0}, Quarantined, [e1f45a235526e2546985e5a9d62e6f91],
PUP.Optional.MediaView.A, HKU\S-1-5-21-2485980081-3737532992-1299750299-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{E8A41C28-FAB2-4E09-AAF2-8A89363C5134}, Quarantined, [e1f45a235526e2546985e5a9d62e6f91],
PUP.Optional.MediaView.A, HKU\S-1-5-21-2485980081-3737532992-1299750299-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{E8A41C28-FAB2-4E09-AAF2-8A89363C5134}, Quarantined, [e1f45a235526e2546985e5a9d62e6f91],

Registry Values: 8
PUP.Optional.FirstSeenToday.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|fst_en_2, Quarantined, [d9fcf7862e4db6800cb517a622e030d0],
PUP.Optional.MediaView.A, HKLM\SOFTWARE\WOW6432NODE\MOZILLA\FIREFOX\EXTENSIONS|ext@MediaViewV1alpha1566.net, C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha1566\ff, Quarantined, [f5e0433accafb383293f1baedd2535cb]
PUP.Optional.MediaView.A, HKLM\SOFTWARE\WOW6432NODE\MOZILLA\FIREFOX\EXTENSIONS|ext@MediaViewV1alpha3755.net, C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha3755\ff, Quarantined, [478e3449c6b50036b3b5d6f327db3bc5]
PUP.Optional.MediaWatch.A, HKLM\SOFTWARE\WOW6432NODE\MOZILLA\FIREFOX\EXTENSIONS|ext@MediaWatchV1home3719.net, C:\Program Files (x86)\MediaWatchV1\MediaWatchV1home3719\ff, Quarantined, [6471710cafcc84b237889e63c63e45bb]
PUP.Optional.MediaBuzz.A, HKLM\SOFTWARE\WOW6432NODE\MOZILLA\FIREFOX\EXTENSIONS|ext@MediaBuzzV1mode4717.net, C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode4717\ff, Quarantined, [fbda423bf9828caa78afd8e5f01252ae]
PUP.Optional.RichMediaView.A, HKLM\SOFTWARE\WOW6432NODE\MOZILLA\FIREFOX\EXTENSIONS|ext@RichMediaViewV1release3.net, C:\Program Files (x86)\RichMediaViewV1\RichMediaViewV1release3\ff, Quarantined, [0dc8601dcfac05311324aa0d1fe36a96]
PUP.Optional.NetworkUpdate.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\NETHTTPSERVICE|ImagePath, C:\Windows\SysWOW64\nethtsrv.exe, Quarantined, [795c215c0e6d50e6835bd135a85cad53]
PUP.Optional.NetworkUpdate.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\SERVICEUPDATER|ImagePath, C:\Windows\SysWOW64\netupdsrv.exe, Quarantined, [7d5818657506e74f21bedc2a4eb6d52b]

Registry Data: 1
PUP.Optional.Qone8, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES|DefaultScope, {33BB0A4E-99AF-4226-BDF6-49120163DE86}, Good: ({0633EE93-D776-472f-A0FF-E1416B8B2E3A}), Bad: ({33BB0A4E-99AF-4226-BDF6-49120163DE86}),Replaced,[587d9be22457f83ead51dbafa4609070]

Folders: 8
PUP.Optional.MediaBuzz.A, C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode4717, Quarantined, [2ea75f1eabd0e6507e5b019f34ce10f0],
PUP.Optional.MediaBuzz.A, C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode4717\ch, Quarantined, [2ea75f1eabd0e6507e5b019f34ce10f0],
PUP.Optional.MediaBuzz.A, C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode4717\ff, Quarantined, [2ea75f1eabd0e6507e5b019f34ce10f0],
PUP.Optional.MediaBuzz.A, C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode4717\ff\chrome, Quarantined, [2ea75f1eabd0e6507e5b019f34ce10f0],
PUP.Optional.MediaBuzz.A, C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode4717\ff\chrome\content, Quarantined, [2ea75f1eabd0e6507e5b019f34ce10f0],
PUP.Optional.MediaBuzz.A, C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode4717\ff\chrome\content\icons, Quarantined, [2ea75f1eabd0e6507e5b019f34ce10f0],
PUP.Optional.MediaBuzz.A, C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode4717\ff\chrome\content\icons\default, Quarantined, [2ea75f1eabd0e6507e5b019f34ce10f0],
PUP.Optional.MediaBuzz.A, C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode4717\ie, Quarantined, [2ea75f1eabd0e6507e5b019f34ce10f0],

Files: 17
PUP.Optional.Amonetize, C:\Windows\SysWOW64\nethtsrv.exe, Delete-on-Reboot, [32a31a63e19a0432b4833161c938966a],
PUP.Optional.Amonetize, C:\Windows\SysWOW64\netupdsrv.exe, Delete-on-Reboot, [a92c235ac4b76fc7c771830f12ef629e],
PUP.Optional.InstallCore, C:\Users\Karol\Downloads\DAEMON-Tools-Lite(12708).exe, Quarantined, [8f46e5980774e84e3357f289dc28629e],
PUP.Optional.OpenCandy, C:\Users\Karol\Downloads\DTLite4491-0356.exe, Quarantined, [a72e4b321c5fcf671a30426dd1331ee2],
PUP.Optional.BestMarkIt.A, C:\Windows\System32\Tasks\best-markit Update, Quarantined, [ede80c71d1aa54e2ec7ceac432d032ce],
PUP.Optional.BestMarkIt.A, C:\Windows\System32\Tasks\best-markit_wd, Quarantined, [a62fdf9ef4878aaca2c6d9d5f50d6f91],
PUP.Optional.BestMarkIt.A, C:\Windows\Tasks\best-markit Update.job, Quarantined, [973e65185d1e9d99a890be061ae8f30d],
PUP.Optional.BestMarkIt.A, C:\Windows\Tasks\best-markit_wd.job, Quarantined, [468fa8d5a5d62d0986b29331fc060ef2],
PUP.Optional.MediaBuzz.A, C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode4717\ch\MediaBuzzV1mode4717.crx, Quarantined, [2ea75f1eabd0e6507e5b019f34ce10f0],
PUP.Optional.MediaBuzz.A, C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode4717\ff\chrome.manifest, Quarantined, [2ea75f1eabd0e6507e5b019f34ce10f0],
PUP.Optional.MediaBuzz.A, C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode4717\ff\install.rdf, Quarantined, [2ea75f1eabd0e6507e5b019f34ce10f0],
PUP.Optional.MediaBuzz.A, C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode4717\ff\chrome\content\ffMediaBuzzV1mode4717.js, Quarantined, [2ea75f1eabd0e6507e5b019f34ce10f0],
PUP.Optional.MediaBuzz.A, C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode4717\ff\chrome\content\ffMediaBuzzV1mode4717ffaction.js, Quarantined, [2ea75f1eabd0e6507e5b019f34ce10f0],
PUP.Optional.MediaBuzz.A, C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode4717\ff\chrome\content\overlay.xul, Quarantined, [2ea75f1eabd0e6507e5b019f34ce10f0],
PUP.Optional.MediaBuzz.A, C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode4717\ff\chrome\content\icons\Thumbs.db, Quarantined, [2ea75f1eabd0e6507e5b019f34ce10f0],
PUP.Optional.MediaBuzz.A, C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode4717\ff\chrome\content\icons\default\MediaBuzzV1mode4717_32.png, Quarantined, [2ea75f1eabd0e6507e5b019f34ce10f0],
PUP.Optional.MediaBuzz.A, C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode4717\ie\MediaBuzzV1mode4717.dll, Quarantined, [2ea75f1eabd0e6507e5b019f34ce10f0],

Physical Sectors: 0
(No malicious items detected)

(end)

Acorus 20 · Answer 5 · 2014-06-29T09:52:59+02:00

Odinstaluj Media View (HKLM-x32\...\MediaViewV1alpha1566) (Version: 1.1 - Media View) <==== ATTENTION
Media View (HKLM-x32\...\MediaViewV1alpha3755) (Version: 1.1 - Media View) <==== ATTENTION
Media Watch (HKLM-x32\...\MediaWatchV1home3719) (Version: 1.1 - Media Watch) <==== ATTENTION
Pokaż cały FRST.txt jako załącznik.

Suchysdl · Answer 6 · 2014-06-29T12:59:18+02:00

#7 29 Cze 2014 12:59

Suchysdl Suchysdl

Poziom 14

#7 29 Cze 2014 12:59

Mógłbyś jaśniej? Skąd mam to odinstalować? Gdzie to się znajduje?

Załączniki:

Acorus 20 · Answer 7 · 2014-06-29T13:35:03+02:00

Przez panel sterowania-Programy i funkcje.Otwórz Notatnik i wklej:

Cytat:
Task: {059C9AE3-DA8A-4BA7-BA4C-8C408AB23940} - System32\Tasks\Math Problem Solver CPU => C:\Users\Karol\AppData\Local\Math Problem Solver\cpu\Solve.exe [2014-01-23] () <==== ATTENTION
Task: {5C1FD316-E52E-4849-8098-1F82A8BBE684} - \DealPlyLiveUpdateTaskMachineUA No Task File <==== ATTENTION
Task: {692B2094-D806-47C8-9A98-5E7635D8A6F9} - \DealPlyLiveUpdateTaskMachineCore No Task File <==== ATTENTION
Task: {7D66CE46-3E97-4DA4-8C61-AC7758F4C42C} - \GoforFilesUpdate No Task File <==== ATTENTION
Task: {85E39D7C-415D-4347-8FD8-303D28BC09FE} - \BitGuard No Task File <==== ATTENTION
Task: {9F0F3ECC-2C3C-43A7-ADAB-FCEF8FE6369E} - System32\Tasks\Math Problem Solver Optimize => C:\Users\Karol\AppData\Local\Math Problem Solver\Optimize.exe [2014-01-20] () <==== ATTENTION
Task: {A617F268-612F-412D-AA57-6A9CC0503DE6} - \AmiUpdXp No Task File <==== ATTENTION
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM-x32 - DefaultScope value is missing.
Toolbar: HKLM-x32 - No Name - {e6eeb20c-cf4a-4789-becf-64f78340708f} - No File
CHR HKLM-x32\...\Chrome\Extension: [edbfpjphkfeleolemcdenagkdodjnefn] - C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode4717\ch\MediaBuzzV1mode4717.crx [2014-06-29]
CHR HKLM-x32\...\Chrome\Extension: [gjehaijchhcmanpjfncckgompbjfhokc] - C:\Program Files (x86)\MediaWatchV1\MediaWatchV1home3719\ch\MediaWatchV1home3719.crx [2014-06-29]
CHR HKLM-x32\...\Chrome\Extension: [jlkealnllhajodlnhmfjfmnhelpbaaem] - C:\Program Files (x86)\Zapp\chrome\Zapp.crx [2014-06-29]
CHR HKLM-x32\...\Chrome\Extension: [llfobbljikmpjpkccljlkllohaahhena] - C:\Program Files (x86)\RichMediaViewV1\RichMediaViewV1release3\ch\RichMediaViewV1release3.crx [2014-06-29]
CHR HKLM-x32\...\Chrome\Extension: [pidaclhcjmbidbhmeolcmhaanokidbih] - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha1566\ch\MediaViewV1alpha1566.crx [2014-06-29]
CHR HKLM-x32\...\Chrome\Extension: [pmckpoldfhdgpnkhdjnmphapfkjfomam] - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha3755\ch\MediaViewV1alpha3755.crx [2014-06-29]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S1 nethfdrv; \??\C:\Windows\system32\drivers\nethfdrv.sys [X]
2014-06-29 00:10 - 2014-06-29 00:13 - 00000000 ____D () C:\AdwCleaner
2014-06-28 23:02 - 2014-06-28 23:02 - 00000687 _____ () C:\awh9452.tmp
2014-06-28 22:04 - 2014-06-28 22:04 - 00000687 _____ () C:\awh73D7.tmp
2014-06-28 17:09 - 2014-06-28 17:09 - 00003430 _____ () C:\Windows\System32\Tasks\Math Problem Solver Optimize
2014-06-28 17:09 - 2014-06-28 17:09 - 00003270 _____ () C:\Windows\System32\Tasks\Math Problem Solver CPU
2014-06-28 17:09 - 2014-06-28 17:09 - 00000000 ____D () C:\Users\Karol\AppData\Local\Math Problem Solver
2014-06-26 21:37 - 2014-06-26 21:37 - 00000000 ____D () C:\Program Files (x86)\Browser Tab Search by Ask

Plik zapisz pod nazwą fixlist.txt i umieść obok FRST w tym samym folderze.
Uruchom FRST i kliknij w Fix.

Suchysdl · Answer 8 · 2014-06-29T14:26:19+02:00

Nie wiem,dobrze to zrobiłem? ,dobry komunikat wyskoczył ? nie wiem czy to akurat po tym ,ale lapek zaczął mi się zawieszać...

Acorus 20 · Answer 9 · 2014-06-29T14:54:38+02:00

#10 29 Cze 2014 14:54

Acorus 20 Acorus 20

Spec od komputerów

#10 29 Cze 2014 14:54

Dałeś restart?Pokaż fixlog.txt

Suchysdl · Answer 10 · 2014-06-29T15:08:23+02:00

#11 29 Cze 2014 15:08

Suchysdl Suchysdl

Poziom 14

#11 29 Cze 2014 15:08

Tak dałem restart

Załączniki:

Fixlog.txt Download (8.76 KB)

Acorus 20 · Answer 11 · 2014-06-29T15:28:54+02:00

Skasuj folder C:\FRST
Użyj http://www.bleepingcomputer.com/download/tfc/ (uruchom TFC i kliknij Start).

Suchysdl · Answer 12 · 2014-06-29T15:45:55+02:00

#13 29 Cze 2014 15:45

Suchysdl Suchysdl

Poziom 14

#13 29 Cze 2014 15:45

Zrobione. Masz log w załączniku nie wiem czy potrzebny.

Załączniki:

TFCLOG_txt.txt Download (1.26 KB)

Suchysdl · Answer 13 · 2018-03-11T13:38:41+01:00

#14 11 Mar 2018 13:38

Suchysdl Suchysdl

Poziom 14

#14 11 Mar 2018 13:38

Zamykam. Problem naprawiony