Win32 problém-rychle prosím

[ondrej.nosek]

Jo a ty dva viry jsou podle avastu ve virové truhle .

[ondrej.nosek]

Výsledek:
aswMBR version 0.9.9.1665 Copyright(c) 2011 AVAST Software
Run date: 2012-03-28 19:26:23
-----------------------------
19:26:23.714 OS Version: Windows x64 6.1.7601 Service Pack 1
19:26:23.715 Number of processors: 4 586 0x2502
19:26:23.715 ComputerName: NOMY-TOSH UserName: Nomy
19:26:25.082 Initialize success
19:26:25.682 AVAST engine defs: 12032801
19:26:28.806 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
19:26:28.808 Disk 0 Vendor: Hitachi_ PB4O Size: 476940MB BusType: 3
19:26:28.826 Disk 0 MBR read successfully
19:26:28.829 Disk 0 MBR scan
19:26:28.833 Disk 0 Windows 7 default MBR code
19:26:28.847 Disk 0 Partition 1 80 (A) 27 Hidden NTFS WinRE NTFS 1500 MB offset 2048
19:26:28.862 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 466771 MB offset 3074048
19:26:28.888 Disk 0 Partition 3 00 17 Hidd HPFS/NTFS NTFS 8668 MB offset 959021056
19:26:28.929 Disk 0 scanning C:\windows\system32\drivers
19:26:38.429 Service scanning
19:27:01.954 Modules scanning
19:27:01.969 Disk 0 trace - called modules:
19:27:02.005 ntoskrnl.exe CLASSPNP.SYS disk.sys thpdrv.sys iaStor.sys hal.dll
19:27:02.343 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa800529b060]
19:27:02.353 3 CLASSPNP.SYS[fffff8800185a43f] -> nt!IofCallDriver -> \Device\THPDRV1[0xfffffa800529a060]
19:27:02.363 5 thpdrv.sys[fffff88001b9ccc0] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8004fb6050]
19:27:03.472 AVAST engine scan C:\windows
19:27:06.352 AVAST engine scan C:\windows\system32
19:28:59.807 AVAST engine scan C:\windows\system32\drivers
19:29:08.949 AVAST engine scan C:\Users\Nomy
19:29:54.111 AVAST engine scan C:\ProgramData
19:30:11.708 Scan finished successfully
19:30:19.929 Disk 0 MBR has been saved successfully to "C:\Users\Nomy\Desktop\MBR.dat"
19:30:19.929 The log file has been saved successfully to "C:\Users\Nomy\Desktop\aswMBR.txt"

[Žbeky]

Ve virové truhle... hmm.. a z kama je tam avast dal?

[ondrej.nosek]

promin, kama?

[Žbeky]

No. Odkud, z kama, where from, de dónde :)

[ondrej.nosek]

Při testu po restartu : C:/Users/Nomy/Appdata/Local/Temp/GUT871.tmp
Ten druhý je na tom stejně.

[jaro3]

Stáhni si program OTM (by OldTimer)
a ulož si ho na disk C a spusť ho.
- Do levého sloupce (Paste Instructions for Items to be Moved) zkopíruj tyto cesty:
Poznámka: Nepoužij k označení funkci VYBRAT VŠE

Kód: Vybrat vše

:Processes
explorer.exe

:Services

:Reg

:Files
C:\WINDOWS\System32\*.tmp 
C:\WINDOWS\*.tmp 
C:\WINDOWS\system32\*.tmp.dll 
C:\WINDOWS\System32\dllcache\*.tmp
C:\WINDOWS\system32\SET*.tmp 
c:\windows\Tasks\*.job 
C:\*.tmp
C:\WINDOWS\System32\drivers\*.tmp
C:\Documents and Settings\All Users\Data aplikací\*.tmp
C:\Windows\SysNative\drivers\*.tmp
C:\Windows\SysWow64\drivers\*.tmp
C:\Program Files (x86)\*.tmp
C:\Windows\SysWow64\*.tmp
C:\Windows\SysNative\*.tmp
C:/Users/Nomy/Appdata/Local/Temp/*.tmp

:Commands
[purity]
[emptytemp]
[start explorer]
[Reboot]

- Po zkopírování klikni na tlačítko MoveIt! a vlož sem následně celý obsah z pravého sloupce, jinak uložený ve složce C:\_OTMoveIt\MovedFiles\, který bude informovat o výsledcích
- Je možné, že pokud nebudou moci být soubory odstraněny, budeš dotázán na restart počítače, v tom případě restart potvrď.

[ondrej.nosek]

All processes killed
========== PROCESSES ==========
No active process named explorer.exe was found!
No active process named :Services was found!
No active process named :Reg was found!
No active process named :Files was found!
No active process named C:\WINDOWS\System32\*.tmp was found!
No active process named C:\WINDOWS\*.tmp was found!
No active process named C:\WINDOWS\system32\*.tmp.dll was found!
No active process named C:\WINDOWS\System32\dllcache\*.tmp was found!
No active process named C:\WINDOWS\system32\SET*.tmp was found!
No active process named c:\windows\Tasks\*.job was found!
No active process named C:\*.tmp was found!
No active process named C:\WINDOWS\System32\drivers\*.tmp was found!
No active process named C:\Documents and Settings\All Users\Data aplikací\*.tmp was found!
No active process named C:\Windows\SysNative\drivers\*.tmp was found!
No active process named C:\Windows\SysWow64\drivers\*.tmp was found!
No active process named C:\Program Files (x86)\*.tmp was found!
No active process named C:\Windows\SysWow64\*.tmp was found!
No active process named C:\Windows\SysNative\*.tmp was found!
No active process named C:/Users/Nomy/Appdata/Local/Temp/*.tmp was found!
No active process named :Commands was found!
No active process named [purity] was found!
No active process named [emptytemp] was found!
No active process named [start explorer] was found!
No active process named [Reboot] was found!

OTM by OldTimer - Version 3.1.19.0 log created on 03282012_201858

[ondrej.nosek]

Mám z toho hromadu věcí na C: a podobně :/

[jaro3]

Mám z toho hromadu věcí na C: a podobně :/

Jak tomu mám rozumět? Piš pořádně.

To umístění , cos psal , tam žádná nákaza už nebyla..

Spusť OTM a klikni na Clean Up!

Jak to vypadá?

[ondrej.nosek]

Tu hromadu jsem myslel u té první funkce.Že na ploše a v ostatních složkách byli soubory typu (.ini),a pár složek.
Ale po Clean up je to pryč,ale nejde spustit Windows Defender

[jaro3]

Restartuj několikrát PC...

Jsou nějaké problémy? Kromě Windows Defenderu?