Hi jackthis mi nejde spustit

[Moribundus]

No tohle je asi uplně k ničemu..ale tohle jse si vyjel , ten hijack pořád nejde...nemůže to být třeba prohlížečem, nebo já fakt netuším...



Ad-Aware SE Build 1.06r1
Logfile Created on:7. července 2006 17:20:52
Created with Ad-Aware SE Personal, free for private use.
Using definitions file:SE1R113 28.06.2006
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

References detected during the scan:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
ABetterInternet.Nail(TAC index:5):1 total references
MRU List(TAC index:0):5 total references
Possible Browser Hijack attempt(TAC index:3):1 total references
Tracking Cookie(TAC index:3):1 total references
Win32.Trojan.Downloader(TAC index:10):1 total references
Windows(TAC index:3):1 total references
Virtumonde(TAC index:10):2 total references
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

Ad-Aware SE Settings
===========================
Set : Search for negligible risk entries
Set : Safe mode (always request confirmation)
Set : Scan active processes
Set : Scan registry
Set : Deep-scan registry
Set : Scan my IE Favorites for banned URLs
Set : Scan my Hosts file

Extended Ad-Aware SE Settings
===========================
Set : Unload recognized processes & modules during scan
Set : Scan registry for all users instead of current user only
Set : Always try to unload modules before deletion
Set : During removal, unload Explorer and IE if necessary
Set : Let Windows remove files in use at next reboot
Set : Delete quarantined objects after restoring
Set : Include basic Ad-Aware settings in log file
Set : Include additional Ad-Aware settings in log file
Set : Include reference summary in log file
Set : Include alternate data stream details in log file
Set : Play sound at scan completion if scan locates critical objects


7.7.2006 17:20:52 - Scan started. (Smart mode)

Listing running processes
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

#:1 [smss.exe]
FilePath : \SystemRoot\System32\
ProcessID : 712
ThreadCreationTime : 7.7.2006 14:28:05
BasePriority : Normal


#:2 [csrss.exe]
FilePath : \??\C:\WINDOWS\system32\
ProcessID : 760
ThreadCreationTime : 7.7.2006 14:28:10
BasePriority : Normal


#:3 [winlogon.exe]
FilePath : \??\C:\WINDOWS\system32\
ProcessID : 784
ThreadCreationTime : 7.7.2006 14:28:12
BasePriority : High


#:4 [services.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 836
ThreadCreationTime : 7.7.2006 14:28:12
BasePriority : Normal
FileVersion : 5.1.2600.0 (xpclient.010817-1148)
ProductVersion : 5.1.2600.0
ProductName : Operační systém Microsoft® Windows®
CompanyName : Microsoft Corporation
FileDescription : Services and Controller app
InternalName : services.exe
LegalCopyright : © Microsoft Corporation. Všechna práva vyhrazena.
OriginalFilename : services.exe

#:5 [lsass.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 848
ThreadCreationTime : 7.7.2006 14:28:12
BasePriority : Normal
FileVersion : 5.1.2600.1106 (xpsp1.020828-1920)
ProductVersion : 5.1.2600.1106
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : LSA Shell (Export Version)
InternalName : lsass.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : lsass.exe

#:6 [ati2evxx.exe]
FilePath : C:\WINDOWS\System32\
ProcessID : 1008
ThreadCreationTime : 7.7.2006 14:28:12
BasePriority : Normal
FileVersion : 6.14.10.4117
ProductVersion : 6.14.10.4117
ProductName : ATI External Event Utility for WindowsNT and Windows9X
CompanyName : ATI Technologies Inc.
FileDescription : ATI External Event Utility EXE Module
InternalName : ATI2EVXX.EXE
LegalCopyright : Copyright © 1999-2004 ATI Technologies Inc.
OriginalFilename : ATI2EVXX.EXE

#:7 [svchost.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 1064
ThreadCreationTime : 7.7.2006 14:28:13
BasePriority : Normal
FileVersion : 5.1.2600.0 (xpclient.010817-1148)
ProductVersion : 5.1.2600.0
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe

#:8 [svchost.exe]
FilePath : C:\WINDOWS\System32\
ProcessID : 1096
ThreadCreationTime : 7.7.2006 14:28:13
BasePriority : Normal
FileVersion : 5.1.2600.0 (xpclient.010817-1148)
ProductVersion : 5.1.2600.0
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe

#:9 [svchost.exe]
FilePath : C:\WINDOWS\System32\
ProcessID : 1312
ThreadCreationTime : 7.7.2006 14:28:13
BasePriority : Normal
FileVersion : 5.1.2600.0 (xpclient.010817-1148)
ProductVersion : 5.1.2600.0
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe

#:10 [svchost.exe]
FilePath : C:\WINDOWS\System32\
ProcessID : 1344
ThreadCreationTime : 7.7.2006 14:28:14
BasePriority : Normal
FileVersion : 5.1.2600.0 (xpclient.010817-1148)
ProductVersion : 5.1.2600.0
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe

#:11 [spoolsv.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 1484
ThreadCreationTime : 7.7.2006 14:28:14
BasePriority : Normal
FileVersion : 5.1.2600.0 (XPClient.010817-1148)
ProductVersion : 5.1.2600.0
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Spooler SubSystem App
InternalName : spoolsv.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : spoolsv.exe

#:12 [aswupdsv.exe]
FilePath : C:\Program Files\Alwil Software\Avast4\
ProcessID : 1616
ThreadCreationTime : 7.7.2006 14:28:15
BasePriority : Normal


#:13 [ashserv.exe]
FilePath : C:\Program Files\Alwil Software\Avast4\
ProcessID : 1660
ThreadCreationTime : 7.7.2006 14:28:15
BasePriority : Normal
FileVersion : 4, 7, 844, 0
ProductVersion : 4, 7, 0, 0
ProductName : avast! Antivirus
FileDescription : avast! antivirus service
InternalName : aswServ
LegalCopyright : Copyright (c) 2006 ALWIL Software
OriginalFilename : aswServ.exe

#:14 [kpf4ss.exe]
FilePath : C:\Program Files\Kerio\Personal Firewall 4\
ProcessID : 1760
ThreadCreationTime : 7.7.2006 14:28:16
BasePriority : Normal
FileVersion : 4.1.3
ProductVersion : 4.1.3
ProductName : Kerio Personal Firewall 4
CompanyName : Kerio Technologies
FileDescription : Kerio Personal Firewall 4 - Service
InternalName : kpf4ss
LegalCopyright : Copyright (C) 1997-2004 Kerio Technologies
OriginalFilename : kpf4ss.EXE
Comments : Kerio Personal Firewall 4 - Service

#:15 [ati2evxx.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 1864
ThreadCreationTime : 7.7.2006 14:28:17
BasePriority : Normal
FileVersion : 6.14.10.4117
ProductVersion : 6.14.10.4117
ProductName : ATI External Event Utility for WindowsNT and Windows9X
CompanyName : ATI Technologies Inc.
FileDescription : ATI External Event Utility EXE Module
InternalName : ATI2EVXX.EXE
LegalCopyright : Copyright © 1999-2004 ATI Technologies Inc.
OriginalFilename : ATI2EVXX.EXE

#:16 [explorer.exe]
FilePath : C:\WINDOWS\
ProcessID : 2012
ThreadCreationTime : 7.7.2006 14:28:18
BasePriority : Normal
FileVersion : 6.00.2800.1106 (xpsp1.020828-1920)
ProductVersion : 6.00.2800.1106
ProductName : Microsoft(R) Windows (R) 2000 Operating System
CompanyName : Microsoft Corporation
FileDescription : Průzkumník Windows
InternalName : explorer
LegalCopyright : © Microsoft Corporation. Všechna práva vyhrazena.
OriginalFilename : EXPLORER.EXE

#:17 [ashmaisv.exe]
FilePath : C:\Program Files\Alwil Software\Avast4\
ProcessID : 1284
ThreadCreationTime : 7.7.2006 14:28:24
BasePriority : Normal


#:18 [ashwebsv.exe]
FilePath : C:\Program Files\Alwil Software\Avast4\
ProcessID : 1848
ThreadCreationTime : 7.7.2006 14:28:25
BasePriority : Normal


#:19 [wmiprvse.exe]
FilePath : C:\WINDOWS\System32\wbem\
ProcessID : 2136
ThreadCreationTime : 7.7.2006 14:28:26
BasePriority : Normal
FileVersion : 5.1.2600.1106 (xpsp1.020828-1920)
ProductVersion : 5.1.2600.1106
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : WMI
InternalName : Wmiprvse.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : Wmiprvse.exe

#:20 [kpf4gui.exe]
FilePath : C:\Program Files\Kerio\Personal Firewall 4\
ProcessID : 2300
ThreadCreationTime : 7.7.2006 14:28:27
BasePriority : Normal
FileVersion : 4.1.3
ProductVersion : 4.1.3
ProductName : Kerio Personal Firewall 4
CompanyName : Kerio Technologies
FileDescription : Kerio Personal Firewall 4 - GUI
InternalName : kpf4gui
LegalCopyright : Copyright (C) 1997-2004 Kerio Technologies
OriginalFilename : kpf4gui.EXE
Comments : Kerio Personal Firewall 4 - GUI

#:21 [cli.exe]
FilePath : C:\Program Files\ATI Technologies\ATI.ACE\
ProcessID : 2368
ThreadCreationTime : 7.7.2006 14:28:28
BasePriority : Normal


#:22 [soundman.exe]
FilePath : C:\WINDOWS\
ProcessID : 2376
ThreadCreationTime : 7.7.2006 14:28:28
BasePriority : Normal
FileVersion : 5.1.0.34
ProductVersion : 5.1.0.34
ProductName : Realtek Sound Manager
CompanyName : Realtek Semiconductor Corp.
FileDescription : Realtek Sound Manager
InternalName : ALSMTray
LegalCopyright : Copyright (c) 2001-2004 Realtek Semiconductor Corp.
OriginalFilename : ALSMTray.exe
Comments : Realtek AC97 Audio Sound Manager

#:23 [nvraidservice.exe]
FilePath : C:\WINDOWS\System32\
ProcessID : 2384
ThreadCreationTime : 7.7.2006 14:28:28
BasePriority : Normal
FileVersion : 1.0.1
ProductVersion : 1.0.1
ProductName : NVIDIA® NVRAID
CompanyName : NVIDIA Corporation
FileDescription : Raid Service U.S. English Resources
InternalName : NvRaidServiceENU.dll
LegalCopyright : Copyright© NVIDIA Corporation 2000-2003.
LegalTrademarks : NVIDIA® is a registered trademark of NVIDIA Corporation.
OriginalFilename : NvRaidServiceENU.dll

#:24 [thiselt.exe]
FilePath : C:\WINDOWS\
ProcessID : 2428
ThreadCreationTime : 7.7.2006 14:28:29
BasePriority : Normal
FileVersion : 1.00
ProductVersion : 1.00
ProductName : Project1
InternalName : thiselt
OriginalFilename : thiselt.exe

#:25 [icqlite.exe]
FilePath : C:\Program Files\ICQLite\
ProcessID : 2448
ThreadCreationTime : 7.7.2006 14:28:29
BasePriority : Normal
FileVersion : 20, 52, 2573, 0
ProductVersion : 20, 52, 2573, 0
ProductName : ICQLite
CompanyName : ICQ Ltd.
FileDescription : ICQLite
InternalName : ICQ Lite
LegalCopyright : Copyright (C) 2002
OriginalFilename : ICQLite.exe

#:26 [daemon.exe]
FilePath : C:\Program Files\D-Tools\
ProcessID : 2524
ThreadCreationTime : 7.7.2006 14:28:29
BasePriority : Normal


#:27 [ashdisp.exe]
FilePath : C:\PROGRA~1\ALWILS~1\Avast4\
ProcessID : 2560
ThreadCreationTime : 7.7.2006 14:28:29
BasePriority : Normal
FileVersion : 5, 0, 0, 0
ProductVersion : 5, 0, 0, 0
ProductName : avast! Antivirus
FileDescription : avast! service GUI component
InternalName : aswDisp
LegalCopyright : Copyright (c) 2006 ALWIL Software
OriginalFilename : aswDisp.exe

#:28 [ctfmon.exe]
FilePath : C:\WINDOWS\System32\
ProcessID : 2588
ThreadCreationTime : 7.7.2006 14:28:29
BasePriority : Normal
FileVersion : 5.1.2600.1106 (xpsp1.020828-1920)
ProductVersion : 5.1.2600.1106
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : CTF Loader
InternalName : CTFMON
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : CTFMON.EXE

#:29 [mscfg.exe]
FilePath : C:\WINDOWS\System32\
ProcessID : 2612
ThreadCreationTime : 7.7.2006 14:28:29
BasePriority : Normal


#:30 [w?aclt.exe]
FilePath : C:\Documents and Settings\Lukas\Dokumenty\??mbols\
ProcessID : 2664
ThreadCreationTime : 7.7.2006 14:28:29
BasePriority : Normal


#:31 [unsecapp.exe]
FilePath : C:\WINDOWS\System32\wbem\
ProcessID : 2864
ThreadCreationTime : 7.7.2006 14:28:33
BasePriority : Normal
FileVersion : 5.1.2600.0 (xpclient.010817-1148)
ProductVersion : 5.1.2600.0
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : WMI
InternalName : unsecapp.dll
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : unsecapp.dll

#:32 [dslmon.exe]
FilePath : C:\Program Files\SAGEM\SAGEM F@st 800-840\
ProcessID : 3028
ThreadCreationTime : 7.7.2006 14:28:34
BasePriority : Normal
FileVersion : 1, 0, 0, 1
ProductVersion : 1, 0, 0, 1
ProductName : DSLMON Application
FileDescription : ADIMON MFC Application
InternalName : DSLMON
LegalCopyright : Copyright (C) 2000
OriginalFilename : ADIMON.EXE

#:33 [cli.exe]
FilePath : C:\Program Files\ATI Technologies\ATI.ACE\
ProcessID : 3068
ThreadCreationTime : 7.7.2006 14:28:34
BasePriority : Normal


#:34 [kpf4gui.exe]
FilePath : C:\Program Files\Kerio\Personal Firewall 4\
ProcessID : 3220
ThreadCreationTime : 7.7.2006 14:28:37
BasePriority : Normal
FileVersion : 4.1.3
ProductVersion : 4.1.3
ProductName : Kerio Personal Firewall 4
CompanyName : Kerio Technologies
FileDescription : Kerio Personal Firewall 4 - GUI
InternalName : kpf4gui
LegalCopyright : Copyright (C) 1997-2004 Kerio Technologies
OriginalFilename : kpf4gui.EXE
Comments : Kerio Personal Firewall 4 - GUI

#:35 [cli.exe]
FilePath : C:\Program Files\ATI Technologies\ATI.ACE\
ProcessID : 3672
ThreadCreationTime : 7.7.2006 14:28:43
BasePriority : Normal


#:36 [twink.exe]
FilePath : c:\windows\
ProcessID : 2900
ThreadCreationTime : 7.7.2006 14:30:03
BasePriority : Normal


#:37 [twink.exe]
FilePath : c:\windows\
ProcessID : 2280
ThreadCreationTime : 7.7.2006 15:18:17
BasePriority : Normal


#:38 [iexplore.exe]
FilePath : C:\Program Files\Internet Explorer\
ProcessID : 1328
ThreadCreationTime : 7.7.2006 15:18:25
BasePriority : Normal
FileVersion : 6.00.2800.1106 (xpsp1.020828-1920)
ProductVersion : 6.00.2800.1106
ProductName : Microsoft(R) Windows (R) 2000 Operating System
CompanyName : Microsoft Corporation
FileDescription : Internet Explorer
InternalName : iexplore
LegalCopyright : © Microsoft Corporation. Všechna práva vyhrazena.
OriginalFilename : IEXPLORE.EXE

#:39 [lrep.exe]
FilePath : C:\Program Files\pseu\
ProcessID : 948
ThreadCreationTime : 7.7.2006 15:18:32
BasePriority : Normal


Win32.Trojan.Downloader Object Recognized!
Type : Process
Data : lrep.exe
TAC Rating : 10
Category : Malware
Comment : scms.exe.dmp
Object : C:\Program Files\pseu\


Warning! Win32.Trojan.Downloader Object found in memory(C:\Program Files\pseu\lrep.exe)

"C:\Program Files\pseu\lrep.exe"Process terminated successfully
"C:\Program Files\pseu\lrep.exe"Process terminated successfully

#:40 [ad-aware.exe]
FilePath : C:\Program Files\Lavasoft\Ad-Aware SE Personal\
ProcessID : 4512
ThreadCreationTime : 7.7.2006 15:20:05
BasePriority : Normal
FileVersion : 6.2.0.236
ProductVersion : SE 106
ProductName : Lavasoft Ad-Aware SE
CompanyName : Lavasoft Sweden
FileDescription : Ad-Aware SE Core application
InternalName : Ad-Aware.exe
LegalCopyright : Copyright © Lavasoft AB Sweden
OriginalFilename : Ad-Aware.exe
Comments : All Rights Reserved

Memory scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 1
Objects found so far: 1


Started registry scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

Virtumonde Object Recognized!
Type : Regkey
Data :
TAC Rating : 10
Category : Data Miner
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : clsid\{6d794cb4-c7cd-4c6f-bfdc-9b77afbdc02c}

ABetterInternet.Nail Object Recognized!
Type : RegData
Data : explorer.exe, c:\windows\system32\rxcsq.exe
TAC Rating : 5
Category : Malware
Comment :
Rootkey : HKEY_LOCAL_MACHINE
Object : software\microsoft\windows nt\currentversion\winlogon
Value : Shell
Data : explorer.exe, c:\windows\system32\rxcsq.exe

Windows Object Recognized!
Type : RegData
Data : explorer.exe, c:\windows\system32\rxcsq.exe
TAC Rating : 3
Category : Vulnerability
Comment :
Rootkey : HKEY_LOCAL_MACHINE
Object : software\microsoft\windows nt\currentversion\winlogon
Value : Shell
Data : explorer.exe, c:\windows\system32\rxcsq.exe

Registry Scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 3
Objects found so far: 4


Started deep registry scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Trusted zone presumably compromised : media-motor.net

Possible Browser Hijack attempt Object Recognized!
Type : Regkey
Data :
TAC Rating : 3
Category : Vulnerability
Comment : Trusted zone presumably compromised : media-motor.net
Rootkey : HKEY_CURRENT_USER
Object : Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\media-motor.net

Deep registry scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 1
Objects found so far: 5

Virtumonde Object Recognized!
Type : Regkey
Data :
TAC Rating : 10
Category : Data Miner
Comment :
Rootkey : HKEY_LOCAL_MACHINE
Object : SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6d794cb4-c7cd-4c6f-bfdc-9b77afbdc02c}


Started Tracking Cookie scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»


Tracking Cookie Object Recognized!
Type : IECache Entry
Data : lukas@rambler[2].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:3
Value : Cookie:lukas@rambler.ru/
Expires : 1.1.2008 2:00:00
LastSync : Hits:3
UseCount : 0
Hits : 3

Tracking cookie scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 1
Objects found so far: 7



Deep scanning and examining files...
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

Disk Scan Result for C:\WINDOWS
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 7

Disk Scan Result for C:\WINDOWS\System32
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 7

Disk Scan Result for C:\DOCUME~1\Lukas\LOCALS~1\Temp\
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 7


Scanning Hosts file......
Hosts file location:"C:\WINDOWS\system32\drivers\etc\hosts".
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

Hosts file scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
1 entries scanned.
New critical objects:0
Objects found so far: 7



MRU List Object Recognized!
Location: : C:\Documents and Settings\Lukas\recent
Description : list of recently opened documents


MRU List Object Recognized!
Location: : software\microsoft\directdraw\mostrecentapplication
Description : most recent application to use microsoft directdraw


MRU List Object Recognized!
Location: : S-1-5-21-57989841-1454471165-839522115-1003\software\microsoft\windows\currentversion\explorer\comdlg32\lastvisitedmru
Description : list of recent programs opened


MRU List Object Recognized!
Location: : S-1-5-21-57989841-1454471165-839522115-1003\software\microsoft\windows\currentversion\explorer\comdlg32\opensavemru
Description : list of recently saved files, stored according to file extension


MRU List Object Recognized!
Location: : S-1-5-21-57989841-1454471165-839522115-1003\software\microsoft\windows\currentversion\explorer\recentdocs
Description : list of recent documents opened



Performing conditional scans...
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

Conditional scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 12

17:21:45 Scan Complete

Summary Of This Scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Total scanning time:00:00:52.656
Objects scanned:77444
Objects identified:7
Objects ignored:0
New critical objects:7

[Reklama]

[Moribundus]

Tak nevím...už mi přijde, že si ten počítač dělá co chce a nevím, jestli se zachvilku budu online...hraje to semnou šílenou hru...fakt nevím...

[mijaja]

No je tam toho hodně. Už jsi zkoušel ten SmitfraudFix v nouzáku?

Zkus v Taskmanageru (CTRL+ALT+DEL - záložka Procesy - tlačítko Ukončit proces) zastavit tyto červeně označené procesy:

C:\WINDOWS\ thiselt.exe - to je šmejd
C:\WINDOWS\System32\ mscfg.exe - takyšmejd
C:\Documents and Settings\Lukas\Dokumenty\??mbols\w?aclt.exe - taky šmejd
c:\windows\twink.exe
C:\Program Files\pseu\lrep.exe - Win32.Trojan.Downloader
c:\windows\system32\rxcsq.exe - malware

a potom je smazat z disku.

[Moribundus]

SmitfraudFix v nouzáku, tomuhle nerozumím,....ale ten takmanager mi asi zakazuje kerio, ale nevím jak se tam dostat jen mi totiž problikne....křičí to tady na mě...ze všech stran viry, avast...atd...

[mijaja]

Tak zkus Kerio na chvíli vypnout. Třeba ti zakazuje i ten HijackThis.

V tray klikni pravým na ikonku Keria a dej vypnout. SmitfraudFix si stáhni na plochu. Restartuj a hned po stratu zběsile mačkej F8, až ti naběhne volba spuštění. Potom dej Spustit v nouzovém režimu.