No tohle je asi uplně k ničemu..ale tohle jse si vyjel , ten hijack pořád nejde...nemůže to být třeba prohlížečem, nebo já fakt netuším...
Ad-Aware SE Build 1.06r1
Logfile Created on:7. července 2006 17:20:52
Created with Ad-Aware SE Personal, free for private use.
Using definitions file:SE1R113 28.06.2006
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
References detected during the scan:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
ABetterInternet.Nail(TAC index:5):1 total references
MRU List(TAC index:0):5 total references
Possible Browser Hijack attempt(TAC index:3):1 total references
Tracking Cookie(TAC index:3):1 total references
Win32.Trojan.Downloader(TAC index:10):1 total references
Windows(TAC index:3):1 total references
Virtumonde(TAC index:10):2 total references
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Ad-Aware SE Settings
===========================
Set : Search for negligible risk entries
Set : Safe mode (always request confirmation)
Set : Scan active processes
Set : Scan registry
Set : Deep-scan registry
Set : Scan my IE Favorites for banned URLs
Set : Scan my Hosts file
Extended Ad-Aware SE Settings
===========================
Set : Unload recognized processes & modules during scan
Set : Scan registry for all users instead of current user only
Set : Always try to unload modules before deletion
Set : During removal, unload Explorer and IE if necessary
Set : Let Windows remove files in use at next reboot
Set : Delete quarantined objects after restoring
Set : Include basic Ad-Aware settings in log file
Set : Include additional Ad-Aware settings in log file
Set : Include reference summary in log file
Set : Include alternate data stream details in log file
Set : Play sound at scan completion if scan locates critical objects
7.7.2006 17:20:52 - Scan started. (Smart mode)
Listing running processes
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
#:1 [smss.exe]
FilePath : \SystemRoot\System32\
ProcessID : 712
ThreadCreationTime : 7.7.2006 14:28:05
BasePriority : Normal
#:2 [csrss.exe]
FilePath : \??\C:\WINDOWS\system32\
ProcessID : 760
ThreadCreationTime : 7.7.2006 14:28:10
BasePriority : Normal
#:3 [winlogon.exe]
FilePath : \??\C:\WINDOWS\system32\
ProcessID : 784
ThreadCreationTime : 7.7.2006 14:28:12
BasePriority : High
#:4 [services.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 836
ThreadCreationTime : 7.7.2006 14:28:12
BasePriority : Normal
FileVersion : 5.1.2600.0 (xpclient.010817-1148)
ProductVersion : 5.1.2600.0
ProductName : Operační systém Microsoft® Windows®
CompanyName : Microsoft Corporation
FileDescription : Services and Controller app
InternalName : services.exe
LegalCopyright : © Microsoft Corporation. Všechna práva vyhrazena.
OriginalFilename : services.exe
#:5 [lsass.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 848
ThreadCreationTime : 7.7.2006 14:28:12
BasePriority : Normal
FileVersion : 5.1.2600.1106 (xpsp1.020828-1920)
ProductVersion : 5.1.2600.1106
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : LSA Shell (Export Version)
InternalName : lsass.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : lsass.exe
#:6 [ati2evxx.exe]
FilePath : C:\WINDOWS\System32\
ProcessID : 1008
ThreadCreationTime : 7.7.2006 14:28:12
BasePriority : Normal
FileVersion : 6.14.10.4117
ProductVersion : 6.14.10.4117
ProductName : ATI External Event Utility for WindowsNT and Windows9X
CompanyName : ATI Technologies Inc.
FileDescription : ATI External Event Utility EXE Module
InternalName : ATI2EVXX.EXE
LegalCopyright : Copyright © 1999-2004 ATI Technologies Inc.
OriginalFilename : ATI2EVXX.EXE
#:7 [svchost.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 1064
ThreadCreationTime : 7.7.2006 14:28:13
BasePriority : Normal
FileVersion : 5.1.2600.0 (xpclient.010817-1148)
ProductVersion : 5.1.2600.0
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe
#:8 [svchost.exe]
FilePath : C:\WINDOWS\System32\
ProcessID : 1096
ThreadCreationTime : 7.7.2006 14:28:13
BasePriority : Normal
FileVersion : 5.1.2600.0 (xpclient.010817-1148)
ProductVersion : 5.1.2600.0
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe
#:9 [svchost.exe]
FilePath : C:\WINDOWS\System32\
ProcessID : 1312
ThreadCreationTime : 7.7.2006 14:28:13
BasePriority : Normal
FileVersion : 5.1.2600.0 (xpclient.010817-1148)
ProductVersion : 5.1.2600.0
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe
#:10 [svchost.exe]
FilePath : C:\WINDOWS\System32\
ProcessID : 1344
ThreadCreationTime : 7.7.2006 14:28:14
BasePriority : Normal
FileVersion : 5.1.2600.0 (xpclient.010817-1148)
ProductVersion : 5.1.2600.0
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe
#:11 [spoolsv.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 1484
ThreadCreationTime : 7.7.2006 14:28:14
BasePriority : Normal
FileVersion : 5.1.2600.0 (XPClient.010817-1148)
ProductVersion : 5.1.2600.0
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Spooler SubSystem App
InternalName : spoolsv.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : spoolsv.exe
#:12 [aswupdsv.exe]
FilePath : C:\Program Files\Alwil Software\Avast4\
ProcessID : 1616
ThreadCreationTime : 7.7.2006 14:28:15
BasePriority : Normal
#:13 [ashserv.exe]
FilePath : C:\Program Files\Alwil Software\Avast4\
ProcessID : 1660
ThreadCreationTime : 7.7.2006 14:28:15
BasePriority : Normal
FileVersion : 4, 7, 844, 0
ProductVersion : 4, 7, 0, 0
ProductName : avast! Antivirus
FileDescription : avast! antivirus service
InternalName : aswServ
LegalCopyright : Copyright (c) 2006 ALWIL Software
OriginalFilename : aswServ.exe
#:14 [kpf4ss.exe]
FilePath : C:\Program Files\Kerio\Personal Firewall 4\
ProcessID : 1760
ThreadCreationTime : 7.7.2006 14:28:16
BasePriority : Normal
FileVersion : 4.1.3
ProductVersion : 4.1.3
ProductName : Kerio Personal Firewall 4
CompanyName : Kerio Technologies
FileDescription : Kerio Personal Firewall 4 - Service
InternalName : kpf4ss
LegalCopyright : Copyright (C) 1997-2004 Kerio Technologies
OriginalFilename : kpf4ss.EXE
Comments : Kerio Personal Firewall 4 - Service
#:15 [ati2evxx.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 1864
ThreadCreationTime : 7.7.2006 14:28:17
BasePriority : Normal
FileVersion : 6.14.10.4117
ProductVersion : 6.14.10.4117
ProductName : ATI External Event Utility for WindowsNT and Windows9X
CompanyName : ATI Technologies Inc.
FileDescription : ATI External Event Utility EXE Module
InternalName : ATI2EVXX.EXE
LegalCopyright : Copyright © 1999-2004 ATI Technologies Inc.
OriginalFilename : ATI2EVXX.EXE
#:16 [explorer.exe]
FilePath : C:\WINDOWS\
ProcessID : 2012
ThreadCreationTime : 7.7.2006 14:28:18
BasePriority : Normal
FileVersion : 6.00.2800.1106 (xpsp1.020828-1920)
ProductVersion : 6.00.2800.1106
ProductName : Microsoft(R) Windows (R) 2000 Operating System
CompanyName : Microsoft Corporation
FileDescription : Průzkumník Windows
InternalName : explorer
LegalCopyright : © Microsoft Corporation. Všechna práva vyhrazena.
OriginalFilename : EXPLORER.EXE
#:17 [ashmaisv.exe]
FilePath : C:\Program Files\Alwil Software\Avast4\
ProcessID : 1284
ThreadCreationTime : 7.7.2006 14:28:24
BasePriority : Normal
#:18 [ashwebsv.exe]
FilePath : C:\Program Files\Alwil Software\Avast4\
ProcessID : 1848
ThreadCreationTime : 7.7.2006 14:28:25
BasePriority : Normal
#:19 [wmiprvse.exe]
FilePath : C:\WINDOWS\System32\wbem\
ProcessID : 2136
ThreadCreationTime : 7.7.2006 14:28:26
BasePriority : Normal
FileVersion : 5.1.2600.1106 (xpsp1.020828-1920)
ProductVersion : 5.1.2600.1106
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : WMI
InternalName : Wmiprvse.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : Wmiprvse.exe
#:20 [kpf4gui.exe]
FilePath : C:\Program Files\Kerio\Personal Firewall 4\
ProcessID : 2300
ThreadCreationTime : 7.7.2006 14:28:27
BasePriority : Normal
FileVersion : 4.1.3
ProductVersion : 4.1.3
ProductName : Kerio Personal Firewall 4
CompanyName : Kerio Technologies
FileDescription : Kerio Personal Firewall 4 - GUI
InternalName : kpf4gui
LegalCopyright : Copyright (C) 1997-2004 Kerio Technologies
OriginalFilename : kpf4gui.EXE
Comments : Kerio Personal Firewall 4 - GUI
#:21 [cli.exe]
FilePath : C:\Program Files\ATI Technologies\ATI.ACE\
ProcessID : 2368
ThreadCreationTime : 7.7.2006 14:28:28
BasePriority : Normal
#:22 [soundman.exe]
FilePath : C:\WINDOWS\
ProcessID : 2376
ThreadCreationTime : 7.7.2006 14:28:28
BasePriority : Normal
FileVersion : 5.1.0.34
ProductVersion : 5.1.0.34
ProductName : Realtek Sound Manager
CompanyName : Realtek Semiconductor Corp.
FileDescription : Realtek Sound Manager
InternalName : ALSMTray
LegalCopyright : Copyright (c) 2001-2004 Realtek Semiconductor Corp.
OriginalFilename : ALSMTray.exe
Comments : Realtek AC97 Audio Sound Manager
#:23 [nvraidservice.exe]
FilePath : C:\WINDOWS\System32\
ProcessID : 2384
ThreadCreationTime : 7.7.2006 14:28:28
BasePriority : Normal
FileVersion : 1.0.1
ProductVersion : 1.0.1
ProductName : NVIDIA® NVRAID
CompanyName : NVIDIA Corporation
FileDescription : Raid Service U.S. English Resources
InternalName : NvRaidServiceENU.dll
LegalCopyright : Copyright© NVIDIA Corporation 2000-2003.
LegalTrademarks : NVIDIA® is a registered trademark of NVIDIA Corporation.
OriginalFilename : NvRaidServiceENU.dll
#:24 [thiselt.exe]
FilePath : C:\WINDOWS\
ProcessID : 2428
ThreadCreationTime : 7.7.2006 14:28:29
BasePriority : Normal
FileVersion : 1.00
ProductVersion : 1.00
ProductName : Project1
InternalName : thiselt
OriginalFilename : thiselt.exe
#:25 [icqlite.exe]
FilePath : C:\Program Files\ICQLite\
ProcessID : 2448
ThreadCreationTime : 7.7.2006 14:28:29
BasePriority : Normal
FileVersion : 20, 52, 2573, 0
ProductVersion : 20, 52, 2573, 0
ProductName : ICQLite
CompanyName : ICQ Ltd.
FileDescription : ICQLite
InternalName : ICQ Lite
LegalCopyright : Copyright (C) 2002
OriginalFilename : ICQLite.exe
#:26 [daemon.exe]
FilePath : C:\Program Files\D-Tools\
ProcessID : 2524
ThreadCreationTime : 7.7.2006 14:28:29
BasePriority : Normal
#:27 [ashdisp.exe]
FilePath : C:\PROGRA~1\ALWILS~1\Avast4\
ProcessID : 2560
ThreadCreationTime : 7.7.2006 14:28:29
BasePriority : Normal
FileVersion : 5, 0, 0, 0
ProductVersion : 5, 0, 0, 0
ProductName : avast! Antivirus
FileDescription : avast! service GUI component
InternalName : aswDisp
LegalCopyright : Copyright (c) 2006 ALWIL Software
OriginalFilename : aswDisp.exe
#:28 [ctfmon.exe]
FilePath : C:\WINDOWS\System32\
ProcessID : 2588
ThreadCreationTime : 7.7.2006 14:28:29
BasePriority : Normal
FileVersion : 5.1.2600.1106 (xpsp1.020828-1920)
ProductVersion : 5.1.2600.1106
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : CTF Loader
InternalName : CTFMON
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : CTFMON.EXE
#:29 [mscfg.exe]
FilePath : C:\WINDOWS\System32\
ProcessID : 2612
ThreadCreationTime : 7.7.2006 14:28:29
BasePriority : Normal
#:30 [w?aclt.exe]
FilePath : C:\Documents and Settings\Lukas\Dokumenty\??mbols\
ProcessID : 2664
ThreadCreationTime : 7.7.2006 14:28:29
BasePriority : Normal
#:31 [unsecapp.exe]
FilePath : C:\WINDOWS\System32\wbem\
ProcessID : 2864
ThreadCreationTime : 7.7.2006 14:28:33
BasePriority : Normal
FileVersion : 5.1.2600.0 (xpclient.010817-1148)
ProductVersion : 5.1.2600.0
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : WMI
InternalName : unsecapp.dll
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : unsecapp.dll
#:32 [dslmon.exe]
FilePath : C:\Program Files\SAGEM\SAGEM F@st 800-840\
ProcessID : 3028
ThreadCreationTime : 7.7.2006 14:28:34
BasePriority : Normal
FileVersion : 1, 0, 0, 1
ProductVersion : 1, 0, 0, 1
ProductName : DSLMON Application
FileDescription : ADIMON MFC Application
InternalName : DSLMON
LegalCopyright : Copyright (C) 2000
OriginalFilename : ADIMON.EXE
#:33 [cli.exe]
FilePath : C:\Program Files\ATI Technologies\ATI.ACE\
ProcessID : 3068
ThreadCreationTime : 7.7.2006 14:28:34
BasePriority : Normal
#:34 [kpf4gui.exe]
FilePath : C:\Program Files\Kerio\Personal Firewall 4\
ProcessID : 3220
ThreadCreationTime : 7.7.2006 14:28:37
BasePriority : Normal
FileVersion : 4.1.3
ProductVersion : 4.1.3
ProductName : Kerio Personal Firewall 4
CompanyName : Kerio Technologies
FileDescription : Kerio Personal Firewall 4 - GUI
InternalName : kpf4gui
LegalCopyright : Copyright (C) 1997-2004 Kerio Technologies
OriginalFilename : kpf4gui.EXE
Comments : Kerio Personal Firewall 4 - GUI
#:35 [cli.exe]
FilePath : C:\Program Files\ATI Technologies\ATI.ACE\
ProcessID : 3672
ThreadCreationTime : 7.7.2006 14:28:43
BasePriority : Normal
#:36 [twink.exe]
FilePath : c:\windows\
ProcessID : 2900
ThreadCreationTime : 7.7.2006 14:30:03
BasePriority : Normal
#:37 [twink.exe]
FilePath : c:\windows\
ProcessID : 2280
ThreadCreationTime : 7.7.2006 15:18:17
BasePriority : Normal
#:38 [iexplore.exe]
FilePath : C:\Program Files\Internet Explorer\
ProcessID : 1328
ThreadCreationTime : 7.7.2006 15:18:25
BasePriority : Normal
FileVersion : 6.00.2800.1106 (xpsp1.020828-1920)
ProductVersion : 6.00.2800.1106
ProductName : Microsoft(R) Windows (R) 2000 Operating System
CompanyName : Microsoft Corporation
FileDescription : Internet Explorer
InternalName : iexplore
LegalCopyright : © Microsoft Corporation. Všechna práva vyhrazena.
OriginalFilename : IEXPLORE.EXE
#:39 [lrep.exe]
FilePath : C:\Program Files\pseu\
ProcessID : 948
ThreadCreationTime : 7.7.2006 15:18:32
BasePriority : Normal
Win32.Trojan.Downloader Object Recognized!
Type : Process
Data : lrep.exe
TAC Rating : 10
Category : Malware
Comment : scms.exe.dmp
Object : C:\Program Files\pseu\
Warning! Win32.Trojan.Downloader Object found in memory(C:\Program Files\pseu\lrep.exe)
"C:\Program Files\pseu\lrep.exe"Process terminated successfully
"C:\Program Files\pseu\lrep.exe"Process terminated successfully
#:40 [ad-aware.exe]
FilePath : C:\Program Files\Lavasoft\Ad-Aware SE Personal\
ProcessID : 4512
ThreadCreationTime : 7.7.2006 15:20:05
BasePriority : Normal
FileVersion : 6.2.0.236
ProductVersion : SE 106
ProductName : Lavasoft Ad-Aware SE
CompanyName : Lavasoft Sweden
FileDescription : Ad-Aware SE Core application
InternalName : Ad-Aware.exe
LegalCopyright : Copyright © Lavasoft AB Sweden
OriginalFilename : Ad-Aware.exe
Comments : All Rights Reserved
Memory scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 1
Objects found so far: 1
Started registry scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Virtumonde Object Recognized!
Type : Regkey
Data :
TAC Rating : 10
Category : Data Miner
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : clsid\{6d794cb4-c7cd-4c6f-bfdc-9b77afbdc02c}
ABetterInternet.Nail Object Recognized!
Type : RegData
Data : explorer.exe, c:\windows\system32\rxcsq.exe
TAC Rating : 5
Category : Malware
Comment :
Rootkey : HKEY_LOCAL_MACHINE
Object : software\microsoft\windows nt\currentversion\winlogon
Value : Shell
Data : explorer.exe, c:\windows\system32\rxcsq.exe
Windows Object Recognized!
Type : RegData
Data : explorer.exe, c:\windows\system32\rxcsq.exe
TAC Rating : 3
Category : Vulnerability
Comment :
Rootkey : HKEY_LOCAL_MACHINE
Object : software\microsoft\windows nt\currentversion\winlogon
Value : Shell
Data : explorer.exe, c:\windows\system32\rxcsq.exe
Registry Scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 3
Objects found so far: 4
Started deep registry scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Trusted zone presumably compromised : media-motor.net
Possible Browser Hijack attempt Object Recognized!
Type : Regkey
Data :
TAC Rating : 3
Category : Vulnerability
Comment : Trusted zone presumably compromised : media-motor.net
Rootkey : HKEY_CURRENT_USER
Object : Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\media-motor.net
Deep registry scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 1
Objects found so far: 5
Virtumonde Object Recognized!
Type : Regkey
Data :
TAC Rating : 10
Category : Data Miner
Comment :
Rootkey : HKEY_LOCAL_MACHINE
Object : SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6d794cb4-c7cd-4c6f-bfdc-9b77afbdc02c}
Started Tracking Cookie scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : lukas@rambler[2].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:3
Value : Cookie:lukas@rambler.ru/
Expires : 1.1.2008 2:00:00
LastSync : Hits:3
UseCount : 0
Hits : 3
Tracking cookie scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 1
Objects found so far: 7
Deep scanning and examining files...
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Disk Scan Result for C:\WINDOWS
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 7
Disk Scan Result for C:\WINDOWS\System32
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 7
Disk Scan Result for C:\DOCUME~1\Lukas\LOCALS~1\Temp\
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 7
Scanning Hosts file......
Hosts file location:"C:\WINDOWS\system32\drivers\etc\hosts".
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Hosts file scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
1 entries scanned.
New critical objects:0
Objects found so far: 7
MRU List Object Recognized!
Location: : C:\Documents and Settings\Lukas\recent
Description : list of recently opened documents
MRU List Object Recognized!
Location: : software\microsoft\directdraw\mostrecentapplication
Description : most recent application to use microsoft directdraw
MRU List Object Recognized!
Location: : S-1-5-21-57989841-1454471165-839522115-1003\software\microsoft\windows\currentversion\explorer\comdlg32\lastvisitedmru
Description : list of recent programs opened
MRU List Object Recognized!
Location: : S-1-5-21-57989841-1454471165-839522115-1003\software\microsoft\windows\currentversion\explorer\comdlg32\opensavemru
Description : list of recently saved files, stored according to file extension
MRU List Object Recognized!
Location: : S-1-5-21-57989841-1454471165-839522115-1003\software\microsoft\windows\currentversion\explorer\recentdocs
Description : list of recent documents opened
Performing conditional scans...
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Conditional scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 12
17:21:45 Scan Complete
Summary Of This Scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Total scanning time:00:00:52.656
Objects scanned:77444
Objects identified:7
Objects ignored:0
New critical objects:7
Hi jackthis mi nejde spustit
- Moribundus
- nováček
- Příspěvky: 44
- Registrován: červenec 06
- Bydliště: Praha
- Pohlaví:
- Stav:
Offline
- Moribundus
- nováček
- Příspěvky: 44
- Registrován: červenec 06
- Bydliště: Praha
- Pohlaví:
- Stav:
Offline
uffff
Tak nevím...už mi přijde, že si ten počítač dělá co chce a nevím, jestli se zachvilku budu online...hraje to semnou šílenou hru...fakt nevím...
- mijaja
- Tvůrce článků
-
Level 6.5
- Příspěvky: 4136
- Registrován: září 05
- Bydliště: Zlín
- Pohlaví:
- Stav:
Offline
- Kontakt:
No je tam toho hodně. Už jsi zkoušel ten SmitfraudFix v nouzáku?
Zkus v Taskmanageru (CTRL+ALT+DEL - záložka Procesy - tlačítko Ukončit proces) zastavit tyto červeně označené procesy:
C:\WINDOWS\ thiselt.exe - to je šmejd
C:\WINDOWS\System32\ mscfg.exe - takyšmejd
C:\Documents and Settings\Lukas\Dokumenty\??mbols\w?aclt.exe - taky šmejd
c:\windows\twink.exe
C:\Program Files\pseu\lrep.exe - Win32.Trojan.Downloader
c:\windows\system32\rxcsq.exe - malware
a potom je smazat z disku.
Zkus v Taskmanageru (CTRL+ALT+DEL - záložka Procesy - tlačítko Ukončit proces) zastavit tyto červeně označené procesy:
C:\WINDOWS\ thiselt.exe - to je šmejd
C:\WINDOWS\System32\ mscfg.exe - takyšmejd
C:\Documents and Settings\Lukas\Dokumenty\??mbols\w?aclt.exe - taky šmejd
c:\windows\twink.exe
C:\Program Files\pseu\lrep.exe - Win32.Trojan.Downloader
c:\windows\system32\rxcsq.exe - malware
a potom je smazat z disku.
- Moribundus
- nováček
- Příspěvky: 44
- Registrován: červenec 06
- Bydliště: Praha
- Pohlaví:
- Stav:
Offline
Prohrávám
SmitfraudFix v nouzáku, tomuhle nerozumím,....ale ten takmanager mi asi zakazuje kerio, ale nevím jak se tam dostat jen mi totiž problikne....křičí to tady na mě...ze všech stran viry, avast...atd...
-
- Mohlo by vás zajímat
- Odpovědi
- Zobrazení
- Poslední příspěvek
-
- 1
- 2937
-
od petr22
Zobrazit poslední příspěvek
04 říj 2023 09:25
-
- 13
- 1732
-
od PARKR
Zobrazit poslední příspěvek
20 pro 2023 09:18
-
- 0
- 2161
-
od janekdeeste
Zobrazit poslední příspěvek
26 zář 2023 07:42
-
- 28
- 1604
-
od akem
Zobrazit poslední příspěvek
30 pro 2023 22:19
-
- 6
- 984
-
od akem
Zobrazit poslední příspěvek
30 led 2024 21:41
Zpět na “Windows 11, 10, 8...”
Kdo je online
Uživatelé prohlížející si toto fórum: Žádní registrovaní uživatelé a 7 hostů