PC-HELP.CZ

České diskuzní fórum o počítačích
https://pc-help.cnews.cz/

asi vir

https://pc-help.cnews.cz/viewtopic.php?f=47&t=44682

Stránka 1 z 2

asi vir

Napsal: 14 zář 2009 18:56
od martanas13
dobrý den, jednou jsem zestartoval počítač a poté mě tam naskočilo servises.exe ( odeslat zpávu o chybách) dal jsem neodesílat a poté naskočilo:
vypnutí systému
zapřičinění Windows NT autority
systém se vypne za : a odpočítávání
poté s epočítač restartuje a to celé na novo

zálohoval jsem si všechna data a odinstaloval nějaké programy , za učelem přeinstalování windiws a už to šlape bez problému
nevím zda to tam můžu zpět vrátit ? zda je to vir nebo co prosím poradte popřípadě napište, co potřebujete vědět k bližší identifikaci.

Re: asi vir

Napsal: 14 zář 2009 18:58
od Damned
Stáhni si HijackThis z mého podpisu a podle návodu udělej z něho log.

Stáhni si Malwarebytes' Anti-Malware
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Aktualizace Malwarebytes' Anti-Malware a Spustit aplikaci Malwarebytes' Anti-Malware, pokud jo tak klikni na tlačítko konec
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a nech vybranou možnost Provést rychlý sken a klikni na tlačítko Skenovat
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Zobrazit výsledky
- pak zvol možnost uložit log a ulož si log na plochu
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(zatím nic nemaž!).
Vlož sem pak obsah toho logu.

Re: asi vir

Napsal: 14 zář 2009 19:25
od martanas13
vůbec tomu nerozumím

Re: asi vir

Napsal: 14 zář 2009 19:29
od Damned
Postupy jsou psaný pro laiky a začátečníky
Jelikož si toto vše již dávno s úspěchem překonal, věřím, že pokud si to pořádně přečteš - porozumíš a provedeš.

Re: asi vir

Napsal: 14 zář 2009 20:19
od martanas13
vážně to vůbec nechápu napsal jsi mi že si mám stáhnout 3 programy a napsal jsi mi tam několik postupů vůbec nic z toho nechápu

Re: asi vir

Napsal: 14 zář 2009 20:28
od Damned
Tak ještě jednou:

1.Stáhni si HijackThis z mého podpisu a podle návodu udělej z něho log. (doplněno nyní) LOG vlož sem.

2.Stáhni si Malwarebytes' Anti-Malware
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Aktualizace Malwarebytes' Anti-Malware a Spustit aplikaci Malwarebytes' Anti-Malware, pokud jo tak klikni na tlačítko konec
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a nech vybranou možnost Provést rychlý sken a klikni na tlačítko Skenovat
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Zobrazit výsledky
- pak zvol možnost uložit log a ulož si log na plochu
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(zatím nic nemaž!).
Vlož sem pak obsah toho logu.

Re: asi vir

Napsal: 14 zář 2009 20:49
od martanas13
doufám že už je to ok

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 20:38:41, on 14.9.2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16791)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
C:\Program Files\ICQ6Toolbar\ICQ Service.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\WINDOWS\Samsung\PanelMgr\SSMMgr.exe
C:\WINDOWS\Twain_32\Samsung\CLX3170\Scan2pc.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Programy\nokia\Nokia PC Suite 6\LaunchApplication.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Programy\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
C:\Program Files\Programy\logitech\SetPoint\SetPoint.exe
C:\Program Files\Common Files\Logitech\KHAL\KHALMNPR.EXE
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
C:\Program Files\AnyDATA\EasyWirelessNet\EasyWirelessNet.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Programy\aimp2\AIMP2.exe
C:\Documents and Settings\Vojta\Plocha\DOWNLOAD\HijackThis(2).exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: (no name) - - (no file)
R3 - URLSearchHook: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll
O2 - BHO: Podpora odkazu pro Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O3 - Toolbar: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [AlcWzrd] ALCWZRD.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [UniPrint] C:\Program Files\UniPrint\Client\SetDfltSettings.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [Samsung PanelMgr] C:\WINDOWS\Samsung\PanelMgr\SSMMgr.exe /autorun
O4 - HKLM\..\Run: [3170 Scan2PC] "C:\WINDOWS\Twain_32\Samsung\CLX3170\Scan2pc.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [PCSuiteTrayApplication] C:\Program Files\Programy\nokia\Nokia PC Suite 6\LaunchApplication.exe -startup
O4 - HKLM\..\Run: [sysexec] E:\check flash\sysexec.exe
O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [Malwarebytes Anti-Malware (reboot)] "C:\Program Files\ALL\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [LDM] C:\Program Files\Programy\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\Run: [Nokia.PCSync] C:\Program Files\Programy\nokia\Nokia PC Suite 6\PcSync2.exe /NoDialog (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Programy\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Logitech SetPoint.lnk = ?
O8 - Extra context menu item: add to google photos screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: SmarThru4 Capture Selection - C:\Program Files\SmarThru 4\WebCapture.dll2.htm
O8 - Extra context menu item: SmarThru4 Save as HTML - C:\Program Files\SmarThru 4\WebCapture.dll1.htm
O8 - Extra context menu item: SmarThru4 Save Selected Text - C:\Program Files\SmarThru 4\WebCapture.dll.htm
O8 - Extra context menu item: SmarThru4 Web Capture - C:\Program Files\SmarThru 4\WebCapture.dll
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ALL\ICQ6.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ALL\ICQ6.5\ICQ.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: SmarThru4 Web Capture - {5941A0E4-56C1-4a49-9B18-05762CAC5F9B} - C:\Program Files\SmarThru 4\WebCapture.dll (HKCU)
O9 - Extra 'Tools' menuitem: SmarThru4 Web Capture - {5941A0E4-56C1-4a49-9B18-05762CAC5F9B} - C:\Program Files\SmarThru 4\WebCapture.dll (HKCU)
O9 - Extra button: SmarThru4 Capture Selection - {A07BFEF7-DD11-4937-B23B-E70C11D2EDF4} - C:\Program Files\SmarThru 4\WebCapture.dll (HKCU)
O9 - Extra 'Tools' menuitem: SmarThru4 Capture Selection - {A07BFEF7-DD11-4937-B23B-E70C11D2EDF4} - C:\Program Files\SmarThru 4\WebCapture.dll (HKCU)
O9 - Extra button: SmarThru4 Save as HTML - {E753A93F-2367-4978-BFA0-83048C1E61CB} - C:\Program Files\SmarThru 4\WebCapture.dll (HKCU)
O9 - Extra 'Tools' menuitem: SmarThru4 Save as HTML - {E753A93F-2367-4978-BFA0-83048C1E61CB} - C:\Program Files\SmarThru 4\WebCapture.dll (HKCU)
O9 - Extra button: SmarThru4 Save Selected Text - {F1F53366-3E11-47ab-BF84-580C94F9C9AD} - C:\Program Files\SmarThru 4\WebCapture.dll (HKCU)
O9 - Extra 'Tools' menuitem: SmarThru4 Save Selected Text - {F1F53366-3E11-47ab-BF84-580C94F9C9AD} - C:\Program Files\SmarThru 4\WebCapture.dll (HKCU)
O16 - DPF: {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} (Office Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=58813
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windows ... 1930434812
O17 - HKLM\System\CCS\Services\Tcpip\..\{936E409E-391D-439C-9831-05DE15F7DB08}: NameServer = 160.218.10.200 160.218.43.200
O18 - Protocol: bw+0 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: offline-8876480 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Služba inteligentního přenosu na pozadí (BITS) (BITS) - Unknown owner - C:\WINDOWS\
O23 - Service: Eset HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
O23 - Service: Eset Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: ICQ Service - Unknown owner - C:\Program Files\ICQ6Toolbar\ICQ Service.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: NMIndexingService - Unknown owner - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe (file missing)
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Automatické aktualizace (wuauserv) - Unknown owner - C:\WINDOWS\

--
End of file - 21271 bytes








a tady je ten druhej

Malwarebytes' Anti-Malware 1.41
Verze databáze: 2775
Windows 5.1.2600 Service Pack 3

14.9.2009 20:46:00
mbam-log-2009-09-14 (20-45-58).txt

Typ kontroly: Rychlá kontrola
Zkontrolované objekty: 97747
Uplynulý čas: 1 minute(s), 2 second(s)

Infikované procesy v paměti: 0
Infikované moduly v paměti: 0
Infikované klíče registru: 0
Infikované hodnoty registru: 0
Infikované datové položky registru: 2
Infikované adresáře: 0
Infikované soubory: 1

Infikované procesy v paměti:
(Nebyly nalezeny žádné škodlivé položky)

Infikované moduly v paměti:
(Nebyly nalezeny žádné škodlivé položky)

Infikované klíče registru:
(Nebyly nalezeny žádné škodlivé položky)

Infikované hodnoty registru:
(Nebyly nalezeny žádné škodlivé položky)

Infikované datové položky registru:
HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\BITS\ImagePath (Hijack.WindowsUpdates) -> Bad: (%fystemRoot%\system32\svchost.exe -k netsvcs) Good: (%SystemRoot%\System32\svchost.exe -k netsvcs) -> No action taken.
HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\wuauserv\ImagePath (Hijack.WindowsUpdates) -> Bad: (%fystemroot%\system32\svchost.exe -k netsvcs) Good: (%SystemRoot%\System32\svchost.exe -k netsvcs) -> No action taken.

Infikované adresáře:
(Nebyly nalezeny žádné škodlivé položky)

Infikované soubory:
C:\WINDOWS\system32\drivers\d29f1b2a.sys (Rootkit.Rustock) -> No action taken.

Re: asi vir

Napsal: 14 zář 2009 21:06
od Damned
Výborně, já věděl že si šikovnej :number1:

Odinstaluj si: Desktop Messenger (Logitech) a ICQ6Toolbar.
*****************************************************************************************************************************************
Spusť HJT (HijackThis), vypni prohlížeče, odpoj se od internetu a fixni (spustit HJT, "Do a system scan only",
zatrhnout políčko před hodnotou, zmáčknout "Fix checked" a poté "Ano"):

R3 - URLSearchHook: (no name) - - (no file)
R3 - URLSearchHook: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll
O3 - Toolbar: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [sysexec] E:\check flash\sysexec.exe
O4 - HKCU\..\Run: [LDM] C:\Program Files\Programy\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Programy\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Logitech SetPoint.lnk = ?
O18 - Protocol: bw+0 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: offline-8876480 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
Je možné, že položky O18 po odinstalaci LDM již v HJT nebudou.
*****************************************************************************************************************************************
Potom spusť znovu MbAM a dej Skenovat
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Show Results
- ujistit se že máš zatrhnuté všechny vypsané nálezy a klikni na tlačítko Remove Selected
- když skončí odstraňování tak se ti zobrazí log, tak ho sem dej.
- pak zvol v programu OK a pak program ukonči přes Exit

Vypni rezidentní štít antiviru (pokud máš tak i antispyware).
Stáhni si ComboFix (by sUBs)
nebo ComboFix (subs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah

Re: asi vir

Napsal: 14 zář 2009 21:09
od martanas13
promin ale tohle by asi nemělo smysl domluvím se s někým zkušennějuším a pak ti napíšu zatím díky moc za snahu

Re: asi vir

Napsal: 14 zář 2009 21:16
od Damned
To je nějaký problém něco odinstalovat, a pak něco opravit a pak něco stáhnout a spustit?
Stačí doopravdy jen číst a provádět to co čteš.

Re: asi vir

Napsal: 14 zář 2009 21:17
od martanas13
tak dobře ještě to zkusím ale nejde mi vypnou antivir eset nod32

Re: asi vir

Napsal: 14 zář 2009 21:24
od Damned
NOD má určitě nějaký centrum, vypínání, když klikneš na ikonu v systray. Je to nutné, když ComboFix bude provádět sken a opravu, aby mu v tom ochranný program nebránil.
Ještě jednou ti ty kroky očísluju, a proveď je podle pořadí:

1.
Odinstaluj si: Desktop Messenger (Logitech) a ICQ6Toolbar.
*****************************************************************************************************************************************
2.
Spusť HJT (HijackThis), vypni prohlížeče, odpoj se od internetu a fixni (spustit HJT, "Do a system scan only",
zatrhnout políčko před hodnotou, zmáčknout "Fix checked" a poté "Ano"):
-položky jsou podle pořadí, které se ti zobrazí v okénku HJT.

R3 - URLSearchHook: (no name) - - (no file)
R3 - URLSearchHook: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll
O3 - Toolbar: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [sysexec] E:\check flash\sysexec.exe
O4 - HKCU\..\Run: [LDM] C:\Program Files\Programy\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Programy\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Logitech SetPoint.lnk = ?
O18 - Protocol: bw+0 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: offline-8876480 - {470CC8AE-27E0-4ABC-8BD2-2FEBCB1828CD} - C:\Program Files\Programy\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

Je možné, že položky O18 po odinstalaci LDM již v HJT nebudou.
*****************************************************************************************************************************************
3.
Spusť znovu MbAM a dej Skenovat
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Show Results
- ujistit se že máš zatrhnuté všechny vypsané nálezy a klikni na tlačítko Remove Selected
- když skončí odstraňování tak se ti zobrazí log, tak ho sem dej.
- pak zvol v programu OK a pak program ukonči přes Exit
*****************************************************************************************************************************************
4.
Vypni rezidentní štít antiviru (pokud máš tak i antispyware).
Stáhni si ComboFix (by sUBs)
nebo ComboFix (subs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
Časové pásmo: UTC+02:00
Stránka 1 z 2
Powered by phpBB® Forum Software © phpBB Limited
https://www.phpbb.com/